Bug#862612: RM: golang-github-gosexy-gettext -- ROM; no rdeps, no update since 2013

[Michael Stapelberg]

Package: ftp.debian.org
Severity: normal

Working on Debian bug #860608, I stumbled upon
golang-github-gosexy-gettext. I considered fixing that package, but
realized that it has been last updated in 2013 and has no reverse
dependencies.

As Go libraries are only packaged in Debian to enable packaging Go
programs for Debian, this package is currently useless. Instead of
investing more time and energy into maintaining it, please remove it
from Debian. If it turns out we need it again at some point in the
future, we can always re-upload.

Thanks!

Bug#862461: tiptop: requires root to run

[Tomasz Buchert]

On 14/05/17 20:58, Ben Hutchings wrote:
> On Sun, 2017-05-14 at 10:43 +0200, Tomasz Buchert wrote:
> > On 12/05/17 18:54, Nathaniel Beaver wrote:
> > > [...]
> >
> > Thank you, Nathaniel.
> >
> > I confirm the problem. A safe bet is that
> > https://lkml.org/lkml/2016/1/11/587 is the cause.  You can verify that
> > /proc/sys/kernel/perf_event_paranoid contains "3". By running
> >
> > echo 2 | sudo tee /proc/sys/kernel/perf_event_paranoid
> >
> > you should be able to use tiptop as a normal user again.
> >
> > I doubt that we can switch the default value in Debian kernels to "2",
> > so I have to say that simply the tiptop website is not up-to-date, at
> > least with respect to the Debian kernels (but also likely to other
> > distributions as well). I'm CCing Ben to let him comment on this.
>
> The Debian kernel default is not going to be changed in the short term.
>  In the long term it's conceivable that performance events will
> eventually become sufficiently robust that it would be reasonable to
> change the default.
>
> Ben.
>
> --
> Ben Hutchings - Debian developer, member of kernel, installer and LTS teams

Thank you!

Nathaniel, I'll keep this bug open till possibly the perf events will
become available for normal users. Till then I require you to use the
workaround above if you feel like it.

Cheers,
Tomasz


signature.asc
Description: PGP signature

Bug#854475: postfix: systemd needs postfix@.service to have "After=network.target"

[Nuno Paquete]

Hi guys.

I'm trying to unsubscribe this newsletter but I'm not getting success.
Can someone Help?

Many thanks in advance.

Em 14/05/2017 16:33, "Michael Biebl"  escreveu:

> Am 14.05.2017 um 17:02 schrieb Michael Biebl:
> > - debian/postfix.postinst: drop the postfix.service.d/override.conf and
> > make sure to remove that conffile on upgrades
>
> Seems due to some C failure I duplicated this point. I wanted to
> clarify that postfix.service.d/override.conf is not actually a conffile,
> as it's generated dynamically.
>
> As for my reasons to not generate this configuration dynamically:
> - It's less opaque. I was puzzled for a moment where this drop-in was
> coming from
>
> - It makes it easier to override postfix@.service. Atm you e.g. don't
> respect if the admin removed that drop-in deliberately and you always
> recreate it.
>
> - It's more robust in case of local modifications which don't use
> dpkg-reconfigure.
>
> - The penalty of pulling in network-online.target is simply that for the
> local case postfix is started a bit later then necessary during boot.
>
> - The behaviour is more consistent with the old SysV init script which
> had Required-Start: $network (The $network LSB facility translates to
> network-online.target)
>
> Michael
>
> --
> Why is it that all of the instruments seeking intelligent life in the
> universe are pointed away from Earth?
>
>

Bug#862389: [Pkg-xfce-devel] Bug#862389: lightdm: X gets locked up after several switches to VT

[Łukasz Stelmach]

It was <2017-05-12 pią 17:54>, when Yves-Alexis Perez wrote:
> On Fri, 2017-05-12 at 09:54 +0200, Łukasz Stelmach wrote:
>> I had reported[1] this problem to the lighdm mailing list but there was no
>> response.
>> 
>> [1] https://lists.freedesktop.org/archives/lightdm/2017-March/001056.html
>
> Can you please open a bug on launchpad? Mailing lists are more for discussion
> purposes I think.

Done.

https://bugs.launchpad.net/lightdm/+bug/1690739

-- 
Łukasz Stelmach
Samsung R Institute Poland
Samsung Electronics


signature.asc
Description: PGP signature

Bug#861900:

[PICCA Frederic-Emmanuel]

Hello

I attached the debdiff of the sardana 2.2.2-3 version prepared by the upsteam.

the changes are:
 - add themself to Uploaders (at my request).
 - Remove the dependency on the nexus package (which is broken)
 - Implement  the nexus functionnaly with the well maintained h5py.


thanks for considering the pre-approval

If it is ok, I will upload into unstable.

Frederic

sardana.debdiff
Description: sardana.debdiff

Bug#829046: Moving away from (unsupportable) FusionForge on Alioth?

[Boyuan Yang]

在 2017年5月14日星期日 +08 下午6:39:22，Sergio Durigan Junior 写道：
> On Sunday, May 14 2017, Boyuan Yang wrote:
> > 在 2017年5月14日星期日 CST 下午3:04:26，Pirate Praveen 写道：
> > 
> >> As far as I understand, the only thing that is blocking is non
> >> availability of pagure package.
> >> 
> >> So helping fix this would help move this forward (currently pagure tests
> >> are failing).
> >> 
> >> >> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=829046
> >> 
> >> After we have the package, then DSA standard processes for new service
> >> would follow, I assume.
> Sure.  I'll move everything to collab-maint as soon as I get back home,
> as I said earilier.

That would be great.

> >> Could you tell me where can I find the proper packaging repository?
> > 
> > I have pushed my copy here
> > https://git.fosscommunity.in/praveen/pagure
> > 
> > It was originally at git://git.sergiodj.net/debian/pagure-new.git
> 
> Thanks for doing that.

I took a look into pagure packaging (both upstream latest version 2.14.2 and 
Debian packaging version 2.6+dfsg from the git repo above) and things look 
like a nightmare. Under Debian Testing and Debian Unstable, current packaging 
did not create a working database for unittests. If we create db manually 
(before dh_auto_test) and run unittest again, things can fail severely (around 
60+/290+ units fail, not just 5). 

Hence it would be great if anyone familiar with Python2 and Flask could help 
improve the status of pagure packaging.

--
Boyuan Yang

signature.asc
Description: This is a digitally signed message part.

Bug#862260: zlib: debian/copyright isn't in DEP5 format

[Mark Brown]

severity 862260 wishlist
tag 862260 - patch
kthxbye

On Wed, May 10, 2017 at 06:21:09PM +0700, Do Thanh Trung wrote:

> +Files: *
> +Copyright: 1995-2013 Jean-loup Gailly and Mark Adler
> +License: Zlib
> + This software is provided 'as-is', without any express or implied
> + warranty.  In no event will the authors be held liable for any damages
> + arising from the use of this software.

As Stephen indicated not all the files in the package are under the same
license.  I guess I'm OK with doing the conversion but it needs to be
accurate.


signature.asc
Description: PGP signature

Bug#862631: O: pygoocanvas -- GooCanvas Python bindings

[Tobias Frost]

Package: wnpp

The current maintainer of pygoocanvas, Jose Carlos Garcia Sogo 
,
is apparently not active anymore.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: pygoocanvas
Binary: python-pygoocanvas
Version: 0.14.1-1
Maintainer: Jose Carlos Garcia Sogo 
Build-Depends: debhelper (>= 5), cdbs, python-all-dev (>= 2.3.5-11), 
python-support (>= 0.4), python-gtk2-dev (>= 2.8.4), python-gobject-dev (>= 
2.11.3), libgoocanvas-dev (>= 0.10), python-cairo-dev (>= 1.2.0), xsltproc, 
docbook-xsl
Architecture: any
Standards-Version: 3.8.4
Format: 1.0
Files:
 68b8855ed6391f74b6dd41925fba29b9 1319 pygoocanvas_0.14.1-1.dsc
 d502dea5c0d2ac71d953895df81c32e8 421509 pygoocanvas_0.14.1.orig.tar.gz
 05c0bc55cab5bfa52b6d016e697cba1e 2309 pygoocanvas_0.14.1-1.diff.gz
Vcs-Browser: http://git.debian.org/git/users/jsogo/pygoocanvas.git
Vcs-Git: git://git.debian.org/git/users/jsogo/pygoocanvas.git
Checksums-Sha1:
 0ed0bd0b39bc8f2d6605db9bff19c3770dff7cdf 1319 pygoocanvas_0.14.1-1.dsc
 ea1e10a24ef15a1d3880552fff6352d8b0621ef5 421509 pygoocanvas_0.14.1.orig.tar.gz
 3caa9f1c36e827a4bd24502f25cac36538a0a94f 2309 pygoocanvas_0.14.1-1.diff.gz
Checksums-Sha256:
 0a5c24566adae2b47db8a0c24be723ced64a6d44beb645b1c3d6871ac02a873f 1319 
pygoocanvas_0.14.1-1.dsc
 e927064dc6c1ceabefc24b88f45f5240f694a698bf5f794d41525a3c362ee11c 421509 
pygoocanvas_0.14.1.orig.tar.gz
 b3c91ebfede5201537b67df01d572609ae09683a731725328b2dc55501f822cc 2309 
pygoocanvas_0.14.1-1.diff.gz
Directory: pool/main/p/pygoocanvas
Priority: source
Section: python

Package: pygoocanvas
Binary: python-pygoocanvas
Version: 0.14.1-1.2
Maintainer: Jose Carlos Garcia Sogo 
Build-Depends: debhelper (>= 5), cdbs, python-all-dev (>= 2.3.5-11), dh-python, 
python-gtk2-dev (>= 2.8.4), python-gobject-dev (>= 2.11.3), libgoocanvas-dev 
(>= 0.10), python-cairo-dev (>= 1.2.0), xsltproc, docbook-xsl, docbook-xml
Architecture: any
Standards-Version: 3.8.4
Format: 1.0
Files:
 73d2c036de37dd0adc8e0e9b5ef2a608 2042 pygoocanvas_0.14.1-1.2.dsc
 d502dea5c0d2ac71d953895df81c32e8 421509 pygoocanvas_0.14.1.orig.tar.gz
 815e1c1acbcdf2f319cc3a928eb3050f 2836 pygoocanvas_0.14.1-1.2.diff.gz
Vcs-Browser: https://anonscm.debian.org/git/users/jsogo/pygoocanvas.git
Vcs-Git: https://anonscm.debian.org/git/users/jsogo/pygoocanvas.git
Checksums-Sha256:
 ff3e2eff117d010043fe4194002a61ef8dbab39e02e4873b1714f470a75d0e71 2042 
pygoocanvas_0.14.1-1.2.dsc
 e927064dc6c1ceabefc24b88f45f5240f694a698bf5f794d41525a3c362ee11c 421509 
pygoocanvas_0.14.1.orig.tar.gz
 313089140c689dea3642a334b25e838cad5a1e8b8589fcb2d6fc58bbbdca6275 2836 
pygoocanvas_0.14.1-1.2.diff.gz
Package-List: 
 python-pygoocanvas deb python optional arch=any
Directory: pool/main/p/pygoocanvas
Priority: source
Section: python

Package: python-pygoocanvas
Source: pygoocanvas
Version: 0.14.1-1.2
Installed-Size: 903
Maintainer: Jose Carlos Garcia Sogo 
Architecture: amd64
Provides: python2.7-pygoocanvas
Depends: libatk1.0-0 (>= 1.12.4), libc6 (>= 2.4), libcairo2 (>= 1.2.4), 
libfontconfig1 (>= 2.11), libfreetype6 (>= 2.2.1), libgdk-pixbuf2.0-0 (>= 
2.22.0), libglib2.0-0 (>= 2.24.0), libgoocanvas3 (>= 0.15), libgtk2.0-0 (>= 
2.8.0), libpango-1.0-0 (>= 1.14.0), libpangocairo-1.0-0 (>= 1.14.0), 
libpangoft2-1.0-0 (>= 1.14.0), libpython2.7 (>= 2.7), python (<< 2.8), python 
(>= 2.7~), python:any (<< 2.8), python:any (>= 2.7~), python-gtk2
Description-en: GooCanvas Python bindings
 This package include Python bindings for GooCanvas.
 It is needed to run programs written in Python and using GooCanvas set.
Description-md5: db722c42bfd7ffb1dbf6f8b3ea273191
Tag: role::shared-lib, uitoolkit::gtk
Section: python
Priority: optional
Filename: pool/main/p/pygoocanvas/python-pygoocanvas_0.14.1-1.2_amd64.deb
Size: 123010
MD5sum: 050c387cafc70dd5269aa981193a95e5
SHA256: 729fa101187f52ed147caec73273891d6126a2f96f45d27d9f7ab87e1e7025a5

Package: python-pygoocanvas
Source: pygoocanvas (0.14.1-1)
Version: 0.14.1-1+b3
Installed-Size: 799
Maintainer: Jose Carlos Garcia Sogo 
Architecture: amd64
Provides: python2.7-pygoocanvas
Depends: libatk1.0-0 (>= 1.12.4), libc6 (>= 2.4), libcairo2 (>= 1.2.4), 
libfontconfig1 (>= 2.8.0), libfreetype6 (>= 2.2.1), libgdk-pixbuf2.0-0 (>= 
2.22.0), libglib2.0-0 (>= 2.24.0), libgoocanvas3 (>= 0.15), libgtk2.0-0 (>= 
2.8.0), libpango1.0-0 (>= 1.14.0), libpython2.7 (>= 2.7), python (<< 2.8), 
python (>= 2.7), python-support (>= 0.90.0), python-gtk2
Description-en: GooCanvas Python bindings
 This package include Python bindings for GooCanvas.
 It is needed to run programs written in Python and using GooCanvas set.
Description-md5: 

Bug#862608: unblock: golang-github-hashicorp-go-msgpack/0.0~git20150518.0.fa3f638-2

[Michael Stapelberg]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package golang-github-hashicorp-go-msgpack

This is part of the fix for Debian bug #860608: Go library packages
should not use the Built-Using tag at all, and a few packages are
still referencing a long-removed broken version of the golang package
via a Built-Using tag.

Hence, I uploaded a new version without the tag:

% debdiff 
golang-github-hashicorp-go-msgpack_0.0~git20150518.0.fa3f638-1_amd64.changes 
golang-github-hashicorp-go-msgpack_0.0~git20150518.0.fa3f638-2_amd64.changes
File lists identical (after any substitutions)

Control files: lines which differ (wdiff format)

[-Built-Using: golang-1.7 (= 1.7.4-2)-]
Version: [-0.0~git20150518.0.fa3f638-1-] {+0.0~git20150518.0.fa3f638-2+}

unblock golang-github-hashicorp-go-msgpack/0.0~git20150518.0.fa3f638-2

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, 
'testing-debug'), (500, 'unstable')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386, armel, mipsel, arm64

Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#862611: deluge-webui: directory traversal attack vulnerability

[Jonatan Nyberg]

Package: deluge-webui
severity: important

Dear Maintainer,

Deluge 1.3.15 have an important fix a directory traversal security
vulnerability that has the potential to compromise your machine. It is
important to update to this version as soon as possible.

Kind regards,
Jonatan

Bug#844431: policy: packages should be reproducible

[Wouter Verhelst]

On Sun, May 14, 2017 at 11:15:26PM +, Holger Levsen wrote:
> On Mon, May 15, 2017 at 12:05:17AM +0200, Bill Allombert wrote:
> > On Sun, May 14, 2017 at 03:20:54PM +, Holger Levsen wrote:
> > > On Sun, May 14, 2017 at 05:05:36PM +0200, Bill Allombert wrote:
> > > a.) go to http://reproducible.debian.net/$srcpkg and see if its 
> > > reproducible today.
> > As I said, I would like to check that my package build is reproducible 
> > before
> > I upload it, not after, so I can be sure that any bug is fixed in the
> > upload.
>  
> b.), b.0), c.) and d.) were given as possible "tools" *to build twice with 
> (some) variation(s) and compare the results*.
> 
> "Reproducible Builds" (in the sense of bit by bit identicall builds) is
> really a rather new field in the era of software (well, not really, but 
> thats history and bit rotted until it was rediscovered in the early 2010s…)
> 
> What is trivial, if given, is to show that a package is *un*reproducible.
> 
> It's much harder to show that a package is reproducible.
> 
> And given that this is a new field I think it's ok, while somewhat 
> unsatisfying,
> that maybe some unreproducibility will only be detected by a more advanced
> tool, like reproducible.debian.net (which aint a,b,c nor d, but e.)
> after an upload has taken place.

I think it's probably not a good idea to (when we've moved to mandate
"packages must be reproducible") allow packages to become insta-buggy by
things that are out of their control and not clearly specified in
policy. That's not how we do things in Debian.

As such, I would favour the following approach:
- You guys (= the reproducible builds guys) come up with a list of
  things that commonly make a package nonreproducible today, and policy
  adds those as "should not"s. If I'm not mistaken, such a list already
  exists, you may simply need to generalize it a bit?
- Actually, I'm sure there may be things that packages failed to
  comply with in the past, but that are not a problem anymore today;
  we can make those "must not" rules already today.
- If you find new and interesting ways to make packages nonreproducible
  at some point in the future, those can be added (as "should" first,
  and as "must" later).

This would result in a section in policy of this form:

---
# Reproducible builds

Packages should generally be reproducible. That is, a package build
should result in a bit-by-bit identical package from one build to the
next.

Specifically, packages must not do any of the following things:
- non-reproducible thing A
- non-reproducible thing B
- ...

Moreover, while the following are not must rules yet, packages should
also not do any of the following things:
- still-in-the-wild non-reproducible thing A
- still-in-the-wild non-reproducible thing B
- ...
---

(wording may need some tweaking)

The above wording makes "bit-by-bit identical" a should (so packagers
are encouraged to reach that goal), but already allows you to file RC
bugs on some subset of "is not reproducible" package issues, and a
subset that will improve over time.

With that wording, I don't think we should ever make "bit-by-bit
identical" a must; I also don't think we would need to. As you say,
building packages nonreproducibly is difficult to define, and it
certainly is difficult to test for in a definite manner.

> > What parameters
> > are allowed to change need to be defined.
> 
> I sadly think this is impossible.

I agree that it will probably be a neverending effort, but I also think
it's the only way that it can reasonably be done.

-- 
< ron> I mean, the main *practical* problem with C++, is there's like a dozen
   people in the world who think they really understand all of its rules,
   and pretty much all of them are just lying to themselves too.
 -- #debian-devel, OFTC, 2016-02-12

Bug#858178: uuidcdef: buffer overflow

[Chris West]

tags 858178 + patch
thanks

This is correctly diagnosing a buffer which is to small.
The length of data written to the buffer is always constant,
(20 bytes more than the length of the buffer), and not under
user control, so there is probably not a security problem here.

A patch, to increase the length of the buffer, is attached.

--- xplc-0.3.13.orig/uuid/bin/uuidgen.c
+++ xplc-0.3.13/uuid/bin/uuidgen.c
@@ -239,7 +239,7 @@ int parse_conf(int argc, char** argv, st
 
 
 typedef const char* (*uuid_output_fn_t)(const uuid_t);
-static char uuid_unparse_buf[60];
+static char uuid_unparse_buf[80];
 const char* uuid_unparse_x_(const uuid_t uuid) {
   /* This function implicitly trusts uuid_unparse. */
   unsigned int a, b, c, d, e, f, g, h, i, j, k;
@@ -249,7 +249,7 @@ const char* uuid_unparse_x_(const uuid_t
"%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x",
, , , , , , , , , , );
   if(ret != 11) {
-uuid_unparse_buf[59] = '\0';
+uuid_unparse_buf[79] = '\0';
 fprintf(stderr,
 "%s: libuuid error at %s:%d\n", program, __FILE__, __LINE__);
 fprintf(stderr,

Bug#862614: unblock: linux-latest/80

[Salvatore Bonaccorso]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Hi

Please unblock package linux-latest

Together with an unblock of src:linux since there is an ABI bump there
should be an unblock fof linux-latest as well. I'm attaching the
complete debdiff for reference against the version 79 in testing.

unblock linux-latest/80

Regards,
Salvatore
diff -Nru linux-latest-79/debian/bin/gencontrol.py linux-latest-80/debian/bin/gencontrol.py
--- linux-latest-79/debian/bin/gencontrol.py	2016-12-18 03:31:55.0 +0100
+++ linux-latest-80/debian/bin/gencontrol.py	2017-03-07 16:26:27.0 +0100
@@ -99,10 +99,6 @@
 desc.append(config_description['part-long-' + part])
 desc.append_short(config_description.get('part-short-' + part, ''))
 
-if self.config.merge('xen', arch, featureset, flavour):
-makeflags['XEN'] = True
-templates.extend(self.templates["control.xen-linux-system.latest"])
-
 packages_flavour = []
 
 packages_flavour.append(self.process_real_image(templates[0], image_fields, vars))
diff -Nru linux-latest-79/debian/changelog linux-latest-80/debian/changelog
--- linux-latest-79/debian/changelog	2017-02-18 18:03:12.0 +0100
+++ linux-latest-80/debian/changelog	2017-05-04 17:33:51.0 +0200
@@ -1,3 +1,11 @@
+linux-latest (80) unstable; urgency=medium
+
+  * Re-introduce xen-linux-system-amd64 *again* as transitional package
+(Closes: #857039)
+  * Update to 4.9.0-3
+
+ -- Ben Hutchings   Thu, 04 May 2017 16:33:51 +0100
+
 linux-latest (79) unstable; urgency=medium
 
   * Update to 4.9.0-2
diff -Nru linux-latest-79/debian/control linux-latest-80/debian/control
--- linux-latest-79/debian/control	2017-02-18 18:03:12.0 +0100
+++ linux-latest-80/debian/control	2017-05-04 17:33:51.0 +0200
@@ -4,7 +4,7 @@
 Maintainer: Debian Kernel Team 
 Uploaders: Bastian Blank , Frederik Schüler , Ben Hutchings 
 Standards-Version: 3.9.8
-Build-Depends: debhelper (>= 9), linux-support-4.9.0-2, linux-headers-4.9.0-2-all
+Build-Depends: debhelper (>= 9), linux-support-4.9.0-3, linux-headers-4.9.0-3-all
 Vcs-Browser: https://anonscm.debian.org/cgit/kernel/linux-latest.git
 Vcs-Git: https://anonscm.debian.org/git/kernel/linux-latest.git
 
@@ -32,8 +32,8 @@
 
 Package: linux-image-alpha-generic
 Architecture: alpha
-Provides: linux-latest-modules-4.9.0-2-alpha-generic
-Depends: linux-image-4.9.0-2-alpha-generic, ${misc:Depends}
+Provides: linux-latest-modules-4.9.0-3-alpha-generic
+Depends: linux-image-4.9.0-3-alpha-generic, ${misc:Depends}
 Description: Linux for Alpha (meta-package)
  This package depends on the latest Linux kernel and modules for use on DEC
  Alpha systems with extended kernel start address (Wildfire, Titan,
@@ -41,7 +41,7 @@
 
 Package: linux-headers-alpha-generic
 Architecture: alpha
-Depends: linux-headers-4.9.0-2-alpha-generic, ${misc:Depends}
+Depends: linux-headers-4.9.0-3-alpha-generic, ${misc:Depends}
 Description: Header files for Linux alpha-generic configuration (meta-package)
  This package depends on the architecture-specific header files for the
  latest Linux kernel alpha-generic configuration.
@@ -51,15 +51,15 @@
 Section: debug
 Priority: extra
 Provides: linux-latest-image-dbg
-Depends: linux-image-4.9.0-2-alpha-generic-dbgsym, ${misc:Depends}
+Depends: linux-image-4.9.0-3-alpha-generic-dbgsym, ${misc:Depends}
 Description: Debug symbols for Linux alpha-generic configuration (meta-package)
  This package depends on the detached debugging symbols for the latest
  Linux kernel alpha-generic configuration.
 
 Package: linux-image-alpha-smp
 Architecture: alpha
-Provides: linux-latest-modules-4.9.0-2-alpha-smp
-Depends: linux-image-4.9.0-2-alpha-smp, ${misc:Depends}
+Provides: linux-latest-modules-4.9.0-3-alpha-smp
+Depends: linux-image-4.9.0-3-alpha-smp, ${misc:Depends}
 Description: Linux for Alpha SMP (meta-package)
  This package depends on the latest Linux kernel and modules for use on DEC
  Alpha SMP systems with extended kernel start address (Wildfire, Titan,
@@ -67,7 +67,7 @@
 
 Package: linux-headers-alpha-smp
 Architecture: alpha
-Depends: linux-headers-4.9.0-2-alpha-smp, ${misc:Depends}
+Depends: linux-headers-4.9.0-3-alpha-smp, ${misc:Depends}
 Description: Header files for Linux alpha-smp configuration (meta-package)
  This package depends on the architecture-specific header files for the
  latest Linux kernel alpha-smp configuration.
@@ -77,15 +77,15 @@
 Section: debug
 Priority: extra
 Provides: linux-latest-image-dbg
-Depends: linux-image-4.9.0-2-alpha-smp-dbgsym, ${misc:Depends}
+Depends: linux-image-4.9.0-3-alpha-smp-dbgsym, ${misc:Depends}
 Description: Debug symbols for Linux alpha-smp configuration (meta-package)
  This package depends on the detached debugging symbols for the latest
  

Bug#862619: Updating the cecil-flowanalysis Uploaders list

[Tobias Frost]

Source: cecil-flowanalysis
Version: 0.1~vcs20110809.r1.b34edf6-2 0.1~vcs20110809.r1.b34edf6-3
Severity: minor
User: m...@qa.debian.org
Usertags: mia-teammaint

Jose Carlos Garcia Sogo  has not been working on
the cecil-flowanalysis package for quite some time.

We are tracking their status in the MIA team and would like to ask you
to remove them from the Uploaders list of the package so we can close
that part of the file.

(If the person is listed as Maintainer, what we are asking is to please
step in as a new maintainer.)

Thanks.

Bug#862622: Updating the gpgme1.0 Uploaders list

[Tobias Frost]

Source: gpgme1.0
Version: 1.9.0-1 1.5.1-6 1.7.0-1 1.8.0-3
Severity: minor
User: m...@qa.debian.org
Usertags: mia-teammaint

Jose Carlos Garcia Sogo  has not been working on
the gpgme1.0 package for quite some time.

We are tracking their status in the MIA team and would like to ask you
to remove them from the Uploaders list of the package so we can close
that part of the file.

(If the person is listed as Maintainer, what we are asking is to please
step in as a new maintainer.)

Thanks.

Bug#862618: Updating the asterisk-prompt-it Uploaders list

[Tobias Frost]

Source: asterisk-prompt-it
Version: 1:1.4.22+mm20110907-3
Severity: minor
User: m...@qa.debian.org
Usertags: mia-teammaint

Jose Carlos Garcia Sogo  has not been working on
the asterisk-prompt-it package for quite some time.

We are tracking their status in the MIA team and would like to ask you
to remove them from the Uploaders list of the package so we can close
that part of the file.

(If the person is listed as Maintainer, what we are asking is to please
step in as a new maintainer.)

Thanks.

Bug#862620: Updating the db4o Uploaders list

[Tobias Frost]

Source: db4o
Version: 8.0.184.15484+dfsg2-3
Severity: minor
User: m...@qa.debian.org
Usertags: mia-teammaint

Jose Carlos Garcia Sogo  has not been working on
the db4o package for quite some time.

We are tracking their status in the MIA team and would like to ask you
to remove them from the Uploaders list of the package so we can close
that part of the file.

(If the person is listed as Maintainer, what we are asking is to please
step in as a new maintainer.)

Thanks.

Bug#862613: RFS: groonga/7.0.2-1

[Kentaro Hayashi]

Package: sponsorship-requests
Severity: wishlist

Dear mentors,

I am looking for a sponsor for my package "groonga" for experimental

* Package name: groonga
  Version : 7.0.2-1
  Upstream Author : Groonga Project 
* Url : http://groonga.org/
* Licenses: LGPL-2.1
  Section : database

It builds those binary packages:

  * groonga
  * groonga-server-common
  * groonga-server-gqtp
  * libgroonga-dev
  * libgroonga0
  * groonga-tokenizer-mecab
  * groonga-token-filter-stem
  * groonga-plugin-suggest
  * groonga-bin
  * groonga-httpd
  * groonga-doc
  * groonga-examples
  * groonga-munin-plugins

To access further information about this package, visit the following URL:

https://mentors.debian.net/package/groonga

Alternatively, one can download the package with dget using this command:
dget -x 
https://mentors.debian.net/debian/pool/main/g/groonga/groonga_7.0.2-1.dsc


More information about groonga can be obtained from
http://groonga.org/

Changes since last upload:

  * New upstream release.
  * debian/patches/fix-nginx-FTBFS-on-kfreebsd.patch
- Refresh patch to fix FTBFS on kFreeBSD.

Regards,


pgpcb3YigNCu4.pgp
Description: PGP signature

Bug#861455: package updated to 1.0.0

[Martin Kepplinger]

Version 1.0.0 is released upstream, being a major update, almost a 
rewrite, it uses

X.org's touch API and supports multitouch.

The package is updated on mentors accordingly. In case you want to make 
that available

to Debian and sponsor it, feel free to contact me.

cheers,
 martin

Bug#862628: Updating the t38modem Uploaders list

[Tobias Frost]

Source: t38modem
Version: 2.0.0-4
Severity: minor
User: m...@qa.debian.org
Usertags: mia-teammaint

Jose Carlos Garcia Sogo  has not been working on
the t38modem package for quite some time.

We are tracking their status in the MIA team and would like to ask you
to remove them from the Uploaders list of the package so we can close
that part of the file.

(If the person is listed as Maintainer, what we are asking is to please
step in as a new maintainer.)

Thanks.

Bug#862626: Updating the rdup Uploaders list

[Tobias Frost]

Source: rdup
Version: 1.1.11-1.1 1.1.15-1
Severity: minor
User: m...@qa.debian.org
Usertags: mia-teammaint

Jose Carlos Garcia Sogo  has not been working on
the rdup package for quite some time.

We are tracking their status in the MIA team and would like to ask you
to remove them from the Uploaders list of the package so we can close
that part of the file.

(If the person is listed as Maintainer, what we are asking is to please
step in as a new maintainer.)

Thanks.

Bug#862630: Updating the tangerine Uploaders list

[Tobias Frost]

Source: tangerine
Version: 0.3.4-6
Severity: minor
User: m...@qa.debian.org
Usertags: mia-teammaint

Jose Carlos Garcia Sogo  has not been working on
the tangerine package for quite some time.

We are tracking their status in the MIA team and would like to ask you
to remove them from the Uploaders list of the package so we can close
that part of the file.

(If the person is listed as Maintainer, what we are asking is to please
step in as a new maintainer.)

Thanks.

Bug#862625: Updating the portaudio19 Uploaders list

[Tobias Frost]

Source: portaudio19
Version: 19+svn20140130-1 19.6.0-1
Severity: minor
User: m...@qa.debian.org
Usertags: mia-teammaint

Jose Carlos Garcia Sogo  has not been working on
the portaudio19 package for quite some time.

We are tracking their status in the MIA team and would like to ask you
to remove them from the Uploaders list of the package so we can close
that part of the file.

(If the person is listed as Maintainer, what we are asking is to please
step in as a new maintainer.)

Thanks.

Bug#862624: Updating the openam Uploaders list

[Tobias Frost]

Source: openam
Version: 1.4.0-1
Severity: minor
User: m...@qa.debian.org
Usertags: mia-teammaint

Jose Carlos Garcia Sogo  has not been working on
the openam package for quite some time.

We are tracking their status in the MIA team and would like to ask you
to remove them from the Uploaders list of the package so we can close
that part of the file.

(If the person is listed as Maintainer, what we are asking is to please
step in as a new maintainer.)

Thanks.

Bug#862623: Updating the libgpg-error Uploaders list

[Tobias Frost]

Source: libgpg-error
Version: 1.27-1 1.17-3 1.26-1 1.26-2
Severity: minor
User: m...@qa.debian.org
Usertags: mia-teammaint

Jose Carlos Garcia Sogo  has not been working on
the libgpg-error package for quite some time.

We are tracking their status in the MIA team and would like to ask you
to remove them from the Uploaders list of the package so we can close
that part of the file.

(If the person is listed as Maintainer, what we are asking is to please
step in as a new maintainer.)

Thanks.

Bug#862627: Updating the stun Uploaders list

[Tobias Frost]

Source: stun
Version: 0.96.dfsg-6 0.97~dfsg-2.1
Severity: minor
User: m...@qa.debian.org
Usertags: mia-teammaint

Jose Carlos Garcia Sogo  has not been working on
the stun package for quite some time.

We are tracking their status in the MIA team and would like to ask you
to remove them from the Uploaders list of the package so we can close
that part of the file.

(If the person is listed as Maintainer, what we are asking is to please
step in as a new maintainer.)

Thanks.

Bug#861822: Contacted upstream: closing bug

[Arturo Borrero Gonzalez]

Control: forwarded -1 https://redmine.openinfosecfoundation.org/issues/2115

Hi Hans,

I've effectively opened an upstream bug [0] requesting the changing
interfaces feature you mentioned.

As the bug seems to be addressed, I will close it now. Feel free to
reopen if necessary :-)

thanks, best regards.

[0] https://redmine.openinfosecfoundation.org/issues/2115

Bug#862629: Updating the taglib-sharp Uploaders list

[Tobias Frost]

Source: taglib-sharp
Version: 2.1.0.0-3
Severity: minor
User: m...@qa.debian.org
Usertags: mia-teammaint

Jose Carlos Garcia Sogo  has not been working on
the taglib-sharp package for quite some time.

We are tracking their status in the MIA team and would like to ask you
to remove them from the Uploaders list of the package so we can close
that part of the file.

(If the person is listed as Maintainer, what we are asking is to please
step in as a new maintainer.)

Thanks.

Bug#862621: Updating the deja-dup Uploaders list

[Tobias Frost]

Source: deja-dup
Version: 32.0-1 34.3-1
Severity: minor
User: m...@qa.debian.org
Usertags: mia-teammaint

Jose Carlos Garcia Sogo  has not been working on
the deja-dup package for quite some time.

We are tracking their status in the MIA team and would like to ask you
to remove them from the Uploaders list of the package so we can close
that part of the file.

(If the person is listed as Maintainer, what we are asking is to please
step in as a new maintainer.)

Thanks.

Bug#843779: big-integer dependency

[Pierre Rudloff]

Hello,

I would be interested in working on packaging Lesspass.
But the big-integer dependency is not packaged in Debian so I opened an 
ITP for that first (#862372).


Regards,

Bug#862610: unblock: golang-pty/0.0~git20151007.0.f7ee69f-2

[Michael Stapelberg]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package golang-pty

This is part of the fix for Debian bug #860608: Go library packages
should not use the Built-Using tag at all, and a few packages are
still referencing a long-removed broken version of the golang package
via a Built-Using tag.

Hence, I uploaded a new version without the tag:
% debdiff golang-pty_0.0\~git20151007.0.f7ee69f-1_amd64.changes 
golang-pty_0.0\~git20151007.0.f7ee69f-2_amd64.changes   
   
File lists identical (after any substitutions)

Control files of package golang-github-kr-pty-dev: lines which differ (wdiff 
format)

[-Built-Using: golang-1.7 (= 1.7.4-2)-]
Version: [-0.0~git20151007.0.f7ee69f-1-] {+0.0~git20151007.0.f7ee69f-2+}

Control files of package golang-pty-dev: lines which differ (wdiff format)
--
Version: [-0.0~git20151007.0.f7ee69f-1-] {+0.0~git20151007.0.f7ee69f-2+}

unblock golang-pty/0.0~git20151007.0.f7ee69f-2

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, 
'testing-debug'), (500, 'unstable')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386, armel, mipsel, arm64

Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#810964: [Xen-devel] [BUG] EDAC infomation partially missing

[Jan Beulich]

>>> On 14.05.17 at 00:36,  wrote:
> I haven't yet done as much experimentation as Andreas Pflug has, but I
> can confirm I'm also running into this bug with Xen 4.4.1.
> 
> I've only tried Linux kernel 3.16.43, but as Dom0:
> 
> EDAC MC: Ver: 3.0.0
> AMD64 EDAC driver v3.4.0
> EDAC amd64: DRAM ECC enabled.
> EDAC amd64: NB MCE bank disabled, set MSR 0x017b[4] on node 0 to enable.
> EDAC amd64: ECC disabled in the BIOS or no ECC capability, module will not 
> load.
> AMD64 EDAC driver v3.4.0
> EDAC amd64: DRAM ECC enabled.
> EDAC amd64: NB MCE bank disabled, set MSR 0x017b[4] on node 0 to enable.
> EDAC amd64: ECC disabled in the BIOS or no ECC capability, module will not 
> load.

Afaict the driver as is simply can't work in a Xen Dom0; it needs
enabling (read: para-virtualizing). I'm actually glad to see it doesn't
load (the worse alternative would be for it to load and then do the
wrong thing or give you a false sense of safety of your data).

Jan

Bug#862617: RM: libnunc-stans/0.1.8-1 -- RoM

[Timo Aaltonen]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: rm

389-ds-base upstream has merged this in their codebase in 1.3.6.x and a 
separate copy is not
needed. It's not used on earlier versions either, and there are no (other) 
reverse-depends on
libnunc-stans0/-dev, so it's safe to remove from both testing/unstable.

Bug#862609: unblock: golang-objx/0.0~git20150928.0.1a9d0bb-2

[Michael Stapelberg]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package golang-objx

This is part of the fix for Debian bug #860608: Go library packages
should not use the Built-Using tag at all, and a few packages are
still referencing a long-removed broken version of the golang package
via a Built-Using tag.

Hence, I uploaded a new version without the tag:

% debdiff golang-objx_0.0\~git20150928.0.1a9d0bb-1_amd64.changes 
golang-objx_0.0\~git20150928.0.1a9d0bb-2_amd64.changes  
   
File lists identical (after any substitutions)

Control files of package golang-github-stretchr-objx-dev: lines which differ 
(wdiff format)
---
[-Built-Using: golang-1.7 (= 1.7.4-2)-]
Version: [-0.0~git20150928.0.1a9d0bb-1-] {+0.0~git20150928.0.1a9d0bb-2+}

Control files of package golang-objx-dev: lines which differ (wdiff format)
---
Version: [-0.0~git20150928.0.1a9d0bb-1-] {+0.0~git20150928.0.1a9d0bb-2+}


unblock golang-objx/0.0~git20150928.0.1a9d0bb-2

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, 
'testing-debug'), (500, 'unstable')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386, armel, mipsel, arm64

Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#860608: [pkg-golang-devel] Bug#860608: Bug#860608: golang: FTBFS: Go version is "go1.6.1", ignoring -next /<>/api/next.txt

[Michael Stapelberg]

On Sat, May 6, 2017 at 2:20 PM, Michael Stapelberg 
wrote:

>
>
> On Tue, May 2, 2017 at 10:23 AM, Michael Hudson-Doyle <
> michael.hud...@canonical.com> wrote:
>
>> On 2 May 2017 at 19:23, Michael Stapelberg  wrote:
>>
>>> Sorry for the late reply, I’ve been swamped.
>>>
>>> On Fri, Apr 21, 2017 at 10:28 AM, Niels Thykier 
>>> wrote:
>>>
 Michael Stapelberg:
 > On Fri, Apr 21, 2017 at 9:45 AM, Niels Thykier 
 wrote:
 >
 >> [...]
 >>>
 >>
 >> They seem to be arch:all packages.  We cannot binNMU arch:all
 packages,
 >> only architecture dependent ones.  :-/
 >>
 >
 > Okay. How do you suggest we rectify this issue instead, then?
 >

 A (possibly "no change") sourceful upload to force a rebuild of the
 arch:all package.

>>>
>>> A sourceful upload for which source package? src:golang has been removed
>>> from unstable and testing since 2016-10.
>>>
>>
>> Well, for this bug report specifically, the packages that have a
>> built-using on golang 2:1.6.1-2, i.e. these:
>>
>
> Thanks, now I get it :).
>
>
>>
>> mwhudson@aeglos:~/tmp$ chdist grep-dctrl-packages sid -FBuilt-Using
>> 'golang (= 2:1.6.1-2)' -sPackage
>> Package: golang-github-armon-go-metrics-dev
>>
>
> This package has changes in the git repository which aren’t uploaded to
> the archive, so it doesn’t build as-is. If someone could take care of this
> one, that’d be appreciated.
>

Uploaded a new version, created from a separate debian/unstable branch. My
changes are merged back into master. I hope this was the correct thing to
do.


>
>
>> Package: golang-github-gosexy-gettext-dev
>>
>
> vorlon, can we file for removal of this package? It wasn’t touched since
> 2013 and has no rdepends.
>

Done: https://bugs.debian.org/862612


>
>
>> Package: golang-github-hashicorp-go-msgpack-dev
>> Package: golang-github-stretchr-objx-dev
>> Package: golang-github-kr-pty-dev
>>
>
> I uploaded new versions of the 3 packages above. Will take care of filing
> unblock requests once they entered upstream.
>

Done:
https://bugs.debian.org/862608
https://bugs.debian.org/862609
https://bugs.debian.org/862610


>
> The following are already mentioned above:
>
>
>> Package: golang-github-armon-go-metrics-dev
>> Package: golang-github-gosexy-gettext-dev
>> Package: golang-github-hashicorp-go-msgpack-dev
>> Package: golang-github-stretchr-objx-dev
>> Package: golang-github-kr-pty-dev
>>
>> As you can see these are all -dev packages, so the Built-Using is bogus
>> and should simply be dropped from the package.
>>
>> There are quite a few more packages that reference obsolete golang
>> packages in their Built-Using...
>>
>> Cheers,
>> mwh
>>
>>
>>> To avoid further delays, is this something you could NMU for us? If so,
>>> I’d much appreciate that. Thanks!
>>>
>>> --
>>> Best regards,
>>> Michael
>>>
>>> ___
>>> pkg-golang-devel mailing list
>>> pkg-golang-de...@lists.alioth.debian.org
>>> http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-golang-devel
>>>
>>
>>
>
>
> --
> Best regards,
> Michael
>



-- 
Best regards,
Michael

Bug#862335: openssl creates and accepts certificates with bad notAfter field

[Harald Dunkel]

Please don't underestimate this problem. openssl creates bad
certificates here without telling. It is *highly* annoying
if you are affected by a bad root certificate you already used
for setting up a private PKI and then detect the problem on
a platform with a better ssl implementation.

I would highly appreciate if you could fix this for Stretch.


Thanx
Harri

Bug#861732: systemd: How to get suricata started at boot?

[Arturo Borrero Gonzalez]

On Mon, 8 May 2017 14:11:19 +0200 Arturo Borrero Gonzalez
 wrote:
> On 3 May 2017 at 19:58, Michael Biebl  wrote:
> >
> > If it doesn't open up any security hole, then I don't see a reason to
> > not enable suricata upon installation.
>

BTW, any idea on how to solve the issue about choosing a default interface name?

The suricata config file points to a NIC and our current config file
points by default to 'eth0',
but many systems may not have it available.

If we try to start suricata pointing to a non-existent interface this will fail.
If we auto-start suricata after installing it with aptitude and it
fails, the package may be considered installed failed.

We could probably enable (but don't auto-start) the service at package
install time.

Comments?

Bug#771790: Fwd: Package broken

[Marcos Marado]

On May 15, 2017 06:06, "Val Markovic"  wrote:

[Sending you a copy of my response on the bug since I forgot to cc you.]

-- Forwarded message --
From: Val Markovic 
Date: Sun, May 14, 2017 at 9:57 PM
Subject: Re: Package broken
To: 771...@bugs.debian.org

I'm interested in fixing this package if there are still users interested
in using it. Popcon says 1 machine uses this: https://qa.debian.org/po
pcon.php?package=dirty.js

Marcos, do you still use this package?


I do, on several machines.
Thanks!

-- 
Marcos Marado

Bug#862615: unblock: postgresql-9.6/9.6.3-1

[Christoph Berg]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package postgresql-9.6:

postgresql-9.6 (9.6.3-1) unstable; urgency=medium

  * Team upload.
  * New upstream version.

+ Restrict visibility of pg_user_mappings.umoptions, to protect passwords
  stored as user mapping options (CVE-2017-7486)
+ Prevent exposure of statistical information via leaky operators
  (CVE-2017-7484)
+ Restore libpq's recognition of the PGREQUIRESSL environment variable
  (CVE-2017-7485)

  * debian/rules: Add stub to enable cassert builds (disabled by default).

 -- Christoph Berg   Tue, 09 May 2017 13:00:11 +0200


unblock postgresql-9.6/9.6.3-1


Thanks,
Christoph


signature.asc
Description: PGP signature

Bug#862354: ITP: installation-birthday -- Receive congratulations on system installation anniversaries

[Chris Lamb]

Holger Levsen wrote:

> > Updated the package description to make this clearer. :)
> 
> cool, thanks!
> 
> is it already suggested by debian-goodies? ;-)

No. Good idea, but looking at it in more detial I don't think it's
really appropriate there either, alas.


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#862616: asterisk-prompt-it: src:asterisk-prompt-it d/control VCS-Browser broken

[Tobias Frost]

Source: asterisk-prompt-it
Severity: normal

Hi,

seems so that in d/control VCS-Browser should read:
https://anonscm.debian.org/viewvc/pkg-voip/asterisk-prompt-it/

instead of 
https://anonscm.debian.org/viewvc/pkg-voip/asterisk-prompt-it/?op=log
(which fails with an 400 Bad Request)

--
tobi

-- System Information:
Debian Release: 9.0
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#861732: closing bug, fixed in the archive

[Arturo Borrero Gonzalez]

Control: fixed -1 3.2.1-1

This fixed code is already in the archive starting with suricata 3.2.1-1.

Closing the bug now.

Bug#862632: CVE-2017-8353

[Bastien ROUCARIES]

package: src:imagemagick
Version: 8:6.9.7.4+dfsg-6
Severity: important
Tags: security
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.7.7.10-5+deb7u13
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/454

ReadPICTImage function in pict.c allows attackers to cause a denial of
service (memory leak) via a crafted file.

Bug#850889: suricata: Inconsistent behaviour between .init and .service

[Arturo Borrero Gonzalez]

Control: fixed -1 3.2.1-1

On Tue, 10 Jan 2017 22:11:57 +0100 Christoph Biedl
 wrote:
> Also, after a quick glance into the init script:
>
> | else
> | echo "/etc/default/suricata is missing... bailing out!"
> | fi
>
> No, you're not bailing out. Perhaps add "exit 0"?
>

this code is already in the archive, closing the bug now.

best regards.

Bug#862617: RM: libnunc-stans/0.1.8-1 -- RoM

[Adam D. Barratt]

Control: reassign -1 ftp.debian.org

On 2017-05-15 9:01, Timo Aaltonen wrote:

389-ds-base upstream has merged this in their codebase in 1.3.6.x and
a separate copy is not
needed. It's not used on earlier versions either, and there are no
(other) reverse-depends on
libnunc-stans0/-dev, so it's safe to remove from both testing/unstable.


In that case you want a removal from unstable, which is ftp team's 
territory; reassigning.


Regards,

Adam

Bug#862633: CVE-2017-8354

[Bastien ROUCARIES]

package: src:imagemagick
Version: 8:6.9.7.4+dfsg-6
Severity: important
Tags: security
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.7.7.10-5+deb7u13
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/451

the ReadBMPImage function in bmp.c allows attackers to cause a denial
of service (memory leak) via a crafted file.

Bug#862634: CVE-2017-8355

[Bastien ROUCARIES]

package: src:imagemagick
Version: 8:6.9.7.4+dfsg-6
Severity: important
Tags: security
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.7.7.10-5+deb7u13
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/450


the ReadMTVImage function in mtv.c allows attackers to cause a denial
of service (memory leak) via a crafted file.

Bug#862636: CVE-2017-8357

[Bastien ROUCARIES]

package: src:imagemagick
Version: 8:6.9.7.4+dfsg-6
Severity: important
Tags: security
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.7.7.10-5+deb7u13
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/453

 The ReadEPTImage function in ept.c allows attackers to cause a denial
of service (memory leak) via a crafted file.

Bug#862635: CVE-2017-8356

[Bastien ROUCARIES]

package: src:imagemagick
Version: 8:6.9.7.4+dfsg-6
Severity: important
Tags: security
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.7.7.10-5+deb7u13
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/449


the ReadSUNImage function in sun.c allows attackers to cause a denial
of service (memory leak) via a crafted file.Source

Bug#861878: nvidia-cuda-toolkit: nvcc needs to pass -fpie to compiler

[Samuel Thibault]

Lumin, on sam. 13 mai 2017 05:59:24 +, wrote:
> > This was documented in NEWS.Debian.gz. Having to use "--compiler-options
> > -fPIC" was however not documented in NEW.Debian.gz, at least that should
> > be done.
> 
> Well, what do you think we can to to deal with this bug?

I Cc-ed gcc, llvm and binutils maintainers to get their opinion on this
:)

The problem is the move of some parts of the toolchain to pie by
default, without updating the whole toolchain. Whenever not using only
gcc for building object files, the issue shows up. nvcc is only an
example of this.

> And what can we do from the CUDA packaging side except for a new
> NEWS/README.Debian section?
> 
> I plan to point out these in the new NEWS/README.Debian section:
> (1) Try to compile the whole CUDA application with clang-3.8
> (2) Append the PIE/PIC flags to compiler arguments, reference: [1]
> 
> [1] http://gcc.gnu.org/onlinedocs/gcc/Code-Gen-Options.html

That's probably a reasonable thing to do on that side, yes.

Samuel

Bug#862639: xserver-xorg-input-wacom: polluting my syslog (update to 0.35)

[Axel Wilder]

Package: xserver-xorg-input-wacom
Version: 0.34.0-1
Severity: important
Tags: newcomer

Dear Maintainer,

I am on debian stretch, using a wacom tablet and the following is polluting my
syslog every several seconds:

May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) BUG: triggered 'if
(in_input_thread())'
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) BUG:
../../../../os/io.c:656 in WriteToClient()
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 
WriteToClient called from input thread *
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE)
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) Backtrace:
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 0:
/usr/lib/xorg/Xorg (xorg_backtrace+0x4a) [0x56046ba6d46a]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 1:
/usr/lib/xorg/Xorg (WriteToClient+0x162) [0x56046ba70aa2]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 2:
/usr/lib/xorg/Xorg (WriteEventsToClient+0x252) [0x56046b913aa2]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 3:
/usr/lib/xorg/Xorg (TryClientEvents+0x120) [0x56046b913c40]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 4:
/usr/lib/xorg/Xorg (0x56046b8b4000+0x633aa) [0x56046b9173aa]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 5:
/usr/lib/xorg/Xorg (DeliverEventsToWindow+0x1d7) [0x56046b917697]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 6:
/usr/lib/xorg/Xorg (0x56046b8b4000+0x146d69) [0x56046b9fad69]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 7:
/usr/lib/xorg/Xorg (0x56046b8b4000+0x1526cf) [0x56046ba066cf]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 8:
/usr/lib/xorg/Xorg (XIChangeDeviceProperty+0x358) [0x56046ba07088]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 9:
/usr/lib/xorg/modules/input/wacom_drv.so (0x7fb058ab+0x10df9)
[0x7fb058ac0df9]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 10:
/usr/lib/xorg/modules/input/wacom_drv.so (0x7fb058ab+0x76a7)
[0x7fb058ab76a7]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 11:
/usr/lib/xorg/modules/input/wacom_drv.so (0x7fb058ab+0x8864)
[0x7fb058ab8864]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 12:
/usr/lib/xorg/modules/input/wacom_drv.so (0x7fb058ab+0xe38f)
[0x7fb058abe38f]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 13:
/usr/lib/xorg/modules/input/wacom_drv.so (0x7fb058ab+0x616b)
[0x7fb058ab616b]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 14:
/usr/lib/xorg/modules/input/wacom_drv.so (0x7fb058ab+0x63a6)
[0x7fb058ab63a6]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 15:
/usr/lib/xorg/Xorg (0x56046b8b4000+0x1bb5dc) [0x56046ba6f5dc]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 16:
/usr/lib/xorg/Xorg (0x56046b8b4000+0x1bdcd1) [0x56046ba71cd1]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 17:
/usr/lib/xorg/Xorg (0x56046b8b4000+0x1bb436) [0x56046ba6f436]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 18:
/lib/x86_64-linux-gnu/libpthread.so.0 (0x7fb0619e1000+0x7494) [0x7fb0619e8494]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 19:
/lib/x86_64-linux-gnu/libc.so.6 (clone+0x3f) [0x7fb06172b93f]
May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE)

There is a known solution for this, which I found on this thread:
https://sourceforge.net/p/linuxwacom/bugs/328/?page=1

Bascially, updating to 0.35 should resolve the problem.

I report this because I think this is so severe that it should be fixed before
the release of Debian 9.



-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages xserver-xorg-input-wacom depends on:
ii  libc6  2.24-10
ii  libudev1   232-23
ii  libx11-6   2:1.6.4-3
ii  libxext6   2:1.3.3-1+b2
ii  libxi6 2:1.7.9-1
ii  libxinerama1   2:1.1.3-1+b3
ii  libxrandr2 2:1.5.1-1
ii  xserver-xorg-core [xorg-input-abi-24]  2:1.19.2-1

xserver-xorg-input-wacom recommends no packages.

Versions of packages xserver-xorg-input-wacom suggests:
pn  xinput  

-- no debconf information

Bug#862570: libmenu-cache: menu-cached socket may be blocked by another user.

[Salvatore Bonaccorso]

Hi

I requested a CVE via cveform.mitre.org for this issue.

Regards,
Salvatore

Bug#862639: input-wacom: Re: xserver-xorg-input-wacom: polluting my syslog (update to 0.35)

[Axel Wilder]

Package: xserver-xorg-input-wacom
Version: 0.34.0-1
Followup-For: Bug #862639

Dear Maintainer,

sorry, updating to 0.34.2 solves it (0.35 does not exist). Just did so and
succeeded with it.

Please fix this before the Debian 9 release!



-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages xserver-xorg-input-wacom depends on:
ii  libc6  2.24-10
ii  libudev1   232-23
ii  libx11-6   2:1.6.4-3
ii  libxext6   2:1.3.3-1+b2
ii  libxi6 2:1.7.9-1
ii  libxinerama1   2:1.1.3-1+b3
ii  libxrandr2 2:1.5.1-1
ii  xserver-xorg-core [xorg-input-abi-24]  2:1.19.2-1

xserver-xorg-input-wacom recommends no packages.

Versions of packages xserver-xorg-input-wacom suggests:
pn  xinput  

-- no debconf information

Bug#862571: pcmanfm: single instance socket may be blocked by another user.

[Salvatore Bonaccorso]

Hi

I requested a CVE for this issue via cveform.mitre.org

Regards,
Salvatore

Bug#860656: forwarded upstream

[Hans-Christoph Steiner]

Control: forwarded -1 https://bitbucket.org/wooster/biplist/issues/8

Since the plist format stores the length of the integer, storing a long
should always return a long:

 0001  # of bytes is 2^, big-endian bytes
https://en.wikipedia.org/wiki/Property_list#Mac_OS_X

On python3 this does not matter, since there is no long type, only int.

Bug#862441: [mutter] backport fix for at-spi reporting the wrong position of gnome-shell elements

[intrigeri]

Control: tag -1 + moreinfo

anonym:
> Versions before mutter 3.24 are affected by a bug making gnome-shell report 
> the wrong x-coordinate of its elements via at-spi. For details, see: 

It would be nice to sum up the impact of the bug here (e.g. for users
of universal access technologies), so the maintainers and the release
team don't have to go through additional hops to understand why this
normal severity bug should be fixed in Stretch.

Thanks in advance!

Bug#861732:

[Arturo Borrero Gonzalez]

Control: tags -1 pending

Fixed in git commit 636f10fb5be2a49072d2543e0d2aecb23f1a168e [0].

Waiting Stretch to be stable to push this into sid.

[0] 
https://anonscm.debian.org/cgit/pkg-suricata/pkg-suricata.git/commit/?h=unstable-next=636f10fb5be2a49072d2543e0d2aecb23f1a168e

Bug#862652: debian-edu-config: wrong exim4 configuration breaks SMTP server security

[Holger Levsen]

control: found -1 1.926
control: found -1 1.818+deb8u2
control: Severity -1 serious
thanks


-- 
cheers,
Holger


signature.asc
Description: Digital signature

Bug#862655: update node-readdirp to latest upstream release

[Pirate Praveen]

package: node-readdirp
version: 0.2.4-2

node-chokidar wants a newer version on node-readdirp

But the following tests fail

$ tap test/readdirp.js
test/readdirp.js  18/24
  # Subtest:
  not ok test unfinished:  reading root using glob filter
at:
  line: 104
  column: 1
  file: test/readdirp.js
source: |
  test('\nreading root using glob filter', function (t) {

  not ok child test left in queue:   reading root using function filter
at:
  line: 182
  column: 1
  file: test/readdirp.js
source: |
  test('\n\nreading root using function filter', function (t) {

  not ok child test left in queue:  reading root specifying maximum depth
at:
  line: 206
  column: 1
  file: test/readdirp.js
source: |
  test('\nreading root specifying maximum depth', function (t) {

  not ok child test left in queue:  reading root with no recursion
at:
  line: 215
  column: 1
  file: test/readdirp.js
source: |
  test('\nreading root with no recursion', function (t) {

  not ok child test left in queue:  progress callbacks
at:
  line: 224
  column: 1
  file: test/readdirp.js
source: |
  test('\nprogress callbacks', function (t) {

  not ok child test left in queue: resolving of name, full and relative
paths
at:
  line: 243
  column: 1
  file: test/readdirp.js
source: |
  test('resolving of name, full and relative paths', function (t) {

total ... 18/24


  18 passing (346.297ms)
  6 failing



signature.asc
Description: OpenPGP digital signature

Bug#862654: Input event (e. g. typing on keyboard) is sent repeatedly during high load

[antistress]

Package: xserver-common
Version: 2:1.19.3-1

Hi,

I have that bug again, which was solved once (see upstream bug 
https://bugzilla.gnome.org/show_bug.cgi?id=757942 and especially 
https://bugzilla.gnome.org/show_bug.cgi?id=757942#c33 I think) but which 
is back today :


Using Firefox, I open a new tab (ctrl+t) and start typing in the url bar 
: the first letter is repeated several times (for instance 
"cccinema").


I'm using Debian Sid 64 bits with GNOME-Wayland and :
Xwayland 2:1.19.3-1
libwayland-client0 1.12.0-1
firefox 52.0.2-1
Linux HAL 4.9.0-3-amd64 #1 SMP Debian 4.9.25-1 (2017-05-02) x86_64 GNU/Linux

Thanks !

Thibaut

Bug#861198: Shutting down public FTP services

[Enrico Zini]

On Sun, May 07, 2017 at 09:58:12PM -0700, Vagrant Cascadian wrote:

> Any chance you could review the urllib implementation that is in git
> soonish? :)

I've been adventurously busy, I hope it's not too late.

In bfc0329060e262bfd889b5e40c32ad9099197dcb I have mixed feelings about
this, as it uses string split on a path while python has os.path.split.
However, I couldn't at a glance follow the code to see what kind of
input it works on, and if it's something like
http://ftp.fr.debian.org/debian/dists/jessie/Release
then the lines are not really paths:

-prefix_len = 7 + len(env.get("DI_CODENAME")) # 
dists/{DI_CODENAME}/
-relname = file[prefix_len:]
+separator = os.path.join('dists/', env.get("DI_CODENAME"), 
'')
+separator, relname = file.split(separator)


About 6717a008549cd792a4c08d7c21d09cbd8b82a67a: COOL!

In b164d54b912a8d702576c191a821ec2f374642cf I agree that except without
an exception is too broad, like in here:

try:
checksums.verify_file(output, relname)
except:
raise Fail("Checksum invalid: %s", output)

I noticed that verify_file in simple_cdd/utils.py already throws Fail if
something is wrong. I would get rid of the try/except block altogether,
and just call verify_file.

1faddb9cfe4992c36bca7e502f5190e96de74f77 looks good, I can't think of a
better way of doing it.

I'm attaching a proposed patch for the over-broad excepts.


Enrico

-- 
GPG key: 4096R/634F4BD1E7AD5568 2009-05-08 Enrico Zini 
From c84da64e7485cc89d0c72ab5d15c3df9f58945b5 Mon Sep 17 00:00:00 2001
From: Enrico Zini 
Date: Mon, 15 May 2017 12:41:33 +0200
Subject: [PATCH] Avoid except: that might catch too much

---
 simple_cdd/tools/mirror_wget.py | 7 ++-
 1 file changed, 2 insertions(+), 5 deletions(-)

diff --git a/simple_cdd/tools/mirror_wget.py b/simple_cdd/tools/mirror_wget.py
index 73999a3..dc914cf 100644
--- a/simple_cdd/tools/mirror_wget.py
+++ b/simple_cdd/tools/mirror_wget.py
@@ -46,7 +46,7 @@ class ToolMirrorWget(Tool):
 checksums.verify_file(output, relname)
 log.debug("skipping download: %s checksum matched", output)
 return
-except:
+except Fail:
 log.debug("re-downloading: %s checksum invalid", output)
 pass
 if not os.path.isdir(os.path.dirname(output)):
@@ -54,10 +54,7 @@ class ToolMirrorWget(Tool):
 log.debug("downloading: %s", output)
 request.urlretrieve(url, filename=output)
 if checksums:
-try:
-checksums.verify_file(output, relname)
-except:
-raise Fail("Checksum invalid: %s", output)
+checksums.verify_file(output, relname)
 
 if env.get("mirror_files"):
 # Download the checksums present in the archive "extrafiles" and verify
-- 
2.11.0



signature.asc
Description: PGP signature

Bug#862638: logcheck: Please add suricata rules to logcheck

[Hans-J. Ullrich]

Package: logcheck
Version: 1.3.18
Severity: wishlist

Dear Maintainer,

I am very happy with logcheck. It is great working and very usefull. However, 
it would be nice, if you could add a ruleset for suricata (a successor to the 
well known snort IDS), so I get alerted, when something fishy is going on. In 
my case logcheck is run every 30 minutes, so I am very fast aware, when an 
attack is going on. On the other hand, I found no realtime alert option with 
suricata. Best way, IMO, would be a ruleset for suricata logs, which do alert 
me by mail (as logcheck normally do).

I search in the web, but things like snorby, scirius, evebox etc. did not fit 
the things I am searching for.

Thank you for reading this and thanks for logcheck, it is great!

Best regards

Hans 

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing'), (500, 'stable')
Architecture: i386
 (i686)

Kernel: Linux 4.9.0-2-686-pae (SMP w/2 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages logcheck depends on:
ii  adduser 3.115
ii  cron [cron-daemon]  3.0pl1-128+b1
ii  lockfile-progs  0.1.17+b1
ii  logtail 1.3.18
ii  mime-construct  1.11+nmu2
ii  postfix [mail-transport-agent]  3.1.4-4
ii  rsyslog [system-log-daemon] 8.24.0-1

Versions of packages logcheck recommends:
ii  logcheck-database  1.3.18

Versions of packages logcheck suggests:
pn  syslog-summary  

-- Configuration Files:
/etc/logcheck/logcheck.conf [Errno 13] Keine Berechtigung: 
'/etc/logcheck/logcheck.conf'
/etc/logcheck/logcheck.logfiles [Errno 13] Keine Berechtigung: 
'/etc/logcheck/logcheck.logfiles'

-- no debconf information

Bug#862656: cryptsetup: WARNING: failed to detect canonical device of none

[Enrico Zini]

Package: initramfs-tools
Version: 0.130
Severity: normal

Hello,

after reading /usr/share/doc/initramfs-tools/NEWS.Debian.gz
I set RESUME=none in /etc/initramfs-tools/conf.d/resume
but when running "update-initramfs -u" I get a warning from cryptsetup as if
none isn't being treated specially and it's still treated like a device name:

# update-initramfs -u
update-initramfs: Generating /boot/initrd.img-4.9.0-2-amd64
W: Possible missing firmware /lib/firmware/i915/kbl_guc_ver9_14.bin for module 
i915
W: Possible missing firmware /lib/firmware/i915/bxt_guc_ver8_7.bin for module 
i915
cryptsetup: WARNING: failed to detect canonical device of none


Enrico

-- Package-specific info:
-- initramfs sizes
-rw-r--r-- 1 root root 30M Mar  5 10:53 /boot/initrd.img-4.9.0-1-amd64
-rw-r--r-- 1 root root 29M May 15 12:48 /boot/initrd.img-4.9.0-2-amd64
-- /proc/cmdline
BOOT_IMAGE=/vmlinuz-4.9.0-2-amd64 root=/dev/mapper/viaza-root ro quiet splash

-- resume
# See /usr/share/doc/initramfs-tools/NEWS.Debian.gz
#RESUME=/dev/mapper/viaza-swap_1
RESUME=none
-- /proc/filesystems
btrfs
ext3
ext2
ext4
vfat
iso9660

-- lsmod
Module  Size  Used by
cpuid  16384  0
nls_utf8   16384  0
isofs  40960  0
nls_ascii  16384  0
nls_cp437  20480  0
vfat   20480  0
fat69632  1 vfat
uas24576  0
usb_storage73728  1 uas
ctr16384  6
ccm20480  3
veth   16384  0
bridge135168  0
stp16384  1 bridge
llc16384  2 bridge,stp
pci_stub   16384  1
vboxpci24576  0
vboxnetadp 28672  0
vboxnetflt 28672  0
vboxdrv   454656  3 vboxnetadp,vboxnetflt,vboxpci
cpufreq_conservative16384  0
cpufreq_powersave  16384  0
cpufreq_userspace  16384  0
binfmt_misc20480  1
algif_skcipher 20480  0
af_alg 16384  1 algif_skcipher
dm_crypt   24576  3
pata_pcmcia20480  0
uvcvideo   90112  0
videobuf2_vmalloc  16384  1 uvcvideo
videobuf2_memops   16384  1 videobuf2_vmalloc
videobuf2_v4l2 24576  1 uvcvideo
videobuf2_core 36864  2 uvcvideo,videobuf2_v4l2
videodev  176128  3 uvcvideo,videobuf2_core,videobuf2_v4l2
media  40960  2 uvcvideo,videodev
iTCO_wdt   16384  0
iTCO_vendor_support16384  1 iTCO_wdt
hp_wmi 16384  0
sparse_keymap  16384  1 hp_wmi
tpm_infineon   20480  0
acpi_cpufreq   20480  1
intel_powerclamp   16384  0
coretemp   16384  0
kvm_intel 192512  0
kvm   589824  1 kvm_intel
irqbypass  16384  1 kvm
crct10dif_pclmul   16384  0
crc32_pclmul   16384  0
ghash_clmulni_intel16384  0
intel_cstate   16384  0
intel_uncore  118784  0
pcmcia 65536  1 pata_pcmcia
joydev 20480  0
pcspkr 16384  0
serio_raw  16384  0
arc4   16384  2
snd_hda_codec_hdmi 49152  2
iwldvm139264  0
mac80211  671744  1 iwldvm
intel_ips  20480  0
snd_hda_codec_idt  57344  1
snd_hda_codec_generic69632  1 snd_hda_codec_idt
iwlwifi   147456  1 iwldvm
sg 32768  0
yenta_socket   49152  0
pcmcia_rsrc20480  1 yenta_socket
cfg80211  589824  3 iwlwifi,mac80211,iwldvm
snd_hda_intel  36864  5
pcmcia_core24576  3 yenta_socket,pcmcia,pcmcia_rsrc
lpc_ich24576  0
snd_hda_codec 135168  4 
snd_hda_intel,snd_hda_codec_idt,snd_hda_codec_hdmi,snd_hda_codec_generic
mfd_core   16384  1 lpc_ich
rfkill 24576  4 hp_wmi,cfg80211
snd_hda_core   81920  5 
snd_hda_intel,snd_hda_codec,snd_hda_codec_idt,snd_hda_codec_hdmi,snd_hda_codec_generic
snd_hwdep  16384  1 snd_hda_codec
snd_pcm_oss49152  0
snd_mixer_oss  24576  1 snd_pcm_oss
snd_pcm   110592  6 
snd_pcm_oss,snd_hda_intel,snd_hda_codec,snd_hda_core,snd_hda_codec_hdmi
snd_timer  32768  1 snd_pcm
snd86016  19 
snd_pcm_oss,snd_hda_intel,snd_hwdep,snd_mixer_oss,snd_hda_codec,snd_hda_codec_idt,snd_timer,snd_hda_codec_hdmi,snd_hda_codec_generic,snd_pcm
soundcore  16384  1 snd
shpchp 36864  0
mei_me 36864  0
mei   102400  1 mei_me
battery16384  0
hp_accel   28672  0
lis3lv02d  20480  1 hp_accel
input_polldev  16384  1 lis3lv02d
ac 16384  0
evdev  24576  26
tpm_tis16384  0
tpm_tis_core   20480  1 tpm_tis
tpm45056  3 

Bug#862643: O: libipc-signal-perl -- utility functions dealing with signals for Perl

[Tobias Frost]

Package: wnpp

The current maintainer of libipc-signal-perl, Roderick Schertler 
,
is apparently not active anymore.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: libipc-signal-perl
Binary: libipc-signal-perl
Version: 1.00-6
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 3.0.5), perl (>= 5.6.0-16)
Architecture: all
Standards-Version: 3.5.2
Format: 1.0
Files:
 e0e1793bbaf5db7fbc20b2e1ec6b595a 636 libipc-signal-perl_1.00-6.dsc
 4cebf17fdf1785eaf8c151bf2e8c360a 2649 libipc-signal-perl_1.00.orig.tar.gz
 339c186e680f53366ffdaf1b33a6a2c2 2316 libipc-signal-perl_1.00-6.diff.gz
Checksums-Sha1:
 17a15526e00ee730d306f6b2a68276fc1285 636 libipc-signal-perl_1.00-6.dsc
 a76796569421b3ac5ad777da04c32828ae294746 2316 libipc-signal-perl_1.00-6.diff.gz
 cdc9ca73d54da258013714c229924e0672684026 2649 
libipc-signal-perl_1.00.orig.tar.gz
Checksums-Sha256:
 cf3b3bb70d1c917521e6cc52dc295aec511d6364b175a5aad2f929be44cc0d9d 636 
libipc-signal-perl_1.00-6.dsc
 7f2737293664cfd2dfe89bfcd6cb79b03e75361456b0699e4e688c2a59a93290 2316 
libipc-signal-perl_1.00-6.diff.gz
 7c21f9c8c2d0c0f0f0f46e77de7c3d879dd562668ddf0525875c38cef2076fd0 2649 
libipc-signal-perl_1.00.orig.tar.gz
Directory: pool/main/libi/libipc-signal-perl
Priority: source
Section: perl

Package: libipc-signal-perl
Binary: libipc-signal-perl
Version: 1.00-6.2
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16)
Architecture: all
Standards-Version: 3.5.2
Format: 1.0
Files:
 cd5f8e3cbefe6f4cc1e0fe4fad50417f 1862 libipc-signal-perl_1.00-6.2.dsc
 4cebf17fdf1785eaf8c151bf2e8c360a 2649 libipc-signal-perl_1.00.orig.tar.gz
 daa86139da6c7f6967568a474778f4b0 2535 libipc-signal-perl_1.00-6.2.diff.gz
Checksums-Sha256:
 a23937acfe4cc2f3dab08123192f91344d42854e31d110e2c6308070fa5851d0 1862 
libipc-signal-perl_1.00-6.2.dsc
 7c21f9c8c2d0c0f0f0f46e77de7c3d879dd562668ddf0525875c38cef2076fd0 2649 
libipc-signal-perl_1.00.orig.tar.gz
 54ffe89faf571ef8f808cf3d0e3c8a672fb0138e52552ae9e92ba3141c1981b8 2535 
libipc-signal-perl_1.00-6.2.diff.gz
Package-List: 
 libipc-signal-perl deb perl optional arch=all
Directory: pool/main/libi/libipc-signal-perl
Priority: source
Section: perl

Package: libipc-signal-perl
Version: 1.00-6.2
Installed-Size: 21
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl
Description-en: utility functions dealing with signals for Perl
 This Perl module contains utility functions for dealing with signals.
 Currently these are just translating between signal names and signal
 numbers and vice versa.
Description-md5: 4c67b23ecdfba7046bc13dbfaefbdc78
Tag: devel::lang:perl, devel::library, implemented-in::perl
Section: perl
Priority: optional
Filename: pool/main/libi/libipc-signal-perl/libipc-signal-perl_1.00-6.2_all.deb
Size: 6272
MD5sum: 752b9c1d7b2a276d7506f4a37490bf80
SHA256: ea9b4fcadad6529aef515664f6a5d25731110cc2b5932b8e74c3166b446854eb

Package: libipc-signal-perl
Version: 1.00-6
Installed-Size: 64
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl (>= 5.6.0-16)
Description-en: utility functions dealing with signals for Perl
 This Perl module contains utility functions for dealing with signals.
 Currently these are just translating between signal names and signal
 numbers and vice versa.
Description-md5: 4c67b23ecdfba7046bc13dbfaefbdc78
Tag: devel::lang:perl, devel::library, implemented-in::perl
Section: perl
Priority: optional
Filename: pool/main/libi/libipc-signal-perl/libipc-signal-perl_1.00-6_all.deb
Size: 7008
MD5sum: 249d3c103a06826f9890f5398a2b
SHA1: c00c07eaf4c0e29fb069001ab00ff3de760e297c
SHA256: 9ded893ff31fc11666482dd8b5ff4a63fa317372e26589e25ec0ca8ce3083066

Package: libipc-signal-perl
Version: 1.00-6.2
Installed-Size: 21
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl
Description-en: utility functions dealing with signals for Perl
 This Perl module contains utility functions for dealing with signals.
 Currently these are just translating between signal names and signal
 numbers and vice versa.
Description-md5: 4c67b23ecdfba7046bc13dbfaefbdc78
Tag: devel::lang:perl, devel::library, implemented-in::perl
Section: perl
Priority: optional
Filename: pool/main/libi/libipc-signal-perl/libipc-signal-perl_1.00-6.2_all.deb
Size: 6272
MD5sum: 752b9c1d7b2a276d7506f4a37490bf80
SHA256: ea9b4fcadad6529aef515664f6a5d25731110cc2b5932b8e74c3166b446854eb

Package: libipc-signal-perl
Version: 1.00-6
Installed-Size: 64
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl (>= 5.6.0-16)
Description-en: utility 

Bug#862642: O: hearse -- exchange Nethack bones files with other players

[Tobias Frost]

Package: wnpp

The current maintainer of hearse, Roderick Schertler ,
is apparently not active anymore.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: hearse
Binary: hearse
Version: 1.5-8.1
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 4.1.68), perl (>= 5.6.0-16), po-debconf
Architecture: all
Standards-Version: 3.7.2
Format: 1.0
Files:
 b530303ba5114470de59b6f40d30ab83 1643 hearse_1.5-8.1.dsc
 4c022342d3f75af3b70a3e07e8e82ee0 29202 hearse_1.5.orig.tar.gz
 f3915106d5f029755f940801ac9ca60c 19897 hearse_1.5-8.1.diff.gz
Checksums-Sha1:
 03f7f0059df072be4ebecb511df84156af83709f 1643 hearse_1.5-8.1.dsc
 bc1ea58589067107fe82f9c3143e655418f27b78 29202 hearse_1.5.orig.tar.gz
 baca1769dc67acec653b17caa84ce9142cd92b18 19897 hearse_1.5-8.1.diff.gz
Checksums-Sha256:
 942ecade36bed1c838c77fd9e4a1d1f9ee8cdedf2fca94938eac52fc11c8659b 1643 
hearse_1.5-8.1.dsc
 2f339bef82cb416a818ed458e4b1e8b0ccbb1d6abf8e33a99b5d7fdffec7fb12 29202 
hearse_1.5.orig.tar.gz
 19c76414ebb9732f68f2e3063a214bb95f9387c134679832263d72521dd9f2a2 19897 
hearse_1.5-8.1.diff.gz
Package-List: 
 hearse deb games optional
Directory: pool/main/h/hearse
Priority: source
Section: games

Package: hearse
Binary: hearse
Version: 1.5-8.3
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16), po-debconf
Architecture: all
Standards-Version: 3.7.2
Format: 1.0
Files:
 7f3a938938748f2033e512a0707e80b1 1636 hearse_1.5-8.3.dsc
 4c022342d3f75af3b70a3e07e8e82ee0 29202 hearse_1.5.orig.tar.gz
 14195fbe505ee7e94aab3e5bb4a9577f 22235 hearse_1.5-8.3.diff.gz
Checksums-Sha256:
 1432471641d3b589cb49b4eda4e339a98bc566d887f653f40ed146ea173acf41 1636 
hearse_1.5-8.3.dsc
 2f339bef82cb416a818ed458e4b1e8b0ccbb1d6abf8e33a99b5d7fdffec7fb12 29202 
hearse_1.5.orig.tar.gz
 5f7ae8b5d7326f516c712519295c532da5db153e8dc7fdc617b98091a98bffc2 22235 
hearse_1.5-8.3.diff.gz
Package-List: 
 hearse deb games optional arch=all
Directory: pool/main/h/hearse
Priority: source
Section: games

Package: hearse
Version: 1.5-8.3
Installed-Size: 105
Maintainer: Roderick Schertler 
Architecture: all
Depends: debconf (>= 1.2.0) | debconf-2.0, perl, libwww-perl, nethack-common | 
nethack
Description-en: exchange Nethack bones files with other players
 Nethack sometimes saves the level on which you die (including your
 stuff, what killed you, and your ghost) in a "bones file".  These files
 get loaded into later Nethack games.  If you're the only Nethack player
 on your system you'll only get bones files you created yourself.
 .
 With Hearse, you can automatically exchange bones files with other
 Nethack players.  When run it uploads any new bones files it finds
 on your system, then downloads any bones files the server feels like
 giving it.  See http://www.argon.org/~roderick/hearse/ for more
 information.
 .
 An important thing to note is that by default using Hearse will cause
 you to end up with more bones than you otherwise would have.  This
 changes the game's balance and is considered by many players to be a
 mild form of cheating.  You can address this by turning on the
 --delete-uploaded option, but the down side is you'll never encounter
 your own bones files.
Description-md5: 5794f9e6ad2af9faa035c500662b5ce9
Tag: game::rpg:rogue, interface::commandline, role::program, scope::utility,
 use::downloading, use::gameplaying
Section: games
Priority: optional
Filename: pool/main/h/hearse/hearse_1.5-8.3_all.deb
Size: 36988
MD5sum: fe6949a0454b73dd645753b1612c1b55
SHA256: 62ecb216a6c6f6eb00ff9a8bed0ba7b11e8be37192f70ba27d82cca6cd7d8500

Package: hearse
Version: 1.5-8.1
Installed-Size: 143
Maintainer: Roderick Schertler 
Architecture: all
Depends: debconf (>= 1.2.0) | debconf-2.0, perl, libwww-perl, nethack-common | 
nethack
Description-en: exchange Nethack bones files with other players
 Nethack sometimes saves the level on which you die (including your
 stuff, what killed you, and your ghost) in a "bones file".  These files
 get loaded into later Nethack games.  If you're the only Nethack player
 on your system you'll only get bones files you created yourself.
 .
 With Hearse, you can automatically exchange bones files with other
 Nethack players.  When run it uploads any new bones files it finds
 on your system, then downloads any bones files the server feels like
 giving it.  See http://www.argon.org/~roderick/hearse/ for more
 information.
 .
 An important thing to note is that by default using Hearse will cause
 you to end up with more bones than you otherwise would have.  This
 changes the game's balance and is considered by many players 

Bug#862646: O: libstring-shellquote-perl -- quote strings for passing through the shell

[Tobias Frost]

Package: wnpp

The current maintainer of libstring-shellquote-perl, Roderick Schertler 
,
is apparently not active anymore.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: libstring-shellquote-perl
Binary: libstring-shellquote-perl
Version: 1.03-1
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 3.0.5), perl (>= 5.6.0-16)
Architecture: all
Standards-Version: 3.6.1
Format: 1.0
Files:
 5074421504bf88c0cb9ad49ddb0ae639 662 libstring-shellquote-perl_1.03-1.dsc
 b42822efe385f6604f55b0cea5ac0b76 6471 
libstring-shellquote-perl_1.03.orig.tar.gz
 d0a925af31997794e3cef26bc212648a 2379 libstring-shellquote-perl_1.03-1.diff.gz
Checksums-Sha1:
 e3ce28962e0508941e9dcb3fff6dd987c7e661b7 662 
libstring-shellquote-perl_1.03-1.dsc
 80f9973c4dc980ab110ba8f92c0aced4e0981ea5 2379 
libstring-shellquote-perl_1.03-1.diff.gz
 c13a0f05ca3798059cc5209ee4b61ec6d3b91746 6471 
libstring-shellquote-perl_1.03.orig.tar.gz
Checksums-Sha256:
 ab745bd4aa7be0f36e50c4ab72c2d55c36e776862c3fa4ecff4817568786bfab 662 
libstring-shellquote-perl_1.03-1.dsc
 9c76d878bb9789c8fb14f8ff9b817b06bbeedc1c98884ece287558ee9cef3b8a 2379 
libstring-shellquote-perl_1.03-1.diff.gz
 8dbd89a07fbcd81b73eb177e6d5dc4925fb3b61733828de71d25f298b08d9d83 6471 
libstring-shellquote-perl_1.03.orig.tar.gz
Directory: pool/main/libs/libstring-shellquote-perl
Priority: source
Section: perl

Package: libstring-shellquote-perl
Binary: libstring-shellquote-perl
Version: 1.03-1.2
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16)
Architecture: all
Standards-Version: 3.9.6
Format: 1.0
Files:
 7ca6f57fba70f61739f598d632a2d2fe 1795 libstring-shellquote-perl_1.03-1.2.dsc
 b42822efe385f6604f55b0cea5ac0b76 6471 
libstring-shellquote-perl_1.03.orig.tar.gz
 7687d884fa2d7c9f8d6a3e7861e805da 2778 
libstring-shellquote-perl_1.03-1.2.diff.gz
Checksums-Sha256:
 2c41c7b3b0efd4c62126a74938a3137ba5a0550225fdb9d1c56d43fbae37ab63 1795 
libstring-shellquote-perl_1.03-1.2.dsc
 8dbd89a07fbcd81b73eb177e6d5dc4925fb3b61733828de71d25f298b08d9d83 6471 
libstring-shellquote-perl_1.03.orig.tar.gz
 5a3918c7a2009184ce25ae47cb5d1c9f74586d5a8475f445460bc602440bef7e 2778 
libstring-shellquote-perl_1.03-1.2.diff.gz
Package-List: 
 libstring-shellquote-perl deb perl optional arch=all
Directory: pool/main/libs/libstring-shellquote-perl
Priority: source
Section: perl

Package: libstring-shellquote-perl
Version: 1.03-1.2
Installed-Size: 33
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl
Description-en: quote strings for passing through the shell
 This Perl module contains some functions which are useful for quoting
 strings which are going to pass through the shell or a shell-like
 object, plus a command-line interface to it.  It is useful for doing
 robust tool programming, particularly when dealing with files whose
 names contain white space or shell globbing characters.
Description-md5: 55b0377c637e234b4c7bca7f878736f1
Tag: devel::lang:perl, devel::library, implemented-in::perl, works-with::text
Section: perl
Priority: optional
Filename: 
pool/main/libs/libstring-shellquote-perl/libstring-shellquote-perl_1.03-1.2_all.deb
Size: 12188
MD5sum: c52e69edf7ad64c068470563e1760ed8
SHA256: 050c49ade44e4148cfee6bfc29a5d553ab0e49de528f267d748ad53234f72107

Package: libstring-shellquote-perl
Version: 1.03-1
Installed-Size: 84
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl (>= 5.6.0-16)
Description-en: quote strings for passing through the shell
 This Perl module contains some functions which are useful for quoting
 strings which are going to pass through the shell or a shell-like
 object, plus a command-line interface to it.  It is useful for doing
 robust tool programming, particularly when dealing with files whose
 names contain white space or shell globbing characters.
Description-md5: 55b0377c637e234b4c7bca7f878736f1
Tag: devel::lang:perl, devel::library, implemented-in::perl, works-with::text
Section: perl
Priority: optional
Filename: 
pool/main/libs/libstring-shellquote-perl/libstring-shellquote-perl_1.03-1_all.deb
Size: 14030
MD5sum: f533f1afc830c5430be18a7ebfc72621
SHA1: 6e56bf98a8b764bae2c2d8456b27d05953d8d057
SHA256: f9613b8900d4cd34795013304654a79f111d6301065a5462289f8fe083aa4e20

Package: libstring-shellquote-perl
Version: 1.03-1.2
Installed-Size: 33
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl
Description-en: quote strings for passing through the shell
 This Perl module contains some functions which are useful for quoting
 strings which are going to pass through the shell or a 

Bug#862641: O: ftp-upload -- put files with FTP from a script

[Tobias Frost]

Package: wnpp

The current maintainer of ftp-upload, Roderick Schertler ,
is apparently not active anymore.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: ftp-upload
Binary: ftp-upload
Version: 1.5
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 3.0.5), perl (>= 5.6.0-16)
Architecture: all
Standards-Version: 3.6.2
Format: 1.0
Files:
 37280d21ab9c0583def6af538476e537 528 ftp-upload_1.5.dsc
 c5ca0b74454785af7d8ff684d50345ba 8882 ftp-upload_1.5.tar.gz
Checksums-Sha1:
 5ccbf46aa99e2df021f337b8219618495a46e5a4 528 ftp-upload_1.5.dsc
 ae07d2764589b4859d7f2b25612c16a72d172560 8882 ftp-upload_1.5.tar.gz
Checksums-Sha256:
 94071ce50dcad986391fc537705ed181f13609490bae7ce6764ced0fbf007112 528 
ftp-upload_1.5.dsc
 dc476a30b08d71566d6ed148db86dfe76df9b85d47d87dce88267a61d916f2b4 8882 
ftp-upload_1.5.tar.gz
Directory: pool/main/f/ftp-upload
Priority: source
Section: net

Package: ftp-upload
Binary: ftp-upload
Version: 1.5+nmu2
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16)
Architecture: all
Standards-Version: 3.9.7
Format: 3.0 (native)
Files:
 8d31453642910113e3934ff42e63b523 1424 ftp-upload_1.5+nmu2.dsc
 63563ada4fcbc1866d015a2725fab10b 8756 ftp-upload_1.5+nmu2.tar.xz
Checksums-Sha256:
 d1a9856123d3b1117811656aa1523d8db139e308322cb5c3477eb444a1cd4413 1424 
ftp-upload_1.5+nmu2.dsc
 143d2c5f9d1d3cb0ddaa0291ba9792b3f2fde7b582e191f8139a887c366cd839 8756 
ftp-upload_1.5+nmu2.tar.xz
Package-List: 
 ftp-upload deb net optional arch=all
Directory: pool/main/f/ftp-upload
Priority: source
Section: net

Package: ftp-upload
Version: 1.5+nmu2
Installed-Size: 32
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl, libnet-perl
Description-en: put files with FTP from a script
 ftp-upload transfers local files to another machine using FTP.  It's
 meant to be used by scripts and such rather than interactively.  There's
 no user interface, the program is controlled strictly via the command
 line.  It is disciplined with its exit status.
Description-md5: 608a9b6be46b2c40737b1b93c824a8d0
Tag: interface::commandline, network::client, protocol::ftp, role::program,
 use::transmission, works-with::file
Section: net
Priority: optional
Filename: pool/main/f/ftp-upload/ftp-upload_1.5+nmu2_all.deb
Size: 12486
MD5sum: 32d874dbd8f86c6df306480c384ac384
SHA256: 8bb376faeef6d03c6c8f0a0521f18ecd149fc2d75f91eb6d7b030fbe886b5ceb

Package: ftp-upload
Version: 1.5
Installed-Size: 68
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl, libnet-perl
Description-en: put files with FTP from a script
 ftp-upload transfers local files to another machine using FTP.  It's
 meant to be used by scripts and such rather than interactively.  There's
 no user interface, the program is controlled strictly via the command
 line.  It is disciplined with its exit status.
Description-md5: 608a9b6be46b2c40737b1b93c824a8d0
Tag: interface::commandline, network::client, protocol::ftp, role::program,
 use::transmission, works-with::file
Section: net
Priority: optional
Filename: pool/main/f/ftp-upload/ftp-upload_1.5_all.deb
Size: 13760
MD5sum: 2aac35eaa14747ba774c12f3ad0db2e1
SHA1: f7fbf4a252f7a41e80715490bf45131fd0cebaa7
SHA256: fa26abd9e66a4c03826a8ea21772e5fe161c205e4550ace778476b986565b1f2

Package: ftp-upload
Version: 1.5+nmu2
Installed-Size: 32
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl, libnet-perl
Description-en: put files with FTP from a script
 ftp-upload transfers local files to another machine using FTP.  It's
 meant to be used by scripts and such rather than interactively.  There's
 no user interface, the program is controlled strictly via the command
 line.  It is disciplined with its exit status.
Description-md5: 608a9b6be46b2c40737b1b93c824a8d0
Tag: interface::commandline, network::client, protocol::ftp, role::program,
 use::transmission, works-with::file
Section: net
Priority: optional
Filename: pool/main/f/ftp-upload/ftp-upload_1.5+nmu2_all.deb
Size: 12486
MD5sum: 32d874dbd8f86c6df306480c384ac384
SHA256: 8bb376faeef6d03c6c8f0a0521f18ecd149fc2d75f91eb6d7b030fbe886b5ceb

Package: ftp-upload
Version: 1.5
Installed-Size: 68
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl, libnet-perl
Description-en: put files with FTP from a script
 ftp-upload transfers local files to another machine using FTP.  It's
 meant to be used by scripts and such rather than interactively.  There's
 no user interface, the program is controlled strictly via the command
 line.  It is disciplined with its exit status.

Bug#862652: debian-edu-config: wrong exim4 configuration breaks SMTP server security

[Holger Levsen]

control: tags -1 + pending
# a fix is in git already, though improvements have been discussed on irc
# ;tl;dr: we're on it.


-- 
cheers,
Holger


signature.asc
Description: Digital signature

Bug#861732: closing bug, fixed in the archive

[Arturo Borrero Gonzalez]

Control: repoen -1
Control: notfixed -1 3.2.1-1

On Mon, 15 May 2017 10:17:25 +0200 Arturo Borrero Gonzalez
 wrote:
> Control: fixed -1 3.2.1-1
>
> This fixed code is already in the archive starting with suricata 3.2.1-1.
>
> Closing the bug now.
>

Sorry wrong bug number. Reopening :-)

Bug#862639: xserver-xorg-input-wacom: polluting my syslog (update to 0.35)

[Axel Wilder]

Package: xserver-xorg-input-wacom
Version: 0.34.0-1
Followup-For: Bug #862639

Dear Maintainer,

sorry, 0.34.2 is the version that solves it (0.35 does not exist).

Just tried it out myself manually and it worked.

Please fix this before the Debian 9 release!



-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages xserver-xorg-input-wacom depends on:
ii  libc6  2.24-10
ii  libudev1   232-23
ii  libx11-6   2:1.6.4-3
ii  libxext6   2:1.3.3-1+b2
ii  libxi6 2:1.7.9-1
ii  libxinerama1   2:1.1.3-1+b3
ii  libxrandr2 2:1.5.1-1
ii  xserver-xorg-core [xorg-input-abi-24]  2:1.19.2-1

xserver-xorg-input-wacom recommends no packages.

Versions of packages xserver-xorg-input-wacom suggests:
pn  xinput  

-- no debconf information

Bug#862652: debian-edu-config: wrong exim4 configuration breaks SMTP server security

[Wolfgang Schweer]

Package: debian-edu-config
Version: 1.926 1.818+deb8u2
Severity: seious

Hi,

while testing if Thunderbird works like expected in Debian Edu Stretch, 
I noticed that the provided exim4 server configuration 
(/etc/exim4/exim-ldap-server-v4.conf) is leading to a broken SMTP 
server: sending mail is possible w/o authentication, TLS is missing.
Only possible SMTP settings are:
(1) No connection security
(2) No authentification

These issues are caused by exim4 security fix for CVE-2016-1531 and
commit 4beb721 (master branch, fix for #794602).

Jessie is affected as well (both issues, same fixes needed).

Wolfgang


signature.asc
Description: PGP signature

Bug#862387: openstack-dashboard: instance delete fails with: 403 Forbidden - CSRF verification failed. Request aborted.

[Valentin Vidic]

On Fri, May 12, 2017 at 09:00:00AM +0200, Valentin Vidic wrote:
> Instance delete fails when I access:
> 
>   http://os-ctrl/horizon/project/instances/
> 
> and select "Delete Instance" from the list of actions with
> the error:
> 
>   Forbidden (403)
>   CSRF verification failed. Request aborted.
> 
>   Help
>   Reason given for failure:
> CSRF token missing or incorrect.

Downgrading python-django to 1.8.16-1~bpo8+1 seems to help,
so it seems this version of horizon is not compatible with
django 1.10 somehow?

-- 
Valentin

Bug#862637: CVE-2017-8830

[Bastien ROUCARIES]

package: src:imagemagick
Version: 8:6.9.7.4+dfsg-6
Severity: important
Tags: security
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.7.7.10-5+deb7u13
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/467

he ReadBMPImage function in bmp.c:1379 allows attackers to cause a
denial of service (memory leak) via a crafted file.

Bug#862649: O: mime-construct -- construct/send MIME messages from the command line

[Tobias Frost]

Package: wnpp

The current maintainer of mime-construct, Roderick Schertler 
,
is apparently not active anymore.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: mime-construct
Binary: mime-construct
Version: 1.11
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 3.0.18), perl (>= 5.6.0-16), libmime-base64-perl, 
libmime-types-perl, libproc-waitstat-perl
Architecture: all
Standards-Version: 3.8.0
Format: 1.0
Files:
 06d78103233f49fe41eebfbd71f70250 818 mime-construct_1.11.dsc
 73834ea780fbea81b89dbd9b2fb54f58 12906 mime-construct_1.11.tar.gz
Checksums-Sha1:
 c092e2eb41a1e0dacea6af2a1214ba209252b0dc 818 mime-construct_1.11.dsc
 b4bdd9a84779c8d614fea8ba3cb8346491542b1a 12906 mime-construct_1.11.tar.gz
Checksums-Sha256:
 c3e59627e6e08d187bd1c689145594867e957756a2ef8f773036d2c21b29ec3a 818 
mime-construct_1.11.dsc
 4cd7bb61b51d41192d1498c1051aa6a4ccd75aeb09b71d2ec706a7084a4a9303 12906 
mime-construct_1.11.tar.gz
Directory: pool/main/m/mime-construct
Priority: source
Section: mail

Package: mime-construct
Binary: mime-construct
Version: 1.11+nmu2
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16), libmime-base64-perl, 
libmime-types-perl, libproc-waitstat-perl
Architecture: all
Standards-Version: 3.8.0
Format: 1.0
Files:
 27fea96470c9e30f482416ebfbe6d52d 1340 mime-construct_1.11+nmu2.dsc
 17cbab71c497cb0bdc7ed88a9f843620 12375 mime-construct_1.11+nmu2.tar.gz
Checksums-Sha256:
 4e4f1504053460ca0d961a539a77a6e5a433b55c57a12934165624aeae9b51fd 1340 
mime-construct_1.11+nmu2.dsc
 ebeeec0936e4086759921c848cc53ea06e76019472996da2d54055bde07a96d2 12375 
mime-construct_1.11+nmu2.tar.gz
Package-List: 
 mime-construct deb mail optional arch=all
Directory: pool/main/m/mime-construct
Priority: source
Section: mail

Package: mime-construct
Version: 1.11+nmu2
Installed-Size: 46
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl, libmime-base64-perl, libmime-types-perl, libproc-waitstat-perl
Description-en: construct/send MIME messages from the command line
 mime-construct constructs and (by default) mails MIME messages.  It is
 entirely driven from the command line, it is designed to be used by
 other programs, or people who act like programs.
Description-md5: e07442bc1343c7ea762a25120a1d5920
Tag: implemented-in::perl, interface::commandline, role::program,
 scope::utility, works-with::mail
Section: mail
Priority: optional
Filename: pool/main/m/mime-construct/mime-construct_1.11+nmu2_all.deb
Size: 17432
MD5sum: d47b54c9c728d76ba4bc18414f04e6f7
SHA256: 957fe87db0a1ec3b930c663572060acceb3d3dee52e27359864ee3cf5d69548b

Package: mime-construct
Version: 1.11
Installed-Size: 84
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl, libmime-base64-perl, libmime-types-perl, libproc-waitstat-perl
Description-en: construct/send MIME messages from the command line
 mime-construct constructs and (by default) mails MIME messages.  It is
 entirely driven from the command line, it is designed to be used by
 other programs, or people who act like programs.
Description-md5: e07442bc1343c7ea762a25120a1d5920
Tag: implemented-in::perl, interface::commandline, role::program,
 scope::utility, works-with::mail
Section: mail
Priority: optional
Filename: pool/main/m/mime-construct/mime-construct_1.11_all.deb
Size: 19690
MD5sum: 5088958ea2d83bfd71e5728dfbb51252
SHA1: 55775526ee25015577d57f5d77eae716210a9107
SHA256: 0a98f2ca16a59cafe1d4d9f95e0e9642ec96fd29f6ba001421b61253c5d91c9a

Package: mime-construct
Version: 1.11+nmu2
Installed-Size: 46
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl, libmime-base64-perl, libmime-types-perl, libproc-waitstat-perl
Description-en: construct/send MIME messages from the command line
 mime-construct constructs and (by default) mails MIME messages.  It is
 entirely driven from the command line, it is designed to be used by
 other programs, or people who act like programs.
Description-md5: e07442bc1343c7ea762a25120a1d5920
Tag: implemented-in::perl, interface::commandline, role::program,
 scope::utility, works-with::mail
Section: mail
Priority: optional
Filename: pool/main/m/mime-construct/mime-construct_1.11+nmu2_all.deb
Size: 17432
MD5sum: d47b54c9c728d76ba4bc18414f04e6f7
SHA256: 957fe87db0a1ec3b930c663572060acceb3d3dee52e27359864ee3cf5d69548b

Package: mime-construct
Version: 1.11
Installed-Size: 84
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl, libmime-base64-perl, libmime-types-perl, libproc-waitstat-perl
Description-en: construct/send MIME messages from 

Bug#861878: nvidia-cuda-toolkit: nvcc needs to pass -fpie to compiler

[Lumin]

@doko GCC-5 may be removed from unstable when CUDA 9.0
is uploaded. See below.
(Maybe doko is already in some of these lists.)

> The problem is the move of some parts of the toolchain to pie by
> default, without updating the whole toolchain. Whenever not using only
> gcc for building object files, the issue shows up. nvcc is only an
> example of this.

Yes, toolchain problem. Due to the difference on the default option,
the mixed use of GCC and CLANG may end up with a failure as shown
in previous examples. This issue is not related to CUDA so I think
another bug against clang should be submitted.

>> And what can we do from the CUDA packaging side except for a new
>> NEWS/README.Debian section?
>>
> That's probably a reasonable thing to do on that side, yes.

The good news is that, the upcoming CUDA 9.0 supports GCC-6
and CLANG-3.9, as reported here

  https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862522

That means, the "build your whole application with clang-3.8"
advise is temporary and specific to CUDA 8.0. Before uploading
CUDA 9.0 to unstable/experimental, we can change the default
compiler back to GCC. And backporting CUDA 9.0 to stretch
will eliminate the compiler trouble.

Bug#862650: O: xtail -- like "tail -f", but works on truncated files, directories, more

[Tobias Frost]

Package: wnpp

The current maintainer of xtail, Roderick Schertler ,
is apparently not active anymore.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: xtail
Binary: xtail
Version: 2.1-5
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 3.0.5)
Architecture: any
Standards-Version: 3.5.6
Format: 1.0
Files:
 63146c0748cd13508da4b66ec6cea506 560 xtail_2.1-5.dsc
 2e4717c591a2cbbd4aeb63d00c87a0cb 26769 xtail_2.1.orig.tar.gz
 24f33d989e9e49d8ce12e9a1d41d9665 4787 xtail_2.1-5.diff.gz
Checksums-Sha1:
 1e4ae11b47fbd5c99bfde9805be3f840597a7b2e 560 xtail_2.1-5.dsc
 d990282d7084b8c2a862f8557c57646676b6182b 4787 xtail_2.1-5.diff.gz
 1188baaf47e19a1ed6176a17ee6d144078657c17 26769 xtail_2.1.orig.tar.gz
Checksums-Sha256:
 7806b70f56ba55d21dc0447996edb4ca5193e963088a874595e8c3fae6c03241 560 
xtail_2.1-5.dsc
 b586cfddec1eaa67bf69b016e42d10cf8b19f35ed5a4ed186eb9215126de7422 4787 
xtail_2.1-5.diff.gz
 75184926dffd89e9405769b24f01c8ed3b25d3c4a8eac60271fc5bb11f6c2d53 26769 
xtail_2.1.orig.tar.gz
Directory: pool/main/x/xtail
Priority: source
Section: utils

Package: xtail
Binary: xtail
Version: 2.1-5.1
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 9)
Architecture: any
Standards-Version: 3.9.6
Format: 1.0
Files:
 e50395400cd808a8aac81ab73a5640dd 1590 xtail_2.1-5.1.dsc
 2e4717c591a2cbbd4aeb63d00c87a0cb 26769 xtail_2.1.orig.tar.gz
 227635b3097771214e4ed5c97b698ff2 5022 xtail_2.1-5.1.diff.gz
Checksums-Sha256:
 e4ee0a0b705fb7809251d38876d35d43f1e5b8b4b225418e5e77de935a357648 1590 
xtail_2.1-5.1.dsc
 75184926dffd89e9405769b24f01c8ed3b25d3c4a8eac60271fc5bb11f6c2d53 26769 
xtail_2.1.orig.tar.gz
 eb59ff51c5a595e306c28a98c09af3eb8176a0ff891a385107e8a489a2fe5196 5022 
xtail_2.1-5.1.diff.gz
Package-List: 
 xtail deb utils optional arch=any
Directory: pool/main/x/xtail
Priority: source
Section: utils

Package: xtail
Source: xtail (2.1-5.1)
Version: 2.1-5.1+b1
Installed-Size: 35
Maintainer: Roderick Schertler 
Architecture: amd64
Depends: libc6 (>= 2.14)
Description-en: like "tail -f", but works on truncated files, directories, more
 xtail watches the growth of files.  It's like running a "tail -f" on
 a bunch of files at once.  It notices if a file is truncated and starts
 from the beginning.  You can specify both filenames and directories on
 the command line.  If you specify a directory, it watches all the files
 in that directory.  It will notice when new files are created (and
 start watching them) or when old files are deleted (and stop watching
 them).
 .
 Note that xtail isn't a graphical (X11) program, it runs on a plain tty.
 The name likely comes from "eXtended tail" or such.
Description-md5: 9aa631c9d9da2fabcc414190df0572f0
Tag: implemented-in::c, interface::commandline, interface::text-mode,
 role::program, use::monitor, use::viewing, works-with::file,
 works-with::logfile
Section: utils
Priority: optional
Filename: pool/main/x/xtail/xtail_2.1-5.1+b1_amd64.deb
Size: 11210
MD5sum: c091d5936f6bd059662084823273c843
SHA256: aeb03f81eea2f72883a94b7b00680d256dfbbdfd7176ff113775efe298bd3635

Package: xtail
Version: 2.1-5
Installed-Size: 68
Maintainer: Roderick Schertler 
Architecture: amd64
Depends: libc6 (>= 2.7-1)
Description-en: like "tail -f", but works on truncated files, directories, more
 xtail watches the growth of files.  It's like running a "tail -f" on
 a bunch of files at once.  It notices if a file is truncated and starts
 from the beginning.  You can specify both filenames and directories on
 the command line.  If you specify a directory, it watches all the files
 in that directory.  It will notice when new files are created (and
 start watching them) or when old files are deleted (and stop watching
 them).
 .
 Note that xtail isn't a graphical (X11) program, it runs on a plain tty.
 The name likely comes from "eXtended tail" or such.
Description-md5: 9aa631c9d9da2fabcc414190df0572f0
Tag: implemented-in::c, interface::commandline, interface::text-mode,
 role::program, use::monitor, use::viewing, works-with::file,
 works-with::logfile
Section: utils
Priority: optional
Filename: pool/main/x/xtail/xtail_2.1-5_amd64.deb
Size: 11400
MD5sum: f55e64bff259205aa16fe40dc6d4516d
SHA1: 5dbfb9b250f3c79eef8dd2337f6d062e371e1524
SHA256: 8b2082aed94a93f7ede131e1dbe01504f3d44db8121227c28362d5c56c713c40

Package: xtail
Source: xtail (2.1-5.1)
Version: 2.1-5.1+b1
Installed-Size: 35
Maintainer: Roderick Schertler 
Architecture: amd64
Depends: libc6 (>= 2.14)
Description-en: like "tail -f", but works on truncated files, directories, more
 xtail watches the growth of files.  It's 

Bug#862640: O: debget -- download/compile source and binary Debian packages

[Tobias Frost]

Package: wnpp

The current maintainer of debget, Roderick Schertler ,
is apparently not active anymore.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: debget
Binary: debget
Version: 1.6+nmu1
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 3.0.5), perl (>= 5.6.0-16)
Architecture: all
Standards-Version: 3.6.1
Format: 1.0
Files:
 7e3dfaa3bd6e77abf4c212eb6685f8ae 721 debget_1.6+nmu1.dsc
 fde0c55e89692036180fbff985eca9e0 19834 debget_1.6+nmu1.tar.gz
Checksums-Sha1:
 4f383491345d5c0d21eab88a6df7f819ea2d413c 721 debget_1.6+nmu1.dsc
 446f87de033bbbaf0fa8f21b8917a0a4eaa9d820 19834 debget_1.6+nmu1.tar.gz
Checksums-Sha256:
 d2ac904bdc74449c18fb51611151ad633521ab6f3c383bc9c6b91f4e723c4361 721 
debget_1.6+nmu1.dsc
 e7a5ce3bf1dc0339f20f0286b226b50ddf980f8bfa9701b61a55a44e1067eed4 19834 
debget_1.6+nmu1.tar.gz
Directory: pool/main/d/debget
Priority: source
Section: utils

Package: debget
Binary: debget
Version: 1.6+nmu4
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16)
Architecture: all
Standards-Version: 3.9.7
Format: 3.0 (native)
Files:
 0ea5f102510645336df49b0e755dec6d 1405 debget_1.6+nmu4.dsc
 1309562000283fe0709ecc87e19a32de 18412 debget_1.6+nmu4.tar.xz
Checksums-Sha256:
 29bc52ba117339db306fc1c8571f72d5e5f07be7bd2fd1e7bc20d7662dd999c7 1405 
debget_1.6+nmu4.dsc
 365b17c4c1d6cf2066dd21a7831ed2f11ab1370db8ea7892ef7372ed48df4137 18412 
debget_1.6+nmu4.tar.xz
Package-List: 
 debget deb utils optional arch=all
Directory: pool/main/d/debget
Priority: source
Section: utils

Package: debget
Version: 1.6+nmu4
Installed-Size: 77
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl, libapt-pkg-perl, libnet-perl, libproc-waitstat-perl, libwww-perl
Suggests: devscripts
Description-en: download/compile source and binary Debian packages
 debget downloads source and binary Debian packages by name.  It doesn't
 require a local copy of the Packages files, instead it queries
 packages.debian.org to find out what versions are available.
 .
 debget can also optionally unpack and compile source packages, and even
 install the generated binary packages.  If you intend to use these
 features you should install the devscripts package for the dscverify
 script it contains.
Description-md5: 9398bebdde9c7a6959820e531a6d100b
Tag: devel::packaging, interface::commandline, role::program, scope::utility,
 suite::debian
Section: utils
Priority: optional
Filename: pool/main/d/debget/debget_1.6+nmu4_all.deb
Size: 27074
MD5sum: c296a34c9b3a4edb72fa5afc7961def5
SHA256: 87b11edc5c11a7e9a17c02be10a8571f89073bdbeab591f2314a7190517c35a6

Package: debget
Version: 1.6+nmu1
Installed-Size: 140
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl (>= 5.6.0-16), libapt-pkg-perl, libnet-perl, 
libproc-waitstat-perl, libwww-perl
Suggests: devscripts
Description-en: download/compile source and binary Debian packages
 debget downloads source and binary Debian packages by name.  It doesn't
 require a local copy of the Packages files, instead it queries
 packages.debian.org to find out what versions are available.
 .
 debget can also optionally unpack and compile source packages, and even
 install the generated binary packages.  If you intend to use these
 features you should install the devscripts package for the dscverify
 script it contains.
Description-md5: 9398bebdde9c7a6959820e531a6d100b
Tag: devel::packaging, interface::commandline, role::program, scope::utility,
 suite::debian
Section: utils
Priority: optional
Filename: pool/main/d/debget/debget_1.6+nmu1_all.deb
Size: 30848
MD5sum: 215a4ff1c99bfbe4f43742db229288b9
SHA1: 8d5ec3b56eba941a2afb8722e3ef560cf34a5983
SHA256: 29d8c631c052b313ac5c00892312a1867839dc9c8b818a0a838a70fdb26bb508

Package: debget
Version: 1.6+nmu4
Installed-Size: 77
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl, libapt-pkg-perl, libnet-perl, libproc-waitstat-perl, libwww-perl
Suggests: devscripts
Description-en: download/compile source and binary Debian packages
 debget downloads source and binary Debian packages by name.  It doesn't
 require a local copy of the Packages files, instead it queries
 packages.debian.org to find out what versions are available.
 .
 debget can also optionally unpack and compile source packages, and even
 install the generated binary packages.  If you intend to use these
 features you should install the devscripts package for the dscverify
 script it contains.
Description-md5: 9398bebdde9c7a6959820e531a6d100b
Tag: devel::packaging, interface::commandline, role::program, scope::utility,

Bug#862644: O: libproc-syncexec-perl -- spawn processes but report exec() errors properly

[Tobias Frost]

Package: wnpp

The current maintainer of libproc-syncexec-perl, Roderick Schertler 
,
is apparently not active anymore.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: libproc-syncexec-perl
Binary: libproc-syncexec-perl
Version: 1.01-1
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 3.0.5), perl (>= 5.6.0-16)
Architecture: all
Standards-Version: 3.5.2
Format: 1.0
Files:
 c8410a5a66a2c3674986f8d1a9981a00 648 libproc-syncexec-perl_1.01-1.dsc
 38dd51ed78504d73bf6520a044744cb8 4967 libproc-syncexec-perl_1.01.orig.tar.gz
 e1e906cf3292a399bd622273d7a24019 2332 libproc-syncexec-perl_1.01-1.diff.gz
Checksums-Sha1:
 2bd5592cfd6cd5fe065b192a53b908c49a8c6c74 648 libproc-syncexec-perl_1.01-1.dsc
 75410e4fe2e9030a3febc03d4a5cb62cac85a0b4 2332 
libproc-syncexec-perl_1.01-1.diff.gz
 ce91d132ddae828d18dbd46812c127ac578089dd 4967 
libproc-syncexec-perl_1.01.orig.tar.gz
Checksums-Sha256:
 0e4b430fd7d09ef71d64ac30b2d459cf1a8eb108a7ff6c026823f9a3acebf395 648 
libproc-syncexec-perl_1.01-1.dsc
 4df0056543a4ebed20a745be673506c0b2e7ba6fa477ed0976f5a6fd1d60f531 2332 
libproc-syncexec-perl_1.01-1.diff.gz
 2060f8a3f5ea26944d6ec013c81f46662ead6c1e32ad1b3ab394d9c0f7462d20 4967 
libproc-syncexec-perl_1.01.orig.tar.gz
Directory: pool/main/libp/libproc-syncexec-perl
Priority: source
Section: perl

Package: libproc-syncexec-perl
Binary: libproc-syncexec-perl
Version: 1.01-1.2
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 10~), perl (>= 5.6.0-16)
Architecture: all
Standards-Version: 3.5.2
Format: 1.0
Files:
 4d5103c9d1dd3d0c3b7c229bc98d1ad8 1775 libproc-syncexec-perl_1.01-1.2.dsc
 38dd51ed78504d73bf6520a044744cb8 4967 libproc-syncexec-perl_1.01.orig.tar.gz
 5f7e4133d3208ec803e8fc8d5e125f5a 2571 libproc-syncexec-perl_1.01-1.2.diff.gz
Checksums-Sha256:
 6605853943ae680fef68c55d1649b6d3a8d31350bdcb23b7e72d0f49ce1ac190 1775 
libproc-syncexec-perl_1.01-1.2.dsc
 2060f8a3f5ea26944d6ec013c81f46662ead6c1e32ad1b3ab394d9c0f7462d20 4967 
libproc-syncexec-perl_1.01.orig.tar.gz
 f2a94ed7e86e87a57985760cd3b5730ec5ab7bc64d9a5b8402c807ed55740d55 2571 
libproc-syncexec-perl_1.01-1.2.diff.gz
Package-List: 
 libproc-syncexec-perl deb perl optional arch=all
Directory: pool/main/libp/libproc-syncexec-perl
Priority: source
Section: perl

Package: libproc-syncexec-perl
Version: 1.01-1.2
Installed-Size: 26
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl
Description-en: spawn processes but report exec() errors properly
 This Perl module contains functions for synchronized process spawning
 with full error return.  If the child's exec() call fails the reason
 for the failure is reported back to the parent.
Description-md5: 020adc57461dff147f30454ea76aff31
Tag: devel::lang:perl, devel::library, implemented-in::perl
Section: perl
Priority: optional
Filename: 
pool/main/libp/libproc-syncexec-perl/libproc-syncexec-perl_1.01-1.2_all.deb
Size: 9314
MD5sum: 38d4f4653af516a8b86c13f266b23bea
SHA256: b6dec30e3312404dda4e5525b42ff22a1f85f23e665aa1ee663094c4d465ccb7

Package: libproc-syncexec-perl
Version: 1.01-1
Installed-Size: 68
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl (>= 5.6.0-16)
Description-en: spawn processes but report exec() errors properly
 This Perl module contains functions for synchronized process spawning
 with full error return.  If the child's exec() call fails the reason
 for the failure is reported back to the parent.
Description-md5: 020adc57461dff147f30454ea76aff31
Tag: devel::lang:perl, devel::library, implemented-in::perl
Section: perl
Priority: optional
Filename: 
pool/main/libp/libproc-syncexec-perl/libproc-syncexec-perl_1.01-1_all.deb
Size: 10348
MD5sum: 7103da3326f6f218160c10097ef1ef50
SHA1: 2a5e0fce92432a2e18759552ef014a52a2d3f365
SHA256: 5ced678f824ca9f2d2093d6e1e86eb0e3677f08fe6548cde12219c111e0d085e

Package: libproc-syncexec-perl
Version: 1.01-1.2
Installed-Size: 26
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl
Description-en: spawn processes but report exec() errors properly
 This Perl module contains functions for synchronized process spawning
 with full error return.  If the child's exec() call fails the reason
 for the failure is reported back to the parent.
Description-md5: 020adc57461dff147f30454ea76aff31
Tag: devel::lang:perl, devel::library, implemented-in::perl
Section: perl
Priority: optional
Filename: 
pool/main/libp/libproc-syncexec-perl/libproc-syncexec-perl_1.01-1.2_all.deb
Size: 9314
MD5sum: 38d4f4653af516a8b86c13f266b23bea
SHA256: b6dec30e3312404dda4e5525b42ff22a1f85f23e665aa1ee663094c4d465ccb7

Package: 

Bug#862645: O: libproc-waitstat-perl -- interpret and act on wait() status values

[Tobias Frost]

Package: wnpp

The current maintainer of libproc-waitstat-perl, Roderick Schertler 
,
is apparently not active anymore.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: libproc-waitstat-perl
Binary: libproc-waitstat-perl
Version: 1.00-4
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 3.0.5), perl (>= 5.6.0-16), libipc-signal-perl
Architecture: all
Standards-Version: 3.5.2
Format: 1.0
Files:
 2ba01b2ffd40343e7ede9efddc574e9d 668 libproc-waitstat-perl_1.00-4.dsc
 b911bd579b6b142391b21de1efa30c95 3223 libproc-waitstat-perl_1.00.orig.tar.gz
 02d510b2d9d07b95d604d25589f4d2ec 2308 libproc-waitstat-perl_1.00-4.diff.gz
Checksums-Sha1:
 13b0bebf3a48a2fd0559f76cc8604bf474cf4c32 668 libproc-waitstat-perl_1.00-4.dsc
 b8f8f159c4b345e2ea27efc2bf94cedcb5ffe424 2308 
libproc-waitstat-perl_1.00-4.diff.gz
 2b3c56f1748fbcbf6e164268834adba5865527b4 3223 
libproc-waitstat-perl_1.00.orig.tar.gz
Checksums-Sha256:
 34127da94e940b0b800efee81ec9807fef87d3b2bc8bc387fab245dfd901de65 668 
libproc-waitstat-perl_1.00-4.dsc
 d5fd50c85cea1f67e2e3a2d67ddfb584cf1c30af21dfdc01bf401790a495e03d 2308 
libproc-waitstat-perl_1.00-4.diff.gz
 d07563f5e787909d16e7390241e877f49ab739b1de9d0e2ea1a41bd0bf4474bc 3223 
libproc-waitstat-perl_1.00.orig.tar.gz
Directory: pool/main/libp/libproc-waitstat-perl
Priority: source
Section: perl

Package: libproc-waitstat-perl
Binary: libproc-waitstat-perl
Version: 1.00-4.2
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16), libipc-signal-perl
Architecture: all
Standards-Version: 3.5.2
Format: 1.0
Files:
 6cf9e7625f65984f9089bc5e6ce25f7f 1608 libproc-waitstat-perl_1.00-4.2.dsc
 b911bd579b6b142391b21de1efa30c95 3223 libproc-waitstat-perl_1.00.orig.tar.gz
 b1e77edd7b69b1e5b437a02c6f128ac5 2038 libproc-waitstat-perl_1.00-4.2.diff.gz
Checksums-Sha256:
 476bfe7b0877b305ec93723044f66b14baad0d33c4a56bee9bf5a4fd241fbc2c 1608 
libproc-waitstat-perl_1.00-4.2.dsc
 d07563f5e787909d16e7390241e877f49ab739b1de9d0e2ea1a41bd0bf4474bc 3223 
libproc-waitstat-perl_1.00.orig.tar.gz
 0da55a0b842f9659dbdc83f74b99f4c856d3c0475e367c1914ff8f7570469db4 2038 
libproc-waitstat-perl_1.00-4.2.diff.gz
Package-List: 
 libproc-waitstat-perl deb perl optional arch=all
Directory: pool/main/libp/libproc-waitstat-perl
Priority: source
Section: perl

Package: libproc-waitstat-perl
Version: 1.00-4.2
Installed-Size: 22
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl, libipc-signal-perl
Description-en: interpret and act on wait() status values
 This Perl module contains functions which are useful for interpreting
 and acting on wait() status values.
Description-md5: ba774cbff5e3902aaee874b1aa3dad86
Tag: devel::lang:perl, devel::library, implemented-in::perl
Section: perl
Priority: optional
Filename: 
pool/main/libp/libproc-waitstat-perl/libproc-waitstat-perl_1.00-4.2_all.deb
Size: 7038
MD5sum: 83ed8dbb236d431df650c3b34320d7f5
SHA256: 5a7a348fc8c35e67a3af5c860c9ae9b7f2dcc3a16912a0955d9bd2ab9d9bfb52

Package: libproc-waitstat-perl
Version: 1.00-4
Installed-Size: 64
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl (>= 5.6.0-16), libipc-signal-perl
Description-en: interpret and act on wait() status values
 This Perl module contains functions which are useful for interpreting
 and acting on wait() status values.
Description-md5: ba774cbff5e3902aaee874b1aa3dad86
Tag: devel::lang:perl, devel::library, implemented-in::perl
Section: perl
Priority: optional
Filename: 
pool/main/libp/libproc-waitstat-perl/libproc-waitstat-perl_1.00-4_all.deb
Size: 7790
MD5sum: 3b303897cd712a78e54a2b4baf3370d6
SHA1: 68d3e6c7d3af38a8925f581afb4a6c64a6c0da16
SHA256: f93bb36227f2d694c3a51d992d4973301499cc6deed5c8ce2e93e66bf04d8868

Package: libproc-waitstat-perl
Version: 1.00-4.2
Installed-Size: 22
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl, libipc-signal-perl
Description-en: interpret and act on wait() status values
 This Perl module contains functions which are useful for interpreting
 and acting on wait() status values.
Description-md5: ba774cbff5e3902aaee874b1aa3dad86
Tag: devel::lang:perl, devel::library, implemented-in::perl
Section: perl
Priority: optional
Filename: 
pool/main/libp/libproc-waitstat-perl/libproc-waitstat-perl_1.00-4.2_all.deb
Size: 7038
MD5sum: 83ed8dbb236d431df650c3b34320d7f5
SHA256: 5a7a348fc8c35e67a3af5c860c9ae9b7f2dcc3a16912a0955d9bd2ab9d9bfb52

Package: libproc-waitstat-perl
Version: 1.00-4
Installed-Size: 64
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl (>= 5.6.0-16), libipc-signal-perl

Bug#862647: O: libtime-period-perl -- Perl library for testing if a time() is in a specific period

[Tobias Frost]

Package: wnpp

The current maintainer of libtime-period-perl, Roderick Schertler 
,
is apparently not active anymore.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: libtime-period-perl
Binary: libtime-period-perl
Version: 1.20-8
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 3.0.5), perl (>= 5.6.0-16)
Architecture: all
Standards-Version: 3.5.2
Format: 1.0
Files:
 eba73c648924487b1a2ba52d2846f816 641 libtime-period-perl_1.20-8.dsc
 63b073af8ec96e7fa48801cd6fcccdd1 10711 libtime-period-perl_1.20.orig.tar.gz
 9f1a1d0bc608d83f6ccb169d9f615283 2572 libtime-period-perl_1.20-8.diff.gz
Checksums-Sha1:
 149f4f8cbf2a16c0aca449f6e6d3d6f5b6eda887 641 libtime-period-perl_1.20-8.dsc
 76f1141b01be6578e67efcda000f470c2ccc5ae6 2572 
libtime-period-perl_1.20-8.diff.gz
 98d324e9858debfa918d60892600650230a86e87 10711 
libtime-period-perl_1.20.orig.tar.gz
Checksums-Sha256:
 e0cc2d05b10ba36f39272bed73a7daac532cb6e3400234f387972b444afe03e7 641 
libtime-period-perl_1.20-8.dsc
 777f7329971ce8fcddcdf2add917bd3543fc82bdd2d7c5337dfc6a7ef54f1b4d 2572 
libtime-period-perl_1.20-8.diff.gz
 22b2d9e33e6d0a5fc2194aee03318807d58380e225c9c41092330298526a1e30 10711 
libtime-period-perl_1.20.orig.tar.gz
Directory: pool/main/libt/libtime-period-perl
Priority: source
Section: perl

Package: libtime-period-perl
Binary: libtime-period-perl
Version: 1.20-8.2
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16)
Architecture: all
Standards-Version: 3.9.6
Format: 1.0
Files:
 e12b6f747e7dc97a2cf25e04dd3576ad 1744 libtime-period-perl_1.20-8.2.dsc
 63b073af8ec96e7fa48801cd6fcccdd1 10711 libtime-period-perl_1.20.orig.tar.gz
 311c56c8ad7105fd903b59d6a4aac9d5 1947 libtime-period-perl_1.20-8.2.diff.gz
Checksums-Sha256:
 9a9060351f511bef2f8a83cd7125699ec1d69407e53b1e5f548531415f8ed9b2 1744 
libtime-period-perl_1.20-8.2.dsc
 22b2d9e33e6d0a5fc2194aee03318807d58380e225c9c41092330298526a1e30 10711 
libtime-period-perl_1.20.orig.tar.gz
 83f8e9e76b8d120bc4d947474e7c77761508a810ac8e9fef995fdad5aaff0caf 1947 
libtime-period-perl_1.20-8.2.diff.gz
Package-List: 
 libtime-period-perl deb perl optional arch=all
Directory: pool/main/libt/libtime-period-perl
Priority: source
Section: perl

Package: libtime-period-perl
Version: 1.20-8.2
Installed-Size: 70
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl
Description-en: Perl library for testing if a time() is in a specific period
 This Perl library provides a function which tells whether a specific
 time falls within a specified time period.  Its syntax for specifying
 time periods allows you to test for conditions like "Monday to Friday,
 9am till 5pm" and "on the second Tuesday of the month" and "between 4pm
 and 4:15pm" and "in the first half of each minute" and "in January of
 1998".
Description-md5: 65413d2cf8621141f0dc283bdadc299c
Tag: devel::lang:perl, devel::library, implemented-in::perl, use::timekeeping
Section: perl
Priority: optional
Filename: 
pool/main/libt/libtime-period-perl/libtime-period-perl_1.20-8.2_all.deb
Size: 13182
MD5sum: 5d871047426f07794b8d64b8621a196c
SHA256: 0a6573832fe8ca330fe2e18e48ac9802c5dbbc1a8bf202cb616697238d5a9251

Package: libtime-period-perl
Version: 1.20-8
Installed-Size: 84
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl (>= 5.6.0-16)
Description-en: Perl library for testing if a time() is in a specific period
 This Perl library provides a function which tells whether a specific
 time falls within a specified time period.  Its syntax for specifying
 time periods allows you to test for conditions like "Monday to Friday,
 9am till 5pm" and "on the second Tuesday of the month" and "between 4pm
 and 4:15pm" and "in the first half of each minute" and "in January of
 1998".
Description-md5: 65413d2cf8621141f0dc283bdadc299c
Tag: devel::lang:perl, devel::library, implemented-in::perl, use::timekeeping
Section: perl
Priority: optional
Filename: pool/main/libt/libtime-period-perl/libtime-period-perl_1.20-8_all.deb
Size: 15152
MD5sum: bda9ccd126428e43b86d1a18c75f7b02
SHA1: 389d9f7241a2f2065f4c5091c9148b7f9ba233cc
SHA256: 9df5e2ef5db144fe560cf5aeda2b4d9f8b53e53089b50ceda28c6d9c33b076b9

Package: libtime-period-perl
Version: 1.20-8.2
Installed-Size: 70
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl
Description-en: Perl library for testing if a time() is in a specific period
 This Perl library provides a function which tells whether a specific
 time falls within a specified time period.  Its syntax for specifying
 time periods allows you to test for conditions like 

Bug#862648: O: makepatch -- generate/apply patch files with more functionality than plain diff

[Tobias Frost]

Package: wnpp

The current maintainer of makepatch, Roderick Schertler ,
is apparently not active anymore.  Therefore, I orphan this package now.

Maintaining a package requires time and skills. Please only adopt this
package if you will have enough time and attention to work on it.

If you want to be the new maintainer, please see
https://www.debian.org/devel/wnpp/#howto-o for detailed
instructions how to adopt a package properly.

Some information about this package:

Package: makepatch
Binary: makepatch
Version: 2.03-1
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 3.0.5)
Build-Depends-Indep: perl (>= 5.6.0-16)
Architecture: all
Standards-Version: 3.7.3
Format: 1.0
Files:
 e006dfe99dec3038f0fd8ab0caaef7b9 619 makepatch_2.03-1.dsc
 172e8b5225ae0c92b07f349a862bdc66 28340 makepatch_2.03.orig.tar.gz
 a3cf9707fc2108c527547fa1b7907bea 3497 makepatch_2.03-1.diff.gz
Checksums-Sha1:
 1c5025d8c9336d2754e7ab1ebc8cf45278bccfe9 619 makepatch_2.03-1.dsc
 1e1bf2089ffbe9991f505db8f8b6aa8e740c0c43 3497 makepatch_2.03-1.diff.gz
 8be6dd9f7058da89d4a8a4ac854ce9c92d723318 28340 makepatch_2.03.orig.tar.gz
Checksums-Sha256:
 9725054b10a4ad82caa23438571e5f62fa8de13f7c4313c2bd5ee72925b96f4c 619 
makepatch_2.03-1.dsc
 82cd7a52abc2e0a758942812aa1b7ad80911e0642749782d19d7630acb07054d 3497 
makepatch_2.03-1.diff.gz
 34cad26a220d57dc242e4f0548d65f5f62465baea2a1f52cb335b23c429fb549 28340 
makepatch_2.03.orig.tar.gz
Directory: pool/main/m/makepatch
Priority: source
Section: utils

Package: makepatch
Binary: makepatch
Version: 2.03-1.1
Maintainer: Roderick Schertler 
Build-Depends: debhelper (>= 3.0.5)
Build-Depends-Indep: perl (>= 5.6.0-16)
Architecture: all
Standards-Version: 3.7.3
Format: 1.0
Files:
 64b10691d312a4ba1e00ddf09f599537 1809 makepatch_2.03-1.1.dsc
 172e8b5225ae0c92b07f349a862bdc66 28340 makepatch_2.03.orig.tar.gz
 446c1f7035a3258b4a3dcb6ab7465e6e 3603 makepatch_2.03-1.1.diff.gz
Checksums-Sha256:
 178e38108b613efbfa6d6568462f98bf7262eae5ec374d2e826ce1b2eb808732 1809 
makepatch_2.03-1.1.dsc
 34cad26a220d57dc242e4f0548d65f5f62465baea2a1f52cb335b23c429fb549 28340 
makepatch_2.03.orig.tar.gz
 191b6e7d9a982b546a318b61cb971a3d28f64143da421132d53d58c3c1714684 3603 
makepatch_2.03-1.1.diff.gz
Package-List: 
 makepatch deb utils optional arch=all
Directory: pool/main/m/makepatch
Priority: source
Section: utils

Package: makepatch
Version: 2.03-1.1
Installed-Size: 102
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl
Description-en: generate/apply patch files with more functionality than plain 
diff
 This package contains a pair of programs, makepatch and applypatch, to
 assist in the generation and application of patch kits to synchronise
 source trees.
 .
 makepatch knows about common conventions for patch kits (it generates
 Index: and Prereq: lines, it patches patchlevel.h first, it can use
 manifest files), plus it prepends some shell code which if run will
 take care adding directories, removing files, setting execute mode on
 scripts, and the like.
 .
 applypatch uses some extra data supplied by makepatch to verify both the
 patch and the source directory before applying the patch.  Afterwards it
 will clean up the directory tree plus fix up the permissions and even
 the timestamps on the patched files.
Description-md5: b4caf25577e62a959089ee2261ad5afe
Tag: devel::packaging, works-with-format::diff
Section: utils
Priority: optional
Filename: pool/main/m/makepatch/makepatch_2.03-1.1_all.deb
Size: 36654
MD5sum: 8728e9befda15df43c1532fffb1cd529
SHA256: 5a5cc2f72272050cca90d0391154a4568d4e8a8617096c25614e62f784499efb

Package: makepatch
Version: 2.03-1
Installed-Size: 148
Maintainer: Roderick Schertler 
Architecture: all
Depends: perl
Description-en: generate/apply patch files with more functionality than plain 
diff
 This package contains a pair of programs, makepatch and applypatch, to
 assist in the generation and application of patch kits to synchronise
 source trees.
 .
 makepatch knows about common conventions for patch kits (it generates
 Index: and Prereq: lines, it patches patchlevel.h first, it can use
 manifest files), plus it prepends some shell code which if run will
 take care adding directories, removing files, setting execute mode on
 scripts, and the like.
 .
 applypatch uses some extra data supplied by makepatch to verify both the
 patch and the source directory before applying the patch.  Afterwards it
 will clean up the directory tree plus fix up the permissions and even
 the timestamps on the patched files.
Description-md5: b4caf25577e62a959089ee2261ad5afe
Tag: devel::packaging, works-with-format::diff
Section: utils
Priority: optional
Filename: pool/main/m/makepatch/makepatch_2.03-1_all.deb
Size: 39954
MD5sum: 72f72b7a15c307bd39fa4cb07543baac
SHA1: 4a8f92c64b6813e32e8f977607d19b23c7a86295
SHA256: 58517c7e3158364a58c117553dd8d00e04cabab269e2fcc1d03a2560bbf2d8fe

Package: makepatch

Bug#862651: btrfs-progs: btrfs quota disable leads to kernel panic. to old?

[Jakobus Schürz]

Package: btrfs-progs
Version: 4.9.1-1
Severity: important

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
   * What was the outcome of this action?
   * What outcome did you expect instead?

*** End of the template - remove these template lines ***
i activated quota for testing-reasons (to learn how quota works). I had
installed btrfs-progs from stretch (v4.7) and kernel 4.9 and 4.10.1 from
experimental.
I got several kernel-hung and kernel-panic since activating quota.

Now i wanted to install the appropriate version for my kernel 4.10, but
the btrfs-progs-version in sid is to old.

In this conversation
https://www.spinics.net/lists/linux-btrfs/msg62508.html i read, that v9
has bad issues on quota, reported similar problems than me.

When i try to deactivate quota with 
btrfs quota deactivate /
i get a kernel panic, deactivating is not working.

With quota, the system freezes spontaniously. Maybe on write actions.
But i couldn't find, if this is exactly the reason.

Please update the version in sid or experimental to the appropriate
kernel-version.

jakob


-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (990, 'testing'), (800, 'unstable'), (1, 'experimental')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.10.0-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_AT.UTF-8, LC_CTYPE=de_AT.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages btrfs-progs depends on:
ii  e2fslibs1.43.4-2
ii  libblkid1   2.29.2-1
ii  libc6   2.24-10
ii  libcomerr2  1.43.4-2
ii  liblzo2-2   2.08-1.2+b2
ii  libuuid12.29.2-1
ii  zlib1g  1:1.2.8.dfsg-5

btrfs-progs recommends no packages.

Versions of packages btrfs-progs suggests:
pn  duperemove  

-- no debconf information

Bug#862653: CVE-2017-8765

[Bastien ROUCARIES]

package: src:imagemagick
Version: 8:6.9.7.4+dfsg-6
Severity: important
Tags: security
X-Debbugs-CC: t...@security.debian.org
control: found -1 8:6.8.9.9-5+deb8u8
control: found -1 8:6.7.7.10-5+deb7u13
control: found -1 8:6.7.7.10-5+deb7u4
forwarded: https://github.com/ImageMagick/ImageMagick/issues/466

The function named ReadICONImage in coders\icon.c in ImageMagick
7.0.5-5 has a memory leak vulnerability which can cause memory
exhaustion via a crafted ICON file.

Bug#862659: libparmetis-dev: misses dependency on libmetis-dev

[Ansgar Burchardt]

Package: libparmetis-dev
Version: 4.0.3-4+b4
Severity: important

/usr/include/parmetis.h has `#include `, but the
libparmetis-dev binary package has no dependency on a package
providing that include (libmetis-dev).

Ansgar

-- System Information:
Debian Release: 9.0
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages libparmetis-dev depends on:
ii  libparmetis4.0   4.0.3-4+b4
ii  mpi-default-dev  1.8

libparmetis-dev recommends no packages.

Versions of packages libparmetis-dev suggests:
pn  parmetis-doc  

-- no debconf information

Bug#853086: livestreamer: Can't play twitch streams: Client Error: Bad Request for url

[The Wanderer]

Per the comments at

https://github.com/chrippa/livestreamer/issues/1478#issuecomment-247242827

and

https://github.com/chrippa/livestreamer/issues/1478#issuecomment-247392244

, the expected solution for this is via livestreamer's '--http-header'
option, which can be provided in one of two ways.


On the livestreamer command line, add the option:

--http-header=Client-ID=ewvlchtxgqq88ru9gmfp1gmyt6h2b93

Or in ~/.livestreamerrc, add a line reading

http-header=Client-ID=ewvlchtxgqq88ru9gmfp1gmyt6h2b93


(Other Client-IDs could potentially work; that one is the ID apparently
assigned to livestreamer itself. People have reported success using the
ID assigned to the Twitch Web-based player, but that seems less
appropriate.)

Whether having this in the config file would cause any problems for
streaming from other sites I don't know, but it seems to make things
work fine for Twitch, with the livestreamer version currently available
in testing.

There's also a patch in that thread which looks as if it should both
make the Client-ID potentially configurable (without exposing a
configuration interface for it, though) and use the ID automatically. I
haven't tested with it, although I wouldn't be surprised if it or a
derivative had been adopted by the 'streamlink' fork.

-- 
   The Wanderer

The reasonable man adapts himself to the world; the unreasonable one
persists in trying to adapt the world to himself. Therefore all
progress depends on the unreasonable man. -- George Bernard Shaw



signature.asc
Description: OpenPGP digital signature

Bug#862569: unblock: bind9/1:9.10.3.dfsg.P4-12.3

[Cyril Brulebois]

Salvatore Bonaccorso  (2017-05-14):
> Package: release.debian.org
> Severity: normal
> User: release.debian@packages.debian.org
> Usertags: unblock
> 
> Hi
> 
> Please unblock package bind9
> 
> The upload fixes three issues:
> 
> +bind9 (1:9.10.3.dfsg.P4-12.3) unstable; urgency=high
> +
> +  * Non-maintainer upload.
> +  * Dns64 with "break-dnssec yes;" can result in a assertion failure
> +(CVE-2017-3136) (Closes: #860224)
> +  * Some chaining (CNAME or DNAME) responses to upstream queries could 
> trigger
> +assertion failures (CVE-2017-3137) (Closes: #860225)
> +  * 'rndc ""' could trigger a assertion failure in named (CVE-2017-3138)
> +(Closes: #860226)
> +
> + -- Salvatore Bonaccorso   Sun, 07 May 2017 15:22:46 +0200
> 
> of which CVE-2017-3137 should be considered RC (and filled as such),
> the other two are minor, but were included as well in the stable
> update released as DSA-3854-1.
> 
> unblock bind9/1:9.10.3.dfsg.P4-12.3
> 
> Attached is the full debdiff agains the current version in testing.

As usual, no objections since bind9 udebs are only used on non-Linux
architectures.


KiBi.


signature.asc
Description: Digital signature

Bug#858510: ITP: ddcutil -- control monitor settings

[Stephen Kitt]

Hi Sanford,

On Wed, 3 May 2017 08:48:42 -0400, Sanford Rockowitz 
wrote:
> I responded to your email by replying to the bug.  Not sure if that was
> the right way.  On the chance you didn't see my reply I'm forwarding the
> message to you directly. 

Thanks — unfortunately the Debian BTS doesn’t forward replies, so I didn’t
see your original reply. (The emails *you* receive should be correctly setup
with the appropriate Reply-To though, so replying with the defaults should
work.)

> I installed the ddcci driver in my SuSE environment that uses the
> nouveau and i2c-dev drivers.  Directory /sys/bus/ddcci is created, but
> directory /sys/bus/ddcci/devices is empty.   As I read the code ddcci
> requires i2c-dev, which isn't present with a proprietary video driver
> such as nvidia or fglrx, so there's no point trying to use it in those
> environments.

Yes, that’s correct. In Debian we tend to only support the free drivers
though (with best-effort on the proprietary NVIDIA drivers which are packaged
in non-free). The fglrx driver can’t be used any more so that’s a
non-issue...

I’m using the ddcci module on Intel GPUs and it works very well there.

> I'd very much appreciate your help as co-maintainer and sponsor.  This
> is my first attempt to submit a package to debian.   ddcutil has been
> packaged on OBS and Launchpad for some time now, but I spent hours this
> morning lost in the proverbial "maze of twisty little passages, all
> alike", trying to figure out how to submit the package. I'm sure there's
> a lot of cruddy details to be fixed up.

Can you point me to whichever repo you consider to have the current
packaging? I’ll take a look. Would you like to take care of the packaging,
and have me review it, or would you like me to take a more hands-on approach
and fix things up myself? (Assuming things need fixing of course.)

> The ddcci driver is an interesting project.   It hides the gory details
> of building and sending DDC packets.  But there also seems to be a lot
> of missing functionality: e.g. EDID reads on slave address x50, only a
> few DDC commands are supported.The ddccii driver   implementation of
> the capabilities inquiry returns an error if any write/read sub-exchange
> fails.  In my experience with marginal monitors, you need retry logic
> for both the individual sub-exchanges and the entire meta exchange, what
> ddcutil calls multi-part-exchanges - otherwise you just don't get lucky.

All that is good to know. AFAICT the ddcci module is just a first stab
currently, I’m sure the author would welcome help too ;-). The killer feature
for me is that it integrates with the backlight support, so users can control
their monitors’ backlights using their desktop environment’s features (e.g.
the brightness slider in GNOME), including automatic features with light
sensors.

> Because of the early experimentation, the layer that reads and writes
> I2C packets is designed to be swapped, so it should be possible to use
> ddcci as an alternative strategy.   However, ddcutil would still need to
> use the i2c-dev interface for things the ddcci driver does not do, and
> I'd prefer not to add a dependency on a driver that can't be relied on
> to always be there. 
> 
> Given all these issues, I think the best relationship between ddcutil
> and the ddcci driver would be to use ddcutil as a testing framework for
> the driver.

That sounds like an excellent plan (and I guess your follow-up email is the
result, right?).

Regards,

Stephen


pgp_tXAPXu0hQ.pgp
Description: OpenPGP digital signature

Bug#862400: several bios updates exist since 2007

[Arturo Borrero Gonzalez]

(please keep me in CC)

On Sat, 13 May 2017 06:16:44 +0200 franckr  wrote:
> Hi Arturo,
>
> I cannot help for kernel, however, and you probably already know it:
> Several bios updates became available since 10/04/2007 version.
> Did you consider them ? (ie checking release logs)
> Will you try ?
>

Sure, we are in the way of updating the BIOS.

But the question remains, is this some kind of kernel regression?

Bug#862657: bridge-utils: shutting down a bridge causes eth0 to shutdown even while still in use for vlans

[Sebastian Stellingwerff]

Package: bridge-utils
Version: 1.5-9
Severity: important

We have the following setup:
br0 connected to eth0.6 (vlan 6)
br1 connected to eth0.7 (vlan 7)
br2 connected to eth0

When shutting down br2 (ifdown br2), it takes down eth0, thereby also shutting 
down the link for eth0.6 and eth0.7 and disconnecting the machine.

This seems to me like undesirable, eth0.6 and eth0.7 are still in use and 
should stay up. Can it be changed that eth0 does not go down when it is still 
in used in other places? If not, is there a way where I could shut down br2 
without breaking the rest of the setup?

Thanks!

Sebastian

-- System Information:
Debian Release: 8.6
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-4-amd64 (SMP w/12 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages bridge-utils depends on:
ii  libc6  2.19-18+deb8u6

bridge-utils recommends no packages.

Versions of packages bridge-utils suggests:
ii  ifupdown  0.7.53.1

-- no debconf information

Bug#862658: Eye of mate not showing images >= 12 megapixel

[Daniel Auth]

Package: eom
Version: 1.16.0-2
Severity: important
Tags: upstream

Dear Maintainer,

Steps to reproduce:

Create an image in gimp,
- size 4608x3456
- export it as a jpg file
- Open it with eye of mate (eom)

-> instead of the image, a gray area is shown.

hope this report may be helpful

Daniel Auth



*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
   * What was the outcome of this action?
   * What outcome did you expect instead?

*** End of the template - remove these template lines ***



-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64
 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages eom depends on:
ii  dconf-gsettings-backend [gsettings-backend]  0.26.0-2+b1
ii  eom-common   1.16.0-2
ii  libatk1.0-0  2.22.0-1
ii  libc62.24-10
ii  libcairo-gobject21.14.8-1
ii  libcairo21.14.8-1
ii  libdbus-1-3  1.10.18-1
ii  libdbus-glib-1-2 0.108-2
ii  libexempi3   2.4.1-1
ii  libexif120.6.21-2+b2
ii  libgdk-pixbuf2.0-0   2.36.5-2
ii  libgirepository-1.0-11.50.0-1+b1
ii  libgl1-mesa-glx  13.0.6-1+b2
ii  libglib2.0-0 2.50.3-2
ii  libgtk-3-0   3.22.11-1
ii  libjpeg62-turbo  1:1.5.1-2
ii  liblcms2-2   2.8-4
ii  libmate-desktop-2-17 1.16.1-1
ii  libpango-1.0-0   1.40.5-1
ii  libpangocairo-1.0-0  1.40.5-1
ii  librsvg2-2   2.40.16-1+b1
ii  librsvg2-common  2.40.16-1+b1
ii  libstartup-notification0 0.12-4+b2
ii  libx11-6 2:1.6.4-3
ii  libxml2  2.9.4+dfsg1-2.2
ii  mate-desktop-common  1.16.1-1
ii  shared-mime-info 1.8-1
ii  zlib1g   1:1.2.8.dfsg-5

eom recommends no packages.

eom suggests no packages.

-- no debconf information

Bug#862006: hexchat: segfault an /server connect

[Mattia Rizzolo]

Hi there!

On Sun, May 07, 2017 at 01:48:00PM +0200, treaki wrote:
> wau, that was unexpected, i just tried to connect to some server and then it 
> was gone for good

:(

> it kept crashing and crashing, looks like i am unable to use this server

Does this mean you can connect to other servers??

> please fix this serious issue as soon as possible!

I believe this is the same as https://bugs.debian.org/779892 which I
believe to be fixed by
https://anonscm.debian.org/git/collab-maint/hexchat.git/commit/?id=e3f2f90b3e7c13621343cebadacf7ddaf2e042d0

Now, you are right, that bug ought to be fixed in stable too.

Though, as back then I wasn't able to reproduce it myself for some weird
reason, I'd like to ask you to try and see whether the package you can
find in jessie-backport present the same issue.

The traceback you reported was without the debug symbol installed (that
well, aren't available in jessie, as we introduced them in stretch… so
not really anything you can do about it), so there are not many
information available, but at least it seem to crash "near" that point.
If you could try again, I believe a `bt full` (within gdb) would be
more helpful.

> thanks a lot in advance

Thank you for reporting this!

-- 
regards,
Mattia Rizzolo

GPG Key: 66AE 2B4A FCCF 3F52 DA18  4D18 4B04 3FCD B944 4540  .''`.
more about me:  https://mapreri.org : :'  :
Launchpad user: https://launchpad.net/~mapreri  `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia  `-


signature.asc
Description: PGP signature

Bug#862660: unblock: smb4k/1.2.1-2

[Maximiliano Curia]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Dear release team,

I've just uploaded smb4k in order to fix CVE-2017-8849 (#862505). It has 
already built in all the release architectures, you find the corresponding 
debdiff attached to this report.

Happy hacking,

Please unblock package smb4k

unblock smb4k/1.2.1-2

[1]: https://security-tracker.debian.org/tracker/CVE-2017-8849

-- System Information:
Debian Release: 9.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'testing-debug'), (500, 
'testing'), (500, 'stable'), (50, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386, armhf

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)
diff -Nru smb4k-1.2.1/debian/changelog smb4k-1.2.1/debian/changelog
--- smb4k-1.2.1/debian/changelog2016-03-25 16:26:46.0 +0100
+++ smb4k-1.2.1/debian/changelog2017-05-15 12:18:34.0 +0200
@@ -1,3 +1,11 @@
+smb4k (1.2.1-2) unstable; urgency=medium
+
+  * Team upload.
+  * Cherry pick "Find the mount/umount commands in the helper"
+This fixes CVE-2017-8849 (Closes: 862505)
+
+ -- Maximiliano Curia   Mon, 15 May 2017 12:18:34 +0200
+
 smb4k (1.2.1-1) unstable; urgency=medium
 
   * Team upload.
diff -Nru 
smb4k-1.2.1/debian/patches/Find-the-mount-umount-commands-in-the-helper.patch 
smb4k-1.2.1/debian/patches/Find-the-mount-umount-commands-in-the-helper.patch
--- 
smb4k-1.2.1/debian/patches/Find-the-mount-umount-commands-in-the-helper.patch   
1970-01-01 01:00:00.0 +0100
+++ 
smb4k-1.2.1/debian/patches/Find-the-mount-umount-commands-in-the-helper.patch   
2017-05-15 12:18:34.0 +0200
@@ -0,0 +1,362 @@
+From: Alexander Reinholdt 
+Date: Wed, 10 May 2017 10:23:34 +0200
+Subject: Find the mount/umount commands in the helper
+
+Instead of trusting what we get passed in
+CVE-2017-8849
+---
+ core/smb4kglobal.cpp | 65 +++-
+ core/smb4kglobal.h   | 16 -
+ core/smb4kmounter_p.cpp  | 78 
+ helpers/CMakeLists.txt   |  6 +++-
+ helpers/smb4kmounthelper.cpp | 51 +++--
+ 5 files changed, 139 insertions(+), 77 deletions(-)
+
+diff --git a/core/smb4kglobal.cpp b/core/smb4kglobal.cpp
+index 172016f..818a78a 100644
+--- a/core/smb4kglobal.cpp
 b/core/smb4kglobal.cpp
+@@ -2,7 +2,7 @@
+ smb4kglobal  -  This is the global namespace for Smb4K.
+  ---
+ begin: Sa Apr 2 2005
+-copyright: (C) 2005-2014 by Alexander Reinholdt
++copyright: (C) 2005-2017 by Alexander Reinholdt
+ email: alexander.reinho...@kdemail.net
+  ***/
+ 
+@@ -851,3 +851,66 @@ QStringList Smb4KGlobal::whitelistedMountArguments()
+ #endif
+ 
+ 
++const QString Smb4KGlobal::findMountExecutable()
++{
++  QString mount;
++  QStringList paths;
++  paths << "/bin";
++  paths << "/sbin";
++  paths << "/usr/bin";
++  paths << "/usr/sbin";
++  paths << "/usr/local/bin";
++  paths << "/usr/local/sbin";
++
++  for (int i = 0; i < paths.size(); ++i)
++  {
++#if defined(Q_OS_LINUX)
++mount = KGlobal::dirs()->findExe("mount.cifs", paths.at(i));
++#elif defined(Q_OS_FREEBSD) || defined(Q_OS_NETBSD)
++mount = KGlobal::dirs()->findExe("mount_smbfs", paths.at(i));
++#endif
++
++if (!mount.isEmpty())
++{
++  break;
++}
++else
++{
++  continue;
++}
++  }
++  
++  return mount;
++}
++
++
++const QString Smb4KGlobal::findUmountExecutable()
++{
++  // Find the umount program.
++  QString umount;
++  QStringList paths;
++  paths << "/bin";
++  paths << "/sbin";
++  paths << "/usr/bin";
++  paths << "/usr/sbin";
++  paths << "/usr/local/bin";
++  paths << "/usr/local/sbin";
++
++  for ( int i = 0; i < paths.size(); ++i )
++  {
++umount = KGlobal::dirs()->findExe("umount", paths.at(i));
++
++if (!umount.isEmpty())
++{
++  break;
++}
++else
++{
++  continue;
++}
++  }
++  
++  return umount;
++}
++
++
+diff --git a/core/smb4kglobal.h b/core/smb4kglobal.h
+index db1805b..0ef377d 100644
+--- a/core/smb4kglobal.h
 b/core/smb4kglobal.h
+@@ -2,7 +2,7 @@
+ smb4kglobal  -  This is the global namespace for Smb4K.
+  ---
+ begin: Sa Apr 2 2005
+-copyright: (C) 2005-2014 by Alexander Reinholdt
++copyright: (C) 2005-2017 by Alexander Reinholdt
+ email: alexander.reinho...@kdemail.net
+  ***/
+ 
+@@ -455,6 +455,20 @@ 

Bug#862661: python3-proboscis: packaging broken

[Goetz, Philippe]

Package: python3-proboscis
Version: 1.2.6.0-2
Severity: important

Dear Maintainers,

The packaging of python3-proboscis is broken, see below:

$ python3
Python 3.5.3 (default, Jan 19 2017, 14:11:04)
[GCC 6.3.0 20170118] on linux
Type "help", "copyright", "credits" or "license" for more information.
>>> import proboscis
Traceback (most recent call last):
  File "", line 1, in 
  File "/usr/lib/python3/dist-packages/proboscis/__init__.py", line 27, in 

from proboscis.core import ProboscisTestMethodClassNotDecorated
  File "/usr/lib/python3/dist-packages/proboscis/core.py", line 23, in 
from proboscis import compatability
  File "/usr/lib/python3/dist-packages/proboscis/compatability/__init__.py", 
line 21, in 
from proboscis.compatability.exceptions_2_6 import capture_exception
ImportError: No module named 'proboscis.compatability.exceptions_2_6'

In debian/rules, the files "proboscis/compatability/*2*.py" are removed for 
python3, which is wrong.

=== PROPOSED PATCH BEGIN ===
diff --git a/debian/rules b/debian/rules
index 9955037..101426c 100755
--- a/debian/rules
+++ b/debian/rules
@@ -16,7 +16,7 @@ override_dh_auto_install:
set -e && for pyvers in $(PYTHON3S); do \
python$$pyvers setup.py install --install-layout=deb \
--root $(CURDIR)/debian/python3-proboscis; \
-   rm 
$(CURDIR)/debian/python3-proboscis/usr/lib/python3/dist-packages/proboscis/compatability/*2*.py
 ; \
+   rm 
$(CURDIR)/debian/python3-proboscis/usr/lib/python3/dist-packages/proboscis/compatability/*2_5*.py
 ; \
done
=== PROPOSED PATCH END ===

Alternatively remove the complete line "rm ...".

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64
 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages python3-proboscis depends on:
ii  dpkg 1.18.23
pn  python3:any  

python3-proboscis recommends no packages.

python3-proboscis suggests no packages.

-- no debconf information

With best regards,
Philippe Goetz

Siemens AG
Building Technologies Division
Solution and Service Portfolio
Danger Management System
BT SSP SOL R CI DMS

Siemens Aktiengesellschaft: Chairman of the Supervisory Board: Gerhard Cromme; 
Managing Board: Joe Kaeser, Chairman, President and Chief Executive Officer; 
Roland Busch, Lisa Davis, Klaus Helmrich, Janina Kugel, Cedrik Neike, Michael 
Sen, Ralf P. Thomas; Registered offices: Berlin and Munich, Germany; Commercial 
registries: Berlin Charlottenburg, HRB 12300, Munich, HRB 6684; WEEE-Reg.-No. 
DE 23691322

Bug#862662: liblensfun-dev: liblensfun causing segfault in ufraw

[Kummetat]

Package: liblensfun-dev
Version: 0.3.2-3
Severity: normal

Dear Maintainer,

on converting a DJI-Drone DNG to TIFF with ufraw-batch (0.22) i get an 
segfault and the resulting tiff has a size of 8 bytes. After 
uncommenting the lenfun-lines in ufraws config file, the dng file will 
processed successfully.
I have ufraw 0.22 compiled on an Ubuntu 16.04.2 LTS against 
liblensfun-dev (0.2.8-3). On this system no segfault occurs. After this 
try i had uninstalled liblensfun and ufraw and had compiled liblensfun 
0.2.83 und ufraw 0.22 from source. In this constellation i get also an 
segfault, but the resulting tiff file is readable and have an 
appropriated size. In opposite with the maintained packages segfault 
will be logged es segfault in liblensfun, not in ufraw-batch.


-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64
 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#862663: amavis shoud suggest unrar-free instead of unrar

[Jean-Michel Vourgère]

Package: amavisd-new
Version: 1:2.10.1-4
Severity: minor

Dear maintainer,

amavis currently suggest installation on unrar, which is unavailable in
Debian.

On startup, log file says:
"No ext program for   .rar, tried: unrar-free"

 which seems to indicate that unrar-free is supported. It should be added
in the dependencies as a suggests:, possibly replacing unrar, or at least as
an alternative.

Thank you for taking care of amavis

Cheers

-- System Information:
Debian Release: 8.8
  APT prefers stable
  APT policy: (990, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Bug#862332: dblatex: tags processed by hyphen-encode can sometimes drop meaningful spaces

[Raphael Hertzog]

Hello,

On Sat, 13 May 2017, Andreas Hoenen wrote:
> Do you have a minimal example exposing the problem?  That would help in
> evaluating it.

Yes. Attached (test.xml the source, test.pdf the result of "dblatex
test.xml"). As you see we lost spaces in  and . All
tags processed by inline.monoseq / inline.sansseq are affected.

> However as you have more pressing needs, feel free to contact the
> release managers about a patch targeted for Stretch.  (Honestly, if I
> were a release manager, I would only accept dblatex patches that fix
> severe problems in the Stretch documentation.  But I don't have any
> insights in the backstage of the Debian release process, thus my
> assessment might be far-fetched).  Should you receive any positive
> indication from the release team, there are two possibilities:

I think that they asked to not do "pre-approval upload request" this
time around... so it would be test to first prepare the fix in unstable
and then to file the unblock request.

> (1) I could create a patched release version 0.3.9-2, but would need you
> to sponsor it.

I can certainly sponsor your upload.

> Please don't take my reluctance amiss, I just want to let the Stretch
> release happen as soon as possible.

Me too. :)

Cheers,
-- 
Raphaël Hertzog ◈ Debian Developer

Support Debian LTS: https://www.freexian.com/services/debian-lts.html
Learn to master Debian: https://debian-handbook.info/get/


test.xml
Description: XML document


test.pdf
Description: Adobe PDF document

Bug#862664: clvm: invalid path to cmirrord in systemd lvm2-cmirrord.service file

[Matija Jecmenjak]

Package: clvm
Version: 2.02.168-2
Severity: normal

Dear Maintainer,

In a service file lvm2-cmirrord.service there is wrong path for a program
execution;
ExecStart=/sbin/cmirrord

insted of ExecStart=/usr/sbin/cmirrord

Starting the service file causes an error;
lvm2-cmirrord.service: Failed at step EXEC spawning /sbin/cmirrord: No
such file or directory

Thanks,
Matija

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64
 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages clvm depends on:
ii  dlm-controld  4.0.7-1
ii  init-system-helpers   1.48
ii  libblkid1 2.29.2-1
ii  libc6 2.24-10
ii  libcmap4  2.4.2-3
ii  libcpg4   2.4.2-3
ii  libdevmapper-event1.02.1  2:1.02.137-2
ii  libdevmapper1.02.12:1.02.137-2
ii  libdlm3   4.0.7-1
ii  libquorum52.4.2-3
ii  libudev1  232-23
ii  lvm2  2.02.168-2

clvm recommends no packages.

Versions of packages clvm suggests:
pn  pacemaker
pn  resource-agents  

-- no debconf information

Bug#861754: libpll: FTBFS on non-x86: x86intrin.h: No such file or directory

[Aaron M. Ucko]

Andreas Tille  writes:

> Thanks, patch updated, pending upload after discussing #861755 with
> upstream.

Alas, non-x86 builds are still failing, with the immediate cause of
failure being either an uncompilable cpuid call or (in the case of
powerpc[spe] and ppc64[el]) the use of x86-specific compiler flags for
certain files.  Please limit all of the above to x86 architectures.

Thanks!

-- 
Aaron M. Ucko, KB1CJC (amu at alum.mit.edu, ucko at debian.org)
http://www.mit.edu/~amu/ | http://stuff.mit.edu/cgi/finger/?a...@monk.mit.edu

Bug#862591: libvte-2.91-0: xfce4-terminal crashes when dumping a lot of text

[Andreas Henriksson]

Hello Brian Warner,

Thanks for your bug report. Would like to add a few notes besides
what Michael already said... See below.

On Sun, May 14, 2017 at 01:57:32PM -0700, Brian Warner wrote:
> Package: libvte-2.91-0
> Version: 0.46.1-1
> Severity: grave
> 
> There seems to be a bug in sid's libvte, such that dumping a large
> amount of text to stdout in a short period of time causes the terminal
> program to crash. "cat" of a file with 1MB of the letter "a" is
> sufficient to reproduce it.

fwiw, I'm not able to reprocude this on amd64 with gnome-terminal.

> 
> I'm assigning this to libvte because I was able to crash xfce4-terminal,
> lilyterm, and termit this way, so it's clearly not specific to any one
> terminal program. I'm marking it "grave" because losing a terminal is
> pretty harsh.. any programs you've spawned from there (emacs, web
> browsers) abruptly exit too.
> 
> I'm running this on an ARM64 chromebook (an Acer R13), which might be an
> unusual platform, just in case that makes a difference.
> 
> I was able to get a stack trace by building vte2.91-0.46.1 and
> xfce4-terminal-0.8.4 locally with debug symbols turned on. It looks like
> this:
> 
> Thread 1 "xfce4-terminal" received signal SIGABRT, Aborted.
> __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51
> 51../sysdeps/unix/sysv/linux/raise.c: No such file or directory.
> #0  0x007cb52229fc in __GI_raise (sig=sig@entry=6) at
> ../sysdeps/unix/sysv/linux/raise.c:51
> #1  0x007cb5223df4 in __GI_abort () at abort.c:89
> #2  0x007cb53dc59c in g_assertion_message
> (domain=domain@entry=0x7cb5fa3bb8 "Vte", file=file@entry=0x7cb5fac250
> "/home/warner/stuff/debian/vte2.91-0.46.1/./src/vtestream-file.h",
> line=line@entry=790, func=func@entry=0x7cb5fac098
> <_vte_boa_uncompress::__PRETTY_FUNCTION__> "unsigned int
> _vte_boa_uncompress(char*, unsigned int, const char*, unsigned int)",
> message=message@entry=0x5ccf97f720 "assertion failed (z_ret == Z_OK):
> (4294967293 == 0)") at ././glib/gtestutils.c:2432
[...]

In other words, this assertion fails:
http://sources.debian.net/src/vte2.91/0.46.1-1/src/vtestream-file.h/#L790

z_ret = uncompress ((Bytef *) dst, _ulongf, (const Bytef *) src, 
srclen);
g_assert_cmpuint (z_ret, ==, Z_OK);

Would be great if you could confirm by posting the asserting message
that the application outputs when crashing.

Seems to me like you need to seek the answer to why uncompress fails
in the zlib library (Possibly vte could handle the error more
gracefully but probably a good idea to find out why zlib uncompress
fails first.)

HTH.

Regards,
Andreas Henriksson

Bug#862570: libmenu-cache: menu-cached socket may be blocked by another user.

[Salvatore Bonaccorso]

Control: retitle -1 menu-cache: CVE-2017-8933: socket may be blocked by another 
user

Hi

This issue has been assigned CVE-2017-8933.

Regards,
Salvatore