Bug#851102: unblock: petsc/3.7.5+dfsg1-2

[Drew Parsons]

Drew Parsons wrote:
> Please unblock package petsc
> 
> Upstream has just released patch version 3.7.5, fixing various bugs.
...
> 3.7.5+dfsg1-1 is already uploaded to experimental, ready to be
> dropped into unstable as petsc/3.7.5+dfsg1-2 with your agreement.
> 
> It would be a good service for the users of stretch if they had
> access
> to the bug fixes provided in this release.
> 
> unblock petsc/3.7.5+dfsg1-2

petsc 3.7.4+dfsg1-9 is now migrated to testing (fixing RC bug #850599
in stretch).  That clears the way for updating petsc to 3.7.5 for the
stretch release. 

I'll upload petsc 3.7.5+dfsg1-2 to unstable in the coming 24 hours once
the migration of 3.7.4+dfsg1-9 to testing has been pushed to servers.

Thanks,
Drew

Bug#851553: unblock: jabberd2/2.4.0-3

[Simon Josefsson]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please consider unblocking jabberd2.

It fell out of testing in November due to an OpenSSL 1.1
incompatibility which caused a FTBFS.  The package in unstable that was
uploaded late December changed Build-Depends to resolve that bug, and
also fixed the default-libmysqlclient-dev concern.  The bug report
and entire patch that was applied is found here:

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=828360#33

The changelog entry is:

jabberd2 (2.4.0-3) unstable; urgency=medium

  * Build-Depends on default-libmysqlclient-dev. Closes: #845857.
  * Build-Depends on libssl1.0-dev|libssl-dev until
jabberd2 builds with OpenSSL 1.1.  Closes: #828360.

 -- Simon Josefsson   Tue, 27 Dec 2016 11:06:52 +0100

Below is a debdiff output between 2.4.0-2 (that was in testing) and
2.4.0-3 (which is in unstable since late December).

unblock jabberd2/2.4.0-3

Thanks,
/Simon



jas@latte:~/src$ debdiff jabberd2_2.4.0-2_amd64.changes 
jabberd2_2.4.0-3_amd64.changes
[The following lists of changes regard files as different if they have
different names, permissions or owners.]

Files in second .changes but not in first
-
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/01/1c851143cbc59927438ca429356f4f8ff283bf.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/03/348f41420c94b2f6547a2c432a9a72576ad056.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/03/8cc2732d77cf9f942477a83b5e6926242cd7f2.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/0b/c8f8f502d00e91b6ea0d7ccf944bb1203180fa.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/0e/98c14e16ccd6b60fa76e12211f99727d495bca.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/13/f69db7535a9701c43ece7bfc60601cc92facdc.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/19/7598de9178f70c985cf38da0940c401c1edf3d.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/1a/d233f1efb87f565424c3ef91599f55bc78dfab.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/20/4836c2f55a9255399c8518f8e38020445f1c9f.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/22/f1d617952b6b0a5f9efad4a4718ed83b309c54.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/2d/cfaeea2d56cec7e15984d5e7882167f4e16a4b.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/2d/d7cc342bc13fc007e6f2ec1bf0de0dd77ebc2a.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/3a/db4421d15ab569f84b6b7992a7e2a9cb17659e.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/3c/f0507b963ffe26cd1f63324023c8f4b7be39fd.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/46/4bd4490e03e1308f0b15b47ce012a7385f1ef6.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/4a/864877850dd1aa326c34d74362805e007be5eb.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/57/57ef9c0a9a84ff2b85654bc1088f2f2cbd1866.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/57/ff726c1ea74150fee6ebd18c43f1644a9c4f6e.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/59/2cddf685686dcee5fba8ac1398b45fe7138dc2.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/5f/3aa7afc98e5d12d2437ba063667e28b33f7b15.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/69/ea7e0cf3605759f6d610abb7e47cedf74f5c09.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/6d/7292d9f23976ee6d6bd7678eab46d09d1fd871.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/89/006bb189c2bacf1069d96a875bc401023618fa.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/89/47fa0389c2160872d01cd7f61973f3637e59a0.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/8f/04c46bd7a6d55ebf5efbe84774d037a57f7ac9.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/91/b71f4a2197b48905d6e28949febbb8222e306f.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/97/810216dc3699c110de3d4147c6774f2a79a6d7.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/99/26e527f7e8be8d19f5535bf64d98b421b5fef8.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/a4/1ee8d286672b7f1c2a5d5a2b43029f86477af6.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/a4/c0198701db39f193c00338d93d962dee8b6f03.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/a5/8cf609d73396150da3fb18c2edf6649d83f691.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/a8/2a6821d8800f7beec736e377202e2cccf62f57.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/ad/fea286bfc9150b7d93a6469ca019707dc8dbd4.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/b6/01afdf6d822e9b74b5183180bd9c57e87ba1e5.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/c5/74e1ea9f63bee7580adba388ca67d4dd1f969c.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/c8/f87909f10bb643cd0879b172f481c6a070d289.debug
-rw-r--r--  root/root   
/usr/lib/debug/.build-id/ca/882d5f215bdbfd2292cb22644976fd9da467e5.debug
-rw-r--r--  root/root   

Bug#851530: marked as done (Release of base-files for stretch)

[Debian Bug Tracking System]

Your message dated Mon, 16 Jan 2017 07:13:00 +
with message-id <4e17f270-a891-9a82-c4ce-fc220ac4f...@thykier.net>
and subject line Re: Bug#851530: Release of base-files for stretch
has caused the Debian Bug report #851530,
regarding Release of base-files for stretch
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
851530: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851530
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: wishlist

Dear Release Managers:

I've just uploaded a base-files version which should be suitable
for stretch when it becomes stable.

I'd like the 10-days period to be reduced a little bit, if only
because d-i people are already making beta releases.

The debdiff is attached. If you want to double-check, just look at the
debdiff between version 7.10 and version 8.

Thanks.
--- End Message ---
--- Begin Message ---
Santiago Vila:
> Package: release.debian.org
> Severity: wishlist
> 
> Dear Release Managers:
> 
> I've just uploaded a base-files version which should be suitable
> for stretch when it becomes stable.
> 
> I'd like the 10-days period to be reduced a little bit, if only
> because d-i people are already making beta releases.
> 
> The debdiff is attached. If you want to double-check, just look at the
> debdiff between version 7.10 and version 8.
> 
> Thanks.
> 

Aged, thanks.

~Niels--- End Message ---

Re: Debian-8.6

[Konstantin Khomoutov]

On Sun, 15 Jan 2017 22:05:53 + (UTC)
 wrote:

> Why is Firefox 45 esr so buggy and freezes up in Debian 8.6 ? No add
> ons or extensions are installed. Iceweazel was bad, but the outdated
> Firefox makes Debian unusable when using the internet. Debian kde and
> gnome notify me when updates are ready, why not cinnamon or xfce.
> Even after I install gnome-packagekit there is still no notification
> of updates. This is very annoying when I want to use cinnamon and two
> days later discover that there are over a 100 updates waiting to be
> installed and I have to install something that should have been
> installed by default.

Please use up-to-date firefox packages from http://mozilla.debian.net.

In either case, such questions are unfit for the debian-release mailing
list; please use debian-users next time.

Missing live images

[Daniel Reichelt]

Hi,

these images are missing from [1]:

debian-live-8.7.0-amd64-lxde-desktop+nonfree.iso
debian-live-8.7.0-amd64-mate-desktop+nonfree.iso


I hope I got the correct mailing lists, if not and someone knows of a
better destination, please forward this message :-)


Thanks!

Daniel



[1]
http://cdimage.debian.org/cdimage/unofficial/non-free/cd-including-firmware/8.7.0-live+nonfree/amd64/iso-hybrid/



signature.asc
Description: OpenPGP digital signature

Bug#850094: Please do not remove packages which FTBFS randomly yet

[Santiago Vila]

On Wed, 4 Jan 2017, Santiago Vila wrote:

> Please help me to ensure that we are not removing (yet!) any package
> from stretch because of any of such bugs (I think this mass-severity-setting
> should yield such effect, but I'm not 100% sure).
> 
> In particular, please let any such package propagate to testing again
> (temporarily!) if it was autoremoved because of any of such bugs.

I've checked and it seems there is only one package affected by this.

Could you please reallow "src:uncertainties" in stretch?

I downgraded #844571 to important in the mass-downgrading
but forgot to downgrade #844572 as well (which I have just done).

As a result, the package was autoremoved.

If the plan is to consider RC-ness based on probability of failure,
this package has a lot more reason to stay in stretch than some
packages which FTBFS a lot more often.

Thanks.

Bug#851530: Release of base-files for stretch

[Santiago Vila]

user release.debian@packages.debian.org
usertag 851530 + age-days
thanks

Bug#849218: marked as done (transition: imagemagick)

[Debian Bug Tracking System]

Your message dated Mon, 16 Jan 2017 00:49:45 +0100
with message-id <3cb5361e-0f25-e472-8cf9-4a639035e...@debian.org>
and subject line Re: Bug#849218: transition: imagemagick
has caused the Debian Bug report #849218,
regarding transition: imagemagick
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
849218: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=849218
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal

Hi,

Due to #846385 could be possible to get transition for imagemagick.

Sorry for being late but upstream is really sloppy.

The break was in 6.9.2-10 released in mid 2015. This is moreover only two 
version latter than  current jessie and I believe it will be a security 
nightmare to support three versions with more than 100 security patches

Bastien





signature.asc
Description: This is a digitally signed message part.
--- End Message ---
--- Begin Message ---
On 29/12/16 16:37, Emilio Pozuelo Monfort wrote:
> Control: tags -1 confirmed
> 
> On 23/12/16 18:54, Bastien ROUCARIÈS wrote:
>> Package: release.debian.org
>> Severity: normal
>>
>> Hi,
>>
>> Due to #846385 could be possible to get transition for imagemagick.
>>
>> Sorry for being late but upstream is really sloppy.
>>
>> The break was in 6.9.2-10 released in mid 2015. This is moreover only two 
>> version latter than  current jessie and I believe it will be a security 
>> nightmare to support three versions with more than 100 security patches
> 
> Alright, let's do this.

This just went into testing. Closing.

You can upload imagemagick to fix the new vulnerabilities now.

Cheers,
Emilio--- End Message ---

Bug#851530: Release of base-files for stretch

[Santiago Vila]

> The debdiff is attached.

Here it is, sorry.
diff -Nru base-files-9.7/debian/changelog base-files-9.8/debian/changelog
--- base-files-9.7/debian/changelog 2016-11-27 19:29:38.0 +0100
+++ base-files-9.8/debian/changelog 2017-01-15 23:00:02.0 +0100
@@ -1,3 +1,18 @@
+base-files (9.8) unstable; urgency=medium
+
+  * Release candidate for stretch as stable:
+  - Use "9" as version in /etc/issue and /etc/issue.net.
+(never expected to change after stretch is released)
+  - Use 9.0 as version in /etc/debian_version.
+(expected to change at every point release)
+  - Change PRETTY_NAME in /usr/lib/os-release, adding 9 as version number
+and "(stretch)" as codename. Add also VERSION_ID and VERSION.
+(never expected to change)
+  - Update README (stretch -> buster).
+  * Standards-Version: 3.9.8 (no special changes for this).
+
+ -- Santiago Vila   Sun, 15 Jan 2017 23:00:02 +0100
+
 base-files (9.7) unstable; urgency=medium
 
   * Do not care about /etc/nsswitch.conf anymore, as the file has been
diff -Nru base-files-9.7/debian/control base-files-9.8/debian/control
--- base-files-9.7/debian/control   2016-11-27 18:00:00.0 +0100
+++ base-files-9.8/debian/control   2017-01-15 22:00:00.0 +0100
@@ -2,7 +2,7 @@
 Section: admin
 Priority: required
 Maintainer: Santiago Vila 
-Standards-Version: 3.9.7
+Standards-Version: 3.9.8
 Build-Depends: debhelper (>= 9)
 
 Package: base-files
diff -Nru base-files-9.7/debian/README base-files-9.8/debian/README
--- base-files-9.7/debian/README2016-11-27 18:00:00.0 +0100
+++ base-files-9.8/debian/README2017-01-15 22:00:00.0 +0100
@@ -4,10 +4,10 @@
 * Questions about /etc/issue and /etc/debian_version:
 
 Q. I upgraded my system to the testing distribution and now my /etc/issue
-says "stretch/sid". Should it not read "stretch" or "testing"?
+says "buster/sid". Should it not read "buster" or "testing"?
 
 Q. I upgraded my system to the unstable distribution and now my /etc/issue
-says "stretch/sid". Should it not read "sid" or "unstable"?
+says "buster/sid". Should it not read "sid" or "unstable"?
 
 A. That would be nice, but it is not possible because of the way the
 testing distribution works. Packages uploaded for unstable reach
@@ -17,9 +17,9 @@
 two sides of the same coin. Since the base-files package in testing
 was initially uploaded for unstable, the only sensible /etc/issue to
 have is one that is both valid for testing and unstable, hence
-"stretch/sid" (or whatever is appropriate).
+"buster/sid" (or whatever is appropriate).
 
-Q. Why "stretch/sid" and not "testing/unstable" as it used to be?
+Q. Why "buster/sid" and not "testing/unstable" as it used to be?
 
 A. The codename is a little bit more informative, as the meaning of
 "testing" changes over time.
diff -Nru base-files-9.7/etc/debian_version base-files-9.8/etc/debian_version
--- base-files-9.7/etc/debian_version   2015-04-30 12:00:00.0 +0200
+++ base-files-9.8/etc/debian_version   2017-01-15 23:00:00.0 +0100
@@ -1 +1 @@
-stretch/sid
+9.0
diff -Nru base-files-9.7/etc/issue base-files-9.8/etc/issue
--- base-files-9.7/etc/issue2015-04-30 12:00:00.0 +0200
+++ base-files-9.8/etc/issue2017-01-15 23:00:00.0 +0100
@@ -1,2 +1,2 @@
-Debian #OSNAME# stretch/sid \n \l
+Debian #OSNAME# 9 \n \l
 
diff -Nru base-files-9.7/etc/issue.net base-files-9.8/etc/issue.net
--- base-files-9.7/etc/issue.net2015-04-30 12:00:00.0 +0200
+++ base-files-9.8/etc/issue.net2017-01-15 23:00:00.0 +0100
@@ -1 +1 @@
-Debian #OSNAME# stretch/sid
+Debian #OSNAME# 9
diff -Nru base-files-9.7/etc/os-release base-files-9.8/etc/os-release
--- base-files-9.7/etc/os-release   2015-10-28 17:37:11.0 +0100
+++ base-files-9.8/etc/os-release   2017-01-15 23:00:00.0 +0100
@@ -1,5 +1,7 @@
-PRETTY_NAME="Debian #OSNAME# stretch/sid"
+PRETTY_NAME="Debian #OSNAME# 9 (stretch)"
 NAME="Debian #OSNAME#"
+VERSION_ID="9"
+VERSION="9 (stretch)"
 ID=debian
 HOME_URL="https://www.debian.org/;
 SUPPORT_URL="https://www.debian.org/support;

NEW changes in stable-new

[Debian FTP Masters]

Processing changes file: bind9_9.9.5.dfsg-9+deb8u9_amd64.changes
  ACCEPT
Processing changes file: bind9_9.9.5.dfsg-9+deb8u9_arm64.changes
  ACCEPT
Processing changes file: bind9_9.9.5.dfsg-9+deb8u9_armel.changes
  ACCEPT
Processing changes file: bind9_9.9.5.dfsg-9+deb8u9_armhf.changes
  ACCEPT
Processing changes file: bind9_9.9.5.dfsg-9+deb8u9_i386.changes
  ACCEPT
Processing changes file: bind9_9.9.5.dfsg-9+deb8u9_mips.changes
  ACCEPT
Processing changes file: bind9_9.9.5.dfsg-9+deb8u9_mipsel.changes
  ACCEPT
Processing changes file: bind9_9.9.5.dfsg-9+deb8u9_powerpc.changes
  ACCEPT
Processing changes file: bind9_9.9.5.dfsg-9+deb8u9_ppc64el.changes
  ACCEPT
Processing changes file: bind9_9.9.5.dfsg-9+deb8u9_s390x.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u1_amd64.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u1_arm64.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u1_armel.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u1_armhf.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u1_i386.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u1_mips.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u1_mipsel.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u1_powerpc.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u1_ppc64el.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u1_s390x.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u2_allonly.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u2_amd64.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u2_arm64.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u2_armel.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u2_armhf.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u2_i386.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u2_mips.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u2_mipsel.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u2_powerpc.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u2_ppc64el.changes
  ACCEPT
Processing changes file: icoutils_0.31.0-2+deb8u2_s390x.changes
  ACCEPT
Processing changes file: ikiwiki_3.20141016.4_source+binary.changes
  ACCEPT
Processing changes file: pdns_3.4.1-4+deb8u7_source.changes
  ACCEPT
Processing changes file: pdns_3.4.1-4+deb8u7_amd64.changes
  ACCEPT
Processing changes file: pdns_3.4.1-4+deb8u7_arm64.changes
  ACCEPT
Processing changes file: pdns_3.4.1-4+deb8u7_armel.changes
  ACCEPT
Processing changes file: pdns_3.4.1-4+deb8u7_armhf.changes
  ACCEPT
Processing changes file: pdns_3.4.1-4+deb8u7_i386.changes
  ACCEPT
Processing changes file: pdns_3.4.1-4+deb8u7_mips.changes
  ACCEPT
Processing changes file: pdns_3.4.1-4+deb8u7_mipsel.changes
  ACCEPT
Processing changes file: pdns_3.4.1-4+deb8u7_powerpc.changes
  ACCEPT
Processing changes file: pdns_3.4.1-4+deb8u7_ppc64el.changes
  ACCEPT
Processing changes file: pdns_3.4.1-4+deb8u7_s390x.changes
  ACCEPT
Processing changes file: pdns-recursor_3.6.2-2+deb8u3_source.changes
  ACCEPT
Processing changes file: pdns-recursor_3.6.2-2+deb8u3_amd64.changes
  ACCEPT
Processing changes file: pdns-recursor_3.6.2-2+deb8u3_arm64.changes
  ACCEPT
Processing changes file: pdns-recursor_3.6.2-2+deb8u3_armel.changes
  ACCEPT
Processing changes file: pdns-recursor_3.6.2-2+deb8u3_armhf.changes
  ACCEPT
Processing changes file: pdns-recursor_3.6.2-2+deb8u3_i386.changes
  ACCEPT
Processing changes file: pdns-recursor_3.6.2-2+deb8u3_mips.changes
  ACCEPT
Processing changes file: pdns-recursor_3.6.2-2+deb8u3_mipsel.changes
  ACCEPT
Processing changes file: pdns-recursor_3.6.2-2+deb8u3_powerpc.changes
  ACCEPT
Processing changes file: pdns-recursor_3.6.2-2+deb8u3_ppc64el.changes
  ACCEPT
Processing changes file: pdns-recursor_3.6.2-2+deb8u3_s390x.changes
  ACCEPT
Processing changes file: python-bottle_0.12.7-1+deb8u2_amd64.changes
  ACCEPT
Processing changes file: python-pysaml2_2.0.0-1+deb8u1_amd64.changes
  ACCEPT
Processing changes file: rabbitmq-server_3.3.5-1.1+deb8u1_amd64.changes
  ACCEPT
Processing changes file: tiff_4.0.3-12.3+deb8u2_amd64.changes
  ACCEPT
Processing changes file: tiff_4.0.3-12.3+deb8u2_arm64.changes
  ACCEPT
Processing changes file: tiff_4.0.3-12.3+deb8u2_armel.changes
  ACCEPT
Processing changes file: tiff_4.0.3-12.3+deb8u2_armhf.changes
  ACCEPT
Processing changes file: tiff_4.0.3-12.3+deb8u2_i386.changes
  ACCEPT
Processing changes file: tiff_4.0.3-12.3+deb8u2_mips.changes
  ACCEPT
Processing changes file: tiff_4.0.3-12.3+deb8u2_mipsel.changes
  ACCEPT
Processing changes file: tiff_4.0.3-12.3+deb8u2_powerpc.changes
  ACCEPT
Processing changes file: tiff_4.0.3-12.3+deb8u2_ppc64el.changes
  ACCEPT
Processing changes file: tiff_4.0.3-12.3+deb8u2_s390x.changes
  ACCEPT

Bug#851530: Release of base-files for stretch

[Santiago Vila]

Package: release.debian.org
Severity: wishlist

Dear Release Managers:

I've just uploaded a base-files version which should be suitable
for stretch when it becomes stable.

I'd like the 10-days period to be reduced a little bit, if only
because d-i people are already making beta releases.

The debdiff is attached. If you want to double-check, just look at the
debdiff between version 7.10 and version 8.

Thanks.

Bug#851528: jessie-pu: package crafty/23.4-6+deb8u1

[Santiago Vila]

Package: release.debian.org
Severity: normal
Tags: jessie
User: release.debian@packages.debian.org
Usertags: pu

Dear Release Managers:

After making a QA upload for this package in unstable, I've been
suggested that I should also make an upload for jessie,
and I agree.

The program does not work at all in old machines. This is not a
security problem, but I believe it's the kind of thing that we fix in
a point release with a minimal patch.

The debdiff is attached.

Thanks.diff -Nru crafty-23.4/debian/changelog crafty-23.4/debian/changelog
--- crafty-23.4/debian/changelog2011-10-13 22:26:06.0 +0200
+++ crafty-23.4/debian/changelog2017-01-15 23:36:12.0 +0100
@@ -1,3 +1,11 @@
+crafty (23.4-6+deb8u1) jessie; urgency=medium
+
+  * QA upload.
+  * Do not generate CPU specific code. Should fix "Illegalinstruction" on
+some Pentium 4 CPUs. Closes: #850979.
+
+ -- Santiago Vila   Sun, 15 Jan 2017 23:36:12 +0100
+
 crafty (23.4-6) unstable; urgency=low
 
   *  Ubuntus oneiric build faild, because with linking the order of 
diff -Nru crafty-23.4/debian/patches/07-drop-cpu-specific-code.patch 
crafty-23.4/debian/patches/07-drop-cpu-specific-code.patch
--- crafty-23.4/debian/patches/07-drop-cpu-specific-code.patch  1970-01-01 
01:00:00.0 +0100
+++ crafty-23.4/debian/patches/07-drop-cpu-specific-code.patch  2017-01-15 
22:07:00.0 +0100
@@ -0,0 +1,23 @@
+From: Santiago Vila 
+Subject: Do not generate CPU specific code, it may not work on every Debian 
supported machine
+
+--- a/Makefile
 b/Makefile
+@@ -143,7 +143,7 @@
+ linux-amd64-profile:
+   $(MAKE) target=LINUX \
+   CC=gcc CXX=g++ \
+-CFLAGS='-Wall -pipe -fprofile-arcs -fomit-frame-pointer -O3 
-march=k8' \
++CFLAGS='-Wall -pipe -fprofile-arcs -fomit-frame-pointer -O3' \
+   CXFLAGS='' \
+   LDFLAGS='$(LDFLAGS) -lpthread -lnuma -fprofile-arcs -lstdc++' \
+   opt='$(opt) -DINLINE64 -DCPUS=8 -DNUMA -DLIBNUMA' \
+@@ -152,7 +152,7 @@
+ linux-amd64:
+   $(MAKE) target=LINUX \
+   CC=gcc CXX=g++ \
+-CFLAGS='-Wall -pipe -fbranch-probabilities 
-fomit-frame-pointer -O3 -march=k8' \
++CFLAGS='-Wall -pipe -fbranch-probabilities 
-fomit-frame-pointer -O3' \
+   CXFLAGS='' \
+   LDFLAGS='$(LDFLAGS) -lpthread -lnuma -lstdc++' \
+   opt='$(opt) -DINLINE64 -DCPUS=8 -DNUMA -DLIBNUMA' \
diff -Nru crafty-23.4/debian/patches/series crafty-23.4/debian/patches/series
--- crafty-23.4/debian/patches/series   2011-04-04 21:37:19.0 +0200
+++ crafty-23.4/debian/patches/series   2017-01-15 22:00:00.0 +0100
@@ -4,3 +4,4 @@
 95-spelling-thanks-lintian.dpatch
 01-annotate.patch
 10-crafty-hlp.patch
+07-drop-cpu-specific-code.patch

Bug#851527: jessie-pu: package unzip/6.0-16+deb8u3

[Santiago Vila]

Package: release.debian.org
Severity: normal
Tags: jessie
User: release.debian@packages.debian.org
Usertags: pu

Dear Release Managers:

The Security Team asked me to do this upload because it does not
deserve a DSA.

It's just an update of the version currently in stable, taking the
security bits from the last version in unstable.

The debdiff is attached.

Thanks.diff -Nru unzip-6.0/debian/changelog unzip-6.0/debian/changelog
--- unzip-6.0/debian/changelog  2015-11-09 20:53:24.0 +0100
+++ unzip-6.0/debian/changelog  2017-01-15 23:30:30.0 +0100
@@ -1,3 +1,14 @@
+unzip (6.0-16+deb8u3) jessie; urgency=medium
+
+  * Update patch 12-cve-2014-9636-test-compr-eb to follow revised
+patch "unzip-6.0_overflow3.diff" from mancha (patch author).
+  * Fix CVE-2014-9913, buffer overflow in unzip. Closes: #847485.
+Patch by the author.
+  * Fix CVE-2016-9844, buffer overflow in zipinfo. Closes: #847486.
+Patch by the author.
+
+ -- Santiago Vila   Sun, 15 Jan 2017 23:30:30 +0100
+
 unzip (6.0-16+deb8u2) jessie-security; urgency=high
 
   * Non-maintainer upload by the Security Team.
diff -Nru unzip-6.0/debian/patches/12-cve-2014-9636-test-compr-eb 
unzip-6.0/debian/patches/12-cve-2014-9636-test-compr-eb
--- unzip-6.0/debian/patches/12-cve-2014-9636-test-compr-eb 2015-11-09 
20:53:24.0 +0100
+++ unzip-6.0/debian/patches/12-cve-2014-9636-test-compr-eb 2017-01-15 
22:12:00.0 +0100
@@ -1,7 +1,7 @@
 From: mancha 
-Date: Mon, 3 Nov 2014
+Date: Wed, 11 Feb 2015
 Subject: Info-ZIP UnZip buffer overflow
-Bug-Debian: http://bugs.debian.org/776589
+Bug-Debian: https://bugs.debian.org/776589
 
 By carefully crafting a corrupt ZIP archive with "extra fields" that
 purport to have compressed blocks larger than the corresponding
@@ -22,16 +22,17 @@
  
  if (compr_offset < 4)/* field is not compressed: */
  return PK_OK;/* do nothing and signal OK */
-@@ -2244,6 +2245,14 @@
+@@ -2244,6 +2245,15 @@
   ((eb_ucsize > 0L) && (eb_size <= (compr_offset + EB_CMPRHEADLEN
  return IZ_EF_TRUNC; /* no/bad compressed data! */
  
-+/* 2014-11-03 Michal Zalewski, SMS.
++/* 2015-02-10 Mancha(?), Michal Zalewski, Tomas Hoger, SMS.
 + * For STORE method, compressed and uncompressed sizes must agree.
 + * http://www.info-zip.org/phpBB3/viewtopic.php?f=7=450
 + */
 +eb_compr_method = makeword( eb + (EB_HEADSIZE + compr_offset));
-+if ((eb_compr_method == STORED) && (eb_size - compr_offset != eb_ucsize))
++if ((eb_compr_method == STORED) &&
++ (eb_size != compr_offset + EB_CMPRHEADLEN + eb_ucsize))
 +return PK_ERR;
 +
  if (
diff -Nru unzip-6.0/debian/patches/18-cve-2014-9913-unzip-buffer-overflow 
unzip-6.0/debian/patches/18-cve-2014-9913-unzip-buffer-overflow
--- unzip-6.0/debian/patches/18-cve-2014-9913-unzip-buffer-overflow 
1970-01-01 01:00:00.0 +0100
+++ unzip-6.0/debian/patches/18-cve-2014-9913-unzip-buffer-overflow 
2017-01-15 22:16:00.0 +0100
@@ -0,0 +1,29 @@
+From: "Steven M. Schweda" 
+Subject: Fix CVE-2014-9913, buffer overflow in unzip
+Bug: https://sourceforge.net/p/infozip/bugs/27/
+Bug-Debian: https://bugs.debian.org/847485
+Bug-Ubuntu: https://launchpad.net/bugs/387350
+X-Debian-version: 6.0-21
+
+--- a/list.c
 b/list.c
+@@ -339,7 +339,18 @@
+ G.crec.compression_method == ENHDEFLATED) {
+ methbuf[5] = dtype[(G.crec.general_purpose_bit_flag>>1) & 3];
+ } else if (methnum >= NUM_METHODS) {
+-sprintf([4], "%03u", G.crec.compression_method);
++/* 2013-02-26 SMS.
++ * http://sourceforge.net/p/infozip/bugs/27/  CVE-2014-9913.
++ * Unexpectedly large compression methods overflow
++ * [].  Use the old, three-digit decimal format
++ * for values which fit.  Otherwise, sacrifice the
++ * colon, and use four-digit hexadecimal.
++ */
++if (G.crec.compression_method <= 999) {
++sprintf( [ 4], "%03u", G.crec.compression_method);
++} else {
++sprintf( [ 3], "%04X", G.crec.compression_method);
++}
+ }
+ 
+ #if 0   /* GRR/Euro:  add this? */
diff -Nru unzip-6.0/debian/patches/19-cve-2016-9844-zipinfo-buffer-overflow 
unzip-6.0/debian/patches/19-cve-2016-9844-zipinfo-buffer-overflow
--- unzip-6.0/debian/patches/19-cve-2016-9844-zipinfo-buffer-overflow   
1970-01-01 01:00:00.0 +0100
+++ unzip-6.0/debian/patches/19-cve-2016-9844-zipinfo-buffer-overflow   
2017-01-15 22:17:00.0 +0100
@@ -0,0 +1,28 @@
+From: "Steven M. Schweda" 
+Subject: Fix CVE-2016-9844, buffer overflow in zipinfo
+Bug-Debian: https://bugs.debian.org/847486
+Bug-Ubuntu: https://launchpad.net/bugs/1643750
+X-Debian-version: 6.0-21
+
+--- 

Debian-8.6

[sarez45]

Why is Firefox 45 esr so buggy and freezes up in Debian 8.6 ? No add ons or 
extensions are installed. Iceweazel was bad, but the outdated Firefox makes 
Debian unusable when using the internet. Debian kde and gnome notify me when 
updates are ready, why not cinnamon or xfce. Even after I install 
gnome-packagekit there is still no notification of updates. This is very 
annoying when I want to use cinnamon and two days later discover that there are 
over a 100 updates waiting to be installed and I have to install something that 
should have been installed by default.

Bug#851482: nmu: ocrad_0.25-1

[Adrian Bunk]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: binnmu

nmu ocrad_0.25-1 . ANY . unstable . -m "Static library rebuild with PIE"


This should fix
  https://ci.debian.net/packages/o/ocrad/unstable/amd64/

Bug#851453: marked as done (age-days: check-all-the-things/2017.01.15)

[Debian Bug Tracking System]

Your message dated Sun, 15 Jan 2017 12:09:00 +
with message-id <144f7197-55c1-9e13-d2c0-f5a96f93b...@thykier.net>
and subject line Re: Bug#851453: age-days: check-all-the-things/2017.01.15
has caused the Debian Bug report #851453,
regarding age-days: check-all-the-things/2017.01.15
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
851453: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851453
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: age-days

Please reduce the migration time for check-all-the-things to two days.

The version in unstable fixes arbitrary code execution security issues
reported by Jakub Wilk because `python -m` adds '.' to sys.path.

age-days 2 check-all-the-things/2017.01.15

-- System Information:
Debian Release: stretch/sid
  APT prefers testing-debug
  APT policy: (900, 'testing-debug'), (900, 'testing'), (800, 
'unstable-debug'), (800, 'unstable'), (790, 'buildd-unstable'), (700, 
'experimental-debug'), (700, 'experimental'), (690, 'buildd-experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.8.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_AU.utf8, LC_CTYPE=en_AU.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

-- 
bye,
pabs

https://wiki.debian.org/PaulWise
diff -Nru check-all-the-things-2016.12.25/check-all-the-things check-all-the-things-2017.01.15/check-all-the-things
--- check-all-the-things-2016.12.25/check-all-the-things	2016-12-25 07:43:10.0 +0800
+++ check-all-the-things-2017.01.15/check-all-the-things	2017-01-15 10:37:30.0 +0800
@@ -36,6 +36,7 @@
 import time
 import signal
 import subprocess as ipc
+import string
 import sys
 from textwrap import TextWrapper
 
@@ -61,6 +62,7 @@
 from curses import tigetstr, setupterm
 setupterm()
 erase_line = tigetstr('el')
+reset_term = tigetstr('sgr0')
 
 try:
 from shutil import which
@@ -139,7 +141,7 @@
 return False
 
 
-def spawn_ptyprocess(cmd, hide, header, footer, limit):
+def spawn_ptyprocess(terminal, cmd, hide, header, footer, limit):
 lines = 0
 trimmed = False
 
@@ -158,6 +160,8 @@
 lines += 1
 if lines > limit:
 trimmed = True
+if terminal:
+sys.stdout.buffer.write(reset_term)
 print(*footer, sep='\n')
 sys.stdout.flush()
 proc.kill(signal.SIGTERM)
@@ -170,10 +174,12 @@
 break
 if header and not hide:
 output_header()
+if terminal and not trimmed:
+sys.stdout.buffer.write(reset_term)
 return not bool(header), trimmed
 
 
-def spawn_pty(cmd, hide, header, footer, limit):
+def spawn_pty(terminal, cmd, hide, header, footer, limit):
 lines = 0
 trimmed = False
 pipe = None
@@ -198,6 +204,8 @@
 lines += 1
 if lines > limit:
 trimmed = True
+if terminal:
+sys.stdout.buffer.write(reset_term)
 print(*footer, sep='\r\n', end='\r\n')
 sys.stdout.flush()
 raise OSError
@@ -209,10 +217,12 @@
 pipe.close()
 if header and not hide:
 output_header()
+if terminal and not trimmed:
+sys.stdout.buffer.write(reset_term)
 return not bool(header), trimmed
 
 
-def spawn_pipe(cmd, hide, header, footer, limit):
+def spawn_pipe(terminal, cmd, hide, header, footer, limit):
 lines = 0
 trimmed = False
 
@@ -231,6 +241,8 @@
 lines += 1
 if lines > limit:
 trimmed = True
+if terminal:
+sys.stdout.buffer.write(reset_term)
 print(*footer, sep='\n')
 sys.stdout.flush()
 proc.terminate()
@@ -250,26 +262,30 @@
 sys.stdout.flush()
 if header and not hide:
 output_header()
+if terminal and not trimmed:
+sys.stdout.buffer.write(reset_term)
 return not bool(header), trimmed
 
 
-def spawn_none(cmd, header):
+def spawn_none(terminal, cmd, header):
 show_header(header)
 ipc.call(cmd, shell=True, stderr=ipc.STDOUT)
+if terminal:
+sys.stdout.buffer.write(reset_term)
 return True, False
 
 
-def spawn(method, cmd, hide, header, footer, limit):
+def spawn(terminal, method, cmd, hide, header, footer, limit):
 if method == 'pipe':
-return 

Processed: unblock 827061 with 851090

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> unblock 827061 with 851090
Bug #827061 [release.debian.org] transition: openssl
827061 was blocked by: 828542 828263 845016 828404 835796 828357 828323 828362 
844706 828618 828550 843988 828267 828440 828564 828289 828592 828251 828594 
828274 845106 850883 844931 828521 828554 828535 844234 828255 828394 828272 
828571 843871 828423 828467 828387 828426 828575 828379 828243 828527 828528 
828283 828459 828610 828608 844254 828324 828437 843532 828271 828412 828446 
828354 828552 828371 828474 828463 828538 828351 828281 828556 828392 828518 
828389 828613 828240 828442 828570 828551 844951 828500 828246 828536 828397 
828380 828262 828358 828547 828576 828318 828448 828378 828277 844311 828497 
846113 828242 828460 828249 835811 828290 829452 828342 828343 828254 828488 
828250 828487 828365 844366 828434 828585 828603 828509 828539 828388 828599 
828462 828322 828533 828577 828259 828588 828531 828529 828510 828515 844877 
828286 828541 828401 844926 835804 828346 828470 828499 828553 828374 828082 
828363 828584 844800 828511 835549 828402 828257 846769 828349 828340 848681 
828607 828295 828350 828582 828241 828391 828580 828590 828619 828376 835786 
828620 828304 828228 828453 828231 844949 828514 828258 828583 828300 850880 
828331 844845 850882 828561 828443 828368 827068 828398 828315 828525 828601 
828390 828396 828565 828566 828505 828581 828479 828532 828616 829465 844838 
844936 828602 828417 835799 828609 828537 828360 828433 828420 835785 828454 
828596 828344 828381 828597 828361 828297 828544 828383 828253 828455 828614 
828279 828605 828458 845030 844907 844948 828278 828543 828328 828419 828314 
850881 844301 828496 844664 828501 828414 828403 828317 828333 828468 844345 
828476 828567 828428 844833 828264 844975 837960 828313 844870 828280 828359 
828348 844928 828606 828288 828232 828303 808669 828347 828464 828447 828546 
828083 828229 835790 828461 828504 822380 828296 828568 828248 828444 828268 
828252 843852 836419 828287 828445 828139 835794 828375 828234 835798 835797 
828352 828502 828309 828256 828399 828410 828307 828422 828427 828239 828593 
828325 828373 828321 828345 828230 828310 828308 828265 828589 828411 828615 
828127 828506 828366 828424 828491 828617 841635 828319 828367 828559 828480 
828430 828302 844920 828507 828261 828341 828355 828469 828400 828339 828473 
828534 828330 828548 844909 828472 835789 828517 828336 844945 828438 844018 
809271 828516 828612 828237 828326 828465 828484 828415 828578 844271 828385 
828573 828482 844836 828305 828579 828563 843682 828598 828449 828450 828503 
828270 828306 828435 828555 828320 828439 828456 828523 828595 828377 828452 
828386 844916 828495 828372 828284 828316 828337 828298 844815 828238 828586 
828508 828370 828431 828416 828407 828335 845729 828478 828591 828587 828493 
828549 828269 835585 828530 844503 828562 844663 828519 828311 828276 828489 
828244 828275 828409 828384 828382 844904 835800 844347 828429 828282 828436 
828235 828233 851090 828524 828301 828395 828406 828291 814600 828526 844906 
828405 828545 828490 828292 828485 828418 828600 828540 828569 844947 828369 
828574 828457 828512 844213 835793 828432 828421 828494 828334 828294 844534 
828285 828338 828604 828364 828492 828293 828558 828393 828466 828260 828611 
828356
827061 was not blocking any bugs.
Removed blocking bug(s) of 827061: 851090
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
827061: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=827061
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems