Bug#1070410: golang-github-pion-webrtc.v3 accesses the internet during build

Source: golang-github-pion-webrtc.v3 Version: 3.1.56-2 Severity: serious Justification: Policy 4.9 X-Debbugs-Cc: d...@debian.org, wb-t...@buildd.debian.org Control: affects -1 buildd.debian.org Hi, golang-github-pion-webrtc.v3 attempts network access during build. This is forbidden by Policy

Bug#1070409: golang-github-pion-ice.v2: accesses the internet during build

Source: golang-github-pion-ice.v2 Version: 2.3.1-1 Severity: serious Justification: Policy 4.9 X-Debbugs-Cc: d...@debian.org, wb-t...@buildd.debian.org Control: affects -1 buildd.debian.org Hi, golang-github-pion-ice.v2 attempts network access during build. This is forbidden by Policy 4.9:

Bug#1028541: lvm2: LVM filters render servers unusable post bookworm upgrade

Package: lvm2 Version: 2.03.22-1+b1 Followup-For: Bug #1028541 Dear Maintainer, We noticed this issue when we upgraded some our servers to use Bookworm. This is actually rendering our system unusable as the LVM partitions are not getting detected due to this issue. We have large number of

Bug#1070408: ITP: python3-tabnet -- Attentive Interpretable Tabular Learning

Package: wnpp Severity: wishlist Owner: Yadd X-Debbugs-Cc: debian-de...@lists.debian.org, y...@debian.org * Package name: python3-tabnet Version : 4.1.0 Upstream Contact: DreamQuark * URL :

Bug#965386: plasma-browser-integration: Please package Firefox extension

On Mon, 20 Jul 2020 20:24:38 +0200 Michael Weghorn wrote: > Note: The file 'dev_README.txt' in the sources describes how to build the > extension, but this probably cannot be followed as is, since it involves > installing packages via "npm" in the first step (which is not in line with > Debian's

Bug#926618: RFP: webext-plasma-integration

On Mon, 6 Dec 2021 14:47:24 + Phil Morrell wrote: > Would be nice to see this packaged, since the native part is already > available, under the affects package name. Note, I'm not even using this > under KDE, it works perfectly fine under XFCE. As I mentioned in #965386, this is easy to add

Bug#1070407: mailman3-web: dpkg --configure mailman3-web fails

Package: mailman3-web Version: 0+20240312-1 Severity: important Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? * What exactly did you do (or not do) that was effective (or ineffective)? * What was the

Bug#1070406: Qt5: badly clips some fonts when rendering to PDFs

Package: qtbase5-dev Version: 5.15.10+dfsg-7.2+b1 Severity: normal X-Debbugs-Cc: t...@mirbsd.de Control: found -1 5.15.2+dfsg-9 Control: found -1 5.7.1+dfsg-3+deb9u4 Control: affects -1 musescore Control: affects -1 musescore3 I’ve received reports that PDFs generated by Mu͒seScore when viewed in

Bug#1059223: src:meson: fails to migrate to testing for too long: fails autopkgtest on arm64 and i386

On Sat, 4 May 2024 21:10:10 +0300 Jussi Pakkanen wrote: > The script runs fine on x64_64 but fails on arm64 (and probably also > x86, but I did not test it). This would imply something wonky going on > in the toolchain. The question then becomes where this should be > reported to. May be for

Bug#1069538: zeroc-ice: FTBFS on armel: Gradle / Java heap space

An NMU diff for the upload to fix this bug is attached. Thanks to Vladimir Petko and Tony Mancill on the [debian-java] mailing list for the fix https://lists.debian.org/debian-java/2024/05/msg1.html -- Chris Knadle chris.kna...@coredump.us diff -Nru zeroc-ice-3.7.10/debian/changelog

Bug#1069133:

Control: fixed -1 linux/6.7.12-1

Bug#1069133:

fixed -1 linux/6.7.12-1

Bug#1066213: slrn: FTBFS: misc.c:376:4: error: implicit declaration of function ‘VA_COPY’ [-Werror=implicit-function-declaration]

Followup-For: Bug #1066213 Control: tag -1 patch pending Hi, this was fixed and tagged in git a week ago, but so far no upload happened. Andreas

Bug#1061216: Please upgrade to llvm-toolchain-17

As part of the effort to limit the number of llvm packages in the archive, it would be great if you could upgrade to -17. This package depends on 14. Not possible at this time. Trying to build openvdb 10.0.1 against LLVM 17 results in the following error: CMake Error at

Bug#1048058: slrn: Fails to build source after successful build

Followup-For: Bug #1048058 Control: tag -1 patch Attached patch cleans two more directories with files that are generated during build, fixing building the package twice in a row. Andreas >From 996fe0699101d5f2683b6a329fad71fb72210094 Mon Sep 17 00:00:00 2001 From: Andreas Beckmann Date: Sun,

Bug#940960: ITP: linenoise -- Minimal replacement for readline

Hi, Any progress on getting linenoise packaged? This is urgently needed to devendor linenoise in the redict package (a new fork of redis). If you've lost interest, I'm happy to take over this ITP. Kind regards, Maytham signature.asc Description: This is a digitally signed message part

Bug#1069077:

Control: found -1 6.7.12-1

Bug#1068510: bobcat: provide a separate bobcat-source package for bootstrapping icmake

On Sat, Apr 06, 2024 at 12:00:48PM -0700, tony mancill wrote: > A separate bobcat-source binary package will enable icmake 12.x to be > bootstrapped without having to vendor in a copy of the bobcat sources. The upstream has decided to pursue a different strategy that removes any direct coupling

Bug#1070405: darktable: Please drop unused Build-Depends: libsoup2.4-dev

Source: darktable Version: 4.6.1-2 Please drop Build-Depends: libsoup2.4-dev . It isn't used at all and we would eventually like to remove libsoup2.4 from Debian. Thank you, Jeremy Bícha

Bug#1070404: srain: Please update to 1.7.0

Source: srain Version: 1.7.0 Severity: wishlist Please update srain to 1.7.0. One detail I am interested in is that it switches from libsoup2.4 to libsoup3. https://github.com/SrainApp/srain/releases Thank you, Jeremy Bícha

Bug#1070403: does not start because of an "OpenSSL version mismatch"

Package: openssh-client-ssh1 Version: 1:7.5p1-16 Severity: grave X-Debbugs-Cc: acct.deb...@tmcl.it Any attempt to use ssh1 fails with: "OpenSSL version mismatch. Built against 30100050, you have 30200020" It looks like the cause is an runtime check of the OpenSSL version, which requires that

Bug#1070402: linux-image-6.7.12-amd64: bluetooth dualshock 4 playstation controller no longer shows as connected

Package: src:linux Version: 6.7.12-1 Severity: normal X-Debbugs-Cc: fores...@nom.one Dear Maintainer, After upgrading from kernel 6.7.9 to 6.7.12, my DualShock 4 game controller no longer shows as connected in KDE Plasma. Contrary to what the GUI says, the device's onboard light seems to

Bug#1068665: cfengine3: FTBFS on arm{el,hf}: 1 of 60 tests failed

Followup-For: Bug #1068665 Control: tag -1 pending Hi, in order to make progress with the t64 transition, I've uploaded Emanuele's patch as a NMU to DELAYED/2. Please let me know if I should delay it longer. Andreas

Bug#755434: pmount: please support exfat filesystem (via fuse)

Le 04/05/2024 à 17:32, Jakub Wilk a écrit : * Vincent Danjean , 2016-12-25 23:36: ++    { "exfat", "nosuid,nodev,user,quiet,nonempty", 1, "077", ",iocharset=%s",",fmask=%04o,dmask=%04o"}, This doesn't work for me. In dmesg I see:     exfat: Unknown parameter 'quiet' I forgot this bug

Bug#1070340: This is not only Bookworm problem, but also Buster and maybe others

Initially I wrote only about Bookworm. But it is not only Bookworm problem. For example, I have also repeat steps from https://docs.google.com/document/d/1zjM5MvfFYC317PEPY4_4WRi0hOdpM766FyqpvOmeE90/edit?usp=sharing in the environment of vagrant image debian/buster64 v10.20231211.1 (available

Bug#1065309: transition: gnat (12 -> 13 + time_t64)

Hi Nicholas On Sat, 4 May 2024 at 12:21, Nicolas Boulenguez wrote: > For some reason, some rebuilds succeeded without a +b1 version. I think if the original uploads FTBFS then they would not have gained a +b1 version. > Their reverse dependencies is dep-waiting on the +b1 version. > Please

Bug#1070400: ITP: lomiri-weather-app -- Weather App for Lomiri Operating Environment

Package: wnpp Severity: wishlist Owner: Mike Gabriel X-Debbugs-Cc: debian-de...@lists.debian.org * Package name: lomiri-weather-app Version : 5.13.5 Upstream Contact: Daniel Frost * URL : https://gitlab.com/ubports/development/apps/lomiri-weather-app * License

Bug#1070354: addition: this refers to "cachevol" type volumes, not "cachepool"

Also, probably fixed by this commit upstream: https://gitlab.com/lvmteam/lvm2/-/commit/a985d5c63dd15d1114dac3caccd7aae89a732c38 signature.asc Description: This is a digitally signed message part.

Bug#1070399: RM: pmix [armel armhf i386] -- RoQA; NBS; no arch-specific reverse dependencies

Package: ftp.debian.org User: ftp.debian@packages.debian.org Usertags: remove X-Debbugs-Cc: p...@packages.debian.org Control: affects -1 src:pmix Please remove pmix on 32-bit architectures. It is no longer built there and its only reverse dependency, openmpi has already been updated to only

Bug#1069535: [debian-mysql] Bug#1069535: Bug#1069535: galera-3: FTBFS on armel: dh_auto_test: error: cd obj-arm-linux-gnueabi && make -j1 test ARGS\+=--verbose ARGS\+=-j1 ARGS=--output-on-failure retu

control: forward -1 https://github.com/codership/galera/issues/659 control: forwarded -1 https://github.com/codership/galera/issues/659

Bug#1069535: [debian-mysql] Bug#1069535: Bug#1069535: galera-3: FTBFS on armel: dh_auto_test: error: cd obj-arm-linux-gnueabi && make -j1 test ARGS\+=--verbose ARGS\+=-j1 ARGS=--output-on-failure retu

Forwarded: https://github.com/codership/galera/issues/659

Bug#1064486: rnp: FTBFS: Errors while running CTest

found 1064486 0.16.3-1 tags 1064486 + ftbfs bookworm trixie sid thanks El 20/4/24 a las 14:12, Andreas Metzler escribió: FWIW I also get testsuite errors on current sid on amd64 The following tests FAILED: 83 - rnp_tests.test_ffi_decrypt_wrong_mpi_bits (Failed) 90 -

Bug#1070398: gvfs-daemons: gvfs-udisks2-volume-monitor sigsegv at start

Package: gvfs-daemons Version: 1.54.0-1+b1 Severity: important X-Debbugs-Cc: tomkatudor+...@gmail.com Dear Maintainer, I noticed that since upgrading to Trixie at login and when opening any file menu in any application there is a cca minute long pause. I went through checking things to a similar

Bug#1070397: pistache: Please disable network tests in bookworm as well

Package: src:pistache Version: 0.0.5+ds-3 Severity: serious Tags: bookworm ftbfs Control: fixed -1 0.0.5+ds-4 Dear maintainer: Please disable network tests in bookworm as well, as they have started to fail even when network access is allowed during build: [ RUN ] net_test.address_creation

Bug#1070396: exim4: FTBFS on hurd-i386

Source: exim4 Version: 4.97-8 Severity: important Tags: patch User: debian-h...@lists.debian.org Usertags: hurd X-Debbugs-CC: debian-h...@lists.debian.org Hi, exim4 FTBFS on hurd-i386, but built before. Latest successful build was 4.94-19. Attached are two patches enabling a successful build: -

Bug#979188: Maintaining git-subrepo in Debian?

Dne 01.05.2024 (sre) ob 23:09 +0200 je Samo Pogačnik napisal(a): > Hi Daniel, > > After installing our current 'git-subrepo' deb i noticed, that bash-completion > integration with git does not work. The git-subrepo's own bash completion > works, > after you've already typed the first two words

Bug#979188: Maintaining git-subrepo in Debian?

Hi Daniel, After installing our current 'git-subrepo' deb i noticed, that bash-completion integration with git does not work. The git-subrepo's own bash completion works, after you've already typed the first two words 'git subrepo TAB TAB', but the initial recognition of the 'subrepo' sub-command

Bug#979188: Maintaining git-subrepo in Debian?

Dne 25.04.2024 (čet) ob 12:59 +0200 je Daniel Gröber napisal(a): > On Wed, Apr 24, 2024 at 10:06:49PM +0200, Samo Pogačnik wrote: > > Ok, so i'll prepare merge request in salsa gitlab, after pushing my > > change in my working branch? > > So creating a MR is fine but it's not the whole story with

Bug#979188: Maintaining git-subrepo in Debian?

On Wed, Apr 24, 2024 at 10:06:49PM +0200, Samo Pogačnik wrote: > Ok, so i'll prepare merge request in salsa gitlab, after pushing my > change in my working branch? So creating a MR is fine but it's not the whole story with gbp. With gbp you're always dealing with both a debian and an upstream

Bug#979188: Maintaining git-subrepo in Debian?

Hi Daniel, Dne 24.04.2024 (sre) ob 17:33 +0200 je Daniel Gröber napisal(a): > I'll push the repo there and give you access, you just have to adjust the > Vcs-* fields and get those changes to me in a way that I actually want to > accept them ;P > > FYI: I'm not being obtuse, I could ofc. just

Bug#979188: Maintaining git-subrepo in Debian?

Hi Daniel, Dne 12.04.2024 (pet) ob 16:02 +0200 je Daniel Gröber napisal(a): > > +git-subrepo (0.4.6-1) unstable; urgency=medium > + > + [ Daniel Gröber ] > + * Fix Vcs URLs, s/guest-dxld/dxld-guest/ > + * Update changelog for 0.4.3-2 release > > Commits that only touch d/changelog shouldn't

Bug#979188: Maintaining git-subrepo in Debian?

Hi Daniel, Dne 18.03.2024 (pon) ob 13:55 +0100 je Daniel Gröber napisal(a): > > A good place to start is https://wiki.debian.org/Packaging > > If you prefer a talk format there's Lucas' (excellent) tutorial > https://www.debian.org/doc/manuals/packaging-tutorial/packaging-tutorial.en.pdf > I

Bug#979188: Maintaining git-subrepo in Debian?

Dne 11.03.2024 (pon) ob 20:18 +0100 je Daniel Gröber napisal(a): > Hi Samo, > > wouldn't you know it I've become a DD before I got a response to the > git-subrepo ITP/RFS ;) I also completely forgot about it until I needed it > just now. > > Are you still interested in maintaining git-subrepo in

Bug#979188: Maintaining git-subrepo in Debian?

Hi Samo, On Mon, Apr 15, 2024 at 09:13:03PM +0200, Samo Pogačnik wrote: > Thanks for the review. I followed your suggestions above and recommited > d/control and > d/changelog. > > > As for the Vcs change: I'd prefer if we put the git repo in the debian/* > > namespace on Salsa. > > > > Here i

Bug#979188: Maintaining git-subrepo in Debian?

Hi Samo, On Mon, Apr 08, 2024 at 09:01:24PM +0200, Samo Pogačnik wrote: > > Anyway gbp has reasonably good documentation, maybe you haven't seen it yet: > > http://honk.sigxcpu.org/projects/git-buildpackage/manual-html/gbp.intro.html > > (note the navigation buttons in the top right) > > Thanks

Bug#979188: Maintaining git-subrepo in Debian?

Hi Samo, On Sun, Mar 31, 2024 at 01:42:48PM +0200, Samo Pogačnik wrote: > I prepared a new git-subrepo in salsa as a fork of your project ( > https://salsa.debian.org/spog/git-subrepo). Then i updated upstream and > prepared debby> a new 'debian/sid' branch. Would you be so kind to take a look

Bug#979188: Maintaining git-subrepo in Debian?

Hi Samo, wouldn't you know it I've become a DD before I got a response to the git-subrepo ITP/RFS ;) I also completely forgot about it until I needed it just now. Are you still interested in maintaining git-subrepo in Debian? I'm trying to limit my personal packaging work to stuff I actually

Bug#979188: Maintaining git-subrepo in Debian?

Hi Samo, On Mon, Apr 01, 2024 at 07:54:09PM +0200, Samo Pogačnik wrote: > > Workflow wise I don't see why you needed to make a merge commit at > > d0cc659. Can you explan what you were doing? > > Well, after i updated the upstream branch, i wanted to preserve your > original debian/sid branch, so

Bug#979188: Maintaining git-subrepo in Debian?

Hi Daniel, I prepared a new git-subrepo in salsa as a fork of your project ( https://salsa.debian.org/spog/git-subrepo). Then i updated upstream and prepared a new 'debian/sid' branch. Would you be so kind to take a look at it and comment on what should be changed/fixed and how to proceed.

Bug#979188: Maintaining git-subrepo in Debian?

Hi Daniel, Dne 24.03.2024 (ned) ob 17:46 +0100 je Daniel Gröber napisal(a): > For building I use debuild or git-buildpackage+sbuild depending on context. > > I create chroots for sbuild with a wrapper script around > sbuild-createchroot using btrfs-snapshots for efficiency. > > To keep working

Bug#979188: Maintaining git-subrepo in Debian?

Hi Samo, On Fri, Mar 15, 2024 at 06:42:54PM +0100, Samo Pogačnik wrote: > Dne 11.03.2024 (pon) ob 20:18 +0100 je Daniel Gröber napisal(a): > > Are you still interested in maintaining git-subrepo in Debian? > > please excuse me for my late response, but my situation from 2020/21 when > we proposed

Bug#979188: Maintaining git-subrepo in Debian?

Hi Daniel, just a quick update. Dne 01.04.2024 (pon) ob 23:07 +0200 je Daniel Gröber napisal(a): > > Anyway gbp has reasonably good documentation, maybe you haven't seen it yet: > http://honk.sigxcpu.org/projects/git-buildpackage/manual-html/gbp.intro.html > (note the navigation buttons in the

Bug#979188: Maintaining git-subrepo in Debian?

Hi Daniel, Dne 31.03.2024 (ned) ob 16:01 +0200 je Daniel Gröber napisal(a): > > You removed the (Closes Bug#) ITP reference from d/changelog. It's policy > to close that but with the first upload, so you have to keep it. > Fixed (even salsa pipeline is happy:). > Workflow wise I don't see why

Bug#979188: Maintaining git-subrepo in Debian?

Hi Samo, On Tue, Mar 19, 2024 at 10:00:44PM +0100, Samo Pogačnik wrote: > > We can also do a call to figure out where you're at and what info you need > > because the huge scope of the general packaging related documentation can > > be a bit overwhelming and confusing, even if what you need to

Bug#979188: Maintaining git-subrepo in Debian?

On Mon, Apr 01, 2024 at 11:07:50PM +0200, Daniel Gröber wrote: > I wish we could use a rebase workflow with gbp but I haven't found a way to > do it yet. At least not with gbp import-ref as-is. We could work on a patch > for it I suppose ;) Looking at git-debrebase

Bug#1070395: tinyproxy: CVE-2023-40533 CVE-2023-49606

Source: tinyproxy X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerabilities were published for tinyproxy. CVE-2023-40533[0]: | An uninitialized memory use vulnerability exists in Tinyproxy 1.11.1 | while parsing HTTP requests. In certain

Bug#1070394: libstb: CVE-2023-47212

Source: libstb X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for libstb. CVE-2023-47212[0]: | A heap-based buffer overflow vulnerability exists in the comment | functionality of stb _vorbis.c v1.22. A specially crafted

Bug#1070392: exiv2: CVE-2024-24826 CVE-2024-25112

Source: exiv2 X-Debbugs-CC: t...@security.debian.org Severity: normal Tags: security Hi, The following vulnerabilities were published for exiv2. The advisories are a little misleading, they mention it as new in v0.28.0, but that only applies to the "main" branch, where it was removed and later

Bug#1070393: gobgp: CVE-2023-46565

Source: gobgp X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for gobgp. CVE-2023-46565[0]: | Buffer Overflow vulnerability in osrg gobgp commit | 419c50dfac578daa4d11256904d0dc182f1a9b22 allows a remote attacker to | cause

Bug#1016957: remove kbd-chooser from the archive?

Paul Gevers (2024-05-04): > If you're sure it's not used, I can work around udd and have it at least > removed from testing. I think a bug retitle (or separate bug) would have > been better. The current bug isn't RC. If it's certain that package isn't used/useful anymore, the correct thing to do

Bug#1059223: src:meson: fails to migrate to testing for too long: fails autopkgtest on arm64 and i386

On Sat, 4 May 2024 at 13:27, Jussi Pakkanen wrote: > Disabling tests is also not a great because it just hides the bug. > Thus other packages that actually use this functionality are going to > hit this eventually and file more bugs on Meson. That is a waste of > everybody's time and energy. I

Bug#1070391: wiki.debian.org: spelling error: This command backup all height key-slots

Package: wiki.debian.org Severity: minor Dear Maintainer, on page https://wiki.debian.org/LVM it says "This command backup all height key-slots" I'd like to suggest that the text is changed to: "This command backs up all eight key-slots"

Bug#1070390: opendmarc: CVE-2024-25768

Source: opendmarc X-Debbugs-CC: t...@security.debian.org Severity: normal Tags: security Hi, The following vulnerability was published for opendmarc. It's unclear whether this is actually a security issue, it doesn't appear to have been reported upstream... CVE-2024-25768[0]: | OpenDMARC 1.4.2

Bug#1070388: jupyterhub: CVE-2024-28233

Source: jupyterhub X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerability was published for jupyterhub. CVE-2024-28233[0]: | JupyterHub is an open source multi-user server for Jupyter | notebooks. By tricking a user into visiting a malicious

Bug#1070387: gdcm: CVE-2024-25569 CVE-2024-22373 CVE-2024-22391

Source: gdcm X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerabilities were published for gdcm. These are fixed in 3.0.24: CVE-2024-25569[0]: | An out-of-bounds read vulnerability exists in the | RAWCodec::DecodeBytes functionality of Mathieu

Bug#1053995: Info received (ITP: fastfetch -- like neofetch, but much faster because written in C)

Hello, On Wed, Nov 15, 2023 at 02:12:00AM +, Li Carter wrote: > Friendly ping > As discussed on https://github.com/fastfetch-cli/fastfetch/issues/533#issuecomment-2094282467 I will be taking this bug to work on it. > > 2023年10月16日 14:39，Debian Bug Tracking System 写道： > > > > Thank you

Bug#1070386: ITP: pass-import - MediaWiki API client in Python

Package: wnpp Severity: wishlist Owner: Hans-Christoph Steiner * Package name: remarkable Version : 1.87+git20240504.e8cc99d Upstream Author : Jamie McGowan * URL : https://github.com/roddhjav/pass-import * License : BSD-2 GPL-2+ LGPL-2.1+ MIT Programming

Bug#1016957: remove kbd-chooser from the archive?

Hi On 04-05-2024 3:36 p.m., Holger Wansing wrote: I think Bastian's approach is, to remove kbd-chooser from the archive, since it was stated (see below) that it's no longer in use. It might be that udd assumes all packages that build a udeb are used. d-i has switched away from it to

Bug#1068583: libgav1: FTBFS on s390x: test failures

On 2024-05-04 10:02:38 -0400, John David Anglin wrote: > Adding architecture-is-little-endian to build dependency is not a good > solution as this blocks building glibc > on big endian targets: > https://buildd.debian.org/status/package.php?p=glibc=sid libavif will also need to drop support for

Bug#1069693: network-manager-fortisslvpn: upgrading the stack from network-manager-fortisslvpn-gnome to ppp broke a current working VPN configuration

Package: network-manager-fortisslvpn Followup-For: Bug #1069693 Hi, Issue #1070343 seems to be related to this issue. But I did not find a way to modify the affected VPN config (GNOME) and add the option (--pppd-accept-remote). Editing /etc/openfortivpn/config file has no (global) effect in this

Bug#1070385: obs-studio: Plugin fails to load libobs.so because it doesn't exist

Package: obs-studio Version: 30.1.2+dfsg-1 Severity: normal Dear Maintainer, I installed the following obs plugin in my home directory: https://github.com/LiveSplit/obs-livesplit-one Upon starting obs, the plugin did not load and the logs told me libobs.so was not found Typing $ dpkg -L

Bug#1070384: llvm-toolchain-14: CVE-2024-31852

Source: llvm-toolchain-14 X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for llvm-toolchain-14. CVE-2024-31852[0]: | LLVM before 18.1.3 generates code in which the LR register can be | overwritten without data being saved

Bug#1070383: llvm-toolchain-15: CVE-2024-31852

Source: llvm-toolchain-15 X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for llvm-toolchain-15. CVE-2024-31852[0]: | LLVM before 18.1.3 generates code in which the LR register can be | overwritten without data being saved

Bug#1070343: openfortivpn: stopped working after today's upgrade in Debian testing

Control: severity -1 important Control: retitle -1 please warn users about the option --pppd-accept-remote needed for ppp >= 2.5.0 On Sat, 04 May 2024 00:23:32 +0200 Francesco Poli (wintermute) wrote: [...] > Peer refused to agree to his IP address [...] I tried to downgrade ppp to version

Bug#1070382: llvm-toolchain-16: CVE-2024-31852

Source: llvm-toolchain-16 X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for llvm-toolchain-16. CVE-2024-31852[0]: | LLVM before 18.1.3 generates code in which the LR register can be | overwritten without data being saved

Bug#1070381: llvm-toolchain-17: CVE-2024-31852

Source: llvm-toolchain-17 X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for llvm-toolchain-17. CVE-2024-31852[0]: | LLVM before 18.1.3 generates code in which the LR register can be | overwritten without data being saved

Bug#1070380: llvm-toolchain-18: CVE-2024-31852

Source: llvm-toolchain-18 X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for llvm-toolchain-18. CVE-2024-31852[0]: | LLVM before 18.1.3 generates code in which the LR register can be | overwritten without data being saved

Bug#1070379: pytorch: CVE-2024-31580 CVE-2024-31583 CVE-2024-31584

Source: pytorch X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerabilities were published for pytorch. CVE-2024-31580[0]: | PyTorch before v2.2.0 was discovered to contain a heap buffer | overflow vulnerability in the component |

Bug#1070378: docker.io: CVE-2024-32473

Source: docker.io X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for docker.io. CVE-2024-32473[0]: | Moby is an open source container framework that is a key component | of Docker Engine, Docker Desktop, and other

Bug#1070377: frr: CVE-2024-34088

Source: frr X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for frr. CVE-2024-34088[0]: | In FRRouting (FRR) through 9.1, it is possible for the get_edge() | function in ospf_te.c in the OSPF daemon to return a NULL

Bug#1069377: scipy: FTBFS on arm64: make[1]: *** [debian/rules:161: execute_after_dh_auto_install] Error 1

Source: scipy Followup-For: Bug #1069377 Control: tags -1 ftbfs This is an odd error. Looks as if the behaviour changed in respect to which exception gets emitted. There's a new release needing to get packaged. Likely it resolves the issue.

Bug#1070376: uriparser: CVE-2024-34402 CVE-2024-34403

Source: uriparser X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerabilities were published for uriparser. CVE-2024-34402[0]: | An issue was discovered in uriparser through 0.9.7. | ComposeQueryEngine in UriQuery.c has an integer overflow via

Bug#1070375: python-jose: CVE-2024-33663 CVE-2024-33664

Source: python-jose X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerabilities were published for python-jose. CVE-2024-33663[0]: | python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA | keys and other key formats. This is similar

Bug#1070373: quickjs: CVE-2024-33263

Source: quickjs X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for quickjs. CVE-2024-33263[0]: | QuickJS commit 3b45d15 was discovered to contain an Assertion | Failure via JS_FreeRuntime(JSRuntime *) at quickjs.c.

Bug#1070374: social-auth-app-django: CVE-2024-32879

Source: social-auth-app-django X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for social-auth-app-django. CVE-2024-32879[0]: | Python Social Auth is a social authentication/registration | mechanism. Prior to version 5.4.1,

Bug#1070372: tqdm: CVE-2024-34062

Source: tqdm X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for tqdm. CVE-2024-34062[0]: | tqdm is an open source progress bar for Python and CLI. Any optional | non-boolean CLI arguments (e.g. `--delim`, `--buf-size`, |

Bug#1070371: ofono: CVE-2023-4232 CVE-2023-4233 CVE-2023-4234 CVE-2023-4235

Source: ofono X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerabilities were published for ofono. It's not clear whether they were actually reported upstream or only submitted to Red Hat Bugzilla: CVE-2023-4232[0]: | A flaw was found in ofono,

Bug#1070370: dmitry: CVE-2017-7938 CVE-2020-14931 CVE-2024-31837

Source: dmitry X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerabilities were published for dmitry. CVE-2017-7938[0]: | Stack-based buffer overflow in DMitry (Deepmagic Information | Gathering Tool) version 1.3a (Unix) allows attackers to cause

Bug#1070304: util-linux: Please build and provide the cal binary

On Sat, May 04, 2024 at 04:13:37PM +0200, Michael Meskes wrote: > > The example was to show how people could achieve using ncal to get > > cal, if the > > ncal package would not ship a cal binary. > > Sure, but the only reason for the cal binary as it is, is to have the > original cal available.

Bug#1067320: topal: FTBFS: debian/rules: debian_packaging.mk: No such file or directory

Source: topal Followup-For: Bug #1067320 Control: tag -1 + patch Hello. Attachment 002 below fixes this bug. Would you be OK with a non maintainer upload? The other attachments are unrelated sugestions. Would you be OK with a salsa.debian.org/debian/topal git repository? PATH 1/10 updates the

Bug#1053128: smbclient: "smbtree -N" causes a segfault when "server min protocol = NT1"

Hello, I am not a samba maintainer, just trying to collect some more information. As far as I see the crash happens because "cli_credentials_get_password(creds)" in line 62 returns a null pointer, which gets forwarded to the call to strlcpy without further check. Kind regards, Bernhard (rr)

Bug#1070299: Acknowledgement (gcc-14: Wrong vectorized code generated with -O3, ok without -O.)

This issue turned out to not be an gcc issue, but a badly declared flexible / 'zero-length array' at the end of the structure, which then relied on undefined behaviour. The declared size (here [4]) was then apparently taken into account in the code generation. I do not know of a way to

Bug#1034878: #1034878 meld gives python traceback if run as root

Control: forwarded -1 https://gitlab.gnome.org/GNOME/meld/-/issues/846 Control: severity -1 minor On Sat, May 4, 2024 at 8:42 AM wrote: > Bug #1034878 - meld gives python traceback if run as root is caused by the > call to Gtk.Settings.get_default() in settings.py at about line 56. In general,

Bug#755434: pmount: please support exfat filesystem (via fuse)

* Vincent Danjean , 2016-12-25 23:36: ++{ "exfat", "nosuid,nodev,user,quiet,nonempty", 1, "077", ",iocharset=%s",",fmask=%04o,dmask=%04o"}, This doesn't work for me. In dmesg I see: exfat: Unknown parameter 'quiet' -- Jakub Wilk

Bug#1070270: riseup-vpn: client no longer works due to cert verification problem

Hi Matt, Quoting Matt Taggart: > Package: riseup-vpn > Version: 0.21.11+ds1-5+b1 > Severity: grave > > When attempting to run the bookworm riseup-vpn package, it fails to > connect to riseup's servers and gives the following output: > > 2024/05/01 18:21:23 Error fetching eip v3 >

Bug#1003300: kxl: New upstream project and versions

The diff between old & new repos is very conservative; only autohell files

Bug#1070334: libnet-frame-device-perl needs network access during build

Control: tags -1 + patch Étienne Mollier, on 2024-05-03: > Has someone an idea of better approach? Answering to myself, the test suite does not actually attempt to access the Internet, but it does attempt to access the device on the build machine that can route by default to 1.1.1.1. This is

Bug#885414: base-files: lack of quoting in shell variable expansions in /etc/profile

El 4/5/24 a las 16:48, ca...@allfreemail.net escribió: Package: base-files Version: 13.2 Followup-For: Bug #885414 Dear Maintainer, I'd like to point out that the "fix" doesn't actually fix the reported problem. Variables that must be quoted in order to have a well-defined behavior are still

Bug#1070369: sssd: CVE-2023-3758

Source: sssd Version: 2.9.4-2 Severity: grave Tags: security upstream Forwarded: https://github.com/SSSD/sssd/pull/7302 X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for sssd. CVE-2023-3758[0]: | A race condition flaw was found in sssd

Bug#1070367: linux-image-6.7.12-amd64: No WiFi

Package: src:linux X-Debbugs-Cc: yahweh19...@hailmail.net Version: 6.7.12-1 Severity: important Dear Maintainer, * What led up to the situation? Booting with the linux-image-6.7.12-amd64 kernel results in Wi-Fi not working and Wi-Fi isn't even an option under network-manager. This issue also

  1   2   >