Bug#1007905: transition: icu

On Sat, Mar 19, 2022 at 8:28 AM Adrian Bunk wrote: > On Fri, Mar 18, 2022 at 06:05:38PM +, Simon McVittie wrote: > > Obviously all these copies of essentially the same codebase are quite > > unfortunate, but mozjs and ICU seem to be sufficiently tightly-coupled > > that perhaps using its

Bug#845166: Seeing similar with spaces

I seem to see the same with ASCII spaces (0x20) in the SSID. However I can create the connection using nmcli, and then selected it from the GUI. root@ideapc:~# pre network-m network-manager 1.30.0-2amd64 network-manager-gnome 1.20.0-3amd64 root@ideapc:~# cat

Bug#1007983: node-puppeteer: broken autopkgtest keeping chromium from migrating to testing

On Sat, 19 Mar 2022 17:44:02 -0400 Andres Salomon wrote: > Source: node-puppeteer > Control: found -1 node-puppeteer/13.1.0+dfsg-6 > Control: affects -1 chromium > Severity: serious > Tags: sid bookworm > > node-puppeteer is keeping chromium from migrating; as >

Bug#1003252: AttributeError: install_layout

Control: reassign -1 python3.10 Control: fixed -1 python3.10/3.10.2-6 Control: found -1 python3.10/3.10.2-3 Control: close -1 This is resolved by the addition of _distutils_system_mod in Python 3.10. python3.9 hasn't been fixed yet, but it'll be replaced by 3.10, soon. SR -- Stefano Rivera

Bug#1007724: xscreensaver: xscreensaver-auth says it should be installed setuid root

There is no debate about this. It is insecure and irresponsible for xscreensaver-auth to *not* be setuid root. Install it setuid root, as it was designed to be, and as "make install" does by default.

Bug#959469: openssl 1.1.1n-0+deb10u1 flagged for acceptance

On Mon, Mar 21, 2022 at 12:12:11AM +0100, Sebastian Andrzej Siewior wrote: > > The change in openssl is commit >cc7c6eb8135b ("Check that the default signature type is allowed") So that's: commit cc7c6eb8135be665d0acc176a5963e1eaf52e4e2 Author: Kurt Roeckx Date: Thu Jan 2 22:53:32 2020

Bug#1008033: please make a new upload leveraging recent Poppler

Source: okular Version: 4:21.12.3-1 Severity: wishlist Okular and the version of Poppler now in unstable both support digital signing of PDFs, which is awesome. However, Okular checks at build time whether Poppler provides the functions necessary for PDF signing. It is sufficient to make a new

Bug#946187: ITP: starship -- any news?

No worries Daniele! I greatly appreciate your interest and willingness to contribute a Starship package. Cheers, Matan

Bug#959469: openssl 1.1.1n-0+deb10u1 flagged for acceptance

On 2022-03-20 23:15:57 [+0100], Kurt Roeckx wrote: > > https://ci.debian.net/data/autopkgtest/oldstable/amd64/g/gnutls28/20199677/log.gz > > > > Checking TLS 1.0 with ECDHE-ECDSA (SECP384R1)... > > %COMPAT: Checking TLS 1.0 with ECDHE-ECDSA (SECP384R1)... > > *** Fatal error: A TLS fatal alert

Bug#1006199: xscreensaver: Does not power-off screen in normal operation, although it is working with "Blank screen now"

On Mon, Feb 21, 2022 at 9:03 AM Christian Britz wrote: > Dear Maintainer, > > I have configured xscreensaver to use "Blank Screen Only", enabled power > management and "Quick Power-off in Blank Only Mode". > The display IS powered off when I issue "File -> Blank Screen Now" in > xscreensaver-demo.

Bug#1007792: nmu: fdroidcl_0.5.0-3+b3

Hi Sebastian, * Sebastian Ramacher [2022-03-19 18:08]: Control: tags -1 moreinfo On 2022-03-16 20:38:48 +0100, Jochen Sprickerhof wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu X-Debbugs-Cc: jspri...@debian.org nmu

Bug#959469: openssl 1.1.1n-0+deb10u1 flagged for acceptance

On Sun, Mar 20, 2022 at 10:00:15PM +0100, Paul Gevers wrote: > Dear Sebastian, Kurt, > > On 19-03-2022 12:33, Adam D Barratt wrote: > > Upload details > > == > > > > Package: openssl > > Version: 1.1.1n-0+deb10u1 > > > > Explanation: new upstream release > > We're seeing a

Bug#1007724: xscreensaver: xscreensaver-auth says it should be installed setuid root

On Tue, Mar 15, 2022 at 6:57 PM Julian Gilbey wrote: > euler:~ $ xscreensaver -no-splash > xscreensaver-auth: 17:48:30: OOM: /proc/7427/oom_score_adj: Permission denied > xscreensaver-auth: 17:48:30: To prevent the kernel from randomly unlocking > xscreensaver-auth: 17:48:30: your screen via

Bug#1008032: O: parprouted -- transparent IP (Layer 3) proxy ARP bridging tool

Package: wnpp Severity: normal I'm orphaning all of my packages in Debian because I have decided to retire. The description reads: transparent IP (Layer 3) proxy ARP bridging tool This is useful for creation of transparent firewalls and bridging networks with different MAC protocols. Also,

Bug#1008031: bullseye-pu: package intel-microcode/3.20210608.2

Package: release.debian.org Severity: normal Tags: bullseye User: release.debian@packages.debian.org Usertags: pu I'd like to update the intel-microcode package in bullseye. The new Intel microcode release includes fixes for several critical functional defects (errata) as well as security

Bug#1008030: buster-pu: package intel-microcode/3.20210608.2~deb10u1

Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu I'd like to update the intel-microcode package in buster. The new Intel microcode release includes fixes for several critical functional defects (errata) as well as security fixes

Bug#1006558:

Hello. I am checking in on things. I filed a bug report three weeks ago and have not heard back from anyone yet. Thanks.

Bug#998627: linux: please enable the new NTFS3 driver in 5.15

On Fri, 2022-03-18 at 20:58 +0100, lenni_na1 wrote: > Hi, > > are there any news on this? > > We are now at kernel 5.16 in testing and as far as I can tell the ntfs3 > driver still hasn't been enabled. The recent traffic on the ntfs3 list seems to consist of bug reports and small fixes, none

Bug#1008029: O: dirdiff -- Display and merge changes between two directory trees

Package: wnpp Severity: normal I'm orphaning all of my packages in Debian because I have decided to retire. The description reads: Dirdiff can handle up to 5 trees. It displays a main window with a list of the files which are different between the trees, with colored squares to indicate

Bug#1008028: hydra: fails to propagate errors from sub-configure to make

Source: hydra Version: 9.3-1 Severity: serious Justifictation: policy 4.6 When the sub-configure invocation for hydra-gtk fails, the error is ignored and the build attempts to continue. Such behaviour is prohibited by the Debian policy section 4.6: | cd hydra-gtk && sh ./make_xhydra.sh | Trying

Bug#959469: openssl 1.1.1n-0+deb10u1 flagged for acceptance

Dear Sebastian, Kurt, On 19-03-2022 12:33, Adam D Barratt wrote: Upload details == Package: openssl Version: 1.1.1n-0+deb10u1 Explanation: new upstream release We're seeing a regression in buster in the autopkgtest of gnutls28 with the new version of openssl on all tested

Bug#1003948: bullseye-pu: package systemd/247.3-7

Am 19.03.22 um 18:04 schrieb Julien Cristau: Control: tag -1 confirmed On Tue, Jan 18, 2022 at 02:46:06PM +0100, Michael Biebl wrote: * Demote systemd-timesyncd from Depends to Recommends. This avoids a dependency cycle between systemd and systemd-timesyncd and thus makes dist

Bug#1008027: O: mrtgutils -- Utilities to generate statistics for mrtg

Package: wnpp Severity: normal I'm orphaning all of my packages in Debian because I have decided to retire. MRTGutils is relative low-maintenance package, probably a good choice for a first-package. The description reads: MRTGutils is a collection of simple utilities to generate output useful

Bug#925879: reprotest: flaky autopkgtest: Unknown encoding 'RK1048' at /usr/bin/help2man line 56.

Hi, On Tue, 06 Oct 2020 11:34:48 -0700 Vagrant Cascadian wrote: On 2019-03-27, Paul Gevers wrote: > Since the introduction of 0.7.8 the autopkgtest of reprotest sometimes > fails in unstable and testing, while a retry not much later succeeds. > Because the unstable-to-testing migration

Bug#993678: Patch fixes problem

I can confirm that the patch fixes the reported issue. Regards, Daniel

Bug#1008026: usbguard: CVE-2019-25058: unauthorized access via D-Bus

Package: usbguard X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerability was published for usbguard. CVE-2019-25058[0]: | An issue was discovered in USBGuard before 1.1.0. On systems with the | usbguard-dbus daemon running, an unprivileged user

Bug#1005158: nvidia-graphics-drivers-tesla-450 450.172.01-2~deb11u1 flagged for acceptance

package release.debian.org tags 1005158 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package:

Bug#1008025: fwupd-efi FTCBFS: uses the build architecture compiler for efi components

Source: fwupd-efi Version: 1:1.2-3 Tags: patch User: debian-cr...@lists.debian.org Usertags: ftcbfs fwupd-efi fails to cross build from source, because it uses the build architecture compiler for building efi components. It actually has two compiler variables and the efi-cc one is not default

Bug#1007267: [Pkg-javascript-devel] Bug#1007267: (no subject)

Quoting Ayoyimika Ajibade (2022-03-20 18:51:35) > The new update to webpack5 release > https://salsa.debian.org/Ayoyimika/node-webpack/-/commit/758a0d0bdb2001400d73db53c5a3ce3c73086b7a > > which is basically updating how webpack5 requires node-eslint-scope > resolves this bugs. > I guess i

Bug#1008024: libpano13: CVE-2021-33293 out-of-bounds read

Package: libpano13 X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for libpano13. CVE-2021-33293[0]: | Panorama Tools libpano13 v2.9.20 was discovered to contain an out-of- | bounds read in the function

Bug#1008023: ITP: node-cbor -- Node.js modules to encode and parse data in CBOR data format

Package: wnpp Severity: wishlist Owner: Yadd X-Debbugs-Cc: debian-de...@lists.debian.org * Package name: node-cbor Version : 8.1.0 Upstream Author : Joe Hildebrand * URL : https://github.com/hildjj/node-cbor * License : Expat Programming Lang: JavaScript

Bug#1005158: bullseye-pu: package nvidia-graphics-drivers-tesla-450/450.172.01-1~deb11u1

On Sun, 2022-03-20 at 17:32 +0100, Andreas Beckmann wrote: > On 19/03/2022 17.48, Adam D. Barratt wrote: > > Control: tags -1 + confirmed > > > > On Tue, 2022-02-08 at 09:06 +0100, Andreas Beckmann wrote: > > > I'd like to update src:nvidia-graphics-drivers-tesla-450/non-free > > > to > > > a >

Bug#1007267: (no subject)

The new update to webpack5 release https://salsa.debian.org/Ayoyimika/node-webpack/-/commit/758a0d0bdb2001400d73db53c5a3ce3c73086b7a which is basically updating how webpack5 requires node-eslint-scope resolves this bugs. I guess i will close it then OpenPGP_0x1FF1115A4CAC464D.asc

Bug#946187: ITP: starship -- any news?

Hello Matan, thanks for the ping. I'm really sorry that well starship is not in Debian yet. On Sun, Jan 16, 2022 at 05:53:59PM +0300, Matan Kushner wrote: > I'm the lead maintainer of Starship and would love to see a package be made. > I don't know a whole lot about the process of creating Debian

Bug#1002912: graphicsmagick 1.4+really1.3.35-1~deb10u2 flagged for acceptance

package release.debian.org tags 1002912 = buster pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian buster. Thanks for your contribution! Upload details == Package: graphicsmagick Version:

Bug#1008022: keepass2: CVE-2022-0725 information disclosure

Package: keepass2 X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for keepass2. CVE-2022-0725[0]: | A flaw was found in KeePass. The vulnerability occurs due to logging | the plain text passwords in the system log and leads

Bug#1008021: bind9: unused build-dependency on libldap2-dev

Source: bind9 Version: 1:9.18.1-1 Severity: minor Dear Maintainer, I think bind9's build-dependency on libldap2-dev is unused. As far as I can tell, it was added to support the dlz-ldap module:

Bug#1006953: fonts-creep2: Font does not install correctly, so does not show up in GUI font lists

Control: tag -1 -moreinfo Control: severity -1 grave 19/03/2022 23:31, David Calman : I tried xfce4-terminal. It has the same font-selection dialogue as Konsole, and it too cannot see creep. Both can see Atari and Misaki, but not creep. I have PCF fonts disabled in `fontconfig-config` because

Bug#1008020: precious: build-depends on obsolete package.

Package: precious Version: 0.1.3-2 Severity: serious The upstream of  the rust which crate dropped the optional dependency on the rust failure crate. As a result of this the rust-which source package no longer builds a librust-which+failure-dev package. The librust-which+failure-dev binary

Bug#1007717: Native source package format with non-native version

On 17/03/2022 17:52, Russ Allbery wrote: Helmut Grohne writes: Do you think it would be impossible to move forward on this matter in a consensus-based way? I don't know. I have some reasons to be dubious, but it's possible that I'm being excessively pessimistic. I'm inclined to agree

Bug#1005158: bullseye-pu: package nvidia-graphics-drivers-tesla-450/450.172.01-1~deb11u1

On 19/03/2022 17.48, Adam D. Barratt wrote: Control: tags -1 + confirmed On Tue, 2022-02-08 at 09:06 +0100, Andreas Beckmann wrote: I'd like to update src:nvidia-graphics-drivers-tesla-450/non-free to a new upstream version to fix CVE‑2022‑21813, CVE‑2022‑21814. This is a simple rebuild of

Bug#1003491: winetricks: Please allow co-installation with wine-staging

On 20.03.22 17:16, Jens Reyer wrote: > export WINE=/opt/wine-staging/bin/wineserver > export WINESERVER=/opt/wine-staging/bin/wineserver That should have been: export WINE=/opt/wine-staging/bin/wine export WINESERVER=/opt/wine-staging/bin/wineserver

Bug#1007992: libigdgmm12: new version causes segfaults

On 2022-03-20 07:07:46 +0100, Paul Menzel wrote: > Control: forward -1 https://github.com/intel/gmmlib/issues/95 > > Dear Debian folks, > > > Am 20.03.22 um 04:35 schrieb Christoph Anton Mitterer: > > […] > > > This version breaks e.g. video playback with mpv (also vlc): > > $ mpv test.mp4 >

Bug#1007992: libigdgmm12: new version causes segfaults

On Sun, 2022-03-20 at 07:07 +0100, Paul Menzel wrote: > Firefox with VA-API enabled crashes too, > but not when it’s disabled. > Do you have VA-API enabled for mpv? I do have: hwdec=auto in mpv.conf, which I think would use vaapi here. However, I have nothing specifically set for VLC.

Bug#1008019: RFS: lebiniou/3.66.0-1 -- user-friendly, powerful music visualization / VJing tool

Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for my package "lebiniou": * Package name: lebiniou Version : 3.66.0-1 Upstream Author : Olivier Girondel * URL : https://biniou.net * License : GPL-2+

Bug#1008018: RFS: lebiniou-data/3.66.0-1 -- datafiles for Le Biniou

Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for my package "lebiniou-data": * Package name: lebiniou-data Version : 3.66.0-1 Upstream Author : Olivier Girondel * URL : https://biniou.net * License :

Bug#1008017: audiofile: CVE-2022-24599

Source: audiofile Version: 0.3.6-5 Severity: important Tags: security upstream Forwarded: https://github.com/mpruett/audiofile/issues/60 X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for audiofile. CVE-2022-24599[0]: | In autofile Audio

Bug#1008016: ITP: safe-network -- network routing and service daemon for the Safe Network

Package: wnpp Severity: wishlist Owner: Jonas Smedegaard X-Debbugs-Cc: debian-de...@lists.debian.org -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 * Package name: safe-network Version : 0.46.5 Upstream Author : MaidSafe.net limited * URL :

Bug#1007977: [Android-tools-devel] Bug#1007977: android-platform-system-core: builds adb which is also built (at a higher version) by android-platform-tools

Right, this is an ongoing, incomplete migration. Anything that is built in android-platform-tools should be removed from android-platform-system-core or any other android-platform-* packages. We welcome contributions there!

Bug#1008015: openvpn: CVE-2022-0547: authentication bypass in external authentication plug-ins

Package: openvpn X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerability was published for openvpn. CVE-2022-0547[0]: | OpenVPN 2.1 until v2.4.12 and v2.5.6 may enable authentication bypass | in external authentication plug-ins when more than one of

Bug#1008014: python3-blinker: DeprecationWarning with Python 3.10: invalid escape sequence '\*'

Package: python3-blinker Version: 1.4+dfsg1-0.4 Severity: normal Tags: upstream I am getting the following warning: ../../../../../../../../../../usr/lib/python3/dist-packages/blinker/base.py:93 /usr/lib/python3/dist-packages/blinker/base.py:93: DeprecationWarning: invalid escape sequence

Bug#1008013: waitress: CVE-2022-24761

Source: waitress Version: 1.4.4-1.1 Severity: important Tags: security upstream X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for waitress. CVE-2022-24761[0]: | Waitress is a Web Server Gateway Interface server for Python 2 and 3. | When

Bug#1008012: paramiko: CVE-2022-24302

Source: paramiko Version: 2.8.1-1 Severity: important Tags: security upstream X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for paramiko. CVE-2022-24302[0]: | In Paramiko before 2.10.1, a race condition (between creation and | chmod) in the

Bug#1008011: httpie: CVE-2022-24737

Source: httpie Version: 2.6.0-1.1 Severity: important Tags: security upstream X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for httpie. CVE-2022-24737[0]: | HTTPie is a command-line HTTP client. HTTPie has the practical concept | of

Bug#1008010: frr: CVE-2022-26125 CVE-2022-26126 CVE-2022-26127 CVE-2022-26128 CVE-2022-26129

Source: frr Version: 8.1-1 Severity: important Tags: security upstream X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerabilities were published for frr. CVE-2022-26125[0]: | Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due | to wrong checks on

Bug#1008009: liblouis: CVE-2022-26981

Source: liblouis Version: 3.21.0-1 Severity: important Tags: security upstream Forwarded: https://github.com/liblouis/liblouis/issues/1171 X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for liblouis. CVE-2022-26981[0]: | Liblouis through

Bug#1008008: CVE-2022-21698: denial of service in client_golang

Package: golang-github-prometheus-client-golang X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for golang-github-prometheus-client- golang. CVE-2022-21698[0]: | client_golang is the instrumentation library for Go

Bug#983803: ITA: simple-revision-control -- single-file and single-user revision control system

Hi I intend to adopt simple-revision-control -- single-file and single-user revision control system. I am looking for an opportunity to contribute to Debian through packaging. If you don't mind, let me adopt this package. Regards, Fukui On Mon, 1 Mar 2021 23:37:47 +0200 Adrian Bunk wrote: >

Bug#1008007: O: ieee-data -- OUI and IAB listings

Package: wnpp Severity: normal I'm orphaning all of my packages in Debian because I have decided to retire. ieee-data is relative low-maintaince and has a high popcon count. The description reads: Provide the Organizationally Unique Identifier (OUI) and Individual Address Block (IAB)

Bug#1008006: dde-qt5integration: FTBFS: Unknown module(s) in QT: dtkgui5.5 dtkwidget5.5

Source: dde-qt5integration Version: 5.5.8-1 Severity: serious Tags: ftbfs Dear Maintainer, dde-qt5integration fails to build from source in a clean sid chroot: Project ERROR: Unknown module(s) in QT: dtkgui5.5 dtkwidget5.5 make[2]: *** [Makefile:47: sub-chameleon-make_first] Error 3

Bug#1008005: php-imagick: Recommends removed package: ttf-dejavu-core

Package: php-imagick Version: 3.4.4+php8.0+3.4.4-2+deb11u2 Severity: serious Dear maintainer, Due to a recent change in autopkgtest, I noticed that your packages recommend a package that's not available in stable, testing and unstable. ttf-dejavu-core was a transitional package in buster, please

Bug#1006966: gajim: Gajim won't start due to gajim.c.storage.cache error

Control: tags -1 + moreinfo Upstream also says there ist something weird with the cache file.

Bug#1008004: build error with firefox

Package: firefox Version: 98.0-2 I came across build error while building firefox. i will paste here a terminal clipping... --- make[5]: Leaving directory '/home/jeffrin/build/firefox-98.0/build-browser/dom/base' make[4]: Leaving directory

Bug#1008003: jansson: New upstream release (2.14, 2021 Sep 9), not detected by debian/watch

On Sun, Mar 20, 2022 at 01:56:10PM +0100, Florian Ernst wrote: > The attached diff to debian/watch allows uscan to detect this version. Yeah, right, a classic. So, now attached. Cheers, Flo diff -Nru jansson-2.13.1/debian/watch jansson-2.13.1/debian/watch --- jansson-2.13.1/debian/watch

Bug#1008003: jansson: New upstream release (2.14, 2021 Sep 9), not detected by debian/watch

Source: jansson Version: 2.13.1-1.1 Severity: wishlist Dear maintainer, there is a new upstream release available, cf. . (For reference, the Homepage now redirects to .) The attached

Bug#1007947: phpliteadmin 1.9.8.2-1+deb11u1 flagged for acceptance

package release.debian.org tags 1007947 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: phpliteadmin Version:

Bug#1005148: nvidia-modprobe 470.103.01-1~deb11u1 flagged for acceptance

package release.debian.org tags 1005148 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: nvidia-modprobe Version:

Bug#1008002: installation-reports: wifi hardware not available, otherwise fine

Package: installation-reports Severity: normal X-Debbugs-Cc: u...@kleine-koenig.org Boot method: SD card Image version: firmware-11.2.0-amd64-i386-netinst Date: 2022-03-20 Machine: Apple MacBook Air Base System Installation Checklist: [O] = OK, [E] = Error (please elaborate below), [ ] = didn't

Bug#1008001: O: davfs2 -- mount a WebDAV resource as a regular file system

Package: wnpp Severity: normal I'm orphaning all of my packages in Debian because I have decided to retire. Davfs2 is a relative popular package that has a very responsive upstream team. The description reads: Web Distributed Authoring and Versioning (WebDAV), an extension to the

Bug#1007948: phpliteadmin 1.9.7.1-2+deb10u1 flagged for acceptance

package release.debian.org tags 1007948 = buster pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian buster. Thanks for your contribution! Upload details == Package: phpliteadmin Version:

Bug#1008000: rtl-433: CVE-2022-25050 CVE-2022-25051

Source: rtl-433 Version: 21.12-1 Severity: important Tags: security upstream Forwarded: https://github.com/merbanan/rtl_433/issues/1960 X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerabilities were published for rtl-433. CVE-2022-25050[0]: | rtl_433 21.12 was

Bug#1007999: debian-keyring: New release?

Package: debian-keyring Version: 2021.12.24 There are tags in debian-keyring's git repo for 2022.01.25 and 2022.02.24 releases. They were never uploaded. Is there any problem? Please think about releasing a new version.

Bug#1007998: release-notes: netcat-openbsd incompatibilities

Package: release-notes Severity: wishlist Hi there, netcat-openbsd 1.218-5 adds support for abstract sockets (on Linux), which is a breaking change with possible security implications: https://sources.debian.org/src/netcat-openbsd/1.218-5/debian/NEWS/ . elbrus suggested to mention that in the

Bug#1007970: ITP: cloudflare-ddns -- dynamically update a DNS record using Cloudflare

Hi Andrea, This sounds really cool and useful to have in Debian! Do you need a sponsor? If so, I would be willing to sponsor it. Regards, Stephan On Sat, Mar 19, 2022 at 8:09 PM Andrea Pappacoda wrote: > > Package: wnpp > Severity: wishlist > Owner: Andrea Pappacoda > X-Debbugs-Cc:

Bug#1007198: ITP: librist -- Reliable Internet Stream Transport for reliable transmission of video over lossy networks

tags 1007198 pending thanks On Sun, Mar 13, 2022 at 02:15:20PM +0100, Florian Ernst wrote: > * Package name: librist > Version : v0.2.6 > Upstream Author : VideoLAN and librist authors > * URL : https://code.videolan.org/rist/librist > * License : BSD 2-Clause

Bug#1007997: librust-xml-rs-dev: wrong package section utils (should be rust)

Package: librust-xml-rs-dev Version: 0.8.3-1 Severity: minor -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Binary package librust-xml-rs-dev is in package section utils but contain only Rust source code. Please instead place it in package section rust. - Jonas -BEGIN PGP SIGNATURE-

Bug#1007996: mkdocs-material: Please update to a recent upstream version

Package: mkdocs-material Version: 8.1.3-1 Severity: wishlist Dear Maintainer, while working further on packaging of NetBox I noticed that NetBox has bumped the depending version on mkdoc-material to 8.2.5 which is the most recent upstream version while writing this bug repoprt. Please consider

Bug#1007982: ITP: popsicle -- A Linux utility for flashing multiple USB devices in parallel

On Sat, Mar 19, 2022 at 09:42:53PM +, Matthias Geiger wrote: > * Package name    : popsicle > * URL : https://github.com/pop-os/popsicle >   Programming Lang: Rust >   Description : Popsicle is a Linux utility for flashing multiple USB > devices in

Bug#1007989: virt-manager: Error launching create dialog

Erik de Castro Lopo wrote: > Package: virt-manager > Version: 1:4.0.0-1 > Severity: important > > Dear Maintainer, > > When I run virt-manager and try to create a new VM I get a dialog box saying: > > Error launching create dialog: > programming error: Did not find widget name =

Bug#1007843: FTBFS with nodejs experimental/14.19.0

Control: severity -1 serious Upgrading severity to allow nodejs 14 migration. Question: is this package useful ? No reverse dependencies in Debian, no new version for 2 years even if there are 116 open bugs, low and decreasing weekly downloads [https://www.npmjs.com/package/opencv],...

Bug#1007995: RM: node-zipfile -- ROM; Useless, abandonned upstream, incompatible with node 14

Package: ftp.debian.org Severity: normal X-Debbugs-Cc: pkg-javascript-de...@alioth-lists.debian.net Hi, node-zipfile has no more reverse dependencies. It was already incompatible with nodejs 12. I fixed that and pushed result [1]. Two years later, nothing happened. Now node-zipfile blocks

Bug#934025: chromium: can't access mic ( no audio input ), works fine in firefox

Hi, Can you tell me if this issue is resolved with the latest chromium (v99) or not? Thanks, Andres On Tue, 06 Aug 2019 01:08:00 -0700 Ximin Luo wrote: > Package: chromium > Version: 76.0.3809.87-2+b1 > Severity: important > > Dear Maintainer, > > Chromium can't access the microphone, the

Bug#1007199: ipxe: fails to boot on Geode LX

On Sun, Mar 20, 2022 at 8:42 AM Martin-Éric Racine wrote: > > On Sat, Mar 19, 2022 at 1:59 AM Bernhard Übelacker > wrote: > > I tried to reproduce the issue with the help of a qemu VM. > > > > That way I found /usr/lib/ipxe/ipxe.lkrn working with specifying > > a pentium2 CPU, but hangs with a

Bug#1005410: chromium: debug trap warning on browser start up

Hi, updating chromium to 99.0.4844.74-1 seems to have fixed this problem, thanks. 2022-02-19 0:08 GMT+01:00, 10dmar10 <10dma...@gmail.com>: >> I just uploaded 98.0.4758.102-1, please let me know if it still happens >> there. >> Also, do you get symbols in the backtrace when you run "chromium

Bug#1007199: ipxe: fails to boot on Geode LX

On Sat, Mar 19, 2022 at 1:59 AM Bernhard Übelacker wrote: > I tried to reproduce the issue with the help of a qemu VM. > > That way I found /usr/lib/ipxe/ipxe.lkrn working with specifying > a pentium2 CPU, but hangs with a pentium. > > Similarly I found the version 1.0.0+git-20150424.a25a16d-1 >

Bug#1007992: libigdgmm12: new version causes segfaults

Control: forwarded -1 https://github.com/intel/gmmlib/issues/95 Dear Debian folks, Am 20.03.22 um 07:07 schrieb Paul Menzel: Control: forward -1 https://github.com/intel/gmmlib/issues/95 I thought it was `forwarded`, but changed after reading the example in *How to report a bug in Debian

Bug#1007992: libigdgmm12: new version causes segfaults

Control: forward -1 https://github.com/intel/gmmlib/issues/95 Dear Debian folks, Am 20.03.22 um 04:35 schrieb Christoph Anton Mitterer: […] This version breaks e.g. video playback with mpv (also vlc): $ mpv test.mp4 (+) Video --vid=1 (h264 720x300 23.976fps) (+) Audio --aid=1 (aac 2ch

Bug#1007994: qtpaths is broken for cross compilation

Package: qttools5-dev-tools Version: 5.15.2-5+b1 Severity: important Justification: multiarch violation User: debian-cr...@lists.debian.org Usertags: ftcbfs Control: affects -1 + src:qt5ct Dear qt maintainers, we have a bigger problem about qtpaths. I haven't checked, but I think it also affects