Your message dated Sat, 27 May 2023 08:42:50 +0200
with message-id <70794fd9-ced2-abfb-6247-4fd079b09...@debian.org>
and subject line Re: Bug#1036615: unblock: node-isomorphic-fetch/3.0.0-3
has caused the Debian Bug report #1036615,
regarding unblock: node-isomorphic-fetch/3.0.0-3
to be marked as d
Your message dated Sat, 27 May 2023 08:38:59 +0200
with message-id <98271173-ad82-5959-c88b-ed7430907...@debian.org>
and subject line Re: Bug#1036613: unblock: node-jschardet/3.0.0+dfsg+~1.4.0-2
has caused the Debian Bug report #1036613,
regarding unblock: node-jschardet/3.0.0+dfsg+~1.4.0-2
to be m
Your message dated Sat, 27 May 2023 08:37:11 +0200
with message-id <925a229b-5d04-81c6-10d6-1e2c6013e...@debian.org>
and subject line Re: Bug#1036605: unblock: node-is-docker/3.0.0-5
has caused the Debian Bug report #1036605,
regarding unblock: node-is-docker/3.0.0-6
to be marked as done.
This mea
Your message dated Sat, 27 May 2023 08:28:02 +0200
with message-id <8eb209fa-10a3-2288-18eb-9159bb611...@debian.org>
and subject line Re: Bug#1036604: unblock: node-shelljs/0.8.5+~cs0.8.10-2
has caused the Debian Bug report #1036604,
regarding unblock: node-shelljs/0.8.5+~cs0.8.10-2
to be marked as
Processing control commands:
> tags -1 confirmed moreinfo
Bug #1036592 [release.debian.org] pre-approval: unblock: c-ares/1.18.1-3
Added tag(s) confirmed and moreinfo.
--
1036592: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036592
Debian Bug Tracking System
Contact ow...@bugs.debian.org w
Control: tags -1 confirmed moreinfo
Hi,
On 23-05-2023 08:44, Gregor Jasny wrote:
yesterday a version 1.19.1 of c-ares was release which fixes four CVEs.
Please go ahead, taking into account that the build needs to be done
before tomorrow 12:00 UTC. Remove the moreinfo tag once the upload hap
Your message dated Sat, 27 May 2023 07:25:24 +0200
with message-id <7c4f391f-8b87-07b6-d81b-8af046eeb...@debian.org>
and subject line Re: Bug#1036084: [pre-approval] unblock:
android-platform-tools-base/2.2.2-5
has caused the Debian Bug report #1036084,
regarding [pre-approval] unblock: android-pl
Control: tags -1 - moreinfo
On Tue, May 23, 2023 at 06:53:06PM +0200, Paul Gevers wrote:
> Please go ahead. And please remove the moreinfo tag once the upload
> happened.
Done, thanks :)
--
Andrea Bolognani
Resistance is futile, you will be garbage collected.
signature.asc
Description: PGP s
Processing control commands:
> tags -1 - moreinfo
Bug #1036453 [release.debian.org] unblock: libvirt/9.0.0-4
Removed tag(s) moreinfo.
--
1036453: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036453
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
On Wed, 24 May 2023 16:52:06 +0200 Tobias Frost
wrote:
> Please unblock package libsepol
>
> It fixes #1031798, inaccurate copyright file.
>
> No other changes done.
>
> [ Checklist ]
> [x] all changes are documented in the d/changelog
> [x] I reviewed all changes and I approve them
> [x]
On Wed, 24 May 2023 17:55:48 +0200 Tobias Frost
wrote:
> Please unblock package camping
>
> It fixes a broken symlink to a font. (#861040)
> This had been fixed already earlier, (2.1.580-1.1)
> but that NMU has not been incoroporated in the package and lost.
> The nmu is using the original patch
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: laza...@packages.debian.org
Control: affects -1 + src:lazarus
Please unblock package lazarus
(Please provide enough (but not too much) information to help
the release team to
Processing control commands:
> affects -1 + src:lazarus
Bug #1036814 [release.debian.org] unblock: lazarus/2.2.6+dfsg2-2
Added indication that 1036814 affects src:lazarus
--
1036814: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036814
Debian Bug Tracking System
Contact ow...@bugs.debian.or
Hi Samuel,
[not member of the release team, but was going trough some potential
unblock requests with CVE fixes]
On Fri, May 26, 2023 at 06:03:13PM +0100, Samuel Henrique wrote:
> Package: release.debian.org
> Control: affects -1 + src:curl
> X-Debbugs-Cc: c...@packages.debian.org
> User: release
Your message dated Fri, 26 May 2023 22:30:20 +0200
with message-id <3d3a3a33-e134-8339-dba6-10153208b...@debian.org>
and subject line Re: Bug#1036474: unblock: debian-edu-fai/2023.05.16.1
has caused the Debian Bug report #1036474,
regarding unblock: debian-edu-fai/2023.05.16.1
to be marked as done.
Le 2023-05-26 21:14, Paul Gevers a écrit :
I have just added removal hints for tomcatjss and dogtag-pki. As
mentioned in my previous message, I want the changes in logback
reverted. You can do the reduced upload of tomcat9.
Markus, can you please revert you logback change by tomorrow at the
la
Hi Gregor,
On Tue, May 23, 2023 at 02:56:41PM +0200, Salvatore Bonaccorso wrote:
> Hi Gregor,
>
> On Tue, May 23, 2023 at 08:44:48AM +0200, Gregor Jasny wrote:
> > Package: release.debian.org
> > Severity: normal
> > User: release.debian@packages.debian.org
> > Usertags: unblock
> > X-Debbugs
Am Freitag, dem 26.05.2023 um 21:44 +0200 schrieb Emmanuel Bourg:
>
> The changes to jetty9 have to be reverted too, the package is broken
> (#1036798).
>
> Sadly we can't do without tomcat9. The path forward implies packaging
> Jetty 11 or 12 first and migrating all the reverse dependencies, bu
Hi,
On 26-05-2023 21:34, Markus Koschany wrote:
Do I understand you correctly, that we only ship libtomcat9-java in Bookworm
now? Shall I upload a new revision of tomcat9 too?
Yes and yes.
Paul
OpenPGP_signature
Description: OpenPGP digital signature
Hi,
> Markus, can you please revert you logback change by tomorrow at the latest?
Sure. I will take care if it.
Do I understand you correctly, that we only ship libtomcat9-java in Bookworm
now? Shall I upload a new revision of tomcat9 too?
Regards,
Markus
signature.asc
Description: This is a
Hi,
On 26-05-2023 10:58, Moritz Muehlenhoff wrote:
Can't we just do the pragmatic fix of updating src:tomcat9 to only ship
libtomcat9-java and libtomcat9-embed-java? The maintenance burden for
security updates lies within the server stack, the percentage of issues
affecting the libtomcat9-java b
Package: release.debian.org
Severity: normal
Tags: bullseye d-i
User: release.debian@packages.debian.org
Usertags: pu
X-Debbugs-Cc: ncur...@packages.debian.org, debian-b...@lists.debian.org
Control: affects -1 + src:ncurses
I would like to address CVE-2023-29491[1] aka bug #1034372[2] in
Bulls
Processing control commands:
> affects -1 + src:ncurses
Bug #1036811 [release.debian.org] bullseye-pu: package
ncurses/6.2+20201114-2+deb11u2
Added indication that 1036811 affects src:ncurses
--
1036811: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036811
Debian Bug Tracking System
Contac
Processing control commands:
> affects -1 + src:reaver
Bug #1036809 [release.debian.org] pre-unblock: reaver/1.6.6-1
Added indication that 1036809 affects src:reaver
--
1036809: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036809
Debian Bug Tracking System
Contact ow...@bugs.debian.org wit
Source: matrix-synapse
Version: 1.78.0-1
Severity: serious
Tags: upstream security
X-Debbugs-Cc: Andrej Shadura ,
debian-release@lists.debian.org, car...@debian.org, Debian Security Team
Hi Andrej,
I believe matrix-synapse is still in the same status as for #982991
back for the bullseye releas
Package: release.debian.org
Control: affects -1 + src:curl
X-Debbugs-Cc: c...@packages.debian.org
User: release.debian@packages.debian.org
Usertags: unblock
Severity: normal
Please unblock package curl
[ Reason ]
4 CVE fixes:
* Add new patches to fix CVEs (closes: #1036239):
- CVE-2023-2
Processing control commands:
> affects -1 + src:curl
Bug #1036801 [release.debian.org] unblock: curl/7.88.1-10
Added indication that 1036801 affects src:curl
--
1036801: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036801
Debian Bug Tracking System
Contact ow...@bugs.debian.org with proble
Your message dated Fri, 26 May 2023 18:31:34 +0200
with message-id
and subject line Re: Bug#1035334: unblock: python-selenium/4.9.0+dfsg-1
has caused the Debian Bug report #1035334,
regarding unblock: python-selenium/4.9.0+dfsg-1
to be marked as done.
This means that you claim that the problem ha
Hi Paul,
On Mi 24 Mai 2023 18:33:44 CEST, Paul Gevers wrote:
control: tags -1 moreinfo
Hi Mike,
On 21-05-2023 21:38, Mike Gabriel wrote:
In addition to the adduser changes, the diff to testing also
includes a simple
directory-exists test before writing to it.
See below, I see more. Plea
Processing control commands:
> affects -1 + src:qtbase-opensource-src
Bug #1036793 [release.debian.org] unblock: qtbase-opensource-src/5.15.8+dfsg-11
Added indication that 1036793 affects src:qtbase-opensource-src
--
1036793: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1036793
Debian Bug T
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: qtbase-opensource-...@packages.debian.org
Control: affects -1 + src:qtbase-opensource-src
Please unblock package qtbase-opensource-src.
[ Reason ]
One more CVE was published f
Le 26/05/2023 à 10:58, Moritz Muehlenhoff a écrit :
Can't we just do the pragmatic fix of updating src:tomcat9 to only ship
libtomcat9-java and libtomcat9-embed-java? The maintenance burden for
security updates lies within the server stack, the percentage of issues
affecting the libtomcat9-java
hey all,
I was involved with a discussion on site here in Hamburg with Paul
about it.
On Fri, May 26, 2023 at 10:58:48AM +0200, Moritz Muehlenhoff wrote:
> On Fri, May 26, 2023 at 12:10:18AM +0200, Markus Koschany wrote:
> > First of all trapperkeeper-webserver-jetty9-clojure should add a build-
On Fri, May 26, 2023 at 12:10:18AM +0200, Markus Koschany wrote:
> First of all trapperkeeper-webserver-jetty9-clojure should add a build-
> dependency on logback to detect such regressions in advance.
>
> #1036250 is mainly a logback problem, not a tomcat problem. I still would like
> to hear Emm
Hi Markus,
On 25-05-2023 23:47, Markus Koschany wrote:
Since I could not find a targeted fix I decided to remove the dependency on
rhino 1.7.14 and embedded rhino 1.7.7.2 instead, the last version that worked
well for closure-compiler.
I have rebuilt all reverse-dependencies and this would re
Control: clone -1 -2 -3
Control: reassign -2 release-notes
Control: reassign -3 debian-security-support
Control: tag -1 bookworm-ignore
Hi,
On 26-05-2023 00:10, Markus Koschany wrote:
#1036250 is mainly a logback problem, not a tomcat problem. I still would like
to hear Emmanuel's opinion. We s
36 matches
Mail list logo
