Bug#1053483: hash-slinger: diff for NMU version 3.1-1.2

Control: tags 1053483 + pending Dear maintainer, I've prepared an NMU for hash-slinger (versioned as 3.1-1.2) and uploaded it to DELAYED/10. Please feel free to tell me if I should delay it longer. I didn't find a recent copy of the source code on Salsa as well, otherwise I would have submitted

Bug#1032287: python-qrencode: diff for NMU version 1.2-5.1

Control: tags 1032287 + pending Dear maintainer, I've prepared an NMU for python-qrencode (versioned as 1.2-5.1) and uploaded it to DELAYED/10. Please feel free to tell me if I should delay it longer. Regards. -- diff -Nru python-qrencode-1.2/debian/changelog

Bug#987008: grub2: diff for NMU version 2.06-8.1

if you will followup with an unstable update or I should. A copy of the package is also available at: https://people.debian.org/~anarcat/debian/sid/grub2_2.06-8.1_amd64.changes (and yes, I am aware this makes it possible to bypass the DELAYED queue, which is partly why it's targeting experimental

Bug#988074: trocla: diff for NMU version 0.3.0-0.1

and are therefore not only my changes. My work may be more easily reviewed here: https://salsa.debian.org/anarcat/trocla/-/commits/debian/experimental/ You can also see the pipeline has been fixed by those commits here: https://salsa.debian.org/anarcat/trocla/-/pipelines/251950 Regards. diff -Nru trocla

Bug#826675: rapid-photo-downloader: Wrong sort order

Control: tag -1 moreinfo On Tue, Jun 07, 2016 at 09:40:07PM +0200, Christian von Kietzell wrote: > Package: rapid-photo-downloader > Version: 0.4.11-1 > Severity: normal > > Dear Maintainer, > > rpd sorts the files to import incorrectly, resulting in file numbering that > isn't chronological

Bug#807990: oath-toolkit: diff for NMU version 2.6.1-1.4

[this is a resend: the prevous version had the wrong date in debian/changelog] Dear maintainer, I've prepared an NMU for oath-toolkit (versioned as 2.6.1-1.4) and uploaded it to DELAYED/10. Please feel free to tell me if I should delay it longer. Regards. -- diff -Nru

Bug#807990: oath-toolkit: diff for NMU version 2.6.1-1.4

Control: tags 807990 + pending Dear maintainer, I've prepared an NMU for oath-toolkit (versioned as 2.6.1-1.4) and uploaded it to DELAYED/10. Please feel free to tell me if I should delay it longer. Regards. diff -Nru oath-toolkit-2.6.1/debian/changelog oath-toolkit-2.6.1/debian/changelog ---

Bug#930440: RFP: podman -- Library and tool for running OCI-based containers in Pods

Control: tags -1 +pending On Wed, Jun 12, 2019 at 08:26:22PM +0200, Varac wrote: > * Package name: podman I just want to mention that it seems podman has entered NEW: https://ftp-master.debian.org/new/libpod_1.6.4+dfsg-1.html The last dependency that was missing (#948113) is also waiting

Bug#944986: ITP: emacs-wgrep -- edit multiple files simultaneously in Emacs using grep buffers--pattern editing

On Sun, Nov 17, 2019 at 07:39:49PM -0500, Nicholas D Steeves wrote: > Package: wnpp > Severity: wishlist > Owner: Nicholas D Steeves > Control: tag + moreinfo > > Package name: emacs-wgrep > Version : 2.3.0 > Upstream Author : Masahiro Hayashi > URL :

Bug#936043: ITP: gitbatch -- Manage git repositories in one place

On Thu, Aug 29, 2019 at 01:28:57PM +0200, Dawid Dziurla wrote: > Managing multiple git repositories is easier than ever. Often one would end > up working on many directories and manually pulling updates etc. To make > this routine faster, gitbatch was created, a simple tool to handle this job.

Bug#942114: ganeti-instance-debootstrap: diff for NMU version 0.16-6.1

Control: tags 942114 + pending Dear maintainer, I've prepared an NMU for ganeti-instance-debootstrap (versioned as 0.16-6.1) and uploaded it to DELAYED/02. Please feel free to tell me if I should delay it longer. Regards. diff -Nru ganeti-instance-debootstrap-0.16/debian/changelog

Bug#941638: docopt: diff for NMU version 0.6.2-2.1

Control: tags 941638 + pending Dear maintainer, I've prepared an NMU for docopt (versioned as 0.6.2-2.1) and uploaded it to DELAYED/2. Please feel free to tell me if I should delay it longer. Regards. diff -Nru docopt-0.6.2/debian/changelog docopt-0.6.2/debian/changelog ---

Bug#930080: solarized-emacs: diff for NMU version 1.3.0-0.1~exp0

Package: solarized-emacs Version: 1.2.2-4 Severity: normal Tags: patch pending Dear maintainer, I've prepared an NMU for solarized-emacs (versioned as 1.3.0-0.1~exp0) and uploaded it to DELAYED/10. Please feel free to tell me if I should delay it longer. Regards. -- diff -Nru

Bug#887750: pam-python: diff for NMU version 1.0.6-1.1

Dear maintainer, I've prepared an NMU for pam-python (versioned as 1.0.6-1.1) and uploaded it to DELAYED/0. Please feel free to tell me if I should delay it longer. Regards. -- diff -Nru pam-python-1.0.6/debian/changelog pam-python-1.0.6/debian/changelog --- pam-python-1.0.6/debian/changelog

Bug#917492: fam: diff for NMU version 2.7.0-17.3

Control: tags 917492 + pending Dear maintainer, I've prepared an NMU for fam (versioned as 2.7.0-17.3) and uploaded it to DELAYED/0. Please feel free to tell me if I should delay it longer. Regards. -- diff -u fam-2.7.0/debian/changelog fam-2.7.0/debian/changelog ---

Bug#919217: Acknowledgement (Missing dependency on devscripts)

tags 919217 +pendingo user debian-rele...@lists.debian.org usertag 919217 + bsp-2019-01-ca-montreal thanks On Mon, Jan 14, 2019 at 09:27:08PM +0100, Jeroen Dekkers wrote: > Control: tag -1 +patch > >

Bug#903698: sphinxbase: build appears broken for multiple python3 versions

user debian-rele...@lists.debian.org usertag nn + bsp-2019-01-ca-montreal tags -1 -patch +moreinfo thank you On Thu, Jan 03, 2019 at 10:16:13AM +0100, Samuel Thibault wrote: > Oops, this bug was erroneously closed

Bug#915307: magic-wormhole FTBFS with Python 3.7

Control: fixed 915307 0.11.2-1 I believe the latest upstream release fixes that, or at least it compiles here in a sid schroot with py 3.7. I meant to fix this in the changelog but forgot about it before doing the upload... :/ Thanks for the heads up though! signature.asc Description: PGP

Bug#880220: Fixed in upload

Control: found 880220 2017.11.24~bpo9+1 I have version 2017.11.24~bpo9+1 installed here, and the global trust anchor is still installed. # dpkg -L leap-archive-keyring | grep trusted.gpg.d/ /etc/apt/trusted.gpg.d/leap-archive.gpg /etc/apt/trusted.gpg.d/leap-experimental-archive.gpg So this bug

Bug#807866: RFP: github-hub -- hub helps you win at git

Control: unblock 807866 by 819936 On Mon, Aug 22, 2016 at 11:13:05AM +1200, Olly Betts wrote: > So it looks like it's just github.com/octokit/go-octokit/octokit that is > needed now (ITP is https://bugs.debian.org/819936 so marking that bug as > blocking this, and Cc-ing the owner of that ITP so

Bug#889281: dokuwiki: CVE-2017-18123: reflected file download vulnerability

Hi, I have tested an update of the jessie package and things seem to work fine after merging the patch from upstream during a smoketest of a clean jessie VM. Attached is the debdiff to complete the update. A. diff -Nru dokuwiki-0.0.20140505.a+dfsg/debian/changelog

Bug#885699: smokeping: symbolic link to smokeping.cgi missing

Control: tags -1 +pending Control: severity -1 normal On Fri, Dec 29, 2017 at 10:48:43AM +0100, Sigbjorn Kjetland wrote: > Dear Maintainer, > >* What led up to the situation? > I am installing smokeping on a new server to replace old smokeping server > I have configured and restarted

Bug#705369: gnutls support broken in charybdis

GnuTLS support is still broken in charybdis. On irc.indymedia.org, we couldn't link servers with gnutls - we'd get all sorts of errors like "Read error: Error in the pull function". Our experience was documented here: https://we.riseup.net/ircd/outage-20170202 So I reopened this issue and marked

Bug#860287: libosip2: CVE-2016-10324 CVE-2016-10325 CVE-2016-10326 CVE-2017-7853

Control: fixed -1 4.1.0-2.1 Control: tags -1 +pending I have made a NMU (diff in #860345) to fix this in sid/stretch, the patches apply fairly cleanly, and since it's the same version in jessie, it should be trivial to backport there... I forgot to mention the bug # in the NMU, unfortunately...

Bug#860345: libosip2: diff for NMU version 4.1.0-2.1

Package: libosip2 Version: 4.1.0-2 Severity: normal Tags: patch pending Dear maintainer, I've prepared an NMU for libosip2 (versioned as 4.1.0-2.1) and uploaded it to DELAYED/3. Please feel free to tell me if I should delay it longer. Regards. -- diff -Nru libosip2-4.1.0/debian/changelog

Bug#857992: openjdk-8-jre-headless: please add Breaks: tzdata-java

user debian-rele...@lists.debian.org usertags 857992 bsp-2017-04-ca-montreal thanks On Mon, Apr 10, 2017 at 12:28:07PM +0200, Andreas Beckmann wrote: > Control: severity -1 serious > > On 2017-03-17 00:33, Andreas Beckmann wrote: > > I haven't rebuilt openjdk-8 to test whether this actually

Bug#859655: golang-go.crypto: CVE-2017-3204

Control: user -1 debian-rele...@lists.debian.org Control: usertags -1 bsp-2017-04-ca-montreal Control: tags -1 +patch I looked into this during the Montreal BSP, and it's unclear what we should do here, considering there has been multiple new uploads since the stretch freeze. The patch is

Bug#850168: lintian should have checks for manual pages to see if they have an EXAMPlES section

Control: severity -1 wishlist I agree! I often find myself frustrated by more obscure bits of software where I would love to see some EXAMPLES sections to help me get started. Maybe this could be a "Informative" or "Pedantic" level instead of "Warning"? It certainly shouldn't be at the "Error"

Bug#848508: LANG=C wormhole :/

On Tue, Jan 03, 2017 at 02:03:44PM -0500, Daniel Kahn Gillmor wrote: > Control: forwarded 848508 https://github.com/warner/magic-wormhole/issues/127 > > It'd be really nice for wormhole to stay on python 3 -- i would like to > be able to run a system free of python2 in the near future, and i'd

Bug#810506: Upload of linux-grsec to jessie-backports?

On Mon, Apr 25, 2016 at 08:19:42AM +0200, Yves-Alexis Perez wrote: > On lun., 2016-04-25 at 05:45 +, Amarildo Júnior wrote: > > Any news? > > Stay tuned? As already said I was waiting on the kernel to become eligible for > migration. This happened two days ago, so I'll prepare a

Bug#845196: closed by Bastien Roucariès <roucaries.bastien+deb...@gmail.com> (Bug#845196: fixed in imagemagick 8:6.8.9.9-5+deb8u6)

I believe the fix for Bug#845196 is incomplete, at least in stable. It does ship with this patch: https://github.com/ImageMagick/ImageMagick/commit/1be809ae06f2fcb094836960edb707f81422e964 but not this one:

Bug#848139: CVE-2016-8707 ImageMagick Convert Tiff Adobe Deflate Code Execution Vulnerability

Here's a patch for wheezy, which may be useful for jessie if, like wheezy, it lacks the ReadYCCKMethod case. From e5fd9ab1b70b2edd06de8efb606e04482cb9a2f0 Mon Sep 17 00:00:00 2001 From: Cristy Date: Thu, 1 Dec 2016 20:06:50 -0500 Subject: [PATCH] Fix possible

Bug#842388: RFP: zcash -- an implementation of the "Zerocash" protocol

There are packages here it seems: https://github.com/zcash/zcash/wiki/Debian-binary-packages It seems their apt repo is down, however... signature.asc Description: Digital signature

Bug#824670: ITP: dnsdiag -- DNS Diagnostics and Performance Measurement Tools

Glad to see some progress on this. It seems that the patches for dnspython have all been merged upstream and that dnsdiag now uses dnspython cleanly: https://github.com/farrokhi/dnsdiag/issues/17#issuecomment-254445188 I believe this removes the last blocker you have documented for packaging

Bug#837591:

On Wed, Sep 14, 2016 at 10:27:06PM +0200, Tobias Frost wrote: > Actually, whether deleting a user on purge or not is disputed. > https://wiki.debian.org/AccountHandlingInMaintainerScripts > > (I wouldn't say this is RC, but I let the maintainer decide if it > should be downgraded) Understood.

Bug#774992: O: linkchecker -- check websites and HTML documents for broken links

I may be interested in collaboratively maintaining this, if we can get upstream development to resume. Otherwise I'm tempted to just give up and point people towards w3c-checker. A. -- C'est avec les pierres de la loi qu'on a bâti les prisons, et avec les briques de la religion, les bordels.

Bug#773970: Monkeyscan fails at launch

Control: tags 773970 +fixed-upstream Control: fixed 773970 2.1.0 I overlooked that bug report when creating the changelog. This was fixed in the recent 2.1.0 release. A. signature.asc Description: Digital signature

Bug#784602: [PATCH] make monkeysign build reproducibly

Control: fixed 784602 2.1.0 Control: tags 784602 fixed-upstream Thanks Daniel and intri for the patch and feedback. This was fixed in the 2.1.0 release, I just overlooked that bug in the release process... What I actually did was that I just ripped out the timestamp code from the manpage

Bug#647883: lists ${distro_codename}-updates but needs stable-updates

Control: fixed 647883 0.83.3.1 On Tue, Nov 08, 2011 at 12:00:26PM +0100, Michael Vogt wrote: > On Mon, Nov 07, 2011 at 10:53:12AM +0100, Philipp Kern wrote: > > The commented-out example for squeeze-updates (${distro_codename}-updates) > > provided by unattended-upgrades does not work. You

Bug#832758: irkerd.service runs irkerd as root (should run as user "irker")

Control: tags -1 +pending Control: forwarded https://gitlab.com/esr/irker/merge_requests/15 The following patch should fix that problem: commit 1980b7cb4239463b581579cc39480774d3e2d2fe Author: Antoine Beaupré Date: Mon Sep 12 12:01:44 2016 -0400 run daemon as the

Bug#837589: irker: diff for NMU version 2.18+dfsg-1.1

Package: irker Version: 2.18+dfsg-1 Severity: normal Tags: patch pending [Replace XX with correct value] Dear maintainer, I've prepared an NMU for irker (versioned as 2.18+dfsg-1.1) and uploaded it to DELAYED/10. Please feel free to tell me if I should delay it longer. Regards. diff -Nru

Bug#832322: irker: Irker is ignoring startup options defined in /etc/default/irker.

Control: tags -1 +patch +pending The following patch should fix that problem: diff --git a/irkerd.service b/irkerd.service index 82f39b0..f4cd45b 100644 --- a/irkerd.service +++ b/irkerd.service @@ -6,7 +6,8 @@ Description=irker daemon Requires=network.target [Service]

Bug#736548: monkeysign: Reports "key is expired, cannot sign" on non-expired key

Control: tags -1 +confirmed -help +pending On Fri, Jan 24, 2014 at 09:24:42PM +0100, Emilien Klein wrote: > When trying to sign this particular key (2BEF0A33), I get the error message > that the key is expired. > This key is not expired > I've been in contact with the key owner, who acknoledged

Bug#725061: RFE: monkeysign should provide a --from option

Control: tags -1 +wontfix +moreinfo On Tue, Oct 01, 2013 at 01:33:45AM +0200, Kristian Fiskerstrand wrote: > In order to specify the sending address a --from option should be added, > alternatively, if a UID containing an email address exists in the > signing key this could be used as the sending

Bug#760139: expiry date in epoch time is not human readable

Control: tags -1 +patch +pending A patch was provided for this (yaay!) here: https://lists.riseup.net/www/arc/monkeysphere/2016-06/msg2.html It has been applied to the 2.x branch. Thanks for the report! signature.asc Description: Digital signature

Bug#766129: monkeysign tells me that it's going to sign with a key I revoked in 2009

Control: retitle -1 monkeysign should not use revoked keys to make signatures Control: tags -1 +confirmed +patch Control: severity -1 important Actually, I just realized there's a patch for this here: https://lists.riseup.net/www/arc/monkeysphere/2015-02/msg9.html I kept on being confused

Bug#723763: monkeysign should not sign revoked uids

On Thu, Sep 01, 2016 at 11:11:57AM -0400, Antoine Beaupré wrote: > On 2016-08-01 17:53:11, Antoine Beaupré wrote: > > Control: tags -1 +moreinfo > > > > Could you provide unit tests coverage for this and verify that the tests > > pass after the patch is applied? > > Also, after discussing with

Bug#780393: Monkeyscan shows wrong fingerprint

Control: tags -1 +moreinfo +unreproducible On Fri, Mar 13, 2015 at 10:26:25AM +0100, Dimitri Dhuyvetter wrote: > Package: monkeysign > > When I scan a QR code I made outside of Monkeysig, which contains the > string "openpgp4fpr:6FC84DA08920932D34DDCBCD188E3F108C693450" Monkeysign > shows me

Bug#773896: monkeyscan: identity menu has no indicator for expired keys

Control: tags -1 confirmed Control: retitle -1 monkeyscan: do not offer to sign with revoked keys On Tue, Jan 20, 2015 at 12:29:36PM -0800, Vagrant Cascadian wrote: > On 2014-12-24, Paul Wise wrote: > > I have an expired key in my local keyring but monkeyscan doesn't > > indicate that it is

Bug#760717: monkeysign chokes when gpg wants user to run with --check-trustdb

Control: severity -1 wishlist Control: tags -1 +confirmed +help Control: retitle -1 monkeysign should deal with --no-auto-check-trustdb configurations On Sun, Sep 07, 2014 at 03:53:18AM -0400, Gabriel Filion wrote: > with current master (commit 5a8d12914a8d4388c6543056098276f6e756e483) > when I

Bug#823104: monkeysign: Twice confused by package description

Control: tags -1 moreinfo Control: severity -1 wishlist On Sat, Apr 30, 2016 at 09:50:01PM +0200, Holger Levsen wrote: > Package: monkeysign > Version: 2.0.2 > Severity: normal > > Hi, > > I've read the package description and while I like the funny tone, I > also find it confusing for two

Bug#736629: UnicodeDecodeError: 'utf8' codec can't decode byte 0xf6

Control: severity -1 minor Control: found -1 2.0.2 It looks like Dennis' key has an invalid encoding, even in gpg: $ gpg --search-keys allsp...@planetcyborg.de gpg: recherche de « allsp...@planetcyborg.de » sur le serveur hkp pool.sks-keyservers.net (1) Dennis Boerm

Bug#736120: Update on bug#736120

Control: tags -1 -moreinfo +unreproducible On Sat, Dec 13, 2014 at 05:39:13PM +0100, Emilien Klein wrote: > Hi, > > Using version 2.0.2 on a sid box, with the same key that I used in > post#2, I do get a different traceback, which seems unrelated: > > > Really sign key? [y/N] y > command:

Bug#834524: init-system-helpers: does not own /etc/rc?.d

On Wed, Aug 17, 2016 at 12:08:05AM +0200, Michael Biebl wrote: > Am 16.08.2016 um 19:12 schrieb Ferenc Wágner: > > Package: init-system-helpers > > Version: 1.25 > > Severity: normal > > > > Hi, > > > > Recently both my daemon packages started to exhibit this piuparts error: > > > > ERROR:

Bug#833854: sks: no longer logs to /var/log/sks/

On Tue, Aug 09, 2016 at 09:23:51PM +0200, Christoph Anton Mitterer wrote: > On Tue, 2016-08-09 at 12:06 -0400, Daniel Kahn Gillmor wrote: > > it'd also likely fix this piuparts failure for sks itself at least: > > > >  https://piuparts.debian.org/sid/fail/sks_1.1.6-1.log > > > > 0m26.6s ERROR:

Bug#834766: piuparts: unowned rcX.d

On Thu, Aug 18, 2016 at 07:38:37PM +, Holger Levsen wrote: > package: piuparts > severity: important > version: 0.72 > x-debbugs-cc: Antonio Radici > > On Wed, Aug 17, 2016 at 06:59:16AM +, Antonio Radici wrote: > > Hi there, > > I recently uploaded a new version of

Bug#806034: gmpc: FTBFS when built with dpkg-buildpackage -A (No such file or directory)

On Wed, Aug 03, 2016 at 07:55:10AM +0100, Simon McVittie wrote: > On Sun, 29 May 2016 at 15:12:12 +0200, Etienne Millon wrote: > > Here's a patch that fixes the issue. > > Please prepare a proposed upload, I'd be happy to sponsor it. > > Alternatively, if you intend for pkg-mpd team members to

Bug#781180: Please add new youtube-dl in jessie-updates

Control: severity -1 grave Control: fixed -1 2016.02.22-1~bpo8+1 On Mon, Apr 27, 2015 at 10:16:25PM -0300, Rogério Brito wrote: > Hi. > > On Apr 27 2015, transylvania wrote: > > Thanks for maintaining youtube-dl. > > You're welcome. +1 :) > > Since youtube-dl is one of those programs like

Bug#760787: Please try these

On Sun, Apr 24, 2016 at 09:13:09PM +0200, Richard Hartmann wrote: > Hi, > > feel free to use > dediserver.eu/misc/git-annex_6.20160418-1~bpo8+1_amd64.deb until its > "real" package migrated into testing. The package did migrate to testing now, can the backport be updated? Thanks! -- Les plus

Bug#833090: ITP: magic-wormhole -- Securely and simply transfer data between computers

On Tue, Aug 02, 2016 at 06:52:03PM -0700, Jameson Graef Rollins wrote: > On Tue, Aug 02 2016, Fredrik Alströmer wrote: > > I would object slightly to calling it "securely", from what I can tell by a > > quick glance at the code, the data is relayed through the authors private > >

Bug#818977: removing or updating libmowgli?

On Tue, Jul 05, 2016 at 04:33:15PM +0200, Andrew Shadura wrote: > On 03/05/16 20:22, Antoine Beaupré wrote: > > This issue is now fixed. > > Yes, and I have uploaded 2.1.0 to Debian. Cool, thanks! > > However, to fix this in sid, we'll need to setup a transition for > > libmowgli. This seems

Bug#754972: ITP: percol -- adds flavor of interactive filtering to the traditional pipe concept of UNIX shell

On Fri, Aug 28, 2015 at 10:29:02AM +0900, Kozo Nishida wrote: > Hi Antoine, > > Sorry for the late reply, and thank you for your kindness. > > I first submit percol debian package on https://mentors.debian.net/ Hello, I am not sure if you uploaded the said package to mentors.debian.net, but it

Bug#825301: More details

this bug available here: https://people.debian.org/~anarcat/debian/wheezy-lts/ Will test and upload myself by the end of the day. Sorry for the trouble. A. signature.asc Description: Digital signature

Bug#804384: smokeping: README.Debian quite outdated

On Sat, Nov 07, 2015 at 10:28:55PM +, Jonathan Dowland wrote: > Package: smokeping > Version: 2.6.11-1 > Severity: normal > > hi, > > /usr/share/doc/smokeping/README.Debian is quite outdated now: Yes, it is. > > After installing the package you have to edit the file > >

Bug#730674: ITP: piwik -- web analytics software

On Fri, Jul 25, 2014 at 09:08:42PM +0200, Daniel Baumann wrote: > i'm not going to do it after all. On Wed, Mar 12, 2014 at 05:11:39PM +0100, Daniel Baumann wrote: > after having worked on #609521 already a couple of years ago, i'll > finally got to it now and am finishing up the last remaining

Bug#813313: [planet-venus] fails on SNI enabled websites

Control: forwarded -1 https://github.com/jcgregorio/httplib2/issues/233 On Wed, Feb 10, 2016 at 01:05:59AM +0100, Jakub Wilk wrote: > * anarcat <anar...@debian.org>, 2016-02-09, 09:33: > >This is typical of Python apps that depend only on urllib and so on. > > Not re

Bug#798500: drush will be removed from Debian

Hi, In #823767, I have requested from the FTP-masters that Drush be removed from Debian. In the ~9 months since it was orphaned, no one stepped up to start maintaining the Drush package, let alone update it to a current version. There was some movement on the Ubuntu side of things (also in CC),

Bug#685734: dpkg should manage system users and groups

On Fri, Aug 24, 2012 at 07:23:57AM +0200, Harald Dunkel wrote: > It would be very nice if dpkg could manage system users and groups > created for each package. > > At the moment I've got GID 105 for dbus on host A, while 105 is > used for saned on host B (just as an example). This is a severe >

Bug#817286: Simplify testing access for packages on security-master

On Wed, Mar 09, 2016 at 07:41:57PM +0100, Moritz Muehlenhoff wrote: > Package: ftp.debian.org > Severity: wishlist > > This was discussed at one of the past security team meetings, but > there was never a bug for that: > > (This is a first high level view, the exact requirements can be hashed >

Bug#760787: Please provide a backport of latest release

Control: found -1 5.20151208-1~bpo8+1 Control: found -1 5.20141125 This is still an issue for me. I'm looking at a workaround for this bug: https://git-annex.branchable.com/bugs/git_annex_get_fails_from_read-only_repository/ .. and it seems it needs at least a 2016 version to get this fix. Can

Bug#807735: gmpc-plugins: FTBFS: libmpd-internal.h:210:10: error: expected identifier or '(' before '__extension__'

Control: tags -1 +patch So how about just disabling jamendo as a quick fix? --- debian/rules.orig 2016-04-13 11:29:24.570556456 -0400 +++ debian/rules2016-04-13 11:29:26.214556530 -0400 @@ -9,7 +9,7 @@ dh $@ --with autoreconf override_dh_auto_configure: -

Bug#820378: Ensure users report bugs in BTS and not to upstream directly

I think this patch is a great idea! Unfortunately, there is no obvious way to file a bug from the URL used: https://bugs.debian.org/cgi-bin/pkgreport.cgi?pkg=xscreensaver;dist=unstable (that is the target of the redirection.) We are doing a poor job at helping people file bugs, generally. I

Bug#507682: Adjustable averaging window for rate display

Control: fixed -1 1.2.0-1 Hi, You may like to know this is now a feature in pv 1.2.0. Sorry for the (very) delayed response - I actually had a confirmation of this from upstream in 2014 but forgot to document it here. A. On Wed, Dec 03, 2008 at 10:40:33AM -0500, Anthony DeRobertis wrote: >

Bug#470995: where is the source??

4 years later, still no debian package... a little embarrassing! It looks like the source is here now: https://vote.debian.org/~secretary/devotee.git/ A. signature.asc Description: Digital signature

Bug#799292: ITP: mailman3 -- Mailman3 mailing list manager suite

Any progress here? signature.asc Description: Digital signature

Bug#818510: upgrade-reports: excellent upgrade experience on Lenovo E431

Package: upgrade-reports Severity: minor I just upgraded my friend's laptop from the latest Wheezy to the latest Jessie without a hitch! Things went really smoothly. I changed the sources.list by hand, ran apt-get upgrade; apt-get dist-upgrade and everything went almost perfectly. For some

Bug#749887: Status update

Ping! Any progress here? When can we hope to see this in NEW or mentors? Should we be reviewing the package? Can't wait! :) -- Every one of us is, in the cosmic perspective, precious. If a human disagrees with you, let him live. In a hundred billion galaxies, you will not find another. -

Bug#814543: ITP: asset-collector -- collect information about the used hardware/software

On 2016-02-12 14:02:53, Benjamin Drung wrote: > I started writing the asset-collector, because I found no other tool for > this purpose (correct me if I am wrong). I invite everyone who is > interested in this topic to join the project. Hmm... it seems to me there are already a bunch of tools

Bug#792916: RFP: keybase-client a client to access keybase services

FWIW, keybase is now written in go and the main client is here: https://github.com/keybase/client there's a debian package available upstream: https://keybase.io/download https://keybase.io/docs/the_app/install_linux ... and the source for that seems to be partly here:

Bug#816788: borgbackup-doc: api.html build embeds datetime and i/o charset, thus making package unreproducible

https://github.com/borgbackup/borg/issues/399 It would be useful to contribute / share information with upstream regarding this here. A. -- Dr. King’s major assumption was that if you are nonviolent, if you suffer, your opponent will see your suffering and will be moved to change his heart.

Bug#813313: raising severity to important

On Tue, Feb 09, 2016 at 03:24:03PM +0100, Holger Levsen wrote: > control: severity -1 important This is typical of Python apps that depend only on urllib and so on. I have had the same problem in the sopel IRC bot and solved it by switching to using the Requests library:

Bug#804698: RFP: muchsync -- synchronize maildirs and notmuch databases

On Tue, Nov 10, 2015 at 11:24:27AM -0500, Antoine Beaupré wrote: > * it works! or at least i think it does: i'm testing it right now Actually, it doesn't work: I sent an email to the upstream author about this and to the notmuch mailing list, but basically, here it eats up all memory before

Bug#812401: cpio: CVE-2016-2037: out-of-bounds write

I can't actually reproduce with the test case provided on oss-security: (gdb) run -i < ../overflow.cpio Starting program: /bin/cpio -i < ../overflow.cpio [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1". /bin/cpio: Malformed

Bug#809136: borgbackup: Mention API incompatibilities in README

On Mon, Jan 11, 2016 at 01:46:48PM +0100, Danny Edel wrote: [...] > Please state whether you think this (write README and hope user actually > reads it) is an appropriate solution to the compatibility problem, > meaning we could close the bug this way. [...] > [2]: >

Bug#807826: redmine: CVE-2015-8537: Data disclosure in atom feed

And of course I forgot the patch: diff --git a/app/views/journals/index.builder b/app/views/journals/index.builder index a81ff98..7d90346 100644 --- a/app/views/journals/index.builder +++ b/app/views/journals/index.builder @@ -19,7 +19,7 @@ xml.feed "xmlns" => "http://www.w3.org/2005/Atom; do

Bug#807826: redmine: CVE-2015-8537: Data disclosure in atom feed

Control: notfound -1 1.0.1-2 Control: notfound -1 1.0.1-2+deb6u11 Control: found -1 1.1.2-2~bpo60+1 I have review the Redmine code for CVE-2015-8537 and it turns out the vulnerable code is not present in 1.0.1, but is present in 1.1 and 1.4 which makes everything from squeeze-backports and up

Bug#638422: url changed

The project is now at: https://github.com/rfrail3/tuptime I have tried to run this from the source, and it's pretty cool: $ tuptime System startups:3 since 15:49:13 2015-08-07 System shutdowns: 1 ok - 1 bad System uptime: 100.0 % - 107 days, 7 hours, 27

Bug#753648: [Pkg-utopia-maintainers] Bug#753648: Bug#753648: network-manager: Connecting to an encrypted WLAN fails with `received an invalid or unencryptable secret`

I can confirm this behaviour here. I am running only nm-applet (on top of course of the system-wide NetworkManager daemon). Sometimes, out of the blue, some networks won't work. For example here, i have an internal *and* external wifi card. NM can connect to network "foo" fine with the internal

Bug#762385: ITP: mailpile -- a modern fast web-mail client with user-friendly encryption and privacy features.

On Sun, Sep 21, 2014 at 06:21:58PM +, u wrote: > Package: wnpp > Severity: wishlist > Owner: Ulrike Uhlig > > * Package name: wnpp > Version: 0.4.0 > Upstream Author: Mailpile Team > * URL: https://mailpile.is > * License: AGPL v3 > Programming Lang:

Bug#792096: borg packaging

Hi folks, So what's holding up the package now? I understand Mark's position, and I don't think the team's efforts should be distracted at this stage. :) Please keep going! The msgpack package was updated, so I am not sure why this is not pushed ahead now! Cheers, A. signature.asc

Bug#739860: ITP: tox -- easy to use all-in-one communication platform

Hi all, First off, sorry for the large CC list, but it seems in order to try to collect all the efforts here into one and put this into shape. This ITP is blocking the entry of toxcore in Debian, and I think that's a shame... We should already have this in Debian now! Here are the different

Bug#749664: horst: Conflicting declarations of function main_input to cause undefined behaviour

Control: fixed -1 4.0-1 On Thu, May 29, 2014 at 12:55:30AM +0100, Michael Tautschnig wrote: [...] > The wrong declaration here > > http://sources.debian.net/src/horst/3.0-2/display.c?hl=46#L46 > > will cause arbitrary truncation for values larger than 127 or any negative > values; yet even for

Bug#717834: Fwd: Kill DEHS

to implement this? UDD seems to help here, but it does much more than this... I am using the latter now, in combination with feed2imap: - name: Debian todo url: https://udd.debian.org/dmd/?email1=anarcat%40debian.orgemail2=email3=packages=ignpackages=format=rss#todo target: [ *target, debian-udd

Bug#792096: borg packaging

On Thu, Aug 13, 2015 at 12:04:02PM +, Gianfranco Costamagna wrote: Am I in? Sure you can join! Do you have access to collab-maint? https://wiki.debian.org/Alioth/PackagingProject Do you need a sponsor to upload a package? Marc, do you want to setup a more detailed packaging team? Others

Bug#794678: msgpack-python: please update to the latest upstream version

On Wed, Aug 12, 2015 at 11:17:21PM +0200, Marc Haber wrote: On Wed, Aug 05, 2015 at 04:10:56PM +, Gianfranco Costamagna wrote: Hi, in order to have the latest w3af in Debian, a new msgpack-python = 0.4.4 is needed, can you please update it? Current version is 0.4.6, which is needed

Bug#695878: new mutt-kz package

On Wed, Jun 17, 2015 at 10:52:16AM +0200, Alberto Garcia wrote: On Wed, Jun 17, 2015 at 10:45:28AM +0200, Víctor M. Jáquez L. wrote: Other than that, the package looks much better now. I still haven't checked all little details, though, but I think this is almost ready for uploading.

Bug#448638: RFP: i2p -- I2P is an anonymizing network

On Wed, Nov 26, 2014 at 02:56:58AM +, kytv wrote: Control: retitle -1 ITP: i2p -- I2P is an anonymizing network Control: owner -1 killyou...@i2pmail.org intrigeri wrote: kytv wrote (20 Nov 2014 03:08:58 GMT) : On Mon, 17 Nov 2014 12:01:12 + (UTC) intrigeri

Bug#698672: RFP: mutt-kz -- text-based mailreader supporting MIME, GPG, PGP and threading, with notmuch support

Here, note that there's a discussion about integrating this directly into the mutt package, here: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=695878 a. -- La mer, cette grande unificatrice, est l'unique espoir de l'homme. Aujourd'hui plus que jamais auparavant, ce vieux dicton dit

Bug#695878: new mutt-kz package

On Sun, Sep 07, 2014 at 10:43:26PM +0200, Stefano Zacchiroli wrote: Heya, +1 as well on the desire of having mutt-kz in Debian. +1 as well... Has anyone verified with the security team if either approach would be acceptable for them? What's the opinion of the Mutt maintainer on the two

Bug#538067: status of the opencpn PPA for inclusion in Debian

On Wed, Jan 07, 2015 at 08:52:55PM -0600, Pavel Kalian wrote: Hi... Hi Pavel, I'm an upstream developer and managing the PPA on Launchpad. Thanks for chiming in! It's certainly a good way to try to resolve this in the long run. :) (and sorry for the delay, i wasn't in cc to the bug report so

  1   2   3   4   >