Hi,
I tried to use this patch and rebuild the package, it fails because the
main patch has fuzz and quilt refresh doesn't change anything. This
needs urgent attention, even if users are using udev-detect like myself,
they are still catching this bug.
Sean
--
I love deadlines. I love the
Subject: pulseaudio: Pulseaudio craches on start with SegFault error
Package: pulseaudio
Version: 14.2-2
Severity: grave
Justification: renders package unusable
Dear Maintainer,
*** Reporter, please consider answering these questions, where appropriate
***
* What led up to the situation?
Processing commands for cont...@bugs.debian.org:
> unarchive 928226
Bug #928226 {Done: Andreas Beckmann }
I have asked the release team in #991335 for pre-approval of a
upstream tarball repack which removes the non-free karts, includes the
suggested patches by upstream and will either clarify the remaining open
copyright questions or replace the assets with alternatives.
I'm currently in contact with
Your message dated Tue, 20 Jul 2021 22:18:31 +
with message-id
and subject line Bug#991307: fixed in aspell 0.60.8-3
has caused the Debian Bug report #991307,
regarding aspell: CVE-2019-25051
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not
Package: monit
Version: 1:5.27.2-1
Severity: serious
Forwarded:
https://bitbucket.org/tildeslash/monit/pull-requests/110/use-an-epsilon-when-doing-the-reboot-boot
Hi!
On Linux the current method to retrieve the boot timestamp is racy,
which means that the reboot checks (the daemon start delay),
Your message dated Tue, 20 Jul 2021 21:33:32 +
with message-id
and subject line Bug#970191: fixed in bookworm 1.1.2+git20210715-1
has caused the Debian Bug report #970191,
regarding bookworm: Python3 syntax errors at configure step
to be marked as done.
This means that you claim that the
X-Debbugs-CC: allan grossman
On Tue, Jul 20, 2021 at 02:54:26PM -0500, allan wrote:
> Setting checkForUpdates=false resolved the issue. Thanks, Dennis :)
Okay, that is good to know. I personally feel like that option should
be set to false by default in Debian (don't the pop-ups annoy the
Your message dated Tue, 20 Jul 2021 20:37:23 +
with message-id
and subject line Bug#991040: fixed in varnish 6.5.2-1
has caused the Debian Bug report #991040,
regarding varnish: CVE-2021-36740: VSV7
to be marked as done.
This means that you claim that the problem has been dealt with.
If
Source: octave-zeromq
Version: 1.5.3-1
Severity: serious
Tags: ftbfs
https://buildd.debian.org/status/package.php?p=octave-zeromq=experimental
...
checking for pkg-config... no
checking for libzmq... no
configure: error: octave zeromq package requires zeromq library
error: pkg: error running
Setting checkForUpdates=false resolved the issue. Thanks, Dennis :)
X-Debbugs-CC: allan grossman
On Tue, Jul 20, 2021 at 02:16:16PM -0500, allan wrote:
> apt log shows qt libraries updated three days ago - these wouldn't
> have made it to Bullseye yet.
>
> Start-Date: 2021-07-17 08:52:52
> Requested-By: wizard (1000)
> Install: libqt5quickwidgets5:amd64
Your message dated Tue, 20 Jul 2021 19:48:38 +
with message-id
and subject line Bug#990227: fixed in kyotocabinet 1.2.76-5~exp2
has caused the Debian Bug report #990227,
regarding kyotocabinet-utils,libkyotocabinet-dev: unhandled symlink to
directory conversion: /usr/share/doc/PACKAGE
to be
apt log shows qt libraries updated three days ago - these wouldn't
have made it to Bullseye yet.
Start-Date: 2021-07-17 08:52:52
Requested-By: wizard (1000)
Install: libqt5quickwidgets5:amd64 (5.15.2+dfsg-6, automatic),
qml-module-qtquick-window2:amd64 (5.15.2+dfsg-6, automatic), sox:amd64
X-Debbugs-CC: allan grossman
On Tue, Jul 20, 2021 at 01:16:39PM -0500, allan wrote:
> This has only been broken for a couple of days - there's a strong
> possibility that whatever broke it hasn't made it to Bullseye yet.
> This appears to be an upstream bug because a Manjaro user running same
>
在 2021-07-20星期二的 13:16 -0500,allan写道:
> This has only been broken for a couple of days - there's a strong
> possibility that whatever broke it hasn't made it to Bullseye yet.
> This appears to be an upstream bug because a Manjaro user running same
> version of flameshot and Qt is experiencing same
More information.
Qt5 updates on these machines was installed three days ago; since I
update daily I'm fairly certain these updates haven't made it to
Bullseye yet.
This has only been broken for a couple of days - there's a strong
possibility that whatever broke it hasn't made it to Bullseye yet.
This appears to be an upstream bug because a Manjaro user running same
version of flameshot and Qt is experiencing same behavior and as
mentioned, it broke a couple
Processing commands for cont...@bugs.debian.org:
> clone 990566 -1
Bug #990566 {Done: Noah Meyerhans } [src:dovecot] dovecot:
CVE-2021-33515 CVE-2021-29157 CVE-2020-28200
Bug 990566 cloned as bug 991323
> retitle 990566 dovecot: CVE-2021-33515 CVE-2021-29157
Bug #990566 {Done: Noah Meyerhans }
Hi Noah,
[sorry for lack of reply to the previous mail, busy with other stuff]
On Tue, Jul 20, 2021 at 08:03:12AM -0700, Noah Meyerhans wrote:
> On Mon, Jul 19, 2021 at 08:21:45AM -0700, Noah Meyerhans wrote:
> > > > CVE-2021-33515[0]:
> > > > | The submission service in Dovecot before 2.3.15
X-Debbugs-CC: allan grossman
I can't reproduce this under current Bullseye KDE/xorg -- flameshot
behaves absolutley normally. It could be a Wayland issue, and
flameshot's Wayland support is apparently still experimental.
Let us know if running flameshot like so fixes this for you:
Your message dated Tue, 20 Jul 2021 16:05:15 +
with message-id
and subject line Bug#990566: fixed in dovecot 1:2.3.13+dfsg1-2
has caused the Debian Bug report #990566,
regarding dovecot: CVE-2021-33515 CVE-2021-29157 CVE-2020-28200
to be marked as done.
This means that you claim that the
Processing commands for cont...@bugs.debian.org:
> tags 991307 + upstream
Bug #991307 [src:aspell] aspell: CVE-2019-25051
Added tag(s) upstream.
> found 991308 2.15.0+ds1-2
Bug #991308 [src:openvswitch] openvswitch: CVE-2021-36980
Marked as found in versions openvswitch/2.15.0+ds1-2.
> tags
Processing commands for cont...@bugs.debian.org:
> found 991307 0.60.8-2
Bug #991307 [src:aspell] aspell: CVE-2019-25051
Marked as found in versions aspell/0.60.8-2.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
991307:
Correction.
"flameshot &" is in openbox autostart, "flameshot gui -p
/home/username/temp" is mapped to hotkey in ~/.config/openbox/rc.xml -
this configuration has been working for more than a year.
On Tue, Jul 20, 2021 at 10:18 AM allan grossman wrote:
>
> Package: flameshot
> Version:
Package: flameshot
Version: 0.9.0+ds1-1
Severity: grave
Justification: renders package unusable
X-Debbugs-Cc: wizard10...@gmail.com
Dear Maintainer,
* What led up to the situation?
Have flameshot gui -p /home/username/temp set in openbox autostart. Mapped
hotkeys were not responding.
On Mon, Jul 19, 2021 at 08:21:45AM -0700, Noah Meyerhans wrote:
> > > CVE-2021-33515[0]:
> > > | The submission service in Dovecot before 2.3.15 allows STARTTLS
> > > | command injection in lib-smtp. Sensitive information can be redirected
> > > | to an attacker-controlled address.
> > >
> > >
Your message dated Tue, 20 Jul 2021 14:38:06 +
with message-id
and subject line Bug#990371: fixed in munin 2.0.67-2
has caused the Debian Bug report #990371,
regarding munin-node: Unit fails on startup - Runtime directory n/a
to be marked as done.
This means that you claim that the problem
Processing control commands:
> forwarded -1 https://gitlab.gnome.org/GNOME/gegl/-/issues/289
Bug #991300 [gegl] 1:0.4.30-1 is FTFBS on s390x (bytes per pixel in header is
4096 instead of 16)
Set Bug forwarded-to-address to
'https://gitlab.gnome.org/GNOME/gegl/-/issues/289'.
> severity -1
Source: aspell
X-Debbugs-CC: t...@security.debian.org
Severity: grave
Tags: security
Hi,
The following vulnerability was published for aspell.
CVE-2019-25051[0]:
| objstack in GNU Aspell 0.60.8 has a heap-based buffer overflow in
| acommon::ObjStack::dup_top (called from acommon::StringMap::add
Your message dated Tue, 20 Jul 2021 11:03:38 +
with message-id
and subject line Bug#990835: fixed in suricata 1:6.0.1-3
has caused the Debian Bug report #990835,
regarding suricata: CVE-2021-35063
to be marked as done.
This means that you claim that the problem has been dealt with.
If this
Source: deltachat-core
Version: 0.45.0+ds-1
Severity: serious
deltachat-core was never part of a stable release before,
and looking at #991284 it doesn't sound as if shipping
it in bullseye would be beneficial.
Your message dated Tue, 20 Jul 2021 06:18:33 +
with message-id
and subject line Bug#991293: fixed in pillow 8.1.2+dfsg-0.3
has caused the Debian Bug report #991293,
regarding pillow: CVE-2021-34552 - buffer overflow in Convert.c
to be marked as done.
This means that you claim that the
33 matches
Mail list logo
