Bug#869898: RFS: dtkcore/0.3.3-1 [ITP]

在 2017年7月31日星期一 CST 下午1:31:22，Liang Guo 写道： > On Mon, Jul 31, 2017 at 1:13 PM, Boyuan Yang <073p...@gmail.com> wrote: > >>> Meanwhile, source packages on debomatic-amd64, mentors.d.o and Git > >>> repository has been updated already to fix problems of non-existent > >>> pkg-deepin team (See #868544

Bug#870236: libnet-dns-perl: autopkgtest broken in 1.10

Package: libnet-dns-perl Version: 1.10-1 Severity: important Tags: patch User: ubuntu-de...@lists.ubuntu.com Usertags: origin-ubuntu artful ubuntu-patch autopkgtest Hi Ondřej, In Ubuntu, the libnet-dns-perl autopkgtests are failing: t/00-version.t 1..1 ok 1 - file version: 0.01

Bug#870235: libchi-perl incompatible with libcache-fastmmap-perl 1.46

Package: libchi-perl Version: 0.60-3 Severity: important User: ubuntu-de...@lists.ubuntu.com Usertags: origin-ubuntu artful autopkgtest Dear maintainers, As shown at , the autopkgtests of libchi-perl fail since the upload of libcach

Bug#870234: arename: Fix for perl 5.26 compatibility

Package: arename Version: 4.0-3 Severity: important Tags: patch User: ubuntu-de...@lists.ubuntu.com Usertags: origin-ubuntu artful ubuntu-patch autopkgtest Hi Greg, As seen at , arename's autopkgtests fail against perl 5.26 because this pa

Bug#870233: smplayer: executes javascript code downloaded from insecure URL

Source: smplayer Version: 17.7.0~ds0-1 Severity: grave Tags: security Justification: user security hole -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 smplayer includes code in src/basegui.cpp to download and (I guess) execute javascript code for parsing youtube paths. The download URL is http:

Bug#870201: Use better compression for udebs?

On Mon, 31 Jul 2017 00:44:30 +0300 Adrian Bunk wrote: > Package: debhelper > Version: 10.2.5 > Severity: normal > > Following up on an observation I made in #868674: > > udebs are currently compressed with "xz -1 -extreme", > while normal packages are compressed with "xz -6". > > "xz -1" requir

Bug#869898: RFS: dtkcore/0.3.3-1 [ITP]

On Mon, Jul 31, 2017 at 1:13 PM, Boyuan Yang <073p...@gmail.com> wrote: >>> >>> Meanwhile, source packages on debomatic-amd64, mentors.d.o and Git >>> repository >>> has been updated already to fix problems of non-existent pkg-deepin team >>> (See >>> #868544). I believe the source package should

Bug#869898: RFS: dtkcore/0.3.3-1 [ITP]

2017-07-31 13:00 GMT+08:00 Liang Guo : > On Mon, Jul 31, 2017 at 10:17 AM, Boyuan Yang <073p...@gmail.com> wrote: >> >> Sure. I have reminded them of this issue. I will update debian/copyright file >> as soon as new upstream version (with fixes) gets released. My opinion is >> that >> this issue s

Bug#870232: flex FTBFS: dh_install: Cannot find (any matches for) "debian/tmp/include" (tried in ., debian/tmp)

Source: flex Version: 2.6.1-1.3 Severity: serious User: helm...@debian.org Usertags: rebootstrap flex fails to build from source in unstable amd64. | dh_install | dh_install: Cannot find (any matches for) "debian/tmp/include" (tried in ., debian/tmp) | | dh_install: libfl-dev missing files: deb

Bug#869898: RFS: dtkcore/0.3.3-1 [ITP]

On Mon, Jul 31, 2017 at 10:17 AM, Boyuan Yang <073p...@gmail.com> wrote: > > Sure. I have reminded them of this issue. I will update debian/copyright file > as soon as new upstream version (with fixes) gets released. My opinion is that > this issue shouldn't be a blocker for upload. IMO, upstream s

Bug#870231: linux-image-4.9.0: nOOAOO~[5~[~[~[cannot boot into 4.9 kernel

Package: src:linux Version: 4.9.30-2+deb9u2 Severity: important File: linux-image-4.9.0 Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? I upgraded from Jessie to Stretch on my server. * What exactly did you

Bug#870230: libpng-dev: error when installing together: trying to overwrite shared '/usr/bin/libpng16-config'

Package: libpng-dev Version: 1.6.30-2 Severity: important User: helm...@debian.org Usertags: rebootstrap When installing a libpng-dev built with debhelper (<< 10.7) and a libpng-dev built with debhelper (>= 10.7) together, dpkg errors out: | Unpacking libpng-dev:mips (1.6.30-2) ... | dpkg: error

Bug#870229: cairo-dock: Adapt to gnome-settings-daemon 3.24

From 693da85e85e62255e98647ced9035377a9e19aca Mon Sep 17 00:00:00 2001 From: Jeremy Bicha Date: Mon, 31 Jul 2017 00:21:22 -0400 Subject: [PATCH] Add Adapt-to-gsd-3.24.patch Closes: #870229 --- debian/control | 2 +- debian/patches/Adapt-to-gsd-3.24.patch | 60 ++

Bug#166028: Question from the EIU Contact Us Page

xsqweb, Thank you for contacting Eastern Illinois University via our Web site. Your inquiry/concern will be directed toward the proper university department for review. If you do not receive a response in a timely manner, please respond to this e-mail and we will try to help resolve any probl

Bug#870229: cairo-dock: Adapt to gnome-settings-daemon 3.24

Package: cairo-dock Version: 3.4.1-1 Severity: important User: pkg-gnome-maintain...@lists.alioth.debian.org Usertags: gsd324 Tags: buster sid patch cairo-dock includes gnome-session files to allow users to easily log in to a GNOME Flashback session running cairo-dock. gnome-settings-daemon 3.24 h

Bug#870227: openbox-gnome-session: Adapt to gnome-settings-daemon 3.24

Control: tags -1 +patch From 306aa5b2fa79d3f70d43ccd97bef3d513e4536b6 Mon Sep 17 00:00:00 2001 From: Jeremy Bicha Date: Mon, 31 Jul 2017 00:06:56 -0400 Subject: [PATCH] Add adapt-to-gsd-324.patch Closes: #870227 --- debian/control| 2 +- debian/patches/adapt-to-gsd-324.p

Bug#870228: physamp: fails to upgrade from 'stretch' - trying to overwrite /usr/bin/bppphysamp

Package: physamp Version: 1.0.2-1 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package fails to upgrade from 'stretch'. It installed fine in 'stretch', then the upgrade to 'sid' fails because it tries to overwrite other packa

Bug#870227: openbox-gnome-session: Adapt to gnome-settings-daemon 3.24

Package: openbox-gnome-session Version: 3.6.1-4 Severity: important User: pkg-gnome-maintain...@lists.alioth.debian.org Usertags: gsd324 Tags: buster sid openbox-gnome-sessions includes gnome-session files to allow users to easily log in to a GNOME Flashback session running openbox. gnome-settings

Bug#870226: curvedns’s max tcp buffer of 8192 is too small

Package: curvedns Version: 0.87-3 Severity: normal Testing out curvedns, I discovered that a dnssec any query for the apex of my primary zone failed to send anything. It turns out that with a rsa 1k zsk a reasonably long spf txt rr and the ns and mx names in the zone (thus including their a and a

Bug#870225: manpages-dev: fails to upgrade from 'stretch' - trying to overwrite /usr/share/man/man3/explicit_bzero.3.gz

Package: manpages-dev Version: 4.12-1 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package fails to upgrade from 'stretch'. It installed fine in 'stretch', then the upgrade to 'buster' fails because it tries to overwrite othe

Bug#870224: wixl-data: fails to upgrade from 'stretch' - trying to overwrite /usr/share/wixl-0.96/include/SDL.wxi

Package: wixl-data Version: 0.96-3 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package fails to upgrade from 'stretch'. It installed fine in 'stretch', then the upgrade to 'buster' fails because it tries to overwrite other p

Bug#870223: libmaven-plugin-testing-1.3-java: fails to upgrade from 'stretch' - trying to overwrite /usr/share/java/maven-plugin-testing-harness-1.3.jar

Package: libmaven-plugin-testing-1.3-java Version: 1.3-3 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package fails to upgrade from 'stretch'. It installed fine in 'stretch', then the upgrade to 'buster' fails because it trie

Bug#870222: RFS: groonga/7.0.5-1

Package: sponsorship-requests Severity: wishlist Dear mentors, I am looking for a sponsor for my package "groonga" * Package name: groonga Version : 7.0.5-1 Upstream Author : Groonga Project * Url : http://groonga.org/ * Licenses: LGPL-2.1 Section :

Bug#865308: khronos-api is not Multi-Arch compatible

On Fri, Jul 21, 2017 at 3:03 PM, Jens Reyer wrote: > I just uploaded 0~svn33340-0.1 to delayed/10, debdiff attached. > > Changelog: > > khronos-api (0~svn33340-0.1) unstable; urgency=medium > > * Non-maintainer upload. > * New (and final in svn) upstream revision 33340. > * Refresh timestamps

Bug#869416: [pkg-gnupg-maint] Bug#869416: pinentry-gtk2: fails to request passphrase when importing OpenPGP secret key with Seahorse

Thanks for your reply. intrigeri wrote: > Anything else I should try? Something about $GPG_TTY, or starting > Seahorse from GNOME Terminal (instead of the GNOME Overview), perhaps? It seems that the most likely case is the following scenario: (1) Upon login, gpg-agent is invoked with no DISPL

Bug#870221: dpkg: please sort the "unused substitution" warnings

Source: dpkg Version: 1.18.24 Severity: wishlist Tags: patch User: reproducible-bui...@lists.alioth.debian.org Usertags: hashordering toolchain X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org Hi, Whilst working on the Reproducible Builds effort [0], we noticed that dpkg emits "unused subs

Bug#869898: RFS: dtkcore/0.3.3-1 [ITP]

在 2017年7月31日星期一 CST 上午9:53:58，Liang Guo 写道： > Have you ask upstream to correct source file's license header ? > > Thanks, Sure. I have reminded them of this issue. I will update debian/copyright file as soon as new upstream version (with fixes) gets released. My opinion is that this issue shoul

Bug#870219: ITP: libxcam -- Extended camera features and cross platform computer vision project

Package: wnpp Severity: wishlist Owner: Yinhang Liu * Package name: libxcam Version : 1.0.0 Upstream Author : Wind Yuan * URL : https://github.com/01org/libxcam * License : Apache-2.0 Programming Lang: C, C++ Description : Extended camera features and

Bug#870220: RFS: rmlint/2.6.1-1

Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for my package "rmlint" * Package name: rmlint Version : 2.6.1-1 Upstream Author : Christopher Pahl * URL : https://rmlint.readthedocs.io/ * License : GPL-3 Sect

Bug#870218: (no subject)

Package: wnpp Severity: wishlist Owner: Yinhang Liu * Package name: libxcam Version : 1.0.0 Upstream Author : Wind Yuan * URL : https://github.com/01org/libxcam * License : Apache-2.0 Programming Lang: C, C++ Description : Extended camera features and

Bug#870217: glm: FTBFS with gcc-7: Test failures

Source: glm Version: 0.9.8.4-1 Severity: important >From my pbuilder build log, using gcc-defaults from experimental: ... 97% tests passed, 3 tests failed out of 108 Total Test time (real) = 2.37 sec The following tests FAILED: 12 - test-core_type_mat2x4 (Failed) 15 - test-cor

Bug#869898: RFS: dtkcore/0.3.3-1 [ITP]

Have you ask upstream to correct source file's license header ? Thanks, On Thu, Jul 27, 2017 at 11:40 PM, Boyuan Yang <073p...@gmail.com> wrote: > 2017-07-27 22:47 GMT+08:00 Liang Guo : >> On Thu, Jul 27, 2017 at 10:25 PM, ChangZhuo Chen wrote: >>> On Thu, Jul 27, 2017 at 09:30:52PM +0800, Boyua

Bug#870215: RFS: stendhal/0.1-1 [ITP] -- Multiplayer online adventure game with an old school feel

Em dom, 2017-07-30 às 21:24 -0400, Paul Wise escreveu: > In my first mail I was confused, since you previously had an ITP/RFS > for stendhal-installer and I assumed this package was the proper > package of Stendhal from source, instead of a wrapper script. > > In addition; you are misrepresenting

Bug#870215: RFS: stendhal/0.1-1 [ITP] -- Multiplayer online adventure game with an old school feel

On Sun, Jul 30, 2017 at 8:58 PM, Carlos Donizete Froes wrote: > Sorry, I have a question, even though it is a project of my own. > > Do I have to add the Stendhal link? In my first mail I was confused, since you previously had an ITP/RFS for stendhal-installer and I assumed this package was the p

Bug#870042: RFS: gsettings-qt/0.1+16.04.20170729-1 [ITP]

2017-07-31 9:04 GMT+08:00 Lisandro Damián Nicanor Pérez Meyer : > On sábado, 29 de julio de 2017 11:21:40 -03 Pino Toscano wrote: >> Hi, >> >> I'm not uploading it myself, > > Neither me, but I wanted to add some more info to what Pino already provided. > >> but there are various things that ought

Bug#870042: RFS: gsettings-qt/0.1+16.04.20170729-1 [ITP]

On sábado, 29 de julio de 2017 11:21:40 -03 Pino Toscano wrote: > Hi, > > I'm not uploading it myself, Neither me, but I wanted to add some more info to what Pino already provided. > but there are various things that ought to > be fixed: > > a) qtchooser is not needed in Build-Depends, it's an

Bug#870215: RFS: stendhal/0.1-1 [ITP] -- Multiplayer online adventure game with an old school feel

Em dom, 2017-07-30 às 20:41 -0400, Paul Wise escreveu: > On Sun, Jul 30, 2017 at 8:22 PM, Carlos Donizete Froes wrote: > > >  * URL : https://github.com/coringao/stendhal > > This is the wrong link, it should be: > > https://stendhalgame.org/ > > >  * License : GPL-2+ > >   

Bug#870216: tex-common: Old configuration style (still) found in /etc/texmf/fmt.d

Package: tex-common Version: 6.06 Severity: normal Dear Maintainer, * What led up to the situation? Upgraded from jessie (8.9) to stretch (9.1) * What exactly did you do (or not do) that was effective (or ineffective)? During install, got the exact same 'Warning: Old configuration s

Bug#861378: lists.debian.org: Please update list description for debian-chinese-{gb,big5}

2017-07-30 19:08 GMT+08:00 Hanno 'Rince' Wagner : > Hi Boyuan! > > On Sun, 30 Jul 2017, Boyuan Yang wrote: > >> I'm sorry, but you seem to have text of two lists mixed up. > > Yes, it was mixed up; I fixed it now. > > if you want to drop or create other mailinglists, please create > open another bu

Bug#870215: RFS: stendhal/0.1-1 [ITP] -- Multiplayer online adventure game with an old school feel

On Sun, Jul 30, 2017 at 8:22 PM, Carlos Donizete Froes wrote: > * Package name: stendhal > dget -x > https://mentors.debian.net/debian/pool/contrib/s/stendhal/stendhal_0.1-1.dsc Since this does not include stendhal, just a script to download the upstream JAR, I think you should call thi

Bug#870215: RFS: stendhal/0.1-1 [ITP] -- Multiplayer online adventure game with an old school feel

On Sun, Jul 30, 2017 at 8:22 PM, Carlos Donizete Froes wrote: > * URL : https://github.com/coringao/stendhal This is the wrong link, it should be: https://stendhalgame.org/ > * License : GPL-2+ >Section : contrib/games This is the wrong section for a package t

Bug#870185: Acknowledgement (FATAL: kernel 4.11.0-0.bpo.1-marvell does not boot on QNAP TS-219P II)

I made a little mistake in the description above: The kernel I had on my QNAP TS-219P II before was linux-image-4.9.0-3-marvell_4.9.30-2+deb9u2 - and this appears to be the last version that boots. I've tried loading mkimage'd kernels+dtbs via tftpd into my broken QNAP TS-219P II from these pac

Bug#870215: RFS: stendhal/0.1-1 [ITP] -- Multiplayer online adventure game with an old school feel

Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for my package "stendhal" * Package name: stendhal Version : 0.1-1 Upstream Author : Carlos Donizete Froes * URL : https://github.com/coringao/stendhal * License

Bug#870214: backupninja: sys handler wrongly reports warning due to wrong devices list

Package: backupninja Version: 1.0.1-2 Severity: normal Tags: upstream Hi, After upgrading to Stretch, backupninja's sys handler reports warnings saying that "the partition table for /dev/mapper/vg-lv could not be saved" (one warning per Logical Volume) Reading in /usr/share/backupninja/sys, it a

Bug#870213: pajeng FTBFS with perl 5.26

Source: pajeng Version: 1.3.4-2 Severity: serious Tags: buster sid https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/pajeng.html ... Start 12: pj_validate_simu-mardi 1/12 Test #4: pj_dump_native_paje ..***Failed0.10 sec Unescaped left brace in regex is ill

Bug#870076: marked as done (src:chrony: maintainer address bounces)

On Sat, Jul 29, 2017 at 03:53:28PM -0400, Paul Gevers wrote: Hi, Hello Paul, On 29-07-17 10:15, Debian Bug Tracking System wrote: The maintainer address for chrony bounces, see below. Indeed, that seems to happen from time to time. Sadly, my provider remains silent about these issues. I’m

Bug#870212: mate-panel FTBFS: org.mate.panel.toplevel.gschema.xml:24:1 Error on line 24 char 1: not (yet) defined.. --strict was specified; exiting.

Source: mate-panel Version: 1.18.4-1 Severity: serious https://buildd.debian.org/status/package.php?p=mate-panel&suite=sid ... Making all in data make[3]: Entering directory '/<>/data' glib-mkenums --comments '' --fhead "" --vhead " <@type@ id='org.mate.panel.@EnumName@'>" --vprod "" --vtai

Bug#870202: mosh-server failing to start with a missing symbol

Good point. I did indeed have protobuf and protoc libraries lying around in /usr/local. I thought I checked all the stuff, but I guess I should have done that strace I considered doing. Thanks, sorry for the spurious bug report. On Sun, Jul 30, 2017, 23:24 Keith Winstein wrote: > Thank you for

Bug#870211: Dead link: "Wiki help"

Package: nm.debian.org Severity: normal There's a link from /process/:id to the [wiki][1], but unfortunately it appears to be dead. I looked around and wasn't able to find the correct link target. [1]: https://wiki.debian.org/nm.debian.org/Process -- System Information: Debian Release: buster/s

Bug#870210: slic3r-prusa: Execute end G-code on abort

Package: slic3r-prusa Version: 1.36.0+dfsg-1 Severity: wishlist It would be nice if it were possible to execute the custom End G-code when a print is aborted. I end up doing all the steps manually anyway, and it would add a bit of convenience. -- System Information: Debian Release: buster/sid

Bug#870209: cmake: Break build dependency cycle with libjsoncpp

Source: cmake Version: 3.9.0-1 Severity: wishlist The cmake source package is currently not bootstrappable because even in the stage1 build profile, it still Build-Depends on libjsoncpp-dev which in turn Build-Depends on cmake. It would be nice if stage1 could be built without libjsoncpp-dev. Of

Bug#870208: [Mudlet] Bug in Version 3.2.0 and (3.3.0) causes loss of user created content

Package: Mudlet Version: 1:3.2.0-1 Severity: grave --- Please enter the report below this line. --- ADVISORY FROM UPSTREAM: A defect present in the Mudlet Version currently included in "Testing" and "Unstable" causes user created content ("Triggers"/"Aliases"/"Buttons"/"Keys"/"Scripts") to be los

Bug#869836: stretch-pu: package nvidia-graphics-drivers/375.82-1~deb9u1

On Sun, 2017-07-30 at 23:44 +0100, Adam D. Barratt wrote: > On Sun, 2017-07-30 at 23:23 +0100, Luca Boccassi wrote: > > On Sun, 2017-07-30 at 23:19 +0100, Luca Boccassi wrote: > > > Control: tags -1 - moreinfo > > > > > > On Sun, 2017-07-30 at 23:04 +0100, Adam D. Barratt wrote: > > > > Control: t

Bug#870207: light-locker-command --lock returns 0 without locking (breaks slock)

Package: light-locker Version: 1.7.0-3 Severity: serious Justification: breaks unrelated software Dear Maintainer, On my system, 'light-locker-command --lock' returns 0 without doing anything. I presume that is because there no 'light-locker' process is running (due to #858445). In case it's re

Bug#841951: [PATCH]: bitcoin-qt segfaults on startup

On domingo, 30 de julio de 2017 08:55:59 -03 Erik de Castro Lopo wrote: > Lisandro Damián Nicanor Pérez Meyer wrote: > > As you can see in > > > > > > > > the patch is not exactly right. > > I've have be running with that patch in i

Bug#869836: stretch-pu: package nvidia-graphics-drivers/375.82-1~deb9u1

On Sun, 2017-07-30 at 23:23 +0100, Luca Boccassi wrote: > On Sun, 2017-07-30 at 23:19 +0100, Luca Boccassi wrote: > > Control: tags -1 - moreinfo > > > > On Sun, 2017-07-30 at 23:04 +0100, Adam D. Barratt wrote: > > > Control: tags -1 + moreinfo > > > > > > On Wed, 2017-07-26 at 22:51 +0100, Luca

Bug#870136:

On 30-07-17 12:27, Dio Putra wrote: > Hi, sorry for this accident. However, please correct this typo in here. > Thanks. OK, fixed; thanks for the translation. Dennis

Bug#870206: synaptic: usability hell > bring back the menu icons

Package: synaptic Version: 0.84.2 Severity: important Dear Maintainer, the GTK3 port removed all icons inside the application menus but other applications(eg all MATE GTK3 ports) show that it is possible to have those in GTK3. So would it be possible to re-add them? -- System Information: Debi

Bug#870205: stretch-pu: package librsb/1.2.0-rc5-3

Package: release.debian.org Severity: normal Tags: stretch User: release.debian@packages.debian.org Usertags: pu Dear Release Team, Version 1.2.0-rc5-3 of the librsb package in stretch suffers a few severe bugs leading to numerically wrong results. These were solved in the new upstream re

Bug#869836: stretch-pu: package nvidia-graphics-drivers/375.82-1~deb9u1

On Sun, 2017-07-30 at 23:19 +0100, Luca Boccassi wrote: > Control: tags -1 - moreinfo > > On Sun, 2017-07-30 at 23:04 +0100, Adam D. Barratt wrote: > > Control: tags -1 + moreinfo > > > > On Wed, 2017-07-26 at 22:51 +0100, Luca Boccassi wrote: > > > The non-free proprietary nvidia-graphics-driver

Bug#870181: stretch-pu: package bareos/16.2.4-3+deb9u1

On 30.07.2017 23:41, Adam D. Barratt wrote: > Control: tags -1 + moreinfo > > On Sun, 2017-07-30 at 21:41 +0200, Felix Geyer wrote: >> I'd like to fix three bugs in bareos for stretch: >> >> * Fix permissions of bareos-dir logrotate config on upgrade. (Closes: >> #864926) >> >> Removes executable

Bug#870202: mosh-server failing to start with a missing symbol

Thank you for this report. Is it possible you have a different version of libprotobuf in your LD_LIBRARY_PATH, or a different version of mosh-server in your PATH? (Do you have anything related to libprotobuf in /usr/local ?) On Sun, Jul 30, 2017 at 2:40 PM, Ivan Vucica wrote: > Package: mosh >

Bug#870204: RFS: openfst/1.6.3-1 -- weighted finite-state transducers library

Package: sponsorship-requests Severity: wishlist X-Debbugs-CC: jw...@debian.org Dear Jakub, I am looking for a sponsor for my package "openfst". * Package name: openfst Version : 1.6.3-1 Upstream Author : Cyril Allauzen , Michael Riley * URL : http://www.openfs

Bug#869836: stretch-pu: package nvidia-graphics-drivers/375.82-1~deb9u1

Control: tags -1 - moreinfo On Sun, 2017-07-30 at 23:04 +0100, Adam D. Barratt wrote: > Control: tags -1 + moreinfo > > On Wed, 2017-07-26 at 22:51 +0100, Luca Boccassi wrote: > > The non-free proprietary nvidia-graphics-drivers version 375.66 in > > Stretch is affected by CVE-2017-6257 and CVE-2

Bug#869667: stretch-pu: package xkeyboard-config/2.19-1

Control: tags -1 + moreinfo d-i On Tue, 2017-07-25 at 19:20 +0530, Pirate Praveen wrote: > This fixes serious bug #865316 (all Indic language users were unable to > select their keyboard layouts in stretch introducing a regression. This > was caused by an earlier commit upstream which blacklisted

Bug#869754: stretch-pu: package node-dateformat/1.0.11-3

Control: tags -1 + confirmed On Wed, 2017-07-26 at 12:29 +0530, Sruthi Chandran wrote: > This fixes RC bug #863934. debdiff attached. Please go ahead. Regards, Adam

Bug#869836: stretch-pu: package nvidia-graphics-drivers/375.82-1~deb9u1

Control: tags -1 + moreinfo On Wed, 2017-07-26 at 22:51 +0100, Luca Boccassi wrote: > The non-free proprietary nvidia-graphics-drivers version 375.66 in > Stretch is affected by CVE-2017-6257 and CVE-2017-6259. Debian bug: > > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869783 > > Please c

Bug#869772: stretch-pu: package node-brace-expansion/1.1.6-1

Control: tags -1 + confirmed On Wed, 2017-07-26 at 16:06 +0530, Sruthi Chandran wrote: > This fixes security bug #862712 - regular expression denial of service. > debdiff attached. Please go ahead. Regards, Adam

Bug#864028: stretch-pu: package flatpak 0.8.7-1~deb9u1

Control: tags -1 + confirmed On Thu, 2017-07-27 at 07:28 +0100, Simon McVittie wrote: > Hi, > Now that stretch r1 is out, can this update be considered for r2? > > Filtered diff (patched tree in security vs. what I propose) in > https://lists.debian.org/debian-release/2017/07/msg00555.html aka >

Bug#870203: dune-grid FTBFS on mips: test-ug (Timeout)

Source: dune-grid Version: 2.5.1-1 Severity: serious https://buildd.debian.org/status/fetch.php?pkg=dune-grid&arch=mips&ver=2.5.1-1&stamp=1500401835&raw=0 ... Start 31: test-ug 31/60 Test #31: test-ug ...***Timeout 300.02 sec Testing UGGrid<2> an

Bug#869920: stretch-pu: package whois/5.2.17+deb9u1

Control: tags -1 + confirmed On Thu, 2017-07-27 at 17:51 +0200, Marco d'Itri wrote: > ICANN mandated a whois output change that broke the .com, .net, .jobs, > .bz, .cc and .tv gTLDs, so we need a stable update. > At the same time I would also like to fix support for 6to4 IP addresses, > which I

Bug#868609: le FTBFS with latest ncurses

On Wed, Jul 26, 2017 at 05:18:57AM -0400, Thomas Dickey wrote: > On Tue, Jul 25, 2017 at 01:19:16PM +0300, Alexander V. Lukyanov wrote: > > On Tue, Jul 25, 2017 at 04:55:54AM -0400, Thomas Dickey wrote: > > > > > e) fix a different fail-to-build with the opaque TERMTYPE > > > > > > > > I don't see

Bug#869949: jessie-pu: package ipsec-tools/1:0.8.2+20140711-2+deb8u1

Control: tags -1 + confirmed On Thu, 2017-07-27 at 15:01 -0700, Noah Meyerhans wrote: > I'd like to update ipsec-tools in the next oldstable point release to > address a security vulnerability in which a remote unauthenticated > attacker could cause racoon to exhause CPU resources resulting in a >

Bug#869991: jessie-pu: package slurm-llnl/14.03.9-5

Control: tags -1 + confirmed On Fri, 2017-07-28 at 15:40 +0200, Gennaro Oliva wrote: > I'd like to update slurm-llnl in the next oldstable point release to > address a vulnerability in how the slurmd daemon informs users of > a Prolog failure on a compute node. That vulnerability could allow a > u

Bug#869966: stretch-pu: package gosa-plugin-mailaddress/0.99.5-2+deb9u1

Control: tags -1 + confirmed On Fri, 2017-07-28 at 10:59 +0200, Mike Gabriel wrote: > Vincent Danjean spotted a flaw in gosa-plugin-mailaddress, recently, that > relates to the > renaming of class constructor names as required with PHP 7. > > The attached .debdiff fixes this issue for Debian str

Bug#870202: mosh-server failing to start with a missing symbol

Package: mosh Version: 1.2.6-1+b2 Severity: important Dear Maintainer, Yesterday I updated almost all of my system to stretch / stable. (Stragglers include things like php which might break some of my projects.) Today I am no longer able to connect to my server with mosh. Running mosh-server man

Bug#870201: Use better compression for udebs?

Package: debhelper Version: 10.2.5 Severity: normal Following up on an observation I made in #868674: udebs are currently compressed with "xz -1 -extreme", while normal packages are compressed with "xz -6". "xz -1" requires 2 MiB memory for decompression and "xz -6" requires 9 MiB memory for dec

Bug#870181: stretch-pu: package bareos/16.2.4-3+deb9u1

Control: tags -1 + moreinfo On Sun, 2017-07-30 at 21:41 +0200, Felix Geyer wrote: > I'd like to fix three bugs in bareos for stretch: > > * Fix permissions of bareos-dir logrotate config on upgrade. (Closes: #864926) > > Removes executable permission for upgrades from < 15.2.2-1. > > * Remove d

Bug#870178: jessie-pu: package bareos/14.2.1+20141017gitc6c5b56-3+deb8u3

Control: tags -1 + moreinfo On Sun, 2017-07-30 at 21:42 +0200, Felix Geyer wrote: > On Sun, 30 Jul 2017 21:37:20 +0200 Felix Geyer wrote: > > debdiff is attached. > > Now for real. So far as I can tell, the logrotate issues also affects the package in unstable - is that correct? Regards, Adam

Bug#790201: geany-plugins: diff for NMU version 1.31+dfsg-1.1

Control: tags 790201 + patch Control: tags 790201 + pending Dear maintainer, I've prepared an NMU for geany-plugins (versioned as 1.31+dfsg-1.1) and uploaded it to DELAYED/14. cu Adrian -- "Is there not promise of rain?" Ling Tan asked suddenly out of the darkness. There had be

Bug#870200: mariadb-server-10.1: jessie --> stretch: starting mariadb impossible (Failed at step NAMESPACE spawning /usr/bin/install: Value too large for defined data type)

Package: mariadb-server-10.1 Version: 10.1.23-9+deb9u1 Severity: important Dear Maintainer, Good evening everyone. I just just upgraded fromJessie to stretch and cannot install/run mariadb at all. *** Reporter, please consider answering these questions, where appropriate *** * What led up to

Bug#870199: lintian: file-contains-fixme-placeholder is "Certainty: certain" but has false positives

Package: lintian Version: 2.5.52 Severity: normal E: geany-plugins source: file-contains-fixme-placeholder debian/control:119 FIXME N: N:This file appears to be incomplete or insufficiently modified as it N:contains a "FIXME" placeholder text. These can often be generated by N:packag

Bug#870195: Pending fixes for bugs in the golang-github-opentracing-contrib-go-stdlib package

tag 870195 + pending thanks Some bugs in the golang-github-opentracing-contrib-go-stdlib package are closed in revision 1e1a83f2c93a5e6a2e01bce488d18699533def27 in branch 'debian/sid' by Martín Ferrari The full diff can be seen at https://anonscm.debian.org/cgit/pkg-go/packages/golang-github-open

Bug#870198: xul-ext-sieve: Current Version 0.2.3d using an out-of-date API, please update to current Version 0.2.3k

Package: xul-ext-sieve Version: 0.2.3d Severity: important Dear Maintainer, The current Version from stretch doesn't work with Thunderbird 52.2.1. >From the errorconsole: [code]SyntaxError: missing ] after element list[Weitere Informationen] SieveFilterEditor.js:140:42 DEPRECATION WARNING: The a

Bug#870191: Pending fixes for bugs in the golang-github-opentracing-opentracing-go package

tag 870191 + pending thanks Some bugs in the golang-github-opentracing-opentracing-go package are closed in revision 4ecc3fe336b84e6b73e09c8c4639acc8cfced8a8 in branch 'debian/sid' by Martín Ferrari The full diff can be seen at https://anonscm.debian.org/cgit/pkg-go/packages/golang-github-opentra

Bug#870197: libytnef: CVE-2017-9473: memory allocation failure in TNEFFillMapi

Source: libytnef Version: 1.9.2-2 Severity: important Tags: security upstream Forwarded: https://github.com/Yeraze/ytnef/issues/42 Hi, the following vulnerability was published for libytnef. CVE-2017-9473[0]: | In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote | attackers to

Bug#870196: libytnef: CVE-2017-9470: NULL pointer dereference in MAPIPrint

Source: libytnef Version: 1.9.2-2 Severity: important Tags: upstream security Forwarded: https://github.com/Yeraze/ytnef/issues/37 Hi, the following vulnerability was published for libytnef. CVE-2017-9470[0]: | In ytnef 1.9.2, the MAPIPrint function in lib/ytnef.c allows remote | attackers to ca

Bug#870194: libytnef: CVE-2017-9471: heap-based-buffer overflow in SwapWord

Source: libytnef Version: 1.9.2-2 Severity: important Tags: security upstream Forwarded: https://github.com/Yeraze/ytnef/issues/39 Hi, the following vulnerability was published for libytnef. CVE-2017-9471[0]: | In ytnef 1.9.2, the SwapWord function in lib/ytnef.c allows remote | attackers to cau

Bug#870195: ITP: golang-github-opentracing-contring-go-stdlib -- OpenTracing instrumentation for packages in the Go stdlib

Package: wnpp Severity: wishlist Owner: =?utf-8?q?Mart=C3=ADn_Ferrari?= * Package name: golang-github-opentracing-contring-go-stdlib Version : 0.0+git201705028.48e4d76 Upstream Author : opentracing-contrib * URL : https://github.com/opentracing-contrib/go-stdlib * Lice

Bug#870193: libytnef: CVE-2017-9472: heap-based buffer overflow in SwapDWord

Source: libytnef Version: 1.9.2-2 Severity: important Tags: security upstream Forwarded: https://github.com/Yeraze/ytnef/issues/41 Hi, the following vulnerability was published for libytnef. CVE-2017-9472[0]: | In ytnef 1.9.2, the SwapDWord function in lib/ytnef.c allows remote | attackers to ca

Bug#870192: libytnef: CVE-2017-9474: heap-based buffer overflow in DecompressRTF

Source: libytnef Version: 1.9.2-2 Severity: important Tags: upstream security Forwarded: https://github.com/Yeraze/ytnef/issues/40 Hi, the following vulnerability was published for libytnef. CVE-2017-9474[0]: | In ytnef 1.9.2, the DecompressRTF function in lib/ytnef.c allows remote | attackers t

Bug#870191: ITP: golang-github-opentracing-opentracing-go -- Go platform API for OpenTracing

Package: wnpp Severity: wishlist Owner: =?utf-8?q?Mart=C3=ADn_Ferrari?= * Package name: golang-github-opentracing-opentracing-go Version : 1.0.2 Upstream Author : The OpenTracing Authors * URL : http://opentracing.io/ * License : MIT Programming Lang: Golang

Bug#870190: RFS: python-parameterized/0.6.1-1 [ITP]

Package: sponsorship-requests Severity: wishlist Dear mentors, I am looking for a sponsor for the following package: * Package name: python-parameterized   Version : 0.6.1-1   Upstream Author : David Wolever * URL : https://github.com/wolever/parameterized * License  

Bug#870188: CVE-2017-11610

Control: merge 870187 870188 signature.asc Description: OpenPGP digital signature

Bug#869891: pgpdump: infinite loop

tags 869891 upstream,patch thanks Jakub Wilk wrote... > This command seems to hang forever: > > $ printf -- '-BEGIN PGP\n\njAE0IM0D' | pgpdump Appearently it's a bad idea to call BZ2_bzDecompress with avail_in set to zero. The patch below catches that situation but still should probab

Bug#870189: RFS: pytest-qt/2.1.2-2

Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for the following package: * Package name: pytest-qt   Version : 2.1.2-2   Upstream Author : Bruno Oliveira * URL : https://github.com/pytest-dev/pytest-qt * License : Expat  

Bug#870187: supervisor: CVE-2017-11610: Command injection via malicious XML-RPC request

On Sun, Jul 30, 2017 at 10:07:42PM +0200, Salvatore Bonaccorso wrote: > I should add: I have choosen severity grave due to the potential of > code execution as root if the service is enabled. Am I right that in > *any* version present in Debian the web interface is started? > > If so we might lowe

Bug#870187: supervisor: CVE-2017-11610: Command injection via malicious XML-RPC request

I should add: I have choosen severity grave due to the potential of code execution as root if the service is enabled. Am I right that in *any* version present in Debian the web interface is started? If so we might lower the severity. Regards, Salvatore

Bug#870188: CVE-2017-11610

Package: supervisor X-Debbugs-CC: t...@security.debian.org secure-testing-t...@lists.alioth.debian.org Severity: grave Tags: security Hi, the following vulnerability was published for supervisor. CVE-2017-11610[0]: Authenticated RCE This issue was fixed by upstream in version 3.3.3. If you fi

Bug#870176: libdrm: Make source package bootstrappable

On Sun, Jul 30, 2017 at 12:52 PM, Sven Joachim wrote: > Really? There seems to be quite a bit of code that's conditional to > #ifdev HAVE_VALGRIND, e.g. in intel/intel_bufmgr_gem.c, and I don't > think building with the nocheck profile should alter the produced binary > packages. Hmm, I guess if

  1   2   3   >