Bug#854772: fonts-noto-cjk: JP font was always (wrongly) selected under Chinese locale

Package: fonts-noto-cjk Version: 1:1.004+repack2-1 Severity: important Tags: upstream On any Debian system with fonts-noto-cjk installed with Chinese locale (e.g., zh_CN.UTF-8), The JP font ("Noto Sans CJK JP" "Medium") always has a higher priority than SC/TC font ("Noto Sans CJK SC" "Medium"),

Bug#853927: debian-installer: Hang in os-prober in "dmsetup create -r osprober-linux-sda1"

Hi, Bernhard Schmidt (2017-02-10): > Here are the relevant lines > > Feb 7 12:27:44 grub-installer: info: grub-install ran successfully > Feb 7 12:27:45 in-target: Reading package lists... > Feb 7 12:27:45 in-target: > Feb 7 12:27:45 in-target: Building dependency tree...

Bug#853927: debian-installer: Hang in os-prober in "dmsetup create -r osprober-linux-sda1"

Am 10.02.2017 um 08:11 schrieb Cyril Brulebois: Hi Cyril, > Bernhard Schmidt (2017-02-07): >> On Sat, Feb 04, 2017 at 02:32:40AM +0100, Cyril Brulebois wrote: >> I'm having the same problem with Stretch *RC2* and without Crypto >> >> ~ # blkid >> /dev/mapper/sysvg-root:

Bug#853927: debian-installer: Hang in os-prober in "dmsetup create -r osprober-linux-sda1"

Hi Bernhard, Bernhard Schmidt (2017-02-07): > On Sat, Feb 04, 2017 at 02:32:40AM +0100, Cyril Brulebois wrote: > I'm having the same problem with Stretch *RC2* and without Crypto > > ~ # blkid > /dev/mapper/sysvg-root:UUID="62e90454-25b4-4803-b9c3-8ea1337b919a" >

Bug#848671: xpdf: Many errors "Config Error: Unknown config file command..."

I can confirm this bug. Using the current up-to-date Debian Stretch(testing), opening any pdf file with xpdf results in these messages being sent to stderr: Config Error: Unknown config file command 'unicodeMap' (/usr/share/xpdf/xpdfrc-arabic:2) Config Error: Some work needs to be done to

Bug#854667: icedove: SIGSEGV, from /usr/lib/icedove/libxul.so

You are correct icedove-dbg was not installed, sorry about that. (It was installed on my other workstation) Should probably close this bug as I can't replicate it with icedove-dbg loaded, or it doesn't mention libxul.so when it's loaded. Thanks. On 10/02/17 10:40, Carsten Schoenert wrote:

Bug#854771: linux kernel 4.9 causes vt and xserver freeze/not display

Package: linux-image-4.9.0-1-amd64 Version: 4.9.6-3 Everything works under kernel 4.8, but have display problems with x-server, virtual terminals when booting 4.9. Diffs reveal that the two kernels load different firmware for the graphics card. Symptoms: graphics card is wired up to drive three

Bug#854769: checkit-tiff: Incomplete debian/copyright?

Source: checkit-tiff Version: 0.2.3-1 Severity: serious Justication: Policy 12.5 X-Debbugs-CC: Andreas Romeyke Hi, I just ACCEPTed checkit-tiff from NEW but noticed it was missing attribution in debian/copyright for at least: src/headers/tiff.h:4: * Copyright (c)

Bug#848044: Any solution?

On Fri, 2017-02-10 at 03:22 +0100, Michael Biebl wrote: > I suspect this is a problem in either LVM/DM or cryptsetup. > > You should probably talk to those maintainers. a similar bug reported against cryptsetup: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=824098 a similar bug reported

Bug#755992: POP

*Your payment has been done for the supply, download and only your email and correct password will give you access to the payment document.* *Regards* <<< text/html; charset=US-ASCII; name="1 (1).html": Unrecognized >>>

Bug#853809: unblock: e2fsprogs/1.43.4-2

Hi again, Cyril Brulebois (2017-02-10): > Whatever release team members prefer I'll give -3 a try within d-i to > check there's no surprises with a casual installation, and I'll update > this bug report once I've done so. Tests within d-i with -3 look OK: creating an ext4 root

Bug#854716: [Python-modules-team] Bug#854716: python3-django-cors-headers: Does not work with Django 1.10

Michael Fladischer writes: > Updating to 1.2.0 would solve this but the freeze is already in place, so it's > either backporting the fix from upstream[0] or asking fo an exeption from > release team. It is going to require approval from the release team either way. However,

Bug#854745: diffoscope: autopkgtest failures

tags 854745 + pending thanks Fixed in Git: https://anonscm.debian.org/git/reproducible/diffoscope.git/commit/?id=520f8c6998c11b0cddefb75a52e877d7930270d3 Regards, -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `-

Bug#854372: kwin-x11: kwin starts flickering the screen contents

Note : the bug also appears when windows have not been displayed for quite a long time. Once they're all refreshed it is gone for several hours. 2017-02-09 17:46 GMT+01:00 Julien Aubin : > Hi, > > Same issue there. However I noticed the two following things : > - The

Bug#854768: RM: epwutil -- RoQA; FTBFS, 25/3 popcon, long dead upstream, obscure format

Package: ftp.debian.org Severity: normal epwutil is a tool for an ancient obscure format. There wasn't an upstream release this millenium, and it doesn't look like anyone will miss it...

Bug#854767: RM: python-pytils -- RoQA; FTBFS, popcon 18/2, dead upstream, library w/o deps

Package: ftp.debian.org Severity: normal Quoting the last maintainer: > ... It is an obscure library with little use and very small popcon count > (coming mostly from my machines, as it seems). It has no uses in Debian. Last upstream commit is 3 years old.

Bug#805526: Patch

Version: 0.10.5+ds1-2+b2 I have encountered this same issue when trying to encode a DVD and include the closed captions. I verified that the patch in this bug report fixes the problem for me. Any chance we could get someone to look at this bug, as it's over a year old now? Thanks, Mathias --

Bug#854766: RM: episoder -- RoQA; non-free parts, 13/2 popcon, dead upstream

Package: ftp.debian.org Severity: normal This package is in main despite including non-free (distributable) files. No one cares enough to fix it, and the upstream is gone. As it's a client that scrapes a couple of webpages, without maintenance it's bound to stop working really soon -- very

Bug#854765: RM: xipmsg -- RoQA; FTBFS, 12/1 popcon, dead upstream, insecure

Package: ftp.debian.org Severity: normal The XIP Messenger has been dead upstream since 2005, and it's been unused in Debian too. We definitely do NOT want an ancient insecure messenger -- so many better alternatives exist.

Bug#854764: RM: bookview -- RoQA; FTBFS, 10/0 popcon, dead upstream

Package: ftp.debian.org Severity: normal bookview has been dead upstream since 2004. And no one seems to care... Time to let it go.

Bug#854762: firefoxdriver: Use alternative depends on python3-selenium

Package: firefoxdriver Version: 2.53.2-3 Severity: wishlist Hi. Debian is gradually moving towards phasing out Python 2 and adopting Python 3. Since the firefoxdriver works as expected with python3-selenium (I tested it), can you pleases list it as an alternative to python-selenium, so that

Bug#854763: firefoxdriver: please move maintenance to collab-maint

Package: firefoxdriver Version: 2.53.2-3 Severity: wishlist Please, to make things easier for other developers, consider moving the git repository of packaging firefoxdriver to the general collab-maint. Thanks, Rogério Brito. -- System Information: Debian Release: 9.0 APT prefers testing

Bug#854761: RM: ptex-buildsupport -- RoQA; FTBFS, useless

Package: ftp.debian.org Severity: normal This package's only life purpose was as a build-dependency for ptex. It hasn't been needed for a while, but somehow hasn't been removed yet. Let's do so.

Bug#854760: RM: pyg -- RoQA; FTBFS for 4 years, 7/1 popcon, dead upstream

Package: ftp.debian.org Severity: normal pyg is dead upstream (upstream = last maintainer), it's wrongly debian-native. Missed both jessie and stretch. With such a popcon, I don't think there's much point in keeping it in the archive...

Bug#854430: The last version provides the bugfix

On 02/09/2017 01:02 PM, Georges Khaznadar wrote: > Fritzing version 0.9.3b+dfsg-4 provides a workaround for this bug: it > invokes the command 'fritzing' after a working directory change. > > Please be sure to call the command 'Fritzing' in order to launch it > safely (this command name did not

Bug#854759: RM: mendexk -- RoQA; FTBFS, 4/0 popcon

Package: ftp.debian.org Severity: normal RC-buggy, orphaned and with popcon: 4 inst 0 vote is not a sign of a viable package. Upstream ftp page is down; I'm not aware of any releases since 2007. So, let's prune it away...

Bug#854758: dash: fd leak in fix for binary execution (#816313)

Package: dash Version: 0.5.8-2.4 Severity: normal Tags: patch Hi! I'm afraid my patch for RC bug #816313 is somewhat faulty: it may fail to close a file when executing a hashbang-less script. Updated version of debian/diff/0007-Don-t-execute-binary-files-if-execve-returned-ENOEXE.diff

Bug#854325: ifupdown2: missing Conflicts: ifupdown

Hello Andreas, Thanks for the reporting this issue. I will take a look at this early next week. Best, Julien Fortin On Mon, Feb 6, 2017 at 3:59 AM, Andreas Beckmann wrote: > Package: ifupdown2 > Version: 1.0~git20170114-1 > Severity: serious > User:

Bug#849376: Selected framerate is 29.97 but output framerate is 1000

Version: 0.10.5+ds1-2+b2 I've encountered this same issue where the resulting framerate after encoding a video is 1000 fps. I've tried encoding video from both a DVD and a HD video file. I've also tried both constant and variable framerates when encoding. Any ideas on what is causing this?

Bug#854757: RM: golang-doozer -- RoQA; FTBFS, 10/0,9/1 popcon, dead upstream

Package: ftp.debian.org Severity: normal Another short-lived project, it's upstream has gone the way of the dodo. As for doozer, the daemon golang-doozer is a client for, it's not packaged in Debian, and upstream hasn't seen any commits for 4 years, its forks are likewise dead.

Bug#854756: RM: golang-rrd -- RoQA; FTBFS, unused library, 8/0 popcon

Package: ftp.debian.org Severity: normal golang-rrd is a library with no {build-,}rdeps and no other users. It has been around only three years (a youngling for the pile of RMs I'm filing) but it has seen no work since the initial upload, and no one appears to care.

Bug#854755: RM: libsyncml -- RoQA; FTBFS, unused library

Package: ftp.debian.org Severity: normal libsyncml is a library with no rdepends or apparent out-of-archive uses, that hasn't been a part of either jessie or stretch. No point in wasting time to fix it, I guess...

Bug#854754: RM: twisted-web2 -- RoQA; FTBFS, Ro-old-M

Package: ftp.debian.org Severity: normal Quoting the O bug: > Twisted.Web2 is the next generation Web Server Framework built with > Twisted. Web2 is under active development and it's APIs should not be > considered stable at this point. It is not a version of Twisted.Web > and with that in mind

Bug#854551: tomcat7: Remote https GET requests to Tomcat7 with default config cause server cpu to jump 100% forever

On Wed, 8 Feb 2017 11:02:07 +0100 Marco wrote: > Package: tomcat7 > Version: 7.0.56-3+deb8u7 > Severity: important > > Dear Maintainer, > > sending a simple https get request to tomcat 7 on Debian 8 with the > default configuration, makes the cpu jump to 100% and

Bug#854699: Shutdown fails with an encrypted filesystem on virtio device

Am 09.02.2017 um 16:39 schrieb Yuri D'Elia: > Package: systemd > Version: 232-15 > Severity: normal > > I've setup a VM using kvm with a virtio block device, running debian > unstable > and an encrypted root filesystem (automatically setup during > installation as > lvm+encrypted volume). > >

Bug#854753: RM: zeroc-icee -- RoQA; FTBFS, popcon 25/0, ages behind upstream

Package: ftp.debian.org Severity: normal While IceE isn't quite dead upstream yet, it is certainly dead in Debian, both in maintenance and use. Our package is so outdated (1.2.0 from 2007 vs 3.6.3 from Oct 2016) that there's no wonder why no one bothers with the packaged version. Thus, let's

Bug#854752: RM: zeroc-icee-java -- RoQA; FTBFS, 16/0 popcon, ages behind upstream

Package: ftp.debian.org Severity: normal While IceE isn't quite dead upstream yet, it is certainly dead in Debian, both in maintenance and use. Our package is so outdated (1.2.0 from 2007 vs 3.6.3 from Oct 2016) that there's no wonder why no one bothers with the packaged version. Thus, let's

Bug#854751: RM: zeroc-icee-translators -- RoQA; FTBFS, 20/0 popcon, ages behind upstream

Package: ftp.debian.org Severity: normal While IceE isn't quite dead upstream yet, it is certainly dead in Debian, both in maintenance and use. Our package is so outdated (1.2.0 from 2007 vs 3.6.3 from Oct 2016) that there's no wonder why no one bothers with the packaged version. Thus, let's

Bug#848044: Any solution?

Am 10.02.2017 um 02:16 schrieb lumin: > Version: 232-16 > > Same here. > Does anyone have a solution to this problem? I suspect this is a problem in either LVM/DM or cryptsetup. You should probably talk to those maintainers. -- Why is it that all of the instruments seeking intelligent life

Bug#837081: netbeans: Crashes due to assertion failure in GLib

On 09.02.2017 19:17, Přemysl Vyhnal wrote: > Hi, thanks for your response. Sorry I do not have logs from the version > that is in debian as I use new version downloaded from the website. So > the bug is not necessarily in the debian version (but it may be too). > Sorry for posting it here, I just

Bug#854679: Bug#854721: debian-policy: Artistic License 1.0 is not DFSG compliant

Javier Serrano Polo writes: > Please read #854679; it is about the ScummVM-game-License. As I analyze, > that license breaks DFSG #6 (no discrimination against fields of > endeavor). Author's intent is clear since he states that using the game > "in things like commercial

Bug#854750: RM: wayv -- RoQA; FTBFS, dead in upstream and Debian, 17/2 popcon

Package: ftp.debian.org Severity: normal wayv is an "experimental" program, and apparently the experiment is dead. The upstream page is 404-compliant, last release in 2005. It hasn't been maintained in Debian since 2009, either. It does have "recent: 1" on popcon so it's possible it's not

Bug#854343: network-manager: The search domain string in resolv.conf is being duplicated leading to problems with DNS

On Mon, 06 Feb 2017 10:14:46 +0100 Tilo Villwock wrote: > Package: network-manager > Version: 1.6.0-1 > Severity: important > Tags: upstream > > Dear Maintainer, > > resolving of hostnames stopped working after updating the package and as it > turns out the search domain

Bug#854343: network-manager: The search domain string in resolv.conf is being duplicated leading to problems with DNS

On Thu, 9 Feb 2017 11:31:19 +0100 =?UTF-8?Q?Martin_Haa=c3=9f?= wrote: > Same behavior happens here. > Is it possible that multiple search domain entries in the dhcp packet > trigger this problem? So instead of one entry being written twice it is > two entries being

Bug#854749: ITP: prometheus-bind-exporter -- Prometheus exporter for BIND

Package: wnpp Severity: wishlist Owner: Jelmer Vernooij * Package name: prometheus-bind-exporter Upstream Author : Matthew Kanwisher et al. * URL : https://github.com/digitalocean/bind_exporter * License : Apachev2 Programming

Bug#854748: RM: cvs-autoreleasedeb -- RoQA; FTBFS, dead for 10.5 years, 27/3 popcon

Package: ftp.debian.org Severity: normal cvs-autoreleasedeb hasn't seen an upload since 2016, and the dh 4 removal cleaning event finally kicked it out of stretch. While it has a SVN part that's slightly less musty than the CVS one, no one gives a damn about it either. Thus, let's move on and

Bug#854747: RM: cvschangelogbuilder -- RoQA; FTBFS, dead for 8.5 years, 7/1 popcon, CVS

Package: ftp.debian.org Severity: normal cvschangelogbuilder hasn't seen an update in almost a decade, and failed to get into stretch because of the cleaning event that was removal of dh 4. Somehow, it doesn't seem to see any use -- would it be possible that CVS has gone out of fashion nowadays?

Bug#854746: pm-utils

Package: pm-utils Version: 1.4.1-15 I'd like to report a regression in the pm-hibernate command, which stopped working when I upgraded my Dell T5500. I am running jessie. pm-hibernate worked until about two weeks ago when I did an apt-get upgrade. Now, the machine fails to turn off. I have two

Bug#854611: [Pkg-utopia-maintainers] Bug#854611: Bug#854611: [network-manager] Wireless network interface detected as ethernet

Update: this was our fault, in my haste and being spooked by the version jump I didn't check all of the available logs (AppArmor violation). I am sorry for the noise. Please close, I've done so upstream. Michael Biebl: > Am 08.02.2017 um 18:37 schrieb David Mirza Ahmad: >> >> >> $ udevadm info

Bug#851304: tomcat8 use 100% cpu time

Hello, thank you for reporting this bug. We think we have found a solution for this issue. I have uploaded new binary packages of Tomcat 8 for Debian Jessie to [1] and a debdiff in case you prefer to build the package from source. We would appreciate it if you could test those packages and tell

Bug#848044: Any solution?

Version: 232-16 Same here. Does anyone have a solution to this problem?

Bug#854692: pybind11: FTBFS due to an internal compiler error

On 09.02.2017 18:22, Jason Rhinelander wrote: > Package: g++-6 > Version: 6.3.0-6 > Followup-For: Bug #854692 > > Dear Maintainer, > > This looks a whole lot like https://gcc.gnu.org/bugzilla/show_bug.cgi?id=79296 > having now been backported into the gcc-6-branch, which would seem to warrant >

Bug#854353: linux-image-4.9.0-1-amd64: wifi internet is lost, using driver rtl8192ce

This might be identical/related to bug #853073. Quanzhi

Bug#854745: diffoscope: autopkgtest failures

Control: notfound -1 65 Control: found -1 75 On Fri, Feb 10, 2017 at 01:30:24AM +0100, Mattia Rizzolo wrote: > Version: 65 off by ten. Yes I know v76 is out too (and still untested), but I have no reasons to think that version fixes it. -- regards, Mattia Rizzolo GPG

Bug#854423: Does not work on IPv6-only networks

On Thu, Feb 09, 2017 at 12:44:48AM +, Steve McIntyre wrote: > >I've tried this now. It's slightly problematic, as wicd tries to ping >the gateway it's given to validate connectivity. By using the local v4 >address as the gateway too, that defeats this check. Then wicd keeps >the network

Bug#854745: diffoscope: autopkgtest failures

Source: diffoscope Version: 65 Severity important https://ci.debian.net/data/packages/unstable/amd64/d/diffoscope/20170209_233402.autopkgtest.log.gz adt-run [23:40:53]: test command1: debian/tests/pytest adt-run [23:40:53]: test command1: [--- =

Bug#820168: CONFIG_DRM_AST on arm64? (was: Bug#820168: debian-installer vs. MP30-AR0)

Hi Ronald, Ronald Maas (2017-02-08): > Good news. I was able to successfully install Stretch RC2 on the > Gigabyte MP30-AR0 motherboard. Also the installer was able to > recognize the network properly, so this bug and also bug 820022 can be > closed. > > Attached the

Bug#854405: reportbug: Should handle missing optional runtime dependencies more gracefully

tags 854405 + patch kthxbye The attached patch fixes the issue. Cheers, sur5r -- ceterum censeo microsoftem esse delendam. From ceb2bfc8a04f2cde76dfdd17d0a01a8aa58e21cc Mon Sep 17 00:00:00 2001 From: Jakob Haufe Date: Thu, 9 Feb 2017 22:46:32 +0100 Subject: [PATCH] Catch

Bug#563900: pitivi: Doesn't start (ImportError: No module named instance)

Package: pitivi Version: 0.93-4.2 Followup-For: Bug #563900 Dear Maintainer, These is the system information of the tested machine. -- System Information: Debian Release: 8.7 APT prefers stable APT policy: (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 3.16.0-4-amd64 (SMP w/2

Bug#853809: unblock: e2fsprogs/1.43.4-2

Hi, Theodore Ts'o (2017-02-08): > On Fri, Feb 03, 2017 at 10:34:09PM +0100, Emilio Pozuelo Monfort wrote: > > > > This seems fine to me, unblocked. Cc'ing debian-boot@/Cyril for the > > udeb unblock. > > Hi, I've since found a regression that I would like to fix via a > cherry

Bug#563900: pitivi: Doesn't start (ImportError: No module named instance)

This is the current issue, when trying to start "pitivi" from the user shell on Debian jessie/stable system. This happens on a Debian jessie installation, no "pitivi" program was installed before jessie. $ /usr/bin/pitivi (pitivi:24218): Clutter-WARNING **: clutter_x11_set_use_argb_visual() can

Bug#714320: recommended / suggested

* Pierre Colombier: > The problem is that we are all expecting this distro to have > reasonable "recommends" that do not include everything but just what > seems to always be desireable. Save the rant: nmap does not Recommend zenmap. Cheers, -Hilko, slightly annoyed to still be discussing this.

Bug#854705: race condition in net backend

Hello Ralf, thank you for spending your time helping to make Debian better with this bug report. Some comments about this bug: * The Ubuntu bug was for release 1.0.23-0ubuntu3. This release is not longer supported. * The Ubuntu bug was linked to the Debian bug 734103[1]. This bug was

Bug#854743: golang-github-mailru-easyjson: FTBFS (32-bit): constant 4294967295 overflows int

Source: golang-github-mailru-easyjson Version: 0.0~git20161103.0.159cdb8-1 Severity: important Justification: fails to build from source Builds of golang-github-mailru-easyjson for 32-bit architectures such as i386 have been failing: # github.com/mailru/easyjson/tests

Bug#854719: [pkg-wpa-devel] Bug#854719: Bug#854719: hostapd: Failed to set beacon parameters

On 10/02/17 00:05, Vincent Danjean wrote: > Le 09/02/2017 à 23:20, Andrew Shadura a écrit : >> Hi, >> >> On 9 February 2017 at 21:10, Vincent Danjean wrote: >>> Package: hostapd >>> Version: 1:2.5-2+v2.4-3+b1 >>> Severity: grave >>> Justification: renders package unusable >>>

Bug#854723: diffoscope writes to arbitrary locations on disk based on the contents of an untrusted archive

Ximin Luo wrote: > this particular scheme might not work so well with large archives > with lots and lots of members Mm although unlikely to be a serious problem as we aren't iterating over the directory. > Also, are you sure this doesn't interfere with the detection of > order-only

Bug#854742: CVE-2017-5930

Package: postfixadmin Severity: grave Tags: security Please see http://seclists.org/oss-sec/2017/q1/345 Cheers, Moritz

Bug#854723: diffoscope writes to arbitrary locations on disk based on the contents of an untrusted archive

Ximin Luo: > Chris Lamb: >> tags 854723 + pending >> thanks >> >>> diffoscope may write to arbitrary locations on disk depending on the >>> contents >>> of an untrusted archive >> >> We can actually avoid all edge-cases of sanitisation by simply not using >> the supplied filename and maintaining

Bug#854741: apt-cache policy should show from which architecture a package is installed when multiple architectures are present

Package: apt Version: 1.4~beta4 Severity: normal Dear Maintainer, When you have two architectures, apt-cache policy doesn't tell which pkg architecture is the package in. It should tell it. See - [$] apt-cache policy decopy [4:48:19]

Bug#854739: CVE-2017-5591

Source: sleekxmpp Severity: grave Tags: security Please see http://seclists.org/oss-sec/2017/q1/373 Cheers, Moritz

Bug#854740: CVE-2017-5591

Source: slixmpp Severity: grave Tags: security Please see http://seclists.org/oss-sec/2017/q1/373 Cheers, Moritz

Bug#854737: CVE-2017-5603

Package: jitsi Severity: grave Tags: security Please see http://seclists.org/oss-sec/2017/q1/373 Cheers, Moritz

Bug#854738: CVE-2017-5604

Package: mcabber Severity: grave Tags: security Please see http://seclists.org/oss-sec/2017/q1/373 Cheers, Moritz

Bug#854723: diffoscope writes to arbitrary locations on disk based on the contents of an untrusted archive

Chris Lamb: > tags 854723 + pending > thanks > >> diffoscope may write to arbitrary locations on disk depending on the contents >> of an untrusted archive > > We can actually avoid all edge-cases of sanitisation by simply not using > the supplied filename and maintaining our own mapping. > >

Bug#854719: [pkg-wpa-devel] Bug#854719: hostapd: Failed to set beacon parameters

Le 09/02/2017 à 23:20, Andrew Shadura a écrit : > Hi, > > On 9 February 2017 at 21:10, Vincent Danjean wrote: >> Package: hostapd >> Version: 1:2.5-2+v2.4-3+b1 >> Severity: grave >> Justification: renders package unusable >> >> Hi, >> >> I just upgraded a machine from

Bug#854735: CVE-2017-5592

Package: profanity Severity: grave Tags: security Please see http://seclists.org/oss-sec/2017/q1/373 Cheers, Moritz

Bug#854736: CVE-2017-5593

Source: psi-plus Severity: grave Tags: security Please see http://seclists.org/oss-sec/2017/q1/373 Cheers, Moritz

Bug#854630: Pending fixes for bugs in the prometheus-apache-exporter package

tag 854630 + pending thanks Some bugs in the prometheus-apache-exporter package are closed in revision 67096e3d3c8e5558f2a5757cd4b8cc74fea40dd9 in branch ' debian/sid' by Jelmer Vernooij The full diff can be seen at

Bug#854734: CVE-2017-5896

Source: mupdf Severity: grave Tags: security Please see http://seclists.org/oss-sec/2017/q1/322 Cheers, Moritz

Bug#854733: CVE-2017-5367 / CVE-2017-5367 / CVE-2017-5368

Source: zoneminder Severity: grave Tags: security Please see https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5367 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5368 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5595 Cheers, Moritz

Bug#854732: python-selenium: incorrect default path for chromedriver executable

Package: python-selenium Version: 2.53.2+dfsg1-1 Severity: normal I have the Debian chromium-driver package installed. When I try to use it via webdriver.Chrome(), I get the following exception: File [...] browser = webdriver.Chrome() File

Bug#854731: CVE-2017-2615

Source: qemu Severity: important Tags: security Please see https://lists.gnu.org/archive/html/qemu-devel/2017-02/msg00015.html Cheers, Moritz

Bug#854730: CVE-2017-5931

Source: qemu Severity: important Tags: security Please see https://lists.nongnu.org/archive/html/qemu-devel/2017-01/msg01368.html http://www.openwall.com/lists/oss-security/2017/02/07/8 Cheers, Moritz

Bug#854729: CVE-2017-5898

Source: qemu Severity: important Tags: security Please see https://lists.nongnu.org/archive/html/qemu-devel/2017-02/msg01075.html https://bugzilla.redhat.com/show_bug.cgi?id=1419699 http://git.qemu-project.org/?p=qemu.git;a=commit;h=c7dfbf322595ded4e70b626bf83158a9f3807c6a Cheers, Moritz

Bug#714320: recommended / suggested

Hi Hilko, The problem is that we are all expecting this distro to have reasonable "recommends" that do not include everything but just what seems to always be desireable. in my not-so-humble opinion, nmap is essentially a console tool used for security and diagnostic purposes and I think it

Bug#854728: CVE-2016-10214 / CVE-2017-5937

Package: virglrenderer Severity: important Tags: security Please see https://security-tracker.debian.org/tracker/CVE-2017-5937 and https://security-tracker.debian.org/tracker/CVE-2016-10214 Cheers, Moritz

Bug#854727: Multiple vulnerabilities / unsuitable for stretch?

Source: zziplib Severity: grave Tags: security Hi, multiple security issues have been found in zziplib by Agostino Sarubbo of Gentoo: http://www.openwall.com/lists/oss-security/2017/02/09/10 http://www.openwall.com/lists/oss-security/2017/02/09/11

Bug#833193: closed by Sean Whitton <spwhit...@spwhitton.name> (Closing inactive ITP RFSs)

control: owner -1 ! Hello again Ben, Thank you for your response to my previous review. On Wed, Dec 07, 2016 at 08:06:36PM +, Ben Albrecht wrote: > >5. The UTF-8 decoder needs to be packaged separately -- Debian strongly > >discourages convenience copies of code. It might already be

Bug#854289: newbiedoc: Too outdated for being useful

Chris Lamb wrote: > I agree. Any objection to removing this from Debian...? Filed as #854726. Regards, -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `-

Bug#854719: [pkg-wpa-devel] Bug#854719: hostapd: Failed to set beacon parameters

Hi, On 9 February 2017 at 21:10, Vincent Danjean wrote: > Package: hostapd > Version: 1:2.5-2+v2.4-3+b1 > Severity: grave > Justification: renders package unusable > > Hi, > > I just upgraded a machine from jessie to stretch. With the stretch > version of hostapd, the

Bug#844446: Starting version should be 4.8-rc8

Same problem here, E3-1230 v5. Stretch guest VM on RHEL 6.6 host. Actually on my guest VM, this bug was from *4.8-rc8*, while 4.8-rc7 boots well. I do not have access to the host machine, so cannot test if those changes in configuration works or not. cpuinfo: processor: 0 vendor_id:

Bug#854726: RM: newbiedoc -- RoQA; far too outdated to be useful

Package: ftp.debian.org Severity: normal >From #854289: "I'm writing this in January of 2001 as it applies to my Debian "potato" release." (Runlevels_introduction.html) The included files are ~ 15 years old and have last been revised ~ 10 years ago in etch/squeeze times. Reading

Bug#837679: Workaround

my error log: samba (2:4.5.4+dfsg-1) wird eingerichtet ... Job for smbd.service failed because the control process exited with error code. See "systemctl status smbd.service" and "journalctl -xe" for details. invoke-rc.d: initscript smbd, action "start" failed. smbd.service - Samba SMB Daemon

Bug#854723: diffoscope writes to arbitrary locations on disk based on the contents of an untrusted archive

tags 854723 + pending thanks > diffoscope may write to arbitrary locations on disk depending on the contents > of an untrusted archive We can actually avoid all edge-cases of sanitisation by simply not using the supplied filename and maintaining our own mapping. Given this is both safer (and

Bug#854721: debian-policy: Artistic License 1.0 is not DFSG compliant

X-Debbugs-CC: a...@debian.org, ballo...@debian.org, jrnie...@gmail.com, r...@debian.org I forgot to CC. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854721#15 smime.p7s Description: S/MIME cryptographic signature

Bug#830207: RFP: audio-recorder -- record what is played in the loudspeakers

Hi Arturo, there was a new upstream version of audio-recorder today. So i packaged the new version with my latest changes. Maybe you could upload it as soon as version 1.9.4 is out of the NEW queue. https://mentors.debian.net/package/audio-recorder Btw: The mentors page says that the watch file

Bug#854725: pbuilder: Failed extracting the source (cause: dpkg-source: -x needs exactly one argument, the .dsc)

found 854725 0.228 notfound 854725 0.227 thanks Downgrading to 0.227 helps.

Bug#854721: debian-policy: Artistic License 1.0 is not DFSG compliant

The relevant points in #381729 are: * DFSG #10: "Artistic" is listed as an example the project considers "free". This does not seem a reason because if the license breaks another DFSG rule, then it is not an example, it is an override. * DFSG #8: License must

Bug#854721: Acknowledgement (debian-policy: Artistic License 1.0 is not DFSG compliant)

X-Debbugs-CC: a...@debian.org, ballo...@debian.org, jrnie...@gmail.com, r...@debian.org Sorry, the bug report search tool does not return results with "artistic" in the subject. Reading existing reports... smime.p7s Description: S/MIME cryptographic signature

Bug#854667: icedove: SIGSEGV, from /usr/lib/icedove/libxul.so

Hi, On Thu, Feb 09, 2017 at 11:02:37PM +1300, Jean-Francois Pirus wrote: > Package: icedove > Version: 1:45.6.0-2 > Severity: important > > Crash when switching emails. > > Linux Tosh 4.9.0-1-amd64 #1 SMP Debian 4.9.6-3 (2017-01-28) x86_64 GNU/Linux > > backtrace included > unfortunately

  1   2   3   >