Bug#881797: fix ftbfs with updated libcdio-paranoia

Package: src:xmms2 Version: 0.8+dfsg-18 Severity: serious Tags: sid buster patch patch at https://patches.ubuntu.com/x/xmms2/xmms2_0.8+dfsg-18ubuntu1.patch

Processed: bug 881796 is forwarded to https://github.com/pluxml/PluXml/issues/253

Processing commands for cont...@bugs.debian.org: > forwarded 881796 https://github.com/pluxml/PluXml/issues/253 Bug #881796 [pluxml] CVE-2017-1001001: pluxml: XSS and missing httponly flag Set Bug forwarded-to-address to 'https://github.com/pluxml/PluXml/issues/253'. > thanks Stopping processing

Bug#881796: CVE-2017-1001001: pluxml: XSS and missing httponly flag

Package: pluxml Version: 5.5-2 Severity: grave Tags: security upstream https://nvd.nist.gov/vuln/detail/CVE-2017-1001001 https://github.com/pluxml/PluXml/issues/253 PluXml version 5.6 is vulnerable to stored cross-site scripting vulnerability, within the article creation page, which can result

Bug#881795: fix ftbfs with updated libcdio

Package: src:kover Version: 1:4-11 Severity: serious Tags: sid buster patch kover ftbfs with updated libcdio with the updated libcdio. Upstream version 6 builds fine with that. see https://launchpad.net/ubuntu/+source/kover for a packaging proposal.

Bug#881793: fix ftbfs with updated libcdio-paranoia

Package: src:daisy-player Version: 11.2-1 Severity: serious Tags: sid buster patch patch at https://patches.ubuntu.com/d/daisy-player/daisy-player_11.2-1ubuntu1.patch

Bug#881794: fix ftbfs with updated libcdio-paranoia

Package: src:gmerlin Version: 1.2.0~dfsg+1-6 Severity: serious Tags: sid buster patch patch at https://patches.ubuntu.com/g/gmerlin/gmerlin_1.2.0~dfsg+1-6ubuntu2.patch

Bug#880906: marked as done (gr-iqbal: removal of gr-iqbal makes files disappear from libgnuradio-iqbalance3.7.10)

Your message dated Wed, 15 Nov 2017 05:19:48 + with message-id and subject line Bug#880906: fixed in gr-iqbal 0.37.2-11 has caused the Debian Bug report #880906, regarding gr-iqbal: removal of gr-iqbal makes files disappear from

Bug#881079: marked as done (kdiagram FTBFS: Qt5LinguistTools*.cmake moved to qttools5-dev)

Your message dated Wed, 15 Nov 2017 04:34:06 + with message-id and subject line Bug#881079: fixed in kdiagram 2.6.0-2 has caused the Debian Bug report #881079, regarding kdiagram FTBFS: Qt5LinguistTools*.cmake moved to qttools5-dev to be marked as done.

Processed: [NMU] Re: Bug#853613: pinfo: gcc-7 with -Os: undefined references to inline functions

Processing control commands: > tag -1 + pending Bug #853613 [src:pinfo] gcc-7 with -Os: undefined references to inline functions Added tag(s) pending. -- 853613: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853613 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#853613: [NMU] Re: Bug#853613: pinfo: gcc-7 with -Os: undefined references to inline functions

Control: tag -1 + pending Hi Bas, Joost van Baal-Ilić wrote on 4th of October 2017: > Have verified package builds succesfully with gcc-7 in current sid chroot. Thanks a lot, Joost! > Made another house-keeping change, updated debdiff attached. Unfortunately that debdiff seems incomplete: *

Bug#880427: marked as done (tinyproxy: If tinyproxy receives a SIGHUP, then the children exit without being restarted and tinyproxy hangs.)

Your message dated Wed, 15 Nov 2017 01:49:56 + with message-id and subject line Bug#880427: fixed in tinyproxy 1.8.4-3 has caused the Debian Bug report #880427, regarding tinyproxy: If tinyproxy receives a SIGHUP, then the children exit without being

Bug#881753: closed by Joachim Breitner <nome...@debian.org> (Bug#881753: fixed in local-apt-repository 0.5)

Hi, Am Dienstag, den 14.11.2017, 23:49 +0100 schrieb Andreas Beckmann: > On 11/14/2017 11:24 PM, Debian Bug Tracking System wrote: > >* Make sure /etc/apt/sources.list.d/ exists only when package is > > installed > > (but not removed but not purged) (Closes: #881753) > > That sounds

Bug#863884: marked as done (CVE-2017-9334)

Your message dated Tue, 14 Nov 2017 23:19:02 + with message-id and subject line Bug#863884: fixed in chicken 4.12.0-0.2 has caused the Debian Bug report #863884, regarding CVE-2017-9334 to be marked as done. This means that you claim that the problem has

Bug#881448: marked as done (python-eventlet fails to install on amd64: SyntaxError: invalid syntax)

Your message dated Tue, 14 Nov 2017 23:19:53 + with message-id and subject line Bug#881448: fixed in python-eventlet 0.20.0-2 has caused the Debian Bug report #881448, regarding python-eventlet fails to install on amd64: SyntaxError: invalid syntax to be

Bug#834845: marked as done (chicken: CVE-2016-6830 CVE-2016-6831)

Your message dated Tue, 14 Nov 2017 23:19:02 + with message-id and subject line Bug#834845: fixed in chicken 4.12.0-0.2 has caused the Debian Bug report #834845, regarding chicken: CVE-2016-6830 CVE-2016-6831 to be marked as done. This means that you

Bug#881235: marked as done (stop using transitional packages myspell-{af,ca,en-gb,en-za,it,ky,sl,sw,th} and use hunspell-* instead in l10n.hunspell.*)

Your message dated Wed, 15 Nov 2017 00:10:00 +0100 with message-id <151070100028.2999.5189791872069526...@auryn.jones.dk> and subject line Fixed since boxer-data 10.6.1 has caused the Debian Bug report #881235, regarding stop using transitional packages myspell-{af,ca,en-gb,en-za,it,ky,sl,sw,th}

Bug#880900: marked as done (irony-server: fails to upgrade from 'testing' - trying to overwrite /usr/bin/irony-server)

Your message dated Tue, 14 Nov 2017 23:05:04 + with message-id and subject line Bug#880900: fixed in irony-mode 1.2.0-2 has caused the Debian Bug report #880900, regarding irony-server: fails to upgrade from 'testing' - trying to overwrite

Bug#681726: Time to remove eclipse from Testing?

Am 09.11.2017 um 21:34 schrieb Jeremy Bicha: [...] > Have you considered dropping the libswt-webkit-gtk-3-jni dependency > from eclipse-rcp? Then the swt-gtk source package could stop building > libswt-webkit-gtk-3-jni and we could complete the webkitgtk removal > from Debian Testing. > > Thanks,

Processed: add bugs curl blocks

Processing commands for cont...@bugs.debian.org: > # curl users which do CURLOPT_SSL_CTX_FUNCTION should be moved with the > # same libssl > block 859831 by 858398 Bug #859831 [xmltooling] xmltooling: Please migrate to openssl1.1 in Buster 859831 was not blocked by any bugs. 859831 was blocking:

Bug#881753: closed by Joachim Breitner <nome...@debian.org> (Bug#881753: fixed in local-apt-repository 0.5)

On 11/14/2017 11:24 PM, Debian Bug Tracking System wrote: >* Make sure /etc/apt/sources.list.d/ exists only when package is installed > (but not removed but not purged) (Closes: #881753) That sounds like postrm remove: 'rm -rf /etc/apt/sources.list.d/' which made me curious :-) (Good, it

Bug#880958: yapf3 explicitly depends on python3.5

What about the patches fixing the other two bugs affecting yapf? Please consider checking the BTS. Ghis Le 14 nov. 2017 22:25, "Ana C. Custura" a écrit : Hi Ghis, Thank you for the reply. There is a package on mentors that addresses both this bug (88958) and the split

Bug#881743: [PKG-Openstack-devel] Bug#881743: openstack-dashboard: fails to upgrade from 'stretch': Couldn't find anything to import: /horizon/lib/roboto_fontface/css/roboto-fontface.scss

On 11/14/2017 06:42 PM, Andreas Beckmann wrote: > Since the problem happened while running trigger processing of the > *old* (stretch) version of openstack-dashboard, probably the package > shipping (or no longer shipping) the "offending file" > (roboto-fontface.scss ?) needs to declare a > >

Bug#880958: yapf3 explicitly depends on python3.5

Hi Ghis, Thank you for the reply. There is a package on mentors that addresses both this bug (88958) and the split (879196) bug you raised. I am waiting for my mentor to review it before uploading. Ana On Tue, Nov 14, 2017, at 08:59 AM, Ghislain Vaillant wrote: > Thank you Matthias for raising

Bug#881291: libdbd-sqlite3-perl FTBFS with libsqlite3-dev 3.21.0-1

Control: forwarded -1 https://github.com/DBD-SQLite/DBD-SQLite/issues/28 On Tue, 14 Nov 2017 21:43:25 +, Damyan Ivanov wrote: > So this seems like a genuine problem with newer sqlite. Upstream's > sqlite3.h is 3.13.0, while Debian/unstable now has 3.21.0. Upstream's git master is at 3.20.1

Bug#881627: Congratulations AmazonShopper! fVhLRz

Bye > On Nov 13, 2017, at 12:30 PM, AmazonReward Alert > wrote: > > Message for emanuel > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > >

Bug#881085: marked as done (q4wine FTBFS: Qt5LinguistTools*.cmake moved to qttools5-dev)

Your message dated Tue, 14 Nov 2017 22:21:12 + with message-id and subject line Bug#881085: fixed in q4wine 1.3.6-2 has caused the Debian Bug report #881085, regarding q4wine FTBFS: Qt5LinguistTools*.cmake moved to qttools5-dev to be marked as done. This

Processed: Re: Bug#881291: libdbd-sqlite3-perl FTBFS with libsqlite3-dev 3.21.0-1

Processing control commands: > forwarded -1 https://github.com/DBD-SQLite/DBD-SQLite/issues/28 Bug #881291 [src:libdbd-sqlite3-perl] libdbd-sqlite3-perl FTBFS with libsqlite3-dev 3.21.0-1 Ignoring request to change the forwarded-to-address of bug#881291 to the same value -- 881291:

Bug#881652: marked as done (m2crypto FTBFS on ppc64el: HttpslibSSLClientTestCase.test_HTTPSConnection_SNI_support test failure)

Your message dated Tue, 14 Nov 2017 22:20:58 + with message-id and subject line Bug#881652: fixed in m2crypto 0.27.0-4 has caused the Debian Bug report #881652, regarding m2crypto FTBFS on ppc64el:

Bug#881753: marked as done (local-apt-repository: breaks apt operation if removed)

Your message dated Tue, 14 Nov 2017 22:20:53 + with message-id and subject line Bug#881753: fixed in local-apt-repository 0.5 has caused the Debian Bug report #881753, regarding local-apt-repository: breaks apt operation if removed to be marked as done.

Bug#881767: sensible-utils: Argument injection in sensible-browser

Package: sensible-utils Version: 0.0.10 Severity: grave Tags: security Justification: user security hole When the BROWSER environment variable is set, an invalid URI can be used to inject arguments in sensible-browser. Description === When BROWSER is set, sensible-browser calls the

Bug#881291: libdbd-sqlite3-perl FTBFS with libsqlite3-dev 3.21.0-1

Control: Forwarded 881291 https://github.com/DBD-SQLite/DBD-SQLite/issues/28 > https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/libdbd-sqlite3-perl.html > > ... > Test Summary Report > --- > t/virtual_table/rt_99748.t (Wstat: 512 Tests:

Processed: Re: Bug#881291: libdbd-sqlite3-perl FTBFS with libsqlite3-dev 3.21.0-1

Processing control commands: > Forwarded 881291 https://github.com/DBD-SQLite/DBD-SQLite/issues/28 Bug #881291 [src:libdbd-sqlite3-perl] libdbd-sqlite3-perl FTBFS with libsqlite3-dev 3.21.0-1 Set Bug forwarded-to-address to 'https://github.com/DBD-SQLite/DBD-SQLite/issues/28'. -- 881291:

Processed: user debian...@lists.debian.org, usertagging 868851, affects 880900 ..., affects 877970 ...

Processing commands for cont...@bugs.debian.org: > user debian...@lists.debian.org Setting user to debian...@lists.debian.org (was a...@debian.org). > usertags 868851 piuparts There were no usertags set. Usertags are now: piuparts. > affects 880900 + irony-mode Bug #880900 [irony-server]

Bug#881652: marked as pending

tag 881652 pending thanks Hello, Bug #881652 reported by you has been fixed in the Git repository. You can see the changelog below, and you can check the diff of the fix at: https://anonscm.debian.org/cgit/python-modules/packages/m2crypto.git/commit/?id=5246156 --- commit

Processed: Bug#881652 marked as pending

Processing commands for cont...@bugs.debian.org: > tag 881652 pending Bug #881652 [src:m2crypto] m2crypto FTBFS on ppc64el: HttpslibSSLClientTestCase.test_HTTPSConnection_SNI_support test failure Added tag(s) pending. > thanks Stopping processing here. Please contact me if you need assistance.

Bug#881291: libdbd-sqlite3-perl FTBFS with libsqlite3-dev 3.21.0-1

Control: tag -1 confirmed upstream -=| Adrian Bunk, 09.11.2017 20:25:17 +0200 |=- > Source: libdbd-sqlite3-perl > Version: 1.54-2 > Severity: serious > > https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/libdbd-sqlite3-perl.html > > ... > Test Summary Report >

Processed: yapf3: uninstallable in jessie-backports

Processing control commands: > fixed -1 0.15.1-1 Bug #881765 [yapf3] yapf3: uninstallable in jessie-backports Marked as fixed in versions yapf/0.15.1-1. -- 881765: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881765 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Processed: Re: Bug#881291: libdbd-sqlite3-perl FTBFS with libsqlite3-dev 3.21.0-1

Processing control commands: > tag -1 confirmed upstream Bug #881291 [src:libdbd-sqlite3-perl] libdbd-sqlite3-perl FTBFS with libsqlite3-dev 3.21.0-1 Added tag(s) confirmed and upstream. -- 881291: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881291 Debian Bug Tracking System Contact

Bug#881765: yapf3: uninstallable in jessie-backports

Package: yapf3 Version: 0.15.1-1~bpo8+1 Severity: serious Control: fixed -1 0.15.1-1 Hi, the yapf backport was not built in a clean jessie environment and therefore yapf3 picked up a dependency on python3.5 from stretch, but jessie has only python3.4, rendering the yapf3 package uninstallable in

Bug#881764: openjdk-7: several vulnerabilities

Source: openjdk-7 Version: 7u151-2.6.11-1 Severity: serious Hi, The last round of vulnerabilities for OpenJDK hasn't been fixed in openjdk-7 yet. It'd be good to get an updated package in experimental so it can be pushed to jessie and wheezy. Thanks, Emilio -- System Information: Debian

Bug#881627: Congratulations AmazonShopper! fm

sunshine45...@gmail.com On Nov 14, 2017 2:08 PM, "AmazonReward Alert" < debian.a...@manchmal.in-ulm.de> wrote: > Message for sundra > > > > > >

Bug#881763: pynmea2: duplicate package with python-nmea2

Source: pynmea2 Version: 1.9.0-1 Severity: serious Justification: Policy 4.13, 7.4 Hi! I'm afraid that your package ships the very same code as python-nmea2 (other than yours being outdated: while 1.9.0 sat in NEW, 1.12.0 was released upstream and the other package is already updated). Both are

Bug#881627: Congratulations AmazonShopper! lxmrr2

nice con attempt, I will be reporting you to officials On Mon, Nov 13, 2017 at 11:30 AM, AmazonReward Alert < debian.a...@manchmal.in-ulm.de> wrote: > Message for Ed > > > > > >

Bug#881753: local-apt-repository: breaks apt operation if removed

Hi Joachim, On Tue, Nov 14, 2017 at 4:35 PM, Joachim Breitner wrote: > > Hi Felipe, > > this just came in. Since you last worked on this package, would you be > interesting in fixing this bug? > Sorry, I'm currently lacking time to do this. -- Saludos, Felipe Sateler

Processed: Re: Bug#881757: collectd: snmp plugin: double free or heap corruption

Processing control commands: > retitle -1 collectd: CVE-2017-16820: snmp plugin: double free or heap > corruption Bug #881757 [src:collectd] collectd: snmp plugin: double free or heap corruption Changed Bug title to 'collectd: CVE-2017-16820: snmp plugin: double free or heap corruption' from

Bug#881757: collectd: snmp plugin: double free or heap corruption

Control: retitle -1 collectd: CVE-2017-16820: snmp plugin: double free or heap corruption Hi Philippe Thanks for providing the details as well in the BTS. FTR, this issue has been assigned CVE-2017-16820. Regards, Salvatore

Bug#881746: marked as done (enscribe: build dependency libgd2-xpm-dev does not exist)

Your message dated Tue, 14 Nov 2017 20:49:54 + with message-id and subject line Bug#881746: fixed in enscribe 0.1.0-3 has caused the Debian Bug report #881746, regarding enscribe: build dependency libgd2-xpm-dev does not exist to be marked as done. This

Bug#881757: Details

When NET-SNMP's snmp_sess_synch_response(sess,*req,**res) receives response (and it is correct from snmp_synch_input callback) it ALWAYS free()'s second parameter - req. Looking for (net-snmp-5.7.3...)/snmplib/snmp_api.c:5424 - packet processing routine. In case of bad SNMP table response

Processed: tagging 881756

Processing commands for cont...@bugs.debian.org: > tags 881756 + moreinfo confirmed help Bug #881756 [swi-prolog] swi-prolog: FTBFS on mips: Build killed with signal TERM Added tag(s) help, moreinfo, and confirmed. > thanks Stopping processing here. Please contact me if you need assistance. --

Processed: notfound 881756 in 7.4.2+dfsg-2

Processing commands for cont...@bugs.debian.org: > notfound 881756 7.4.2+dfsg-2 Bug #881756 [swi-prolog] swi-prolog: FTBFS on mips: Build killed with signal TERM Ignoring request to alter found versions of bug #881756 to the same values previously set > thanks Stopping processing here. Please

Processed: reassign 881756 to swi-prolog

Processing commands for cont...@bugs.debian.org: > reassign 881756 swi-prolog 7.6.1+dfsg-2 Bug #881756 [swi-prolog] swi-prolog: FTBFS on mips: Build killed with signal TERM Ignoring request to reassign bug #881756 to the same package Bug #881756 [swi-prolog] swi-prolog: FTBFS on mips: Build

Processed: collectd: snmp plugin: double free or heap corruption

Processing control commands: > found -1 5.7.1-1.1 Bug #881757 [src:collectd] collectd: snmp plugin: double free or heap corruption Marked as found in versions collectd/5.7.1-1.1. -- 881757: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881757 Debian Bug Tracking System Contact

Bug#881757: collectd: snmp plugin: double free or heap corruption

Source: collectd Version: 5.7.2-2 Severity: grave Tags: security upstream Forwarded: https://github.com/collectd/collectd/issues/2291 Control: found -1 5.7.1-1.1 Hi There is a a double free or heap corruption issue in collectd, as reported upstream in

Bug#881756: swi-prolog: FTBFS on mips: Build killed with signal TERM

Package: swi-prolog Version: 7.4.2+dfsg-2 Severity: serious Justification: fails to build from source The mips build of swi-prolog failed: Running scripts from core ... E: Build killed with signal TERM after 360 minutes of inactivity The bug can be reproduced

Bug#864953: closed by Emilio Pozuelo Monfort <po...@debian.org> (Bug#864953: fixed in shared-mime-info 1.9-1)

On 09/28/2017 12:57 AM, Debian Bug Tracking System wrote: > #864953: dpkg: trigger problems with shared-mime-info while upgrading > gnome-screensaver:i386 from jessie to stretch Do you plan to fix this in stretch, too? If the package reaches stretch-proposed-updates with some time left before

Bug#881753: local-apt-repository: breaks apt operation if removed

Hi Felipe, this just came in. Since you last worked on this package, would you be interesting in fixing this bug? Thanks, Joachim Am Dienstag, den 14.11.2017, 20:30 +0100 schrieb Andreas Beckmann: > Package: local-apt-repository > Version: 0.4 > Severity: serious > User:

Bug#881754: amanda-server: Amanda does not lock while dumping - multiple sessions possible

Package: amanda-server Version: 1:3.5-2 Severity: grave Tags: upstream Justification: causes non-serious data loss (I am not sure if it is upstream) I used to make backup two phases. 1. amdump to holding space, and then 2. amflush to target disk (vtapes) I noticed that I can make amflush

Bug#881753: local-apt-repository: breaks apt operation if removed

Package: local-apt-repository Version: 0.4 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package can cause problems. If local-apt-repository is removed (but not purged) from stretch,

Bug#881627: Congratulations AmazonShopper! REIKAq

Stop On Nov 14, 2017 2:08 PM, "AmazonReward Alert" < debian.a...@manchmal.in-ulm.de> wrote: > Message for michael > > > > > > > > >

Bug#881627: Congratulations AmazonShopper! Kr

Stop emailing me On Nov 14, 2017 12:08 PM, "AmazonReward Alert" < debian.a...@manchmal.in-ulm.de> wrote: > Message for mario > > > > > >

Bug#881751: auto-apt-proxy: breaks apt operation if removed

Package: auto-apt-proxy Version: 2 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Control: found -1 6 Hi, during a test with piuparts I noticed your package can cause problems. If auto-apt-proxy is removed (but not purged) from stretch,

Processed: auto-apt-proxy: breaks apt operation if removed

Processing control commands: > found -1 6 Bug #881751 [auto-apt-proxy] auto-apt-proxy: breaks apt operation if removed Marked as found in versions auto-apt-proxy/6. -- 881751: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881751 Debian Bug Tracking System Contact ow...@bugs.debian.org with

Processed: redmine: creates world-writable tempdir /tmp/bundler/home

Processing control commands: > affects -1 + redmine-sqlite redmine-mysql redmine-pgsql Bug #881749 [redmine] redmine: creates world-writable tempdir /tmp/bundler/home Added indication that 881749 affects redmine-sqlite, redmine-mysql, and redmine-pgsql -- 881749:

Bug#881749: redmine: creates world-writable tempdir /tmp/bundler/home

Package: redmine Version: 3.3.1-4 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Control: affects -1 + redmine-sqlite redmine-mysql redmine-pgsql Hi, during a test with piuparts I noticed your package behaves strangely while upgrading from 'stretch' to 'buster'. There is

Bug#881746: enscribe: build dependency libgd2-xpm-dev does not exist

Source: enscribe Version: 0.1.0-2 Severity: serious Tags: sid buster Hi, enscribe build depends on: libgd2-xpm-dev | libgd-dev The libgd2-xpm-dev no longer exists. Although libgd-dev does exist, it is ignored by the buildds which only use the first build-dependency. Please remove

Bug#881745: fswebcam: build dependency libgd2-noxpm-dev does not exist

Source: fswebcam Version: 20140113-1 Severity: serious Tags: sid buster Hi, fswebcam build-depends on: libgd2-noxpm-dev | libgd2-xpm-dev Neither of these packages exist anymore. Please build-depend on libgd-dev instead. Thanks, James signature.asc Description: OpenPGP digital signature

Processed: Re: ruby-http-parser.rb: FTBFS with newer http-parser version

Processing commands for cont...@bugs.debian.org: > tags 881627 patch Bug #881627 [src:ruby-http-parser.rb] ruby-http-parser.rb: FTBFS with newer http-parser version Added tag(s) patch. > thanks Stopping processing here. Please contact me if you need assistance. -- 881627:

Bug#881627: ruby-http-parser.rb: FTBFS with newer http-parser version

tags 881627 patch thanks Christoph Biedl wrote... > Would you mind disabling or relaxing the test on your side for > the time being? Patch attached, tested successfully. As I noticed some packaging work has been done since the last release, so I'm somewhat reluctant to do a NMU. But since this

Bug#881744: virtualbox-dkms and virtualbox-guest-dkms fail to build on kernel 4.14.0

Package: virtualbox-dkms Version: 5.2.0-dfsg-5 Severity: serious Justification: fails to build from source (but built successfully in the past) Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** virtualbox dkms packages fail to build on kernel 4.14.0

Processed: Pending fixes for bugs in the libxml-libxml-perl package

Processing commands for cont...@bugs.debian.org: > tag 866676 + pending Bug #866676 {Done: Salvatore Bonaccorso } [src:libxml-libxml-perl] libxml-libxml-perl: CVE-2017-10672: Use-after-free in XML::LibXML::Node::replaceChild Added tag(s) pending. > thanks Stopping processing

Bug#866676: Pending fixes for bugs in the libxml-libxml-perl package

tag 866676 + pending thanks Some bugs in the libxml-libxml-perl package are closed in revision 4275f5bfdfa543ceb7e92a6382a7725600ef304b in branch ' wheezy' by Salvatore Bonaccorso The full diff can be seen at

Bug#851070: marked as done (ccnet: Please migrate to openssl1.1 in buster)

Your message dated Tue, 14 Nov 2017 16:04:05 + with message-id and subject line Bug#851070: fixed in ccnet 6.1.3-1 has caused the Debian Bug report #851070, regarding ccnet: Please migrate to openssl1.1 in buster to be marked as done. This means that you

Bug#858930: WIP, but no ETA

I've started work porting ipsec-tools to openssl 1.1, but it's definitely going to be a fair bit of work. It's certainly not going to be complete before the package is removed from buster, but it may be finished in time to get back into buster for the release. Unfortunately, upstream hasn't shown

Bug#876733: Licensing of jeuclid

Hi, according to bug #876733, there is a licensing problem with jeuclid : - the LICENSE.txt file [1] says Apache 2.0 ; - the NOTICE file [2] looks like an Apache 1.0. This RC bug will get jeuclid out of Debian, hence also scilab (which I just moved from O to ITA). My interpretation of the issue

Processed: Re: Bug#881301: gnome-shell: segfault error 4 in libgobject-2.0.so.0.5400.2

Processing control commands: > found -1 3.26.1-3 Bug #881301 [gnome-shell] gnome-shell: intermittent "invalid unclassed pointer in cast to 'ClutterText'" + segfault Marked as found in versions gnome-shell/3.26.1-3. -- 881301: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881301 Debian Bug

Bug#881301: gnome-shell: segfault error 4 in libgobject-2.0.so.0.5400.2

Control: found -1 3.26.1-3 Am 14.11.2017 um 15:25 schrieb Lucas Dyer: > On Sun, 12 Nov 2017 at 15:09:17 +0100, Michael Biebl wrote: >> Is this a regression in 3.26.2-1 or can you reproduce the segfaults with >> 3.26.1-3 from testing as well? > > Yes, I can reproduce with

Bug#880962: mips*: "gcc --help=target --help=optimizers" busyloops forever

Control: tags -1 patch Hi, On 07/11/17 13:45, James Cowgill wrote: > Control: forwarded -1 https://gcc.gnu.org/bugzilla/show_bug.cgi?id=82880 > > Hi, > > On 06/11/17 18:07, James Cowgill wrote: >> On 06/11/17 12:11, Adrian Bunk wrote: >>> Package: gcc-7 >>> Version: 7.2.0-12 >>> Severity:

Bug#881301: gnome-shell: segfault error 4 in libgobject-2.0.so.0.5400.2

On Sun, 12 Nov 2017 at 15:09:17 +0100, Michael Biebl wrote: > Is this a regression in 3.26.2-1 or can you reproduce the segfaults with > 3.26.1-3 from testing as well? Yes, I can reproduce with 3.26.1-3. As far as my logs go, the problem has occurred from at least 15 Oct.

Processed: Re: Bug#880962: mips*: "gcc --help=target --help=optimizers" busyloops forever

Processing control commands: > tags -1 patch Bug #880962 [gcc-7] mips*: "gcc --help=target --help=optimizers" busyloops forever Added tag(s) patch. -- 880962: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880962 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#881713: munin: copyright file missing after upgrade (policy 12.5)

Source: munin Version: 2.999.6-5 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, a test with piuparts revealed that your package misses the copyright file after an upgrade, which is a violation of Policy 12.5:

Bug#881710: libpythonqt-qt5-common-dev,libpythonqt-qtall-qt5-common-dev: both ship /usr/include/PythonQt5/moc_predefs.h

Package: libpythonqt-qt5-common-dev,libpythonqt-qtall-qt5-common-dev Version: 3.2-4 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package failed to install because it tries to overwrite other packages files. >From the

Bug#875928: marked as done (ruby2.3: CVE-2017-14033: Buffer underrun vulnerability in OpenSSL ASN1 decode)

Your message dated Tue, 14 Nov 2017 13:36:32 + with message-id and subject line Bug#875928: fixed in ruby2.3 2.3.5-1 has caused the Debian Bug report #875928, regarding ruby2.3: CVE-2017-14033: Buffer underrun vulnerability in OpenSSL ASN1 decode to be

Bug#875931: marked as done (ruby2.3: CVE-2017-10784: Escape sequence injection vulnerability in the Basic authentication of WEBrick)

Your message dated Tue, 14 Nov 2017 13:36:32 + with message-id and subject line Bug#875931: fixed in ruby2.3 2.3.5-1 has caused the Debian Bug report #875931, regarding ruby2.3: CVE-2017-10784: Escape sequence injection vulnerability in the Basic

Bug#853648: marked as done (ruby2.3: ftbfs with GCC-7)

Your message dated Tue, 14 Nov 2017 13:36:32 + with message-id and subject line Bug#853648: fixed in ruby2.3 2.3.5-1 has caused the Debian Bug report #853648, regarding ruby2.3: ftbfs with GCC-7 to be marked as done. This means that you claim that the

Bug#875936: marked as done (ruby2.3: CVE-2017-0898: Buffer underrun vulnerability in Kernel.sprintf)

Your message dated Tue, 14 Nov 2017 13:36:32 + with message-id and subject line Bug#875936: fixed in ruby2.3 2.3.5-1 has caused the Debian Bug report #875936, regarding ruby2.3: CVE-2017-0898: Buffer underrun vulnerability in Kernel.sprintf to be marked

Bug#879231: marked as done (ruby2.3: CVE-2017-0903: Unsafe object deserialization through YAML formatted gem specifications)

Your message dated Tue, 14 Nov 2017 13:36:32 + with message-id and subject line Bug#879231: fixed in ruby2.3 2.3.5-1 has caused the Debian Bug report #879231, regarding ruby2.3: CVE-2017-0903: Unsafe object deserialization through YAML formatted gem

Bug#881708: libc++: FTBFS on armel/armhf/mips*/powerpc

Source: libc++ Version: 4.0.1-2 Severity: serious Justification: fails to build from source libc++ does FTBFS on several architectures where it built previously: https://buildd.debian.org/status/package.php?p=libc%2b%2b=unstable Andreas

Bug#859550: pgadmin3: Please migrate to openssl1.1 in buster

On 2017-10-21 16:37:14 [+0200], Denis Briand wrote: > Hello Sebastian, Hi Denis, > Pgadmin3 is no longer supported by upstream team and I haven't enought skills > in openssl lib to fix this bug. > Feel free to raise the bug severity to prevent pgadmin3 to be in buster. > > In a marvelous world

Bug#879631: marked as done (python3-flask-socketio: missing dependency)

Your message dated Tue, 14 Nov 2017 10:30:01 -0200 with message-id <20171114103001.be37526b087ed79878db3...@softwarelivre.org> and subject line has caused the Debian Bug report #879631, regarding python3-flask-socketio: missing dependency to be marked as done. This means that you claim that the

Processed: user debian...@lists.debian.org, usertagging 841552, affects 841552, usertagging 881676 ...

Processing commands for cont...@bugs.debian.org: > user debian...@lists.debian.org Setting user to debian...@lists.debian.org (was a...@debian.org). > usertags 841552 piuparts Usertags were: qa-ftbfs-20161021 qa-ftbfs. Usertags are now: piuparts qa-ftbfs-20161021 qa-ftbfs. > affects 841552 +

Bug#881458: marked as done (hlint fails to run)

Your message dated Tue, 14 Nov 2017 12:05:20 + with message-id and subject line Bug#881458: fixed in hlint 2.0.9-2 has caused the Debian Bug report #881458, regarding hlint fails to run to be marked as done. This means that you claim that the problem has

Bug#881707: tortoisehg: unsatisfiable Depends: mercurial (< 4.4~) but 4.4.1-1 is to be installed

Package: tortoisehg Version: 4.3.1-1 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package is no longer installable in sid: The following packages have unmet dependencies: tortoisehg : Depends: mercurial (< 4.4~) but

Bug#858993: marked as done (libapache2-mod-auth-openidc: Please migrate to openssl1.1 in buster)

Your message dated Tue, 14 Nov 2017 11:50:48 + with message-id and subject line Bug#858993: fixed in libapache2-mod-auth-openidc 2.3.2-1 has caused the Debian Bug report #858993, regarding libapache2-mod-auth-openidc: Please migrate to openssl1.1 in buster

Bug#881706: openturns: FTBFS against python3.6

Source: openturns Version: 1.7-3 Severity: serious Tags: sid buster Justification: fails to build from source (but built successfully in the past) Hi, openturns/sid FTBFS with python3.6 as the default python3 version: https://buildd.debian.org/status/package.php?p=openturns=unstable These

Bug#784512: FYI link to python-pyside2 RFP

El 14 nov. 2017 7:51 a.m., "Geert Stappers" escribió: For your information Request For Packaging pyside2 is https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877871 Thanks!

Bug#881705: syslog-ng-dev: syslog-ng.pc still requires eventlog

Package: syslog-ng-dev Version: 3.11.1-2 Severity: serious With eventlog merged into syslog-ng eventlog.pc is gone, but syslog-ng.pc still references it. This causes syslog-ng-incubator to FTBFS. Andreas

Bug#851069: marked as done (cjose: Please migrate to openssl1.1 in buster)

Your message dated Tue, 14 Nov 2017 11:19:58 + with message-id and subject line Bug#851069: fixed in cjose 0.5.1+dfsg1-2 has caused the Debian Bug report #851069, regarding cjose: Please migrate to openssl1.1 in buster to be marked as done. This means

Bug#784512: FYI link to python-pyside2 RFP

For your information Request For Packaging pyside2 is https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877871

Bug#880308: dh_install: Cannot find (any matches for) "usr/lib/xorg/modules/extensions/libvnc.so" (tried in ., debian/tmp)

Package: tigervnc Version: 1.7.0+dfsg-7 I encountered the exact same issue when building it in a clean sid chroot. A workaround is to build it in a stretch chroot indeed. -- Jean-Christophe Manciot

Bug#880554: xen domu freezes with kernel linux-image-4.9.0-4-amd64

We're having the same problem here. For some reason, only 2 domUs are affected (the dom0 has a total of 22 domUs, 14 of those are running Debian stretch, and 13 of those are running Linux 4.9.51-1). The `xl console` output of the first domU (according to our monitoring it hangs since

  1   2   >