Hi,
Simon Ruderich writes:
> You've disabled most of the hardening in debian/patches, please
> re-enable it.
>
> The attached patch fixes the build with -Werror=format-security
> (if possible it should be sent to upstream), therefore the
> following hardening setting should work fine:
>
> ex
Package: hardening-wrapper
Version: 2.3
Severity: normal
On Testing trying to check version of gcc-4.x compilers
works fine except for 4.8 which gives the error :
/usr/bin/g++-4.8: not found (hardened-c++ could not find target)
--- System information. ---
Architecture: amd64
Kernel: Linu
Control: affects -1 + gnunet-gtk
On Fri, May 24, 2013 at 01:11:36AM +0200, Christoph Anton Mitterer wrote:
> 1) No GNOME apps start anymore (tried evolution, the terminal, control
> center) but segfault
>see the attached .xsession-errors
I tried to reproduce this. Not being a GNOME user, I l
Package: synaptic
Version: 0.80.1
Severity: critical
--- Please enter the report below this line. ---
Worked normal in 0.80.0 but today after updating to 0.80.1 i get
following error
(synaptic:28118): Gtk-WARNING **: Theme parsing error:
gtk-widgets.css:289:20: Not using units is deprecated.
[Summary of previous mails: we are discussing how/when to move openmotif
to motif].
On 23-05-13 08:43, Luca Falavigna wrote:
> 2013/5/22 Paul Gevers :
>> Ok. Then we just have to wait until the RT grants us a transition slot.
>> Will keep you updated.
>
> I don't think we need it for openmotif ->
Package: packagekit-tools
Version: 0.7.6-3
Severity: normal
Dear Maintainer,
When updating with 'pkcon' (or the associated GUI) a dependency resolution
problem is raised. 'apt-get' and 'aptitude' don't have this issue.
Example :
$ pkcon update
Updating system [=
Dear Debian maintainer,
The Debian internationalisation team and the Debian English
localisation team will soon begin the review of the debconf
templates used in horizon.
This review takes place for all packages that use debconf to interact with
users and its aims are:
- to improve the use of Eng
Package: xserver-xorg-video-intel
Version: 2:2.19.0-6
Followup-For: Bug #680514
Dear Maintainer,
I too have found the EQ Overflow message in /var/log/gdm3 directory,
after a lockup this morning. Recently I find I experience the problem quite
frequently
(once every other day) normally relatively
Package: update-notifier
Version: 0.99.3debian11+perrm2
Severity: normal
Dear Maintainer,
$ dpkg -S /etc/xdg/autostart/update-notifier.desktop
update-notifier: /etc/xdg/autostart/update-notifier.desktop
$ dpkg -L update-notifier|grep bin
No idea if there is some transition going on and that upda
Hi
On Thu, May 23, 2013 at 10:57:35PM -0700, Dana Jacobsen wrote:
> I just found this report of build failures on the Debian mailing list -- I
> had not seen these before. I managed to reproduce it on a Power7 machine,
> and found the fix.
>
> I see that the issue came up when I switched the ran
Confirming that
-hosts: files mdns4_minimal [NOTFOUND=return] dns mdns4
+hosts: files mdns4_minimal [NOTFOUND=return] dns
[NOTFOUND=return] mdns4
fixes the problem of slow connecting to my Debian machine over SSH in an
internal network.
-Timo
--
To UNSUBSCRIBE, email to debia
Package: bacula-sd
Version: 5.2.6+dfsg-9
Severity: grave
Tags: upstream
Since the upgrade to 5.2.6 I have a serious problem with bacula on my
debian machine. All my backups error with Error: bsock.c:389 Write error
sending 65562 bytes to Storage daemon (broken pipe).
The is a backup done from mac
I just found this report of build failures on the Debian mailing list -- I
had not seen these before. I managed to reproduce it on a Power7 machine,
and found the fix.
I see that the issue came up when I switched the ranged moebius return
value from an IV* (long *) to char*. On every other mach
Please, configure your flags, using this command [1]:
pkg-config --cflags eigen3
Thanks,
Anton
[1] http://www.freedesktop.org/wiki/Software/pkg-config/
2013/5/22 Grześ Andruszkiewicz :
> Hi,
>
> In this case it should be:
> #include
>
> otherwise it just doesn't compile.
>
> Regards,
> Grzego
On Fri, 24 May 2013, Juha Heinanen wrote:
> i just ungraded from squeeze to wheezy and still got the email warning:
>
> /etc/cron.daily/amavisd-new:
> Please run this cronjob as user amavis
> run-parts: /etc/cron.daily/amavisd-new exited with return code 1
>
> i didn't find anything about cron i
Package: vnc4server
Version: 4.1.1+X4.3.0-37.1
Severity: wishlist
User: debian-...@lists.debian.org
Usertags: debian-edu
It would be great and good for security if vnc4server supported using a
local unix socket to connect to VNC, when using VNC to provide several
desktops on the local machi
block 704032 by -1
thanks
Dear Maintainer,
The default Boost is soon to change to version 1.53 (see #704032).
Unfortunately, your package fails to build because 1.53 has
removed the Debian-specific "libboost_foo-mt" libraries.
Please change link lines of -lboost_foo-mt to simply -lboost_foo.
-S
On Thu, May 23, 2013 at 10:37 PM, Steve M. Robbins wrote:
> Package: 0ad
> Severity: normal
>
> bug-mt.txt
Err, I suppose you were intending to attach some sort of file called
"bug-mt.txt"?
Regards,
Vincent
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject o
Package: 0ad
Severity: normal
bug-mt.txt
-- System Information:
Debian Release: jessie/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.8-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8
i just ungraded from squeeze to wheezy and still got the email warning:
/etc/cron.daily/amavisd-new:
Please run this cronjob as user amavis
run-parts: /etc/cron.daily/amavisd-new exited with return code 1
i didn't find anything about cron in amavisd-new/NEWS.Debian.
amavisd-new package contains
tag 702392 confirmed patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu ubuntu-patch saucy
thanks
Vincent Danjean [2013-03-06 0:53 +0100]:
> dosfslabel segfault when creating a label. I tested it on real device and
> on a file (formated with mkdosfs before). Downgrading to 3.0.13-1
On Thu, 2013-05-23 at 23:27 +0200, Joachim Breitner wrote:
> thanks! Let me know if my code causes any trouble.
From IRC:
pabs: always displaying the config div of the ddpo is quite
annoying on "small" screens
I'm inclined to agree, could you make a patch that hides it by default
but shows it
On 2013-05-23 13:32, Markus Koschany wrote:
Hello and thanks for your bug report.
After reading the bug report twice, i'm not sure whether you have
reported a bug at all.
The fastest way to retry a level is to click the left mouse button and
in my opinion it does not really matter if you are a
Libs are in place now, and wine programs work. But there is at least one file
with incorrect path left - /usr/share/wine-unstable/wine.inf, which wine tries
to look in /usr/share/wine/
When starting wine app:
wine: failed to update /home/username/.wine with
/usr/lib/i386-linux-gnu/wine-unstable
Hello all,
Vincent Danjean [2013-03-06 0:53 +0100]:
> dosfslabel segfault when creating a label. I tested it on real device and
> on a file (formated with mkdosfs before). Downgrading to 3.0.13-1 (current
> version in testing) fix the problem.
I confirm this problem, it's exhibited in udisks2's
Am 21.05.2013 02:54, schrieb Ben Hutchings:
>
> A kernel installation should run update-grub anyway, so running
> that only 'solves the problem' until the next security update that
> doesn't get properly installed.
For some reason in file /etc/kernel-img.conf the entry do_bootloader
was set to "
Package: x11-xserver-utils
Version: 7.7~3
Severity: wishlist
File: /usr/bin/xrandr
--brightness mentioned on man page, but not in -h help.
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Package: php5-common
Seen during upgrade
Preparing to replace php5-common 5.4.4-13 (using
.../php5-common_5.5.0~rc1+dfsg-1_i386.deb) ...
Unpacking replacement php5-common ...
Undefined subroutine &conffile::abs_path called at /usr/bin/ucfq line 529,
line 13.
--
To UNSUBSCRIBE, email to debia
Package: grub-pc
Version: 2.00-14
Setting up grub-pc (2.00-14) ...
Installing new version of config file /etc/kernel/postinst.d/zz-update-grub ...
Installing new version of config file /etc/kernel/postrm.d/zz-update-grub ...
Undefined subroutine &conffile::abs_path called at /usr/bin/ucfq line 529
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Package: firestarter
Version: 1.0.3-11
This package has been unmaintined upstream for years, and they closed
all bugs as wontfix and discontinued it a year or two ago. Please remove.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)
C
Package: sympa
Version: 6.1.11~dfsg-5
Severity: minor
Tags: patch
Hi,
Thanks for fixing #630384, the situation improved a lot. Unfortunately,
the find operation can still take a while, and it’s pretty disturbing to
get an upgrade stuck for 15 minutes without any relevant message.
May I again adv
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
This fix does not appear to be working, and the package does not seem
to use a proper patch management system so I can't see where the
actual fix is. Upstream also appears to be dead. Is it time to
retire this package?
-BEGIN PGP SIGNATURE-
Package: sponsorship-requests
Severity: normal
Dear mentors,
I am looking for a sponsor for my package "irssi-scripts"
* Package name: irssi-scripts
* Version : 20130508
* URL: http://scripts.irssi.org/
* License : GPL-2.0+
Section
tags 700287 - moreinfo
thanks
Hi Markus,
On 2013-05-23 13:11, Markus Koschany wrote:
tags 700287 moreinfo
thanks
Hello and thanks for your bug report.
After reading the whole bug report, it seems to me, you both have not
reached a conclusion yet. I'm inclined to work on this bug as long as we
Package: debsecan
Version: 0.4.16+nmu1
Severity: normal
Hi,
debsecan does not appear to support multiarch please see the following commands:
$ sudo debsecan --suite wheezy --format packages | grep libc6-i686
libc6-i686
$ aptitude show libc6-i686
E: Unable to locate package libc6-i686
$ aptitud
Package: debsecan
Version: 0.4.16+nmu1
Severity: important
Hi,
Running the following command gives the following response:
$ debsecan --suite jessie --format packages
Usage: debsecan OPTIONS...
debsecan: error: option --suite: invalid choice: 'jessie' (choose from 'woody',
'sarge', 'etch', 'le
Package: xorriso
Version: 0.5.6.pl00-2
Severity: wishlist
libisoburn and xorriso novelties:
* Bug fix: Disk paths with components '.' or '..' could be mistaken for
directories.
* Bug fix: -as mkisofs -print-size failed with -isohybrid-mbr and a single boot
image. Regression introduced by libis
Source: gettext
Version: 0.18.1.1-10
Severity: wishlist
Tags: patch
The attached patch adds the ability to bootstrap functional gettext packages,
in the early stages of a system bootstrap where it would be unreasonable to
expect the availability of complex things like Java or git. (As for the o
Source: file
Version: 1:5.14-2
Severity: wishlist
Tags: patch
As the subject says: the attached patch adds the ability to bootstrap the file
package at an early stage of a system bootstrap where Python is not yet
available. Also, since this is a bootstrap, it makes sure to run the version
of f
Source: debhelper
Version: 9.20130518
Severity: wishlist
Tags: patch
With the attached patch, I can run "USE_NLS=no dpkg-buildpackage -d -b -uc" on
the debhelper source package without po4a installed.
(The context: in my pbuildd project, I'm trying to make it possible to
bootstrap the Debian ar
Package: chkrootkit
Version: 0.49-4.1
Followup-For: Bug #709421
Ironically, this message also called attention to a silent bug in the
same code's handling of *older* 3.x kernels: because it was only
looking at the second component, it treated anything prior to 3.6 as
prior to *2.6*. That obviousl
X-Debbugs-Cc: der...@glyphandcog.com
Package: poppler-utils
Version: 0.20.5-3
File: /usr/bin/pdftotext
$ wget https://consumer.fda.gov.tw/Files/doc/2013052320351853929.pdf
$ pdftotext /tmp/2013052320351853929.pdf
Syntax Error: Expected the optional content group list, but wasn't able to find
it,
On Thu, May 23, 2013 at 01:13:53PM +0200, Arno Töll wrote:
> To minimize the breakage to our Sid users, we'd ask all of you having a
> transitioned package ready in Experimental, to make an upload to Sid
> AFTER the 13:52 UTC dinstall, and BEFORE 19:52 UTC [1].
Local time, that's between 1:52am an
Package: maildrop
Severity: normal
Tags: upstream
Hi.
maildirmake -f makes subfolders for maildirs. If these use non ASCII chars (as
well as
some special ASCII chars), a special encoding must be used
(http://www.courier-mta.org/maildir.html#id351803)
maildirmake -f doesn't do this encoding, e
Package: libgtkglext1-dev
Version: 1.2.0-3
Severity: normal
The .pc files require pangox.pc but libpangox-1.0-dev is not a dependency.
$ pkg-config --libs gdkglext-1.0
Package pangox was not found in the pkg-config search path.
Perhaps you should add the directory containing `pangox.pc'
to the PK
Control: tags -1 + confirmed
Control: merge 360338 -1
On 23 May 2013 23:41, Sebastian Dalfuß wrote:
> Hello.
>
> On Thu, May 23, 2013 at 04:50:08PM +0200, Michael Vogt wrote:
>> Could you please attach a screenshot of the window that breaks the
>> sources.list ? What steps will I need to take to
Package: anacron
Version: 2.3-19
Severity: important
Dear Maintainer,
I have a fresh wheezy install and there are several items in
/etc/cron.daily/:
root@spot:/home/martins# ls -l /etc/cron.daily/
total 56
-rwxr-xr-x 1 root root 311 May 23 2012 0anacron
-rwxr-xr-x 1 root root 14985 Ma
Package: libsasl2-2
Version: 2.1.25.dfsg1-6
Severity: important
Tags: security upstream
Some SASL implementations allow the server to specify a list of mechanisms
it supports. The client should then pick the strongest mechanism it supports
to authenticate. For example, when PLAIN and SCRAM-SHA-1 a
Package: virtualbox
Version: 4.2.10-dfsg-1
Severity: normal
Since upgrade to virtualbox 4.2.10 I've noticed that shared folders no
longer working -- there is no response when I try to open
"\\vboxsvr\myhome" (window just hangs). In virtualbox 4.1.18 and prior
versions I could use this functionalit
Package: jackd
Version: 5
Severity: normal
Running jackd with the "netone" backend causes jackd to crash.
$ jackd --no-realtime -d netone
jackdmp 1.9.10
Copyright 2001-2005 Paul Davis and others.
Copyright 2004-2013 Grame.
jackdmp comes with ABSOLUTELY NO WARRANTY
This is free software, and you a
Hello,
On Wed, May 15, 2013 at 04:00:58PM +0200, Bill Allombert wrote:
> I see. In the meantime, is there a way to force gcc-4.8 to use older dwarf
> format supported by gdb ?
This should be fixed with version in unstable gdb 7.6.
Replying to your question, please see -gdwarf- gcc option.
Package: gnome-themes-standard-data
Version: 3.8.1-1
Severity: serious
Hi,
gnome-themes-standard-data currently fails to install in unstable. In a
clean chroot:
| # apt-get install gnome-themes-standard-data
| Reading package lists... Done
| Building dependency tree
| Reading state information...
* Scott Kitterman:
> I did miss that, but Python only maintains ABI per python version, so you
> need
> a separate .so for python3.2 and 3.3 to support both. So something is wrong
> in that that one .so can't support both 3.2 and 3.3. You'll see that with my
> patch, dh_python3 does act on
Package: libgtk-3-0
Version: 3.8.2-1
Severity: critical
Justification: breaks unrelated software
Hi.
The most recent upgrade of GTK (or GAIL or the GNOME themes) seem to break
nearly
everything in GNOME.
1) No GNOME apps start anymore (tried evolution, the terminal, control center)
but segfau
Jan,
On 23 May 2013 20:13, Jan Niehusmann wrote:
> I suspect this is an incompatibility between psi (or some lib psi uses)
> and glibc 2.17, as that's the only library version which is different in
> testing.
>
>> Versions of packages psi depends on:
>> ii libc62.17-3
> [...]
>
Package: sponsorship-requests
Severity: normal
Package: sponsorship-requests
Severity: normal [important for RC bugs, wishlist for new packages]
Dear mentors,
I am looking for a sponsor for my package "mapcatcher",
ITP: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=589254
Package: bitlbee
Version: 3.2-1.1
Severity: normal
Dear Maintainer,
When trying to log onto Twitter, Bitlbee receives an error "Logging in:
Error: Could not retrieve /1.1/users/lookup.json: 403 Forbidden." This
issue has been fixed upstream: see ticket #1064.
http://bugs.bitlbee.org/bitlbee/ticke
Control: tags -1 + pending
On Wed, 2013-05-22 at 22:26 +0100, Adam D. Barratt wrote:
> On Mon, 2013-05-06 at 19:34 +0200, Ondřej Surý wrote:
> > version number changed to -14+deb7u1 (and merged changelogs for -15
> > and -16 releases).
>
> Please go ahead; thanks.
Flagged for acceptance.
Regard
Control: tags -1 + pending
On Thu, 2013-05-23 at 05:26 +0200, Petter Reinholdtsen wrote:
> [Adam D. Barratt]
> > Please go ahead; thanks.
>
> Great. Uploaded.
Flagged for acceptance.
Regards,
Adam
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsu
Package: gnome-themes-standard
Version: 3.8.0-1
Severity: wishlist
Please reinstate the HighContrastInverse theme.
The solution the GNOME developers propose in the changelog of using
a compositor for inversion fails from a usability standpoint for the
reasons analogous to why fiddling with their
Recent uploads have changed things round a bit. The package still FTBFS
on most architectures but it does so in a different way.
make[1]: Leaving directory
`/build/buildd-llvm-toolchain-3.2_3.2repack-6-s390x-gQ5TrE/llvm-toolchain-3.2-3.2repack'
dh_install -a
cp: cannot stat 'debian/tmp/usr/bi
Package: network-manager
Version: 0.9.4.0-10
Severity: serious
Hi. This is my first bug report, so i'm sorry if it's not up to
standards.
I recently helped a friend to install wheezy from the xfce live-cd, and
after installation the wired network-card used during installation was
unmanaged by net
On Fri, 2013-05-24 at 00:04 +0200, Axel Beckert wrote:
> please remove the zsh-beta source package from Sid. (AFAIK it should be
> removed from Testing automatically afterwards, too.)
In general, yes. However, britney's one step ahead of you and already
dropped it yesterday morning. :-)
Regards,
Package: ftp.debian.org
Severity: normal
Dear FTP-Masters,
please remove the zsh-beta source package from Sid. (AFAIK it should be
removed from Testing automatically afterwards, too.)
The zsh source package in Sid and Testing now builds transitional
packages from zsh-beta and zsh-beta-doc toward
Source: popt
Version: 1.16-7
Severity: wishlist
As the subject says: since popt switched to "3.0 (quilt)", there's no need
for a Build-Depends on quilt anymore.
(The context I found this in: my pbuildd project aims to bootstrap the
Debian archive from source packages and a minimal starting chroot
Package: subunit
Version: 0.0.10-2
Severity: normal
Tags: patch
All of the python or python3 code appears to be pure python. There's no need
to depend on the -dev packages or use python{3}-Provides. Patch attached.
diff -Nru subunit-0.0.10/debian/changelog subunit-0.0.10/debian/changelog
--- sub
Russ Allbery dixit:
>Thorsten Glaser writes:
>> If not… well, since snapshot.d.o is an official service now, I’d say,
[…]
>Hm, that's an interesting point, indeed.
>> Are those source packages (that would not otherwise be kept in the
>> archive) released along with “stable”, despite having no bi
On Thu, 23 May 2013 17:03:49 +0200, Jakub Wilk wrote:
> What Lintian could do is to parse the full license text, see if it
> matches any standard license, and if it does then emit the tag. But
> that's far from trivial to implement.
Ack.
Maybe libdebian-copyright-perl (and/or libsoftware-license
Hi,
On Sat, Nov 14, 2009 at 12:34:55AM +0100, Petr Baudis wrote:
> Package: libc-bin
> Version: 2.10.1-5
> Severity: wishlist
>
> The Debian glibc package introduces a number of custom manual pages
> which are not in any kind of upstream and thus cannot be shared with
> the rest of Linux communit
Package: wnpp
Severity: wishlist
Owner: Mike Miller
* Package name: deltarpm
Version : 3.5
Upstream Author : Michael Schroeder
* URL : http://gitorious.org/deltarpm/deltarpm
* License : BSD
Programming Lang: C, Python
Description : Tools to create and
Am Dienstag, den 21.05.2013, 00:10 +0900 schrieb Osamu Aoki:
> Hi,
>
> Since my debiandoc-sgml depends on this package and this has been
> orphaned, I decided to take over and updated package in modern style.
>
> As for this bug, http://bugs.debian.org/305736
>
> in message #20:
>
> ---
Thorsten Glaser writes:
> There’s something else about Built-Using:
> Are those source packages (that would not otherwise be kept in the
> archive) released along with “stable”, despite having no binary
> packages?
Yes, I believe that's how the implementation works.
> If not… well, since snaps
On Thu, 23 May 2013, Steve Langasek wrote:
> FWIW, my understanding is that this is one of the issues that GPLv3
> attempted to bugfix with its clarification of the "System Libraries"
> exception. So to the extent that this is an issue, I believe it only
> applies to works that are GPLv2 only.
Rig
Russ Allbery dixit:
>of the GPLv2, the GPLv2 itself requires that all of the *source* for the
>binary be distributed under the GPLv2. And the libgcc *source* is only
>available under the GPLv3, and the runtime exception doesn't allow one to
>distribute the *source* under different terms, only the
Niels Thykier writes:
> In the tag description or the tag "extra"? For the former, the problem
> might be that the list is (or could be) architecture dependent. For the
> latter, it would need some changes to hardening-info{,-helper} +
> c/binaries. But also some consideration to handle 5+ unp
Steve Langasek writes:
> FWIW, my understanding is that this is one of the issues that GPLv3
> attempted to bugfix with its clarification of the "System Libraries"
> exception. So to the extent that this is an issue, I believe it only
> applies to works that are GPLv2 only.
Indeed, anything in
Hi Simon,
:) Yeah, we are pretty small down here...
Thanks for the update and thanks very much for your assistance in getting
the mirror running.
Cheers.
Steve.
Steve Noorderbroek
C.T.O.
Telsat Broadband Limited
http://www.telsatbb.vu
-Original Message-
From: Simon Paillard [mailto
Hi,
Am Donnerstag, den 23.05.2013, 22:06 +0800 schrieb Paul Wise:
> On Mon, May 20, 2013 at 5:31 PM, Joachim Breitner wrote:
> > ok, I’ll work on it as soon as the other patches have been reviewed and
> > merged (to avoid having to re-do the separate table work afterwards).
>
> Patches reviewed,
Package: ftp.debian.org
Severity: normal
Owner: pkg-xfce-de...@lists.alioth.debian.org
Hi,
xfmpc was once a small media player for Xfce desktop environment. There
was no update since ages and it seems nobody is really interested in it.
With the transition to Xfce 4.10, we think it'd be best to l
Package: golang
Version: 2:1.1-1
Severity: wishlist
While trying to get a ~2yr old Go project to build, I noticed that go
fix didn't want to rewrite anything though it was clear that the project
hat been written for the pre-1.0 standard library.
It would be nice if the rules that were part of the
On 2013-05-23 10:09, Russ Allbery wrote:
> Niels Thykier writes:
>
>> To be honest, I have been considering if we should reduce and disable
>> this tag like we did with the stack-protector tag. In terms of
>> accuracy, blhc beats hardening-check/lintian by miles. Even if
>> people/upstreams t
Package: ftp.debian.org
Severity: normal
Owner: pkg-xfce-de...@lists.alioth.debian.org
Hi,
again as part of the Xfce 4.10 transition, xfce4-utils package has been
obsoleted.
No package in unstable should depend on it anymore, and it can be safely
removed.
Thanks in advance,
--
Yves-Alexis
--
Package: python-keystoneclient
Version: 2012.1-3
Severity: important
Tags: security patch upstream
Hi,
the following vulnerability was published for python-keystoneclient.
CVE-2013-2013[0]:
OpenStack keystone password disclosure on command line
Upstream patch is at [1] and introduces the abilit
Russ Allbery dixit:
>If we do need to preserve source for the libcc and libc components
>incorporated into binary builds, that's going to mean Built-Using for
>nearly the whole archive, and a lot of complexity on the DAK side. That's
>obviously not very desirable. We would rather decide that we
Russ Allbery dixit:
>At the time, though, the assumption was that Built-Using would be a fairly
>rare thing that would only be used for those few score packages that were
>Build-Depending on *-source packages.
And statically linked executables, since that made it into the
Policy wording; or possi
On Thu, May 23, 2013 at 01:34:08PM -0700, Russ Allbery wrote:
> In a discussion of mksh-static (see http://bugs.debian.org/709382), the
> question of GPL compliance for the source code of the components of libgcc
> and libc that are incorporated into binaries came up. mksh-static of
> course links
Package: installation-reports
Boot method:
http://cdimage.debian.org/cdimage/daily-builds/daily/arch-latest/i386/iso-cd/debian-testing-i386-netinst.iso
Date: 5-23-2012 3pm
Machine: DT Research WebDT366 "AMD Geode SOC"
Processor: Geode LX800
Memory: 512MB RAM
Partitions: one root partition on a 4
Hello Felix,
Thank you for your corrections. We're almost there, but I hope that
few more pedantic issues could be fixed... :)
> I take it it is not customary to provide overrides for "pedantic"
> warnings?
You can do it and on some occasions I overridden some pedantic
warnings to acknowledge t
Package: libchart-perl
Version: 2.4.5-1
Severity: normal
Hello Debian Perl Group,
popcon.debian.org has been updated to wheezy and now
the chart are ugly: there are useless dots below the lines
and I did not manage to get rid of them.
I join a test case. You can compare the result with squeeze a
Jonathan Nieder writes:
> Russ Allbery wrote:
>> mksh-static of course links statically and therefore pulls in
>> substantial portions of library source, but there are parts of libgcc
>> and possibly libc that are always incorporated into binaries, even ones
>> that are dynamically linked.
> Are
Russ Allbery wrote:
>mksh-static of
> course links statically and therefore pulls in substantial portions of
> library source, but there are parts of libgcc and possibly libc that are
> always incorporated into binaries, even ones that are dy
Source: html2text
Version: 1.3.2a-15
Severity: wishlist
Tags: patch
Here's a patch which drops the quilt Build-Depends, and instead uses the
3.0 (quilt) source format to let dpkg-source take care of applying the
patches. (It also includes a fix to make debian/rules obey
DEB_BUILD_OPTIONS=nocheck.
Thorsten Glaser writes:
> (Were legal reasons the driving force behind adding Built-Using in the
> first place?)
Yes, although not this particular issue. There are a set of packages that
we build that use other packages as source during the build process. The
most common are cross-compilation
On Thu 2013-05-23 11:27:20 -0400, Daniel Kahn Gillmor wrote:
> i will repeat the above test once that rebuild terminates (either with
> success or failure) and report back.
it looks like i'm running into the same problem, even with --disable-jemalloc:
(sid_ia64-dchroot)dkg@merulo:~/src/icedove/i
Russ Allbery dixit:
>debian-legal isn't really the correct venue. It's just a discussion list
Ah, okay.
>going to start with leader and see if Lucas has an opinion about where to
>start with making decisions here. One option available to leader is to
>ask for an opinion from external legal cou
Package: nexuiz
Version: 2.5.2+dp-2
Severity: minor
Hello,
Nexuiz Classic moved to another web presence. The package description
still mentions the old address.
Old: http://www.nexuiz.com/classic.php
New: http://www.alientrap.org/games/nexuiz
Regards,
Markus
signature.asc
Description: Op
Package: qalculate-gtk
Version: 0.9.7-4
Severity: normal
Tags: patch
Hello,
You've disabled most of the hardening in debian/patches, please
re-enable it.
The attached patch fixes the build with -Werror=format-security
(if possible it should be sent to upstream), therefore the
following hardening
Hi Lucas,
In a discussion of mksh-static (see http://bugs.debian.org/709382), the
question of GPL compliance for the source code of the components of libgcc
and libc that are incorporated into binaries came up. mksh-static of
course links statically and therefore pulls in substantial portions of
Package: rdesktop
Version: 1.7.0-1
Severity: important
Tags: patch
User: debian-...@lists.debian.org
Usertags: debian-edu
This is a patch created by my college Dag-Erling Smørgrav to fix a bug
in rdesktop.
When the screen size changes, rdesktop resizes its window (unless
running in ful
Package: pymilter
Version: 0.9.5
I have been testing on my home server and have made a personal Debian
package mirror and ran a ClamAV scan; it found multiple issues in
the files under my mirror directory. One of them being the
following...
ClamAV version: ClamAV 0.97.8/17264/Thu May 23 09:12:25
1 - 100 of 350 matches
Mail list logo
