Bug#857036: unblock: adplug/2.2.1+dfsg3-0.4
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
Hi!
adplug 2.2.1+dfsg3-0.4 contains a minor patch to fix
an FTBFS of the package on architectures where "char"
is by default unsigned instead of signed.
Attaching the full debdiff. Unfortunately, I had a
typo in the bug number, so I closed a non-existant
bug in the distant future with my upload :(.
Adrian
unblock adplug/2.2.1+dfsg3-0.4
-- System Information:
Debian Release: 9.0
APT prefers buildd-unstable
APT policy: (500, 'buildd-unstable'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.9.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru adplug-2.2.1+dfsg3/debian/changelog
adplug-2.2.1+dfsg3/debian/changelog
--- adplug-2.2.1+dfsg3/debian/changelog 2015-08-21 21:44:22.0 +0200
+++ adplug-2.2.1+dfsg3/debian/changelog 2017-03-07 11:50:44.0 +0100
@@ -1,3 +1,11 @@
+adplug (2.2.1+dfsg3-0.4) unstable; urgency=medium
+
+ * Non-maintainer upload.
+ * Add 06-fix-chnresolv-signage.diff to fix signage
+of Cs3mPlayer::chnresolv array. (Closes: #8570222)
+
+ -- John Paul Adrian Glaubitz Tue, 07 Mar 2017
11:50:44 +0100
+
adplug (2.2.1+dfsg3-0.3) unstable; urgency=medium
* Non-maintainer upload, applying changes from Ubuntu.
diff -Nru adplug-2.2.1+dfsg3/debian/patches/06-fix-chnresolv-signage.diff
adplug-2.2.1+dfsg3/debian/patches/06-fix-chnresolv-signage.diff
--- adplug-2.2.1+dfsg3/debian/patches/06-fix-chnresolv-signage.diff
1970-01-01 01:00:00.0 +0100
+++ adplug-2.2.1+dfsg3/debian/patches/06-fix-chnresolv-signage.diff
2017-03-07 11:50:01.0 +0100
@@ -0,0 +1,28 @@
+Description: Fix signage of the chnresolv array
+Author: John Paul Adrian Glaubitz
+Bug-Debian: https://bugs.debian.org/857022
+Forwarded: no
+Last-Update: 2017-03-07
+
+--- adplug-2.2.1+dfsg3.orig/src/s3m.cpp
adplug-2.2.1+dfsg3/src/s3m.cpp
+@@ -25,7 +25,7 @@
+ #include
+ #include "s3m.h"
+
+-const char Cs3mPlayer::chnresolv[] = // S3M -> adlib channel conversion
++const signed char Cs3mPlayer::chnresolv[] = // S3M -> adlib channel
conversion
+
{-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,0,1,2,3,4,5,6,7,8,-1,-1,-1,-1,-1,-1,-1};
+
+ const unsigned short Cs3mPlayer::notetable[12] = // S3M adlib
note table
+--- adplug-2.2.1+dfsg3.orig/src/s3m.h
adplug-2.2.1+dfsg3/src/s3m.h
+@@ -90,7 +90,7 @@ class Cs3mPlayer: public CPlayer
+ unsigned char crow,ord,speed,tempo,del,songend,loopstart,loopcnt;
+
+ private:
+- static const char chnresolv[];
++ static const signed char chnresolv[];
+ static const unsigned short notetable[12];
+ static const unsigned char vibratotab[32];
+
diff -Nru adplug-2.2.1+dfsg3/debian/patches/series
adplug-2.2.1+dfsg3/debian/patches/series
--- adplug-2.2.1+dfsg3/debian/patches/series2015-05-23 01:13:32.0
+0200
+++ adplug-2.2.1+dfsg3/debian/patches/series2017-03-07 11:48:55.0
+0100
@@ -1,3 +1,4 @@
03-no-tests.diff
04-no-gfdl-docs.diff
update-automake-files.patch
+06-fix-chnresolv-signage.diff
Bug#857348: unblock: nted/1.10.18-11
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
Hi!
nted 1.10.18-11 contains a small patch which fixes nted
FTBFS on architectures where char is unsigned by default.
Thanks,
Adrian
unblock nted/1.10.18-11
-- System Information:
Debian Release: 9.0
APT prefers buildd-unstable
APT policy: (500, 'buildd-unstable'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.9.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru nted-1.10.18/debian/changelog nted-1.10.18/debian/changelog
--- nted-1.10.18/debian/changelog 2016-01-24 19:27:54.0 +0100
+++ nted-1.10.18/debian/changelog 2017-03-09 21:36:58.0 +0100
@@ -1,3 +1,11 @@
+nted (1.10.18-11) unstable; urgency=medium
+
+ [ John Paul Adrian Glaubitz ]
+ * New patch fix-signage-of-char-arrays.patch: fix FTBFS on
+architectures where char is unsigned. (closes: #857127)
+
+ -- Gilles Filippini Thu, 09 Mar 2017 21:36:58 +0100
+
nted (1.10.18-10) unstable; urgency=medium
* New patch gcc-6.patch: fix FTBFS with GCC 6 (closes: #811791).
diff -Nru nted-1.10.18/debian/patches/fix-signage-of-char-arrays.patch
nted-1.10.18/debian/patches/fix-signage-of-char-arrays.patch
--- nted-1.10.18/debian/patches/fix-signage-of-char-arrays.patch
1970-01-01 01:00:00.0 +0100
+++ nted-1.10.18/debian/patches/fix-signage-of-char-arrays.patch
2017-03-09 21:30:39.0 +0100
@@ -0,0 +1,49 @@
+Description: Fix signage of addoff and m_flatPos arrays
+Author: John Paul Adrian Glaubitz
+Bug-Debian: https://bugs.debian.org/857127
+Last-Update: 2017-03-08
+
+--- nted-1.10.18.orig/chords/chordpainter.cpp
nted-1.10.18/chords/chordpainter.cpp
+@@ -35,7 +35,7 @@ const char *NedChordPainter::modies2[] =
+ "11", "7sus4", "13", "6add9", "-5",
"7-5", "7maj5", "maj9", NULL};
+ const unsigned int NedChordPainter::minor[] = {0, 1, 0, 0, 0, 0, 0, 0, 0, 0,
1, 1, 1, 1,
+ 0, 0, 0, 0, 0, 0, 0, 0, 0};
+-const char NedChordPainter::addoff[] = {0, 1, -1, 0, 1, -1, 0, 0, 1, -1, 0,
1, -1, 0, 1, -1, 0};
++const signed char NedChordPainter::addoff[] = {0, 1, -1, 0, 1, -1, 0, 0, 1,
-1, 0, 1, -1, 0, 1, -1, 0};
+ const char *NedChordPainter::modies3[] = {"", "", "dim", "aug", "sus", "6",
"7", "maj7", "9", "add9", "6", "7", "maj7", "9",
+ "11", "7sus4", "13", "6add9", "-5",
"7-5", "7maj5", "maj9", NULL};
+ const char *NedChordPainter::modies4[] = {"", "m", "dim", "aug", "sus4", "6",
"7", "maj7", "9", "", "m6", "m7", "", "m9",
+--- nted-1.10.18.orig/chords/chordpainter.h
nted-1.10.18/chords/chordpainter.h
+@@ -44,7 +44,7 @@ class NedChordPainter {
+ static const char *modies2[];
+ private:
+ static const unsigned int minor[];
+- static const char addoff[];
++ static const signed char addoff[];
+ static const char *modies3[];
+ static const char *modies4[];
+ };
+--- nted-1.10.18.orig/staff.cpp
nted-1.10.18/staff.cpp
+@@ -44,7 +44,7 @@
+
+ const char NedStaff::m_sharpPos[7][7] = {
+ {8, 5, 9, 6, 3, 7, 4}, {6, 3, 7, 4, 1, 5, 2}, {7, 4, 8, 5, 2, 6, 3},
{3, 0, 4, 1, 5, 2, 6}, {9, 6, 3, 7, 4, 8, 5}, {8, 5, 9, 6, 3, 7, 4}, {6, 3, 7,
4, 1, 5, 2} };
+-const char NedStaff::m_flatPos[7][7] = {
++const signed char NedStaff::m_flatPos[7][7] = {
+ {4, 7, 3, 6, 2, 5, 1}, {2, 5, 1, 4, 0, 3, -1}, {3, 6, 2, 5, 1, 4, 0},
{6, 2, 5, 1, 4, 0, 3}, {5, 8, 4, 7, 3, 6, 2}, {4, 7, 3, 6, 2, 5, 1}, {2, 5, 1,
4, 0, 3, -1} };
+
+ NedStaff::NedStaff(NedSystem *system, double ypos, double width, int nr, bool
start) :
+--- nted-1.10.18.orig/staff.h
nted-1.10.18/staff.h
+@@ -153,7 +153,7 @@ class NedStaff {
+ void setLyrics(NedCommandList *command_list, NedLyricsEditor
*leditor);
+ GList *getStaffElements(unsigned long long midi_time);
+ static const char m_sharpPos[7][7];
+- static const char m_flatPos[7][7];
++ static const signed char m_flatPos[7][7];
+ private:
+ GList *m_staffelems;
+ NedVoice *m_voices[VOICE_COUNT];
diff -Nru nted-1.10.18/debian/patches/series nted-1.10.18/debian/patches/series
--- nted-1.10.18/debian/patches/series 2016-01-24 18:27:47.0 +0100
+++ nted-1.10.18/debian/patches/series 2017-03-09 21:30:39.0 +0100
@@ -9,3 +9,4 @@
Werror.patch
fix-midi-import.patch
gcc-6.patch
+fix-signage-of-char-arrays.patch
Bug#857684: unblock: ksirk/4:16.04.0-1.1
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
Hi!
ksirk 4:16.04.0-1.1 contains a trivial patch which fixes the
FTBFS of ksirk on all architectures where char is unsigned
by default.
Thanks,
Adrian
unblock ksirk/4:16.04.0-1.1
-- System Information:
Debian Release: 9.0
APT prefers buildd-unstable
APT policy: (500, 'buildd-unstable'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.9.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru ksirk-16.04.0/debian/changelog ksirk-16.04.0/debian/changelog
--- ksirk-16.04.0/debian/changelog 2016-05-21 23:36:29.0 +0200
+++ ksirk-16.04.0/debian/changelog 2017-03-06 10:44:11.0 +0100
@@ -1,3 +1,11 @@
+ksirk (4:16.04.0-1.1) unstable; urgency=medium
+
+ * Non-maintainer upload.
+ * Add patch: fix-signage-of-tbl-array.diff to fix FTBFS on
+architectures where 'char' is unsigned. (Closes: #856904)
+
+ -- John Paul Adrian Glaubitz Mon, 06 Mar 2017
10:44:11 +0100
+
ksirk (4:16.04.0-1) unstable; urgency=medium
[ Automatic packaging ]
diff -Nru ksirk-16.04.0/debian/patches/fix-signage-of-tbl-array.diff
ksirk-16.04.0/debian/patches/fix-signage-of-tbl-array.diff
--- ksirk-16.04.0/debian/patches/fix-signage-of-tbl-array.diff 1970-01-01
01:00:00.0 +0100
+++ ksirk-16.04.0/debian/patches/fix-signage-of-tbl-array.diff 2017-03-06
10:41:34.0 +0100
@@ -0,0 +1,15 @@
+Description: Fix signage of tbl array in XMPP code
+Author: John Paul Adrian Glaubitz
+Last-Update: 2017-03-06
+
+--- ksirk-16.04.0.orig/ksirk/iris/src/xmpp/base64/base64.cpp
ksirk-16.04.0/ksirk/iris/src/xmpp/base64/base64.cpp
+@@ -45,7 +45,7 @@ QByteArray Base64::decode(const QString&
+ // 64 specifies eof
+ // everything else specifies data
+
+- char tbl[] = {
++ signed char tbl[] = {
+ -1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,
+ -1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,
+ -1,-1,-1,-1,-1,-1,-1,-1,-1,-1,-1,62,-1,-1,-1,63,
diff -Nru ksirk-16.04.0/debian/patches/series
ksirk-16.04.0/debian/patches/series
--- ksirk-16.04.0/debian/patches/series 1970-01-01 01:00:00.0 +0100
+++ ksirk-16.04.0/debian/patches/series 2017-03-06 10:44:09.0 +0100
@@ -0,0 +1 @@
+fix-signage-of-tbl-array.diff
Bug#858091: unblock: biosig4c++/1.3.0-2.2
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
Hi!
biosig4c++_1.3.0-2.2 contains a small patch provided by upstream
which fixes an FTBFS on architectures where char is unsigned by
default.
Thanks,
Adrian
unblock biosig4c++/1.3.0-2.2
-- System Information:
Debian Release: 9.0
APT prefers buildd-unstable
APT policy: (500, 'buildd-unstable'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.10.0-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru biosig4c++-1.3.0/debian/changelog biosig4c++-1.3.0/debian/changelog
--- biosig4c++-1.3.0/debian/changelog 2015-08-19 20:32:12.0 +0200
+++ biosig4c++-1.3.0/debian/changelog 2017-03-18 08:37:44.0 +0100
@@ -1,3 +1,12 @@
+biosig4c++ (1.3.0-2.2) unstable; urgency=medium
+
+ * Non-maintainer upload.
+ * debian/patches:
+- added fix_STR_END_signage_FTBFS from upstream to fix FTBFS
+ on architectures where char is unsigned (Closes: #857121)
+
+ -- John Paul Adrian Glaubitz Sat, 18 Mar 2017
08:37:44 +0100
+
biosig4c++ (1.3.0-2.1) unstable; urgency=medium
* Non-maintainer upload.
diff -Nru biosig4c++-1.3.0/debian/patches/fix_STR_END_signage_FTBFS
biosig4c++-1.3.0/debian/patches/fix_STR_END_signage_FTBFS
--- biosig4c++-1.3.0/debian/patches/fix_STR_END_signage_FTBFS 1970-01-01
01:00:00.0 +0100
+++ biosig4c++-1.3.0/debian/patches/fix_STR_END_signage_FTBFS 2017-03-18
08:37:10.0 +0100
@@ -0,0 +1,16 @@
+Description: Fix FTBFS on architectures where char is unsigned
+Author: Christoph Schmidt-Hieber
+Origin: upstream, 8e7c3d7e485e1d3af3f3094641282274424b7385
+Last-Update: 2017-03-18
+
+--- biosig4c++-1.3.0.orig/t210/codes.h
biosig4c++-1.3.0/t210/codes.h
+@@ -22,7 +22,7 @@ Foundation, Inc., 59 Temple Place - Suit
+ #ifndef __CODES_H__
+ #define __CODES_H__
+
+-static const char STR_END[]={-1,'\0'};
++static const char STR_END[]={(char)-1,'\0'};
+ static char STR_NULL[]=" unspecified/unknown ";
+
+ static alfabetic _special[]={
diff -Nru biosig4c++-1.3.0/debian/patches/series
biosig4c++-1.3.0/debian/patches/series
--- biosig4c++-1.3.0/debian/patches/series 2015-08-19 20:15:58.0
+0200
+++ biosig4c++-1.3.0/debian/patches/series 2017-03-18 08:36:01.0
+0100
@@ -1,3 +1,4 @@
deb_no_mex_copy_upstairs
deb_no_locals
up_memcpy_str_cast
+fix_STR_END_signage_FTBFS
Bug#858831: unblock: qpxtool/0.7.2-4.1
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
Hi!
qpxtool_0.7.2-4.1 contains a small patch which fixes the
signedness of char attributes inside the wr_mode struct.
This fixes the FTBFS of qpxtool on architectures where
char is unsigned by default.
unblock qpxtool/0.7.2-4.1
-- System Information:
Debian Release: 9.0
APT prefers buildd-unstable
APT policy: (500, 'buildd-unstable'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.10.0-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru qpxtool-0.7.2/debian/changelog qpxtool-0.7.2/debian/changelog
--- qpxtool-0.7.2/debian/changelog 2014-04-12 22:19:40.0 +0200
+++ qpxtool-0.7.2/debian/changelog 2017-02-27 14:04:55.0 +0100
@@ -1,3 +1,11 @@
+qpxtool (0.7.2-4.1) unstable; urgency=medium
+
+ * Non-maintainer upload.
+ * Add patch 07-fix-wr-mode-declarations.patch:
+- Fix declaration of char attributes in wr_mode. (Closes: #856231)
+
+ -- John Paul Adrian Glaubitz Mon, 27 Feb 2017
14:04:55 +0100
+
qpxtool (0.7.2-4) unstable; urgency=medium
* Update debian/rules: delete option --parallel from dh command because it
diff -Nru qpxtool-0.7.2/debian/patches/07-fix-wr-mode-declarations.patch
qpxtool-0.7.2/debian/patches/07-fix-wr-mode-declarations.patch
--- qpxtool-0.7.2/debian/patches/07-fix-wr-mode-declarations.patch
1970-01-01 01:00:00.0 +0100
+++ qpxtool-0.7.2/debian/patches/07-fix-wr-mode-declarations.patch
2017-02-27 14:04:53.0 +0100
@@ -0,0 +1,17 @@
+Description: Fix declarations of unsigned char in wr_mode
+Author: John Paul Adrian Glaubitz
+Last-Update: 2017-02-27
+
+--- qpxtool-0.7.2.orig/lib/qpxtransport/include/qpx_mmc_defs.h
qpxtool-0.7.2/lib/qpxtransport/include/qpx_mmc_defs.h
+@@ -581,8 +581,8 @@ static const dev_desc _devtbl[]= {
+ #define WTYPE_LJ 4
+
+ typedef struct {
+- char wtype;
+- char dtype;
++ signed char wtype;
++ signed char dtype;
+ uint32_tid;
+ charname[32];
+ } wr_mode;
diff -Nru qpxtool-0.7.2/debian/patches/series
qpxtool-0.7.2/debian/patches/series
--- qpxtool-0.7.2/debian/patches/series 2014-04-12 22:19:40.0 +0200
+++ qpxtool-0.7.2/debian/patches/series 2017-02-27 14:04:55.0 +0100
@@ -4,3 +4,4 @@
04-fix-build-with-libpng15.patch
05-add-hardening-flags-in-compiler-options.patch
06-make-port-for-hurd-i386.patch
+07-fix-wr-mode-declarations.patch
Bug#860140: unblock: libmongo-client/0.1.8-3
Package: release.debian.org Severity: normal Tags: patch User: release.debian@packages.debian.org Usertags: unblock Hi! I just sponsored the upload for the package libmongo-client/0.1.8-3 which contains a minor patch to fix an overwrite issue when upgrading the package from a previous version. This issue was found with piuparts. Cheers, Adrian unblock libmongo-client/0.1.8-3 -- System Information: Debian Release: 9.0 APT prefers buildd-unstable APT policy: (500, 'buildd-unstable'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.10.0-trunk-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) diff -Nru libmongo-client-0.1.8/debian/changelog libmongo-client-0.1.8/debian/changelog --- libmongo-client-0.1.8/debian/changelog 2017-04-08 21:57:18.0 +0200 +++ libmongo-client-0.1.8/debian/changelog 2017-04-11 20:36:41.0 +0200 @@ -1,3 +1,11 @@ +libmongo-client (0.1.8-3) unstable; urgency=medium + + * debian/libmongo-client-doc.maintscript: +- Add missing symlink_to_dir calls for libmongo-client0-dbg + and libmongo-client-dev (Closes: #860115). + + -- Jörg Frings-Fürst Tue, 11 Apr 2017 20:36:41 +0200 + libmongo-client (0.1.8-2.1) unstable; urgency=medium * Non-maintainer upload. diff -Nru libmongo-client-0.1.8/debian/libmongo-client-doc.maintscript libmongo-client-0.1.8/debian/libmongo-client-doc.maintscript --- libmongo-client-0.1.8/debian/libmongo-client-doc.maintscript 2017-04-08 21:57:18.0 +0200 +++ libmongo-client-0.1.8/debian/libmongo-client-doc.maintscript 2017-04-11 19:56:34.0 +0200 @@ -1 +1,3 @@ symlink_to_dir /usr/share/doc/libmongo-client-doc /usr/share/doc/libmongo-client0 0.1.8-2.1~ +symlink_to_dir /usr/share/doc/libmongo-client-doc /usr/share/doc/libmongo-client0-dbg 0.1.8-2.1~ +symlink_to_dir /usr/share/doc/libmongo-client-doc /usr/share/doc/libmongo-client-dev 0.1.8-2.1~
Bug#860140: unblock: libmongo-client/0.1.8-3
Ugh, Joerg told me he verified it to work :(. > On Apr 12, 2017, at 12:54 PM, Andreas Beckmann wrote: > > Control: reopen -1 > > diff -Nru libmongo-client-0.1.8/debian/libmongo-client-doc.maintscript > libmongo-client-0.1.8/debian/libmongo-client-doc.maintscript > --- libmongo-client-0.1.8/debian/libmongo-client-doc.maintscript > 2017-04-08 21:57:18.0 +0200 > +++ libmongo-client-0.1.8/debian/libmongo-client-doc.maintscript > 2017-04-11 19:56:34.0 +0200 > @@ -1 +1,3 @@ > symlink_to_dir /usr/share/doc/libmongo-client-doc > /usr/share/doc/libmongo-client0 0.1.8-2.1~ > +symlink_to_dir /usr/share/doc/libmongo-client-doc > /usr/share/doc/libmongo-client0-dbg 0.1.8-2.1~ > +symlink_to_dir /usr/share/doc/libmongo-client-doc > /usr/share/doc/libmongo-client-dev 0.1.8-2.1~ > > This is plainly wrong. > > * The newly added lines don't correspond to any old links > * The old links are > /usr/share/doc/libmongo-client-dev -> libmongo-client0 > /usr/share/doc/libmongo-client0-dbg -> libmongo-client0 > * You need one .maintscript file per package > * The version of the newly added lines must be bumped > > > Andreas
Bug#860907: unblock: sane-backends/1.0.25-4
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
Hello!
sane-backends_1.0.25-4 contains a single, cherry-picked patch
from upstream to address an RC bug which is the vulnerability
CVE-2017-6318.
Debdiff attached.
Thanks,
Adrian
unblock sane-backends/1.0.25-4
-- System Information:
Debian Release: 9.0
APT prefers buildd-unstable
APT policy: (500, 'buildd-unstable'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64
(x86_64)
Foreign Architectures: i386
Kernel: Linux 4.10.0-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru sane-backends-1.0.25/debian/changelog
sane-backends-1.0.25/debian/changelog
--- sane-backends-1.0.25/debian/changelog 2016-12-10 13:45:15.0
+0100
+++ sane-backends-1.0.25/debian/changelog 2017-04-19 12:07:38.0
+0200
@@ -1,3 +1,12 @@
+sane-backends (1.0.25-4) unstable; urgency=medium
+
+ * CVE-2017-6318:
+- New debian/patches/0500-CVE-2017-6318.patch
+ + cherry-picked from upstream to fix memory corruption and
+information leakage (Closes: #854804).
+
+ -- Jörg Frings-Fürst Wed, 19 Apr 2017 12:07:38
+0200
+
sane-backends (1.0.25-3) unstable; urgency=medium
* debian/rules:
diff -Nru sane-backends-1.0.25/debian/patches/0500-CVE-2017-6318.patch
sane-backends-1.0.25/debian/patches/0500-CVE-2017-6318.patch
--- sane-backends-1.0.25/debian/patches/0500-CVE-2017-6318.patch
1970-01-01 01:00:00.0 +0100
+++ sane-backends-1.0.25/debian/patches/0500-CVE-2017-6318.patch
2017-04-19 07:50:23.0 +0200
@@ -0,0 +1,52 @@
+Description: Address memory corruption and information leakage
+ cheery-pick from upstream git commit 42896939822b44f44ecd1b6d35afdfa4473ed35d
+Author: Jörg Frings-Fürst
+Origin:
https://anonscm.debian.org/cgit/sane/sane-backends.git/commit/frontend/saned.c?id=42896939822b44f44ecd1b6d35afdfa4473ed35d
+Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854804
+Forwarded: not-needed
+Last-Update: 2017-04-19
+---
+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
+Index: 1.0.25-3x/frontend/saned.c
+===
+--- 1.0.25-3x.orig/frontend/saned.c
1.0.25-3x/frontend/saned.c
+@@ -1987,6 +1987,38 @@ process_request (Wire * w)
+ return 1;
+ }
+
++/* Addresses CVE-2017-6318 (#315576, Debian BTS #853804) */
++/* This is done here (rather than in sanei/sanei_wire.c where
++ * it should be done) to minimize scope of impact and amount
++ * of code change.
++ */
++if (w->direction == WIRE_DECODE
++&& req.value_type == SANE_TYPE_STRING
++&& req.action == SANE_ACTION_GET_VALUE)
++ {
++if (req.value)
++ {
++/* FIXME: If req.value contains embedded NUL
++ *characters, this is wrong but we do not have
++ *access to the amount of memory allocated in
++ *sanei/sanei_wire.c at this point.
++ */
++w->allocated_memory -= (1 + strlen (req.value));
++free (req.value);
++ }
++req.value = malloc (req.value_size);
++if (!req.value)
++ {
++w->status = ENOMEM;
++DBG (DBG_ERR,
++ "process_request: (control_option) "
++ "h=%d (%s)\n", req.handle, strerror (w->status));
++return 1;
++ }
++memset (req.value, 0, req.value_size);
++w->allocated_memory += req.value_size;
++ }
++
+ can_authorize = 1;
+
+ memset (&reply, 0, sizeof (reply)); /* avoid leaking bits */
diff -Nru sane-backends-1.0.25/debian/patches/series
sane-backends-1.0.25/debian/patches/series
--- sane-backends-1.0.25/debian/patches/series 2016-08-21 15:18:29.0
+0200
+++ sane-backends-1.0.25/debian/patches/series 2017-04-19 07:16:16.0
+0200
@@ -17,3 +17,4 @@
0710-sane-desc.c_debian_mods.patch
0125-multiarch_dll_search_path.patch
0135-saned-remotescanners.patch
+0500-CVE-2017-6318.patch
Re: [Stretch] Status for architecture qualification
ernel was recently turned into maintained state again after two developers involved with the J-Core project picked up the code, the latter issue will be hopefully resolved soon. It's already been put onto their TODO list. gcc upstream for SH is also still active, so both gcc-5 and gcc-6 work fine on sh4. Before I picked up sh4, there were actually many issues in the SH backend in gcc which prevented gcc-4.9/5/6 from being built on this architecture. With lots of patience, debugging, bug reporting and patching, gcc-5/6 are both in a healthy and usable state. Currently available SuperH hardware is rather slow and has usually not more than 512 MiB of RAM, so it wouldn't make sense to set up buildds and porterboxes with what is currently available. However, since the J-Core project is currently working on open source hardware, it might be possible that in the future, faster hardware becomes available at affordable prices. So it makes sense to keep an eye on sh4 and J-Core for future Debian releases. Thanks, Adrian PS: If other Debian people are interested in joining our efforts to work on the sparc64 port or making a Debian port for the J-Core happen, I would be happy to provide access to porterboxes. -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 signature.asc Description: OpenPGP digital signature
Re: [Stretch] Status for architecture qualification
On 06/05/2016 02:00 PM, Holger Levsen wrote: > I'm not sure whether you are talking about source or binary packages but > sid/amd64 has over 24000 source packages and over 5 binary packages, > so I would call the above "on par". Or what am I missing? There are just around 12,000 source packages with arch:amd64 in sid: glaubitz@wuiet:~$ wanna-build -A sparc64 -d unstable --list=installed | wc -l 10828 glaubitz@wuiet:~$ wanna-build -A ppc64 -d unstable --list=installed | wc -l 10990 glaubitz@wuiet:~$ wanna-build -A amd64 -d unstable --list=installed | wc -l 12154 glaubitz@wuiet:~$ The rest is arch:all: glaubitz@wuiet:~$ wanna-build -A all -d unstable --list=installed | wc -l 15672 glaubitz@wuiet:~$ Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 signature.asc Description: OpenPGP digital signature
Re: [Stretch] Status for architecture qualification
On 06/14/2016 09:06 AM, Philipp Kern wrote: > Yeah, but that's unfortunately one of the universal truths of this port. > I mean in theory sometimes they turn up on eBay and people try to make > them work[1]. Hilarious talk, thanks a lot for the link :). > It also seems true for other ports where we commonly relied on sponsors > to hand us replacements. But maybe it's only ppc64el these days, maybe > there are useful builds available for the others (including arm64 and > mips) on the market now. The hardware sponsoring is the main thing that keeps us from making sparc64 an official port, I would say. The state of the port itself is great: We recently even got LibreOffice running on sparc64 (patches not yet merged) and the port is quite popular, according to popcon, sparc64 has already more users than arm64 and some of the mips ports :). If we were to add sparc64 to Debian, we could rebuild the archive within a few weeks. We have one user who has two Sun T2 servers which are new-in-box (NIB), would those be ok to set up as machines for DSA? Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Re: [Stretch] Status for architecture qualification
On 06/18/2016 06:25 PM, William ML Leslie wrote: > In case it isn't clear, the number of users of the architecture is not part > of the qualification, it is the amount of maintenance pressure involved. > Package > maintainers have to put more effort into ensuring builds succeed for release > architectures, which detracts from other work that needs to be done. Not > being a > release architecture is perfectly fine. I maintain multiple architectures in Debian Ports, including m68k, powerpcspe, sh4, sparc64 and x32 and actually, it's not so much of a burden to maintain an architecture in Debian. Most of the packages don't need special attention and if they do, it's usually just poorly written code like people doing weird pointer arithmetics which provoke unaligned access or abuse C/C++ in other ways. If upstream developers in these cases cared more about code quality and adhering to the C/C++ standards, we would hardly ever have issues with any ports. Heck, even on m68k, most packages still build fine and they actually work. As long as an architecture is maintained upstream both in the kernel and the toolchain, there is absolutely no reason to not keep it in Debian unless there is no hardware available that can be used for buildds and porterboxes. Ports like Debian/GNU Hurd or Debian/kFreeBSD are a different story though as they need way more work to be able to make all sorts of packages work there. In the case of PowerPC, both the kernel and the toolchain are very well maintained, many packages like GHC have native support for the architecture and even rather problematic packages like Firefox/Thunderbird are supported. Plus, PowerPC packages can be built on the POWER8 virtual machines that IBM provides for Debian Developers in the cloud for free. We have one such machine set up for ppc64, for example. In any case, if PowerPC should ever be dropped as a release architecture, I will be more than happy to adopt it in Debian Ports. PS: If you see your package failing to build on any of the ports architectures and you want to fix it and need help, just let me know :). Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Re: [Stretch] Status for architecture qualification
On 06/20/2016 04:05 PM, Lennart Sorensen wrote: > Also I suspect many users of 64 bit capable freescale chips > (e5500 and e6500 cores) are running 32 bit powerpc since they > don't have enough ram to actually really gain anything > from going to 64 bit, and the ppc64 port isn't done yet. Well, we just did a full archive rebuild of "ppc64" to be able to support ppc64 on the e5500 cores by disabling AltiVec, didn't we? Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Re: [Stretch] Status for architecture qualification
On 06/20/2016 04:15 PM, Lennart Sorensen wrote: > On Mon, Jun 20, 2016 at 04:11:32PM +0200, John Paul Adrian Glaubitz wrote: >> Well, we just did a full archive rebuild of "ppc64" to be able to >> support ppc64 on the e5500 cores by disabling AltiVec, didn't we? > > Well it is getting there. The archive rebuild is done and around 11200 packages are up-to-date. It's just the installer that needs work and someone needs to convince the release team that ppc64 is something we want as a release architecture. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Re: [Debian-ports-devel] [d...@debian.org: GCC 6 defaults change, including icu 57 and boost 1.61 transitions]
On 08/03/2016 10:54 PM, Aurelien Jarno wrote: > FYI as it will also have to to be done on the debian-ports architectures. > Note that the upload of gcc-defaults defaulting to gcc-6 just happened. I think this is really a bit of a short notice, but I will have to bite the bullet and fix all the fallout manually then -.-. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Re: The (uncalled for) toolchain maintainers roll call for stretch
On 09/10/2016 12:48 AM, Matthias Klose wrote: > Uncovered by the upstream primary and secondary platforms are the mips* > architectures and powerpc. For the uncovered archs I would expect somehow > more > and pro-active Debian maintenance, however I fail to see this happen. > > - see the history of ftbfs on the buildd page of the gcc-snapshot package > - see the status of the gcc-6 package for the pre-release uploads > - see the number of RC issues for binutils which came up with 2.27, >some still open. > - Toolchain packages are not watched by porters, and I can't track >every regression myself, however this is not done well by porters. > > On the recent Porter's call I didn't see any toolchain support for the powerpc > architecture. I would actually be happy to take over the powerpc port as its official porter. I'm already taking care of powerpcspe, so I think it would be a perfect fit. Let me know what needs to be done to make this happen! I don't want to see powerpc go too soon. Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Re: Porter roll call for Debian Stretch
On 09/20/2016 11:16 PM, Niels Thykier wrote: >- powerpc: No porter (RM blocker) I'd be happy to pick up powerpc to keep it for Stretch. I'm already maintaining powerpcspe which is very similar to powerpc. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 signature.asc Description: OpenPGP digital signature
Re: Porter roll call for Debian Stretch
On 09/23/2016 03:54 PM, Matthias Klose wrote: > No, you are not maintaining powerpcspe as a release architecture, and that's > something different than building packages for some of the ports > architectures. > If you can get powerpcspe accepted as a release architecture, then maybe you > gain some credibility to maintain another release architecture ;) So, what are the criteria to be knighted to become a maintainer of powerpc? Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Re: Porter roll call for Debian Stretch
On 09/30/2016 06:08 PM, Niels Thykier wrote: > I strongly /suspect/ that "no porters" for powerpc will imply the > removal of powerpc for Stretch. It may or may not be moved to ports > (assuming someone is willing to support it there). So, I take this as a "no" for the offer from me and Christoph Biedel to take over the powerpc port for Stretch? I have quite some experience with working on ports and unlike what Matthias claimed, I'm not just maintaining a few buildds but also getting architecture-specific bugs fixed and so on. Is there any specific qualification I am missing? Thanks, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Re: Porter roll call for Debian Stretch
On 09/30/2016 09:04 PM, Niels Thykier wrote: > As for "porter qualification" > = > > We got burned during the Jessie release, where a person answered the > roll call for sparc and we kept sparc as a release architecture for > Jessie. However, we ended up with a completely broken and unbootable > sparc kernel. To be fair, this happened because the upstream kernel development for SPARC came to an almost complete stop. There was basically only David Miller working on the port which turned out not to be enough. This isn't the case for PowerPC32 where upstream development is still very active because it's part of the PowerPC kernel which is maintained by IBM. PowerPC32 is also still quite popular which is why it still sees quite some testing in the wild. There are still new PowerPC32 designs based on embedded CPUs (FreeScale and the like). As for SPARC, Oracle is actually now heavily investing in Linux SPARC support, so even SPARC is getting back into shape which is why I hope we can add sparc64 as an official port soon. > That was an embarrassment to the Debian stability and quality > reputation that I never - ever - want to repeat. Well, mistakes happen and while I think it's good and important to learn from mistakes, we should not dramatize such issues. We have had worse issues like the OpenSSL entropy bug, for example, and we still managed to cope with the fallout in a very professional manner. > (For avoidance of doubt: I want to ensure that release architectures > "just work(tm)" and I have no desire to blame that volunteer). I don't think there is any concern regarding the powerpc port in this regard. wanna-build shows almost 11800 packages that are up-to-date which is a good indicator that the port is in good shape, both regarding the toolchain and various source packages which need architecture-specific adaptations like LibreOffice or JavaScript packages. On the other hand, some packages dropped support for PowerPC32 like Mono but this isn't a concern for most users, I would say. > If I am to support powerpc as a realease architecture for Stretch, I > need to know that there are *active* porters behind it committed to > keeping it in the working. People who would definitely catch such > issues long before the release. People who file bugs / submit patches etc. I agree and I'm actually doing that all the time. I always run unstable on my machines and constantly check wanna-build for build issues and report them upstream whenever they occur. I have helped dozens of such issues on "sh4" and "sparc64", for example. > If you need inspiration: Have a look at the [automatic testing of > ppc64el images]. Or the [arm64 machines on ci.debian.net] with > comparable results to amd64. This is the sort of thing that inspires > confidence in the ports for me and I think we should have vastly more of. I agree that would be nice to have. However, to be fair, we don't have that type of testing for all release architectures and to my current knowledge, automated testing of installation images is not a criteria for an architecture to maintain release status. My main argument for why we should keep the powerpc port is its popularity. If we look at the numbers from popcon [1], powerpc is still the fourth-most-popular port and I think we would disappoint many users if we were to drop the port for Stretch. Note that while ports like "arm64" or "ppc64el" receive lots of support, especially from companies, they still haven't reached the same popularity as the powerpc port for example. Heck, there are even more users for "hppa" and "sparc64" which both are just unofficial ports architectures. Thanks, Adrian > [1] http://popcon.debian.org/ -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Re: Architecture qualification meeting
On 10/30/2016 09:23 PM, Jonathan Wiltshire wrote: > Architecture qualification for Debian 9 'Stretch' will take place in > oftc/#debian-release on Sun Oct 30 20:00:00 UTC 2016. Ugh, that would be 4 AM here in Hong Kong where I currently am. Had hoped this discussion could have been held in November when I'm back in Europe. In case you're going to axe powerpc - which I assume you will - please let it at least exist in Debian Ports. It's far too popular that we can just kill it and it would leave a very bad impression on Debian's reputation of being universal when we drop support for something lots of people are still using. I would again be happy to volunteer as a porter. Already fixed firebird3.0 on powerpc, for example. In any case, I'm very curious of the outcome of the meeting. Thanks, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Bug#774220: unblock: urlgrabber/3.9.1-4.1
Package: release.debian.org Severity: normal Tags: patch User: release.debian@packages.debian.org Usertags: unblock Hello! urlgrabber contains a bug which causes connection problems when using https. This bug is particularly annoying since it completely breaks the 'yum' package and renders it unusuable. Upstream has fixed the bug over three years ago [1], however the urlgrabber package in Debian hasn't been updated for a long time. I have therefore prepared and uploaded an NMU for urlgrabber which fixes the problem and makes yum usuable again. Having a working version of yum in Jessie is particularly interesting since it ships systemd-nspawn which allows one to boot into a Fedora (or any other distribution that supports yum) change root with minimal effort. Attaching the debdiff. Cheers, Adrian unblock urlgrabber/3.9.1-4.1 > [1] > http://yum.baseurl.org/gitweb?p=urlgrabber.git;a=commitdiff;h=b6bfd59c4393ea8ba5165aabb249c37d6d2a9931 -- System Information: Debian Release: 8.0 APT prefers testing APT policy: (500, 'testing'), (99, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) diff -Nru urlgrabber-3.9.1/debian/changelog urlgrabber-3.9.1/debian/changelog --- urlgrabber-3.9.1/debian/changelog 2010-07-08 20:19:42.0 +0200 +++ urlgrabber-3.9.1/debian/changelog 2014-12-30 13:23:04.0 +0100 @@ -1,3 +1,11 @@ +urlgrabber (3.9.1-4.1) unstable; urgency=medium + + * Non-maintainer upload. + * Add debian/patches/https-verifyhost-fix.diff taken from upstream +to fix https connection issues (Closes: #715416, #722191). + + -- John Paul Adrian Glaubitz Tue, 30 Dec 2014 13:13:08 +0100 + urlgrabber (3.9.1-4) unstable; urgency=low * Add two patches created from upstream development version. Closes: #587575. diff -Nru urlgrabber-3.9.1/debian/patches/https-verifyhost-fix.diff urlgrabber-3.9.1/debian/patches/https-verifyhost-fix.diff --- urlgrabber-3.9.1/debian/patches/https-verifyhost-fix.diff 1970-01-01 01:00:00.0 +0100 +++ urlgrabber-3.9.1/debian/patches/https-verifyhost-fix.diff 2014-12-30 13:12:38.0 +0100 @@ -0,0 +1,22 @@ +--- a/urlgrabber/grabber.py b/urlgrabber/grabber.py +@@ -1193,6 +1193,9 @@ class PyCurlFileObject(object): + if not opts: + opts = self.opts + ++# keepalives ++if not opts.keepalive: ++self.curl_obj.setopt(pycurl.FORBID_REUSE, 1) + + # defaults we're always going to set + self.curl_obj.setopt(pycurl.NOPROGRESS, False) +@@ -1236,7 +1239,8 @@ class PyCurlFileObject(object): + self.curl_obj.setopt(pycurl.CAPATH, opts.ssl_ca_cert) + self.curl_obj.setopt(pycurl.CAINFO, opts.ssl_ca_cert) + self.curl_obj.setopt(pycurl.SSL_VERIFYPEER, opts.ssl_verify_peer) +-self.curl_obj.setopt(pycurl.SSL_VERIFYHOST, opts.ssl_verify_host) ++if opts.ssl_verify_host: # 1 is meaningless to curl ++self.curl_obj.setopt(pycurl.SSL_VERIFYHOST, 2) + if opts.ssl_key: + self.curl_obj.setopt(pycurl.SSLKEY, opts.ssl_key) + if opts.ssl_key_type: diff -Nru urlgrabber-3.9.1/debian/patches/series urlgrabber-3.9.1/debian/patches/series --- urlgrabber-3.9.1/debian/patches/series 2010-07-08 20:05:55.0 +0200 +++ urlgrabber-3.9.1/debian/patches/series 2014-12-30 13:13:01.0 +0100 @@ -1,2 +1,3 @@ grabber_fix.diff progress_fix.diff +https-verifyhost-fix.diff
Bug#774420: unblock: virtualjaguar/2.1.2-2
Package: release.debian.org Severity: normal Tags: patch User: release.debian@packages.debian.org Usertags: unblock Hello! The current version 2.1.2-1 of virtualjaguar in testing contains a minor bug which results in the actual version incorrectly displayed in the main application window and about dialog. Thus, even though the actual upstream version number is 2.1.2, the program incorrectly reports the version number to be 2.1.0. This is because the actual version number has to be set manually in a Debian-specific patch and we forgot to raise the version number to 2.1.2 while importing the latest upstream version. The current version 2.1.2-2 in unstable fixes this issue. It would be nice to have this fix unblocked so that users of the version in Jessie are not confused when running the emulator and file bug reports asking for a newer upstream version. I am attaching the debdiff which shows some more smaller changes which are all just formatting and text clean-ups in the debian/rules, debian/control and debian/changelog files. I know we are not supposed to do that, but I am just a very tidy maintainer and wanted to clean a bit up after my fellow maintainer. Sorry! However, no actual code was changed except for raising VJ_RELEASE_VERSION in debian/patches/10-add-version-file.patch from 2.1.0 to 2.1.2, so unblocking the version from unstable should be fine. Cheers, Adrian unblock virtualjaguar/2.1.2-2 -- System Information: Debian Release: 8.0 APT prefers testing APT policy: (500, 'testing'), (99, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) diff -Nru virtualjaguar-2.1.2/debian/changelog virtualjaguar-2.1.2/debian/changelog --- virtualjaguar-2.1.2/debian/changelog 2014-10-11 13:40:10.0 +0200 +++ virtualjaguar-2.1.2/debian/changelog 2014-12-29 16:14:30.0 +0100 @@ -1,13 +1,23 @@ +virtualjaguar (2.1.2-2) unstable; urgency=medium + + * Update VJ_RELEASE_VERSION in debian/patches/ +10-add-version-file.patch to 2.1.2. + + -- John Paul Adrian Glaubitz Mon, 29 Dec 2014 16:12:44 +0100 + virtualjaguar (2.1.2-1) unstable; urgency=medium - * Fix watch file (missing 2 from bz2), and scan for numeric versions. - * Import upstream version 2.1.1. - * Add myself as uploader. - * Use verbose output from makefiles. - * Fix location of README file. - * Drop patches integrated in new upstream release. - * Import upstream version 2.1.2. - * Install 32x32 pixel version of the icon for menu. + * New upstream release. + * Fix typo and scan for numeric versions in URL in debian/watch. + * Add myself to the list of uploaders in debian/control. + * Add V=1 during builds to enable verbose output in debian/rules. + * Fix path of README file in debian/docs. + * Don't use icon in debian/menu as it is too large. + * Drop debian/patches/50-hurd-support.patch, merged upstream. + * Drop debian/patches/40-kfreebsd-support.patch, merged upstream. + * Drop debian/patches/30-use-xdg-data-dir.patch, merged upstream. + * Drop debian/patches/20-fix-linker-paths.patch, merged upstream. + * Install 32x32 pixel version of the program icon for the Debian menu. -- Teemu Hukkanen Sat, 11 Oct 2014 12:11:47 +0100 diff -Nru virtualjaguar-2.1.2/debian/control virtualjaguar-2.1.2/debian/control --- virtualjaguar-2.1.2/debian/control 2014-10-10 19:45:11.0 +0200 +++ virtualjaguar-2.1.2/debian/control 2014-12-29 16:04:59.0 +0100 @@ -3,11 +3,7 @@ Priority: optional Maintainer: John Paul Adrian Glaubitz Uploaders: Teemu Hukkanen -Build-Depends: debhelper (>= 9.0.0), - libqt4-dev, - libqt4-opengl-dev, - libsdl1.2-dev, - netpbm +Build-Depends: debhelper (>= 9.0.0), libqt4-dev, libqt4-opengl-dev, libsdl1.2-dev, netpbm Standards-Version: 3.9.6 Homepage: http://icculus.org/virtualjaguar/ Vcs-Git: git://github.com/glaubitz/virtualjaguar-debian.git diff -Nru virtualjaguar-2.1.2/debian/install virtualjaguar-2.1.2/debian/install --- virtualjaguar-2.1.2/debian/install 2014-10-10 19:45:35.0 +0200 +++ virtualjaguar-2.1.2/debian/install 2014-12-29 16:04:59.0 +0100 @@ -1,4 +1,4 @@ virtualjaguar usr/bin debian/virtualjaguar.desktop usr/share/applications -debian/vj-32x32.xpm usr/share/pixmaps res/vj.xpm usr/share/pixmaps +debian/vj-32x32.xpm usr/share/pixmaps diff -Nru virtualjaguar-2.1.2/debian/patches/10-add-version-file.patch virtualjaguar-2.1.2/debian/patches/10-add-version-file.patch --- virtualjaguar-2.1.2/debian/patches/10-add-version-file.patch 2014-10-09 14:55:51.0 +0200 +++ virtualjaguar-2.1.2/debian/patches/10-add-version-file.patch 2014-12-29 16:09:16.0 +0100 @@ -2,12 +2,12 @@ T
Bug#774428: unblock: simpleburn/1.7.0-2
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
Hello!
I just reviewed and uploaded simpleburn 1.7.0-2 which contains
a patch by Georges Khaznadar to address #772365 which is an
RC bug.
I am attaching the debdiff which shows the additional patch
to fix the bashisms as well as the respective changelog
entry in debian/changelog.
Please unblock simpleburn_1.7.0-2 so we can fix this bug
for Jessie. Thanks!
Cheers,
Adrian
unblock simpleburn/1.7.0-2
-- System Information:
Debian Release: 8.0
APT prefers testing
APT policy: (500, 'testing'), (99, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.16.0-4-amd64 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru simpleburn-1.7.0/debian/changelog simpleburn-1.7.0/debian/changelog
--- simpleburn-1.7.0/debian/changelog 2014-07-28 14:22:17.0 +0200
+++ simpleburn-1.7.0/debian/changelog 2015-01-02 17:03:12.0 +0100
@@ -1,3 +1,12 @@
+simpleburn (1.7.0-2) unstable; urgency=medium
+
+ * Add patch to fix bashism in /bin/sh script -- thanks to
+Georges Khaznadar for the help.
+(Closes: #772365)
+ * Bump Standards-Version to 3.9.6 (no changes needed).
+
+ -- Mateusz Łukasik Wed, 31 Dec 2014 15:22:53 +0100
+
simpleburn (1.7.0-1) unstable; urgency=medium
* New upstream release. (LP: #1279659)
diff -Nru simpleburn-1.7.0/debian/control simpleburn-1.7.0/debian/control
--- simpleburn-1.7.0/debian/control 2014-02-11 12:18:00.0 +0100
+++ simpleburn-1.7.0/debian/control 2014-12-31 15:13:28.0 +0100
@@ -4,7 +4,7 @@
Maintainer: Mateusz Łukasik
Build-Depends: debhelper (>= 9), cmake (>= 2.6), pkg-config, libudev-dev,
libburn-dev, libgtk2.0-dev (>= 2.12)
-Standards-Version: 3.9.5
+Standards-Version: 3.9.6
Homepage: http://simpleburn.tuxfamily.org
Vcs-Git: git://github.com/mati75/simpleburn.git
Vcs-Browser: https://github.com/mati75/simpleburn.git
diff -Nru simpleburn-1.7.0/debian/patches/fix-bashisms.patch simpleburn-1.7.0/debian/patches/fix-bashisms.patch
--- simpleburn-1.7.0/debian/patches/fix-bashisms.patch 1970-01-01 01:00:00.0 +0100
+++ simpleburn-1.7.0/debian/patches/fix-bashisms.patch 2014-12-31 15:16:21.0 +0100
@@ -0,0 +1,588 @@
+Description: fix bashism in /bin/sh script
+Author: Georges Khaznadar
+Bug-Debian: https://bugs.debian.org/772365
+
+--- a/scripts/simpleburn-detect.sh
b/scripts/simpleburn-detect.sh
+@@ -1,6 +1,6 @@
+ #!/bin/sh
+
+-function detect() {
++detect() {
+ device=$1 #assumes it is a valid CD / DVD device
+ readcd dev=$device -fulltoc 2>/dev/null; rm -f ~/toc.dat; rm -f toc.dat #wait for loading
+ if cdrom_id $device | grep -q "ID_CDROM_MEDIA"; then
+@@ -22,7 +22,7 @@ function detect() {
+ if [ -z "$mediacapacity" ]; then
+ mediacapacity=`cdrecord -atip dev=$device 2>&1 | grep "phys size:..." | tail -1 | sed 's/phys size:... \+//'`
+ fi
+-let mediacapacity=mediacapacity*2048
++mediacapacity=$((mediacapacity*2048))
+ fi
+ { mplayer -dvd-device $device dvd://1 -identify -vo null -ao null -frames 0 2>&1 > /tmp/simpleburn-detect.$$ ;} 2>&1 >/dev/null
+ if grep -q "ID_DVD_TITLES" /tmp/simpleburn-detect.$$; then
+@@ -31,13 +31,13 @@ function detect() {
+ for title in `cat /tmp/simpleburn-detect.$$ | grep "TITLE_[0-9]\+_LENGTH"`; do #for each title during more than 3'
+ titlenum=`echo $title | cut -d'_' -f4`
+ titlelenght=`echo $title | cut -d'=' -f2 | cut -f1 -d'.'`
+- let minutes=titlelenght/60
+- if (( minutes > 3 )); then
+- if (( $titlenum != 1 )); then
++ minutes=$((titlelenght/60))
++ if [ $(( minutes > 3 )) = 1 ]; then
++ if [ $(( $titlenum != 1 )) = 1 ]; then
+ { mplayer -dvd-device $device dvd://$titlenum -identify -vo null -ao null -frames 0 2>&1 > /tmp/simpleburn-detect.$$; } 2>&1 >/dev/null
+ fi
+ if grep -q "ID_AID" /tmp/simpleburn-detect.$$ && grep -q "ID_SID" /tmp/simpleburn-detect.$$; then
+- let trackscount=trackscount+1
++ trackscount=$((trackscount+1))
+ if [ ! -z "$mediainfos" ]; then
+ mediainfos="$mediainfos\n"
+ detailedinfos="$detailedinfos\n"
+@@ -58,7 +58,7 @@ function detect() {
+ subdetailedinfos="$subdetailedinfos $languagename($languageid)"
+ done
+ mediainfos="$mediainfos;$mediasubinfos"
+-if [ "$id" == "ID_AID" ]
++if [ "$id" = "ID_AID" ]
+ then detailedinfos="$detailedinfos\n\tlanguages: $subdetailedinfos"
+ else detailedinfos="$detailedinfos\n\tsubtitles: $subdetailedinfos"
+ fi
+@@ -76,16 +76,17 @@ function detect() {
+ mediatype="cd"
+ if cdrom_id $device | grep -q "ID_CDROM_MEDIA_CD_R"; then
+ mediacapacity=`cdrecord -atip dev=$device 2>&1 | grep "ATIP start of lea
Bug#774420: unblock: virtualjaguar/2.1.2-2
Hi! On 01/02/2015 11:34 PM, Ivo De Decker wrote: > I'm going to decline this request. I don't see how the version change complies > with the freeze policy. There was no version change. The version is currently simply displayed incorrectly when using the virtualjaguar package from Jessie instead of using the one from unstable. This is just a two-liner that fixes the problem, that's all. > Also, the other changes are not acceptable. Rewriting > the changelog from a previous upload is something you really shouldn't do. Hmm, I don't understand that some people treat the changelog as if it is a file with a special, immutable status. I have seen Debian changelogs that contained lots of worthless or confusing entries, so I went ahead and fixed it. I prefer having a correct changelog over an inconsistent or incorrect one as I consider the changelog to be a useful part of the packaging source. After all, the changelog is supposed to help others to understand what has been changed without having diff through the sources themselves. Anyway, thanks! Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/54a7248b.1000...@physik.fu-berlin.de
Bug#774428: unblock: simpleburn/1.7.0-2
On 01/06/2015 09:41 PM, Ivo De Decker wrote: > It seems upstream is writing the script purely with bash in mind. I wonder if > it wouldn't less risky (and easier) to just change the first line to > "#! /bin/bash". That way, the change would be limited and would still cover > future changes to the script. Isn't the whole point of the release goal to actually get rid of the bashisms? Just changing the shebang doesn't fix the actual problem, does it? It just shoves everything under the carpet. I don't think that's a reasonable way and would render the whole bug report with it's RC status pointless. Yes, the diff is a bit larger, but also very repetitive. It isn't too much to review therefore and in the end, it would just break simpleburn at worst, so I don't think we should be super cautious with any changes regarding the package. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/54ac4d8f.7010...@physik.fu-berlin.de
Bug#774428: unblock: simpleburn/1.7.0-2
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 01/06/2015 10:35 PM, Holger Levsen wrote: > well, yes, but then probably not really (in all cases) for scripts > which were explicitly written for bash... Alright, I guess we will have to go the t-p-u way then. Would it be ok if I prepared an upload of simpleburn_1.7.0-1+deb8u1 for t-p-u with the proposed change of the shebang? Adrian - -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJUrFXyAAoJEHQmOzf1tfkTRYkQAKQgJct+Bt3RvW0Ca3AF+gin Ts7f+2yWhfuZxY5Vh2i6uQyj8fmm5Ck4rmFk+rOJK024YZURjoMs672MNX1X3PzC 3BW/LJXiIZH2+B6Fk67sDDly0qR4dI6w/YDZfL4nbsKvfZquHPu8P0zWTn+85vTz p/K9tqZScVoonKj3iaA5GxDDpSIx1oi9ZQ+zj4Q1XTn0Qxo+1SAmV/rqmTLlgvon qcJL6rLoGSeLaknjCyFIJHtsEP/hRZ5HEpr4TUsCMugdqgZeIcpGykxpayvagQEP Go3ThMSmrONzHnYP1qiOlgi9zKdkSG1fQLZa+rRoYJPjNB5CC8O41rLG7ebEKLyZ AAxgGjml7lhEedYO8iFjPSQRdcSy7UpgdfNSaNUR/zUlxWtTeb9Da8moGltwd0s0 xoxHAuFdWZ5yVXp6RRsFykykw16nqP1WZYokASS0egfKr7V2450tqEcrT+4Kml4P xo9v82sxMDXij90aL8h7jwILq+h4Oo+ogKXujAXnz2+q0gPzYeOJYjA/jQQI8bad c4Orp97/JwxxtHkPcYmeHwah5KeEkO6sxENX/qt3/Xp8WF/q9FXuNBxthHqBf0lT hc+2RP4yJVhsko+WmZOYARhu6nKw8n5ZUlYyOMiUgZEt5LwQng0Uxy0g3C3ul8hh E4uo1yVIcqMN14y2Se35 =Xp57 -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/54ac55f7.7000...@physik.fu-berlin.de
Bug#774428: unblock: simpleburn/1.7.0-2
On 01/06/2015 11:44 PM, Vincent Cheng wrote: >> Alright, I guess we will have to go the t-p-u way then. Would it be >> ok if I prepared an upload of simpleburn_1.7.0-1+deb8u1 for t-p-u >> with the proposed change of the shebang? > > Why not just upload simpleburn to sid with the proposed shebang > change, and revert the patch that was added in the latest upload as > well (since it's broken as Adam suggested)? The maintainer can always > deal with fixing the actual bashisms (ideally upstream as well) after > the freeze. Good point. I am putting Mateusz on the CC to let him know. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/54ac.8020...@physik.fu-berlin.de
Bug#774428: unblock: simpleburn/1.7.0-2
Hi Mateusz! On 01/11/2015 12:19 PM, Mateusz Łukasik wrote: > Sorry for late, I was busy in this week. > > I put update sources to mentors: > > http://mentors.debian.net/debian/pool/main/s/simpleburn/simpleburn_1.7.0-1+deb8u1.dsc As pointed out earlier this thread, it might be more wise to apply the fix to simpleburn_1.7.0-2 from unstable as well as it turns out that the previously applied patch is not a 100% correct, isn't it? My suggestion would be to upload a version 1.7.0-3 to unstable which reverts the buggy change of the previous upload and therefore have the issue fixed in unstable and Jessie. Any other opinions? Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/54b2668b.7090...@physik.fu-berlin.de
Bug#776429: unblock: fs-uae/2.4.1+ds-3
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
fs-uae has a bug which results in segmentation faults when using
newer versions of the proprietary nVidia driver [1,2]. Initially,
this was blamed on the nVidia driver but it turned out to be a
bug in fs-uae after nVidia investigated the problem [3].
The actual patch to fix the issue just removes an fs-uae-internal
implementation of the glibc function mprotect() which is the
only change in fs-uae_2.4.1+ds-3.
Since this issue affects multiple users and many of them have
directly complained to me in form of bug reports, I would kindly
ask the release team to unblock fs-uae_2.4.1+ds-3 for Jessie.
I have already uploaded fs-uae_2.4.1+ds-3 to unstable and should
pop up on the buildds quickly. I am attaching its debdiff.
Cheers,
Adrian
unblock fs-uae/2.4.1+ds-3
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=757164
> [2] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=767109
> [3] http://fs-uae.net/2015/01/27/fs-uae-2-4-3-released
diff -Nru fs-uae-2.4.1+ds/debian/changelog fs-uae-2.4.1+ds/debian/changelog
--- fs-uae-2.4.1+ds/debian/changelog 2014-05-03 19:22:05.0 +0200
+++ fs-uae-2.4.1+ds/debian/changelog 2015-01-27 23:19:17.0 +0100
@@ -1,3 +1,11 @@
+fs-uae (2.4.1+ds-3) unstable; urgency=medium
+
+ * Add debian/patches/0003-remove-custom-mprotect-function.patch
+to fix a segmentation fault when running fs-uae with recent
+versions of the proprietary nVidia driver (Closes: #757164).
+
+ -- John Paul Adrian Glaubitz Tue, 27 Jan 2015 22:38:53 +0100
+
fs-uae (2.4.1+ds-2) unstable; urgency=medium
* Add missing dependency on python-pil for fs-uae-arcade in debian/control.
diff -Nru fs-uae-2.4.1+ds/debian/patches/0003-remove-custom-mprotect-function.patch fs-uae-2.4.1+ds/debian/patches/0003-remove-custom-mprotect-function.patch
--- fs-uae-2.4.1+ds/debian/patches/0003-remove-custom-mprotect-function.patch 1970-01-01 01:00:00.0 +0100
+++ fs-uae-2.4.1+ds/debian/patches/0003-remove-custom-mprotect-function.patch 2015-01-27 23:09:40.0 +0100
@@ -0,0 +1,26 @@
+Description: 0003-remove-custom-mprotect-function.patch
+ This patch removes an fs-uae-internal implementation of the glibc function
+ mprotect(). This implementation causes fa-uae to segfault when using
+ recent versions of the proprietary nVidia driver. nVidia has investigated
+ into the issue and identified the problem. Simply removing mprotect()
+ from the fs-uae code base results in the code using glibc's implementation
+ of mprotect() and fixes the segfault.
+
+--- fs-uae-2.4.1+ds.orig/src/od-fs/mman.cpp
fs-uae-2.4.1+ds/src/od-fs/mman.cpp
+@@ -881,15 +881,6 @@ STATIC_INLINE uae_key_t find_shmkey (uae
+ return result;
+ }
+
+-int mprotect (void *addr, size_t len, int prot)
+-#ifdef PANDORA
+-__THROW
+-#endif
+-{
+-int result = 0;
+-return result;
+-}
+-
+ void *uae_shmat (int shmid, void *shmaddr, int shmflg)
+ {
+ write_log("uae_shmat shmid %d shmaddr %p, shmflg %d natmem_offset = %p\n",
diff -Nru fs-uae-2.4.1+ds/debian/patches/series fs-uae-2.4.1+ds/debian/patches/series
--- fs-uae-2.4.1+ds/debian/patches/series 2014-04-06 21:24:15.0 +0200
+++ fs-uae-2.4.1+ds/debian/patches/series 2015-01-27 23:05:45.0 +0100
@@ -1,2 +1,3 @@
0001-use-external-libglee.patch
0002-dont-copy-upstream-copying-file.patch
+0003-remove-custom-mprotect-function.patch
Bug#777754: pre-approval: unblock: cqrlog/1.8.2-1.1
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
Dear release team!
I recently tried to install cqrlog on Debian unstable. Unfortunately,
this failed since the dependencies and the recommends of the cqrlog
package have an unlucky ordering which means apt cannot manually
resolve the dependencies.
The origin of this issue is the fact that cqrlog can work with both
MySQL and MariaDB as its database backend. Unfortunately, the current
control file sets "mysql-client" as a dependency for "cqrlog" while
having "mariadb-server" and "mysql-server" in the Recommends field,
in this particular order. This means that apt will try to install
both mariadb-server and mysql-client at the same time which fails
since mariadb-server and mysql-client have transitive conflicts [1].
The attached debdiff fixes the issue by reordering the recommends
and additionally adding mariadb-client as an alternative dependency
to allow the use of cqrlog with MariaDB as an alternative backend
which is currently not possible at all [2].
Furthermore, this patch adds "xplanet" to Recommends where it is
currently missing as cqrlog contains a menu shortcut to run
xplanet with the package manager not making sure it's actually
installed [3].
Please consider unblocking cqrlog_1.8.2-1.1 which is currently
in DELAYED/5 [4].
Adrian
> [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=20
> [2] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=23
> [3] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=24
> [4] https://ftp-master.debian.org/deferred.html
unblock cqrlog/1.8.2-1.1
-- System Information:
Debian Release: 8.0
APT prefers testing
APT policy: (500, 'testing'), (99, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.16.0-4-amd64 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru cqrlog-1.8.2/debian/changelog cqrlog-1.8.2/debian/changelog
--- cqrlog-1.8.2/debian/changelog 2014-10-04 17:14:15.0 +0200
+++ cqrlog-1.8.2/debian/changelog 2015-02-12 02:13:37.0 +0100
@@ -1,3 +1,17 @@
+cqrlog (1.8.2-1.1) unstable; urgency=medium
+
+ * Non-maintainer upload.
+ * Switch the order of Recommends mariadb-server and mysql-server in
+debian/control to fix the problem that cqrlog cannot be installed
+when mysql-server is not installed (Closes: #20).
+ * Add mariadb-client as an alternative dependency for cqrlog in debian/control
+to fix the installation when using cqrlog with MariaDB (Closes: #23).
+ * Add xplanet to Recommends in debian/control as cqrlog contains a menu
+shortcut for it in its main window which is otherwise useless
+(Closes: #24).
+
+ -- John Paul Adrian Glaubitz Thu, 12 Feb 2015 02:11:34 +0100
+
cqrlog (1.8.2-1) unstable; urgency=medium
* New upstream release.
diff -Nru cqrlog-1.8.2/debian/control cqrlog-1.8.2/debian/control
--- cqrlog-1.8.2/debian/control 2014-07-27 22:01:40.0 +0200
+++ cqrlog-1.8.2/debian/control 2015-02-11 23:27:21.0 +0100
@@ -9,8 +9,8 @@
Package: cqrlog
Architecture: any
-Depends: ${shlibs:Depends}, ${misc:Depends}, libssl-dev, mysql-client, libhamlib2 (>= 1.2.10), libhamlib-utils (>= 1.2.10)
-Recommends: mariadb-server | mysql-server
+Depends: ${shlibs:Depends}, ${misc:Depends}, libssl-dev, mysql-client | mariadb-client, libhamlib2 (>= 1.2.10), libhamlib-utils (>= 1.2.10)
+Recommends: mysql-server | mariadb-server, xplanet
Description: Advanced logging program for hamradio operators
CQRLOG is an advanced ham radio logger based on MySQL embedded database.
Provides radio control based on hamlib libraries (currently support of 140+
Bug#774428: unblock: simpleburn/1.7.0-2
On 02/11/2015 12:34 AM, Mehdi Dogguy wrote: > Looks like a sensible plan. Can we help to make that happen? Sure. I am just waiting for Mateusz to make another upload to mentors. Mateusz, ping? Otherwise I'd be happy to NMU. -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/54df28ef.3040...@physik.fu-berlin.de
Bug#774428: unblock: simpleburn/1.7.0-2
On 02/14/2015 03:54 PM, Mateusz Łukasik wrote:
> I think now it's done:
> http://mentors.debian.net/debian/pool/main/s/simpleburn/simpleburn_1.7.0-3.dsc
Thanks! I trimmed down your changes a bit to increase the chance for an
unblock.
Attaching the debdiff with the changes between 1.7.0-1 and 1.7.0-3 for
the release team.
Adrian
--
.''`. John Paul Adrian Glaubitz
: :' : Debian Developer - glaub...@debian.org
`. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de
`-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
diff -Nru simpleburn-1.7.0/debian/changelog simpleburn-1.7.0/debian/changelog
--- simpleburn-1.7.0/debian/changelog 2014-07-28 14:22:17.0 +0200
+++ simpleburn-1.7.0/debian/changelog 2015-02-15 10:52:28.0 +0100
@@ -1,3 +1,21 @@
+simpleburn (1.7.0-3) unstable; urgency=medium
+
+ * Drop fix-bashisms.patch which contained errors and was
+too invasive to be considered during the Jessie freeze.
+ * Add debian/patches/replace_shebangs.patch to replace all
+#!/bin/sh shebangs with #!/bin/bash. (Closes: #772365)
+
+ -- Mateusz Åukasik Sat, 14 Feb 2015 15:46:32 +0100
+
+simpleburn (1.7.0-2) unstable; urgency=medium
+
+ * Add patch to fix bashism in /bin/sh script -- thanks to
+Georges Khaznadar for the help.
+(Closes: #772365)
+ * Bump Standards-Version to 3.9.6 (no changes needed).
+
+ -- Mateusz Åukasik Wed, 31 Dec 2014 15:22:53 +0100
+
simpleburn (1.7.0-1) unstable; urgency=medium
* New upstream release. (LP: #1279659)
diff -Nru simpleburn-1.7.0/debian/control simpleburn-1.7.0/debian/control
--- simpleburn-1.7.0/debian/control 2014-02-11 12:18:00.0 +0100
+++ simpleburn-1.7.0/debian/control 2014-12-31 15:13:28.0 +0100
@@ -4,7 +4,7 @@
Maintainer: Mateusz Åukasik
Build-Depends: debhelper (>= 9), cmake (>= 2.6), pkg-config, libudev-dev,
libburn-dev, libgtk2.0-dev (>= 2.12)
-Standards-Version: 3.9.5
+Standards-Version: 3.9.6
Homepage: http://simpleburn.tuxfamily.org
Vcs-Git: git://github.com/mati75/simpleburn.git
Vcs-Browser: https://github.com/mati75/simpleburn.git
diff -Nru simpleburn-1.7.0/debian/patches/replace_shebangs.patch simpleburn-1.7.0/debian/patches/replace_shebangs.patch
--- simpleburn-1.7.0/debian/patches/replace_shebangs.patch 1970-01-01 01:00:00.0 +0100
+++ simpleburn-1.7.0/debian/patches/replace_shebangs.patch 2015-02-15 10:43:08.0 +0100
@@ -0,0 +1,34 @@
+Description: Replace all #!/bin/sh shebangs with #!/bin/bash
+Author: Mateusz Åukasik
+Bug-Debian: https://bugs.debian.org/772365
+
+Index: simpleburn-1.7.0/scripts/simpleburn-detect.sh
+===
+--- simpleburn-1.7.0.orig/scripts/simpleburn-detect.sh
simpleburn-1.7.0/scripts/simpleburn-detect.sh
+@@ -1,4 +1,4 @@
+-#!/bin/sh
++#!/bin/bash
+
+ function detect() {
+ device=$1 #assumes it is a valid CD / DVD device
+Index: simpleburn-1.7.0/scripts/simpleburn-gauges.sh
+===
+--- simpleburn-1.7.0.orig/scripts/simpleburn-gauges.sh
simpleburn-1.7.0/scripts/simpleburn-gauges.sh
+@@ -1,4 +1,4 @@
+-#!/bin/sh
++#!/bin/bash
+
+ function mencodergauge () {
+ totalsize=$1 #bytes
+Index: simpleburn-1.7.0/scripts/simpleburn.sh
+===
+--- simpleburn-1.7.0.orig/scripts/simpleburn.sh
simpleburn-1.7.0/scripts/simpleburn.sh
+@@ -1,4 +1,4 @@
+-#!/bin/sh
++#!/bin/bash
+
+ function printusage() {
+ echo "error: invalid parameters"
diff -Nru simpleburn-1.7.0/debian/patches/series simpleburn-1.7.0/debian/patches/series
--- simpleburn-1.7.0/debian/patches/series 2013-07-23 00:00:00.0 +0200
+++ simpleburn-1.7.0/debian/patches/series 2015-02-15 10:51:29.0 +0100
@@ -1 +1,2 @@
fix_desktop.patch
+replace_shebangs.patch
Bug#856346: unblock: ufraw/0.22-1.1
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
Hi!
ufraw was previously failing to build from source on architectures
like armel and armhf because of the signedness of a single array
being declared incorrectly (char instead of signed char).
The attached debdiff fixes the packages.
unblock ufraw/0.22-1.1
-- System Information:
Debian Release: 9.0
APT prefers buildd-unstable
APT policy: (500, 'buildd-unstable'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
--
.''`. John Paul Adrian Glaubitz
: :' : Debian Developer - glaub...@debian.org
`. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de
`-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
diff -Nru ufraw-0.22/debian/changelog ufraw-0.22/debian/changelog
--- ufraw-0.22/debian/changelog 2016-05-13 15:11:42.0 +0200
+++ ufraw-0.22/debian/changelog 2017-02-27 14:31:26.0 +0100
@@ -1,3 +1,10 @@
+ufraw (0.22-1.1) unstable; urgency=medium
+
+ * Non-maintainer upload.
+ * Add patch to fix signedness of src[]. (Closes: #856227).
+
+ -- John Paul Adrian Glaubitz Mon, 27 Feb 2017
14:31:26 +0100
+
ufraw (0.22-1) unstable; urgency=low
* New upstream release (Closes: #803673).
diff -Nru ufraw-0.22/debian/patches/03_fix-unsigned-char.patch
ufraw-0.22/debian/patches/03_fix-unsigned-char.patch
--- ufraw-0.22/debian/patches/03_fix-unsigned-char.patch1970-01-01
01:00:00.0 +0100
+++ ufraw-0.22/debian/patches/03_fix-unsigned-char.patch2017-02-27
14:31:19.0 +0100
@@ -0,0 +1,15 @@
+Description: Fix unsigned char declaration of src[]
+Author: John Paul Adrian Glaubitz
+Last-Update: 2017-02-27
+
+--- ufraw-0.22.orig/dcraw.cc
ufraw-0.22/dcraw.cc
+@@ -2285,7 +2285,7 @@ void CLASS quicktake_100_load_raw()
+
+ void CLASS kodak_radc_load_raw()
+ {
+- static const char src[] = {
++ static const signed char src[] = {
+ 1,1, 2,3, 3,4, 4,2, 5,7, 6,5, 7,6, 7,8,
+ 1,0, 2,1, 3,3, 4,4, 5,2, 6,7, 7,6, 8,5, 8,8,
+ 2,1, 2,3, 3,0, 3,2, 3,4, 4,6, 5,5, 6,7, 6,8,
diff -Nru ufraw-0.22/debian/patches/series ufraw-0.22/debian/patches/series
--- ufraw-0.22/debian/patches/series2016-05-13 15:10:26.0 +0200
+++ ufraw-0.22/debian/patches/series2017-02-27 14:30:30.0 +0100
@@ -1,2 +1,3 @@
01_no-gimp-remote.patch
02_CVE-2015-8366.patch
+03_fix-unsigned-char.patch
Bug#781743: unblock (pre-approval): kde-workspace/4:4.11.13-2.1
Package: release.debian.org Severity: normal Tags: patch User: release.debian@packages.debian.org Usertags: unblock Dear Release Team! I know it's a bit unlucky to ask for an unblock so late in the release progress, however, I thought I would give it a try anyway. My proposed NMU to kde-workspace adds systemd support for the kdm display manager which is built from this package. kdm currently does not have native systemd support in the form of a unit file (see #755359 [1]). My reasoning behind adding systemd support to kdm is the fact that kdm is currently the only display manager we have on Linux that is really usable for corporate environments, all other display managers have deficits in this regard. For example, gdm uses AccountsService which stores session and language settings locally, meaning that whenever a user switches their machine on a network with shared NFS home directory, they have to choose their favourite session and language anew [2]. This might be fixed for gdm in the future when AccountService becomes capable of networking, however, this is currently not the case. Additionally, gdm has this very annoying screen shield inspired by Windows 8.x which cannot easily disabled globally. The screen shield might look nice but it often leads to confusion to users in corporate environments when they expect to see a login screen instead. As an alternative, lightdm uses the AccountService mechanism as well since version 1.0.0, more or less successfully though as lightdm currently seems to be completely broken in this regard. It does not remember the last session and language per user at all, but simply sets session and language to the values which were set by the last user who logged in [3]. The same applies to LXDM, unfortunately. I also tested sddm which is currently in NEW [4]. While sddm allows to set session and language, it cannot remember these settings per user but just saves the last selected session and language - regardless of the user - in /var/lib/sddm/state.conf. The sddm developers have promised to provide a solution [5] for this in the future, but this is still on the TODO list and won't find its way into Jessie either way. To conclude, kdm is currently the only usable display manager on Linux and Debian and we have therefore chosen it as our default display manager at the faculty. And since Debian Jessie defaults to systemd, I think it's very sensible to have systemd support added to kdm which allows to configure the kdm service more flexibly and reliably with the tools provided by systemd avoiding issues like #755359 [1]. I am attaching the full debdiff which is rather small and should be easy for review. However, please feel free to reject this change at your own preference. Consider this unblock request merely a suggestion. CC'ing debian-qt-...@lists.debian.org. Cheers, Adrian > [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=755359 > [2] https://bugzilla.redhat.com/show_bug.cgi?id=617465 > [3] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683662#17 > [4] https://ftp-master.debian.org/new/sddm_0.11.0-1.html > [5] https://github.com/sddm/sddm/issues/346 unblock kde-workspace/4:4.11.13-2.1 -- System Information: Debian Release: 8.0 APT prefers testing APT policy: (500, 'testing'), (99, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) diff -Nru kde-workspace-4.11.13/debian/changelog kde-workspace-4.11.13/debian/changelog --- kde-workspace-4.11.13/debian/changelog 2014-11-07 10:11:29.0 +0100 +++ kde-workspace-4.11.13/debian/changelog 2015-04-02 11:17:10.0 +0200 @@ -1,3 +1,16 @@ +kde-workspace (4:4.11.13-2.1) unstable; urgency=medium + + * Non-maintainer upload. + * Add systemd support: (Closes: #755359) +- debian/control: + + Add dh_systemd (>= 1.14) to Build-Depends. +- debian/kdm.postinst: + + Create symbolic link to systemd service file of default display manager. +- debian/rules: + + Install kdm systemd service file using dh_system_start. + + -- John Paul Adrian Glaubitz Thu, 02 Apr 2015 11:16:43 +0200 + kde-workspace (4:4.11.13-2) unstable; urgency=medium * New patch: upstream_do_not_pass_ntpUtility_as_an_argument.patch fix diff -Nru kde-workspace-4.11.13/debian/control kde-workspace-4.11.13/debian/control --- kde-workspace-4.11.13/debian/control 2014-11-07 10:11:29.0 +0100 +++ kde-workspace-4.11.13/debian/control 2015-04-02 11:08:32.0 +0200 @@ -75,7 +75,8 @@ python-dev (>= 2.6.6-3~), shared-desktop-ontologies (>= 0.8), udev [linux-any], - zlib1g-dev + zlib1g-dev, +
Bug#781743: unblock (pre-approval): kde-workspace/4:4.11.13-2.1
On 04/02/2015 01:47 PM, John Paul Adrian Glaubitz wrote: > I am attaching the full debdiff which is rather small and should > be easy for review. I cleaned up the patch a bit. I fixed the tabstops and added an additional line to the debian/changelog indicating that the new file debian/kdm.service was added to the source package. Attaching revision 2 of my debdiff. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 diff -Nru kde-workspace-4.11.13/debian/changelog kde-workspace-4.11.13/debian/changelog --- kde-workspace-4.11.13/debian/changelog 2014-11-07 10:11:29.0 +0100 +++ kde-workspace-4.11.13/debian/changelog 2015-04-02 14:38:19.0 +0200 @@ -1,3 +1,18 @@ +kde-workspace (4:4.11.13-2.1) unstable; urgency=medium + + * Non-maintainer upload. + * Add systemd support: (Closes: #755359) +- debian/control: + + Add dh_systemd (>= 1.14) to Build-Depends. +- debian/kdm.postinst: + + Create symbolic link to systemd service file of default display manager. +- debian/kdm.service: + + Add new systemd service file for kdm. +- debian/rules: + + Install kdm systemd service file using dh_system_start. + + -- John Paul Adrian Glaubitz Thu, 02 Apr 2015 14:37:51 +0200 + kde-workspace (4:4.11.13-2) unstable; urgency=medium * New patch: upstream_do_not_pass_ntpUtility_as_an_argument.patch fix diff -Nru kde-workspace-4.11.13/debian/control kde-workspace-4.11.13/debian/control --- kde-workspace-4.11.13/debian/control 2014-11-07 10:11:29.0 +0100 +++ kde-workspace-4.11.13/debian/control 2015-04-02 13:59:35.0 +0200 @@ -75,7 +75,8 @@ python-dev (>= 2.6.6-3~), shared-desktop-ontologies (>= 0.8), udev [linux-any], - zlib1g-dev + zlib1g-dev, + dh-systemd (>= 1.14) Standards-Version: 3.9.5 X-Python-Version: >= 2.5 XS-Testsuite: autopkgtest diff -Nru kde-workspace-4.11.13/debian/kdm.postinst kde-workspace-4.11.13/debian/kdm.postinst --- kde-workspace-4.11.13/debian/kdm.postinst 2014-11-07 10:11:29.0 +0100 +++ kde-workspace-4.11.13/debian/kdm.postinst 2015-04-02 14:09:04.0 +0200 @@ -78,6 +78,15 @@ if [ -d /var/lib/kdm ]; then chown -R kdm /var/lib/kdm fi +# set default-display-manager systemd service link according to our config +if [ -e "$DEFAULT_DISPLAY_MANAGER_FILE" -a -d /etc/systemd/system/ ]; then +SERVICE=/lib/systemd/system/$(basename $(cat "$DEFAULT_DISPLAY_MANAGER_FILE")).service +if [ -e "$SERVICE" ]; then +ln -sf "$SERVICE" /etc/systemd/system/display-manager.service +else +echo "ERROR: $SERVICE is the selected default display manager but does not exist" >&2 +fi +fi ;; abort-upgrade|abort-remove|abort-deconfigure) diff -Nru kde-workspace-4.11.13/debian/kdm.service kde-workspace-4.11.13/debian/kdm.service --- kde-workspace-4.11.13/debian/kdm.service 1970-01-01 01:00:00.0 +0100 +++ kde-workspace-4.11.13/debian/kdm.service 2015-04-02 11:10:27.0 +0200 @@ -0,0 +1,10 @@ +[Unit] +Description=KDE Display Manager +Documentation=man:kdm(1) +After=systemd-user-sessions.service + +[Service] +ExecStartPre=/bin/sh -c '[ "$(cat /etc/X11/default-display-manager 2>/dev/null)" = "/usr/bin/kdm" ]' +ExecStart=/usr/bin/kdm +Restart=always +IgnoreSIGPIPE=no diff -Nru kde-workspace-4.11.13/debian/rules kde-workspace-4.11.13/debian/rules --- kde-workspace-4.11.13/debian/rules 2014-11-07 10:11:29.0 +0100 +++ kde-workspace-4.11.13/debian/rules 2015-04-02 11:07:34.0 +0200 @@ -1,6 +1,6 @@ #!/usr/bin/make -f -dh = --with=python2 +dh = --with=python2 --with=systemd include /usr/share/pkg-kde-tools/qt-kde-team/2/debian-qt-kde.mk libpkgs_addsubst_allLibraries = kde-workspace-dev @@ -39,6 +39,9 @@ $(overridden_command) -pkdm --noscripts $(overridden_command) --remaining-packages +override_dh_systemd_start: + $(overriden_command) -pkdm --no-start -r kdm.service + pkgs_with_install_linux = $(patsubst debian/%.install.linux,%,$(wildcard debian/*.install.linux)) override_dh_install: $(overridden_command)
Bug#781743: unblock (pre-approval): kde-workspace/4:4.11.13-2.1
On 04/02/2015 04:26 PM, John Paul Adrian Glaubitz wrote: > Attaching revision 2 of my debdiff. While reviewing my own patch, I noticed a typo in the change I made in the debian/rules file (overriden_command -> overridden_command). I have fixed this now and made the changelog entry slightly more accurate. Attaching revision 3 of my patch. Sorry for the noise! Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 diff -Nru kde-workspace-4.11.13/debian/changelog kde-workspace-4.11.13/debian/changelog --- kde-workspace-4.11.13/debian/changelog 2014-11-07 10:11:29.0 +0100 +++ kde-workspace-4.11.13/debian/changelog 2015-04-02 16:50:58.0 +0200 @@ -1,3 +1,18 @@ +kde-workspace (4:4.11.13-2.1) unstable; urgency=medium + + * Non-maintainer upload. + * Add systemd support for kdm: (Closes: #755359) +- debian/control: + + Add dh_systemd (>= 1.14) to Build-Depends. +- debian/kdm.postinst: + + Create symbolic link to systemd service file of default display manager. +- debian/kdm.service: + + Add new systemd service file for kdm. +- debian/rules: + + Install kdm systemd service file using dh_system_start. + + -- John Paul Adrian Glaubitz Thu, 02 Apr 2015 16:50:40 +0200 + kde-workspace (4:4.11.13-2) unstable; urgency=medium * New patch: upstream_do_not_pass_ntpUtility_as_an_argument.patch fix diff -Nru kde-workspace-4.11.13/debian/control kde-workspace-4.11.13/debian/control --- kde-workspace-4.11.13/debian/control 2014-11-07 10:11:29.0 +0100 +++ kde-workspace-4.11.13/debian/control 2015-04-02 13:59:35.0 +0200 @@ -75,7 +75,8 @@ python-dev (>= 2.6.6-3~), shared-desktop-ontologies (>= 0.8), udev [linux-any], - zlib1g-dev + zlib1g-dev, + dh-systemd (>= 1.14) Standards-Version: 3.9.5 X-Python-Version: >= 2.5 XS-Testsuite: autopkgtest diff -Nru kde-workspace-4.11.13/debian/kdm.postinst kde-workspace-4.11.13/debian/kdm.postinst --- kde-workspace-4.11.13/debian/kdm.postinst 2014-11-07 10:11:29.0 +0100 +++ kde-workspace-4.11.13/debian/kdm.postinst 2015-04-02 14:09:04.0 +0200 @@ -78,6 +78,15 @@ if [ -d /var/lib/kdm ]; then chown -R kdm /var/lib/kdm fi +# set default-display-manager systemd service link according to our config +if [ -e "$DEFAULT_DISPLAY_MANAGER_FILE" -a -d /etc/systemd/system/ ]; then +SERVICE=/lib/systemd/system/$(basename $(cat "$DEFAULT_DISPLAY_MANAGER_FILE")).service +if [ -e "$SERVICE" ]; then +ln -sf "$SERVICE" /etc/systemd/system/display-manager.service +else +echo "ERROR: $SERVICE is the selected default display manager but does not exist" >&2 +fi +fi ;; abort-upgrade|abort-remove|abort-deconfigure) diff -Nru kde-workspace-4.11.13/debian/kdm.service kde-workspace-4.11.13/debian/kdm.service --- kde-workspace-4.11.13/debian/kdm.service 1970-01-01 01:00:00.0 +0100 +++ kde-workspace-4.11.13/debian/kdm.service 2015-04-02 11:10:27.0 +0200 @@ -0,0 +1,10 @@ +[Unit] +Description=KDE Display Manager +Documentation=man:kdm(1) +After=systemd-user-sessions.service + +[Service] +ExecStartPre=/bin/sh -c '[ "$(cat /etc/X11/default-display-manager 2>/dev/null)" = "/usr/bin/kdm" ]' +ExecStart=/usr/bin/kdm +Restart=always +IgnoreSIGPIPE=no diff -Nru kde-workspace-4.11.13/debian/rules kde-workspace-4.11.13/debian/rules --- kde-workspace-4.11.13/debian/rules 2014-11-07 10:11:29.0 +0100 +++ kde-workspace-4.11.13/debian/rules 2015-04-02 16:50:17.0 +0200 @@ -1,6 +1,6 @@ #!/usr/bin/make -f -dh = --with=python2 +dh = --with=python2 --with=systemd include /usr/share/pkg-kde-tools/qt-kde-team/2/debian-qt-kde.mk libpkgs_addsubst_allLibraries = kde-workspace-dev @@ -39,6 +39,9 @@ $(overridden_command) -pkdm --noscripts $(overridden_command) --remaining-packages +override_dh_systemd_start: + $(overridden_command) -pkdm --no-start -r kdm.service + pkgs_with_install_linux = $(patsubst debian/%.install.linux,%,$(wildcard debian/*.install.linux)) override_dh_install: $(overridden_command)
Bug#781743: unblock (pre-approval): kde-workspace/4:4.11.13-2.1
Hi Sune! On 04/06/2015 07:31 PM, Sune Vuorela wrote: > I wouldn't mind a better systemd integration, but your patch seems half done. > > You have lost the integration with the desktop-base package and the related > theming. Indeed, as Moritz pointed out here [1], I have overlooked this part. > Do you even get a valid kdm configuration by this patch in a new setup? > > the setup_config() function in the current init script is there for a reason. I wasn't actually aware that there additional code in the sysvinit init script that would customize or even create a new kdmrc. The kdm package actually ships a kdmrc file, so I just added a few lines to make the package systemd-aware. In any case, I'd be very happy to have my suggested patch by the one that Moritz came up with, updated to work with the default-display- manager mechanism. My patch does at least work in the sense that systemd treats kdm as a native systemd unit which is configured using the debconf mechanism to choose the default display manager. Adrian > [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=755359#165 -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5522d087.9060...@physik.fu-berlin.de
Bug#895193: transition: openmpi
On 04/11/2018 10:53 AM, Alastair McKinstry wrote: As of 3.0.1, openmpi now works on Big-Endian powerpc (which was to be a problem; it had been dropped upstream because of an unknown bug, now fixed). Oh, really, they fixed that? I already had given up hopes and therefore ignored the thread on github out of frustration. The other non-release archs were failing due to missing dependencies: in particular java support (not used by any package in stable/testing) and pmix (new; not used in testing/stable; pmix enables scaling to ~100,000+ nodes, which is unlikely to be needed). I am working on fixing the remaining OpenJDK issues. I'm an upstream committer in the OpenJDK project, so I can commit all changes myself. So, the expected changes to mpi-defaults will no longer be needed. Yay, thanks so much for this! Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Bug#894159: Bug#898542: qt4-x11: FTBFS with libicu60
On 05/13/2018 03:08 PM, Lisandro Damián Nicanor Pérez Meyer wrote: > I have not checked if other distros ship a patch for this (or maybe > they switched to the embedded copy, if applicable). I will at some > point but I can't promise being fast here. openSUSE seems to have a patch [1] we can use that is also already used in Fedora. I'll test it. Adrian > [1] > https://build.opensuse.org/package/view_file/KDE:Qt/libqt4/fix-build-icu59.patch?expand=1 -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Bug#894159: Bug#898542: qt4-x11: FTBFS with libicu60
Control: tags 898542 +patch
On 05/13/2018 03:35 PM, John Paul Adrian Glaubitz wrote:
openSUSE seems to have a patch [1] we can use that is also already used
in Fedora. I'll test it.
Attaching openSUSE's patch which fixes the problem for me.
Adrian
--
.''`. John Paul Adrian Glaubitz
: :' : Debian Developer - glaub...@debian.org
`. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de
`-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
From: Fabian Vogt
Subject: Fix build with ICU >= 59
ICU >= 59 requires C++11 for its header files.
Qt can't be compiled with -std=c++11 as a whole, so only enable
it for qlocale_icu.cpp.
Index: qt-everywhere-opensource-src-4.8.7/src/corelib/tools/tools.pri
===
--- qt-everywhere-opensource-src-4.8.7.orig/src/corelib/tools/tools.pri
+++ qt-everywhere-opensource-src-4.8.7/src/corelib/tools/tools.pri
@@ -102,7 +102,15 @@ contains(QT_CONFIG, zlib):include($$PWD/
else:include($$PWD/../../3rdparty/zlib_dependency.pri)
contains(QT_CONFIG,icu) {
-SOURCES += tools/qlocale_icu.cpp
+cpp11.name = cpp11
+cpp11.input = SOURCES_CPP11
+cpp11.dependency_type = TYPE_C
+cpp11.variable_out = OBJECTS
+cpp11.output = ${QMAKE_VAR_OBJECTS_DIR}${QMAKE_FILE_IN_BASE}$${first(QMAKE_EXT_OBJ)}
+cpp11.commands = $${QMAKE_CXX} $(CXXFLAGS) -std=c++11 $(INCPATH) -c ${QMAKE_FILE_IN} -o ${QMAKE_FILE_OUT}
+QMAKE_EXTRA_COMPILERS += cpp11
+
+SOURCES_CPP11 += tools/qlocale_icu.cpp
DEFINES += QT_USE_ICU
}
Re: Arch qualification for buster: call for DSA, Security, toolchain concernsj
On 06/29/2018 10:41 AM, Luke Kenneth Casson Leighton wrote: > On Fri, Jun 29, 2018 at 8:16 AM, Uwe Kleine-König > wrote: > >>> In short, the hardware (development boards) we're currently using to >>> build armel and armhf packages aren't up to our standards, and we >>> really, really want them to go away when stretch goes EOL (expected in >>> 2020). We urge arm porters to find a way to build armhf packages in >>> VMs or chroots on server-class arm64 hardware. > > from what i gather the rule is that the packages have to be built > native. is that a correct understanding or has the policy changed? Native in the sense that the CPU itself is not emulated which is the case when building arm32 packages on arm64. We're also building i386 packages on amd64 and we used to build powerpc packages on ppc64 (and we will continue to do that once the move of powerpc to ports has been completed). I think that building on arm64 after fixing the bug in question is the way to move forward. I'm surprised the bug itself hasn't been fixed yet, doesn't speak for ARM. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Re: Arch qualification for buster: call for DSA, Security, toolchain concernsj
> On Jun 29, 2018, at 9:50 AM, Jonathan Wiltshire wrote: > >> On Fri, Jun 29, 2018 at 11:04:26PM +0900, Roger Shimizu wrote: >> I see armel is already not a candidate for buster [0]. >> So it seems we can discuss armhf, but no armel at all. >> I don't agree with this idea. >> And I think we should treat armel and armhf equally. > > Please review the mail which originated this thread [1] where you will see > that both armel and armhf are affected by DSA's concern. If I understand > correctly, virtualisation of architectures in general is a possible > solution but there are problems in the case of these two. I have just talked to a colleague at SUSE about this and apparently Alex Graf from SUSE’s QEMU/KVM team has fixed many bugs regarding ARM32 on ARM64 virtualization. If I understand correctly, SUSE builds ARMv7 on ARM64 without problems. I have reached out to Alex Graf and asked him for clarification on what possibilities we currently have. Adrian
Bug#809319: jessie-pu: package sane-backends/1.0.24-8
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 12/31/2015 11:42 AM, Jörg Frings-Fürst wrote: > I have uploaded the version 1.0.24-8+deb8u1 of sane-backends to > mentors[1]. > > Please can someone review and upload the package. Please generate the changelog entry for the backported package with "dch --bpo", this will generate the correct changelog entry format and version: sane-backends (1.0.24-8~bpo8+1) jessie-backports; urgency=medium * Rebuild for jessie-backports. * -- John Paul Adrian Glaubitz Mon, 04 Jan 2016 14:38:42 +0100 Please fix that first. There are also some spelling mistakes in the changelog. Adrian - -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQIcBAEBCAAGBQJWinYSAAoJEHQmOzf1tfkT20gP/j+FWEVTox3WP+mxqUpoLO3j wQyvyVkaawEVHOA9bk6IKTim99EgnKg4yOulUYUa8kvptvxwonc51Hp0sLfWtBmc 4fTgrZO0QOfQxnC3YU7UJmprGUIQzLX2YjHR8NcUCFa5f+xYlMjdjSPOGITNfb6x fQIBqPbkw4ymWbGVo/dCaaO66VXYsOH7XiD088IxsRusyKV/yYICcY4YcwvwQCv/ tIEqiWcmsT7a0uoUC2U3NzFd+c60OGL7P5foE4d8B38vDB51BNAlvFZwYvwwkzuH RZ6JLfG1MNbMhVXGesJbvTw5HTH/aBPukHL/Uh9La0ZI4NW9oE2eOMTQuX1Qiz9Z TIrvb027QreuqDuSRALV+YKGsgZ4H207RHVkmRK+uLMB32hYymlCctcLq6qFNKcc KtQjcwYHQhmRGyQFjNYb8NtKnr6GOy6tGjqiXOMHMA/U45324lBiU+xeoFkLgNpI En5Rwu9x3Rsn+PnX095AzwDONqYni6TuzToCUw5dKvzoweSNQyg9awbogeX/c4sG UGkTfKIVLIGt9mhdqEOlieTkHL3XdaS1gk5n4VOBOYkFa56ESa9mpoaHVGPxvJxO iqli64b+2sSsIY7+Apj6ciLJRQAwch7a+GD84q1UXeBS9qChnKPz6Ut4jy5ew6rt Tps7IKih9l6mDNk4oHE7 =M3Ld -END PGP SIGNATURE-
Bug#809319: jessie-pu: package sane-backends/1.0.24-8
On 01/04/2016 03:39 PM, Adam D. Barratt wrote: > That makes no sense. This is a stable update, not a backport. Ah, sorry, I missed that. I'll have another look. The word "jessie" just triggered the bpo mechanism in my head :). -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Bug#809319: jessie-pu: package sane-backends/1.0.24-8
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 02/21/2016 07:38 AM, Jörg Frings-Fürst wrote: > I have no upload rights. So I ask my sponsor to upload it. But he > has a lot of work in his job. > > It's fine if someone can upload it. The package is on mentors[1]. I'm taking care of it right now. No worries. Just got up. It's Sunday after all ;). Adrian - -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQIcBAEBCAAGBQJWyXb6AAoJEHQmOzf1tfkTV9gP/3aECdvRBz3vXvbsLxygbfzG 57NEnrEY0eREiEKWZ1WqUEbyztVZjihqWxrv45S4uooqMdIFqKHIhbTDHaN4rfW8 zBFx/PtYUagc/yhyTEj9VxyLYBz6HLue5BWEfbSqe8AhzQf1xc2bdNv0lfbqbX8X iJJcAyBxRI1W9hotRDzl8EsYoVhNlsaI4jpNeQSwt92aDyM4kUhRTL5yOdD2khTk dWXcoS1bR3x9V1cfEhZ1bZMf7WXRFWHzOd29nB9DNhV2Dx5u4fC9ak3binVHThyV UL+KYi9dQwuB943RXb+6MljsNzTmrZBU64d8980fNsft7T4UZk8UeGriW9vsPCU4 GsYsq/vXDGPl1DLvc5BHUXBnTzhMUs0wnRT/KLgcn28HS1ZsFfcYk0WrcwFWZ636 ya1nT6N9zf3sZ9GEhJG/YImCTuE08fQDtEDjSjmonBUjhwL8b8CdX2n+tIbr+bvn qpOsiyCk9xbzkMxVoHppa22fQBwuKvhClE7StZjfsxCPeDnK02UvnAnGm7fMws+B uBF4xTKUp4OX8Ttl6k3xpTeezHMqN6rLT+dRQse5L4fSTzv6FUxCgAtSP1knD6C9 uw10ZogJpBoIcuR2sMYbZkwXxER71uVIp9WU6kJ9Rt6k86VdQMv066hHS1OyGava 9pQyMSrowbQlETt9djFL =uejZ -END PGP SIGNATURE-
Bug#785047: vsftpd/3.0.2-17+deb8u1
On 02/20/2016 11:09 PM, Julien Cristau wrote: > Doesn't look like that's happening. Closing. Sorry, I completely missed the pu updates Joerg prepared. That was not done intentionally, but it was rather somewhere lost in communication. I'd be happy to take carre of vsftpd. @Joerg: Could you re-upload the package to mentors? Thanks, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
Bug#785047: vsftpd/3.0.2-17+deb8u1
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Control: reopen -1 On 02/21/2016 11:08 AM, Jörg Frings-Fürst wrote: >> @Joerg: Could you re-upload the package to mentors? >> > > done.. [1] Reopening since I am preparing the upload now. Adrian - -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQIcBAEBCAAGBQJWyZfSAAoJEHQmOzf1tfkTTDAQAIfaINeqRqwFAkHslYKf9BjV 1St7RcUfUBk33JG+RMrSFS8ejZ2peDQAYVcgaLQrs0W4Tr0RuiLOeeD2mhPWTdX0 Uediyojh2zjzJHD6rTPe/I4CZMaaXNmUX3uUzmZZYiNwLcH9epbP9OG7v7K8mDC7 w2JS7EBpk0q8B+sZw+5ZC5gtwGud3n1GiJREm3GjZUOu7SSf1ii46Z+IBV1yeY4p Ufzp5FiY6nafYLakZbffATxXUvLIqW6+HpCdMjxJS4insrUiKDQ1CRnKVt+cyUf1 zgyPhVuOWmvqzoxau3Le4alFv+O5e8d1UZ1ye19kINxUjg+3LVKh9vJP5lP3fcUw F0mQdkkVI11nPilxSkQNIlSGZm6+ccCC63AWpD62uZw9DQdMf/FYsMZnxPzdfmlf 8s0TzuOwpUDIC8e+PVzNrSBfe6Rdn4VbZ4zmHYeajD6aM78vZSr+NfNlC1GNhqVu i6pDJD5X2kTDTrr6b1HuQHfSjyoxM74t57DQduQDkeaMJlJ6gd89mg1kd7wKJ6zT Q57o5axq0OVRTXiqll2BlsWGkLXcObSjsku9nn2IFxmygxmzp0dQ+1FbkpQDbaTR HZOIqhBjPIZ5p3Xx2ebnfmWR2aKUZ02b3CqZnYClJOPo7e5CdheBgi7B1xc2bfKy igrVcPwegKURt93/NM6W =vbBf -END PGP SIGNATURE-
Bug#769540: unblock: pidgin/2.10.10-1.1
On 11/15/2014 03:30 AM, Paul Wise wrote: > On Fri, Nov 14, 2014 at 7:59 PM, John Paul Adrian Glaubitz wrote: > >> I have just uploaded an NMU for Pidgin which fixes a login issue >> with MSN which occurred after Microsoft changed the application >> ID that the client needs to send in order to be able to retrieve >> the contact list. > > Didn't Microsoft retire MSN in favour of Skype? Yes, they did. However, you can still sign on to MSN just fine and use it normally. Nothing changed even though Microsoft said they would migrate to Skype long time ago. I'm using it here with my fixed version without problems. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5467411c.7030...@physik.fu-berlin.de
Bug#769390: unblock: sane-backends/1.0.24-4
On 11/20/2014 08:22 PM, Jonathan Wiltshire wrote: Would dpkg's maintscript helper be of use here? Yes. But I don't make to much changes in this version. I don't mind a change to use maintscripthelper, but I'm also ok with your current upload. Which would you prefer? I'm happy to sponsor him if Joerg decides to make another upload for that. I'm very glad he picked up SANE which had been orphaned for quite a while now :). Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546e407d.40...@physik.fu-berlin.de
Bug#695237: unblock: gimp/2.8.2-2
Package: release.debian.org
Followup-For: Bug #695237
Hello Moritz,
you should provide a diff which shows the changes made from 2.8.2-1
to 2.8.2-2, otherwise the release team won't probably unblock
your package.
I have created the diff from the debian packaging VCS [1] and I am
attaching the generated diff.
Cheers,
Adrian
> [1] git://anonscm.debian.org/collab-maint/gimp.git
diff --git a/debian/changelog b/debian/changelog
index 5b1c141..6d63d2c 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+gimp (2.8.2-2) unstable; urgency=high
+
+ * xwd-corruption.patch:
+- Fix memory corruption bug when reading XWD files (Closes: #693977)
+
+ -- Ari Pollak Fri, 23 Nov 2012 14:33:20 -0500
+
gimp (2.8.2-1) unstable; urgency=high
* Imported Upstream version 2.8.2
diff --git a/debian/patches/series b/debian/patches/series
index 65e0b16..9154ea8 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1 +1,2 @@
01_hurd_ftbfs.patch
+xwd-corruption.patch
diff --git a/debian/patches/xwd-corruption.patch b/debian/patches/xwd-corruption.patch
new file mode 100644
index 000..7ad85f0
--- /dev/null
+++ b/debian/patches/xwd-corruption.patch
@@ -0,0 +1,174 @@
+From 2873262fccba12af144ed96ed91be144d92ff2e1
+From: Michael Natterer
+Date: Wed, 07 Nov 2012 23:16:31 +
+Subject: Bug 687392 - Memory corruption vulnerability when reading XWD files
+Bug-Debian: http://bugs.debian.org/693977
+
+Applied and enhanced patch from andres which makes file-xwd detect
+this kind of file corruption and abort loading with an error message.
+(cherry picked from commit 0b35f6a082a0b3c372c568ea6bde39a4796acde2)
+---
+diff --git a/plug-ins/common/file-xwd.c b/plug-ins/common/file-xwd.c
+index 4e8a95e..f91d757 100644
+--- a/plug-ins/common/file-xwd.c
b/plug-ins/common/file-xwd.c
+@@ -186,11 +186,13 @@ static gint32 load_xwd_f2_d16_b16 (const gchar *,
+ static gint32 load_xwd_f2_d24_b32 (const gchar *,
+FILE *,
+L_XWDFILEHEADER *,
+- L_XWDCOLOR *);
++ L_XWDCOLOR *,
++ GError **);
+ static gint32 load_xwd_f1_d24_b1 (const gchar *,
+FILE *,
+L_XWDFILEHEADER *,
+- L_XWDCOLOR *);
++ L_XWDCOLOR *,
++ GError **);
+
+ static L_CARD32 read_card32 (FILE *,
+ gint *);
+@@ -540,7 +542,8 @@ load_image (const gchar *filename,
+ case 1:/* Single plane pixmap */
+ if ((depth <= 24) && (bpp == 1))
+ {
+- image_ID = load_xwd_f1_d24_b1 (filename, ifp, &xwdhdr, xwdcolmap);
++ image_ID = load_xwd_f1_d24_b1 (filename, ifp, &xwdhdr, xwdcolmap,
++ error);
+ }
+ break;
+
+@@ -559,7 +562,8 @@ load_image (const gchar *filename,
+ }
+ else if ((depth <= 24) && ((bpp == 24) || (bpp == 32)))
+ {
+- image_ID = load_xwd_f2_d24_b32 (filename, ifp, &xwdhdr, xwdcolmap);
++ image_ID = load_xwd_f2_d24_b32 (filename, ifp, &xwdhdr, xwdcolmap,
++ error);
+ }
+ break;
+ }
+@@ -570,7 +574,7 @@ load_image (const gchar *filename,
+ if (xwdcolmap)
+ g_free (xwdcolmap);
+
+- if (image_ID == -1)
++ if (image_ID == -1 && ! (error && *error))
+ g_set_error (error, G_FILE_ERROR, G_FILE_ERROR_FAILED,
+ _("XWD-file %s has format %d, depth %d and bits per pixel %d. "
+"Currently this is not supported."),
+@@ -1624,10 +1628,11 @@ load_xwd_f2_d16_b16 (const gchar *filename,
+ /* Load XWD with pixmap_format 2, pixmap_depth up to 24, bits_per_pixel 24/32 */
+
+ static gint32
+-load_xwd_f2_d24_b32 (const gchar *filename,
+- FILE*ifp,
+- L_XWDFILEHEADER *xwdhdr,
+- L_XWDCOLOR *xwdcolmap)
++load_xwd_f2_d24_b32 (const gchar *filename,
++ FILE *ifp,
++ L_XWDFILEHEADER *xwdhdr,
++ L_XWDCOLOR *xwdcolmap,
++ GError **error)
+ {
+ register guchar *dest, lsbyte_first;
+ gint width, height, linepad, i, j, c0, c1, c2, c3;
+@@ -1652,12 +1657,6 @@ load_xwd_f2_d24_b32 (const gchar *filename,
+ width = xwdhdr->l_pixmap_width;
+ height = xwdhdr->l_pixmap_height;
+
+- image_ID = create_new_image (filename, width, height, GIMP_RGB,
+- &layer_ID, &drawable, &pixel_rgn);
+-
+- tile_height = gimp_tile_height ();
+- data = g_malloc (tile_height * width * 3);
+-
+ redmask = xwdhdr->l_red_mask;
+ greenmask = xwdhdr->l_green_mask;
+ bluemask = xwdhdr->l_blue_mask;
+@@ -1685,6 +1684,22 @@ load_xwd_
Bug#695426: unblock: kst/2.0.3-1.3
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
Hi,
please unblock the source package "kst" 2.0.3-1.3 which closes
#632443 which is an RC bug concerning the Debian Wheezy release.
I am attaching the debdiff between the version in testing.
unblock kst/2.0.3-1.3
Cheers,
Adrian
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (500, 'testing'), (100, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.6-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -ur testing/kst-2.0.3/debian/changelog unstable/kst-2.0.3/debian/changelog
--- testing/kst-2.0.3/debian/changelog 2012-06-14 04:41:42.0 +0200
+++ unstable/kst-2.0.3/debian/changelog 2012-11-29 18:38:15.0 +0100
@@ -1,3 +1,12 @@
+kst (2.0.3-1.3) unstable; urgency=low
+
+ * Non-maintainer upload.
+ * Fix "missing Breaks+Replaces: kst-bin (<< 2.0.3)": add Breaks+Replaces to
+kst-data, thanks Andreas Beckmann.
+(Closes: #632443)
+
+ -- gregor herrmann Thu, 29 Nov 2012 18:38:12 +0100
+
kst (2.0.3-1.2) unstable; urgency=low
* Non-maintainer upload.
diff -ur testing/kst-2.0.3/debian/control unstable/kst-2.0.3/debian/control
--- testing/kst-2.0.3/debian/control 2012-06-09 19:47:00.0 +0200
+++ unstable/kst-2.0.3/debian/control 2012-11-29 18:38:09.0 +0100
@@ -22,6 +22,8 @@
Package: kst-data
Architecture: all
Depends: ${misc:Depends}
+Breaks: kst-bin (<< 2.0.3)
+Replaces: kst-bin (<< 2.0.3)
Description: set of data files for kst
Kst is a fast real-time large-dataset viewing and plotting tool.
It has basic data analysis functionality, contains many powerful
Bug#693351: RM: kismet/2008-05-R1-4.3
Hi, I am Nick's sponsor, sorry for the late reply. > removing kismet/2008 from testing/wheezy (while leaving it untouched in > unstable/sid), > uploading kismet/2011 into experimental, > migrating kismet/2011 into unstable/sid (after some testing & polishing), > and finally migrating kismet/2011 into wheezy-backports I have been going through all these mails now and I would be in favor of this proposal I hope to get the new kismet package ready before the end of the year. Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20121215233718.ga4...@physik.fu-berlin.de
Bug#692734: unblock: ettercap/0.7.5-4
Hi, > A new upstream version 0.7.5 of ettercap (a network sniff/attack tool) > fixes a variety of security issues. It does not seem practical to me > to backport the fixes, because many of them are made on top of > non-security-related changes, and teasing them apart etc would be a > great deal of work and also quite error-prone. > The upstream team is very eager to get the new version in place, and I > find their reasoning compelling. Well, as a Debian Developer you should know that during a freeze, no new upstream releases are allowed into testing. You should therefore either cherrypick the fixes or request a removal of the package from testing. I am pretty sure that the new upstream release has little to no chances to get into testing, so I would like to ask you to take one of the two aforementioned actions. It's a bit frustrating to see that the release gets delayed because of situations like these. The relase policy has been known for a long time and you should adhere to it. Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20121223154504.ga27...@physik.fu-berlin.de
Bug#696915: unblock: inkscape/0.48.3.1-1.2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package inkscape inkscape 0.48.3.1-1.2 contains just one fix to fix the vulnerability CVE-2012-5656 (Debian #696485). Since this is the first NMU for inkscape and the changes of the previous NMU have not yet been committed to the inkscape packaging VCS [1], I am including a set of 4 patches which constitute the changes from 0.48.3.1-1 to 0.48.3.1-1.1 and from 0.48.3.1-1.1 to 0.48.3.1-1.2. Relevant for this unblock are the last two patches only, since the version of inkscape in testing is 0.48.3.1-1.1. I am only including the first two patches so that anyone is able to view the changes as compared to HEAD of the packaging VCS [1]. Relevant bug is #696485 [2]. unblock inkscape/0.48.3.1-1.2 Cheers, Adrian > [1] git://git.debian.org/git/collab-maint/inkscape.git > [2] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696485 -- System Information: Debian Release: 7.0 APT prefers testing APT policy: (500, 'testing'), (100, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8) Shell: /bin/sh linked to /bin/dash >From 3a8117fa7d075eb8db0aee2fa45f59252f1cb02d Mon Sep 17 00:00:00 2001 From: Pino Toscano Date: Mon, 24 Dec 2012 00:54:40 +0100 Subject: [PATCH 1/4] - switch the libpng12-dev build dependency to libpng-dev (Closes: #662378) - add the libpoppler-private-dev build dependency (Closes: #660987) --- debian/control |3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/debian/control b/debian/control index f54b02e..50990b7 100644 --- a/debian/control +++ b/debian/control @@ -22,7 +22,8 @@ Build-Depends: autoconf, liblcms1-dev, libmagick++-dev, libpango1.0-dev, - libpng12-dev, + libpng-dev, + libpoppler-private-dev, libpoppler-glib-dev, libpopt-dev, libsigc++-2.0-dev (>= 2.0.16-2), -- 1.7.10.4 >From 5a34d3a6f6b0b0d958710e47a4bec61b4a408ad4 Mon Sep 17 00:00:00 2001 From: Pino Toscano Date: Mon, 24 Dec 2012 00:57:42 +0100 Subject: [PATCH 2/4] Update Debian changelog for 0.48.3.1-1.1. --- debian/changelog |8 1 file changed, 8 insertions(+) diff --git a/debian/changelog b/debian/changelog index 4f92cf4..d1fdf41 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,11 @@ +inkscape (0.48.3.1-1.1) unstable; urgency=low + + * Non-maintainer upload. + * Switch the libpng12-dev build dependency to libpng-dev (closes: #662378) + * Add the libpoppler-private-dev build dependency (closes: #660987) + + -- Pino Toscano Fri, 15 Jun 2012 16:40:22 +0200 + inkscape (0.48.3.1-1) unstable; urgency=low * [cb1a6e2] delete 01-libwpg0.2.dpatch since proper patch appied upstream -- 1.7.10.4 >From 0a512032d7b98b3e89201d84fb7e09d25add40e9 Mon Sep 17 00:00:00 2001 From: John Paul Adrian Glaubitz Date: Mon, 24 Dec 2012 00:58:35 +0100 Subject: [PATCH 3/4] Add Debian patch to fix vulnerability CVE-2012-5656. --- debian/patches/03-CVE-2012-5656.diff | 75 ++ debian/patches/series|1 + 2 files changed, 76 insertions(+) create mode 100644 debian/patches/03-CVE-2012-5656.diff diff --git a/debian/patches/03-CVE-2012-5656.diff b/debian/patches/03-CVE-2012-5656.diff new file mode 100644 index 000..c787ed4 --- /dev/null +++ b/debian/patches/03-CVE-2012-5656.diff @@ -0,0 +1,75 @@ +From eaa98e6b71d66195f0ca76358b85cca64d611fd9 Mon Sep 17 00:00:00 2001 +From: John Paul Adrian Glaubitz +Date: Sun, 23 Dec 2012 18:22:16 +0100 +Subject: [PATCH] Apply changes from upstream svn commit 11931 to fix + CVE-2012-5656. + +--- + src/preferences-skeleton.h|4 + src/ui/dialog/ocaldialogs.cpp | 10 -- + src/xml/repr-io.cpp |8 +++- + 3 files changed, 19 insertions(+), 3 deletions(-) + +diff --git a/src/preferences-skeleton.h b/src/preferences-skeleton.h +index 32f4b7c..e4dd2c8 100644 +--- a/src/preferences-skeleton.h b/src/preferences-skeleton.h +@@ -315,6 +315,10 @@ static char const preferences_skeleton[] = + " clips=\"16711935\"" // 00ff00ff + " masks=\"65535\"/>\n" // 0x + "\n" ++"\n" ++" \n" ++"\n" + "\n" + "\n" + "\n" +diff --git a/src/ui/dialog/ocaldialogs.cpp b/src/ui/dialog/ocaldialogs.cpp +index 2ae7d69..63c56f7 100644 +--- a/src/ui/dialog/ocaldialogs.cpp b/src/ui/dialog/ocaldialogs.cpp +@@ -468,9 +468,14 @@ void FileImportFromOCALDialog::searchTagEntryChangedCallback() + xmlDoc *doc = NULL; + xmlNode *r
Bug#696915: unblock: inkscape/0.48.3.1-1.2
On Sat, Dec 29, 2012 at 10:54:21AM +0100, Julien Cristau wrote: > On Sat, Dec 29, 2012 at 10:31:55 +0100, John Paul Adrian Glaubitz wrote: > > > Package: release.debian.org > > Severity: normal > > User: release.debian@packages.debian.org > > Usertags: unblock > > > > Please unblock package inkscape > > > NAK. The NMUed source package is native and contains a git tree, please > fix that. True, I wasn't paying attention to the lintian checks when building the package with pbuilder. Since there is another issue with inkscape which seems to be RC-relevant, I'm going to fix the source package as well. Sorry for the mess. Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20121229095923.ga4...@physik.fu-berlin.de
Bug#696915: unblock: inkscape/0.48.3.1-1.2
Hi Julien,
I have built a new version 0.48.3.1-1.3 and uploaded it into unstable.
Version 0.48.3.1-1.3 also includes a fix for a second security issue
[1] in addition to CVE-2012-5656. A detailed explanation of the fix
can be found in the bug report and the upstream bug report [2].
I also fixed the source package as I built it with "git-buildpackage
--git-pbuilder" now.
Do you want me to file a new unblock request or is this one
sufficient?
I am attaching all patches showing the differences between 0.48.3.1-1
and 0.48.3.1-1.3.
Cheers,
Adrian
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=654341
> [2] https://bugs.launchpad.net/inkscape/+bug/911146
--
.''`. John Paul Adrian Glaubitz
: :' : Debian Developer - glaub...@debian.org
`. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de
`-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
>From fd837b10f2fb8c48a308c4a3ddba8dd79609418d Mon Sep 17 00:00:00 2001
From: Pino Toscano
Date: Sat, 29 Dec 2012 18:34:12 +0100
Subject: [PATCH 1/6] - switch the libpng12-dev build dependency to libpng-dev
- add the libpoppler-private-dev build dependency
---
debian/control |3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git a/debian/control b/debian/control
index f54b02e..50990b7 100644
--- a/debian/control
+++ b/debian/control
@@ -22,7 +22,8 @@ Build-Depends: autoconf,
liblcms1-dev,
libmagick++-dev,
libpango1.0-dev,
- libpng12-dev,
+ libpng-dev,
+ libpoppler-private-dev,
libpoppler-glib-dev,
libpopt-dev,
libsigc++-2.0-dev (>= 2.0.16-2),
--
1.7.10.4
>From 0cc17c45fbfd0ca198d61f86a49e082f2499eaa2 Mon Sep 17 00:00:00 2001
From: Pino Toscano
Date: Sat, 29 Dec 2012 19:00:14 +0100
Subject: [PATCH 2/6] Update Debian changelog for 0.48.3.1-1.1.
---
debian/changelog |8
1 file changed, 8 insertions(+)
diff --git a/debian/changelog b/debian/changelog
index 4f92cf4..d1fdf41 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,11 @@
+inkscape (0.48.3.1-1.1) unstable; urgency=low
+
+ * Non-maintainer upload.
+ * Switch the libpng12-dev build dependency to libpng-dev (closes: #662378)
+ * Add the libpoppler-private-dev build dependency (closes: #660987)
+
+ -- Pino Toscano Fri, 15 Jun 2012 16:40:22 +0200
+
inkscape (0.48.3.1-1) unstable; urgency=low
* [cb1a6e2] delete 01-libwpg0.2.dpatch since proper patch appied upstream
--
1.7.10.4
>From f74d957bdac1a39e62d2e12bc8dfd1e191afedaa Mon Sep 17 00:00:00 2001
From: John Paul Adrian Glaubitz
Date: Sat, 29 Dec 2012 19:04:14 +0100
Subject: [PATCH 3/6] Add Debian patch to fix vulnerability CVE-2012-5656.
---
debian/patches/03-CVE-2012-5656.diff | 75 ++
debian/patches/series|1 +
2 files changed, 76 insertions(+)
create mode 100644 debian/patches/03-CVE-2012-5656.diff
diff --git a/debian/patches/03-CVE-2012-5656.diff b/debian/patches/03-CVE-2012-5656.diff
new file mode 100644
index 000..c787ed4
--- /dev/null
+++ b/debian/patches/03-CVE-2012-5656.diff
@@ -0,0 +1,75 @@
+From eaa98e6b71d66195f0ca76358b85cca64d611fd9 Mon Sep 17 00:00:00 2001
+From: John Paul Adrian Glaubitz
+Date: Sun, 23 Dec 2012 18:22:16 +0100
+Subject: [PATCH] Apply changes from upstream svn commit 11931 to fix
+ CVE-2012-5656.
+
+---
+ src/preferences-skeleton.h|4
+ src/ui/dialog/ocaldialogs.cpp | 10 --
+ src/xml/repr-io.cpp |8 +++-
+ 3 files changed, 19 insertions(+), 3 deletions(-)
+
+diff --git a/src/preferences-skeleton.h b/src/preferences-skeleton.h
+index 32f4b7c..e4dd2c8 100644
+--- a/src/preferences-skeleton.h
b/src/preferences-skeleton.h
+@@ -315,6 +315,10 @@ static char const preferences_skeleton[] =
+ " clips=\"16711935\"" // 00ff00ff
+ " masks=\"65535\"/>\n" // 0x
+ "\n"
++"\n"
++" \n"
++"\n"
+ "\n"
+ "\n"
+ "\n"
+diff --git a/src/ui/dialog/ocaldialogs.cpp b/src/ui/dialog/ocaldialogs.cpp
+index 2ae7d69..63c56f7 100644
+--- a/src/ui/dialog/ocaldialogs.cpp
b/src/ui/dialog/ocaldialogs.cpp
+@@ -468,9 +468,14 @@ void FileImportFromOCALDialog::searchTagEntryChangedCallback()
+ xmlDoc *doc = NULL;
+ xmlNode *root_element = NULL;
+
++int parse_options = XML_PARSE_RECOVER + XML_PARSE_NOWARNING + XML_PARSE_NOERROR; // do not use XML_PARSE_NOENT ! see bug lp:1025185
++bool allowNetAccess = prefs->getBool("/options/externalresources/xml/allow_net_access", false);
++if (!allowNetAccess) {
++parse_options |= XML_PARSE_NONET;
++}
++
+ doc = xmlReadIO ((xmlInputReadCallback) vfs_read_callback,
+-(xmlInputCloseCallback) gnome_vfs_close, from_handle
Bug#697023: unblock: tvtime/1.0.2-10
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package tvtime
Version 1.0.2-10 of tvtime has been in unstable for 22 days and it seems the
unblock request was not filed.
tvtime/1.0.2-10 contains just one fix which closes an RC bug (#694892) [1].
I am attaching the debdiff for the changes between testing and unstable.
Cheers,
Adrian
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=694892
unblock tvtime/1.0.2-10
-- System Information:
Debian Release: 7.0
APT prefers testing
APT policy: (500, 'testing'), (100, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.6-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -urN tvtime-testing/tvtime-1.0.2/config.sub tvtime-unstable/tvtime-1.0.2/config.sub
--- tvtime-testing/tvtime-1.0.2/config.sub 2012-12-30 22:28:32.0 +0100
+++ tvtime-unstable/tvtime-1.0.2/config.sub 2012-12-30 22:28:41.0 +0100
@@ -4,7 +4,7 @@
# 2000, 2001, 2002, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010,
# 2011, 2012 Free Software Foundation, Inc.
-timestamp='2012-02-10'
+timestamp='2012-04-18'
# This file is (in principle) common to ALL GNU software.
# The presence of a machine in this file suggests that SOME GNU software
@@ -225,6 +225,12 @@
-isc*)
basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'`
;;
+ -lynx*178)
+ os=-lynxos178
+ ;;
+ -lynx*5)
+ os=-lynxos5
+ ;;
-lynx*)
os=-lynxos
;;
@@ -1537,6 +1543,9 @@
c4x-* | tic4x-*)
os=-coff
;;
+ hexagon-*)
+ os=-elf
+ ;;
tic54x-*)
os=-coff
;;
diff -urN tvtime-testing/tvtime-1.0.2/debian/changelog tvtime-unstable/tvtime-1.0.2/debian/changelog
--- tvtime-testing/tvtime-1.0.2/debian/changelog 2012-12-30 22:28:32.0 +0100
+++ tvtime-unstable/tvtime-1.0.2/debian/changelog 2012-12-30 22:28:41.0 +0100
@@ -1,3 +1,10 @@
+tvtime (1.0.2-10) unstable; urgency=low
+
+ * debian/patches/saveconfig.diff: Added. Prevents needless creation of
+$HOME/.tvtime by tvtime-configure. Closes: #694892, #445192.
+
+ -- Bart Martens Fri, 07 Dec 2012 08:44:21 +
+
tvtime (1.0.2-9) unstable; urgency=low
* debian/patches/libpng.diff: Added. Closes: #650582.
diff -urN tvtime-testing/tvtime-1.0.2/debian/patches/saveconfig.diff tvtime-unstable/tvtime-1.0.2/debian/patches/saveconfig.diff
--- tvtime-testing/tvtime-1.0.2/debian/patches/saveconfig.diff 1970-01-01 01:00:00.0 +0100
+++ tvtime-unstable/tvtime-1.0.2/debian/patches/saveconfig.diff 2012-12-30 22:28:41.0 +0100
@@ -0,0 +1,174 @@
+--- ../orig/tvtime-1.0.2/./src/tvtimeconf.c 2005-09-08 04:07:56.0 +
./src/tvtimeconf.c 2012-12-07 11:05:25.0 +
+@@ -34,6 +34,7 @@
+ #include
+ #include
+ #include
++#include
+ #ifdef HAVE_CONFIG_H
+ # include "config.h"
+ #endif
+@@ -565,7 +566,30 @@
+ }
+
+ xmlKeepBlanksDefault( 0 );
+-xmlSaveFormatFile( config_filename, doc, 1 );
++
++if( create_file )
++{
++char *temp_config_filename = strdup( config_filename );
++
++if( ! temp_config_filename )
++{
++fprintf( stderr, "strdup failed for config_filename %s\n", config_filename );
++xmlFreeDoc( doc );
++return 0;
++}
++
++mkdir_and_force_owner( dirname( temp_config_filename ), getuid(), getgid() );
++
++free( temp_config_filename );
++}
++
++if( xmlSaveFormatFile( config_filename, doc, 1 ) == -1 )
++{
++fprintf( stderr, "xmlSaveFormatFile returned -1 for config_filename %s\n", config_filename );
++xmlFreeDoc( doc );
++return 0;
++}
++
+ if( create_file ) {
+ if( chown( config_filename, getuid(), getgid() ) < 0 ) {
+ lfprintf( stderr, _("Cannot change owner of %s: %s.\n"),
+@@ -844,14 +868,6 @@
+ ct->buttonmapmenu[ 4 ] = TVTIME_MENU_UP;
+ ct->buttonmapmenu[ 5 ] = TVTIME_MENU_DOWN;
+
+-/* Make the ~/.tvtime directory every time on startup, to be safe. */
+-if( asprintf( &temp_dirname, "%s/.tvtime", getenv( "HOME" ) ) < 0 ) {
+-/* FIXME: Clean up ?? */
+-return 0;
+-}
+-mkdir_and_force_owner( temp_dirname, ct->uid, getgid() );
+-free( temp_dirname );
+-
+ /* First read in global settings. */
+ asprintf( &base, "%s/tvtime.xml", CONFDIR );
+ if( file_is_openable_for_read( base ) ) {
+@@ -1043,6 +1059,7 @@
+ int option_index = 0;
+ int filename_specified = 0;
+ int c;
++int config_needs_saving = 0;
+
+ if( argc == 1 ) {
+ print_config_usage( argv );
+@@ -1052,10 +1069,10 @@
+ while( (c = getopt_long( argc, argv, "aAhmMF:g:I:d:b:i:c:n:D:f:x:t:l:R:",
+ long_options, &option_index )) != -1 ) {
+ switch( c ) {
+-case 'a': ct->aspect = 1; break;
+-case 'A': ct->asp
Bug#697080: unblock: briquolo/0.5.7-4
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package briquolo briquolo/0.5.7-4 fixes a serious issue with the Copyright file [1]. Markus Koschany fixed the issue, added himself to the uploaders and I sponsored the package. I reviewed the package, found his changes to be correct and uploaded the package. I have uploaded the new version 0.5.7-4 into unstable and ask for an unblock. I am attaching the debdiff. unblock briquolo/0.5.7-4 > [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696920 Cheers, Adrian -- System Information: Debian Release: 7.0 APT prefers testing APT policy: (500, 'testing'), (100, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.6-trunk-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8) Shell: /bin/sh linked to /bin/dash diff -u briquolo-0.5.7/debian/changelog briquolo-0.5.7/debian/changelog --- briquolo-0.5.7/debian/changelog +++ briquolo-0.5.7/debian/changelog @@ -1,3 +1,14 @@ +briquolo (0.5.7-4) unstable; urgency=low + + * Team upload. + * Add missing LGPL-2+ and Bitstream Vera Fonts licenses and credit +the copyright holders accordingly. Update debian/copyright to copyright +format 1.0. (Closes: #696920) + * Add myself to uploaders and remove Bradley Smith who seems to be MIA. +(Closes: #674895) + + -- Markus Koschany Sun, 30 Dec 2012 14:31:54 +0100 + briquolo (0.5.7-3) unstable; urgency=low * Update uploader email address. diff -u briquolo-0.5.7/debian/control briquolo-0.5.7/debian/control --- briquolo-0.5.7/debian/control +++ briquolo-0.5.7/debian/control @@ -2,7 +2,7 @@ Section: games Priority: optional Maintainer: Debian Games Team -Uploaders: Bradley Smith +Uploaders: Markus Koschany Build-Depends: debhelper (>= 7), autotools-dev, libsdl1.2-dev, libsdl-mixer1.2-dev, libsdl-ttf2.0-dev, libpng12-dev, quilt Standards-Version: 3.8.0 Homepage: http://briquolo.free.fr/ diff -u briquolo-0.5.7/debian/copyright briquolo-0.5.7/debian/copyright --- briquolo-0.5.7/debian/copyright +++ briquolo-0.5.7/debian/copyright @@ -1,8 +1,33 @@ -Author: 2003 Cédric Brégardis -Download: http://briquolo.free.fr/en/download.html +Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/ +Upstream-Name: Briquolo +Source: http://briquolo.free.fr/en/ Files: * -Copyright: (C) 2003 Cédric Brégardis +Copyright: 2003 Cédric Brégardis +License: GPL-2+ + +Files: m4/* +Copyright: 1995-1996,2000, Ulrich Drepper + 1995-2004, Free Software Foundation, Inc. + 2003, Bruno Haible +License: GPL-2+ + +Files: intl/* +Copyright: 1995-1996,2000, Ulrich Drepper + 1995-2004, Free Software Foundation, Inc. + 2003, Bruno Haible +License: LGPL-2+ + +Files: data/data/DejaVuSans.ttf +Copyright: 2003, Bitstream Inc +License: Bitstream Vera Fonts Copyright + +Files: debian/* +Copyright: 2006-2007, Gürkan Sengün + 2007-2009, Bradley Smith + 2012, Markus Koschany +License: GPL-2+ + License: GPL-2+ This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by @@ -20,22 +45,66 @@ + . + On Debian systems, the complete text of the GNU General Public License 2 + can be found in `/usr/share/common-licenses/GPL-2'. -Files: debian/* -Copyright: - (C) 2006, 2007 Gürkan Sengün - (C) 2007, 2008 Bradley Smith -License: GPL-2+ - This program is free software; you can redistribute it and/or modify - it under the terms of the GNU General Public License as published by - the Free Software Foundation; either version 2 of the License, or - (at your option) any later version. +License: LGPL-2+ + This package is free software; you can redistribute it and/or + modify it under the terms of the GNU Lesser General Public + License as published by the Free Software Foundation; either + version 2 of the License, or (at your option) any later version. . - This program is distributed in the hope that it will be useful, + This package is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of - MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the - GNU General Public License for more details. + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + Lesser General Public License for more details. . - You should have received a copy of the GNU General Public License - along with this program; if not, write to the Free Software + You should have received a copy of the GNU Lesser General Public + License along with this package; if not, write to the Free Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA + . + On Debian systems, the complete text of the GNU Lesser General + Public License 2 can be found in `/usr/share/common-licen
Bug#697140: unblock: zangband/1:2.7.5pre1-7
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package zangband zangband/1:2.7.5pre1-7 fixes two serious issues with the debian/copyright file: #696916 [1] and #696919 [2]. Both issues are considered RC bugs for the upcoming release Debian Wheezy. Markus Koschany made the necessary changes and added himself to the package maintainers (with consent from the package's maintainer). I reviewed his changes, asked him for necessary changes, built and uploaded the updated package. I am attaching the debdiff. Cheers, Adrian unblock zangband/1:2.7.5pre1-7 > [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696916 > [2] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696919 -- System Information: Debian Release: 7.0 APT prefers testing APT policy: (500, 'testing'), (100, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.6-trunk-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8) Shell: /bin/sh linked to /bin/dash diff -u zangband-2.7.5pre1/debian/control zangband-2.7.5pre1/debian/control --- zangband-2.7.5pre1/debian/control +++ zangband-2.7.5pre1/debian/control @@ -2,6 +2,7 @@ Section: non-free/games Priority: optional Maintainer: Drew Parsons +Uploaders: Markus Koschany Build-Depends: debhelper (>> 5.0.0), quilt, automake, libncurses5-dev, libx11-dev, libxext-dev, libxt-dev, x11proto-core-dev, libxaw7-dev, tk8.4-dev XS-Autobuild: yes Standards-Version: 3.8.0 diff -u zangband-2.7.5pre1/debian/copyright zangband-2.7.5pre1/debian/copyright --- zangband-2.7.5pre1/debian/copyright +++ zangband-2.7.5pre1/debian/copyright @@ -1,50 +1,127 @@ -This package was debianized by Eric Leblanc on -Thu, 28 May 1998 23:14:15 -0400. - -It was downloaded from ftp://clockwork.dementia.org/angband/Variant/ZAngband/ - -Upstream Authors: see http://www.zangband.org/ - -The copyright is "free for any use except commercial profit making". This -makes zangband technically non-free according to the Debian Free Software -Guidelines (DSFG, http://www.debian.org/social_contract#guidelines, point 6), -but is sufficiently free that Debian is able to autobuild it. -See http://lists.debian.org/debian-devel-announce/2006/11/msg00012.html for -further discussion on autobuilding non-free programs. - -Copyright: - -Copyright (c) 1997 Ben Harrison, James E. Wilson, Robert A. Koeneke - - This software may be copied and distributed for educational, - research, and not for profit purposes provided that this - copyright and statement are included in all such copies. - Other copyrights may also apply. - -Copyright (c) 1989 Robert Alan Koeneke - - I lovingly dedicate this game to hackers and adventurers - everywhere... - - Designer and Programmer: - Robert Alan Koeneke - University of Oklahoma - - Assistant Programmer: - Jimmey Wayne Todd - University of Oklahoma - - Assistant Programmer: - Gary D. McAdoo - University of Oklahoma - - UNIX Port: - James E. Wilson - UC Berkeley - wil...@ernie.berkeley.edu - ucbvax!ucbernie!wilson - - ANGBAND may be copied and modified freely as long as the - above credits are retained. No one who-so-ever may sell or - market this software in any form without the expressed - written consent of the author Robert Alan Koeneke. +Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/ +Upstream-Name: Zangband +Source: http://www.zangband.org +Comment: + The game is not intended to be used for "profit purposes". This + makes zangband technically non-free according to the Debian Free Software + Guidelines (DSFG, http://www.debian.org/social_contract#guidelines, point 6), + but is sufficiently free that Debian is able to autobuild it. + See http://lists.debian.org/debian-devel-announce/2006/11/msg00012.html for + further discussion on autobuilding non-free programs. + +Files: * +Copyright: 1997 Ben Harrison, James E. Wilson, Robert A. Koeneke, Steven Fuerst + and others +License: The Zangband license + This software may be copied and distributed for educational, research, and not + for profit purposes provided that this copyright and statement are included in + all such copies. Other copyrights may also apply. + +Files: * +Copyright: 1989 Robert Alan Koeneke +License: The Angband license + I lovingly dedicate this game to hackers and adventurers + everywhere... + . + Designer and Programmer: + Robert Alan Koeneke + University of Oklahoma + . + Assistant Programmer: + Jimmey Wayne Todd + University of Oklahoma + . + Assistant Programmer: + Gary D. McAdoo + University of Oklahoma + . + UNIX Port: + James E. Wilson + UC Berkeley + wil...@ernie.berkeley.edu + ucbvax!ucbernie!wilson + . + ANGBAND may be copied and modified freely as long as the + above credits are retained. No one who-so-ever may sell or + market this software in any form without the expres
Bug#697160: unblock: snack/2.2.10-dfsg1-12.1
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package snack
snack/2.2.10-dfsg1-12.1 contains just one patch by Michael Karcher
which fixes the vulnerability CVE-2012-6303 [1]. The package is
otherwise unchanged. As reported in [1], I have verified Michael
Karcher's patch to fix the issue.
As this is a release-critical issue for Wheezy, I am asking the
release team to unblock snack/2.2.10-dfsg1-12.1.
I am attaching the debdiff between the versions of snack in testing
and unstable.
Cheers,
Adrian
unblock snack/2.2.10-dfsg1-12.1
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=695614
-- System Information:
Debian Release: 7.0
APT prefers testing
APT policy: (500, 'testing'), (100, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.6-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru snack-2.2.10-dfsg1-testing/debian/changelog snack-2.2.10-dfsg1-unstable/debian/changelog
--- snack-2.2.10-dfsg1-testing/debian/changelog 2013-01-02 01:24:55.0 +0100
+++ snack-2.2.10-dfsg1-unstable/debian/changelog 2013-01-02 00:58:23.861689141 +0100
@@ -1,3 +1,10 @@
+snack (2.2.10-dfsg1-12.1) unstable; urgency=low
+
+ * Non-maintainer upload.
+ * Include patch by Michael Karcher to fix CVE-2012-6303 (Closes: #695614).
+
+ -- John Paul Adrian Glaubitz Wed, 02 Jan 2013 00:56:47 +0100
+
snack (2.2.10-dfsg1-12) unstable; urgency=low
* Fixed FTBFS for non-linux architectures.
diff -Nru snack-2.2.10-dfsg1-testing/debian/patches/CVE-2012-6303.patch snack-2.2.10-dfsg1-unstable/debian/patches/CVE-2012-6303.patch
--- snack-2.2.10-dfsg1-testing/debian/patches/CVE-2012-6303.patch 1970-01-01 01:00:00.0 +0100
+++ snack-2.2.10-dfsg1-unstable/debian/patches/CVE-2012-6303.patch 2013-01-02 00:44:31.635174146 +0100
@@ -0,0 +1,18 @@
+--- snack-2.2.10-dfsg1/generic/jkSoundFile.c 2005-12-14 12:29:38.0 +0100
snack-2.2.10-dfsg1+karcher/generic/jkSoundFile.c 2013-01-02 00:29:56.836287036 +0100
+@@ -1796,7 +1796,14 @@
+ GetHeaderBytes(Sound *s, Tcl_Interp *interp, Tcl_Channel ch, char *buf,
+ int len)
+ {
+- int rlen = Tcl_Read(ch, &buf[s->firstNRead], len - s->firstNRead);
++ int rlen;
++
++ if (len > max(CHANNEL_HEADER_BUFFER, HEADBUF)){
++Tcl_AppendResult(interp, "Excessive header size", NULL);
++return TCL_ERROR;
++ }
++
++ rlen = Tcl_Read(ch, &buf[s->firstNRead], len - s->firstNRead);
+
+ if (rlen < len - s->firstNRead){
+ Tcl_AppendResult(interp, "Failed reading header bytes", NULL);
diff -Nru snack-2.2.10-dfsg1-testing/debian/patches/series snack-2.2.10-dfsg1-unstable/debian/patches/series
--- snack-2.2.10-dfsg1-testing/debian/patches/series 2013-01-02 01:24:55.0 +0100
+++ snack-2.2.10-dfsg1-unstable/debian/patches/series 2013-01-02 00:48:03.661699215 +0100
@@ -2,3 +2,4 @@
glibc2.10.patch
args.patch
libs.patch
+CVE-2012-6303.patch
Bug#687779: release.debian.org: New NMU fixing #679966
Package: release.debian.org
Followup-For: Bug #687779
User: release.debian@packages.debian.org
Usertags: unblock
Hi,
I just created an updated ksh package for testing and uploaded
it as an NMU to t-p-u. I have verified my fix to work and the
built-in cd works now properly as it is using all upstream changes
addressing the problem while ignoring other changes.
Attaching the debdiff.
Cheers,
Adrian
diff -ru ksh-93u+-1.1/debian/changelog ksh-93u+-1.2/debian/changelog
--- ksh-93u+-1.1/debian/changelog 2012-10-13 23:58:47.0 +0200
+++ ksh-93u+-1.2/debian/changelog 2013-01-02 18:41:55.256504333 +0100
@@ -1,3 +1,12 @@
+ksh (93u+-1.2) testing-proposed-updates; urgency=low
+
+ * Non-maintainer upload.
+ * Fix handling of cd ../../.. and similar using
+the upstream changes from ee4582a commit, drop previous patch
+by Jonathan Wiltshire (Closes: #679966).
+
+ -- John Paul Adrian Glaubitz Wed, 02 Jan 2013 18:41:22 +0100
+
ksh (93u+-1.1) testing-proposed-updates; urgency=low
* Non-maintainer upload.
Only in ksh-93u+-1.1/debian/patches: cddotdot.patch
Only in ksh-93u+-1.2/debian/patches: fix-cd-builtin.patch
diff -ru ksh-93u+-1.1/debian/patches/series ksh-93u+-1.2/debian/patches/series
--- ksh-93u+-1.1/debian/patches/series 2012-10-13 23:54:37.0 +0200
+++ ksh-93u+-1.2/debian/patches/series 2013-01-02 18:34:31.359970762 +0100
@@ -2,4 +2,4 @@
cleanup-man-title.patch
no-rpath.patch
handle-removed-working-dir.patch
-cddotdot.patch
+fix-cd-builtin.patch
diff -ru ksh-93u+-1.1/.pc/applied-patches ksh-93u+-1.2/.pc/applied-patches
--- ksh-93u+-1.1/.pc/applied-patches 2013-01-02 18:53:45.594190269 +0100
+++ ksh-93u+-1.2/.pc/applied-patches 2013-01-02 18:34:31.367970552 +0100
@@ -2,4 +2,4 @@
cleanup-man-title.patch
no-rpath.patch
handle-removed-working-dir.patch
-cddotdot.patch
+fix-cd-builtin.patch
Only in ksh-93u+-1.1/.pc: cddotdot.patch
Only in ksh-93u+-1.2/.pc: fix-cd-builtin.patch
diff -ru ksh-93u+-1.1/src/cmd/ksh93/bltins/cd_pwd.c ksh-93u+-1.2/src/cmd/ksh93/bltins/cd_pwd.c
--- ksh-93u+-1.1/src/cmd/ksh93/bltins/cd_pwd.c 2013-01-02 18:53:45.0 +0100
+++ ksh-93u+-1.2/src/cmd/ksh93/bltins/cd_pwd.c 2013-01-02 18:34:31.0 +0100
@@ -112,23 +112,31 @@
if(*dir=='.')
{
/* test for pathname . ./ .. or ../ */
- if(*(dp=dir+1) == '.')
- dp++;
- if(*dp==0 || *dp=='/')
+ int n=0;
+ char *sp;
+ for(dp=dir; *dp=='.'; dp++)
{
- if((dp-dir)==2)
+ if(*++dp=='.' && (*++dp=='/' || *dp==0))
+n++;
+ else if(*dp && *dp!='/')
+break;
+ if(*dp==0)
+break;
+ }
+ if(n)
+ {
+ cdpath = 0;
+ sp = oldpwd + strlen(oldpwd);
+ while(n--)
{
-char *sp;
-sfputr(shp->strbuf,oldpwd,0);
-if(*dp)
- sfputr(shp->strbuf,dp+1,0);
-sp = sfstruse(shp->strbuf);
-*(dir=strrchr(sp,'/'))=0;
-if(*dp)
- strcpy(dir,dp);
-dir = (char*)sp;
+while(--sp > oldpwd && *sp!='/');
+if(sp==oldpwd)
+ break;
+
}
- cdpath = 0;
+ sfwrite(shp->strbuf,oldpwd,sp+1-oldpwd);
+ sfputr(shp->strbuf,dp,0);
+ dir = sfstruse(shp->strbuf);
}
}
rval = -1;
@@ -205,6 +213,8 @@
if(*dir != '/')
return(0);
nv_putval(opwdnod,oldpwd,NV_RDONLY);
+ if(oldpwd)
+ free(oldpwd);
flag = strlen(dir);
/* delete trailing '/' */
while(--flag>0 && dir[flag]=='/')
@@ -215,8 +225,6 @@
nv_scan(shp->track_tree,rehash,(void*)0,NV_TAGGED,NV_TAGGED);
path_newdir(shp,shp->pathlist);
path_newdir(shp,shp->cdpathlist);
- if(oldpwd)
- free(oldpwd);
return(0);
}
Bug#687779: release.debian.org: New NMU fixing #679966
Hi Adam! On Wed, Jan 02, 2013 at 09:05:37PM +, Adam D. Barratt wrote: > For future reference, it's preferred if you post the debdiff and then > wait for an ack before uploading to tpu; I realise that dev-ref isn't > entirely helpful here (it's on the to-do list somewhere). Ok, I didn't know that, sorry. That was my first tpu upload, previous uploads were all into unstable. > http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=679966#100 also > suggests you were waiting for agreement from the maintainer and/or > previous NMUer, which doesn't appear to have materialised in the bug log > at least? Well, I have decided to go ahead with the upload since the current maintainer of the package has given up the package for adoption anyways due to lack of time and the complexity of the package. Furthermore, he said the problem was a bit too complex for him (not meaning to diminish his work, I am just repeating his words). > The version information for #679966 looks like it might have got broken > at some point; is the bug still present in the unstable package? Yes, the bug is present in the unstable version: $ echo $KSH_VERSION Version AJM 93u+ 2012-06-28 $ cd /etc $ pwd /etc $ cd .. $ pwd /etc $ However, it has been fixed in the latest upstream version tagged as version "2012-08-24". So I suggest unblocking my updated version for testing and then the original maintainer should update the unstable version to the latest upstream version. Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20130102211838.ga1...@physik.fu-berlin.de
Bug#697384: unblock: charybdis/3.3.0-7.1
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package charybdis
Version 3.3.0-7.1 contains just one additional patch fixing
the vulnerability CVE-2012-6084 [1]. I am attaching the
debdiff.
Cheers,
Adrian
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697092
unblock charybdis/3.3.0-7.1
-- System Information:
Debian Release: 7.0
APT prefers testing
APT policy: (500, 'testing'), (100, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.6-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru charybdis-3.3.0/debian/changelog charybdis-3.3.0-CVE-2012-6084/debian/changelog
--- charybdis-3.3.0/debian/changelog 2011-11-30 00:17:54.0 +0100
+++ charybdis-3.3.0-CVE-2012-6084/debian/changelog 2013-01-02 20:58:33.748765147 +0100
@@ -1,3 +1,11 @@
+charybdis (3.3.0-7.1) unstable; urgency=low
+
+ * Non-maintainer upload.
+ * Fix remote denial of service vulnerability
+CVE-2012-6084 (Closes: #697092).
+
+ -- John Paul Adrian Glaubitz Wed, 02 Jan 2013 20:57:36 +0100
+
charybdis (3.3.0-7) unstable; urgency=low
* patch: default NICKLEN to 30 to fit a commonly used value and the new
diff -Nru charybdis-3.3.0/debian/patches/CVE-2012-6084.patch charybdis-3.3.0-CVE-2012-6084/debian/patches/CVE-2012-6084.patch
--- charybdis-3.3.0/debian/patches/CVE-2012-6084.patch 1970-01-01 01:00:00.0 +0100
+++ charybdis-3.3.0-CVE-2012-6084/debian/patches/CVE-2012-6084.patch 2013-01-02 20:57:08.790958689 +0100
@@ -0,0 +1,26 @@
+From ac0707aa61d9c20e9b09062294701567c9f41595 Mon Sep 17 00:00:00 2001
+From: William Pitcock
+Date: Mon, 31 Dec 2012 13:13:05 -0600
+Subject: [PATCH] m_capab: fix a possible remote crash triggered by the CAPAB
+ parsing code.
+
+---
+ modules/m_capab.c |2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/modules/m_capab.c b/modules/m_capab.c
+index 54e9a53..b03fb3f 100644
+--- a/modules/m_capab.c
b/modules/m_capab.c
+@@ -38,7 +38,7 @@
+
+ struct Message capab_msgtab = {
+ "CAPAB", 0, 0, 0, MFLG_SLOW | MFLG_UNREG,
+- {{mr_capab, 0}, mg_ignore, mg_ignore, mg_ignore, mg_ignore, mg_ignore}
++ {{mr_capab, 2}, mg_ignore, mg_ignore, mg_ignore, mg_ignore, mg_ignore}
+ };
+ struct Message gcap_msgtab = {
+ "GCAP", 0, 0, 0, MFLG_SLOW,
+--
+1.7.10
+
diff -Nru charybdis-3.3.0/debian/patches/series charybdis-3.3.0-CVE-2012-6084/debian/patches/series
--- charybdis-3.3.0/debian/patches/series 2011-11-30 00:17:54.0 +0100
+++ charybdis-3.3.0-CVE-2012-6084/debian/patches/series 2013-01-02 20:57:31.618369271 +0100
@@ -5,3 +5,4 @@
no-rpath
cleanup-bandb-properly
default_nicklen
+CVE-2012-6084.patch
Bug#687779: release.debian.org: New NMU fixing #679966
On Sun, Jan 06, 2013 at 10:07:51PM +, Adam D. Barratt wrote: > On Wed, 2013-01-02 at 22:18 +0100, John Paul Adrian Glaubitz wrote: > > On Wed, Jan 02, 2013 at 09:05:37PM +, Adam D. Barratt wrote: > > > The version information for #679966 looks like it might have got broken > > > at some point; is the bug still present in the unstable package? > > > > Yes, the bug is present in the unstable version: > [...] > > However, it has been fixed in the latest upstream version tagged as > > version "2012-08-24". So I suggest unblocking my updated version for > > testing and then the original maintainer should update the unstable > > version to the latest upstream version. > > Thanks for the confirmation. In general, we prefer that the fixes are > applied and verified in unstable first, as it's generally easier to fix > up in the event of any issues. (I saw your offer to sponsor an upload to > unstable; that's appreciated, thanks.) Well, the version in unstable is already newer which is why I chose to upload to t-p-u, please see the debdiff of version 1.1+-1.2. Oliver was hoping that the new upstream would fully address the problem, however it fixed it only partly. The chdir built-in still failed under certain circumstances. It has not been fixed until the current upstream release, so unstable would need the latest upstream version while Wheezy should get the version from t-p-u which just contains my patch. Cheers, Adrian > [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=687779 -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20130107130304.gb4...@physik.fu-berlin.de
Bug#687779: release.debian.org: New NMU fixing #679966
On Mon, Jan 07, 2013 at 01:11:01PM +, Adam D. Barratt wrote: > I wasn't suggesting getting a new upstream version in to testing. > The fact that the fix for testing is going via tpu doesn't change > the wish to have it fixed in unstable first. So, what do you suggest? New upstream version or patching the current version in unstable? Oliver doesn't seem to have a public VCS for the Debian packaging I could work on. I will put him in the CC, so he might answer the question. Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20130107131954.ga5...@physik.fu-berlin.de
Bug#687779: release.debian.org: New NMU fixing #679966
On Mon, Jan 07, 2013 at 01:24:29PM +, Adam D. Barratt wrote: > On 07.01.2013 13:19, John Paul Adrian Glaubitz wrote: > >On Mon, Jan 07, 2013 at 01:11:01PM +, Adam D. Barratt wrote: > >>I wasn't suggesting getting a new upstream version in to testing. > >>The fact that the fix for testing is going via tpu doesn't change > >>the wish to have it fixed in unstable first. > > > >So, what do you suggest? New upstream version or patching the current > >version in unstable? > > Either would work for me. otoh, maybe I'm being too fussy - it just > feels a little wrong to me to have fixes bypassing unstable when > it's affected; thoughts from readers welcome. :-( Ok, I'll see what I can do fixing the unstable version. Packaging a new upstream release shouldn't be that difficult. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20130107132807.ga5...@physik.fu-berlin.de
Bug#687779: release.debian.org: New NMU fixing #679966
retitle 687779 unblock: ksh/93u+-1.2 thanks On Mon, Jan 07, 2013 at 01:24:29PM +, Adam D. Barratt wrote: > >So, what do you suggest? New upstream version or patching the current > >version in unstable? > > Either would work for me. otoh, maybe I'm being too fussy - it just > feels a little wrong to me to have fixes bypassing unstable when > it's affected; thoughts from readers welcome. :-( Oliver has now prepared the new upstream version 2012-08-01 which I have reviewed and uploaded into unstable, the issue has now been fixed in unstable as well. We are now ready to unblock the version in t-p-u I guess such that the bug can finally be closed in testing. Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20130108183753.ga12...@physik.fu-berlin.de
Bug#687779: release.debian.org: New NMU fixing #679966
On 01/08/2013 08:36 PM, Adam D. Barratt wrote: It's not really worth it just to fix that; if the package is in a VCS it would be worth adding there so it's included in any future uploads though. Ok, so version 93u+-1.2 is unblocked for migration from t-p-u to testing now? Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/50ec7c0a.8080...@physik.fu-berlin.de
Bug#697957: unblock: connman/1.0-1.1
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package connman
connman/1.0-1.1 contains just one patch from upstream which fixes the
vulnerability CVE-2012-6459 [1]. I am attaching the debdiff.
Cheers,
Adrian
unblock connman/1.0-1.1
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697580
-- System Information:
Debian Release: 7.0
APT prefers testing
APT policy: (500, 'testing'), (100, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.6-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru connman-1.0/debian/changelog connman-1.0-CVE-2012-6459/debian/changelog
--- connman-1.0/debian/changelog 2012-05-25 04:27:50.0 +0200
+++ connman-1.0-CVE-2012-6459/debian/changelog 2013-01-09 15:34:04.186261911 +0100
@@ -1,3 +1,11 @@
+connman (1.0-1.1) unstable; urgency=low
+
+ * Non-maintainer upload.
+ * Include patch to fix bluetooth offline visibility
+issue CVE-2012-6459 (Closes: #697580).
+
+ -- John Paul Adrian Glaubitz Wed, 09 Jan 2013 15:32:22 +0100
+
connman (1.0-1) unstable; urgency=high
[ Andrew Brouwers ]
diff -Nru connman-1.0/debian/patches/02-CVE-2012-6459.patch connman-1.0-CVE-2012-6459/debian/patches/02-CVE-2012-6459.patch
--- connman-1.0/debian/patches/02-CVE-2012-6459.patch 1970-01-01 01:00:00.0 +0100
+++ connman-1.0-CVE-2012-6459/debian/patches/02-CVE-2012-6459.patch 2013-01-09 15:31:58.677492862 +0100
@@ -0,0 +1,48 @@
+From 01126286f96856aab6b0de171830f4e8e842e1da Mon Sep 17 00:00:00 2001
+From: Gustavo Padovan
+Date: Thu, 9 Aug 2012 18:57:25 -0300
+Subject: [PATCH] bluetooth: Add device to hash before registration
+
+During the connman_device_register() procedure a lookup to the
+bluetooth_devices hash table happens, however the device is not on the
+hash at this point and the look out fails.
+
+If the registration fails, technology_disable() returns the Failed
+message on D-Bus with the error status zero. That happens because we
+don't have any device registered.
+
+This patch moves the insertion of the device to before the device
+registration.
+---
+ plugins/bluetooth.c |5 +++--
+ 1 files changed, 3 insertions(+), 2 deletions(-)
+
+diff --git a/plugins/bluetooth.c b/plugins/bluetooth.c
+index b06460a..2ab29a6 100644
+--- a/plugins/bluetooth.c
b/plugins/bluetooth.c
+@@ -660,6 +660,8 @@ static void adapter_properties_reply(DBusPendingCall *call, void *user_data)
+ if (device != NULL)
+ goto update;
+
++ g_hash_table_insert(bluetooth_devices, g_strdup(path), device);
++
+ ether_aton_r(address, &addr);
+
+ snprintf(ident, 13, "%02x%02x%02x%02x%02x%02x",
+@@ -680,11 +682,10 @@ static void adapter_properties_reply(DBusPendingCall *call, void *user_data)
+
+ if (connman_device_register(device) < 0) {
+ connman_device_unref(device);
++ g_hash_table_remove(bluetooth_devices, path);
+ goto done;
+ }
+
+- g_hash_table_insert(bluetooth_devices, g_strdup(path), device);
+-
+ update:
+ connman_device_set_string(device, "Address", address);
+ connman_device_set_string(device, "Name", name);
+--
+1.7.7.6
+
diff -Nru connman-1.0/debian/patches/series connman-1.0-CVE-2012-6459/debian/patches/series
--- connman-1.0/debian/patches/series 2012-05-25 04:27:50.0 +0200
+++ connman-1.0-CVE-2012-6459/debian/patches/series 2013-01-09 15:32:17.892998525 +0100
@@ -1 +1,2 @@
01-init-script-lsb-headers.patch
+02-CVE-2012-6459.patch
Bug#697957: unblock: connman/1.0-1.1
On 01/19/2013 01:06 PM, Adam D. Barratt wrote: Control: reopen -1 On Fri, 2013-01-11 at 23:59 +0100, John Paul Adrian Glaubitz wrote: Please unblock package connman connman/1.0-1.1 contains just one patch from upstream which fixes the vulnerability CVE-2012-6459 [1]. I am attaching the debdiff. Unfortunately it's also picked up a dependency on unstable's iptables, so would need fixing via tpu (or after release). Ok, I'll have a look at an NMU into t-p-u. Thanks for the heads up. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/50fa8d1e.6010...@physik.fu-berlin.de
Bug#697957: unblock: connman/1.0-1.1
Rebuilt for testing now and uploaded into t-p-u. Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/50fb4f7a.9020...@physik.fu-berlin.de
Bug#697957: unblock: connman/1.0-1.1
On 01/20/2013 12:40 PM, Adam D. Barratt wrote: On Sun, 2013-01-20 at 02:59 +0100, John Paul Adrian Glaubitz wrote: Rebuilt for testing now and uploaded into t-p-u. Thanks. It looks like that was as "1.0-1.1+wheezy1" however, which means its version is higher than unstable. Well, damn, I was too quick, should have used a ~ instead of a + sign. How about I make some cosmetic changes to the version in unstable (e.g. lintian clean-up) and do another NMU into unstable to bump the version to 1.0-1.2? Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/50fbfc1e.1010...@physik.fu-berlin.de
Bug#697957: unblock: connman/1.0-1.1
On 01/20/2013 11:06 PM, Adam D. Barratt wrote: That would work, yeah; it's not the cleanest solution ever, but the tpu appears to have built on the majority of architectures already. The alternative is we drop the earlier tpu packages followed by a re-versioned upload. Sure, if you can simply remove the package from t-p-u, I'll rebuild the package for Wheezy with 1.0-1.1~wheezy1 in the version, if you agree. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/50fc8ee9.3080...@physik.fu-berlin.de
Bug#697957: unblock: connman/1.0-1.1
On 01/21/2013 10:23 AM, Adam D. Barratt wrote: I've been pondering this and arguing with myself a little. There is the potential for confusion if the version in t-p-u goes backwards, so let's go with the unstable route; thanks. Just uploaded 1.0-1.2 into unstable. Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/50fd4b20.9090...@physik.fu-berlin.de
Bug#699806: unblock: dlocate/1.02+nmu3
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package dlocate
dlocate has been neglected for quite some time now. I have collected
some patches to fix several minor but annoying bugs in the bugtracker
and fixed the manpages. I understand that these changes are not relevant
for security-related issues and I naturally accept if my unblock request
gets rejected. However, I think all these changes are nice to have and
bring the package into a much better shape for shipping with Wheezy.
I am attaching the debdiff between the version in testing and unstable.
Cheers,
Adrian
unblock dlocate/1.02+nmu3
-- System Information:
Debian Release: 7.0
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.7-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru dlocate-1.02/debian/changelog dlocate-1.02+nmu3/debian/changelog
--- dlocate-1.02/debian/changelog 2009-06-03 03:24:04.0 +0200
+++ dlocate-1.02+nmu3/debian/changelog 2012-12-29 14:34:22.0 +0100
@@ -1,3 +1,28 @@
+dlocate (1.02+nmu3) unstable; urgency=low
+
+ * Non-maintainer upload.
+ * Fix handling of multiple arguments for several commands (Closes: #563881).
+ * Fix dlocate return codes for several commands on exit (Closes: #564293).
+
+ -- John Paul Adrian Glaubitz Sat, 29 Dec 2012 14:32:54 +0100
+
+dlocate (1.02+nmu2) unstable; urgency=low
+
+ * Non-maintainer upload.
+ * Add missing "--" when invoking grep command (Closes: #587179).
+ * Fix bash completion for package names in dlocate (Closes: # 658669).
+ * Fix incorrect exit code 0 on failed search (Closes: #689647).
+ * Fix parameter passing to dlocate_option_error() in dlocate (Closes: # 690758).
+
+ -- John Paul Adrian Glaubitz Fri, 28 Dec 2012 15:42:16 +0100
+
+dlocate (1.02+nmu1) unstable; urgency=low
+
+ * Non-maintainer upload.
+ * Fix several mistakes in manpages (Closes: #586483, #692896, #696479).
+
+ -- John Paul Adrian Glaubitz Fri, 21 Dec 2012 11:47:08 +0100
+
dlocate (1.02) unstable; urgency=low
* fixed example in dlocate.1 man page again (Closes: #42)
diff -Nru dlocate-1.02/dlocate dlocate-1.02+nmu3/dlocate
--- dlocate-1.02/dlocate 2009-06-03 03:28:53.0 +0200
+++ dlocate-1.02+nmu3/dlocate 2012-12-29 14:30:19.0 +0100
@@ -199,7 +199,7 @@
;;
(-*)
-dlocate_option_error $1
+dlocate_option_error $p
;;
(*)
@@ -217,7 +217,7 @@
FILES_REGEXP="($PKGS_REGEXP)"
[ "$WORD_RE" = "-w" ] && FILES_REGEXP="\b$FILES_REGEXP\b"
-PKGS=$(echo "$PKGS" | sed -e "s/$SEPARATOR/ /")
+PKGS=$(echo "$PKGS" | sed -e "s/$SEPARATOR/ /g")
if [ "$VERBOSE" = "1" ] ; then
echo "PKGS:" $PKGS
@@ -277,15 +277,15 @@
PREFIX="^([-a-zA-Z0-9_.+]+:|diversion by )"
[ "$RE_TYPE" = "-G" ] && PREFIX="^([-a-zA-Z0-9_.+]+:\|diversion by )"
-[ "$VERBOSE" = "1" ] && echo RUNNING: $GREP $RE_TYPE $IGNORE_CASE "$PREFIX.*$FILES_REGEXP" "$DLOCATEDB"
-$GREP $RE_TYPE $IGNORE_CASE "$PREFIX.*$FILES_REGEXP" "$DLOCATEDB" | output_filter
-result=$?
+[ "$VERBOSE" = "1" ] && echo RUNNING: $GREP $RE_TYPE $IGNORE_CASE -- "$PREFIX.*$FILES_REGEXP" "$DLOCATEDB"
+$GREP $RE_TYPE $IGNORE_CASE -- "$PREFIX.*$FILES_REGEXP" "$DLOCATEDB" | output_filter
+result=${PIPESTATUS[0]}
elif [ "$OPTION" = 'DEFAULT' ] ; then
-[ "$VERBOSE" = "1" ] && echo RUNNING: $GREP $RE_TYPE $IGNORE_CASE $WORD_RE "$PKGS_REGEXP" "$DLOCATEDB"
-$GREP $RE_TYPE $IGNORE_CASE $WORD_RE "$PKGS_REGEXP" "$DLOCATEDB" | output_filter
-result=$?
+[ "$VERBOSE" = "1" ] && echo RUNNING: $GREP $RE_TYPE $IGNORE_CASE -- $WORD_RE "$PKGS_REGEXP" "$DLOCATEDB"
+$GREP $RE_TYPE $IGNORE_CASE -- $WORD_RE "$PKGS_REGEXP" "$DLOCATEDB" | output_filter
+result=${PIPESTATUS[0]}
elif [ "$OPTION" = '-s' ] ; then
DCTRL_REGEXP="^($PKGS_REGEXP)$"
@@ -316,48 +316,60 @@
'-L')
if [ -s $DPKG_INFO/$PKG.list ] ; then
cat $DPKG_INFO/$PKG.list
+result=$?
else
echo Package $PKG not installed or $PKG.list is empty. >&2
+result=1
Bug#699806: unblock: dlocate/1.02+nmu3
On 02/11/2013 08:30 PM, Jonathan Wiltshire wrote: Hmm. I'm instinctively reluctant to prop up dlocate if the current maintainer isn't taking care of it and it needs deeper work. On the other hand, if it is mature and we simply need to maintain the status quo, then perhaps propping up is all it needs. It has one issue with Multi-Arch [1], but it runs fine otherwise and more people seem to be using it again after I closed some of the bugs [2]. Put less gently I suppose the question is: does dlocate deserve its place in Wheezy and just needs this little tidying up, or should we consider removing it? I would say, yes. It also has some additional nice little helper scripts for holding and unholding packages etc. I might be willing to adopt dlocate in the future if no one else steps up. Cheers, Adrian > [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=658222 > [2] http://qa.debian.org/popcon.php?package=dlocate -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/512031df.7030...@physik.fu-berlin.de
Bug#704047: unblock: kvpm/0.8.6-3
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
Hi,
the upstream author of kvpm who also happens to be the Debian
maintainer of the package recently found a critical bug when
moving partitions [1]. I have reviewed his package and I'm
attaching the Debdiff.
Please unblock the package for Wheezy.
unblock kvpm/0.8.6-3
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=703919
-- System Information:
Debian Release: 7.0
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.8-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru kvpm-0.8.6/debian/changelog kvpm-0.8.6/debian/changelog
--- kvpm-0.8.6/debian/changelog 2012-04-16 17:47:32.0 +0200
+++ kvpm-0.8.6/debian/changelog 2013-03-27 01:13:57.0 +0100
@@ -1,3 +1,11 @@
+kvpm (0.8.6-3) unstable; urgency=critical
+
+ [ Benjamin J. Scott ]
+ * Changed file kvpm/partchange.cpp to fix potential data corruption bug
+when moving a partition on a disk with mounted partitions (Closes: #703919).
+
+ -- Benjamin J. Scott Sun, 24 Feb 2013 17:25:21 -0700
+
kvpm (0.8.6-2) unstable; urgency=low
[ Benjamin J. Scott ]
diff -Nru kvpm-0.8.6/debian/patches/partition-move-corruption.patch kvpm-0.8.6/debian/patches/partition-move-corruption.patch
--- kvpm-0.8.6/debian/patches/partition-move-corruption.patch 1970-01-01 01:00:00.0 +0100
+++ kvpm-0.8.6/debian/patches/partition-move-corruption.patch 2013-03-06 07:12:54.0 +0100
@@ -0,0 +1,20 @@
+This patch corrects a bug in which data is sometimes corrupted when moving a disk
+partition while the disk has other partitions mounted.
+--- a/kvpm/partchange.cpp
b/kvpm/partchange.cpp
+@@ -649,13 +649,8 @@
+ return false;
+ }
+ else {
+-if( !movefs(old_start, current_start, old_size) ){
+-return false;
+-}
+-else{
+-pedCommitAndWait(m_ped_disk);
+-return true;
+-}
++pedCommitAndWait(m_ped_disk);
++ return movefs(old_start, current_start, old_size);
+ }
+ }
+
diff -Nru kvpm-0.8.6/debian/patches/series kvpm-0.8.6/debian/patches/series
--- kvpm-0.8.6/debian/patches/series 2012-04-16 17:41:26.0 +0200
+++ kvpm-0.8.6/debian/patches/series 2013-03-06 08:16:15.0 +0100
@@ -1 +1,2 @@
+partition-move-corruption.patch
bug-667232.patch
Bug#704053: unblock: mongodb/2.0.6-1.1
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package mongodb for t-p-u
Upstream has fixed a critical remote vulnerability, see
CVE-2013-1892 [1]. I have extracted the patches to fix the issue
from upstream and uploaded 2.0.6-1.1 into t-p-u since there
is already a newer upstream version of mongodb in unstable.
Attaching the debdiff for 2.0.6-1.1.
unblock mongodb/2.0.6-1.1
Cheers,
Adrian
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=704042
-- System Information:
Debian Release: 7.0
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.8-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru mongodb-2.0.6/debian/changelog mongodb-2.0.6/debian/changelog
--- mongodb-2.0.6/debian/changelog 2012-06-05 19:53:16.0 +0200
+++ mongodb-2.0.6/debian/changelog 2013-03-27 13:08:29.0 +0100
@@ -1,3 +1,11 @@
+mongodb (1:2.0.6-1.1) testing-proposed-updates; urgency=high
+
+ * Non-maintainer upload.
+ * Include patch to address remote vulnerability
+CVE-2013-1895 (Closes: #704042).
+
+ -- John Paul Adrian Glaubitz Wed, 27 Mar 2013 13:08:10 +0100
+
mongodb (1:2.0.6-1) unstable; urgency=low
* New upstream release 2.0.6
diff -Nru mongodb-2.0.6/debian/patches/0004-CVE-2013-1892-part1.patch mongodb-2.0.6/debian/patches/0004-CVE-2013-1892-part1.patch
--- mongodb-2.0.6/debian/patches/0004-CVE-2013-1892-part1.patch 1970-01-01 01:00:00.0 +0100
+++ mongodb-2.0.6/debian/patches/0004-CVE-2013-1892-part1.patch 2013-03-27 12:59:01.0 +0100
@@ -0,0 +1,172 @@
+From 3c5c12f7d57ba1e44250d3e1734885a5cafaf8e2 Mon Sep 17 00:00:00 2001
+From: Dan Pasette
+Date: Tue, 26 Mar 2013 16:52:39 -0400
+Subject: [PATCH] SERVER-9124: Avoid raw pointers for SM's nativeHelper
+
+---
+ scripting/engine_spidermonkey.cpp | 116 +
+ 1 file changed, 78 insertions(+), 38 deletions(-)
+
+diff --git a/scripting/engine_spidermonkey.cpp b/scripting/engine_spidermonkey.cpp
+index 64fe21c..e857b90 100644
+--- a/scripting/engine_spidermonkey.cpp
b/scripting/engine_spidermonkey.cpp
+@@ -47,6 +47,9 @@ namespace mongo {
+ }
+ };
+
++typedef std::map FunctionMap;
++typedef std::map ArgumentMap;
++
+ string trim( string s ) {
+ while ( s.size() && isspace( s[0] ) )
+ s = s.substr( 1 );
+@@ -997,43 +1000,8 @@ namespace mongo {
+ return JS_TRUE;
+ }
+
+-JSBool native_helper( JSContext *cx , JSObject *obj , uintN argc, jsval *argv , jsval *rval ) {
+-Convertor c(cx);
+-
+-NativeFunction func = (NativeFunction)((long long)c.getNumber( obj , "x" ) );
+-void* data = (void*)((long long)c.getNumber( obj , "y" ) );
+-assert( func );
+-
+-BSONObj a;
+-if ( argc > 0 ) {
+-BSONObjBuilder args;
+-for ( uintN i=0; isetProperty( _global , (name + "_").c_str() , _convertor->toval( (double)(long long)func ) );
++long long funcId = static_cast(_functionMap.size());
++_functionMap.insert(make_pair(funcId, func));
++jsval v = _convertor->toval(funcId);
++_convertor->setProperty(_global, (name + "_").c_str(), v);
+
+ stringstream code;
+ if (data) {
+-_convertor->setProperty( _global , (name + "_data_").c_str() , _convertor->toval( (double)(long long)data ) );
++long long argsId = static_cast(_argumentMap.size());
++_argumentMap.insert(make_pair(argsId, data));
++v = _convertor->toval(argsId);
++_convertor->setProperty(_global, (name + "_data_").c_str(), v);
+ code << field << "_" << " = { x : " << field << "_ , y: " << field << "_data_ }; ";
+ } else {
+ code << field << "_" << " = { x : " << field << "_ }; ";
+@@ -1631,6 +1605,10 @@ namespace mongo {
+
+ JSContext *SavedContext() const { return _context; }
+
++// map from internal function id to function pointer
++FunctionMap _functionMap;
++// map from internal function argument id to function pointer
++ArgumentMap _argumentMap;
+ private:
+
+ void _postCreateHacks() {
+@@ -1696,7 +1674,69 @@ namespace mongo {
+ return JS_TRUE;
+ }
+
++JSBool native_helper( JSContext *cx , JSObject *obj , uintN argc, jsval *argv , jsval *rval ) {
++try {
++Convertor c(cx)
Bug#704053: unblock: mongodb/2.0.6-1.1
On 03/27/2013 02:30 PM, Adam D. Barratt wrote: It would be good if that had been discussed /before/ it was uploaded. :( I'm sorry, Paultag already nagged me for that :). I got a reply from the maintainer to go ahead and forgot to get into touch with the security team :(. As far as I can tell, the package in unstable is still vulnerable. Is there a plan for getting that fixed? The version in unstable is 2.4.1 which is not affected according to the upstream bug tracker [1]. Cheers, Adrian > [1] https://jira.mongodb.org/browse/SERVER-9124 -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/5152fecd.1060...@physik.fu-berlin.de
Bug#704126: RM: python-bcrypt/0.1-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: rm Hello, as discussed with Julien Cristau on #debian-security today, please remove the package "python-bcrypt" from testing. The package currently has one RC bug [1]. While there is a patch available from upstream attached in [1], the general shape of the package is very bad (just one upload, 5 years ago), so it was suggested to remove the package. Cheers, Adrian > [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=704030 -- System Information: Debian Release: 7.0 APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.8-trunk-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20130328102948.24834.60954.reportbug@localhost.localdomain
Bug#704047: unblock: kvpm/0.8.6-3
On 03/28/2013 11:20 AM, Adam D. Barratt wrote: I have to admit that I'm really not overly happy about the use of "urgency=critical" here; that implies that the package should immediately transition to testing with no time in unstable and there are _very_ few cases where it would be justified - as far as I can tell from the bug report, this is an issue that only affects an operation which I'd at least be very cautious about trying on a drive containing live data, and even the maintainer says only happens "sometimes". Hmm, valid point. These changes and the urgency were made by the original maintainer of the package who also happens to be the upstream author, so I am putting him into CC of this mail. In any case, this will either have to go via t-p-u or wait for a point release, as it's picked up a depedency on "liblvm2app2.2 (>= 2.02.98)", which isn't satisfiable in wheezy. That's too bad. But I would go ahead now, build 0.8.6-3+wheezy1 with "urgency=high" (or medium, low), if you agree. Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/51541c6f.7010...@physik.fu-berlin.de
Bug#704047: unblock: kvpm/0.8.6-3
On 03/28/2013 11:44 AM, Adam D. Barratt wrote: Control: tags -1 +confirmed -moreinfo On 28.03.2013 10:33, John Paul Adrian Glaubitz wrote: On 03/28/2013 11:20 AM, Adam D. Barratt wrote: In any case, this will either have to go via t-p-u or wait for a point release, as it's picked up a depedency on "liblvm2app2.2 (>= 2.02.98)", which isn't satisfiable in wheezy. That's too bad. But I would go ahead now, build 0.8.6-3+wheezy1 That would be higher than the version in unstable. :) Please use "0.8.6-2+deb7u1". True, the moment I sent the mail, I had a dejavu regarding this [1] :). with "urgency=high" (or medium, low), if you agree. From britney's point of view t-p-u uploads always transition asap (once they're approved, built, etc) so the urgency is largely only for users in this case; "high" would be fine. True, when you're already in testing, there's not point to transition from. Will upload the package now. Adrian > [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697957 -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/51541f99.3020...@physik.fu-berlin.de
Bug#704143: unblock: olsrd/0.6.2-2.1
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock
Hi,
both olsrd 0.6.2-2 (testing) and 0.6.3-5 (unstable) suffer from
corrupted data on amd64 platforms [1].
I have performed NMUs both for testing-proposed-updates and unstable
and would like to have the version for t-p-u unblocked.
Attaching debdiff.
Adrian
unblock olsrd/0.6.2-2.1
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=704025
-- System Information:
Debian Release: 7.0
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.8-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru olsrd-0.6.2/debian/changelog olsrd-0.6.2/debian/changelog
--- olsrd-0.6.2/debian/changelog 2012-02-19 16:18:18.0 +0100
+++ olsrd-0.6.2/debian/changelog 2013-03-28 04:31:12.0 +0100
@@ -1,3 +1,11 @@
+olsrd (0.6.2-2.1) testing-proposed-updates; urgency=low
+
+ * Non-maintainer upload.
+ * Include upstream patch to fix stack corruption in
+net output (Closes: #704025).
+
+ -- John Paul Adrian Glaubitz Thu, 28 Mar 2013 04:29:10 +0100
+
olsrd (0.6.2-2) unstable; urgency=low
* debian/control: Build-Depends: debhelper (>= 9) (Closes: #658330)
diff -Nru olsrd-0.6.2/debian/patches/300-fix-stack-corruption-in-net-output.patch olsrd-0.6.2/debian/patches/300-fix-stack-corruption-in-net-output.patch
--- olsrd-0.6.2/debian/patches/300-fix-stack-corruption-in-net-output.patch 1970-01-01 01:00:00.0 +0100
+++ olsrd-0.6.2/debian/patches/300-fix-stack-corruption-in-net-output.patch 2013-03-28 04:27:03.0 +0100
@@ -0,0 +1,57 @@
+From f4d250ad4fad5fcfe5b5feaac3f3e121adef3fba Mon Sep 17 00:00:00 2001
+From: Jo-Philipp Wich
+Date: Fri, 22 Jun 2012 03:17:59 +0200
+Subject: [PATCH] olsrd: fix stack corruption in net_output()
+
+The net_output() function indirectly uses the stack variables dst and dst6
+outside of the scope they're declared in, this might leads to olsr_sendto()
+being called with a corrupted destination sockaddr_in.
+
+This failure condition can be observed in the log, olsrd will continuosly
+print "sendto(v4): Invalid Argument" or a similar message. On ARM it has been
+reported to result in "Unsupported Address Family".
+
+This bug became apparant on a custon OpenWrt x86_64 uClibc target using the
+Linaro GCC 4.7-2012.04 compiler, it has been reported for an unspecified ARM
+target as well.
+
+The offending code seems to be unchanged since 2008 and it does not cause
+issues on 32bit systems and/or with older (Linaro) GCC versions, but the
+compiler used in our tests seems to perform more aggressive optimizations
+leading to a stack corruption.
+---
+ src/net_olsr.c |4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+
+diff --git a/src/net_olsr.c b/src/net_olsr.c
+index 7d85f4f..66e103d 100644
+--- a/src/net_olsr.c
b/src/net_olsr.c
+@@ -336,6 +336,8 @@ net_output(struct interface *ifp)
+ {
+ struct sockaddr_in *sin = NULL;
+ struct sockaddr_in6 *sin6 = NULL;
++ struct sockaddr_in dst;
++ struct sockaddr_in6 dst6;
+ struct ptf *tmp_ptf_list;
+ union olsr_packet *outmsg;
+ int retval;
+@@ -354,7 +356,6 @@ net_output(struct interface *ifp)
+ outmsg->v4.olsr_packlen = htons(ifp->netbuf.pending);
+
+ if (olsr_cnf->ip_version == AF_INET) {
+-struct sockaddr_in dst;
+ /* IP version 4 */
+ sin = (struct sockaddr_in *)&ifp->int_broadaddr;
+
+@@ -365,7 +366,6 @@ net_output(struct interface *ifp)
+ if (sin->sin_port == 0)
+ sin->sin_port = htons(olsr_cnf->olsrport);
+ } else {
+-struct sockaddr_in6 dst6;
+ /* IP version 6 */
+ sin6 = (struct sockaddr_in6 *)&ifp->int6_multaddr;
+ /* Copy sin */
+--
+1.7.9.5
+
diff -Nru olsrd-0.6.2/debian/patches/series olsrd-0.6.2/debian/patches/series
--- olsrd-0.6.2/debian/patches/series 2012-02-19 16:07:42.0 +0100
+++ olsrd-0.6.2/debian/patches/series 2013-03-28 04:27:57.0 +0100
@@ -6,3 +6,4 @@
270-gui-linux-gtk-align-olsr_ip_addr-to-olsr-definition-of-it.patch
280-fix-linux-gtk-build.patch
290-hardcode-etc-olsrd-olsrd-conf.patch
+300-fix-stack-corruption-in-net-output.patch
Bug#704756: nmu: pidgin-latex_1.5.0-1
Hello Julien, hello Andreas! On 04/05/2013 06:02 PM, Julien Cristau wrote: On Fri, Apr 5, 2013 at 16:15:39 +0200, Andreas Beckmann wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu nmu pidgin-latex_1.5.0-1 . amd64 . -m "Rebuild in a clean sid environment." Once again a package built in experimental or Ubuntu was uploaded to Debian: pidgin-latex/amd64 unsatisfiable Depends: libc6 (>= 2.14) Done. Cc:ing the uploader, please fix your build environment... Thanks a lot for the mail. That was indeed by accident. I built the package using a clean environment, however, I accidentally created a experimental environment earlier to build and test a package for experimental. I am sorry for the inconveniences, I will fix the package immediately. Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/515efba4.1040...@physik.fu-berlin.de
Bug#704756: nmu: pidgin-latex_1.5.0-1
On 04/05/2013 06:28 PM, John Paul Adrian Glaubitz wrote: I am sorry for the inconveniences, I will fix the package immediately. Ah, you already did a binNMU to fix the issue. So, I'll just have to fix my pbuilder. Thanks! Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/515efc19.5090...@physik.fu-berlin.de
Bug#699210: unblock: setools/3.3.7-3.3
On 04/04/2013 10:10 PM, Adam D. Barratt wrote: None of arm, m68k or ppc64 are in Debian right now, so the package's buildability on them doesn't seem particularly relevant. True! But the additional symbol tables for these architectures shouldn't hurt the other architectures as well. The diff is naturally large as it contains the additional symbol tables. He added the symbol files for s390x, ppc64 and m68k. The latter is especially interesting as this architecture is currently being revived, I am supporting these guys and will hopefully adopt one of the buildds. Plus, Nick does always an excellent job when it comes to quality assurance during packaging. Which versions of the package FTBFS on s390x? There are setools binary packages in testing on that architecture, so it obviously built at some point; what changed? Interesting. I am pretty sure there was an FTBFS on s390x, I'll have to check my mail from that time. Nick, do you remember why you fixed the symbol table for s390x? Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/515ffd6e.4030...@physik.fu-berlin.de
Bug#699210: unblock: setools/3.3.7-3.3
On 04/06/2013 12:53 PM, Adam D. Barratt wrote: If there are other reasons to migrate the package, potentially, but... Well, there aren't. Which versions of the package FTBFS on s390x? There are setools binary packages in testing on that architecture, so it obviously built at some point; what changed? Interesting. I am pretty sure there was an FTBFS on s390x, I'll have to check my mail from that time. Nick, do you remember why you fixed the symbol table for s390x? In a later mail he said the s390x problem was introduced in -3.1 when the arm/m68k symbols files were added. If that's the case then as wheezy only has -3 it isn't affected. Ah, right, now I remember. He fixed the symbol tables for m68k which triggered the problems on s390x, then he fixed s390x and ppc64 such that the package builds fine on all architectures. Anyway, you're right Adam, there isn't really a reason to unblock this. Please go ahead and close this unblock request. Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/5160051e.5060...@physik.fu-berlin.de
Bug#704755: nmu: volview_3.4-3
> How is this (undefined symbol in libKWWidgets.so.1.0.1009) not a > bug in kwwidgets (or vtk, maybe)? It is a bug in kwwidgets, it's been reassigned to kwwidgets now. Please see the updated bug report [1]. Cheers, Adrian > [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=698698 -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20130417201811.gb23...@physik.fu-berlin.de
Bug#704755: nmu: volview_3.4-3
Hey Julien, Mathieu just uploaded a fixed version of kwwidgets into unstable, I am attaching the debdiff for that. Could you have a look into that and unblock the package if you agree with the changes? Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 diff -Nru kwwidgets-1.0.0~cvs20100930/debian/changelog kwwidgets-1.0.0~cvs20100930/debian/changelog --- kwwidgets-1.0.0~cvs20100930/debian/changelog2012-01-10 16:00:46.0 +0100 +++ kwwidgets-1.0.0~cvs20100930/debian/changelog2013-04-18 10:26:51.0 +0200 @@ -1,3 +1,10 @@ +kwwidgets (1.0.0~cvs20100930-8) unstable; urgency=low + + * Fix volview does not start because of a missing symbol. Closes: #698698 + * Remove obsolete DMUA flags, switch to my @debian.org alias + + -- Mathieu Malaterre Thu, 18 Apr 2013 10:25:46 +0200 + kwwidgets (1.0.0~cvs20100930-7) unstable; urgency=low * Improve finding of init.tcl/tk.tcl, required for VolView to work. diff -Nru kwwidgets-1.0.0~cvs20100930/debian/control kwwidgets-1.0.0~cvs20100930/debian/control --- kwwidgets-1.0.0~cvs20100930/debian/control 2011-12-30 07:12:29.0 +0100 +++ kwwidgets-1.0.0~cvs20100930/debian/control 2013-04-18 10:26:51.0 +0200 @@ -1,8 +1,7 @@ Source: kwwidgets Priority: optional Maintainer: Debian Science Team -DM-Upload-Allowed: yes -Uploaders: Mathieu Malaterre +Uploaders: Mathieu Malaterre Build-Depends: debhelper (>= 7), cdbs, cmake, quilt (>= 0.40), tcl-vtk (>= 5.6), libvtk5-dev (>= 5.6), tcl8.5-dev, tk8.5-dev, python-support, python-dev, python-vtk diff -Nru kwwidgets-1.0.0~cvs20100930/debian/patches/kwwidgets-fix-lib-depends.patch kwwidgets-1.0.0~cvs20100930/debian/patches/kwwidgets-fix-lib-depends.patch --- kwwidgets-1.0.0~cvs20100930/debian/patches/kwwidgets-fix-lib-depends.patch 1970-01-01 01:00:00.0 +0100 +++ kwwidgets-1.0.0~cvs20100930/debian/patches/kwwidgets-fix-lib-depends.patch 2013-04-18 10:26:51.0 +0200 @@ -0,0 +1,23 @@ +Description: volview does not start because of a missing symbol + Michael Karcher has debugged the problem and found the reason for the + symbol lookup failure is kwwidgets not depending on required libraries + for additional symbols volviews requires. The problem was triggered + with vtk adding the linker option --as-needed for compiled. +Author: John Paul Adrian Glaubitz +Bug-Debian: http://bugs.debian.org/698698 +Forwarded: not-needed +Reviewed-By: Mathieu Malaterre + +--- kwwidgets-1.0.0~cvs20100930.orig/CMakeLists.txt kwwidgets-1.0.0~cvs20100930/CMakeLists.txt +@@ -745,6 +745,10 @@ add_library(KWWidgets + target_link_libraries(KWWidgets vtkCommonTCL) + if(KWWidgets_BUILD_VTK_WIDGETS) + if(VTK_WRAP_TCL) ++target_link_libraries(KWWidgets vtkFilteringTCL) ++target_link_libraries(KWWidgets vtkImagingTCL) ++target_link_libraries(KWWidgets vtkGraphicsTCL) ++target_link_libraries(KWWidgets vtkIOTCL) + if(VTK_USE_RENDERING OR VTK_USE_RENDERING_ISSET) + target_link_libraries(KWWidgets vtkRenderingTCL) + target_link_libraries(KWWidgets vtkHybridTCL) diff -Nru kwwidgets-1.0.0~cvs20100930/debian/patches/series kwwidgets-1.0.0~cvs20100930/debian/patches/series --- kwwidgets-1.0.0~cvs20100930/debian/patches/series 2012-01-10 15:59:42.0 +0100 +++ kwwidgets-1.0.0~cvs20100930/debian/patches/series 2013-04-18 10:26:51.0 +0200 @@ -2,3 +2,4 @@ fixtest.patch vtk58pythonwrapping.patch tcltk_relative.patch +kwwidgets-fix-lib-depends.patch
Bug#699806: unblock: dlocate/1.02+nmu3
On 04/27/2013 04:45 PM, Adam D. Barratt wrote: Apologies for not getting back to you about this again sooner. Unfortunately it's now too late to get these fixes in to r0, but I do think we should consider whether some of them are appropriate for a stable update at a later point. Sounds like a great idea. So, I should push that to wheezy-proposed-updates after the release? I haven't done any stable updates before, that's why I'm asking :). Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/517be51f.9060...@physik.fu-berlin.de
Re: Bug#624507: #624507 - Started looping and continuously rewriting metadata file - Debian Bug report logs
FYI, upstream [1] provides a series of patches now which are addressing the problem and should fix it both for remote and local filesystems which can be affected under certain circumstances as well. The developer is asking everyone who was affected, especially people deploying GNOME in a large environment to test the patch set. It might be worth to apply the patches to gvfs and have the fixed package included in a future point update of Debian Wheezy provided that the proposed patches work. We are going to drop Joss' patch "06_metadata_nfs.patch" for some of our Debian Wheezy workstations on our network and install a test package with the patches provided by upstream to verify the patches work. If you can, please help testing, too. Cheers, Adrian > [1] https://bugzilla.gnome.org/show_bug.cgi?id=637095 -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/5182c0bb.2040...@physik.fu-berlin.de
Bug#707182: RM: pidgin-facebookchat/1.69-2.1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: rm Please remove pidgin-facebookchat from the Debian archives. It has been abadoned by upstream nearly three years ago [1] since Facebook has been implementing support for XMPP for some time now and it is no longer necessary to have the plugin installed in order to chat with Pidgin on Facebook. Removing the package will also close a couple of bugs [2]. Cheers, Adrian > [1] http://code.google.com/p/pidgin-facebookchat/wiki/Changelog > [2] http://bugs.debian.org/cgi-bin/pkgreport.cgi?package=pidgin-facebookchat -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.8-1-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20130508001046.22713.80422.reportbug@localhost.localdomain
Bug#682174: unblock: z80ex/1.1.19-3
Good morning, On Fri, Aug 17, 2012 at 12:46:14AM +0200, Cyril Brulebois wrote: > > can you please mention in the changelog the patch dance? Telling us in > that bug report is nice, but that really should be in the changelog. ;) Yes, will do. I seem to just have forgotten that. > Otherwise, looks good to me, please go ahead and tell us once it's > uploaded. I will fix the Debian changelog, upload the package and let you know once it's uploaded. I'm currently abroad until this evening, so it might not happen before tomorrow. Cheers, Adrian -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20120817064428.ga17...@physik.fu-berlin.de
Bug#682174: unblock: z80ex/1.1.19-3
Hi, On Fri, Aug 17, 2012 at 08:44:28AM +0200, John Paul Adrian Glaubitz wrote: > > Otherwise, looks good to me, please go ahead and tell us once it's > > uploaded. > > I will fix the Debian changelog, upload the package and let you know > once it's uploaded. I'm currently abroad until this evening, so it > might not happen before tomorrow. I have just uploaded x80ex, version 1.1.19-3 into Debian unstable. Cheers, Adrian -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20120817095703.ga19...@physik.fu-berlin.de
Re: Roll call for porters of architectures in sid and testing
Hello! On 09/25/2013 05:09 AM, Nobuhiro Iwamatsu wrote: > I am an active porter for the following architectures and I intend > to continue this for the lifetime of the jessie release: > > For sh4, I > - test packages on this architecture > - triage arch-specific bugs > - fix arch-related bugs > - maintain buildds I have joined Nobuhiro to help supporting the sh4 port. I am currently working on to reactive the build queue again. Needs-Build on sh4 is currently over 4000 and I need to build a couple of essential packages like gcc-4.9, gcc-4.8 and python2.7 manually to be able to resolve the dependency problems. gcc-4.9 has been building since Wednesday but it's looking good. I hope to have the packages uploaded over the weekend. Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/53e618fc.9070...@physik.fu-berlin.de
Bug#699806: unblock: dlocate/1.02+nmu3
On Sat, Nov 08, 2014 at 11:18:43PM +0100, intrigeri wrote: > John Paul Adrian Glaubitz wrote (08 Sep 2014 22:50:44 GMT) : > > Sure, will do once I am back from vacation. I am currently in Japan > > until next week. Will get back to this after my journey. > > Ping? You want an unblock for Wheezy? -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141108222311.gb18...@physik.fu-berlin.de
Bug#699806: unblock: dlocate/1.02+nmu3
On Sat, Nov 08, 2014 at 11:57:29PM +0100, intrigeri wrote: > I realize the subject is misleading (and the bug title was changed > since then), but #699806 is actually a wheezy pu bug you filed. And, > two months ago, you said you would upload the package shortly. > Hence this friendly ping :) Well, you're absolutely right, but I somehow forgot it after I came back from Japan and I was just wondering whether it will still make sense to make an upload when we're now in the Jessie freeze already. -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141108230043.ga19...@physik.fu-berlin.de
Bug#769540: unblock: pidgin/2.10.10-1.1
Package: release.debian.org Severity: normal Tags: patch User: release.debian@packages.debian.org Usertags: unblock Hey there! I have just uploaded an NMU for Pidgin which fixes a login issue with MSN which occurred after Microsoft changed the application ID that the client needs to send in order to be able to retrieve the contact list. The current version of Pidgin in Jessie no longer allows users to sign on to MSN which makes the MSN part of Pidgin unusable. I have therefore deemed this bug to be release-critical, tagged it as such, made the NMU and am requesting an unblock now. Please find the attached debdiff for the changes of my NMU. Cheers, Adrian unblock pidgin/2.10.10-1.1 -- System Information: Debian Release: 7.7 APT prefers stable APT policy: (500, 'stable'), (99, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8) Shell: /bin/sh linked to /bin/dash diff -Nru pidgin-2.10.10/debian/changelog pidgin-2.10.10/debian/changelog --- pidgin-2.10.10/debian/changelog 2014-10-20 03:01:31.0 +0200 +++ pidgin-2.10.10/debian/changelog 2014-11-14 11:18:12.0 +0100 @@ -1,3 +1,11 @@ +pidgin (2.10.10-1.1) unstable; urgency=medium + + * Non-maintainer upload. + * Add debian/patches/0001-update-msn-application-id.patch to update the +MSN_APPLICATION_ID sent when signing in to MSN (Closes: #769491). + + -- John Paul Adrian Glaubitz Fri, 14 Nov 2014 10:48:05 +0100 + pidgin (2.10.10-1) unstable; urgency=high * Imported Upstream version 2.10.10 diff -Nru pidgin-2.10.10/debian/patches/0001-update-msn-application-id.patch pidgin-2.10.10/debian/patches/0001-update-msn-application-id.patch --- pidgin-2.10.10/debian/patches/0001-update-msn-application-id.patch 1970-01-01 01:00:00.0 +0100 +++ pidgin-2.10.10/debian/patches/0001-update-msn-application-id.patch 2014-11-14 11:06:58.0 +0100 @@ -0,0 +1,33 @@ +Description: Update the MSN_APPLICATION_ID to fix MSN login issues + Microsoft recently updated the MSN_APPLICATION_ID that the client + sends to the server in order to identify its version. The old ID + used is the application ID of Windows Live Messenger 2008 (8.5) + which Microsoft apparently no longer supports. When the client + attempts to retrieve the contact list, the server will reject + the request. This patch fixes the issue by updating the + MSN_APPLICATION_ID sent by Pidgin. + . +--- +The information above should follow the Patch Tagging Guidelines, please +checkout http://dep.debian.net/deps/dep3/ to learn about the format. Here +are templates for supplementary fields that you might want to add: + +Origin: upstream, https://hg.pidgin.im/pidgin/main/diff/f6a91e6c77a4/libpurple/protocols/msn/contact.h +Bug: (none) +Bug-Debian: https://bugs.debian.org/769491 +Bug-Ubuntu: (none) +Forwarded: (already fixed upstream) +Reviewed-By: John Paul Adrian Glaubitz +Last-Update: 2014-11-14 + +--- pidgin-2.10.10.orig/libpurple/protocols/msn/contact.h pidgin-2.10.10/libpurple/protocols/msn/contact.h +@@ -60,7 +60,7 @@ typedef enum + #include "session.h" + #include "soap.h" + +-#define MSN_APPLICATION_ID "CFE80F9D-180F-4399-82AB-413F33A1FA11" ++#define MSN_APPLICATION_ID "484AAC02-7F59-41B7-9601-772045DCC569" + + #define MSN_CONTACT_SERVER "local-bay.contacts.msn.com" + diff -Nru pidgin-2.10.10/debian/patches/series pidgin-2.10.10/debian/patches/series --- pidgin-2.10.10/debian/patches/series 2014-01-25 17:57:00.0 +0100 +++ pidgin-2.10.10/debian/patches/series 2014-11-14 10:59:53.0 +0100 @@ -0,0 +1 @@ +0001-update-msn-application-id.patch
Bug#682174: unblock: z80ex/1.1.19-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: freeze-exception Please unblock package z80ex I have prepared version 1.1.19-3 to be uploaded to unstable. This version fixes Debian bug #682018. I have successfully reproduced the bug, made the appropriate changes to my package and verified that my changes actually fix the bug. The fix consists of a single dh_override_auto_configure in the debian/rules file of the z80ex source package. I am attaching a diff. Cheers, Adrian unblock z80ex/1.1.19-3 -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (500, 'testing'), (100, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.2.0-3-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8) Shell: /bin/sh linked to /bin/dash diff --git a/debian/changelog b/debian/changelog index da531e8..b95826e 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +z80ex (1.1.19-3) unstable; urgency=low + + * Force calling cmake through debhelper to make sure +endianness is set correctly (Closes: #682018) + + -- John Paul Adrian Glaubitz Fri, 20 Jul 2012 01:50:57 +0200 + z80ex (1.1.19-2) unstable; urgency=low [ John Paul Adrian Glaubitz ] diff --git a/debian/rules b/debian/rules index c0b85db..9065ab8 100755 --- a/debian/rules +++ b/debian/rules @@ -9,6 +9,9 @@ # Uncomment this to turn on verbose mode. #export DH_VERBOSE=1 +override_dh_auto_configure: + dh_auto_configure -Scmake + override_dh_install: set -e; for file in libz80ex1.install libz80ex-dev.install; \ do \
