Bug#987564: marked as done (NMU: CVE-2020-25708 - Fix possible divide-by-zero.)

Hi, On Thu, Apr 29, 2021 at 06:39:04PM +, Debian Bug Tracking System wrote: > Hi, > > Package maintainer has submitted/uploaded this fix, so closing this bug. I'm slightly confused though here, I do not see a buster-pu bugreport for finxing this issue yet in https://bugs.debian.org/cgi-bin/

Bug#987548: buster-pu: package node-redis/2.8.0-1+deb10u1

Hi [Disclaimer, not part of the release team] On Sun, Apr 25, 2021 at 02:13:47PM +0200, Yadd wrote: > Package: release.debian.org > Severity: normal > Tags: buster > User: release.debian@packages.debian.org > Usertags: pu > > [ Reason ] > rode-redis is vulnerable ro ReDoS (CVE-2021-29469 >

Bug#987808: unblock: klibc/2.0.8-6

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-Cc: debian-ker...@lists.debian.org Please unblock package klibc [ Reason ] Fix some possible integer overflows in the heap manager and the cpio command. These are probably not to

Bug#987776: unblock: bind9/1:9.16.15-1

Control: tags -1 moreinfo d-i Hi Ondřej, On 29-04-2021 12:19, Ondřej Surý wrote: This is a confusing debdiff. > [ Reason ] > Upstream security release update of the bind9 package. 136 files changed, 7112 insertions(+), 10801 deletions(-) Really? All that for a security release? > [ Impact ]

Processed: Re: Bug#987776: unblock: bind9/1:9.16.15-1

Processing control commands: > tags -1 moreinfo d-i Bug #987776 [release.debian.org] unblock: bind9/1:9.16.15-1 Added tag(s) d-i and moreinfo. -- 987776: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987776 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Processed: Re: Bug#987766: unblock: open-iscsi/2.1.3-2

Processing control commands: > tags -1 moreinfo d-i Bug #987766 [release.debian.org] unblock: open-iscsi/2.1.3-2 Added tag(s) moreinfo and d-i. > retitle -1 unblock: open-iscsi/2.1.3-3 Bug #987766 [release.debian.org] unblock: open-iscsi/2.1.3-2 Changed Bug title to 'unblock: open-iscsi/2.1.3-3' f

Bug#987766: unblock: open-iscsi/2.1.3-2

Control: tags -1 moreinfo d-i Control: retitle -1 unblock: open-iscsi/2.1.3-3 Hi Ritesh, On 29-04-2021 10:23, Ritesh Raj Sarraf wrote: > The open-iscsi-udeb package is not installable in the d-i environment > because of the unavailable respective udeb package for libopeniscsiusr. Ouch. If I unde

Bug#987649: marked as done (unblock: libxcrypt/1:4.4.18-4)

Your message dated Thu, 29 Apr 2021 22:11:57 +0200 with message-id and subject line Re: Bug#987649: unblock: libxcrypt/1:4.4.18-4 has caused the Debian Bug report #987649, regarding unblock: libxcrypt/1:4.4.18-4 to be marked as done. This means that you claim that the problem has been dealt with.

Bug#987795: unblock: liferea/1.13.5-2

Package: release.debian.org User: release.debian@packages.debian.org Usertags: unblock Severity: normal Please unblock package liferea [ Reason ] It used to be enough to declare the liferea custom scheme as local to access resources with a file scheme, but for WebKit2Gtk >= 2.32 it looks like

Processed: Re: Bug#987561: [pre-approval] unblock: fuse3/3.10.3-1

Processing control commands: > tags -1 confirmed moreinfo d-i Bug #987561 [release.debian.org] [pre-approval] unblock: fuse3/3.10.3-1 Added tag(s) confirmed, moreinfo, and d-i. -- 987561: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987561 Debian Bug Tracking System Contact ow...@bugs.debia

Bug#987561: [pre-approval] unblock: fuse3/3.10.3-1

Control: tags -1 confirmed moreinfo d-i Hi László, On 25-04-2021 18:34, László Böszörményi (GCS) wrote: > While it's a new upstream release, it only contains a bugfix [1] and > correcting spelling mistakes. > The actual change is in lib/fuse.c and very small [2]. Other changes > are for the examp

Bug#986758: marked as done (unblock: systemd/247.3-5)

Your message dated Thu, 29 Apr 2021 21:24:13 +0200 with message-id <7cb4d4a2-d4b5-4049-9364-0bd1307e8...@debian.org> and subject line Re: Bug#986758: unblock: systemd/247.3-4 has caused the Debian Bug report #986758, regarding unblock: systemd/247.3-5 to be marked as done. This means that you clai

Bug#987774: marked as done (unblock: opendnssec/2.1.7-2)

Your message dated Thu, 29 Apr 2021 18:44:21 + with message-id and subject line unblock opendnssec has caused the Debian Bug report #987774, regarding unblock: opendnssec/2.1.7-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it i

Bug#987662: marked as done (unblock: shibboleth-sp/3.2.2+dfsg1-1)

Your message dated Thu, 29 Apr 2021 20:41:03 +0200 with message-id and subject line Re: Bug#987662: unblock: shibboleth-sp/3.2.2+dfsg1-1 has caused the Debian Bug report #987662, regarding unblock: shibboleth-sp/3.2.2+dfsg1-1 to be marked as done. This means that you claim that the problem has be

Bug#987762: marked as done (unblock: adjtimex/1.29-11)

Your message dated Thu, 29 Apr 2021 18:38:58 + with message-id and subject line unblock adjtimex has caused the Debian Bug report #987762, regarding unblock: adjtimex/1.29-11 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is no

Bug#987558: marked as done (unblock: falkon/3.1.0+dfsg1-11)

Your message dated Thu, 29 Apr 2021 18:39:40 + with message-id and subject line unblock falkon has caused the Debian Bug report #987558, regarding unblock: falkon/3.1.0+dfsg1-11 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is

Bug#987564: marked as done (NMU: CVE-2020-25708 - Fix possible divide-by-zero.)

Your message dated Thu, 29 Apr 2021 19:33:51 +0100 with message-id and subject line Re: Bug#987564: NMU: CVE-2020-25708 - Fix possible divide-by-zero. has caused the Debian Bug report #987564, regarding NMU: CVE-2020-25708 - Fix possible divide-by-zero. to be marked as done. This means that you

Bug#987790: unblock: node-browserslist/4.16.3+~cs5.4.72-2

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-Cc: pkg-javascript-de...@lists.alioth.debian.org Please unblock package node-browserslist [ Reason ] node-browserslist is vulnerable to a Regex Denial of Service (ReDoS) (CVE-2021

Bug#987774: unblock: opendnssec/2.1.7-2

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package opendnssec. [ Reason ] This version only adds contributed translation files, nothing else. [ Impact ] Low impact: without this version users having configured a Span

Bug#987783: unblock: debian-edu-install/2.11.12

On Thu, Apr 29, 2021 at 02:21:07PM +0200, Holger Levsen wrote: > Please unblock package debian-edu-install 2.11.12 which fixes a bug by > increasing partitioning sizes preventing installation in certain situations. I forgot to mention the package contains an udeb, which is not used by the default

Bug#987783: unblock: debian-edu-install/2.11.12

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package debian-edu-install 2.11.12 which fixes a bug by increasing partitioning sizes preventing installation in certain situations. +debian-edu-install (2.11.12) unstable; u

Bug#987762: unblock: adjtimex/1.29-11

On Thu, Apr 29, 2021 at 3:39 PM Roger Shimizu wrote: > > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > > Please unblock package adjtimex I checked autoremovals [1], seems the package will be removed before it get the chance to

Bug#987776: unblock: bind9/1:9.16.15-1

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Please unblock package bind9 [ Reason ] Upstream security release update of the bind9 package. [ Impact ] 3 grave security issues would aff

Bug#987767: unblock: node-postcss/8.2.1+~cs5.3.23-8

Le 29/04/2021 à 10:50, Yadd a écrit : > Le 29/04/2021 à 10:32, Yadd a écrit : >> Package: release.debian.org >> Severity: normal >> User: release.debian@packages.debian.org >> Usertags: unblock >> X-Debbugs-Cc: pkg-javascript-de...@lists.alioth.debian.org >> >> Please unblock package node-postc

Processed: Re: Bug#987015: [pre-approval] unblock: python-apt/2.2.0

Processing control commands: > tags -1 moreinfo Bug #987015 [release.debian.org] [pre-approval] unblock: python-apt/2.2.0 Added tag(s) moreinfo. -- 987015: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987015 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#987015: [pre-approval] unblock: python-apt/2.2.0

Control: tags -1 moreinfo Hi Julian, On 29-04-2021 10:42, Julian Andres Klode wrote: > I had to add another bugfix to the release. Ack. > I added the full debdiff against 2.1.7 again, as well as the added > changes against the pre-approved version. Appreciated. Please go ahead and remove the

Processed: retitle 987767 to unblock: node-postcss/8.2.1+~cs5.3.23-8

Processing commands for cont...@bugs.debian.org: > retitle 987767 unblock: node-postcss/8.2.1+~cs5.3.23-8 Bug #987767 [release.debian.org] unblock: node-postcss/8.2.1+~cs5.3.23-7 Changed Bug title to 'unblock: node-postcss/8.2.1+~cs5.3.23-8' from 'unblock: node-postcss/8.2.1+~cs5.3.23-7'. > thank

Bug#987767: unblock: node-postcss/8.2.1+~cs5.3.23-8

Le 29/04/2021 à 10:32, Yadd a écrit : > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > X-Debbugs-Cc: pkg-javascript-de...@lists.alioth.debian.org > > Please unblock package node-postcss > > [ Reason ] > node-postcss is vulnerabl

Bug#987718: unblock: fdroidserver/2.0.1-1

On 2021-04-28 13:20:54 +0200, Hans-Christoph Steiner wrote: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > > Please unblock package fdroidserver > > F-Droid is built on Debian and is a community with the same goals as > Debian

Processed: Re: Bug#987015: [pre-approval] unblock: python-apt/2.2.0

Processing control commands: > tag -1 - moreinfo Bug #987015 [release.debian.org] [pre-approval] unblock: python-apt/2.2.0 Removed tag(s) moreinfo. -- 987015: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987015 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#987015: [pre-approval] unblock: python-apt/2.2.0

ControL: tag -1 - moreinfo On Thu, Apr 22, 2021 at 11:32:07AM +0200, Paul Gevers wrote: > tags -1 confirmed moreinfo > > Hi Julian, > > On 15-04-2021 18:28, Julian Andres Klode wrote: > > Want to bump version number to stable series versioning, mostly, > > update the mirror list, and remove inva

Bug#987746: marked as done (unblock: rhash/1.4.1-2)

Your message dated Thu, 29 Apr 2021 08:43:17 + with message-id and subject line unblock rhash has caused the Debian Bug report #987746, regarding unblock: rhash/1.4.1-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your

Bug#987767: unblock: node-postcss/8.2.1+~cs5.3.23-7

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-Cc: pkg-javascript-de...@lists.alioth.debian.org Please unblock package node-postcss [ Reason ] node-postcss is vulnerable to a Regex Denial of Service (ReDoS) [ Impact ] Medium

Bug#987766: unblock: open-iscsi/2.1.3-2

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package open-iscsi [ Reason ] With version 2.1.x of open-iscsi, a new library was introduced; libopeniscsiusr. Since we ship a udeb variant of the open-iscsi package, this li

Processed: Re: Bug#987730: unblock: multipath-tools/0.8.5-1

Processing control commands: > tag -1 -moreinfo Bug #987730 [release.debian.org] unblock: multipath-tools/0.8.5-1 Removed tag(s) moreinfo. -- 987730: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987730 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#987730: unblock: multipath-tools/0.8.5-1

Control: tag -1 -moreinfo On Wed, 2021-04-28 at 21:49 +0200, Sebastian Ramacher wrote: > > On Wed, 2021-04-28 at 22:50 +0530, Ritesh Raj Sarraf wrote: > > >   [x] attach debdiff against the package in testing > > > > > > > The revised debdiff patch is attached in this follow-up message. > > The