Processed: retitle 767835 to wheezy-pu: package bashburn/3.0.1-2~deb7u1 ...
Processing commands for cont...@bugs.debian.org: > retitle 767835 wheezy-pu: package bashburn/3.0.1-2~deb7u1 Bug #767835 [release.debian.org] wheezy-pu: package bashburn/3.0.1-1 Changed Bug title to 'wheezy-pu: package bashburn/3.0.1-2~deb7u1' from 'wheezy-pu: package bashburn/3.0.1-1' > retitle 769668 wheezy-pu: package showfoto/4:2.6.0-1+deb7u1 Bug #769668 [release.debian.org] wheezy-pu: package showfoto/4:2.6.0-1 Changed Bug title to 'wheezy-pu: package showfoto/4:2.6.0-1+deb7u1' from 'wheezy-pu: package showfoto/4:2.6.0-1' > thanks Stopping processing here. Please contact me if you need assistance. -- 767835: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=767835 769668: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769668 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.141663519628397.transcr...@bugs.debian.org
Bug#770523: unblock: python-regex/0.1.20141024-2
Control: tags -1 moreinfo
On 2014-11-22 01:09, Sandro Tosi wrote:
> Package: release.debian.org
> Severity: normal
> User: release.debian@packages.debian.org
> Usertags: unblock
>
> Please unblock package python-regex
>
> This upload fixes and RC bug, due to the switch from dir to symlink for doc
>
> unblock python-regex/0.1.20141024-2
>
> [...]
Hi Sandro,
Looks good, but I believe you need a Pre-Depends on dpkg for that (or a
${misc:Pre-Depends})
~Niels
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/546feba3.6020...@thykier.net
Processed: Re: Bug#770523: unblock: python-regex/0.1.20141024-2
Processing control commands: > tags -1 moreinfo Bug #770523 [release.debian.org] unblock: python-regex/0.1.20141024-2 Added tag(s) moreinfo. -- 770523: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770523 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b770523.141662097524384.transcr...@bugs.debian.org
Bug#770524: unblock: opendkim/2.9.3-1 (pre-upload check)
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package opendkim
Upstream is in the process of preparing a new feature release that is
clearly unsuitable for the freeze, but it also contains quite a few
bug fixes that are either important from a correct performance (and
potentially security) perspective or very low risk and highly likely to
be useful to sysadmins making use of the package.
I've gone through and evaluated which changes I think would be good
to get into Jessie (see attached upstream diff). Depending on upstream's
reaction to this, this would either be version 2.9.3 or patches to our
existing 2.9.2. Before I approach upstream and push for another bug fix
release that they don't currently plan, I'd like feedback on what, if any
of the attached would be suitable for Jessie.
unblock opendkim/2.9.3-1
diff --git a/HowToRelease b/HowToRelease
index d687a61..3beeb75 100644
--- a/HowToRelease
+++ b/HowToRelease
@@ -50,5 +50,5 @@ Release procedures for OpenDKIM
9) Mark any bug fixes or feature requests, etc. as closed if this release
contained them.
-10) Update our entry on FreshMeat (http://www.freshmeat.net).
+10) Update our entry on FreeCode (http://freecode.com).
diff --git a/RELEASE_NOTES b/RELEASE_NOTES
index 380ad6a..9985a9b 100644
--- a/RELEASE_NOTES
+++ b/RELEASE_NOTES
@@ -3,6 +3,26 @@
This listing shows the versions of the OpenDKIM package, the date of
release, and a summary of the changes in that release.
+2.9.3 2014/??/??
+Fix bug #177: Plug leaking "result" structures when OpenLDAP is in use.
+ Truncate configuration file lines at carriage return.
+ Replace overlapping strlcpy() with memmove() in dkim_get_key_file().
+ Reported by Daniel J. Luke.
+ Patch #32: Re-arrange the execution logic to drop privileges in
+ proper order.
+ LIBOPENDKIM: dkim_header() is now a lot more strict about the input
+ it will accept (see RFC5322 Section 2.2).
+ LIBOPENDKIM: Tighten relaxed modes to break on only DKIM-defined
+ whitespace characters. Problem noted by Elizabeth Zwicky.
+ LIBOPENDKIM: Fix bug #208: If a signature fails to verify for either
+ reason (header hash mismatched or body hash mismatched), set
+ DKIM_SIGERROR_BADSIG so that Authentication-Results doesn't
+ report a failure with "no signature error".
+ TOOLS: Feature request #178: Add "-F" flag to opendkim-genzone so
+ records are created with the FQDN. Patch from Andreas Schulze.
+ REPUTATION: Handle parameters safely in repute.php. Reported by
+ Daniel Black.
+
2.9.2 2014/04/02
Fix some conflicting unit tests. Reported by Eray Aslan.
BUILD: Fix bug #195 part II: Compile all binaries with pthreads
diff --git a/configure.ac b/configure.ac
index 703753e..7ae311a 100644
--- a/configure.ac
+++ b/configure.ac
@@ -14,7 +14,7 @@ AC_PREREQ(2.61)
#
m4_define([VERSION_RELEASE], 2)
m4_define([VERSION_MAJOR_REV], 9)
-m4_define([VERSION_MINOR_REV], 2)
+m4_define([VERSION_MINOR_REV], 3)
m4_define([VERSION_PATCH], 0)
#
diff --git a/libopendkim/dkim-canon.c b/libopendkim/dkim-canon.c
index 125bf12..7b5e7b9 100644
--- a/libopendkim/dkim-canon.c
+++ b/libopendkim/dkim-canon.c
@@ -60,7 +60,8 @@
#define SP (u_char *) " "
/* macros */
-#define DKIM_ISLWSP(x) ((x) == 011 || (x) == 013 || (x) == 014 || (x) == 040)
+#define DKIM_ISWSP(x) ((x) == 011 || (x) == 040)
+#define DKIM_ISLWSP(x) ((x) == 011 || (x) == 012 || (x) == 015 || (x) == 040)
/* prototypes */
extern void dkim_error __P((DKIM *, const char *, ...));
@@ -353,7 +354,7 @@ dkim_canon_header_string(struct dkim_dstring *dstr, dkim_canon_t canon,
if (isascii(*p))
{
/* discard spaces */
-if (isspace(*p))
+if (DKIM_ISWSP(*p))
continue;
/* convert to lowercase */
@@ -387,7 +388,7 @@ dkim_canon_header_string(struct dkim_dstring *dstr, dkim_canon_t canon,
}
/* skip all spaces before first word */
- while (*p != '\0' && isascii(*p) && isspace(*p))
+ while (*p != '\0' && DKIM_ISWSP(*p))
p++;
space = FALSE;/* just saw a space */
@@ -1052,8 +1053,7 @@ dkim_canon_selecthdrs(DKIM *dkim, u_char *hdrlist, struct dkim_header **ptrs,
len = MIN(DKIM_MAXHEADER, strlen((char *) hdrs[c]));
while (len > 0 &&
- isascii(hdrs[c][len - 1]) &&
- isspace(hdrs[c][len - 1]))
+ DKIM_ISWSP(hdrs[c][len - 1]))
len--;
for (hdr = dkim->dkim_hhead; hdr != NULL; hdr = hdr->hdr_next)
@@ -1769,7 +1769,7 @@ dkim_canon_bodychunk(DKIM *dkim, u_char *buf, size_t buflen)
switch (cur->canon_bodystate)
{
case 0:
- if (DKIM_ISLWSP(*p))
+ if (DKIM_ISWSP(*p))
{
cur->canon_bodystate = 1;
}
@@ -1787,7 +1787,7 @@ dkim_canon_bodychunk(DKIM *dkim, u_char *buf, size_t buflen)
break;
case 1:
- if (DKIM_ISLWSP(*p))
+ if (DKIM_ISWSP(*p))
{
break;
}
@@ -1836,7 +1836,7 @@ dkim_canon_bodychunk(DKIM *dkim, u_char *buf, size_t buflen)
}
Bug#770523: unblock: python-regex/0.1.20141024-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package python-regex This upload fixes and RC bug, due to the switch from dir to symlink for doc unblock python-regex/0.1.20141024-2 -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (500, 'oldstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.14-2-amd64 (SMP w/8 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash diff -Nru python-regex-0.1.20141024/debian/changelog python-regex-0.1.20141024/debian/changelog --- python-regex-0.1.20141024/debian/changelog 2014-10-26 10:01:03.0 + +++ python-regex-0.1.20141024/debian/changelog 2014-11-21 23:54:06.0 + @@ -1,3 +1,11 @@ +python-regex (0.1.20141024-2) unstable; urgency=medium + + * debian/*.maintscript +- properly handle the doc directories switch to symlinks; thanks to Andreas + Beckmann for the report; Closes: #768238 + + -- Sandro Tosi Fri, 21 Nov 2014 23:53:10 + + python-regex (0.1.20141024-1) unstable; urgency=medium * New upstream release diff -Nru python-regex-0.1.20141024/debian/python3-regex-dbg.maintscript python-regex-0.1.20141024/debian/python3-regex-dbg.maintscript --- python-regex-0.1.20141024/debian/python3-regex-dbg.maintscript 1970-01-01 01:00:00.0 +0100 +++ python-regex-0.1.20141024/debian/python3-regex-dbg.maintscript 2014-11-21 23:53:00.0 + @@ -0,0 +1 @@ +dir_to_symlink /usr/share/doc/python3-regex-dbg python-regex diff -Nru python-regex-0.1.20141024/debian/python3-regex.maintscript python-regex-0.1.20141024/debian/python3-regex.maintscript --- python-regex-0.1.20141024/debian/python3-regex.maintscript 1970-01-01 01:00:00.0 +0100 +++ python-regex-0.1.20141024/debian/python3-regex.maintscript 2014-11-21 23:53:00.0 + @@ -0,0 +1 @@ +dir_to_symlink /usr/share/doc/python3-regex python-regex diff -Nru python-regex-0.1.20141024/debian/python-regex-dbg.maintscript python-regex-0.1.20141024/debian/python-regex-dbg.maintscript --- python-regex-0.1.20141024/debian/python-regex-dbg.maintscript 1970-01-01 01:00:00.0 +0100 +++ python-regex-0.1.20141024/debian/python-regex-dbg.maintscript 2014-11-21 23:53:00.0 + @@ -0,0 +1 @@ +dir_to_symlink /usr/share/doc/python-regex-dbg python-regex
Bug#770099: unblock: python-urllib3/1.9.1-3
Hello Stefano, On Friday 21 November 2014 02:34:30 Stefano Rivera wrote: > Looks like Daniele already uploaded 1.9.1-3, with the inclusion of an > additional bug fix - #770246 I'm really sorry for this... yesterday I got 3 bug (one of them was RC) - #770172, #770284, and #770246 - related to ssl.PROTOCOL_SSLv3 and someone asked on IRC why python-urllib3 was broken. I was so concentrated to get python-urllib3 working again in sid that I forgotten you already told me about the pre-unblock. This will not happen in future and I'm sincerely sorry for this. :( I hope I did not cause too mutch trouble... Kind regards, -- Daniele Tricoli 'Eriol' http://mornie.org -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/3312444.CKz1jDeI01@mornie
Bug#770000: unblock: systemd/215-6
On Fri, 2014-11-21 at 22:28 +0100, Niels Thykier wrote: > Unfortunately, #770404 will end up blocking the migration of systemd. Not any more... Bug reassigned from package 'systemd' to 'lxdm'. Request was from Sjoerd Simons to cont...@bugs.debian.org. (Fri, 21 Nov 2014 21:51:12 GMT) Full text and rfc822 format available. Regards, Adam -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/1416607073.8259.5.ca...@adam-barratt.org.uk
Bug#770000: unblock: systemd/215-6
On 2014-11-18 20:51, Cyril Brulebois wrote: > Control: tag -1 confirmed > > Niels Thykier (2014-11-18): >> On 2014-11-18 13:18, Martin Pitt wrote: >>> [...] >> >> Excellent, thanks. :) >> >> Cc'ing KiBi for d-i approval. > > A very nice thing to have fixed finally. Please go ahead; if anything > breaks because of this, easy to track it down (again). ;) > > Mraw, > KiBi. > Hi, Unfortunately, #770404 will end up blocking the migration of systemd. ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546fae8d.1040...@thykier.net
Bug#768324: unblock: appstream/0.7.4-1
Sorry for the later reply, this week was crazy... 2014-11-16 22:46 GMT+01:00 Jonathan Wiltshire : > Control: tag -1 moreinfo > > On Thu, Nov 06, 2014 at 06:50:01PM +0100, Matthias Klumpp wrote: >> 2014-11-06 17:48 GMT+01:00 Jonathan Wiltshire : >> > On 2014-11-06 16:34, Matthias Klumpp wrote: >> >> [...] >> > >> > At least a debdiff is missing; the changelog and bugs would be handy. >> Okay, sorry for that. >> A debdiff is attached. > > At ~800K it didn't make it to the list (and hence nobody has responded), > which should give you an idea of how much I'm looking forward to reading > it or the 67K one... Oh, I somehow didn't see the reject message... It probably drowned in the mail flood... >> Since the Debian changelog is rather boring (just says that a new >> upstream release was packaged), here's the upstream changelog instead: >> >> #~#~# >> Version 0.7.4 >> ~~ >> Released: 2014-10-30 >> >> Notes: >> >> Features: >> * Add local icon directories to the icon search path >> * Properly handle origin and icons in size-specific directories >> * Allow client applications to fetch icons in multiple sizes >> * qt: Implement multisize-icons >> * qt: Add documentation to the deprecated methods >> * validator: Ensure that stock and cached icons only contain the icon >> basename > > Features are out; sorry. It's too late for that sort of thing, especially > as the upstream release alone was only a few days ahead of the freeze. Yes, that was unfortunate - I am the upstream maintainer of this software as well, and some stuff got in the way so I couldn't make the release a few days earlier, so it would have made it in on it's own. The point for having it (since it is no heavily used library in Debian yet), is that it implements the AppStream specification in a very recent version (which is what the features are about). This allows us to provide a set of metadata for Jessie post-release, which is immediately useful for people without further changes. But if that's too much change to let it in, I will send this package to backports later instead. > An exception would be if they're causing real bugs in Debian. > >> Bugfixes: >> * dep11: refine quote test >> * Don't count it as problem if no metadata is found [1] >> * Check if AppInstall directory exists, before attempting to scan it [3] >> * Don't query system categories while processing metadata [2] >> #~#~# >> [...] > > I'm interested in the bug fixes in isolation, but I'd need a debdiff for > first please. I've sent a debdiff in the previous mail - or would you like one with the patches cherry-picked? Anyway, the bugfixes are: https://github.com/ximion/appstream/commit/a1331a9462e86fc962319e04aa226c9578d23702 => Fixes a false-positive in the DEP-11 validator[1]. https://github.com/ximion/appstream/commit/8322fa1c8abd52b8de623fa067bb75f807fa7f6c => Prints a wrong message telling the user that reading the metadata was not successful, while it actually was fine. (This happens, for example, if an user does not have app-install-data installed, but AppStream data available in /var/cache/app-info) https://github.com/ximion/appstream/commit/fbd06331a5dae3909f83210abf8b29f1ed196079 => This one solves another incarnation of the bug mentioned above. https://github.com/ximion/appstream/commit/1a8be47411366dc65730207b6f1c5d089c01546e => Solves a performance issue (scanning all XDG categories is expensive if you do it often) and clears debug spam in applications using libappstream, which tells the user that icons for an XDG category are missing. Since GNOME and KDE have different categories, the messages do always exist. Hope that helps. As said, in case the features weight too much, I'll do a backport instead. Cheers, Matthias [1]: https://wiki.debian.org/DEP-11 -- I welcome VSRE emails. See http://vsre.info/ -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/CAKNHny-r_F9894GhXSWTWAbzmLnZ5GMD-+hv=wyoryntqqd...@mail.gmail.com
Bug#770501: unblock: libvncserver/0.9.9+dfsg-7 (pre-approval)
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
I prepared an upload to fix grave bug #762745, cherry-picking patches from
upstream to fix multiple vulnerabilities. I also took the chance to include
fixes for #766257 and #758754. Please tell me whether I should drop these
instead.
The problem with this (tentative) upload is related to this commit, needed to
fix CVE-2014-6055:
https://github.com/newsoft/libvncserver/commit/06ccdf016154fde8eccb5355613ba04c59127b2e
It seems there's an API/ABI break, also reported in RedHat, as per
https://bugzilla.redhat.com/show_bug.cgi?id=1144293#c2, which could be
problematic at this point. What would be the recommended way to proceed from
here?
-- System Information:
Debian Release: jessie/sid
APT prefers testing-updates
APT policy: (500, 'testing-updates'), (500, 'testing')
Architecture: amd64 (x86_64)
Kernel: Linux 3.16-3-amd64 (SMP w/8 CPU cores)
diff --git a/debian/changelog b/debian/changelog
index 4cb521d..77de074 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,19 @@
+libvncserver (0.9.9+dfsg-7) UNRELEASED; urgency=medium
+
+ * debian/patches/CVE-2014.patch:
+- Fix multiple vulnerabilities (Closes: #762745).
+ - CVE-2014-6051 Integer overflow in MallocFrameBuffer() on client side.
+ - CVE-2014-6052 Lack of malloc() return value checking on client side.
+ - CVE-2014-6053 Server crash on a very large ClientCutText message.
+ - CVE-2014-6054 Server crash when scaling factor is set to zero.
+ - CVE-2014-6055 Multiple stack overflows in File Transfer feature.
+ * debian/patches/novnc.patch:
+- Set opcode correctly for binary frames (Closes: #766257).
+ * debian/control:
+- Use uppercase VNC in short descriptions (Closes: #758754).
+
+ -- Luca Falavigna Fri, 21 Nov 2014 20:51:50 +0100
+
libvncserver (0.9.9+dfsg-6) unstable; urgency=medium
[ Luca Falavigna ]
diff --git a/debian/control b/debian/control
index 9e188be..17ebbe6 100644
--- a/debian/control
+++ b/debian/control
@@ -22,7 +22,7 @@ Depends: ${shlibs:Depends},
Breaks: libvncserver0 (<< 0.9.9+dfsg-3)
Replaces: libvncserver0 (<< 0.9.9+dfsg-3)
Multi-Arch: same
-Description: API to write one's own vnc server - client library
+Description: API to write one's own VNC server - client library
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
@@ -35,7 +35,7 @@ Pre-Depends: ${misc:Pre-Depends}
Depends: ${shlibs:Depends},
${misc:Depends}
Multi-Arch: same
-Description: API to write one's own vnc server
+Description: API to write one's own VNC server
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
@@ -53,7 +53,7 @@ Depends: ${misc:Depends},
zlib1g-dev,
libvncserver-config
Multi-Arch: same
-Description: API to write one's own vnc server - development files
+Description: API to write one's own VNC server - development files
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
@@ -68,7 +68,7 @@ Depends: ${misc:Depends},
libvncclient0 (= ${binary:Version}),
libvncserver0 (= ${binary:Version})
Multi-Arch: foreign
-Description: API to write one's own vnc server - library utility
+Description: API to write one's own VNC server - library utility
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
diff --git a/debian/patches/CVE-2014.patch b/debian/patches/CVE-2014.patch
new file mode 100644
index 000..3931854
--- /dev/null
+++ b/debian/patches/CVE-2014.patch
@@ -0,0 +1,293 @@
+Description: Fix CVE-2014-6051 CVE-2014-6052 CVE-2014-6053
+ CVE-2014-6054 CVE-2014-6055
+Author: Nicolas Ruff
+
+Index: libvncserver/libvncclient/rfbproto.c
+===
+--- libvncserver.orig/libvncclient/rfbproto.c 2014-11-21 20:35:19.488146693 +0100
libvncserver/libvncclient/rfbproto.c 2014-11-21 20:45:30.973828663 +0100
+@@ -1807,7 +1807,8 @@
+ client->updateRect.x = client->updateRect.y = 0;
+ client->updateRect.w = client->width;
+ client->updateRect.h = client->height;
+- client->MallocFrameBuffer(client);
++ if (!client->MallocFrameBuffer(client))
++return FALSE;
+ SendFramebufferUpdateRequest(client, 0, 0, rect.r.w, rect.r.h, FALSE);
+ rfbClientLog("Got new framebuffer size: %dx%d\n", rect.r.w, rect
Bug#770438: unblock: phpmyadmin/4:4.2.12-1
Control: tags -1 confirmed On 2014-11-21 09:40, Michal Čihař wrote: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > > Hi > > this is pre-approval request to allow version upgrade for phpMyAdmin. > > The new upstream version was released yesterday with dozen of security > fixes and I think it's better to do full upgrade now than cherry picking > individual fixes. The another good reason is that upstream 4.2.x > releases are in bug fixing only mode. > > [...] > > unblock phpmyadmin/4:4.2.12-1 > > Thanks > Approved, please upload to unstable and let us know once it has been accepted. ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546f9924.1050...@thykier.net
Processed: Re: Bug#770438: unblock: phpmyadmin/4:4.2.12-1
Processing control commands: > tags -1 confirmed Bug #770438 [release.debian.org] unblock: phpmyadmin/4:4.2.12-1 Added tag(s) confirmed. -- 770438: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770438 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b770438.14165998543032.transcr...@bugs.debian.org
Processed: Re: Bug#770338: unblock: nautilus/3.14.1-1
Processing commands for cont...@bugs.debian.org:
> tag 770338 - confirmed
Bug #770338 {Done: Niels Thykier } [release.debian.org]
unblock: nautilus/3.14.1-1
Removed tag(s) confirmed.
> retitle 770338 unblock: nautilus/3.14.1-2
Bug #770338 {Done: Niels Thykier } [release.debian.org]
unblock: nautilus/3.14.1-1
Changed Bug title to 'unblock: nautilus/3.14.1-2' from 'unblock:
nautilus/3.14.1-1'
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
770338: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770338
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive:
https://lists.debian.org/handler.s.c.14165998452985.transcr...@bugs.debian.org
Bug#770338: unblock: nautilus/3.14.1-1
tag 770338 - confirmed
retitle 770338 unblock: nautilus/3.14.1-2
thanks
On Fri, 21 Nov 2014 18:15:43 +0100 Niels Thykier
wrote:
[...]
> Unblocked, thanks.
Dear release team,
I'm going to upload nautilus 3.14.1-2 to unstable.
3.14.1-1 was not enough to fix #766021. Fortunately, upstream has
pushed a patch in their git repository.
Could you please unblock 3.14.1-2, the debdiff is attached to the
bug.
Cheers,
Laurent Bigonvillediff -Nru nautilus-3.14.1/debian/changelog nautilus-3.14.1/debian/changelog
--- nautilus-3.14.1/debian/changelog 2014-11-20 14:15:55.0 +0100
+++ nautilus-3.14.1/debian/changelog 2014-11-21 20:45:43.0 +0100
@@ -1,3 +1,11 @@
+nautilus (3.14.1-2) unstable; urgency=medium
+
+ * d/p/01_fix-new-window-manage-desktop.patch: Fix opening of new browser
+windows when nautilus is managing the desktop, cherry-picked from
+upstream, should really Closes: #766021
+
+ -- Laurent Bigonville Fri, 21 Nov 2014 20:44:25 +0100
+
nautilus (3.14.1-1) unstable; urgency=medium
* New upstream release.
diff -Nru nautilus-3.14.1/debian/control nautilus-3.14.1/debian/control
--- nautilus-3.14.1/debian/control 2014-11-20 21:33:48.0 +0100
+++ nautilus-3.14.1/debian/control 2014-11-21 20:46:06.0 +0100
@@ -6,7 +6,7 @@
Section: gnome
Priority: optional
Maintainer: Debian GNOME Maintainers
-Uploaders: Andreas Henriksson , Emilio Pozuelo Monfort , Michael Biebl , Sjoerd Simons
+Uploaders: Andreas Henriksson , Laurent Bigonville , Michael Biebl , Sjoerd Simons
Build-Depends: debhelper (>= 8),
dh-autoreconf,
cdbs (>= 0.4.90),
diff -Nru nautilus-3.14.1/debian/patches/01_fix-new-window-manage-desktop.patch nautilus-3.14.1/debian/patches/01_fix-new-window-manage-desktop.patch
--- nautilus-3.14.1/debian/patches/01_fix-new-window-manage-desktop.patch 1970-01-01 01:00:00.0 +0100
+++ nautilus-3.14.1/debian/patches/01_fix-new-window-manage-desktop.patch 2014-11-21 20:22:13.0 +0100
@@ -0,0 +1,82 @@
+From ae4d4960d1c3e6316de0d1fd01fd34c88f65d673 Mon Sep 17 00:00:00 2001
+From: Carlos Soriano
+Date: Wed, 19 Nov 2014 15:21:37 +0100
+Subject: nautilus-application: Don't trigger activate signal for -n option
+
+Until now we were using --no-default-window in cases when we wanted to
+manage the icons on the desktop, which is the most common use case of
+this setting.
+
+The problems were:
+- When using --no-default-window for the first inscante, the user
+couldn't open a new window of nautilus, since the only window allowed
+was the desktop one in the first instance. The code was just early
+returning in activate if the private setting of the instance is set.
+- When using --no-default-window for the consecutive instances after
+starting nautilus without --no-default-window it was creating a new
+window anyway, since the first instance doesn't have the setting set in
+its private and the second instance was just calling the activate of the
+first instance. For instance that was happening when the user
+activate/deactivate the show-desktop-icons gsetting, since the
+nautilus-autostart desktop file was running nautilus
+--no-default-window, but the first instance was a instance withouth the
+--no-default-window.
+
+So the solution for both cases is avoiding calling activate if the
+--no-default-window is an arggument, instead of a private setting of the
+instance.
+To avoid calling activate we can return a value less than 0 to the
+GApplication in the handle_local_options function. So if the
+--no-default-window is passed as an argument, we just skip the activate
+call.
+Since when launching consecutive instances they take care of its own
+handle_local_options they can skip as well the activate call redirected
+to the first instance.
+
+Big thanks to Ray Strode for discussion, debugging and base of this
+patch, and Debarshy Ray for discussion and debugging.
+
+https://bugzilla.gnome.org/show_bug.cgi?id=737515
+
+diff --git a/src/nautilus-application.c b/src/nautilus-application.c
+index 25b2b67..f26c8c7 100644
+--- a/src/nautilus-application.c
b/src/nautilus-application.c
+@@ -83,7 +83,6 @@ struct _NautilusApplicationPriv {
+ NautilusFreedesktopDBus *fdb_manager;
+
+ gboolean desktop_override;
+- gboolean no_default_window;
+
+ NotifyNotification *unmount_notify;
+
+@@ -931,9 +930,14 @@ nautilus_application_handle_local_options (GApplication *application,
+ self->priv->desktop_override = TRUE;
+ g_action_group_activate_action (G_ACTION_GROUP (application),
+ "close-desktop", NULL);
++ } else if (g_variant_dict_contains (options, "no-default-window")) {
++ /* We want to avoid trigering the activate signal; so no window is created.
++ * GApplication doesn't call activate if we return a value >= 0.
++ * Use EXIT_SUCCESS since is >= 0. */
++ retval = EXIT_SUCCESS;
++ goto out;
+ }
+
+- self->priv->no_default_window = g_variant_dict_contains (options, "no-default-window");
+ retval = nautilus_application
Bug#770451: marked as done (unblock: direwolf/1.0-2)
Your message dated Fri, 21 Nov 2014 20:43:45 +0100 with message-id <546f95f1.7090...@thykier.net> and subject line Re: Bug#770451: unblock: direwolf/1.0-2 has caused the Debian Bug report #770451, regarding unblock: direwolf/1.0-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 770451: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770451 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package direwolf The version in unstable (1.0-2) fixes RC bug #768223. unblock direwolf/1.0-2 -- System Information: Debian Release: 7.6 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686-bigmem (SMP w/1 CPU core) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash diff -Nru direwolf-1.0/debian/changelog direwolf-1.0/debian/changelog --- direwolf-1.0/debian/changelog 2014-10-11 18:54:53.0 +0100 +++ direwolf-1.0/debian/changelog 2014-11-07 13:41:03.0 + @@ -1,3 +1,10 @@ +direwolf (1.0-2) unstable; urgency=medium + + * No longer install the ll2utm or utm2ll binaries or man pages. (Closes: +#768223) + + -- Iain R. Learmonth Fri, 07 Nov 2014 13:40:27 + + direwolf (1.0-1) unstable; urgency=medium * Initial release. (Closes: #759639) diff -Nru direwolf-1.0/debian/manpages/ll2utm.1 direwolf-1.0/debian/manpages/ll2utm.1 --- direwolf-1.0/debian/manpages/ll2utm.1 2014-10-11 18:07:09.0 +0100 +++ direwolf-1.0/debian/manpages/ll2utm.1 1970-01-01 01:00:00.0 +0100 @@ -1,36 +0,0 @@ - -.TH ll2utm 1 "September 2014" "ll2utm(1)" "Ham Radio Applications" - -.SH NAME -\fBll2utm\fR \- Latitude / Longitude to UTM conversion - -.SH SYNOPSIS - -\fBll2utm\fR \fBlatitude\fR \fBlongitude\fR - -.SH OPTIONS - -The latitude and longitude must be in decimal degrees. Use negative for south or west. - -.SH "AUTHORS" - -Dire Wolf is Copyright \(co 2011-2014 John Langner WB2OSZ\&. - -.SH "COPYRIGHT" -.br -This manual page is Copyright \(co 2014 Iain R. Learmonth\&. -.br -.PP -This manual page was written for the Debian system (but may be used by others)\&. -.PP -Permission is granted to copy, distribute and/or modify this document under the terms of the GNU General Public License, Version 2 or (at your option) any later version published by the Free Software Foundation\&. -.PP -On Debian systems, the complete text of the GNU General Public License can be found in -/usr/share/common\-licenses/GPL-2\&. - -.SH "SEE ALSO" - -direwolf(1), utm2ll(1) - -.sp - diff -Nru direwolf-1.0/debian/manpages/utm2ll.1 direwolf-1.0/debian/manpages/utm2ll.1 --- direwolf-1.0/debian/manpages/utm2ll.1 2014-10-11 18:07:09.0 +0100 +++ direwolf-1.0/debian/manpages/utm2ll.1 1970-01-01 01:00:00.0 +0100 @@ -1,41 +0,0 @@ - -.TH utm2ll 1 "September 2014" "utm2ll(1)" "Ham Radio Applications" - -.SH NAME -\fButm2ll\fR \- UTM to Latitude / Longitude conversion - -.SH SYNOPSIS - -\fButm2ll\fR \fBzone\fR \fBeasting\fR \fBnorthing\fR - -.SH OPTIONS - -.PP -zone \- UTM zone 1 thru 60 with optional latitudinal band -.PP -easting \- x coordinate in meters -.PP -northing \- y coordinate in meters - -.SH "AUTHORS" - -Dire Wolf is Copyright \(co 2011-2014 John Langner WB2OSZ\&. - -.SH "COPYRIGHT" -.br -This manual page is Copyright \(co 2014 Iain R. Learmonth\&. -.br -.PP -This manual page was written for the Debian system (but may be used by others)\&. -.PP -Permission is granted to copy, distribute and/or modify this document under the terms of the GNU General Public License, Version 2 or (at your option) any later version published by the Free Software Foundation\&. -.PP -On Debian systems, the complete text of the GNU General Public License can be found in -/usr/share/common\-licenses/GPL-2\&. - -.SH "SEE ALSO" - -direwolf(1), ll2utm(1) - -.sp - diff -Nru direwolf-1.0/debian/patches/makefile_install.patch direwolf-1.0/debian/patches/makefile_install.patch --- direwolf-1.0/debian/patches/makefile_install.patch 2014-10-11 18:07:09.0 +0100 +++ direwolf-1.0/debian/patches/makefile_install.patch 2014-11-07 13:32:33.0 + @@ -35,8 +35,8 @@ + install decode_aprs debian/direwolf/usr/bin + install text2tt debian/direwolf/usr/bin + install tt2text debian/direwolf/usr/bin -+ install ll2utm debian/direwolf/usr/bin -+ install utm2ll debian/direwolf/usr/bin ++ #install ll2utm debian/direwolf/usr/bin ++ #install utm2ll debian/direwolf/usr/bin + ins
Bug#768933: marked as done (unblock: jscommunicator)
Your message dated Fri, 21 Nov 2014 20:37:26 +0100 with message-id <546f9476.2010...@thykier.net> and subject line Re: Bug#768933: unblock: jscommunicator has caused the Debian Bug report #768933, regarding unblock: jscommunicator to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 768933: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768933 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Bugs: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768363 - this corrects the version in the constraint to depend on fonts-font-awesome 4.1.0~dfsg https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768632 - this ensures compatibility with older versions of jQuery found in Debian / drupal7 package This is a new upstream release (from 1.1.1 to 2.0.1). WebRTC is a fast moving technology and it is in the best interests of users to offer the latest version of the package. Browser vendors assure This package has not been updated in unstable for a few months because related dependencies were in the FTP new queue (drupal7-mod-jqueryi18nproperties and drupal7-mod-fontawesome) until just before the freeze and so I have only been able to test all these packages together as a set over the last few days. If I had uploaded earlier it would have broken the drucall package. There will also be an unblock request for drupal7-mod-drucall which is based on jscommunicator --- jscommunicator-1.1.1/debian/changelog 2014-02-12 16:08:06.0 +0100 +++ jscommunicator-2.0.1/debian/changelog 2014-11-08 22:18:54.0 +0100 @@ -1,3 +1,22 @@ +jscommunicator (2.0.1-1) unstable; urgency=medium + + * New upstream release. + * Support for older jQuery versions. (Closes: #768632) + + -- Daniel Pocock Sat, 08 Nov 2014 22:17:56 +0100 + +jscommunicator (2.0.0-2) unstable; urgency=medium + + * Relax fonts-font-awesome dependency version. (Closes: #768363) + + -- Daniel Pocock Thu, 06 Nov 2014 20:44:01 +0100 + +jscommunicator (2.0.0-1) unstable; urgency=medium + + * New upstream release. + + -- Daniel Pocock Wed, 05 Nov 2014 22:07:58 +0100 + jscommunicator (1.1.1-1) unstable; urgency=low * New upstream release diff -Nru jscommunicator-1.1.1/AUTHORS jscommunicator-2.0.1/AUTHORS --- jscommunicator-1.1.1/AUTHORS1970-01-01 01:00:00.0 +0100 +++ jscommunicator-2.0.1/AUTHORS2014-11-08 20:03:43.0 +0100 @@ -0,0 +1,12 @@ +Daniel Pocock +Juliana Louback +Christian Henz +Jeroen Massar +elprincipe +Yehuda Korotkin +Carla Araos +aavia +mirazusman +tehilazi +Matías A. Bellone +tami4 diff -Nru jscommunicator-1.1.1/available_languages.xml jscommunicator-2.0.1/available_languages.xml --- jscommunicator-1.1.1/available_languages.xml1970-01-01 01:00:00.0 +0100 +++ jscommunicator-2.0.1/available_languages.xml2014-11-08 20:03:43.0 +0100 @@ -0,0 +1,39 @@ + + + +Български +bg + + +Deutsch +de + + +English +en + + +Español +es + + +Français +fr + + +עברית +he + + +Polski +pl + + +Português +pt + + +slovenčina +sk + + diff -Nru jscommunicator-1.1.1/code_grabber jscommunicator-2.0.1/code_grabber --- jscommunicator-1.1.1/code_grabber 1970-01-01 01:00:00.0 +0100 +++ jscommunicator-2.0.1/code_grabber 2014-11-08 20:03:43.0 +0100 @@ -0,0 +1,21 @@ +#!/bin/sh + +wget http://code.jquery.com/jquery-1.7.2.min.js -O jquery.js +wget https://freephonebox.net/JsSIP.js -O JsSIP.js +wget http://arbiterjs.com/Arbiter.js -O Arbiter.js +wget https://jquery-i18n-properties.googlecode.com/files/jquery.i18n.properties-min-1.0.9.js -O jquery.i18n.properties.js + +mkdir -p font-awesome/css +mkdir -p font-awesome/fonts + +mkdir -p temp +wget -P temp http://jqueryui.com/resources/download/jquery-ui-1.10.4.zip +unzip -d temp temp/jquery-ui-1.10.4.zip +cp temp/jquery-ui-1.10.4/js/jquery-ui-1.10.4.min.js jquery-ui.js +cp temp/jquery-ui-1.10.4/css/ui-lightness/jquery-ui-1.10.4.css jquery-ui.css + +wget -P temp http://fortawesome.github.io/Font-Awesome/assets/font-awesome-4.1.0.zip +unzip -d temp temp/font-awesome-4.1.0.zip +cp temp/font-awesome-4.1.0/css/font-awesome.min.css font-awesome/css/font-awesome.min.css +cp -a temp/font-awesome-4.1.0/fonts/. font-awesome/fonts +rm -r temp diff -Nru jscommunicator-1.1.1/config-sample.js jscommunicator-2.0.1/config-sample.js --- jscommunicator-1.1.1/config-sample.js 2014-02-06 22:48:30.0 +0100 +++ jscommunicator-2.0.1/config-sample.js 2014-11-08 20:03:43.0 +0100 @@ -16
Bug#768935: marked as done (unblock: drupal7-mod-drucall)
Your message dated Fri, 21 Nov 2014 20:37:59 +0100
with message-id <546f9497.80...@thykier.net>
and subject line Re: Bug#768935: unblock: drupal7-mod-drucall
has caused the Debian Bug report #768935,
regarding unblock: drupal7-mod-drucall
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
768935: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768935
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
drupal7-mod-drucall is closely related to the jscommunicator package
This version updates the package with the latest content, including
language files, from jscommunicator. The jscommunicator unblock request
links to various bugs:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768363
- this corrects the version in the constraint to depend on
fonts-font-awesome 4.1.0~dfsg
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768632
- this ensures compatibility with older versions of jQuery found in Debian /
drupal7 package
This is a new upstream release from 2.0.0 to 2.2. WebRTC is a fast
moving technology and it is in the best interests of users to offer the
latest version of the package. Browser vendors assure people that the
technology is still under development and users should not be too
surprised at this change in version.
This package has not been updated in unstable for a few months because
new dependencies were in the FTP new queue
(drupal7-mod-jqueryi18nproperties and drupal7-mod-fontawesome) until
just before the freeze and so I have only been able to test all these
packages together with the latest jscommunicator as a set over the last
few days.
diff -Nru drupal7-mod-drucall-2.0.1/debian/changelog
drupal7-mod-drucall-2.1/debian/changelog
--- drupal7-mod-drucall-2.0.1/debian/changelog 2014-02-04
21:30:57.0 +0100
+++ drupal7-mod-drucall-2.1/debian/changelog2014-11-06
20:05:11.0 +0100
@@ -1,3 +1,10 @@
+drupal7-mod-drucall (2.1-1) unstable; urgency=medium
+
+ * New upstream release.
+ * Sync content with JSCommunicator. (Closes: #768354)
+
+ -- Daniel Pocock Thu, 06 Nov 2014 19:33:06 +0100
+
drupal7-mod-drucall (2.0.1-1) unstable; urgency=low
* New upstream release
diff -Nru drupal7-mod-drucall-2.0.1/available_languages.xml
drupal7-mod-drucall-2.1/available_languages.xml
--- drupal7-mod-drucall-2.0.1/available_languages.xml 1970-01-01
01:00:00.0 +0100
+++ drupal7-mod-drucall-2.1/available_languages.xml 2014-11-06
19:08:37.0 +0100
@@ -0,0 +1,39 @@
+
+
+
+Български
+bg
+
+
+Deutsch
+de
+
+
+English
+en
+
+
+Español
+es
+
+
+Français
+fr
+
+
+עברית
+he
+
+
+Polski
+pl
+
+
+Português
+pt
+
+
+slovenčina
+sk
+
+
diff -Nru drupal7-mod-drucall-2.0.1/debian/changelog
drupal7-mod-drucall-2.1/debian/changelog
--- drupal7-mod-drucall-2.0.1/debian/changelog 2014-02-04 21:30:57.0
+0100
+++ drupal7-mod-drucall-2.1/debian/changelog2014-11-06 20:05:11.0
+0100
@@ -1,3 +1,10 @@
+drupal7-mod-drucall (2.1-1) unstable; urgency=medium
+
+ * New upstream release.
+ * Sync content with JSCommunicator. (Closes: #768354)
+
+ -- Daniel Pocock Thu, 06 Nov 2014 19:33:06 +0100
+
drupal7-mod-drucall (2.0.1-1) unstable; urgency=low
* New upstream release
diff -Nru drupal7-mod-drucall-2.0.1/debian/control
drupal7-mod-drucall-2.1/debian/control
--- drupal7-mod-drucall-2.0.1/debian/control2014-01-24 13:04:00.0
+0100
+++ drupal7-mod-drucall-2.1/debian/control 2014-11-06 20:06:51.0
+0100
@@ -2,17 +2,17 @@
Section: web
Priority: optional
Maintainer: Debian Javascript Maintainers
-Uploaders: Daniel Pocock
+Uploaders: Daniel Pocock
Build-Depends: debhelper (>= 9)
-Standards-Version: 3.9.5
+Standards-Version: 3.9.6
Homepage: http://www.drucall.org
-Vcs-Browser: http://git.debian.org/?p=pkg-javascript/drupal7-mod-drucall.git
-Vcs-Git: git://git.debian.org/git/pkg-javascript/drupal7-mod-drucall.git
+Vcs-Browser:
https://anonscm.debian.org/cgit/pkg-javascript/drupal7-mod-drucall.git
+Vcs-Git: git://anonscm.debian.org/pkg-javascript/drupal7-mod-drucall.git
Package: drupal7-mod-drucall
Architecture: all
Multi-Arch: foreign
-Depends: ${misc:Depends}, drupal7-mod-jscommunicator
+Depends: ${misc:Depends}, drupal7-mod-jscommunicator (>= 1.1)
Recommends: javascript-common
Suggests: repro (>= 1.9.0), resiprocate-turn-server | rfc5766-turn-server
Description: WebRTC SIP module for the Drupal CMS
diff -Nru drupal7-mod-drucall-2.0.1/drucall.admin.inc
drupal7-mod-drucall-2.1/drucall.admin
Bug#770463: marked as done (unblock: dhcpcd5/6.0.5-2)
Your message dated Fri, 21 Nov 2014 20:30:37 +0100 with message-id <546f92dd.4000...@thykier.net> and subject line Re: Bug#770463: unblock: dhcpcd5/6.0.5-2 has caused the Debian Bug report #770463, regarding unblock: dhcpcd5/6.0.5-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 770463: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770463 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi Release Team, Please unblock package dhcpcd5, which fixed as denial-of-service vulnerability (CVE-2014-6060). Relevant bug in the BTS is #770043. Additionally to the patch I have updated the maintainer field to Debian QA group as previous maintainer orphaned the package. Full changelog is as follows: dhcpcd5 (6.0.5-2) unstable; urgency=medium * QA upload. [ Pierre Schweitzer ] * Fix denial of service (CVE-2014-6060) in dhcpcd5. (Closes: #770043). [ Salvatore Bonaccorso ] * Refresh CVE-2014-6060.patch (offset) * Update patch headers for CVE-2014-6060.patch. Wrap long lines in fields and use Description field. Add Applied-Upstream value. * Set Maintainer to Debian QA Group (cf. #770082) -- Salvatore Bonaccorso Wed, 19 Nov 2014 17:08:30 +0100 Attached is also the full debdiff. Could you thus unblock dhcpcd5/6.0.5-2 Many thanks in advance! Regards, Salvatore diff -Nru dhcpcd5-6.0.5/debian/changelog dhcpcd5-6.0.5/debian/changelog --- dhcpcd5-6.0.5/debian/changelog 2013-12-04 14:49:45.0 +0100 +++ dhcpcd5-6.0.5/debian/changelog 2014-11-19 19:50:28.0 +0100 @@ -1,3 +1,19 @@ +dhcpcd5 (6.0.5-2) unstable; urgency=medium + + * QA upload. + + [ Pierre Schweitzer ] + * Fix denial of service (CVE-2014-6060) in dhcpcd5. (Closes: #770043). + + [ Salvatore Bonaccorso ] + * Refresh CVE-2014-6060.patch (offset) + * Update patch headers for CVE-2014-6060.patch. +Wrap long lines in fields and use Description field. +Add Applied-Upstream value. + * Set Maintainer to Debian QA Group (cf. #770082) + + -- Salvatore Bonaccorso Wed, 19 Nov 2014 17:08:30 +0100 + dhcpcd5 (6.0.5-1.1) unstable; urgency=low * Non-maintainer upload. diff -Nru dhcpcd5-6.0.5/debian/control dhcpcd5-6.0.5/debian/control --- dhcpcd5-6.0.5/debian/control 2013-06-25 15:47:59.0 +0200 +++ dhcpcd5-6.0.5/debian/control 2014-11-19 19:50:28.0 +0100 @@ -1,7 +1,7 @@ Source: dhcpcd5 Section: net Priority: optional -Maintainer: Roy Marples +Maintainer: Debian QA Group Build-Depends: debhelper (>= 9) Standards-Version: 3.9.4.0 Homepage: http://roy.marples.name/projects/dhcpcd diff -Nru dhcpcd5-6.0.5/debian/patches/CVE-2014-6060.patch dhcpcd5-6.0.5/debian/patches/CVE-2014-6060.patch --- dhcpcd5-6.0.5/debian/patches/CVE-2014-6060.patch 1970-01-01 01:00:00.0 +0100 +++ dhcpcd5-6.0.5/debian/patches/CVE-2014-6060.patch 2014-11-19 19:50:28.0 +0100 @@ -0,0 +1,27 @@ +Description: Fix CVE-2014-6060 + Only bits 1 and 2 are used in the DHCP overload option, so when we + encounter the option set the last bit as well to ensure servername and + bootfile are only checked once as their check unsets bits 1 and 2. + Thanks to Tobias Stoeckmann. +Origin: upstream, http://roy.marples.name/projects/dhcpcd/ci/1d2b93aa5ce25a8a710082fe2d36a6bf7f5794d5?sbs=0 +Bug-Debian: https://bugs.debian.org/770043 +From: Roy Marples +Applied-Upstream: 6.4.3 + +--- a/dhcp.c b/dhcp.c +@@ -343,9 +343,12 @@ get_option(const struct dhcp_message *dh + goto exit; + break; + case DHO_OPTIONSOVERLOADED: +- /* Ensure we only get this option once */ ++ /* Ensure we only get this option once by setting ++ * the last bit as well as the value. ++ * This is valid because only the first two bits ++ * actually mean anything in RFC2132 Section 9.3 */ + if (!overl) +-overl = p[1]; ++overl = 0x80 | p[1]; + break; + } + l = *p++; diff -Nru dhcpcd5-6.0.5/debian/patches/series dhcpcd5-6.0.5/debian/patches/series --- dhcpcd5-6.0.5/debian/patches/series 2013-12-04 14:52:31.0 +0100 +++ dhcpcd5-6.0.5/debian/patches/series 2014-11-19 19:50:28.0 +0100 @@ -1 +1,2 @@ kfreebsd.diff +CVE-2014-6060.patch --- End Message --- --- Begin Message --- On 2014-11-21 14:56, Salvatore Bonaccorso wrote: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > > Hi Release Team, > > Please unblock package dhcpcd5, which fixed as denial-of-service vulnerability > (CVE-2014-6060). Relevant bug in the BTS i
Bug#767077: marked as done (unblock: sardana/1.4.2-1)
Your message dated Fri, 21 Nov 2014 20:28:58 +0100 with message-id <546f927a.3070...@thykier.net> and subject line Re: Bug#767077: unblock: sardana/1.4.2-1 has caused the Debian Bug report #767077, regarding unblock: sardana/1.4.2-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 767077: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=767077 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package sardana Hello, first this unblock depends of this other unblock bug #767074. with the same reasons than taurus. but sardana depends of the latests taurus package. so it would be nice if you could unblock also this package. this mostly a bug fix from the upstream for Debian Jessie. no debdiff, this is a new upstream bug fix. to be fair the upstream source package contain a dirty directory containing some documentation pre=built (sphinx) which is removed in dh_clean. The upstream is aware of this and will fix the problem for the next upload (Debian 9). thanks for your willingness unblock sardana/1.4.2-1 -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 3.16-2-486 Locale: LANG=fr_CA.UTF-8, LC_CTYPE=fr_CA.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash --- End Message --- --- Begin Message --- On 2014-10-28 10:48, Picca Frédéric-Emmanuel wrote: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > > Please unblock package sardana > > Hello, first this unblock depends of this other unblock bug #767074. > > [...] > > unblock sardana/1.4.2-1 > > [...] > > Unblocked, thanks. ~Niels--- End Message ---
Bug#767074: marked as done (unblock: taurus/3.3.1+dfsg-1)
Your message dated Fri, 21 Nov 2014 20:27:26 +0100 with message-id <546f921e.2010...@thykier.net> and subject line Re: Bug#767074: unblock: taurus/3.3.1+dfsg-1 has caused the Debian Bug report #767074, regarding unblock: taurus/3.3.1+dfsg-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 767074: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=767074 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package taurus Hello, me and the upstream of taurus worked last week to prepare a release of taurus specifically for debian8. this is mostly a bug fix. (the usual relase cycle of taurus and sardana is two per years, january and july). due to a lake of time and even with their week-end we missed the window for one day. They take all the week to prepare and test the new taurus. so I am confidant thaht it is better to have this version in Debian 8 instead of the current one. Would you be kind to unblock the package. I do not put the debdiff because this is a new release instead of a bug fix from the maintainer. If you have other questions do not hesitate to contact me. thanks Frederic unblock taurus/3.3.1+dfsg-1 -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 3.16-2-486 Locale: LANG=fr_CA.UTF-8, LC_CTYPE=fr_CA.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash --- End Message --- --- Begin Message --- On 2014-11-21 19:36, PICCA Frederic-Emmanuel wrote: >> Hi Frederic, > >> Please provide a filtered (source) debdiff of the changes, so we can >> review them. > > No problem here the full debdiff. > > debdiff taurus_3.3.0+dfsg-2.dsc taurus_3.3.1+dfsg-1.dsc > debdiff > > Cheers > > > Fred > Unblocked, thanks. ~Niels--- End Message ---
Bug#770497: marked as done (unblock: gnustep-back/0.24.0-4)
Your message dated Fri, 21 Nov 2014 19:20:43 +
with message-id <1416597643.32355.19.ca...@adam-barratt.org.uk>
and subject line Re: Bug#770497: unblock: gnustep-back/0.24.0-4
has caused the Debian Bug report #770497,
regarding unblock: gnustep-back/0.24.0-4
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
770497: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770497
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package gnustep-back, it fixes RC bug #770141.
Debdiff attached.
unblock gnustep-back/0.24.0-4
diff --git a/debian/changelog b/debian/changelog
index e392e3c..2bb4641 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,11 @@
+gnustep-back (0.24.0-4) unstable; urgency=medium
+
+ * debian/patches/cairo-scrolling.patch: New; fix scrolling with
+cairo/1.14.0 (Closes: #770141).
+ * debian/patches/series: Update.
+
+ -- Yavor Doganov Wed, 19 Nov 2014 08:11:48 +0200
+
gnustep-back (0.24.0-3) unstable; urgency=medium
* debian/gnustep-back-common.postinst: Ignore errors from mv which lead
diff --git a/debian/patches/cairo-scrolling.patch b/debian/patches/cairo-scrolling.patch
new file mode 100644
index 000..055fbab
--- /dev/null
+++ b/debian/patches/cairo-scrolling.patch
@@ -0,0 +1,21 @@
+Description: Disable workaround for a cairo bug fixed in 1.14.0.
+Bug-Debian: http://bugs.debian.org/770141
+Origin: upstream, commit: r38135
+Last-Update: 2014-11-19
+---
+
+--- gnustep-back-0.24.0.orig/Source/cairo/CairoGState.m
gnustep-back-0.24.0/Source/cairo/CairoGState.m
+@@ -1316,9 +1316,10 @@
+ ssize = [source->_surface size];
+ }
+
+- if (cairo_version() >= CAIRO_VERSION_ENCODE(1, 8, 0))
++ if ((cairo_version() >= CAIRO_VERSION_ENCODE(1, 8, 0))
++ && (cairo_version() <= CAIRO_VERSION_ENCODE(1, 13, 0)))
+ {
+- // For cairo > 1.8 we seem to need this adjustment
++ // For cairo > 1.8 and < 1.13 we seem to need this adjustment
+ srcRectInBase.origin.y -= 2 * (source->offset.y - ssize.height);
+ }
+
diff --git a/debian/patches/series b/debian/patches/series
index 82c2919..98e673d 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1,3 +1,4 @@
+cairo-scrolling.patch
fontconfig-libs.patch
format-security.patch
debian-fonts.patch
--- End Message ---
--- Begin Message ---
On Fri, 2014-11-21 at 20:49 +0200, Yavor Doganov wrote:
> Please unblock package gnustep-back, it fixes RC bug #770141.
Unblocked.
Regards,
Adam--- End Message ---
Bug#770462: marked as done (Unblock: pcl/1.7.2-3)
Your message dated Fri, 21 Nov 2014 19:18:23 + with message-id <1416597503.32355.18.ca...@adam-barratt.org.uk> and subject line Re: Bug#770462: Unblock: pcl/1.7.2-3 has caused the Debian Bug report #770462, regarding Unblock: pcl/1.7.2-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 770462: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770462 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock We have had to make some changes in the package pcl. We know we have done "bad" things, but we have needed because some bugs: * Change openni-dev to libopenni, Closes: #768953 we got an important bug making our package (pkg-config information) wrong. Simple, we changed the name of the reference to libopenni * Build without OpenNI when it's not available. It opens the number of architectures where it could be built. Closes: #769883 as we have openni as built dependency, we found that we _only_ had two arch to be built, when the package should be built in all. So, we made a conditional of this dependency. * Fix PCLConfig.cmake (patch taken from Fedora). Closes: #770029 when we were doing this modifications we received a complain of one user about the CMake files and we found that we had a bug that fedora had solved before. That's why the changes. Please, could you unblock pcl? Best regards, Leopold -- -- Linux User 152692 PGP: 05F4A7A949A2D9AA Catalonia - A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in e-mail? signature.asc Description: This is a digitally signed message part. --- End Message --- --- Begin Message --- On Fri, 2014-11-21 at 19:54 +0100, Jochen Sprickerhof wrote: > Please find the debdiff attached. Unblocked. Regards, Adam--- End Message ---
Bug#770355: marked as done (pre-approval: apt-dater/0.9.0-8)
Your message dated Fri, 21 Nov 2014 19:13:47 + with message-id <1416597227.32355.17.ca...@adam-barratt.org.uk> and subject line Re: Bug#770355: pre-approval: apt-dater/0.9.0-8 has caused the Debian Bug report #770355, regarding pre-approval: apt-dater/0.9.0-8 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 770355: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770355 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hello, as I have asked some days ago I have to upload a new apt-dater release directly to jessie to avoid later problems in the archive. I have finished my work and the excepted changelog, diff etc would be: changelog: apt-dater (0.9.0-8) testing; urgency=low * Drop binary package apt-dater-host. It is superseded by the new src:apt-dater-host package. - Drop obsolete patch 04-wheezy-kernel. - Drop debconf templates. -- Patrick Matthäi Thu, 13 Nov 2014 23:35:09 +0100 diffstat: diff -Naur tags/0.9.0-7/ branches/jessie/ --exclude=.svn|diffstat apt-dater-host.config | 28 --- apt-dater-host.install|1 apt-dater-host.manpages |1 apt-dater-host.postinst | 40 apt-dater-host.postrm |7 apt-dater-host.templates |9 -- changelog |9 ++ control | 20 -- patches/04-wheezy-kernel.diff | 18 patches/series|1 po/POTFILES.in|1 po/cs.po | 36 - po/da.po | 37 -- po/de.po | 39 --- po/es.po | 59 -- po/fr.po | 40 po/it.po | 39 --- po/ja.po | 36 - po/nl.po | 38 --- po/pt.po | 37 -- po/pt_BR.po | 38 --- po/ru.po | 41 - po/sv.po | 40 po/templates.pot | 33 --- po/vi.po | 38 --- rules |5 --- sudo/apt-dater-host | 11 --- 27 files changed, 9 insertions(+), 693 deletions(-) full diff (OK I have excluded po/, since it is just removed and I do not want to spam): diff -Naur '--exclude=.svn' '--exclude=po' tags/0.9.0-7/debian/apt-dater-host.config branches/jessie/debian/apt-dater-host.config --- tags/0.9.0-7/debian/apt-dater-host.config 2014-02-13 19:43:24.116063923 +0100 +++ branches/jessie/debian/apt-dater-host.config1970-01-01 01:00:00.0 +0100 @@ -1,28 +0,0 @@ -#!/bin/sh - -set -e - -. /usr/share/debconf/confmodule - -# Default value is true (enabled). -ASSUME_YES="true" - -if [ -f "/etc/apt-dater-host.conf" ] ; then - # Get the current setted value. - CURRENT_VALUE=$(grep '^$ASSUMEYES' "/etc/apt-dater-host.conf"|cut -d'=' -f2-|sed 's/;//g'|tr -d "\n") - - if [ "$CURRENT_VALUE" = "0" ]; then - # Overwrite default value, if it is not enabled. - ASSUME_YES="false" - fi -fi - -db_set apt-dater-host/assume_yes $ASSUME_YES - -db_input medium apt-dater-host/assume_yes || true - -db_go - -#DEBHELPER# - -exit 0 diff -Naur '--exclude=.svn' '--exclude=po' tags/0.9.0-7/debian/apt-dater-host.install branches/jessie/debian/apt-dater-host.install --- tags/0.9.0-7/debian/apt-dater-host.install 2014-02-13 19:43:24.116063923 +0100 +++ branches/jessie/debian/apt-dater-host.install 1970-01-01 01:00:00.0 +0100 @@ -1 +0,0 @@ -debian/sudo/apt-dater-host etc/sudoers.d/ diff -Naur '--exclude=.svn' '--exclude=po' tags/0.9.0-7/debian/apt-dater-host.manpages branches/jessie/debian/apt-dater-host.manpages --- tags/0.9.0-7/debian/apt-dater-host.manpages 2014-02-13 19:43:24.080064509 +0100 +++ branches/jessie/debian/apt-dater-host.manpages 1970-01-01 01:00:00.0 +0100 @@ -1 +0,0 @@ -man/apt-dater-host.1 diff -Naur '--exclude=.svn' '--exclude=po' tags/0.9.0-7/debian/apt-dater-host.postinst branches/jessie/debian/apt-dater-host.pos
Bug#767781: unblock: matplotlib/1.4.2-3
Hi, > Would it be possible for you to provide us with a targeted RC bug fix? Is there really no chance to accept the new release? It is really a superior release than what we have in Jessie right now, it has proven its stability, and it missed the cut just due to a race condition in the build process (which upstream fixed in less than 1 day) and not a grave bug in its code. Of course, if the answer is still no, I will upload to tpu a targeted fix, but please consider what written above. Thanks for considering, -- Sandro Tosi (aka morph, morpheus, matrixhasu) My website: http://matrixhasu.altervista.org/ Me at Debian: http://wiki.debian.org/SandroTosi -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/CAB4XWXyrW2wrpk2Y4kRVFM=_7n8_3psm7ee_2pumgprg9dk...@mail.gmail.com
Processed: tagging 725661
Processing commands for cont...@bugs.debian.org: > tags 725661 + wheezy Bug #725661 [release.debian.org] pu: opencv/2.3.1+dfsg-1 Ignoring request to alter tags of bug #725661 to the same tags previously set > thanks Stopping processing here. Please contact me if you need assistance. -- 725661: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=725661 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.141659614213922.transcr...@bugs.debian.org
Bug#770462: Unblock: pcl/1.7.2-3
Please find the debdiff attached.
Cheers Jochen
diff -Nru pcl-1.7.2/debian/changelog pcl-1.7.2/debian/changelog
--- pcl-1.7.2/debian/changelog 2014-10-26 09:46:32.0 +0100
+++ pcl-1.7.2/debian/changelog 2014-11-18 14:41:54.0 +0100
@@ -1,3 +1,13 @@
+pcl (1.7.2-3) unstable; urgency=medium
+
+ [ Jochen Sprickerhof ]
+ * Change openni-dev to libopenni, Closes: #768953
+ * Build without OpenNI when it's not available. It opens
+the number of architectures where it could be built. Closes: #769883
+ * Fix PCLConfig.cmake (patch taken from Fedora). Closes: #770029
+
+ -- Leopold Palomo-Avellaneda Tue, 11 Nov 2014 15:34:43 +0100
+
pcl (1.7.2-2) unstable; urgency=medium
[Leopold Palomo-Avellaneda]
diff -Nru pcl-1.7.2/debian/control pcl-1.7.2/debian/control
--- pcl-1.7.2/debian/control 2014-10-25 11:39:25.0 +0200
+++ pcl-1.7.2/debian/control 2014-11-11 15:29:20.0 +0100
@@ -19,7 +19,7 @@
libflann-dev,
libvtk5-dev,
libqhull-dev,
- libopenni-dev,
+ libopenni-dev [i386 amd64],
libqt4-opengl-dev,
libusb-1.0-0-dev,
freeglut3-dev,
@@ -39,7 +39,7 @@
libflann-dev,
libvtk5-dev,
libqhull-dev,
- libopenni-dev,
+ libopenni-dev [i386 amd64],
libpcl1.7 (= ${binary:Version}),
${misc:Depends}
Suggests: libpcl-doc
diff -Nru pcl-1.7.2/debian/patches/0001-Package-names-for-OpenNI-and-OpenNI2-were-wrong-in-c.patch pcl-1.7.2/debian/patches/0001-Package-names-for-OpenNI-and-OpenNI2-were-wrong-in-c.patch
--- pcl-1.7.2/debian/patches/0001-Package-names-for-OpenNI-and-OpenNI2-were-wrong-in-c.patch 1970-01-01 01:00:00.0 +0100
+++ pcl-1.7.2/debian/patches/0001-Package-names-for-OpenNI-and-OpenNI2-were-wrong-in-c.patch 2014-11-11 15:29:20.0 +0100
@@ -0,0 +1,82 @@
+From 881e4cf919a86ebc58ab80b51ac5d154f3b8f82e Mon Sep 17 00:00:00 2001
+From: Emmanuel Durand
+Date: Thu, 25 Sep 2014 16:11:47 -0400
+Subject: [PATCH 1/3] Package names for OpenNI and OpenNI2 were wrong in cmake
+ modules and in output pkgconfig file
+
+---
+ cmake/Modules/FindOpenNI.cmake | 4 ++--
+ cmake/Modules/FindOpenNI2.cmake | 4 ++--
+ io/CMakeLists.txt | 4 ++--
+ visualization/CMakeLists.txt| 4 ++--
+ 4 files changed, 8 insertions(+), 8 deletions(-)
+
+diff --git a/cmake/Modules/FindOpenNI.cmake b/cmake/Modules/FindOpenNI.cmake
+index cb537be..9f772a4 100644
+--- a/cmake/Modules/FindOpenNI.cmake
b/cmake/Modules/FindOpenNI.cmake
+@@ -35,9 +35,9 @@ if(NOT WIN32)
+ endif(NOT WIN32)
+
+ if(${CMAKE_VERSION} VERSION_LESS 2.8.2)
+- pkg_check_modules(PC_OPENNI openni-dev)
++ pkg_check_modules(PC_OPENNI libopenni)
+ else()
+- pkg_check_modules(PC_OPENNI QUIET openni-dev)
++ pkg_check_modules(PC_OPENNI QUIET libopenni)
+ endif()
+
+ set(OPENNI_DEFINITIONS ${PC_OPENNI_CFLAGS_OTHER})
+diff --git a/cmake/Modules/FindOpenNI2.cmake b/cmake/Modules/FindOpenNI2.cmake
+index 036e4e0..713099a 100644
+--- a/cmake/Modules/FindOpenNI2.cmake
b/cmake/Modules/FindOpenNI2.cmake
+@@ -35,9 +35,9 @@ if(NOT WIN32)
+ endif(NOT WIN32)
+
+ if(${CMAKE_VERSION} VERSION_LESS 2.8.2)
+- pkg_check_modules(PC_OPENNI2 openni2-dev)
++ pkg_check_modules(PC_OPENNI2 libopenni2)
+ else()
+- pkg_check_modules(PC_OPENNI2 QUIET openni2-dev)
++ pkg_check_modules(PC_OPENNI2 QUIET libopenni2)
+ endif()
+
+ set(OPENNI2_DEFINITIONS ${PC_OPENNI_CFLAGS_OTHER})
+diff --git a/io/CMakeLists.txt b/io/CMakeLists.txt
+index 347f658..6106349 100644
+--- a/io/CMakeLists.txt
b/io/CMakeLists.txt
+@@ -329,10 +329,10 @@ if(build)
+ set(EXT_DEPS eigen3)
+
+ if(OPENNI_FOUND)
+- list(APPEND EXT_DEPS openni-dev)
++ list(APPEND EXT_DEPS libopenni)
+ endif(OPENNI_FOUND)
+ if(OPENNI2_FOUND)
+- list(APPEND EXT_DEPS openni2-dev)
++ list(APPEND EXT_DEPS libopenni2)
+ endif(OPENNI2_FOUND)
+
+ PCL_MAKE_PKGCONFIG("${LIB_NAME}" "${SUBSYS_NAME}" "${SUBSYS_DESC}"
+diff --git a/visualization/CMakeLists.txt b/visualization/CMakeLists.txt
+index d7becc5..746a693 100644
+--- a/visualization/CMakeLists.txt
b/visualization/CMakeLists.txt
+@@ -154,10 +154,10 @@ if(build)
+
+ set(EXT_DEPS "")
+ if(OPENNI_FOUND)
+- list(APPEND EXT_DEPS openni-dev)
++ list(APPEND EXT_DEPS libopenni)
+ endif(OPENNI_FOUND)
+ if(OPENNI2_FOUND)
+- list(APPEND EXT_DEPS openni2-dev)
++ list(APPEND EXT_DEPS libopenni2)
+ endif(OPENNI2_FOUND)
+ PCL_MAKE_PKGCONFIG("${LIB_NAME}" "${SUBSYS_NAME}" "${SUBSYS_DESC}"
+ "${SUBSYS_DEPS}" "${EXT_DEPS}" "" "" "")
+--
+2.1.3
+
diff -Nru pcl-1.7.2/debian/patches/0002-Corrected-openni-dev-and-openni2-dev-in-PCLConfig.cm.patch pcl-1.7.2/debian/patches/0002-Corrected-openni-dev-and-openni2-dev-in-PCLConfig.cm.patch
--- pcl-1.7.2/debian/patches/0002-Corrected-openni-dev-and-openni2-dev-in-PCLConfig.cm.patch 1970-01-01 01:00:00.0 +0100
+++ pcl-1.7.2/debian/patches/0002-Corrected-openni-dev-and-openni2-dev-in-PCLConfig.cm.patch 2014-11-11 15:29:20.0
Bug#770497: unblock: gnustep-back/0.24.0-4
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package gnustep-back, it fixes RC bug #770141.
Debdiff attached.
unblock gnustep-back/0.24.0-4
diff --git a/debian/changelog b/debian/changelog
index e392e3c..2bb4641 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,11 @@
+gnustep-back (0.24.0-4) unstable; urgency=medium
+
+ * debian/patches/cairo-scrolling.patch: New; fix scrolling with
+cairo/1.14.0 (Closes: #770141).
+ * debian/patches/series: Update.
+
+ -- Yavor Doganov Wed, 19 Nov 2014 08:11:48 +0200
+
gnustep-back (0.24.0-3) unstable; urgency=medium
* debian/gnustep-back-common.postinst: Ignore errors from mv which lead
diff --git a/debian/patches/cairo-scrolling.patch b/debian/patches/cairo-scrolling.patch
new file mode 100644
index 000..055fbab
--- /dev/null
+++ b/debian/patches/cairo-scrolling.patch
@@ -0,0 +1,21 @@
+Description: Disable workaround for a cairo bug fixed in 1.14.0.
+Bug-Debian: http://bugs.debian.org/770141
+Origin: upstream, commit: r38135
+Last-Update: 2014-11-19
+---
+
+--- gnustep-back-0.24.0.orig/Source/cairo/CairoGState.m
gnustep-back-0.24.0/Source/cairo/CairoGState.m
+@@ -1316,9 +1316,10 @@
+ ssize = [source->_surface size];
+ }
+
+- if (cairo_version() >= CAIRO_VERSION_ENCODE(1, 8, 0))
++ if ((cairo_version() >= CAIRO_VERSION_ENCODE(1, 8, 0))
++ && (cairo_version() <= CAIRO_VERSION_ENCODE(1, 13, 0)))
+ {
+- // For cairo > 1.8 we seem to need this adjustment
++ // For cairo > 1.8 and < 1.13 we seem to need this adjustment
+ srcRectInBase.origin.y -= 2 * (source->offset.y - ssize.height);
+ }
+
diff --git a/debian/patches/series b/debian/patches/series
index 82c2919..98e673d 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1,3 +1,4 @@
+cairo-scrolling.patch
fontconfig-libs.patch
format-security.patch
debian-fonts.patch
Bug#770414: marked as done (unblock: gtk+3.0/3.14.5-1)
Your message dated Fri, 21 Nov 2014 19:43:49 +0100 with message-id <546f87e5.9080...@thykier.net> and subject line Re: Bug#770414: unblock: gtk+3.0/3.14.5-1 has caused the Debian Bug report #770414, regarding unblock: gtk+3.0/3.14.5-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 770414: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770414 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock A gtk+3.0 version recently uploaded to unstable fixes one important bug: * gtk3.14 systray applets have awkward mouse click behaviour (#767055). I can confirm that the version in unstable resolves the issue for me. Thanks in advance. --- End Message --- --- Begin Message --- On 2014-11-21 18:19, Andreas Henriksson wrote: > Hello again! > > Heavily filtered debdiff included > > debdiff *.dsc | filterdiff -x '*/build/win32/*' -x '*/*/*.po' -x > '*/gdk/quartz/*' -x '*/docs/*' -x '*/INSTALL' -x '*/README' -x > '*/build/*msvc*' -x '*/*win32' -x '*/gdk/win32/rc/gdk.rc' -x '*/configure' -x > '*/*/*.pot' -x '*/gdk/broadway/*.h' -x '*/gtk/gtkresources.c' -x > '*/gtk/resources/*' -x '*/gtk/gtkversion.h' -x '*/gdk/gdkversionmacros.h' -x > '*/debian/control' -x '*/debian/patches/*' -x '*/gtk/gtkmenu.c' > > Summary of what was filtered out: > - ms windows related changes > - quartz (osx) related changes > - built/autogenerated noise (eg. version number bump related, etc.) > - css fixes in default adwaita theme > - changes for previously shipped debian/patch now merged upstream. > - translations > > [...] Unblocked, thanks. ~Niels--- End Message ---
Re: Status on dpkg for Jessie
On 2014-11-21 19:34, Guillem Jover wrote: > Hi! > > On Fri, 2014-11-21 at 18:36:45 +0100, Niels Thykier wrote: >> Do you have an ETA on the next upload of dpkg (and if there is anything >> blocking it)? > > Yes, it's waiting on readahead-fedora, waiting in the DEFERRED queue, to > be able to add the correct Breaks, in case the maintainer override with > a normal upload. > > I'll be filing a tentative pre-approval request later today, after > that, once it is approved I'll proceed with the upload. > >> Besides the filed 3 RC bugs, the compat symlinks also need to be >> recreated. The latter does not have a bug (at least, not an RC one); if >> you prefer I can file one for it > > Not really needed, I've had it already reverted locally. :) > > Thanks, > Guillem > > Excellent! Thanks for the update. :) ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546f881c.8090...@thykier.net
Bug#767074: unblock: taurus/3.3.1+dfsg-1
> Hi Frederic, > Please provide a filtered (source) debdiff of the changes, so we can > review them. No problem here the full debdiff. debdiff taurus_3.3.0+dfsg-2.dsc taurus_3.3.1+dfsg-1.dsc > debdiff Cheers Fred debdiff Description: debdiff
Bug#768933: unblock: jscommunicator
On 21/11/14 17:35, Niels Thykier wrote: > Control: tags -1 moreinfo > > On 2014-11-10 18:37, Daniel Pocock wrote: >> [...] >> >> I understand there are policies for the freeze >> > > Hi, > > I believe some of this was debated over IRC on the same day you sent > your mail. I will not comment on those parts. > >> [...] >> >> Furthermore, JSCommunicator 2.x has not changed from an API user >> perspective. The only dependent package is drupal7-mod-drucall and I >> have updated that so everything works together and gives Debian users >> the optimal experience. >> > > If JSCommunicator changes API in backwards incompatible manner, then you > should have done this before the transition freeze. That was two months > before the freeze itself. > > Is this upload of JSCommunicator breaking the API? No, it does not break the API, it simply adds some extra API features (new options in config.js). The main API is async messaging through ArbiterJS and that hasn't changed at all. It is the browsers that have been tweaking the API and implementation details of WebRTC. JsSIP abstracts some of that and I built JSCommunicator on top of JsSIP with the aim of abstracting it even further so that web developers have something stable to work with. > >>> Would you prefer to have jscommunicator at its current version (1.1.1-1) >>> in Jessie or do you feel that we would be better off without it? >> >> >> [...] If Debian policy brings us to the point where people are >> actively talking about removing WebRTC capabilities from testing less >> than a week into the freeze then the policy is not working in the best >> interest of Debian's mission or openness in general. >> >> [...] > > My counter argument is: > > """ > It is not in the best interest of Debian's mission or openness in > general for the Debian release to drag on for months, because the freeze > policy is ignored. See "Squeeze Freeze" and "Wheezy Freeze". > """ > I agree and I remember the wheezy freeze well. I uploaded this as soon as reasonably possible after new dependencies entered the archive in October. If it wasn't for that I would have uploaded in August, the same time this code went live on rtc.debian.org -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546f856a.5030...@pocock.pro
Re: Status on dpkg for Jessie
Hi! On Fri, 2014-11-21 at 18:36:45 +0100, Niels Thykier wrote: > Do you have an ETA on the next upload of dpkg (and if there is anything > blocking it)? Yes, it's waiting on readahead-fedora, waiting in the DEFERRED queue, to be able to add the correct Breaks, in case the maintainer override with a normal upload. I'll be filing a tentative pre-approval request later today, after that, once it is approved I'll proceed with the upload. > Besides the filed 3 RC bugs, the compat symlinks also need to be > recreated. The latter does not have a bug (at least, not an RC one); if > you prefer I can file one for it Not really needed, I've had it already reverted locally. :) Thanks, Guillem -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141121183458.gb21...@gaara.hadrons.org
Bug#770190: wheezy-pu: package sieve-extension/0.2.3d-2~deb7u2
Hi Adam, Le 19/11/2014 15:31, Adam D. Barratt a écrit : > On Wed, 2014-11-19 at 11:02 -0400, David Prévot wrote: >> In order to restore compatibility with the recent icedove from >> wheezy-security (#770186), please accept this trivial patch > Please go ahead; thanks. ACCEPTed, thanks. Regards David signature.asc Description: OpenPGP digital signature
Bug#770188: wheezy-pu: package firetray/0.4.6-1~deb7u2
Hi Adam, Le 19/11/2014 15:29, Adam D. Barratt a écrit : >> On Wed, Nov 19, 2014 at 10:59:44AM -0400, David Prévot wrote: > [...] >>> In order to restore compatibility with the recent icedove from >>> wheezy-security (#770182), please accept this trivial patch > Please go ahead, thanks. ACCEPTed, thanks. Regards David signature.asc Description: OpenPGP digital signature
Bug#767074: unblock: taurus/3.3.1+dfsg-1
On 2014-11-15 13:58, PICCA Frederic-Emmanuel wrote: > so here the question > >> That's where you come in. You're the maintainer and the expert in this >> package. Are 251 and 221 that common and important that the other >> changes are worth less testing than usual? > > [...] > > - so my advice as DD to the release team is that Debian8 would be better with > this version of the package for this community. > > Cheers > > Frederic > > [...] Hi Frederic, Please provide a filtered (source) debdiff of the changes, so we can review them. ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546f8280.9050...@thykier.net
Bug#767781: unblock: matplotlib/1.4.2-3
On 2014-11-13 12:08, Julien Cristau wrote: > On Wed, Nov 12, 2014 at 22:19:01 +, Sandro Tosi wrote: > >> Hello, >> >> On Sun, Nov 2, 2014 at 6:09 PM, Sandro Tosi wrote: >>> 1.4 series is the latest release of mpl, and it will be the one upstream >>> will >>> support during Jessie lifecycle. It has been in Debian since Sept (in >>> experimental) and it would have made the cut for the freeze if not for some >>> uploads for upstream bugfixes and build system deadlock fixes. >>> >>> This version is built on all the buildd except mips, but that arch has a >>> long >>> queue, with big packages still to build before mpl. >>> >>> Please consider unblocking it. >>> >>> unblock matplotlib/1.4.2-3 >> >> Just a gentle ping, to make sure this request was not lost in the huge >> unblocks stream. Another thing to point out about this upload is the >> migration from wx 2.8 to 3.0 >> > It's not lost, but it's annoying because of the size of the changes. > We'd much rather have the RC fix without the rest of the noise. > > Cheers, > Julien > Hi Sandro, Would it be possible for you to provide us with a targeted RC bug fix? ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546f8048.5020...@thykier.net
Bug#767476: transition: tilda
Hi Sebastian, It seems you were not CC'ed to intrigeri's reply below (quoted in full for your convenience). Unfortunately, as intrigeri suggests in his mail, we are not willing to accept this large a changeset up to or during the freeze. However, we are still willing to accept targeted fixes for important bugs for another 14 days, provided that they go through unstable. Admittedly, it would mean that you would have to revert your tilda/1.2 upload(s). Yours truly, ~Niels On 2014-11-08 22:17, intrigeri wrote: > Hi, > > Sebastian Geiger wrote (31 Oct 2014 14:59:44 GMT) : >> The complete changelog can be found directly in the package's >> ChangeLog file [1] >> [...] >> [1] https://github.com/lanoxx/tilda/blob/master/ChangeLog > > version 1.2.2 (2014-10-28): > * Fixed an error where Tilda failed to start when the lock > file directory did not exist or could not be opened. > > version 1.2.1 (2014-10-16): > * Readded empty NEWS file to fix debian packaging > * Updated po/ folder > > version 1.2.0 (2014-10-15): > * Fixed background option > * Updated README, HACKING and TODO files > * Fixed bug in focus/pull-up selection > * Made tilda icon themable > > version 1.2~rc1 (2014-09-25): > * Fixed an issue with drop-to-default shell option > * Added light and dark solarized schemes > * Custom color selection improved > * New option to set the maximum tab title length > * The fullscreen hotkey is now configurable in the > preferences. > * Its now possible to compile with clang > * Fixed some focus issues > * Its now possible to open the context menu with the context-menu > button on the keyboard if such a key is present. This provides > improved usability for people with disabilities. > * Tabs can now be switches using the mouse history buttons. > * Tilda now uses non-recursive automake, there have been > many improvements to the build system and some code cleanups. > Its now also possible to make out-of-tree builds. > The debugging output has also been improved and now shows > in which file a log message was printed. > * There is a new unlimited scrollback option. > * A positioning bug when unfullscreening was fixed. > * Some improvements for different window managers were made. > * Tilda can no be focuses with the hotkey instead of hiding it > when it is currently not focused. This new behavior is configurable. > * A locking issue has been fixed if multiple tilda instances were > started > at the same time, which caused a race condition to appear and could > delete the configuration file. > * The UI file from GtkBuilder is now being compiled into the tilda > binary. > * There is a new option to hide the tab bar and the border when multiple > tabs are open. > * When a new tab is opened the tab will now inherit its working > directory > from the old tab. This behavior is active by default and can only be > disabled from an option in the config file. > > version 1.1.13 (2014-09-22): > * Fixed focus stealing issue > on mouse enter. This caused > the tilda window to become > active when the mouse > entered the window. > * Fixed two functions which prevented > building on systems with > '-Wreturn-type' enabled in the > compiler. > >> In summary, there are many bug fixes a few new options in the user >> interface, some >> cleanups in the build system and then some new color themes. Nothing which is >> particularaly complex. But all in all it makes tilda more usable and >> more configurable. > > These are a lot of changes. I suggest you point the release team to > the specific fixes that are important enough to warrant an unblock > (and the risk of bringing regressions more important that the fixes > from 1.12..1.2.2) at this point. > > Cheers! > > -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546f8017.5060...@thykier.net
Processed: tagging 770451
Processing commands for cont...@bugs.debian.org: > tags 770451 - moreinfo Bug #770451 [release.debian.org] unblock: direwolf/1.0-2 Removed tag(s) moreinfo. > thanks Stopping processing here. Please contact me if you need assistance. -- 770451: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770451 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.141659307725199.transcr...@bugs.debian.org
Processed: tagging 769620
Processing commands for cont...@bugs.debian.org:
> tags 769620 - moreinfo
Bug #769620 {Done: Niels Thykier } [release.debian.org]
unblock: firehol/2.0.0+ds-2
Removed tag(s) moreinfo.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
769620: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769620
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive:
https://lists.debian.org/handler.s.c.141659303925034.transcr...@bugs.debian.org
Bug#769583: unblock: bind9/ 9.9.5 with patch or 9.9.6?
On 2014-11-17 23:43, LaMont Jones wrote: > [...] > > Again, without actually looking at it, I'm inclined to agree. 87k > lines this late in the process is too many. > > I'll get a patch together for 9.9.5, but it may be wednesday before I have > it uploaded to sid, and a diff sent to you guys. > > lamont > > Hi LaMont, Any news on this upload? :) ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546f7d3a.5080...@thykier.net
Bug#769620: marked as done (unblock: firehol/2.0.0+ds-2)
Your message dated Fri, 21 Nov 2014 19:01:28 +0100
with message-id <546f7df8.7060...@thykier.net>
and subject line Re: Bug#769620: unblock: firehol/2.0.0+ds-2
has caused the Debian Bug report #769620,
regarding unblock: firehol/2.0.0+ds-2
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
769620: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769620
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package firehol
Version firehol-2.0.0+ds-2 fixes
Serious Bug #767565
present in firehol-2.0.0+ds-1
d/control has been touched to smmoth the upgrade:
@@ -17,7 +17,7 @@ Package: firehol
Architecture: all
Depends: ${misc:Depends}, lsb-base, kmod, iptables, iproute2, tcpdump, procps
Recommends: fireqos (= ${binary:Version})
-Suggests: ulogd2
+Suggests: firehol-doc (= ${binary:Version}), ulogd2
Description: easy to use but powerful iptables stateful firewall (program)
FireHOL generates generic firewalls with an extremely simple but powerful
configuration language based on bash, enabling you to design any kind of
@@ -31,6 +31,8 @@ Description: easy to use but powerful iptables stateful
firewall (program)
Package: firehol-doc
Section: doc
Architecture: all
+Replaces: firehol (<< 2.0.0)
+Breaks: firehol(<< 2.0.0)
Depends: ${misc:Depends}
Suggests: firehol (= ${binary:Version}), pdf-viewer, www-browser
Description: easy to use but powerful iptables stateful firewall (docs)
@@ -47,6 +49,7 @@ Package: fireqos
Architecture: all
Depends: ${misc:Depends}, lsb-base, kmod, iproute2, tcpdump, procps
Recommends: firehol (= ${binary:Version})
+Suggests: fireqos-doc (= ${binary:Version})
Description: easy to use but powerful traffic shaping tool (program)
FireQOS generates generic traffic shapers with an extremely simple but
powerful configuration language based on bash, enabling you to design
unblock firehol/2.0.0+ds-2
-- System Information:
Debian Release: Wheezy*
APT prefers stable-updates
APT policy: (990, 'stable-updates'), (990, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.13.10-amd64-mbp62 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
--- End Message ---
--- Begin Message ---
On 2014-11-15 10:39, Adam D. Barratt wrote:
> Control: tags -1 + moreinfo
>
> On Sat, 2014-11-15 at 05:38 +0100, Jerome Benoit wrote:
>> Please unblock package firehol
>>
>> Version firehol-2.0.0+ds-2 fixes
>> Serious Bug #767565
>> present in firehol-2.0.0+ds-1
>>
>> d/control has been touched to smmoth the upgrade:
>
> As far as I can tell, that bug doesn't affect Jessie, as it currently
> has firehol 1.297-1.
>
> Regards,
>
> Adam
>
>
Closing the unblock request as it is not applicable.
~Niels--- End Message ---
Bug#768368: unblock: wxglade/0.7.0-2
On 2014-11-06 22:56, Jonathan Wiltshire wrote: > Control: tag -1 moreinfo > > Hi, > > On 2014-11-06 21:21, Georges Khaznadar wrote: >> [...] >> > > This sounds like a candidate. Can I have a source debdiff though please, > not a binary? > > Thanks, > Hi Georges, We are still waiting for a source debdiff from you on wxglade. Please attach it to a reply of this mail at your earliest convenience. Thank you in advance, ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546f7b81.2040...@thykier.net
Bug#768176: unblock: pioneers/15.3-1
On 2014-11-06 17:01, Jonathan Wiltshire wrote: > On 2014-11-06 09:45, Bas Wijnen wrote: >> [...] > > No, not at that size. Sorry; I realise you're acting with the best > possible motives, but a full major new upstream is just too invasive at > this stage. > > I'd appreciate a targeted fix for t-p-u though. > > Thanks, > > Hi Bas, Any news on preparing a targeted fix for t-p-u? ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546f7af9.2050...@thykier.net
Processed: tagging 768010
Processing commands for cont...@bugs.debian.org: > tags 768010 - moreinfo Bug #768010 [release.debian.org] future mongodb unblock Removed tag(s) moreinfo. > thanks Stopping processing here. Please contact me if you need assistance. -- 768010: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768010 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.141659198617212.transcr...@bugs.debian.org
Bug#767743: unblock: blitz++/0.10-3
On 2014-11-08 22:21, intrigeri wrote: > Hi, > > Andreas Tille wrote (02 Nov 2014 10:59:20 GMT) : >> The only reason to upload this package is a missing Breaks to fix >> bug #767564. > > According to > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=767564#15, 0.10-3 > still doesn't fix that RC bug. > > Cheers, > -- > intrigeri > > Hi Andreas, I believe we are stilling waiting for you on this? Can you please have look at the last comment in #767564? Thank you, ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546f7a3b.7040...@thykier.net
Status on dpkg for Jessie
Hi Dpkg maintainers, Do you have an ETA on the next upload of dpkg (and if there is anything blocking it)? Besides the filed 3 RC bugs, the compat symlinks also need to be recreated. The latter does not have a bug (at least, not an RC one); if you prefer I can file one for it Thanks, ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546f782d.5020...@thykier.net
Bug#770486: marked as done (unblock: lightdm-gtk-greeter/1.8.5-2)
Your message dated Fri, 21 Nov 2014 18:22:46 +0100
with message-id <546f74e6.5080...@thykier.net>
and subject line Re: Bug#770486: unblock: lightdm-gtk-greeter/1.8.5-2
has caused the Debian Bug report #770486,
regarding unblock: lightdm-gtk-greeter/1.8.5-2
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
770486: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770486
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package lightdm-gtk-greeter
Hi,
this is a pre-approval request for an upload of lightdm-gtk-greeter
targeted to Jessie.
It fixes two bugs:
- #750901 (sev. normal) which is really cosmetic but was applied long
ago in our svn, and shouldn't be really problematic, so I kept it
- #760740 (sev. important) which is about accessibility. When
at-spi2-core is installed, it'll be run automatically on the greeter
(through the use of a gtk adaptor), which is apparently desired, but
then it'll enforce a property on the root window which then prevents
the user-run at-spi2 processes to work correctly. Best fix would be to
have a way to properly kill the at-spi2-core processes, but for now it
seems the second best fix is to remove the property from the root
window.
Full debdiff is attached.
unblock lightdm-gtk-greeter/1.8.5-2
-- System Information:
Debian Release: jessie/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (450,
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Differences in lightdm-gtk-greeter between 1.8.5-1 and 1.8.5-2
diff -Nru lightdm-gtk-greeter-1.8.5/debian/changelog lightdm-gtk-greeter-1.8.5/debian/changelog
--- lightdm-gtk-greeter-1.8.5/debian/changelog 2014-05-06 07:43:19.0 +0200
+++ lightdm-gtk-greeter-1.8.5/debian/changelog 2014-11-21 16:56:00.0 +0100
@@ -1,3 +1,13 @@
+lightdm-gtk-greeter (1.8.5-2) UNRELEASED; urgency=medium
+
+ * debian/control, debian/copyright:
+- patch from Artur Rona to fix various lintian warnings.closes: #750901
+ * debian/patches:
+- 01_unset_AT_SPI_BUS-X11-property added, unset AT_SPI_BUS property from
+ the root window. closes: #760740
+
+ -- Yves-Alexis Perez Wed, 11 Jun 2014 21:23:58 +0200
+
lightdm-gtk-greeter (1.8.5-1) unstable; urgency=medium
* New upstream release.
diff -Nru lightdm-gtk-greeter-1.8.5/debian/control lightdm-gtk-greeter-1.8.5/debian/control
--- lightdm-gtk-greeter-1.8.5/debian/control 2014-01-07 23:33:25.0 +0100
+++ lightdm-gtk-greeter-1.8.5/debian/control 2014-06-11 21:25:00.0 +0200
@@ -16,7 +16,6 @@
Provides: lightdm-greeter
Replaces: lightdm-gtk, lightdm (<< 0.9.2-1)
Breaks: lightdm-gtk, lightdm (<< 0.9.2-1)
-Section: x11
Architecture: any
Depends: ${shlibs:Depends}, ${misc:Depends}
Recommends: desktop-base, gnome-themes-standard, gnome-icon-theme-symbolic, policykit-1
diff -Nru lightdm-gtk-greeter-1.8.5/debian/copyright lightdm-gtk-greeter-1.8.5/debian/copyright
--- lightdm-gtk-greeter-1.8.5/debian/copyright 2012-01-31 07:51:04.0 +0100
+++ lightdm-gtk-greeter-1.8.5/debian/copyright 2014-06-11 21:25:00.0 +0200
@@ -1,7 +1,5 @@
-Format-Specification:
- http://wiki.debian.org/Proposals/CopyrightFormat?action=recall&rev=402
+Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
Upstream-Name: lightdm
-Upstream-Maintainer: Robert Ancell
Upstream-Source: https://launchpad.net/lightdm
Files: debian/*
@@ -116,3 +114,12 @@
Public License version 3 can be found in
`/usr/share/common-licenses/GPL-3'.
+License: GPL-3+
+ On Debian systems, the complete text of the GNU General
+ Public License version 3 can be found in
+ `/usr/share/common-licenses/GPL-3'.
+
+License: LGPL-3+
+ On Debian systems, the complete text of the GNU Lesser
+ General Public License version 3 can be found in
+ `/usr/share/common-licenses/LGPL-3'.
diff -Nru lightdm-gtk-greeter-1.8.5/debian/patches/01_unset_AT_SPI_BUS-X11-property.patch lightdm-gtk-greeter-1.8.5/debian/patches/01_unset_AT_SPI_BUS-X11-property.patch
--- lightdm-gtk-greeter-1.8.5/debian/patches/01_unset_AT_SPI_BUS-X11-property.patch 1970-01-01 01:00:00.0 +0100
+++ lightdm-gtk-greeter-1.8.5/debian/patches/01_unset_AT_SPI_BUS-X11-property.patch 2014-11-21 17:17:52.0 +0100
@@
Bug#767961: marked as done (unblock pre-approval: beignet/0.9.3~really.0.8+dfsg-1)
Your message dated Fri, 21 Nov 2014 18:21:13 +0100 with message-id <546f7489.8010...@thykier.net> and subject line Re: Bug#767961: unblock: beignet/0.9.3~really.0.8+dfsg-1 has caused the Debian Bug report #767961, regarding unblock pre-approval: beignet/0.9.3~really.0.8+dfsg-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 767961: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=767961 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package beignet * new upstream supports llvm 3.5 out-of-the-box (FTBFS bug #764930) * repacked upstream to remove non-distributable/non-free files (RC bug #767387) * new upstream adds support for Haswell CPUs * significant performance improvement compared to 0.8 * upstream seems to be quite responsive, my patches 0001-* 0002-* are already applied in the upstream repository * get rid of superfluous patches and packaging cruft * now Team+Co-maintained * it's a leaf package Verified to work properly by Rebecca and Julian (I don't have the hardware). Such an upload should have happened much earlier, but I only got aware of the issues last week ... beignet (0.9.3~dfsg-1) unstable; urgency=medium [ Julian Wollrath ] * New upstream release. (Closes: #759707, #745363, #745767) (LP: #1372889) + Supports llvm 3.5. (Closes: #764930) (LP: #1350773) * Add B-D on libedit-dev and zlib1g-dev. * Add debian/watch file. * Update debian/copyright. [ Andreas Beckmann ] * Set Maintainer to "Debian OpenCL Maintainers" with Simon's permission. * Add Simon Richter, Rebecca N. Palmer and myself to Uploaders. * Repack upstream tarball to remove non-distributable Len(n)a images and CC-BY-NC-SA licensed parts from the test suite. (Closes: #767387) * 0001-fix-some-typos.patch: New. * 0002-use-env-to-set-environment-variables-for-GBE_BIN_GEN.patch: New, fix FTBFS of "~dfsg" versions in pbuilder etc. * 0003-GBE-fix-one-compilation-warning.patch: New. Cherry-picked from upstream 0.9.x branch. * Skip-deleted-tests.patch: New. Thanks to Rebecca N. Palmer. * Simplify using system OpenCL headers. * Use-Khronos-Group-headers.patch: Removed. * d/control: Fix some issues found by lintian. * Bump Standards-Version to 3.9.6 (no changes needed). * Import debian/ packaging history into GIT. Add Vcs-* URLs. -- Andreas Beckmann Mon, 03 Nov 2014 14:23:48 +0100 unblock beignet/0.9.3~dfsg-1 Thanks for considering Andreas --- End Message --- --- Begin Message --- On 2014-11-19 23:22, Rebecca N. Palmer wrote: > Now uploaded to unstable. > > Additional changes since the pre-approved version: > > * Remove the 0.9.3 changelog entry as you requested. > * 0001-use-env-to-set-environment-variables-for-GBE_BIN_GEN.patch: > fixes FTBFS in directories containing "~", such as ones based on the > version number. > * Skip-deleted-tests.patch: New. Skip tests removed in the dfsg > version. (I'd used this for local test suite runs, but hadn't > previously proposed to ship it: we don't run the test suite in the build > because it requires Intel GPU hardware) > * Add Vcs-* URLs. > * Update Homepage. > > [...] Unblocked, thanks. ~Niels--- End Message ---
Bug#770486: unblock: lightdm-gtk-greeter/1.8.5-2
On ven., 2014-11-21 at 18:01 +0100, Niels Thykier wrote: > Ack, please upload it to unstable and inform us once it has been > accepted. Done, and ACCEPTED :) Regards, -- Yves-Alexis signature.asc Description: This is a digitally signed message part
Bug#768886: marked as done (unblock pre-approval: beignet/0.9.3~really.0.8+dfsg-1)
Your message dated Fri, 21 Nov 2014 18:21:13 +0100 with message-id <546f7489.8010...@thykier.net> and subject line Re: Bug#767961: unblock: beignet/0.9.3~really.0.8+dfsg-1 has caused the Debian Bug report #767961, regarding unblock pre-approval: beignet/0.9.3~really.0.8+dfsg-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 767961: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=767961 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package beignet The package is, as any LLVM based compiler, fairly tightly coupled with the LLVM version. The version currently in jessie no longer compiles with the default LLVM, this went unnoticed since the default was bumped. Backporting the relevant changes is unfeasible, so I humbly ask for the current version to be included, which is in a significantly better state. unblock beignet/0.9.3~dfsg-1 -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (500, 'stable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16-3-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash --- End Message --- --- Begin Message --- On 2014-11-19 23:22, Rebecca N. Palmer wrote: > Now uploaded to unstable. > > Additional changes since the pre-approved version: > > * Remove the 0.9.3 changelog entry as you requested. > * 0001-use-env-to-set-environment-variables-for-GBE_BIN_GEN.patch: > fixes FTBFS in directories containing "~", such as ones based on the > version number. > * Skip-deleted-tests.patch: New. Skip tests removed in the dfsg > version. (I'd used this for local test suite runs, but hadn't > previously proposed to ship it: we don't run the test suite in the build > because it requires Intel GPU hardware) > * Add Vcs-* URLs. > * Update Homepage. > > [...] Unblocked, thanks. ~Niels--- End Message ---
Bug#770414: unblock: gtk+3.0/3.14.5-1
Hello again! Heavily filtered debdiff included debdiff *.dsc | filterdiff -x '*/build/win32/*' -x '*/*/*.po' -x '*/gdk/quartz/*' -x '*/docs/*' -x '*/INSTALL' -x '*/README' -x '*/build/*msvc*' -x '*/*win32' -x '*/gdk/win32/rc/gdk.rc' -x '*/configure' -x '*/*/*.pot' -x '*/gdk/broadway/*.h' -x '*/gtk/gtkresources.c' -x '*/gtk/resources/*' -x '*/gtk/gtkversion.h' -x '*/gdk/gdkversionmacros.h' -x '*/debian/control' -x '*/debian/patches/*' -x '*/gtk/gtkmenu.c' Summary of what was filtered out: - ms windows related changes - quartz (osx) related changes - built/autogenerated noise (eg. version number bump related, etc.) - css fixes in default adwaita theme - changes for previously shipped debian/patch now merged upstream. - translations Not sure this complies with release-team normal procedures but for a proper review I'd suggest looking at each commit in the upstream repository separately together with the explanation in the commit message and the referenced bug. See 3.14.4 -> 3.14.5 at: https://git.gnome.org/browse/gtk+/log/?h=gtk-3-14 I guess the result is still a bit to big for the release-teams taste, but when looking at each fix individually I'm can't really spot one that I'd say we could/should exclude. They're all nice to have and they do benefit alot of users, while being as small as possible. If in doubt I'd suggest to leave it in unstable for a week or two more just to let it get some more testing and chance for people to report bugs against it if they can find any, then look at it again to see if it's time to unblock. If you still disagree, then I think Matt would welcome some hints on how he can go about getting a targeted fix in for the particular problem he cares about diff -Nru gtk+3.0-3.14.4/build/gtk-introspection-msvc.mak gtk+3.0-3.14.5/build/gtk-introspection-msvc.mak diff -Nru gtk+3.0-3.14.4/build/win32/vs10/broadwayd.vcxproj gtk+3.0-3.14.5/build/win32/vs10/broadwayd.vcxproj diff -Nru gtk+3.0-3.14.4/build/win32/vs10/broadwayd.vcxproj.filters gtk+3.0-3.14.5/build/win32/vs10/broadwayd.vcxproj.filters diff -Nru gtk+3.0-3.14.4/build/win32/vs10/gtk-copy-gdk-broadway.props gtk+3.0-3.14.5/build/win32/vs10/gtk-copy-gdk-broadway.props diff -Nru gtk+3.0-3.14.4/build/win32/vs10/gtk-install.props gtk+3.0-3.14.5/build/win32/vs10/gtk-install.props diff -Nru gtk+3.0-3.14.4/build/win32/vs10/gtk-version-paths.props gtk+3.0-3.14.5/build/win32/vs10/gtk-version-paths.props diff -Nru gtk+3.0-3.14.4/build/win32/vs11/broadwayd.vcxproj gtk+3.0-3.14.5/build/win32/vs11/broadwayd.vcxproj diff -Nru gtk+3.0-3.14.4/build/win32/vs11/broadwayd.vcxproj.filters gtk+3.0-3.14.5/build/win32/vs11/broadwayd.vcxproj.filters diff -Nru gtk+3.0-3.14.4/build/win32/vs11/gtk-copy-gdk-broadway.props gtk+3.0-3.14.5/build/win32/vs11/gtk-copy-gdk-broadway.props diff -Nru gtk+3.0-3.14.4/build/win32/vs11/gtk-install.props gtk+3.0-3.14.5/build/win32/vs11/gtk-install.props diff -Nru gtk+3.0-3.14.4/build/win32/vs11/gtk-version-paths.props gtk+3.0-3.14.5/build/win32/vs11/gtk-version-paths.props diff -Nru gtk+3.0-3.14.4/build/win32/vs12/broadwayd.vcxproj gtk+3.0-3.14.5/build/win32/vs12/broadwayd.vcxproj diff -Nru gtk+3.0-3.14.4/build/win32/vs12/broadwayd.vcxproj.filters gtk+3.0-3.14.5/build/win32/vs12/broadwayd.vcxproj.filters diff -Nru gtk+3.0-3.14.4/build/win32/vs12/gtk-copy-gdk-broadway.props gtk+3.0-3.14.5/build/win32/vs12/gtk-copy-gdk-broadway.props diff -Nru gtk+3.0-3.14.4/build/win32/vs12/gtk-install.props gtk+3.0-3.14.5/build/win32/vs12/gtk-install.props diff -Nru gtk+3.0-3.14.4/build/win32/vs12/gtk-version-paths.props gtk+3.0-3.14.5/build/win32/vs12/gtk-version-paths.props diff -Nru gtk+3.0-3.14.4/build/win32/vs9/broadwayd.vcproj gtk+3.0-3.14.5/build/win32/vs9/broadwayd.vcproj diff -Nru gtk+3.0-3.14.4/build/win32/vs9/gtk-install.vsprops gtk+3.0-3.14.5/build/win32/vs9/gtk-install.vsprops diff -Nru gtk+3.0-3.14.4/build/win32/vs9/gtk-version-paths.vsprops gtk+3.0-3.14.5/build/win32/vs9/gtk-version-paths.vsprops diff -Nru gtk+3.0-3.14.4/config.h.win32 gtk+3.0-3.14.5/config.h.win32 diff -Nru gtk+3.0-3.14.4/configure gtk+3.0-3.14.5/configure diff -Nru gtk+3.0-3.14.4/configure.ac gtk+3.0-3.14.5/configure.ac --- gtk+3.0-3.14.4/configure.ac 2014-10-21 17:02:10.0 +0200 +++ gtk+3.0-3.14.5/configure.ac 2014-11-09 22:17:45.0 +0100 @@ -10,8 +10,8 @@ m4_define([gtk_major_version], [3]) m4_define([gtk_minor_version], [14]) -m4_define([gtk_micro_version], [4]) -m4_define([gtk_interface_age], [4]) +m4_define([gtk_micro_version], [5]) +m4_define([gtk_interface_age], [5]) m4_define([gtk_binary_age], [m4_eval(100 * gtk_minor_version + gtk_micro_version)]) m4_define([gtk_version], diff -Nru gtk+3.0-3.14.4/debian/changelog gtk+3.0-3.14.5/debian/changelog --- gtk+3.0-3.14.4/debian/changelog 2014-11-04 15:20:06.0 +0100 +++ gtk+3.0-3.14.5/debian/changelog 2014-11-11 18:55:48.0 +0100 @@ -1,3 +1,11 @@ +gtk+3.0 (3.14.5-1) unstable; urgency=medium + + * New upstream
Bug#770338: marked as done (unblock: nautilus/3.14.1-1)
Your message dated Fri, 21 Nov 2014 18:15:43 +0100 with message-id <546f733f.5070...@thykier.net> and subject line Re: Bug#770338: unblock: nautilus/3.14.1-1 has caused the Debian Bug report #770338, regarding unblock: nautilus/3.14.1-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 770338: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770338 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hello! I'd like to ask for another pre-approval. This time it's fixing a regression when tweaking so that nautilus handles the desktop. Many people seem to still want to have icons on the (gnome-shell) desktop and are now running into #766021 (and duplicates). Additional minor bugfixes included as a bonus. I'm attaching a filtered debdiff, created by using: debdiff /var/cache/pbuilder/result/nautilus_3.14.[01]-1*dsc | filterdiff -x '*/Makefile.in' -x '*/aclocal.m4' -x '*/configure' -x '*/docs/*' -x '*/po/*' -x '*/data/*.in' -x '*/data/*.desktop' ie. excluding autogenerated files and translations. === diff -Nru nautilus-3.14.0/aclocal.m4 nautilus-3.14.1/aclocal.m4 diff -Nru nautilus-3.14.0/configure nautilus-3.14.1/configure diff -Nru nautilus-3.14.0/configure.ac nautilus-3.14.1/configure.ac --- nautilus-3.14.0/configure.ac2014-09-23 12:16:06.0 +0200 +++ nautilus-3.14.1/configure.ac2014-11-12 23:53:46.0 +0100 @@ -18,7 +18,7 @@ m4_define(nautilus_extension_current, 5) m4_define(nautilus_extension_revision, 0) -AC_INIT([nautilus],[3.14.0],[http://bugzilla.gnome.org/enter_bug.cgi?product=nautilus]) +AC_INIT([nautilus],[3.14.1],[http://bugzilla.gnome.org/enter_bug.cgi?product=nautilus]) dnl === diff -Nru nautilus-3.14.0/data/nautilus-autorun-software.desktop.in nautilus-3.14.1/data/nautilus-autorun-software.desktop.in diff -Nru nautilus-3.14.0/data/nautilus-connect-server.desktop.in nautilus-3.14.1/data/nautilus-connect-server.desktop.in diff -Nru nautilus-3.14.0/data/org.gnome.Nautilus.desktop nautilus-3.14.1/data/org.gnome.Nautilus.desktop diff -Nru nautilus-3.14.0/data/org.gnome.Nautilus.desktop.in nautilus-3.14.1/data/org.gnome.Nautilus.desktop.in diff -Nru nautilus-3.14.0/debian/changelog nautilus-3.14.1/debian/changelog --- nautilus-3.14.0/debian/changelog2014-09-23 15:50:26.0 +0200 +++ nautilus-3.14.1/debian/changelog2014-11-20 14:15:55.0 +0100 @@ -1,3 +1,10 @@ +nautilus (3.14.1-1) unstable; urgency=medium + + * New upstream release. +- includes fix for --new-window (Closes: #766021) + + -- Andreas Henriksson Thu, 20 Nov 2014 14:15:54 +0100 + nautilus (3.14.0-1) unstable; urgency=medium * New upstream release. diff -Nru nautilus-3.14.0/docs/reference/libnautilus-extension/html/libnautilus-extension-nautilus-column.html nautilus-3.14.1/docs/reference/libnautilus-extension/html/libnautilus-extension-nautilus-column.html diff -Nru nautilus-3.14.0/docs/reference/libnautilus-extension/html/libnautilus-extension-nautilus-column-provider.html nautilus-3.14.1/docs/reference/libnautilus-extension/html/libnautilus-extension-nautilus-column-provider.html diff -Nru nautilus-3.14.0/docs/reference/libnautilus-extension/html/libnautilus-extension-nautilus-extension-types.html nautilus-3.14.1/docs/reference/libnautilus-extension/html/libnautilus-extension-nautilus-extension-types.html diff -Nru nautilus-3.14.0/docs/reference/libnautilus-extension/html/libnautilus-extension-nautilus-file-info.html nautilus-3.14.1/docs/reference/libnautilus-extension/html/libnautilus-extension-nautilus-file-info.html diff -Nru nautilus-3.14.0/docs/reference/libnautilus-extension/html/libnautilus-extension-nautilus-info-provider.html nautilus-3.14.1/docs/reference/libnautilus-extension/html/libnautilus-extension-nautilus-info-provider.html diff -Nru nautilus-3.14.0/docs/reference/libnautilus-extension/html/libnautilus-extension-nautilus-location-widget-provider.html nautilus-3.14.1/docs/reference/libnautilus-extension/html/libnautilus-extension-nautilus-location-widget-provider.html diff -Nru nautilus-3.14.0/docs/reference/libnautilus-extension/html/libnautilus-extension-nautilus-menu.html nautilus-3.14.1/docs/reference/libnautilus-extension/html/libnautilus-extension-nautilus-menu.html diff -Nru nautilus-3.14.0/docs/reference/libnautilus-extension/html/li
Processed: Re: Bug#770488: unblock: west-chamber/20100405+svn20111107.r124-4
Processing control commands: > tag -1 moreinfo Bug #770488 [release.debian.org] unblock: west-chamber/20100405+svn2007.r124-4 Added tag(s) moreinfo. -- 770488: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770488 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b770488.14165896742622.transcr...@bugs.debian.org
Bug#770488: unblock: west-chamber/20100405+svn20111107.r124-4
Control: tag -1 moreinfo On 2014-11-21 16:58, Ying-Chun Liu (PaulLiu) wrote: + +NAME=west-chamber +PACKAGE_NAME=$NAME-dkms That doesn't look quite right. Do you want to correct it in an upload or (since it doesn't seem to get used anywhere) go with what's there? Thanks, -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 i have six years of solaris sysadmin experience, from 8->10. i am well qualified to say it is made from bonghits layered on top of bonghits -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/723534445407c4b14dde0ca2a14ab...@hogwarts.powdarrmonkey.net
Processed (with 1 errors): tagging 768935
Processing commands for cont...@bugs.debian.org: > block 768935 768933 Unknown command or malformed arguments to command. > tag 768935 moreinfo Bug #768935 [release.debian.org] unblock: drupal7-mod-drucall Added tag(s) moreinfo. > kthxbye Stopping processing here. Please contact me if you need assistance. -- 768935: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768935 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.141658909131466.transcr...@bugs.debian.org
Bug#770486: unblock: lightdm-gtk-greeter/1.8.5-2
Yves-Alexis Perez, le Fri 21 Nov 2014 17:51:26 +0100, a écrit : > - #760740 (sev. important) which is about accessibility. When > at-spi2-core is installed, it'll be run automatically on the greeter > (through the use of a gtk adaptor), which is apparently desired, but > then it'll enforce a property on the root window which then prevents > the user-run at-spi2 processes to work correctly. Best fix would be to > have a way to properly kill the at-spi2-core processes, but for now it > seems the second best fix is to remove the property from the root > window. That will also lower the priority of #762672 from critical to normal, since the issue at stake there will then never happen any more without tinkering with starting at-spi by hand. Thanks, Samuel -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141121165848.gk9...@type.bordeaux.inria.fr
Bug#770488: unblock: west-chamber/20100405+svn20111107.r124-4
Package: release.debian.org User: release.debian@packages.debian.org Usertags: unblock Severity: normal Please unblock package west-chamber When purging west-chamber/20100405+svn2007.r124-3, it didn't remove some symbolic links and empty directories. This patch removes the symbolic link when purge/remove. The bug number is #769776 https://bugs.debian.org/769776 Debdiff: diff -Nru west-chamber-20100405+svn2007.r124/debian/changelog west-chamber-20100405+svn2007.r124/debian/changelog --- west-chamber-20100405+svn2007.r124/debian/changelog 2014-03-17 15:00:23.0 +0800 +++ west-chamber-20100405+svn2007.r124/debian/changelog 2014-11-19 06:00:13.0 +0800 @@ -1,3 +1,10 @@ +west-chamber (20100405+svn2007.r124-4) unstable; urgency=low + + * west-chamber-dkms: remove dangling symlink. (Closes: #769776) + * Bump Standards-Version to 3.9.6: Nothing needs to be changed. + + -- Ying-Chun Liu (PaulLiu) Wed, 19 Nov 2014 05:59:57 +0800 + west-chamber (20100405+svn2007.r124-3) unstable; urgency=medium * Move to xtables 2.4. diff -Nru west-chamber-20100405+svn2007.r124/debian/control west-chamber-20100405+svn2007.r124/debian/control --- west-chamber-20100405+svn2007.r124/debian/control 2014-03-17 14:59:35.0 +0800 +++ west-chamber-20100405+svn2007.r124/debian/control 2014-11-19 05:59:53.0 +0800 @@ -10,7 +10,7 @@ iptables-dev (>= 1.4.3), libtool, pkg-config -Standards-Version: 3.9.5 +Standards-Version: 3.9.6 Homepage: http://code.google.com/p/scholarzhang/ Package: west-chamber-common diff -Nru west-chamber-20100405+svn2007.r124/debian/west-chamber-dkms.postrm west-chamber-20100405+svn2007.r124/debian/west-chamber-dkms.postrm --- west-chamber-20100405+svn2007.r124/debian/west-chamber-dkms.postrm 1970-01-01 08:00:00.0 +0800 +++ west-chamber-20100405+svn2007.r124/debian/west-chamber-dkms.postrm 2014-11-19 06:23:47.0 +0800 @@ -0,0 +1,52 @@ +#!/bin/sh +# postrm script for west-chamber-dkms +# +# see: dh_installdeb(1) + +set -e + +# summary of how this script can be called: +#* `remove' +#* `purge' +#* `upgrade' +#* `failed-upgrade' +#* `abort-install' +#* `abort-install' +#* `abort-upgrade' +#* `disappear' +# +# for details, see http://www.debian.org/doc/debian-policy/ or +# the debian-policy package + +NAME=west-chamber +PACKAGE_NAME=$NAME-dkms +VERSION=20100405+svn2007.r124 + +case "$1" in +remove) + if [ -h "/usr/src/$NAME-$VERSION/extensions/compat_xtables.c" ]; then + rm -f "/usr/src/$NAME-$VERSION/extensions/compat_xtables.c" + fi +;; + +purge) + if [ -d "/usr/src/$NAME-$VERSION/.tmp_versions" ]; then + rm -rf "/usr/src/$NAME-$VERSION/.tmp_versions" + fi +;; + +upgrade|failed-upgrade|abort-install|abort-upgrade|disappear) +;; + +*) +echo "postrm called with unknown argument \`$1'" >&2 +exit 1 +;; +esac + +# dh_installdeb will replace this with shell code automatically +# generated by other debhelper scripts. + +#DEBHELPER# + +exit 0 unblock west-chamber/20100405+svn2007.r124-4 -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 3.16.0-4-686-pae (SMP w/2 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=UTF-8) (ignored: LC_ALL set to zh_TW.UTF-8) Shell: /bin/sh linked to /bin/dash -- PaulLiu (劉穎駿) E-mail: Ying-Chun Liu (PaulLiu) signature.asc Description: OpenPGP digital signature
Bug#770486: unblock: lightdm-gtk-greeter/1.8.5-2
Control: tags -1 confirmed On 2014-11-21 17:51, Yves-Alexis Perez wrote: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > > Please unblock package lightdm-gtk-greeter > > Hi, > > this is a pre-approval request for an upload of lightdm-gtk-greeter > targeted to Jessie. > > It fixes two bugs: > > - #750901 (sev. normal) which is really cosmetic but was applied long > ago in our svn, and shouldn't be really problematic, so I kept it > - #760740 (sev. important) which is about accessibility. When > at-spi2-core is installed, it'll be run automatically on the greeter > (through the use of a gtk adaptor), which is apparently desired, but > then it'll enforce a property on the root window which then prevents > the user-run at-spi2 processes to work correctly. Best fix would be to > have a way to properly kill the at-spi2-core processes, but for now it > seems the second best fix is to remove the property from the root > window. > > Full debdiff is attached. > > unblock lightdm-gtk-greeter/1.8.5-2 > >[...] Ack, please upload it to unstable and inform us once it has been accepted. ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546f6fec.8010...@thykier.net
Processed: Re: Bug#770486: unblock: lightdm-gtk-greeter/1.8.5-2
Processing control commands: > tags -1 confirmed Bug #770486 [release.debian.org] unblock: lightdm-gtk-greeter/1.8.5-2 Added tag(s) confirmed. -- 770486: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770486 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b770486.1416589307434.transcr...@bugs.debian.org
Bug#770486: unblock: lightdm-gtk-greeter/1.8.5-2
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package lightdm-gtk-greeter
Hi,
this is a pre-approval request for an upload of lightdm-gtk-greeter
targeted to Jessie.
It fixes two bugs:
- #750901 (sev. normal) which is really cosmetic but was applied long
ago in our svn, and shouldn't be really problematic, so I kept it
- #760740 (sev. important) which is about accessibility. When
at-spi2-core is installed, it'll be run automatically on the greeter
(through the use of a gtk adaptor), which is apparently desired, but
then it'll enforce a property on the root window which then prevents
the user-run at-spi2 processes to work correctly. Best fix would be to
have a way to properly kill the at-spi2-core processes, but for now it
seems the second best fix is to remove the property from the root
window.
Full debdiff is attached.
unblock lightdm-gtk-greeter/1.8.5-2
-- System Information:
Debian Release: jessie/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (450,
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Differences in lightdm-gtk-greeter between 1.8.5-1 and 1.8.5-2
diff -Nru lightdm-gtk-greeter-1.8.5/debian/changelog lightdm-gtk-greeter-1.8.5/debian/changelog
--- lightdm-gtk-greeter-1.8.5/debian/changelog 2014-05-06 07:43:19.0 +0200
+++ lightdm-gtk-greeter-1.8.5/debian/changelog 2014-11-21 16:56:00.0 +0100
@@ -1,3 +1,13 @@
+lightdm-gtk-greeter (1.8.5-2) UNRELEASED; urgency=medium
+
+ * debian/control, debian/copyright:
+- patch from Artur Rona to fix various lintian warnings.closes: #750901
+ * debian/patches:
+- 01_unset_AT_SPI_BUS-X11-property added, unset AT_SPI_BUS property from
+ the root window. closes: #760740
+
+ -- Yves-Alexis Perez Wed, 11 Jun 2014 21:23:58 +0200
+
lightdm-gtk-greeter (1.8.5-1) unstable; urgency=medium
* New upstream release.
diff -Nru lightdm-gtk-greeter-1.8.5/debian/control lightdm-gtk-greeter-1.8.5/debian/control
--- lightdm-gtk-greeter-1.8.5/debian/control 2014-01-07 23:33:25.0 +0100
+++ lightdm-gtk-greeter-1.8.5/debian/control 2014-06-11 21:25:00.0 +0200
@@ -16,7 +16,6 @@
Provides: lightdm-greeter
Replaces: lightdm-gtk, lightdm (<< 0.9.2-1)
Breaks: lightdm-gtk, lightdm (<< 0.9.2-1)
-Section: x11
Architecture: any
Depends: ${shlibs:Depends}, ${misc:Depends}
Recommends: desktop-base, gnome-themes-standard, gnome-icon-theme-symbolic, policykit-1
diff -Nru lightdm-gtk-greeter-1.8.5/debian/copyright lightdm-gtk-greeter-1.8.5/debian/copyright
--- lightdm-gtk-greeter-1.8.5/debian/copyright 2012-01-31 07:51:04.0 +0100
+++ lightdm-gtk-greeter-1.8.5/debian/copyright 2014-06-11 21:25:00.0 +0200
@@ -1,7 +1,5 @@
-Format-Specification:
- http://wiki.debian.org/Proposals/CopyrightFormat?action=recall&rev=402
+Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
Upstream-Name: lightdm
-Upstream-Maintainer: Robert Ancell
Upstream-Source: https://launchpad.net/lightdm
Files: debian/*
@@ -116,3 +114,12 @@
Public License version 3 can be found in
`/usr/share/common-licenses/GPL-3'.
+License: GPL-3+
+ On Debian systems, the complete text of the GNU General
+ Public License version 3 can be found in
+ `/usr/share/common-licenses/GPL-3'.
+
+License: LGPL-3+
+ On Debian systems, the complete text of the GNU Lesser
+ General Public License version 3 can be found in
+ `/usr/share/common-licenses/LGPL-3'.
diff -Nru lightdm-gtk-greeter-1.8.5/debian/patches/01_unset_AT_SPI_BUS-X11-property.patch lightdm-gtk-greeter-1.8.5/debian/patches/01_unset_AT_SPI_BUS-X11-property.patch
--- lightdm-gtk-greeter-1.8.5/debian/patches/01_unset_AT_SPI_BUS-X11-property.patch 1970-01-01 01:00:00.0 +0100
+++ lightdm-gtk-greeter-1.8.5/debian/patches/01_unset_AT_SPI_BUS-X11-property.patch 2014-11-21 17:17:52.0 +0100
@@ -0,0 +1,20 @@
+--- a/src/lightdm-gtk-greeter.c.original 2014-10-19 18:30:01.36800 +0200
b/src/lightdm-gtk-greeter.c 2014-10-19 18:49:46.87600 +0200
+@@ -2803,5 +2803,16 @@
+ gdk_color_free (default_background_color);
+ #endif
+
++{
++ int screen = XDefaultScreen (display);
++ Window w = RootWindow (display, screen);
++ Atom id = XInternAtom (display, "AT_SPI_BUS", True);
++ if (id != None)
++ {
++ XDeleteProperty (display, w, id);
++ XSync (display, FALSE);
++ }
++}
++
+ return EXIT_SUCCESS;
+ }
+
diff -Nru lightdm-gtk-greeter-1.8.5/debian/patches/series lightdm-gtk-greeter-1.8.5/debian/patches/series
--- lightdm-gtk-greeter-1.8.5/debian/patches/series 2014-02-12 21:04:20.0 +0100
+++ lightdm-gtk-greeter-1.8.5/debian/patches/series 2014-11-21 16:56:00.0 +0100
@@ -1 +1,2 @@
+0
Processed: Re: Bug#768933: unblock: jscommunicator
Processing control commands: > tags -1 moreinfo Bug #768933 [release.debian.org] unblock: jscommunicator Ignoring request to alter tags of bug #768933 to the same tags previously set -- 768933: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768933 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b768933.141658771422966.transcr...@bugs.debian.org
Bug#768933: unblock: jscommunicator
Control: tags -1 moreinfo On 2014-11-10 18:37, Daniel Pocock wrote: > [...] > > I understand there are policies for the freeze > Hi, I believe some of this was debated over IRC on the same day you sent your mail. I will not comment on those parts. > [...] > > Furthermore, JSCommunicator 2.x has not changed from an API user > perspective. The only dependent package is drupal7-mod-drucall and I > have updated that so everything works together and gives Debian users > the optimal experience. > If JSCommunicator changes API in backwards incompatible manner, then you should have done this before the transition freeze. That was two months before the freeze itself. Is this upload of JSCommunicator breaking the API? >> Would you prefer to have jscommunicator at its current version (1.1.1-1) >> in Jessie or do you feel that we would be better off without it? > > > [...] If Debian policy brings us to the point where people are > actively talking about removing WebRTC capabilities from testing less > than a week into the freeze then the policy is not working in the best > interest of Debian's mission or openness in general. > > [...] My counter argument is: """ It is not in the best interest of Debian's mission or openness in general for the Debian release to drag on for months, because the freeze policy is ignored. See "Squeeze Freeze" and "Wheezy Freeze". """ ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546f69b8.9040...@thykier.net
Processed: closing 769497
Processing commands for cont...@bugs.debian.org: > close 769497 Bug #769497 [release.debian.org] unblock: slapos.core/1.2.4.1-2 Marked Bug as done > thanks Stopping processing here. Please contact me if you need assistance. -- 769497: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769497 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.1416584374700.transcr...@bugs.debian.org
Bug#770471: wheezy-pu: package clamav/0.98.5+dfsg-0+deb7u1
On Fri, 21 Nov 2014 10:00:16 -0500 Scott Kitterman wrote: > Package: release.debian.org > Severity: normal > Tags: wheezy > User: release.debian@packages.debian.org > Usertags: pu > > In addition to the usual reasons to fix clamav, this also fixes CVE-2013-6497 > The diff have build system and docs stuff removed as well as the diff > associated with the removal of the llvm embedded copy. Due to the size of the diff, it didn't make it to the list, so here's a diff free comment that should ... Scott K signature.asc Description: This is a digitally signed message part.
Bug#770451: unblock: direwolf/1.0-2
Hi Jonathan, On Fri, Nov 21, 2014 at 01:11:20PM +, Jonathan Wiltshire wrote: > If the conflicting package is not in Jessie or Sid, why not just > break+replace it? direwolf definitely does not replace the functionality of drawmap. ll2utm and utm2ll are two utilities that are not part of the core functionality of direwolf and they will not be missed. In a future revision (not for jessie) these utilities willbe broken out into a direwolf-tools package which can conflict with drawmap and be recommended (but not depends) from direwolf. This change is too big to be putting into jessie at this point in the game. Thanks, Iain. -- e: i...@fsfe.orgw: iain.learmonth.me x: i...@jabber.fsfe.org t: +447875886930 c: MM6MVQ g: IO87we p: 1F72 607C 5FF2 CCD5 3F01 600D 56FF 9EA4 E984 6C49 pgp9o8YXu6pi2.pgp Description: PGP signature
Bug#770462: Unblock: pcl/1.7.2-3
Control: tag -1 moreinfo On 2014-11-21 13:50, Leopold Palomo-Avellaneda wrote: We have had to make some changes in the package pcl. We know we have done "bad" things, but we have needed because some bugs: Please send a source debdiff for review. Thanks, -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 i have six years of solaris sysadmin experience, from 8->10. i am well qualified to say it is made from bonghits layered on top of bonghits -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/46a9291df2a3bd86aecbe9369a59d...@hogwarts.powdarrmonkey.net
Processed: Re: Bug#770462: Unblock: pcl/1.7.2-3
Processing control commands: > tag -1 moreinfo Bug #770462 [release.debian.org] Unblock: pcl/1.7.2-3 Added tag(s) moreinfo. -- 770462: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770462 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b770462.141657883026519.transcr...@bugs.debian.org
Bug#769390: marked as done (unblock: sane-backends/1.0.24-4)
Your message dated Fri, 21 Nov 2014 13:28:02 +
with message-id <202298fbd70ca5154bda934679505...@hogwarts.powdarrmonkey.net>
and subject line Re: Bug#769390: unblock: sane-backends/1.0.24-4
has caused the Debian Bug report #769390,
regarding unblock: sane-backends/1.0.24-4
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
769390: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769390
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package sane-backends
To fix the bug #767765 with the severity important I have done the following
changes:
sane-backends (1.0.24-4) unstable; urgency=medium
* debian/rules:
- Move the creation of /etc/sane.d/dll.d to libsane-common.
* Move libsane.(postrm|preinst) to libsane-common.* to handle
in the right package. (Closes: #766340)
* Remose useless ( < "1.0.19-25" ) from libsane-common.preinst.
* debian/patches:
- New typo.patch:
+ Correct typo in backend/gennesys.conf.in. (Closes: #743848)
Thanks to Jakub Wilk .
- New hp3900.patch:
+ Set startup gamma to the standalone default. (Closes: #629470)
Thanks to Peter Walser .
- New hp5370c.patch:
+ Improved recognizability. (LP: #1080787)
- New out_of_bounds.patch:
+ Prevent some out-of-bounds.
* debian/control:
- Change Build-Depends from the transitional package libgphoto2-2-dev
to libgphoto2-dev. (Closes: #736451)
-- Jörg Frings-Fürst Mon, 27 Oct 2014 22:36:01
+0100
The debdiff between 1.0.24-3 und 1.0.24-4 is attached
unblock sane-backends/1.0.24-4
-- System Information:
Debian Release: jessie/sid
APT prefers testing
APT policy: (900, 'testing'), (800, 'unstable'), (500, 'testing-updates')
Architecture: amd64 (x86_64)
Kernel: Linux 3.16.0-4-amd64 (SMP w/6 CPU cores)
diff -Nru sane-backends-1.0.24/debian/changelog sane-backends-1.0.24/debian/changelog
--- sane-backends-1.0.24/debian/changelog 2014-10-15 10:37:26.0 +0200
+++ sane-backends-1.0.24/debian/changelog 2014-10-27 22:36:10.0 +0100
@@ -1,3 +1,27 @@
+sane-backends (1.0.24-4) unstable; urgency=medium
+
+ * debian/rules:
+- Move the creation of /etc/sane.d/dll.d to libsane-common.
+ * Move libsane.(postrm|preinst) to libsane-common.* to handle
+in the right package. (Closes: #766340)
+ * Remose useless ( < "1.0.19-25" ) from libsane-common.preinst.
+ * debian/patches:
+- New typo.patch:
+ + Correct typo in backend/gennesys.conf.in. (Closes: #743848)
+Thanks to Jakub Wilk .
+- New hp3900.patch:
+ + Set startup gamma to the standalone default. (Closes: #629470)
+Thanks to Peter Walser .
+- New hp5370c.patch:
+ + Improved recognizability.(LP: #1080787)
+- New out_of_bounds.patch:
+ + Prevent some out-of-bounds.
+ * debian/control:
+- Change Build-Depends from the transitional package libgphoto2-2-dev
+ to libgphoto2-dev. (Closes: #736451)
+
+ -- Jörg Frings-Fürst Mon, 27 Oct 2014 22:36:01 +0100
+
sane-backends (1.0.24-3) unstable; urgency=medium
* debian/rules:
diff -Nru sane-backends-1.0.24/debian/control sane-backends-1.0.24/debian/control
--- sane-backends-1.0.24/debian/control 2014-10-13 13:01:36.0 +0200
+++ sane-backends-1.0.24/debian/control 2014-10-26 13:46:27.0 +0100
@@ -11,7 +11,7 @@
gettext,
libavahi-client-dev,
libcam-dev [kfreebsd-any],
- libgphoto2-2-dev,
+ libgphoto2-dev,
libieee1284-3-dev [!hurd-i386],
libjpeg-dev,
libltdl3-dev,
diff -Nru sane-backends-1.0.24/debian/libsane-common.postrm sane-backends-1.0.24/debian/libsane-common.postrm
--- sane-backends-1.0.24/debian/libsane-common.postrm 1970-01-01 01:00:00.0 +0100
+++ sane-backends-1.0.24/debian/libsane-common.postrm 2013-07-05 17:10:26.0 +0200
@@ -0,0 +1,11 @@
+#!/bin/sh
+
+set -e
+
+#DEBHELPER#
+
+# remove directory /etc/sane.d/
+if [ "$1" = "purge" ]; then
+echo "Removing directory /etc/sane.d/ ..."
+rmdir --ignore-fail-on-non-empty /etc/sane.d/
+fi
diff -Nru sane-backends-1.0.24/debian/libsane-common.preinst sane-backends-1.0.24/debian/libsane-common.preinst
--- sane-backends-1.0.24/debian/libsane-common.preinst 1970-01-01 01:00:00.0 +0100
+++ sane-backends-1.0.24/debian/libsane-common.preinst 2014-10-25 13:15:35.0 +0200
@@ -0,0 +1,32 @@
+#!/bin/sh
+set -e
+
+# From http://wiki.debian.org/DpkgConffileHandling
+# Remove a no-longer used conffile
+rm_conffile() {
+PKGNAME="$1"
+CONFFILE="$2"
+
Processed: tagging 770429
Processing commands for cont...@bugs.debian.org: > tag 770429 confirmed Bug #770429 [release.debian.org] Pre-approval for unblock: openstack-debian-images/1.0.0 Added tag(s) confirmed. > kthxbye Stopping processing here. Please contact me if you need assistance. -- 770429: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770429 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.141657848724303.transcr...@bugs.debian.org
Bug#770463: unblock: dhcpcd5/6.0.5-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi Release Team, Please unblock package dhcpcd5, which fixed as denial-of-service vulnerability (CVE-2014-6060). Relevant bug in the BTS is #770043. Additionally to the patch I have updated the maintainer field to Debian QA group as previous maintainer orphaned the package. Full changelog is as follows: dhcpcd5 (6.0.5-2) unstable; urgency=medium * QA upload. [ Pierre Schweitzer ] * Fix denial of service (CVE-2014-6060) in dhcpcd5. (Closes: #770043). [ Salvatore Bonaccorso ] * Refresh CVE-2014-6060.patch (offset) * Update patch headers for CVE-2014-6060.patch. Wrap long lines in fields and use Description field. Add Applied-Upstream value. * Set Maintainer to Debian QA Group (cf. #770082) -- Salvatore Bonaccorso Wed, 19 Nov 2014 17:08:30 +0100 Attached is also the full debdiff. Could you thus unblock dhcpcd5/6.0.5-2 Many thanks in advance! Regards, Salvatore diff -Nru dhcpcd5-6.0.5/debian/changelog dhcpcd5-6.0.5/debian/changelog --- dhcpcd5-6.0.5/debian/changelog 2013-12-04 14:49:45.0 +0100 +++ dhcpcd5-6.0.5/debian/changelog 2014-11-19 19:50:28.0 +0100 @@ -1,3 +1,19 @@ +dhcpcd5 (6.0.5-2) unstable; urgency=medium + + * QA upload. + + [ Pierre Schweitzer ] + * Fix denial of service (CVE-2014-6060) in dhcpcd5. (Closes: #770043). + + [ Salvatore Bonaccorso ] + * Refresh CVE-2014-6060.patch (offset) + * Update patch headers for CVE-2014-6060.patch. +Wrap long lines in fields and use Description field. +Add Applied-Upstream value. + * Set Maintainer to Debian QA Group (cf. #770082) + + -- Salvatore Bonaccorso Wed, 19 Nov 2014 17:08:30 +0100 + dhcpcd5 (6.0.5-1.1) unstable; urgency=low * Non-maintainer upload. diff -Nru dhcpcd5-6.0.5/debian/control dhcpcd5-6.0.5/debian/control --- dhcpcd5-6.0.5/debian/control 2013-06-25 15:47:59.0 +0200 +++ dhcpcd5-6.0.5/debian/control 2014-11-19 19:50:28.0 +0100 @@ -1,7 +1,7 @@ Source: dhcpcd5 Section: net Priority: optional -Maintainer: Roy Marples +Maintainer: Debian QA Group Build-Depends: debhelper (>= 9) Standards-Version: 3.9.4.0 Homepage: http://roy.marples.name/projects/dhcpcd diff -Nru dhcpcd5-6.0.5/debian/patches/CVE-2014-6060.patch dhcpcd5-6.0.5/debian/patches/CVE-2014-6060.patch --- dhcpcd5-6.0.5/debian/patches/CVE-2014-6060.patch 1970-01-01 01:00:00.0 +0100 +++ dhcpcd5-6.0.5/debian/patches/CVE-2014-6060.patch 2014-11-19 19:50:28.0 +0100 @@ -0,0 +1,27 @@ +Description: Fix CVE-2014-6060 + Only bits 1 and 2 are used in the DHCP overload option, so when we + encounter the option set the last bit as well to ensure servername and + bootfile are only checked once as their check unsets bits 1 and 2. + Thanks to Tobias Stoeckmann. +Origin: upstream, http://roy.marples.name/projects/dhcpcd/ci/1d2b93aa5ce25a8a710082fe2d36a6bf7f5794d5?sbs=0 +Bug-Debian: https://bugs.debian.org/770043 +From: Roy Marples +Applied-Upstream: 6.4.3 + +--- a/dhcp.c b/dhcp.c +@@ -343,9 +343,12 @@ get_option(const struct dhcp_message *dh + goto exit; + break; + case DHO_OPTIONSOVERLOADED: +- /* Ensure we only get this option once */ ++ /* Ensure we only get this option once by setting ++ * the last bit as well as the value. ++ * This is valid because only the first two bits ++ * actually mean anything in RFC2132 Section 9.3 */ + if (!overl) +-overl = p[1]; ++overl = 0x80 | p[1]; + break; + } + l = *p++; diff -Nru dhcpcd5-6.0.5/debian/patches/series dhcpcd5-6.0.5/debian/patches/series --- dhcpcd5-6.0.5/debian/patches/series 2013-12-04 14:52:31.0 +0100 +++ dhcpcd5-6.0.5/debian/patches/series 2014-11-19 19:50:28.0 +0100 @@ -1 +1,2 @@ kfreebsd.diff +CVE-2014-6060.patch
Bug#770462: Unblock: pcl/1.7.2-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock We have had to make some changes in the package pcl. We know we have done "bad" things, but we have needed because some bugs: * Change openni-dev to libopenni, Closes: #768953 we got an important bug making our package (pkg-config information) wrong. Simple, we changed the name of the reference to libopenni * Build without OpenNI when it's not available. It opens the number of architectures where it could be built. Closes: #769883 as we have openni as built dependency, we found that we _only_ had two arch to be built, when the package should be built in all. So, we made a conditional of this dependency. * Fix PCLConfig.cmake (patch taken from Fedora). Closes: #770029 when we were doing this modifications we received a complain of one user about the CMake files and we found that we had a bug that fedora had solved before. That's why the changes. Please, could you unblock pcl? Best regards, Leopold -- -- Linux User 152692 PGP: 05F4A7A949A2D9AA Catalonia - A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in e-mail? signature.asc Description: This is a digitally signed message part.
Bug#770332: pu: package dhcpcd5/5.5.6-1
Hi Pierre, hi Adam, On Thu, Nov 20, 2014 at 09:51:51PM +0100, Pierre Schweitzer wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Tested fine here. > > Couldn't find any PoC for CVE-2014-6060 though. I just uploaded the package prepared by Pierre. Only change to preivous debdiff is the closer for #770043. Regards, Salvatore -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141121133429.GA23380@eldamar.local
Bug#770248: marked as done (RM: gcc-4.4-doc-non-dfsg/4.4.7-4 gcc-4.6-doc/4.6.4-3 gcc-4.7-doc/4.7.4-1)
Your message dated Fri, 21 Nov 2014 13:31:11 + with message-id <221a773fb5ef36bcb3cd42d0e930a...@hogwarts.powdarrmonkey.net> and subject line Re: Bug#770248: RM: gcc-4.4-doc-non-dfsg/4.4.7-4 gcc-4.6-doc/4.6.4-3 gcc-4.7-doc/4.7.4-1 has caused the Debian Bug report #770248, regarding RM: gcc-4.4-doc-non-dfsg/4.4.7-4 gcc-4.6-doc/4.6.4-3 gcc-4.7-doc/4.7.4-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 770248: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770248 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: rm RoQA: If jessie is not going to ship the ancient compilers, there is no need for their documentation either. (The documentation is packaged separately in non-free.) Looking at the other *-doc packages in non-free, I also found elmer-doc/2014.02.06-1 but elmer is not in jessie (for a year now) I may have missed some more packages ... Andreas --- End Message --- --- Begin Message --- On 2014-11-20 00:49, Andreas Beckmann wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: rm RoQA: If jessie is not going to ship the ancient compilers, there is no need for their documentation either. (The documentation is packaged separately in non-free.) Looking at the other *-doc packages in non-free, I also found elmer-doc/2014.02.06-1 but elmer is not in jessie (for a year now) I may have missed some more packages ... Removal hint added. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 i have six years of solaris sysadmin experience, from 8->10. i am well qualified to say it is made from bonghits layered on top of bonghits--- End Message ---
Bug#770099: marked as done (unblock: python-urllib3/1.9.1-3)
Your message dated Fri, 21 Nov 2014 13:26:41 + with message-id and subject line Re: Bug#770099: unblock: python-urllib3/1.9.1-3 has caused the Debian Bug report #770099, regarding unblock: python-urllib3/1.9.1-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 770099: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770099 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock This is a pre-emptive request to unblock some bug fixes for package python-urllib3. unblock python-urllib3/1.9.1-3 urllib3 currently contains a patch, 05_do-not-use-embedded-ssl-match-hostname.patch, to use new SSL features in the Debian python2.7 >= 2.7.8-7 stdlib rather than a bundled backport library. This works (albeit, currently with an insufficiently tight dependency on python2.7). However, it breaks the use of virtualenv with pypy (#763389), and any current release of cPython 2.7, without commit 221a1f9155e2 (which isn't yet part of a stable release) (#755106). These are both filed with severity important. My approach to solving the problem is to use the bundled backport library, when necessary, rather than masking it entirely. Another (slightly cleaner) option would be to make urllib3 fall-back to python-backports.ssl-match-hostname. This would require adding a python-backports.ssl-match-hostname-whl binary package, for virtualenv to include in virtualenvs. But this would obviously be more invasive. diff -Nru python-urllib3-1.9.1/debian/changelog python-urllib3-1.9.1/debian/changelog --- python-urllib3-1.9.1/debian/changelog 2014-10-21 01:20:13.0 -0700 +++ python-urllib3-1.9.1/debian/changelog 2014-11-18 13:24:22.0 -0800 @@ -1,3 +1,12 @@ +python-urllib3 (1.9.1-3) UNRELEASED; urgency=medium + + * Team upload. + * Replace 05_do-not-use-embedded-ssl-match-hostname.patch with +05_avoid-embedded-ssl-match-hostname.patch. Users may use virtualenv with +cPython << 2.7.9 (or Debian python2.7 2.7.8-7). (Closes: 755106, 763389) + + -- Stefano Rivera Tue, 18 Nov 2014 12:45:49 -0800 + python-urllib3 (1.9.1-2) unstable; urgency=medium * debian/control diff -Nru python-urllib3-1.9.1/debian/patches/05_avoid-embedded-ssl-match-hostname.patch python-urllib3-1.9.1/debian/patches/05_avoid-embedded-ssl-match-hostname.patch --- python-urllib3-1.9.1/debian/patches/05_avoid-embedded-ssl-match-hostname.patch 1969-12-31 16:00:00.0 -0800 +++ python-urllib3-1.9.1/debian/patches/05_avoid-embedded-ssl-match-hostname.patch 2014-11-18 13:25:41.0 -0800 @@ -0,0 +1,22 @@ +Description: Do not use embedded copy of ssl.match_hostname, when possible + The system python has the necessary features backported, since 2.7.8-7 (and + 221a1f9155e2, releasing in 2.7.9, upstream). However, alternative python + implementations don't, yet, and urllib3 is used by pip in virtualenvs. +Author: Stefano Rivera +Forwarded: not-needed +Last-Update: 2014-11-18 + +--- a/urllib3/packages/__init__.py b/urllib3/packages/__init__.py +@@ -1,4 +1,9 @@ + from __future__ import absolute_import + +-from . import ssl_match_hostname +- ++try: ++# cPython >= 2.7.9 has ssl features backported from Python3 ++from ssl import CertificateError ++del CertificateError ++import ssl as ssl_match_hostname ++except ImportError: ++from . import ssl_match_hostname diff -Nru python-urllib3-1.9.1/debian/patches/05_do-not-use-embedded-ssl-match-hostname.patch python-urllib3-1.9.1/debian/patches/05_do-not-use-embedded-ssl-match-hostname.patch --- python-urllib3-1.9.1/debian/patches/05_do-not-use-embedded-ssl-match-hostname.patch 2014-09-23 11:28:38.0 -0700 +++ python-urllib3-1.9.1/debian/patches/05_do-not-use-embedded-ssl-match-hostname.patch 1969-12-31 16:00:00.0 -0800 @@ -1,56 +0,0 @@ -Description: Do not use embedded copy of ssl.match_hostname. -Author: Daniele Tricoli -Forwarded: not-needed -Last-Update: 2014-09-23 - a/test/test_connectionpool.py -+++ b/test/test_connectionpool.py -@@ -6,7 +6,7 @@ - HTTPConnectionPool, - ) - from urllib3.util.timeout import Timeout --from urllib3.packages.ssl_match_hostname import CertificateError -+from ssl import CertificateError - from urllib3.exceptions import ( - ClosedPoolError, - EmptyPoolError, a/urllib3/connection.py -+++ b/urllib3/connection.py -@@ -39,7 +39,7 @@ - ConnectTimeoutError, - SystemTimeWarning, - ) --from .packages.ssl_match_hostname import match_hostname -+fro
Processed: Re: Bug#770429: marked as done (Pre-approval for unblock: openstack-debian-images/1.0.0)
Processing control commands:
> reopen -1
Bug #770429 {Done: Jonathan Wiltshire } [release.debian.org]
Pre-approval for unblock: openstack-debian-images/1.0.0
Bug reopened
Ignoring request to alter fixed versions of bug #770429 to the same values
previously set
--
770429: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770429
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive:
https://lists.debian.org/handler.s.b770429.14165763509518.transcr...@bugs.debian.org
Bug#770381: marked as done (unblock: remmina/1.1.1-2 (pre-approval))
Your message dated Fri, 21 Nov 2014 13:23:51 +
with message-id <2c3250ae05ae97c6f01f44dfa1726...@hogwarts.powdarrmonkey.net>
and subject line Re: Bug#770381: unblock: remmina/1.1.1-2 (pre-approval)
has caused the Debian Bug report #770381,
regarding unblock: remmina/1.1.1-2 (pre-approval)
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
770381: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770381
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Hi,
Please consider unblocking a tentative remmina 1.1.1-2 upload, debdiff
attached.
This upload cherry-picks patches from upstream Git to fix #766671. I reproduced
the crash (it's very trivial to test it), and the patch actually solves the
problem.
unblock remmina/1.1.1-2
-- System Information:
Debian Release: jessie/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores)
diff --git a/debian/changelog b/debian/changelog
index 42e466f..f69d17c 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,11 @@
+remmina (1.1.1-2) unstable; urgency=medium
+
+ * debian/patches/RDP_certificate_crash.patch:
+- Cherry-pick patches from upstream to fix a crash when not
+ accepting certificate for RDP server (Closes: #766671).
+
+ -- Luca Falavigna Thu, 20 Nov 2014 21:08:11 +0100
+
remmina (1.1.1-1) unstable; urgency=medium
* New upstream release.
diff --git a/debian/patches/RDP_certificate_crash.patch b/debian/patches/RDP_certificate_crash.patch
new file mode 100644
index 000..40c7bf3
--- /dev/null
+++ b/debian/patches/RDP_certificate_crash.patch
@@ -0,0 +1,154 @@
+Description: Fix crash when not accepting certificate for RDP server
+Author: Giovanni Panozzo
+
+Index: remmina/remmina-plugins/rdp/rdp_event.c
+===
+--- remmina.orig/remmina-plugins/rdp/rdp_event.c
remmina/remmina-plugins/rdp/rdp_event.c
+@@ -54,6 +54,9 @@ static void remmina_rdp_event_on_focus_i
+ #endif
+
+ rfi = GET_DATA(gp);
++ if ( !rfi )
++ return;
++
+ input = rfi->instance->input;
+ UINT32 toggle_keys_state = 0;
+
+@@ -88,6 +91,8 @@ static void remmina_rdp_event_event_push
+ RemminaPluginRdpEvent* event;
+
+ rfi = GET_DATA(gp);
++ if ( !rfi )
++ return;
+
+ if (rfi->event_queue)
+ {
+@@ -454,6 +459,8 @@ static gboolean remmina_rdp_event_on_key
+ DWORD scancode;
+
+ rfi = GET_DATA(gp);
++ if ( !rfi ) return TRUE;
++
+ rdp_event.type = REMMINA_RDP_EVENT_TYPE_SCANCODE;
+ rdp_event.key_event.up = (event->type == GDK_KEY_PRESS ? False : True);
+ rdp_event.key_event.extended = False;
+@@ -535,6 +542,8 @@ void remmina_rdp_event_init(RemminaProto
+ GtkClipboard* clipboard;
+
+ rfi = GET_DATA(gp);
++ if ( !rfi ) return;
++
+ rfi->drawing_area = gtk_drawing_area_new();
+ gtk_widget_show(rfi->drawing_area);
+ gtk_container_add(GTK_CONTAINER(gp), rfi->drawing_area);
+@@ -608,7 +617,7 @@ void remmina_rdp_event_uninit(RemminaPro
+ RemminaPluginRdpUiObject* ui;
+
+ rfi = GET_DATA(gp);
+-
++ if ( !rfi ) return;
+
+ /* unregister the clipboard monitor */
+ if (rfi->clipboard_handler)
+Index: remmina/remmina-plugins/rdp/rdp_plugin.c
+===
+--- remmina.orig/remmina-plugins/rdp/rdp_plugin.c
remmina/remmina-plugins/rdp/rdp_plugin.c
+@@ -338,6 +338,7 @@ static BOOL remmina_rdp_post_connect(fre
+ instance->update->DesktopResize = rf_desktop_resize;
+
+ freerdp_channels_post_connect(instance->context->channels, instance);
++ rfi->connected = True;
+
+ remmina_plugin_service->protocol_plugin_emit_signal(gp, "connect");
+
+@@ -664,7 +665,7 @@ static gboolean remmina_rdp_main(Remmina
+ dest_server = remmina_plugin_service->file_get_string(remminafile, "server");
+ if ( dest_server ) {
+ remmina_plugin_service->get_server_port(dest_server, 0, &dest_host, &dest_port);
+- rfi->settings->CertificateName = _strdup( dest_host );
++ rfi->settings->CertificateName = strdup( dest_host );
+ g_free(dest_host);
+ }
+ }
+@@ -701,12 +702,17 @@ static gboolean remmina_rdp_main(Remmina
+
+ if (remmina_plugin_service->file_get_string(remminafile, "clientname"))
+ {
+- strncpy(rfi->settings->ClientHostname, remmina_plugin_service->file_get_string(remminafile, "clientname"),
+- sizeof(rfi->settings->ClientHostname) - 1);
++ s = remmina_plugin_service->file_get_string(remminafile, "clientname");
++ if ( s ) {
++
Bug#770429: marked as done (Pre-approval for unblock: openstack-debian-images/1.0.0)
Control: reopen -1 Oops. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 i have six years of solaris sysadmin experience, from 8->10. i am well qualified to say it is made from bonghits layered on top of bonghits -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/bbffe9b82f975edbed406df7497fc...@hogwarts.powdarrmonkey.net
Bug#770429: marked as done (Pre-approval for unblock: openstack-debian-images/1.0.0)
Your message dated Fri, 21 Nov 2014 13:21:07 +
with message-id
and subject line Re: Bug#770429: Pre-approval for unblock:
openstack-debian-images/1.0.0
has caused the Debian Bug report #770429,
regarding Pre-approval for unblock: openstack-debian-images/1.0.0
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
770429: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770429
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
As per Neils request, here's a copy of my last mail asking for pre-approval
for uploading openstack-debian-images/1.0.0.
Dear release team,
The package openstack-debian-images, when used with newer version of
Qemu, may generate images which aren't useable on some cloud providers.
The way to fix it is to use the following option:
"-o compat=0.10"
Without this, some users may not understand why their image isn't
useable in some public clouds.
Unfortunately, I didn't understand why when I was using it, it was
failing. Until now: I was using big -O instead of lowercase -o. Since I
have found out, I'd like to upload a fixed version of
openstack-debian-images to Sid and have it in Jessie.
Please let me know if the attached patch is ok, and if I can upload a
new version of openstack-debian-images in Sid. Diff attached.
Cheers,
Thomas Goirand (zigo)
diff --git a/build-openstack-debian-image b/build-openstack-debian-image
index 0489bc4..f6d4fd7 100755
--- a/build-openstack-debian-image
+++ b/build-openstack-debian-image
@@ -417,11 +417,11 @@ if [ "${AUTOMATIC_RESIZE}" = "yes" ] ; then
install-mbr ${AMI_NAME}
fi
-#QEMU_VERSION=`qemu-img --help | head -n 1 | cut -d" " -f3 | cut -d"," -f1`
-#if dpkg --compare-versions ${QEMU_VERSION} gt 1.0 ; then
-# OTHER_QEMU_IMG_OPTIONS=" -O compat=0.10"
-#else
+QEMU_VERSION=`qemu-img --help | head -n 1 | cut -d" " -f3 | cut -d"," -f1`
+if dpkg --compare-versions ${QEMU_VERSION} gt 1.0 ; then
+ OTHER_QEMU_IMG_OPTIONS=" -o compat=0.10"
+else
OTHER_QEMU_IMG_OPTIONS=""
-#fi
+fi
qemu-img convert -c -f raw ${AMI_NAME}${OTHER_QEMU_IMG_OPTIONS} -O qcow2 ${QCOW2_NAME}
diff --git a/debian/changelog b/debian/changelog
index 2c38f45..d024639 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+openstack-debian-images (1.1) unstable; urgency=medium
+
+ * Fixed compat option for newer qemu.
+
+ -- Thomas Goirand Fri, 21 Nov 2014 13:48:26 +0800
+
openstack-debian-images (1.0) unstable; urgency=medium
* Fixed the sudoers file to support the --login option. (Closes: #766234)
--- End Message ---
--- Begin Message ---
Control: tag -1 confirmed
On 2014-11-21 08:15, Thomas Goirand wrote:
The package openstack-debian-images, when used with newer version of
Qemu, may generate images which aren't useable on some cloud providers.
The way to fix it is to use the following option:
"-o compat=0.10"
Without this, some users may not understand why their image isn't
useable in some public clouds.
Unfortunately, I didn't understand why when I was using it, it was
failing. Until now: I was using big -O instead of lowercase -o. Since I
have found out, I'd like to upload a fixed version of
openstack-debian-images to Sid and have it in Jessie.
Please let me know if the attached patch is ok, and if I can upload a
new version of openstack-debian-images in Sid. Diff attached.
If you rate the bug to be severity >=important, then yes please go
ahead.
--
Jonathan Wiltshire j...@debian.org
Debian Developer http://people.debian.org/~jmw
4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51
i have six years of solaris sysadmin experience, from
8->10. i am well qualified to say it is made from bonghits
layered on top of bonghits--- End Message ---
Bug#767902: marked as done (unblock: libsdl2-gfx/1.0.1+dfsg-1)
Your message dated Fri, 21 Nov 2014 13:18:46 + with message-id and subject line Re: Bug#767902: please unblock libsdl2-gfx has caused the Debian Bug report #767902, regarding unblock: libsdl2-gfx/1.0.1+dfsg-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 767902: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=767902 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Dear Release Team, libsdl2-gfx actually has a source tarball with a minified jquery copy. this copy is just useless, since it is not used in the documentation itself. (basically because GENERATE_TREEVIEW and SEARCHENGINE are both disabled, see bug #622147) Moreover since jquery from doxygen is patched, this isn't correctly reflected into the debian/missing-sources jquery entry. For this reason I repackaged the source tarball without all the doxygen upstream built documentation, and I rebuild it with doxygen in the build-indep target. For this reason the repack is now "dfsg", and the debdiff is huge because of the jquery source removal. The commits are available here. http://anonscm.debian.org/cgit/pkg-sdl/packages/libsdl2-gfx.git notable changes: -use doxygen to recreate documentation at build time -remove jquery symlinks -dversionmangle the watch file -remove jquery from missing sources -reimport the upstream version without the doxygen documentation -document the dfsg source (also in copyright file) -fix some missing copyright entries. Let me know if I can upload on unstable. cheers, Gianfranco --- End Message --- --- Begin Message --- On 2014-11-21 08:37, Gianfranco Costamagna wrote: Control: tags - moreinfo Hi Jonathan, sorry for the huge debdiff. The reason is that I stripped the upstream-generated doxygen stuff, part of this bug. They ship a minified jquery library, without the source code and the jquery that is actually in debian/sources/missing-sources *doesn't* reflect the minified js (doxygen uses a patched jquery version, without the correspondant source code.) So I removed all the generated stuff and repacked the source, generating the documentation at build time. Ok, unblocked. I also cherry-picked some copyright fixes and wrap and sorted some build depends The wrapping and sorting build depends is welcome most of the time, but not in an unblock diff please. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 i have six years of solaris sysadmin experience, from 8->10. i am well qualified to say it is made from bonghits layered on top of bonghits--- End Message ---
Bug#770426: marked as done (unblock: shadow/1:4.2-3)
Your message dated Fri, 21 Nov 2014 13:13:56 + with message-id <0a10d6e04ae425f70b3039691582c...@hogwarts.powdarrmonkey.net> and subject line Re: Bug#770426: unblock: shadow/1:4.2-3 has caused the Debian Bug report #770426, regarding unblock: shadow/1:4.2-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 770426: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770426 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package shadow 4.2-3. This version includes a fix (indeed a workaround) to enforce hardened builds, as the last binNMU apparently dropped them for some architectures (#770273 which I forgot to close in the changelog because the issue was indeed reported to me in private, I fixed it but then reported the bug). For the record, I made a quick check with the security team to get their input about the fix beign The Right Thing, given my personal low skills in such issues and Moritz ack'ed the fix to be correct (and suggested me to switch shadow to dh, which will probably be done post-jessie). diff -Nru shadow-4.2/debian/changelog shadow-4.2/debian/changelog --- shadow-4.2/debian/changelog 2014-05-04 19:50:31.0 +0200 +++ shadow-4.2/debian/changelog 2014-11-19 21:59:09.0 +0100 @@ -1,3 +1,12 @@ +shadow (1:4.2-3) unstable; urgency=low + + * Enforce hardened builds to workaround cdbs sometimes not building +with hardening flags as in 1:4.2-2+b1 +Thanks to Dr. Markus Waldeck for pointing the issue and Simon Ruderich +For providing a working patch. + + -- Christian Perrier Wed, 19 Nov 2014 21:59:09 +0100 + shadow (1:4.2-2) unstable; urgency=low * The "Soumaintrain" release diff -Nru shadow-4.2/debian/control shadow-4.2/debian/control --- shadow-4.2/debian/control 2014-04-30 22:28:06.0 +0200 +++ shadow-4.2/debian/control 2014-11-19 21:49:09.0 +0100 @@ -5,6 +5,7 @@ Standards-Version: 3.9.5 Uploaders: Christian Perrier , Nicolas FRANCOIS (Nekral) Build-Depends: dh-autoreconf, gettext, libpam0g-dev, debhelper (>= 6.0.7~), quilt, dpkg-dev (>= 1.13.5), xsltproc, docbook-xsl, docbook-xml, libxml2-utils, cdbs, libselinux1-dev [linux-any], libsemanage1-dev [linux-any], gnome-doc-utils (>= 0.4.3), bison, libaudit-dev [linux-any] + ,hardening-wrapper Vcs-Git: git://anonscm.debian.org/git/pkg-shadow/shadow.git Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-shadow/shadow.git;a=summary Homepage: http://pkg-shadow.alioth.debian.org/ diff -Nru shadow-4.2/debian/rules shadow-4.2/debian/rules --- shadow-4.2/debian/rules 2014-04-30 22:28:06.0 +0200 +++ shadow-4.2/debian/rules 2014-11-19 21:49:09.0 +0100 @@ -3,6 +3,8 @@ DEB_HOST_ARCH_OS := $(shell dpkg-architecture -qDEB_HOST_ARCH_OS) +export DEB_BUILD_HARDENING=1 + # Enable PIE, BINDNOW, and possible future flags. export DEB_BUILD_MAINT_OPTIONS = hardening=+all unblock shadow/1:4.2-3 -- System Information: Debian Release: jessie/sid Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash --- End Message --- --- Begin Message --- On 2014-11-21 07:21, Christian Perrier wrote: Please unblock package shadow 4.2-3. This version includes a fix (indeed a workaround) to enforce hardened builds, as the last binNMU apparently dropped them for some architectures (#770273 which I forgot to close in the changelog because the issue was indeed reported to me in private, I fixed it but then reported the bug). For the record, I made a quick check with the security team to get their input about the fix beign The Right Thing, given my personal low skills in such issues and Moritz ack'ed the fix to be correct (and suggested me to switch shadow to dh, which will probably be done post-jessie). Looks good to me. Unblocked. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 i have six years of solaris sysadmin experience, from 8->10. i am well qualified to say it is made from bonghits layered on top of bonghits--- End Message ---
Bug#770414: unblock: gtk+3.0/3.14.5-1
Control: tag -1 confirmed On 2014-11-21 04:13, Matt Horan wrote: The issue was fixed in upstream commit d9a433d [1], which applies cleanly to the version in testing (3.14.4-2). If a patch would be preferred over a new version, I can confirm the patch works for me. Yes, please. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 i have six years of solaris sysadmin experience, from 8->10. i am well qualified to say it is made from bonghits layered on top of bonghits -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/406c1aa3a38bd52527d35784c5d32...@hogwarts.powdarrmonkey.net
Processed: Re: Bug#770414: unblock: gtk+3.0/3.14.5-1
Processing control commands: > tag -1 confirmed Bug #770414 [release.debian.org] unblock: gtk+3.0/3.14.5-1 Added tag(s) confirmed. -- 770414: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770414 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b770414.14165755704115.transcr...@bugs.debian.org
Bug#770451: unblock: direwolf/1.0-2
Control: tag -1 moreinfo On 2014-11-21 11:22, Iain R. Learmonth wrote: The version in unstable (1.0-2) fixes RC bug #768223. If the conflicting package is not in Jessie or Sid, why not just break+replace it? -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 i have six years of solaris sysadmin experience, from 8->10. i am well qualified to say it is made from bonghits layered on top of bonghits -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/044459056b6a9f6fdc27a542dec13...@hogwarts.powdarrmonkey.net
Processed: Re: Bug#770451: unblock: direwolf/1.0-2
Processing control commands: > tag -1 moreinfo Bug #770451 [release.debian.org] unblock: direwolf/1.0-2 Added tag(s) moreinfo. -- 770451: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770451 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b770451.14165754833705.transcr...@bugs.debian.org
Bug#770439: marked as done (unblock: neutron/2014.1.3-6 (CVE-2014-7821 fix: DoS through invalid DNS configuration))
Your message dated Fri, 21 Nov 2014 13:10:05 +
with message-id
and subject line Re: Bug#770439: unblock: neutron/2014.1.3-7 (CVE-2014-7821
fix: DoS through invalid DNS configuration)
has caused the Debian Bug report #770439,
regarding unblock: neutron/2014.1.3-6 (CVE-2014-7821 fix: DoS through invalid
DNS configuration)
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
770439: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770439
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: important
User: release.debian@packages.debian.org
Usertags: unblock
Dear release team,
Version 2014.1.3-6 of Neutron include a fix for CVE-2014-7821: DoS through
invalid DNS configuration. The fix is really minimal, it's basically a change
in the regexp that was taking too long to validate input. Debdiff attached.
Please unblock neutron/2014.1.3-6.
Cheers,
Thomas Goirand (zigo)
diff -Nru neutron-2014.1.3/debian/changelog neutron-2014.1.3/debian/changelog
--- neutron-2014.1.3/debian/changelog 2014-10-25 08:09:28.0 +
+++ neutron-2014.1.3/debian/changelog 2014-11-21 08:26:09.0 +
@@ -1,3 +1,10 @@
+neutron (2014.1.3-6) unstable; urgency=high
+
+ * CVE-2014-7821: DoS through invalid DNS configuration. Applied upstream
+patch: Fix hostname regex pattern (Closes: #770431).
+
+ -- Thomas Goirand Fri, 21 Nov 2014 16:25:18 +0800
+
neutron (2014.1.3-5) unstable; urgency=medium
* Adds Danish debconf translations thanks to Joe Dalton
diff -Nru neutron-2014.1.3/debian/patches/cve-2014-7821_DoS_through_invalid_DNS_configuration_icehouse.patch neutron-2014.1.3/debian/patches/cve-2014-7821_DoS_through_invalid_DNS_configuration_icehouse.patch
--- neutron-2014.1.3/debian/patches/cve-2014-7821_DoS_through_invalid_DNS_configuration_icehouse.patch 1970-01-01 00:00:00.0 +
+++ neutron-2014.1.3/debian/patches/cve-2014-7821_DoS_through_invalid_DNS_configuration_icehouse.patch 2014-11-21 08:26:09.0 +
@@ -0,0 +1,38 @@
+Description: CVE-2014-7821: Fix hostname regex pattern
+ Current hostname_pattern regex complexity grows exponentially when given a
+ string of just digits, which can be exploited to cause neutron-server to
+ freeze.
+Author: John Perkins
+Origin: upstream, https://review.openstack.org/#/c/135624/
+Date: Mon Oct 6 16:24:57 2014 -0500
+Bug-Debian: https://bugs.debian.org/770431
+Bug-Ubuntu: https://launchpad.net/bugs/1378450
+Last-Update: 2014-11-21
+
+Index: neutron/neutron/api/v2/attributes.py
+===
+--- neutron.orig/neutron/api/v2/attributes.py 2014-10-25 16:10:17.0 +0800
neutron/neutron/api/v2/attributes.py 2014-11-21 16:22:21.0 +0800
+@@ -537,8 +537,8 @@
+ return [data]
+
+
+-HOSTNAME_PATTERN = ("(?=^.{1,254}$)(^(?:(?!\d+\.|-)[a-zA-Z0-9_\-]"
+-"{1,63}(?--- End Message ---
--- Begin Message ---
On 2014-11-21 11:09, Thomas Goirand wrote:
Version 2014.1.3-6 of Neutron include a fix for CVE-2014-7821: DoS
through
invalid DNS configuration. The fix is really minimal, it's basically a
change
in the regexp that was taking too long to validate input. Debdiff
attached.
Please unblock neutron/2014.1.3-6.
Cheers,
Thomas Goirand (zigo)
Hi,
I've added another patch to remove the use of PROTOCOL_SSLv3 in oslo
incubator, included in Neutron, since that support is gone from Debian
Sid. I'm not sure if Neutron uses that, but I just want to be safe
here.
I've attached the new debdiff. (note that all unit tests but one Cisco
related one are passing, just like before...)
Unblocked.
--
Jonathan Wiltshire j...@debian.org
Debian Developer http://people.debian.org/~jmw
4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51
i have six years of solaris sysadmin experience, from
8->10. i am well qualified to say it is made from bonghits
layered on top of bonghits--- End Message ---
Bug#770446: marked as done (unblock: oslo.messaging/1.4.0.0+really+1.3.1-2)
Your message dated Fri, 21 Nov 2014 13:08:43 +
with message-id
and subject line Re: Bug#770446: unblock: oslo.messaging/1.4.0.0+really+1.3.1-2
has caused the Debian Bug report #770446,
regarding unblock: oslo.messaging/1.4.0.0+really+1.3.1-2
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
770446: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770446
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Dear release team,
Since the last upload of Python and OpenSSL, oslo.messaging is broken,
because we've removed PROTOCOL_SSLv3 (almost certainly, the intend is to
prevent protocol downgrade attacks).
My last upload of oslo.messaging removes the use of PROTOCOL_SSLv3, which
make the package work again. Debdiff attached, as always...
Please unblock oslo.messaging/1.4.0.0+really+1.3.1-2.
Cheers,
Thomas Goirand (zigo)
diff -Nru oslo.messaging-1.4.0.0+really+1.3.1/debian/changelog oslo.messaging-1.4.0.0+really+1.3.1/debian/changelog
--- oslo.messaging-1.4.0.0+really+1.3.1/debian/changelog 2014-09-21 16:28:27.0 +
+++ oslo.messaging-1.4.0.0+really+1.3.1/debian/changelog 2014-11-21 09:53:40.0 +
@@ -1,3 +1,9 @@
+oslo.messaging (1.4.0.0+really+1.3.1-2) unstable; urgency=medium
+
+ * Removed the use of PROTOCOL_SSLv3 which is gone from Python.
+
+ -- Thomas Goirand Fri, 21 Nov 2014 09:50:49 +
+
oslo.messaging (1.4.0.0+really+1.3.1-1) unstable; urgency=medium
* Repairing wrong upload to unstable (this was due to a wrong release of
diff -Nru oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/remove-PROTOCOL_SSLv3.patch oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/remove-PROTOCOL_SSLv3.patch
--- oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/remove-PROTOCOL_SSLv3.patch 1970-01-01 00:00:00.0 +
+++ oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/remove-PROTOCOL_SSLv3.patch 2014-11-21 09:53:40.0 +
@@ -0,0 +1,19 @@
+Description: Remove the use of ssl.PROTOCOL_SSLv3
+ The ssl.PROTOCOL_SSLv3 support has been removed from Python and OpenSSL,
+ which broke completely oslo.messaging. This patch fixes it.
+Author: Thomas Goirand
+Forwarded: https://review.openstack.org/136278
+Last-Update: 2014-11-21
+
+--- oslo.messaging-1.4.0.0+really+1.3.1.orig/oslo/messaging/_drivers/impl_rabbit.py
oslo.messaging-1.4.0.0+really+1.3.1/oslo/messaging/_drivers/impl_rabbit.py
+@@ -477,8 +477,7 @@ class Connection(object):
+ # FIXME(markmc): use oslo sslutils when it is available as a library
+ _SSL_PROTOCOLS = {
+ "tlsv1": ssl.PROTOCOL_TLSv1,
+-"sslv23": ssl.PROTOCOL_SSLv23,
+-"sslv3": ssl.PROTOCOL_SSLv3
++"sslv23": ssl.PROTOCOL_SSLv23
+ }
+
+ try:
diff -Nru oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/series oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/series
--- oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/series 2014-09-21 16:28:27.0 +
+++ oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/series 2014-11-21 09:53:40.0 +
@@ -1 +1,2 @@
no-intersphinx.patch
+remove-PROTOCOL_SSLv3.patch
--- End Message ---
--- Begin Message ---
On 2014-11-21 10:22, Thomas Goirand wrote:
Since the last upload of Python and OpenSSL, oslo.messaging is broken,
because we've removed PROTOCOL_SSLv3 (almost certainly, the intend is
to
prevent protocol downgrade attacks).
My last upload of oslo.messaging removes the use of PROTOCOL_SSLv3,
which
make the package work again. Debdiff attached, as always...
Please unblock oslo.messaging/1.4.0.0+really+1.3.1-2.
Unblocked.
--
Jonathan Wiltshire j...@debian.org
Debian Developer http://people.debian.org/~jmw
4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51
i have six years of solaris sysadmin experience, from
8->10. i am well qualified to say it is made from bonghits
layered on top of bonghits--- End Message ---
Bug#770443: marked as done (nmu: inkscape_0.91~pre2-1)
Your message dated Fri, 21 Nov 2014 13:07:37 + with message-id and subject line Re: Bug#770443: nmu: inkscape_0.91~pre2-1 has caused the Debian Bug report #770443, regarding nmu: inkscape_0.91~pre2-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 770443: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770443 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal Tags: experimental User: release.debian@packages.debian.org Usertags: binnmu nmu inkscape_0.91~pre2-1 . ALL . experimental . -m "Rebuild against imagemagick 6.8" No longer installable due to dependecies on libmagick*5. Andreas --- End Message --- --- Begin Message --- On 2014-11-21 09:44, Andreas Beckmann wrote: Package: release.debian.org Severity: normal Tags: experimental User: release.debian@packages.debian.org Usertags: binnmu nmu inkscape_0.91~pre2-1 . ALL . experimental . -m "Rebuild against imagemagick 6.8" No longer installable due to dependecies on libmagick*5. Scheduled. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 i have six years of solaris sysadmin experience, from 8->10. i am well qualified to say it is made from bonghits layered on top of bonghits--- End Message ---
Bug#770414: unblock: gtk+3.0/3.14.5-1
On 2014-11-21 12:08, Andreas Henriksson wrote: I can't speak for pochus intentions with the upload, but he should be well aware of our freeze situation Well indeed. :-) which probably meant he intended it to go into Jessie. I don't see any reason not to include it in Jessie so ACK from me. As you know, the question isn't really "why shouldn't it be included", more the positive reverse. Anyway, let's see... Regards, Adam -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/535aa615cd45d96c5bc753b38e2ea...@mail.adsl.funky-badger.org
Bug#770414: unblock: gtk+3.0/3.14.5-1
Hello! On Fri, Nov 21, 2014 at 05:51:36AM +, Adam D. Barratt wrote: > Control: tags -1 + moreinfo [...] > That would need someone to provide the information requested in > https://release.debian.org/jessie/freeze_policy.html#getting-unblocks Matt is aware of this information already. Hopefully he'll follow up with additional information as requested soon. I'd expect that a filtered diff would be appreciated so the release-team don't have to look at for example the changes only relevant for Windows and OS X. > > Personally, I'd also like some input from the maintainers, as it's not > at all clear to me whether they were intending to try and get that > version in to jessie. I can't speak for pochus intentions with the upload, but he should be well aware of our freeze situation which probably meant he intended it to go into Jessie. I don't see any reason not to include it in Jessie so ACK from me. Regards, Andreas Henriksson -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141121120813.ga25...@fatal.se
Bug#770451: unblock: direwolf/1.0-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package direwolf The version in unstable (1.0-2) fixes RC bug #768223. unblock direwolf/1.0-2 -- System Information: Debian Release: 7.6 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686-bigmem (SMP w/1 CPU core) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash diff -Nru direwolf-1.0/debian/changelog direwolf-1.0/debian/changelog --- direwolf-1.0/debian/changelog 2014-10-11 18:54:53.0 +0100 +++ direwolf-1.0/debian/changelog 2014-11-07 13:41:03.0 + @@ -1,3 +1,10 @@ +direwolf (1.0-2) unstable; urgency=medium + + * No longer install the ll2utm or utm2ll binaries or man pages. (Closes: +#768223) + + -- Iain R. Learmonth Fri, 07 Nov 2014 13:40:27 + + direwolf (1.0-1) unstable; urgency=medium * Initial release. (Closes: #759639) diff -Nru direwolf-1.0/debian/manpages/ll2utm.1 direwolf-1.0/debian/manpages/ll2utm.1 --- direwolf-1.0/debian/manpages/ll2utm.1 2014-10-11 18:07:09.0 +0100 +++ direwolf-1.0/debian/manpages/ll2utm.1 1970-01-01 01:00:00.0 +0100 @@ -1,36 +0,0 @@ - -.TH ll2utm 1 "September 2014" "ll2utm(1)" "Ham Radio Applications" - -.SH NAME -\fBll2utm\fR \- Latitude / Longitude to UTM conversion - -.SH SYNOPSIS - -\fBll2utm\fR \fBlatitude\fR \fBlongitude\fR - -.SH OPTIONS - -The latitude and longitude must be in decimal degrees. Use negative for south or west. - -.SH "AUTHORS" - -Dire Wolf is Copyright \(co 2011-2014 John Langner WB2OSZ\&. - -.SH "COPYRIGHT" -.br -This manual page is Copyright \(co 2014 Iain R. Learmonth\&. -.br -.PP -This manual page was written for the Debian system (but may be used by others)\&. -.PP -Permission is granted to copy, distribute and/or modify this document under the terms of the GNU General Public License, Version 2 or (at your option) any later version published by the Free Software Foundation\&. -.PP -On Debian systems, the complete text of the GNU General Public License can be found in -/usr/share/common\-licenses/GPL-2\&. - -.SH "SEE ALSO" - -direwolf(1), utm2ll(1) - -.sp - diff -Nru direwolf-1.0/debian/manpages/utm2ll.1 direwolf-1.0/debian/manpages/utm2ll.1 --- direwolf-1.0/debian/manpages/utm2ll.1 2014-10-11 18:07:09.0 +0100 +++ direwolf-1.0/debian/manpages/utm2ll.1 1970-01-01 01:00:00.0 +0100 @@ -1,41 +0,0 @@ - -.TH utm2ll 1 "September 2014" "utm2ll(1)" "Ham Radio Applications" - -.SH NAME -\fButm2ll\fR \- UTM to Latitude / Longitude conversion - -.SH SYNOPSIS - -\fButm2ll\fR \fBzone\fR \fBeasting\fR \fBnorthing\fR - -.SH OPTIONS - -.PP -zone \- UTM zone 1 thru 60 with optional latitudinal band -.PP -easting \- x coordinate in meters -.PP -northing \- y coordinate in meters - -.SH "AUTHORS" - -Dire Wolf is Copyright \(co 2011-2014 John Langner WB2OSZ\&. - -.SH "COPYRIGHT" -.br -This manual page is Copyright \(co 2014 Iain R. Learmonth\&. -.br -.PP -This manual page was written for the Debian system (but may be used by others)\&. -.PP -Permission is granted to copy, distribute and/or modify this document under the terms of the GNU General Public License, Version 2 or (at your option) any later version published by the Free Software Foundation\&. -.PP -On Debian systems, the complete text of the GNU General Public License can be found in -/usr/share/common\-licenses/GPL-2\&. - -.SH "SEE ALSO" - -direwolf(1), ll2utm(1) - -.sp - diff -Nru direwolf-1.0/debian/patches/makefile_install.patch direwolf-1.0/debian/patches/makefile_install.patch --- direwolf-1.0/debian/patches/makefile_install.patch 2014-10-11 18:07:09.0 +0100 +++ direwolf-1.0/debian/patches/makefile_install.patch 2014-11-07 13:32:33.0 + @@ -35,8 +35,8 @@ + install decode_aprs debian/direwolf/usr/bin + install text2tt debian/direwolf/usr/bin + install tt2text debian/direwolf/usr/bin -+ install ll2utm debian/direwolf/usr/bin -+ install utm2ll debian/direwolf/usr/bin ++ #install ll2utm debian/direwolf/usr/bin ++ #install utm2ll debian/direwolf/usr/bin + install aclients debian/direwolf/usr/bin + install -D --mode=644 tocalls.txt debian/direwolf-docs/usr/share/direwolf/tocalls.txt + install -D --mode=644 symbols-new.txt debian/direwolf-docs/usr/share/direwolf/symbols-new.txt
Bug#770439: unblock: neutron/2014.1.3-7 (CVE-2014-7821 fix: DoS through invalid DNS configuration)
On 11/21/2014 05:18 PM, Thomas Goirand wrote:
> Package: release.debian.org
> Severity: important
> User: release.debian@packages.debian.org
> Usertags: unblock
>
> Dear release team,
>
> Version 2014.1.3-6 of Neutron include a fix for CVE-2014-7821: DoS through
> invalid DNS configuration. The fix is really minimal, it's basically a change
> in the regexp that was taking too long to validate input. Debdiff attached.
>
> Please unblock neutron/2014.1.3-6.
>
> Cheers,
>
> Thomas Goirand (zigo)
Hi,
I've added another patch to remove the use of PROTOCOL_SSLv3 in oslo
incubator, included in Neutron, since that support is gone from Debian
Sid. I'm not sure if Neutron uses that, but I just want to be safe here.
I've attached the new debdiff. (note that all unit tests but one Cisco
related one are passing, just like before...)
Cheers,
Thomas Goirand (zigo)
diff -Nru neutron-2014.1.3/debian/changelog neutron-2014.1.3/debian/changelog
--- neutron-2014.1.3/debian/changelog 2014-10-25 08:09:28.0 +
+++ neutron-2014.1.3/debian/changelog 2014-11-21 10:37:54.0 +
@@ -1,3 +1,16 @@
+neutron (2014.1.3-7) unstable; urgency=high
+
+ * Add a patch to not use PROTOCOL_SSLv3 which is gone from Python in Sid.
+
+ -- Thomas Goirand Fri, 21 Nov 2014 10:37:07 +
+
+neutron (2014.1.3-6) unstable; urgency=high
+
+ * CVE-2014-7821: DoS through invalid DNS configuration. Applied upstream
+patch: Fix hostname regex pattern (Closes: #770431).
+
+ -- Thomas Goirand Fri, 21 Nov 2014 16:25:18 +0800
+
neutron (2014.1.3-5) unstable; urgency=medium
* Adds Danish debconf translations thanks to Joe Dalton
diff -Nru
neutron-2014.1.3/debian/patches/cve-2014-7821_DoS_through_invalid_DNS_configuration_icehouse.patch
neutron-2014.1.3/debian/patches/cve-2014-7821_DoS_through_invalid_DNS_configuration_icehouse.patch
---
neutron-2014.1.3/debian/patches/cve-2014-7821_DoS_through_invalid_DNS_configuration_icehouse.patch
1970-01-01 00:00:00.0 +
+++
neutron-2014.1.3/debian/patches/cve-2014-7821_DoS_through_invalid_DNS_configuration_icehouse.patch
2014-11-21 10:37:54.0 +
@@ -0,0 +1,38 @@
+Description: CVE-2014-7821: Fix hostname regex pattern
+ Current hostname_pattern regex complexity grows exponentially when given a
+ string of just digits, which can be exploited to cause neutron-server to
+ freeze.
+Author: John Perkins
+Origin: upstream, https://review.openstack.org/#/c/135624/
+Date: Mon Oct 6 16:24:57 2014 -0500
+Bug-Debian: https://bugs.debian.org/770431
+Bug-Ubuntu: https://launchpad.net/bugs/1378450
+Last-Update: 2014-11-21
+
+Index: neutron/neutron/api/v2/attributes.py
+===
+--- neutron.orig/neutron/api/v2/attributes.py 2014-10-25 16:10:17.0
+0800
neutron/neutron/api/v2/attributes.py 2014-11-21 16:22:21.0
+0800
+@@ -537,8 +537,8 @@
+ return [data]
+
+
+-HOSTNAME_PATTERN = ("(?=^.{1,254}$)(^(?:(?!\d+\.|-)[a-zA-Z0-9_\-]"
+-"{1,63}(?
+Forwarded: no
+Last-Update: 2014-11-21
+
+--- neutron-2014.1.3.orig/neutron/openstack/common/sslutils.py
neutron-2014.1.3/neutron/openstack/common/sslutils.py
+@@ -80,8 +80,7 @@ def wrap(sock):
+
+ _SSL_PROTOCOLS = {
+ "tlsv1": ssl.PROTOCOL_TLSv1,
+-"sslv23": ssl.PROTOCOL_SSLv23,
+-"sslv3": ssl.PROTOCOL_SSLv3
++"sslv23": ssl.PROTOCOL_SSLv23
+ }
+
+ try:
diff -Nru neutron-2014.1.3/debian/patches/series
neutron-2014.1.3/debian/patches/series
--- neutron-2014.1.3/debian/patches/series 2014-10-25 08:09:28.0
+
+++ neutron-2014.1.3/debian/patches/series 2014-11-21 10:37:54.0
+
@@ -5,3 +5,5 @@
Properly_apply_column_default_in_migration_pool_monitor_status.patch
#sane-defaults-for-ml2_conf.ini.patch
#sane-defaults-for-dhcp_agent.ini.patch
+cve-2014-7821_DoS_through_invalid_DNS_configuration_icehouse.patch
+do-not-use-PROTOCOL_SSLv3.patch
Bug#770446: unblock: oslo.messaging/1.4.0.0+really+1.3.1-2
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Dear release team,
Since the last upload of Python and OpenSSL, oslo.messaging is broken,
because we've removed PROTOCOL_SSLv3 (almost certainly, the intend is to
prevent protocol downgrade attacks).
My last upload of oslo.messaging removes the use of PROTOCOL_SSLv3, which
make the package work again. Debdiff attached, as always...
Please unblock oslo.messaging/1.4.0.0+really+1.3.1-2.
Cheers,
Thomas Goirand (zigo)
diff -Nru oslo.messaging-1.4.0.0+really+1.3.1/debian/changelog oslo.messaging-1.4.0.0+really+1.3.1/debian/changelog
--- oslo.messaging-1.4.0.0+really+1.3.1/debian/changelog 2014-09-21 16:28:27.0 +
+++ oslo.messaging-1.4.0.0+really+1.3.1/debian/changelog 2014-11-21 09:53:40.0 +
@@ -1,3 +1,9 @@
+oslo.messaging (1.4.0.0+really+1.3.1-2) unstable; urgency=medium
+
+ * Removed the use of PROTOCOL_SSLv3 which is gone from Python.
+
+ -- Thomas Goirand Fri, 21 Nov 2014 09:50:49 +
+
oslo.messaging (1.4.0.0+really+1.3.1-1) unstable; urgency=medium
* Repairing wrong upload to unstable (this was due to a wrong release of
diff -Nru oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/remove-PROTOCOL_SSLv3.patch oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/remove-PROTOCOL_SSLv3.patch
--- oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/remove-PROTOCOL_SSLv3.patch 1970-01-01 00:00:00.0 +
+++ oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/remove-PROTOCOL_SSLv3.patch 2014-11-21 09:53:40.0 +
@@ -0,0 +1,19 @@
+Description: Remove the use of ssl.PROTOCOL_SSLv3
+ The ssl.PROTOCOL_SSLv3 support has been removed from Python and OpenSSL,
+ which broke completely oslo.messaging. This patch fixes it.
+Author: Thomas Goirand
+Forwarded: https://review.openstack.org/136278
+Last-Update: 2014-11-21
+
+--- oslo.messaging-1.4.0.0+really+1.3.1.orig/oslo/messaging/_drivers/impl_rabbit.py
oslo.messaging-1.4.0.0+really+1.3.1/oslo/messaging/_drivers/impl_rabbit.py
+@@ -477,8 +477,7 @@ class Connection(object):
+ # FIXME(markmc): use oslo sslutils when it is available as a library
+ _SSL_PROTOCOLS = {
+ "tlsv1": ssl.PROTOCOL_TLSv1,
+-"sslv23": ssl.PROTOCOL_SSLv23,
+-"sslv3": ssl.PROTOCOL_SSLv3
++"sslv23": ssl.PROTOCOL_SSLv23
+ }
+
+ try:
diff -Nru oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/series oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/series
--- oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/series 2014-09-21 16:28:27.0 +
+++ oslo.messaging-1.4.0.0+really+1.3.1/debian/patches/series 2014-11-21 09:53:40.0 +
@@ -1 +1,2 @@
no-intersphinx.patch
+remove-PROTOCOL_SSLv3.patch
Bug#770443: nmu: inkscape_0.91~pre2-1
Package: release.debian.org Severity: normal Tags: experimental User: release.debian@packages.debian.org Usertags: binnmu nmu inkscape_0.91~pre2-1 . ALL . experimental . -m "Rebuild against imagemagick 6.8" No longer installable due to dependecies on libmagick*5. Andreas -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141121094446.12557.92961.report...@zam581.zam.kfa-juelich.de
Processed: severity of 770439 is normal
Processing commands for cont...@bugs.debian.org: > # unblock requests are not > normal > severity 770439 normal Bug #770439 [release.debian.org] unblock: neutron/2014.1.3-6 (CVE-2014-7821 fix: DoS through invalid DNS configuration) Severity set to 'normal' from 'important' > thanks Stopping processing here. Please contact me if you need assistance. -- 770439: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770439 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.141656218211066.transcr...@bugs.debian.org
Bug#769612: unblock: bcache-tools/1.0.7-1
hi, thanks for taking care of the release! On Sun, Nov 16, 2014 at 06:11:38PM +0100, intrigeri wrote: > Control: tag -1 + moreinfo > > Hi Filippo, hi bcache-tools maintainers, > > [I'm not on the release team, just trying to give a hand.] > > Filippo Giunchedi wrote (15 Nov 2014 00:30:48 GMT) : > > This package didn't make it in time for the freeze, however jessie ships > > with a > > bcache-capable kernel so I think it is important to have userspace tools > > available. > > I acknowledge that giving Debian Jessie users the means to use bcache > feels somewhat important strategically, which *might* be a good enough > reason to make an exception to the freeze policy on this one. > > On the other hand: > > * Is there any strong reason why this use case cannot be addressed > via jessie-backports? (if it were *that* important to have in > Jessie, I guess the maintainers would probably have had it > uploaded way earlier) Yeah backports would work in this case > * This package was accepted into Debian for the first time less than > 3 weeks ago. What kind of testing has it seen? some debian users are running bcache-tools even now, https://qa.debian.org/popcon.php?package=bcache-tools it has been uploaded to fedora in may 2014, https://admin.fedoraproject.org/pkgdb/package/bcache-tools/ anyways, wheezy-backports will do thanks, filippo -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141121092621.ge16...@esaurito.net
Bug#770439: unblock: neutron/2014.1.3-6 (CVE-2014-7821 fix: DoS through invalid DNS configuration)
Package: release.debian.org
Severity: important
User: release.debian@packages.debian.org
Usertags: unblock
Dear release team,
Version 2014.1.3-6 of Neutron include a fix for CVE-2014-7821: DoS through
invalid DNS configuration. The fix is really minimal, it's basically a change
in the regexp that was taking too long to validate input. Debdiff attached.
Please unblock neutron/2014.1.3-6.
Cheers,
Thomas Goirand (zigo)
diff -Nru neutron-2014.1.3/debian/changelog neutron-2014.1.3/debian/changelog
--- neutron-2014.1.3/debian/changelog 2014-10-25 08:09:28.0 +
+++ neutron-2014.1.3/debian/changelog 2014-11-21 08:26:09.0 +
@@ -1,3 +1,10 @@
+neutron (2014.1.3-6) unstable; urgency=high
+
+ * CVE-2014-7821: DoS through invalid DNS configuration. Applied upstream
+patch: Fix hostname regex pattern (Closes: #770431).
+
+ -- Thomas Goirand Fri, 21 Nov 2014 16:25:18 +0800
+
neutron (2014.1.3-5) unstable; urgency=medium
* Adds Danish debconf translations thanks to Joe Dalton
diff -Nru neutron-2014.1.3/debian/patches/cve-2014-7821_DoS_through_invalid_DNS_configuration_icehouse.patch neutron-2014.1.3/debian/patches/cve-2014-7821_DoS_through_invalid_DNS_configuration_icehouse.patch
--- neutron-2014.1.3/debian/patches/cve-2014-7821_DoS_through_invalid_DNS_configuration_icehouse.patch 1970-01-01 00:00:00.0 +
+++ neutron-2014.1.3/debian/patches/cve-2014-7821_DoS_through_invalid_DNS_configuration_icehouse.patch 2014-11-21 08:26:09.0 +
@@ -0,0 +1,38 @@
+Description: CVE-2014-7821: Fix hostname regex pattern
+ Current hostname_pattern regex complexity grows exponentially when given a
+ string of just digits, which can be exploited to cause neutron-server to
+ freeze.
+Author: John Perkins
+Origin: upstream, https://review.openstack.org/#/c/135624/
+Date: Mon Oct 6 16:24:57 2014 -0500
+Bug-Debian: https://bugs.debian.org/770431
+Bug-Ubuntu: https://launchpad.net/bugs/1378450
+Last-Update: 2014-11-21
+
+Index: neutron/neutron/api/v2/attributes.py
+===
+--- neutron.orig/neutron/api/v2/attributes.py 2014-10-25 16:10:17.0 +0800
neutron/neutron/api/v2/attributes.py 2014-11-21 16:22:21.0 +0800
+@@ -537,8 +537,8 @@
+ return [data]
+
+
+-HOSTNAME_PATTERN = ("(?=^.{1,254}$)(^(?:(?!\d+\.|-)[a-zA-Z0-9_\-]"
+-"{1,63}(?
Bug#770438: unblock: phpmyadmin/4:4.2.12-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hi this is pre-approval request to allow version upgrade for phpMyAdmin. The new upstream version was released yesterday with dozen of security fixes and I think it's better to do full upgrade now than cherry picking individual fixes. The another good reason is that upstream 4.2.x releases are in bug fixing only mode. Upstream changelog: 4.2.12.0 (2014-11-20) - - bug #4574 Blank/white page when JavaScript disabled - - bug #4577 Multi row actions cause full page reloads - - bug ReferenceError: targeurl is not defined - - bug Incorrect text/icon display in Tracking report - - bug #4404 Recordset return from procedure display nothing - - bug #4584 Edit dialog for routines is too long for smaller displays - - bug #4586 Javascript error after moving a column - - bug #4576 Issue with long comments on table columns - - bug #4599 Input field unnecessarily selected on focus - - bug #4602 Exporting selected rows exports all rows of the query - - bug # No insert statement produced in SQL export for queries with alias - - bug #4603 Field disabled when internal relations used - - bug #4596 [security] XSS through exception stack - - bug #4595 [security] Path traversal can lead to leakage of line count - - bug #4578 [security] XSS vulnerability in table print view - - bug #4579 [security] XSS vulnerability in zoom search page - - bug #4594 [security] Path traversal in file inclusion of GIS factory - - bug #4598 [security] XSS in multi submit - - bug #4597 [security] XSS through pma_fontsize cookie 4.2.11.0 (2014-10-31) - - bug ReferenceError: Table_onover is not defined - - bug #4552 Incorrect routines display for database due to case insensitive checks - - bug #4259 reCaptcha sound session expired problem - - bug #4557 PHP fatal error, undefined function __() - - bug #4568 Date displayed incorrectly when charting a timeline - - bug #4571 Database Privileges link does not work - - bug makegrid.js: where_clause is undefined - - bug #4572 missing trailing slash (import and open_basedir) Debdiff filtered from translations and generated changes is attached, it's diffstat is: ChangeLog | 33 README|2 debian/changelog |8 ++ import.php| 11 -- js/common.js |4 - js/jquery/jquery.menuResizer-1.0.js |3 js/makegrid.js|3 js/rte.js |6 + js/sql.js | 13 +++ js/tbl_chart.js |4 - js/tbl_structure.js | 16 libraries/Config.class.php|4 - libraries/DatabaseInterface.class.php |3 libraries/DisplayResults.class.php| 19 +++- libraries/Header.class.php|3 libraries/Theme.class.php |2 libraries/Util.class.php | 18 libraries/core.lib.php|8 +- libraries/display_export.lib.php |8 +- libraries/error_report.lib.php| 15 +++ libraries/gis/GIS_Factory.class.php |4 - libraries/mult_submits.lib.php|7 + libraries/navigation/Nodes/Node_Database.class.php| 18 +++- libraries/navigation/Nodes/Node_Table.class.php | 12 ++- libraries/operations.lib.php |8 +- libraries/plugins/auth/AuthenticationCookie.class.php | 11 +- libraries/relation.lib.php|2 libraries/rte/rte_events.lib.php |9 +- libraries/rte/rte_routines.lib.php|9 +- libraries/sql.lib.php | 69 +- libraries/structure.lib.php |2 libraries/tbl_printview.lib.php |2 libraries/tbl_tracking.lib.php|2 pmd_general.php |2 server_privileges.php |2 tbl_export.php| 20 + tbl_zoom_select.php |2 37 files changed, 280 insertions(+), 84 deletions(-) Potentian unblock line: unblock phpmyadmin/4:4.2.12-1 Thanks - -- Michal Čihař | http://cihar.com | http://blog.cihar.com - -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architect
Processed: your mail
Processing commands for cont...@bugs.debian.org: > tags 767902 -moreinfo Bug #767902 [release.debian.org] unblock: libsdl2-gfx/1.0.1+dfsg-1 Removed tag(s) moreinfo. > thanks Stopping processing here. Please contact me if you need assistance. -- 767902: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=767902 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.141655973626171.transcr...@bugs.debian.org
Bug#767902: please unblock libsdl2-gfx
Control: tags - moreinfo
Hi Jonathan, sorry for the huge debdiff.
The reason is that I stripped the upstream-generated doxygen stuff, part of
this bug.
They ship a minified jquery library, without the source code and the jquery
that is actually in debian/sources/missing-sources *doesn't* reflect the
minified js (doxygen uses a patched jquery version, without the correspondant
source code.)
So I removed all the generated stuff and repacked the source, generating the
documentation at build time.
I also cherry-picked some copyright fixes and wrap and sorted some build depends
diff -Nru libsdl2-gfx-1.0.1/debian/changelog
libsdl2-gfx-1.0.1+dfsg/debian/changelog
--- libsdl2-gfx-1.0.1/debian/changelog 2014-07-26 23:08:43.0 +0200
+++ libsdl2-gfx-1.0.1+dfsg/debian/changelog 2014-10-30 15:04:12.0
+0100
@@ -1,3 +1,14 @@
+libsdl2-gfx (1.0.1+dfsg-1) unstable; urgency=medium
+
+ * Repack without html in the source tree.
+ * Do not symlink jquery from doxygen, this will result in a
+broken documentation. cfr: 736360.
+ * Bump std-version, no changes required.
+ * Update copyright file.
+ * Create docs package with doxygen at build time.
+
+ -- Gianfranco Costamagna Sat, 25 Oct 2014
19:08:30 +0200
+
libsdl2-gfx (1.0.1-1) unstable; urgency=medium
[ Gianfranco Costamagna ]
diff -Nru libsdl2-gfx-1.0.1/debian/control libsdl2-gfx-1.0.1+dfsg/debian/control
--- libsdl2-gfx-1.0.1/debian/control2014-07-26 23:08:13.0 +0200
+++ libsdl2-gfx-1.0.1+dfsg/debian/control 2014-10-30 15:04:12.0
+0100
@@ -1,19 +1,20 @@
Source: libsdl2-gfx
Maintainer: Debian SDL packages maintainers
Uploaders: Felix Geyer ,
- Manuel A. Fernandez Montecelo ,
- Gianfranco Costamagna
+ Manuel A. Fernandez Montecelo ,
+ Gianfranco Costamagna
Section: libs
Priority: optional
-Standards-Version: 3.9.5
-Build-Depends: debhelper (>= 9),
+Standards-Version: 3.9.6
+Build-Depends: autoconf,
+ automake,
+ autotools-dev,
+ debhelper (>= 9),
dh-autoreconf,
libsdl2-dev,
- autotools-dev,
- automake,
- autoconf,
libtool,
pkg-config
+Build-Depends-Indep: doxygen
Vcs-Browser:
http://anonscm.debian.org/gitweb/?p=pkg-sdl/packages/libsdl2-gfx.git
Vcs-Git: git://anonscm.debian.org/pkg-sdl/packages/libsdl2-gfx.git
Homepage: http://www.ferzkopp.net/joomla/content/view/19/14/
@@ -21,8 +22,7 @@
Package: libsdl2-gfx-1.0-0
Architecture: any
Multi-Arch: same
-Depends: ${shlibs:Depends},
- ${misc:Depends}
+Depends: ${misc:Depends}, ${shlibs:Depends}
Pre-Depends: ${misc:Pre-Depends}
Description: drawing and graphical effects extension for SDL2
The SDL2_gfx library is an extension to the SDL2 library which provides
@@ -37,8 +37,7 @@
Architecture: any
Multi-Arch: same
Priority: extra
-Depends: ${misc:Depends},
- libsdl2-gfx-1.0-0 (= ${binary:Version})
+Depends: libsdl2-gfx-1.0-0 (= ${binary:Version}), ${misc:Depends}
Description: debugging symbols for SDL2_gfx
The SDL2_gfx library is an extension to the SDL2 library which provides
basic antialiased drawing routines such as lines, circles or polygons,
@@ -51,9 +50,7 @@
Architecture: any
Multi-Arch: same
Section: libdevel
-Depends: ${misc:Depends},
- libsdl2-gfx-1.0-0 (= ${binary:Version}),
- libsdl2-dev
+Depends: libsdl2-dev, libsdl2-gfx-1.0-0 (= ${binary:Version}), ${misc:Depends}
Suggests: libsdl2-gfx-doc
Description: development files for SDL2_gfx
The SDL2_gfx library is an extension to the SDL2 library which provides
@@ -68,7 +65,7 @@
Architecture: all
Section: doc
Priority: extra
-Depends: ${misc:Depends}, libjs-jquery
+Depends: ${misc:Depends}
Recommends: libsdl2-gfx-dev (= ${binary:Version})
Description: documentation files for SDL2_gfx
The SDL2_gfx library is an extension to the SDL2 library which provides
@@ -77,4 +74,3 @@
image filters.
.
This package contains the documentation to program with the SDL2_gfx library.
-
diff -Nru libsdl2-gfx-1.0.1/debian/copyright
libsdl2-gfx-1.0.1+dfsg/debian/copyright
--- libsdl2-gfx-1.0.1/debian/copyright 2014-07-26 22:38:28.0 +0200
+++ libsdl2-gfx-1.0.1+dfsg/debian/copyright 2014-10-30 14:45:28.0
+0100
@@ -1,9 +1,78 @@
Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
Source: http://www.ferzkopp.net/joomla/content/view/19/14/
Upstream-Contact: Andreas Schiffler
+Files-Excluded: Docs/html/jquery.js
Files: *
-Copyright: Copyright 2001-2012 Andreas Schiffler
+Copyright: 2001-2012 Andreas Schiffler
+License: zlib/libpng
+
+Files: acinclude/pkg.m4
+ test/acinclude.m4
+Copyright: 2004 Scott James Remnant .
+License: GPL-2+ with exception or zlib/libpng
+ This program is free software; you can redistribute it and/or modify
+ it under the terms of the GNU General Public License as published by
+ the Free Software Foundation; either version 2 of the License, or
+ (at your option) any later version.
+ .
+ This program is distributed in the ho
Bug#769634: unblock: picosat/960-1 and undertaker/1.6-2
On Thu, Nov 20, 2014 at 23:08:23 +, Jonathan Wiltshire wrote: > On Sat, Nov 15, 2014 at 08:23:03AM +, Michael Tautschnig wrote: [...] > > While I am aware that new upstream releases are not desirable at this > > point, I > > would ask to consider this update to picosat nevertheless as the upstream > > changes are bugfixes only and picosat has the science-logic meta package as > > sole > > rdepends, thus making this a low-risk step. > > It's not awesome, but not terrible. Unblocked. > Thanks a lot for the careful work and apologies for this extra post-freeze burden. It's great to see such a well-managed release, Michael pgp9Om4QCNnYQ.pgp Description: PGP signature
