Bug#944238: buster-pu: package debian-edu-config/2.10.65+deb10u2

2019-11-08 Thread Holger Levsen
On Fri, Nov 08, 2019 at 10:10:54PM +, Adam D. Barratt wrote: > Control: tags -1 + confirmed [...] > Please go ahead. thanks, uploaded. -- cheers, Holger ---

Bug#944396: transition: exiv2

2019-11-08 Thread Steve M. Robbins
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: transition New upstream, new soversion. Ben file: title = "exiv2"; is_affected = .depends ~ "libexiv2-14" | .depends ~ "libexiv2-27"; is_good = .depends ~ "libexiv2-27"; is_bad = .depends ~

Processed: Re: stretch-pu: package python-flask-rdf/0.2.0-1.1~deb9u1

2019-11-08 Thread Debian Bug Tracking System
Processing control commands: > tag -1 - moreinfo Bug #887324 [release.debian.org] stretch-pu: package python-flask-rdf/0.2.0-1.1~deb9u1 Removed tag(s) moreinfo. -- 887324: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=887324 Debian Bug Tracking System Contact ow...@bugs.debian.org with

Bug#887324: stretch-pu: package python-flask-rdf/0.2.0-1.1~deb9u1

2019-11-08 Thread Andreas Beckmann
Followup-For: Bug #887324 Control: tag -1 - moreinfo On Thu, 22 Aug 2019 15:07:42 +0200 Andreas Beckmann wrote: > On 21/08/2019 00.30, Adam D. Barratt wrote: > >> That is not sufficient: #896358, #896385 > >> > >> ImportError: No module named 'rdflib' > > > > What's the status here? > >

Bug#940595: transition: hypre

2019-11-08 Thread Drew Parsons
On 2019-11-09 05:45, Paul Gevers wrote: Hi Drew, On 03-11-2019 21:01, Paul Gevers wrote: On 30-10-2019 08:26, Drew Parsons wrote: So yes, the unversioned libhypre package name is certainly the option that will preserve the greatest sanity (I'll proceed directly with 2.18.2 once you give the

Bug#944390: buster-pu: package python-flask-rdf/0.2.1-1+deb10u1

2019-11-08 Thread Andreas Beckmann
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu Let's add the missing Depends on python{3,}-rdflib. Andreas diff -Nru python-flask-rdf-0.2.1/debian/changelog python-flask-rdf-0.2.1/debian/changelog ---

Bug#943594: buster-pu: package libapache-mod-auth-kerb/5.4-2.4~deb10u1

2019-11-08 Thread Paul Wise
On Fri, 2019-11-08 at 22:06 +, Adam D. Barratt wrote: > Please go ahead. Signed and uploaded the source package. -- bye, pabs https://wiki.debian.org/PaulWise signature.asc Description: This is a digitally signed message part

Bug#942486: buster-pu: package shelldap/1.4.0-4+deb10u1

2019-11-08 Thread Salvatore Bonaccorso
hi Adam, On Fri, Nov 08, 2019 at 09:52:28PM +, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Thu, 2019-10-17 at 08:52 +0200, Salvatore Bonaccorso wrote: > > I was asked if we can address #941411 ("shelldap: sometimes falls > > back to simple auth when it should do sasl") as

Uploading linux (5.3.9-1)

2019-11-08 Thread Ben Hutchings
I intend to upload linux version 5.3.9-1 to unstable tomorrow (Saturday). The pending changes include: * Update to upstream version 5.3.9 * debian/bin/gencontrol_signed.py: Fix code style error * Add maint scripts to meta-packages to convert doc directories to symlinks (Closes:

Bug#944384: nmu: ros-*-msgs

2019-11-08 Thread Jochen Sprickerhof
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu Hi, ros-gencpp in version 0.6.2-3 doesn't sort elements before generating headers during the build of ros-*-msgs resulting in multi arch problems. This has been fixed in ros-gencpp 0.6.2-4.

Bug#943846: buster-pu: package python-cryptography/2.6.1-3+deb10u2

2019-11-08 Thread Moritz Mühlenhoff
On Fri, Nov 08, 2019 at 10:09:07PM +, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Wed, 2019-10-30 at 16:44 +0100, Moritz Muehlenhoff wrote: > > (This is a followup update on top of the +deb10u1 already in s-p-u, > > I've reached out to Tristan beforehand) > > > > Attached

Processed: Re: Bug#944238: buster-pu: package debian-edu-config/2.10.65+deb10u2

2019-11-08 Thread Debian Bug Tracking System
Processing control commands: > tags -1 + confirmed Bug #944238 [release.debian.org] buster-pu: package debian-edu-config/2.10.65+deb10u2 Added tag(s) confirmed. -- 944238: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=944238 Debian Bug Tracking System Contact ow...@bugs.debian.org with

Bug#944238: buster-pu: package debian-edu-config/2.10.65+deb10u2

2019-11-08 Thread Adam D. Barratt
Control: tags -1 + confirmed On Wed, 2019-11-06 at 22:22 +0800, Holger Levsen wrote: > We'd like to update debian-edu-config in buster to fix one important > (#944013 debian-edu-config: adjusted ini files needed to match > changed behaviour of firefox-esr 68.2.0esr) and one normal bug: > >

Bug#943846: buster-pu: package python-cryptography/2.6.1-3+deb10u2

2019-11-08 Thread Adam D. Barratt
Control: tags -1 + confirmed On Wed, 2019-10-30 at 16:44 +0100, Moritz Muehlenhoff wrote: > (This is a followup update on top of the +deb10u1 already in s-p-u, > I've reached out to Tristan beforehand) > > Attached debdiff fixes a memory leak in python-cryptography, which > was noticed in an

Processed: Re: Bug#943846: buster-pu: package python-cryptography/2.6.1-3+deb10u2

2019-11-08 Thread Debian Bug Tracking System
Processing control commands: > tags -1 + confirmed Bug #943846 [release.debian.org] buster-pu: package python-cryptography/2.6.1-3+deb10u2 Added tag(s) confirmed. -- 943846: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=943846 Debian Bug Tracking System Contact ow...@bugs.debian.org with

Processed: Re: Bug#942827: buster-pu: package ndppd/0.2.5-4+deb10u1

2019-11-08 Thread Debian Bug Tracking System
Processing control commands: > tags -1 + confirmed Bug #942827 [release.debian.org] buster-pu: package ndppd/0.2.5-4+deb10u1 Added tag(s) confirmed. -- 942827: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942827 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#943594: buster-pu: package libapache-mod-auth-kerb/5.4-2.4~deb10u1

2019-11-08 Thread Adam D. Barratt
Control: tags -1 + confirmed On Sun, 2019-10-27 at 14:10 +0800, Paul Wise wrote: > This brings the fix for a use after free crash to buster. > Since there were no other changes between buster and bullseye, > I elected to just add a "backport to buster" changelog. Please go ahead. Regards, Adam

Processed: Re: Bug#943766: buster-pu: package libofx/1:0.9.14-1+deb10u1

2019-11-08 Thread Debian Bug Tracking System
Processing control commands: > tags -1 + confirmed Bug #943766 [release.debian.org] buster-pu: package libofx/1:0.9.14-1+deb10u1 Added tag(s) confirmed. -- 943766: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=943766 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#942827: buster-pu: package ndppd/0.2.5-4+deb10u1

2019-11-08 Thread Adam D. Barratt
Control: tags -1 + confirmed On Tue, 2019-10-22 at 09:18 +0200, Jean-Michel Vourgère wrote: > In buster, ndppd has a world writable pid file. This prevent the > daemon to be stop/restarted, which is a real pain when you set it up. Please go ahead. Regards, Adam

Bug#943766: buster-pu: package libofx/1:0.9.14-1+deb10u1

2019-11-08 Thread Adam D. Barratt
Control: tags -1 + confirmed On Tue, 2019-10-29 at 15:21 +0100, Dylan Aïssi wrote: > Upstream has fixed CVE-2019-9656, this CVE is non-dsa. I already > backported patches to unstable (#924350) and now I would like to fix > the Buster version. Please find attached a debdiff. > Please go ahead.

Processed: Re: Bug#943594: buster-pu: package libapache-mod-auth-kerb/5.4-2.4~deb10u1

2019-11-08 Thread Debian Bug Tracking System
Processing control commands: > tags -1 + confirmed Bug #943594 [release.debian.org] buster-pu: package libapache-mod-auth-kerb/5.4-2.4~deb10u1 Added tag(s) confirmed. -- 943594: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=943594 Debian Bug Tracking System Contact ow...@bugs.debian.org

Bug#942575: buster-pu: package openjpeg2/2.3.0-2+deb10u1

2019-11-08 Thread Adam D. Barratt
Control: tags -1 + confirmed On Fri, 2019-10-18 at 13:23 +0200, Hugo Lefeuvre wrote: > as discussed in #939553[0], no DSA will be issued by the security > team for CVE-2018-21010 and this vulnerability can be fixed via -pu. > The attached debdiff addresses this issue, along with CVE-2018-20847.

Processed: Re: Bug#942575: buster-pu: package openjpeg2/2.3.0-2+deb10u1

2019-11-08 Thread Debian Bug Tracking System
Processing control commands: > tags -1 + confirmed Bug #942575 [release.debian.org] buster-pu: package openjpeg2/2.3.0-2+deb10u1 Added tag(s) confirmed. -- 942575: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942575 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Processed: Re: Bug#942520: buster-pu: package oar/2.5.8-1

2019-11-08 Thread Debian Bug Tracking System
Processing control commands: > tags -1 + confirmed Bug #942520 [release.debian.org] buster-pu: package oar/2.5.8-1 Added tag(s) confirmed. -- 942520: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942520 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#942486: buster-pu: package shelldap/1.4.0-4+deb10u1

2019-11-08 Thread Adam D. Barratt
Control: tags -1 + confirmed On Thu, 2019-10-17 at 08:52 +0200, Salvatore Bonaccorso wrote: > I was asked if we can address #941411 ("shelldap: sometimes falls > back to simple auth when it should do sasl") as well for buster. The > severity is not very high, so you might want to dispute this but

Bug#942520: buster-pu: package oar/2.5.8-1

2019-11-08 Thread Adam D. Barratt
Control: tags -1 + confirmed On Thu, 2019-10-17 at 15:48 +0200, Vincent Danjean wrote: > The default behavior of perl Storable::dclone function changed > in buster, setting a default maximum recursion in the structures > [1], [2]. > This change has not been spotted before the release, but now

Processed: Re: Bug#942486: buster-pu: package shelldap/1.4.0-4+deb10u1

2019-11-08 Thread Debian Bug Tracking System
Processing control commands: > tags -1 + confirmed Bug #942486 [release.debian.org] buster-pu: package shelldap/1.4.0-4+deb10u1 Added tag(s) confirmed. -- 942486: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942486 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#944009: buster-pu: package ncurses/6.1+20181013-2+deb10u2

2019-11-08 Thread Sven Joachim
On 2019-11-08 19:52 +, Adam D. Barratt wrote: > On Wed, 2019-11-06 at 11:54 +, Adam D. Barratt wrote: >> Control: tags -1 + confirmed d-i >> >> On 2019-11-02 19:10, Sven Joachim wrote: >> > I would like to upload ncurses 6.1+20181013-2+deb10u2 to buster, >> > fixing >> > several bugs in

Bug#941713: buster-pu: package ntpsec/1.1.3+dfsg1-2+deb10u1

2019-11-08 Thread Adam D. Barratt
Control: tags -1 + confirmed On Fri, 2019-10-04 at 00:54 -0500, Richard Laager wrote: > This is my first time with the Debian proposed update process (though > I have done my own Ubuntu SRU once), so please bear with me and let > me know if I've done anything wrong. Seems OK to me. :-) > The

Processed: Re: Bug#941713: buster-pu: package ntpsec/1.1.3+dfsg1-2+deb10u1

2019-11-08 Thread Debian Bug Tracking System
Processing control commands: > tags -1 + confirmed Bug #941713 [release.debian.org] buster-pu: package ntpsec/1.1.3+dfsg1-2+deb10u1 Added tag(s) confirmed. -- 941713: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941713 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#941683: buster-pu: package node-yarnpkg/1.13.0-1+deb10u1

2019-11-08 Thread Adam D. Barratt
Control: tags -1 + confirmed On Thu, 2019-10-03 at 20:57 +0200, Xavier Guimard wrote: > node-yarnpkg is vulnerable: it exports auth data in http requests > (#941354, CVE-2019-5448). This patch imports upstream fix. Please go ahead; thanks. Regards, Adam

Processed: Re: Bug#941683: buster-pu: package node-yarnpkg/1.13.0-1+deb10u1

2019-11-08 Thread Debian Bug Tracking System
Processing control commands: > tags -1 + confirmed Bug #941683 [release.debian.org] buster-pu: package node-yarnpkg/1.13.0-1+deb10u1 Added tag(s) confirmed. -- 941683: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941683 Debian Bug Tracking System Contact ow...@bugs.debian.org with

Processed: Re: Bug#941365: buster-pu: package libimobiledevice/1.2.1~git20181030.92c5462-2

2019-11-08 Thread Debian Bug Tracking System
Processing control commands: > tags -1 + moreinfo Bug #941365 [release.debian.org] buster-pu: package libimobiledevice/1.2.1~git20181030.92c5462-2 Added tag(s) moreinfo. -- 941365: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941365 Debian Bug Tracking System Contact ow...@bugs.debian.org

Bug#941365: buster-pu: package libimobiledevice/1.2.1~git20181030.92c5462-2

2019-11-08 Thread Adam D. Barratt
Control: tags -1 + moreinfo On Sun, 2019-09-29 at 18:48 +0200, Yves-Alexis Perez wrote: > libimobiledevice in Buster has some issue with devices running iOS > 13+. Backup using idevicebackup2 never finishes, apparently because > of some behavior change in newer iOS version. > > With coordination

Bug#941365: buster-pu: package libimobiledevice/1.2.1~git20181030.92c5462-2

2019-11-08 Thread Yves-Alexis Perez
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On Fri, 2019-11-08 at 20:53 +, Adam D. Barratt wrote: > Sorry for the delay in getting back to you. Yeah, this time it's me who's really sorry. > > That sounds OK, but it looks like the fix still hasn't made it to sid, > so I'm tagging this as

Bug#940595: marked as done (transition: hypre)

2019-11-08 Thread Debian Bug Tracking System
Your message dated Fri, 8 Nov 2019 21:45:47 +0100 with message-id <85c2e705-e20f-ddc3-b2ad-525a47f01...@debian.org> and subject line Re: Bug#940595: transition: hypre has caused the Debian Bug report #940595, regarding transition: hypre to be marked as done. This means that you claim that the

Bug#944162: marked as done (transition: proftpd-dfsg)

2019-11-08 Thread Debian Bug Tracking System
Your message dated Fri, 8 Nov 2019 21:44:12 +0100 with message-id <53c001d4-8b7c-ccd9-71b2-2f7b12830...@debian.org> and subject line Re: Bug#944162: transition: proftpd-dfsg has caused the Debian Bug report #944162, regarding transition: proftpd-dfsg to be marked as done. This means that you

Processed: Re: Bug#940647: buster-pu: package libmysofa/0.6~dfsg0-3

2019-11-08 Thread Debian Bug Tracking System
Processing control commands: > tags -1 + confirmed Bug #940647 [release.debian.org] buster-pu: package libmysofa/0.6~dfsg0-3 Added tag(s) confirmed. -- 940647: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=940647 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Processed: bug 944310 is forwarded to https://release.debian.org/transitions/html/r-api-bioc-3.10.html

2019-11-08 Thread Debian Bug Tracking System
Processing commands for cont...@bugs.debian.org: > forwarded 944310 > https://release.debian.org/transitions/html/r-api-bioc-3.10.html Bug #944310 [release.debian.org] transition: r-api-bioc-3.10 Set Bug forwarded-to-address to 'https://release.debian.org/transitions/html/r-api-bioc-3.10.html'.

Bug#940647: buster-pu: package libmysofa/0.6~dfsg0-3

2019-11-08 Thread Adam D. Barratt
Control: tags -1 + confirmed On Wed, 2019-09-18 at 14:42 +0200, IOhannes m zmoelnig wrote: > the binary package libmysofa0 is used by VLC (the ubiquitous media > player) and the ffmpeg framework (the ubiquitous media framework), > and consequently has a popcon of 43382. > > The src:libmysofa

Bug#944374: buster-pu: package fonts-noto-cjk/1:20170601+repack1-3+deb10u1

2019-11-08 Thread Adam D. Barratt
Control: tags -1 + confirmed On Fri, 2019-11-08 at 14:01 -0500, Boyuan Yang wrote: > A solution for https://bugs.debian.org/907999 was recently found and > the fix has been tested and pushed onto Sid. Since this bug also > affects Stable, it would be better to have it fixed through a stable- > pu

Bug#944009: buster-pu: package ncurses/6.1+20181013-2+deb10u2

2019-11-08 Thread Adam D. Barratt
On Wed, 2019-11-06 at 11:54 +, Adam D. Barratt wrote: > Control: tags -1 + confirmed d-i > > On 2019-11-02 19:10, Sven Joachim wrote: > > I would like to upload ncurses 6.1+20181013-2+deb10u2 to buster, > > fixing > > several bugs in tic's parser which have been reported last > > month. Two

Processed: Re: Bug#944374: buster-pu: package fonts-noto-cjk/1:20170601+repack1-3+deb10u1

2019-11-08 Thread Debian Bug Tracking System
Processing control commands: > tags -1 + confirmed Bug #944374 [release.debian.org] buster-pu: package fonts-noto-cjk/1:20170601+repack1-3+deb10u1 Added tag(s) confirmed. -- 944374: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=944374 Debian Bug Tracking System Contact

Bug#944133: buster-pu: package glib2.0/2.58.3-2+deb10u2

2019-11-08 Thread Adam D. Barratt
On Wed, 2019-11-06 at 12:08 +, Adam D. Barratt wrote: > Control: tags -1 + confirmed d-i > > On 2019-11-04 19:12, Simon McVittie wrote: > > A recent security fix to ibus (CVE-2019-14822, #940267, DSA-4525-1) > > exposed an interoperability bug between GLib's implementation of D- > > Bus > >

Bug#944374: buster-pu: package fonts-noto-cjk/1:20170601+repack1-3+deb10u1

2019-11-08 Thread Boyuan Yang
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu X-Debbugs-CC: debian-fo...@lists.debian.org Dear Release Team, A solution for https://bugs.debian.org/907999 was recently found and the fix has been tested and pushed onto Sid.

Bug#944019: marked as done (nmu: netsniff-ng_0.6.6-1)

2019-11-08 Thread Debian Bug Tracking System
Your message dated Fri, 8 Nov 2019 15:44:01 +0200 with message-id <99607704-4b14-b753-f263-d26fc3ab2...@debian.org> and subject line Re: nmu: netsniff-ng_0.6.6-1 has caused the Debian Bug report #944019, regarding nmu: netsniff-ng_0.6.6-1 to be marked as done. This means that you claim that the

Bug#944351: Providing minor version somewhere in /etc/os-release in buster

2019-11-08 Thread Santiago Vila
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu Dear Release Managers: I received this bug from one of the ansible upstream authors: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931197 asking to include information about

Bug#944190: release.debian.org: Allow britney to consider installability of dependencies of essential packages

2019-11-08 Thread Mark Hindley
Neils, On Fri, Nov 08, 2019 at 07:03:00AM +, Niels Thykier wrote: > Hi Mark > > Thanks for the investigative work and the patch. > > I have not had time to review the patch yet in details and hope to have > a look this weekend. Thanks. > Could I convince you to add a small test case for

Bug#944348: buster-pu: package schleuder/3.4.0-2+deb10u1

2019-11-08 Thread Georg Faerber
Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu Dear SRMs, Schleuder in buster is affected by various problems, which I would like to fix with this proposed update: - Schleuder fails to recognize keywords in mails with