Bug#932556: zipios++: CVE-2019-13453
Source: zipios++ Version: 0.1.5.9+cvs.2007.04.28-10 Severity: important Tags: security upstream Control: found -1 0.1.5.9+cvs.2007.04.28-6 Hi, The following vulnerability was published for zipios++. CVE-2019-13453[0]: | Zipios before 0.1.7 does not properly handle certain malformed zip | archives and can go into an infinite loop, causing a denial of | service. This is related to zipheadio.h:readUint32() and | zipfile.cpp:Zipfile::Zipfile(). If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2019-13453 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13453 [1] https://sourceforge.net/p/zipios/news/2019/07/version-017-cve-/ [2] https://salvatoresecurity.com/fun-with-fuzzers-how-i-discovered-three-vulnerabilities-part-2-of-3/ Regards, Salvatore
Processed: zipios++: CVE-2019-13453
Processing control commands: > found -1 0.1.5.9+cvs.2007.04.28-6 Bug #932556 [src:zipios++] zipios++: CVE-2019-13453 Marked as found in versions zipios++/0.1.5.9+cvs.2007.04.28-6. -- 932556: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=932556 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Processing of mailcheck_1.91.2-3_source.changes
mailcheck_1.91.2-3_source.changes uploaded successfully to localhost along with the files: mailcheck_1.91.2-3.dsc mailcheck_1.91.2-3.debian.tar.xz mailcheck_1.91.2-3_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
mailcheck_1.91.2-3_source.changes ACCEPTED into unstable
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 20 Jul 2019 16:02:40 -0300 Source: mailcheck Architecture: source Version: 1.91.2-3 Distribution: unstable Urgency: medium Maintainer: Debian QA Group Changed-By: Marcos Talau Closes: 615208 670087 928116 Changes: mailcheck (1.91.2-3) unstable; urgency=medium . * QA upload. * Set Debian QA Group as maintainer. (see #929539) * Migrated to DebSrc 3.0 (Closes: #670087). * Using new DH level format. Consequently: - debian/compat: removed. - debian/control: changed from 'debhelper' to 'debhelper-compat' in Build-Depends field and bumped level to 12. * debian/control: - added Homepage field (Closes: #615208). - bumped Standards-Version to 4.4.0. - changed priority from extra to optional. * debian/copyright: - updated rights. - updated to 1.0 Machine-readable format. * debian/dirs: removed unnecessary dir 'usr/share/doc/mailcheck'. * debian/manpages: new file. manpage is now installed by this way. * debian/patches/: - 00list: ~ file renamed to series. - 001_username.dpatch: ~ added DEP-3 headers. ~ file renamed to 001_username.patch. - 002_advanced_counting.dpatch: ~ added DEP-3 headers. ~ file renamed to 002_advanced_counting.patch. - 003_no_stripping.dpatch: ~ removed. Content has been added to new patch: 003_makefile.patch. - 003_makefile.patch: ~ new patch. Fix build flags in Makefile. (Closes: #928116) * debian/rules: updated to new DH format. * debian/tests/control: created to provide basic CI tests. * debian/watch: full updated. Checksums-Sha1: 0c6dfad98e28f491c6c0c69723a51e99d553f31a 1757 mailcheck_1.91.2-3.dsc 926401c08b777415356196bc040c5bfd8ff51f6a 10768 mailcheck_1.91.2-3.debian.tar.xz 92027537b2e1106776ae6a4e6acd0aa8bd499f9a 5068 mailcheck_1.91.2-3_source.buildinfo Checksums-Sha256: 5b3647f1cb71fd919a01b759bf5c99e6973a89a3f1f26b17d0a1584b3868475d 1757 mailcheck_1.91.2-3.dsc 31f04dacc686f48050da8f0d841fea4df777a9c7332e0f6e161720a0d6e68f81 10768 mailcheck_1.91.2-3.debian.tar.xz c1871ae2a19712ed6807bc0fa90a6d25f0a684883a8dfd980f466ecba29d5de2 5068 mailcheck_1.91.2-3_source.buildinfo Files: b8d68f64bcdba1706bb4d0b8ad104639 1757 mail optional mailcheck_1.91.2-3.dsc 9ca54057bf974c061f246a169f18a140 10768 mail optional mailcheck_1.91.2-3.debian.tar.xz fb4c9a130520404ffce1565fc01bfaea 5068 mail optional mailcheck_1.91.2-3_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEENX3LDuyVoBrrofDS3mO5xwTr6e8FAl0zcYUACgkQ3mO5xwTr 6e/oVA//c2Hk+rowm5FW+l4M/Gi7ICiPwU0JRBeJB7HOMRX5bZ414ERr5xwzsL4E BN+6KfEaMI0Nk4fVY2fvMOtGeVo0gtp1Ywl8i9LoQ/T1BY8eA3c7gGuLKEQC1lYz YAGvGK+37gsnS3Hppv32gJuTn24W1zUhF63EgYBPF7chPRRWDiUCXAJoMeQY23N4 EsLTGPJqsGQeMVBWamslZ6x4EV/qOLb40UnzGn3ubfi3NbYSVGnq4wqpSfEIW7Mv AJ/pGS2eo1GSGE7Wq6brSBSJRfSrHdzVa74gaxlOvoDoSt4o802snfcclKoCcmt9 5w9rlM3cQP63ZzcxeSO01ErUGszv1MV43R9CzXeir8ls5QFaBFYeLMAXVGZIDjw7 Yrf0UkmpUylfVtTwCyAY3YdRt/GZK17pWAopfyVcwWX8sMILHwQm9pVskshuhz6q gt+89K+J1Bskles33udUYsVzHVJlZS1w7VmDRLH37Nxur/XN5IoKNNOyG24TNe5q VWf+JKIdfgUMOA1oQggVAPlBDA2sP7e40HK6Rz37JlCEhc3CG0LmEFZnWeIvfLYb imtdD4hCf2Q8vE5i6Rsg4r2qtkdT7T8NZYSxszASnEvuPkfdKFVpM1ajNXOBE4W3 dTcV4sLjfElAPnbeuOwRf3zuq3Hna0Z/Y1A9Ah8Jn20pNuX7fI8= =R/rm -END PGP SIGNATURE- Thank you for your contribution to Debian.
Processing of aafigure_0.5-8_source.changes
aafigure_0.5-8_source.changes uploaded successfully to localhost along with the files: aafigure_0.5-8.dsc aafigure_0.5-8.debian.tar.xz aafigure_0.5-8_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
aafigure_0.5-8_source.changes ACCEPTED into unstable
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 19 Jul 2019 13:48:18 -0300 Source: aafigure Architecture: source Version: 0.5-8 Distribution: unstable Urgency: medium Maintainer: Debian QA Group Changed-By: Diego Sarzi Closes: 878594 Changes: aafigure (0.5-8) unstable; urgency=medium . * QA upload. * Set Debian QA Group as maintainer. (see #719549) * Using new DH level format. Consequently: - debian/compat: removed. - debian/control: changed from 'debhelper' to 'debhelper-compat' in Build-Depends field and bumped level to 12. * Run wrap-and-sort. * debian/control: - Bumped Standards-Version to 4.4.0. - Removed dh-autoreconf in Build-Depends because it is no longer needed. - Removed in Recommends ttf-release because it is no longer used. (Closes: #878594) * debian/copyright: - Added me copyright. - Reorganized. * debian/tests/*: created to provide a basic trivial test. * debian/watch: - Changed http to https. - Updated version to 4. Checksums-Sha1: df34df0689ca1a6b1674129320a830fc21b278e4 1936 aafigure_0.5-8.dsc 1e1adfac781dabe53cf2de05770657478e9e0f43 6172 aafigure_0.5-8.debian.tar.xz 43ed0f4018b98d4b5c36d54c85f4c7d861d32410 6035 aafigure_0.5-8_source.buildinfo Checksums-Sha256: f36ff1b49da76e1a5dcc27ddbe43387f318dbd8456dac34e83e27218121610d0 1936 aafigure_0.5-8.dsc b677eefd78c6ec8ea167c51357c7c7c461d1be8c41bcc7a2498c167badc04064 6172 aafigure_0.5-8.debian.tar.xz f9201126b78490e0170aec65c346b9dab0c05ede2decdf0e0958495d07c5fcc6 6035 aafigure_0.5-8_source.buildinfo Files: d9bee611705a9329c244daf01a1598e5 1936 python optional aafigure_0.5-8.dsc 10f04114802b129c8b2dc8ff34c3bef6 6172 python optional aafigure_0.5-8.debian.tar.xz ad829f77a1fd8142c6e72d2497bf189a 6035 python optional aafigure_0.5-8_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEENX3LDuyVoBrrofDS3mO5xwTr6e8FAl0ze3gACgkQ3mO5xwTr 6e/+4w//R+VEdUSTX3nG+YmQxNgolZOnZmHVnLSLAucCQ9j58B/638MKvoGpH+pT BJDNRVcRb1S5pOBXvN80FpcNvnCyctc+11MD/8VlRsfyFZtr6WFVMVW4ZdtXfSf6 08Fdvgr0Y1Ndj2VR0Vz/+Yo6nJWTedCryeMdkW5OW13GJOXQ0FzMfTwgOUCRAq4p fx1uMyyJW67HID1kR7gdUShDi9aBzSioPjmpPN/vOSujSQMCw9ddAg5CyAFYlMFF M0g6j6CSP7Zob9cR2qOepSxCf7+udRqSG8UtIoGmq1zGDeYxU6gaKm5BM1y0tkvd 4AfjY4KpWIcWBcK5wXtTRA65w6bjMiSVKro/Era4Z+9tHmoTLqGeOMnk1vyTV+XI tFdinp8CjlECgs6GRFeszsnD8+EV3EZ5CQwKYXYUrWOz8rVO5koS7hHaOVy2fPlx S+/niDMkE1Z+4r/jnatV4vok5EClL0yPzb8ubzICvJpp6n3VlHCs8RfoFH7i2svT CoI+uPaJ1jXys5/Om+ZF9mKxNtOp/TNeFgi22Vgwv6MI/k36Ga54+OrupiYP2OjN y1nOvHIZiIPYVtkOTeXm+13YBLjbkoGXbXSY1IbBjREKI544n3PQvqA3HaFU/GSB GKWoerMvqX+KdvhGVNqw7wnucApDGzVcNq5UgX71ttySymo2Q70= =Cqaf -END PGP SIGNATURE- Thank you for your contribution to Debian.
Processed (with 2 errors): Connect bugs related to epydoc and pychecker
Processing commands for cont...@bugs.debian.org: > # Removal of pychecker is blocked by spe, a reverse dependency > severity 930398 serious Bug #930398 [spe] spe: Pychecker will be removed after buster Severity set to 'serious' from 'normal' > block 932575 by 930398 Bug #932575 [ftp.debian.org] RM: pychecker -- ROM; Obsolete (Python 2) and Unmaintained 932575 was not blocked by any bugs. 932575 was not blocking any bugs. Added blocking bug(s) of 932575: 930398 > # Removal of pychecker is blocked by python-mode, a reverse dependency > severity 930399 serious Bug #930399 [python-mode] python-mode: Pychecker will be removed after buster Severity set to 'serious' from 'normal' > block 932575 by 930399 Bug #932575 [ftp.debian.org] RM: pychecker -- ROM; Obsolete (Python 2) and Unmaintained 932575 was blocked by: 930398 932575 was not blocking any bugs. Added blocking bug(s) of 932575: 930399 > # Removal of pychecker is blocked by boa-constructor, a reverse dependency > severity 930400 serious Bug #930400 [boa-constructor] boa-constructor: Pychecker will be removed after buster Severity set to 'serious' from 'normal' > block 932575 by 930400 Bug #932575 [ftp.debian.org] RM: pychecker -- ROM; Obsolete (Python 2) and Unmaintained 932575 was blocked by: 930399 930398 932575 was not blocking any bugs. Added blocking bug(s) of 932575: 930400 > # Removal of epydoc is blocked by pydoctor, a reverse dependency > block 932584 by 881550 Bug #932584 [python-pydoctor] python-pydoctor: Epydoc will be removed 932584 was not blocked by any bugs. 932584 was not blocking any bugs. Added blocking bug(s) of 932584: 881550 > block 932574 by 932584 Bug #932574 [ftp.debian.org] RM: epydoc -- ROM; Obsolete (Python 2) and Unmaintained 932574 was not blocked by any bugs. 932574 was not blocking any bugs. Added blocking bug(s) of 932574: 932584 > # Removal of epydoc is blocked by pywbem, a reverse dependency > block 932585 by 881560 Bug #932585 [python-pywbem] python-pywbem: Eypdoc will be removed 932585 was not blocked by any bugs. 932585 was not blocking any bugs. Added blocking bug(s) of 932585: 881560 > block 932574 by 932585 Bug #932574 [ftp.debian.org] RM: epydoc -- ROM; Obsolete (Python 2) and Unmaintained 932574 was blocked by: 932584 932574 was not blocking any bugs. Added blocking bug(s) of 932574: 932585 > # Removal of epydoc is related to these bugs against reverse build > dependencies Unknown command or malformed arguments to command. > affects 932574 + 881546 881547 881548 881551 881552 881553 881555 881556 Bug #932574 [ftp.debian.org] RM: epydoc -- ROM; Obsolete (Python 2) and Unmaintained Added indication that 932574 affects 881546, 881547, 881548, 881551, 881552, 881553, 881555, and 881556 > 881557 881558 881561 881563 Unknown command or malformed arguments to command. > thanks Stopping processing here. Please contact me if you need assistance. -- 930398: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=930398 930399: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=930399 930400: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=930400 932574: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=932574 932575: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=932575 932584: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=932584 932585: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=932585 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Processing of cgvg_1.6.2-4_source.changes
cgvg_1.6.2-4_source.changes uploaded successfully to localhost along with the files: cgvg_1.6.2-4.dsc cgvg_1.6.2-4.debian.tar.xz cgvg_1.6.2-4_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
cgvg_1.6.2-4_source.changes ACCEPTED into unstable
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 20 Jul 2019 17:24:37 -0300 Source: cgvg Architecture: source Version: 1.6.2-4 Distribution: unstable Urgency: medium Maintainer: Debian QA Group Changed-By: Felipe Amorim Changes: cgvg (1.6.2-4) unstable; urgency=medium . * QA upload. * debian/docs: AUTHORS entry added. * debian/tests/control: removed a Test-Command. Checksums-Sha1: 2032623b8dd64311fdbb05fd7d805ccea981040f 1720 cgvg_1.6.2-4.dsc f63026c748f885adffd07cf4e83f42887071a4a8 3684 cgvg_1.6.2-4.debian.tar.xz 41b361a73db1a29915a0492aa53eae0948ecc17d 5039 cgvg_1.6.2-4_source.buildinfo Checksums-Sha256: 7ffb13bbcd7ad4c006cd6b556267d17c80c1e43cb4c6a5902e5f2a9e421cd633 1720 cgvg_1.6.2-4.dsc 911c7a1429dbd87bc455fc209abdd7882fe5cc8fc36bd31222446486accaf285 3684 cgvg_1.6.2-4.debian.tar.xz a9f4328fbcdb32ad2e856e0e69221e6e87b357206c23bd76115c09decdb055ee 5039 cgvg_1.6.2-4_source.buildinfo Files: 1c694bdc1e2a181251c39bc1652882cd 1720 devel optional cgvg_1.6.2-4.dsc 354e96847bc5e01da3780cb8d38ce782 3684 devel optional cgvg_1.6.2-4.debian.tar.xz a3cb1057be1b1a085b13c86716d95b64 5039 devel optional cgvg_1.6.2-4_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEENX3LDuyVoBrrofDS3mO5xwTr6e8FAl0zk6QACgkQ3mO5xwTr 6e9V6RAAk1n+HUzVptPxWoxvYomCggODieA3UtX8Au04l3TsJ0gOkWM+dX3PDDmp 8j2HSD5t8i3iQ/VAZO0SlTew3B4s0wGT76kHQbZhFVfLJVWwb40iTv9w8Qz8sPtI s25wH8H2yZnqjh2TiusVzg0NdrUWr/WTH9aW/xlWHfBit8i4DfnhLZUBC92QbXIi 8vn3tGGKboEUnday+9e4UXJkGMpmaYLQXfqqvVZ7WP2Tx30mjOZ3Eadk+XXiCclU VKB7sfI1zcKRDikR0M3279yyZ7v1KZkRZ9sfNIq+So5X/y0OAUil9NR9Sj1p7D/s 1xjwhiaNOaFwsnPgvvFBQeG6vLjDzlsNhq/lmJZPRyyF8m7519zSWXGcMrZ+Gfu8 KhSkODw9rAkcW6PsgXNhmY39XiFVL7bnbvLXTD9pW8UUf0BS7KirzzrJqDMCGQr4 arkGXcivxZRoySjt7LxZUABLP+EV40+HDdLuMAY0eZZ51CyvdfXspndwHF4MZ9fO A44RCP5bOZnqiQhZggzx50WFJ5xAzxbvTiJa4uHdgId7EEHT/aL+JwfbSNsTHm7q 8pXQbYEVpgD9umBYV4LMUtp08vSS16iftLbTcT2voQG3UFIZ5m9LH+1F/eYROfWi d7gsTjuu61N698VMWO3ge3lygh+bFl+XEP/o/jiPbB/bWBfWIQM= =F54+ -END PGP SIGNATURE- Thank you for your contribution to Debian.
Processing of dbar_0.0.20100524-4_source.changes
dbar_0.0.20100524-4_source.changes uploaded successfully to localhost along with the files: dbar_0.0.20100524-4.dsc dbar_0.0.20100524-4.debian.tar.xz dbar_0.0.20100524-4_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
dbar_0.0.20100524-4_source.changes ACCEPTED into unstable
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 20 Jul 2019 17:00:38 -0300 Source: dbar Architecture: source Version: 0.0.20100524-4 Distribution: unstable Urgency: medium Maintainer: Debian QA Group Changed-By: Pedro Vaz de Mello de Medeiros Changes: dbar (0.0.20100524-4) unstable; urgency=medium . * QA upload. * Set Debian QA Group as maintainer. (see #920108) * Added tests (CI). * Using new DH level format. Consequently: - debian/compat: removed. - debian/control: changed from 'debhelper' to 'debhelper-compat' in Build-Depends field and bumped level to 12. * debian/control: bumped Standards-Version to 4.4.0. * debian/copyright: updated Format field and all data. * debian/watch: added a fake site to explain about the current status of the original upstream homepage. Checksums-Sha1: f77eddb5c00b810b0eba92292457ac7d01f47320 1867 dbar_0.0.20100524-4.dsc 9cbfb92f0b4664390da87c091d3391eb786198e5 4044 dbar_0.0.20100524-4.debian.tar.xz f4ff29d1da58779e1cd8166e4eec3bc5256bb22f 5067 dbar_0.0.20100524-4_source.buildinfo Checksums-Sha256: 9b47a8c096f14ae0948f779df8326ca3a3e389f8636be032cc325aa09a984bcb 1867 dbar_0.0.20100524-4.dsc 4dddb189ad663f39e44a73d62a3327c8453206b6f016c322e519ae9d4116715f 4044 dbar_0.0.20100524-4.debian.tar.xz f9ca60f5964d678760a384c9bfb64817b0c558edfa879161ad778d9a672c0388 5067 dbar_0.0.20100524-4_source.buildinfo Files: 5d452f7865968c514b9a231974549012 1867 text optional dbar_0.0.20100524-4.dsc 0ae38e32df1c671307acd750476188ba 4044 text optional dbar_0.0.20100524-4.debian.tar.xz 44b5948fa6fb29cf43c8773b12978e0e 5067 text optional dbar_0.0.20100524-4_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEENX3LDuyVoBrrofDS3mO5xwTr6e8FAl0zrQoACgkQ3mO5xwTr 6e/kVw/+K8CuEoknAEohySJdhSxHkAKYQ+qN6WAqmENzyxHakp0Zs2GjFZpB+iBT wQtMa47tstWOiEKpRN8FbXHu2+9DPQf6vdGLOVUaDSHYDj3dWZHnKkV+GwcDgIp2 xH5LtsZA3A9hPZg+DtcpmUKyJG7phHjLEYFV6NIjuwt0xTRVAq24rs/VkZpmZEqG nCMvKseLjOH6M7qeYuxS27nYBwyen3klMTR9IRITmnicsCBcIFFr7bWgcM4BjVCw nsGoCHjWz0K0v8HFLZgCymtqZo7+kg9tNDofwafd52GsFixcYCVFSqgVHeT3sync 6CNjVZ3FrtgYSFHS48Zcuco51PmdutQp2HZDmd1q55gb4/J8S053tL4kiDdTE5aS 5+FWB5JzPLHyq48LAX3HRnzx2cYFdnB6Wgs90PknOMt38w+OUeq2Tnjdh7kqNhRZ YDKUCE5r+/EtKKye47yZFO6a//i6JelDVKmfY6Nh9C0hd7U0S7/wfX8nKKC2WodH B662giphtCKWWl1ksu26qmamggkPvEIbVk8W39wy0yHaWpECJOrCg/4wF4UT9F8J /thqGRqSNzwa6xb4r/YSVHqHh+WiZPPDAgDwUWnWEgZQEGwm7Y5XMnWeV6XRloyT YuSsa1/IJDS/BfBMZ28y0DMn4g9xwDyi7/FLVfPSOV2EUqWLpTU= =SkTL -END PGP SIGNATURE- Thank you for your contribution to Debian.
Processing of antigrav_0.0.3-9_source.changes
antigrav_0.0.3-9_source.changes uploaded successfully to localhost along with the files: antigrav_0.0.3-9.dsc antigrav_0.0.3-9.debian.tar.xz antigrav_0.0.3-9_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
Processing of liwc_1.21-2_source.changes
liwc_1.21-2_source.changes uploaded successfully to localhost along with the files: liwc_1.21-2.dsc liwc_1.21-2.debian.tar.xz liwc_1.21-2_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
liwc_1.21-2_source.changes ACCEPTED into unstable
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 20 Jul 2019 18:52:00 -0300 Source: liwc Architecture: source Version: 1.21-2 Distribution: unstable Urgency: medium Maintainer: Debian QA Group Changed-By: Joao Seckler Changes: liwc (1.21-2) unstable; urgency=medium . * QA upload. * Set Debian QA as maintainer. (see #768832) * Using new DH level format. Consequently: - debian/compat: removed. - debian/control: changed from 'debhelper' to 'debhelper-compat' in Build-Depends fields and bumped level to 12. * debian/control: - Added Homepage field. - Bumped Standards-Version to 4.4.0. - Updated VCS fields to use Salsa. * debian/copyright: - Updated Format field to use https. - Updated Source field. * debian/rules: enabled all hardening compilation flags. * debian/tests/*: created to provide simple CI test. Checksums-Sha1: 7dece140309ebc3d544055e708382b98ee923909 1831 liwc_1.21-2.dsc d879573ad414169d550f409409f005fcbd3714d9 3600 liwc_1.21-2.debian.tar.xz ab7f18cb1b4683d347469fb02903fb779e1646fa 5059 liwc_1.21-2_source.buildinfo Checksums-Sha256: e76ec4e81c194f2c5c287be66f27bca7387e3a5aec79d85f1b15b76395474470 1831 liwc_1.21-2.dsc e957a336af2b80c167d0e73542bbf35e7d55d3f72019933e4356cb1084e16987 3600 liwc_1.21-2.debian.tar.xz abadfb64940ca65e4c2a13372d23af1f0e30ab7eb29cc98867f5bef6d8e33d6b 5059 liwc_1.21-2_source.buildinfo Files: a98f6dac49f5b69a7fccfa30742751ac 1831 devel optional liwc_1.21-2.dsc 94ec78f8f067b9e02bb5929267291117 3600 devel optional liwc_1.21-2.debian.tar.xz 0bcc3d6a77e2340e7db1c5a340529d7a 5059 devel optional liwc_1.21-2_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEENX3LDuyVoBrrofDS3mO5xwTr6e8FAl0zxDoACgkQ3mO5xwTr 6e+P7w/+NC+HGaozTNB9i4oGnFL8jANhXC5Hp3MvUgY5hCZxyZX9JsJfpcmXb55E XOdBtoDg7GPsLawD05mdi7Br1Mkpt7fkkAFvue2eBI+Y7+hTdQsYmj4O0aiuIdvK nuUgyvry2Y2NFvsizXjLrQtd6hzgeW3jbOeO+JWNvjcAnh3u/Tl63xSu2Xe5las5 7FwOT182vB3LJytY/KbWesmPzRNtG/cxXjRGxByM16PDLHiI3hGfPhbz9Eo+/FIR RHiaI+g6bvMfJ5WeVJC5gjre2O1LBMUSa4MHOb3rWmLO+xTC9Lm3bF18Q3AoJsd0 cifZVdmGQwKNo08uidHFb4hgvXkQrWOgr0fURQYrcNe4sK9RDtn3mRoht+whL1Be DQg5X5NkDO95XCM0YMv4pxUrf8L2MibcVn4G+1U4Okr+MYB01cqd6bX9phWCMXTO X1JSQ3LP0rKnrZEnGttYrKYZxRd/Z4FJ9kCSkLu+FUREy5aMdYedvNOicmvKnSng Ha8/z0LKh/ijwh+b0/5VoWdcdNHDhKulwc1i43AAPCVLsN55EVCCRqABO/+C8i+5 40HiSKWaERh0z8vmf40Yho4SkmdvdcUN+fhbaCLjJNL852q0MtplDFUCCH25za49 XQRAnyuesfrWD7vG47cAphJlpArVur/uaoa8wD2lgjgxMNlfX0M= =UEbf -END PGP SIGNATURE- Thank you for your contribution to Debian.
antigrav_0.0.3-9_source.changes ACCEPTED into unstable
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 20 Jul 2019 15:17:42 -0300 Source: antigrav Architecture: source Version: 0.0.3-9 Distribution: unstable Urgency: medium Maintainer: Debian QA Group Changed-By: Daniel Pimentel Changes: antigrav (0.0.3-9) unstable; urgency=medium . * QA upload. * debian/control: - Bumped Build-Depends to version 12. - Bumped Standard-Version to 4.4.0. - Removed dpkg-dev because debhelper-compat already contain it. * debian/copyright: - Migrated to 1.0 format. - Full update. * debian/compat: removed because is old format. * debian/tests/*: added tests (CI). * debian/watch: added a fake site to explain about the current status of the original upstream homepage. Checksums-Sha1: 1ca6f90f8a378d173ad72884fb8968a251188805 2001 antigrav_0.0.3-9.dsc bfec55a1a757db68925ac21aaad116dda4cf6f3b 8740 antigrav_0.0.3-9.debian.tar.xz ad8ea4cb4959b192e0723ebe40b374b8d9b1d65c 9492 antigrav_0.0.3-9_source.buildinfo Checksums-Sha256: c4c11c22b74ee9dd4faab9d042c55ad476afce7529ed2a82c1b1df652e234963 2001 antigrav_0.0.3-9.dsc 4daeed5109e930d7bd957697436294f7c4a0c55cc5565d0180d1e953bd2cc454 8740 antigrav_0.0.3-9.debian.tar.xz 14a1bd07970459f7e3a38063a9f5ec6d05365cbb8d46c24a936fc5fa791c294c 9492 antigrav_0.0.3-9_source.buildinfo Files: 1833d472016a0116be8dbad3fbeb03ce 2001 games optional antigrav_0.0.3-9.dsc 130dcc230627dec6470565730df1f950 8740 games optional antigrav_0.0.3-9.debian.tar.xz 41485b42741411bd0b231195fb11da2f 9492 games optional antigrav_0.0.3-9_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEENX3LDuyVoBrrofDS3mO5xwTr6e8FAl0zu3gACgkQ3mO5xwTr 6e/Zpw/8DVT0GJZmdeQL9P3tp3tDCQHeY3vxdeiW5h0vzMRbJUaCwrQSdkh+Rs7i 3CQpxcYy5gflx0x2YeficgKbuKZt2+CubPxRb9tWrLiGCQSlhMXlxExDAD//hwW7 xMxU3qttPHp3lYLJ+lgH2FYsR78NIJTIqrc2tvCICvRD8mML1JKE8LmsGcPnaNxD D3WTJY9SpQhmyZuuaWdS2W4uYdX2AUW4jftjtBkc+ysI4DPlkxg2i4/VQj40G5Q2 fz2IGvzs6P/dwEaeF0smckiF8aMKWJtqY3QOsaKFzcwFtmKY+8oPwWsftdk/QFVi LHM6VwElNpTd4CDM3iGnO+5dWTPC8j4kPgUKY7sPhYgIjirW6Ni772ieugaHalLn d2RP7/rvPt9lf5wZ3FOuwFcqMZMsAIli3fEICxQyRIbG1TQsmVbKGJ/aEfSUkelZ uXC5lYH3DIzqC2yJnoS6fyc4bfmY5EetYPFjIkW5ZQQHMXx43jbrxTtthuQbBth5 JEQy83INMF6v6Z2f8cDHpECcXPgKIOVlRcf3Czrq9X3VkRA2gaceGr9/VFCxAmFs iXS/fF7gtv4zvmKulxchu0FVfHt10aJj6pgOCXtqZmuLFjSE5wI71L9rvQzdhixl P01ofNdtkI1B8vH8moUsJXb738X9xoN7rfghubtjgQaI4dIWpn0= =soNh -END PGP SIGNATURE- Thank you for your contribution to Debian.
Processing of fuzz_0.6-17_source.changes
fuzz_0.6-17_source.changes uploaded successfully to localhost along with the files: fuzz_0.6-17.dsc fuzz_0.6-17.debian.tar.xz fuzz_0.6-17_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
Processing of fondu_0.0.20060102-5_source.changes
fondu_0.0.20060102-5_source.changes uploaded successfully to localhost along with the files: fondu_0.0.20060102-5.dsc fondu_0.0.20060102-5.debian.tar.xz fondu_0.0.20060102-5_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
fondu_0.0.20060102-5_source.changes ACCEPTED into unstable
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 19 Jul 2019 17:34:11 -0300 Source: fondu Architecture: source Version: 0.0.20060102-5 Distribution: unstable Urgency: medium Maintainer: Debian QA Group Changed-By: Carlos Donizete Froes Changes: fondu (0.0.20060102-5) unstable; urgency=medium . * QA upload. * Set Debian QA Group as maintainer. (see #920123) * Using new DH level format. Consequently: - debian/compat: removed. + debian/control: changed from 'debhelper' to 'debhelper-compat' in Build-Depends field and bumped level to 12. * debian/control: - Build-Depends: autotools-dev, dh-autoreconf removed. + Bumped Standards-Version to 4.4.0. - Commented the Vcs-* outdated. + Replaced discontinued priority from 'extra' to 'optional'. * debian/copyright: + Adding myself copyright in debian/* + Format-uri: Updated for HTTPS. + License: Replaced BSD for BSD-3-Clause. * debian/patches: + 70-fix-spelling-errors-in-binary: - Corrected spelling in the patch description. + 80-fix-cflags-in-makefile: - Added to the value of a variable with '+='. * debian/rules: Obsolete lines removed. * debian/watch: Updated watch version 4. Checksums-Sha1: ce47e58e501909e48f5730279b6d31a63ffaa944 1750 fondu_0.0.20060102-5.dsc 62e30f3075835e2ae293b7c018f19ddb11be6a97 9400 fondu_0.0.20060102-5.debian.tar.xz ef9f036426842358252bef57559728e3544244cd 5072 fondu_0.0.20060102-5_source.buildinfo Checksums-Sha256: 866a79e42ea5b8295526863afd3a47c7bf1771e4d669073f76693118d068b06a 1750 fondu_0.0.20060102-5.dsc 23a9c13ea58b014a5def5cefd5a66416abd6906f9d081e55abe42921b8e604f0 9400 fondu_0.0.20060102-5.debian.tar.xz eca6248f64fbba15a2713f86fcc52d331a1f393d106640e5915907bfc81076da 5072 fondu_0.0.20060102-5_source.buildinfo Files: d20f3319c87d5ee7bc418aed88b25460 1750 utils optional fondu_0.0.20060102-5.dsc 083b3869bb363b70bcbdbbd11f4ed8c6 9400 utils optional fondu_0.0.20060102-5.debian.tar.xz 72c62d9fdf4f563d5bb113ab7594be4f 5072 utils optional fondu_0.0.20060102-5_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEENX3LDuyVoBrrofDS3mO5xwTr6e8FAl0z1MYACgkQ3mO5xwTr 6e/FRQ/9GxD5O+YTH2VbKBOKlmXlxEInyr7RbybOR4IoV8l3PHtknmXTJLMXXGCe Qo0q0BqiFk4EcYzXqn+YkXPmjI2kqKHWlmjc/QvCRvHOxhGQM5cptr9kgkLgxmDg d+INBwdO6ia16dExSlE6oK3E9eHNbAxfiZ13Obw+0rb80n/hA3uT3LBXwUQA4NPa 5Mjc5FcrorC2nGY7BITfNCVy+qS6RsYW2y/s8doLvg6V/eSQMs8kkKoCU7ecqXqC 0o3KMyOn7t7EHEfXMDHym4lzOQYtn1SZ8y+uNx3woSxzDrk8s0WM4CVGMB8vi2Ah Y/zWp3ulJw1A9/Up4fskBvGInAqdm8a3Hsm0S5Li2zn3eTwLyGMmY2wAaz2NuC/l rgzTSdaSYggkD8/TX1S9huyeUFyCvdLZ+C1PvbwV6/GHngUhD0SrMe9b/FaNH+cD b07ey4YR0wYC7SeUw0HjmVF62+3OJzFku537JTxWamCjuBNI1fH3E3SWsW69TICE 9/k38T/w9Q3i+CKp77ga9AQ8Mih/EGhcI/p2oCJ6OiuRQky1Ou1+psikxoK4bTqr COEUKThCpc4d9yKSnovixYltwIyVD+PwC/kQaGGCCmInLKGbUJCyHbFT9gTp6MLI lrYwXWD4C0ZwHmPwJ0xJLLwIby9AaDTlB+9zrjqcSybqa8l5Kz4= =SYUZ -END PGP SIGNATURE- Thank you for your contribution to Debian.
fuzz_0.6-17_source.changes ACCEPTED into unstable
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 19 Jul 2019 18:05:36 -0300 Source: fuzz Architecture: source Version: 0.6-17 Distribution: unstable Urgency: medium Maintainer: Debian QA Group Changed-By: Daniel Pimentel Closes: 920068 Changes: fuzz (0.6-17) unstable; urgency=medium . * QA upload. * New maintainer. (Closes: #920068) * debian/copyright: - Added myself to packaging block. - Full updated. Checksums-Sha1: 71ed44004bcaf04a4528fca451ab7f1581a7b882 1829 fuzz_0.6-17.dsc 499f7542ee59484badd66fd503a0a7d3e4818439 6712 fuzz_0.6-17.debian.tar.xz ff6deada1f282101e6369bffd31a8566a6a54449 5152 fuzz_0.6-17_source.buildinfo Checksums-Sha256: f267bc24ed8400d920334174756eca5ebe7522e7988835bcc30fc090c15e01c9 1829 fuzz_0.6-17.dsc 44267d2f872e324e77aae429684ac9bd8b87b0443aaffdccfbf5f39f4ae49b70 6712 fuzz_0.6-17.debian.tar.xz 5f32c84abe0dde68ae82b53e45c90b6013c568e0bd9c9499c6b41b1fa248871b 5152 fuzz_0.6-17_source.buildinfo Files: 97197664c47537dddb0dbc0c899af72a 1829 devel optional fuzz_0.6-17.dsc 79eec7d37814e710be33d377cd45d74d 6712 devel optional fuzz_0.6-17.debian.tar.xz 306e6943045a8d58817d172a0449860a 5152 devel optional fuzz_0.6-17_source.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEENX3LDuyVoBrrofDS3mO5xwTr6e8FAl0zz7EACgkQ3mO5xwTr 6e+hFA//ZWsE9V2YYVPbaEul5b0NZfLptR92L8VXrY7p4t+/0RKRCDQtbU2G7RTH rMEzGTxI4laD8wHpNKm1WiIODt6Pm1FXAQiEVrmbGUX5l+rrcZnwaMqzCs/tvkNg 5VLyEsCFvvr9KdWx3TFosIitiFMNqSBwdXb4gg6lLrsCEjeLnRYT6edRNf0wepjz gRkiNHGTLIKAIqdyHNvitNJKHIfAbaGPc2WqmARYP0C4RH2OiAvVWTTi8At2mYNA j/qBRZGxR8YX/1ZuhlbjYeU9PqItUwGWrywIP+0dQu0yvxPNjs569tXRwGZecAzJ 0pLbXtEVuk2SbI9QaI9Tsh3nOOmQgySwL5Kl7i+boFC0E7u6xsgNkaWrGiv0qsdP 8SbgjXH0gE92/0+HtulQHYpzEDbYy32Ru0kX+gqV+P2XdyzqEKGklFwCzXsmnMIK eLQIu4PMugOs5yc/iBFdPf9wpvZ9Ej3/DzMzBd7TdZ3rVvvBzZ8HFwWHHW1JIAac tkRZOeGl3Zaq1D74Po4Smtlvrads9k2cjunh31Br2BhuotQjRpTAhTtyb5k6PqMX ezvtsgj/ap8N4ElJgqaocSkI7qbQ+hXrOXrxWrx0FZfdVOYMQAYjVwXmsXQ9yLFB VHpIY7RliLJPiryQIkSxwIFgExsjkt3D+qp1VTxy+WM0UeqNBq4= =JXLV -END PGP SIGNATURE- Thank you for your contribution to Debian.
Bug#932598: Upgrade to buster fails with start-stop-daemon error
Package: sendmail Version: 8.15.2-12 Severity: grave Tags: patch -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On upgrade to buster, sendmail upgrade failed with this message: > start-stop-daemon: matching only on non-root pidfile > /var/run/sendmail/mta/sendmail.pid is insecure Some work with Google found Debian bug #922395, which, although not for sendmail, pointed the way to the solution. The following patch for /etc/init.d/sendmail should fix the problem: - - CUT HERE -- *** sendmail.orig 2019-07-20 23:35:49.360737086 -0400 - --- sendmail 2019-07-20 22:40:04.782571907 -0400 *** *** 149,163 - --- 149,166 --start"; STOP_MTAL_CMD="start-stop-daemon \ --pidfile $MTAL_PIDFILE \ + --exec $MTA_DAEMON \ --name sendmail-mta \ --stop"; SIGNAL_MTAL_CMD="start-stop-daemon \ --pidfile $MTAL_PIDFILE \ + --exec $MTA_DAEMON \ --name sendmail-mta \ --stop"; START_MTAQ_CMD="start-stop-daemon \ --pidfile $MTAQ_PIDFILE \ --make-pidfile \ + --exec $MTA_DAEMON \ --startas $MTA_COMMAND \ --start"; STOP_MTAQ_CMD="start-stop-daemon \ *** *** 165,170 - --- 168,174 --stop"; SIGNAL_MTAQ_CMD="start-stop-daemon \ --pidfile $MTAQ_PIDFILE \ + --exec $MTA_DAEMON \ --name sendmail-mta \ --stop"; START_MSP_CMD="start-stop-daemon \ - - CUT HERE -- It may also be necessary to delete /var/run/sendmail/mta/sendmail.pid as well. Note: Although probably not a sendmail problem (start-stop daemon?), it might be advisable to re-word the error message. "matching only on non-root pidfile xxx.pid is insecure" is rather cryptic, and does not point the way to fixing the problem. .Ron Murray - -- Package-specific info: Output of /usr/share/bug/sendmail/script: ls -alR /etc/mail: /etc/mail: total 568 drwxr-sr-x 8 smmta smmsp 4096 Jul 20 22:42 . drwxr-xr-x 260 root root 16384 Jul 20 23:16 .. - -rwxr-xr-- 1 root smmsp 12904 Jul 20 22:42 Makefile - -rw--- 1 root smmsp 5526 Jul 20 22:42 access - -rw-r- 1 smmta smmsp 12288 Jul 20 22:42 access.db - -rw-r--r-- 1 root smmsp 5432 Jul 2 2018 access.old - -rw--- 1 root root 2084 Nov 4 2014 access.orig - -rw-r--r-- 1 root root281 Sep 5 2004 address.resolve lrwxrwxrwx 1 root smmsp10 Mar 28 2015 aliases -> ../aliases - -rw-r- 1 smmta smmsp 12288 Jul 21 2017 aliases.db - -rw-r--r-- 1 root root 1040 Nov 25 2007 aliases.orig drwx--S--- 2 root smmsp45 Jun 18 2017 auth - -rw-r--r-- 1 root root 3722 Jul 20 22:42 databases - -rw-r--r-- 1 root root 3720 Oct 22 2014 databases.orig - -rw-r- 1 smmta smmsp42 Apr 7 2004 default-auth-info - -rw-r--r-- 1 smmta smmsp 0 Oct 1 2000 domaintable - -rw-r--r-- 1 root root 5659 Dec 8 2016 helpfile - -rw-r--r-- 1 smmta smmsp21 Apr 7 2004 local-host-names drwxr-sr-x 2 smmta smmsp81 Jul 20 20:54 m4 - -rw-r--r-- 1 smmta smmsp15 Sep 25 2008 mailertable - -rw-r- 1 root smmsp 12288 Jun 18 2017 mailertable.db - -rw-r--r-- 1 smmta smmsp 12973 Jun 4 2015 mimedefang-filter - -rw-r--r-- 1 smmta smmsp 12973 Jun 4 2015 mimedefang-filter.spamassassin - -rw-r--r-- 1 smmta smmsp 4108 Aug 18 2006 mimedefang.conf.12596 - -rw-r--r-- 1 smmta smmsp 4108 Dec 28 2006 mimedefang.conf.13657 - -rw-r--r-- 1 smmta smmsp 4108 Jan 30 2007 mimedefang.conf.15047 - -rw-r--r-- 1 smmta smmsp 4108 Mar 16 2007 mimedefang.conf.25782 - -rw-r--r-- 1 smmta smmsp 4108 Apr 26 2005 mimedefang.conf.5937 - -rw-r--r-- 1 smmta smmsp 4108 Nov 21 2006 mimedefang.conf.6382 - -rw-r--r-- 1 smmta smmsp 4108 Mar 27 2006 mimedefang.conf.7263 - -rw-r--r-- 1 root root276 Feb 11 2005 mimedefang.pl.conf drwxr-xr-x 2 root root 21 Jul 20 20:51 peers - -rw-r--r-- 1 smmta smmsp 0 Jan 30 2002 relay-domains - -rw-r--r-- 1 root root 4297 May 14 2018 sa-mimedefang.cf drwxr-xr-x 2 smmta smmsp 132 May 24 2015 sasl - -rw-r--r-- 1 smmta smmsp54 Apr 4 2015 sendmail.cN - -rw-r--r-- 1 root smmsp 75517 Jul 20 22:42 sendmail.cf - -rw-r--r-- 1 root root 75514 Jul 20 22:42 sendmail.cf.old - -rw-r--r-- 1 root root 12235 Jul 20 22:42 sendmail.conf - -rw-r--r-- 1 root root 1 Oct 22 2014 sendmail.conf.orig - -rw-r--r-- 1 smmta smmsp15 Apr 3 2015 sendmail.ct - -rw-r--r-- 1 smmta smmsp 209 Mar 2 2008 sendmail.cw - -rw-r--r-- 1 root smmsp 8600 Jul 20 22:42 sendmail.mc - -rw-r--r-- 1 root root148 Sep 15 2018 service.switch - -rw-r--r-- 1 root root179 Sep 15 2018 service.switch-nodns drwxr-sr-x 2 smmta smmsp53 Nov 7 2014 smrsh lrwxrwxrwx 1 root root 15 N
boa-constructor is marked for autoremoval from testing
boa-constructor 0.6.1-16 is marked for autoremoval from testing on 2019-08-04 It is affected by these RC bugs: 930400: boa-constructor: Pychecker will be removed after buster