arc is marked for autoremoval from testing

2019-01-04 Thread Debian testing autoremoval watch
arc 5.21q-5 is marked for autoremoval from testing on 2019-01-20 It is affected by these RC bugs: 774527: arc: directory traversal

adplug_2.2.1+dfsg3-1_amd64.changes ACCEPTED into unstable

2019-01-04 Thread Debian FTP Masters
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 04 Jan 2019 23:15:15 +0100 Source: adplug Binary: libadplug-2.2.1-0v5 libadplug-dev adplug-utils Architecture: source amd64 Version: 2.2.1+dfsg3-1 Distribution: unstable Urgency: medium Maintainer: Debian QA Group

Processing of adplug_2.2.1+dfsg3-1_amd64.changes

2019-01-04 Thread Debian FTP Masters
adplug_2.2.1+dfsg3-1_amd64.changes uploaded successfully to localhost along with the files: adplug_2.2.1+dfsg3-1.dsc adplug_2.2.1+dfsg3-1.debian.tar.xz adplug-utils-dbgsym_2.2.1+dfsg3-1_amd64.deb adplug-utils_2.2.1+dfsg3-1_amd64.deb adplug_2.2.1+dfsg3-1_amd64.buildinfo libadplug-2.2.1-0

Processed: severity of 774527 is grave

2019-01-04 Thread Debian Bug Tracking System
Processing commands for cont...@bugs.debian.org: > severity 774527 grave Bug #774527 [arc] arc: directory traversal Severity set to 'grave' from 'normal' > thanks Stopping processing here. Please contact me if you need assistance. -- 774527: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=7745

Bug#884923: abiword: CVE-2017-17529

2019-01-04 Thread Jeremy Bicha
On Fri, Jan 4, 2019 at 3:31 PM Salvatore Bonaccorso wrote: > Did you got a chance to ping upstream on that issue and report it? No, but you can if you like. https://gitlab.gnome.org/World/AbiWord is the current source repo, but you might need to still use bugzilla for reporting issues. Thanks,

Bug#884923: abiword: CVE-2017-17529

2019-01-04 Thread Moritz Mühlenhoff
On Sun, May 27, 2018 at 10:54:06PM +0200, Gabriel Corona wrote: > This seems correct with respect to injection through the URI: > the URI string cannot be expanded into multiple arguments > and is not passed to `system()`. Agreed, this CVE seems like a non issue, the CVE entry at MITRE also only r

Bug#884923: abiword: CVE-2017-17529

2019-01-04 Thread Salvatore Bonaccorso
Hi Jeremy, On Mon, Mar 12, 2018 at 10:07:05PM +0100, Salvatore Bonaccorso wrote: > Jeremy, > > On Sun, Mar 11, 2018 at 08:45:42AM -0400, Jeremy Bicha wrote: > > On Sun, Mar 11, 2018 at 8:40 AM, Salvatore Bonaccorso > > wrote: > > > Is abiword upstream still active? > > > > Yes. > > > > https:

Bug#918088: Acknowledgement (autofs-ldap: automount dies with SIGABRT after libkrb5-3 upgrade - "(k5_mutex_lock: Assertion `r == 0' failed.)")

2019-01-04 Thread Adrian Bunk
Control: reassign -1 libkrb5-3 1.16.2-1 Control: affects -1 autofs-ldap > After the latest upgrade of libkrb5-3 (1.16.1-1 -> 1.16.2-1) automount > starts but dies immediately after accessing a automounter point. > > Automount is configured to authenticate via GSSAPI using system keytab. > After t

Processed: Re: Bug#918088: Acknowledgement (autofs-ldap: automount dies with SIGABRT after libkrb5-3 upgrade - "(k5_mutex_lock: Assertion `r == 0' failed.)")

2019-01-04 Thread Debian Bug Tracking System
Processing control commands: > reassign -1 libkrb5-3 1.16.2-1 Bug #918088 [autofs-ldap] autofs-ldap: automount dies with SIGABRT after libkrb5-3 upgrade - "(k5_mutex_lock: Assertion `r == 0' failed.)" Bug reassigned from package 'autofs-ldap' to 'libkrb5-3'. No longer marked as found in versions

Bug#918197: Please, drop me from Uploaders

2019-01-04 Thread David Prévot
Source: twitter-bootstrap Severity: wishlist Please, drop me from d/control and d/copyright. I don’t even seem to have write access to the repository in order to do it myself. Regards David signature.asc Description: PGP signature