Re: Notice of mailing list closure: pkg-multimedia-maintainers
Hi, On 11/04/18 15:19, Reinhard Tartler wrote: > Hi Mattia, > > I am around, but am unsure what to do. Reading through the past mails on > this topic on the pkg-multimedia-maintainers mailing list, I thought the > plan was to move all packages to use "debian-multime...@lists.debian.org > <mailto:debian-multime...@lists.debian.org>" as maintainer, and we could > safely let go of the alioth list. I may have misunderstood something. Yes that is the plan, but unfortunately we only have 3 days to do that before the alioth list is turned off, so I think it's better to have the list migrated for the time being and let the list go once enough stuff has been migrated. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: Notice of mailing list closure: pkg-multimedia-maintainers
Hi, On 02/04/18 16:21, alioth lists migration team wrote: > Dear list subscribers, > > As per the announcement on debian-devel-announce[1] and as part of > the shutdown of the alioth service, the migration of > lists.alioth.debian.org mailing lists to alioth-lists.debian.net is now > underway. > > We tried to contact the designated list owner via > pkg-multimedia-maintainers-ow...@lists.alioth.debian.org but got either no > reply, > or a bounce message. Accordingly, this list will not be migrated to the > new system and will stop working on 14th April. Given that the vast majority of packages are still on the old lists.alioth.debian.org maintainer address, I think we will need the list migrated otherwise the team will be screwed. Have I missed something? James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#895154: ffmpeg: FTBFS - make[2]: write error: stdout
Control: tags -1 pending Hi, On 08/04/18 11:18, Niels Thykier wrote: > On Sat, 7 Apr 2018 21:38:53 +0100 James Cowgill <jcowg...@debian.org> wrote: >> Source: ffmpeg >> Version: 7:3.4.1-1 >> Severity: serious >> Tags: sid buster >> >> For some reason ffmpeg has started FTBFS with this error: >>> TESTvsynth2-zlib >>> /<>/tests/fate-run.sh fate-vsynth2-zlib "" "" >>> "/<>/debian/standard" 'enc_dec "rawvideo -s 352x288 -pix_fmt >>> yuv420p " tests/data/vsynth2.yuv avi "-c zlib " rawvideo "-s 352x288 >>> -pix_fmt yuv420p -vsync 0 " -keep ""' '' >>> '/<>/tests/ref/vsynth/vsynth2-zlib' '' '1' '' '' '' '' '' '1' >>> '' '' '' >>> /<>/debian/standard/ffmpeg -nostdin -nostats -cpuflags all -f >>> rawvideo -s 352x288 -pix_fmt yuv420p -threads 1 -idct simple -flags >>> +bitexact -sws_flags +accurate_rnd+bitexact -fflags +bitexact -hwaccel none >>> -threads 1 -thread_type frame+slice -i >>> /<>/debian/standard/tests/data/vsynth2.yuv -threads 1 -idct >>> simple -dct fastint -c zlib -flags +bitexact -sws_flags >>> +accurate_rnd+bitexact -fflags +bitexact -f avi -y >>> /<>/debian/standard/tests/data/fate/vsynth2-zlib.avi >>> /<>/debian/standard/ffmpeg -nostdin -nostats -cpuflags all >>> -threads 1 -idct simple -flags +bitexact -sws_flags +accurate_rnd+bitexact >>> -fflags +bitexact -hwaccel none -threads 1 -thread_type frame+slice -i >>> /<>/debian/standard/tests/data/fate/vsynth2-zlib.avi -threads >>> 1 -idct simple -dct fastint -s 352x288 -pix_fmt yuv420p -vsync 0 -flags >>> +bitexact -sws_flags +accurate_rnd+bitexact -fflags +bitexact -f rawvideo >>> -y >>> /<>/debian/standard/tests/data/fate/vsynth2-zlib.out.rawvideo >>> make[2]: Leaving directory '/<>/debian/standard' >>> make[2]: write error: stdout >>> dh_auto_test: cd debian/standard && make -j4 -O check -k returned exit code >>> 1 >>> make[1]: *** [debian/rules:231: override_dh_auto_test-arch] Error 25 >>> make[1]: Leaving directory '/<>' >>> make: *** [debian/rules:192: binary] Error 2 >>> dpkg-buildpackage: error: debian/rules binary subprocess returned exit >>> status 2 >> >> This can be seen on the reproducible builds first seen 2018-03-15 >> affecting 3.4 and 3.5 in experimental. >> >> I'm guessing this has something to do with "make -O" which was enabled >> recently in debhelper, but I haven't checked. >> >> James > > Hi James, > > In a recent upload, debhelper started using -Oline instead of -O. Does > that solve this problem for you? (It was done unrelated to this bug, > but looking at the documentation for -O, I suspect it might help here as > well) As me and Adrian said on IRC, it does not. The problem was nodejs leaving stderr in non-blocking mode and I've committed this to fix it. So no bugs in debhelper here. https://salsa.debian.org/multimedia-team/ffmpeg/commit/71b483f31e5a411a02717278e0a30323965c2c88 Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#895151: Guitarix update 35.2-2 (stretch) -> 36.1-1 (buster) improvement
Hi, On 07/04/18 20:41, treb...@tuxfamily.org wrote: > Package: guitarix > Version: 36.1-1 > > While upgrading from the Stretch package (35.2-2) to the sid/buster one > (36.1-1), it doesn't update the libgxw0 and libgxwmm0 packages which are > needed by the Guitarix application. > > Then, the application isn't fully functional since it requires those > libs to work with, and doesn't have those in the right version, then > missing the right versionned functions. Hence there are some errors > while using guitarix. What are the errors? This bug might be RC but I can't tell if I don't know what the underlying issue is. > In d/control, adding to the binary "Package: guitarix" 's "Depends" ' > field the following seems to fix the issue : > libgxw0 (>= ${source:Version}), > libgxwmm0 (>= ${source:Version}), > > Please double check before applying. The correct fix is to generate versioned shlibs files for the libraries so that the correct dependencies are automatically generated. Overriding dh_makeshlibs with "dh_makeshlibs -V" is the quick conservative way of doing this. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#895154: ffmpeg: FTBFS - make[2]: write error: stdout
Source: ffmpeg Version: 7:3.4.1-1 Severity: serious Tags: sid buster For some reason ffmpeg has started FTBFS with this error: > TESTvsynth2-zlib > /<>/tests/fate-run.sh fate-vsynth2-zlib "" "" > "/<>/debian/standard" 'enc_dec "rawvideo -s 352x288 -pix_fmt > yuv420p " tests/data/vsynth2.yuv avi "-c zlib " rawvideo "-s 352x288 -pix_fmt > yuv420p -vsync 0 " -keep ""' '' > '/<>/tests/ref/vsynth/vsynth2-zlib' '' '1' '' '' '' '' '' '1' '' > '' '' > /<>/debian/standard/ffmpeg -nostdin -nostats -cpuflags all -f > rawvideo -s 352x288 -pix_fmt yuv420p -threads 1 -idct simple -flags +bitexact > -sws_flags +accurate_rnd+bitexact -fflags +bitexact -hwaccel none -threads 1 > -thread_type frame+slice -i > /<>/debian/standard/tests/data/vsynth2.yuv -threads 1 -idct > simple -dct fastint -c zlib -flags +bitexact -sws_flags > +accurate_rnd+bitexact -fflags +bitexact -f avi -y > /<>/debian/standard/tests/data/fate/vsynth2-zlib.avi > /<>/debian/standard/ffmpeg -nostdin -nostats -cpuflags all > -threads 1 -idct simple -flags +bitexact -sws_flags +accurate_rnd+bitexact > -fflags +bitexact -hwaccel none -threads 1 -thread_type frame+slice -i > /<>/debian/standard/tests/data/fate/vsynth2-zlib.avi -threads 1 > -idct simple -dct fastint -s 352x288 -pix_fmt yuv420p -vsync 0 -flags > +bitexact -sws_flags +accurate_rnd+bitexact -fflags +bitexact -f rawvideo -y > /<>/debian/standard/tests/data/fate/vsynth2-zlib.out.rawvideo > make[2]: Leaving directory '/<>/debian/standard' > make[2]: write error: stdout > dh_auto_test: cd debian/standard && make -j4 -O check -k returned exit code 1 > make[1]: *** [debian/rules:231: override_dh_auto_test-arch] Error 25 > make[1]: Leaving directory '/<>' > make: *** [debian/rules:192: binary] Error 2 > dpkg-buildpackage: error: debian/rules binary subprocess returned exit status > 2 This can be seen on the reproducible builds first seen 2018-03-15 affecting 3.4 and 3.5 in experimental. I'm guessing this has something to do with "make -O" which was enabled recently in debhelper, but I haven't checked. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#895125: Soundconverter mp3 issue
Control: reassign -1 gstreamer1.0-plugins-ugly 1.14.0-1 Control: retitle -1 gstreamer1.0-plugins-ugly: should have breaks gstreamer1.0-plugins-good (<< 1.13.1) Hi, On 07/04/18 11:01, Rob Oosterling wrote: > Package: soundconverter > Version: 3.0.0~beta1-2 > > Dear maintainer, > > I installed this version, including all dependencies and recommended > options (including gstreams-ugly), [...] > but the lame (mp3) option appears not to be seen by Soundconverter: > > SoundConverter 3.0.0-beta1 > using GTK version: 3.0 > using Gstreamer version: 1.14.0.0 > using 4 thread(s) > using gio > "lamemp3enc" gstreamer element not found, disabling MP3 output. > > Running Debian Testing updated until today: [...] > Versions of packages soundconverter depends on: > ii gstreamer1.0-plugins-base 1.14.0-2 > ii gstreamer1.0-plugins-good 1.12.4-1+b1 > > Versions of packages soundconverter recommends: > ii gstreamer1.0-libav 1.14.0-1 > ii gstreamer1.0-plugins-ugly 1.14.0-1 The lame plugin was moved from -ugly to -good in 1.14 and because -good 1.14 has not yet migrated to testing, you have managed to lose the entire plugin. Upgrading gstreamer1.0-plugins-good to 1.14 in unstable should work, but I am wondering whether it's a good idea to add a Breaks to -ugly to prevent this from happening? This is the recommended way according to #9 on this page: https://wiki.debian.org/PackageTransition Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#895016: soundconverter: Soundconverter AssertionError
Control: tags -1 moreinfo Hi, On 06/04/18 11:06, jesusda wrote: > Package: soundconverter > Version: 3.0.0-1 > Severity: important > > Dear Maintainer, > > Soundconverter does not load, showing an AssertionError and crashing. > > I've tested the stable, testing and sid versions and all them chrashed. Maybe > the error was caused by any dependency I'm not able to find. [...] > Versions of packages soundconverter depends on: > ii dconf-gsettings-backend [gsettings-backend] 0.26.1-3 > ii gir1.2-glib-2.0 1.56.0-2 > ii gir1.2-gstreamer-1.0 1.12.4-1 > ii gir1.2-gtk-3.0 3.22.29-2 > ii gstreamer1.0-plugins-base1.14.0-dmo1 Try installing all gstreamer related packages from the official Debian repositories instead of from deb-multimedia.org. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#886046: marked as done (soundconverter: Depends on gconf)
Control: reopen -1 Hi, On 05/04/18 00:54, Debian Bug Tracking System wrote: > Changes: > soundconverter (3.0.0-1) unstable; urgency=medium > . >[ Ondřej Nový ] >* d/control: Set Vcs-* to salsa.debian.org >* d/changelog: Remove trailing whitespaces > . >[ Sebastian Ramacher ] >* New upstream release. > - Replace gconf with gsettings. (Closes: #886046) >* debian/control: > - Bump Standards-Version. > - Drop now no longer needed dependency on gir1.2-gconf-2.0. If I uninstall gir1.2-gconf-2.0, I get this error when trying to start soundconverter 3.0.0-1: $ soundconverter SoundConverter 3.0.0 SoundConverter needs GTK >= 3.0 (Error: "Namespace GConf not available") Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#894191: ffmpeg: silence when copying AAC (LC) from MKV to AVI
Hi, On 28/03/18 05:42, Рома Тенцер wrote: > Here's a part of it (all file is too big). > > I find a warning in ffmpeg/ffprobe output: > > "[aac @ 0x169bc80] This stream seems to incorrectly report its last > channel as LFE[3], mapping to LFE[0]" > > I can't reproduce this bug with other files, so i think it can be a > problem. > > And i was wrong, it's not a silence. It's a low volume level in avi. > > I use this command: > > "ffmpeg -i sample.mkv -c:v mpeg4 -q:v 1 -c:a copy sample.avi" I can't seem to reproduce any audio issues with that command. After running that, both sample.mkv and sample.avi play fine in ffplay and mpv. I don't think there is any audio within the first 3 seconds of the sample you gave me. I get the warning you mention, but the LFE channel appears to be silent throughout the sample so I'm not sure if that is the issue. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#894240: vlc: Application binaries should be in the main package
Hi, On 27/03/18 18:08, asciiw...@seznam.cz wrote: > Package: vlc > Version: 3.0.1-3 > > According to the AppStream specification, the application binary should be > included in the same package as the .desktop and the AppStream metadata. > Unfortunately, VLC in Debian has the binaries in vlc-bin package. This causes > issues with GNOME Software and other modern package managers. Please, > consider dropping the vlc-bin package and moving its content to the vlc > package. What is the actual problem you are seeing? Installing vlc works fine for me with GNOME Software. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#894191: ffmpeg: silence when copying AAC (LC) from MKV to AVI
Control: severity -1 normal On 27/03/18 08:01, Рома Тенцер wrote: > Package: ffmpeg > Version: 7:3.4.2-1 > Severity: minor > > I have a .mkv file with avc for video and aac (lc) for audio. When i > copy audio stream to .avi (i recode avc to mpeg4, so i think it's a > better container) in the result file audio get silent after a first one > or two second. When i copy the audio to .mkv it works fine so i think > it's a muxer problem. I don't really sure if avi supports aac, but if it > isn't i think ffmpeg should warn user. I think putting AAC audio in an AVI container should work properly. Can you upload the input file (just attach it to the bug report) and the exact ffmpeg commands you are using? Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Accepted easytag 2.4.3-4 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sun, 25 Mar 2018 12:48:14 +0100 Source: easytag Binary: easytag easytag-nautilus Architecture: source Version: 2.4.3-4 Distribution: unstable Urgency: medium Maintainer: Debian Multimedia Maintainers <pkg-multimedia-maintainers@lists.alioth.debian.org> Changed-By: James Cowgill <jcowg...@debian.org> Description: easytag- GTK+ editor for audio file tags easytag-nautilus - Nautilus extension for easytag Closes: 886272 Changes: easytag (2.4.3-4) unstable; urgency=medium . * debian/control: - Revert OGG support removal in package description. * debian/patches: - Add patch to revert upstream commit which causes OGG corruption. (Closes: #886272) * debian/rules: - Re-enable OGG, OPUS and Speex support. Checksums-Sha1: 24b27cee03fbd4dc714df566a9c84467357ab943 2454 easytag_2.4.3-4.dsc 7072a7326f59c419e551d2f1a44a469fd2789128 14212 easytag_2.4.3-4.debian.tar.xz 7fbfb0b767c336a3d2b9fb8571948440b979071c 16555 easytag_2.4.3-4_source.buildinfo Checksums-Sha256: fe6a50d7c1e714e0108720e90d7b313f9a5529b00bcd1ecd8701ef2609e706bc 2454 easytag_2.4.3-4.dsc 4c4928d7399830a3938bdb5044a88ec19dc8d9f10aa8236212dbb6fdc4428bd7 14212 easytag_2.4.3-4.debian.tar.xz b8bfa5ae70acd92856115a37ca56a7dee0aadfa1e99ccabbd4640bc3d476b954 16555 easytag_2.4.3-4_source.buildinfo Files: f755815f04ba61c7e8de9c394442eaa4 2454 sound optional easytag_2.4.3-4.dsc a8f19ed2ed32d28612ab0d59a12dd4d4 14212 sound optional easytag_2.4.3-4.debian.tar.xz 3949aa9fb66e9e8424d7c1c280c237aa 16555 sound optional easytag_2.4.3-4_source.buildinfo -BEGIN PGP SIGNATURE- iQJIBAEBCgAyFiEE+Ixt5DaZ6POztUwQx/FnbeotAe8FAlq3jMgUHGpjb3dnaWxs QGRlYmlhbi5vcmcACgkQx/FnbeotAe+pKQ//Q1lFh6qBstBlBL6bp9fKE/o3QX18 6i26+KNGYRwHZLXmPhM8VeYraF64NCU09j58MbYFGqNQ5biK36qEBr3cJAkHLXSS tkwKWRESxBVOAGeG+3MmqGegeHNQ75rgMbwRUOCYgEKF3RQKjdY+KZ1dEjuoBaaV iDp4wfnzi9reGVOlmc30LOlLV16ePVkaOIY3eskp1/KD7AFd5td/TYCU3rw97g00 svxdodjzIYdWkXB7a9r90Y4SS+1IIkI+4yIAvb2i2IUBwslxkJz3LR3w08NSq9Ce GODT9j/6buaR4Wn/dM/WVR6NC9J1AYpVoX1VdRVx+clJGn+ca6r4xAtj/0DX3WNm 9NOOcsxIYIcS7pYIOksLmkjPgmDcARfixFrGeqBZ0+UHFxbbbZFhVX2S2Lvf6vpZ laqF9AYbfThyeGROngAQ2Nrt9prUtjCWevMSyf5H3CwNAB6Ib0u87E09XcS0XsGk ZB+63iCn4yxLGrF9p73Ga5+LA+Ct39ZHc+E8VxZscz5eb1PPgmJF1LI8VNTgvd/s udmEzoibyX8hcap8lxnmT3mb6yIIsAwPQ/hUXez+72+B9l7/Duilnx+LcMq2iBiF G6HDlVOKBT2SFkd1ek0No7kdnVoVcP+bbUCmkzy0ldN2MV1aFPeM0/Q2r8kSIvdI nBlRbSG0LZSO7ys= =lgvp -END PGP SIGNATURE- ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#855251: easytag corrupt ogg files
Hi, On 03/01/18 16:50, James Cowgill wrote: > On 16/02/17 01:02, Samuele Battarra wrote: >> Package: easytag >> Version: 2.4.3-1 >> Severity: normal >> >> Dear Maintainer, >> I have a ogg file encoded from a live cd, I split it to single tracks with >> oggsplt and then tag the tracks with easytag. >> When I play the files I hear a click at file change. >> The click is not present in files before the tagging and if I tag with kid3. > > As you might have noticed, I have decided that the best way to fix this > is to disable support for OGG and related media types in easytag for the > time being. Solving this bug is apparently quite complex and while the > upstream bug has been open for over a year, there has not been much > progress on it. I think it is better to have some version in buster > (which does not mangle your media files) than nothing at all. I have just uploaded easytag 2.4.3-4 which reverts an upstream commit which I think will fix this (you will need to wait a few hours before it appears on the mirrors). It would be very useful if people could test it for me before I upload the fix to stable. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#886105: klystrack: please make the build reproducible with respect to timestamps
Hi Gürkan, On 02/01/18 10:30, Chris Lamb wrote: > Source: klystrack > Version: 0.20171212-1 > Severity: wishlist > Tags: patch > User: reproducible-bui...@lists.alioth.debian.org > Usertags: timestamps > X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org > > Hi, > > Whilst working on the Reproducible Builds effort [0], we noticed > that klystrack could not be built reproducibly. > > Patch attached, although the resource files are still not reproducible > as they iterate over the filesystem in a non-determistic order. This > will require a match to makebundle.c. You marked this bug with the "help" tag. What help do you need? James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#882224: bs1770gain: enable dh-autoreconf
Hi, On 21/03/18 19:28, Petter Reinholdtsen wrote: > [James Cowgill] >> bs1770gain contains a build-dependency on dh-autoreconf, but since it >> uses compat 9 and does not enable it manually, it is never used. This >> looks like an oversight to me. > > It is, but it is harder to fix than expected. I tried to enable it by > raising the compat level from 9 to 10, but the build fail. You can workaround this by disabling automake's -Werror which at least allows you to build the package. The warnings are things that would be good to fix though. --- a/configure.ac +++ b/configure.ac @@ -27,7 +27,7 @@ # AC_CHECK_LIB (library, function, [action-if-found], [action-if-not-found], [other-libraries]) AC_INIT([bs1770gain], [0.4.11-beta-2], [pbelk...@users.sf.net], [], [http://bs1770gain.sourceforge.net/]) -AM_INIT_AUTOMAKE([-Wall -Werror foreign]) +AM_INIT_AUTOMAKE([-Wall foreign]) AC_PROG_CC AC_PROG_RANLIB James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#892582: mixxx: Build-Depend on scour
Hi, On 11/03/18 10:31, Matteo F. Vescovi wrote: > On 2018-03-10 at 18:49 (-0500), Jeremy Bicha wrote: >> Source: mixxx >> Version: 2.0.0~dfsg-8 >> >> Please Build-Depend on scour instead of python-scour and python3-scour. > > Lintian complains on the source package with: > > E: mixxx source: missing-build-dependency-for-dh-addon scour => python3-scour > N: > N:The source package appears to be using a dh addon but doesn't build > N:depend on the package that actually provides it. If it uses it, it must > N:build depend on it. > > So? I think it's a lintian bug. I've reopened #889016 for it. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Accepted easytag 2.4.3-3 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 08 Mar 2018 21:42:15 + Source: easytag Binary: easytag easytag-nautilus Architecture: source Version: 2.4.3-3 Distribution: unstable Urgency: medium Maintainer: Debian Multimedia Maintainers <pkg-multimedia-maintainers@lists.alioth.debian.org> Changed-By: James Cowgill <jcowg...@debian.org> Description: easytag- GTK+ editor for audio file tags easytag-nautilus - Nautilus extension for easytag Closes: 886369 892385 Changes: easytag (2.4.3-3) unstable; urgency=medium . [ Ondřej Nový ] * d/copyright: Use https protocol in Format field. * d/control: Set Vcs-* to salsa.debian.org. . [ Jeremy Bicha ] * Move easytag-nautilus appstream metadata to easytag-nautilus. (Closes: #892385) * Use dh_missing --fail-missing. * Drop Pre-Depends from easytag-nautilus. . [ Bruno Kleinert ] * Do not mention OGG support in package description. (Closes: #886369) . [ James Cowgill ] * debian/changelog: - Remove trailing whitespace. - Remove emacs mode settings. Checksums-Sha1: 8cf0eaf3d10142e740f835f8e52f3a9e96e535a4 2454 easytag_2.4.3-3.dsc bf83bba6f1b3f1fbe587e2c6b952d8561da32f15 12428 easytag_2.4.3-3.debian.tar.xz ee076ce197ac51edf98bbbc1067627781ee75035 15724 easytag_2.4.3-3_source.buildinfo Checksums-Sha256: b0256be1b31ddb128b63b3342a39cb99da0edc8c0090c216c5c071044662cdab 2454 easytag_2.4.3-3.dsc 916cf0d2081c37b16b41349e529a63e15033a49e988da476f13129d1c43a9599 12428 easytag_2.4.3-3.debian.tar.xz 091986edad6a2792c1694fa6b6d7ad9d6e0d058fe780763ff778d4b8d0994026 15724 easytag_2.4.3-3_source.buildinfo Files: a90efdc089ee5c03233a8572ada12b1b 2454 sound optional easytag_2.4.3-3.dsc 1931d0f7961df313bfaffcb69b0ce9e1 12428 sound optional easytag_2.4.3-3.debian.tar.xz 2da5f6362268ebd47b36fd40b737eed5 15724 sound optional easytag_2.4.3-3_source.buildinfo -BEGIN PGP SIGNATURE- iQJIBAEBCgAyFiEE+Ixt5DaZ6POztUwQx/FnbeotAe8FAlqhrogUHGpjb3dnaWxs QGRlYmlhbi5vcmcACgkQx/FnbeotAe9J6RAAinWsl9BLw3gY3pHDHJS7Up+5Cg7V XwhQ+PoPG+NbSw8UbeuK3BClb6aEiBXbcjQ8z2/WVQNYS/Ga+bUxLTU1qH+cWNul iP7eh+zY6q70du/jLrv/zUbXyvo6b8iidPU1fN6qXYxI07P+otcpfKqgoahGYz/I FeM2ZcLF3YBiZoLH1sxbMi8QirxCrz4rDif9I7iaDpCG9dnwX64pQglCN+Nd54r8 DmzMbtMqGDwH6GaztSUXTKQU95ykLas6zET0tR7BXjq9OJAwMDD6ADMD7AEiZ3OK FFp8iMkZYdFx7dV88ABr+a7haWw5TNOg3hVzogC1bwaqf1YiozaAH8+z+6gSJohy 2qNX8tFt3CIfFwgXmdr/JxOhlfy4g0WGUEXHbJvMKmpf3eeMRBgZ/Xwf/HHLL+4m fWnaDRQ/ruDuV55A4uCeMNHUfOii0CtpWg5jUwSKqdoP3jrC3saLqNxPeFfmsj5q yB9fQeDP/DXJe+cUFsNOUa8C/dvnv1m9QY2BsNPX+MKyl7tXMMt+8YlIpLdy1fla ZrLjTrWwJzYSdVfY3YIARcUA9eMCWIV5W0UzVm8PyTGd+VRn2ttPCjZWvKTR4psz b6GfbeAwGkOpd0rNOaT0Vv4jgqJnwsy/E4bav1bTqEaecOVdnrrzKDK3fJDtOC1P OU1wuZaes66Qdgs= =qZt0 -END PGP SIGNATURE- ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: rtkit package dependencies
Hi, On 01/03/18 21:46, Adam Lambert wrote: > Hello, > > On my debian testing system, I see in the recent change between version > 0.11-5 and 0.11-6 that the dependencies of rtkit package were changed to > move policykit-1 from 'recommends' to 'depends'. Prior to this, I had > (well, still have, just with the old version of rtkit) a SystemD free > environment, and I was really hoping to keep it that way (actually, I will > keep it that way, even if I have to depart the Debian universe after 20 > years of using it, which would be a shame). > > I am requesting (strongly) that the 'depends' be reverted back to > 'recommends'. You realise that rtkit is totally useless without policykit (it will refuse all operations unless it is running)? James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: Proposed multimedia team migration to salsa.d.o
Hi, On 26/02/18 08:50, Mattia Rizzolo wrote: > On Mon, Feb 26, 2018 at 12:22:35AM +, Reinhard Tartler wrote: >> I just got an email as one of the "list owners" of >> pkg-multimedia-maintainers@lists.alioth.debian.org - the basic question is >> whether we want to continue using the list (on the new migration host) or >> whether we abandon it in favor of debian-multime...@lists.debian.org >> >> In the past, we used both lists with different emphasis. From the >> discussion of this thread, I believe the answer the latter, but I wanted to >> check for other opinions and thoughts on this. > > yes, please confirm them that they should leave it behind. I think we should ask for the pkg-multimedia-maintainers list to be kept until we have finished changing the Maintainer field on all the packages. Otherwise the unmigrated packages will all become instantly RC buggy when alioth is turned off. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#888332: audacity: FTBFS with FFmpeg 3.5
Control: tags -1 fixed-upstream Control: forwarded -1 https://github.com/audacity/audacity/pull/249 On Wed, 24 Jan 2018 22:26:50 + jcowg...@debian.org wrote: > Source: audacity > Version: 2.2.1-1 > Severity: important > User: debian-multime...@lists.debian.org > Usertags: ffmpeg-3.5-transition > > Hi, > > Your package FTBFS with the upcoming version 3.5 of FFmpeg. This is fixed upstream in audacity 2.2.2. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Accepted milkytracker 1.01.00+dfsg-2 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 22 Feb 2018 23:47:13 + Source: milkytracker Binary: milkytracker Architecture: source Version: 1.01.00+dfsg-2 Distribution: unstable Urgency: high Maintainer: Debian Multimedia Team <debian-multime...@lists.debian.org> Changed-By: James Cowgill <jcowg...@debian.org> Description: milkytracker - music creation tool inspired by Fast Tracker 2 Closes: 890407 Changes: milkytracker (1.01.00+dfsg-2) unstable; urgency=high . [ Ondřej Nový ] * d/copyright: Use https protocol in Format field * d/control: Set Vcs-* to salsa.debian.org . [ James Cowgill ] * debian/compat: - Use debhelper compat 11. * debian/control: - Set maintainer to debian-multimedia@l.d.o. - Set Rules-Requires-Root: no. - Bump standards to 4.1.3. * debian/patches: - Apply upstream patches to fix various buffer overflows. Thanks to Johannes Schultz (Closes: #890407) Checksums-Sha1: dd9bb78ddd9bd4538b46e474338e64726fccafb7 2210 milkytracker_1.01.00+dfsg-2.dsc a6f1326fd49131fbafb576a0861bdc3edeb23d62 10804 milkytracker_1.01.00+dfsg-2.debian.tar.xz 98792c89894562a3aab9874efa513804806462ca 12261 milkytracker_1.01.00+dfsg-2_source.buildinfo Checksums-Sha256: 4184d05a3c50ab99a0f16dceb29e5e125ff94706e27451625b76b29fc82c2301 2210 milkytracker_1.01.00+dfsg-2.dsc 6c1186ace963acfa9d78e03c3bb55a5ba2a7d03e45f1e6ad644a30da60f28547 10804 milkytracker_1.01.00+dfsg-2.debian.tar.xz a868874a2c57d83df51f62e1c3075af5fb6cfbcb098438ffec85d71670ea51b2 12261 milkytracker_1.01.00+dfsg-2_source.buildinfo Files: 727990a7ca507937ffe022c830928b0e 2210 sound optional milkytracker_1.01.00+dfsg-2.dsc 1d649ff6700022da9b101adbf0d49455 10804 sound optional milkytracker_1.01.00+dfsg-2.debian.tar.xz c4be414371267f9abe7383df31c65437 12261 sound optional milkytracker_1.01.00+dfsg-2_source.buildinfo -BEGIN PGP SIGNATURE- iQJIBAEBCgAyFiEE+Ixt5DaZ6POztUwQx/FnbeotAe8FAlqPVwoUHGpjb3dnaWxs QGRlYmlhbi5vcmcACgkQx/FnbeotAe9fFQ/9EK7W7M+Q2V6iDqDE/rxu5EqmcB1h LhSTsnoPW2PjlDVZLYQCiKK+VEV+DwgPOYbjinMgrNR9NevSEkUkqPZGP8PpErvN O3EYmExN1YFB07PTJ1QYkbeeJWZ4eYjUFyuo9nLJgwPuoMPd0ZwTnQvva0fNoGhw C2mXgZlhrRQscAr5zw7dg88+UNvs3hRulxGwCGJycPWG9YzVRqlPGp3GJ4SP8ydV VCnQETzX5asG1NkBS1SsdQiJLgK7x/HszcZcxw/9+G6pLvxmj1FAwAkGP/qUYwld /6yLax5cDa8J7PN2K+w3S4ovq5mDRTz/ipvID+S03s19NPg+YVj5D5L6EHLrcqsL BKqlTMKui/DvFssjVp41VEk+kbmutpC1ggeU2/DfLcewYAYlntWLg4k7uszSQMCc QBuHFfARypBp2PZBNeZdc3TO8Ioold1Mp5Qk3ov1XNw50AWR/7hfWr4IoIY/Jbe5 x8aO9NoiUXRcfDLaxJAJJmaSyKk4SOXNCxQtutU/OKesnQM68aBk5kS12nAC/DUS WCytPKAhCPPUU0CW6A8NZkBEYfsD1oPiBg9XFaZClZF3G06ZL0ujswfG1OQA7gFr mLcTyX+ElUt5C13O7DBfWdWGXGK9WfWa67sDEa7iwx5X90C0fFzSKsczgfidSmnM ZYFhZ4S00/Q67tA= =1YoZ -END PGP SIGNATURE- ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Accepted ffdiaporama 2.1+dfsg-1 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 22 Feb 2018 21:40:49 + Source: ffdiaporama Binary: ffdiaporama ffdiaporama-data Architecture: source Version: 2.1+dfsg-1 Distribution: unstable Urgency: medium Maintainer: Debian Multimedia Maintainers <debian-multime...@lists.debian.org> Changed-By: James Cowgill <jcowg...@debian.org> Description: ffdiaporama - Movie creator from photos and video clips ffdiaporama-data - Data files for ffDiaporama Closes: 731777 873191 874874 888354 Changes: ffdiaporama (2.1+dfsg-1) unstable; urgency=medium . * Team upload. . [ James Cowgill ] * New upstream release. (Closes: #731777) * Remove background resources. These resources are not released under a DFSG free license. . * debian/compat: - Use debhelper compat 11. * debian/control - Set maintainer to debian-multimedia@l.d.o. - Build depend on qtbase5-dev instead of qt5-default. - Drop dependency on ffmpeg. - Drop shlibs:Depends from ffdiaporama-data. - Bump standards version to 4.1.3. - Set Rules-Requires-Root: no. - Mark ffdiaporama-data as Multi-Arch foreign. * debian/copyright: - Update for 2.1. * debian/ffdiaporama-data.links: - Add a dummy background to prevent segfaults. * debian/patches: - Rename and refresh 01_fix-hardening-flags.patch. - Update and split up ffmpeg patches. - Add patch to fix uninitialized variable valgrind warnings. - Add patch to make LibAvLogCallback thread safe. - Add patch to enable rsc subproject. - Add patch to fix 64-bit architecture detection. - Add patch to prevent phoning home for updates. - Add patch to fix FTBFS with FFmpeg 4.0. (Closes: #888354) * debian/rules: - Remove DH_VERBOSE comment from debian/rules. - Install upstream changelog. - Export QT_SELECT in debian/rules. * debian/watch: - Update debian/watch to new source location. . [ Rico Tzschichholz ] * Update fix_hardening_flags.patch * Add ffmpeg_2.8.patch for ffmpeg 2.8+ support. * Install application icon. (LP: #1280820) * Use ffmpeg >= 2.8 and QT5. (Closes: #873191, #874874) . [ Ondřej Nový ] * d/copyright: Use https protocol in Format field * d/control: Deprecating priority extra as per policy 4.0.1 * d/control: Set Vcs-* to salsa.debian.org Checksums-Sha1: 74aec22f5bc84a6e4f6a80afd37207a0d659597c 2674 ffdiaporama_2.1+dfsg-1.dsc 6620e077ad91b4b3ec421b911198d458d8c453d4 9806678 ffdiaporama_2.1+dfsg.orig-rsc.tar.gz eb2f3f64e89b7480801fa21b2e6e410977b22695 16063604 ffdiaporama_2.1+dfsg.orig.tar.gz 458c0b83587f49c2b8b3bb5874f9810b95b5191f 18328 ffdiaporama_2.1+dfsg-1.debian.tar.xz 8d877092fbf5abf5ebb64b93f92df8b0809f5fb5 16682 ffdiaporama_2.1+dfsg-1_source.buildinfo Checksums-Sha256: 48eb85afcd359fe8cf4a72634727b1be7808d42828e75f9dc9aa73db4f2d1818 2674 ffdiaporama_2.1+dfsg-1.dsc e4fda2a2eba8d0b297fcb074fcc3974a31ee447c8b0fd4d7f364513a667666e3 9806678 ffdiaporama_2.1+dfsg.orig-rsc.tar.gz a1f55367a3d915045a5f4ce5db20419c2e8ea26a8cd4d56bef2e3d525e55acaa 16063604 ffdiaporama_2.1+dfsg.orig.tar.gz 87262042b8a6bc793ae5e2a07c8de248d51d12133f60598813f7a85bf54da774 18328 ffdiaporama_2.1+dfsg-1.debian.tar.xz 98c5f250b064465f57ab41e602a3fe9f3c2cb7c0dcb5ce9039aa4d0c0d5d9e26 16682 ffdiaporama_2.1+dfsg-1_source.buildinfo Files: 792a2e5d93567c101ca2181a9e0fdf48 2674 graphics optional ffdiaporama_2.1+dfsg-1.dsc a57e0757afeab6aea1bf92d4f6438116 9806678 graphics optional ffdiaporama_2.1+dfsg.orig-rsc.tar.gz f9f46277153cf49f6947973778516adb 16063604 graphics optional ffdiaporama_2.1+dfsg.orig.tar.gz 24e2c3c3586f1e6672d86e7d7b0985fe 18328 graphics optional ffdiaporama_2.1+dfsg-1.debian.tar.xz b71d073e23eadef3b1ac0091473da736 16682 graphics optional ffdiaporama_2.1+dfsg-1_source.buildinfo -BEGIN PGP SIGNATURE- iQJIBAEBCgAyFiEE+Ixt5DaZ6POztUwQx/FnbeotAe8FAlqPRGUUHGpjb3dnaWxs QGRlYmlhbi5vcmcACgkQx/FnbeotAe9kDQ/+I/IXd0zK8OUdk/8jKOZdubVTKeUe nZzsOm180Y/dDmCtKTR3maYzlL3emFQZerIVV8/5VhF8DU6XZ/Hg1Y9ygVsld09e HrBzH7oMFzzP3jfeVLsPQzFU7IjysMhIwbjRj8OctQiuvt/u4BAVHZzTUI/7nSQt TYq0UcM72a2ETK4zUlr0yzJFA+4bLrTerFM7t8lpq7j9GaeQHEmHg5ouctSdeqmG EnTdeCKFLL9FFJ2UxkV2tOnWLKkZL3KYTpFE4LFdiGgde3Skey2vTSJdr/s1/qvF njr5eoGCejziGJr0ks4El0w20wxNc72OFxAJNOPragqNs4/mVyUUg7pEknqq1Z0H Et9gROTzFmle+RmAwkI9e5sUqGuIcoElFEijc3j9ZFQDnmAzVJ9HlQOqF6dg9WYI 1SO1SkWgEdM5e5oRegBpKPz/WUGp1u/iwgA1KpG6qCepIaW4s87PE+JqDvfynJrc kLyX+zzDtjIHD7LtYqV7aYlvLHh37NA/ksWVVD61XzvfdFBaMGGGs1ZJmf3t13nK xJlZZehzmd/VSV5P9g+LSPe2TetKDvRGmbZKwwWQZ8rGIML4PWK3PR+kkw8aie82 kobQd/7nSv+KGqSyGHLAvEwx/vsgstlEPTi33sc0Fpni99jtpgEdyDlbQNhHru94 TQ6cO3qwifebO0U= =71iO -END PGP SIGNATURE- ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#853461: jackd2: ftbfs with GCC-7
On Tue, Jan 31, 2017 at 09:32:23AM +, Matthias Klose wrote: > Package: src:jackd2 > Version: 1.9.10+20150825git1ed50c92~dfsg-4 > Severity: normal > Tags: sid buster > User: debian-...@lists.debian.org > Usertags: ftbfs-gcc-7 > > Please keep this issue open in the bug tracker for the package it > was filed for. If a fix in another package is required, please > file a bug for the other package (or clone), and add a block in this > package. Please keep the issue open until the package can be built in > a follow-up test rebuild. > > The package fails to build in a test rebuild on at least amd64 with > gcc-7/g++-7, but succeeds to build with gcc-6/g++-6. The > severity of this report may be raised before the buster release. > There is no need to fix this issue in time for the stretch release. > > The full build log can be found at: > http://people.debian.org/~doko/logs/gcc7-20170126/jackd2_1.9.10+20150825git1ed50c92~dfsg-4_unstable_gcc7.log > The last lines of the build log are at the end of this report. > > To build with GCC 7, either set CC=gcc-7 CXX=g++-7 explicitly, > or install the gcc, g++, gfortran, ... packages from experimental. > > apt-get -t=experimental install g++ > > Common build failures are new warnings resulting in build failures with > -Werror turned on, or new/dropped symbols in Debian symbols files. > For other C/C++ related build failures see the porting guide at > http://gcc.gnu.org/gcc-7/porting_to.html This has been fixed upstream for over half a year, with no commits in the packaging VCS since 2017-03-29, other than for the mass migration to Salsa. Please upload a fixed version, either by adding the upstream patch, or uploading a newer upstream version. Regards, James ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#881342: rtkit: should depend on dbus and polkit
Control: severity -1 serious Control: retitle -1 rtkit: should depend on dbus and polkit Hi, On 05/02/18 15:18, Алексей Шилин wrote: > reassign 881342 rtkit 0.11-4 > thanks > > After a bit of investigation, I've found that the source of the issue is > actually > the rtkit package. > > rtkit postinst script contains the following lines added by debhelper: > > # Automatically added by dh_systemd_start > if [ -d /run/systemd/system ]; then > systemctl --system daemon-reload >/dev/null || true > deb-systemd-invoke start rtkit-daemon.service >/dev/null || true > fi > # End automatically added section > > Here rtkit-daemon service, which is of Type=dbus, is being started at package > configuration phase. > > systemd.service(5) says [1]: > > The following dependencies are implicitly added: > > * Services with Type=dbus set automatically acquire dependencies of > type > Requires= and After= on dbus.socket. > > So starting rtkit-daemon.service activates dbus.socket which in turn leads to > dbus.service activation when the rtkit daemon tries to connect to the bus. > The issue here is that rtkit currently only recommends dbus, which doesn't > guarantee proper ordering i.e. rtkit may be scheduled to be configured > *before* > dbus and thus start the latter before its configuration (which includes the > system > user creation) is complete, leading to the reported issue. As I said on IRC, I can't think of any scenario where rtkit is useful without dbus and polkit. Without dbus, rtkit won't start at all. Withouut polkit, rtkit will start but will refuse to make any processes realtime and is therefore a bit useless. In my opinion, this bug is RC because rtkit needs to depend on these packages to function. If someone can think of a way to use rtkit without these packages then I may change my mind :) > This issue should affect only stretch because according to its changelog > rtkit is > no longer started by default since 0.11-5. Whether the version in stable > should > be fixed is up to its maintainer. I've attached a patch which moves dbus from > Recommends to Depends, fixing the issue. While the installation issue only affects stretch, starting rtkit manually without dbus installed is still broken in unstable so it should also be fixed there. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#890586: rtkit: Homepage URL is dead
Source: rtkit Version: 0.11-5 Severity: minor Hi, The homepage URL listed in the rtkit package is dead: > $ wget http://0pointer.de/public/ > --2018-02-16 10:32:12-- http://0pointer.de/public/ > Resolving 0pointer.de (0pointer.de)... 85.214.157.71, > 2a01:238:43ed:c300:10c3:bcf3:3266:da74 > Connecting to 0pointer.de (0pointer.de)|85.214.157.71|:80... connected. > HTTP request sent, awaiting response... 403 Forbidden > 2018-02-16 10:32:12 ERROR 403: Forbidden. It might be better to set it to the upstream git repo: http://git.0pointer.net/rtkit.git/ James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Accepted ffmpeg 7:3.2.10-1~deb9u1~bpo8+1 (source all) into jessie-backports->backports-policy, jessie-backports
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 10 Feb 2018 00:45:48 + Source: ffmpeg Binary: ffmpeg ffmpeg-doc libavcodec57 libavcodec-extra57 libavcodec-extra libavcodec-dev libavdevice57 libavdevice-dev libavfilter6 libavfilter-extra6 libavfilter-extra libavfilter-dev libavformat57 libavformat-dev libavresample3 libavresample-dev libavutil55 libavutil-dev libpostproc54 libpostproc-dev libswresample2 libswresample-dev libswscale4 libswscale-dev libav-tools Architecture: source all Version: 7:3.2.10-1~deb9u1~bpo8+1 Distribution: jessie-backports Urgency: high Maintainer: Debian Multimedia Maintainers <pkg-multimedia-maintainers@lists.alioth.debian.org> Changed-By: James Cowgill <jcowg...@debian.org> Description: ffmpeg - Tools for transcoding, streaming and playing of multimedia files ffmpeg-doc - Documentation of the FFmpeg multimedia framework libav-tools - Compatibility links for libav-tools (transitional package) libavcodec-dev - FFmpeg library with de/encoders for audio/video codecs - developm libavcodec-extra - FFmpeg library with extra codecs (metapackage) libavcodec-extra57 - FFmpeg library with additional de/encoders for audio/video codecs libavcodec57 - FFmpeg library with de/encoders for audio/video codecs - runtime libavdevice-dev - FFmpeg library for handling input and output devices - developmen libavdevice57 - FFmpeg library for handling input and output devices - runtime fi libavfilter-dev - FFmpeg library containing media filters - development files libavfilter-extra - FFmpeg library with extra filters (metapackage) libavfilter-extra6 - FFmpeg library with extra media filters - runtime files libavfilter6 - FFmpeg library containing media filters - runtime files libavformat-dev - FFmpeg library with (de)muxers for multimedia containers - develo libavformat57 - FFmpeg library with (de)muxers for multimedia containers - runtim libavresample-dev - FFmpeg compatibility library for resampling - development files libavresample3 - FFmpeg compatibility library for resampling - runtime files libavutil-dev - FFmpeg library with functions for simplifying programming - devel libavutil55 - FFmpeg library with functions for simplifying programming - runti libpostproc-dev - FFmpeg library for post processing - development files libpostproc54 - FFmpeg library for post processing - runtime files libswresample-dev - FFmpeg library for audio resampling, rematrixing etc. - developme libswresample2 - FFmpeg library for audio resampling, rematrixing etc. - runtime f libswscale-dev - FFmpeg library for image scaling and various conversions - develo libswscale4 - FFmpeg library for image scaling and various conversions - runtim Closes: 886912 Changes: ffmpeg (7:3.2.10-1~deb9u1~bpo8+1) jessie-backports; urgency=medium . * Rebuild for jessie-backports. * Merge jessie specific changes: - Build-depend on yasm to work around nasm issues in jessie. - Disable building with libebur128 because jessie's version breaks the build. - Build-depend on libchromaprint-dev from jessie-backports. - Disable OCR with Tesseract because it is missing the pkg-config file on jessie. - Omit -fstack-protector-strong from used CFLAGS, FFmpeg already sets -fstack-protector-all. - Use GCC 4.8 on i386 instead of disabling PIE. - Revert switch from libmodplug to libopenmpt because libopenmpt is not available in jessie-backports yet. . ffmpeg (7:3.2.10-1~deb9u1) stretch-security; urgency=medium . * New upstream release. - avcodec/x86/mpegvideodsp: Fix signedness bug in need_emu. (CVE-2017-17081) - avformat/libssh: check the user provided a password before trying to use it. (Closes: #886912) * debian/patches: - Drop CVE-2017-16840 patch - applied upstream. . ffmpeg (7:3.2.9-1~deb9u1) stretch-security; urgency=medium . * New upstream release. - avcodec/x86/lossless_videoencdsp: Fix out of array access. (CVE-2017-15186) - avcodec/ffv1dec: Fix out of array read in slice counting. (CVE-2017-15672) * debian/patches: avcodec/vc2enc_dwt: Fix out of bounds read. (CVE-2017-16840) . ffmpeg (7:3.2.8-1~deb9u1) stretch-security; urgency=high . * New upstream release. - avformat/rmdec: Fix DoS due to lack of eof check. (CVE-2017-14054) - avformat/mvdec: Fix DoS due to lack of eof check. (CVE-2017-14055) - avformat/rl2: Fix DoS due to lack of eof check. (CVE-2017-14056) - avformat/asfdec: Fix DoS due to lack of eof check. (CVE-2017-14057) - avformat/hls: Fix DoS due to infinite loop. (CVE-2017-14058) - avformat/cinedec: Fix DoS due to lack of eof check. (CVE-2017-14059) - avformat/mxfdec: Fix Sign error. (CVE-2017-14169) - avformat/mxfdec: Fix DoS issues. (CVE-2017-14170) - avformat/nsvdec: Fix DoS due to lack of eof check. (CVE-2017-14171) - avformat/mov: Fix DoS. (CV
Accepted ffmpeg 7:3.2.10-1~deb9u1 (source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 26 Jan 2018 09:45:14 + Source: ffmpeg Binary: ffmpeg ffmpeg-doc libavcodec57 libavcodec-extra57 libavcodec-extra libavcodec-dev libavdevice57 libavdevice-dev libavfilter6 libavfilter-extra6 libavfilter-extra libavfilter-dev libavformat57 libavformat-dev libavresample3 libavresample-dev libavutil55 libavutil-dev libpostproc54 libpostproc-dev libswresample2 libswresample-dev libswscale4 libswscale-dev libav-tools Architecture: source Version: 7:3.2.10-1~deb9u1 Distribution: stretch-security Urgency: medium Maintainer: Debian Multimedia Maintainers <pkg-multimedia-maintainers@lists.alioth.debian.org> Changed-By: James Cowgill <jcowg...@debian.org> Description: ffmpeg - Tools for transcoding, streaming and playing of multimedia files ffmpeg-doc - Documentation of the FFmpeg multimedia framework libav-tools - Compatibility links for libav-tools (transitional package) libavcodec-dev - FFmpeg library with de/encoders for audio/video codecs - developm libavcodec-extra - FFmpeg library with extra codecs (metapackage) libavcodec-extra57 - FFmpeg library with additional de/encoders for audio/video codecs libavcodec57 - FFmpeg library with de/encoders for audio/video codecs - runtime libavdevice-dev - FFmpeg library for handling input and output devices - developmen libavdevice57 - FFmpeg library for handling input and output devices - runtime fi libavfilter-dev - FFmpeg library containing media filters - development files libavfilter-extra - FFmpeg library with extra filters (metapackage) libavfilter-extra6 - FFmpeg library with extra media filters - runtime files libavfilter6 - FFmpeg library containing media filters - runtime files libavformat-dev - FFmpeg library with (de)muxers for multimedia containers - develo libavformat57 - FFmpeg library with (de)muxers for multimedia containers - runtim libavresample-dev - FFmpeg compatibility library for resampling - development files libavresample3 - FFmpeg compatibility library for resampling - runtime files libavutil-dev - FFmpeg library with functions for simplifying programming - devel libavutil55 - FFmpeg library with functions for simplifying programming - runti libpostproc-dev - FFmpeg library for post processing - development files libpostproc54 - FFmpeg library for post processing - runtime files libswresample-dev - FFmpeg library for audio resampling, rematrixing etc. - developme libswresample2 - FFmpeg library for audio resampling, rematrixing etc. - runtime f libswscale-dev - FFmpeg library for image scaling and various conversions - develo libswscale4 - FFmpeg library for image scaling and various conversions - runtim Closes: 886912 Changes: ffmpeg (7:3.2.10-1~deb9u1) stretch-security; urgency=medium . * New upstream release. - avcodec/x86/mpegvideodsp: Fix signedness bug in need_emu. (CVE-2017-17081) - avformat/libssh: check the user provided a password before trying to use it. (Closes: #886912) * debian/patches: - Drop CVE-2017-16840 patch - applied upstream. Checksums-Sha1: a4fa87191b3f2c2904e9f3d27fd5422ba0743873 5187 ffmpeg_3.2.10-1~deb9u1.dsc e90b423252a0e338e725f0781c6d31a16c97531f 8036940 ffmpeg_3.2.10.orig.tar.xz 449ebbbc1eaafcb4c013f7c00a1ad67d4e0f8254 473 ffmpeg_3.2.10.orig.tar.xz.asc 3c66390fc12639119691b387819a7ef8f135a25b 39188 ffmpeg_3.2.10-1~deb9u1.debian.tar.xz 3b70ea2d328c5afc8c43015a693dff4d4be28a27 8911 ffmpeg_3.2.10-1~deb9u1_source.buildinfo Checksums-Sha256: 47fdf3ba8d440cbdfee18fb19cb1c68bf0956ac2a177b8062f2e12b5d28fb336 5187 ffmpeg_3.2.10-1~deb9u1.dsc 3c1626220c7b68ff6be7312559f77f3c65ff6809daf645d4470ac0189926bdbc 8036940 ffmpeg_3.2.10.orig.tar.xz 215defff760480ea1cb8ac5b7b02a121610d40c4cff07a040ec40f6ac5551694 473 ffmpeg_3.2.10.orig.tar.xz.asc a907b22f375340c20017b08dd6656dcb3ec1341d937933b8bdec8a3e1786401f 39188 ffmpeg_3.2.10-1~deb9u1.debian.tar.xz ddc83ce0c68d032460aad536bb05c5cf179c908e9a1bbd325cb978c8ff82b756 8911 ffmpeg_3.2.10-1~deb9u1_source.buildinfo Files: 17e275331c27cfade816ea9a7af21422 5187 video optional ffmpeg_3.2.10-1~deb9u1.dsc ec747925e19aa77adbec17e98e24a72e 8036940 video optional ffmpeg_3.2.10.orig.tar.xz 0985ac62e9bc13e371c4ccbfc4979a74 473 video optional ffmpeg_3.2.10.orig.tar.xz.asc 53a742437cb1106c871f728d0cc0b415 39188 video optional ffmpeg_3.2.10-1~deb9u1.debian.tar.xz 099b558c92cfdc1c498111a545a8cb5d 8911 video optional ffmpeg_3.2.10-1~deb9u1_source.buildinfo -BEGIN PGP SIGNATURE- iQJIBAEBCgAyFiEE+Ixt5DaZ6POztUwQx/FnbeotAe8FAlpsRsQUHGpjb3dnaWxs QGRlYmlhbi5vcmcACgkQx/FnbeotAe9CIg//bTQ/h0HFY3/q03JIXd7ibyObrqz6 iRLI0p17yuGkUZ2BwLlHnqnBGAlhlloD5ujagfS06EseGtYTG/LPABmkSknx4W2m x1O/0cxiU2MejN8zPQ7Ln3rOM0pi+IKPjU7xcQZEiMJf0TvO+h7AZfoDO37fMF+p wSnYaBqVojmyH4/JPewbaf2MrSx1Em2fmjKZI/KDa5KrfTexn/CxH6kQZ20c7Qf5 cpINytOXmsCJUqB5iOQTjHjyaRY89C+e5/Ygr8ipZoSzi7znPS0m
Bug#890407: milkytracker: various buffer overflows possibly leading to remote code execution
Package: milkytracker Severity: grave Tags: security upstream Forwarding this bug sent to me by Johannes Schultz. It sounds bad. I have not investigated it (and I don't know if it affects the pre-1.0 version in stable or not) Forwarded Message Subject: MilkyTracker - critical patches Date: Wed, 14 Feb 2018 13:39:45 +0100 From: Johannes Schultz <i...@sagamusix.de> To: jcowg...@debian.org Hi James, I have recently fixed a bunch of very obvious and at the same time very dangerous bugs in various module loaders in MilkyTracker, most of them leading to out-of-bond writes both on the heap and stack. I think most of them would be suitable for remote code execution. You can find them here: https://github.com/milkytracker/MilkyTracker/commit/6f7922616f31e5ceddd6f346cfc7f5d61a2f7683 You will also see the individual commits in the commit timeline around October 2017. I don't know if there is any immediate release planned by Deltafire, so I recommend you to update the Debian packages based on those patches ASAP. The individual diffs can also be found here: https://sagagames.de/stuff/mt-patches.zip They should apply to all MilkyTracker versions supported by the various Debian releases, not just 1.01.00. Best regards, Johannes / OpenMPT Dev (and occasionall MilkyTracker bugfixer ;) signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Accepted ffmpeg 7:3.4.2-1 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 12 Feb 2018 20:08:34 + Source: ffmpeg Binary: ffmpeg ffmpeg-doc libavcodec57 libavcodec-extra57 libavcodec-extra libavcodec-dev libavdevice57 libavdevice-dev libavfilter6 libavfilter-extra6 libavfilter-extra libavfilter-dev libavformat57 libavformat-dev libavresample3 libavresample-dev libavutil55 libavutil-dev libpostproc54 libpostproc-dev libswresample2 libswresample-dev libswscale4 libswscale-dev libav-tools Architecture: source Version: 7:3.4.2-1 Distribution: unstable Urgency: medium Maintainer: Debian Multimedia Maintainers <pkg-multimedia-maintainers@lists.alioth.debian.org> Changed-By: James Cowgill <jcowg...@debian.org> Description: ffmpeg - Tools for transcoding, streaming and playing of multimedia files ffmpeg-doc - Documentation of the FFmpeg multimedia framework libav-tools - Compatibility links for libav-tools (transitional package) libavcodec-dev - FFmpeg library with de/encoders for audio/video codecs - developm libavcodec-extra - FFmpeg library with extra codecs (metapackage) libavcodec-extra57 - FFmpeg library with additional de/encoders for audio/video codecs libavcodec57 - FFmpeg library with de/encoders for audio/video codecs - runtime libavdevice-dev - FFmpeg library for handling input and output devices - developmen libavdevice57 - FFmpeg library for handling input and output devices - runtime fi libavfilter-dev - FFmpeg library containing media filters - development files libavfilter-extra - FFmpeg library with extra filters (metapackage) libavfilter-extra6 - FFmpeg library with extra media filters - runtime files libavfilter6 - FFmpeg library containing media filters - runtime files libavformat-dev - FFmpeg library with (de)muxers for multimedia containers - develo libavformat57 - FFmpeg library with (de)muxers for multimedia containers - runtim libavresample-dev - FFmpeg compatibility library for resampling - development files libavresample3 - FFmpeg compatibility library for resampling - runtime files libavutil-dev - FFmpeg library with functions for simplifying programming - devel libavutil55 - FFmpeg library with functions for simplifying programming - runti libpostproc-dev - FFmpeg library for post processing - development files libpostproc54 - FFmpeg library for post processing - runtime files libswresample-dev - FFmpeg library for audio resampling, rematrixing etc. - developme libswresample2 - FFmpeg library for audio resampling, rematrixing etc. - runtime f libswscale-dev - FFmpeg library for image scaling and various conversions - develo libswscale4 - FFmpeg library for image scaling and various conversions - runtim Changes: ffmpeg (7:3.4.2-1) unstable; urgency=medium . * New upstream release. - Fixes CVE-2018-6392, CVE-2018-6621. Checksums-Sha1: 42a269d6b2be5fc18b255b6e9f4c0978451c8c27 5222 ffmpeg_3.4.2-1.dsc baef74d93683c6b2029ac36b900732795216e066 8478376 ffmpeg_3.4.2.orig.tar.xz ebc60368a3073a4ed4c4fd784727c6953eedba05 473 ffmpeg_3.4.2.orig.tar.xz.asc 8c8c395bee720cc8a420d41a46298e172a2b695d 41748 ffmpeg_3.4.2-1.debian.tar.xz 8e0754a19644acff64ef4177c0b7eb642cb02756 17837 ffmpeg_3.4.2-1_source.buildinfo Checksums-Sha256: 8adaa4e58e577d25ca808ccd1aa8ac0cb8bea97d7b7c93a47e671651118c6c0e 5222 ffmpeg_3.4.2-1.dsc 2b92e9578ef8b3e49eeab229e69305f5f4cbc1fdaa22e927fc7fca18acccd740 8478376 ffmpeg_3.4.2.orig.tar.xz a338afec7933d716210019193f7e8927a4c2e826c874e6ff509057ef59922171 473 ffmpeg_3.4.2.orig.tar.xz.asc 7837c54a6dba454872630b22ab6d2b57df5ef7f05e67eec97a6efbc9d85f2abb 41748 ffmpeg_3.4.2-1.debian.tar.xz c78badcf2ec6861f1dc90d9af94fe53edc28b2fc1c3666440e30dc8623f8468d 17837 ffmpeg_3.4.2-1_source.buildinfo Files: 7c71348e4fd0b5d46965d01389c4b929 5222 video optional ffmpeg_3.4.2-1.dsc cbf4ead227fcedddf54c86013705a988 8478376 video optional ffmpeg_3.4.2.orig.tar.xz d54d6817e3ac9809a20b052cab9e9d38 473 video optional ffmpeg_3.4.2.orig.tar.xz.asc 67c96f0e72896a05f1549e51b61baf67 41748 video optional ffmpeg_3.4.2-1.debian.tar.xz c270325ca0fc0e1197b0e3fadfe30dcf 17837 video optional ffmpeg_3.4.2-1_source.buildinfo -BEGIN PGP SIGNATURE- iQJIBAEBCgAyFiEE+Ixt5DaZ6POztUwQx/FnbeotAe8FAlqCFaMUHGpjb3dnaWxs QGRlYmlhbi5vcmcACgkQx/FnbeotAe9U+g//ZEyOb21GfnTCieONjrvFdf2zYVGw aKJp4kSAJZ9Cwxt8WDOBwMAsiY0zoaxw42iETFaxQkwDkHWsDM+SITC6ehlQz0Wz VrRVA7bG5UVzjCRAyIBjgfRaMnAynZx+yMd73co1IUi8JQn9V/5wJhLS5idmRCXC TiXpdBTz+RtTgYm/2Cpr1BnYPB59MFkV7pzOkcJ/IiO1DglPCTMNj4OyrMPM2KAM 1RsUBqjw+lEuzDWDtScdkmumeJeIOa8Q6zXs9bp+X/wLDmCdkyt8G0uDeKV/gCMR lvtb/rhO2e2u+yM0O0duvVQx1iO9KeQkNXL6l67s/Lf07DhbeVJaVr4On6/O0JI+ kySx8ewM7/ebXQRv8JccFxKpkoJVkTCD0N1rAMUEYtQoo+ul4QvCgpWOMWdF5Qnq IP2m+OBFx37l6zjArQ7jz8VCPI3JAqOqAiy5RUwKNtbs2U3FAHUXvCPyOK7uR0lh et1l823WSld+lQf7gPpBWVAUO3zMToGQETg5HGhTmeKXt+F5eYJkbqzIxd362Vx1 H/mpobtgiiGXlcXULQhFlpPeMBgoxWxv1g89cWyCrqoUX26ikkp3wO9S+pvWxAGM u6l+K1IHwo5GMgcaPLypsbrDlDm6IZ7Y/6/nYNd2BcoevK9+jE667oB9ciNTgxmg tAD
Bug#888348: lives: FTBFS with FFmpeg 3.5
Control: tags -1 fixed-upstream Hi, On 12/02/18 00:51, salsaman wrote: > Sorry, my bad: I forgot to update the constants in the .h files. I was > looking in the .c files by mistake. > > Also, I think it should be AV_CODEC_ID_* in the headers (although > AV_CODEC_* seemed to work too). Thanks. All the errors are fixed now. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#888348: lives: FTBFS with FFmpeg 3.5
On 11/02/18 23:49, salsaman wrote: > Please check that you are compiling with the current versions of those > files. There are no instances of CODEC_* any more in those files. > I see them here, am I looking at the wrong place? https://sourceforge.net/p/lives/code/HEAD/tree/trunk/lives-plugins/plugins/decoders/mkv_decoder.h#l883 James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#888348: lives: FTBFS with FFmpeg 3.5
Hi, On 04/02/18 18:10, salsaman wrote: > I believe all the issues noted should be fixed now. You will need to > replace the follwoing files: > configure.ac > libweed/weed-compat.h > libweed/weed-compat.pc > plugins/decoders/* > > (the weed-compat changes are unrelated, but you will need to update them to > compile the current decoder plugins). Sorry for the delay in replying. I tried compiling trunk again but there are still some errors. Thankfully these are just the CODEC_ to AV_CODEC_ constant renames. Running the following fixes these for me: sed -i 's/CODEC_/AV_CODEC_/g' lives-plugins/plugins/decoders/mkv_decoder.h sed -i 's/CODEC_/AV_CODEC_/g' lives-plugins/plugins/decoders/mpegts_decoder.h Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#889915: libfaad2 in Wheezy contains patches for some security bugs. They were not backported to Jessie.
On 09/02/18 09:31, Fabian Greffrath wrote: > Hi Salvatore, > > Salvatore Bonaccorso wrote: >> The current issues which were fixed in DLA-1077-1 are all no-dsa, so >> thei did not warrant a DSA via security.d.o. Can you fix those issues >> via upcoming point releases? > > yes, probably. But I guess that's not Mikulas' point: > > Both wheezy and jessie had package version 2.7-8. While wheezy got a fixed > package with 2.7-8+deb7u1, jessie didn't. The fix should be as straight as > uploading the same (source) package to jessie that got uploaded to wheezy. ... with changelog and version number adjustments (it can never be exactly the same). Also, the security tracker claims this affects stretch as well which would need a separate update. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#889528: mpv: Reading bluray using mpv fails
Control: tags -1 - confirmed Control: reassign -1 libbluray-dev 1:1.0.2-1 Control: retitle -1 libbluray-dev: missing dependencies on libxml, freetype, and fontconfig Control: severity -1 serious Control: affects -1 src:mpv Hi, On 04/02/18 20:29, James Cowgill wrote: > On 04/02/18 19:32, mahashakti89 wrote: >> On Sun, Feb 04, 2018 at 04:53:24PM +0100, James Cowgill wrote: >>> On 04/02/18 16:46, James Cowgill wrote: >>>> Hi, >>>> >>>> On 04/02/18 09:38, mahashakti89 wrote: >>>>> Package: mpv >>>>> Version: 0.27.0-3 >>>>> Severity: important >>>>> >>>>> Dear Maintainer, >>>>> >>>>> I am using smplayer to read blurays - choosen multimedia engine is >>>>> mpv - but it >>>>> fails with following message : >>>>> >>>>> Playing: br:media/toto/cdrom0 >>>>> No protocol handler found to open URL br:media/toto/cdrom0 >>>>> The protocol is either unsupported, or was disabled at compile-time. >>>> >>>> mpv uses a slightly different "bd" protocol instead of "br". Try this: >>>> mpv br:// --bluray-device=/media/toto/cdrom0 >>> >>> Err this of course should be: >>> mpv bd:// --bluray-device=/media/toto/cdrom0 >> >> Hi, >> mpv bd:// --bluray-device=/media/cdrom0 >> Error parsing option bluray-device (option not found) >> Setting commandline option --bluray-device=/media/cdrom0 failedi. >> >> Extract of the mount command >> >> gvfsd-fuse on /run/user/1000/gvfs type fuse.gvfsd-fuse >> (rw,nosuid,nodev,relatime,user_id=1000,group_id=1000) >> fusectl on /sys/fs/fuse/connections type fusectl (rw,relatime) >> /dev/sdg1 on /media/toto/PATRIOT2 type fuseblk >> (rw,nosuid,nodev,relatime,user_id=0,group_id=0,default_permissions,allow_other,blksize=4096,uhelper=udisks2) >> >> /dev/sr0 on /media/cdrom0 type udf >> (ro,nosuid,nodev,noexec,relatime,utf8,user) >> >> Till then mpv worked fairly well with playing blurays. > > After looking a bit more closely, mpv isn't pulling in libbluray at all. > The build log contains:> Checking for Bluray support > : no ('libbluray >= 0.3.0' not found) > > I'll try and see why it's not detecting the library. This is due to pkg-config failing to run on libbluray: > $ pkg-config --cflags libbluray > Package libxml-2.0 was not found in the pkg-config search path. > Perhaps you should add the directory containing `libxml-2.0.pc' > to the PKG_CONFIG_PATH environment variable > Package 'libxml-2.0', required by 'libbluray', not found Probably libbluray-dev needs to build-depend on libfreetype6-dev, libfontconfig-dev and libxml2-dev to fix this. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#889528: mpv: Reading bluray using mpv fails
Control: tags -1 confirmed Hi, On 04/02/18 19:32, mahashakti89 wrote: > On Sun, Feb 04, 2018 at 04:53:24PM +0100, James Cowgill wrote: >> On 04/02/18 16:46, James Cowgill wrote: >>> Hi, >>> >>> On 04/02/18 09:38, mahashakti89 wrote: >>>> Package: mpv >>>> Version: 0.27.0-3 >>>> Severity: important >>>> >>>> Dear Maintainer, >>>> >>>> I am using smplayer to read blurays - choosen multimedia engine is >>>> mpv - but it >>>> fails with following message : >>>> >>>> Playing: br:media/toto/cdrom0 >>>> No protocol handler found to open URL br:media/toto/cdrom0 >>>> The protocol is either unsupported, or was disabled at compile-time. >>> >>> mpv uses a slightly different "bd" protocol instead of "br". Try this: >>> mpv br:// --bluray-device=/media/toto/cdrom0 >> >> Err this of course should be: >> mpv bd:// --bluray-device=/media/toto/cdrom0 > > Hi, > mpv bd:// --bluray-device=/media/cdrom0 > Error parsing option bluray-device (option not found) > Setting commandline option --bluray-device=/media/cdrom0 failedi. > > Extract of the mount command > > gvfsd-fuse on /run/user/1000/gvfs type fuse.gvfsd-fuse > (rw,nosuid,nodev,relatime,user_id=1000,group_id=1000) > fusectl on /sys/fs/fuse/connections type fusectl (rw,relatime) > /dev/sdg1 on /media/toto/PATRIOT2 type fuseblk > (rw,nosuid,nodev,relatime,user_id=0,group_id=0,default_permissions,allow_other,blksize=4096,uhelper=udisks2) > > /dev/sr0 on /media/cdrom0 type udf > (ro,nosuid,nodev,noexec,relatime,utf8,user) > > Till then mpv worked fairly well with playing blurays. After looking a bit more closely, mpv isn't pulling in libbluray at all. The build log contains:> Checking for Bluray support : no ('libbluray >= 0.3.0' not found) I'll try and see why it's not detecting the library. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#889528: mpv: Reading bluray using mpv fails
On 04/02/18 16:46, James Cowgill wrote: > Hi, > > On 04/02/18 09:38, mahashakti89 wrote: >> Package: mpv >> Version: 0.27.0-3 >> Severity: important >> >> Dear Maintainer, >> >> I am using smplayer to read blurays - choosen multimedia engine is mpv - but >> it >> fails with following message : >> >> Playing: br:media/toto/cdrom0 >> No protocol handler found to open URL br:media/toto/cdrom0 >> The protocol is either unsupported, or was disabled at compile-time. > > mpv uses a slightly different "bd" protocol instead of "br". Try this: > mpv br:// --bluray-device=/media/toto/cdrom0 Err this of course should be: mpv bd:// --bluray-device=/media/toto/cdrom0 Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#889528: mpv: Reading bluray using mpv fails
Hi, On 04/02/18 09:38, mahashakti89 wrote: > Package: mpv > Version: 0.27.0-3 > Severity: important > > Dear Maintainer, > > I am using smplayer to read blurays - choosen multimedia engine is mpv - but > it > fails with following message : > > Playing: br:media/toto/cdrom0 > No protocol handler found to open URL br:media/toto/cdrom0 > The protocol is either unsupported, or was disabled at compile-time. mpv uses a slightly different "bd" protocol instead of "br". Try this: mpv br:// --bluray-device=/media/toto/cdrom0 See the mpv manual page. Unfortunately I do not have a bluray reader do I can't test this. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#889545: libopenmpt0: possible out-of-bounds memory read with malformed STP files
Control: retitle -1 libopenmpt0: CVE-2018-6611 On 04/02/18 12:26, James Cowgill wrote: > Package: libopenmpt0 > Version: 0.3.1-1 > Severity: grave > Tags: security > > This security update was published for libopenmpt: > https://lib.openmpt.org/libopenmpt/2018/02/03/security-update-0.3.6/ > >> The OpenMPT/libopenmpt project released the latest stable libopenmpt version: >> >> libopenmpt 0.3.6 (2018-02-03) >> [Sec] Possible out-of-bounds memory read with malformed STP files. (r9576) > > The bug only affects 0.3.x so it will not require any updates to stable. > > I have requested a CVE for this bug. ... and it was allocated CVE-2018-6611. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#889545: libopenmpt0: possible out-of-bounds memory read with malformed STP files
Package: libopenmpt0 Version: 0.3.1-1 Severity: grave Tags: security This security update was published for libopenmpt: https://lib.openmpt.org/libopenmpt/2018/02/03/security-update-0.3.6/ > The OpenMPT/libopenmpt project released the latest stable libopenmpt version: > > libopenmpt 0.3.6 (2018-02-03) > [Sec] Possible out-of-bounds memory read with malformed STP files. (r9576) The bug only affects 0.3.x so it will not require any updates to stable. I have requested a CVE for this bug. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Accepted mpv 0.27.0-3 (source) into unstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 03 Feb 2018 14:59:20 +0100 Source: mpv Binary: mpv libmpv1 libmpv-dev Architecture: source Version: 0.27.0-3 Distribution: unstable Urgency: high Maintainer: Debian Multimedia Maintainers <pkg-multimedia-maintainers@lists.alioth.debian.org> Changed-By: James Cowgill <jcowg...@debian.org> Description: libmpv-dev - video player based on MPlayer/mplayer2 (client library dev files) libmpv1- video player based on MPlayer/mplayer2 (client library) mpv- video player based on MPlayer/mplayer2 Closes: 888654 Changes: mpv (0.27.0-3) unstable; urgency=high . * debian/patches/09_ytdl-hook-whitelist-protocols.patch: - Add patch which whitelists protocols received from youtube-dl. Fixes CVE-2018-6360. (Closes: #888654) Checksums-Sha1: ade3cfeb669a5fa9b62a52bd58d43f5b2a791219 2862 mpv_0.27.0-3.dsc dacc52a468909f6369d7a3e2b0346e50db4c82f3 106516 mpv_0.27.0-3.debian.tar.xz a5e9df2cc13b162f8f365d6b9e332aef2d27b2a1 8273 mpv_0.27.0-3_source.buildinfo Checksums-Sha256: ae67a4dceb9f9c4e33cd918a5b253e76583ca88c872f1fafd1ef78a5345dd36e 2862 mpv_0.27.0-3.dsc d37995a0ca22027eca5559dbcfc37592335eb70360e68f0307d840af4ef898fe 106516 mpv_0.27.0-3.debian.tar.xz a8b093454a689860b59f6919d1b3f56488ab323d33e13a81f26f3d08d5ed7470 8273 mpv_0.27.0-3_source.buildinfo Files: 1826816c4d4874115ec5a38dcdae3c16 2862 video optional mpv_0.27.0-3.dsc 357795b9b31f2d36a022452550a97fe3 106516 video optional mpv_0.27.0-3.debian.tar.xz 1138f4c38afc17996b41571fe33b0318 8273 video optional mpv_0.27.0-3_source.buildinfo -BEGIN PGP SIGNATURE- iQJIBAEBCgAyFiEE+Ixt5DaZ6POztUwQx/FnbeotAe8FAlp1wKYUHGpjb3dnaWxs QGRlYmlhbi5vcmcACgkQx/FnbeotAe/60hAAnmAerysoI2v/jcW0spJZnq53lZxq GguuOV1lGxh4Q8q+5lwk4dp989a9nZFW0+F3AI3AdosocHXGhdx9fIfk4Ih6RLed 0D6FTMpdHAZadMgcapWKHZpKUlJ2XkW/2P0EL1oB0YCSQja9ET8SGEGPXQo4/bch dSTeas1wTp/6cw4mPgRnNM4sgqScwb958oe6InV7ThO2RNP9a1dVJewuqv2YvIrq T0i1TtsmZn8NcHxUaSh2AhBFjRsr5V8/1hQC7Z6CxOuSySYE6THfpLeq3Gsq5XkH Gu4RHHD9WRmGTaYSUbCpJDmJemKCNXp/+g5PGMIr4bf46rQh1QVGWp0dJUj5UvLY PcW3Wh2DYbj/8RMovxvDCZ+opRZt3tXFrt3RRnqZVmM9rwYq9gtoxNQNNwL6sFrO ckLqLXXE5aRuV7HlpQlxpsvG6pIbKavPgLXhssYL39JAfwwo/TgZ/LGJTmS1Fm21 ibgfxP7CpFRMSB6wYb55+ZtDrV8lFPvfD3O75LFnYFoUZPK+71n4vaRtV5C3P7FN yzGSv1/QuxxbvsIWvc/RBomltRmf49sSDnbAd8+q1UjlnjVTVstay+xBNfULTlVi uqwQ89780+lDsAyaTnBQF4UZZYuCYroJVBoAwPUC+A8N9rdsNJkHnDeGkOg06eMU OZQ0MkrwnLCMKY0= =yNpu -END PGP SIGNATURE- ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#888654: mpv: CVE-2018-6360
Hi, On 28/01/18 14:17, Salvatore Bonaccorso wrote: > Source: mpv > Version: 0.23.0-1 > Severity: grave > Tags: security upstream > Forwarded: https://github.com/mpv-player/mpv/issues/5456 > > Hi, > > the following vulnerability was published for mpv. > > CVE-2018-6360[0]: > | mpv through 0.28.0 allows remote attackers to execute arbitrary code > | via a crafted web site, because it reads HTML documents containing > | VIDEO elements, and accepts arbitrary URLs in a src attribute without a > | protocol whitelist in player/lua/ytdl_hook.lua. For example, an > | av://lavfi:ladspa=file= URL signifies that the product should call > | dlopen on a shared object file located at an arbitrary local pathname. > | The issue exists because the product does not consider that youtube-dl > | can provide a potentially unsafe URL. > > If you fix the vulnerability please also make sure to include the > CVE (Common Vulnerabilities & Exposures) id in your changelog entry. I have attempted to backport the upstream patch to fix this and committed it to the mpv repository on salsa. The diff is here: https://salsa.debian.org/multimedia-team/mpv/compare/debian%2F0.23.0-2...debian%2Fstretch Unlike the backport for 0.27 which was fairly straightforward, the backport for 0.23 required significant changes and I ended up rewriting half of it. This means I am less confident about catching all the cases to fix this bug. It would be good if anyone could check it over. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: salsa commits ML
Hi, On 31/01/18 11:02, Mattia Rizzolo wrote: > On Wed, Jan 31, 2018 at 09:32:09AM +0000, James Cowgill wrote: >> pkg-multimedia-commits is dead now that things have been migrated to salsa. >> >> For salsa you can: >> - Join #debian-multimedia - all commits are sent there. >> - Subscribe to a package on tracker.d.o and enable the "vcs" keyword. > - join the multimedia team on tracker: > https://tracker.debian.org/teams/debian-multimedia/ > > Then you won't need subscribe to single packages. I remember trying this before, but tracker won't let me join the team (or any teams at all it seems). James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: Proposed multimedia team migration to salsa.d.o
Hi, On 28/01/18 16:56, Mattia Rizzolo wrote: > On Sun, Jan 28, 2018 at 04:37:36PM +0000, James Cowgill wrote: >> Now that salsa is stable, I am going to start migrating things over. I > > Thank you for doing the work! > >> One other change from the proposed plan is the addition of the >> "tagpending" webhook described here: >> https://wiki.debian.org/Salsa/Doc#Dealing_with_Debian_BTS_from_commit_messages > > Yes please. > Thank you for adding that. (btw, you didn't push that change into the > git repo of your script) Should be pushed now (along with some other stuff). >> I am also taking this opportunity to trim the repositories on alioth. >> The repositories below will be omitted from the initial import (but will >> still all be made read only). > > Can you please *move* the repositories that have been moved, instead of > just making them read-only? moving them to a MOVED_TO_SALSA directory > should make the situation pretty clear. I'm assuming we are going to > remove them at some point (if nothing because I'd like to help avoid > forcing the alioth admins to keep a huge snapshot once the host goes > down). > Of course, I'm assuming you are also going to open a MR to add http > redirects from anonscm to salsa. That seems reasonable. I'll move the repositories after the redirector MR is merged. >> # Incorrect Package Naming >> My script requires repo name = source package name at the moment so >> these will be omitted. The pd-* repositories are special because they >> need to be put in a separate group. Should they intentionally not have >> the correct name - ie should "pd-lua" become "pd/lua" or "pd/pd-lua"? > > Please, let's keep repo name = source package name. So the package > 'pd-lua' should have a repo 'pd-lua', wherever group it is in. I think so, but I'll wait to see what umlaeute says because he pretty much owns all the pd-* packages. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: Proposed multimedia team migration to salsa.d.o
Hi, On 01/01/18 17:43, James Cowgill wrote: > Migration > === > Migration of the maintainer email address can start immediately. New > packages can also immediately start hosting their VCS on salsa.debian.org. > > For existing packages, I propose: > - Wait until salsa.debian.org is declared stable (expected at the end of > January) > - Announce to the lists before migration starts > - Set all repositories on alioth read-only (eg using a git pre-receive hook) > - Migrate everything to salsa using Christoph Berg's import script: > http://www.df7cb.de/blog/2017/Salsa_batch_import.html Now that salsa is stable, I am going to start migrating things over. I wrote a separate script which also handles various integrations which I am going to use instead of the one above: https://salsa.debian.org/jcowgill/multimedia-cli One other change from the proposed plan is the addition of the "tagpending" webhook described here: https://wiki.debian.org/Salsa/Doc#Dealing_with_Debian_BTS_from_commit_messages I am also taking this opportunity to trim the repositories on alioth. The repositories below will be omitted from the initial import (but will still all be made read only). If I have screwed up and omitted a repository incorrectly, I can import them on a case-by-case basis or you can import them yourself. I have attached the final list of repositories I will attempt to import now (should be everything except the repos below). # Incorrect Package Naming My script requires repo name = source package name at the moment so these will be omitted. The pd-* repositories are special because they need to be put in a separate group. Should they intentionally not have the correct name - ie should "pd-lua" become "pd/lua" or "pd/pd-lua"? pd-* ffado invada-ladspa invada-lv2 jconv libdvdcss-pkg libmusicbrainz lv2-tools multimedia-blends pd-iem_ambi qutecsound synfig-etl synfig-synfig synfig-synfigstudio # Dead repositories These repositories are not referenced in the Vcs-* fields of any package. I have tried to go through the list and remove some which simply omitted the Vcs- fields. 2mandvd adplug aften avidemux avldrums.lv2 baka-mplayer bdsup2sub++ beast bombono-dvd cadence cinelerra-cv clam-chordata clam-networkeditor collada2gltf creox deadbeef debimedia-archive-keyring divxenc dmedia dvbcut dvd95 dvdrip dvdstyler dvdwizard earcandy ezstream ffmpegthumbnailer ffprobe flam3 flumotion freecycle fst goattracker h264enc jack-rack jcgui jokosher kodi-addon-webinterface-chorus2 kodiplatform lash libav-extra libcmrt libdvb libdvbpsi5 libdvdcss libdvdcss-installer libfreebob libmkv libtunepimp libvisual libvisual-plugins linuxband linuxsampler lv2-extensions-good lv2fil madfuload morituri ntk ocp oomidi openmovieeditor openni-sensor-avin2-sensorkinect osceleton pd-extended pd-jmmmp permafrost phat plotmm portaudio portmidi redlandmm sayonara scenic specimen toonloop vgmstream vmpk whysynth xvidenc yafaray yafaray-exporter zita-dpl1 zynjacku # Orphaned packages no longer maintained by multimedia team aj-snapshot gscanbus ino-headers libdv m2vrequantiser meterec mididings naspro-core pugl silan volti # Packages not maintained by multimedia team libcmrt # - Timo Aaltonen <tjaal...@debian.org> libmediainfo # - Chow Loong Jin <hyper...@debian.org> libzen # - Chow Loong Jin <hyper...@debian.org> madfuload # - Free Ekanayaka <fr...@debian.org> mediaconch # - Chow Loong Jin <hyper...@debian.org> mediainfo # - Chow Loong Jin <hyper...@debian.org> # Packages already existing on salsa collada2gltf ffmpeg gsequencer libplacebo rem smplayer vlc James a2jmidid a52dec abgate ableton-link advene aeolus aliki alsaequal amb-plugins ambdec ams amsynth ardour ardour3 aribb24 atomicparsley audacious audacious-plugins audacity audiofile autotalent avw.lv2 azr3-jack bitmeter bitstream blender blepvco bristol brp-pacu brutefir bs1770gain calf camorama cantata caps cecilia chromaprint clalsadrv clam clthreads clxclient cmt cmus composite create-resources crtmpserver crystalhd csound csound-manual csoundqt das-watchdog dataquay deken devede dgedit din dino dirac directfb drc drumgizmo drumkv1 dssi dvblast dvd-slideshow easytag ebumeter ecasound eq10q faac faad2 faust faustworks fdk-aac ffdiaporama ffmpeg2theora ffms2 fil-plugins flac flactag flake flowblade fluidsynth fluidsynth-dssi fomp foo-yc20 forked-daapd freetuxtv frei0r gavl gecko-mediaplayer gerbera ghostess giada gigedit gjacktransport glyr gmerlin gmerlin-avdecoder gmerlin-encoders gmidimonitor gmtk gmusicbrowser gnome-mplayer gnome-mpv gpac groovebasin gtklick guayadeque guitarix gwc gxtuner handbrake harvid hexter horgand hydrogen hydrogen-drumkits iannix icecast2 ices2 idjc iem-plugin-suite inkscape intel-vaapi-driver intel-vaapi-driver-shaders ir.lv2 isrcsubmit jaaa jack-audio-connection-kit jack-capture jack-delay jack-keyboard jack-midi-clock jack-mixer jack-stdio jack-tool
Bug#888657: ladish: should this package be removed?
Hi, On 28/01/18 14:16, treb...@tuxfamily.org wrote: > Le 2018-01-28 14:38, Simon McVittie a écrit : >> Source: flowcanvas >> Severity: important >> User: debian...@lists.debian.org >> Usertags: proposed-removal >> Control: clone -1 -2 >> Control: reassign -2 ladish >> Control: retitle -2 ladish: should this package be removed? >> >> flowcanvas depends on numerous obsolete GNOME 2-era libraries >> (e.g. #885095) and hasn't had a maintainer upload since 2009. Its >> upstream >> website says: >> >> **Note**: FlowCanvas is dead, long live Ganv! >> >> ganv is also in Debian as src:ganv; it's orphaned in Debian, but appears >> to have commit activity upstream. >> >> flowcanvas has one reverse-dependency in Debian, gladish (src:ladish), >> whose most recent maintainer upload was in 2014. web.archive.org says >> the ladish.org website has been down since mid 2014. > > ladish looks to be maintained by alessio (last commit 20 Apr 2017) here : > https://github.com/alessio/ladish/ > (the same goes laditools as well) You failed to mention that there has only been one non-merge commit to that repository since 2014. The truth is unless someone is willing to do the porting work, these packages are not going to survive whether they are "maintained" or not. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#888664: collada2gltf: missing Vcs-* fields
Hi, On 28/01/18 14:45, Rene Engelhard wrote: > Hi, > > On Sun, Jan 28, 2018 at 02:34:33PM +0000, James Cowgill wrote: >> In my analysis of the multimedia team repositories on alioth I noticed >> that this repository does not have any Vcs-* fields, but does have a >> repository on both alioth and salsa. > > I consider that a bug when that one was migrated to salsa. The alioth > one should have been gone. The alioth repositories are not being removed (at least I am not planning on doing that). Before moving everything to salsa, I am trimming down the list of repositories to migrate. The ones left will be made readonly and presumably archived when alioth is turned off. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#888667: o3dgc: missing Vcs-* fields
Source: o3dgc Version: 0~20131011-3 Severity: minor Hi, In my analysis of the multimedia team repositories on alioth I noticed that this repository does not have any Vcs-* fields, but does have a repository on alioth. Probably these fields should be added. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#888668: pd-purepd: missing Vcs-* fields
Source: pd-purepd Version: 0.1.1-1 Severity: minor Hi, In my analysis of the multimedia team repositories on alioth I noticed that this repository does not have any Vcs-* fields, but does have a repository on alioth. Probably these fields should be added. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#888666: libshairport: incorrect Vcs-* fields
Source: libshairport Version: 1.2.1~git20120510.cbed0c1-3 Severity: minor Hi, The Vcs-* fields for libshairport point to a repository on collab-maint, but it appears that the real packaging is hosted with the multimedia team on alioth. Please update these fields. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#888665: libsamplerate: missing Vcs-* fields
Source: libsamplerate Version: 0.1.9-1 Severity: minor Hi, In my analysis of the multimedia team repositories on alioth I noticed that this repository does not have any Vcs-* fields, but does have a repository on alioth. Probably these fields should be added. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#888664: collada2gltf: missing Vcs-* fields
Source: collada2gltf Version: 20140924-4 Severity: minor Hi, In my analysis of the multimedia team repositories on alioth I noticed that this repository does not have any Vcs-* fields, but does have a repository on both alioth and salsa. Probably these fields should be added. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: [Audacity-devel] Bug#888332: audacity: FTBFS with FFmpeg 3.5
Hi, On 27/01/18 18:30, Paul Licameli wrote: > On Sat, Jan 27, 2018 at 1:18 PM, Jaromír Mikeš <mira.mi...@gmail.com> wrote: >> 2018-01-26 21:00 GMT+01:00 Paul Licameli <paul.licam...@gmail.com>: >>> On Fri, Jan 26, 2018 at 2:51 PM, Darrell Walisser < >>> darrell.walis...@gmail.com> wrote: >>>> On Thu, Jan 25, 2018 at 1:19 AM, Jaromír Mikeš <mira.mi...@gmail.com> >>>> wrote: >>>>> Hello audacity developers, >>>>> >>>>> current audacity release doesn't build with upcoming ffmpeg 3.5. >>>>> As we in debian build audacity against system-wide ffmpeg it can be >>>>> serious problem in near future >>>>> and audacity might be removed from debian archive. >>>>> >>>>> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=888332 >>>>> >>>>> best regards >>>>> >>>>> mira >>>>> >>>> I have a fix for this in progress. Hope this note avoids any >>>> duplication of effort. >>> >>> That will be most welcome. >>> >>> Our intention is to release 2.2.2 beta very soon. I hope Debian will >>> allow us one more release to include Darrell's fixes. >>> >>> PRL >> >> Hi James, >> >> audacity devs already are working on ffmpep 3.5 support ... but it will >> not probably go to upcoming release. >> When do you plan ffmpeg transition ? It will definitely not happen before 3.5 is released upstream. After that I would like to get the majority of the FTBFS bugs fixed before starting the transition. My current guess is sometime in March or April. > James, let me update that: > > One of our contributors has already offered fixes for this, which was much > less code than I feared. It has not yet been merged into our master > branch, but it is probable that it will be for version 2.2.2. It should be > compilable either with FFmpeg version 3.5 header files or earlier. Please > fetch this commit from his fork and see if it's good enough for your > purposes. > > https://github.com/audacity/audacity/pull/249/commits/3d173ccef08fe353d9c73ecdf897e7634803a2b4 Thanks. I made one comment on the pull request about handling older FFmpeg versions correctly. Apart from that I think the PR is fine. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: ffmpeg 3.2.10 update
Hi, On 27/01/18 12:09, Salvatore Bonaccorso wrote: > On Sat, Jan 27, 2018 at 10:19:19AM +0000, James Cowgill wrote: >> On 26/01/18 17:53, Moritz Mühlenhoff wrote: >>> On Fri, Jan 26, 2018 at 05:13:54PM +, James Cowgill wrote: >>>> I've pushed ffmpeg 3.2.10 here: >>>> https://salsa.debian.org/multimedia-team/ffmpeg/tree/debian/stretch >>>> >>>> Since I've not been doing these updates before, what is the correct >>>> procedure. Do I just upload it to security-master, or should I contact >>>> the security team first? >>> >>> For ffmpeg (since it's following the 3.2.x series) uploading to >>> security-master is fine (unless some update happens to provide >>> changes in debian/ beyond the changelog, then please send us a >>> debdiff). >> >> I've uploaded it and attached the debdiff. There are some minor >> modifications to debian/ outside the changelog, but I don't think >> they'll be controversial. > > Something whent wrong, presumably the upload interupted? > > The upload is missing the orig.tar.xz: > > [...] > Jan 27 10:20:39 processing /ffmpeg_3.2.10-1~deb9u1_source.changes > Jan 27 10:20:39 ffmpeg_3.2.10.orig.tar.xz doesn't exist (ignored for now) > Jan 27 10:25:39 processing /ffmpeg_3.2.10-1~deb9u1_source.changes > Jan 27 10:25:39 ffmpeg_3.2.10.orig.tar.xz doesn't exist (ignored for now) > [...] > > You should be able to just push ffmpeg_3.2.10.orig.tar.xz in the next > few hours, and the upload beeing processed. Yeah I tried to do a manual upload because I was on a crap internet connection and screwed it up, but I see everything is sorted now. Thanks! James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: ffmpeg 3.2.10 update
Hi, On 26/01/18 17:53, Moritz Mühlenhoff wrote: > On Fri, Jan 26, 2018 at 05:13:54PM +0000, James Cowgill wrote: >> Hi, >> >> I've pushed ffmpeg 3.2.10 here: >> https://salsa.debian.org/multimedia-team/ffmpeg/tree/debian/stretch >> >> Since I've not been doing these updates before, what is the correct >> procedure. Do I just upload it to security-master, or should I contact >> the security team first? > > For ffmpeg (since it's following the 3.2.x series) uploading to > security-master is fine (unless some update happens to provide > changes in debian/ beyond the changelog, then please send us a > debdiff). I've uploaded it and attached the debdiff. There are some minor modifications to debian/ outside the changelog, but I don't think they'll be controversial. d/gbp.conf - changed the git packaging branch names to dep14 style. d/patches - dropped patch added in 3.2.9 but has now been applied upstream. Thanks, James diff -Nru ffmpeg-3.2.9/Changelog ffmpeg-3.2.10/Changelog --- ffmpeg-3.2.9/Changelog 2017-10-26 21:48:27.0 +0100 +++ ffmpeg-3.2.10/Changelog 2018-01-13 02:33:15.0 + @@ -1,6 +1,77 @@ Entries are sorted chronologically from oldest to youngest within each release, releases are sorted from youngest to oldest. +version 3.2.10: +- avcodec/utils: Avoid hardcoding duplicated types in sizeof() +- avcodec/arm/sbrdsp_neon: Use a free register instead of putting 2 things in one +- avformat/libssh: check the user provided a password before trying to use it +- avcodec/h264addpx_template: Fixes integer overflows +- avcodec/dirac_dwt: Fix overflows in COMPOSE_HAARiH0/COMPOSE_HAARiL0 +- avcodec/diracdec: Fix integer overflow with quant +- avcodec/opus_parser: Check payload_len in parse_opus_ts_header() +- avcodec/jpeg2000dsp: Fix integer overflows in ict_int() +- avcodec/h264_slice: Do not attempt to render into frames already output +- avcodec/dnxhddec: Check dc vlc +- x264: Support version 153 +- avcodec/exr: Check buf_size more completely +- avcodec/flacdec: Fix overflow in multiplication in decode_subframe_fixed() +- avcodec/hevcdsp_template: Fix Invalid shifts in put_hevc_qpel_bi_w_h() and put_hevc_qpel_bi_w_w() +- avcodec/flacdec: avoid undefined shift +- avcodec/hevcdsp_template.c: Fix undefined shift in FUNC(dequant) +- avcodec/dirac_dwt: Fix integer overflow in COMPOSE_DD97iH0() and COMPOSE_DD137iL0() +- avcodec/hevc_cabac: Fix integer overflow in ff_hevc_cu_qp_delta_abs() +- tests/audiomatch: Add missing return code at the end of main() +- avcodec/hevc_sei: Fix integer overflows in decode_nal_sei_message() +- avcodec/hevcdsp_template: Fix undefined shift in put_hevc_qpel_bi_w_hv() +- libavfilter/af_dcshift.c: Fixed repeated spelling error +- avfilter/formats: fix wrong function name in error message +- avcodec/amrwbdec: Fix division by 0 in voice_factor() +- avcodec/diracdsp: Fix integer overflow in PUT_SIGNED_RECT_CLAMPED() +- avcodec/dirac_dwt: Fix integer overflows in COMPOSE_DAUB97* +- avcodec/vorbis: Fix another 1 << 31 > int32_t::max() with 1u. +- Don't manipulate duration when it's AV_NOPTS_VALUE. +- avcodec/vorbis: 1 << 31 > int32_t::max(), so use 1u << 31 instead. +- avformat/utils: Prevent undefined shift with wrap_bits > 64. +- avcodec/j2kenc: Fix out of array access in encode_cblk() +- avcodec/hevcdsp_template: Fix undefined shift in put_hevc_epel_bi_w_h() +- avcodec/mlpdsp: Fix signed integer overflow, 2nd try +- avcodec/kgv1dec: Check that there is enough input for maximum RLE compression +- avcodec/dirac_dwt: Fix integer overflow in COMPOSE_FIDELITYi* +- avcodec/mpeg4videodec: Check also for negative versions in the validity check +- Close ogg stream upon error when using AV_EF_EXPLODE. +- Fix undefined shift on assumed 8-bit input. +- Use ff_thread_once for fixed, float table init. +- avformat/mov: Propagate errors in mov_switch_root. +- avcodec/hevcdsp_template: Fix invalid shift in put_hevc_epel_bi_w_v() +- avcodec/mlpdsp: Fix undefined shift ff_mlp_pack_output() +- avcodec/zmbv: Check that the buffer is large enough for mvec +- avcodec/dirac_dwt: Fix integer overflow in COMPOSE_DD137iL0() +- avcodec/wmv2dec: Check end of bitstream in parse_mb_skip() and ff_wmv2_decode_mb() +- avcodec/snowdec: Check for remaining bitstream in decode_blocks() +- avcodec/snowdec: Check intra block dc differences. +- avformat/mov: Check size of STSC allocation +- avcodec/vc2enc: Clear coef_buf on allocation +- avcodec/h264dec: Fix potential array overread +- avcodec/x86/mpegvideodsp: Fix signedness bug in need_emu +- avcodec/aacpsdsp_template: Fix integer overflows in ps_decorrelate_c() +- avcodec/aacdec_fixed: Fix undefined shift +- avcodec/mdct_*: Fix integer overflow in addition in RESCALE() +- avcodec/snowdec: Fix integer overflow in header parsing +- avcodec/cngdec: Fix integer clipping +- avcodec/sbrdsp_fixed: Fix integer overflow in shift in sbr_hf_g_filt_
ffmpeg 3.2.10 update
Hi, I've pushed ffmpeg 3.2.10 here: https://salsa.debian.org/multimedia-team/ffmpeg/tree/debian/stretch Since I've not been doing these updates before, what is the correct procedure. Do I just upload it to security-master, or should I contact the security team first? Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: Proposed multimedia team migration to salsa.d.o
Hi, On 26/01/18 09:25, IOhannes m zmölnig (Debian/GNU) wrote: > On 01/01/2018 06:43 PM, James Cowgill wrote: >> we need to migrate things over to salsa > > thanks for taking the initiative! >> >> New Vcs-* URLs: >> > > formorer has setup a redirection system, which would allow us to keep > the old anonscm URLs, which i think should be preferred over re-setting > the Vcs-* stanzas again. > >https://salsa.debian.org/salsa/AliothRewriter From the README of that project: > The existance of this list should not mean that VCS control fields shouldn't > get updated with the next upload. This map is just a workaround - after your > upload please create another pull request that deletes the unneeded entries. So it looks like it's just a workaround which may not exist forever. I think we should change the VCS URLs (yet again). If we're going to change the maintainer address anyway, I don't think it will be a huge burden. >> New maintainer address >> === >> There is not going to be a replacement for alioth mailing lists, so we >> are going to switch back to using "debian-multime...@lists.debian.org" > > i haven't followed the discussion why d-m@l.d.o was deprecated in the > first place. > so for me, this sounds like a very good idea. > >> >> Commit notifications >> === > > > there's also a webhook for closing/pending bugs which we probably want > to enable. > > https://webhook.salsa.debian.org/tagpending/${pkgname} Thanks I did not know about this.. >> Automation >> --- >> Enabling these should probably be automated and checked using the GitLab >> API because inevitably someone will forget to enable it in a repository. > > +1 > > has somebody started to work on that already? I've had a go at writing a script in python which does some of this. I've put it here: https://salsa.debian.org/jcowgill/multimedia-cli I'll see if I can add the pending bugs webhook to it. >> Migration >> === >> - Migrate everything to salsa using Christoph Berg's import script: >> http://www.df7cb.de/blog/2017/Salsa_batch_import.html > > sounds good. > the import script is quite rough though, has anybody worked on cleaning > it up? The above tool has an import script as well. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#888348: lives: FTBFS with FFmpeg 3.5
Hi, On 25/01/18 10:55, salsaman wrote: > If you have a moment, perhaps you could pull the newly updated files from > lives/lives-plugins/plugins/decoders in subversion ( > http://svn.code.sf.net/p/lives/code/trunk) and recompile. It should fix the > FTBFS. Thanks. The errors in the original build log have now been fixed, but there are some more further on (build was done with make -k): > libav_stream.c: In function 'set_palette': > libav_stream.c:251:15: error: 'PIX_FMT_YUV420P' undeclared (first use in this > function); did you mean 'AV_PIX_FMT_YUV420P'? >avpalette = > PIX_FMT_YUV420P;//weed_palette_to_avi_pix_fmt(WEED_PALETTE_YUV420P, ); >^~~ >AV_PIX_FMT_YUV420P > libav_stream.c:251:15: note: each undeclared identifier is reported only once > for each function it appears in > libav_stream.c: In function 'add_stream': > libav_stream.c:459:17: error: 'CODEC_FLAG_GLOBAL_HEADER' undeclared (first > use in this function); did you mean 'AV_CODEC_FLAG_GLOBAL_HEADER'? > c->flags |= CODEC_FLAG_GLOBAL_HEADER; > ^~~~ > AV_CODEC_FLAG_GLOBAL_HEADER > Makefile:852: recipe for target 'libav_stream_la-libav_stream.lo' failed [...] > avformat_decoder.c: In function 'attach_stream': > avformat_decoder.c:360:44: error: 'AVCodecContext {aka struct > AVCodecContext}' has no member named 'codec_name'; did you mean 'codec_type'? >sprintf(cdata->audio_name, "%s", cc->codec_name); > ^~ > codec_type > avformat_decoder.c:400:44: error: 'AVCodecContext {aka struct > AVCodecContext}' has no member named 'codec_name'; did you mean 'codec_type'? >sprintf(cdata->video_name, "%s", cc->codec_name); > ^~ > codec_type > Makefile:862: recipe for target 'zzavformat_decoder_la-avformat_decoder.lo' > failed [...] > mpegts_decoder.c: In function 'attach_stream': > mpegts_decoder.c:3144:29: error: 'CODEC_CAP_TRUNCATED' undeclared (first use > in this function); did you mean 'AV_CODEC_CAP_TRUNCATED'? >if (codec->capabilities & CODEC_CAP_TRUNCATED) > ^~~ > AV_CODEC_CAP_TRUNCATED > mpegts_decoder.c:3144:29: note: each undeclared identifier is reported only > once for each function it appears in > mpegts_decoder.c:3145:19: error: 'CODEC_FLAG_TRUNCATED' undeclared (first use > in this function); did you mean 'CODEC_CAP_TRUNCATED'? > ctx->flags |= CODEC_FLAG_TRUNCATED; >^~~~ >CODEC_CAP_TRUNCATED > At top level: > mpegts_decoder.c:340:23: warning: 'options' defined but not used > [-Wunused-const-variable=] > static const AVOption options[] = { >^~~ > Makefile:841: recipe for target 'mpegts_decoder_la-mpegts_decoder.lo' failed James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#888348: lives: FTBFS with FFmpeg 3.5
Hi, On 25/01/18 04:05, salsaman wrote: > Thanks. Will take a look. > > What is the recommended compile time check for this version ? > LIBAVCODE_VERSION_MAJOR > ? ? For libavcodec from FFmpeg 3.5 / Libav 12 you can use: LIBAVCODEC_VERSION_MAJOR >= 58 However, there should be no reason to do this because all the removed APIs have been deprecated for years now. You should instead check the version at the time the feature was removed. In this case you want the version that AV_INPUT_BUFFER_PADDING_SIZE was added. This can be found in doc/APIchanges: > 2015-07-27 - lavc 56.56.100 / 56.35.0 - avcodec.h > 94d68a4 / 7c6eb0a1 - Rename CODEC_FLAG* defines to AV_CODEC_FLAG*. > 444e987 / def97856 - Rename CODEC_CAP_* defines to AV_CODEC_CAP_*. > 29d147c / 059a9348 - Rename FF_INPUT_BUFFER_PADDING_SIZE and > FF_MIN_BUFFER_SIZE > to AV_INPUT_BUFFER_PADDING_SIZE and AV_INPUT_BUFFER_MIN_SIZE. The first version is for FFmpeg, the second is for Libav (sigh). So I think you want: #if LIBAVCODEC_VERSION_INT >= AV_VERSION_INT(56, 56, 0) Alternatively since FFmpeg 3.0 bumped the major version, you could be more strict and check on: #if LIBAVCODEC_VERSION_MAJOR >= 57 Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: giada - new release
Hi, On 17/01/18 15:42, Jaromír Mikeš wrote: > Hi, > > giada unfortunately fail to build on some archs ... I already informed > upstream but not answer yet. > Can someone look if fixing this is rather trivial or complicated. > > https://buildd.debian.org/status/package.php?p=giada The entire function for reference: > std::string gu_format(const char* format, ...) > { > va_list args; > > /* Compute the size of the new expanded string (i.e. with replacement > taken > into account). */ > > size_t size = vsnprintf(nullptr, 0, format, args); > > /* Create a new temporary char array to hold the new expanded string. */ > > std::unique_ptr<char[]> tmp(new char[size]); > > /* Fill the temporary string with the formatted data. */ > > va_start(args, format); > vsprintf(tmp.get(), format, args); > va_end(args); > > return string(tmp.get(), tmp.get() + size - 1); > } This line (the one the error complains about) reads the uninitialized args and invokes undefined behavior: > size_t size = vsnprintf(nullptr, 0, format, args); It needs to be surrounded in va_start, va_end block. The second subtle error is that vsnprintf returns the size _excluding the null byte_. This will cause the vsprintf call to overflow the buffer by 1 byte. This might work (untested): va_start(args, format); size_t size = vsnprintf(nullptr, 0, format, args) + 1; va_end(args); Some alternative implementations. The varardic template solution (the third one) is similar to this code (and the one I like the most): https://stackoverflow.com/questions/2342162/stdstring-formatting-like-sprintf James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: giada - new release
Hi, On 16/01/18 18:53, Jaromír Mikeš wrote: > Hi, > > in giada package 02-rtmidi-pkgconfig.patch is not applying anymore. > I am not sure if this patch can be dropped or it should be updated? > Can someone have a look please? James maybe you as as author of this patch. Here's a refreshed patch. It looks like upstream has changed the headers to which is a hack and against the intentions of upstream rtmidi, but it will work without my patch (for now). I think using pkg-config is still more correct though. James From: James Cowgill <jcowg...@debian.org> Date: Wed, 25 Oct 2017 14:25:50 +0200 Subject: build with new rtmidi lib. --- a/Makefile.am +++ b/Makefile.am @@ -70,13 +70,13 @@ endif if LINUX # Add preprocessor flags to enable ALSA, Pulse and JACK in RtAudio. -cppFlags += -D__LINUX_ALSA__ -D__LINUX_PULSE__ -D__UNIX_JACK__ +cppFlags += $(RTMIDI_CFLAGS) # Don't stop on JUCE's unused functions. cxxFlags += -Wno-error=unused-function ldAdd += -lsndfile -lfltk -lXext -lX11 -lXft -lXpm -lm -ljack -lasound \ - -lpthread -ldl -lpulse-simple -lpulse -lsamplerate -lrtmidi -ljansson \ + -lpthread -ldl -lpulse-simple -lpulse -lsamplerate $(RTMIDI_LIBS) -ljansson \ -lfreetype endif --- a/configure.ac +++ b/configure.ac @@ -118,23 +118,7 @@ AC_CHECK_HEADER( ) AC_LANG_POP -if test "x$os" = "xosx"; then - AC_LANG_PUSH([C++]) - AC_CHECK_HEADER( - [RtMidi.h], - [], - [AC_MSG_ERROR([library 'rtMidi' not found!])] - ) - AC_LANG_POP -else - AC_LANG_PUSH([C++]) - AC_CHECK_HEADER( - [rtmidi/RtMidi.h], - [], - [AC_MSG_ERROR([library 'rtMidi' not found!])] - ) - AC_LANG_POP -fi +PKG_CHECK_MODULES([RTMIDI], [rtmidi]) AC_LANG_PUSH([C++]) signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#886912: ffmpeg segfaults when using sftp
Control: forwarded -1 https://trac.ffmpeg.org/ticket/6413 Control: fixed -1 7:3.4.1-1 Hi, On 11/01/18 08:55, Scott Cohen wrote: > Package: ffmpeg > Version: 7:3.2.9-1~deb9u1 > Severity: important > > Dear Maintainer, > > To reproduce: > 1. Open a file with the -i option and supply it with the sftp:// protocol > with an ip and path to the desired file. > > The following log displays that using the sftp in at least my configuration > will cause a segfault and the ip used was 127.0.1.1: > > yetoo@debian:~/Videos$ ffmpeg -loglevel debug -i sftp://127.0.1.1/midlife.mp4 > ffmpeg version 3.2.9-1~deb9u1 Copyright (c) 2000-2017 the FFmpeg developers > built with gcc 6.3.0 (Debian 6.3.0-18) 20170516 > configuration: --prefix=/usr --extra-version='1~deb9u1' > --toolchain=hardened --libdir=/usr/lib/x86_64-linux-gnu > --incdir=/usr/include/x86_64-linux-gnu --enable-gpl --disable-stripping > --enable-avresample --enable-avisynth --enable-gnutls --enable-ladspa > --enable-libass --enable-libbluray --enable-libbs2b --enable-libcaca > --enable-libcdio --enable-libebur128 --enable-libflite --enable-libfontconfig > --enable-libfreetype --enable-libfribidi --enable-libgme --enable-libgsm > --enable-libmp3lame --enable-libopenjpeg --enable-libopenmpt --enable-libopus > --enable-libpulse --enable-librubberband --enable-libshine --enable-libsnappy > --enable-libsoxr --enable-libspeex --enable-libssh --enable-libtheora > --enable-libtwolame --enable-libvorbis --enable-libvpx --enable-libwavpack > --enable-libwebp --enable-libx265 --enable-libxvid --enable-libzmq > --enable-libzvbi --enable-omx --enable-openal --enable-opengl --enable-sdl2 > --enable-libdc1394 --enable-libiec61883 --enable-chromaprint --enable-frei0r > --enable-libopencv --enable-libx264 --enable-shared > libavutil 55. 34.101 / 55. 34.101 > libavcodec 57. 64.101 / 57. 64.101 > libavformat57. 56.101 / 57. 56.101 > libavdevice57. 1.100 / 57. 1.100 > libavfilter 6. 65.100 / 6. 65.100 > libavresample 3. 1. 0 / 3. 1. 0 > libswscale 4. 2.100 / 4. 2.100 > libswresample 2. 3.100 / 2. 3.100 > libpostproc54. 1.100 / 54. 1.100 > Splitting the commandline. > Reading option '-loglevel' ... matched as option 'loglevel' (set logging > level) with argument 'debug'. > Reading option '-i' ... matched as input url with argument > 'sftp://127.0.1.1/midlife.mp4'. > Finished splitting the commandline. > Parsing a group of options: global . > Applying option loglevel (set logging level) with argument debug. > Successfully parsed a group of options. > Parsing a group of options: input url sftp://127.0.1.1/midlife.mp4. > Successfully parsed a group of options. > Opening an input file: sftp://127.0.1.1/midlife.mp4. > [NULL @ 0x5609c5fa0d60] Opening 'sftp://127.0.1.1/midlife.mp4' for reading > [sftp @ 0x5609c5fa15c0] No default whitelist set > Segmentation fault I think this is this upstream bug (which was fixed in 3.4): https://trac.ffmpeg.org/ticket/6413 https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=8ddb6820bd52df6ed616abc3d8be200b126aa8c1 Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: How to handle translation bug?
Hi, On 09/01/18 04:19, Jaromír Mikeš wrote: > Hi, > > I got translation bug against aeolus package: > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886672 > > How to deal with this bug correctly? I found this thread: > https://lists.debian.org/debian-devel/2016/07/msg00351.html > > But I am not still sure about correct workflow. I'm not sure exactly what the procedure is, but I guess someone on debian-i18n@l.d.o can help you. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#886369: easytag: remove mentioned OGG support from package description
Package: easytag Version: 2.4.3-2 Severity: minor Tags: patch X-Debbugs-CC: Bruno Kleinert <fu...@debian.org> Control: submitter -1 Bruno Kleinert <fu...@debian.org> Hi, On 04/01/18 12:02, Bruno Kleinert wrote: > Am Mittwoch, den 03.01.2018, 16:50 +0000 schrieb James Cowgill: >> Control: clone -1 -2 >> Control: notfound -2 2.4.3-1 >> Control: found -2 2.4.3-2 >> Control: severity -2 normal >> Control: tags -2 - pending >> Control: retitle -2 easytag: re-enable ogg after corruption bug is >> fixed >> >> Hi, >> >> On 16/02/17 01:02, Samuele Battarra wrote: >>> Package: easytag >>> Version: 2.4.3-1 >>> Severity: normal >>> >>> Dear Maintainer, >>> I have a ogg file encoded from a live cd, I split it to single >>> tracks with oggsplt and then tag the tracks with easytag. >>> When I play the files I hear a click at file change. >>> The click is not present in files before the tagging and if I tag >>> with kid3. >> >> As you might have noticed, I have decided that the best way to fix >> this >> is to disable support for OGG and related media types in easytag for >> the >> time being. Solving this bug is apparently quite complex and while >> the >> upstream bug has been open for over a year, there has not been much >> progress on it. I think it is better to have some version in buster >> (which does not mangle your media files) than nothing at all. >> >> I have cloned this bug to remind me to re-enable ogg support once the >> corruption bug is fixed. >> >> Thanks, >> James > > Hi James, > > I suggest to remove the mentioned OGG support from the description of > the package for the time being, and suggest alternative packages to > users instead. Feel free to use and adapt the attached patch! Yes I overlooked altering the package description to remove mentions of ogg. I'm not sure the description is the right place to be suggesting alternative packages though. James diff --git a/debian/changelog b/debian/changelog index a8df5e1..4cae9d8 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,11 @@ +easytag (2.4.3-2.1) UNRELEASED; urgency=medium + + * Non-maintainer upload. + * Do not mention OGG support in package description. Instead, suggest +alternative packages to edit OGG file tags. + + -- Bruno "Fuddl" Kleinert <fu...@debian.org> Thu, 04 Jan 2018 12:52:46 +0100 + easytag (2.4.3-2) unstable; urgency=medium * debian/control: diff --git a/debian/control b/debian/control index 6e53796..36cabb6 100644 --- a/debian/control +++ b/debian/control @@ -49,9 +49,8 @@ Description: GTK+ editor for audio file tags . Currently EasyTAG supports the following: - View, edit, write tags of MP3, MP2 files (ID3 tag), FLAC files (FLAC Vorbis -tag), Ogg Opus, Ogg Speex and Ogg Vorbis files (Ogg Vorbis tag), -MP4/M4A/AAC files (MPEG-4 Part 10 tag), and MusePack, Monkey's Audio files -(APE tag); +tag), MP4/M4A/AAC files (MPEG-4 Part 10 tag), and MusePack, Monkey's Audio +files (APE tag); - Auto tagging: parse file and directory names using masks to automatically fill in tag fields; - Cover art support for all formats; @@ -71,6 +70,10 @@ Description: GTK+ editor for audio file tags - A playlist generator window; - A file searching window; - Simple and explicit interface. + . + OGG support is currently disabled in this package because of a data corruption + bug. To edit tags in OGG files you may consider one of these packages: exfalso, + puddletag, kid3-qt, entagged. Package: easytag-nautilus Architecture: any signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: Removing rumor
Hi, On 04/01/18 22:34, Ryan Kavanagh wrote: > Hi all, > > The rumor package converts MIDI keyboard input to Lilypond sheet music > notation. > We initially introduced this package back in 2009 because Frescobaldi (a > Lilypond IDE) interfaced with it, but Frescobaldi now does its own MIDI to > Lilypond conversion. Rumor hasn't been maintained upstream since 2010 and it > needs to be updated for every new guile release. > > Given it's abandoned upstream, its main use case (Frescobaldi) no longer > applies, and it requires regular patching, I propose removing it from the > archive. > > Are there any objections? (Alternatively, would anybody like to add themselves > to the uploaders field and take over keeping an eye on it for me?) Not an objection, but an observation that upstream did claim to commit some fixes in September 2017: https://bugs.launchpad.net/rumor/+bug/782750 https://bugs.launchpad.net/rumor/+bug/1413108 I can't find the repo though. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: libgig compat 10 vs 11
Hi, On 03/01/18 20:09, Jaromír Mikeš wrote: > 2018-01-03 20:07 GMT+01:00 Jonas Smedegaard <jo...@jones.dk>: > >> Quoting Jaromír Mikeš (2018-01-03 19:29:36) >>> When bumped compat dh to 11 I am getting this errors ... files are >>> installed same in doc package with dh 10 and 11 >>> >>> E: libgig-doc: doc-base-file-references-missing-file libgig-doc:8 >>> /usr/share/doc/libgig-doc/html/index.html >>> E: libgig-doc: doc-base-file-references-missing-file libgig-doc:9 >>> /usr/share/doc/libgig-doc/html/* >>> >>> Any idea how to fix this? >> >> What did debhelper documentation say about that change in compatibility >> level? > > I was checking before documentation there is quite a lot of about doc ... > but I didn't found something related to this issue > But I might be wrong :( From debhelper(7) compat 11 section: >- The dh_installdocs and dh_installexamples tools will now >attempt to guess the "main package" for a given >documentation package (e.g. pkg-doc will have pkg as main >package if the latter exists). If a main package is >found, most of the documentation will be installed into >/usr/share/doc/main-pkg by default as recommended by >Debian policy §12.3 since version 3.9.7. Notable >exceptions include the copyright file and changelog files. > >The --doc-main-package option can be used when the auto- >detection is insufficient. It isn't stated there, but for packages named "libX-doc", the main package becomes "libX-dev", so if you run debdiff on the old and new libgig-doc, you should find the documentation has moved to /usr/share/doc/libgig-dev. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#886272: easytag: re-enable ogg support after corruption bug is fixed
Package: easytag Version: 2.4.3-2 Severity: normal Tags: upstream Forwarded: https://bugzilla.gnome.org/show_bug.cgi?id=776110 This bug was going to be cloned from #855251 but apparently you can't clone merged bugs. In 2.4.3-2, OGG, OPUS and Speex support was disabled due to a corruption bug described in #855251. This bug is pending an upstream fix. Once the fix is available, support should be re-enabled. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#855251: easytag corrupt ogg files
Control: clone -1 -2 Control: notfound -2 2.4.3-1 Control: found -2 2.4.3-2 Control: severity -2 normal Control: tags -2 - pending Control: retitle -2 easytag: re-enable ogg after corruption bug is fixed Hi, On 16/02/17 01:02, Samuele Battarra wrote: > Package: easytag > Version: 2.4.3-1 > Severity: normal > > Dear Maintainer, > I have a ogg file encoded from a live cd, I split it to single tracks with > oggsplt and then tag the tracks with easytag. > When I play the files I hear a click at file change. > The click is not present in files before the tagging and if I tag with kid3. As you might have noticed, I have decided that the best way to fix this is to disable support for OGG and related media types in easytag for the time being. Solving this bug is apparently quite complex and while the upstream bug has been open for over a year, there has not been much progress on it. I think it is better to have some version in buster (which does not mangle your media files) than nothing at all. I have cloned this bug to remind me to re-enable ogg support once the corruption bug is fixed. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: Bug#886237: transition: libgig
Hi Mattia, On 03/01/18 13:18, Mattia Rizzolo wrote: > Control: tag -1 moreinfo > > On Wed, Jan 03, 2018 at 12:55:40PM +0100, Jaromír Mikeš wrote: >> Can I upload new upstream version of gigedit now to experimental? ... >> I am not DD just having DM flag for qsampler > > Usually uploading to experimental comes *before* opening a transition > bug. > Please upload to experimental and ping this bug once it passed new (and > the reverse-depends still builds fine). I think you have misunderstood. libgig is the library undergoing a transition and is already in experimental. gigedit is a reverse dependency of libgig which currently FTBFS but a fix is ready to be uploaded. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#883636: showq: does not start
Control: retitle -1 showq: does not start Control: severity -1 grave Control: tags -1 confirmed Hi, On 06/12/17 00:12, treb...@tuxfamily.org wrote: > Package: showq > Version: 0.4.1+git20161215~dfsg0-2 > > Dear debian maintainers, > > trying to launch showq (debian stretch here) doesn't work at all. > When ran from a terminal, it tells: > $ showq > ShowQ:out_1 # system:playback_1 > ShowQ:out_2 # system:playback_2 > ShowQ:out_3 # PulseAudio JACK Source:front-left > ShowQ:out_4 # PulseAudio JACK Source:front-right > > Then a pop up windows appears telling: >> Show Q encountered an unknown error. >> Please report this error to the developers of the program. > > Pushing the "OK" button, and it stops. > > I've already reported this to upstream : > https://github.com/evandelisle/showq/issues/29 Indeed I cannot start showq either. Running it in strace shows that it fails to open the app.ui file: > open("/usrshare/showq/ui/app.ui", O_RDONLY) = -1 ENOENT (No such file or > directory) This path is derived from UI_DIR which is defined in wscript: > def configure(conf): > conf.recurse('src ui') > conf.define('GETTEXT_PACKAGE', 'showq') > conf.define('PROGRAMNAME_LOCALEDIR', conf.options.prefix + 'share/showq') > conf.define('UI_DIR', conf.options.prefix + 'share/showq/ui/') > conf.define('VERSIONSTRING', VERSION) > conf.write_config_header('config.h') Note that the prefix does *not* have a trailing slash in debian/rules: > override_dh_auto_configure: > $(WAF) configure --prefix=/usr So the simple fix is to use "--prefix=/usr/", but arguably this is an upstream bug as well since it should work with prefixes without trailing slashes. This all does seem to suggest the package was never tested before being uploaded... James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: libgig upload to experimental
Hi, On 08/12/17 12:36, Jaromír Mikeš wrote: > 2017-11-29 22:36 GMT+01:00 Jaromír Mikeš <mira.mi...@gmail.com>: >> 2017-11-27 13:49 GMT+01:00 Jaromír Mikeš <mira.mi...@gmail.com>: >> >>> libgig bumped soname so it should go trough transition. >>> Can someone upload libgig to experimental please? >>> >> >> ping ;) >> > > Hi, > > I would be great if someone in this Xmas rush will find a time to upload > libgig and gigedit to experimental for me ;) Uploaded. Sorry for the delay. I haven't uploaded gigedit, but you should be able to do that yourself. I notice gigedit FTBFS with the testsuite enabled with the error: > The following files contain translations and are currently not in use. Please > consider adding these to the POTFILES.in file, located in the po/ directory. > > src/gigedit/MacroEditor.cpp > src/gigedit/MacrosSetup.cpp > > If some of these files are left out on purpose then please add them to > POTFILES.skip instead of POTFILES.in. A file 'missing' containing this list > of left out files has been written in the current directory. This is a programming error and should be reported upstream. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: phasex – request for review
Hi, On 29/12/17 13:42, Jaromír Mikeš wrote: > 2017-12-29 13:46 GMT+01:00 Gabor Karsay <gabor.kar...@gmx.at>: > > Hi Gabor, > > >> I fixed the watch file for phasex and I'm asking for a review/upload. >> Maybe mira? You have listed yourself as uploader. >> >> Amongst other thing I also migrated to automatic debug packages following >> this guide: https://wiki.debian.org/AutomaticDebugPackages > > > Lintian says: > $ lintian -IE --pedantic --no-tag-display-limit > ../phasex_0.14.97-3_amd64.changes > P: phasex source: package-uses-old-debhelper-compat-version 10 > W: phasex source: newer-standards-version 4.1.3 (current is 4.1.2) > I: phasex source: testsuite-autopkgtest-missing > P: phasex source: debian-watch-may-check-gpg-signature > I: phasex: spelling-error-in-binary usr/bin/phasex GNU Public License GNU > General Public License > I: phasex: arch-dep-package-has-big-usr-share 10320kB 95% > W: phasex: binary-without-manpage usr/bin/phasex > W: phasex: binary-without-manpage usr/bin/phasex-convert-patch > I: phasex: desktop-entry-lacks-keywords-entry > usr/share/applications/phasex.desktop > > So I would go with dh compat 11 now and keep standards version 4.1.2 until > lintian will recognize 4.1.3 Lintian is clearly wrong here so I think you should ignore it. > Also I would fix desktop file ... we are shipping our one in debian dir. > > d/rules > override_dh_strip: > dh_strip --dbgsym-migration='phasex-dbg (<< 0.14.97-3~)' > > This seems to be redundant I believe with compat 10 and higher. Whether the --dbgsym-migration option is redundant depends on the package. The purpose of that option is to prevent dpkg failing to install the new dbgsym package if the old dbg package is installed (file conflicts). Usually if all the binaries in your package have changed, the debug files in /usr/lib/debug/.build-id will also change names and the option isn't needed. In this case no new upstream has been imported, so you probably do need the option (until the next upstream version is imported). Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Proposed multimedia team migration to salsa.d.o
Hi, As you've probably seen, the Debian Gitlab instance salsa.debian.org is up and running (in beta). Since alioth.debian.org is deprecated and might be disabled soon, we need to migrate things over to salsa. This is what I propose. I posted it on IRC, but for more discussion I'm posting it to the mailing lists now. salsa.debian.org team === A group on salsa.debian.org has been created here: https://salsa.debian.org/multimedia-team Existing members of the alioth team have not been migrated over which should help prune inactive members. Anyone who was a member of the alioth team can click the "Request Access" button and an someone will approve you. Usually, team members who are DDs are given "Owner" permissions in the group and other members are given "Master" permissions. When creating a new project: * The project name should be the same as the source package name. * "Issues" should be disabled (use the BTS instead). * A commit notification hooks should be setup (see below). New Vcs-* URLs: ``` Vcs-Git: https://salsa.debian.org/multimedia-team/package.git Vcs-Browser: https://salsa.debian.org/multimedia-team/package ``` https://lists.debian.org/debian-devel-announce/2017/12/msg3.html https://wiki.debian.org/Salsa/Doc New maintainer address === There is not going to be a replacement for alioth mailing lists, so we are going to switch back to using "debian-multime...@lists.debian.org" as the mailing list used in the Maintainer field of all packages. https://lists.debian.org/debian-devel-announce/2017/09/msg4.html Commit notifications === The commit mailing list is also on alioth and will soon be disabled. This is replaced by the "Emails on push" integration on salsa which sends emails to tracker.debian.org which you can subscribe to. This needs to be enabled manually per project. See: https://wiki.debian.org/Salsa/Doc#Email_notifications IRC notifications can be enabled using Irker. Again this needs to be enabled manually per project. See: https://wiki.debian.org/Salsa/Doc#IRC_notifications Automation --- Enabling these should probably be automated and checked using the GitLab API because inevitably someone will forget to enable it in a repository. Eg for "Emails on push": https://docs.gitlab.com/ee/api/services.html#emails-on-push ``` curl -X PUT -H "Private-Token: $GITLAB_API_PRIVATE_TOKEN" -F "recipients=dispatch+${package}_...@tracker.debian.org" https://salsa.debian.org/api/v4/projects/multimedia-team%2F${package}/services/emails-on-push ``` Migration === Migration of the maintainer email address can start immediately. New packages can also immediately start hosting their VCS on salsa.debian.org. For existing packages, I propose: - Wait until salsa.debian.org is declared stable (expected at the end of January) - Announce to the lists before migration starts - Set all repositories on alioth read-only (eg using a git pre-receive hook) - Migrate everything to salsa using Christoph Berg's import script: http://www.df7cb.de/blog/2017/Salsa_batch_import.html At this point we should attempt to upload all packages at least once before the mailing list on alioth is disabled. Unfortunately this is a lot of work, so I am quietly hoping there will be an alternative solution for this so we don't loose bug reports sent to the old maintainer address. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#885781: petri-foo: Depends on libgnomecanvas
On 29/12/17 22:22, Jaromír Mikeš wrote: 2017-12-29 21:16 GMT+01:00 Jeremy Bicha <jbi...@debian.org>: Source: petri-foo Version: 0.1.87-4 Severity: important User: pkg-gnome-maintain...@lists.alioth.debian.org Usertags: oldlibs libgnomecanvas Tags: sid buster As announced [1], we do not intend to release Debian 10 "Buster" with the old libgnome (and related) libraries. These libraries have been deprecated and unmaintained for several years. Your package depends and or build-depends on libgnomecanvas. Please port your package to GTK3 and related maintained libraries. Otherwise, please consider requesting that your package be removed from Debian to help us complete this goal. [1] https://lists.debian.org/debian-devel/2017/10/msg00299.html Hi James, as you see petri-foo needs to be ported to GTK3 otherwise will be removed from debian with next debian release. Please let me know if there is any plan for fixing this issue. best regards mira Hi Mira, I won't be doing any development on Petri-Foo. Thanks for your work on Debian packaging. James. ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: Request for review of soundtouch (security)
Hi, On 30/11/17 14:24, Gabor Karsay wrote: > soundtouch has 3 low urgency security issues[0]. There is an upstream > commit[1] that apparently fixes them, however without mentioning the > issues or any bug references in the commit. > > The full disclosure[2] of the CVEs provides 3 crafted wav files that can > be run with soundstretch, the main consumer of libsoundtouch. 1 of the > files causes an infinite loop (CVE-2017-9258), the others cause 2 > different crashes (CVE-2017-9259, CVE-2017-9260). > > I stripped not directly related changes, applied the patch in sid and > soundstretch returns for all 3 files with "Error: Excessive samplerate" > (no loop, no crash). > > I tested it only in unstable. I guess it should be also applied to > wheezy, jessie, stretch, but I don't know how. Source and patch have > Windows-style CRLF so that patch doesn't complain about line endings. Sorry for the delay. The patch you committed looked fine and I've uploaded it to unstable along with some packaging updates. I prepared uploads for stretch and jessie here: https://anonscm.debian.org/cgit/pkg-multimedia/soundtouch.git/log/?h=debian/stretch https://anonscm.debian.org/cgit/pkg-multimedia/soundtouch.git/log/?h=debian/jessie These need to be approved by the release team before being uploaded: https://bugs.debian.org/885531 https://bugs.debian.org/885533 Thanks! James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#885025: gerbera: FTBFS against upnp 1.8.3
Source: gerbera Version: 1.1.0+dfsg-2 Severity: important Tags: sid buster fixed-upstream Forwarded: https://github.com/gerbera/gerbera/issues/192 Control: block 884635 by -1 Hi, Gerbera FTBFS with pupnp 1.8.3 in experimental as described in the upstream bug report. Fixed in this commit (unfortunately quite large): https://github.com/gerbera/gerbera/commit/55396b59027f12a8da09e81a83c7565051466159 In addition, when the libupnp 1.8 transition begins, gerbera should switch back to build-depending on libupnp-dev (instead of libupnp1.8-dev). James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#885022: mpv: apt remove mpv removes mpv but installs mplayer at the same time, like apt install mplayer would
Control: tags -1 moreinfo Hi, On 22/12/17 22:46, soverysour wrote: > Package: mpv > Severity: normal > > Dear Maintainer, > > Removing the mpv package (installed by default in lxde) removes it like > expected but also installs mplayer exactly like `apt install mplayer` would. I think this is the correct behavior. LXDE does not depend on mpv directly - it depends on smplayer. smplayer requires a copy of either mpv or mplayer to be installed. To ensure this dependency remains satisfied, apt will install mplayer if you manually remove mpv. If you want to remove both mpv and mplayer, you must also remove smplayer. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#885005: vlc: VLC fails to start after upgrade to 3.0.0
Control: tags -1 moreinfo Hi, On 22/12/17 19:57, KTown Knerd wrote: > Package: src:vlc > Version: 3.0.0~rc2-2 > Severity: important > > Dear Maintainer, > > *** Reporter, please consider answering these questions, where appropriate *** > >* What led up to the situation? Upgrade to 3.0.0 >* What exactly did you do (or not do) that was effective (or > ineffective)? console executed vlc. Removed using apt-get remove --purge > and re-installed. Rebooted machine. All resulted in the same error message >* What was the outcome of this action? received error message:VLC media > player 2.2.1 Terry Pratchett (Weatherwax) (revision 2.2.1-0-ga425c42) > vlc: unknown option or missing mandatory argument `--dbus' > Try `vlc --help' for more information. >* What outcome did you expect instead? vlc to load [...] > Versions of packages libvlc-bin depends on: [...] > ii libvlc5 1:2.2.1-dmo10 > > Versions of packages vlc-bin depends on: [...] > ii libvlc5 1:2.2.1-dmo10 > > Versions of packages vlc-plugin-base depends on: [...] > ii libdca0 0.0.5-dmo2 [...] > ii libx264-148 3:0.148.2597+gite86f3a1-dmo1 There is no support for configurations involving third party packages from deb-multimedia.org. Try replacing the versions of the above packages with official copies from the Debian repositories. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#884138: ffmpeg: scientific notation used for speed in progress bar
Hi, On 11/12/17 21:24, Thorsten Glaser wrote: > Package: ffmpeg > Version: 7:3.4-4+b2 > Severity: wishlist > > size= 71457kB time=01:10:25.91 bitrate= 138.5kbits/s speed=1.4e+03x > > I guess my computer is just too fast for that task ☺ Command was: > for x in *.mp4; do ffmpeg -i "$x" -vn -sn -c:a copy ./"${x%.mp4}.wma"; done > So basically just switching containers (WMA is the only one that is > streamable by “ssh otherbox cat foo | mplayer -”, neither M4A nor > MPEG-TS are) and ditching all but the audio track. I can also get this by piping silence into the null sink. It goes really fast if you sent the sample rate stupidly low :) $ ffmpeg -f lavfi -i anullsrc -f null - size=N/A time=00:32:47.49 bitrate=N/A speed=1.34e+03x $ ffmpeg -f lavfi -i anullsrc=r=1 -f null - size=N/A time=18250:48:32.00 bitrate=N/A speed=5.45e+07x The speed output is controlled by a printf format specifier here: https://anonscm.debian.org/cgit/pkg-multimedia/ffmpeg.git/tree/fftools/ffmpeg.c?h=debian/7%253.4.1-1#n1806 I guess you want to change it to "%5.4gx" or something else? The point where we change from normal to scientific notation is fairly arbitrary. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: libgig upload to experimental
Hi, On 27/11/17 12:49, Jaromír Mikeš wrote: > Hi, > > libgig bumped soname so it should go trough transition. > Can someone upload libgig to experimental please? The tarball in pristine-tar does not match the one downloaded by uscan. Do you know why? Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: calf package failed build
Hi, On 27/11/17 13:28, Jonas Smedegaard wrote: > NB! I notice you bumped debhelper compatibility but did not mention why > - please consider reverting that change unless you know of a concrete > need for more modern debhelper version that is available in oldstable, > as tightening makes backporting more complex. Isn't debhelper 10 in oldstable-backports? James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#875192: [simplescreenrecorder] Future Qt4 removal from Buster
Hi, On 26/11/17 13:27, Lisandro Damián Nicanor Pérez Meyer wrote: > El 26 nov. 2017 10:24 a.m., "Lisandro Damián Nicanor Pérez Meyer" < > perezme...@gmail.com> escribió: > > El 26 nov. 2017 10:22 a.m., "James Cowgill" <jcowg...@debian.org> escribió: > > Hi, > [...] > >> The only minor thing I noted is that QPainter is included twince in > 0003*, but >> definitely nothing to worry too much. > > I have applied the patches with some slight modifications: > - Remove the duplicate QPainter include. > - Use DEB_CXXFLAGS_MAINT_APPEND instead of overriding QT5_CFLAGS. > > > It might be worth to note that that > > My son little G came and pressed the right key to send the mail ;-) Not to worry :) > I was about to write that that flag should be already present if the > project is using cmake or qmake. I have not checked the build system. The build system is autotools and it uses pkg-config to discover all the Qt libs and cflags etc. I did do some Google searching and I did notice that CMake would fix this up for you, but I couldn't find anything about this with autotools. I think adding -fPIC is fine for the moment, even if it's only a workaround. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#875192: [simplescreenrecorder] Future Qt4 removal from Buster
Hi, On 25/11/17 17:22, Lisandro Damián Nicanor Pérez Meyer wrote: > On sábado, 25 de noviembre de 2017 05:37:36 -03 gregor herrmann wrote: >> Control: tag -1 + patch > [snip] >> simplescreenrecorder bascially has Qt5 support upstream. >> With a bit of trial I managed to build the package, and the >> binary also seems to work afterwards :) >> >> Find attached my changes >> - as one diff >> - as 3 git patches against HEAD of the packaging repo > > Thanks gregor!!! > > The only minor thing I noted is that QPainter is included twince in 0003*, > but > definitely nothing to worry too much. I have applied the patches with some slight modifications: - Remove the duplicate QPainter include. - Use DEB_CXXFLAGS_MAINT_APPEND instead of overriding QT5_CFLAGS. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#881732: soundconverter: required gstreamer element 'fakesink' not found.
Hi, On 14/11/17 15:43, jEsuSdA wrote: > Package: soundconverter > Version: 3.0.0~beta1-2 > Severity: important > > Dear Maintainer, > > Soundconverter is unable to start with regular user. It starts and works with > root user. > > $ → soundconverter > SoundConverter 3.0.0-beta1 > using GTK version: 3.0 > using Gstreamer version: 1.12.3.0 > using 4 thread(s) > required gstreamer element 'fakesink' not found. > > > Any idea about the problem? I'm not too sure. Can you try running some commands from gstreamer1.0-tools as a test. Eg does this work (should print lots of info): gst-inspect-1.0 fakesink Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: [SCM] audacity/master: Build without sbsms to fix FTBFS on non-x86 archs. (Closes: #882173)
Hi, On 24/11/17 17:39, Jaromír Mikeš wrote: > 2017-11-24 14:37 GMT+01:00 James Cowgill <jcowg...@debian.org>: >> On 24/11/17 11:08, Jaromír Mikeš wrote: >>> 2017-11-20 21:08 GMT+01:00 <mira-gu...@users.alioth.debian.org>: >>> >>>> The following commit has been merged in the master branch: >>>> commit fa79381b2f34c2af651c05a2b433ae20e4ec9007 >>>> Author: Jaromír Mikeš <mira.mi...@seznam.cz> >>>> Date: Mon Nov 20 21:08:12 2017 +0100 >>>> >>>> Build without sbsms to fix FTBFS on non-x86 archs. (Closes: #882173) >>>> >>>> diff --git a/debian/rules b/debian/rules >>>> index 34d3389..6970493 100755 >>>> --- a/debian/rules >>>> +++ b/debian/rules >>>> @@ -21,10 +21,9 @@ configure_flags := \ >>>> --with-midi=system \ >>>> --with-portaudio=system \ >>>> --with-portsmf=system \ >>>> -# --with-sbsms=system \ >>>> --with-soundtouch=system \ >>>> + --without-sbsms \ >>>> $(NULL) >>>> - >>>> %: >>>> dh $@ >>> >>> >>> Hi, >>> >>> maybe even better would be build without sbsms conditionally on all archs >>> except amd64? >>> https://buildd.debian.org/status/package.php?p=audacity=sid >>> >>> Can someone implement such a condition in d/rules? >> >> Your patch doesn't actually fix the bug (use of sse on non-amd64). The >> attached patch allows sbsms to work on all architectures while disabling >> sse on all non-amd64 architectures. >> >> Also note that this line of your original code was wrong: >> # --with-sbsms=system \ >> >> Because there is a line continuation, this will also comment out the >> "--with-soundtouch=system" on the next line. I've fixed that by using >> "--with-sbsms=local" instead. >> > > Thank you James for fixing this. > Can you provide DM flag for me to I can upload audacity do unstable now? Should be done now. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#882384: ffmpeg: Gratuitous valgrind log
Hi, On 25/11/17 04:41, Kingsley G. Morse Jr. wrote: > Hi Carl, > >> Nearly all messages seem to relate to melt, not FFmpeg. > > Thanks for your informed thoughts. > >> Can you reproduce any issues with ffmpeg (the executable)? >> >> The crc issue surprises me a little: Can you produce different >> output files if you use the valgrind option --malloc-fill? > > Sure. > > A script is attached. > > It uses ffmpeg, without melt. > > I also attached two log files from valgrind. > > One ran it with --malloc-fill. > > The other didn't. None of the valgrind errors in your log are from ffmpeg. They all seem to be caused by either glib or gobject. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#882598: libavutil55: segfault after upgrade
Hi, On 24/11/17 15:40, James Cowgill wrote: > Control: severity -1 grave > Control: retitle -1 libavutil55: ABI broken by "add vector_dmac_scalar()" > Control: forwarded -1 https://trac.ffmpeg.org/ticket/6861 > Control: tag -1 - moreinfo > Control: found -1 7:3.4-1 > > On 24/11/17 14:46, Carl Eugen Hoyos wrote: >> Hi! >> >> I created FFmpeg ticket #6861, thank you for the report! >> https://trac.ffmpeg.org/ticket/6861 > > That is not a nice bug. > > I'll have to think about the best way to handle this. I guess we will > have to revert the ABI breaking commit, identify the packages which are > broken (including ffmpeg itself like in this bug), add some Breaks for > them, and finally binNMU them. Alternatively we could force an ABI > transition and rebuild everything, but I'm not sure if I want to do > that (especially since we'll have to do another in a few months anyway). On closer inspection (and reading the upstream bug), the ABI break occurs in the private float_dsp.h header and the only consumers are libavcodec and libavfilter. This makes things much easier than I originally thought since the breakage is internal to ffmpeg. I think this can be fixed by keeping the new ABI and use package dependencies to enforce that it's used only with 3.4. We need to ensure 3.4 libavcodec/libavfilter uses 3.4 libavutil, but this is already guaranteed through the existing symbols system. We then need to prevent 3.4 libavutil from being used with pre-3.4 libavcodec/libavfilter by adding this to libavutil55: Breaks: libavcodec57 (<< 7:3.4), libavcodec-extra57 (<< 7:3.4), libavfilter6 (<< 7:3.4), libavfilter-extra6 (<< 7:3.4) I think that will fix the bug. Can anyone see anything I've missed? Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: [SCM] gsequencer/master: fix missing build dependencies in debian/tests/control
On 24/11/17 17:35, Jonas Smedegaard wrote: > Quoting James Cowgill (2017-11-24 17:18:25) >> On 24/11/17 16:15, jkraehemann-gu...@users.alioth.debian.org wrote: >>> The following commit has been merged in the master branch: >>> commit 99483a11ecdd167d4e87ed74fffd31ca53ff998a >>> Author: Joël Krähemann <jkraehem...@gmail.com> >>> Date: Fri Nov 24 17:13:13 2017 +0100 >>> >>> fix missing build dependencies in debian/tests/control >>> >>> diff --git a/debian/tests/control b/debian/tests/control >>> index a830078..1dfbb57 100644 >>> --- a/debian/tests/control >>> +++ b/debian/tests/control >>> @@ -16,4 +16,24 @@ Depends: >>> xvfb, >>> fakeroot, >>> libgtk2.0-dev, >>> + debhelper, >>> + gettext, >>> + libcunit1-dev, >>> + xauth, >>> + libinstpatch-dev, >>> + libsndfile1-dev, >>> + libsamplerate-dev, >>> + libxml2-dev, >>> + ladspa-sdk, >>> + dssi-dev, >>> + lv2-dev, >>> + libgmp-dev, >>> + libasound2-dev, >>> + libjack-dev, >>> + libpulse-dev, >>> + uuid-dev, >>> + docbook-xsl, >>> + docbook-xml, >>> + gtk-doc-tools, >>> + xsltproc >> >> Probably best to get rid of all of those and use '@builddeps@' instead. > > Please elborate, I don't know that trick. https://anonscm.debian.org/cgit/autopkgtest/autopkgtest.git/tree/doc/README.package-tests.rst#n115 " ``@builddeps@`` will be replaced by the package's ``Build-Depends:``, ``Build-Depends-Indep:``, and ``build-essential``. This is useful if you have many build dependencies which are only necessary for running the test suite and you don't want to replicate them in the test ``Depends:``. However, please use this sparingly, as this can easily lead to missing binary package dependencies being overlooked if they get pulled in via build dependencies. " James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: [SCM] gsequencer/master: fix missing build dependencies in debian/tests/control
Hi, On 24/11/17 16:15, jkraehemann-gu...@users.alioth.debian.org wrote: > The following commit has been merged in the master branch: > commit 99483a11ecdd167d4e87ed74fffd31ca53ff998a > Author: Joël Krähemann <jkraehem...@gmail.com> > Date: Fri Nov 24 17:13:13 2017 +0100 > > fix missing build dependencies in debian/tests/control > > diff --git a/debian/tests/control b/debian/tests/control > index a830078..1dfbb57 100644 > --- a/debian/tests/control > +++ b/debian/tests/control > @@ -16,4 +16,24 @@ Depends: > xvfb, > fakeroot, > libgtk2.0-dev, > + debhelper, > + gettext, > + libcunit1-dev, > + xauth, > + libinstpatch-dev, > + libsndfile1-dev, > + libsamplerate-dev, > + libxml2-dev, > + ladspa-sdk, > + dssi-dev, > + lv2-dev, > + libgmp-dev, > + libasound2-dev, > + libjack-dev, > + libpulse-dev, > + uuid-dev, > + docbook-xsl, > + docbook-xml, > + gtk-doc-tools, > + xsltproc Probably best to get rid of all of those and use '@builddeps@' instead. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#882598: libavutil55: segfault after upgrade
Control: severity -1 grave Control: retitle -1 libavutil55: ABI broken by "add vector_dmac_scalar()" Control: forwarded -1 https://trac.ffmpeg.org/ticket/6861 Control: tag -1 - moreinfo Control: found -1 7:3.4-1 On 24/11/17 14:46, Carl Eugen Hoyos wrote: > Hi! > > I created FFmpeg ticket #6861, thank you for the report! > https://trac.ffmpeg.org/ticket/6861 That is not a nice bug. I'll have to think about the best way to handle this. I guess we will have to revert the ABI breaking commit, identify the packages which are broken (including ffmpeg itself like in this bug), add some Breaks for them, and finally binNMU them. Alternatively we could force an ABI transition and rebuild everything, but I'm not sure if I want to do that (especially since we'll have to do another in a few months anyway). Antoni, you should be able to fix your specific problem by upgrading all the ffmpeg related packages (libav* etc) to 3.4. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: [SCM] gsequencer/master: try to determine host by gcc -v
Hi, On 24/11/17 15:33, jkraehemann-gu...@users.alioth.debian.org wrote: > The following commit has been merged in the master branch: > commit a2b6e5cf9fbdc567e24b607ae9dbdd6ad66c42c0 > Author: Joël Krähemann <jkraehem...@gmail.com> > Date: Fri Nov 24 16:32:49 2017 +0100 > > try to determine host by gcc -v > > diff --git a/debian/tests/ags-integration-test > b/debian/tests/ags-integration-test > index a40d00e..7710498 100644 > --- a/debian/tests/ags-integration-test > +++ b/debian/tests/ags-integration-test > @@ -3,5 +3,6 @@ set -e > > dpkg-source --before-build `pwd` > dpkg-buildpackage -rfakeroot --target=pre-integration-test > -export LD_LIBRARY_PATH=/usr/lib/x86_64-linux-gnu/gsequencer:$LD_LIBRARY_PATH > +export HOST=`gcc -v - 2>&1 | awk 'match($0, /--host=([a-z0-9_-]+)/,m) { > print m[1]; }'` > +export LD_LIBRARY_PATH=/usr/lib/$HOST/gsequencer:$LD_LIBRARY_PATH > xvfb-run --server-args="-screen 0 1920x1080x24" make ags-integration-test This is broken in so many ways. Use $(dpkg-architecture -qDEB_HOST_MULTIARCH) James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#882601: sox: bug-presubj contains ill formed english
Package: sox Version: 14.4.2-2 Severity: normal Hi, Currently bug-presubj contains this: > If the bug you gonna report is rather upstream > please consider to report it to upstream developers. > sox-de...@lists.sourceforge.net This is not grammatically correct English. I think this better: " If the bug you are about to report is not Debian specific, please consider reporting it to the upstream developers at: sox-de...@lists.sourceforge.net " As a side note (since I guess this is a maintainer decision), I think that telling users in general to report bugs upstream is a bad idea. Often it is difficult to tell if a bug is Debian specific. I does depend on how accepting an upstream is - I know quite a few upstreams which do not like bugs reported for older versions which Debian often uses. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#882598: libavutil55: segfault after upgrade
Control: tags -1 moreinfo Hi, On 24/11/17 13:38, Antoni Villalonga wrote: > Package: libavutil55 > Version: 7:3.4-3 > Severity: normal > > Dear Maintainer, > > After upgrade to sid ffmpeg tools start to segfault like this: > [370710.121304] read_thread[9924]: segfault at 7feff8051ce0 ip > 7fef350b7943 sp 7fef07386ea8 error 4 in > libavutil.so.55.78.100[7fef35069000+67000] > > After downgrading libavutil55 to 7:3.3.4-2+b3 ffmpeg tools starts working > again. Please can you provide the full ffmpeg command and any input files you are using. What is "read_thread"? Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#882599: sox: dpkg-source complains about 0005-CVE-2017-15371.patch
Source: sox Version: 14.4.2-2 Severity: minor Hi, dpkg-source complains when unpacking sox 14.4.2-2: > dpkg-source: info: extracting sox in sox-14.4.2 > dpkg-source: info: unpacking sox_14.4.2.orig.tar.bz2 > dpkg-source: info: unpacking sox_14.4.2-2.debian.tar.xz > dpkg-source: info: applying 0001-fix-build.patch > dpkg-source: info: applying 0003-spelling.patch > dpkg-source: info: applying 0005-CVE-2017-15371.patch > dpkg-source: warning: unexpected end of diff > 'sox-14.4.2/debian/patches/0005-CVE-2017-15371.patch' > dpkg-source: info: applying 0006-CVE-2017-11358.patch > dpkg-source: info: applying 0007-CVE-2017-15370.patch > dpkg-source: info: applying 0008-CVE-2017-11332.patch > dpkg-source: info: applying 0009-CVE-2017-11359.patch > dpkg-source: info: applying 0010-wavpack_check_errors.patch > dpkg-source: info: applying 0011-lintian-man-sox.patch > dpkg-source: info: applying 0012-xa-validate-channel-count.patch > dpkg-source: info: applying 0013-CVE-2017-15372.patch > dpkg-source: info: applying 0014-CVE-2017-15642.patch > dpkg-source: info: applying 0015-Handle-vorbis_analysis_headerout-errors.patch The patch does apply though, so this is only a minor bug. James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Re: [SCM] audacity/master: Build without sbsms to fix FTBFS on non-x86 archs. (Closes: #882173)
Hi, On 24/11/17 11:08, Jaromír Mikeš wrote: > 2017-11-20 21:08 GMT+01:00 <mira-gu...@users.alioth.debian.org>: > >> The following commit has been merged in the master branch: >> commit fa79381b2f34c2af651c05a2b433ae20e4ec9007 >> Author: Jaromír Mikeš <mira.mi...@seznam.cz> >> Date: Mon Nov 20 21:08:12 2017 +0100 >> >> Build without sbsms to fix FTBFS on non-x86 archs. (Closes: #882173) >> >> diff --git a/debian/rules b/debian/rules >> index 34d3389..6970493 100755 >> --- a/debian/rules >> +++ b/debian/rules >> @@ -21,10 +21,9 @@ configure_flags := \ >> --with-midi=system \ >> --with-portaudio=system \ >> --with-portsmf=system \ >> -# --with-sbsms=system \ >> --with-soundtouch=system \ >> + --without-sbsms \ >> $(NULL) >> - >> %: >> dh $@ > > > Hi, > > maybe even better would be build without sbsms conditionally on all archs > except amd64? > https://buildd.debian.org/status/package.php?p=audacity=sid > > Can someone implement such a condition in d/rules? Your patch doesn't actually fix the bug (use of sse on non-amd64). The attached patch allows sbsms to work on all architectures while disabling sse on all non-amd64 architectures. Also note that this line of your original code was wrong: # --with-sbsms=system \ Because there is a line continuation, this will also comment out the "--with-soundtouch=system" on the next line. I've fixed that by using "--with-sbsms=local" instead. James diff --git a/debian/rules b/debian/rules index 69704937..16108db4 100755 --- a/debian/rules +++ b/debian/rules @@ -1,5 +1,7 @@ #!/usr/bin/make -f +include /usr/share/dpkg/architecture.mk + export DEB_LDFLAGS_MAINT_APPEND=-Wl,-z,defs -Wl,--as-needed export DEB_BUILD_MAINT_OPTIONS = hardening=+all @@ -21,9 +23,16 @@ configure_flags := \ --with-midi=system \ --with-portaudio=system \ --with-portsmf=system \ + --with-sbsms=local \ --with-soundtouch=system \ - --without-sbsms \ $(NULL) + +ifeq ($(DEB_HOST_ARCH_CPU),amd64) +configure_flags += --enable-sse=yes +else +configure_flags += --enable-sse=no +endif + %: dh $@ signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#882454: gerbera: FTBFS on hurd-i386: Gerbera was unable to deterimine the host OS.
Control: tags -1 fixed-upstream Hi, On 23/11/17 03:53, Aaron M. Ucko wrote: > Source: gerbera > Version: 1.1.0+dfsg-2 > Severity: important > Tags: upstream > Justification: fails to build from source > User: debian-h...@lists.debian.org > Usertags: hurd-i386 > > Builds of gerbera for hurd-i386 (admittedly not a release > architecture) have been failing per the below excerpt from > https://buildd.debian.org/status/fetch.php?pkg=gerbera=hurd-i386=1.1.0%2Bdfsg-2=1511312309=0: > > CMake Error at CMakeLists.txt:314 (message): > Gerbera was unable to deterimine the host OS. Please report this. Value > of CMAKE_SYSTEM_NAME: GNU > > Could you please take a look? With any luck, the Linux settings will > make a decent starting point. Should be fixed upstream in: https://github.com/gerbera/gerbera/commit/29149374c3684659f73f19cb8c1486ab4258c1be Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#882384: ffmpeg: Gratuitous valgrind log
Hi, On 22/11/17 00:10, Kingsley G. Morse Jr. wrote: > Package: ffmpeg > Version: 7:3.4-3 > Severity: normal > > Hey guys, > > Thank you very much for maintaining Debian's > ffmpeg package. > > It's been an enormous source of fun. > > In the course of chasing down a different bug, I > had the opportunity to run "melt" with valgrind. > > Valgrind reported more ffmpeg problems than I > expected. > > It's log is attached. I think you forgot to attach the log? Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#845874: fixed in gerbera
Source: gerbera Source-Version: 1.0.0-1 This is fixed in gerbera 1.0.0. It is not fixed in mediatomb, but mediatomb is due to be removed anyway. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#841224: fixed in gerbera
Source: gerbera Source-Version: 1.0.0-1 This is now fixed in gerbera 1.0.0 which uses the system copy of libupnp 1.8. Mediatomb is not shipped in stable or oldstable, so the security bugs don't appear there. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#870936: mediatomb: should mediatomb be removed from unstable?
Control: reassign -1 ftp.debain.org Control: retitle -1 RM: mediatomb -- RoM; dead upstream, obsoleted by gerbera Hi, On 06/08/17 19:00, James Cowgill wrote: > On 06/08/17 09:50, Lucas Nussbaum wrote: >> Source: mediatomb >> User: debian...@lists.debian.org >> Usertags: qa-removals-post-stretch >> >> Hi, >> >> Following a discussion[1] on the debian-qa@ mailing list on packages that >> missed both jessie and stretch, I am proposing the removal of this package >> from >> unstable, because: >> >> it was in unstable at the time of the stretch freeze >> but wasn't part of stretch >> AND >> it was in unstable at the time of the jessie freeze >> but it wasn't part of jessie >> AND >> it is still not in testing >> AND >> it was not uploaded since the beginning of 2017. > > The answer is: yes it definitely should be removed. > > However, there is a replacement fork called gerbera (which I haven't > finished packaging yet) and I don't want to lose all the open bugs > against mediatomb which may also apply to gerbera. I'm going to try and > finish it some time during DebConf so hopefully this won't be an issue... gerbera is now in unstable, and I've reassigned all of mediatomb's bugs to it. I therefore think mediatomb can be removed now. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
Bug#882224: bs1770gain: enable dh-autoreconf
Source: bs1770gain Version: 0.4.12-2 Severity: wishlist Hi, bs1770gain contains a build-dependency on dh-autoreconf, but since it uses compat 9 and does not enable it manually, it is never used. This looks like an oversight to me. Thanks, James signature.asc Description: OpenPGP digital signature ___ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers