Bug#869694: nvidia-driver: Installing the nvidia-340 package on stretech is impossible, nvidia-375 will be installed instead

[Herr Oswald]

> cannot reproduce in a fresh Stretch chroot. All the correct packages
> are installed.
> 
> Are you sure you don't have previously installed leftovers?

No, I'm not. I did "apt-get purge nvidia*", but that seems not to have
been enough. What shall I do?

I came with an upgrade from 8.9, but was puzzled that after the upgrade
I still had the 3.16 kernel which I had before. So I upgraded that
manually to 4.9. Maybe I broke something on that way?

Cheers,
herrdeh

Bug#869697: cmake: set CMAKE_INSTALL_RUNSTATEDIR=/run

[Niels Thykier]

Control: tags -1 moreinfo

On Tue, 25 Jul 2017 20:11:12 +0200 Felix Geyer  wrote:
> Package: debhelper
> Version: 10.6.4
> Severity: wishlist
> 
> Hi Niels,
> 
> Please add -DCMAKE_INSTALL_RUNSTATEDIR=/run to the flags passed to cmake.
> It is similar to --runstatedir for autoconf.
> 
> This flag is available since cmake 3.8. I've just pushed 3.9 into unstable.
> Before that 3.8 was only available in experimental so I wouldn't expect that
> any package uses it yet.
> 
> Thanks,
> Felix
> 
> 

Hi Felix,

If passed to a version of cmake that does not implement it, this will
silently degrade to a NOOP, right?.

Asking as I will be backporting debhelper to stretch-backports
eventually, so backporters may meet this.

Thanks,
~Niels

Bug#869539: Acknowledgement (love.keyboard.isDown("lctrl") always returns false)

[Phil Hagelberg]

After talking with the developers of the package, they suspect that the
problem lies with the version of libsdl2 which is shipped by
Debian. This would be consistent with the fact that all versions of LÖVE
seem affected by the problem on Stretch but none do on Jessie.

Bug#869751: ansible: Missing depends/recommends/suggests on python-libcloud

[Tollef Fog Heen]

Package: ansible
Version: 2.2.1.0-2
Severity: normal

Some providers, like the google cloud ones, don't work without
python-libcloud.  The ansible package should add a relation that makes
the admin aware of it.  I think maybe a recommends would make sense,
since you might well use it without using cloud-y bits.

-- 
Tollef Fog Heen
UNIX is user friendly, it's just picky about who its friends are

Bug#869750: lintian: fix for readelf parsing with binutils 2.29 on ppc64el

[Steve Langasek]

Package: lintian
Version: 2.5.52
Severity: important
Tags: patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu artful ubuntu-patch

Dear maintainers,

In Ubuntu, lintian's autopkgtests now fail on ppc64el due to a test error,
which results from binutils 2.29 on ppc64el outputting symbols in a
different format; e.g. from the readelf -WltdVs output:

 3:  0 FUNCGLOBAL DEFAULT [: 8]   UND 
exit@GLIBC_2.17 (2)

(This appears to be a difference in the behavior of binutils' binary output
rather than a change in the behavior of readelf in reading the binary.)

The attached patch adjusts the regexp used for matching symbols to account
for the optional [ ...] field.  With this change, the
autopkgtest passes again on ppc64el.

Please consider applying this patch in Debian.  I have not tested on
Debian/ppc64el, but if the issue exists there also with binutils 2.29-1,
then the severity of this bug should arguably be raised to serious.

Thanks,
-- 
Steve Langasek   Give me a lever long enough and a Free OS
Debian Developer   to set it on, and I can move the world.
Ubuntu Developerhttp://www.debian.org/
slanga...@ubuntu.com vor...@debian.org
diff -Nru lintian-2.5.52/helpers/coll/objdump-info-helper 
lintian-2.5.52ubuntu1/helpers/coll/objdump-info-helper
--- lintian-2.5.52/helpers/coll/objdump-info-helper 2017-06-17 
08:38:58.0 -0700
+++ lintian-2.5.52ubuntu1/helpers/coll/objdump-info-helper  2017-07-25 
22:02:58.0 -0700
@@ -200,7 +200,7 @@
 push @symbol_versions, $verstring;
 }
 } elsif ($line
-=~ m/^\s*(\d+):\s*[0-9a-f]+\s+\d+\s+(?:(?:\S+\s+){3})(\S+)\s+(.*)\Z/
+=~ 
m/^\s*(\d+):\s*[0-9a-f]+\s+\d+\s+(?:(?:\S+\s+){3})(?:\[.*\]\s+)(\S+)\s+(.*)\Z/
 and $section eq 'DS') {
 # We (sometimes) need to read the "Version symbols section" first to
 # use this data and readelf tends to print after this section, so

Bug#869749: RFP: dsmidiwifi -- DS Midi Wifi server

[Fernando Toledo]

Package: wnpp
Severity: wishlist
X-Debbugs-CC: debian-de...@lists.debian.org

--- Please fill out the fields below. ---

   Package name: dsmidiwifi
Version: 0~git20130801+6ad682e-1
Upstream Author: _0xtob 
URL: http://dsmi.tobw.net/
License: GPL2
Description: Nintendo DS MIDI WiFi Server

 This application is used to forward MIDI messages between  local MIDI
 applications and Nintendo DS handhelds in the local network.
 .
 For more information, visit http://dsmi.tobw.net
 .
 Also, many Android / iPhone apps use this protocol to connect
 remote midi mixers o controllers. This "procotol" is also known as "dsmi"
 .
You can us apps like Dj Control (author Borce Trajkovsky) and mixxx

-- 
Fernando Toledo
Dock Sud BBS
http://bbs.docksud.com.ar
telnet://bbs.docksud.com.ar

Bug#869748: apt-listchanges: sometimes apt-listchanges calls to get changelog aren't answered and it sort of hangs

[shirish शिरीष]

Package: apt-listchanges
Version: 3.14
Severity: normal

Dear Maintainer,

First of all thank you for maintaining apt-listchanges as long as you have.

I know that you have made some changes so users can either explicitly
use it to call the network or have -no-network although do not know
for which use-case that option has been given ?

In some runs I have seen it hangs, for e.g. the ongoing run  -

$ sudo aptitude install appstream ca-certificates ca-certificates-java
cdparanoia devscripts flatpak fonts-alee gnome-keyring gnuplot
gnuplot-data gnuplot-qt libappstream4 libbasicusageenvironment1
libbuild-helper-maven-plugin-java libcdparanoia0 libdleyna-core-1.0-3
libeclipse-aether-java libesd0 libflatpak0 libgroupsock8
liblivemedia58 libmaven-archiver-java
libmaven-common-artifact-filters-java
libmaven-dependency-analyzer-java libmaven-file-management-java
libmaven-repository-builder-java libmaven-shared-io-java
libmaven-source-plugin-java libnss-myhostname libostree-1-1
libp11-kit0 libpam-gnome-keyring libplexus-io-java
libplexus-utils2-java libsurefire-java libudev-dev libudev1
libusageenvironment3 mutt p11-kit p11-kit-modules pristine-tar
python-click python-idna python-rope python3-click python3-idna
ruby-json ruby-pkg-config udev virt-manager virtinst xkb-data -y
The following NEW packages will be installed:
  libnotmuch5{a}
The following packages will be REMOVED:
  libnotmuch4{u}
The following packages will be upgraded:
appstream ca-certificates ca-certificates-java cdparanoia devscripts
flatpak fonts-alee gnome-keyring gnuplot gnuplot-data gnuplot-qt
libappstream4 libbasicusageenvironment1
libbuild-helper-maven-plugin-java libcdparanoia0 libdleyna-core-1.0-3
libeclipse-aether-java libesd0 libflatpak0 libgroupsock8
liblivemedia58 libmaven-archiver-java
libmaven-common-artifact-filters-java
libmaven-dependency-analyzer-java libmaven-file-management-java
libmaven-repository-builder-java libmaven-shared-io-java
libmaven-source-plugin-java libnss-myhostname libostree-1-1
libp11-kit0 libpam-gnome-keyring libplexus-io-java
libplexus-utils2-java libsurefire-java libudev-dev libudev1
libusageenvironment3 mutt p11-kit p11-kit-modules pristine-tar
python-click python-idna python-rope python3-click python3-idna
ruby-json ruby-pkg-config udev virt-manager virtinst xkb-data
53 packages upgraded, 1 newly installed, 1 to remove and 0 not upgraded.
Need to get 2,585 kB/13.5 MB of archives. After unpacking 2,259 kB will be used.
Get: 1 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libnotmuch5 amd64 0.25~rc1-2 [77.7 kB]
Get: 2 http://cdn-fastly.deb.debian.org/debian buster/main amd64
p11-kit-modules amd64 0.23.7-3 [229 kB]
Get: 3 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libp11-kit0 amd64 0.23.7-3 [190 kB]
Get: 4 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libappstream4 amd64 0.11.2-1 [95.8 kB]
Get: 5 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libcdparanoia0 amd64 3.10.2+debian-11+b2 [48.8 kB]
Get: 6 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libmaven-shared-io-java all 3.0.0-1 [33.1 kB]
Get: 7 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libmaven-file-management-java all 3.0.0-1 [35.1 kB]
Get: 8 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libbuild-helper-maven-plugin-java all 3.0.0-1 [55.4 kB]
Get: 9 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libdleyna-core-1.0-3 amd64 0.4.0-1+b2 [12.6 kB]
Get: 10 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libeclipse-aether-java all 1.0.2-3 [585 kB]
Get: 11 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libesd0 amd64 0.2.41-11+b2 [16.7 kB]
Get: 12 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libmaven-archiver-java all 3.1.1-1 [23.3 kB]
Get: 13 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libmaven-common-artifact-filters-java all 3.0.1-1 [48.7 kB]
Get: 14 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libmaven-dependency-analyzer-java all 1.7-1 [28.4 kB]
Get: 15 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libmaven-repository-builder-java all 1.0-1 [18.3 kB]
Get: 16 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libmaven-source-plugin-java all 3.0.1-1 [19.9 kB]
Get: 17 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libplexus-utils2-java all 3.0.24-3 [246 kB]
Get: 18 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libplexus-io-java all 3.0.0-1 [63.2 kB]
Get: 19 http://cdn-fastly.deb.debian.org/debian buster/main amd64
libsurefire-java all 2.19.1-1 [750 kB]
Get: 20 http://cdn-fastly.deb.debian.org/debian buster/main amd64
ruby-pkg-config all 1.2.3-2 [7,474 B]
Fetched 2,585 kB in 54s (47.2 kB/s)
Retrieving bug reports... Done
Parsing Found/Fixed information... Done
serious bugs of ca-certificates-java (20161107 → 20170531+nmu1) 
 b1 - #864657 - ca-certificates-java has circular Depends on
openjdk-8-jre-headless
Summary:
 ca-certificates-java(1 bug)
Are you sure you want 

Bug#869747: liborcania-dev: undefined strnstr reference on non-Linux

[Aaron M. Ucko]

Package: liborcania-dev
Version: 1.1-2
Severity: important
Tags: upstream
Control: affects -1 src:hoel

liborcania-dev's definition of strnstr is conditional on __linux__, so
builds for the Hurd and kFreeBSD wind up with compile-time warnings
and undefined references, making hoel FTBFS there:
  
  orcania.c:275:12: warning: implicit declaration of function 'strnstr' 
[-Wimplicit-function-declaration]
   return strnstr(haystack, needle, len);
  ^~~
  orcania.c:275:12: warning: return makes pointer from integer without a cast 
[-Wint-conversion]
   return strnstr(haystack, needle, len);
  ^~
  [...]
  dpkg-shlibdeps: warning: symbol strnstr used by 
debian/liborcania1.1/usr/lib/liborcania.so.1.1 found in none of the libraries
  
  //usr/lib/liborcania.so.1.1: undefined reference to `strnstr'

Please either enable liborcania-dev's definition on *all* __GLIBC__
systems or build it against libbsd.

Thanks!

-- 
Aaron M. Ucko, KB1CJC (amu at alum.mit.edu, ucko at debian.org)
http://www.mit.edu/~amu/ | http://stuff.mit.edu/cgi/finger/?a...@monk.mit.edu

Bug#868905:

[Michael Hudson-Doyle]

I fixed this in Ubuntu with this patch:

Bug#786986: Wxwidgets webview link flags problem

[Olly Betts]

I've just uploaded with an updated wx-config webview patch so that when
libwxgtk-webview3.0-dev isn't installed, wx-config should give the same
answers as if webview had been disabled when the wxwidgets3.0 package
was built.

However...

On Mon, Jun 22, 2015 at 06:34:54AM +, Gianfranco Costamagna wrote:
> wx-config --libs webview
> -L/usr/lib/x86_64-linux-gnu -pthread   -lwx_gtk2u_webview-3.0 -lwx_baseu-3.0 
> 
> the returned list should be empty, since wx-webview isn't there.

This is incorrect actually - if you build wx without webview, then what
you wrote above is exactly what "wx-config --libs webview" reports.

It looks like any unknown library name listed after --libs just gets a
boilerplate response:

$ wx-config --libs anything
-L/usr/lib/x86_64-linux-gnu -pthread   -lwx_gtk2u_anything-3.0 -lwx_baseu-3.0 

Cheers,
Olly

Bug#868719: (no subject)

[Michael Lustfield]

Control: fixed 868719 0.0~git20170713.0.8ea508f-3

This test seems to only fail in buildd. I can't reproduce it in pbuild/sbuild.
I've uploaded an update that disables running tests and lets this package build.

-- 
Michael Lustfield

Bug#826389: git-repair: diff for NMU version 1.20151215-1.1

[Sean Whitton]

Control: tags 826389 + patch
Control: tags 826389 + pending

Dear maintainer,

I've prepared an NMU for git-repair (versioned as 1.20151215-1.1) and
uploaded it to unstable.

Regards.

-- 
Sean Whitton
diff --git a/Common.hs b/Common.hs
index a6c5d5488..ab1de4e62 100644
--- a/Common.hs
+++ b/Common.hs
@@ -13,7 +13,6 @@ import Data.String.Utils as X hiding (join)
 import Data.Monoid as X
 
 import System.FilePath as X
-import System.Directory as X
 import System.IO as X hiding (FilePath)
 #ifndef mingw32_HOST_OS
 import System.Posix.IO as X hiding (createPipe)
@@ -25,7 +24,7 @@ import Utility.Exception as X
 import Utility.SafeCommand as X
 import Utility.Process as X
 import Utility.Path as X
-import Utility.Directory as X
+import Utility.Directory as X hiding (getFileSize)
 import Utility.Monad as X
 import Utility.Data as X
 import Utility.Applicative as X
diff --git a/Utility/Directory.hs b/Utility/Directory.hs
index fae33b5c2..693e77131 100644
--- a/Utility/Directory.hs
+++ b/Utility/Directory.hs
@@ -8,10 +8,12 @@
 {-# LANGUAGE CPP #-}
 {-# OPTIONS_GHC -fno-warn-tabs #-}
 
-module Utility.Directory where
+module Utility.Directory (
+	module Utility.Directory,
+	module Utility.SystemDirectory
+) where
 
 import System.IO.Error
-import System.Directory
 import Control.Monad
 import System.FilePath
 import Control.Applicative
@@ -28,6 +30,7 @@ import Utility.SafeCommand
 import Control.Monad.IfElse
 #endif
 
+import Utility.SystemDirectory
 import Utility.PosixFiles
 import Utility.Tmp
 import Utility.Exception
@@ -134,11 +137,13 @@ moveFile src dest = tryIO (rename src dest) >>= onrename
 _ <- tryIO $ removeFile tmp
 throwM e'
 
+#ifndef mingw32_HOST_OS	
 	isdir f = do
 		r <- tryIO $ getFileStatus f
 		case r of
 			(Left _) -> return False
 			(Right s) -> return $ isDirectory s
+#endif
 
 {- Removes a file, which may or may not exist, and does not have to
  - be a regular file.
diff --git a/Utility/QuickCheck.hs b/Utility/QuickCheck.hs
index cd408ddc9..8db03f4cd 100644
--- a/Utility/QuickCheck.hs
+++ b/Utility/QuickCheck.hs
@@ -6,7 +6,7 @@
  -}
 
 {-# OPTIONS_GHC -fno-warn-orphans #-}
-{-# LANGUAGE TypeSynonymInstances #-}
+{-# LANGUAGE TypeSynonymInstances, CPP #-}
 
 module Utility.QuickCheck
 	( module X
@@ -21,11 +21,13 @@ import qualified Data.Set as S
 import Control.Applicative
 import Prelude
 
+#if ! MIN_VERSION_QuickCheck(2,8,2)
 instance (Arbitrary k, Arbitrary v, Eq k, Ord k) => Arbitrary (M.Map k v) where
 	arbitrary = M.fromList <$> arbitrary
 
 instance (Arbitrary v, Eq v, Ord v) => Arbitrary (S.Set v) where
 	arbitrary = S.fromList <$> arbitrary
+#endif
 
 {- Times before the epoch are excluded. -}
 instance Arbitrary POSIXTime where
diff --git a/Utility/SystemDirectory.hs b/Utility/SystemDirectory.hs
new file mode 100644
index 0..3dd44d199
--- /dev/null
+++ b/Utility/SystemDirectory.hs
@@ -0,0 +1,16 @@
+{- System.Directory without its conflicting isSymbolicLink
+ -
+ - Copyright 2016 Joey Hess 
+ -
+ - License: BSD-2-clause
+ -}
+
+-- Disable warnings because only some versions of System.Directory export
+-- isSymbolicLink.
+{-# OPTIONS_GHC -fno-warn-tabs -w #-}
+
+module Utility.SystemDirectory (
+	module System.Directory
+) where
+
+import System.Directory hiding (isSymbolicLink)
diff --git a/debian/changelog b/debian/changelog
index 9b2e1e496..5b83dffef 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,14 @@
+git-repair (1.20151215-1.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * Cherry pick upstream commit to add MIN_VERSION preprocessor guards to
+some instances defined in Utility.QuickCheck (Closes: #826389).
+  * Cherry pick upstream commit to avoid duplicate import errors in
+Utility.Directory.
+  * Patch Common.hs to avoid duplicate import errors.
+
+ -- Sean Whitton   Tue, 25 Jul 2017 17:27:22 -0700
+
 git-repair (1.20151215-1) unstable; urgency=medium
 
   * Package 1.20151215-1
diff --git a/debian/patches/fix-build-with-quickcheck-2.8.2.patch b/debian/patches/fix-build-with-quickcheck-2.8.2.patch
new file mode 100644
index 0..3e3a0cd2e
--- /dev/null
+++ b/debian/patches/fix-build-with-quickcheck-2.8.2.patch
@@ -0,0 +1,34 @@
+From: Joey Hess 
+Date: Sun, 24 Jan 2016 14:15:00 -0400
+X-Dgit-Generated: 1.20151215-1.1 1ecd24cc076b15e085529d41e5a873e334f75167
+Subject: Fix build with QuickCheck 2.8.2
+
+It added some instances I had also implemented.
+
+---
+
+--- git-repair-1.20151215.orig/Utility/QuickCheck.hs
 git-repair-1.20151215/Utility/QuickCheck.hs
+@@ -6,7 +6,7 @@
+  -}
+ 
+ {-# OPTIONS_GHC -fno-warn-orphans #-}
+-{-# LANGUAGE TypeSynonymInstances #-}
++{-# LANGUAGE TypeSynonymInstances, CPP #-}
+ 
+ module Utility.QuickCheck
+ 	( module X
+@@ -21,11 +21,13 @@ import qualified Data.Set as S
+ import Control.Applicative
+ import Prelude
+ 
++#if ! MIN_VERSION_QuickCheck(2,8,2)
+ instance (Arbitrary k, Arbitrary v, Eq k, Ord k) => Arbitrary 

Bug#857239: Please upload libtorrent-1.1.4

[Alexandre Viau]

Hello!

I'd love to see libtorrent-1.1.4 uploaded.

It contains many fixes, some of which are important for deluge.

With the current version of libtorrent, there seems to be cases where
deluge completely ignores proxy settings.

Cheers,

-- 
Alexandre Viau
av...@debian.org



signature.asc
Description: OpenPGP digital signature

Bug#869746: Real-time signal 0, can't start

[積丹尼 Dan Jacobson]

Package: epiphany-browser
Version: 3.22.7-1
Severity: important

I am getting lots of
Real-time signal 0
and
Segmentation fault
etc. when starting.
Please see
https://bugzilla.gnome.org/show_bug.cgi?id=785401
Yes I tried reinstalling epiphany-browser.

-- System Information:
Debian Release: buster/sid
  APT prefers experimental
  APT policy: (990, 'experimental'), (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.11.0-2-amd64 (SMP w/1 CPU core)
Locale: LANG=zh_TW.UTF-8, LC_CTYPE=zh_TW.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)

Versions of packages epiphany-browser depends on:
ii  dbus-x11 [dbus-session-bus]  1.11.14-1
ii  epiphany-browser-data3.22.7-1
ii  gsettings-desktop-schemas3.24.0-1
ii  iso-codes3.75-1
ii  libavahi-client3 0.6.32-2
ii  libavahi-common3 0.6.32-2
ii  libavahi-gobject00.6.32-2
ii  libc62.24-12
ii  libcairo21.14.10-1
ii  libgcr-base-3-1  3.20.0-5.1
ii  libgcr-ui-3-13.20.0-5.1
ii  libgdk-pixbuf2.0-0   2.36.5-3
ii  libglib2.0-0 2.53.4-1
ii  libgnome-desktop-3-123.22.2-1
ii  libgtk-3-0   3.22.16-1
ii  libjavascriptcoregtk-4.0-18  2.16.5-1
ii  libnotify4   0.7.7-2
ii  libpango-1.0-0   1.40.6-1
ii  libpangocairo-1.0-0  1.40.6-1
ii  libsecret-1-00.18.5-3.1
ii  libsoup2.4-1 2.56.0-2
ii  libsqlite3-0 3.19.3-3
ii  libwebkit2gtk-4.0-37 2.16.5-1
ii  libx11-6 2:1.6.4-3
ii  libxml2  2.9.4+dfsg1-3
ii  libxslt1.1   1.1.29-2.1

Versions of packages epiphany-browser recommends:
pn  browser-plugin-evince  
ii  ca-certificates20161130+nmu1
ii  evince 3.22.1-4
ii  yelp   3.22.0-1

epiphany-browser suggests no packages.

-- no debconf information

Bug#869745: enigmail: Enigmail stopped working after the update on Debian Jessie

[Daniel Bareiro]

Package: enigmail
Version: 2:1.8.2-4~deb8u1
Severity: important

Dear Maintainer,

Thanks for your collaboration mantaining this plugin.

I just updated Thunderbird on Jessie. Support for the 45.x series has
ended, so starting with this update Debian is now following the 52.x
releases.

But after the update, Enigmail stopped working. In fact, when I go to
(my email account) -> Settings-> OpenGPG security, none of the buttons
are working. Not even "OK" to accept the changes.

According I see, the Debian Jessie package has the version 1.8.2 for
Enigmail:

root@orion:~# aptitude show enigmail | grep Versión
Versión: 2:1.8.2-4~deb8u1

But this version does not seem to be compatible with Thunderbird 52 [1].
Enigmail 1.8.2 is compatible with Thunderbird 29.0 to 46.0. That's why
it was running on the previous packaged version of Thunderbird 45.x.

So it looks like we have a problem here.

Could you please check this?

Thanks in advance.

Kind regards,
Daniel

[1] 
https://addons.mozilla.org/es/thunderbird/addon/enigmail/versions/?page=1#version-1.8.2

-- System Information:
Debian Release: 8.9
  APT prefers oldstable-updates
  APT policy: (500, 'oldstable-updates'), (500, 'oldstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=es_AR.UTF-8, LC_CTYPE=es_AR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages enigmail depends on:
ii  gnupg  1.4.18-7+deb8u3
ii  gnupg2 2.0.26-6+deb8u1
ii  icedove1:52.2.1-4~deb8u1
ii  libc6  2.19-18+deb8u10
ii  thunderbird [icedove]  1:52.2.1-4~deb8u1

Versions of packages enigmail recommends:
ii  gnupg-agent   2.0.26-6+deb8u1
ii  gnupg22.0.26-6+deb8u1
ii  pinentry-gtk2 [pinentry-x11]  0.8.3-2

enigmail suggests no packages.

-- no debconf information


-- 
Ing. Daniel Bareiro

Opción Libre - Soberanía tecnológica para su empresa
WWW: http://www.opcion-libre.com.ar
Tel: +54 11 5235-3090
Correo-e: conta...@opcion-libre.com.ar


signature.asc
Description: Digital signature

Bug#869744: libxml2: please drop Recommends: xml-core

[Adam Borowski]

Source: libxml2
Version: 2.9.4+dfsg1-3
Severity: wishlist

Hi!
This recommends unnecessarily pulls in xml-core on the vast majority of
Debian installs.  It doesn't seem to be doing anything good -- programs
that actually need xml-core need to Depend on it anyway, and for the
rest, it's just a waste.

While xml-core is a small package -- together with its dependency sgml-base
they take just 191KB, it's a low-hanging fruit that would allow trimming that
much from most installs with an one-line change.



Meow!
-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (500, 'testing'), 
(150, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.0-rc2-debug-00025-g7c422cf6b36d (SMP w/6 CPU cores)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE=C.UTF-8 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Bug#869716: libplexus-containers-java: Wrong scope for junit dependency

[Emmanuel Bourg]

Le 25/07/2017 à 22:45, Mykola Nikishov a écrit :

> Upgrade to 1.0~beta3.0.7-9 will drag junit. Please change default
> scope [1] to the test one.
> 
> [1] 
> https://anonscm.debian.org/cgit/pkg-java/plexus-containers.git/tree/pom.xml#n32

Actually in this case the scope is correct, because the jar generated
contains the PlexusTestCase class extending the TestCase class from
junit. Changing the scope to test would thus break the build.

That said, we may consider changing the scope to 'provided' as it is in
more recent versions of plexus-containers. That may break a few packages
where the pom only declares a dependency on plexus-container-default and
not junit, but that would avoid pulling junit for packages that don't
need it.

Bug#869618: bib2ris ignores year

[Markus Hoenicka]

Am 2017-07-25 00:13, schrieb Leon Meier:

Package: refdb-clients
Version: 1.0.2-3

The year field in the .bib files is ignored. Example input file 
mybiblio.bib:


@article{entry,
  author= {John Smith},
  title = {Awesome Title},
  journal = {JACM},
  year  = {2006},
  pages = {1--2}
}

Running `bib2ris mybiblio.bib` results in

TY  - JOUR
ID  - entry
AU  - Smith,John
JF  - JACM
SP  - 1
EP  - 2
PY  - ///
TI  - Awesome Title
ER  -

As you see, the year is missing in the output. Trying various
command-line options did not help. Any improvement would be greatly
appreciated.

Thanks in advance!
Leon


Hi,

this is a little weird. I run the current svn version both on FreeBSD 
and on Debian. On both systems, your test file converts to:


markus@wallaby:~/workspace/refdb$ bib2ris < bib2ristest.bib

TY  - JOUR
ID  - entry
AU  - Smith,John
JF  - JACM
SP  - 1
EP  - 2
PY  - 2006///
TI  - Awesome Title
ER  -

which looks alright to me. There were no recent changes to the bib2ris 
code, so your version should be up-to-date. What OS do you run? 
Ports/packages or compiled from sources? What version of the btparse 
library? Do you have any entries in your global or personal bib2risrc 
files?


regards,
Markus

--
Markus Hoenicka
http://www.mhoenicka.de
AQ score 38

Bug#869743: RM: mrxvt -- RoQA; no UTF-8 support, dead upstream, low popcon

[Adam Borowski]

Package: ftp.debian.org
Severity: normal


A long-abandoned terminal that lacks UTF-8 support.  There's more than
enough replacements.

Popcon vote is 58, 7, 1 for its variants (mrxvt{,-mini,-cjk}).

Bug#869731: man-db: apropos does not work for directories found from PATH

[Reuben Thomas]

On 26 July 2017 at 00:05, Colin Watson  wrote:

>
> I think it might be worth revisiting the change in man-db 2.4.2-3 to
> turn off MAN_DB_CREATES, which means that man doesn't create databases
> that doesn't already exist (once the database exists, man should
> automatically keep it up to date, although other tools such as apropos
> won't necessarily).  I made that change in response to a variety of
> bugs, so it can't be simply reverted; but that was way back in 2003
> before a great deal of other improvements, so perhaps there are better
> ways to address those bugs now.
>

​Sounds good!​

Fair, but I think it would be better to fix the problem properly
> instead, since man-db does have at least part of the internal tooling
> required to do so.
>

​Absolutely.​

-- 
https://rrt.sc3d.org 

Bug#868685: debmirror: not able to mirror sid

[Colin Watson]

On Mon, Jul 24, 2017 at 08:31:44AM -0700, deb...@lewenberg.com wrote:
> We are getting the same error on our daily chroot updates of our sid chroot
> environment. Can you post your apt package bug number so we can track it?

You can find it in the web-visible logs of this bug, but it's
https://bugs.debian.org/869425.

> BTW, if we do a "chroot /var/cache/pbuilder/base-sid/ aptitude update" right
> before the chroot update the error goes away.

Yes, it only happens when trying to fetch pdiffs; if apt has fresh
enough Packages and Sources files then you won't see this bug.  That was
why I mentioned "an unstable chroot about half a day old" in my
reproduction recipe.

-- 
Colin Watson   [cjwat...@debian.org]

Bug#869742: openscenegraph-3.4: GLESv2 detection compatibility with cmake >= 3.8

[Steve Langasek]

Package: openscenegraph-3.4
Version: 3.4.0+dfsg1-4
Severity: important
Tags: patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu artful ubuntu-patch

Dear maintainers,

In Ubuntu, we saw openscenegraph-3.4 FTBFS on armhf after cmake 3.8.0 landed
in the devel release (synced from Debian experimental), because of changes
in the behavior of the opengl detection module:

-- Found OpenGL: -lGLESv2  
   Called from: [4] /usr/share/cmake-3.8/Modules/FindPackageMessage.cmake
[3] 
/usr/share/cmake-3.8/Modules/FindPackageHandleStandardArgs.cmake
[2] /usr/share/cmake-3.8/Modules/FindOpenGL.cmake
[1] 
/<>/openscenegraph-3.4-3.4.0+dfsg1/CMakeLists.txt
CMake Error at /usr/share/cmake-3.8/Modules/FindOpenGL.cmake:191 
(set_target_properties):
  IMPORTED_LIBNAME property value

-lGLESv2

  may not start with '-'.
Call Stack (most recent call first):
  CMakeLists.txt:232 (FIND_PACKAGE)


   Called from: [2] /usr/share/cmake-3.8/Modules/FindOpenGL.cmake
[1] 
/<>/openscenegraph-3.4-3.4.0+dfsg1/CMakeLists.txt


The attached patch maintains compatibility with current cmake, while
continuing to use GLES instead of GL on armhf.  Despite the hard-coding of
paths this should remain fairly reliable on Debian armhf systems.

You also have bug #852423 filed which is asking to use libGL instead of
libGLESv2.  I think that would be generally disadvantageous for ARM users of
Debian, since there exist hardware-accelerated GLES drivers for ARM but
TTBOMK no hardware-accelerated GL drivers.  If you did decide to switch back
to libGL, then you could also close this bug (though Ubuntu would carry a
delta in order to continue leveraging GLES).

Thanks,
-- 
Steve Langasek   Give me a lever long enough and a Free OS
Debian Developer   to set it on, and I can move the world.
Ubuntu Developerhttp://www.debian.org/
slanga...@ubuntu.com vor...@debian.org
diff -Nru openscenegraph-3.4-3.4.0+dfsg1/debian/rules 
openscenegraph-3.4-3.4.0+dfsg1/debian/rules
--- openscenegraph-3.4-3.4.0+dfsg1/debian/rules 2016-09-23 12:17:22.0 
-0700
+++ openscenegraph-3.4-3.4.0+dfsg1/debian/rules 2017-07-25 14:47:36.0 
-0700
@@ -65,8 +65,6 @@
 LDFLAGS += -Wl,--as-needed
 
 ifeq (armhf,$(DEB_HOST_ARCH))
-EGL_LDFLAGS=$(shell pkg-config egl --libs)
-OPENGLES_LDFLAGS=$(shell pkg-config glesv2 --libs)
 ARMHF_DEFINES=-D OSG_GL1_AVAILABLE:BOOL=OFF \
-D OSG_GL2_AVAILABLE:BOOL=OFF \
-D OSG_GL3_AVAILABLE:BOOL=OFF \
@@ -78,8 +76,8 @@
-D OSG_GL_VERTEX_ARRAY_FUNCS_AVAILABLE:BOOL=OFF \
-D OSG_GL_FIXED_FUNCTION_AVAILABLE:BOOL=OFF \
-D OSG_CPP_EXCEPTIONS_AVAILABLE:BOOL=OFF \
-   -D OPENGL_gl_LIBRARY:STRING="${OPENGLES_LDFLAGS}" \
-   -D OPENGL_egl_LIBRARY:STRING="${EGL_LDFLAGS}"
+   -D OPENGL_gl_LIBRARY:STRING=/usr/lib/arm-linux-gnueabihf/libGLESv2.so \
+   -D OPENGL_egl_LIBRARY:STRING=/usr/lib/arm-linux-gnueabihf/libEGL.so
 endif
 
 #

Bug#869741: apt: cannot update and install package

[Brianajie]

Package: apt
Version: 1.4.6
Severity: normal

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?

run sudo apt-get update

   * What exactly did you do (or not do) that was effective (or
 ineffective)?

remove some apt file, then re-run, but still back when do
another refresh

   * What was the outcome of this action?

Reading package lists... Done
W: An error occurred during the signature verification. The repository is not
updated and the previous index files will be used. GPG error:
http://deb.debian.org/debian stretch-updates InRelease: The following
signatures couldn't be verified because the public key is not available:
NO_PUBKEY 8B48AD6246925553 NO_PUBKEY 7638D0442B90D010
W: An error occurred during the signature verification. The repository is not
updated and the previous index files will be used. GPG error:
http://security.debian.org stretch/updates InRelease: The following signatures
couldn't be verified because the public key is not available: NO_PUBKEY
9D6D8F6BC857C906 NO_PUBKEY 8B48AD6246925553
W: GPG error: http://deb.debian.org/debian stretch Release: The following
signatures couldn't be verified because the public key is not available:
NO_PUBKEY 8B48AD6246925553 NO_PUBKEY 7638D0442B90D010 NO_PUBKEY
EF0F382A1A7B6500
W: The repository 'http://deb.debian.org/debian stretch Release' is not signed.
N: Data from such a repository can't be authenticated and is therefore
potentially dangerous to use.
N: See apt-secure(8) manpage for repository creation and user configuration
details.
W: GPG error: http://mirror.poliwangi.ac.id/debian stretch Release: The
following signatures couldn't be verified because the public key is not
available: NO_PUBKEY 8B48AD6246925553 NO_PUBKEY 7638D0442B90D010 NO_PUBKEY
EF0F382A1A7B6500
W: The repository 'http://mirror.poliwangi.ac.id/debian stretch Release' is not
signed.
N: Data from such a repository can't be authenticated and is therefore
potentially dangerous to use.
N: See apt-secure(8) manpage for repository creation and user configuration
details.
W: Failed to fetch http://security.debian.org/dists/stretch/updates/InRelease
The following signatures couldn't be verified because the public key is not
available: NO_PUBKEY 9D6D8F6BC857C906 NO_PUBKEY 8B48AD6246925553
W: Failed to fetch http://deb.debian.org/debian/dists/stretch-updates/InRelease
The following signatures couldn't be verified because the public key is not
available: NO_PUBKEY 8B48AD6246925553 NO_PUBKEY 7638D0442B90D010
E: Failed to fetch http://deb.debian.org/debian/dists/stretch/non-
free/i18n/Translation-en  Could not open file
/var/lib/apt/lists/partial/deb.debian.org_debian_dists_stretch_non-
free_i18n_Translation-en.bz2 - open (13: Ijin ditolak) [IP: 151.101.8.204 80]
W: Some index files failed to download. They have been ignored, or old ones
used instead.


   * What outcome did you expect instead?

its normally before.


please help me to fix this, at least i can make sure that i was install wasn't
cracked/compromised one.

Thanks

*** End of the template - remove these template lines ***



-- Package-specific info:

-- apt-config dump --

APT "";
APT::Architecture "amd64";
APT::Build-Essential "";
APT::Build-Essential:: "build-essential";
APT::Install-Recommends "true";
APT::Install-Suggests "0";
APT::Sandbox "";
APT::Sandbox::User "_apt";
APT::Authentication "";
APT::Authentication::TrustCDROM "true";
APT::NeverAutoRemove "";
APT::NeverAutoRemove:: "^firmware-linux.*";
APT::NeverAutoRemove:: "^linux-firmware$";
APT::NeverAutoRemove:: "^linux-image-3\.16\.0-4-amd64$";
APT::NeverAutoRemove:: "^linux-image-4\.9\.0-3-amd64$";
APT::NeverAutoRemove:: "^linux-headers-3\.16\.0-4-amd64$";
APT::NeverAutoRemove:: "^linux-headers-4\.9\.0-3-amd64$";
APT::NeverAutoRemove:: "^linux-image-extra-3\.16\.0-4-amd64$";
APT::NeverAutoRemove:: "^linux-image-extra-4\.9\.0-3-amd64$";
APT::NeverAutoRemove:: "^linux-signed-image-3\.16\.0-4-amd64$";
APT::NeverAutoRemove:: "^linux-signed-image-4\.9\.0-3-amd64$";
APT::NeverAutoRemove:: "^kfreebsd-image-3\.16\.0-4-amd64$";
APT::NeverAutoRemove:: "^kfreebsd-image-4\.9\.0-3-amd64$";
APT::NeverAutoRemove:: "^kfreebsd-headers-3\.16\.0-4-amd64$";
APT::NeverAutoRemove:: "^kfreebsd-headers-4\.9\.0-3-amd64$";
APT::NeverAutoRemove:: "^gnumach-image-3\.16\.0-4-amd64$";
APT::NeverAutoRemove:: "^gnumach-image-4\.9\.0-3-amd64$";
APT::NeverAutoRemove:: "^.*-modules-3\.16\.0-4-amd64$";
APT::NeverAutoRemove:: "^.*-modules-4\.9\.0-3-amd64$";
APT::NeverAutoRemove:: "^.*-kernel-3\.16\.0-4-amd64$";
APT::NeverAutoRemove:: "^.*-kernel-4\.9\.0-3-amd64$";
APT::NeverAutoRemove:: "^linux-backports-modules-.*-3\.16\.0-4-amd64$";
APT::NeverAutoRemove:: "^linux-backports-modules-.*-4\.9\.0-3-amd64$";
APT::NeverAutoRemove:: "^linux-tools-3\.16\.0-4-amd64$";
APT::NeverAutoRemove:: "^linux-tools-4\.9\.0-3-amd64$";
APT::VersionedKernelPackages "";
APT::VersionedKernelPackages:: 

Bug#869740: debian-security-support: dpkg-reconfigure runs user-session from systemd

[Jakobus Schürz]

Package: debian-security-support
Version: 2017.06.02
Severity: normal

Dear Maintainer,

I recognized, that dpkg-reconfigure debian-security-support triggers a
systemd-service user@137.service (137 is the UID from the user
debian-security-support). 

I have one systemd --user service which updates and/or creates
xdg-user-dirs in the users home. So in /var/lib/debian-security-support/
Music, Documents, Videos and so on are created...

I found out, that in the maintainer-skript su seems to be used, which
triggers a PAM-session.

I got the information, that "runuser" is the better choice than "su" to
be used in the maintainerscripts.

Can you please think about using runuser than su in the
maintainer-skripts?

Jakob

-- System Information:
Debian Release: 9.1
  APT prefers stable
  APT policy: (990, 'stable'), (700, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.12.0-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), 
LANGUAGE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages debian-security-support depends on:
ii  adduser3.115
ii  debconf [debconf-2.0]  1.5.61
ii  gettext-base   0.19.8.1-2

debian-security-support recommends no packages.

debian-security-support suggests no packages.

-- debconf information:
* debian-security-support/ended:
  debian-security-support/earlyend:
* debian-security-support/limited:

Bug#869731: man-db: apropos does not work for directories found from PATH

[Colin Watson]

On Tue, Jul 25, 2017 at 11:53:45PM +0100, Reuben Thomas wrote:
> On 25 July 2017 at 23:49, Colin Watson  wrote:
> > On Tue, Jul 25, 2017 at 11:24:18PM +0100, Reuben Thomas wrote:
> > > I just noticed that man pages installed in ~/.local/share/man are
> > > not found by apropos. This appears to be because there’s no
> > > database for this directory. man finds the directory via the
> > > corresponding ~/.local/bin entry in PATH. It would be nice if
> > > apropos worked too.
> >
> > Have you tried just running mandb as your user?  That should create a
> > suitable database.
> 
> That's great, thanks. However, the beauty of man itself is that it just
> works.
> 
> mandb isn't automatically run when man pages are installed, so it doesn't.

I think it might be worth revisiting the change in man-db 2.4.2-3 to
turn off MAN_DB_CREATES, which means that man doesn't create databases
that doesn't already exist (once the database exists, man should
automatically keep it up to date, although other tools such as apropos
won't necessarily).  I made that change in response to a variety of
bugs, so it can't be simply reverted; but that was way back in 2003
before a great deal of other improvements, so perhaps there are better
ways to address those bugs now.

> > Since a workaround is to use man -K, how about defaulting -k to try
> > > the -K method where no database or whatis file is found?
> >
> > -K searches rather a lot more of the page text than -k does, though, so
> > will often give dramatically different results.
> 
> In this case, it would simply give some results (only being run on
> directories on which otherwise man would give up), which, I submit, is
> better than no results.

Fair, but I think it would be better to fix the problem properly
instead, since man-db does have at least part of the internal tooling
required to do so.

-- 
Colin Watson   [cjwat...@debian.org]

Bug#869737: RFS: python-agate-excel/0.2.1-3

[Ghislain Vaillant]

Package: sponsorship-requests
Severity: normal

Dear mentors,

I am looking for a sponsor for the following package:

* Package name: python-agate-excel
  Version : 0.2.1-3
  Upstream Author : Christopher Groskopf
* URL : https://github.com/wireservice/agate-excel
* License : Expat
  Section : python

Please check out the package by visiting the following URL:

  https://anonscm.debian.org/git/python-modules/packages/python-agate-excel.git

Changes since the last upload:

  * Bump standards version to 4.0.0, no changes required
  * Build the docs using the upstream Makefile
  * Mark doc package multiarch foreign
  * Release to unstable

Regards,
Ghis

Bug#869739: RFS: python-agate-sql/0.5.2-2

[Ghislain Vaillant]

Package: sponsorship-requests
Severity: normal

Dear mentors,

I am looking for a sponsor for the following package:

* Package name: python-agate-sql
  Version : 0.5.2-2
  Upstream Author : Christopher Groskopf
* URL : https://github.com/wireservice/agate-sql
* License : Expat
  Section : python

Please check out the package by visiting the following URL:

  https://anonscm.debian.org/git/python-modules/packages/python-agate-sql.git

Changes since the last upload:

  * Bump standards version to 4.0.0, no changes required
  * Build the docs using the upstream Makefile
  * Mark doc package multiarch foreign
  * Release to unstable

Regards,
Ghis

Bug#869736: libgmime-3.0-0: infinite loop when parsing malformed address

[Jakub Wilk]

Package: libgmime-3.0-0
Version: 3.0.1-2
Tags: security

GMime falls into infinite loop when parsing some malformed addresses.
To reproduce, rebuild the package from source and run test-parser against the 
attached mailbox:


  $ gzip -d infloop.mbox.gz
  $ tests/test-parser infloop.mbox

  Testing MIME parser...

  [... eats 100% CPU forever ...]

Backtrace:

#0  0xf7f64887 in g_mime_skip_cfws (in=0xd3f8) at gmime-parse-utils.c:184
#1  0xf7f64e73 in decode_subliteral (domain=0x56565690, in=0xd3f4) at 
gmime-parse-utils.c:357
#2  0xf7f64e73 in decode_domain_literal (domain=0x56565690, in=) 
at gmime-parse-utils.c:375
#3  0xf7f64e73 in g_mime_decode_domain (in=0xd474, domain=0x56565690) at 
gmime-parse-utils.c:415
#4  0xf7f7be4d in decode_route (in=0xd46c) at internet-address.c:1412
#5  0xf7f7be4d in mailbox_parse (address=, name=0x56567978 
"", in=0xd468, options=0x5655f5c0) at internet-address.c:1708
#6  0xf7f7be4d in address_parse (flags=ALLOW_ANY, address=, 
charset=0xd460, in=0xd464, options=0x5655f5c0) at internet-address.c:2043
#7  0xf7f7be4d in address_list_parse (list=list@entry=0x5655f820 
[InternetAddressList], options=options@entry=0x5655f5c0, 
in=in@entry=0xd4b8, is_group=0) at internet-address.c:2078
#8  0xf7f7cfda in address_list_parse (is_group=0, in=, 
options=0x5655f5c0, list=0x5655f820 [InternetAddressList]) at internet-address.c:2064
#9  0xf7f7cfda in internet_address_list_parse (options=0x5655f5c0, str=0x56567890 
"<@[\t(") at internet-address.c:2129
#10 0xf7f5bd5c in message_update_addresses (message=message@entry=0x5655a358 
[GMimeMessage], options=0x5655f5c0, options@entry=0xf7f5c520 , 
type=GMIME_ADDRESS_TYPE_FROM) at gmime-message.c:288
#11 0xf7f5c034 in process_header (object=object@entry=0x5655a358 
[GMimeMessage], header=0x5655a358 [GMimeMessage], header@entry=0x56567a00 
[GMimeHeader]) at gmime-message.c:330
#12 0xf7f5c10f in message_header_added (object=0x5655a358 [GMimeMessage], 
header=0x56567a00 [GMimeHeader]) at gmime-message.c:362
#13 0xf7f50ac3 in g_mime_event_emit (event=0x5655e7d8, args=0xd574) at 
gmime-events.c:221
#14 0xf7f5a5b2 in _g_mime_header_list_append (headers=0x56566c40 [GMimeHeaderList], name=0x56566b60 
"From", raw_name=0x565655f0 "From", raw_value=0x56566b50 "<@[\t(", offset=6) at 
gmime-header.c:1196
#15 0xf7f619e0 in _g_mime_object_append_header (object=, header=0x56566b60 "From", 
raw_name=0x565655f0 "From", raw_value=0x56566b50 "<@[\t(", offset=6) at gmime-object.c:848
#16 0xf7f684da in parser_construct_message (options=0x0, parser=0x56565600 
[GMimeParser]) at gmime-parser.c:1999
#17 0xf7f684da in g_mime_parser_construct_message (parser=0x56565600 
[GMimeParser], options=0x0) at gmime-parser.c:2044
#18 0x56555f5d in test_parser (stream=) at test-parser.c:170
#19 0x56555f5d in main (argc=2, argv=0xd704) at test-parser.c:268

Found using American Fuzzy Lop:
http://lcamtuf.coredump.cx/afl/

-- System Information:
Architecture: i386

Versions of packages libgmime-3.0-0 depends on:
ii  libassuan0 2.4.3-2
ii  libc6  2.24-12
ii  libglib2.0-0   2.52.3-1
ii  libgpg-error0  1.27-3
ii  libgpgme11 1.8.0-3+b3
ii  zlib1g 1:1.2.8.dfsg-5

--
Jakub Wilk


infloop.mbox.gz
Description: application/gzip

Bug#869738: Kill off db2html and html-control

[Don Armstrong]

Package: debbugs
Severity: normal

Remove db2html and html-control and add in appropriate suggested rewrite
rules like this:

RewriteRule ^/db/\d+/(\d+)\.html /cgi-bin/bugreport.cgi?bug=$1 [L,R]
RewriteRule ^/db/si/(pending|forwarded|done)(\w+)\.html 
/cgi-bin/pkgreport.cgi?include=pending:$1;severity=$2 [L,R]

in the example apache configuration file.


-- 
Don Armstrong  https://www.donarmstrong.com

Our days are precious, but we gladly see them going
If in their place we find a thing more precious growing
A rare, exotic plant, our gardener's heart delighting
A child whom we are teaching, a booklet we are writing
 -- Frederick Rükert _Wisdom of the Brahmans_ 
 [Hermann Hesse _Glass Bead Game_]

Bug#869731: man-db: apropos does not work for directories found from PATH

[Reuben Thomas]

On 25 July 2017 at 23:49, Colin Watson  wrote:

> On Tue, Jul 25, 2017 at 11:24:18PM +0100, Reuben Thomas wrote:
> > I just noticed that man pages installed in ~/.local/share/man are not
> found
> > by apropos. This appears to be because there’s no database for this
> > directory. man finds the directory via the corresponding ~/.local/bin
> entry
> > in PATH. It would be nice if apropos worked too.
>
> Have you tried just running mandb as your user?  That should create a
> suitable database.
>

​That's great, thanks.​ However, the beauty of man itself is that it just
works.

mandb isn't automatically run when man pages are installed, so it doesn't.

​I can get nearly as good a result by adding a user cron job that runs
mandb daily (and I'll do that, because I'll forget about this problem!),
but that's still not as good as the way man simply works without any action
on my part.

> Since a workaround is to use man -K, how about defaulting -k to try
> > the -K method where no database or whatis file is found?
>
> -K searches rather a lot more of the page text than -k does, though, so
> will often give dramatically different results.
>

​In this case, it would simply give some results (only being run on
directories on which otherwise man would give up), which, I submit, is
better than no results.

-- 
https://rrt.sc3d.org 

Bug#869735: libjson-c2 static library (libjson-c.a) is created using the wrong object files.

[Alan Amaral]

Package: libjson-c2
Source: libjson-c2
Version: 0.11-4ubuntu2

I'm working on a cross platform project that is using libjson-c2 and I wanted 
to try to statically
link the library to see if I could avoid shipping multiple deb packages for, 
for example, 16.04 and
17.04, where the libraries are different (libjson-c2 vs libjson-c3).  What I 
found was that I couldn't
link with the static library libjson-c.a.  When I tried I got the following 
error:

cc   -pie -fPIE -z relro -z now -o myapp myapp.o -static -ljson-c
/usr/bin/ld: /usr/lib/gcc/x86_64-linux-gnu/5/crtbeginT.o: relocation 
R_X86_64_32 against `__TMC_END__' can not be used when making a shared object; 
recompile with -fPIC
/usr/lib/gcc/x86_64-linux-gnu/5/crtbeginT.o: error adding symbols: Bad value
collect2: error: ld returned 1 exit status
Makefile:89: recipe for target 'myapp' failed

I downloaded the package sources and found that the .c files are being compiled 
twice, once without
-fPIC, with the resultant .o files in the top level directory, and once with 
-fPIC, with the resultant
.o files deposited in the .libs directory, which is where the .a is created. 
However, the .a is NOT
created with the .libs/*.o files, but the top level .o files, which are NOT 
created with -fPIC.
See the following lines from the build log:

libtool: link: (cd ".libs" && rm -f "libjson-c.so.2" && ln -s 
"libjson-c.so.2.0.0" "libjson-c.so.2")
libtool: link: (cd ".libs" && rm -f "libjson-c.so" && ln -s 
"libjson-c.so.2.0.0" "libjson-c.so")
libtool: link: ar cru .libs/libjson-c.a  arraylist.o debug.o json_c_version.o 
json_object.o json_object_iterator.o json_tokener.o json_util.o linkhash.o 
printbuf.o random_seed.o
libtool: link: ranlib .libs/libjson-c.a

Note that the library is .libs/libjson-c.a but the .o files don't have the 
.libs prefix.  If I cd into
the .libs directory and execute these commands:

ar cru libjson-c.a  arraylist.o debug.o json_c_version.o json_object.o 
json_object_iterator.o json_tokener.o json_util.o linkhash.o printbuf.o 
random_seed.o
ranlib libjson-c.a

and then link with the resultant library everything works.  I haven't been able 
to figure out exactly
what the fix for this problem is.

The following is the information for both the installed package and the source 
package that I've been
working with.

$ dpkg --status libjson-c2
Package: libjson-c2
Status: install ok installed
Priority: extra
Section: libs
Installed-Size: 67
Maintainer: Ubuntu Developers 
>
Architecture: amd64
Multi-Arch: same
Source: json-c
Version: 0.11-4ubuntu2
Depends: libc6 (>= 2.14)
Description: JSON manipulation library - shared library
 This library allows you to easily construct JSON objects in C,
 output them as JSON formatted strings and parse JSON formatted
 strings back into the C representation of JSON objects.
Homepage: https://github.com/json-c/json-c/wiki
Original-Maintainer: fabien boucher 
>



Source package info:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 3.0 (quilt)
Source: json-c
Binary: libjson-c2, libjson-c-dev, libjson-c2-dbg, libjson-c-doc, libjson0-dev, 
libjson0
Architecture: any all
Version: 0.11-4ubuntu2
Maintainer: Ubuntu Developers 
>
Uploaders: Ond�~Yej Surý >
Homepage: https://github.com/json-c/json-c/wiki
Standards-Version: 3.9.3.0
Vcs-Browser: http://anonscm.debian.org/?p=collab-maint/json-c.git;a=summary
Vcs-Git: git://anonscm.debian.org/git/collab-maint/json-c
Build-Depends: debhelper (>= 9), dh-exec, dh-autoreconf
Package-List:
 libjson-c-dev deb libdevel extra arch=any
 libjson-c-doc deb doc extra arch=all
 libjson-c2 deb libs extra arch=any
 libjson-c2-dbg deb debug extra arch=any
 libjson0 deb oldlibs extra arch=any
 libjson0-dev deb oldlibs extra arch=any
Checksums-Sha1:
 5d0377d2cc4a1af324d5aeb5b63032d1d026aacd 557263 json-c_0.11.orig.tar.gz
 c93b8000bc69549bf708de0073f0fcae0648c7af 273884 
json-c_0.11-4ubuntu2.debian.tar.xz
Checksums-Sha256:
 28dfc65145dc0d4df1dfe7701ac173c4e5f9347176c8983edbfac9149494448c 557263 
json-c_0.11.orig.tar.gz
 96cce11fbf46e57c5b2674922344738c6f2ea1fa0af6e91b3576eb9f1dbd51d0 273884 
json-c_0.11-4ubuntu2.debian.tar.xz
Files:
 aa02367d2f7a830bf1e3376f77881e98 557263 json-c_0.11.orig.tar.gz
 f88770f98c00242150f189695af295a4 273884 json-c_0.11-4ubuntu2.debian.tar.xz
Original-Maintainer: fabien boucher 
>

-BEGIN PGP SIGNATURE-
Version: GnuPG v1

iEYEARECAAYFAlSz8/4ACgkQDTAwc5ER+zVkygCfdx9sPn9kvEB5p2Iagg4JSAx4
dRgAoICbAWoQ6td7VAn7oN/OAVqyt9xR
=OtuB
-END PGP SIGNATURE-

uname -a
Linux desktop 4.4.0-28-generic #47-Ubuntu SMP Fri Jun 24 10:09:13 UTC 2016 
x86_64 x86_64 x86_64 GNU/Linux

Bug#869731: man-db: apropos does not work for directories found from PATH

[Colin Watson]

On Tue, Jul 25, 2017 at 11:24:18PM +0100, Reuben Thomas wrote:
> I just noticed that man pages installed in ~/.local/share/man are not found
> by apropos. This appears to be because there’s no database for this
> directory. man finds the directory via the corresponding ~/.local/bin entry
> in PATH. It would be nice if apropos worked too.

Have you tried just running mandb as your user?  That should create a
suitable database.

> Since a workaround is to use man -K, how about defaulting -k to try
> the -K method where no database or whatis file is found?

-K searches rather a lot more of the page text than -k does, though, so
will often give dramatically different results.

-- 
Colin Watson   [cjwat...@debian.org]

Bug#869734: RFS: python-agate-dbf/0.2.0-2

[Ghislain Vaillant]

Package: sponsorship-requests
Severity: normal

Dear mentors,

I am looking for a sponsor for the following package:

* Package name: python-agate-dbf
  Version : 0.2.0-2
  Upstream Author : Christopher Groskopf
* URL : https://github.com/wireservice/agate-dbf
* License : Expat
  Section : python

Please check out the package by visiting the following URL:

  https://anonscm.debian.org/git/python-modules/packages/python-agate-dbf.git

Changes since the last upload:

  * Bump standards version to 4.0.0, no changes required
  * Build the
docs using the upstream Makefile
  * Mark doc package multiarch foreign
 
* Release to unstable

Regards,
Ghis

Bug#869373: Bug#869122: perl: 5.26 FTBFS on hppa: broken miniperl?

[John David Anglin]

On 2017-07-25, at 4:34 PM, John David Anglin wrote:

> -fPIC is recognized if it is last option.  Maybe it has to come after 
> -fno-pie?

-fno-pie isn't a documented gcc option but it essentially says don't generate 
position
independent code for a position independent executable.  That's incompatible
with -fPIC on hppa.  PIE and PIC code are the same on hppa.

The is compile command for App.c:

hppa-linux-gnu-gcc -c -I/home/dave/debian/libembperl-perl/libembperl-perl-2.5.0 
-I/usr/include/apache2 -I/usr/include/apache2/regex 
-I/usr/include/apache2/os/unix -I/usr/include/apr-1.0 -I/usr/include/libxml2 
-I/usr/include/libxml2 
-I/home/dave/debian/libembperl-perl/libembperl-perl-2.5.0/xs 
-I/usr/include/apache2 -I/usr/include/apache2/regex 
-I/usr/include/apache2/os/unix -I/usr/include/apr-1.0 -I/usr/include/libxml2 
-I/usr/include/libxml2 
-I/home/dave/debian/libembperl-perl/libembperl-perl-2.5.0/xs  
-I/home/dave/debian/libembperl-perl/libembperl-perl-2.5.0 
-I/usr/include/apache2 -I/usr/include/apache2/regex 
-I/usr/include/apache2/os/unix -I/usr/include/apr-1.0 -I/usr/include/libxml2 
-I/usr/include/libxml2 
-I/home/dave/debian/libembperl-perl/libembperl-perl-2.5.0/xs -D_REENTRANT 
-D_GNU_SOURCE -DDEBIAN -O0 -fno-pie -fwrapv -fno-strict-aliasing -pipe 
-I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 
-I/usr/lib/hppa-linux-gnu/perl/5.26/CORE -DMOD_PERL -DMP_COMPAT_1X -g -O2 
-fdebug-prefix-map=/build/libapache2-mod-perl2-kV4Khk/libapache2-mod-perl2-2.0.10=.
 -Wformat -Werror=format-security -Wall -fgnu89-inline -DLINUX 
-D_LARGEFILE64_SOURCE  -g -O2 
-fdebug-prefix-map=/home/dave/debian/libembperl-perl/libembperl-perl-2.5.0=. 
-Wformat -Werror=format-security -Wdate-time -D_FORTIFY_SOURCE=2   
-DVERSION=\"2.5.0\" -DXS_VERSION=\"2.5.0\" -fPIC 
"-I/usr/lib/hppa-linux-gnu/perl/5.26/CORE" -DAPACHE -DAPACHE2 -DEP2 -DLIBXSLT   
-D_REENTRANT -D_GNU_SOURCE -DDEBIAN -O0 -fno-pie -fwrapv -fno-strict-aliasing 
-pipe -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 
-I/usr/lib/hppa-linux-gnu/perl/5.26/CORE -DMOD_PERL -DMP_COMPAT_1X -g -O2 
-fdebug-prefix-map=/build/libapache2-mod-perl2-kV4Khk/libapache2-mod-perl2-2.0.10=.
 -Wformat -Werror=format-security -Wall -fgnu89-inline -DLINUX 
-D_LARGEFILE64_SOURCE -DAPACHE -DAPACHE2 -DEP2 -DLIBXSLT   -DAPACHE -DAPACHE2 
-DEP2 -DLIBXSLT   -D_REENTRANT -D_GNU_SOURCE -DDEBIAN -O0 -fno-pie -fwrapv 
-fno-strict-aliasing -pipe -I/usr/local/include -D_LARGEFILE_SOURCE 
-D_FILE_OFFSET_BITS=64 -I/usr/lib/hppa-linux-gnu/perl/5.26/CORE -DMOD_PERL 
-DMP_COMPAT_1X -g -O2 
-fdebug-prefix-map=/build/libapache2-mod-perl2-kV4Khk/libapache2-mod-perl2-2.0.10=.
 -Wformat -Werror=format-security -Wall -fgnu89-inline -DLINUX 
-D_LARGEFILE64_SOURCE App.c

A -fno-pie option comes after the -fPIC option.

Dave
--
John David Anglin   dave.ang...@bell.net

Bug#869733: ispell.1X: Fix some formatting and textual matters

[Bjarni Ingi Gislason]

Package: ispell
Version: 3.4.00-6
Severity: minor
Tags: patch

Dear Maintainer (Debian and upstream),

   * What led up to the situation?

Saw a word repeted

###

Input file is ispell.1X

  Remove space at end of lines.

521:.I ispell 
795:then the line contains a '+', a space, and the root word. 
1443:The 
1458:normally strips 
1546:Code for file inclusion under the 

  Fix warning from man/groff

:254: warning: macro `..' not defined

chk_manuals: Output is from: test-groff -Tlatin1 -b -e -mandoc -rF0 -t -w w -z 


  Change - to \(en if it is
a numeric range

ispell.1X:1036:.BR \-e [ 1-5 ],
ispell.1X:1675:Table-driven multi-lingual version by Geoff Kuenning, 1987-88.

  Protect . if not end of sentence

563:thus, to use a dictionary in the local directory "-d ./xxx.hash" must
853:&   : , , ..., , ...
855:?  0 : , , ...
862:command "echo 'frqy refries | ispell -a -m -d ./test.hash":


  Use big ascii tilde "\(ti" instead of a small one "~".

125:.\" Document the changes to the +/-/~ commands and the -T switch.
892:of '*', '&', '@', '+', '-', '~', '#', '!', '%', '`', or '^'.
920:the '~' command must be used to do this.
921:A line starting with '~' causes
943:following the filename on a '~' line.
960:.IP ~

  Change a two-fonts macro to an one-font macro.

569:.IR /dev/null


  Use (in)valid instead of "(il)legal".

355:thinks that these characters are legal ISO Latin-1 on your system.
390:Consider run-together words as legal compounds.
408:Specify length of words that are always legal.
508:legal compounds, so long as both components are in the dictionary, and
546:generate guesses that produce illegal words.
570:is illegal, because the dictionary contains the affix table.
649:always accepts as legal.
652:will accept all 1-character words as legal, which is equivalent to
813:(illegal) affixes to a known root,
830:word unless such capitalization is illegal;
1049:Some of the root words will be illegal and must be filtered from the
1286:Only affixes that generate legal roots (found in the original input)

  Move a full stop (period) and a comma outside of a
quoted text.

653:specifying "\fB\-W 1\fR."
657:of length, you might want to specify "\fB\-W 0\fR."

  Change a HYPHEN-MINUS (code 0x55, 2D) to a minus if it
matches " -[:alpha:]" or \(aq-[:alpha:]

353:character set will always be displayed in the style of "cat -v", even if
563:thus, to use a dictionary in the local directory "-d ./xxx.hash" must
820:[prefix+] root [-prefix] [-suffix] [+suffix]
862:command "echo 'frqy refries | ispell -a -m -d ./test.hash":
1057:echo BOTHER | ispell -c
1076:echo BOTH/R | ispell -e
1642:("Cooperative" is defined as accepting the undocumented -T switch).

  Find a repeated word

! 1189 --> the

  Adjust space between sentences or protect the indicator.

483:leaves a backup (!!BAKEXT!!) file for each input file.
484:The !!BAKEXT!! file contains
486:the !!BAKEXT!! file may be left for recovery purposes even with the
1618:will unlink any existing !!BAKEXT!! file.
1670:R. E. Gorin in 1971,
1671:and later revised by W. E. Matson (1974) and W. B. Ackerman (1978).

  Use words for units, not symbols in a running text.

##

  The patch is in the attachment.


-- System Information:
Debian Release: buster/sid
  APT prefers proposed-updates
  APT policy: (500, 'proposed-updates'), (500, 'testing'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.30-2u2 (SMP w/2 CPU cores)
Locale: LANG=is_IS.iso88591, LC_CTYPE=is_IS.iso88591 (charmap=ISO-8859-1), 
LANGUAGE=is_IS.iso88591 (charmap=ISO-8859-1)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages ispell depends on:
ii  libc6  2.24-12
ii  libtinfo5  6.0+20170715-2

Versions of packages ispell recommends:
ii  iamerican [ispell-dictionary]  3.4.00-6
ii  ibritish [ispell-dictionary]   3.4.00-6
ii  ingerman [ispell-dictionary]   20161207-1
ii  wamerican [wordlist]   2017.01.22-1
ii  wngerman [wordlist]20161207-1

Versions of packages ispell suggests:
pn  spell  

-- no debconf information

-- 
Bjarni I. Gislason


ispell.1X.diff.gz
Description: GNU Zip compressed data

Bug#867115: smplayer crashes with "Error parsing option noquiet (option not found)"

[Alec Rose]

Hello,

This bug is reproducable for me with the same versions:

~$ dpkg -l mpv mplayer2 smplayer
Desired=Unknown/Install/Remove/Purge/Hold
|
Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend
|/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad)
||/ Name  Version Architecture
 Description
+++-=-===-===-===
ii  mplayer2  3:0.23.0-2  all
 transitional dummy package for mpv
ii  mpv   0.23.0-2+b2 amd64
 video player based on MPlayer/mplayer2
ii  smplayer  16.11.0~ds0-1   amd64
 Complete front-end for MPlayer and mpv

I'm using debian since Wheezy and have always dist-upgraded.

smplayer.log:
https://0bin.net/paste/ygFfwp6uhMXvnT2X#3cacMuqxJ+cFxkSFNO1SQJtXzqw5gRrKsiqryrIkLb7
mpv.log:
https://0bin.net/paste/YZtBfZrSwJOUNUal#uj4UDN8sUgRqaJ3er6rmYaJENAOFBRcRX0nUVApO-B9

The file can be played just fine with mpv directly.
(But a terrible way to find out that gnome-mplayer is botched up to
since Stretch ... But that's for another bug report/maintainer.)

Best
Alec


0x9E675B46.asc
Description: application/pgp-keys


signature.asc
Description: OpenPGP digital signature

Bug#869029: simutrans: Simutrans has no sound

[Markus Koschany]

Control: tags -1 confirmed
Control: severity -1 important

Am 20.07.2017 um 07:54 schrieb Julius Andrikonis:
> Package: simutrans
> Version: 120.1.3+repack-3
> Severity: important
> Tags: upstream
> 
> Dear Maintainer,
> 
> simutrans start with no sound. I simply run simutrans with no parameters and
> choose the pakset. No sound is heard and the sound options menu displays "1 -
> Invalid MIDI index!". If I start the application from command line, I see 
> "Midi
> disabled ..." logged out. I've also ran simutrans with -degug 5 and saw no
> sound related errors (except the mentioned "Midi disabled"). I could provide
> this log.
> 
> This bug appeared after I upgraded my Debian from Jessie to Stretch. Thinking
> it might be related to this update, I installed simutrans 111.2.2-1 (which is
> the newest version in Jessie) from official Jessie repositories to my Stretch
> system, and the sound was working again. However, if I install 
> 120.1.3+repack-3
> (current stable version), I have no sound.
> 
> Thanks in advance,
> Julius

Hello and thanks for reporting!

I confirm sound is not working as it should be in simutrans. Maybe there
was a new compile time option for sound and we just missed it or some
files are missing or are not copied to the right location. This requires
more investigation.

Regards,

Markus



signature.asc
Description: OpenPGP digital signature

Bug#869732: Upgrading postfix

[Chris AtLee]

I was able to upgrade via version 2.11.3-1+deb8u2 first, and then to
3.1.4-7.

Bug#869732: postfix: Can't upgrade from wheezy to stretch

[Chris AtLee]

Package: postfix
Version: 2.9.6-2
Severity: normal

Dear Maintainer,

I am trying to upgrade my system from wheezy to stretch. I encountered
problems when upgrading postfix:

Preconfiguring packages ...
postconf: invalid option -- 'x'
postconf: fatal: usage: postconf [-a (server SASL types)] [-A (client SASL 
types)] [-b (bounce templates)] [-c config_dir] [-C param_class] [-d 
(defaults)] [-e (edit)] [-f (fold lines)] [-# (comment-out)] [-h (no names)] 
[-l (lock types)] [-m (map types)] [-M (master.cf)] [-n (non-defaults)] [-v] 
[name...]
Use of uninitialized value $destinations in scalar chomp at 
/tmp/postfix.config.7URAPN line 221.
Use of uninitialized value $_[1] in join or string at 
/usr/share/perl5/Debconf/Client/ConfModule.pm line 121.

I believe this is fallout from bug 848686 where '-x' was added to the 
preinstallation hook.

-- System Information:
Debian Release: 9.1
  APT prefers stable
  APT policy: (800, 'stable')
Architecture: i386 (x86_64)

Kernel: Linux 4.9.36-x86_64-linode85 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages postfix depends on:
ii  adduser3.115
ii  cpio   2.11+dfsg-6
ii  debconf [debconf-2.0]  1.5.61
ii  dpkg   1.18.24
ii  libc6  2.24-11+deb9u1
ii  libdb5.1   5.1.29-5
ii  libsasl2-2 2.1.27~101-g0780600+dfsg-3
ii  libsqlite3-0   3.16.2-5
ii  libssl1.0.01.0.1t-1+deb7u2
ii  lsb-base   9.20161125
ii  netbase5.4
ii  ssl-cert   1.0.39

Versions of packages postfix recommends:
ii  python  2.7.13-2

Versions of packages postfix suggests:
ii  bsd-mailx [mail-reader]  8.1.2-0.20160123cvs-4
pn  dovecot-common   
ii  libsasl2-modules 2.1.27~101-g0780600+dfsg-3
ii  mutt [mail-reader]   1.7.2-1
pn  postfix-cdb  
pn  postfix-doc  
pn  postfix-ldap 
pn  postfix-mysql
pn  postfix-pcre 
pn  postfix-pgsql
ii  procmail 3.22-25+b1
pn  resolvconf   
pn  sasl2-bin
pn  ufw  

-- debconf information excluded

Bug#848174: mousetrap: command line parameters not working properly

[Markus Koschany]

Control: tags -1 -moreinfo +confirmed

Am 20.07.2017 um 19:29 schrieb Andrej Mernik:
[...]
> Hello,
> 
> the game is acting really weird on this. Some examples (yours included) do 
> not 
> cause infinite shield. Here are some that do:
> 
> mousetrap --geoweoiwei
> mousetrap --dhdh
> mousetrap --8bdhwd
> mousetrap --php
> mousetrap --a
> 
> I can reproduce this on Stretch 1.0c-1+b3
> 
> Best Regards,
> Andrej

Hello,

I could reproduce it with mousetrap --8bdhwd but failed with the two
commands before. I don't believe this issue is caused by passing random
parameters to mousetrap because I didn't spot anything unusual in
src/mousetrap.c. There you can find this code for example

/* Cheat? */
for ( int i = 1; i < argc; i++ )
{
if (strcmp(argv[i],"--cheat")== 0 )
 cheat += 1;
if (strcmp(argv[i],"--no-sound")== 0 )
 g_silent += 1;
if (strcmp(argv[i],"--silent")== 0 )
 g_silent += 1;
}

All variables are initialized and the comparisons look ok.

But..

When I search for "shield" I see this:

/*
* Work out how long the time-based shield will last for.
*/
int percentageShield = 100 - (int)((sdlgt-dtime) / 40);
if ( percentageShield < 0 )
percentageShield = 0;

I have no idea where sdlgt-dtime is coming from but it is not
initialized and this might cause this seemingly weird behavior. I need
to investigate this later.

Regards,

Markus






signature.asc
Description: OpenPGP digital signature

Bug#869731: man-db: apropos does not work for directories found from PATH

[Reuben Thomas]

Package: man-db
Version: 2.7.5-1
Severity: normal

I just noticed that man pages installed in ~/.local/share/man are not found
by apropos. This appears to be because there’s no database for this
directory. man finds the directory via the corresponding ~/.local/bin entry
in PATH. It would be nice if apropos worked too. Since a workaround is to
use man -K, how about defaulting -k to try the -K method where no database
or whatis file is found?

-- System Information:
Debian Release: stretch/sid
  APT prefers xenial-updates
  APT policy: (500, 'xenial-updates'), (500, 'xenial-security'), (500, 
'xenial'), (100, 'xenial-backports')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.8.0-58-generic (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages man-db depends on:
ii  bsdmainutils   9.0.6ubuntu3
ii  debconf [debconf-2.0]  1.5.58ubuntu1
ii  dpkg   1.18.4ubuntu1.2
ii  groff-base 1.22.3-7
ii  libc6  2.23-0ubuntu9
ii  libgdbm3   1.8.3-13.1
ii  libpipeline1   1.4.1-2
ii  zlib1g 1:1.2.8.dfsg-2ubuntu4.1

man-db recommends no packages.

Versions of packages man-db suggests:
ii  chromium-browser [www-browser]  59.0.3071.109-0ubuntu0.16.04.1291
ii  firefox [www-browser]   54.0+build3-0ubuntu0.16.04.1
ii  groff   1.22.3-7
ii  less481-2.1ubuntu0.2
ii  links [www-browser] 2.12-1
ii  lynx [www-browser]  2.8.9dev8-4ubuntu1
ii  w3m [www-browser]   0.5.3-26ubuntu0.1

-- debconf information:
  man-db/install-setuid: false
  man-db/auto-update: true

Bug#869730: ITP: featherpad -- FeatherPad is a lightweight Qt5 plain-text editor for Linux

[Alf Gaida]

Package: wnpp
Severity: wishlist
Owner: Alf Gaida 

* Package name: featherpad
  Version : 0.6
  Upstream Author : Tsu Jan 
* URL : https://github.com/tsujan/FeatherPad
* License : GPL
  Programming Lang: C++
  Description : FeatherPad is a lightweight Qt5 plain-text editor for Linux

FeatherPad (by Pedram Pourang, a.k.a. Tsu Jan ) is a 
lightweight Qt5 plain-text 
editor for Linux. It is independent of any desktop environment and has:

* Drag-and-drop support, including tab detachment and attachment;
* X11 virtual desktop awareness (using tabs on current desktop but opening a 
new window on another);
* An optionally permanent search-bar with a different search entry for each tab;
* Instant highlighting of found matches when searching;
* A docked window for text replacement;
* Support for showing line numbers and jumping to a specific line;
* Automatic detection of text encoding as far as possible and optional saving 
with encoding;
* Syntax highlighting for common programming languages;
* Printing;
* Text zooming;
* Appropriate but non-interrupting prompts;

 - Lightweight Qt Editor, replacement for the more or less dead Juffed in LXQt
 - pkg-lxqt will maintain it 

Bug#868869: debian-installer should not recommend to change password periodically (and more)

[Brian Potkin]

On Tue 25 Jul 2017 at 23:22:19 +0200, Philipp Kern wrote:

> On 07/24/2017 12:38 PM, Hideki Yamane wrote:
> >  But it also makes administrator to remember it harder as its trade-off...
> >  (and they maybe choose easy password as a result). It's a not good idea
> >  to suggests to change root password periodically, IMO. It's not a best
> >  practice.
> 
> I'd say it's one of two things: If it's easy, make sure to change it
> periodically. If it's hard enough to withstand brute-force, you don't
> need to.
> 
> As I said: I'm totally with you that in a standard setup it'd great for
> that not to be necessary. Unfortunately the standard setup does not ship
> with the mitigating controls.

Do you (or anyone else) change the locks on your car or front door
at regular intervals? This is really the gist of the OP's report.
Poor passwords stay poor. Good passwords do not deteriorate over
time, so why change them? (Periodically changing one poor password
for another poor password is an interesting idea).

The question has been asked before; #656509.

  Christian PERRIER says:

Are you ready to handle the round of updates for over
sixty languages, for a very debatable and cosmetic change?

I am not, sorry.

  Cyril Brulebois says:

Neither am I, so I'll just close this bug report for now.

It is a nice debating point but I am inclined to go along with this
assessment when it comes to the installer. Nobody takes any notice
of the advice anyway and there are far more important things to
attend to. Let this report suffer the same fate as the previous one,

-- 
Brian.

Bug#869729: apache2: 'service apache2 restart' sometimes stops without restarting

[Benjamin Moody]

Package: apache2
Version: 2.4.10-10+deb8u10
Severity: normal

Dear Maintainer,

as the subject line says, sometimes running 'service apache2 restart'
fails to restart apache.  Instead, it *stops* apache without
restarting it, and fails to give any error message.

In addition, sometimes, *upgrading* the apache2 packages causes the
web server to be stopped without restarting.  In fact, I first noticed
this problem when I upgraded to (I think) version 2.4.10-10+deb8u10,
and only noticed a couple hours later that the web server wasn't
running for some reason.  So this seems to be a recent change.

It is not easy to reproduce this issue.  I just ran 'service apache2
restart' several times in a row, as well as reinstalling the packages
using 'apt-get install --reinstall apache2-bin apache2-utils
apache2-data apache2 apache2-mpm-event', and every time the web server
came back as expected.

(I don't know whether 'systemctl' has the same problem.  I manage a
number of heterogeneous systems and use 'service' out of habit.)

This is a heavily customized server with a bunch of weird stuff going
on in its configuration.  However, as far as I'm aware, there's
nothing about the apache configuration that *should* cause it to fail
- when I notice that apache is not running, I log in and run 'service
apache2 restart' again, and it works.


-- Package-specific info:

-- System Information:
Debian Release: 8.8
  APT prefers oldstable-updates
  APT policy: (500, 'oldstable-updates'), (500, 'oldstable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-4-amd64 (SMP w/16 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages apache2 depends on:
ii  apache2-bin2.4.10-10+deb8u10
ii  apache2-data   2.4.10-10+deb8u10
ii  apache2-utils  2.4.10-10+deb8u10
ii  dpkg   1.17.27
ii  lsb-base   4.1+Debian13+nmu1
ii  mime-support   3.58
ii  perl   5.20.2-3+deb8u7
ii  procps 2:3.3.9-9

Versions of packages apache2 recommends:
ii  ssl-cert  1.0.35

Versions of packages apache2 suggests:
pn  apache2-doc  
pn  apache2-suexec-pristine | apache2-suexec-custom  
ii  lynx-cur [www-browser]   2.8.9dev1-2+deb8u1
ii  w3m [www-browser]0.5.3-19+deb8u1

Versions of packages apache2-bin depends on:
ii  libapr1  1.5.1-3
ii  libaprutil1  1.5.4-1
ii  libaprutil1-dbd-mysql1.5.4-1
ii  libaprutil1-dbd-pgsql1.5.4-1
ii  libaprutil1-dbd-sqlite3  1.5.4-1
ii  libaprutil1-ldap 1.5.4-1
ii  libc62.19-18+deb8u10
ii  libldap-2.4-22.4.40+dfsg-1+deb8u3
ii  liblua5.1-0  5.1.5-7.1
ii  libpcre3 2:8.35-3.3+deb8u4
ii  libssl1.0.0  1.0.1t-1+deb8u6
ii  libxml2  2.9.1+dfsg1-5+deb8u4
ii  perl 5.20.2-3+deb8u7
ii  zlib1g   1:1.2.8.dfsg-2+b1

Versions of packages apache2-bin suggests:
pn  apache2-doc  
pn  apache2-suexec-pristine | apache2-suexec-custom  
ii  lynx-cur [www-browser]   2.8.9dev1-2+deb8u1
ii  w3m [www-browser]0.5.3-19+deb8u1

Versions of packages apache2 is related to:
ii  apache2  2.4.10-10+deb8u10
ii  apache2-bin  2.4.10-10+deb8u10

-- Configuration Files:
/etc/apache2/apache2.conf changed:
Mutex file:${APACHE_LOCK_DIR} default
PidFile ${APACHE_PID_FILE}
Timeout 300
KeepAlive On
MaxKeepAliveRequests 100
KeepAliveTimeout 5
User ${APACHE_RUN_USER}
Group ${APACHE_RUN_GROUP}
HostnameLookups Off
ErrorLog ${APACHE_LOG_DIR}/error.log
LogLevel warn
IncludeOptional mods-enabled/*.load
IncludeOptional mods-enabled/*.conf
Include ports.conf

Options FollowSymLinks
AllowOverride None
Require all denied


AllowOverride None
Require all granted


Options Indexes FollowSymLinks
AllowOverride None
Require all granted

AccessFileName .htaccess

Require all denied

LogFormat "%v:%p %h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" 
vhost_combined
LogFormat "%h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" 
combined
LogFormat "%h %l %u %t \"%r\" %>s %O" common
LogFormat "%{Referer}i -> %U" referer
LogFormat "%{User-agent}i" agent
IncludeOptional conf.d/*.conf

/etc/apache2/envvars changed:
unset HOME
if [ "${APACHE_CONFDIR##/etc/apache2-}" != "${APACHE_CONFDIR}" ] ; then
SUFFIX="-${APACHE_CONFDIR##/etc/apache2-}"
else
SUFFIX=
fi
export APACHE_RUN_USER=apache
export APACHE_RUN_GROUP=apache
export APACHE_PID_FILE=/var/run/apache2$SUFFIX.pid
export APACHE_RUN_DIR=/var/run/apache2$SUFFIX
export APACHE_LOCK_DIR=/var/lock/apache2$SUFFIX
export APACHE_LOG_DIR=/var/log/apache2$SUFFIX
export LANG=C
export LANG

/etc/apache2/mods-available/authn_dbd.load changed:
LoadModule auth_pgsql_module 

Bug#862305: transition: libwebp

[Jeff Breidenbach]

>Do the packages in
https://release.debian.org/transitions/html/auto-libwebp.html
>build fine against the new libwebpmux ?

There was a bug the libwep control file. I fixed that and uploaded
0.6.0-2 to experimental just now. Then I did some testing on AMD64 to
answer your question. Everything on the list (ffmpeg, freeimage, pillow,
vlc)
builds fine against libwebp 0.6.0-2.

Hoping to proceed with transition before I get distracted.

Bug#864572: openarena-server: consider to use StandardOutput=null in systemd service files

[Simon McVittie]

On Tue, 25 Jul 2017 at 23:50:24 +0200, Markus Koschany wrote:
> Am 24.07.2017 um 10:11 schrieb Simon McVittie:
> > We could maybe give the openarena-server wrapper script a
> > --logfile=LOGFILE option which would "exec >${logfile} 2>&1" before
> > running the actual server, and make the systemd units run with
> > "--logfile=/var/games/openarena-server/%i.oa/server.log" or
> > "--logfile=/var/log/openarena-server/%i/server.log" or something?
> > But then we'd need to implement at least simple log rotation (otherwise
> > whenever the server crashed, the log with crash details would
> > immediately be overwritten by the log for the restarted server).
> 
> Alright, if you don't like the /dev/null plan then this would be the
> next best option, although I'm pretty sure most output will be a
> duplicate of games.log.

Yeah - the Quake III Arena engine's approach to logging doesn't seem to
have been particularly well thought out, with a lot of messages only
going to stdout, but no built-in way to silence the ones that also go to
games.log.

> I'm just thinking that implementing the wrapper
> script option --logfile isn't really necessary because we can implement
> logging entirely in the service file
[...]
> ExecStart=/bin/sh -c '/usr/games/openarena-server +set com_homepath
> server.oa $DAEMON_OPTS +exec etc/openarena-server/server.cfg >
> /var/log/openarena-server/server.log 2>&1'

I think I'd prefer to put it in the wrapper script, since we already
have one.

S

Bug#869658: Debian 9.1 stretch: command 'sensors' freeze temporarily the whole system

[Aurelien Jarno]

control: severity -1 important
control: tag -1 + moreinfo

On 2017-07-25 14:09, Carmelo C wrote:
> Package: lm-sensors
> Version: 1:3.4.0-4
> Severity: critical
> Tags: security
> Justification: command sensors freeze temporarily the whole system Debian
> 9.1
> 
> OS: Debian GNU/Linux 9.1 (stretch) (debian-9.1.0-i386-netinst.iso)
> Graphic card: ATI Mobility Radeon HD 3450
> Driver: radeon open source
> 
> Binary firmware:
> amd64-microcode 3.20160316.3
> firmware-amd-graphics 20161130-3
> firmware-linux-nonfree 20161130-3
> firmware-misc-nonfree 20161130-3
> intel-microcode 3.20170707.1~deb9u1
> 
> xserver-xorg 1:7.7+19
> xserver-xorg-video-amdgpu 1.2.0-1+b1
> xserver-xorg-video-ati 1:7.8.0-1+b1
> xserver-xorg-video-radeon 1:7.8.0-1+b1
> 
> linux-image-4.9.0-3-686-pae 4.9.30-2+deb9u2
> linux-image-686-pae 4.9+80+deb9u1
> 
> 
> Hi, I installed the debian operating system from scratch.
> 
> I had to install the nonfree firmware for optimal screen resolution, also
> the gpu temperatures were high and I had to include in the grub the
> following line of code:
> GRUB_CMDLINE_LINUX_DEFAULT="radeon.dpm=1 radeon.hw_i2c=1"

Your issue is likely triggered by setting radeon.hw_i2c=1. Is it really
necessary to get your system working?

> The problem is when I start the 'sensors' command from the terminal, a
> whole system freeze about 6-7 seconds and then return the output.
> This prevents me from using the conky software that uses 'sensors' to read
> the temperatures and can not even start the 'watch sensors' command because
> it would cause the whole freeze.

lm-sensors just parses some file in /sys/class/hwmon, so the bug is
actually in the kernel. To identify the faulty kernel module (likely
related to radeon), could you please run the following command and send
the output to this bug report:

  strace -tt sensors

That will help to better identify the issue.

Thanks,
Aurelien

-- 
Aurelien Jarno  GPG: 4096R/1DDD8C9B
aurel...@aurel32.net http://www.aurel32.net

Bug#869630: game-data-packager: Please add support for Heroes of Might and Magic III

[Simon McVittie]

On Tue, 25 Jul 2017 at 22:46:46 +0100, Simon McVittie wrote:
> Someone would have to teach game_data_packager.build about cabextract
> (we haven't needed that yet)

Actually, no, we already have cabextract support, I just wasn't paying
attention.

We don't currently support skipping the first 130731 bytes, but perhaps
you don't actually need to do that anyway?

S

Bug#869728: Avoid a crash for mpc coder

[Bastien ROUCARIES]

Source: src:imagemagick
Version: 8:6.9.7.4+dfsg-12
Severity: serious
Tags: security upstream
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.8.9.9-5+deb8u9
control: found -1 8:6.7.7.10-5+deb7u14
control: found -1 8:6.7.7.10-5+deb7u4
forwarded:  
https://www.imagemagick.org/discourse-server/viewtopic.php?f=3=31438

Avoid a crash for mpc coder

Bug#869630: game-data-packager: Please add support for Heroes of Might and Magic III

[Simon McVittie]

On Tue, 25 Jul 2017 at 20:47:01 +0200, Johannes Schauer wrote:
> Quoting Simon McVittie (2017-07-25 09:01:45)
> > If there are files in "$dest_dir" that are edited at runtime, we will also
> > need to know which ones (compare the clean "$dest_dir" with the one you 
> > moved
> > out of the way). If there are files that you know are not strictly required
> > (the music?) we would also like to know about those.
> 
> I understand that g-d-p does not want to package files that are not needed at
> all but why does it need to know about optional "nice to have" files as well?

Sorry, I might have been unclear. The piece of information we really
want is: of the files you listed, which ones do you know to be optional?

g-d-p is aware of four categories of files: known and required;
known and optional; known and unwanted (rare, mostly only used for
known-to-be-obsolete versions of data files); and unknown/unwanted
(it will issue a warning if the unknown file resembles a known file
but doesn't match exactly, on the assumption that it might be a new
version that we need to be told about).

If a required file is missing, g-d-p will fail to create a package (but
it might automatically package a demo/shareware/cut-down version
instead, and it might still package the base game if the file was only
required for an expansion like Quake III Team Arena). If an optional
file is missing, g-d-p will still create the package (with less content!)
- we are not dogmatic about these packages being deterministic, because
that's a losing battle when some games have trivially-different versions
of the same file, like the subtle differences between different releases
of Unreal and the many equivalent versions of Doom.

Typically, optional files are used for things like READMEs and licenses,
which might be different or absent in some releases. If an identifiable
group of files are all optional (like maybe the music in HoMM3) we tend
to split it out into an "expansion" package, which is a separate binary
package. Each YAML file in data/ is analogous to a dpkg source package,
and can produce multiple binary packages if it needs to.

> > If there are several alternative versions of HoMM3, we will need similar
> > information for each one. If you have the GOG version but not the CD 
> > version,
> > or vice versa, then different people can submit the two sets of sizes and
> > hashes.
> 
> I own it on GOG and I have the CD version. But since the CD version is with my
> parents it will have to wait until I visit them again.

There's no urgency, but when you get a chance, it would be nice to
confirm what's in it.

> vcmi is already able to decode the original mp3 just fine. Converting the 
> audio
> with the vcmibuilder script is also completely optional.

Then I think it'll keep things simple for g-d-p to be completely unaware
of the Vorbis versions, and have the MP3s in its data (flagged as
optional or separated into a heroes3-music package if desired).

> > Finally, vcmibuilder puts the data files in ~/.local/share/vcmi, but
> > game-data-packager produces .deb files which need to install in /usr. If 
> > vcmi
> > follows the XDG Base Directory specification correctly, it should also
> > recognise these files in /usr/share/vcmi.
> 
> There is an upstream bug about it http://bugs.vcmi.eu/view.php?id=2189 and a
> bug in Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=783030

Ah, I see it already looks in /usr/share/vcmi (which we can work with)
but Alexandre would prefer /usr/share/games/vcmi. I'm personally less
convinced by the usefulness of the /usr/share{,/games} split than
Alexandre is, but I can see the reasoning for wanting to separate it.

I'm a little surprised vcmi doesn't have an equivalent of the Quake
engine's -basedir option. That would perhaps be useful if you want to
support side-by-side installation of the demo and the full game.

S

Bug#869727: Memory exhaustion in mpc coder

[Bastien ROUCARIES]

Source: src:imagemagick
Version: 8:6.9.7.4+dfsg-12
Severity: serious
Tags: security upstream
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.8.9.9-5+deb8u9
control: found -1 8:6.7.7.10-5+deb7u14
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/546

When identify MPC file , imagemagick will allocate memory to store the
data, here is the critical code:
(Mpc.c , in function ReadMPCImage)

 image->colormap=(PixelInfo *) AcquireQuantumMemory(image->colors+1,  //856
  sizeof(*image->colormap));

The “image->colors" can be obtained from local value “options” as
follow, and the options is controlled by image , in other words the
“image->colors" can be read from input file.
image->colors=StringToUnsignedLong(options); //402

The function StringToUnsignedLong convert string to unsigned long
type, but the return value was not checked.
Here is my policy.xml to limit memory usage,but 256MB limit can be bypassed.

Bug#869726: CVE-2017-11532: memory leak in coders/mpc.c.

[Bastien ROUCARIES]

Source: src:imagemagick
Version: 8:6.9.7.4+dfsg-12
Severity: serious
Tags: security upstream
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.8.9.9-5+deb8u9
control: found -1 8:6.7.7.10-5+deb7u14
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/563

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can
lead to a Memory Leak in the WriteMPCImage() function in coders/mpc.c.

Bug#868869: debian-installer should not recommend to change password periodically (and more)

[Philip Hands]

Philipp Kern  writes:

> On 07/24/2017 12:38 PM, Hideki Yamane wrote:
>>  But it also makes administrator to remember it harder as its trade-off...
>>  (and they maybe choose easy password as a result). It's a not good idea
>>  to suggests to change root password periodically, IMO. It's not a best
>>  practice.
>
> I'd say it's one of two things: If it's easy, make sure to change it
> periodically. If it's hard enough to withstand brute-force, you don't
> need to.
>
> As I said: I'm totally with you that in a standard setup it'd great for
> that not to be necessary. Unfortunately the standard setup does not ship
> with the mitigating controls.

I was under the impression that there was quite a lot of evidence to
demonstrate that regular-change policies are a security disaster.

Continuing to recommend such an approach strikes me as pure inertia.

If we want to recommend that people change their passwords later if they
are incapable of choosing a good one immediately, that seems like good
advice, but advising regular changes is just encouraging people to
consume their often quite limited ability to remember decent passwords,
with the almost inevitable result being that they'll either start
choosing poor passwords, or recording them somewhere insecure, neither
of which are better than keeping a decent password that they can
remember.

Cheers, Phil.
-- 
|)|  Philip Hands  [+44 (0)20 8530 9560]  HANDS.COM Ltd.
|-|  http://www.hands.com/http://ftp.uk.debian.org/
|(|  Hugo-Klemm-Strasse 34,   21075 Hamburg,GERMANY


signature.asc
Description: PGP signature

Bug#869618: bib2ris ignores year

[Leon Meier]

What OS do you run?

$ lsb_release -a
No LSB modules are available.
Distributor ID: Debian
Description:Debian GNU/Linux 9.1 (stretch)
Release:9.1
Codename:   stretch

$ uname -a
Linux amhost 4.9.0-3-amd64 #1 SMP Debian 4.9.30-2+deb9u2 (2017-06-26) 
x86_64 GNU/Linux


$ locale
LANG=de_DE.utf8
LANGUAGE=
LC_CTYPE="de_DE.utf8"
LC_NUMERIC="de_DE.utf8"
LC_TIME="de_DE.utf8"
LC_COLLATE="de_DE.utf8"
LC_MONETARY="de_DE.utf8"
LC_MESSAGES="de_DE.utf8"
LC_PAPER="de_DE.utf8"
LC_NAME="de_DE.utf8"
LC_ADDRESS="de_DE.utf8"
LC_TELEPHONE="de_DE.utf8"
LC_MEASUREMENT="de_DE.utf8"
LC_IDENTIFICATION="de_DE.utf8"
LC_ALL=


Ports/packages or compiled from sources?

Packages. Let's have a look:

$ which bib2ris
/usr/bin/bib2ris

$ dpkg -S /usr/bin/bib2ris
refdb-clients: /usr/bin/bib2ris

$ aptitude show refdb-clients | head -4
Paket: refdb-clients
Version: 1.0.2-3
Neu: ja
Zustand: Installiert



What version of the btparse library?

$ aptitude show libbtparse1 | head -4
Paket: libbtparse1
Version: 0.78-1
Zustand: Installiert
Automatisch installiert: ja


Do you have any entries in your global or personal bib2risrc files?
If any configuration files exist at all, I did not touch them. I did a 
pretty much clean installation of refdb-clients, so they are in the 
state left by the installer.

Bug#864572: openarena-server: consider to use StandardOutput=null in systemd service files

[Markus Koschany]

Am 24.07.2017 um 10:11 schrieb Simon McVittie:
> On Sat, 10 Jun 2017 at 22:38:27 +0200, Markus Koschany wrote:
>> Currently all in-game messages including chat conversations are
>> logged in systemd's journal
> ...
>> Of course the workaround is to write these ignore rules or to
>> overwrite the default service files with a custom one which is placed
>> in /etc/systemd/system.
>>
>> Normally the latter is a good advice but I think in this special case
>> we could use the StandardOutput=null option and stop logging to
>> /var/log/syslog at all. The OpenArena server already logs the same
>> information to /var/games/openarena-server/server.oa/baseoa/games.log
>> thus the information wouldn't be lost.
> 
> Unfortunately, this isn't entirely true. Writing out games.log is part
> of the game plugin (qagame*.so), so it only logs certain in-game
> messages from src:openarena (chat, kills, item pickups, that sort of
> thing). If we redirected the server's stdout and stderr to /dev/null, we
> would be missing the messages printed by the ioquake3 engine (startup,
> shutdown, warnings, errors) some of which are fairly important, and we'd
> also miss anything printed by src:openarena using G_Printf() instead of
> G_LogPrintf().

Hmm, I have been running an OpenArena server in "production" for the
past five years and I have never noticed those "fairly important"
messages. But I still receive start/stop/restart messages when I use
systemctl start/stop/restart and I also see this one once in a while

Jul 25 21:19:42 linuxiuvat systemd[1]: openarena-server.service: Main
process exited, code=exited, status=2/INVALIDARGUMENT
Jul 25 21:19:42 linuxiuvat systemd[1]: openarena-server.service: Unit
entered failed state.
Jul 25 21:19:42 linuxiuvat systemd[1]: openarena-server.service: Failed
with result 'exit-code'.
Jul 25 21:19:42 linuxiuvat systemd[1]: openarena-server.service: Service
hold-off time over, scheduling restart.

which is probably still bug #664637.

> We could maybe give the openarena-server wrapper script a
> --logfile=LOGFILE option which would "exec >${logfile} 2>&1" before
> running the actual server, and make the systemd units run with
> "--logfile=/var/games/openarena-server/%i.oa/server.log" or
> "--logfile=/var/log/openarena-server/%i/server.log" or something?
> But then we'd need to implement at least simple log rotation (otherwise
> whenever the server crashed, the log with crash details would
> immediately be overwritten by the log for the restarted server).

Alright, if you don't like the /dev/null plan then this would be the
next best option, although I'm pretty sure most output will be a
duplicate of games.log. I'm just thinking that implementing the wrapper
script option --logfile isn't really necessary because we can implement
logging entirely in the service file. (although it's a bit inconvenient
but I don't know a better way)

I have investigated this issue before because I wondered why there is no
simple option to redirect STDOUT or STDERR to a log file. Apparently we
are supposed to use the ExecStart option like this:

ExecStart=/bin/sh -c '/usr/games/openarena-server +set com_homepath
server.oa $DAEMON_OPTS +exec etc/openarena-server/server.cfg >
/var/log/openarena-server/server.log 2>&1'

And then just add the %i for template units. [1]

Implementing logrotate should also be straightforward, at least it was
for minetest-server.

> Alternatively, maybe we could add a cvar to disable printing lines to
> stdout if they are also printed to games.log? (At the moment it's
> controlled by the 'dedicated' cvar.) That way each line would be
> printed to either the Journal or games.log but never both.

That sounds interesting as well. Though in this case we would have to
patch the game which I would try to avoid unless upstream is happy to
accept the patch.

Markus

[1]
https://stackoverflow.com/questions/32968506/how-to-pipe-output-to-a-file-when-running-as-a-systemd-service




signature.asc
Description: OpenPGP digital signature

Bug#869725: CVE-2017-11531: Memory Leak in coders/histogram.c.

[Bastien ROUCARIES]

Source: src:imagemagick
Version: 8:6.9.7.4+dfsg-12
Severity: serious
Tags: security upstream
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.8.9.9-5+deb8u9
control: found -1 8:6.7.7.10-5+deb7u14
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/566


When ImageMagick 7.0.6-1 processes a crafted file in convert, it can
lead to a Memory Leak in the WriteHISTOGRAMImage() function in
coders/histogram.c.

Bug#869724: ifupdown: coldplug of renamed interfaces renames but doesn't bring up

[Adam Borowski]

Package: ifupdown
Version: 0.8.23
Severity: normal

Hi!
The new rename support yet again.

rename mac/00:e0:4c:11:7f:4e/=wl0
allow-hotplug wl0
iface wl0 inet static
yaddayadda

If I [re-]connect the card on a running system (ie, hotplug), all works
fine.  Not so for boot-up.

The interface gets renamed but stays down, wpa-supplicant is not started,
etc.  Note that the IP address _gets_ assigned, though:

3: wl0:  mtu 1500 qdisc mq state DOWN group 
default qlen 1000
link/ether 00:e0:4c:11:7f:4e brd ff:ff:ff:ff:ff:ff
inet 192.168.8.6/24 brd 192.168.8.255 scope global wl0
   valid_lft forever preferred_lft forever

After re-plugging, all is fine:

5: wl0:  mtu 1500 qdisc mq state UP group 
default qlen 1000
link/ether 00:e0:4c:11:7f:4e brd ff:ff:ff:ff:ff:ff
inet 192.168.8.6/24 brd 192.168.8.255 scope global wl0
   valid_lft forever preferred_lft forever
inet6 fe80::2e0:4cff:fe11:7f4e/64 scope link 
   valid_lft forever preferred_lft forever


The kernel says:
[8.543103] usb 1-5: Vendor: Realtek
[8.543106] usb 1-5: Product: 802.11n NIC
[8.543108] usb 1-5: Serial: 
\x\x\x\x\x\x\x\x\x\x\x
[8.543111] usb 1-5: rtl8192eu_parse_efuse: dumping efuse (0x200 bytes):
[8.543113] usb 1-5: [lots of spam]
[8.543215] usb 1-5: RTL8192EU rev B (SMIC) 2T2R, TX queues 3, WiFi=1, BT=0, 
GPS=0, HI PA=0
[8.543218] usb 1-5: RTL8192EU MAC: 00:e0:4c:11:7f:4e
[8.543220] usb 1-5: rtl8xxxu: Loading firmware rtlwifi/rtl8192eu_nic.bin
[8.545056] usb 1-5: Firmware revision 19.0 (signature 0x92e1)
[9.634117] usbcore: registered new interface driver rtl8xxxu
[9.669407] rtl8xxxu 1-5:1.0 wl0: renamed from wlan0
[9.790612] IPv6: ADDRCONF(NETDEV_UP): wl0: link is not ready

On reconnect:
[30461.019614] usb 1-5: RTL8192EU rev B (SMIC) 2T2R, TX queues 3, WiFi=1, BT=0, 
GPS=0, HI PA=0
[30461.019616] usb 1-5: RTL8192EU MAC: 00:e0:4c:11:7f:4e
[30461.019618] usb 1-5: rtl8xxxu: Loading firmware rtlwifi/rtl8192eu_nic.bin
[30461.020553] usb 1-5: Firmware revision 19.0 (signature 0x92e1)
[30462.157807] rtl8xxxu 1-5:1.0 wl0: renamed from wlan0
[30462.207525] IPv6: ADDRCONF(NETDEV_UP): wl0: link is not ready
[30463.443032] wl0: authenticate with f0:43:47:84:04:ef
[30463.464832] wl0: send auth to f0:43:47:84:04:ef (try 1/3)
[30463.466354] wl0: authenticated
[30463.470179] wl0: associate with f0:43:47:84:04:ef (try 1/3)
[30463.474951] wl0: RX AssocResp from f0:43:47:84:04:ef (capab=0x1411 status=0 
aid=3)
[30463.476675] usb 1-5: rtl8xxxu_bss_info_changed: HT supported
[30463.478053] wl0: associated
[30463.478066] IPv6: ADDRCONF(NETDEV_CHANGE): wl0: link becomes ready


-- Package-specific info:
--- /etc/network/interfaces:
[chaff snipped]

rename mac/00:e0:4c:11:7f:4e/=wl0
allow-hotplug wl0
iface wl0 inet static
wpa-ssid mial
wpa-psk blah blah blahity blah
address 192.168.8.6
netmask 255.255.255.0


--- up and down scripts installed:
/etc/network/if-down.d:
total 8
-rwxr-xr-x 1 root root 332 Jan  6  2013 upstart
lrwxrwxrwx 1 root root  32 Feb 20 11:55 wpasupplicant -> 
../../wpa_supplicant/ifupdown.sh

/etc/network/if-post-down.d:
total 12
lrwxrwxrwx 1 root root 29 Jun 26 17:48 bridge -> /lib/bridge-utils/ifupdown.sh
lrwxrwxrwx 1 root root 25 Feb 20 11:55 hostapd -> ../../hostapd/ifupdown.sh
lrwxrwxrwx 1 root root 32 Feb 20 11:55 wpasupplicant -> 
../../wpa_supplicant/ifupdown.sh

/etc/network/if-pre-up.d:
total 16
lrwxrwxrwx 1 root root  29 Jun 26 17:48 bridge -> /lib/bridge-utils/ifupdown.sh
-rwxr-xr-x 1 root root 344 Sep 22  2014 ethtool
lrwxrwxrwx 1 root root  25 Feb 20 11:55 hostapd -> ../../hostapd/ifupdown.sh
lrwxrwxrwx 1 root root  32 Feb 20 11:55 wpasupplicant -> 
../../wpa_supplicant/ifupdown.sh

/etc/network/if-up.d:
total 28
-rwxr-xr-x 1 root root 1685 Sep 22  2014 ethtool
-rwxr-xr-x 1 root root 4958 Oct 25  2014 mountnfs
-rwxr-xr-x 1 root root  168 Nov 11  2016 openntpd
-rwxr-xr-x 1 root root  972 Mar 30 12:18 openssh-server
-rwxr-xr-x 1 root root 1483 Jan  6  2013 upstart
lrwxrwxrwx 1 root root   32 Feb 20 11:55 wpasupplicant -> 
../../wpa_supplicant/ifupdown.sh


-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (500, 'testing'), 
(150, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.13.0-rc2-debug-00025-g7c422cf6b36d (SMP w/6 CPU cores)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE=C.UTF-8 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages ifupdown depends on:
ii  adduser  3.115
ii  init-system-helpers  1.49
ii  iproute2 4.9.0-1
ii  libc62.24-12
ii  lsb-base 9.20161125

Versions of packages ifupdown recommends:
ii  

Bug#869630: game-data-packager: Please add support for Heroes of Might and Magic III

[Simon McVittie]

On Tue, 25 Jul 2017 at 20:41:49 +0200, Johannes Schauer wrote:
> There is also the Heroes 3 demo as provided by the internet archive:
> 
> https://archive.org/details/HeroesOfMightAndMagicIiiTheRestorationOfErathia
> 
> Unfortunately, getting the right files out of it is currently a bit
> complicated:
> 
> $ dd if=h3demo.exe skip=1 of=h3demo.cab ibs=130731
> $ cabextract -F Disk1/data1.cab h3demo.cab
> $ unshield Disk1/data1.cab
> 
> So the .exe embeds a cab archive which itself contains an InstallShield file
> which then contains the data we want. Is g-d-p able to somehow extract the
> files from the h3demo.exe?

Someone would have to teach game_data_packager.build about cabextract
(we haven't needed that yet), and possibly also about skipping prefixes
of files (but cabextract(1) says it can work on executables containing
an embedded cabinet, so you might not actually need the dd step). At
the moment the only formats for which we've needed "skip X bytes first"
are tar and umod, which we do in Python code that can read from a stream,
rather than by running a separate executable like cabextract.

But once g-d-p knows how to extract cab archives, extracting recursively
is easy. If you give it syntax like this:

files:
  h3demo.exe:
provides:
  - Disk1/data1.cab
unpack:
  format: cab   # needs implementing, see above
  skip: 130731  # also needs implementing, see above

  Disk1/data1.cab:
provides:
  - foo.bar
unpack:
  format: unshield

and ask it to install foo.bar, it will work out that it has to
extract Disk1/data1.cab from h3demo.exe, then extract foo.bar from
Disk1/data1.cab.

(I'm quite proud of this declarative approach, it works a lot better
than trying to support 210 games with individual shell scripts!)

There are two ways a demo can be packaged: you can either install it
to the same place as the full game, with Conflicts/Replaces (like we
do for Quake 1 shareware), or you can install it to a separate location
and make the game engine or wrapper script try both (like we do for the
Quake 2 demo). We prefer the Quake 2 approach where feasible: it is
usually no better than the Quake 1 approach for actual users, but it
makes life easier for game engine and g-d-p maintainers who want to be
able to test with both versions :-)

S

Bug#869695: libgsl2: asymtote, enblend depend on libgsl.so.19, but libgsl.so.23 in latest version

[Dirk Eddelbuettel]

reassign 869695 asymptote
thanks

To me, that is a bug in asymptote.  GSL went to version 2.* quite some time
ago, and by now everybody has had time to update.  The API is not that
different, really.

Please rebuild (and patch if needed) aymptote against the current GSL
version.

Dirk

On 26 July 2017 at 03:15, Arthur Marsh wrote:
| Package: libgsl2
| Version: 2.4+dfsg-1
| Severity: normal
| 
| Dear Maintainer,
| 
| *** Reporter, please consider answering these questions, where appropriate ***
| 
|* What led up to the situation?
| 
| Upgrading libgsl2 lead to aysmptote, enblend not being able to run since
| they depend on libgsl.so.19.
| 
|* What exactly did you do (or not do) that was effective (or
|  ineffective)?
|* What was the outcome of this action?
|* What outcome did you expect instead?
| 
| *** End of the template - remove these template lines ***
| 
| 
| -- System Information:
| Debian Release: buster/sid
|   APT prefers unstable
|   APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
| Architecture: amd64 (x86_64)
| 
| Kernel: Linux 4.13.0-rc2+ (SMP w/4 CPU cores; PREEMPT)
| Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_GB (charmap=UTF-8)
| Shell: /bin/sh linked to /bin/bash
| Init: sysvinit (via /sbin/init)
| 
| Versions of packages libgsl2 depends on:
| ii  libc6  2.24-12
| 
| libgsl2 recommends no packages.
| 
| Versions of packages libgsl2 suggests:
| pn  gsl-ref-psdoc | gsl-doc-pdf | gsl-doc-info | gsl-ref-html  
| 
| -- no debconf information

-- 
http://dirk.eddelbuettel.com | @eddelbuettel | e...@debian.org

Bug#867748: Does not affect imagemagick 6 at least some version

[Bastien ROUCARIES]

Hi,

It seems that this bug does not affect unstable/testing/stable.

Could you check for oldstable ?

See upstream comments

Bug#869723: Please upgrade to a new version

[Simon Quigley]

Package: mumble
Version: 1.2.18-1

Please package the latest upstream version of Mumble, 1.2.19. It
contains bugfixes that should be released to Debian users. Here are the
changes in the release notes:

 - OpenSSL in our binary packages have been updated to 1.0.2k due to
OpenSSL Security Advisory [26 Jan 2017]
 - Murmur’s -limits command will now print output as it runs, instead of
at exit. (98cd156f0c26be2bacc22d8c64db9c349f16a213)

Thanks!

Bug#869722: Imagemagick: memory leak in quantize

[Bastien ROUCARIES]

Source: src:imagemagick
Version: 8:6.9.7.4+dfsg-11
Severity: important
Tags: security upstream
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.8.9.9-5+deb8u9
control: found -1 8:6.7.7.10-5+deb7u14
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/574

This is the second issue fixed by
https://github.com/ImageMagick/ImageMagick/commit/7b604a554dfb6630fe32e739334fa57341dc6123

Bug#869718: packer currently doesn't build

[Daniel Stender]

Control: retitle -1 packer: currently doesn't build (updated build-deps)

... I've mend build-deps.

DS

-- 
4096R/DF5182C8 (sten...@debian.org)
http://www.danielstender.com/

Bug#869721: Imagemagick: memory leak in WritePALMImage #574

[Bastien ROUCARIES]

Source: src:imagemagick
Version: 8:6.9.7.4+dfsg-11
Severity: important
Tags: security upstream
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.8.9.9-5+deb8u9
control: found -1 8:6.7.7.10-5+deb7u14
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/574

This is a double issue. This one if for PALM problem.

Bug#858435: Fixed upstream

[Andriy Grytsenko]

Thank you for noticing. I'm going to release 0.12.0 version soon, just a
bit more testing needed to be sure it's stable enough. :)

Both bugs in BTS will be fixed, as well as found ones since 0.11 versions.

Bug#868869: debian-installer should not recommend to change password periodically (and more)

[Philipp Kern]

On 07/24/2017 12:38 PM, Hideki Yamane wrote:
>  But it also makes administrator to remember it harder as its trade-off...
>  (and they maybe choose easy password as a result). It's a not good idea
>  to suggests to change root password periodically, IMO. It's not a best
>  practice.

I'd say it's one of two things: If it's easy, make sure to change it
periodically. If it's hard enough to withstand brute-force, you don't
need to.

As I said: I'm totally with you that in a standard setup it'd great for
that not to be necessary. Unfortunately the standard setup does not ship
with the mitigating controls.

Kind regards
Philipp Kern



signature.asc
Description: OpenPGP digital signature

Bug#869720: adwaita-icon-theme: Suggestion for a German translation of "The Only One"

[Erik Pfannenstein]

Package: adwaita-icon-theme
Version: 3.24.0-1
Severity: wishlist
Tags: l10n

Dear Maintainer,

I have noticed that the German description of the Adwaita Icon theme and the 
Adwaita mouse 
pointer design changed from "Das Einzige" back to "The Only One". Since this 
translation was
not exactly brilliant anyway, I'd like to suggest some other possible 
translations, which I
think meet the boldness of "The Only One" quite well:

* Das einzig Wahre
* Der Echte/das Echte
* Das Original

My personal favourite is the third one.

Best regards,
Erik


-- System Information:
Debian Release: buster/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.12.3-towo.2-siduction-amd64 (SMP w/4 CPU cores; PREEMPT)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE= 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages adwaita-icon-theme depends on:
ii  gtk-update-icon-cache  3.22.16-1
ii  hicolor-icon-theme 0.15-1
ii  librsvg2-common2.40.18-1

adwaita-icon-theme recommends no packages.

adwaita-icon-theme suggests no packages.

-- no debconf information

Bug#869663: [okular] Review tools should not be automatically switched off right after used

[Michael Weghorn]

Hi Antonio,

On 2017-07-25 22:45, Antonio Marcos López Alonso wrote:
> 2) is exactly the behavior I was looking for and I regret I couldn't find it 
> out before. My bad.
> 
> Thanks a lot for pointing this out for me and also I apologize for the 
> unnecessary noise (so you might want to close this issue).
> 


Thank you for your quick reply!
I am glad to read this is what you were looking for.

I am therefore closing the bug report as you suggested.

Regards,
Michael

Bug#869673: libsane: Genesys backend wrongly assumes that usb_mode is initialized

[Jörg Frings-Fürst]

forwarded 869673 
http://lists.alioth.debian.org/pipermail/sane-devel/2017-July/035501.html
thanks


Hallo Florian,

thank you for spending your time helping to make Debian better with
this bug report.

I have forward your bug to the sane-devel mailing list.

CU
Jörg



-- 
New:
GPG Fingerprint: 63E0 075F C8D4 3ABB 35AB  30EE 09F8 9F3C 8CA1 D25D
GPG key (long) : 09F89F3C8CA1D25D
GPG Key: 8CA1D25D
CAcert Key S/N : 0E:D4:56

Old pgp Key: BE581B6E (revoked since 2014-12-31).

Jörg Frings-Fürst
D-54470 Lieser

Threema: SYR8SJXB
Wire: @joergfringsfuerst

IRC: j_...@freenode.net
 j_...@oftc.net

My wish list: 
 - Please send me a picture from the nature at your home.


signature.asc
Description: This is a digitally signed message part

Bug#869719: udev-234 doesn't execute when udev architecture != systemd architecture

[Jarek Kamiński]

Package: udev
Version: 234-1
Severity: normal

Hello,

I was running an uncommon configuration of 64-bit systemd and 32-bit
udev (strange omission I'm going to fix right now). It was running fine
until udev-234, when udev started being killed with SIGSYS. Setting
SystemCallArchitectures= (instead of native) in systemd-udevd.service
made udev working again.

While I understand the root cause was my error, udev is such critical it
would be great it was more robust :-)  Please consider setting
SystemCallArchitectures to the architecture of the udev package,
tightening the dependencies, or at least some sanity check during
installation.


-- Package-specific info:

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (990, 'testing'), (990, 'stable'), (500, 'unstable'), (100, 
'experimental')
Architecture: i386 (x86_64)
Foreign Architectures: amd64

Kernel: Linux 4.11.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=pl_PL, LC_CTYPE=pl_PL (charmap=ISO-8859-2) (ignored: LC_ALL set to 
pl_PL), LANGUAGE=pl:en_GB (charmap=ISO-8859-2) (ignored: LC_ALL set to pl_PL)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages udev depends on:
ii  adduser  3.115
ii  dpkg 1.18.24
ii  libacl1  2.2.52-3+b1
ii  libblkid12.29.2-2
ii  libc62.24-12
ii  libkmod2 24-1
ii  libselinux1  2.6-3+b2
ii  libudev1 234-2
ii  lsb-base 9.20161125
ii  procps   2:3.3.12-3
ii  util-linux   2.29.2-2

udev recommends no packages.

udev suggests no packages.

Versions of packages udev is related to:
ii  systemd  234-2

-- debconf information:
  udev/sysfs_deprecated_incompatibility:
  udev/title/upgrade:
  udev/reboot_needed:
  udev/new_kernel_needed: false


signature.asc
Description: PGP signature

Bug#869663: [okular] Review tools should not be automatically switched off right after used

[Antonio Marcos López Alonso]

Hi Michael:

2) is exactly the behavior I was looking for and I regret I couldn't find it 
out before. My bad.

Thanks a lot for pointing this out for me and also I apologize for the 
unnecessary noise (so you might want to close this issue).

Regards,
Antonio

El martes, 25 de julio de 2017 16:52:27 (WEST) Michael Weghorn escribió:
> Hi Antonio,
> 
> when you use the mouse instead of the keyboard shortcut to select the
> highlighter, you have (at least) two options:
> 
> 1) When you enable the highlighter using a single mouse click, the
> behaviour is as you described.
> 2) When you enable the highlighter using a double mouse click, the
> highlighter remains active and is not automatically unselected after you
> highlight a single passage of text.
> 
> Is 2) basically  the behaviour you wish to have? If so, is it sufficient
> as it is implemented now?
> Otherwise: Can you possibly give some more details on your suggestion to
> add a manual toggling option? Can you make a proposal on where exactly
> it might be added and how the the user would interact with
> (enable/disable) it?
> 
> Regards,
> Michael
> 
> Am 2017-07-25 14:37 schrieb Antonio Marcos López Alonso:
> > Package: okular
> > Version: 4:16.08.2-1+b1
> > Severity: wishlist
> > 
> > --- Please enter the report below this line. ---
> > 
> > Everytime I select and use one of the review (F6) tools it turns
> > automatically
> > unselected right after being used. For instance:
> > 
> > 1) Select the highlighter (F4).
> > 2) Highlight some PDF text.
> > 3) Try to highlight some other text in the same file (either in the
> > same page
> > or other). I'm forced to press F4 again as highlighter toggled
> > unselected
> > right after step 2 which is quite awkward.
> > 
> > So I'm requesting to add a manual toggling setup option to Review
> > tools.
> > 
> > Regards,
> > Antonoo
> > 
> > 
> > --- System information. ---
> > Architecture:
> > Kernel:   Linux 4.11.0-1-amd64
> > 
> > Debian Release: buster/sid
> > 
> >   500 testing ftp.es.debian.org
> >   500 stable  dl.google.com
> > 
> > --- Package information. ---
> > Depends   (Version) | Installed
> > ===-+-
> > =
> > libokularcore7   (= 4:16.08.2-1+b1) | 4:16.08.2-1+b1
> > kde-runtime (>> 4:4.10) | 4:16.08.3-2
> > libc6 (>= 2.14) |
> > libfreetype6 (>= 2.2.1) |
> > libjpeg62-turbo  (>= 1.3.1) |
> > libkdecore5 (>= 4:4.14) |
> > libkdeui5   (>= 4:4.14) |
> > libkexiv2-11  (>= 4:4.5.90) |
> > libkio5 (>= 4:4.14) |
> > libkparts4  (>= 4:4.14) |
> > libkprintutils4 (>= 4:4.14) |
> > libkpty4(>= 4:4.14) |
> > libphonon4 (>= 4:4.6.0really4.3.80) |
> > libpoppler-qt4-4(>= 0.38.0) |
> > libqca2  (>= 2.0.2) |
> > libqimageblitz4(>= 1:0.0.4) |
> > libqmobipocket1  (>= 4:4.11.80) |
> > libqt4-dbus(>= 4:4.6.1) |
> > libqt4-declarative (>= 4:4.7.0~rc1) |
> > libqt4-svg (>= 4:4.5.3) |
> > libqt4-xml (>= 4:4.5.3) |
> > libqtcore4 (>= 4:4.8.0) |
> > libqtgui4  (>= 4:4.8.0) |
> > libsolid4   (>= 4:4.14) |
> > libspectre1  (>= 0.2.3) |
> > libstdc++6   (>= 5) |
> > phonon  |
> > zlib1g (>= 1:1.1.4) |
> > 
> > 
> > Recommends  (Version) | Installed
> > =-+-===
> > cups-bsd  | 2.2.4-2
> > 
> > 
> > Suggests   (Version) | Installed
> > -+-===
> > ghostscript  | 9.21~dfsg-1
> > jovie| 4:16.08.0-1+b1
> > okular-extra-backends (= 4:16.08.2-1+b1) | 4:16.08.2-1+b1
> > poppler-data | 0.4.7-8
> > texlive-binaries | 2017.20170613.44572-3
> > unrar| 1:5.5.5-1

Bug#869718: packer currently doesn't build

[Daniel Stender]

Package: packer
Version: 0.10.2+dfsg-6
Severity: serious
Justification: fails to build from source (but built successfully in the past)

Packer currently doesn't build because we've begun to update the reverse-deps
for the upcoming packer update (#846549):


src/github.com/mitchellh/packer/communicator/winrm/communicator.go:10:2: cannot 
find package "github.com/masterzen/winrm/winrm" in any of:
/usr/lib/go-1.8/src/github.com/masterzen/winrm/winrm (from $GOROOT)

/<>/packer-0.10.2+dfsg/obj-x86_64-linux-gnu/src/github.com/masterzen/winrm/winrm
 (from $GOPATH)


Thanks,
DS

-- System Information:
Debian Release: buster/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.5.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8), 
LANGUAGE=de_DE.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages packer depends on:
ii  libc6  2.24-12

Versions of packages packer recommends:
pn  docker.io  
ii  qemu   1:2.8+dfsg-6

Versions of packages packer suggests:
ii  ansible  2.2.1.0-2
pn  chef 

-- no debconf information

Bug#868284: stretch-pu: package suricata/3.2.1-1

[Arturo Borrero Gonzalez]

On Fri, 14 Jul 2017 10:36:38 +0100 "Adam D. Barratt"
 wrote:
>
> I did - the version in unstable certainly doesn't. It does contain code
> that looks exactly the same as the vulnerable code in stable, so I
> assume the bug also affects that version.
>

Ok, I cherry-picked the patch and will let you know when this lands in unstable.
Currently working on it.

Thanks

Bug#791976: Please support ARM64

[Edmund Grimley Evans]

This is being worked on upstream:

https://github.com/ldc-developers/ldc/issues/1931
https://github.com/ldc-developers/ldc/issues/2150
https://github.com/ldc-developers/ldc/issues/2153

Bug#869717: glibc FTBFS: Error: `loc1@GLIBC_2.2.5' can't be versioned to common symbol 'loc1'

[Helmut Grohne]

Source: glibc
Version: 2.24-12
Severity: serious
Tags: patch upstream fixed-upstream
Forwarded: 
https://sourceware.org/git/gitweb.cgi?p=glibc.git;a=commitdiff;h=388b4f1a02f3a801965028bbfcd48d905638b797
User: helm...@debian.org
Usertags: rebootstrap

glibc fails to build from source in unstable amd64:

| x86_64-linux-gnu-gcc-6 -no-pie -fno-PIE regexp.c -c -std=gnu11 -fgnu89-inline 
 -O2 -Wall -Werror -Wundef -Wwrite-strings -fmerge-all-constants 
-frounding-math -g -pipe -Wstrict-prototypes -Wold-style-definition   -fPIC   
-ftls-model=initial-exec-isystem /<>/debian/include  
-I../include -I/<>/build-tree/amd64-libc/misc  
-I/<>/build-tree/amd64-libc  
-I../sysdeps/unix/sysv/linux/x86_64/64  -I../sysdeps/unix/sysv/linux/x86_64  
-I../sysdeps/unix/sysv/linux/x86  -I../sysdeps/unix/sysv/linux/wordsize-64  
-I../sysdeps/x86_64/nptl  -I../sysdeps/unix/sysv/linux/include 
-I../sysdeps/unix/sysv/linux  -I../sysdeps/nptl  -I../sysdeps/pthread  
-I../sysdeps/gnu  -I../sysdeps/unix/inet  -I../sysdeps/unix/sysv  
-I../sysdeps/unix/x86_64  -I../sysdeps/unix  -I../sysdeps/posix  
-I../sysdeps/x86_64/64  -I../sysdeps/x86_64/fpu/multiarch  
-I../sysdeps/x86_64/fpu  -I../sysdeps/x86/fpu/include -I../sysdeps/x86/fpu  
-I../sysdeps/x86_64/multiarch  -I../sysdeps/x86_64  -I../sysdeps/x86  
-I../sysdeps/ieee754/ldbl-96  -I../sysdeps/ieee754/dbl-64/wordsize-64  
-I../sysdeps/ieee754/dbl-64  -I../sysdeps/ieee754/flt-32  
-I../sysdeps/wordsize-64  -I../sysdeps/ieee754  -I../sysdeps/generic  -I.. 
-I../libio -I. -nostdinc -isystem /usr/lib/gcc/x86_64-linux-gnu/6/include 
-isystem /usr/lib/gcc/x86_64-linux-gnu/6/include-fixed -isystem 
/<>/debian/include  -D_LIBC_REENTRANT -include 
/<>/build-tree/amd64-libc/libc-modules.h -DMODULE_NAME=libc 
-include ../include/libc-symbols.h  -DPIC -DSHARED -o 
/<>/build-tree/amd64-libc/misc/regexp.os -MD -MP -MF 
/<>/build-tree/amd64-libc/misc/regexp.os.dt -MT 
/<>/build-tree/amd64-libc/misc/regexp.os
| x86_64-linux-gnu-gcc-6 -no-pie -fno-PIE 
../sysdeps/unix/sysv/linux/getloadavg.c -c -std=gnu11 -fgnu89-inline  -O2 -Wall 
-Werror -Wundef -Wwrite-strings -fmerge-all-constants -frounding-math -g -pipe 
-Wstrict-prototypes -Wold-style-definition   -fPIC   -ftls-model=initial-exec   
 -isystem /<>/debian/include  -I../include 
-I/<>/build-tree/amd64-libc/misc  
-I/<>/build-tree/amd64-libc  
-I../sysdeps/unix/sysv/linux/x86_64/64  -I../sysdeps/unix/sysv/linux/x86_64  
-I../sysdeps/unix/sysv/linux/x86  -I../sysdeps/unix/sysv/linux/wordsize-64  
-I../sysdeps/x86_64/nptl  -I../sysdeps/unix/sysv/linux/include 
-I../sysdeps/unix/sysv/linux  -I../sysdeps/nptl  -I../sysdeps/pthread  
-I../sysdeps/gnu  -I../sysdeps/unix/inet  -I../sysdeps/unix/sysv  
-I../sysdeps/unix/x86_64  -I../sysdeps/unix  -I../sysdeps/posix  
-I../sysdeps/x86_64/64  -I../sysdeps/x86_64/fpu/multiarch  
-I../sysdeps/x86_64/fpu  -I../sysdeps/x86/fpu/include -I../sysdeps/x86/fpu  
-I../sysdeps/x86_64/multiarch  -I../sysdeps/x86_64  -I../sysdeps/x86  
-I../sysdeps/ieee754/ldbl-96  -I../sysdeps/ieee754/dbl-64/wordsize-64  
-I../sysdeps/ieee754/dbl-64  -I../sysdeps/ieee754/flt-32  
-I../sysdeps/wordsize-64  -I../sysdeps/ieee754  -I../sysdeps/generic  -I.. 
-I../libio -I. -nostdinc -isystem /usr/lib/gcc/x86_64-linux-gnu/6/include 
-isystem /usr/lib/gcc/x86_64-linux-gnu/6/include-fixed -isystem 
/<>/debian/include  -D_LIBC_REENTRANT -include 
/<>/build-tree/amd64-libc/libc-modules.h -DMODULE_NAME=libc 
-include ../include/libc-symbols.h  -DPIC -DSHARED -o 
/<>/build-tree/amd64-libc/misc/getloadavg.os -MD -MP -MF 
/<>/build-tree/amd64-libc/misc/getloadavg.os.dt -MT 
/<>/build-tree/amd64-libc/misc/getloadavg.os
| x86_64-linux-gnu-gcc-6 -no-pie -fno-PIE 
../sysdeps/unix/sysv/linux/getclktck.c -c -std=gnu11 -fgnu89-inline  -O2 -Wall 
-Werror -Wundef -Wwrite-strings -fmerge-all-constants -frounding-math -g -pipe 
-Wstrict-prototypes -Wold-style-definition   -fPIC   -ftls-model=initial-exec   
 -isystem /<>/debian/include  -I../include 
-I/<>/build-tree/amd64-libc/misc  
-I/<>/build-tree/amd64-libc  
-I../sysdeps/unix/sysv/linux/x86_64/64  -I../sysdeps/unix/sysv/linux/x86_64  
-I../sysdeps/unix/sysv/linux/x86  -I../sysdeps/unix/sysv/linux/wordsize-64  
-I../sysdeps/x86_64/nptl  -I../sysdeps/unix/sysv/linux/include 
-I../sysdeps/unix/sysv/linux  -I../sysdeps/nptl  -I../sysdeps/pthread  
-I../sysdeps/gnu  -I../sysdeps/unix/inet  -I../sysdeps/unix/sysv  
-I../sysdeps/unix/x86_64  -I../sysdeps/unix  -I../sysdeps/posix  
-I../sysdeps/x86_64/64  -I../sysdeps/x86_64/fpu/multiarch  
-I../sysdeps/x86_64/fpu  -I../sysdeps/x86/fpu/include -I../sysdeps/x86/fpu  
-I../sysdeps/x86_64/multiarch  -I../sysdeps/x86_64  -I../sysdeps/x86  
-I../sysdeps/ieee754/ldbl-96  -I../sysdeps/ieee754/dbl-64/wordsize-64  
-I../sysdeps/ieee754/dbl-64  -I../sysdeps/ieee754/flt-32  
-I../sysdeps/wordsize-64  -I../sysdeps/ieee754  -I../sysdeps/generic  -I.. 
-I../libio -I. -nostdinc -isystem /usr/lib/gcc/x86_64-linux-gnu/6/include 
-isystem 

Bug#869709: libfiu: fix autopkgtest syntax

[Chris Lamb]

tags 869709 + pending
thanks


Steve Langasek wrote:

> As shown at ,
> the libfiu autopkgtest has been failing since 0.95-2

Thanks so much for looking into this.
 
> The attached patch gets the autopkgtest to work here, by using double quotes
> instead of single quotes to survive autopkgtest's parser and by setting
> allow-stderr to account for the error message from ls.

Ahh! autopkgtests' parsing/escaping always confounds me..

Thanks again; uploading now.


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb, Debian Project Leader
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#869716: libplexus-containers-java: Wrong scope for junit dependency

[Mykola Nikishov]

Package: libplexus-containers-java
Version: 1.0~beta3.0.7-8
Severity: normal

Upgrade to 1.0~beta3.0.7-9 will drag junit. Please change default
scope [1] to the test one.

[1] 
https://anonscm.debian.org/cgit/pkg-java/plexus-containers.git/tree/pom.xml#n32

-- System Information:
Debian Release: buster/sid
  APT prefers stable
  APT policy: (500, 'stable'), (70, 'unstable'), (60, 'testing'), (50, 
'experimental'), (40, 'oldstable')
Architecture: amd64
 (x86_64)

Kernel: Linux 4.11.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages libplexus-containers-java depends on:
ii  libguava-java   19.0-1
ii  libplexus-classworlds-java  1.5.0-5
ii  libplexus-utils-java1:1.5.15-4
ii  libxbean-java   4.5-4

libplexus-containers-java recommends no packages.

libplexus-containers-java suggests no packages.

-- no debconf information

Bug#858435: Fixed upstream

[Chris West]

This has been fixed upstream (by the maintainer!).

https://sourceforge.net/p/foxeye/code/ci/cd29cebcaa1a8c214dd750f8d5af38716b912876/

This note is mostly for myself, so I don't try and fix it.

Chris.

Bug#869715: [imagemagick] use after free in ReadWMFImage #555

[Bastien ROUCARIES]

Source: src:imagemagick
Version: 8:6.9.7.4+dfsg-11
Severity: important
Tags: security upstream
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.8.9.9-5+deb8u9
control: found -1 8:6.7.7.10-5+deb7u14
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/555

When identify WMF file , a crafted file revealed a use-after-free vulnerability.
A piece of memory was allocated in in function wmf_malloc.(api.c)
mem = malloc (size); //482

Free:(api.c, in function wmf_lite_destory )
free (MM->list[MM->count]); //336

Use after free: (wmf.c, in function ReadWMFImage)
if (ddata->draw_info != (DrawInfo *) NULL) //2682
testcase: 
https://github.com/bestshow/p0cs/blob/master/use-after-free-in-ReadWMFImage

Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/784fcac688161aeaea221e00b706c88b08196945

Bug#869714: vmdebootstrap: cannot bootstrap >= buster on i386: 586 kernel no longer available

[Simon McVittie]

Package: vmdebootstrap
Version: 1.7-1+nmu1
Severity: normal

When bootstrapping an i386 image, vmdebootstrap uses the 486 kernel
for wheezy, or the 586 kernel for newer Debian suites. The 586
kernel was a real kernel in jessie, a transitional package in stretch,
and disappeared entirely in buster.

It should use the 486 kernel for wheezy, the 586 kernel for jessie
or the 686 kernel for anything newer.

S

Bug#869713: [imagemagick] memory leak in CloneDrawInfo #544

[Bastien ROUCARIES]

Source: src:imagemagick
Version: 8:6.9.7.4+dfsg-11
Severity: important
Tags: security upstream
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.8.9.9-5+deb8u9
control: found -1 8:6.7.7.10-5+deb7u14
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/544

The function CloneDrawInfo in draw.c allows attackers to cause a
denial of service (memory leak) via a crafted file.

Bug#869589: libunwind: needs maintainer

[Graham Inggs]

On 25 July 2017 at 16:44, Al Stone  wrote:
> Woof.  I had not realized I was the only one left.  Please orphan the
> package -- I really do not have time to maintain it and it's important
> enough it really needs someone who can pay attention to it.

Thanks for your prompt response, and thanks for the work you, Daigo
and Matthieu have put into this package.

I have filed bug #869710 orphaning libunwind.

Bug#869712: CVE-2017-11537: palm fpe

[Bastien ROUCARIES]

Source: src:imagemagick
Version: 8:6.9.7.4+dfsg-11
Severity: important
Tags: security upstream
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.8.9.9-5+deb8u9
control: found -1 8:6.7.7.10-5+deb7u14
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/560


When ImageMagick 7.0.6-1 processes a crafted file in convert, it can
lead to a Floating Point Exception (FPE) in the WritePALMImage()
function in coders/palm.c, related to an incorrect bits-per-pixel
calculation.

Bug#869122: Bug#869373: Bug#869122: perl: 5.26 FTBFS on hppa: broken miniperl?

[John David Anglin]

On 2017-07-25, at 3:55 PM, John David Anglin wrote:

>>> 
>>> 
>>> Or does this hit the hppa "-O0 -fPIC" problem again?
>> 
>> Again, I don't know.  I had thought the R_PARISC_DPREL21L relocation problem 
>> was
>> an optimization issue.  I have installed perl 5.26+b1 on a couple of 
>> systems.  Building
>> libjavascript-minifier-xs-perl with it doesn't trigger the issue nor does 
>> building it with
>> DEB_BUILD_OPTIONS=noop.
> 
> There are a handful of packages that still have the R_PARISC_DPREL21L 
> relocation problem
> using 5.26+b1.  I looked at libembperl-perl.  The gcc driver is dropping the 
> -fPIC option and
> it's not passed to cc1.  Thus, the relocation error.

-fPIC is recognized if it is last option.  Maybe it has to come after -fno-pie?

Dave
--
John David Anglin   dave.ang...@bell.net

Bug#869711: CVE-2017-11534: wmf memory leak

[Bastien ROUCARIES]

Source: src:imagemagick
Version: 8:6.9.7.4+dfsg-11
Severity: important
Tags: security upstream
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.8.9.9-5+deb8u9
control: found -1 8:6.7.7.10-5+deb7u14
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/564


When ImageMagick 7.0.6-1 processes a crafted file in convert, it can
lead to a Memory Leak in the lite_font_map() function in coders/wmf.c.

Bug#869710: O: libunwind -- library to determine the call-chain of a program

[Graham Inggs]

Package: wnpp

The current maintainers of libunwind, Daigo Moriwaki
 and Al Stone  have orphaned this
package.  Matthieu Delahaye  has not been working
on the libunwind package for quite some time.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed instructions
how to adopt a package properly.

Some information about this package:

Package: libunwind
Binary: libunwind-dev, libunwind8-dev, libunwind8, libunwind8-dbg,
libunwind-setjmp0-dev, libunwind-setjmp0, libunwind-setjmp0-dbg
Version: 1.1-4.1
Maintainer: Daigo Moriwaki 
Uploaders: Matthieu Delahaye , Al Stone 
Build-Depends: debhelper (>= 9), autotools-dev, dh-autoreconf,
liblzma-dev, texlive-extra-utils
Architecture: ia64 i386 amd64 ppc64 ppc64el powerpc powerpcspe armel
armhf arm64 mips mipsel mips64 mips64el
Standards-Version: 3.9.6
Format: 3.0 (quilt)
Files:
 20b1c62c1c9b3ef25cb25fa148d0a844 2745 libunwind_1.1-4.1.dsc
 fb4ea2f6fbbe45bf032cd36e586883ce 1098603 libunwind_1.1.orig.tar.gz
 b67598b68d3d17d02ffbe68abc443deb 24224 libunwind_1.1-4.1.debian.tar.xz
Vcs-Browser: http://git.debian.org/?p=collab-maint/libunwind.git
Vcs-Git: git://git.debian.org/git/collab-maint/libunwind.git
Checksums-Sha256:
 94ef1b852f4778ac424fd26842c1a637bde4188d43e56a8e48ecfbd39aec79f3 2745
libunwind_1.1-4.1.dsc
 9dfe0fcae2a866de9d3942c66995e4b460230446887dbdab302d41a8aee8d09a
1098603 libunwind_1.1.orig.tar.gz
 4698caf7db090e05b10762e8b29833a9c5c1cb756bd99430bd4b914a85da2644
24224 libunwind_1.1-4.1.debian.tar.xz
Homepage: http://www.nongnu.org/libunwind
Package-List:
 libunwind-dev deb libdevel optional
arch=ia64,i386,amd64,ppc64,ppc64el,powerpc,powerpcspe,armel,armhf,arm64,mips,mipsel,mips64,mips64el
 libunwind-setjmp0 deb libs optional
arch=ia64,i386,amd64,ppc64,ppc64el,powerpc,powerpcspe,armel,armhf,arm64,mips,mipsel,mips64,mips64el
 libunwind-setjmp0-dbg deb debug extra
arch=ia64,i386,amd64,ppc64,ppc64el,powerpc,powerpcspe,armel,armhf,arm64,mips,mipsel,mips64,mips64el
 libunwind-setjmp0-dev deb libdevel optional
arch=ia64,i386,amd64,ppc64,ppc64el,powerpc,powerpcspe,armel,armhf,arm64,mips,mipsel,mips64,mips64el
 libunwind8 deb libs optional
arch=ia64,i386,amd64,ppc64,ppc64el,powerpc,powerpcspe,armel,armhf,arm64,mips,mipsel,mips64,mips64el
 libunwind8-dbg deb debug extra
arch=ia64,i386,amd64,ppc64,ppc64el,powerpc,powerpcspe,armel,armhf,arm64,mips,mipsel,mips64,mips64el
 libunwind8-dev deb libdevel optional
arch=ia64,i386,amd64,ppc64,ppc64el,powerpc,powerpcspe,armel,armhf,arm64,mips,mipsel,mips64,mips64el
Directory: pool/main/libu/libunwind
Priority: source
Section: libs

Package: libunwind-dev
Source: libunwind
Version: 1.1-4.1
Installed-Size: 2579
Maintainer: Daigo Moriwaki 
Architecture: amd64
Replaces: libunwind8-dev (<< 1.1-3.2)
Depends: libunwind8 (= 1.1-4.1)
Conflicts: libunwind1-dev, libunwind7-dev
Description: library to determine the call-chain of a program - development
Description-md5: 968fa5fbcdf32543dedc4d9d40405c26
Homepage: http://www.nongnu.org/libunwind
Tag: devel::library, role::devel-lib
Section: libdevel
Priority: optional
Filename: pool/main/libu/libunwind/libunwind-dev_1.1-4.1_amd64.deb
Size: 362906
MD5sum: b420afe431796f36ec87730400edc822
SHA256: 5790e97e7cddb09b4f533dfd69633eff3a4f7c51ade43d43a472c6902493643f

Package: libunwind8-dev
Source: libunwind
Version: 1.1-4.1
Installed-Size: 17
Maintainer: Daigo Moriwaki 
Architecture: amd64
Depends: libunwind-dev (= 1.1-4.1)
Description: library to determine the call-chain of a program - development
Description-md5: a779e0cd19f7d3c663913c1a8c75371f
Homepage: http://www.nongnu.org/libunwind
Tag: devel::library, role::devel-lib
Section: libdevel
Priority: optional
Filename: pool/main/libu/libunwind/libunwind8-dev_1.1-4.1_amd64.deb
Size: 7432
MD5sum: 04ece38a584ff5efd945263379098bfe
SHA256: 500cd269afff08f90b48e08fada7ec57e6d563d69f4050edc22abe445c985bf3

Package: libunwind8
Source: libunwind
Version: 1.1-4.1
Installed-Size: 159
Maintainer: Daigo Moriwaki 
Architecture: amd64
Replaces: libgcc1 (<< 1:4.0.0-2)
Depends: libc6 (>= 2.3), liblzma5 (>= 5.1.1alpha+20110809)
Conflicts: libunwind1-dev
Description: library to determine the call-chain of a program - runtime
Description-md5: 7095fd22983044140f5faf099162a263
Homepage: http://www.nongnu.org/libunwind
Tag: role::shared-lib
Section: libs
Priority: optional
Filename: pool/main/libu/libunwind/libunwind8_1.1-4.1_amd64.deb
Size: 48708
MD5sum: aad748dcd27a3616fadd20381e9c4471
SHA256: ba975a88f53ed02ca529e48a2fda68b500d7699d6bb77647cd8bc2721059387a

Package: libunwind8-dbg
Source: libunwind
Version: 1.1-4.1
Installed-Size: 338
Maintainer: Daigo Moriwaki 
Architecture: amd64
Depends: libunwind8 

Bug#869709: libfiu: fix autopkgtest syntax

[Steve Langasek]

Package: libfiu
Version: 0.95-3
Severity: important
Tags: patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu artful ubuntu-patch

Hi Chris,

As shown at ,
the libfiu autopkgtest has been failing since 0.95-2 due to problems with
the autopkgtest infra's parsing of debian/tests/control.

The attached patch gets the autopkgtest to work here, by using double quotes
instead of single quotes to survive autopkgtest's parser and by setting
allow-stderr to account for the error message from ls.

I have applied this patch to libfiu in Ubuntu; please consider applying it
in Debian as well.

Thanks,
-- 
Steve Langasek   Give me a lever long enough and a Free OS
Debian Developer   to set it on, and I can move the world.
Ubuntu Developerhttp://www.debian.org/
slanga...@ubuntu.com vor...@debian.org
diff -Nru libfiu-0.95/debian/tests/control libfiu-0.95/debian/tests/control
--- libfiu-0.95/debian/tests/control2016-11-18 00:47:22.0 -0800
+++ libfiu-0.95/debian/tests/control2017-07-25 13:23:39.0 -0700
@@ -4,7 +4,8 @@
 
 # Test that fiu-run actually blocks the C call.
 Depends: @
-Test-Command: ! fiu-run -x -c 'enable name=posix/io/*' /bin/ls
+Restrictions: allow-stderr
+Test-Command: ! fiu-run -x -c "enable name=posix/io/*" /bin/ls
 
 # Smoke test the Python 2 module.
 Depends: @

Bug#869708: jbigkit: CVE-2017-9937

[Salvatore Bonaccorso]

Source: jbigkit
Version: 2.1-3.1
Severity: important
Tags: upstream security

Hi,

the following vulnerability was published for jbigkit.

CVE-2017-9937[0]:
| In LibTIFF 4.0.8, there is a memory malloc failure in tif_jbig.c. A
| crafted TIFF document can lead to an abort resulting in a remote denial
| of service attack.

Note, that originally the issue has been reported for LibTIFF project,
[1], but as shown in [2] the issue lies in jbigkit itself. It can be
seen either with an ASAN build, or under valgrind:

==10811== Memcheck, a memory error detector
==10811== Copyright (C) 2002-2015, and GNU GPL'd, by Julian Seward et al.
==10811== Using Valgrind-3.12.0 and LibVEX; rerun with -h for copyright info
==10811== Command: ./jbigkit-2.1/pbmtools/jbgtopbm ./poc2_only_jbig_content
==10811== 
==10811== 
==10811== Process terminating with default action of signal 6 (SIGABRT)
==10811==at 0x5078FCF: raise (raise.c:51)
==10811==by 0x507A3F9: abort (abort.c:89)
==10811==by 0x4E3944C: ??? (in /usr/lib/x86_64-linux-gnu/libjbig.so.0)
==10811==by 0x4E3EB79: jbg_dec_in (in 
/usr/lib/x86_64-linux-gnu/libjbig.so.0)
==10811==by 0x109233: main (jbgtopbm.c:407)
==10811== 
==10811== HEAP SUMMARY:
==10811== in use at exit: 17,192 bytes in 14 blocks
==10811==   total heap usage: 15 allocs, 1 frees, 21,288 bytes allocated
==10811== 
==10811== LEAK SUMMARY:
==10811==definitely lost: 0 bytes in 0 blocks
==10811==indirectly lost: 0 bytes in 0 blocks
==10811==  possibly lost: 0 bytes in 0 blocks
==10811==still reachable: 17,192 bytes in 14 blocks
==10811== suppressed: 0 bytes in 0 blocks
==10811== Rerun with --leak-check=full to see details of leaked memory
==10811== 
==10811== For counts of detected and suppressed errors, rerun with: -v
==10811== ERROR SUMMARY: 0 errors from 0 contexts (suppressed: 0 from 0)
Aborted
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-9937
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9937
[1] http://bugzilla.maptools.org/show_bug.cgi?id=2707
[2] http://bugzilla.maptools.org/show_bug.cgi?id=2707#c8

Regards,
Salvatore

Bug#869509: [Pkg-emacsen-addons] Bug#869509: dh-elpa: please support tuning which emacs flavors to skip

[Aaron M. Ucko]

Sean Whitton  writes:

>   dh_elpa --min-emacs-version 25

Ah, OK.  Go for it!

-- 
Aaron M. Ucko, KB1CJC (amu at alum.mit.edu, ucko at debian.org)
http://www.mit.edu/~amu/ | http://stuff.mit.edu/cgi/finger/?a...@monk.mit.edu

Bug#858222: Info received (Bug#858222: Info received (Bug#858222: systemd: multi-seat not working : no gdm appear in second seat when attaching graphic card))

[Frédéric]

My curiosity led me to disable wayland in GDM.

# cat /etc/gdm3/daemon.conf 
[daemon]
WaylandEnable=false

Strangely enough, nothing appears on seat0, and a GDM session opens on seat1! 
(the reverse situation from previously).
# loginctl list-sessions 
   SESSIONUID USER SEAT TTY 
 2   1000 user seat1   
# loginctl show-session 2 -p Type
Type=x11


Looking at the logs, it seems that I hit another bug this time (which is 
different from the previous setup with wayland) :
https://bugzilla.redhat.com/show_bug.cgi?id=1404849

In this case, the bug is related to GDM more than systemd : is is possible to 
reaffect the bug to GDM and wayland?
For the record, I tried LDM instead of GDM, and it works OK : no wayland at all 
but 2 seats working...

-

root@live:~# loginctl list-sessions 
   SESSIONUID USER SEAT TTY 
 4  0 root seat0/dev/tty2   
   c11120 lightdm  seat0
11   1002 user1seat1
 7   1000 user2seat0

4 sessions listed.
root@live:~# loginctl show-session 4 -p Type
Type=tty
root@live:~# loginctl show-session c11 -p Type
Type=x11
root@live:~# loginctl show-session 11 -p Type
Type=x11
root@live:~# loginctl show-session 7 -p Type
Type=x11

As a summary :
Normal configuration : only seat0 working (GDM on wayland, session on X11)
disable wayland in GDM : only seat1 working, probably bug Fedora/1404849 on 
seat0
use LDM everywhere (and no wayland) : everything working with X11

Bug#851085: ssl 1.1 *compile* patch

[Chris West]

The attached patch updates the use of the DH api such that the code
compiles. However, its tests now all fail with:

console: SSL negotiation failed
140691693188864:error:14094410:SSL routines:ssl3_read_bytes:sslv3
  alert handshake failure:../ssl/record/rec_layer_s3.c:1399:SSL alert number 40


The server is angry that:

ERROR: FileSSLAccept(): SSL error on fd 4:
error:1417A0C1:SSL routines:tls_post_process_client_hello:no shared cipher

.. with ctutil.c:1745 patched to print .. %s", 
ERR_error_string(ERR_get_error(), NULL).


It's not calling the changed code at all, so it's not a mistake I've
made. This error message is apparently a pretty general "something is
wrong with certs or ciphers or something". The client is definitely
sending a very large cipher list; I wireshark'd it.

No idea!

Chris.

>From 2a3aad60bea93bc849881983b6f5cb930b900334 Mon Sep 17 00:00:00 2001
From: "Chris West (Faux)" 
Date: Tue, 25 Jul 2017 19:04:22 +
Subject: [PATCH] new openssl api for generating DH

---
 conserver-8.2.1/conserver/main.c | 76 +++-
 conserver-8.2.1/debian/control   |  2 +-
 2 files changed, 37 insertions(+), 41 deletions(-)

diff --git a/conserver-8.2.1/conserver/main.c b/conserver-8.2.1/conserver/main.c
index cb9af46..c5d9ca7 100644
--- a/conserver-8.2.1/conserver/main.c
+++ b/conserver-8.2.1/conserver/main.c
@@ -92,6 +92,38 @@ DH *dh1024 = (DH *)0;
 DH *dh2048 = (DH *)0;
 DH *dh4096 = (DH *)0;
 
+DH *
+DHFromArray(char *dh_p, size_t dh_p_size, char *dh_g, size_t dh_g_size) {
+DH *dh;
+BIGNUM *p, *g;
+
+p = BN_bin2bn(dh_p, dh_p_size, NULL);
+if (p == NULL) {
+	BN_free(p);
+	return (NULL);
+}
+
+g = BN_bin2bn(dh_g, dh_g_size, NULL);
+if (g == NULL) {
+	BN_free(g);
+	return (NULL);
+}
+
+if ((dh = DH_new()) == NULL) {
+	BN_free(p);
+	BN_free(g);
+	return (NULL);
+}
+
+if (!DH_set0_pqg(dh, p, NULL, g)) {
+	BN_free(p);
+	BN_free(g);
+	DH_free(dh);
+	return (NULL);
+}
+
+return (dh);
+}
 
 DH *
 GetDH512(void)
@@ -108,17 +140,8 @@ GetDH512(void)
 static unsigned char dh512_g[] = {
 	0x02,
 };
-DH *dh;
 
-if ((dh = DH_new()) == NULL)
-	return (NULL);
-dh->p = BN_bin2bn(dh512_p, sizeof(dh512_p), NULL);
-dh->g = BN_bin2bn(dh512_g, sizeof(dh512_g), NULL);
-if ((dh->p == NULL) || (dh->g == NULL)) {
-	DH_free(dh);
-	return (NULL);
-}
-return (dh);
+return DHFromArray(dh512_p, sizeof(dh512_p), dh512_g, sizeof(dh512_g));
 }
 
 DH *
@@ -142,17 +165,8 @@ GetDH1024(void)
 static unsigned char dh1024_g[] = {
 	0x02,
 };
-DH *dh;
 
-if ((dh = DH_new()) == NULL)
-	return (NULL);
-dh->p = BN_bin2bn(dh1024_p, sizeof(dh1024_p), NULL);
-dh->g = BN_bin2bn(dh1024_g, sizeof(dh1024_g), NULL);
-if ((dh->p == NULL) || (dh->g == NULL)) {
-	DH_free(dh);
-	return (NULL);
-}
-return (dh);
+return DHFromArray(dh1024_p, sizeof(dh1024_p), dh1024_g, sizeof(dh1024_g));
 }
 
 DH *
@@ -189,17 +203,8 @@ GetDH2048(void)
 static unsigned char dh2048_g[] = {
 	0x02,
 };
-DH *dh;
 
-if ((dh = DH_new()) == NULL)
-	return (NULL);
-dh->p = BN_bin2bn(dh2048_p, sizeof(dh2048_p), NULL);
-dh->g = BN_bin2bn(dh2048_g, sizeof(dh2048_g), NULL);
-if ((dh->p == NULL) || (dh->g == NULL)) {
-	DH_free(dh);
-	return (NULL);
-}
-return (dh);
+return DHFromArray(dh2048_p, sizeof(dh2048_p), dh2048_g, sizeof(dh2048_g));
 }
 
 DH *
@@ -262,17 +267,8 @@ GetDH4096(void)
 static unsigned char dh4096_g[] = {
 	0x02,
 };
-DH *dh;
 
-if ((dh = DH_new()) == NULL)
-	return (NULL);
-dh->p = BN_bin2bn(dh4096_p, sizeof(dh4096_p), NULL);
-dh->g = BN_bin2bn(dh4096_g, sizeof(dh4096_g), NULL);
-if ((dh->p == NULL) || (dh->g == NULL)) {
-	DH_free(dh);
-	return (NULL);
-}
-return (dh);
+return DHFromArray(dh4096_p, sizeof(dh4096_p), dh4096_g, sizeof(dh4096_g));
 }
 
 DH *
diff --git a/conserver-8.2.1/debian/control b/conserver-8.2.1/debian/control
index 6e78071..59e8e01 100644
--- a/conserver-8.2.1/debian/control
+++ b/conserver-8.2.1/debian/control
@@ -2,7 +2,7 @@ Source: conserver
 Section: non-free/comm
 Priority: optional
 Maintainer: Jörgen Hägg 
-Build-Depends: debhelper (>= 7.0.50), po-debconf, libpam0g-dev, libwrap0-dev, libssl1.0-dev
+Build-Depends: debhelper (>= 7.0.50), po-debconf, libpam0g-dev, libwrap0-dev, libssl-dev
 Standards-Version: 3.9.8
 XS-Autobuild: yes
 Homepage: http://www.conserver.com/
-- 
2.13.3

Bug#869513: console-setup changes remain only till next reboot

[Anton Zinoviev]

On Tue, Jul 25, 2017 at 09:47:21PM +0200, Harry Haller wrote:
> 
> Thanks for Your answer.  No, there is an error. setupcon says: 
> 
> setupcon: None of /etc/default/keyboard./etc/console-setup/cached_Lat15-
> TerminusBold24x12.psf.gz, /etc/default/console-setup./etc/console-setup/
> cached_Lat15-TerminusBold24x12.psf.gz, /root/.console-setup./etc/console-
> setup/cached_Lat15-TerminusBold24x12.psf.gz, /root/.keyboard./etc/console-
> setup/cached_Lat15-TerminusBold24x12.psf.gz exists.

Hello!

You have to run setupcon without any arguments.  Just 

  setupcon

and not

  setupcon /etc/console-setup/cached_Lat15-TerminusBold24x12.psf.gz

Anton Zinoviev

Bug#863711: playonlinux: The current PlayOnLinux package version is outdated

[Bertrand Marc]

Sorry, I had no internet access in the past week.

I am currently working on packaging POL 4.2.12, and I will probably upload it 
in the coming days.

Best regards,
Bertrand





signature.asc
Description: OpenPGP digital signature

Bug#869707: firejail FTCBFS: uses the build architecture compiler

[Helmut Grohne]

Source: firejail
Version: 0.9.48-2
Severity: wishlist
Tags: patch upstream
User: helm...@debian.org
Usertags: rebootstrap

firejail fails to cross build from source, because it uses the build
architecture compiler (the default of GNU make) rather than the compiler
discovered by configure (which would have been correct). The relevant
Makefile.in lack CC substitutions. The attached patch adds the missing
substitutions.

Unfortunately, that isn't sufficient for a successfull cross build as
the top level Makefile tries to execute fseccomp, which was built for
the host architecture. More thought is likely needed here, but the
attached patch still makes sense to apply (e.g. for building with
clang).

Helmut
Allow substituting CC.

Index: firejail-0.9.48/src/lib/Makefile.in
===
--- firejail-0.9.48.orig/src/lib/Makefile.in
+++ firejail-0.9.48/src/lib/Makefile.in
@@ -1,3 +1,4 @@
+CC=@CC@
 PREFIX=@prefix@
 VERSION=@PACKAGE_VERSION@
 NAME=@PACKAGE_NAME@
Index: firejail-0.9.48/src/faudit/Makefile.in
===
--- firejail-0.9.48.orig/src/faudit/Makefile.in
+++ firejail-0.9.48/src/faudit/Makefile.in
@@ -1,5 +1,6 @@
 all: faudit
 
+CC=@CC@
 PREFIX=@prefix@
 VERSION=@PACKAGE_VERSION@
 NAME=@PACKAGE_NAME@
Index: firejail-0.9.48/src/fcopy/Makefile.in
===
--- firejail-0.9.48.orig/src/fcopy/Makefile.in
+++ firejail-0.9.48/src/fcopy/Makefile.in
@@ -1,5 +1,6 @@
 all: fcopy
 
+CC=@CC@
 prefix=@prefix@
 exec_prefix=@exec_prefix@
 libdir=@libdir@
Index: firejail-0.9.48/src/firecfg/Makefile.in
===
--- firejail-0.9.48.orig/src/firecfg/Makefile.in
+++ firejail-0.9.48/src/firecfg/Makefile.in
@@ -1,5 +1,6 @@
 all: firecfg
 
+CC=@CC@
 prefix=@prefix@
 exec_prefix=@exec_prefix@
 libdir=@libdir@
Index: firejail-0.9.48/src/firejail/Makefile.in
===
--- firejail-0.9.48.orig/src/firejail/Makefile.in
+++ firejail-0.9.48/src/firejail/Makefile.in
@@ -1,5 +1,6 @@
 all: firejail
 
+CC=@CC@
 prefix=@prefix@
 exec_prefix=@exec_prefix@
 libdir=@libdir@
Index: firejail-0.9.48/src/firemon/Makefile.in
===
--- firejail-0.9.48.orig/src/firemon/Makefile.in
+++ firejail-0.9.48/src/firemon/Makefile.in
@@ -1,5 +1,6 @@
 all: firemon
 
+CC=@CC@
 PREFIX=@prefix@
 VERSION=@PACKAGE_VERSION@
 NAME=@PACKAGE_NAME@
Index: firejail-0.9.48/src/fnet/Makefile.in
===
--- firejail-0.9.48.orig/src/fnet/Makefile.in
+++ firejail-0.9.48/src/fnet/Makefile.in
@@ -1,5 +1,6 @@
 all: fnet
 
+CC=@CC@
 prefix=@prefix@
 exec_prefix=@exec_prefix@
 libdir=@libdir@
Index: firejail-0.9.48/src/fseccomp/Makefile.in
===
--- firejail-0.9.48.orig/src/fseccomp/Makefile.in
+++ firejail-0.9.48/src/fseccomp/Makefile.in
@@ -1,5 +1,6 @@
 all: fseccomp
 
+CC=@CC@
 prefix=@prefix@
 exec_prefix=@exec_prefix@
 libdir=@libdir@
Index: firejail-0.9.48/src/ftee/Makefile.in
===
--- firejail-0.9.48.orig/src/ftee/Makefile.in
+++ firejail-0.9.48/src/ftee/Makefile.in
@@ -1,5 +1,6 @@
 all: ftee
 
+CC=@CC@
 PREFIX=@prefix@
 VERSION=@PACKAGE_VERSION@
 NAME=@PACKAGE_NAME@
Index: firejail-0.9.48/src/libtrace/Makefile.in
===
--- firejail-0.9.48.orig/src/libtrace/Makefile.in
+++ firejail-0.9.48/src/libtrace/Makefile.in
@@ -1,3 +1,4 @@
+CC=@CC@
 PREFIX=@prefix@
 VERSION=@PACKAGE_VERSION@
 NAME=@PACKAGE_NAME@
Index: firejail-0.9.48/src/libtracelog/Makefile.in
===
--- firejail-0.9.48.orig/src/libtracelog/Makefile.in
+++ firejail-0.9.48/src/libtracelog/Makefile.in
@@ -1,3 +1,4 @@
+CC=@CC@
 PREFIX=@prefix@
 VERSION=@PACKAGE_VERSION@
 NAME=@PACKAGE_NAME@

Bug#869122: Bug#869373: Bug#869122: perl: 5.26 FTBFS on hppa: broken miniperl?

[John David Anglin]

On 2017-07-24, at 5:31 PM, John David Anglin wrote:

>> Does it work for you without the Perl_custom_op_get_field() code
>> reorganization if you patch cflags.SH further like this?
>> 
>> -op) : work around http://bugs.debian.org/838613
>> +op|opmini) : work around http://bugs.debian.org/838613
>> 
>> This should make it build both op.c and opmini.c at -O0.
> 
> Might work.

Another option is to use gcc-7.  It built 2.26 successfully.  Problem seems to 
be specific to gcc-6.

> 
>> 
>> Or does this hit the hppa "-O0 -fPIC" problem again?
> 
> Again, I don't know.  I had thought the R_PARISC_DPREL21L relocation problem 
> was
> an optimization issue.  I have installed perl 5.26+b1 on a couple of systems. 
>  Building
> libjavascript-minifier-xs-perl with it doesn't trigger the issue nor does 
> building it with
> DEB_BUILD_OPTIONS=noop.

There are a handful of packages that still have the R_PARISC_DPREL21L 
relocation problem
using 5.26+b1.  I looked at libembperl-perl.  The gcc driver is dropping the 
-fPIC option and
it's not passed to cc1.  Thus, the relocation error.

It might be some kind of argument length error.

Dave
--
John David Anglin   dave.ang...@bell.net

Bug#858222: Info received (Bug#858222: systemd: multi-seat not working : no gdm appear in second seat when attaching graphic card)

[Frédéric]

For the record, I just tested the stable version of Debian (stretch, all 
updates applied) : unfortunately Multiseat does not work...
Am I doomed to stay in jessie if I want to use multiseat?... Has anyone 
successfuly tried it with stretch? 

I tried with a more recent version of the kernel (4.11.0-1-amd64, taken from 
buster), and the problem persists.
I this may help, here is what I see on a freshly booted multiseat computer.
I tarred the logs and kept it safe, so I can easily get more information if 
needed. (I even have a bootable USB key with stretch installed and multiseat 
configured : I can boot it pretty quickly if tests are needed. It is disposable 
so I can break the system if really necessary...).

ls -latrh /var/log : (note the 3 Xorg._.log)
-rw-r--r--  1 root  root15K Jul 25 21:26 Xorg.1.log
-rw-r--r--  1 root  root33K Jul 25 21:26 Xorg.0.log
drwxr-xr-x 10 root  root   4.0K Jul 25 21:26 .
-rw-r--r--  1 root  root30K Jul 25 21:26 Xorg.2.log
-rw-rw-r--  1 root  utmp24K Jul 25 21:27 wtmp
-rw-r-  1 root  adm387K Jul 25 21:27 kern.log
-rw-r-  1 root  adm106K Jul 25 21:27 debug
-rw-r-  1 root  adm1.7M Jul 25 21:27 user.log
-rw-r-  1 root  adm2.0M Jul 25 21:27 messages
-rw-r-  1 root  adm1.7M Jul 25 21:27 syslog
-rw-r-  1 root  adm365K Jul 25 21:27 daemon.log
-rw-r-  1 root  adm 29K Jul 25 21:27 auth.log


The XOrg logs seems to be that of seat1, since the resolutions set up matches 
that of seat1 (seat0 has a smaller screen).
I'm not sure if this is related to wayland, since it seems to be used on my 
system only for the GDM screen on seat0




loginctl list-sessions 
   SESSIONUID USER SEAT TTY 
c1117 Debian-gdm   seat0/dev/tty1   
c3117 Debian-gdm   seat1
 2   1000 user seat0/dev/tty2   

loginctl show-session c1 -p Type
Type=wayland
loginctl show-session c3 -p Type
Type=x11
loginctl show-session 2 -p Type
Type=x11



in dmesg :
[   25.056914] gnome-session-c[1343]: segfault at 0 ip   (null) sp 
12a74aa8 error 14 in gnome-session-check-accelerated[a1226000+2000]
[   25.103006] gnome-session-c[1432]: segfault at 0 ip   (null) sp 
5e525398 error 14 in gnome-session-check-accelerated[4cd8a000+2000]


loginctl seat-status seat0 
seat0
Sessions: *2 c1
 Devices:
  ├─/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input8
  │ input:input8 "Power Button"
  ├─/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0C:00/input/input7
  │ input:input7 "Power Button"
  ├─/sys/devices/pci:00/:00:02.0/:05:00.0/drm/card0
  │ [MASTER] drm:card0
  │ 
├─/sys/devices/pci:00/:00:02.0/:05:00.0/drm/card0/card0-DVI-I-1
  │ │ [MASTER] drm:card0-DVI-I-1
  │ 
├─/sys/devices/pci:00/:00:02.0/:05:00.0/drm/card0/card0-HDMI-A-1
  │ │ [MASTER] drm:card0-HDMI-A-1
  │ 
└─/sys/devices/pci:00/:00:02.0/:05:00.0/drm/card0/card0-VGA-1
  │   [MASTER] drm:card0-VGA-1
  
├─/sys/devices/pci:00/:00:02.0/:05:00.0/drm/renderD128
  │ drm:renderD128
  
├─/sys/devices/pci:00/:00:02.0/:05:00.0/graphics/fb0
  │ [MASTER] graphics:fb0 "radeondrmfb"
  
├─/sys/devices/pci:00/:00:02.0/:05:00.1/sound/card1
  │ sound:card1 "HDMI"
  │ 
└─/sys/devices/pci:00/:00:02.0/:05:00.1/sound/card1/input9
  │   input:input9 "HDA ATI HDMI HDMI/DP,pcm=3"
  
├─/sys/devices/pci:00/:00:03.0/:04:00.1/sound/card2
  │ sound:card2 "HDMI_1"
  │ 
└─/sys/devices/pci:00/:00:03.0/:04:00.1/sound/card2/input10
  │   input:input10 "HDA ATI HDMI HDMI/DP,pcm=3"
  ├─/sys/devices/pci:00/:00:1a.0/usb3
  │ usb:usb3
  │ └─/sys/devices/pci:00/:00:1a.0/usb3/3-1
  │   usb:3-1
  ├─/sys/devices/pci:00/:00:1b.0/sound/card0
  │ sound:card0 "PCH"
  │ ├─/sys/devices/pci:00/:00:1b.0/sound/card0/input11
  │ │ input:input11 "HDA Intel PCH Front Mic"
  │ ├─/sys/devices/pci:00/:00:1b.0/sound/card0/input12
  │ │ input:input12 

Bug#869706: qemu: CVE-2017-10911

[Salvatore Bonaccorso]

Source: qemu
Version: 1:2.8+dfsg-6
Severity: important
Tags: security upstream
Control: fixed -1 1:2.8+dfsg-6+deb9u1

Hi,

the following vulnerability was published for qemu.

CVE-2017-10911[0]:
| The make_response function in drivers/block/xen-blkback/blkback.c in
| the Linux kernel before 4.11.8 allows guest OS users to obtain
| sensitive information from host OS (or other guest OS) kernel memory by
| leveraging the copying of uninitialized padding fields in Xen
| block-interface response structures, aka XSA-216.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-10911
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#869509: [Pkg-emacsen-addons] Bug#869509: dh-elpa: please support tuning which emacs flavors to skip

[Sean Whitton]

Hello again,

On Mon, Jul 24, 2017 at 11:53:34PM -0400, Aaron M. Ucko wrote:
> OK, thanks.  Should dh-elpa then stop byte-compiling anything against
> Emacs 24, if there are already addons that don't support it and Emacs 24
> is on the way out anyway?

David Bremner points out that something like this would result in a
bumpy transition for those upgrading from stretch to buster: they're
likely to retain emacs24 installed, and to suddenly have /all/ addons stop
working would be unnecessarily disruptive.

Our current plan is to add an option like this:

override_dh_elpa:
dh_elpa --min-emacs-version 25

This would make it possible to declare incompatibilities with older
versions of Emacs, avoiding byte-compilation against those, but wouldn't
make it possible to declare incompatibility with the latest version
but compatibility with an older version, which amounts to a bug blocking
the transition.

-- 
Sean Whitton


signature.asc
Description: PGP signature

Bug#868701: memcached: CVE-2017-9951: Heap-based buffer over-read in try_read_command function

[Salvatore Bonaccorso]

Hi Guillaume!

On Tue, Jul 25, 2017 at 01:16:26AM +0200, Guillaume Delacour wrote:
> On Mon, Jul 17, 2017 at 10:34:23PM +0200, Salvatore Bonaccorso wrote:
> > Please adjust the affected versions in the BTS as needed.
> > 
> 
> Please find attached the debdiff for Debian 9 Stretch.
> Also, you can find a little test case (and results) without
> (CVE-2017-9951_1.4.33.log) 
> and with the fix (CVE-2017-9951_1.4.33_fixed.log). I've build and
> test it on a clean stretch schroot.

Thanks for your work! I think the issue on its own would not warrant a
DSA. Can you fix the issue please via a point release? Some guide can
be found here:

https://www.debian.org/doc/manuals/developers-reference/ch05.en.html#upload-stable

I did quickly thouggh skim over your debdiffs. When you propose the
debdiff to the stable release manager make sure to adjust the
targetting distribution in the changelog, that is 'stretch' for
1.4.33-1+deb9u1, and 'jessie' for 1.4.21-1.1+deb8u2 (rather than
unstable).

Hope this helps and thanks for your work!

Regards,
Salvatore

Bug#869694: nvidia-driver: Installing the nvidia-340 package on stretech is impossible, nvidia-375 will be installed instead

[Luca Boccassi]

On Tue, 2017-07-25 at 19:44 +0200, herrdeh wrote:
> Package: nvidia-driver
> Severity: important
> 
> Dear Maintainer,
> 
> doing the following:
> 
>    * aptitude install nvidia-legacy-340xx-driver
>    * aptitude -r install linux-headers-$(uname -r|sed 's,[^-]*-[^-]*-
> ,,')
> nvidia-legacy-340xx-driver
> 
> Here, linux-headers for the nvidia-375 package, not for the -340
> package are
> installed, making the system unusable.
> I think, this bug was already reported in archived bug #848514 - but
> it still
> persists in my installation.
> 
> I'm at the nouveau driver at the moment, but can neiter do suspend
> nor
> hibernate, so on a laptop this is not a good solution.
> 
> herrdeh

Hi,

cannot reproduce in a fresh Stretch chroot. All the correct packages
are installed.

Are you sure you don't have previously installed leftovers?

Also there are no "linux-headers for the nvidia-375 package", the
kernel headers have nothing to do with the nvidia-driver packages.


# aptitude install nvidia-legacy-340xx-driver
The following NEW packages will be installed:
  dkms{a} glx-alternative-mesa{a} glx-alternative-nvidia{a} glx-diversions{a} 
keyboard-configuration{a} kmod{a} 
  libdbus-1-3{a} libdrm2{a} libegl1-mesa{a} libegl1-nvidia-legacy-340xx{a} 
libepoxy0{a} libexpat1{a} 
  libfontenc1{a} libfreetype6{a} libgbm1{a} libgl1-mesa-glx{a} 
libgl1-nvidia-legacy-340xx-glx{a} libglapi-mesa{a} 
  libice6{a} libkmod2{a} libnvidia-legacy-340xx-eglcore{a} 
libnvidia-legacy-340xx-glcore{a} 
  libnvidia-legacy-340xx-ml1{a} libpciaccess0{a} libpixman-1-0{a} 
libpng16-16{a} libprocps6{a} libsm6{a} 
  libvdpau1{a} libwayland-client0{a} libwayland-server0{a} libx11-6{a} 
libx11-data{a} libx11-xcb1{a} libxau6{a} 
  libxaw7{a} libxcb-dri2-0{a} libxcb-dri3-0{a} libxcb-glx0{a} 
libxcb-present0{a} libxcb-sync1{a} 
  libxcb-xfixes0{a} libxcb1{a} libxdamage1{a} libxdmcp6{a} libxext6{a} 
libxfixes3{a} libxfont2{a} libxkbfile1{a} 
  libxmu6{a} libxpm4{a} libxshmfence1{a} libxt6{a} libxxf86vm1{a} 
nvidia-installer-cleanup{a} 
  nvidia-kernel-common{a} nvidia-legacy-340xx-alternative{a} 
nvidia-legacy-340xx-driver 
  nvidia-legacy-340xx-driver-bin{a} nvidia-legacy-340xx-driver-libs{a} 
nvidia-legacy-340xx-kernel-dkms{a} 
  nvidia-legacy-340xx-kernel-support{a} nvidia-legacy-340xx-vdpau-driver{a} 
nvidia-modprobe{a} nvidia-support{a} 
  procps{a} udev{a} update-glx{a} x11-common{a} x11-xkb-utils{a} xkb-data{a} 
xserver-common{a} 
  xserver-xorg-core{a} xserver-xorg-video-nvidia-legacy-340xx{a} 
The following packages are RECOMMENDED but will NOT be installed:
  dbus fakeroot libgl1-mesa-dri libgles1-nvidia-legacy-340xx 
libgles2-nvidia-legacy-340xx 
  libnvidia-legacy-340xx-cfg1 libpam-systemd linux-headers-amd64 lsb-release 
nvidia-persistenced 
  nvidia-settings-legacy-340xx pseudo psmisc sudo sudo-ldap xauth xfonts-base 
0 packages upgraded, 74 newly installed, 0 to remove and 0 not upgraded.
Need to get 35.7 MB/37.4 MB of archives. After unpacking 174 MB will be used.
Do you want to continue? [Y/n/?] y
Get: 1 http://cdn-fastly.deb.debian.org/debian stretch/main amd64 libkmod2 
amd64 23-2 [48.1 kB]
Get: 2 http://cdn-fastly.deb.debian.org/debian stretch/main amd64 libprocps6 
amd64 2:3.3.12-3 [58.1 kB]
Get: 3 http://cdn-fastly.deb.debian.org/debian stretch/main amd64 procps amd64 
2:3.3.12-3 [249 kB]
Get: 4 http://cdn-fastly.deb.debian.org/debian stretch/main amd64 udev amd64 
232-25+deb9u1 [1113 kB]
Get: 5 http://cdn-fastly.deb.debian.org/debian stretch/contrib amd64 
nvidia-installer-cleanup amd64 20151021+4 [19.3 kB]
Get: 6 http://cdn-fastly.deb.debian.org/debian stretch/contrib amd64 update-glx 
amd64 0.7.4 [7772 B]
Get: 7 http://cdn-fastly.deb.debian.org/debian stretch/contrib amd64 
glx-alternative-mesa amd64 0.7.4 [8184 B]
Get: 8 http://cdn-fastly.deb.debian.org/debian stretch/contrib amd64 
glx-diversions amd64 0.7.4 [10.3 kB]
Get: 9 http://cdn-fastly.deb.debian.org/debian stretch/main amd64 
keyboard-configuration all 1.164 [644 kB]
Get: 10 http://cdn-fastly.deb.debian.org/debian stretch/contrib amd64 
glx-alternative-nvidia amd64 0.7.4 [9246 B]
Get: 11 http://cdn-fastly.deb.debian.org/debian stretch/non-free amd64 
libnvidia-legacy-340xx-glcore amd64 340.102-1 [7048 kB]
Get: 12 http://cdn-fastly.deb.debian.org/debian stretch/contrib amd64 
nvidia-support amd64 20151021+4 [20.1 kB]
Get: 13 http://cdn-fastly.deb.debian.org/debian stretch/non-free amd64 
libgl1-nvidia-legacy-340xx-glx amd64 340.102-1 [465 kB]
Get: 14 http://cdn-fastly.deb.debian.org/debian stretch/non-free amd64 
libnvidia-legacy-340xx-eglcore amd64 340.102-1 [6944 kB]
Get: 15 http://cdn-fastly.deb.debian.org/debian stretch/non-free amd64 
libegl1-nvidia-legacy-340xx amd64 340.102-1 [226 kB]
Get: 16 http://cdn-fastly.deb.debian.org/debian stretch/non-free amd64 
nvidia-legacy-340xx-driver-libs amd64 340.102-1 [75.1 kB]
Get: 17 http://cdn-fastly.deb.debian.org/debian stretch/non-free amd64 
libnvidia-legacy-340xx-ml1 amd64 340.102-1 [355 kB]
Get: 18