Bug#833569: plinth: Should explain how to connect to radicale

[Robert Pollak]

On Sat, 06 Aug 2016 09:38:54 +0200 Petter Reinholdtsen 
wrote:
> When enabling radicale on your FreedomBox, there is no explanation in
> the web interface on how to get access to the radicale service.

This seems to be no longer true:
The Radicale page links (via "Learn more...") to the local page
/plinth/help/manual/Radicale, which gives URL patterns.

(Seen on plinth 0.40.0.)

Bug#864111: libccrtp: diff for NMU version 2.0.9-2.3

[Andreas Metzler]

Control: tags 864111 + patch
Control: tags 864111 + pending


Dear maintainer,

I've prepared an NMU for libccrtp (versioned as 2.0.9-2.3) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

Regards.
diff -Nru libccrtp-2.0.9/debian/changelog libccrtp-2.0.9/debian/changelog
--- libccrtp-2.0.9/debian/changelog	2015-08-31 15:55:31.0 +0200
+++ libccrtp-2.0.9/debian/changelog	2018-10-27 11:46:51.0 +0200
@@ -1,3 +1,11 @@
+libccrtp (2.0.9-2.3) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of (dummy transition package)
+libgcrypt11-dev. Closes: #864111
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 11:46:51 +0200
+
 libccrtp (2.0.9-2.2) unstable; urgency=medium
 
   * Non-maintainer upload.
diff -Nru libccrtp-2.0.9/debian/control libccrtp-2.0.9/debian/control
--- libccrtp-2.0.9/debian/control	2015-08-31 15:53:24.0 +0200
+++ libccrtp-2.0.9/debian/control	2018-10-27 11:46:51.0 +0200
@@ -4,7 +4,7 @@
 Maintainer: Debian VoIP Team 
 Uploaders: Mark Purcell , Mikael Magnusson , Kilian Krause 
 Build-Depends: debhelper (>= 9), pkg-config, dh-autoreconf, autotools-dev, dpkg-dev (>= 1.13.19), doxygen, texinfo,
- libucommon-dev (>= 6.4.4-1), libxml2-dev, libgcrypt11-dev | libgcrypt-dev,
+ libucommon-dev (>= 6.4.4-1), libxml2-dev, libgcrypt20-dev | libgcrypt-dev,
 Standards-Version: 3.9.5
 Homepage: http://www.gnu.org/software/ccrtp/
 Vcs-Svn: svn://anonscm.debian.org/pkg-voip/libccrtp/trunk/


signature.asc
Description: PGP signature

Bug#864141: yubiserver: diff for NMU version 0.6-3.1

[Andreas Metzler]

Control: tags 864141 + patch
Control: tags 864141 + pending

Dear maintainer,

I've prepared an NMU for yubiserver (versioned as 0.6-3.1) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

Regards.
diff -Nru yubiserver-0.6/debian/changelog yubiserver-0.6/debian/changelog
--- yubiserver-0.6/debian/changelog	2015-08-15 11:37:56.0 +0200
+++ yubiserver-0.6/debian/changelog	2018-10-27 11:43:28.0 +0200
@@ -1,3 +1,11 @@
+yubiserver (0.6-3.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of (dummy transition package)
+libgcrypt11-dev. Closes: #864141
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 11:43:28 +0200
+
 yubiserver (0.6-3) unstable; urgency=high
 
   * Upgrade automake.
diff -Nru yubiserver-0.6/debian/control yubiserver-0.6/debian/control
--- yubiserver-0.6/debian/control	2015-06-29 10:39:44.0 +0200
+++ yubiserver-0.6/debian/control	2018-10-27 11:43:28.0 +0200
@@ -2,7 +2,7 @@
 Section: admin
 Priority: optional
 Maintainer: Chrysostomos Nanakos 
-Build-Depends: debhelper (>= 9.20120909), autotools-dev, libsqlite3-dev, pkg-config, libgcrypt11-dev, libmhash-dev, libconfig-dev, automake, libev-dev (>= 1:3.9), dpkg-dev (>= 1.16.8)
+Build-Depends: debhelper (>= 9.20120909), autotools-dev, libsqlite3-dev, pkg-config, libgcrypt20-dev, libmhash-dev, libconfig-dev, automake, libev-dev (>= 1:3.9), dpkg-dev (>= 1.16.8)
 Standards-Version: 3.9.6
 Homepage: http://www.include.gr/debian/yubiserver
 #Vcs-Git: git://git.debian.org/collab-maint/yubiserver.git


signature.asc
Description: PGP signature

Bug#864095: cadaver: diff for NMU version 0.23.3-2.1

[Andreas Metzler]

Control: tags 864095 + patch
Control: tags 864095 + pending

Dear maintainer,

I've prepared an NMU for cadaver (versioned as 0.23.3-2.1) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

Regards.

-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'
diff -u cadaver-0.23.3/debian/changelog cadaver-0.23.3/debian/changelog
--- cadaver-0.23.3/debian/changelog
+++ cadaver-0.23.3/debian/changelog
@@ -1,3 +1,11 @@
+cadaver (0.23.3-2.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of (dummy transition package)
+libgcrypt11-dev. Closes: #864095
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 11:39:57 +0200
+
 cadaver (0.23.3-2) unstable; urgency=low
 
   * debian/control, debian/rules:
diff -u cadaver-0.23.3/debian/control cadaver-0.23.3/debian/control
--- cadaver-0.23.3/debian/control
+++ cadaver-0.23.3/debian/control
@@ -4,7 +4,7 @@
 Maintainer: Sebastian Harl 
 Build-Depends: debhelper (>= 5), dpkg-dev (>= 1.14.6), dpatch,
  autotools-dev,
- libgcrypt11-dev,
+ libgcrypt20-dev,
  libncurses5-dev,
  libneon27-gnutls-dev (>= 0.28),
  libreadline-dev | libreadline5-dev,


signature.asc
Description: PGP signature

Bug#912016: liborcus: Please package the tools

[Alex Hermann]

Source: liborcus
Version: 0.14.0+really0.13.4-1
Severity: wishlist

Dear Maintainer,

By default, a number of tools are build that can be used to convert
spreadsheets between different formats:

/usr/bin/orcus-css-dump
/usr/bin/orcus-csv
/usr/bin/orcus-detect
/usr/bin/orcus-gnumeric
/usr/bin/orcus-json
/usr/bin/orcus-mso-encryption
/usr/bin/orcus-ods
/usr/bin/orcus-styles-ods
/usr/bin/orcus-xls-xml
/usr/bin/orcus-xlsx
/usr/bin/orcus-xml
/usr/bin/orcus-xml-dump
/usr/bin/orcus-yaml
/usr/bin/orcus-zip-dump

Can you please consider packaging these tools?

Attached patch does the trick for me.

-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (500, 'stable'), 
(400, 'experimental'), (200, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.18.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=nl_NL.utf8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)
diff -urN -x patches a/debian/control b/debian/control
--- a/debian/control2018-08-30 11:00:35.0 +0200
+++ b/debian/control2018-07-20 13:01:15.637047952 +0200
@@ -91,3 +91,19 @@
  .
  This package contains the API documentation.
 
+Package: liborcus-bin
+Section: libs
+Architecture: any
+Multi-Arch: same
+Pre-Depends: ${misc:Pre-Depends}
+Depends: ${shlibs:Depends}, ${misc:Depends}
+Description: library for processing spreadsheet documents - binaries
+ Orcus is a library that provides a collection of standalone file processing
+ filters.  It is currently focused on providing filters for spreadsheet
+ documents, but filters for other productivity application types (such as
+ wordprocessor and presentation) are in consideration.
+ .
+ The library currently includes filters for xlsx, ods, csv, and generic XML
+ formats.
+ .
+ This packacge contains the command-line applications for converting documents.
diff -urN -x patches a/debian/liborcus-bin.install b/debian/liborcus-bin.install
--- a/debian/liborcus-bin.install   1970-01-01 01:00:00.0 +0100
+++ b/debian/liborcus-bin.install   2018-07-20 12:59:16.063249795 +0200
@@ -0,0 +1 @@
+usr/bin/*

Bug#908553: potential solution (found by smilie)

[debbug]

Please remove --with-intl from the configure line in debian/rules.

Regards,

Igor2

Bug#901416: Suggests: apparmor-profiles-extra is insufficient

[intrigeri]

intrigeri:
> s/Apparmor/AppArmor/ :)

There was another similar typo, attached patch fixes both.

Cheers,
-- 
intrigeri

>From 97cbdd10a4f9af31d78136a1f1c76f2a4126b806 Mon Sep 17 00:00:00 2001
From: intrigeri 
Date: Sat, 27 Oct 2018 09:34:33 +
Subject: [PATCH 2/3] Fix spelling of "AppArmor".

---
 debian/control | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/debian/control b/debian/control
index 9d98915..d0b22f2 100644
--- a/debian/control
+++ b/debian/control
@@ -28,10 +28,10 @@ Description: Simple web browser by suckless community
 Package: surf-apparmor
 Architecture: all
 Depends: apparmor-profiles-extra
-Description: Simple web browser by suckless community (apparmor profile)
+Description: Simple web browser by suckless community (AppArmor profile)
  surf is a simple web browser based on WebKit/GTK+. It is able to display
  websites and follow links. It supports the XEmbed protocol which makes it
  possible to embed it in another application. Furthermore, one can point surf to
  another URI by setting its XProperties.
  .
- This package provides an Apparmor policy for confining Surf.
+ This package provides an AppArmor policy for confining Surf.
-- 
2.19.1

Bug#901416: Suggests: apparmor-profiles-extra is insufficient

[intrigeri]

Control: severity -1 serious

Hi Matthew & Reiner!

Due to this bug, merely installing the surf package on a default
Debian testing/sid system breaks unrelated functionality, which is RC
⇒ bumping severity.

FYI I'll file another bug today about an incompatibility of the
shipped AppArmor policy with an upcoming upload of
apparmor-profiles-extra. We'll need to version the dependency on
apparmor-profiles-extra and to drop a few rules (that were added to
the gstreamer abstration) from the policy.

And about the proposed patch:

Regarding moving the policy to a new, dedicated package: if that
policy breaks functionality or the maintainers don't wish to support
it, fine; otherwise, I'd rather see it installed by default.

> + This package provides an Apparmor policy for confining Surf.

s/Apparmor/AppArmor/ :)

Cheers,
-- 
intrigeri

Bug#864125: netatalk: diff for NMU version 2.2.6-1.1

[Andreas Metzler]

Control: tags 864125 + patch
Control: tags 864125 + pending


Dear maintainer,

I've prepared an NMU for netatalk (versioned as 2.2.6-1.1) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

Regards.
diff -Nru netatalk-2.2.6/debian/changelog netatalk-2.2.6/debian/changelog
--- netatalk-2.2.6/debian/changelog	2017-07-30 20:08:55.0 +0200
+++ netatalk-2.2.6/debian/changelog	2018-10-27 11:35:03.0 +0200
@@ -1,3 +1,11 @@
+netatalk (2.2.6-1.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of (dummy transition package)
+libgcrypt11-dev. Closes: #864125
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 11:35:03 +0200
+
 netatalk (2.2.6-1) unstable; urgency=medium
 
   [ upstream ]
diff -Nru netatalk-2.2.6/debian/control netatalk-2.2.6/debian/control
--- netatalk-2.2.6/debian/control	2017-07-30 20:08:44.0 +0200
+++ netatalk-2.2.6/debian/control	2018-10-27 11:35:03.0 +0200
@@ -15,7 +15,7 @@
  libcups2-dev,
  libkrb5-dev,
  libltdl3-dev,
- libgcrypt11-dev,
+ libgcrypt20-dev,
  libcrack2-dev,
  libavahi-client-dev,
  libldap2-dev,
diff -Nru netatalk-2.2.6/debian/rules netatalk-2.2.6/debian/rules
--- netatalk-2.2.6/debian/rules	2017-07-30 20:05:24.0 +0200
+++ netatalk-2.2.6/debian/rules	2018-10-27 11:35:03.0 +0200
@@ -93,7 +93,7 @@
 
 # Needed for by upstream build process
 CDBS_BUILD_DEPENDS += , libdb-dev, libwrap0-dev, libpam0g-dev, libcups2-dev, libkrb5-dev, libltdl3-dev
-CDBS_BUILD_DEPENDS += , libgcrypt11-dev, libcrack2-dev
+CDBS_BUILD_DEPENDS += , libgcrypt20-dev, libcrack2-dev
 CDBS_BUILD_DEPENDS += , libavahi-client-dev, libldap2-dev, libacl1-dev
 ifneq (,$(findstring openssl,$(DEB_BUILD_OPTIONS)))
 CDBS_BUILD_DEPENDS += , $(openssl_build_depends)


signature.asc
Description: PGP signature

Bug#911965: kicad: Add libngspice to dependancy list

[Felix Salfelder]

On Sat, Oct 27, 2018 at 11:09:47AM +0200, Carsten Schoenert wrote:
> That's all correct, but right now upstream is opening libngspice.so,
> *not* libngspice.so.0!

which i suggested to fix. in the package and (also) upstream.

> Upstream
> stated they had problems to get this working correctly (while this
> feature was added in 2016) and they did the fallback to use dlopen
> globally here.

To me, it looked more like they had good reasons not to link. and i can't
see anything wrong with calling dlopen in that situation. I did not know
anybody is even trying to change it. YMMV.

> Because of this I won't invest more time here, there is no real gain on
> doing this.

fair enough.

> > also, the package name libngspice0-dev seems to be wrong. that should
> > have produced a lintian warning...?
> 
> No and it never did.
> [..]
> $ grep Package:
> /var/lib/apt/lists/*_debian_dists_testing_main_binary-amd64_Packages |
> grep "\-dev$"

My memory was corrupted on this, thanks for the clarification!

best
felix

Bug#912011: Add option to Copy/Move to preserve sparse files

[Witold Baryluk]

Package: mc
Version: 3:4.8.21-1
Followup-For: Bug #912011

Actually, sorry, please close this bug report.

mc in fact does preserve sparse files by default. I just tested it and sparse
files were still sparse after copying.

(would be nice to have an option in copy/move dialog tho, I guess)

Thanks.

Bug#864122: linux-minidisc: diff for NMU version 0.9.15-1.1

[Andreas Metzler]

Control: tags 864122 + patch
Control: tags 864122 + pending

Dear maintainer,

I've prepared an NMU for linux-minidisc (versioned as 0.9.15-1.1) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

kind regards, cu Andreas
diff -Nru linux-minidisc-0.9.15/debian/changelog linux-minidisc-0.9.15/debian/changelog
--- linux-minidisc-0.9.15/debian/changelog	2017-09-19 20:15:58.0 +0200
+++ linux-minidisc-0.9.15/debian/changelog	2018-10-27 11:27:32.0 +0200
@@ -1,3 +1,11 @@
+linux-minidisc (0.9.15-1.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of (dummy transition package)
+libgcrypt11-dev. Closes: #864122
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 11:27:32 +0200
+
 linux-minidisc (0.9.15-1) unstable; urgency=medium
 
   * New upstream release.
diff -Nru linux-minidisc-0.9.15/debian/control linux-minidisc-0.9.15/debian/control
--- linux-minidisc-0.9.15/debian/control	2017-09-19 20:15:06.0 +0200
+++ linux-minidisc-0.9.15/debian/control	2018-10-27 11:27:08.0 +0200
@@ -2,7 +2,7 @@
 Section: sound
 Priority: extra
 Maintainer: John Paul Adrian Glaubitz 
-Build-Depends: debhelper (>= 9.0.0), qtbase5-dev, qttools5-dev-tools, libglib2.0-dev, libmad0-dev, libgcrypt11-dev, libusb-1.0-0-dev, libid3tag0-dev, libtag1-dev
+Build-Depends: debhelper (>= 9.0.0), qtbase5-dev, qttools5-dev-tools, libglib2.0-dev, libmad0-dev, libgcrypt20-dev, libusb-1.0-0-dev, libid3tag0-dev, libtag1-dev
 Standards-Version: 4.1.0
 Homepage: https://wiki.physik.fu-berlin.de/linux-minidisc
 Vcs-Git: git://github.com/glaubitz/linux-minidisc-debian.git


signature.asc
Description: PGP signature

Bug#912014: python-mechanize: Please add python 3 packages

[Petter Reinholdtsen]

Package: python-mechanize
Version: 1:0.2.5-3

Hi.  I would like to use the mechanize package with python 3.  Please
include a python3 version of the package in Debian.
-- 
Happy hacking
Petter Reinholdtsen

Bug#912013: mupdf: CVE-2018-18662

[Salvatore Bonaccorso]

Source: mupdf
Version: 1.13.0+ds1-3
Severity: important
Tags: security upstream
Forwarded: https://bugs.ghostscript.com/show_bug.cgi?id=700043

Hi,

The following vulnerability was published for mupdf.

CVE-2018-18662[0]:
| There is an out-of-bounds read in fz_run_t3_glyph in fitz/font.c in
| Artifex MuPDF 1.14.0, as demonstrated by mutool.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2018-18662
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18662
[1] https://bugs.ghostscript.com/show_bug.cgi?id=700043

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#911965: kicad: Add libngspice to dependancy list

[Carsten Schoenert]

Am 27.10.18 um 10:21 schrieb Felix Salfelder:
> On Sat, Oct 27, 2018 at 10:01:29AM +0200, Carsten Schoenert wrote:
>>> Probably the approach used in gnucap-python will work here as well:
>>> - find the SONAME in ./configure, tweak the dlopen call, see [1],
>>> - tweak d/rules: link a dummy executable, inject shlibdeps [2].
>>
>> The dlopen call is currently searching for libngspice.so instead of
>> libngspice.so.0 so your suggestion would not solve all problems.
> 
> Hi Carsten.
> 
> I suggested to dlopen libngspice.so.0. the point is, that you need to
> resolve it during configure time.
> 
> $ readelf -d /usr/lib/x86_64-linux-gnu/libngspice.so |grep SONAME
>  0x000e (SONAME) Library soname: [libngspice.so.0]

That's all correct, but right now upstream is opening libngspice.so,
*not* libngspice.so.0!
So yes, I could get the library name with the API version but this all
wouldn't create the correct depended library if we don't patch the
source. And dlopen isn't the solution we want in the end. Upstream
stated they had problems to get this working correctly (while this
feature was added in 2016) and they did the fallback to use dlopen
globally here. In the past this all doesn't really matter because
ngspice was in non-free. This has changed and I'm pretty sure this all
will get solved in the near future to a "correct" implementation.
Because of this I won't invest more time here, there is no real gain on
doing this.

> also, the package name libngspice0-dev seems to be wrong. that should
> have produced a lintian warning...?

No and it never did.

https://lintian.debian.org/full/pkg-electronics-de...@alioth-lists.debian.net.html#ngspice

Once we have a ngspice package with a API version 1 or greater we can
switch over to libngspice-dev which would be a virtual package and
depending on the most recent version of libngspice$(API_VERSION)-dev.
But I've selected this package name for reasons, it's a bit unusual,
yes. I've worked on ngspice I guess for other one year, I posted
sometimes my work here on the list but no one has raised hands. So
that's why the situation is what we see in the archive today.

Policy has no hard requirements on this.

https://www.debian.org/doc/debian-policy/ch-sharedlibs.html#development-files

We can find various versions of package names for -dev packages.

$ grep Package:
/var/lib/apt/lists/*_debian_dists_testing_main_binary-amd64_Packages |
grep "\-dev$"

Hmm, might I change this before the final freeze of buster.

-- 
Regards
Carsten Schoenert

Bug#909469: Bug #909469: lilyterm: crash when closing 2nd window

[Bernhard Übelacker]

Dear Maintainer,
just tried to debug this issue.

When running regularly I received right before the crash that line:

   corrupted double-linked list


When running with valgrind it receives this error:

==8018== Invalid free() / delete / delete[] / realloc()
==8018==at 0x48369EB: free (vg_replace_malloc.c:530)
==8018==by 0x1274DE: close_page (notebook.c:1019)
==8018==by 0x5101B6C: g_closure_invoke (gclosure.c:810)
...


With a debugger connected it points to that location:

(gdb) bt
#0  0x048369eb in _vgr10050ZU_VgSoSynsomalloc_free (p=0xe0c5880) at 
m_replacemalloc/vg_replace_malloc.c:530
#1  0x001274df in close_page (vte=, 
close_type=) at notebook.c:1019
#2  0x05101b6d in g_closure_invoke (closure=0xe0bb188, 
return_value=0x0, n_param_values=2, param_values=0x1ffeffed40, 
invocation_hint=0x1ffeffecc0) at ../../../../gobject/gclosure.c:810
#3  0x051148f3 in signal_emit_unlocked_R (node=node@entry=0xc2afc70, 
detail=detail@entry=0, instance=instance@entry=0xe02f790, 
emission_return=emission_return@entry=0x0, 
instance_and_params=instance_and_params@entry=0x1ffeffed40) at 
../../../../gobject/gsignal.c:3635
#4  0x0511d882 in g_signal_emit_valist (instance=, 
signal_id=, detail=, 
var_args=var_args@entry=0x1ffeffef10) at ../../../../gobject/gsignal.c:3391
#5  0x0511decf in g_signal_emit (instance=, 
signal_id=, detail=detail@entry=0) at 
../../../../gobject/gsignal.c:3447
#6  0x052afc54 in vte::platform::Widget::emit_child_exited (status=9, 
this=) at ../../src/widget.hh:47
#7  vte::platform::Widget::dispose (this=) at 
../../src/widget.cc:130
#8  0x05298c63 in vte_terminal_dispose (object=0xe02f790) at 
../../src/vtegtk.cc:412
#9  0x05108448 in g_object_run_dispose (object=0xe02f790) at 
../../../../gobject/gobject.c:1108
#10 0x0496fc10 in gtk_box_forall (container=, 
include_internals=, callback=0x4bc5e50 , 
callback_data=0x0) at ../../../../gtk/gtkbox.c:2671
#11 0x049bab16 in gtk_container_destroy (widget=0xe0ac9c0) at 
../../../../gtk/gtkcontainer.c:1700
#12 0x05101a81 in g_closure_invoke (closure=0x9f27378, 
return_value=0x0, n_param_values=1, param_values=0x1ffefff220, 
invocation_hint=0x1ffefff1a0) at ../../../../gobject/gclosure.c:810
#13 0x05114c4a in signal_emit_unlocked_R (node=node@entry=0x9f27490, 
detail=detail@entry=0, instance=instance@entry=0xe0ac9c0, 
emission_return=emission_return@entry=0x0, 
instance_and_params=instance_and_params@entry=0x1ffefff220) at 
../../../../gobject/gsignal.c:3549
#14 0x0511d882 in g_signal_emit_valist (instance=, 
signal_id=, detail=, 
var_args=var_args@entry=0x1ffefff3d0) at ../../../../gobject/gsignal.c:3391
#15 0x0511decf in g_signal_emit (instance=instance@entry=0xe0ac9c0, 
signal_id=, detail=detail@entry=0) at 
../../../../gobject/gsignal.c:3447
#16 0x04bce40c in gtk_widget_dispose (object=0xe0ac9c0) at 
../../../../gtk/gtkwidget.c:12098
#17 0x05108448 in g_object_run_dispose (object=0xe0ac9c0) at 
../../../../gobject/gobject.c:1108
#18 0x04aa87be in gtk_notebook_forall (container=, 
include_internals=0, callback=0x4bc5e50 , 
callback_data=0x0) at ../../../../gtk/gtknotebook.c:4578
#19 0x049bab16 in gtk_container_destroy (widget=0xe01dc30) at 
../../../../gtk/gtkcontainer.c:1700
#20 0x05101a81 in g_closure_invoke (closure=0x9f27378, 
return_value=0x0, n_param_values=1, param_values=0x1ffefff700, 
invocation_hint=0x1ffefff680) at ../../../../gobject/gclosure.c:810
#21 0x05114c4a in signal_emit_unlocked_R (node=node@entry=0x9f27490, 
detail=detail@entry=0, instance=instance@entry=0xe01dc30, 
emission_return=emission_return@entry=0x0, 
instance_and_params=instance_and_params@entry=0x1ffefff700) at 
../../../../gobject/gsignal.c:3549
#22 0x0511d882 in g_signal_emit_valist (instance=, 
signal_id=, detail=, 
var_args=var_args@entry=0x1ffefff8b0) at ../../../../gobject/gsignal.c:3391
#23 0x0511decf in g_signal_emit (instance=instance@entry=0xe01dc30, 
signal_id=, detail=detail@entry=0) at 
../../../../gobject/gsignal.c:3447
#24 0x04bce40c in gtk_widget_dispose (object=0xe01dc30) at 
../../../../gtk/gtkwidget.c:12098
#25 0x05108448 in g_object_run_dispose (object=0xe01dc30) at 
../../../../gobject/gobject.c:1108
#26 0x04bda4a9 in gtk_window_forall (container=0xdfb4440, 
include_internals=0, callback=0x4bc5e50 , 
callback_data=0x0) at ../../../../gtk/gtkwindow.c:8540
#27 0x049bab16 in gtk_container_destroy (widget=0xdfb4440) at 
../../../../gtk/gtkcontainer.c:1700
#28 0x05101b6d in g_closure_invoke (closure=0x9f27378, 
return_value=0x0, n_param_values=1, param_values=0x1ffefffbe0, 
invocation_hint=0x1ffefffb60) at ../../../../gobject/gclosure.c:810
#29 0x05114c4a in signal_emit_unlocked_R (node=node@entry=0x9f27490, 
detail=detail@entry=0, instance=instance@entry=0xdfb4440, 
emission_return=emission_return@entry=0x0, 

Bug#912012: tiff: CVE-2018-18661

[Salvatore Bonaccorso]

Source: tiff
Version: 4.0.9-6
Severity: important
Tags: security upstream
Forwarded: http://bugzilla.maptools.org/show_bug.cgi?id=2819

Hi,

The following vulnerability was published for tiff.

CVE-2018-18661[0]:
| An issue was discovered in LibTIFF 4.0.9. There is a NULL pointer
| dereference in the function LZWDecode in the file tif_lzw.c.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2018-18661
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18661
[1] http://bugzilla.maptools.org/show_bug.cgi?id=2819

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#912011: Add option to Copy/Move to preserve sparse files

[Witold Baryluk]

Package: mc
Version: 3:4.8.21-1
Severity: normal


Similar to `cp --sparse=always` or `cp --sparse=auto`, or `rsync
--sparse` or `dd conv=sparse`. This is extremally useful when moving
virtual disk images for example, especially when doing this between
filesystems.

Thank you.


-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.18.0-2-amd64 (SMP w/12 CPU cores)
Locale: LANG=pl_PL.utf8, LC_CTYPE=pl_PL.utf8 (charmap=UTF-8), 
LANGUAGE=pl_PL.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages mc depends on:
ii  libc6 2.27-6
ii  libext2fs21.44.4-2
ii  libglib2.0-0  2.58.1-2
ii  libgpm2   1.20.7-5
ii  libslang2 2.3.2-1+b1
ii  libssh2-1 1.8.0-2
ii  mc-data   3:4.8.21-1

Versions of packages mc recommends:
ii  mime-support  3.61
ii  perl  5.26.2-7+b1
ii  unzip 6.0-21

Versions of packages mc suggests:
pn  arj  
ii  atril [pdf-viewer]   1.20.2-1
ii  bzip21.0.6-9
ii  catdvi   0.14-12.1+b1
pn  dbview   
ii  djvulibre-bin3.5.27.1-9
ii  evince [pdf-viewer]  3.30.1-1
ii  file 1:5.34-2
ii  genisoimage  9:1.1.11-3+b2
ii  gv [pdf-viewer]  1:3.7.4-1+b1
ii  imagemagick  8:6.9.10.8+dfsg-1
ii  imagemagick-6.q16 [imagemagick]  8:6.9.10.8+dfsg-1
pn  libaspell-dev
ii  links2.17-1
pn  odt2txt  
ii  poppler-utils0.69.0-2
ii  python   2.7.15-3
ii  python-boto  2.44.0-1
ii  python-tz2018.5-1
ii  texlive-binaries 2018.20180907.48586-2
ii  w3m  0.5.3-36+b1
ii  zip  3.0-11+b1

-- no debconf information

Bug#912010: RFS: lightvalue/0.8.1-1 [ITP]

[Miroslav Kravec]

Package: sponsorship-requests
Severity: wishlist

Dear mentors,

I am looking for a sponsor for my package "lightvalue":

 * Package name: lightvalue
   Version : 0.8.1-1
   Upstream Author : Miroslav Kravec 
 * URL : https://gitlab.com/kravemir/lightvalue
 * License : Apache-2.0
   Section : java

It builds those binary packages:

liblightvalue-generator-java - Generator of lightweight Java
value/model classes
liblightvalue-gradle-plugin-java - Gradle plugin for LightValue generator

To access further information about this package, please visit the
following URL:

  https://mentors.debian.net/package/lightvalue

Alternatively, one can download the package with dget using this command:

dget -x 
https://mentors.debian.net/debian/pool/main/l/lightvalue/lightvalue_0.8.1-1.dsc

More information about lightvalue can be obtained from
https://gitlab.com/kravemir/lightvalue.

Changes since the last upload:

  * Initial release. (Closes: #911472)

Kind regards,
Miroslav Kravec

Bug#911897: AppArmor "complain" for oosplash & soffice

[Rene Engelhard]

Hi,

On Fri, Oct 26, 2018 at 01:24:52PM -0400, Anthony DeRobertis wrote:
> Which one you get depends on the exact way the app is launched. In the
> screenshot, the xterm on the left was launched as part of session restore;
> the one on the right was launched from the KDE menu (bottom-left thingy).
> The same thing happens on my normal desktop. I normally launch my xterms via
> a KDE hotkey, those get the /tmp one. (And normally I start libreoffice from
> an xterm). That could explain how it was missed — launch it from the menu
> instead, and it'll be given ~/.Xauthority.

Ah... And I "of course" launched konsole from the menu...
(Alt-F2, konsole gives the same.)

> I'm not sure what the intended behavior is here; the current behavior of
> using both files is surely a bug in KDE. Seems perfectly reasonable to
> reassign to them.

Hmm.

Regards,

Rene

Bug#911465: ITP: libciepki1 -- PKCS11 driver for Italian CIE

[Joonas Kylmälä]

Hi,

what are the key and IV used for, encryption/decryption? What's the idea
behind using the same key and IV for everybody? Why does this program
need them if the program user cannot decrypt them? Or is the decryption
key stored on the Italian CIE? If so, what's the point of encrypting the
key and IV if the first user can immediately share the plain text
version of them with the rest of the world?

Have you checked if there is already such a program that works with the
Italian CIE? List of these programs can be found from
.

Joonas

On Sat, 20 Oct 2018 16:00:21 +0200 Andrea della Porta
 wrote:
> Package: wnpp
> Severity: wishlist
> Owner: Andrea della Porta 
> 
> * Package name: libciepki1
>   Version : 1.0-1
>   Upstream Author : Andrea della Porta 
> * URL : http://github.com/italia/cie-middleware-linux
> * License : (BSD-3-Clause)
>   Programming Lang: (C++)
>   Description : PKCS11 driver for Italian CIE
> 
> ciepki allows any PKCS11 enabled application to leverage
> the cryptographic and authentication facilities of
> the Italian CIE. 
> Binaries to change/unlock PIN are also provided.
> This will be the main middleware to use with any Italian ID card.
> Source code is provided through github as above but this package 
> will be a binary only one since teh cachelib will be slightly changed
> to provide added security though encryption, and the key/iv should
> not be exposed. Cachelib reference implementation on github is almost 
> identical except for the lacking encrypted data.
> I guess I will need a sponsor to push it to non-free repository.
> 
> 

Bug#905342: apache fpm not working anymore

[intrigeri]

Ivan Sergio Borgonovo:
> If you've any suggest to collect any information that could be useful 
> let me know.

Let's start with the info I've requested the day after you've filed
the initial bug report: https://bugs.debian.org/905342#10 :)

Bug#911806: Please provide a way to opt out of AppArmor confinement when running tests

[intrigeri]

Hi LXC maintainers,

intrigeri:
>Ideally, picking the best strategy and implementing it would be
>a matter of coordination between LXC and systemd (ideally upstream,
>but quite possibly distro maintainers will need to be involved
>here). I'll raise this issue to the Ubuntu LXC and AppArmor folks.

Done. To sum up:

 - LX*D* apparently has the support needed to set up AppArmor policy
   in a way that should not be affected by the problem this thread
   is about (running systemd v240+ in a container). autopkgtest has
   a LXD backend but LXD is not in Debian yet (WIP, see #768073; I'm
   not counting on this being completed in time for the Buster freeze).

 - Similar support was added to LXC 3.x branch. It won't be backported
   to 2.x (that we currently have in testing/sid). I've asked about
   the timeline to release 3.x as stable and Stéphane Graber replied:
   "I think we were aiming towards February-ish originally but there's
   no real reason to wait that long either, so if Christian isn't
   waiting for some big changes to land before doing a non-LTS feature
   release, we should be able to tag one next month. It'd be worth
   someone make sure that current master with the apparmor work that
   was done by Wolfgang will do the right thing out of the box though,
   otherwise that wouldn't really achieve a whole lot."

So on the LXC + AppArmor vs. systemd v240+ front, I think the next
steps are:

1. Try running current systemd master branch and its autopkgtests
   inside a container managed by LXC 2.x on current testing/sid.
   Goal: confirm the issues Michael discovered and have a baseline
   to evaluate LXC 3.x against.

2. Try running current systemd master branch and its autopkgtests
   inside a container managed by LXC 3.x on current testing/sid.
   Report any issue so they're fixed before 3.x becomes stable
   and is hopefully included in Buster.

For details, see:
https://lists.ubuntu.com/archives/apparmor/2018-October/011830.html
… except Stéphane Graber's messages are apparently held for moderation
so they don't appear in the list archives yet.

Cheers,
-- 
intrigeri

Bug#911965: kicad: Add libngspice to dependancy list

[Felix Salfelder]

On Sat, Oct 27, 2018 at 10:01:29AM +0200, Carsten Schoenert wrote:
> > Probably the approach used in gnucap-python will work here as well:
> > - find the SONAME in ./configure, tweak the dlopen call, see [1],
> > - tweak d/rules: link a dummy executable, inject shlibdeps [2].
> 
> The dlopen call is currently searching for libngspice.so instead of
> libngspice.so.0 so your suggestion would not solve all problems.

Hi Carsten.

I suggested to dlopen libngspice.so.0. the point is, that you need to
resolve it during configure time.

$ readelf -d /usr/lib/x86_64-linux-gnu/libngspice.so |grep SONAME
 0x000e (SONAME) Library soname: [libngspice.so.0]

also, the package name libngspice0-dev seems to be wrong. that should
have produced a lintian warning...?

cheers
felix

Bug#905065: ITP: golang-github-canonicalltd-raft-membership -- Extension of the Hashicorp raft package to easily join and leave a cluster

[Clément Hermann]

Hi!

On 26/10/2018 15:41, Pierre-Elliott Bécue wrote:
> Le mardi 31 juillet 2018 à 11:24:36+0800, Clement Hermann a écrit :
>> Package: wnpp
>> Severity: wishlist
>> Owner: Clement Hermann 
>>
>> * Package name: golang-github-canonicalltd-raft-membership
>>   Version : 0.0~git20180413.3846634-1
>>   Upstream Author : Canonical Ltd
>> * URL : https://github.com/CanonicalLtd/raft-membership
>> * License : Apache-2.0
>>   Programming Lang: Go
>>   Description : Extension of the Hashicorp raft package to easily join 
>> and leave a cluster
>>
>>  github-canonicalltd-raft-membership provides the raftmembership package, 
>> which contains an
>>  extension of the raft Go package (https://github.com/hashicorp/raft) from
>>  Hashicorp to easily make a node join or leave a cluster.
>>
>> This is a dependency of LXD 3 (ITP: #768973) and will be maintained under the
>> Go team umbrella.
> 
> Hi,
> 
> raft-test being in Debian[1], and the salsa repository for raft-membership
> looking close to ready[2], do you require anything else to upload this
> package?Hi !
> 

I did open this ITP, however Shengjing Zhu was working on it during
DebCamp. IIRC it only needs a sponsor at this point. Please, feel free
to take over, review and upload ! :)

Cheers,

-- 
nodens

Bug#911965: kicad: Add libngspice to dependancy list

[Carsten Schoenert]

Hello Felix,

Am 26.10.18 um 21:12 schrieb Felix Salfelder:
> It seems to me that kicad does not link against ngspice, but rather
> dlopens the shared library on demand.

that's correct, so dh_shlibdeps won't detect the needed library
automatically.

> While the reasons are probably different, this approach is very similar
> to how gnucap-python uses libgnucap. The issue is related to the
> SONAME and file name used in lib${simulator}0 vs lib${simulator}-dev.
> 
> Probably the approach used in gnucap-python will work here as well:
> - find the SONAME in ./configure, tweak the dlopen call, see [1],
> - tweak d/rules: link a dummy executable, inject shlibdeps [2].
> 
> I am curious if there is a better way..

The dlopen call is currently searching for libngspice.so instead of
libngspice.so.0 so your suggestion would not solve all problems. As
Stefan Brüns has the same problem within the OBS he provided a small fix
up patch which I just did picked up. So now eeschema is looking for
libngspice.so.0. For now I can live with a manually adjusted Depends
field for the kicad package. I believe upstream will fix this all so the
dlopen call can get removed at least for the Linux builds in the future,
but maybe not not for the 5.x series.

-- 
Regards
Carsten Schoenert

Bug#912009: mono-basic: please provide a mono-basic-source package

[Alexandre Viau]

Package: mono-basic
Severity: wishlist

Hello,

This is the same request as in #785308.

Could you please provide a mono-basic-source pacakage?

I am willing to write a patch / commit it in vcs / upload nmu.

Cheers,

-- 
Alexandre Viau
av...@debian.org



signature.asc
Description: OpenPGP digital signature

Bug#912008: systemd: CVE-2018-15688: Out-of-bounds heap write in systemd-networkd dhcpv6 option handling

[Salvatore Bonaccorso]

Source: systemd
Version: 232-25
Severity: important
Tags: security upstream
Control: found -1 232-25+deb9u4
Control: found -1 239-10

Hi,

The following vulnerability was published for systemd.

CVE-2018-15688[0]:
| A buffer overflow vulnerability in the dhcp6 client of systemd allows
| a malicious dhcp6 server to overwrite heap memory in systemd-networkd.
| Affected releases are systemd: versions up to and including 239.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2018-15688
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15688
[1] https://bugzilla.redhat.com/show_bug.cgi?id=1639067
[2] https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1795921
[3] 
https://github.com/systemd/systemd/commit/49653743f69658aeeebdb14faf1ab158f1f2cb20

Please adjust the affected versions in the BTS as needed, both stretch
up to sid should be affected source wise, we do though not enable
systemd-networkd by default.

Regards,
Salvatore

Bug#912007: systemd: CVE-2018-15687: chown_one() can dereference symlinks

[Salvatore Bonaccorso]

Source: systemd
Version: 239-10
Severity: important
Tags: security upstream
Forwarded: https://github.com/systemd/systemd/pull/10517

Hi,

The following vulnerability was published for systemd.

CVE-2018-15687[0]:
| A race condition in chown_one() of systemd allows an attacker to cause
| systemd to set arbitrary permissions on arbitrary files. Affected
| releases are systemd versions up to and including 239.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2018-15687
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15687
[1] https://bugs.chromium.org/p/project-zero/issues/detail?id=1689
[2] https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1796692
[3] https://github.com/systemd/systemd/pull/10517

Please adjust the affected versions in the BTS as needed, stretch
should be unaffected as the vulnerable feature/code was introduced
later, but plese confirm if possible.

Regards,
Salvatore

Bug#864139: uswsusp: diff for NMU version 1.0+20120915-6.2

[Andreas Metzler]

Control: tags 864139 + patch
Control: tags 864139 + pending


Dear maintainer,

I've prepared an NMU for uswsusp (versioned as 1.0+20120915-6.2) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

Regards.
diff -Nru uswsusp-1.0+20120915/debian/changelog uswsusp-1.0+20120915/debian/changelog
--- uswsusp-1.0+20120915/debian/changelog	2015-07-19 17:13:12.0 +0200
+++ uswsusp-1.0+20120915/debian/changelog	2018-10-27 09:52:54.0 +0200
@@ -1,3 +1,11 @@
+uswsusp (1.0+20120915-6.2) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of (dummy transition package)
+libgcrypt11-dev.  Closes: #864139
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 09:52:54 +0200
+
 uswsusp (1.0+20120915-6.1) unstable; urgency=medium
 
   * Non-maintainer upload.
diff -Nru uswsusp-1.0+20120915/debian/control uswsusp-1.0+20120915/debian/control
--- uswsusp-1.0+20120915/debian/control	2014-10-21 12:26:25.0 +0200
+++ uswsusp-1.0+20120915/debian/control	2018-10-27 09:52:54.0 +0200
@@ -3,7 +3,7 @@
 Priority: optional
 Maintainer: Rodolfo García Peñas (kix) 
 Uploaders: Anibal Monsalve Salazar 
-Build-Depends: debhelper (>= 9), automake (>= 1:1.11), libtool, autotools-dev, libpci-dev, po-debconf, zlib1g-dev, libx86-dev [amd64 i386], pkg-config, liblzo2-dev, libgcrypt11-dev, libblkid-dev, libswitch-perl, dh-systemd (>= 1.5)
+Build-Depends: debhelper (>= 9), automake (>= 1:1.11), libtool, autotools-dev, libpci-dev, po-debconf, zlib1g-dev, libx86-dev [amd64 i386], pkg-config, liblzo2-dev, libgcrypt20-dev, libblkid-dev, libswitch-perl, dh-systemd (>= 1.5)
 Standards-Version: 3.9.5
 Homepage: http://suspend.sourceforge.net/
 Vcs-Browser: http://anonscm.debian.org/gitweb/?p=collab-maint/suspend-utils.git


signature.asc
Description: PGP signature

Bug#785308: mono: please provide a mono-source package

[Alexandre Viau]

> How tightly coupled is wine-mono to specific Mono releases?

It should be very lightly coupled.

wine-mono produces a .MSI of the dotnet runtime that is then installed
in the Wine system.

There is no need for API or even binary compatibility.

It has been 3 years. I would like to work on this.

Can this get uploaded?

I can prepare an upload/nmu if needed.

I couldn't find mono on salsa, but I would commit directly in that
repository if it helps.

-- 
Alexandre Viau
av...@debian.org



signature.asc
Description: OpenPGP digital signature

Bug#864103: freeipmi: diff for NMU version 1.5.7-2.1

[Andreas Metzler]

Control: tags 864103 + patch
Control: tags 864103 + pending

Dear maintainer,

I've prepared an NMU for freeipmi (versioned as 1.5.7-2.1) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

Regards.
diff -Nru freeipmi-1.5.7/debian/changelog freeipmi-1.5.7/debian/changelog
--- freeipmi-1.5.7/debian/changelog	2017-10-26 12:37:29.0 +0200
+++ freeipmi-1.5.7/debian/changelog	2018-10-27 09:47:18.0 +0200
@@ -1,3 +1,11 @@
+freeipmi (1.5.7-2.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of (dummy transition package)
+libgcrypt11-dev. Closes: #864103
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 09:47:18 +0200
+
 freeipmi (1.5.7-2) unstable; urgency=medium
 
   * upload to unstable 
diff -Nru freeipmi-1.5.7/debian/control freeipmi-1.5.7/debian/control
--- freeipmi-1.5.7/debian/control	2017-10-26 12:37:29.0 +0200
+++ freeipmi-1.5.7/debian/control	2018-10-27 09:47:18.0 +0200
@@ -5,7 +5,7 @@
 Uploaders: Yaroslav Halchenko , Bernd Zeimetz 
 Build-Depends: debhelper (>= 9),
  autotools-dev (>= 20100122.1~),
- libgcrypt11-dev,
+ libgcrypt20-dev,
  chrpath
 Standards-Version: 3.9.3
 Homepage: http://www.gnu.org/software/freeipmi/


signature.asc
Description: PGP signature

Bug#912006: schroot: [INTL:fr] French man page updated

[Jean-Pierre Giraud]

Package: schroot
Severity: wishlist
Tags: patch l10n

Hi!

Please find attached the updated French translation for schroot man
page, proofread by the debian-l10n-french mailing list contributors.

This file should be put as debian/po/fr.po in your package build tree.

Kind Regards

jipege

fr.po.gz
Description: application/gzip

Bug#864116: libmtp: diff for NMU version 1.1.13-1.1

[Andreas Metzler]

Control: tags 864116 + patch
Control: tags 864116 + pending


Dear maintainer,

I've prepared an NMU for libmtp (versioned as 1.1.13-1.1) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

Regards.
diff -Nru libmtp-1.1.13/debian/changelog libmtp-1.1.13/debian/changelog
--- libmtp-1.1.13/debian/changelog	2017-04-16 12:09:35.0 +0200
+++ libmtp-1.1.13/debian/changelog	2018-10-27 09:43:55.0 +0200
@@ -1,3 +1,11 @@
+libmtp (1.1.13-1.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of (dummy transition package)
+libgcrypt11-dev. Closes: #864116
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 09:43:55 +0200
+
 libmtp (1.1.13-1) unstable; urgency=medium
 
   * Imported Upstream version 1.1.13
diff -Nru libmtp-1.1.13/debian/control libmtp-1.1.13/debian/control
--- libmtp-1.1.13/debian/control	2017-04-16 12:08:24.0 +0200
+++ libmtp-1.1.13/debian/control	2018-10-27 09:43:55.0 +0200
@@ -11,7 +11,7 @@
  docbook-xsl,
  doxygen,
  dpkg-dev (>= 1.13.19),
- libgcrypt11-dev,
+ libgcrypt20-dev,
  libusb-1.0-0-dev [!hurd-any],
  libusb-dev [hurd-any],
  pkg-config,


signature.asc
Description: PGP signature

Bug#864118: libquvi: diff for NMU version 0.9.3-1.3

[Andreas Metzler]

Control: tags 864118 + patch
Control: tags 864118 + pending

Dear maintainer,

I've prepared an NMU for libquvi (versioned as 0.9.3-1.3) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

Regards.
diff -Nru libquvi-0.9.3/debian/changelog libquvi-0.9.3/debian/changelog
--- libquvi-0.9.3/debian/changelog	2016-02-18 17:56:13.0 +0100
+++ libquvi-0.9.3/debian/changelog	2018-10-27 09:40:14.0 +0200
@@ -1,3 +1,11 @@
+libquvi (0.9.3-1.3) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of (dummy transition package)
+libgcrypt11-dev. Closes: #864118
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 09:40:14 +0200
+
 libquvi (0.9.3-1.2) unstable; urgency=medium
 
   [ Andreas Henriksson ]
diff -Nru libquvi-0.9.3/debian/control libquvi-0.9.3/debian/control
--- libquvi-0.9.3/debian/control	2016-02-18 17:52:25.0 +0100
+++ libquvi-0.9.3/debian/control	2018-10-27 09:40:05.0 +0200
@@ -5,7 +5,7 @@
 Uploaders: Ansgar Burchardt 
 Build-Depends: debhelper (>= 8.1.3~), dh-autoreconf,
  asciidoc, doxygen, pkg-config,
- libcurl4-gnutls-dev | libcurl4-dev, libgcrypt11-dev | libgcrypt-dev,
+ libcurl4-gnutls-dev | libcurl4-dev, libgcrypt20-dev | libgcrypt-dev,
  libglib2.0-dev, liblua5.2-dev, libproxy-dev, libquvi-scripts-0.9
 Standards-Version: 3.9.4
 Vcs-Git: git://github.com/mogaal/libquvi.git


signature.asc
Description: PGP signature

Bug#912005: systemd: CVE-2018-15686: reexec state injection: fgets() on overlong lines leads to line splitting

[Salvatore Bonaccorso]

Source: systemd
Version: 239-10
Severity: important
Tags: security upstream
Forwarded: https://github.com/systemd/systemd/pull/10519

Hi,

The following vulnerability was published for systemd.

CVE-2018-15686[0]:
| A vulnerability in unit_deserialize of systemd allows an attacker to
| supply arbitrary state across systemd re-execution via NotifyAccess.
| This can be used to improperly influence systemd execution and
| possibly lead to root privilege escalation. Affected releases are
| systemd versions up to and including 239.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2018-15686
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15686
[1] https://bugs.chromium.org/p/project-zero/issues/detail?id=1687
[2] https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1796402
[3] https://github.com/systemd/systemd/pull/10519

Please adjust the affected versions in the BTS as needed, the version
in stretch might as well be affected.

Regards,
Salvatore

Bug#911965: kicad: Add libngspice to dependancy list

[Carsten Schoenert]

Am 26.10.18 um 20:27 schrieb sergey:
> It didn't work with libngspice0 package on my machine. Had to install 
> the development package.

Unfortunately you are right.
The root for this is a hardcoded lookup for the file libngspice.so
instead of libngspice.so.$API_VERSION.
Stefan Brüns provided a patch to fix this on the OpenSUSE build which I
picked up. The fix is on the way.

-- 
Regards
Carsten Schoenert

Bug#864097: chntpw: diff for NMU version 1.0-1.1

[Andreas Metzler]

Control: tags 864097 + patch
Control: tags 864097 + pending


Dear maintainer,

I've prepared an NMU for chntpw (versioned as 1.0-1.1) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

Regards.
diff -u chntpw-1.0/debian/changelog chntpw-1.0/debian/changelog
--- chntpw-1.0/debian/changelog
+++ chntpw-1.0/debian/changelog
@@ -1,3 +1,11 @@
+chntpw (1.0-1.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of (dummy transition package)
+libgcrypt11-dev. Closes: #864097
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 09:09:58 +0200
+
 chntpw (1.0-1) unstable; urgency=low
 
   * Update to latest upstream release, published in 2014-02-01
diff -u chntpw-1.0/debian/control chntpw-1.0/debian/control
--- chntpw-1.0/debian/control
+++ chntpw-1.0/debian/control
@@ -2,7 +2,7 @@
 Section: admin
 Priority: optional
 Maintainer: Javier Fernandez-Sanguino Peña 
-Build-Depends: debhelper (>= 5), libgcrypt11-dev | libgcrypt-dev, sharutils, quilt, dpkg-dev ( >= 1.16.1~)
+Build-Depends: debhelper (>= 5), libgcrypt20-dev | libgcrypt-dev, sharutils, quilt, dpkg-dev ( >= 1.16.1~)
 Standards-Version: 3.9.5
 Homepage: http://pogostick.net/~pnh/ntpasswd/
 


signature.asc
Description: PGP signature

Bug#864093: libotr: diff for NMU version 4.1.1-2.1

[Andreas Metzler]

Control: tags 864093 + patch
Control: tags 864093 + pending


Dear maintainer,

I've prepared an NMU for libotr (versioned as 4.1.1-2.1) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

kind regards
Andreas

-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'
diff -Nru libotr-4.1.1/debian/changelog libotr-4.1.1/debian/changelog
--- libotr-4.1.1/debian/changelog	2016-08-14 11:17:06.0 +0200
+++ libotr-4.1.1/debian/changelog	2018-10-27 09:01:03.0 +0200
@@ -1,3 +1,11 @@
+libotr (4.1.1-2.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of (dummy transition package)
+libgcrypt11-dev. Closes: #864093
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 09:01:03 +0200
+
 libotr (4.1.1-2) unstable; urgency=medium
 
   * New Debian-specific patch: suggest pidgin-otr to Debian and Ubuntu users
diff -Nru libotr-4.1.1/debian/control libotr-4.1.1/debian/control
--- libotr-4.1.1/debian/control	2016-08-14 11:17:06.0 +0200
+++ libotr-4.1.1/debian/control	2018-10-27 09:01:03.0 +0200
@@ -7,7 +7,7 @@
 Build-Depends: debhelper (>= 9),
dh-autoreconf,
libgpg-error-dev,
-   libgcrypt11-dev,
+   libgcrypt20-dev,
autotools-dev
 Standards-Version: 3.9.8
 Vcs-Browser: https://anonscm.debian.org/cgit/pkg-privacy/packages/libotr.git


signature.asc
Description: PGP signature

Bug#864127: openvpn-auth-radius: diff for NMU version 2.1-6.1

[Andreas Metzler]

Control: tags 864127 + patch
Control: tags 864127 + pending

Dear maintainer,

I've prepared an NMU for openvpn-auth-radius (versioned as 2.1-6.1) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

Regards.

-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'
diff -Nru openvpn-auth-radius-2.1/debian/changelog openvpn-auth-radius-2.1/debian/changelog
--- openvpn-auth-radius-2.1/debian/changelog	2013-12-12 22:46:54.0 +0100
+++ openvpn-auth-radius-2.1/debian/changelog	2018-10-27 08:56:44.0 +0200
@@ -1,3 +1,10 @@
+openvpn-auth-radius (2.1-6.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of libgcrypt11-dev. Closes: #864127
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 08:56:44 +0200
+
 openvpn-auth-radius (2.1-6) unstable; urgency=low
 
   * Switch to dpkg-source 3.0 (quilt) format
diff -Nru openvpn-auth-radius-2.1/debian/control openvpn-auth-radius-2.1/debian/control
--- openvpn-auth-radius-2.1/debian/control	2013-12-09 20:37:05.0 +0100
+++ openvpn-auth-radius-2.1/debian/control	2018-10-27 08:56:44.0 +0200
@@ -4,7 +4,7 @@
 Standards-Version: 3.9.5
 Section: net
 Priority: extra
-Build-Depends: debhelper (>= 9), libgcrypt11-dev
+Build-Depends: debhelper (>= 9), libgcrypt20-dev
 Homepage: http://www.nongnu.org/radiusplugin/
 
 Package: openvpn-auth-radius


signature.asc
Description: PGP signature

Bug#864117: libpam-ccreds: diff for NMU version 10-6.1

[Andreas Metzler]

Control: tags 864117 + patch
Control: tags 864117 + pending


Dear maintainer,

I've prepared an NMU for libpam-ccreds (versioned as 10-6.1) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

Regards.
diff -Nru libpam-ccreds-10/debian/changelog libpam-ccreds-10/debian/changelog
--- libpam-ccreds-10/debian/changelog	2013-09-27 12:02:37.0 +0200
+++ libpam-ccreds-10/debian/changelog	2018-10-27 08:49:22.0 +0200
@@ -1,3 +1,10 @@
+libpam-ccreds (10-6.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of libgcrypt11-dev. Closes: #864117
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 08:49:22 +0200
+
 libpam-ccreds (10-6) unstable; urgency=low
 
   * [2baa623] We don't need automake nor autoconf to build.
diff -Nru libpam-ccreds-10/debian/control libpam-ccreds-10/debian/control
--- libpam-ccreds-10/debian/control	2013-09-27 12:01:01.0 +0200
+++ libpam-ccreds-10/debian/control	2018-10-27 08:49:22.0 +0200
@@ -2,7 +2,7 @@
 Section: admin
 Priority: extra
 Maintainer: Guido Günther 
-Build-Depends: debhelper (>= 7), autotools-dev, libgcrypt11-dev,  libpam0g-dev, libdb-dev, cdbs
+Build-Depends: debhelper (>= 7), autotools-dev, libgcrypt20-dev,  libpam0g-dev, libdb-dev, cdbs
 Standards-Version: 3.8.4
 Homepage: http://www.padl.com/OSS/pam_ccreds.html
 Vcs-Browser: http://git.debian.org/?p=users/agx/libpam-ccreds.git


signature.asc
Description: PGP signature

Bug#864123: mcabber: diff for NMU version 1.1.0-1.1

[Andreas Metzler]

Control: tags 864123 + patch
Control: tags 864123 + pending

Dear maintainer,

I've prepared an NMU for mcabber (versioned as 1.1.0-1.1) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

kind regards,
Andreas
diff -Nru mcabber-1.1.0/debian/changelog mcabber-1.1.0/debian/changelog
--- mcabber-1.1.0/debian/changelog	2018-02-15 00:43:25.0 +0100
+++ mcabber-1.1.0/debian/changelog	2018-10-27 08:45:22.0 +0200
@@ -1,3 +1,10 @@
+mcabber (1.1.0-1.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of libgcrypt11-dev. Closes: #864123
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 08:45:22 +0200
+
 mcabber (1.1.0-1) unstable; urgency=medium
 
   * New upstream version
diff -Nru mcabber-1.1.0/debian/control mcabber-1.1.0/debian/control
--- mcabber-1.1.0/debian/control	2018-02-15 00:41:14.0 +0100
+++ mcabber-1.1.0/debian/control	2018-10-27 08:45:12.0 +0200
@@ -4,7 +4,7 @@
 Maintainer: Debian XMPP Maintainers 
 Uploaders: Franziska Lichtblau ,
 	W. Martin Borgert 
-Build-Depends: debhelper (>= 10), autotools-dev, dpkg-dev (>= 1.16.1~), libglib2.0-dev, libncursesw5-dev, libssl-dev, libgpgme11-dev, libotr5-dev, libgcrypt11-dev, libaspell-dev, libloudmouth1-dev, libasyncns-dev
+Build-Depends: debhelper (>= 10), autotools-dev, dpkg-dev (>= 1.16.1~), libglib2.0-dev, libncursesw5-dev, libssl-dev, libgpgme11-dev, libotr5-dev, libgcrypt20-dev, libaspell-dev, libloudmouth1-dev, libasyncns-dev
 Homepage: http://www.mcabber.com/
 Standards-Version: 4.1.3
 Rules-Requires-Root: no


signature.asc
Description: PGP signature

Bug#864140: yubikey-server-c: diff for NMU version 0.5-1.1

[Andreas Metzler]

Control: tags 864140 + patch
Control: tags 864140 + pending

Dear maintainer,

I've prepared an NMU for yubikey-server-c (versioned as 0.5-1.1) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

kind regards,
Andreas
diff -u yubikey-server-c-0.5/debian/changelog yubikey-server-c-0.5/debian/changelog
--- yubikey-server-c-0.5/debian/changelog
+++ yubikey-server-c-0.5/debian/changelog
@@ -1,3 +1,10 @@
+yubikey-server-c (0.5-1.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of libgcrypt11-dev. Closes: #864140
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 08:38:18 +0200
+
 yubikey-server-c (0.5-1) unstable; urgency=low
 
   * New upstream release:
diff -u yubikey-server-c-0.5/debian/control yubikey-server-c-0.5/debian/control
--- yubikey-server-c-0.5/debian/control
+++ yubikey-server-c-0.5/debian/control
@@ -2,7 +2,7 @@
 Section: admin
 Priority: optional
 Maintainer: Tollef Fog Heen 
-Build-Depends: debhelper (>= 7), autotools-dev, libpq-dev, libmicrohttpd-dev, libyubikey-dev, pkg-config, libgcrypt11-dev
+Build-Depends: debhelper (>= 7), autotools-dev, libpq-dev, libmicrohttpd-dev, libyubikey-dev, pkg-config, libgcrypt20-dev
 Standards-Version: 3.8.3
 
 Package: yubikey-server-c


signature.asc
Description: PGP signature

Bug#864109: kvpnc: diff for NMU version 0.9.6a-4.1

[Andreas Metzler]

Control: tags 864109 + patch
Control: tags 864109 + pending

Dear maintainer,

I've prepared an NMU for kvpnc (versioned as 0.9.6a-4.1) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

Kind Regards
Andreas
diff -Nru kvpnc-0.9.6a/debian/changelog kvpnc-0.9.6a/debian/changelog
--- kvpnc-0.9.6a/debian/changelog	2016-02-14 10:58:03.0 +0100
+++ kvpnc-0.9.6a/debian/changelog	2018-10-27 08:31:08.0 +0200
@@ -1,3 +1,10 @@
+kvpnc (0.9.6a-4.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of libgcrypt11-dev. Closes: #864109
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 08:31:08 +0200
+
 kvpnc (0.9.6a-4) unstable; urgency=medium
 
   * Team upload.
diff -Nru kvpnc-0.9.6a/debian/control kvpnc-0.9.6a/debian/control
--- kvpnc-0.9.6a/debian/control	2016-02-14 10:48:39.0 +0100
+++ kvpnc-0.9.6a/debian/control	2018-10-27 08:30:57.0 +0200
@@ -4,7 +4,7 @@
 Maintainer: Debian KDE Extras Team 
 Uploaders: Fathi Boudra , Mark Purcell 
 Build-Depends: debhelper (>= 9), cmake, pkg-kde-tools (>= 0.6.4),
- kdelibs5-dev (>= 4:4.3.4), libgcrypt11-dev
+ kdelibs5-dev (>= 4:4.3.4), libgcrypt20-dev
 Standards-Version: 3.9.7
 Homepage: http://home.gna.org/kvpnc
 Vcs-Browser: https://anonscm.debian.org/viewvc/pkg-kde/kde-extras/kvpnc/


signature.asc
Description: PGP signature

Bug#912004: r-cran-rlang: autopkgtest regression

[Paul Gevers]

Source: r-cran-rlang
Version: 0.3.0.1-1
X-Debbugs-CC: debian...@lists.debian.org
User: debian...@lists.debian.org
Usertags: regression

Dear maintainers,

With a recent upload of r-cran-rlang the autopkgtest of r-cran-rlang
fails in testing when that autopkgtest is run with the binary packages
of r-cran-rlang from unstable. It passes when run with only packages
from testing. In tabular form:
   passfail
r-cran-rlang   from testing0.3.0.1-1
all others from testingfrom testing

I copied some of the output at the bottom of this report.

Currently this regression is contributing to the delay of the migration
to testing [1]. Can you please investigate the situation and fix it? If
needed, please change the bug's severity.

More information about this bug and the reason for filing it can be found on
https://wiki.debian.org/ContinuousIntegration/RegressionEmailInformation

Paul

[1] https://qa.debian.org/excuses.php?package=r-cran-rlang

https://ci.debian.net/data/autopkgtest/testing/amd64/r/r-cran-rlang/1211143/log.gz

-- 31. Error: can trim layers of backtraces (@test-trace.R#504)
---
Can't find `tests/testthat` in current directory.
1: expect_known_output(file = test_path("test-trace-trim.txt"), {
   scoped_options(rlang_trace_format_srcrefs = FALSE)
   cat_line("No trimming:")
   summary(trace0)
   cat_line("", "", "One layer (the default):")
   summary(trace1)
   cat_line("", "", "Two layers:")
   summary(trace2)
   cat_line("", "", "Three layers:")
   summary(trace3)
   }) at testthat/test-trace.R:504
2: file.exists(file)
3: test_path("test-trace-trim.txt")
4: stop("Can't find `tests/testthat` in current directory.", call. = FALSE)

== testthat results
===
OK: 2258 SKIPPED: 10 FAILED: 31
1. Error: error is printed with backtrace (@test-cnd.R#185)
2. Error: error is printed with parent backtrace (@test-cnd.R#213)
3. Error: summary.rlang_error() prints full backtrace (@test-cnd.R#240)
4. Error: on_error option can be tweaked (@test-cnd.R#321)
5. Error: don't print message or backtrace fields if empty
(@test-cnd.R#371)
6. Error: with_abort() promotes base errors to rlang errors
(@test-cnd.R#398)
7. Error: env_binding_type_sum() detects types (@test-env-binding.R#210)
8. Error: env_print() has flexible input (@test-env.R#250)
9. Error: locked bindings are pretty-printed (@test-env.R#270)
1. ...

Error: testthat unit tests failed
Execution halted



signature.asc
Description: OpenPGP digital signature

Bug#864098: clamz: diff for NMU version 0.5-2.1

[Andreas Metzler]

Control: tags 864098 + patch
Control: tags 864098 + pending

Dear maintainer,

I've prepared an NMU for clamz (versioned as 0.5-2.1) and
uploaded it to DELAYED/15. Please feel free to tell me if I
should delay it longer.

Regards.

-- 
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'
diff -Nru clamz-0.5/debian/changelog clamz-0.5/debian/changelog
--- clamz-0.5/debian/changelog	2014-05-11 20:35:29.0 +0200
+++ clamz-0.5/debian/changelog	2018-10-27 08:24:18.0 +0200
@@ -1,3 +1,10 @@
+clamz (0.5-2.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * B-d on libgcrypt20-dev instead of libgcrypt11-dev. Closes: #864098
+
+ -- Andreas Metzler   Sat, 27 Oct 2018 08:24:18 +0200
+
 clamz (0.5-2) unstable; urgency=medium
 
   * Build-Depends on pkg-config to fix FTBFS. Closes: #747769.
diff -Nru clamz-0.5/debian/control clamz-0.5/debian/control
--- clamz-0.5/debian/control	2014-05-11 20:35:29.0 +0200
+++ clamz-0.5/debian/control	2018-10-27 08:23:33.0 +0200
@@ -6,7 +6,7 @@
autotools-dev,
pkg-config,
libexpat1-dev,
-   libgcrypt11-dev,
+   libgcrypt20-dev,
libcurl4-gnutls-dev
 Standards-Version: 3.9.5
 Homepage: http://code.google.com/p/clamz/


signature.asc
Description: PGP signature

Bug#912003: r-cran-dplyr: autopkgtest needs update for new version of r-cran-rlang

[Paul Gevers]

Source: r-cran-dplyr
Version: 0.7.7-1
User: debian...@lists.debian.org
Usertags: needs-update
Control: affects -1 src:r-cran-rlang

[X-Debbugs-CC: debian...@lists.debian.org, r-cran-rl...@packages.debian.org]

Dear maintainers,

With a recent upload of r-cran-rlang the autopkgtest of r-cran-dplyr
fails in testing when that autopkgtest is run with the binary packages
of r-cran-rlang from unstable. It passes when run with only packages
from testing. In tabular form:
   passfail
r-cran-rlang   from testing0.3.0.1-1
r-cran-dplyr   from testing0.7.7-1
all others from testingfrom testing

I copied some of the output at the bottom of this report. It seems the
autopkgtest check for exact strings in error messages and those messages
have changed.

Currently this regression is contributing to the delay of the migration
of r-cran-rlang to testing [1]. Of course, r-cran-rlang shouldn't just
break your autopkgtest (or even worse, your package), but it seems to me
that the change in r-cran-rlang was intended and your package needs to
update to the new situation. If needed, please change the bug's severity.

If this is a real problem in your package (and not only in your
autopkgtest), the right binary package(s) from r-cran-rlang should
really add a versioned Breaks on the unfixed version of (one of your)
package(s). Note: the Breaks is nice even if the issue is only in the
autopkgtest as it helps the migration software to figure out the right
versions to combine in the tests.

More information about this bug and the reason for filing it can be found on
https://wiki.debian.org/ContinuousIntegration/RegressionEmailInformation

Paul

[1] https://qa.debian.org/excuses.php?package=r-cran-rlang

https://ci.debian.net/data/autopkgtest/testing/amd64/r/r-cran-dplyr/1211130/log.gz

── 1. Failure: funs() gives a clear error message (#3368)
(@test-funs.R#28)  ───
`funs(...)` threw an error with unexpected message.
Expected match: "`function(si) {\nmp[si]\n}` must be a function name
(quoted or unquoted) or an unquoted call, not `function`"
Actual message: "`function(si) {\nmp[si]\n}` must be a function name
(quoted or unquoted) or an unquoted call, not ``function``"

── 2. Failure: funs() gives a clear error message (#3368)
(@test-funs.R#36)  ───
`funs(~mp[.])` threw an error with unexpected message.
Expected match: "`~mp[.]` must be a function name (quoted or unquoted)
or an unquoted call, not `~`"
Actual message: "`~mp[.]` must be a function name (quoted or unquoted)
or an unquoted call, not ``~``"

══ testthat results
═══
OK: 2724 SKIPPED: 11 FAILED: 2
1. Failure: funs() gives a clear error message (#3368) (@test-funs.R#28)
2. Failure: funs() gives a clear error message (#3368) (@test-funs.R#36)

Error: testthat unit tests failed
Execution halted



signature.asc
Description: OpenPGP digital signature

Bug#910104: hypre: autopkgtest times out most of the times

[Paul Gevers]

On Tue, 2 Oct 2018 21:04:38 +0200 Paul Gevers  wrote:
> If the time out rate doesn't improve, I'll probably blacklist this
> package on the ci.debian.net infrastructure. If that happens I will
> remove the blacklist once this bug is fixed.

I have added hypre to the blacklist. Please ping me if you think the
issue is solved and want it tested.

Paul



signature.asc
Description: OpenPGP digital signature

Bug#912002: javascript-common: installs lighttpd config files when lighttpd is not installed

[Jade McCormick]

Package: javascript-common
Version: 11
Severity: important

Dear Maintainer,

I discovered lighttpd config files in /etc when I did not haave the
lighttpd application installed. This related to several other bugs
filed with javascript-common package, including #474913
(javascript-common overrides /javascript globally), #818585
(javascript-common: nginx snippet).

I don't expect lighttpd config files to be installed when I don't have
lighttpd installed. It's unsightly and it clutters my machine.

This reflects fundamental design flaws in this package. Debian should
not be imposing a structure upon the URI namespace that may or may not
exist on my machine. It may be completely inappropriate on the basis of
the hosts application requirements.

I suggest rethinking of this package, its design, intent, and ability
to help the majority of debain users. On the other hand, I don't know the 
purpose
this package fulfills. At the very least, the administrator should be asked
if that is an appropriate system change to be made.

Can't applications simply embed the CDN address for any javascript
they want, and don't include themselves? I don't see the real
advantage in having a javascript-common package.

#581708 has an idea I don't fully understand.

"javascript-common could provide an Apache alias
javascript-common-bundles, javascript-common could set a
trigger on files in /usr/share/javascript users and packages
could define bundles in /etc/javascript-common/bundles/*.conf
the trigger would then concatenate the files listed in the
bundle and optionally compress them with whatever javascript
compressor is defined in the configuration (yui-compressor
should be the default)"

That seems complex when CDN use would solve almost 100% of the problem
at hand (whatever it is).



-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.18.0-2-amd64 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

javascript-common depends on no packages.

javascript-common recommends no packages.

Versions of packages javascript-common suggests:
ii  apache2 [httpd]  2.4.34-1

-- no debconf information