Bug#867680: osc: support both obs-build and vanilla build

[Michal Čihař]

Hello

Luca Boccassi píše v So 08. 07. 2017 v 13:56 +0100:
> In Debian SUSE's "build" package is renamed to "obs-build", and so
> osc
> carries a patch to make it compatible.
> 
> Unfortunately the patch makes it incompatible with SUSE's version.
> Very
> often when doing development, upstream sources are used.
> This is a constant cause of problems and confusion among many users
> in
> my workplace, myself included.
> 
> I have sent a patch upstream, which was just merged, to make osc
> compatible with both obs-build and build. This will make things much
> easier for users:
> 
> https://github.com/openSUSE/osc/pull/306
> 
> The patch is attached inline, and it would be great if it could be
> used
> in place of the existing one. It's adapted to apply on top of 0.156.

I will anyway update the package, so maybe it's better to wait for
upstream version with integrated your patch.

> As a stretch goal, it would be nice if the Recommends could be
> changed
> from "obs-build" to "obs-build | build", so that things won't break
> when using SUSE's upstream repository.

I'm not really sure about this - the build is really too generic
package name. In the end this is only recommends, so it really doesn't
force you to install obs-build if you know what you are doing with
third party packages.

-- 
Michal Čihař | https://cihar.com/ | https://weblate.org/


signature.asc
Description: This is a digitally signed message part

Bug#867738: devscripts: debpatch.1.gz conflicts with debdelta's debpatch.1.gz

[Nelson A. de Oliveira]

Source: devscripts
Version: 2.17.7
Severity: serious
Justification: Policy 7.4

Hi!

While upgrading devscripts from 2.17.6 to 2.17.7:

=
Unpacking devscripts (2.17.7) over (2.17.6) ...
dpkg: error processing archive 
/var/cache/apt/archives/devscripts_2.17.7_amd64.deb (--unpack):
 trying to overwrite '/usr/share/man/man1/debpatch.1.gz', which is also in 
package debdelta 0.59
dpkg-deb: error: subprocess paste was killed by signal (Broken pipe)
Errors were encountered while processing:
 /var/cache/apt/archives/devscripts_2.17.7_amd64.deb
=

Thank you!

Best regards,
Nelson

-- Package-specific info:

--- /etc/devscripts.conf ---

--- ~/.devscripts ---
Not present

-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (100, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.11.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=pt_BR.UTF-8, LC_CTYPE=pt_BR.UTF-8 (charmap=UTF-8), 
LANGUAGE=pt_BR:pt:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

-- debconf-show failed

Bug#839668: julia: New upstream release

[Mateusz Kaduk]

Package: julia
Version: 0.4.7-6+b3
Followup-For: Bug #839668

Dear Maintainer,

Julia 0.6.0 has been released, many libraries do not work with version 0.4.7 
anymore.

Regards,
Mateusz

-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.11.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages julia depends on:
ii  julia-common   0.4.7-6
ii  libamd21:4.5.5-1
ii  libarpack2 3.5.0-1
ii  libc6  2.24-12
ii  libcamd2   1:4.5.5-1
ii  libcholmod31:4.5.5-1
ii  libcolamd2 1:4.5.5-1
ii  libdsfmt-19937-1   2.2.3+dfsg-3
ii  libfftw3-double3   3.3.6p2-1
ii  libfftw3-single3   3.3.6p2-1
ii  libgcc11:7.1.0-9
ii  libgmp10   2:6.1.2+dfsg-1
ii  libllvm3.8 1:3.8.1-24
ii  libmpfr4   3.1.5-1
ii  libopenblas-base   0.2.19-3
ii  libopenlibm2   0.5.4+dfsg-3
ii  libopenspecfun10.5.3-3
ii  libpcre2-8-0   10.22-3
ii  libspqr2   1:4.5.5-1
ii  libstdc++6 7.1.0-9
ii  libsuitesparseconfig4  1:4.5.5-1
ii  libumfpack51:4.5.5-1
ii  libunwind8 1.1-4.1
ii  libutf8proc2   2.1.0-1

Versions of packages julia recommends:
ii  git  1:2.13.2-3

Versions of packages julia suggests:
pn  ess
pn  julia-doc  

-- no debconf information

Bug#867737: Do not use this package. It will lock your screen.

[積丹尼 Dan Jacobson]

Package: arora
Version: 0.11.0+qt5+git2014-04-06-1
Severity: grave

All I did was
$ arora
then after it finished rendering its initial screen,
I hit CTRL+Q and CTRL+W or maybe the other way around.

Next thing you know my entire screen was locked up.
The clock in the corner of icewm stopped.
I couldn't even do ALT+CTRL+F1 to leave X-windows.

I had to hit the power button on the front of my computer.
My disks needed to be fscked. My bash history got lost.
Who knows what else I lost.

Bug#743474: linphone: New upstream version available

[Johannes Schauer]

The current status of packaging the new linphone version can be found in this
thread on the pkg-voip mailing list:

http://lists.alioth.debian.org/pipermail/pkg-voip-maintainers/2017-April/030495.html

Essentially, the big blocker is, that three packages that the new linphone
version requires are not in Debian yet and have to go through NEW first.

More specifically the dependency situation presents itself as this:

https://anonscm.debian.org/cgit/pkg-voip/linphone.git/tree/debian/README.source

But Bernhard Schmidt already started uploading bctoolbox (the most fundamental
new package) to NEW:

https://ftp-master.debian.org/new/bctoolbox_0.5.1-1.html

Thanks!

cheers, josch


signature.asc
Description: signature

Bug#867733: mnemosyne: Package not installable on armhf, dependency issues

[Scott Kitterman]

On Sunday, July 09, 2017 03:58:17 AM linus.luess...@c0d3.blue wrote:
> Package: mnemosyne
> Version: 2.4-0.1
> Severity: important
> 
> Hi,
> 
> When trying to install mnemosyne on an armhf based device
> (Odroid U3) on Debian Sid, I get the following error:
> 
> ~~~
> $ apt-get install mnemosyne
> Reading package lists... Done
> Building dependency tree
> Reading state information... Done
> Some packages could not be installed. This may mean that you have
> requested an impossible situation or if you are using the unstable
> distribution that some required packages have not yet been created
> or been moved out of Incoming.
> The following information may help to resolve the situation:
> 
> The following packages have unmet dependencies:
>  mnemosyne : Depends: python3-pyqt5.qtwebengine but it is not installable
> E: Unable to correct problems, you have held broken packages.
> ~~~
> 
> It seems that currently there is only an i386 and amd64
> but not an armhf build available for the python3-pyqt5.qtwebengine
> package.

That's correct.  This is not a bug in mnemosyne.  At the time python3-
pyqt5.qtwebengine was packaged, qtwebengine-opensource-src only built for 
amd64 and i386.  It can be updated now to cover armhf.

Scott K

Bug#867736: [fbpanel] fbpanel crashes with default config

[Will Brokenbourgh]

Package: fbpanel
Version: 7.0-3
Severity: serious

When fbpanel is run with the default config file 
(/usr/share/fbpanel/default) it crashes without displaying any GUI.


The crash output from the terminal follows:
- - -
*** Error in `fbpanel': double free or corruption (out): 
0x558a947cda10 ***

=== Backtrace: =
/lib/x86_64-linux-gnu/libc.so.6(+0x70bcb)[0x7f4d4469bbcb]
/lib/x86_64-linux-gnu/libc.so.6(+0x76f96)[0x7f4d446a1f96]
/lib/x86_64-linux-gnu/libc.so.6(+0x777de)[0x7f4d446a27de]
/usr/lib/x86_64-linux-gnu/libX11.so.6(XFree+0x9)[0x7f4d44f38699]
fbpanel(get_utf8_property_list+0x141)[0x558a94308e71]
/usr/lib/fbpanel/libtaskbar.so(+0x453c)[0x7f4d3da7f53c]
/usr/lib/fbpanel/libtaskbar.so(taskbar_constructor+0x4c0)[0x7f4d3da812f0]
fbpanel(plugin_start+0xd8)[0x558a9430aee8]
fbpanel(main+0xdbe)[0x558a943041ce]
/lib/x86_64-linux-gnu/libc.so.6(__libc_start_main+0xf1)[0x7f4d4464b2b1]
fbpanel(_start+0x2a)[0x558a9430468a]
=== Memory map: 
558a942fb000-558a9431 r-xp  08:24 1194991
/usr/bin/fbpanel
558a9450f000-558a9451 r--p 00014000 08:24 1194991
/usr/bin/fbpanel
558a9451-558a94511000 rw-p 00015000 08:24 1194991
/usr/bin/fbpanel
558a94726000-558a9488d000 rw-p  00:00 0  
[heap]

7f4d3000-7f4d30022000 rw-p  00:00 0
7f4d30022000-7f4d3400 ---p  00:00 0
7f4d3400-7f4d34021000 rw-p  00:00 0
7f4d34021000-7f4d3800 ---p  00:00 0
7f4d3800-7f4d38021000 rw-p  00:00 0
7f4d38021000-7f4d3c00 ---p  00:00 0
7f4d3d643000-7f4d3d659000 r-xp  08:24 3015814
/lib/x86_64-linux-gnu/libgcc_s.so.1
7f4d3d659000-7f4d3d858000 ---p 00016000 08:24 3015814
/lib/x86_64-linux-gnu/libgcc_s.so.1
7f4d3d858000-7f4d3d859000 r--p 00015000 08:24 3015814
/lib/x86_64-linux-gnu/libgcc_s.so.1
7f4d3d859000-7f4d3d85a000 rw-p 00016000 08:24 3015814
/lib/x86_64-linux-gnu/libgcc_s.so.1
7f4d3d873000-7f4d3d879000 r-xp  08:24 1187724 
/usr/lib/x86_64-linux-gnu/gdk-pixbuf-2.0/2.10.0/loaders/libpixbufloader-xpm.so
7f4d3d879000-7f4d3da78000 ---p 6000 08:24 1187724 
/usr/lib/x86_64-linux-gnu/gdk-pixbuf-2.0/2.10.0/loaders/libpixbufloader-xpm.so
7f4d3da78000-7f4d3da79000 r--p 5000 08:24 1187724 
/usr/lib/x86_64-linux-gnu/gdk-pixbuf-2.0/2.10.0/loaders/libpixbufloader-xpm.so
7f4d3da79000-7f4d3da7a000 rw-p 6000 08:24 1187724 
/usr/lib/x86_64-linux-gnu/gdk-pixbuf-2.0/2.10.0/loaders/libpixbufloader-xpm.so
7f4d3da7b000-7f4d3da83000 r-xp  08:24 1195014
/usr/lib/fbpanel/libtaskbar.so
7f4d3da83000-7f4d3dc82000 ---p 8000 08:24 1195014
/usr/lib/fbpanel/libtaskbar.so
7f4d3dc82000-7f4d3dc83000 r--p 7000 08:24 1195014
/usr/lib/fbpanel/libtaskbar.so
7f4d3dc83000-7f4d3dc84000 rw-p 8000 08:24 1195014
/usr/lib/fbpanel/libtaskbar.so
7f4d3dc8b000-7f4d3dc8d000 r-xp  08:24 1195019
/usr/lib/fbpanel/libwincmd.so
7f4d3dc8d000-7f4d3de8c000 ---p 2000 08:24 1195019
/usr/lib/fbpanel/libwincmd.so
7f4d3de8c000-7f4d3de8d000 r--p 1000 08:24 1195019
/usr/lib/fbpanel/libwincmd.so
7f4d3de8d000-7f4d3de8e000 rw-p 2000 08:24 1195019
/usr/lib/fbpanel/libwincmd.so

7f4d3de91000-7f4d3de92000 ---p  00:00 0
7f4d3de92000-7f4d3e692000 rw-p  00:00 0
7f4d3e692000-7f4d3e693000 ---p  00:00 0
7f4d3e693000-7f4d3ee93000 rw-p  00:00 0
7f4d3ee93000-7f4d3ee95000 r-xp  08:24 3020637
/lib/x86_64-linux-gnu/libutil-2.24.so
7f4d3ee95000-7f4d3f094000 ---p 2000 08:24 3020637
/lib/x86_64-linux-gnu/libutil-2.24.so
7f4d3f094000-7f4d3f095000 r--p 1000 08:24 3020637
/lib/x86_64-linux-gnu/libutil-2.24.so
7f4d3f095000-7f4d3f096000 rw-p 2000 08:24 3020637
/lib/x86_64-linux-gnu/libutil-2.24.so
7f4d3f0b3000-7f4d3f0e9000 r-xp  08:24 1317789 
/usr/lib/x86_64-linux-gnu/gvfs/libgvfscommon.so
7f4d3f0e9000-7f4d3f2e9000 ---p 00036000 08:24 1317789 
/usr/lib/x86_64-linux-gnu/gvfs/libgvfscommon.so
7f4d3f2e9000-7f4d3f2ef000 r--p 00036000 08:24 1317789 
/usr/lib/x86_64-linux-gnu/gvfs/libgvfscommon.so
7f4d3f2ef000-7f4d3f2f rw-p 0003c000 08:24 1317789 
/usr/lib/x86_64-linux-gnu/gvfs/libgvfscommon.so
7f4d3f2f3000-7f4d3f322000 r-xp  08:24 1317798 
/usr/lib/x86_64-linux-gnu/gio/modules/libgvfsdbus.so
7f4d3f322000-7f4d3f522000 ---p 0002f000 08:24 1317798 
/usr/lib/x86_64-linux-gnu/gio/modules/libgvfsdbus.so
7f4d3f522000-7f4d3f524000 r--p 0002f000 08:24 1317798 
/usr/lib/x86_64-linux-gnu/gio/modules/libgvfsdbus.so
7f4d3f524000-7f4d3f525000 rw-p 00031000 08:24 1317798 
/usr/lib/x86_64-linux-gnu/gio/modules/libgvfsdbus.so
7f4d3f52b000-7f4d3f547000 r--p  08:24 1316774

Bug#867735: dlocate completions

[積丹尼 Dan Jacobson]

Package: bash-completion
Version: 1:2.1-4.3

$ dlocate /usr/sha
doesn't complete.

Also dlocate -
doesn't show newer options.

Bug#867734: $ set $(cat /tm

[積丹尼 Dan Jacobson]

Package: bash-completion
Version: 1:2.1-4.3

Cannot complete filenames at this point:
$ set `cat /tmp/

Even worse is
$ set $(cat /tm

$ set $(cat /tmbash: eval: line 22: unexpected EOF while looking for matching 
`)'
bash: eval: line 23: syntax error: unexpected end of file
bash: eval: line 22: unexpected EOF while looking for matching `)'
bash: eval: line 23: syntax error: unexpected end of file

Same thing here,
$ set $(cat /tmp/   )

All I was looking for was a little help completing /tmp/oo .

Bug#867733: mnemosyne: Package not installable on armhf, dependency issues

[linus . luessing]

Package: mnemosyne
Version: 2.4-0.1
Severity: important

Hi,

When trying to install mnemosyne on an armhf based device
(Odroid U3) on Debian Sid, I get the following error:

~~~
$ apt-get install mnemosyne
Reading package lists... Done
Building dependency tree   
Reading state information... Done
Some packages could not be installed. This may mean that you have
requested an impossible situation or if you are using the unstable
distribution that some required packages have not yet been created
or been moved out of Incoming.
The following information may help to resolve the situation:

The following packages have unmet dependencies:
 mnemosyne : Depends: python3-pyqt5.qtwebengine but it is not installable
E: Unable to correct problems, you have held broken packages.
~~~

It seems that currently there is only an i386 and amd64
but not an armhf build available for the python3-pyqt5.qtwebengine
package.

Regards, Linus


-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable')
Architecture: armhf (armv7l)

Kernel: Linux 4.2.3-00234-g11acd64 (SMP w/4 CPU cores; PREEMPT)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), 
LANGUAGE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages mnemosyne depends on:
ii  libjs-sphinxdoc 1.4.9-2
ii  libqt5sql5-sqlite   5.7.1+dfsg-3+b1
ii  python3 3.5.3-3
pn  python3-cherrypy3   
pn  python3-matplotlib  
pn  python3-pyqt5   
pn  python3-pyqt5.qtsql 
pn  python3-pyqt5.qtwebchannel  
pn  python3-pyqt5.qtwebengine   
pn  python3-webob   

mnemosyne recommends no packages.

mnemosyne suggests no packages.

Bug#867732: gnome: Unable to lock: lock was blocked by an application (gnome-terminal)

[Jeffrey Cliff]

Package: gnome
Version: 1:3.22+3
Severity: minor
X-Debbugs-Cc: jeffrey.cl...@gmail.com

Dear Maintainer,


Two scenarios

1) Login, without opening any applications or with other applications open
2) wait for 15 minutes or whatever the timeout period is to enable screen
lock
result:
screen lock occurs

1) open a gnome-terminal
right click on the gnome-terminal to get the popup dialogue of
"Open Terminal"
"..."
"Paste"
"Profiles -> "
" [ ] Read only "
" [x] Show Menubar"
2) wait for 15 minutes or whatever the timeout period is to enable screen
lock
result:
error message:
"Unable to Lock
Lock was blocked by an application"

Now this is a minor error, but would be an odd thing to present to new user.
suggestions
i) Don't lock but suggest which application is preventing lock screen from
triggering (gnome-terminal)
ii) override gnome-terminal and/or close the right click menu, or lock
anyway
iii) something more complicated
iv) don't lock, don't suggest which application is preventing lock screen
but
have the right click slowly fade away if it's not used


Debian: 9.0 Stretch
gnome-terminal: 3.22.2-1
gnome: 1:3.22+3 / 3.22.2

-- System Information:
Debian Release: 9.0
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8),
LANGUAGE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages gnome depends on:
ii  avahi-daemon 0.6.32-2
ii  cheese   3.22.1-1+b1
ii  cups-pk-helper   0.2.6-1+b1
ii  desktop-base 9.0.2
ii  evolution3.22.6-1
ii  evolution-plugins3.22.6-1
ii  file-roller  3.22.3-1
ii  gedit-plugins3.22.0-1
ii  gimp 2.8.18-1
ii  gnome-calendar   3.22.4-2
ii  gnome-clocks 3.22.1-1
ii  gnome-color-manager  3.22.2-1
ii  gnome-core   1:3.22+3
ii  gnome-dictionary 3.20.0-3+b1
ii  gnome-documents  3.22.1-1
ii  gnome-getting-started-docs   3.22.0-1
ii  gnome-maps   3.22.2-1
ii  gnome-music  3.22.2-1
ii  gnome-orca   3.22.2-3
ii  gnome-screenshot 3.22.0-1+b1
ii  gnome-sound-recorder 3.21.92-2
ii  gnome-tweak-tool 3.22.0-1
ii  gnome-weather3.20.2-1
ii  gstreamer1.0-libav   1.10.4-1
ii  gstreamer1.0-plugins-ugly1.10.4-1
ii  inkscape 0.92.1-1
ii  libgsf-bin   1.14.41-1
ii  libgtk2-perl 2:1.2499-1
ii  libproxy1-plugin-networkmanager  0.4.14-2
ii  libreoffice-calc 1:5.2.7-1
ii  libreoffice-evolution1:5.2.7-1
ii  libreoffice-gnome1:5.2.7-1
ii  libreoffice-impress  1:5.2.7-1
ii  libreoffice-writer   1:5.2.7-1
ii  nautilus-sendto  3.8.4-2+b1
ii  network-manager-gnome1.4.4-1
ii  rhythmbox3.4.1-2+b1
ii  rhythmbox-plugin-cdrecorder  3.4.1-2+b1
ii  rhythmbox-plugins3.4.1-2+b1
ii  rygel-playbin0.32.1-3
ii  rygel-tracker0.32.1-3
ii  seahorse 3.20.0-3.1
ii  shotwell 0.25.4+really0.24.5-0.1
ii  simple-scan  3.23.2-1
ii  totem-plugins3.22.1-1
ii  vinagre  3.22.0-1+b1
ii  xdg-user-dirs-gtk0.10-1+b1

Versions of packages gnome recommends:
ii  brasero   3.12.1-4
ii  gnome-games   1:3.22+3
ii  polari3.22.2-1
ii  transmission-gtk  2.92-2

Versions of packages gnome suggests:
pn  alacarte 
pn  empathy  
pn  firefox-esr-l10n-all | firefox-l10n-all  
pn  goobox | sound-juicer
pn  xul-ext-gnome-keyring
pn  xul-ext-ublock-origin

Versions of packages gnome-core depends on:
ii  adwaita-icon-theme3.22.0-1
ii  at-spi2-core  2.22.0-6
ii  baobab3.22.1-1
ii  caribou   0.4.21-1+b1
ii  chrome-gnome-shell8-4
ii  dconf-cli 0.26.0-2+b1
ii  dconf-gsettings-backend   0.26.0-2+b1
ii  eog   3.20.5-1+b1
ii  evince3.22.1-3
ii  evolution-data-server 3.22.7-1
ii  firefox-esr   52.2.0esr-1~deb9u1
ii  fonts-cantarell   0.0.25-2
ii  gdm3  3.22.3-3
ii  gedit 3.22.0-2
ii  gkbd-capplet  3.22.0.1-1+b1
ii  glib-networking   2.50.0-1+b1
ii  gnome-backgrounds   

Bug#867731: RFS: smart-mode-line/2.10.1-1 [ITP]

[Nicholas D Steeves]

Package: sponsorship-requests
Severity: wishlist

Dear mentors,

I am looking for a sponsor for my package "smart-mode-line".
Smart-mode-line has a really nice right-indentation and display
truncated path function with substitutions (eg: ~/.emacs.d -> :ED:),
and many other neat features.

Package name: smart-mode-line
Version : 2.10.1-1
Upstream Author : Artur Malabarba 
URL : https://github.com/Malabarba/smart-mode-line
License : GPL-2+
Section : lisp

It builds these binary packages:

  elpa-smart-mode-line - Powerful and beautiful mode-line for Emacs
  elpa-smart-mode-line-powerline-theme - Smart-mode-line theme that mimics the 
powerline appearance

To access further information about this package, please visit the following 
URL:

  https://mentors.debian.net/package/smart-mode-line

Alternatively, one can download the package with dget using this command:

  dget -x 
https://mentors.debian.net/debian/pool/main/s/smart-mode-line/smart-mode-line_2.10.1-1.dsc

Alternatively, clone from here:

  git clone git+ssh://git.debian.org/git/pkg-emacsen/pkg/smart-mode-line.git

Thank you,
Nicholas

-- System Information:
Debian Release: 9.0
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-3-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_CA:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#867730: dummydroid: unusable due to authentication failure

[Phil Morrell]

Package: dummydroid
Version: 1.1-1
Severity: grave
Justification: renders package unusable

I am attempting to use gplaycli on stretch, for which I need a google play
device id.

After the Credentials step, no matter how I setup the google account, I always
get an error displayed on the Profile Upload step:

com.akdeniz.googleplaycrawler.GooglePlayException: Error=BadAuthentication

Google Auth methods tried:
* custom domain, two-factor
* custom domain, password only
* registered dummydro...@gmail.com

Steps to reproduce:
1) register account at https://accounts.google.com/SignUp
2) sign in at https://play.google.com/store
3) launch dummydroid
4) open Google_Nexus_6.prop (or Azpen_A727.prop)
5) click next through to Credentials
6) enter details registered and click next

I can't find a manpage or guess any flags to enter debug mode, so there is no
extra detail on stdout - please let me know if there's a way to test this, or
if you're unable to reproduce the error.

-- System Information:
Debian Release: 9.0
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8),
LANGUAGE=en_GB:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages dummydroid depends on:
ii  default-jre [java8-runtime]2:1.8-58
ii  jarwrapper 0.59
ii  libhttpclient-java 4.5.2-2
ii  libhttpcore-java   4.4.6-1
ii  openjdk-8-jre [java8-runtime]  8u131-b11-2

dummydroid recommends no packages.

dummydroid suggests no packages.

-- no debconf information

Bug#867529: thermald.service should be a conffile

[Ben Caradoc-Davies]

Workaround is to copy thermald.service to (for example) 
thermald-custom.service and apply local customisations, 
stop+disable+mask thermald.service, and enable+start 
thermald-custom.service.


Kind regards,

--
Ben Caradoc-Davies 
Director
Transient Software Limited 
New Zealand

Bug#867710: systemd don't stop user processes reliable on logout, even with KillUserProcesses=yes

[Michael Biebl]

Am 08.07.2017 um 21:11 schrieb Alf Gaida:
> Package: systemd
> Version: 233-10
> Severity: important
> 
> Seems to be a regression in 233 - Changed the value of KillUserProcesses two 
> years ago to prevent firefox
> and adacious on my login screen - but they are reliable back again.

This bug report lacks details. Can you please describe the problem in
more details otherwise it's not possible to help you.


-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#867729: /usr/share/icons/hicolor/symbolic/apps/firefox-symbolic.svg: Symbolic icon file empty

[Laurent Bigonville]

Package: firefox
Version: 54.0-2
Severity: normal
File: /usr/share/icons/hicolor/symbolic/apps/firefox-symbolic.svg

Hi,

Somehow, the firefox-symbolic.svg file is empty in the package.

This causes the icon on the top of gnome-shell to be empty as well.

Laurent Bigonville

-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (1, 
'experimental-debug'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.11.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=fr_BE.UTF-8, LC_CTYPE=fr_BE.UTF-8 (charmap=UTF-8), 
LANGUAGE=fr_BE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages firefox depends on:
ii  debianutils   4.8.1.1
ii  fontconfig2.12.3-0.2
ii  libatk1.0-0   2.22.0-1
ii  libc6 2.24-12
ii  libcairo-gobject2 1.14.10-1
ii  libcairo2 1.14.10-1
ii  libdbus-1-3   1.10.20-1
ii  libdbus-glib-1-2  0.108-2
ii  libevent-2.0-52.0.21-stable-3
ii  libffi6   3.2.1-6
ii  libfontconfig12.12.3-0.2
ii  libfreetype6  2.8-0.2
ii  libgcc1   1:7.1.0-9
ii  libgdk-pixbuf2.0-02.36.5-2
ii  libglib2.0-0  2.52.3-1
ii  libgtk-3-03.22.16-1
ii  libgtk2.0-0   2.24.31-2
pn  libhunspell-1.6-0 
ii  libjsoncpp1   1.7.4-3
ii  libnspr4  2:4.15-1
ii  libnss3   2:3.31-1
ii  libpango-1.0-01.40.6-1
ii  libsqlite3-0  3.19.3-3
ii  libstartup-notification0  0.12-4+b2
ii  libstdc++67.1.0-9
ii  libvpx4   1.6.1-3
ii  libx11-6  2:1.6.4-3
ii  libx11-xcb1   2:1.6.4-3
ii  libxcb-shm0   1.12-1
ii  libxcb1   1.12-1
ii  libxcomposite11:0.4.4-2
ii  libxdamage1   1:1.1.4-2+b3
ii  libxext6  2:1.3.3-1+b2
ii  libxfixes31:5.0.3-1
ii  libxrender1   1:0.9.10-1
ii  libxt61:1.1.5-1
ii  procps2:3.3.12-3
ii  zlib1g1:1.2.8.dfsg-5

firefox recommends no packages.

Versions of packages firefox suggests:
ii  fonts-lmodern  2.004.5-3
ii  fonts-stix [otf-stix]  1.1.1-4
ii  libcanberra0   0.30-3
ii  libgssapi-krb5-2   1.15-1
pn  mozplugger 

-- no debconf information

Bug#866986: bugs.debian.org: broken links to PTS and package pages

[Don Armstrong]

On Sat, 08 Jul 2017, Andrew Donnellan wrote:
> The link to "xyz package page" is still broken as of 8 July.

This should really be fixed now.

-- 
Don Armstrong  https://www.donarmstrong.com

The sheer ponderousness of the panel's opinion [...] refutes its
thesis far more convincingly than anything I might say. The panel's
labored effort to smother the Second Amendment by sheer body weight
has all the grace of a sumo wrestler trying to kill a rattlesnake by
sitting on it---and is just as likely to succeed.
 -- Alex Kozinski, Dissenting in Silveira v. Lockyer
(CV-00-00411-WBS p5983-4)

Bug#867728: unattended-upgrades: unattended upgrades stopped working on Debian Wheezy

[Mikulas Patocka]

Package: unattended-upgrades
Version: 0.79.5+wheezy2
Severity: important
Tags: patch

Dear Maintainer,
*** Please consider answering these questions, where appropriate ***

   * What led up to the situation?
   * What exactly did you do (or not do) that was effective (or
 ineffective)?

I set up unattended upgrades on Debian Wheezy. It worked, it automatically
upgraded packages every night, but it stopped upgrading the packages when
Debian Stretch was released.

   * What was the outcome of this action?

Unattended upgrades no longer work on Wheezy.

   * What outcome did you expect instead?

Unattended upgrades should work on Wheezy.

The reason for this bug is this - security upgrades for Wheezy were distributed
in the "oldstable" archive and upgrades for Jessie were distributes in the
"stable" archive. However, when Stretch was released, the archives were renamed
- Stretch is "stable", "Jessie is "oldstable" and Wheezy is "oldoldstable". The
unattended-upgrades configuration file in Wheezy upgrades the packages only
from "stable" and "oldstable" archive, it doesn't consider the possibility that
the archive may be named "oldoldstable". Thus, when Stretch was released and
the achives were renamed, unattended upgrades on Wheezy stopped working.

This is a patch for this bug:

--- 50unattended-upgrades   2017-07-07 23:57:21.0 +0200
+++ /etc/apt/apt.conf.d/50unattended-upgrades   2017-07-07 23:57:23.0
+0200
@@ -9,6 +9,7 @@
 //  "o=Debian,a=proposed-updates";
 "origin=Debian,archive=stable,label=Debian-Security";
 "origin=Debian,archive=oldstable,label=Debian-Security";
+"origin=Debian,archive=oldoldstable,label=Debian-Security";
 };

 // List of packages to not update



-- System Information:
Debian Release: 7.11
  APT prefers oldoldstable-updates
  APT policy: (500, 'oldoldstable-updates'), (500, 'oldoldstable')
Architecture: i386 (i686)

Kernel: Linux 3.10.101 (PREEMPT)
Locale: LANG=cs_CZ.utf8, LC_CTYPE=cs_CZ.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages unattended-upgrades depends on:
ii  apt0.9.7.9+deb7u7
ii  apt-utils  0.9.7.9+deb7u7
ii  debconf [debconf-2.0]  1.5.49
ii  lsb-base   4.1+Debian8+deb7u1
ii  lsb-release4.1+Debian8+deb7u1
ii  python 2.7.3-4+deb7u1
ii  python-apt 0.8.8.2
ii  ucf3.0025+nmu3
ii  xz-utils   5.1.1alpha+20120614-2

unattended-upgrades recommends no packages.

Versions of packages unattended-upgrades suggests:
pn  bsd-mailx  
ii  exim4-daemon-light [mail-transport-agent]  4.80-7+deb7u5

-- Configuration Files:
/etc/apt/apt.conf.d/50unattended-upgrades changed [not included]

-- debconf information:
* unattended-upgrades/enable_auto_updates: true
--- 50unattended-upgrades	2017-07-07 23:57:21.0 +0200
+++ /etc/apt/apt.conf.d/50unattended-upgrades	2017-07-07 23:57:23.0 +0200
@@ -9,6 +9,7 @@
 //  "o=Debian,a=proposed-updates";
 "origin=Debian,archive=stable,label=Debian-Security";
 "origin=Debian,archive=oldstable,label=Debian-Security";
+"origin=Debian,archive=oldoldstable,label=Debian-Security";
 };
 
 // List of packages to not update
--- 50unattended-upgrades	2017-07-07 23:57:21.0 +0200
+++ /etc/apt/apt.conf.d/50unattended-upgrades	2017-07-07 23:57:23.0 +0200
@@ -9,6 +9,7 @@
 //  "o=Debian,a=proposed-updates";
 "origin=Debian,archive=stable,label=Debian-Security";
 "origin=Debian,archive=oldstable,label=Debian-Security";
+"origin=Debian,archive=oldoldstable,label=Debian-Security";
 };
 
 // List of packages to not update
--- 50unattended-upgrades	2017-07-07 23:57:21.0 +0200
+++ /etc/apt/apt.conf.d/50unattended-upgrades	2017-07-07 23:57:23.0 +0200
@@ -9,6 +9,7 @@
 //  "o=Debian,a=proposed-updates";
 "origin=Debian,archive=stable,label=Debian-Security";
 "origin=Debian,archive=oldstable,label=Debian-Security";
+"origin=Debian,archive=oldoldstable,label=Debian-Security";
 };
 
 // List of packages to not update

Bug#867727: RFS: parlatype/1.5.1-1 [ITP]

[Gabor Karsay]

Package: sponsorship-requests
Severity: wishlist

Dear mentors,

I am looking for a sponsor for my package "parlatype"

* Package name: parlatype
  Version : 1.5.1-1
  Upstream Author : Gabor Karsay 
* URL : http://gkarsay.github.io/parlatype/
* License : GPL-3
  Section : gnome

It builds those binary packages:

gir1.2-parlatype-1.0 - Library for Parlatype - gir bindings
libparlatype-dev - Library for Parlatype - development version
libparlatype-doc - Documentation files for the Parlatype library
libparlatype1 - Library for Parlatype - runtime version
parlatype  - Minimal audio player for manual speech transcription
parlatype-libreoffice-helpers - Set of macros for LibreOffice

To access further information about this package, please visit the 
following URL:


https://mentors.debian.net/package/parlatype

Alternatively, one can download the package with dget using this command:

dget -x 
https://mentors.debian.net/debian/pool/main/p/parlatype/parlatype_1.5.1-1.dsc


More information about parlatype can be obtained from 
http://gkarsay.github.io/parlatype/.


I am also the upstream author. The first public release was in January 
2016, the program is in a good state, is already translated in a few 
languages and fills a gap for an easy to use transcription utility 
(manual transcription). I'm not aware of another program in Debian for 
GNOME, targeting transcriptions and also offering a waveform.


I was packaging it already for a time for Ubuntu. The package was built 
with pbuilder in a sid chroot. There is one lintian warning that I don't 
know what to do with: hardening-no-fortify-functions. I think the 
compiler flags are set right, but I don't know if I should override it.


There's also one thing unclear to me about the procedure: Is this 
sponsorship request enough or should I file a WNPP bug, too?


Thank you
Gabor Karsay

Bug#867726: cppcheck: segfault on malformed enum

[Jakub Wilk]

Package: cppcheck
Version: 1.76.1-1

cppcheck crashes on the attached file:

  $ cppcheck enum.cxx
  Checking enum.cxx ...
  Segmentation fault

Backtrace:

#0  0x566dcbb3 in SymbolDatabase::SymbolDatabase (this=0x567e8e30, 
tokenizer=0xcc18, settings=0xd1c4, errorLogger=0xd1b4) at 
lib/symboldatabase.cpp:1230
#1  0x567019e7 in Tokenizer::createSymbolDatabase (this=0xcc18) at 
lib/tokenize.cpp:9292
#2  0x56732a26 in Tokenizer::simplifyTokens1 (this=0xcc18, 
configuration="") at lib/tokenize.cpp:1716
#3  0x56682f32 in CppCheck::processFile (this=0xd1b4, filename="enum.cxx", 
cfgname="", fileStream=...) at lib/cppcheck.cpp:267
#4  0x566848a0 in CppCheck::check (this=0xd1b4, path="enum.cxx") at 
lib/cppcheck.cpp:74
#5  0x5659b4d5 in CppCheckExecutor::check_internal (this=, 
cppcheck=..., argv=0xd774) at cli/cppcheckexecutor.cpp:820
#6  0x5659c2ea in CppCheckExecutor::check (this=0xd66c, argc=2, 
argv=0xd774) at cli/cppcheckexecutor.cpp:185
#7  0x56588c71 in main (argc=2, argv=0xd774) at cli/main.cpp:136

Found using American fuzzy lop:
http://lcamtuf.coredump.cx/afl/


-- System Information:
Architecture: i386

Versions of packages cppcheck depends on:
ii  libc62.24-12
ii  libgcc1  1:7.1.0-9
ii  libpcre3 2:8.39-3
ii  libstdc++6   7.1.0-9
ii  libtinyxml2-44.0.1-1
ii  python   2.7.13-2
ii  python-pygments  2.2.0+dfsg-1

--
Jakub Wilk
enum { e=, e2=e1 };

Bug#842378: Xfce needs a policykit authentication agent

[Hartmut Buhrmester]

I think, in Debian 8 Jessie it worked like this:

gvfs always depends on gvfs-daemons.

gvfs-daemons recommends policykit-1-gnome, which was also a virtual 
package, provided by lxsession and mate-polkit.


https://packages.debian.org/jessie/gvfs-daemons


This dependency is lost in Debian 9 Stretch:

https://packages.debian.org/stretch/gvfs-daemons


But I don't think, that this recommendation should be restored. lxpolkit 
would be a much better solution for Xfce, if it could be launched 
automatically.


Regards,
Hartmut Buhrmester

Bug#867725: CVE-2017-9869 CVE-2017-9870 CVE-2017-9871 CVE-2017-9872

[Moritz Muehlenhoff]

Source: lame
Severity: grave
Tags: security

Hi,
please see:

CVE-2017-9869:
https://blogs.gentoo.org/ago/2017/06/17/lame-global-buffer-overflow-in-ii_step_one-layer2-c/

CVE-2017-9870:
https://blogs.gentoo.org/ago/2017/06/17/lame-global-buffer-overflow-in-iii_i_stereo-layer3-c/
  
CVE-2017-9871:
https://blogs.gentoo.org/ago/2017/06/17/lame-stack-based-buffer-overflow-in-iii_i_stereo-layer3-c/

CVE-2017-9872:
https://blogs.gentoo.org/ago/2017/06/17/lame-stack-based-buffer-overflow-in-iii_dequantize_sample-layer3-c/

Cheers,
Moritz

 

Bug#866865: (no subject)

[Francesco Muzio]

I'm running a stable Debian and I can confirm, this bug happen to me 
always when I use sddm with openrc (or simply boot with sysvinit-core, 
sysv-rc and systemd-shim installed)


With systemd reboot/poweroff/suspend options are "almost" always 
available (9 boot on 10)

Bug#842378: Xfce needs a policykit authentication agent

[Hartmut Buhrmester]

I also noticed, that I can mount external USB drives in Thunar, but I 
cannot mount partitions on the internal hard disk drive, which require 
root privileges. Then I get the same error message: "Authentication failed".


The problem with Xfce and Thunar is, that they use gvfs and policykit, 
but they don't provide any policykit authentication agent. This agent is 
what displays the authorization dialog. It is usually left to the 
desktop environment to provide a policykit authentication agent, because 
it should match the user interface of the other applications:


LXDE uses lxpolkit (GTK2)
https://packages.debian.org/stretch/lxpolkit

LXQt uses lxqt-policykit (Qt5)
https://packages.debian.org/stretch/lxqt-policykit

MATE uses mate-polkit (GTK3)
https://packages.debian.org/stretch/mate-polkit

GNOME uses policykit-1-gnome (GTK3)
https://packages.debian.org/stretch/policykit-1-gnome

Xfce just doesn't have any policykit authentication agent. I searched 
for it, but I didn't find any.



Actually, lxpolkit works fine for Xfce, because it also uses GTK2 and is 
rather lightweight. It is not started automatically, because the file 
/etc/xdg/autostart/lxpolkit.desktop has the line "Hidden=true" in it. If 
it is launched manually, it will provide the authorization dialog for 
Thunar, and then I can mount any partitions, which requires root privileges.


Any other policykit authentication agent will also work, because they 
all use the same dbus interface.


So, to completely reveal this bug, you should do these steps:

1) Quit any other policykit agent, which may be running

2) Try to mount a partition in Thunar, which requires root privileges. 
This should fail at this point.


3) Launch lxpolkit

4) Try again to mount the partition. lxpolkit shows the dialog to enter 
the root password.



I'm sure, that in Debian 8 Jessie, somehow policykit-1-gnome would be 
installed. Then at least one working authentication agent would be 
available. But with its dependency on GTK3, it was not the best solution 
for lightweight desktop environments.


Regards,
Hartmut Buhrmester

Bug#867724: Multiple security issues

[Moritz Muehlenhoff]

Source: faad2
Severity: important
Tags: security

Multiple vulnerabilities in faad2, please see:
http://seclists.org/fulldisclosure/2017/Jun/32 

Cheers,
Moritz

Bug#867723: ejabberd: `dpkg-reconfigure ejabberd` fails with `Can't register admin user`

[Soren Stoutner]

Package: ejabberd
Version: 17.04-1~exp2
Severity: grave
Justification: renders package unusable

Dear Maintainer,

After performing a new ejabberd install on Debian testing, running 
`dpkg-reconfigure ejabberd` produces the folling error:


root@mail:/home/soren# dpkg-reconfigure ejabberd

The ejabberd database has been backed up to 
/var/backups/ejabberd-2017-07-08T14:08:25.vzaIOQ/ejabberd-database.

Replacing config file /etc/ejabberd/ejabberd.yml with new version
Waiting for ejabberd to register admin user
Can't register admin user "so...@ejabberd.stoutner.com".


A 1.5 MB `erl_crash.dump` file is created in `/var/log/ejabberd`.  I can upload 
the file to a webserver and link to it if it is valuable for troubleshooting.

I initially enountered this error with the 16.09-4 package in testing.  
Upgrading to the 17.04-1~exp2 package in experimental produces the same result.

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-3-amd64 (SMP w/6 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE= 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages ejabberd depends on:
ii  adduser3.115
ii  debconf1.5.62
ii  erlang-asn11:20.0+dfsg-2
ii  erlang-base [erlang-abi-17.0]  1:20.0+dfsg-2
ii  erlang-crypto  1:20.0+dfsg-2
ii  erlang-inets   1:20.0+dfsg-2
ii  erlang-jiffy   0.14.8+dfsg-1
ii  erlang-lager   3.2.4-1
ii  erlang-mnesia  1:20.0+dfsg-2
ii  erlang-odbc1:20.0+dfsg-2
ii  erlang-p1-cache-tab1.0.7-1~exp1
ii  erlang-p1-iconv1.0.4-1~exp1
ii  erlang-p1-stringprep   1.0.8-1~exp1
ii  erlang-p1-tls  1.0.11-1~exp1
ii  erlang-p1-utils1.0.8-1~exp2
ii  erlang-p1-xml  1.1.22-1~exp1
ii  erlang-p1-xmpp 1.1.9-1~exp1
ii  erlang-p1-yaml 1.0.9-1~exp1
ii  erlang-p1-zlib 1.0.2-1~exp1
ii  erlang-ssl 1:20.0+dfsg-2
ii  erlang-syntax-tools1:20.0+dfsg-2
ii  erlang-xmerl   1:20.0+dfsg-2
ii  init-system-helpers1.48
ii  lsb-base   9.20161125
ii  openssl1.1.0f-3
ii  ucf3.0036

ejabberd recommends no packages.

Versions of packages ejabberd suggests:
pn  apparmor 
pn  apparmor-utils   
pn  ejabberd-contrib 
pn  erlang-luerl 
ii  erlang-p1-mysql  1.0.1-4
pn  erlang-p1-oauth2 
pn  erlang-p1-pam
pn  erlang-p1-pgsql  
pn  erlang-p1-sip
pn  erlang-p1-sqlite3
pn  erlang-p1-stun   
pn  erlang-redis-client  
ii  imagemagick  8:6.9.7.4+dfsg-11
ii  imagemagick-6.q16 [imagemagick]  8:6.9.7.4+dfsg-11
pn  libunix-syslog-perl  
pn  yamllint 

-- Configuration Files:
/etc/ejabberd/inetrc [Errno 13] Permission denied: '/etc/ejabberd/inetrc'
/etc/ejabberd/modules.d/README.modules [Errno 13] Permission denied: 
'/etc/ejabberd/modules.d/README.modules'

-- debconf information:
* ejabberd/hostname: ejabberd.stoutner.com
* ejabberd/user: soren
  ejabberd/nomatch:
  ejabberd/invaliduser:

Bug#867722: xul-ext-imap-acl: please depend on icedove | thunderbird

[Roland Hieber]

Package: xul-ext-imap-acl
Version: 0.2.7-1
Severity: normal

Dear Maintainer,

Icedove has since been re-rebranded to Thunderbird, but xul-ext-imap-acl still
depends on icedove only. Please change the dependency accordingly.

Cheers,

 - Roland

-- System Information:
Debian Release: buster/sid
  APT prefers testing-debug
  APT policy: (500, 'testing-debug'), (500, 'testing'), (170, 'unstable'), (1, 
'unstable-debug'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-3-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages xul-ext-imap-acl depends on:
ii  icedove1:45.8.0-3
ii  thunderbird [icedove]  1:45.8.0-3

xul-ext-imap-acl recommends no packages.

xul-ext-imap-acl suggests no packages.

-- debconf-show failed

Bug#807317: again: future of Moodle in Debian: ship with Debian 10 Buster in 2019?

[Moritz Muehlenhoff]

On Fri, Mar 10, 2017 at 11:50:45AM +0100, Joost van Baal-Ilić wrote:
> Hi,
> 
> Is any DD interested in working on shipping Moodle with upcoming upcoming
> Debian 10 Buster release?

Did anyone step up? If not, should we proceed with removal at this point?

Cheers,
Moritz

Bug#867721: CVE-2017-9501

[Bastien ROUCARIES]

package: src:imagemagick
Version: 8:6.9.7.4+dfsg-11
Severity: important
Tags: security
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.8.9.9-5+deb8u9
control: found -1 8:6.7.7.10-5+deb7u14
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/491

An assertion failure was found in the function LockSemaphoreInfo,
which allows attackers to cause a denial of service via a crafted
file.

Bug#854498: moving forward?

[astian]

Stretch was released, could this move forward now?  I think this [0] patch
may help fix/diagnose a bug I observed in the current version of the package in
sid.

  0: http://repo.or.cz/socat.git/commit/6b596b8852d8fad2675894e3ceb18a04801eaf23

Also, the tracker page [1] shows a 2.0 beta as new available upstream version.
That beta is actually older than the newest release (1.7.3.2).  I wonder if
this is a bug in the tracker that contributed to the new release being
overlooked for so long.

  1: https://tracker.debian.org/pkg/socat

Bug#867720: CVE-2017-11109

[Moritz Muehlenhoff]

Source: vim
Severity: important
Tags: security

This was assigned CVE-2017-11109:
https://bugzilla.redhat.com/show_bug.cgi?id=1468492

Cheers,
Moritz

Bug#864074: defaults.vim: broken configuration

[Martin Steigerwald]

Dear James.

Thank you for your detailed answer.

James McCoy - 05.07.17, 21:09:
> On Wed, Jul 05, 2017 at 09:55:06PM +0200, Martin Steigerwald wrote:
> > Dear Maintainer.
> > 
> > I know of this:
> > > Vim will load $VIMRUNTIME/defaults.vim if the user does not have a
> > > vimrc.
> > > This happens after /etc/vim/vimrc(.local) are loaded, so it will
> > > override
> > > any settings in these files.
> > 
> > But the settings in "defaults.vim" IMHO are just *completely* broken for
> > several reasons:
> > 
> > 1) Maybe due to a bug in Vim regarding mouse handling with "set mouse=a"
> > Vim is just madly moving around the cursor and doing whatelse not for
> > easily a minute in a lot of freshly installed Debian 9 VMs accesses via
> > SSH and screen from Plasma´s Konsole terminal emulator.
> 
> These problems are more typically due to people/software setting
> incorrect values for $TERM and/or related options in Vim ('ttymouse',
> 'term', etc.).  Vim can only act on the information it has, so when
> that's incorrect -- garbage in, garbage out.

$TERM is "xterm-256color" in console.

> That being said, "set mouse=a" _is_ one setting I argued against
> upstream.  I would encourage you to post your experiences and reasoning
> against that setting to v...@vim.org.  I'd rather see this changed
> upstream instead of piecewise changing parts of defaults.vim.

I am not sure I want to do this.

> > 3) Vim wordwraps by default now. I wonder about how many admins will break
> > config files with long lines accidently by that new default behaviour.
> 
> I don't see anything in defaults.vim that changes 'textwidth' from its
> default value of 0, so I'm not sure what you're experiencing here.
> Maybe ":verbose set textwidth?" will help next time you run into this
> issue.

I have seen it word-wrap, well now I disabled defaults.vim on all my systems. 
I comment out the disabling on one system. I may do so next week. On my laptop 
I also have ~/.vimrc files.

> > I think it is broken behaviour, that "defaults.vim" is loaded *after*
> > "vimrc.local". The sane default would be this order:
> > 
> > 1. Global vim configuration
> > 2. /etc/vim/vimrc.local
> > 3. $HOME/.vimrc
> 
> This _is_ the behavior.  The _only_ way that defaults.vim is used is
> when $HOME/.vimrc doesn't exist.
> 
> Note that /etc/vim/vimrc.local is a Debian-specific extension of the
> system-wide vimrc, to avoid conffile prompts during upgrades, so 1 & 2
> are the same thing.

My order wasn´t complete. I think it should be:

1. Global vim configuration
2. /etc/vim/vimrc.local
3. $HOME/.vimrc
4. defaults.vim

so that defaults.vim can only ever set any setting that has *not* been set by 
any of the other configuration files.

It is completely unintuitive that defaults.vim overwrites settings in 
vimrc.local by default. If I write "set mouse=" in there, I mean it. I really 
dislike software that pretends it knows better than me unless I tell that 
software to stop that behavior.

Never *ever* overwrite user/admin made settings.

> defaults.vim is intentionally loaded _after_ $HOME/.vimrc so that Vim
> can choose not to load it when $HOME/.vimrc exists.  The situation
> you're running into is that you don't have $HOME/.vimrc and therefore
> are having the system-wide values adjusted by defaults.vim.

Alternatively vim should not load defaults.vim if vimrc.local exists I think.

Thanks,
-- 
Martin

signature.asc
Description: This is a digitally signed message part.

Bug#867719: phpldapadmin: CVE-2017-11107

[Salvatore Bonaccorso]

Source: phpldapadmin
Version: 1.2.2-5
Severity: important
Tags: security upstream
Forwarded: https://github.com/leenooks/phpLDAPadmin/issues/50

Hi,

the following vulnerability was published for phpldapadmin.

CVE-2017-11107[0]:
| phpLDAPadmin through 1.2.3 has XSS in htdocs/entry_chooser.php via the
| form, element, rdn, or container parameter.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-11107
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11107
[1] https://github.com/leenooks/phpLDAPadmin/issues/50

Regards,
Salvatore

Bug#867718: CVE-2017-11108

[Moritz Muehlenhoff]

Package: tcpdump
Severity: important
Tags: security

This was assigned CVE-2017-11108:
https://bugzilla.redhat.com/show_bug.cgi?id=1468504

Cheers,
Moritz

Bug#867717: CVE-2017-11110

[Moritz Muehlenhoff]

Package: catdoc
Severity: grave
Tags: security

This was assigned CVE-2017-0:
https://bugzilla.redhat.com/show_bug.cgi?id=1468471

Cheers,
Moritz

Bug#867716: stretch-pu: package debsecan/0.4.19~deb9u1

[Salvatore Bonaccorso]

Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu

Hi SRM, X-Debbug-CC'ed Florian Weimer

The upload of debsecan to unstable fixed two bugs with respect to
0.4.18 as in stretch. One is the use of https_proxy which is needed
for proxy configuration with https:// URLs. This was #749424.

Then there was as well #789196, which adds support for stretch (and
buster), as well to be choosen from the debconf menu.

Unfortunately the 0.4.18 source tarball, contained .git and some out
files in testsuite. I'm attaching only the result from:

debdiff debsecan_0.4.18.dsc debsecan_0.4.19~deb9u1.dsc | filterdiff -x 
'*/.git/*'

Alternatively if that's prefered, we can cherry pick the two commits
and do a 0.4.18.1 upload, but doing a rebuild from 0.4.19 from
unstable for stretch would resolve as well the .git and
testsuite/*.out files.

Any preference on your end?

Changelog:

+debsecan (0.4.19~deb9u1) stretch; urgency=medium
+
+  * Non-maintainer upload.
+  * Rebuild for stretch
+
+ -- Salvatore Bonaccorso   Sat, 08 Jul 2017 22:52:33 +0200
+
+debsecan (0.4.19) unstable; urgency=medium
+
+  * Add support for stretch and buster, using patches from Michael
+Stapelberg and Salvatore Bonaccorso.  Closes: #789196
+  * Python needs https_proxy for proxy configuration with https:// URLs.
+Apply patch from Michael Stapelberg.  Closes: #749424
+  * Update project URLs.
+
+ -- Florian Weimer   Sun, 02 Jul 2017 12:31:29 +0200

Regards,
Salvatore


debsecan_0.4.19~deb9u1.debdiff.gz
Description: application/gzip

Bug#867715: openssl: "unknown group" error messages from 'openssl speed' ECDSA and ECDH

[Matthew Woodcraft]

Package: openssl
Version: 1.1.0f-3
Severity: normal

Running 'openssl speed', I see error messages from ECDSA and ECDH:

ECDSA failure.
4146407744:error:100AE081:elliptic curve 
routines:EC_GROUP_new_by_curve_name:unknown group:../crypto/ec/ec_curve.c:3100:

amd

ECDH failure.
4146645312:error:100AE081:elliptic curve 
routines:EC_GROUP_new_by_curve_name:unknown group:../crypto/ec/ec_curve.c:3100:
4146645312:error:100AE081:elliptic curve 
routines:EC_GROUP_new_by_curve_name:unknown group:../crypto/ec/ec_curve.c:3100:


The errors seem to be reliably reproducible, with the same error messages
except that in each case the first number changes.




Full output follows:

% openssl speed ecdsa
Doing 160 bit sign ecdsa's for 10s: 94968 160 bit ECDSA signs in 9.98s
Doing 160 bit verify ecdsa's for 10s: 33582 160 bit ECDSA verify in 10.00s
Doing 192 bit sign ecdsa's for 10s: 94465 192 bit ECDSA signs in 10.00s
Doing 192 bit verify ecdsa's for 10s: 25142 192 bit ECDSA verify in 9.98s
Doing 224 bit sign ecdsa's for 10s: 72176 224 bit ECDSA signs in 10.00s
Doing 224 bit verify ecdsa's for 10s: 18713 224 bit ECDSA verify in 10.00s
Doing 256 bit sign ecdsa's for 10s: 115773 256 bit ECDSA signs in 9.98s
Doing 256 bit verify ecdsa's for 10s: 50658 256 bit ECDSA verify in 10.00s
Doing 384 bit sign ecdsa's for 10s: 24252 384 bit ECDSA signs in 9.98s
Doing 384 bit verify ecdsa's for 10s: 6327 384 bit ECDSA verify in 10.00s
Doing 521 bit sign ecdsa's for 10s: 11092 521 bit ECDSA signs in 10.00s
Doing 521 bit verify ecdsa's for 10s: 2917 521 bit ECDSA verify in 10.00s
Doing 163 bit sign ecdsa's for 10s: 39258 163 bit ECDSA signs in 10.00s
Doing 163 bit verify ecdsa's for 10s: 16076 163 bit ECDSA verify in 10.00s
Doing 233 bit sign ecdsa's for 10s: 20407 233 bit ECDSA signs in 10.00s
Doing 233 bit verify ecdsa's for 10s: 9629 233 bit ECDSA verify in 10.00s
Doing 283 bit sign ecdsa's for 10s: 13373 283 bit ECDSA signs in 10.00s
Doing 283 bit verify ecdsa's for 10s: 5377 283 bit ECDSA verify in 10.00s
Doing 409 bit sign ecdsa's for 10s: 5472 409 bit ECDSA signs in 10.00s
Doing 409 bit verify ecdsa's for 10s: 2708 409 bit ECDSA verify in 10.00s
Doing 571 bit sign ecdsa's for 10s: 2251 571 bit ECDSA signs in 10.00s
Doing 571 bit verify ecdsa's for 10s: 1144 571 bit ECDSA verify in 10.00s
Doing 163 bit sign ecdsa's for 10s: 39505 163 bit ECDSA signs in 9.98s
Doing 163 bit verify ecdsa's for 10s: 15082 163 bit ECDSA verify in 10.00s
Doing 233 bit sign ecdsa's for 10s: 20490 233 bit ECDSA signs in 10.00s
Doing 233 bit verify ecdsa's for 10s: 8940 233 bit ECDSA verify in 10.00s
Doing 283 bit sign ecdsa's for 10s: 13441 283 bit ECDSA signs in 9.98s
Doing 283 bit verify ecdsa's for 10s: 4926 283 bit ECDSA verify in 9.98s
Doing 409 bit sign ecdsa's for 10s: 5451 409 bit ECDSA signs in 10.00s
Doing 409 bit verify ecdsa's for 10s: 2447 409 bit ECDSA verify in 10.00s
Doing 571 bit sign ecdsa's for 10s: 2282 571 bit ECDSA signs in 10.00s
Doing 571 bit verify ecdsa's for 10s: 1020 571 bit ECDSA verify in 10.00s
ECDSA failure.
4146407744:error:100AE081:elliptic curve 
routines:EC_GROUP_new_by_curve_name:unknown group:../crypto/ec/ec_curve.c:3100:
OpenSSL 1.1.0f  25 May 2017
built on: reproducible build, date unspecified
options:bn(64,32) rc4(8x,mmx) des(long) aes(partial) blowfish(ptr)
compiler: gcc -DDSO_DLFCN -DHAVE_DLFCN_H -DNDEBUG -DOPENSSL_THREADS 
-DOPENSSL_NO_STATIC_ENGINE -DOPENSSL_PIC -DOPENSSL_BN_ASM_PART_WORDS 
-DOPENSSL_IA32_SSE2 -DOPENSSL_BN_ASM_MONT -DOPENSSL_BN_ASM_GF2m -DSHA1_ASM 
-DSHA256_ASM -DSHA512_ASM -DRC4_ASM -DMD5_ASM -DRMD160_ASM -DAES_ASM 
-DVPAES_ASM -DWHIRLPOOL_ASM -DGHASH_ASM -DECP_NISTZ256_ASM -DPADLOCK_ASM 
-DPOLY1305_ASM -DOPENSSLDIR="\"/usr/lib/ssl\"" 
-DENGINESDIR="\"/usr/lib/i386-linux-gnu/engines-1.1\""
  signverifysign/s verify/s
 160 bit ecdsa (secp160r1)   0.0001s   0.0003s   9515.8   3358.2
 192 bit ecdsa (nistp192)   0.0001s   0.0004s   9446.5   2519.2
 224 bit ecdsa (nistp224)   0.0001s   0.0005s   7217.6   1871.3
 256 bit ecdsa (nistp256)   0.0001s   0.0002s  11600.5   5065.8
 384 bit ecdsa (nistp384)   0.0004s   0.0016s   2430.1632.7
 521 bit ecdsa (nistp521)   0.0009s   0.0034s   1109.2291.7
 163 bit ecdsa (nistk163)   0.0003s   0.0006s   3925.8   1607.6
 233 bit ecdsa (nistk233)   0.0005s   0.0010s   2040.7962.9
 283 bit ecdsa (nistk283)   0.0007s   0.0019s   1337.3537.7
 409 bit ecdsa (nistk409)   0.0018s   0.0037s547.2270.8
 571 bit ecdsa (nistk571)   0.0044s   0.0087s225.1114.4
 163 bit ecdsa (nistb163)   0.0003s   0.0007s   3958.4   1508.2
 233 bit ecdsa (nistb233)   0.0005s   0.0011s   2049.0894.0
 283 bit ecdsa (nistb283)   0.0007s   0.0020s   1346.8493.6
 409 bit ecdsa (nistb409)   0.0018s   0.0041s545.1244.7
 571 bit ecdsa (nistb571)   0.0044s   0.0098s228.2102.0
 253 bit ecdsa (X25519)   0.s   0.s  inf  inf

% openssl speed ecdh
Doing 160 bit  ecdh's for 10s: 40040 160-bit ECDH ops 

Bug#867714: ITP: golang-github-stripe-krl -- OpenSSH Key Revocation List support for Go

[root]

Package: wnpp
Severity: wishlist
Owner: Patrick O'Doherty 

* Package name: golang-github-stripe-krl
  Version : 0.0~git20160721.0.fd565ec-1
  Upstream Author : Stripe
* URL : https://github.com/stripe/krl
* License : Expat
  Programming Lang: Go
  Description : OpenSSH Key Revocation List support for Go
 krl provides functionality for reading and writing SSH Key Revocation Lists
 (KRLs).

Bug#834653: nlopt: typo in debian/rules (override_dh_auto_reconf -> override_dh_autoreconf)

[Sergey B Kirpichev]

On Sat, Jul 08, 2017 at 09:42:32PM +0100, Chris Lamb wrote:
> Uploaded :)  Do upgrade your lintian for your next package preparation
> (eg. for at least Standards-Version: 4.0.0)

I hope so, but not all warnings were fixed.

Bug#867712: lucene-solr: CVE-2017-3163

[Salvatore Bonaccorso]

Source: lucene-solr
Version: 3.6.2+dfsg-5
Severity: important
Tags: security upstream
Forwarded: https://issues.apache.org/jira/browse/SOLR-10031

Hi,

the following vulnerability was published for lucene-solr.

CVE-2017-3163[0]:
No description was found (try on a search engine)

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-3163
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3163
[1] https://issues.apache.org/jira/browse/SOLR-10031

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

p.s.: Out of interest, but I do not know the background, is there a
  reason in Debian lucene-solr never was updated to newer 4.x, 5,x,
  6.x versions?

Bug#834653: nlopt: typo in debian/rules (override_dh_auto_reconf -> override_dh_autoreconf)

[Chris Lamb]

Hi Sergey,

> Chris, could you review and upload package (I don't have
> permissions for this package, as before).
> 
> Package was uploaded to m.d.n:
> https://mentors.debian.net/package/nlopt

Uploaded :)  Do upgrade your lintian for your next package preparation
(eg. for at least Standards-Version: 4.0.0)


Best wishes,

-- 
  ,''`.
 : :'  : Chris Lamb, Debian Project Leader
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#867713: transition: gnome-panel 3.24

[Dmitry Shachnev]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition

Dear release team,

I would like to request a transition for my gnome-panel package, to
switch from libpanel-applet0 to libpanel-applet3.

The auto-generated tracker [1] has correct parameters.

Impacted packages:

* gnome-panel: will do a sourceful upload (copy from experimental);
* gnome-applets: will do a sourceful upload (copy from experimental);
* command-runner-applet: needs to be removed from testing, see #838903;
* gnubiff: needs a binNMU;
* sensors-applet: needs a binNMU;
* uim: needs a patch from #866388 (I intend to NMU it);
* workrave: needs a binNMU.

[1]: https://release.debian.org/transitions/html/auto-gnome-panel.html

--
Dmitry Shachnev


signature.asc
Description: PGP signature

Bug#867711: emacspeak: incompatible with emacs23

[Andreas Beckmann]

Control: tag -1 - moreinfo

On 2017-07-08 21:58, Paul Gevers wrote:
> On 07/08/17 21:40, Andreas Beckmann wrote:
>> In case the package was not part of an intermediate stable release,
>> the version from the preceding stable release was kept installed.

> Can you clarify what you mean by this?

That doesn't apply in your case. It's for packages like compiz that were
last seen in squeeze (or something) and reappeared in stretch (with
sightly different package layout), having upgrade problems if some old
bits were still installed.

> Emacs23 hasn't been in Debian stable since wheezy. I removed the checks
> for < emacs24 from my latest upload because of that. Do you think I
> really should keep on checking these old versions? And is so, how far do
> I need to go back? emacs22? emacs21? And until when?

Unlike many other packages, the old emacsXX packages seem to stay
(co-)installable forever ... there is nothing on the upgrade path that
makes them go away. But having them installed, triggers stuff to be run
with them at installation time of other packages.

I would probably add
  Breaks: emacs23
(and maybe more old versions previously covered by the removed checks)
for one stable release and thereafter you can be sure that these old
cruft versions can't do harm to your package in the future.

> For what it is worth, in Depends emacspeak has emacs25 | emacs (>=47.0~)
> because emacspeak is also incompatible with emacs24 (but doesn't fail on
> it).

Andreas

Bug#743474: linphone 4.0

[Raphaël]

http://www.linphone.org/
> 2017-06-26
> Linphone 4.0 for desktop platforms is available!


(since I upgraded to Stretch Linphone 3.6 is unusable [hanging when
call starts]. That makes upgrading appealing)

Bug#867711: emacspeak: incompatible with emacs23

[Paul Gevers]

Control: tags -1 moreinfo

On 07/08/17 21:40, Andreas Beckmann wrote:
> In case the package was not part of an intermediate stable release,
> the version from the preceding stable release was kept installed.

Can you clarify what you mean by this?

Emacs23 hasn't been in Debian stable since wheezy. I removed the checks
for < emacs24 from my latest upload because of that. Do you think I
really should keep on checking these old versions? And is so, how far do
I need to go back? emacs22? emacs21? And until when?

For what it is worth, in Depends emacspeak has emacs25 | emacs (>=47.0~)
because emacspeak is also incompatible with emacs24 (but doesn't fail on
it).

Paul



signature.asc
Description: OpenPGP digital signature

Bug#867711: emacspeak: incompatible with emacs23

[Andreas Beckmann]

Package: emacspeak
Version: 46.0+dfsg-2
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts

Hi,

during a test with piuparts I noticed your package fails to upgrade from
'squeeze' to 'wheezy' to 'jessie' to stretch to buster..
It installed fine in 'squeeze', and upgraded to 'wheezy', 'jessie', and
'stretch' successfully,
but then the upgrade to 'buster' failed.

In case the package was not part of an intermediate stable release,
the version from the preceding stable release was kept installed.

>From the attached log (scroll to the bottom...):

  Setting up emacspeak (46.0+dfsg-2) ...
  Install emacspeak for emacs23
  /usr/lib/emacsen-common/packages/install/emacspeak running in /
  Latest installed version: 46.0+dfsg-2
  install/emacspeak: Handling update for emacsen flavor emacs23
Temporary log file is /tmp/fileXOEKwZ
Byte-compiling  (~0.5 min) ...
  ERROR: install script from emacspeak package failed
  dpkg: error processing package emacspeak (--configure):
   subprocess installed post-installation script returned error exit status 1


cheers,

Andreas


emacspeak_46.0+dfsg-2.log.gz
Description: application/gzip

Bug#867643: [DRE-maint] Bug#867643: schleuder: FTBFS: ERROR: Test "ruby2.3" failed: Failure/Error: expect(output).to include("98769E8A1091F36BD88403ECF71A3F8412D83889 was fetched (new key)")

[Lucas Nussbaum]

On 08/07/17 at 19:37 +0200, Georg Faerber wrote:
> Hi,
> 
> Unfortunately, I can't reproduce this locally. Besides the sbuild
> options used which are shown in the log file, is there a .sbuildrc in
> place, with non-default options? If so, could you share it?

Have you tried diffing your log with mine?

> Additionally, I've got a question regarding the network configuration of
> the VM on which the build was run: At the moment of the build, were the
> only configured network interfaces localhost and / or loopback?

no.

Also, I've just tried on another machine (that has Internet access). In
that case the test suite hangs at:

user sends a plain text message
  from thunderbird

  Schleuder::ListBuilder


Lucas

Bug#866122: slapd-mtread crash on ppc64{,el} in stretch/sid

[Ryan Tandy]

On Sat, Jul 08, 2017 at 11:15:48AM -0700, Ryan Tandy wrote:
The bug reproduces consistently when building with stretch's toolchain 
and running stretch's kernel, but I have not seen it at all with 
jessie's kernel *nor* in a jessie chroot on stretch's kernel. I have 
also reproduced it with clang as well as gcc.


The newer compilers generate POWER8 vector instructions e.g. 
mtvsrd/mfvsrd while the older ones do not. A kernel bug related to (or 
triggered by) these instructions would meet the conditions I described. 
Howard suggested we could be looking at a kernel bug around FP/VSR 
save/restore.

Bug#867639: browser is ASCII only

[積丹尼 Dan Jacobson]

> "AB" == Axel Beckert  writes:

AB> I just looked through this default dillorc but saw no obvious way to
AB> do so.

I don't know either. I only used dillo for five minutes.
I see in Bug 338546 in the past Debian dillo could
display CJK.

AB> (I consider that if http://jidanni.org/ renders without rectangular
AB> boxes, I managed to fix it, right?)

Yes.

Bug#867635: [Aptitude-devel] Bug#867635: mention --target-release will not work on packages already installed

[積丹尼 Dan Jacobson]

OK then at the bottom of

   -t , --target-release 
   Set the release from which packages should be installed. For
   instance, "aptitude -t experimental ..."  will install packages
   from the experimental distribution unless you specify otherwise.

   This will affect the default candidate version of packages
   according to the rules described in apt_preferences(5).

   This corresponds to the configuration item APT::Default-Release.

please add

   Thus -t will only upgrade. To downgrade, append '=version' to
   each package.

else there is little chance the user will master the apt_preferences man
page well enough to understand that.

DK> You have to apply extra force if you really want that (pkg/release),
DK> but note that downgrading packages isn't
DK> officially supported by Debian so you might end up with a broken system
DK> if you downgrade the wrong package.

OK, perhaps also mention how make -t work for downgrades too...

E.g., The user would like to downgrade package A along with its dependencies.

Bug#867710: systemd don't stop user processes reliable on logout, even with KillUserProcesses=yes

[Alf Gaida]

Package: systemd
Version: 233-10
Severity: important

Seems to be a regression in 233 - Changed the value of KillUserProcesses two 
years ago to prevent firefox
and adacious on my login screen - but they are reliable back again.

Greetz Alf

-- Package-specific info:

-- System Information:
Debian Release: buster/sid
  APT prefers buildd-unstable
  APT policy: (500, 'buildd-unstable'), (500, 'unstable'), (500, 'testing'), 
(500, 'stable'), (500, 'oldstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.12.0-towo.3-siduction-amd64 (SMP w/8 CPU cores; PREEMPT)
Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8), LANGUAGE= 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages systemd depends on:
ii  adduser 3.115
ii  libacl1 2.2.52-3+b1
ii  libapparmor12.11.0-6
ii  libaudit1   1:2.7.7-1+b1
ii  libblkid1   2.29.2-1
ii  libc6   2.24-12
ii  libcap2 1:2.25-1
ii  libcryptsetup4  2:1.7.3-4
ii  libgcrypt20 1.7.8-2
ii  libgpg-error0   1.27-3
ii  libidn111.33-1
ii  libip4tc0   1.6.1-2
ii  libkmod224-1
ii  liblz4-10.0~r131-2+b1
ii  liblzma55.2.2-1.2+b1
ii  libmount1   2.29.2-1
ii  libpam0g1.1.8-3.6
ii  libseccomp2 2.3.1-2.1
ii  libselinux1 2.6-3+b2
ii  libsystemd0 233-10
ii  mount   2.29.2-1
ii  procps  2:3.3.12-3
ii  util-linux  2.29.2-1

Versions of packages systemd recommends:
ii  dbus1.10.20-1
ii  libpam-systemd  233-10

Versions of packages systemd suggests:
ii  policykit-10.105-18
pn  systemd-container  

Versions of packages systemd is related to:
pn  dracut   
ii  initramfs-tools  0.130
ii  udev 233-10

-- Configuration Files:
/etc/systemd/logind.conf changed:
[Login]
KillUserProcesses=yes


-- no debconf information

Bug#867709: document apt-cache -t

[積丹尼 Dan Jacobson]

Package: apt
Version: 1.5~alpha4
Severity: minor
File: /usr/share/man/man8/apt-cache.8.gz

One can do
$ apt-cache -t sid policy
successfully, but -t is documented nowhere on the man page.

Bug#857694: dgit fails with some .xz packages

[Ian Jackson]

Control: severity -1 serious

> Died at /usr/bin/dgit line 2196.

This is a wrong error message.  The root cause is a SIGPIPE from unxz
which dgit should tolerate.

This patch fixes it.

diff --git a/dgit b/dgit
index 43f3fd38..edb24281 100755
--- a/dgit
+++ b/dgit
@@ -2181,7 +2181,7 @@ sub generate_commits_from_dsc () {
if defined $compr_ext && !defined $cname;
my $compr_proc =
new Dpkg::Compression::Process compression => $cname;
-   my @compr_cmd = $compr_proc->get_uncompress_cmdline();
+   @compr_cmd = $compr_proc->get_uncompress_cmdline();
my $compr_fh = new IO::Handle;
my $compr_pid = open $compr_fh, "-|" // die $!;
if (!$compr_pid) {
@@ -2208,7 +2208,7 @@ sub generate_commits_from_dsc () {
!$? or failedcmd @tarcmd;
 
close $input or
-   (@compr_cmd ? failedcmd @compr_cmd
+   (@compr_cmd ? ($?==SIGPIPE || failedcmd @compr_cmd)
 : die $!);
# finally, we have the results in "tarball", but maybe
# with the wrong permissions

Bug#867708: libcerf-doc: package short description mentions "development files" instead of documentation

[Beatrice Torracca]

Package: libcerf-doc
Severity: minor

Hi!

The short description of package libcerf-doc is currently identical to
the one of the development package (libcerf-dev) and mentions
"development files".

I imagine the short description should instead mention "documentation"
or "doc" or something similar.

Thanks,

beatrice

Bug#867707: Please fix cycle dependency between libfm and menu-cache for powerpcspe

[Alf Gaida]

Package: libmenu-cache-dev
Version: 1.0.3~7-g4695338-1
Severity: important

Hi Andriy,

just a reminder - we talked about in October/November last year.

Cheers Alf

-- System Information:
Debian Release: buster/sid
  APT prefers buildd-unstable
  APT policy: (500, 'buildd-unstable'), (500, 'unstable'), (500, 'testing'), 
(500, 'stable'), (500, 'oldstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.12.0-towo.3-siduction-amd64 (SMP w/8 CPU cores; PREEMPT)
Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8), LANGUAGE= 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages libmenu-cache-dev depends on:
ii  libglib2.0-dev  2.52.3-1
ii  libmenu-cache3  1.0.3~7-g4695338-1

libmenu-cache-dev recommends no packages.

Versions of packages libmenu-cache-dev suggests:
ii  libmenu-cache-doc  1.0.3~7-g4695338-1

-- no debconf information

Bug#867702: want way to disable git-receive-pack quarantine feature [and 1 more messages]

[Ian Jackson]

Control: retitle -1 send-pack should unset QUARANTINE when invoking receive-pack

Ian Jackson writes ("want way to disable git-receive-pack quarantine feature"):
> Package: git
> Version: 1:2.13.2-3
> 
> https://manpages.debian.org/unstable/git-man/git-receive-pack.1.en.html#QUARANTINE_ENVIRONMENT
> 
>3.The pre-receive hook MUST NOT update any refs to point to
>quarantined objects. Other programs accessing the repository will not
>be able to see the objects (and if the pre-receive hook fails, those
>refs would become corrupted). For safety, any ref updates from within
>pre-receive are automatically rejected.
> 
> dgit-push-receiver does exactly that.  It has its own quarantine
> arrangement, for mainly the same reasons that git now has one.
> (Also dgit-push-receiver likes to update some refs that weren't
> provided by the caller.  This is also going to be needed for proper
> handling of signed pushes.)

In fact what dgit-repos-server does is to invokes git-send-pack (not
git-update-ref) from within its pre-receive hook.  It asks
git-send-pack to send some of the incoming objects to a different tree
(ie, a different one to the one git-receive-pack was invoked in).

This does not work because the copy of git-receive-pack invoked by
git-send-pack still has GIT_QUARANTINE_PATH set - even though it is
operating in a completely different directory.

This seems to be to be simply a bug: git-send-pack ought to unset
GIT_QUARANTINE_PATH when invoking git-receive-pack.  This is probably
true of various other similar situations.  I assume something must
unset or reset GIT_DIR and so on or git-send-pack wouldn't work at
all, but I wasn't able to find the right place in the git source, so I
haven't provided a git patch.

Instead I made dgit-repos-server check for GIT_QUARANTINE_PATH, and if
it was set provide git-send-pack with wrapper for git-receive-pack
which unsets GIT_QUARANTINE_PATH.  Then all my tests passed again.

(I still think an incompatible change like this ought to have been
documented somewhere, and that there is probably someone out there who
would like to disable or subvert this feature.)

Thanks,
Ian.

Bug#867706: backfire-dkms: module FTBFS for Linux 4.11

[Andreas Beckmann]

Package: backfire-dkms
Version: 1.0-1
Severity: serious
Tags: sid buster

backfire-dkms fails to build a module for Linux 4.11:

DKMS make.log for backfire-0.84-2 for kernel 4.11.0-1-amd64 (x86_64)
Sat Jul  8 18:35:33 UTC 2017
make: Entering directory '/usr/src/linux-headers-4.11.0-1-amd64'
  LD  /var/lib/dkms/backfire/0.84-2/build/built-in.o
  CC [M]  /var/lib/dkms/backfire/0.84-2/build/backfire.o
/var/lib/dkms/backfire/0.84-2/build/backfire.c: In function 'backfire_write':
/var/lib/dkms/backfire/0.84-2/build/backfire.c:64:4: error: implicit 
declaration of function 'kill_pid' [-Werror=implicit-function-declaration]
kill_pid(pid, signo, 1);
^~~~
cc1: some warnings being treated as errors
/usr/src/linux-headers-4.11.0-1-common/scripts/Makefile.build:305: recipe for 
target '/var/lib/dkms/backfire/0.84-2/build/backfire.o' failed
make[3]: *** [/var/lib/dkms/backfire/0.84-2/build/backfire.o] Error 1
/usr/src/linux-headers-4.11.0-1-common/Makefile:1509: recipe for target 
'_module_/var/lib/dkms/backfire/0.84-2/build' failed
make[2]: *** [_module_/var/lib/dkms/backfire/0.84-2/build] Error 2
Makefile:152: recipe for target 'sub-make' failed
make[1]: *** [sub-make] Error 2
Makefile:8: recipe for target 'all' failed
make: *** [all] Error 2
make: Leaving directory '/usr/src/linux-headers-4.11.0-1-amd64'


Andreas

Bug#867705: ccache: symlinks for versioned clang

[Jakub Wilk]

Package: ccache
Version: 3.3.4-1
Severity: wishlist

Please install symlinks for versioned clang (such as "clang++-3.9") in 
/usr/lib/ccache.


--
Jakub Wilk

Bug#867704: hardening-check for stretch?

[Nicola Spanti]

Package: hardening-includes
Release: stretch

In jessie, hardening-includes contains a script called 
"hardening-check". This package does not exist in future versions. It 
can still be installed successfully in stretch, but I get this problem 
when I check a binary "Position Independent Executable: not a known ELF 
type!? ()", I suppose that GCC changed how it compiled.


https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836162
There were discussions to move the script. In stretch, `dpkg -L lintian 
| grep 'hardening-check'` and `dpkg -L devscripts | grep 
'hardening-check'` returns nothing on stdout. They were discussions 
about putting the logic in lintian, but I use this script outside the 
Debian packaging scope. Is there an updated version of this script 
somewhere or is it unmaintained? Is there a similar free/libre tool in 
Debian?


Regards.

Bug#867703: blktap-dkms: module FTBFS for Linux 4.11

[Andreas Beckmann]

Package: blktap-dkms
Version: 2.0.93-0.8
Severity: serious
Tags: sid buster

Hi,

blktap-dkms fails to build a module for Linux 4.11:

  CC [M]  /var/lib/dkms/blktap/2.0.93/build/device.o
In file included from /var/lib/dkms/blktap/2.0.93/build/linux-blktap.h:66:0,
 from /var/lib/dkms/blktap/2.0.93/build/blktap.h:33,
 from /var/lib/dkms/blktap/2.0.93/build/ring.c:38:
/var/lib/dkms/blktap/2.0.93/build/linux-blktap.h:119:24: warning: variably 
modified 'pending' at file scope
sizeof(((struct blktap_sring *)0)->ring[0])))
^
/usr/src/linux-headers-4.11.0-1-common/include/xen/interface/io/ring.h:15:59: 
note: in definition of macro '__RD2'
 #define __RD2(_x)  (((_x) & 0x0002) ? 0x2 : ((_x) & 0x1))
   ^~
/usr/src/linux-headers-4.11.0-1-common/include/xen/interface/io/ring.h:17:66: 
note: in expansion of macro '__RD4'
 #define __RD8(_x)  (((_x) & 0x00f0) ? __RD4((_x)>>4)<<4: __RD4(_x))
  ^
/usr/src/linux-headers-4.11.0-1-common/include/xen/interface/io/ring.h:18:66: 
note: in expansion of macro '__RD8'
 #define __RD16(_x) (((_x) & 0xff00) ? __RD8((_x)>>8)<<8: __RD8(_x))
  ^
/usr/src/linux-headers-4.11.0-1-common/include/xen/interface/io/ring.h:19:66: 
note: in expansion of macro '__RD16'
 #define __RD32(_x) (((_x) & 0x) ? __RD16((_x)>>16)<<16 : __RD16(_x))
  ^~
/var/lib/dkms/blktap/2.0.93/build/linux-blktap.h:117:8: note: in expansion of 
macro '__RD32'
  ((int)__RD32((BLKTAP_PAGE_SIZE -\
^~
/var/lib/dkms/blktap/2.0.93/build/blktap.h:77:41: note: in expansion of macro 
'BLKTAP_RING_SIZE'
  struct blktap_request *pending[BLKTAP_RING_SIZE];
 ^~~~
/var/lib/dkms/blktap/2.0.93/build/ring.c:187:14: error: initialization from 
incompatible pointer type [-Werror=incompatible-pointer-types]
  .fault= blktap_ring_fault,
  ^
/var/lib/dkms/blktap/2.0.93/build/ring.c:187:14: note: (near initialization for 
'blktap_ring_vm_operations.fault')

Andreas


blktap.make.log.gz
Description: application/gzip

Bug#866122: slapd-mtread crash on ppc64{,el} in stretch/sid

[Ryan Tandy]

I spent some more time on this issue and I believe I isolated the 
problem to the following line:


int r = ((double)nvalues)*rand()/(RAND_MAX + 1.0);

http://sources.debian.net/src/openldap/2.4.44%2Bdfsg-7/tests/progs/slapd-mtread.c/#L682

Specifically, during the multi-threaded tests, casting 'nvalues' from 
int to double occasionally comes up with the wrong result.


e.g.:
(double)19 -> 61.00

Note that 'nvalues' is a local variable in the same function. There 
should be zero chance of it being shared with another thread or anything 
like that.


The bug reproduces consistently when building with stretch's toolchain 
and running stretch's kernel, but I have not seen it at all with 
jessie's kernel *nor* in a jessie chroot on stretch's kernel. I have 
also reproduced it with clang as well as gcc.

Bug#867702: want way to disable git-receive-pack quarantine feature

[Ian Jackson]

Package: git
Version: 1:2.13.2-3

https://manpages.debian.org/unstable/git-man/git-receive-pack.1.en.html#QUARANTINE_ENVIRONMENT

   3.The pre-receive hook MUST NOT update any refs to point to
   quarantined objects. Other programs accessing the repository will not
   be able to see the objects (and if the pre-receive hook fails, those
   refs would become corrupted). For safety, any ref updates from within
   pre-receive are automatically rejected.

dgit-push-receiver does exactly that.  It has its own quarantine
arrangement, for mainly the same reasons that git now has one.
(Also dgit-push-receiver likes to update some refs that weren't
provided by the caller.  This is also going to be needed for proper
handling of signed pushes.)

I can't easily rip the code out of dgit-push-receiver because that
would make it wrong (in a security-relevant way) on stretch.

Also, I have the problem that git-receive-pack inseparately combines
the two operations "transfer the quarantined objects" and "tell the
client the push succeeded".  So I can't simply do my ref updates after
git-receive-pack has exited.

Can there be a way to disable this feature of git please ?

Ian.

-- 
Ian Jackson    These opinions are my own.

If I emailed you from an address @fyvzl.net or @evade.org.uk, that is
a private address which bypasses my fierce spamfilter.

Bug#867701: Radeon HD 6450, black screen, cursor, no console

[Ivan Sergio Borgonovo]

Package: xserver-xorg-video-radeon
Version: 1:7.9.0-1
Severity: grave

Upgrading from 1:7.8.0-1+b1 to 1:7.9.0-1, PC boot but I get a black 
screen with cursor on the top left, I can't switch to console, xorg log 
just say


[28.383] (II) glamor: OpenGL accelerated X.org driver based.
[28.441] (EE)
[28.441] (EE) Backtrace:

downgrading solve the problem.

I've a very very similar PC, same motherboard and slightly different 
video card (Turks PRO [Radeon HD 6570) that works.


--
Ivan Sergio Borgonovo
http://www.webthatworks.it http://www.borgonovo.net

Bug#842649: lxqt-session: version not displayed at command line

[Alf Gaida]

Control: reopen #842649
Closed the wrong bug - sorry

Bug#867567: stretch-pu: package nagios-nrpe/3.0.1-3+deb9u1

[Sebastiaan Couwenberg]

On 07/08/2017 06:31 PM, Jonathan Wiltshire wrote:
> On Fri, Jul 07, 2017 at 03:04:12PM +0200, Bas Couwenberg wrote:
>> To fix the incompatibility between NRPE 2.x and 3.x releases when SSL
>> support is enabled, I'd like to propose the following update.
> 
> Please go ahead.

Thanks, uploaded.

Kind Regards,

Bas

-- 
 GPG Key ID: 4096R/6750F10AE88D4AF1
Fingerprint: 8182 DE41 7056 408D 6146  50D1 6750 F10A E88D 4AF1

Bug#867643: [DRE-maint] Bug#867643: schleuder: FTBFS: ERROR: Test "ruby2.3" failed: Failure/Error: expect(output).to include("98769E8A1091F36BD88403ECF71A3F8412D83889 was fetched (new key)")

[Georg Faerber]

Hi,

Unfortunately, I can't reproduce this locally. Besides the sbuild
options used which are shown in the log file, is there a .sbuildrc in
place, with non-default options? If so, could you share it?

Additionally, I've got a question regarding the network configuration of
the VM on which the build was run: At the moment of the build, were the
only configured network interfaces localhost and / or loopback?

Thanks,
Georg


signature.asc
Description: Digital signature

Bug#867700: gns3-gui: gns3 fails to shutdown local server when closing the application

[machavez]

Package: gns3-gui
Version: 2.0.3~xenial1
Severity: normal

Dear Maintainer,


   * What led up to the situation?

Installing gns3-gui as local server deployment. Opening and closing the 
application.

   * What exactly did you do (or not do) that was effective (or
 ineffective)?

After closing the application,  it tries to shutdown the server for 
some seconds and then fails. A message is shown asking if you want to kill the 
PID. The console stays in the following stage untill the PID is killed:

2017-07-08 14:22:05 INFO local_server:542 Stopping local server (PID=25124)

   * What was the outcome of this action?

Server is forcibly stopped.

   * What outcome did you expect instead?

A clean application closing.





-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.11.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=es_AR.UTF-8, LC_CTYPE=es_AR.UTF-8 (charmap=UTF-8), 
LANGUAGE=es_AR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages gns3-gui depends on:
ii  dpkg 1.18.24
ii  gns3-server  2.0.3~xenial1
ii  libc62.24-12
ii  libexpat12.2.1-2
ii  python3  3.5.3-3
ii  python3-pyqt55.7+dfsg-5+b1
ii  python3-pyqt5.qtsvg  5.7+dfsg-5+b1
ii  python3.53.5.3-3
ii  vinagre  3.22.0-1+b1
ii  wireshark2.2.7-1
ii  zlib1g   1:1.2.8.dfsg-5

gns3-gui recommends no packages.

gns3-gui suggests no packages.

-- no debconf information

Bug#867699: fatal: transport 'ext' not allowed

[Ian Jackson]

Package: git
Version: 1:2.13.2-3

The dgit test suite has started failing with this message.  I looked
in various places to try to find out why.

Amongst my attempts where
  man git-remote-ext
  man git-push
  man git-pull
  dpkg -L git-man | xargs zegrep '\bext\b' 2>/dev/null |less -S
  dpkg -L git-man | xargs zegrep '\btransport\b' 2>/dev/null |less -S

I dug into the git source code to find out what was going on.  I found
that the source code talks about protocols, not transports.  Hence I
found the real answer in:
  man git-config |less +/'protocol.*allow'

Please could, at the very least, git-remote-ext document this
behaviour: ie specifically, git-remote-ext(1) should say that the
feature needs to be explicitly enabled.

Secondly, I see from the source code that one can set
GIT_ALLOW_PROTOCOL to a :-separated list.  Could this please also be
documented ?

Thirdly: please could incompatible changes be documented somewhere
more obvious - how about NEWS.Debian.gz ?

Fourthly: if this change was done for security reasons, why has it not
been done in stretch ?

Thanks for your attention,
Ian.

-- 
Ian Jackson    These opinions are my own.

If I emailed you from an address @fyvzl.net or @evade.org.uk, that is
a private address which bypasses my fierce spamfilter.

Bug#866575: [Python-modules-team] Bug#866575: libapache2-mod-wsgi-py3: Impossible depends when built with more then one supported python3 version

[Scott Kitterman]

On Saturday, July 08, 2017 12:52:39 PM Bas Couwenberg wrote:
> Package: libapache2-mod-wsgi-py3
> Version: 4.5.11-1
> Followup-For: Bug #866575
> 
> Dear Maintainer,
> 
> The attached patch fixes this issue, but there are several other issues
> with the package that should be fixed in the next upload too.

Thanks for the patch.  I have committed it to the DPMT git repository for the 
next upload.  Since I'm not the package maintainer, I am going to leave it to 
them to decide what else needs to be addressed.

In particular, I suspect this package will need to be rebuilt again when the 
default python3 version changes to update the symlink:

 ./usr/lib/apache2/modules/mod_wsgi.so -> mod_wsgi.so-3.5

Given that, it might make more sense to only build it for the default version.

Thanks again,

Scott K

Bug#867211: [Pkg-xfce-devel] Bug#867211: thunar: freeze when content of a folder changes rapidly

[Markus Hentsch]

On Wed, 05 Jul 2017 20:04:23 +0200 Yves-Alexis Perez 
wrote:
> On Tue, 2017-07-04 at 21:55 +0200, Markus Hentsch wrote:
> > Thunar is freezing when the content of a folder that is being
displayed in a
> > Thunar window is being updated rapidly, e.g. while compiling
software within
> > that folder. If Thunar is running in daemon mode, all of its windows
will
> > freeze, otherwise only the windows that are displaying the folder in
> > question.
>
> This might be https://bugzilla.xfce.org/show_bug.cgi?id=13481 which is
fixed
> in Thunar 1.6.12 (which I'll push to sid soon).
>
> Regards,
> --
> Yves-Alexis
Thank you very much for pointing to the upstream report!
I've applied the commit patch [1] to the current version on stretch
(1.6.11) and after a few tests I can confirm that I'm unable to
reproduce the issue as described in my original report anymore!

[1]
https://git.xfce.org/xfce/thunar/commit/?id=4dd549db77838c9345f10a72f10e705f8ae327d4

Kind Regards,

Markus

Bug#867698: QCAD is alive on Github

[Amr Ibrahim]

Package: qcad

QCAD is alive again on Github.
https://github.com/qcad/qcad

The QCAD 3 source code is released under the GPLv3 open source license. 
Script add-ons and C++ plugins are released under their respective licenses.

Bug#867309: dgit invokes curl in a way that fails on redirects

[Ian Jackson]

severity 867185 serious
forcemerge 867185 867309
thanks

The problem is that dgit invokes curl in a way that fails on
redirects.

Passing
   --curl:-L
to dgit will work around this bug.

Ian.

-- 
Ian Jackson    These opinions are my own.

If I emailed you from an address @fyvzl.net or @evade.org.uk, that is
a private address which bypasses my fierce spamfilter.

Bug#867696: arj: out-of-bounds read

[Jakub Wilk]

Package: arj
Version: 3.10.22-15

ARJ crashes on the attached file:

  $ arj t oob.arj > /dev/null
  Segmentation fault

Backtrace:

#0  0x565741e8 in crc32_for_block (block=0x565bb001 , b_size=1448523275) at crc32.c:232
#1  0x5656350c in crc_for_block (block=0x565a28a0 
"\020v/\025\020vpb\020x\016w\020xPD\020ynY\020z0&\020{N;\020|\031B\020}.\035\020~y$\020\177\016\177\020\001\003\002\003\004\005\004\b\006\a\003\002\005\004\005\004\002\003\002\003\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\003\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\003\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t"...,
 length=1448523276) at fardata.c:749
#2  0x5657288d in extraction_stub (block=0x565a28a0 
"\020v/\025\020vpb\020x\016w\020xPD\020ynY\020z0&\020{N;\020|\031B\020}.\035\020~y$\020\177\016\177\020\001\003\002\003\004\005\004\b\006\a\003\002\005\004\005\004\002\003\002\003\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\003\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\004\005\003\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t"...,
 block_len=1448523276, action=0) at arj_file.c:204
#3  0x5655e58f in decode (action=0) at decode.c:486
#4  0x5656a211 in unpack_file (action=action@entry=0) at arj_arcv.c:2444
#5  0x5656f11a in unpack_validation (cmd=84) at arj_arcv.c:2604
#6  0x56564571 in process_archive (cmd=cmd@entry=84, 
no_in_arch=no_in_arch@entry=0) at arj_user.c:831
#7  0x56566586 in process_archive_proc (cmd=cmd@entry=84) at arj_user.c:2047
#8  0x56569759 in perform_cmd (cmd=84) at arj_user.c:2660
#9  0x5655c6ed in main (argc=, argv=) at 
arj.c:1275

Found using American fuzzy lop:
http://lcamtuf.coredump.cx/afl/

-- System Information:
Architecture: i386

--
Jakub Wilk


oob.arj
Description: Binary data

Bug#867697: ldapscripts: please update to 2.0.8

[James Valleroy]

Package: ldapscripts
Severity: wishlist

Dear Maintainer,

ldapscripts-2.0.8 has been released upstream. Please consider updating
the package.

Bug#867613: Pending fixes for bugs in the gettext-maven-plugin package

[pkg-java-maintainers]

tag 867613 + pending
thanks

Some bugs in the gettext-maven-plugin package are closed in revision
cd8a6076b307daaef1bd0593b243a10b3b6fed80 in branch 'master' by Markus
Koschany

The full diff can be seen at
https://anonscm.debian.org/cgit/pkg-java/gettext-maven-plugin.git/commit/?id=cd8a607

Commit message:

Import Debian changes 1.2.9-1

gettext-maven-plugin (1.2.9-1) unstable; urgency=medium

  * Initial release (Closes: #867613)

Bug#849807: gnutls_record_send after incomplete gnutls_handshake sends data unencrypted

[Andreas Metzler]

Control: forwarded -1 https://gitlab.com/gnutls/gnutls/issues/158

On 2016-12-31 "Bernhard R. Link"  wrote:
> Package: libgnutls30
> Version: 3.5.7-3
> Severity: normal
> Tags: security

> This bug report is not about wrong behavior if libgnutls is called
> correctly but rather about dangerous behaviour if the caller is using
> libgnutls incorrectly.

> If a handshake has not yet completed (the caller ignoring
> gnutls_handshake return code or the caller having a bug in the handling
> of GNUTLS_E_AGAIN) then telling libgnutls to send data causes it to send
> it unencrypted. Unless there are cases where might be useful, I think a
> security relevelant library like libgnutls should rather catch this
> mistake and avoid sending stuff unencrypted.
[...]

Hello,

This has been fixed in GnuTLS GIT master and is scheduled for 3.6.x.

cu Andreas
-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'

Bug#867695: debian-design FTBFS with shellcheck 0.4.6-1

[Adrian Bunk]

Source: debian-design
Version: 3.0.7
Severity: serious
Tags: buster sid

https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/debian-design.html

...
# check that all package lists are populated
test -n "task-xfce-desktop, task-laptop, abiword, alsa-utils, apt-listchanges, 
aptitude, buku, bzip2, dfc, evince, firefox-esr, git, gnome-system-tools, 
gnumeric, gtk2-engines-xfce, gvfs, info, less, libgl1-mesa-dri, 
libreoffice-calc, libreoffice-gtk2, libreoffice-impress, libreoffice-ogltrans, 
libreoffice-style-tango, libreoffice-writer, lightdm, lightning, links, man-db, 
manpages, mc, mpv, mtr-tiny, myrepos, ncdu, needrestart, network-manager-gnome, 
pasystray, pavucontrol, popularity-contest, pulseaudio, pulseaudio-utils, 
rsync, tango-icon-theme, thunar, thunderbird, unicode-screensaver, v4l-utils, 
volti, wget, xfce4-notifyd, xfce4-power-manager, xfce4-power-manager-plugins, 
xfce4-session, xserver-xorg, xul-ext-sieve,"
set -e; test -n "diffpdf, font-manager, gcolor2, gimp, gimp-lensfun, 
gimp-plugin-registry, gpick, gtk-vector-screenshot, gucharmap, inkscape, 
jpeginfo, jpegoptim, lcdf-typetools, libpdf-reuse-perl, libpodofo-utils, 
librsvg2-bin, libtiff-tools, mypaint, mypaint-data-extras, origami-pdf, 
pdfposter, pdfshuffler, pngcrush, poppler-utils, python-cairosvg, python-scour, 
qpdf, scribus, scrot, shotwell, typecatcher,";  test -n "blender, 
synfigstudio,";  test -n "chromium, chromium-l10n, compass-blueprint-plugin, 
compass-color-schemer-plugin, compass-fancy-buttons-plugin, 
compass-h5bp-plugin, compass-layoutgala-plugin, compass-normalize-plugin, 
compass-singularitygs-plugin, compass-slickmap-plugin, compass-susy-plugin, 
compass-toolkit-plugin, compass-yui-plugin, surf,"; 
perl -0777 -n \
-e 's,.*d-i preseed/late_command string ,#!/bin/sh\n,ms' \
-e ' and print $_' \
content/desktop/preseed.cfg > design-desktop-tidy
shellcheck -e SC1003 -e SC2016 -e SC2034 -e SC2046 -e SC2048 -e SC2086 
design-desktop-tidy

In design-desktop-tidy line 38:
  if [ -e "$1" ] && egrep -q "^#?$2\$" "$1"; then \
^-- SC2196: egrep is non-standard and deprecated. Use grep 
-E instead.


In design-desktop-tidy line 49:
  if [ -e "$1" ] && egrep -q "^#?$2=" "$1"; then \
^-- SC2196: egrep is non-standard and deprecated. Use grep 
-E instead.

debian/blends.mk:87: recipe for target 'design-desktop-tidy' failed
make: *** [design-desktop-tidy] Error 1

Bug#867694: netsurf-fb: Completely unusable

[Salvo Tomaselli]

Package: netsurf-fb
Version: 3.6-3.1
Severity: grave
Justification: renders package unusable

Dear Maintainer,

netsurf-fb comes without any documentation on how to get it working.

I had to figure out by myself that I was supposed to add my user to the input
group.

After this, it was complaining about fb initialisation. Searching, I found this
page:

https://askubuntu.com/questions/817937/how-to-run-netsurf-fb-fails-with-unable-to-set-video-could-not-set-console-s

But the 3rd solution did not work and my screen just gets completely black and
I need to hard reset the machine.

Fix these issues, or at least document how to make this thing work, add the
necessary dependencies, or remove this package.

Best

-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.11.7a (SMP w/4 CPU cores; PREEMPT)
Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8), LANGUAGE= 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages netsurf-fb depends on:
ii  libc62.24-12
ii  libcurl3 7.52.1-5
ii  libexpat12.2.1-2
ii  libfreetype6 2.8-0.2
ii  libjpeg62-turbo  1:1.5.1-2
ii  libpng16-16  1.6.29-3
ii  libsdl1.2debian  1.2.15+dfsg1-4
ii  libssl1.0.2  1.0.2l-2
ii  libvncserver10.9.11+dfsg-1
ii  libxcb-icccm40.4.1-1
ii  libxcb-image00.4.0-1+b2
ii  libxcb-keysyms1  0.4.0-1+b2
ii  libxcb-shm0  1.12-1
ii  libxcb-util0 0.3.8-3+b2
ii  libxcb1  1.12-1
ii  netsurf-common   3.6-3.1
ii  zlib1g   1:1.2.8.dfsg-5

Versions of packages netsurf-fb recommends:
ii  mime-support  3.60

netsurf-fb suggests no packages.

-- no debconf information

Bug#867567: stretch-pu: package nagios-nrpe/3.0.1-3+deb9u1

[Jonathan Wiltshire]

Control: tag -1 confirmed

On Fri, Jul 07, 2017 at 03:04:12PM +0200, Bas Couwenberg wrote:
> To fix the incompatibility between NRPE 2.x and 3.x releases when SSL
> support is enabled, I'd like to propose the following update.

Please go ahead.

Thanks,

-- 
Jonathan Wiltshire  j...@debian.org
Debian Developer http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51

Bug#843448: linux-image-4.8.0-1-armmp-lpae: fails to boot on Odroid-Xu4 with rootfs on USB

[Jochen Sprickerhof]

* Steinar H. Gunderson  [2017-07-08 10:43]:
> Well, you don't get working USB after a warm boot without it, do you?

Oups forgot to test that, you are totally right :).

@Gustavo: could you take care of brining that one upstream? Thanks!

Cheers Jochen


signature.asc
Description: PGP signature

Bug#863710: journald's most recent entries

[defanor]

Apparently it's fine with v232, wasn't able to reproduce on Debian 9.

Bug#867693: rpush does not work with buildinfos

[Ian Jackson]

Package: dgit
Version: 3.10
Severity: important

The rpush test case fails.  This is because the rpush initiator's
debsign wants to sign the buildinfo, but the two dgits have failed to
provide the file.

I'm sure this will affect "real" use of dgit rpush (ie, outside the
test suite) with stretch's dpkg-dev etc.

Ian.

-- 
Ian Jackson    These opinions are my own.

If I emailed you from an address @fyvzl.net or @evade.org.uk, that is
a private address which bypasses my fierce spamfilter.

Bug#867692: apparmor-profiles-extra: Totem can't open any video

[Elia Argentieri]

Package: apparmor-profiles-extra
Version: 1.12
Severity: important

This is what I get with `sudo tail /var/log/audit/audit.log -f | grep DENIED`
when I open any video:

type=AVC msg=audit(1499516756.417:5744): apparmor="DENIED" operation="open"
profile="/usr/bin/totem" name="/home/elia/.cache/mesa/index" pid=4881
comm="totem" requested_mask="rwc" denied_mask="rwc" fsuid=1000 ouid=1000
type=AVC msg=audit(1499516756.529:5745): apparmor="DENIED" operation="open"
profile="/usr/bin/totem"
name="/var/lib/flatpak/exports/share/icons/hicolor/index.theme" pid=4881
comm="totem" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
type=AVC msg=audit(1499516756.529:5746): apparmor="DENIED" operation="open"
profile="/usr/bin/totem"
name="/var/lib/flatpak/exports/share/icons/hicolor/icon-theme.cache" pid=4881
comm="totem" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
type=AVC msg=audit(1499516756.529:5747): apparmor="DENIED" operation="open"
profile="/usr/bin/totem"
name="/var/lib/flatpak/exports/share/icons/hicolor/icon-theme.cache" pid=4881
comm="totem" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
type=AVC msg=audit(1499516756.533:5748): apparmor="DENIED" operation="open"
profile="/usr/bin/totem"
name="/var/lib/flatpak/exports/share/icons/hicolor/icon-theme.cache" pid=4881
comm="totem" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
type=AVC msg=audit(1499516756.533:5749): apparmor="DENIED" operation="open"
profile="/usr/bin/totem"
name="/var/lib/flatpak/exports/share/icons/hicolor/icon-theme.cache" pid=4881
comm="totem" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
type=AVC msg=audit(1499516756.533:5750): apparmor="DENIED" operation="open"
profile="/usr/bin/totem"
name="/var/lib/flatpak/exports/share/icons/hicolor/icon-theme.cache" pid=4881
comm="totem" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
type=AVC msg=audit(1499516756.533:5751): apparmor="DENIED" operation="open"
profile="/usr/bin/totem"
name="/var/lib/flatpak/exports/share/icons/hicolor/icon-theme.cache" pid=4881
comm="totem" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
type=AVC msg=audit(1499516756.533:5752): apparmor="DENIED" operation="open"
profile="/usr/bin/totem"
name="/var/lib/flatpak/exports/share/icons/hicolor/icon-theme.cache" pid=4881
comm="totem" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
type=AVC msg=audit(1499516756.537:5753): apparmor="DENIED" operation="open"
profile="/usr/bin/totem"
name="/var/lib/flatpak/exports/share/icons/hicolor/icon-theme.cache" pid=4881
comm="totem" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
type=AVC msg=audit(1499516756.537:5754): apparmor="DENIED" operation="open"
profile="/usr/bin/totem"
name="/var/lib/flatpak/exports/share/icons/hicolor/icon-theme.cache" pid=4881
comm="totem" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
type=AVC msg=audit(1499516756.537:5755): apparmor="DENIED" operation="open"
profile="/usr/bin/totem"
name="/var/lib/flatpak/exports/share/icons/hicolor/icon-theme.cache" pid=4881
comm="totem" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
type=AVC msg=audit(1499516756.677:5756): apparmor="DENIED" operation="open"
profile="/usr/bin/totem"
name=2F646174692F566964656F2F54686520496D69746174696F6E2047616D652E6D6B76
pid=4881 comm="totem" requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000
type=AVC msg=audit(1499516756.677:5757): apparmor="DENIED" operation="open"
profile="/usr/bin/totem"
name=2F646174692F566964656F2F54686520496D69746174696F6E2047616D652E6D6B76
pid=4881 comm="totem" requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000
type=AVC msg=audit(1499516756.677:5758): apparmor="DENIED" operation="open"
profile="/usr/bin/totem"
name=2F646174692F566964656F2F54686520496D69746174696F6E2047616D652E6D6B76
pid=4881 comm="totem" requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000


It seems to block mesa cache too. Maybe that should be added to an abstraction.



-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (800, 'testing'), (600, 'unstable'), (200, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.11.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8), 
LANGUAGE=it_IT.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages apparmor-profiles-extra depends on:
ii  apparmor  2.11.0-6

apparmor-profiles-extra recommends no packages.

apparmor-profiles-extra suggests no packages.

-- no debconf information

Bug#867115: smplayer crashes with "Error parsing option noquiet (option not found)"

[Reinhard Tartler]

Control: severity -1 important
Control: tags -1 moreinfo

Thank you for your bugreport. I had a look at the issue and have some
questions for you.

On Mon, Jul 3, 2017 at 6:09 PM Daniel 'DaB.' Baur 
wrote:

> Package: smplayer
> Version: 16.11.0~ds0-1
> Severity: grave
> Justification: renders package unusable
>
> Dear Maintainer,
>
> after the update to Debian Stretch, which makes smplayer using mpv instead
> of mplayer, the smplayer does not work anymore.
>
> Any file I try to open, smplayer crashes with "Error parsing option noquiet
> (option not found)". The problems seems to be, that mpv doesn’t have the
> same options that mplayer had, but smplayer does not respect this.
>

I can't reproduce that here. I've tested with these package versions:
siretart@debian:~$ dpkg -l mpv mplayer2 smplayer
Desired=Unknown/Install/Remove/Purge/Hold
|
Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend
|/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad)
||/ Name   Version
 Architecture Description
+++-==---=
un  mplayer2  
  (no description available)
ii  mpv0.23.0-2+b2  amd64
 video player based on MPlayer/mplayer2
ii  smplayer   16.11.0~ds0-1amd64
 Complete front-end for MPlayer and mpv


Invoking smplayer like this plays the video just fine:

siretart@debian:~$ smplayer
/tmp/20060131_dropping-pre-i686_jbailey-doko.ogg
This is SMPlayer v. 16.11.0 (revision 8242) running on Linux
siretart@debian:~$ echo $?
0

Please be more specific how to reproduce this issue. Do you have any local
versions of mpv in /usr/lo


Could this please be fixed or reverted back? Currently smplayer is pretty
useless in Debian.


Sincerely,
DaB.


-- System Information:
Debian Release: 9.0
  APT prefers stable
  APT policy: (900, 'stable'), (500, 'oldstable-updates'), (300,
'oldstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) (ignored:
LC_ALL set to de_DE.UTF-8), LANGUAGE=de (charmap=UTF-8) (ignored: LC_ALL
set to de_DE.UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages smplayer depends on:
ii  libc6 2.24-11+deb9u1
ii  libgcc1   1:6.3.0-18
ii  libgl1-mesa-glx [libgl1]  13.0.6-1+b2
ii  libqt5core5a  5.7.1+dfsg-3+b1
ii  libqt5dbus5   5.7.1+dfsg-3+b1
ii  libqt5gui55.7.1+dfsg-3+b1
ii  libqt5network55.7.1+dfsg-3+b1
ii  libqt5script5 5.7.1~20161021+dfsg-2
ii  libqt5widgets55.7.1+dfsg-3+b1
ii  libqt5xml55.7.1+dfsg-3+b1
ii  libstdc++66.3.0-18
ii  libx11-6  2:1.6.4-3
ii  libxext6  2:1.3.3-1+b2
ii  mpv   0.23.0-2+b2
ii  zlib1g1:1.2.8.dfsg-5

Versions of packages smplayer recommends:
ii  smplayer-l10n16.11.0~ds0-1
ii  smplayer-themes  1:16.8.0-1

smplayer suggests no packages.

-- no debconf information
___
pkg-multimedia-maintainers mailing list
pkg-multimedia-maintain...@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainerscal
or something?

Also, there is a new upstream version of smplayer in
experimental 17.3.0~ds0-1. Do you experience this issue also with that
version? If not, I'd propose to upload it to unstable.


>
> AFAIS you were told in #783401 that this would happen, but somehow this
> was ignored.
>

I don't know. That bug was marked fixed on Fri, 15 Jan 2016  and didn't see
any updates since then. I'd assume that the package worked fine for the
uploader back then, just like the current package works fine with mpv for
me.

It is certainly possible that I'm missing something here. In that case, any
clarifications would be much appreciated.

Best,
Reinhard

Bug#867691: libvirt-python FTBFS with libvirt 3.5.0-1

[Adrian Bunk]

Source: libvirt-python
Version: 3.0.0-2
Severity: serious
Tags: buster sid

https://tests.reproducible-builds.org/debian/rb-pkg/unstable/arm64/libvirt-python.html

...
I: pybuild base:184: /usr/bin/python setup.py build 
running build
/usr/bin/pkg-config --print-errors --atleast-version=0.9.11 libvirt
/usr/bin/python generator.py libvirt /usr/share/libvirt/api/libvirt-api.xml
Found 425 functions in /usr/share/libvirt/api/libvirt-api.xml
Found 0 functions in libvirt-override-api.xml
Generated 348 wrapper functions
Missing type converters: 
virStreamSinkFunc:1 
long long *:1 
virStreamSourceFunc:1 
ERROR: failed virStreamRecvHole
ERROR: failed virStreamSparseRecvAll
ERROR: failed virStreamSparseSendAll
error: command '/usr/bin/python' failed with exit status 1
E: pybuild pybuild:283: build: plugin distutils failed with: exit code=1: 
/usr/bin/python setup.py build 
dh_auto_build: pybuild --build -i python{version} -p 2.7 returned exit code 13
debian/rules:8: recipe for target 'build' failed
make: *** [build] Error 25

Bug#867690: calibre: Cannot connect to calibre server - UTF encoding errors

[Kamil Jonca]

Package: calibre
Version: 3.1.1+dfsg-1
Severity: normal

When I try use calibredb with remote server I got utf-encoding errors i.e.
%calibredb --with-library='http://localhost:8080/#CalibreLibrary' list  
   
DeDRM v6.1.0: In __init__  
DeDRM v6.1.0: In load_resources
DeDRM v6.1.0: verdir /home/kjonca/.config/calibre/plugins/DeDRM/6.1.0
DeDRM v6.1.0: In initialize
Traceback (most recent call last):
  File "/usr/bin/calibredb", line 20, in 
sys.exit(main())
  File "/usr/lib/calibre/calibre/db/cli/main.py", line 251, in main
return run_cmd(cmd, opts, args[1:], DBCtx(opts))
  File "/usr/lib/calibre/calibre/db/cli/main.py", line 55, in run_cmd
ret = m.main(opts, args, dbctx)
  File "/usr/lib/calibre/calibre/db/cli/cmd_list.py", line 324, in main
for_machine=opts.for_machine
  File "/usr/lib/calibre/calibre/db/cli/cmd_list.py", line 150, in do_list
ans = dbctx.run('list', fields, sort_by, ascending, search_text, limit)
  File "/usr/lib/calibre/calibre/db/cli/main.py", line 189, in run
return self.remote_run(name, m, *args)
  File "/usr/lib/calibre/calibre/db/cli/main.py", line 209, in remote_run
res = self.br.open_novisit(rq)
  File "/usr/lib/python2.7/dist-packages/mechanize/_mechanize.py", line 199, in 
open_novisit
return self._mech_open(url, data, visit=False, timeout=timeout)
  File "/usr/lib/python2.7/dist-packages/mechanize/_mechanize.py", line 230, in 
_mech_open
response = UserAgentBase.open(self, request, data)
  File "/usr/lib/python2.7/dist-packages/mechanize/_opener.py", line 193, in 
open
response = urlopen(self, req, data)
  File "/usr/lib/python2.7/dist-packages/mechanize/_urllib2_fork.py", line 344, 
in _open
'_open', req)
  File "/usr/lib/python2.7/dist-packages/mechanize/_urllib2_fork.py", line 332, 
in _call_chain
result = func(*args)
  File "/usr/lib/python2.7/dist-packages/mechanize/_urllib2_fork.py", line 
1142, in http_open
return self.do_open(httplib.HTTPConnection, req)
  File "/usr/lib/python2.7/dist-packages/mechanize/_urllib2_fork.py", line 
1115, in do_open
h.request(req.get_method(), req.get_selector(), req.data, headers)
  File "/usr/lib/python2.7/httplib.py", line 1042, in request
self._send_request(method, url, body, headers)
  File "/usr/lib/python2.7/httplib.py", line 1082, in _send_request
self.endheaders(body)
  File "/usr/lib/python2.7/httplib.py", line 1038, in endheaders
self._send_output(message_body)
  File "/usr/lib/python2.7/httplib.py", line 880, in _send_output
msg += message_body
UnicodeDecodeError: 'utf8' codec can't decode byte 0x95 in position 0: invalid 
start byte

upstream calibre works as expected.

-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=pl_PL.UTF-8, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8), 
LANGUAGE=pl_PL.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages calibre depends on:
ii  calibre-bin  3.1.1+dfsg-1
ii  fonts-liberation 1:1.07.4-2
ii  imagemagick  8:6.9.7.4+dfsg-11
ii  imagemagick-6.q16 [imagemagick]  8:6.9.7.4+dfsg-11
ii  libjs-coffeescript   1.10.0~dfsg-1
ii  libjs-mathjax2.7.0-2
ii  poppler-utils0.48.0-2
ii  python-apsw  3.16.2-r1-2+b1
ii  python-beautifulsoup 3.2.1-1
ii  python-chardet   3.0.4-1
ii  python-cherrypy3 3.5.0-2
ii  python-cssselect 1.0.1-1
ii  python-cssutils  1.0-4.1
ii  python-dateutil  2.5.3-2
ii  python-dbus  1.2.4-1+b2
ii  python-feedparser5.1.3-3
ii  python-imaging   4.1.1-3
ii  python-lxml  3.8.0-1+b1
ii  python-markdown  2.6.8-1
ii  python-mechanize 1:0.2.5-3
ii  python-netifaces 0.10.4-0.1+b3
ii  python-pil   4.1.1-3
ii  python-pkg-resources 36.0.1-1
ii  python-pyparsing 2.1.10+dfsg1-1
ii  python-pyqt5 5.7+dfsg-5+b1
ii  python-pyqt5.qtsvg   5.7+dfsg-5+b1
ii  python-pyqt5.qtwebkit5.7+dfsg-5+b1
ii  python-regex 0.1.20170117-1+b1
ii  python-routes2.3.1-2
ii  python2.72.7.13-2
ii  xdg-utils1.1.1-1

Versions of packages calibre recommends:
ii  python-dnspython  1.15.0-1

calibre suggests no packages.

-- no debconf information

Bug#846314: alot: Migrate from pygpgme to python-gpg

[Jonathan Wiltshire]

On Sat, Jul 08, 2017 at 12:03:30AM -0700, Jordan Justen wrote:
> On 2017-06-27 11:08:09, Jonathan Wiltshire wrote:
> > Control: severity -1 serious
> > 
> > Hi,
> > 
> > Bumping severity, because in ~1 month I will request removal of pygpgme
> > from unstable.
> 
> According to:
> 
> https://udd.debian.org/cgi-bin/autoremovals.cgi
> 
> the 'alot' package is 'flagged for removal in 5.1 days', but your
> update says pygpgme will be removed in ~1 month.

You're confusing suites. It will be automatically removed from testing in 5
days. I will be requesting removal of pygpgme from unstable at the end of
this month (but it's up to ftp masters if they do so immediately and break
things, or wait for dependencies to be resolved).

Thanks,

-- 
Jonathan Wiltshire  j...@debian.org
Debian Developer http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51

Bug#867643: [DRE-maint] Bug#867643: schleuder: FTBFS: ERROR: Test "ruby2.3" failed: Failure/Error: expect(output).to include("98769E8A1091F36BD88403ECF71A3F8412D83889 was fetched (new key)")

[Lucas Nussbaum]

On 08/07/17 at 12:16 +0200, Georg Faerber wrote:
> Hi Lucas,
> 
> Thanks for the report:
> 
> On 17-07-08 08:28:30, Lucas Nussbaum wrote:
> >
> > [...] 
> >
> > About the archive rebuild: The rebuild was done on EC2 VM instances
> > from Amazon Web Services, using a clean, minimal and up-to-date
> > chroot. Every failed build was retried once to eliminate random
> > failures.
> 
> Was a wrapper used, like pbuilder or sbuild?

Yes, sbuild

Lucas

Bug#792075: From David Cowan

[David Cowan]

Hello friend,

How are you today?

Did you receive my previous email?

I need your urgent cooperation,Please confirm the receipt of this email for 
more details

Regards,
Mr.David Cowan

Bug#865308: khronos-api is not Multi-Arch compatible

[Jens Reyer]

Hi Mike

On 07/03/2017 06:34 AM, Hugh McMaster wrote:
> This bug is still present. Has any progress been made on resolving this issue?

>From all I know this is the correct fix. See also
https://wiki.debian.org/MultiArch/Hints#ma-foreign

Mike, I'd like to NMU with

- the patch from this bug

- the patch from #865307 (but wrapped at 72 chars and keeping the double
space after ".")

- probably a new upstream version (assuming it is trivial and works with
Wine, otherwise I'd postpone that)

Is that ok?

Instead I might also upload to deferred/10 or mentors first.
And/or I might add myself as uploader.

Greets!!
jre

Bug#867042: lintian: new tag: emacsen-common-without-dh-elpa

[Sean Whitton]

control: tag -1 -moreinfo +patch

Hello Niels,

On Fri, Jul 07, 2017 at 12:02:56PM +0100, Sean Whitton wrote:
> I'll prepare another patch for this bug once we've updated dh-elpa.

dh-elpa no longer generates ${misc:Built-Using}, and I've pushed some
more commits to my branch regarding this bug.

It turns out not to be possible to use the technique you referred to on
IRC[1] because dh_elpa doesn't actually install the maintscripts into
the package: it relies on dh_installemacsen to do this.  So I've used a
different heuristic.

[1]  
https://anonscm.debian.org/git/debhelper/debhelper.git/commit/?id=1d94471647f372c55bfed8e33f9e6d33c30ab85c

-- 
Sean Whitton


signature.asc
Description: PGP signature

Bug#834653: nlopt: typo in debian/rules (override_dh_auto_reconf -> override_dh_autoreconf)

[Sergey B Kirpichev]

On Wed, 17 Aug 2016 21:32:09 +0100 Chris Lamb  wrote:
> I believe there is a typo in your debian/rules (override_dh_auto_reconf -> 
> override_dh_autoreconf).
> 
> I don't believe this affects the working of the package, but if anyone
> in the future added the "dh $@ --with=autoreconf" magic, then it would
> _not_ be able to see your override. Therefore, I suggest you normalise
> the name.

Patched.

Chris, could you review and upload package (I don't have
permissions for this package, as before).

Package was uploaded to m.d.n:
https://mentors.debian.net/package/nlopt

It seems, that git packaging was started anyway:
https://anonscm.debian.org/cgit/debian-science/packages/nlopt.git/
I see that Git now is a standard for the Debian Science, so I hope - this
is fine, despite Christophe may disagree with such a decision.

So, my work was fully pushed to this git repo, except for the final
commit, that touches changelog.  Please fix everything you don't
like, then commit and tag release.

I'm CC'ing Afif, who started packaging in Git.

Bug#837387: xul-ext-compactheader: uninstallable in jessie and wheezy

[Andreas Beckmann]

On Sat, 21 Jan 2017 21:47:55 +0100 Andreas Beckmann  wrote:
> Hi David,
> 
> could you take a look at updating xul-ext-compactheader in jessie (and
> wheezy)? These have become uninstallable after switching to newer
> icedove versions in stable/oldstable.

in the mean time: s/icedove/thunderbird/

Ping?

Should xul-ext-compactheader be removed from jessie instead?


Andreas

Bug#867688: Upstart files not removed on upgrade

[Laurent Bigonville]

Package: samba
Version: 2:4.6.5+dfsg-3
Severity: normal

Hi,

The last upload of the samba package stopped shipping the upstart files,
but as the files are installed in /etc, they are not removed from the
disk during the update.

Shouldn't these files be explicitly removed?

Regards,

Laurent Bigonville

-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (1, 
'experimental-debug'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.11.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_BE.UTF-8, LC_CTYPE=fr_BE.UTF-8 (charmap=UTF-8), 
LANGUAGE=fr_BE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Bug#867533: test failure when updating to 3.9.0

[Pirate Praveen]

Control: retitle -1 update ruby-parser to latest upstream release

On 07/08/2017 07:20 PM, Antonio Terceiro wrote:
> It would sound better, yes. "the version in the archive is not recent
> enough" is an issue with a package that is in debian; "this new version
> that is not in the archive does not work" is not.

fair enough. Retitled.




signature.asc
Description: OpenPGP digital signature

Bug#867599: gem2deb fails to install pure ruby part when a gem has both pure ruby and native libs

[Antonio Terceiro]

Control: severity -1 wishlist
Control: retitle -1 gem2deb: support installing Ruby code not in lib/

On Sat, Jul 08, 2017 at 01:48:19PM +0530, Pirate Praveen wrote:
> On 07/08/2017 11:53 AM, Pirate Praveen wrote:
> > On 07/08/2017 07:44 AM, Antonio Terceiro wrote:
> >> if the pure ruby libraries were not being installed, you would get a
> >> LoadError (i.e. a `require` statement failed), but that's not what is
> >> happening here.
> > For tests, the pure ruby libs are available in the source tree.
> > 
> > If I move the src/ruby/lib folder (I have locally installed ruby-grpc
> > deb), then it fails with `require': cannot load such file -- grpc
> > (LoadError)
> 
> I think gem2deb expects libraries only in lib.

From what I see from the source code, grpc is a library with multiple
language bindings; packaging it as a Ruby package is wrong. there is
even already a grpc source package in Debian. you should send a patch to
that package to generate a ruby-grpc binary package from there, instead
of creating a new ruby-specific package.

your ruby-grpc has a lot of embedded code copies under third_party/,
which has been already solved in grpc source package.

also, we can't possibly make gem2deb "just work" in such packages
because they deviate a lot from what a standard ruby package looks like.

> s.require_paths = %w( src/ruby/lib src/ruby/bin src/ruby/pb ) mentions
> it in grpc.gemspec but I don't know if gem2deb can reply on that.

gem2deb could be made to work with it, but I don't expect to get to it
any time soon. For now, I suggest that you

- drop your ruby-grpc
- send a patch to the existing grpc source to produce a ruby-grcp binary
  from it


signature.asc
Description: PGP signature

Bug#849987: fonts-font-awesome: Symlink in /usr/share/javascript for javascript-common

[Andreas Beckmann]

Followup-For: Bug #849987
Control: reopen -1
Control: found -1 4.7.0~dfsg-3

Hi,

the symlink that was added is broken:

/usr/share/javascript/font-awesome -> ../fonts/fonts-font-awesome

Either it should point to ../fonts-font-awesome or the content of
/usr/share/fonts-font-awesome should be rather below /usr/share/fonts.


Andreas

Bug#867687: ITP: golang-github-jlaffaye-ftp -- FTP client package for Go

[Dr. Tobias Quathamer]

Package: wnpp
Severity: wishlist
Owner: Dr. Tobias Quathamer 

* Package name: golang-github-jlaffaye-ftp
  Version : 0.0~git20170707.0.a05056b-1
  Upstream Author : Julien Laffaye
* URL : https://github.com/jlaffaye/ftp
* License : ISC
  Programming Lang: Go
  Description : FTP client package for Go
 This package implements an FTP client as described in RFC 959.


The package is needed as a build-dependency for the upcoming
release of rclone.

Regards,
Tobias



signature.asc
Description: OpenPGP digital signature

Bug#422347: [pkg-ntp-maintainers] Packaging ntpq seperately

[Josip Rodin]

On Fri, Jul 07, 2017 at 09:01:35AM +0200, Bernhard Schmidt wrote:
> > Yes, it's common to set up a network service in a way that only localhost
> > will access it. No, that doesn't conflict with the idea that server software
> > goes into server software packages and client software goes into client
> > software packages.
> 
> Well, patches accepted, but ntpq is not really the client for ntp (or
> the ntp protocol). It can be compared to a control program, which is
> often inside the server package (i.e. unbound-control in unbound).

I thought of responding to this by saying I could be persuaded to this
argument in the case of ntpdc, which resembles unbound-control, or rndc,
in that it actually exerts control over ntpd, yet ntpq was just a query
program that monitors ntpds rather than controls them...

But then I noticed that ntpq included commands like saveconfig,
config-from-file, ... And, conversely, ntpdc includes numerous *stats and
*info commands. It's hard to argue any matter of principle when
the underpinnings of the matter appear devoid of it.

Since nobody remembers the etch upgrade that had broken this, I guess the
only remaining argument would be practicality mentioned by the submitter of
#582128 - they want to run ntpq and ntpdc from a machine that has chrony
installed. That's severity wishlist rather than normal, though, because of
the lack of precedent with the aforementioned rndc and unbound-control.

-- 
 2. That which causes joy or happiness.

Bug#867686: lava-dispatcher: unowned files after purge (policy 6.8, 10.8): /etc/lava-dispatcher/lava-slave

[Andreas Beckmann]

Package: lava-dispatcher
Version: 2017.7-1
Severity: important
User: debian...@lists.debian.org
Usertags: piuparts

Hi,

during a test with piuparts I noticed your package left unowned files on
the system after purge, which is a violation of policy 6.8 (or 10.8):

https://www.debian.org/doc/debian-policy/ch-maintainerscripts.html#s-removedetails

Filing this as important as having a piuparts clean archive is a release
goal since lenny.

>From the attached log (scroll to the bottom...):

1m10.7s ERROR: FAIL: Package purging left files on system:
  /etc/lava-dispatcher/lava-slavenot owned


cheers,

Andreas


lava-dispatcher_2017.7-1.log.gz
Description: application/gzip