Bug#862612: RM: golang-github-gosexy-gettext -- ROM; no rdeps, no update since 2013
Package: ftp.debian.org Severity: normal Working on Debian bug #860608, I stumbled upon golang-github-gosexy-gettext. I considered fixing that package, but realized that it has been last updated in 2013 and has no reverse dependencies. As Go libraries are only packaged in Debian to enable packaging Go programs for Debian, this package is currently useless. Instead of investing more time and energy into maintaining it, please remove it from Debian. If it turns out we need it again at some point in the future, we can always re-upload. Thanks!
Bug#862461: tiptop: requires root to run
On 14/05/17 20:58, Ben Hutchings wrote: > On Sun, 2017-05-14 at 10:43 +0200, Tomasz Buchert wrote: > > On 12/05/17 18:54, Nathaniel Beaver wrote: > > > [...] > > > > Thank you, Nathaniel. > > > > I confirm the problem. A safe bet is that > > https://lkml.org/lkml/2016/1/11/587 is the cause. You can verify that > > /proc/sys/kernel/perf_event_paranoid contains "3". By running > > > > echo 2 | sudo tee /proc/sys/kernel/perf_event_paranoid > > > > you should be able to use tiptop as a normal user again. > > > > I doubt that we can switch the default value in Debian kernels to "2", > > so I have to say that simply the tiptop website is not up-to-date, at > > least with respect to the Debian kernels (but also likely to other > > distributions as well). I'm CCing Ben to let him comment on this. > > The Debian kernel default is not going to be changed in the short term. > In the long term it's conceivable that performance events will > eventually become sufficiently robust that it would be reasonable to > change the default. > > Ben. > > -- > Ben Hutchings - Debian developer, member of kernel, installer and LTS teams Thank you! Nathaniel, I'll keep this bug open till possibly the perf events will become available for normal users. Till then I require you to use the workaround above if you feel like it. Cheers, Tomasz signature.asc Description: PGP signature
Bug#854475: postfix: systemd needs postfix@.service to have "After=network.target"
Hi guys. I'm trying to unsubscribe this newsletter but I'm not getting success. Can someone Help? Many thanks in advance. Em 14/05/2017 16:33, "Michael Biebl"escreveu: > Am 14.05.2017 um 17:02 schrieb Michael Biebl: > > - debian/postfix.postinst: drop the postfix.service.d/override.conf and > > make sure to remove that conffile on upgrades > > Seems due to some C failure I duplicated this point. I wanted to > clarify that postfix.service.d/override.conf is not actually a conffile, > as it's generated dynamically. > > As for my reasons to not generate this configuration dynamically: > - It's less opaque. I was puzzled for a moment where this drop-in was > coming from > > - It makes it easier to override postfix@.service. Atm you e.g. don't > respect if the admin removed that drop-in deliberately and you always > recreate it. > > - It's more robust in case of local modifications which don't use > dpkg-reconfigure. > > - The penalty of pulling in network-online.target is simply that for the > local case postfix is started a bit later then necessary during boot. > > - The behaviour is more consistent with the old SysV init script which > had Required-Start: $network (The $network LSB facility translates to > network-online.target) > > Michael > > -- > Why is it that all of the instruments seeking intelligent life in the > universe are pointed away from Earth? > >
Bug#862389: [Pkg-xfce-devel] Bug#862389: lightdm: X gets locked up after several switches to VT
It was <2017-05-12 pią 17:54>, when Yves-Alexis Perez wrote: > On Fri, 2017-05-12 at 09:54 +0200, Łukasz Stelmach wrote: >> I had reported[1] this problem to the lighdm mailing list but there was no >> response. >> >> [1] https://lists.freedesktop.org/archives/lightdm/2017-March/001056.html > > Can you please open a bug on launchpad? Mailing lists are more for discussion > purposes I think. Done. https://bugs.launchpad.net/lightdm/+bug/1690739 -- Łukasz Stelmach Samsung R Institute Poland Samsung Electronics signature.asc Description: PGP signature
Bug#861900:
Hello I attached the debdiff of the sardana 2.2.2-3 version prepared by the upsteam. the changes are: - add themself to Uploaders (at my request). - Remove the dependency on the nexus package (which is broken) - Implement the nexus functionnaly with the well maintained h5py. thanks for considering the pre-approval If it is ok, I will upload into unstable. Frederic sardana.debdiff Description: sardana.debdiff
Bug#829046: Moving away from (unsupportable) FusionForge on Alioth?
在 2017年5月14日星期日 +08 下午6:39:22,Sergio Durigan Junior 写道: > On Sunday, May 14 2017, Boyuan Yang wrote: > > 在 2017年5月14日星期日 CST 下午3:04:26,Pirate Praveen 写道: > > > >> As far as I understand, the only thing that is blocking is non > >> availability of pagure package. > >> > >> So helping fix this would help move this forward (currently pagure tests > >> are failing). > >> > >> >> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=829046 > >> > >> After we have the package, then DSA standard processes for new service > >> would follow, I assume. > Sure. I'll move everything to collab-maint as soon as I get back home, > as I said earilier. That would be great. > >> Could you tell me where can I find the proper packaging repository? > > > > I have pushed my copy here > > https://git.fosscommunity.in/praveen/pagure > > > > It was originally at git://git.sergiodj.net/debian/pagure-new.git > > Thanks for doing that. I took a look into pagure packaging (both upstream latest version 2.14.2 and Debian packaging version 2.6+dfsg from the git repo above) and things look like a nightmare. Under Debian Testing and Debian Unstable, current packaging did not create a working database for unittests. If we create db manually (before dh_auto_test) and run unittest again, things can fail severely (around 60+/290+ units fail, not just 5). Hence it would be great if anyone familiar with Python2 and Flask could help improve the status of pagure packaging. -- Boyuan Yang signature.asc Description: This is a digitally signed message part.
Bug#862260: zlib: debian/copyright isn't in DEP5 format
severity 862260 wishlist tag 862260 - patch kthxbye On Wed, May 10, 2017 at 06:21:09PM +0700, Do Thanh Trung wrote: > +Files: * > +Copyright: 1995-2013 Jean-loup Gailly and Mark Adler > +License: Zlib > + This software is provided 'as-is', without any express or implied > + warranty. In no event will the authors be held liable for any damages > + arising from the use of this software. As Stephen indicated not all the files in the package are under the same license. I guess I'm OK with doing the conversion but it needs to be accurate. signature.asc Description: PGP signature
Bug#862631: O: pygoocanvas -- GooCanvas Python bindings
Package: wnpp The current maintainer of pygoocanvas, Jose Carlos Garcia Sogo, is apparently not active anymore. Therefore, I orphan this package now. Maintaining a package requires time and skills. Please only adopt this package if you will have enough time and attention to work on it. If you want to be the new maintainer, please see https://www.debian.org/devel/wnpp/#howto-o for detailed instructions how to adopt a package properly. Some information about this package: Package: pygoocanvas Binary: python-pygoocanvas Version: 0.14.1-1 Maintainer: Jose Carlos Garcia Sogo Build-Depends: debhelper (>= 5), cdbs, python-all-dev (>= 2.3.5-11), python-support (>= 0.4), python-gtk2-dev (>= 2.8.4), python-gobject-dev (>= 2.11.3), libgoocanvas-dev (>= 0.10), python-cairo-dev (>= 1.2.0), xsltproc, docbook-xsl Architecture: any Standards-Version: 3.8.4 Format: 1.0 Files: 68b8855ed6391f74b6dd41925fba29b9 1319 pygoocanvas_0.14.1-1.dsc d502dea5c0d2ac71d953895df81c32e8 421509 pygoocanvas_0.14.1.orig.tar.gz 05c0bc55cab5bfa52b6d016e697cba1e 2309 pygoocanvas_0.14.1-1.diff.gz Vcs-Browser: http://git.debian.org/git/users/jsogo/pygoocanvas.git Vcs-Git: git://git.debian.org/git/users/jsogo/pygoocanvas.git Checksums-Sha1: 0ed0bd0b39bc8f2d6605db9bff19c3770dff7cdf 1319 pygoocanvas_0.14.1-1.dsc ea1e10a24ef15a1d3880552fff6352d8b0621ef5 421509 pygoocanvas_0.14.1.orig.tar.gz 3caa9f1c36e827a4bd24502f25cac36538a0a94f 2309 pygoocanvas_0.14.1-1.diff.gz Checksums-Sha256: 0a5c24566adae2b47db8a0c24be723ced64a6d44beb645b1c3d6871ac02a873f 1319 pygoocanvas_0.14.1-1.dsc e927064dc6c1ceabefc24b88f45f5240f694a698bf5f794d41525a3c362ee11c 421509 pygoocanvas_0.14.1.orig.tar.gz b3c91ebfede5201537b67df01d572609ae09683a731725328b2dc55501f822cc 2309 pygoocanvas_0.14.1-1.diff.gz Directory: pool/main/p/pygoocanvas Priority: source Section: python Package: pygoocanvas Binary: python-pygoocanvas Version: 0.14.1-1.2 Maintainer: Jose Carlos Garcia Sogo Build-Depends: debhelper (>= 5), cdbs, python-all-dev (>= 2.3.5-11), dh-python, python-gtk2-dev (>= 2.8.4), python-gobject-dev (>= 2.11.3), libgoocanvas-dev (>= 0.10), python-cairo-dev (>= 1.2.0), xsltproc, docbook-xsl, docbook-xml Architecture: any Standards-Version: 3.8.4 Format: 1.0 Files: 73d2c036de37dd0adc8e0e9b5ef2a608 2042 pygoocanvas_0.14.1-1.2.dsc d502dea5c0d2ac71d953895df81c32e8 421509 pygoocanvas_0.14.1.orig.tar.gz 815e1c1acbcdf2f319cc3a928eb3050f 2836 pygoocanvas_0.14.1-1.2.diff.gz Vcs-Browser: https://anonscm.debian.org/git/users/jsogo/pygoocanvas.git Vcs-Git: https://anonscm.debian.org/git/users/jsogo/pygoocanvas.git Checksums-Sha256: ff3e2eff117d010043fe4194002a61ef8dbab39e02e4873b1714f470a75d0e71 2042 pygoocanvas_0.14.1-1.2.dsc e927064dc6c1ceabefc24b88f45f5240f694a698bf5f794d41525a3c362ee11c 421509 pygoocanvas_0.14.1.orig.tar.gz 313089140c689dea3642a334b25e838cad5a1e8b8589fcb2d6fc58bbbdca6275 2836 pygoocanvas_0.14.1-1.2.diff.gz Package-List: python-pygoocanvas deb python optional arch=any Directory: pool/main/p/pygoocanvas Priority: source Section: python Package: python-pygoocanvas Source: pygoocanvas Version: 0.14.1-1.2 Installed-Size: 903 Maintainer: Jose Carlos Garcia Sogo Architecture: amd64 Provides: python2.7-pygoocanvas Depends: libatk1.0-0 (>= 1.12.4), libc6 (>= 2.4), libcairo2 (>= 1.2.4), libfontconfig1 (>= 2.11), libfreetype6 (>= 2.2.1), libgdk-pixbuf2.0-0 (>= 2.22.0), libglib2.0-0 (>= 2.24.0), libgoocanvas3 (>= 0.15), libgtk2.0-0 (>= 2.8.0), libpango-1.0-0 (>= 1.14.0), libpangocairo-1.0-0 (>= 1.14.0), libpangoft2-1.0-0 (>= 1.14.0), libpython2.7 (>= 2.7), python (<< 2.8), python (>= 2.7~), python:any (<< 2.8), python:any (>= 2.7~), python-gtk2 Description-en: GooCanvas Python bindings This package include Python bindings for GooCanvas. It is needed to run programs written in Python and using GooCanvas set. Description-md5: db722c42bfd7ffb1dbf6f8b3ea273191 Tag: role::shared-lib, uitoolkit::gtk Section: python Priority: optional Filename: pool/main/p/pygoocanvas/python-pygoocanvas_0.14.1-1.2_amd64.deb Size: 123010 MD5sum: 050c387cafc70dd5269aa981193a95e5 SHA256: 729fa101187f52ed147caec73273891d6126a2f96f45d27d9f7ab87e1e7025a5 Package: python-pygoocanvas Source: pygoocanvas (0.14.1-1) Version: 0.14.1-1+b3 Installed-Size: 799 Maintainer: Jose Carlos Garcia Sogo Architecture: amd64 Provides: python2.7-pygoocanvas Depends: libatk1.0-0 (>= 1.12.4), libc6 (>= 2.4), libcairo2 (>= 1.2.4), libfontconfig1 (>= 2.8.0), libfreetype6 (>= 2.2.1), libgdk-pixbuf2.0-0 (>= 2.22.0), libglib2.0-0 (>= 2.24.0), libgoocanvas3 (>= 0.15), libgtk2.0-0 (>= 2.8.0), libpango1.0-0 (>= 1.14.0), libpython2.7 (>= 2.7), python (<< 2.8), python (>= 2.7), python-support (>= 0.90.0), python-gtk2 Description-en: GooCanvas Python bindings This package include Python bindings for GooCanvas. It is needed to run programs written in Python and using GooCanvas set. Description-md5:
Bug#862608: unblock: golang-github-hashicorp-go-msgpack/0.0~git20150518.0.fa3f638-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package golang-github-hashicorp-go-msgpack This is part of the fix for Debian bug #860608: Go library packages should not use the Built-Using tag at all, and a few packages are still referencing a long-removed broken version of the golang package via a Built-Using tag. Hence, I uploaded a new version without the tag: % debdiff golang-github-hashicorp-go-msgpack_0.0~git20150518.0.fa3f638-1_amd64.changes golang-github-hashicorp-go-msgpack_0.0~git20150518.0.fa3f638-2_amd64.changes File lists identical (after any substitutions) Control files: lines which differ (wdiff format) [-Built-Using: golang-1.7 (= 1.7.4-2)-] Version: [-0.0~git20150518.0.fa3f638-1-] {+0.0~git20150518.0.fa3f638-2+} unblock golang-github-hashicorp-go-msgpack/0.0~git20150518.0.fa3f638-2 -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, 'testing-debug'), (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386, armel, mipsel, arm64 Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#862611: deluge-webui: directory traversal attack vulnerability
Package: deluge-webui severity: important Dear Maintainer, Deluge 1.3.15 have an important fix a directory traversal security vulnerability that has the potential to compromise your machine. It is important to update to this version as soon as possible. Kind regards, Jonatan
Bug#844431: policy: packages should be reproducible
On Sun, May 14, 2017 at 11:15:26PM +, Holger Levsen wrote: > On Mon, May 15, 2017 at 12:05:17AM +0200, Bill Allombert wrote: > > On Sun, May 14, 2017 at 03:20:54PM +, Holger Levsen wrote: > > > On Sun, May 14, 2017 at 05:05:36PM +0200, Bill Allombert wrote: > > > a.) go to http://reproducible.debian.net/$srcpkg and see if its > > > reproducible today. > > As I said, I would like to check that my package build is reproducible > > before > > I upload it, not after, so I can be sure that any bug is fixed in the > > upload. > > b.), b.0), c.) and d.) were given as possible "tools" *to build twice with > (some) variation(s) and compare the results*. > > "Reproducible Builds" (in the sense of bit by bit identicall builds) is > really a rather new field in the era of software (well, not really, but > thats history and bit rotted until it was rediscovered in the early 2010s…) > > What is trivial, if given, is to show that a package is *un*reproducible. > > It's much harder to show that a package is reproducible. > > And given that this is a new field I think it's ok, while somewhat > unsatisfying, > that maybe some unreproducibility will only be detected by a more advanced > tool, like reproducible.debian.net (which aint a,b,c nor d, but e.) > after an upload has taken place. I think it's probably not a good idea to (when we've moved to mandate "packages must be reproducible") allow packages to become insta-buggy by things that are out of their control and not clearly specified in policy. That's not how we do things in Debian. As such, I would favour the following approach: - You guys (= the reproducible builds guys) come up with a list of things that commonly make a package nonreproducible today, and policy adds those as "should not"s. If I'm not mistaken, such a list already exists, you may simply need to generalize it a bit? - Actually, I'm sure there may be things that packages failed to comply with in the past, but that are not a problem anymore today; we can make those "must not" rules already today. - If you find new and interesting ways to make packages nonreproducible at some point in the future, those can be added (as "should" first, and as "must" later). This would result in a section in policy of this form: --- # Reproducible builds Packages should generally be reproducible. That is, a package build should result in a bit-by-bit identical package from one build to the next. Specifically, packages must not do any of the following things: - non-reproducible thing A - non-reproducible thing B - ... Moreover, while the following are not must rules yet, packages should also not do any of the following things: - still-in-the-wild non-reproducible thing A - still-in-the-wild non-reproducible thing B - ... --- (wording may need some tweaking) The above wording makes "bit-by-bit identical" a should (so packagers are encouraged to reach that goal), but already allows you to file RC bugs on some subset of "is not reproducible" package issues, and a subset that will improve over time. With that wording, I don't think we should ever make "bit-by-bit identical" a must; I also don't think we would need to. As you say, building packages nonreproducibly is difficult to define, and it certainly is difficult to test for in a definite manner. > > What parameters > > are allowed to change need to be defined. > > I sadly think this is impossible. I agree that it will probably be a neverending effort, but I also think it's the only way that it can reasonably be done. -- < ron> I mean, the main *practical* problem with C++, is there's like a dozen people in the world who think they really understand all of its rules, and pretty much all of them are just lying to themselves too. -- #debian-devel, OFTC, 2016-02-12
Bug#858178: uuidcdef: buffer overflow
tags 858178 + patch thanks This is correctly diagnosing a buffer which is to small. The length of data written to the buffer is always constant, (20 bytes more than the length of the buffer), and not under user control, so there is probably not a security problem here. A patch, to increase the length of the buffer, is attached. --- xplc-0.3.13.orig/uuid/bin/uuidgen.c +++ xplc-0.3.13/uuid/bin/uuidgen.c @@ -239,7 +239,7 @@ int parse_conf(int argc, char** argv, st typedef const char* (*uuid_output_fn_t)(const uuid_t); -static char uuid_unparse_buf[60]; +static char uuid_unparse_buf[80]; const char* uuid_unparse_x_(const uuid_t uuid) { /* This function implicitly trusts uuid_unparse. */ unsigned int a, b, c, d, e, f, g, h, i, j, k; @@ -249,7 +249,7 @@ const char* uuid_unparse_x_(const uuid_t "%08x-%04x-%04x-%02x%02x-%02x%02x%02x%02x%02x%02x", , , , , , , , , , , ); if(ret != 11) { -uuid_unparse_buf[59] = '\0'; +uuid_unparse_buf[79] = '\0'; fprintf(stderr, "%s: libuuid error at %s:%d\n", program, __FILE__, __LINE__); fprintf(stderr,
Bug#862614: unblock: linux-latest/80
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi Please unblock package linux-latest Together with an unblock of src:linux since there is an ABI bump there should be an unblock fof linux-latest as well. I'm attaching the complete debdiff for reference against the version 79 in testing. unblock linux-latest/80 Regards, Salvatore diff -Nru linux-latest-79/debian/bin/gencontrol.py linux-latest-80/debian/bin/gencontrol.py --- linux-latest-79/debian/bin/gencontrol.py 2016-12-18 03:31:55.0 +0100 +++ linux-latest-80/debian/bin/gencontrol.py 2017-03-07 16:26:27.0 +0100 @@ -99,10 +99,6 @@ desc.append(config_description['part-long-' + part]) desc.append_short(config_description.get('part-short-' + part, '')) -if self.config.merge('xen', arch, featureset, flavour): -makeflags['XEN'] = True -templates.extend(self.templates["control.xen-linux-system.latest"]) - packages_flavour = [] packages_flavour.append(self.process_real_image(templates[0], image_fields, vars)) diff -Nru linux-latest-79/debian/changelog linux-latest-80/debian/changelog --- linux-latest-79/debian/changelog 2017-02-18 18:03:12.0 +0100 +++ linux-latest-80/debian/changelog 2017-05-04 17:33:51.0 +0200 @@ -1,3 +1,11 @@ +linux-latest (80) unstable; urgency=medium + + * Re-introduce xen-linux-system-amd64 *again* as transitional package +(Closes: #857039) + * Update to 4.9.0-3 + + -- Ben HutchingsThu, 04 May 2017 16:33:51 +0100 + linux-latest (79) unstable; urgency=medium * Update to 4.9.0-2 diff -Nru linux-latest-79/debian/control linux-latest-80/debian/control --- linux-latest-79/debian/control 2017-02-18 18:03:12.0 +0100 +++ linux-latest-80/debian/control 2017-05-04 17:33:51.0 +0200 @@ -4,7 +4,7 @@ Maintainer: Debian Kernel Team Uploaders: Bastian Blank , Frederik Schüler , Ben Hutchings Standards-Version: 3.9.8 -Build-Depends: debhelper (>= 9), linux-support-4.9.0-2, linux-headers-4.9.0-2-all +Build-Depends: debhelper (>= 9), linux-support-4.9.0-3, linux-headers-4.9.0-3-all Vcs-Browser: https://anonscm.debian.org/cgit/kernel/linux-latest.git Vcs-Git: https://anonscm.debian.org/git/kernel/linux-latest.git @@ -32,8 +32,8 @@ Package: linux-image-alpha-generic Architecture: alpha -Provides: linux-latest-modules-4.9.0-2-alpha-generic -Depends: linux-image-4.9.0-2-alpha-generic, ${misc:Depends} +Provides: linux-latest-modules-4.9.0-3-alpha-generic +Depends: linux-image-4.9.0-3-alpha-generic, ${misc:Depends} Description: Linux for Alpha (meta-package) This package depends on the latest Linux kernel and modules for use on DEC Alpha systems with extended kernel start address (Wildfire, Titan, @@ -41,7 +41,7 @@ Package: linux-headers-alpha-generic Architecture: alpha -Depends: linux-headers-4.9.0-2-alpha-generic, ${misc:Depends} +Depends: linux-headers-4.9.0-3-alpha-generic, ${misc:Depends} Description: Header files for Linux alpha-generic configuration (meta-package) This package depends on the architecture-specific header files for the latest Linux kernel alpha-generic configuration. @@ -51,15 +51,15 @@ Section: debug Priority: extra Provides: linux-latest-image-dbg -Depends: linux-image-4.9.0-2-alpha-generic-dbgsym, ${misc:Depends} +Depends: linux-image-4.9.0-3-alpha-generic-dbgsym, ${misc:Depends} Description: Debug symbols for Linux alpha-generic configuration (meta-package) This package depends on the detached debugging symbols for the latest Linux kernel alpha-generic configuration. Package: linux-image-alpha-smp Architecture: alpha -Provides: linux-latest-modules-4.9.0-2-alpha-smp -Depends: linux-image-4.9.0-2-alpha-smp, ${misc:Depends} +Provides: linux-latest-modules-4.9.0-3-alpha-smp +Depends: linux-image-4.9.0-3-alpha-smp, ${misc:Depends} Description: Linux for Alpha SMP (meta-package) This package depends on the latest Linux kernel and modules for use on DEC Alpha SMP systems with extended kernel start address (Wildfire, Titan, @@ -67,7 +67,7 @@ Package: linux-headers-alpha-smp Architecture: alpha -Depends: linux-headers-4.9.0-2-alpha-smp, ${misc:Depends} +Depends: linux-headers-4.9.0-3-alpha-smp, ${misc:Depends} Description: Header files for Linux alpha-smp configuration (meta-package) This package depends on the architecture-specific header files for the latest Linux kernel alpha-smp configuration. @@ -77,15 +77,15 @@ Section: debug Priority: extra Provides: linux-latest-image-dbg -Depends: linux-image-4.9.0-2-alpha-smp-dbgsym, ${misc:Depends} +Depends: linux-image-4.9.0-3-alpha-smp-dbgsym, ${misc:Depends} Description: Debug symbols for Linux alpha-smp configuration (meta-package) This package depends on the detached debugging symbols for the latest
Bug#862619: Updating the cecil-flowanalysis Uploaders list
Source: cecil-flowanalysis Version: 0.1~vcs20110809.r1.b34edf6-2 0.1~vcs20110809.r1.b34edf6-3 Severity: minor User: m...@qa.debian.org Usertags: mia-teammaint Jose Carlos Garcia Sogohas not been working on the cecil-flowanalysis package for quite some time. We are tracking their status in the MIA team and would like to ask you to remove them from the Uploaders list of the package so we can close that part of the file. (If the person is listed as Maintainer, what we are asking is to please step in as a new maintainer.) Thanks.
Bug#862622: Updating the gpgme1.0 Uploaders list
Source: gpgme1.0 Version: 1.9.0-1 1.5.1-6 1.7.0-1 1.8.0-3 Severity: minor User: m...@qa.debian.org Usertags: mia-teammaint Jose Carlos Garcia Sogohas not been working on the gpgme1.0 package for quite some time. We are tracking their status in the MIA team and would like to ask you to remove them from the Uploaders list of the package so we can close that part of the file. (If the person is listed as Maintainer, what we are asking is to please step in as a new maintainer.) Thanks.
Bug#862618: Updating the asterisk-prompt-it Uploaders list
Source: asterisk-prompt-it Version: 1:1.4.22+mm20110907-3 Severity: minor User: m...@qa.debian.org Usertags: mia-teammaint Jose Carlos Garcia Sogohas not been working on the asterisk-prompt-it package for quite some time. We are tracking their status in the MIA team and would like to ask you to remove them from the Uploaders list of the package so we can close that part of the file. (If the person is listed as Maintainer, what we are asking is to please step in as a new maintainer.) Thanks.
Bug#862620: Updating the db4o Uploaders list
Source: db4o Version: 8.0.184.15484+dfsg2-3 Severity: minor User: m...@qa.debian.org Usertags: mia-teammaint Jose Carlos Garcia Sogohas not been working on the db4o package for quite some time. We are tracking their status in the MIA team and would like to ask you to remove them from the Uploaders list of the package so we can close that part of the file. (If the person is listed as Maintainer, what we are asking is to please step in as a new maintainer.) Thanks.
Bug#862613: RFS: groonga/7.0.2-1
Package: sponsorship-requests Severity: wishlist Dear mentors, I am looking for a sponsor for my package "groonga" for experimental * Package name: groonga Version : 7.0.2-1 Upstream Author : Groonga Project* Url : http://groonga.org/ * Licenses: LGPL-2.1 Section : database It builds those binary packages: * groonga * groonga-server-common * groonga-server-gqtp * libgroonga-dev * libgroonga0 * groonga-tokenizer-mecab * groonga-token-filter-stem * groonga-plugin-suggest * groonga-bin * groonga-httpd * groonga-doc * groonga-examples * groonga-munin-plugins To access further information about this package, visit the following URL: https://mentors.debian.net/package/groonga Alternatively, one can download the package with dget using this command: dget -x https://mentors.debian.net/debian/pool/main/g/groonga/groonga_7.0.2-1.dsc More information about groonga can be obtained from http://groonga.org/ Changes since last upload: * New upstream release. * debian/patches/fix-nginx-FTBFS-on-kfreebsd.patch - Refresh patch to fix FTBFS on kFreeBSD. Regards, pgpcb3YigNCu4.pgp Description: PGP signature
Bug#861455: package updated to 1.0.0
Version 1.0.0 is released upstream, being a major update, almost a rewrite, it uses X.org's touch API and supports multitouch. The package is updated on mentors accordingly. In case you want to make that available to Debian and sponsor it, feel free to contact me. cheers, martin
Bug#862628: Updating the t38modem Uploaders list
Source: t38modem Version: 2.0.0-4 Severity: minor User: m...@qa.debian.org Usertags: mia-teammaint Jose Carlos Garcia Sogohas not been working on the t38modem package for quite some time. We are tracking their status in the MIA team and would like to ask you to remove them from the Uploaders list of the package so we can close that part of the file. (If the person is listed as Maintainer, what we are asking is to please step in as a new maintainer.) Thanks.
Bug#862626: Updating the rdup Uploaders list
Source: rdup Version: 1.1.11-1.1 1.1.15-1 Severity: minor User: m...@qa.debian.org Usertags: mia-teammaint Jose Carlos Garcia Sogohas not been working on the rdup package for quite some time. We are tracking their status in the MIA team and would like to ask you to remove them from the Uploaders list of the package so we can close that part of the file. (If the person is listed as Maintainer, what we are asking is to please step in as a new maintainer.) Thanks.
Bug#862630: Updating the tangerine Uploaders list
Source: tangerine Version: 0.3.4-6 Severity: minor User: m...@qa.debian.org Usertags: mia-teammaint Jose Carlos Garcia Sogohas not been working on the tangerine package for quite some time. We are tracking their status in the MIA team and would like to ask you to remove them from the Uploaders list of the package so we can close that part of the file. (If the person is listed as Maintainer, what we are asking is to please step in as a new maintainer.) Thanks.
Bug#862625: Updating the portaudio19 Uploaders list
Source: portaudio19 Version: 19+svn20140130-1 19.6.0-1 Severity: minor User: m...@qa.debian.org Usertags: mia-teammaint Jose Carlos Garcia Sogohas not been working on the portaudio19 package for quite some time. We are tracking their status in the MIA team and would like to ask you to remove them from the Uploaders list of the package so we can close that part of the file. (If the person is listed as Maintainer, what we are asking is to please step in as a new maintainer.) Thanks.
Bug#862624: Updating the openam Uploaders list
Source: openam Version: 1.4.0-1 Severity: minor User: m...@qa.debian.org Usertags: mia-teammaint Jose Carlos Garcia Sogohas not been working on the openam package for quite some time. We are tracking their status in the MIA team and would like to ask you to remove them from the Uploaders list of the package so we can close that part of the file. (If the person is listed as Maintainer, what we are asking is to please step in as a new maintainer.) Thanks.
Bug#862623: Updating the libgpg-error Uploaders list
Source: libgpg-error Version: 1.27-1 1.17-3 1.26-1 1.26-2 Severity: minor User: m...@qa.debian.org Usertags: mia-teammaint Jose Carlos Garcia Sogohas not been working on the libgpg-error package for quite some time. We are tracking their status in the MIA team and would like to ask you to remove them from the Uploaders list of the package so we can close that part of the file. (If the person is listed as Maintainer, what we are asking is to please step in as a new maintainer.) Thanks.
Bug#862627: Updating the stun Uploaders list
Source: stun Version: 0.96.dfsg-6 0.97~dfsg-2.1 Severity: minor User: m...@qa.debian.org Usertags: mia-teammaint Jose Carlos Garcia Sogohas not been working on the stun package for quite some time. We are tracking their status in the MIA team and would like to ask you to remove them from the Uploaders list of the package so we can close that part of the file. (If the person is listed as Maintainer, what we are asking is to please step in as a new maintainer.) Thanks.
Bug#861822: Contacted upstream: closing bug
Control: forwarded -1 https://redmine.openinfosecfoundation.org/issues/2115 Hi Hans, I've effectively opened an upstream bug [0] requesting the changing interfaces feature you mentioned. As the bug seems to be addressed, I will close it now. Feel free to reopen if necessary :-) thanks, best regards. [0] https://redmine.openinfosecfoundation.org/issues/2115
Bug#862629: Updating the taglib-sharp Uploaders list
Source: taglib-sharp Version: 2.1.0.0-3 Severity: minor User: m...@qa.debian.org Usertags: mia-teammaint Jose Carlos Garcia Sogohas not been working on the taglib-sharp package for quite some time. We are tracking their status in the MIA team and would like to ask you to remove them from the Uploaders list of the package so we can close that part of the file. (If the person is listed as Maintainer, what we are asking is to please step in as a new maintainer.) Thanks.
Bug#862621: Updating the deja-dup Uploaders list
Source: deja-dup Version: 32.0-1 34.3-1 Severity: minor User: m...@qa.debian.org Usertags: mia-teammaint Jose Carlos Garcia Sogohas not been working on the deja-dup package for quite some time. We are tracking their status in the MIA team and would like to ask you to remove them from the Uploaders list of the package so we can close that part of the file. (If the person is listed as Maintainer, what we are asking is to please step in as a new maintainer.) Thanks.
Bug#843779: big-integer dependency
Hello, I would be interested in working on packaging Lesspass. But the big-integer dependency is not packaged in Debian so I opened an ITP for that first (#862372). Regards,
Bug#862610: unblock: golang-pty/0.0~git20151007.0.f7ee69f-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package golang-pty This is part of the fix for Debian bug #860608: Go library packages should not use the Built-Using tag at all, and a few packages are still referencing a long-removed broken version of the golang package via a Built-Using tag. Hence, I uploaded a new version without the tag: % debdiff golang-pty_0.0\~git20151007.0.f7ee69f-1_amd64.changes golang-pty_0.0\~git20151007.0.f7ee69f-2_amd64.changes File lists identical (after any substitutions) Control files of package golang-github-kr-pty-dev: lines which differ (wdiff format) [-Built-Using: golang-1.7 (= 1.7.4-2)-] Version: [-0.0~git20151007.0.f7ee69f-1-] {+0.0~git20151007.0.f7ee69f-2+} Control files of package golang-pty-dev: lines which differ (wdiff format) -- Version: [-0.0~git20151007.0.f7ee69f-1-] {+0.0~git20151007.0.f7ee69f-2+} unblock golang-pty/0.0~git20151007.0.f7ee69f-2 -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, 'testing-debug'), (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386, armel, mipsel, arm64 Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#810964: [Xen-devel] [BUG] EDAC infomation partially missing
>>> On 14.05.17 at 00:36,wrote: > I haven't yet done as much experimentation as Andreas Pflug has, but I > can confirm I'm also running into this bug with Xen 4.4.1. > > I've only tried Linux kernel 3.16.43, but as Dom0: > > EDAC MC: Ver: 3.0.0 > AMD64 EDAC driver v3.4.0 > EDAC amd64: DRAM ECC enabled. > EDAC amd64: NB MCE bank disabled, set MSR 0x017b[4] on node 0 to enable. > EDAC amd64: ECC disabled in the BIOS or no ECC capability, module will not > load. > AMD64 EDAC driver v3.4.0 > EDAC amd64: DRAM ECC enabled. > EDAC amd64: NB MCE bank disabled, set MSR 0x017b[4] on node 0 to enable. > EDAC amd64: ECC disabled in the BIOS or no ECC capability, module will not > load. Afaict the driver as is simply can't work in a Xen Dom0; it needs enabling (read: para-virtualizing). I'm actually glad to see it doesn't load (the worse alternative would be for it to load and then do the wrong thing or give you a false sense of safety of your data). Jan
Bug#862617: RM: libnunc-stans/0.1.8-1 -- RoM
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: rm 389-ds-base upstream has merged this in their codebase in 1.3.6.x and a separate copy is not needed. It's not used on earlier versions either, and there are no (other) reverse-depends on libnunc-stans0/-dev, so it's safe to remove from both testing/unstable.
Bug#862609: unblock: golang-objx/0.0~git20150928.0.1a9d0bb-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package golang-objx This is part of the fix for Debian bug #860608: Go library packages should not use the Built-Using tag at all, and a few packages are still referencing a long-removed broken version of the golang package via a Built-Using tag. Hence, I uploaded a new version without the tag: % debdiff golang-objx_0.0\~git20150928.0.1a9d0bb-1_amd64.changes golang-objx_0.0\~git20150928.0.1a9d0bb-2_amd64.changes File lists identical (after any substitutions) Control files of package golang-github-stretchr-objx-dev: lines which differ (wdiff format) --- [-Built-Using: golang-1.7 (= 1.7.4-2)-] Version: [-0.0~git20150928.0.1a9d0bb-1-] {+0.0~git20150928.0.1a9d0bb-2+} Control files of package golang-objx-dev: lines which differ (wdiff format) --- Version: [-0.0~git20150928.0.1a9d0bb-1-] {+0.0~git20150928.0.1a9d0bb-2+} unblock golang-objx/0.0~git20150928.0.1a9d0bb-2 -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, 'testing-debug'), (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386, armel, mipsel, arm64 Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#860608: [pkg-golang-devel] Bug#860608: Bug#860608: golang: FTBFS: Go version is "go1.6.1", ignoring -next /<>/api/next.txt
On Sat, May 6, 2017 at 2:20 PM, Michael Stapelbergwrote: > > > On Tue, May 2, 2017 at 10:23 AM, Michael Hudson-Doyle < > michael.hud...@canonical.com> wrote: > >> On 2 May 2017 at 19:23, Michael Stapelberg wrote: >> >>> Sorry for the late reply, I’ve been swamped. >>> >>> On Fri, Apr 21, 2017 at 10:28 AM, Niels Thykier >>> wrote: >>> Michael Stapelberg: > On Fri, Apr 21, 2017 at 9:45 AM, Niels Thykier wrote: > >> [...] >>> >> >> They seem to be arch:all packages. We cannot binNMU arch:all packages, >> only architecture dependent ones. :-/ >> > > Okay. How do you suggest we rectify this issue instead, then? > A (possibly "no change") sourceful upload to force a rebuild of the arch:all package. >>> >>> A sourceful upload for which source package? src:golang has been removed >>> from unstable and testing since 2016-10. >>> >> >> Well, for this bug report specifically, the packages that have a >> built-using on golang 2:1.6.1-2, i.e. these: >> > > Thanks, now I get it :). > > >> >> mwhudson@aeglos:~/tmp$ chdist grep-dctrl-packages sid -FBuilt-Using >> 'golang (= 2:1.6.1-2)' -sPackage >> Package: golang-github-armon-go-metrics-dev >> > > This package has changes in the git repository which aren’t uploaded to > the archive, so it doesn’t build as-is. If someone could take care of this > one, that’d be appreciated. > Uploaded a new version, created from a separate debian/unstable branch. My changes are merged back into master. I hope this was the correct thing to do. > > >> Package: golang-github-gosexy-gettext-dev >> > > vorlon, can we file for removal of this package? It wasn’t touched since > 2013 and has no rdepends. > Done: https://bugs.debian.org/862612 > > >> Package: golang-github-hashicorp-go-msgpack-dev >> Package: golang-github-stretchr-objx-dev >> Package: golang-github-kr-pty-dev >> > > I uploaded new versions of the 3 packages above. Will take care of filing > unblock requests once they entered upstream. > Done: https://bugs.debian.org/862608 https://bugs.debian.org/862609 https://bugs.debian.org/862610 > > The following are already mentioned above: > > >> Package: golang-github-armon-go-metrics-dev >> Package: golang-github-gosexy-gettext-dev >> Package: golang-github-hashicorp-go-msgpack-dev >> Package: golang-github-stretchr-objx-dev >> Package: golang-github-kr-pty-dev >> >> As you can see these are all -dev packages, so the Built-Using is bogus >> and should simply be dropped from the package. >> >> There are quite a few more packages that reference obsolete golang >> packages in their Built-Using... >> >> Cheers, >> mwh >> >> >>> To avoid further delays, is this something you could NMU for us? If so, >>> I’d much appreciate that. Thanks! >>> >>> -- >>> Best regards, >>> Michael >>> >>> ___ >>> pkg-golang-devel mailing list >>> pkg-golang-de...@lists.alioth.debian.org >>> http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-golang-devel >>> >> >> > > > -- > Best regards, > Michael > -- Best regards, Michael
Bug#862335: openssl creates and accepts certificates with bad notAfter field
Please don't underestimate this problem. openssl creates bad certificates here without telling. It is *highly* annoying if you are affected by a bad root certificate you already used for setting up a private PKI and then detect the problem on a platform with a better ssl implementation. I would highly appreciate if you could fix this for Stretch. Thanx Harri
Bug#861732: systemd: How to get suricata started at boot?
On Mon, 8 May 2017 14:11:19 +0200 Arturo Borrero Gonzalezwrote: > On 3 May 2017 at 19:58, Michael Biebl wrote: > > > > If it doesn't open up any security hole, then I don't see a reason to > > not enable suricata upon installation. > BTW, any idea on how to solve the issue about choosing a default interface name? The suricata config file points to a NIC and our current config file points by default to 'eth0', but many systems may not have it available. If we try to start suricata pointing to a non-existent interface this will fail. If we auto-start suricata after installing it with aptitude and it fails, the package may be considered installed failed. We could probably enable (but don't auto-start) the service at package install time. Comments?
Bug#771790: Fwd: Package broken
On May 15, 2017 06:06, "Val Markovic"wrote: [Sending you a copy of my response on the bug since I forgot to cc you.] -- Forwarded message -- From: Val Markovic Date: Sun, May 14, 2017 at 9:57 PM Subject: Re: Package broken To: 771...@bugs.debian.org I'm interested in fixing this package if there are still users interested in using it. Popcon says 1 machine uses this: https://qa.debian.org/po pcon.php?package=dirty.js Marcos, do you still use this package? I do, on several machines. Thanks! -- Marcos Marado
Bug#862615: unblock: postgresql-9.6/9.6.3-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package postgresql-9.6: postgresql-9.6 (9.6.3-1) unstable; urgency=medium * Team upload. * New upstream version. + Restrict visibility of pg_user_mappings.umoptions, to protect passwords stored as user mapping options (CVE-2017-7486) + Prevent exposure of statistical information via leaky operators (CVE-2017-7484) + Restore libpq's recognition of the PGREQUIRESSL environment variable (CVE-2017-7485) * debian/rules: Add stub to enable cassert builds (disabled by default). -- Christoph BergTue, 09 May 2017 13:00:11 +0200 unblock postgresql-9.6/9.6.3-1 Thanks, Christoph signature.asc Description: PGP signature
Bug#862354: ITP: installation-birthday -- Receive congratulations on system installation anniversaries
Holger Levsen wrote: > > Updated the package description to make this clearer. :) > > cool, thanks! > > is it already suggested by debian-goodies? ;-) No. Good idea, but looking at it in more detial I don't think it's really appropriate there either, alas. Regards, -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `-
Bug#862616: asterisk-prompt-it: src:asterisk-prompt-it d/control VCS-Browser broken
Source: asterisk-prompt-it Severity: normal Hi, seems so that in d/control VCS-Browser should read: https://anonscm.debian.org/viewvc/pkg-voip/asterisk-prompt-it/ instead of https://anonscm.debian.org/viewvc/pkg-voip/asterisk-prompt-it/?op=log (which fails with an 400 Bad Request) -- tobi -- System Information: Debian Release: 9.0 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'testing'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#861732: closing bug, fixed in the archive
Control: fixed -1 3.2.1-1 This fixed code is already in the archive starting with suricata 3.2.1-1. Closing the bug now.
Bug#862632: CVE-2017-8353
package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded: https://github.com/ImageMagick/ImageMagick/issues/454 ReadPICTImage function in pict.c allows attackers to cause a denial of service (memory leak) via a crafted file.
Bug#850889: suricata: Inconsistent behaviour between .init and .service
Control: fixed -1 3.2.1-1 On Tue, 10 Jan 2017 22:11:57 +0100 Christoph Biedlwrote: > Also, after a quick glance into the init script: > > | else > | echo "/etc/default/suricata is missing... bailing out!" > | fi > > No, you're not bailing out. Perhaps add "exit 0"? > this code is already in the archive, closing the bug now. best regards.
Bug#862617: RM: libnunc-stans/0.1.8-1 -- RoM
Control: reassign -1 ftp.debian.org On 2017-05-15 9:01, Timo Aaltonen wrote: 389-ds-base upstream has merged this in their codebase in 1.3.6.x and a separate copy is not needed. It's not used on earlier versions either, and there are no (other) reverse-depends on libnunc-stans0/-dev, so it's safe to remove from both testing/unstable. In that case you want a removal from unstable, which is ftp team's territory; reassigning. Regards, Adam
Bug#862633: CVE-2017-8354
package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded: https://github.com/ImageMagick/ImageMagick/issues/451 the ReadBMPImage function in bmp.c allows attackers to cause a denial of service (memory leak) via a crafted file.
Bug#862634: CVE-2017-8355
package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded: https://github.com/ImageMagick/ImageMagick/issues/450 the ReadMTVImage function in mtv.c allows attackers to cause a denial of service (memory leak) via a crafted file.
Bug#862636: CVE-2017-8357
package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded: https://github.com/ImageMagick/ImageMagick/issues/453 The ReadEPTImage function in ept.c allows attackers to cause a denial of service (memory leak) via a crafted file.
Bug#862635: CVE-2017-8356
package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded: https://github.com/ImageMagick/ImageMagick/issues/449 the ReadSUNImage function in sun.c allows attackers to cause a denial of service (memory leak) via a crafted file.Source
Bug#861878: nvidia-cuda-toolkit: nvcc needs to pass -fpie to compiler
Lumin, on sam. 13 mai 2017 05:59:24 +, wrote: > > This was documented in NEWS.Debian.gz. Having to use "--compiler-options > > -fPIC" was however not documented in NEW.Debian.gz, at least that should > > be done. > > Well, what do you think we can to to deal with this bug? I Cc-ed gcc, llvm and binutils maintainers to get their opinion on this :) The problem is the move of some parts of the toolchain to pie by default, without updating the whole toolchain. Whenever not using only gcc for building object files, the issue shows up. nvcc is only an example of this. > And what can we do from the CUDA packaging side except for a new > NEWS/README.Debian section? > > I plan to point out these in the new NEWS/README.Debian section: > (1) Try to compile the whole CUDA application with clang-3.8 > (2) Append the PIE/PIC flags to compiler arguments, reference: [1] > > [1] http://gcc.gnu.org/onlinedocs/gcc/Code-Gen-Options.html That's probably a reasonable thing to do on that side, yes. Samuel
Bug#862639: xserver-xorg-input-wacom: polluting my syslog (update to 0.35)
Package: xserver-xorg-input-wacom Version: 0.34.0-1 Severity: important Tags: newcomer Dear Maintainer, I am on debian stretch, using a wacom tablet and the following is polluting my syslog every several seconds: May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) BUG: triggered 'if (in_input_thread())' May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) BUG: ../../../../os/io.c:656 in WriteToClient() May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) WriteToClient called from input thread * May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) Backtrace: May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 0: /usr/lib/xorg/Xorg (xorg_backtrace+0x4a) [0x56046ba6d46a] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 1: /usr/lib/xorg/Xorg (WriteToClient+0x162) [0x56046ba70aa2] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 2: /usr/lib/xorg/Xorg (WriteEventsToClient+0x252) [0x56046b913aa2] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 3: /usr/lib/xorg/Xorg (TryClientEvents+0x120) [0x56046b913c40] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 4: /usr/lib/xorg/Xorg (0x56046b8b4000+0x633aa) [0x56046b9173aa] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 5: /usr/lib/xorg/Xorg (DeliverEventsToWindow+0x1d7) [0x56046b917697] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 6: /usr/lib/xorg/Xorg (0x56046b8b4000+0x146d69) [0x56046b9fad69] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 7: /usr/lib/xorg/Xorg (0x56046b8b4000+0x1526cf) [0x56046ba066cf] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 8: /usr/lib/xorg/Xorg (XIChangeDeviceProperty+0x358) [0x56046ba07088] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 9: /usr/lib/xorg/modules/input/wacom_drv.so (0x7fb058ab+0x10df9) [0x7fb058ac0df9] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 10: /usr/lib/xorg/modules/input/wacom_drv.so (0x7fb058ab+0x76a7) [0x7fb058ab76a7] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 11: /usr/lib/xorg/modules/input/wacom_drv.so (0x7fb058ab+0x8864) [0x7fb058ab8864] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 12: /usr/lib/xorg/modules/input/wacom_drv.so (0x7fb058ab+0xe38f) [0x7fb058abe38f] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 13: /usr/lib/xorg/modules/input/wacom_drv.so (0x7fb058ab+0x616b) [0x7fb058ab616b] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 14: /usr/lib/xorg/modules/input/wacom_drv.so (0x7fb058ab+0x63a6) [0x7fb058ab63a6] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 15: /usr/lib/xorg/Xorg (0x56046b8b4000+0x1bb5dc) [0x56046ba6f5dc] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 16: /usr/lib/xorg/Xorg (0x56046b8b4000+0x1bdcd1) [0x56046ba71cd1] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 17: /usr/lib/xorg/Xorg (0x56046b8b4000+0x1bb436) [0x56046ba6f436] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 18: /lib/x86_64-linux-gnu/libpthread.so.0 (0x7fb0619e1000+0x7494) [0x7fb0619e8494] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) 19: /lib/x86_64-linux-gnu/libc.so.6 (clone+0x3f) [0x7fb06172b93f] May 15 10:49:33 nbp /usr/lib/gdm3/gdm-x-session[8368]: (EE) There is a known solution for this, which I found on this thread: https://sourceforge.net/p/linuxwacom/bugs/328/?page=1 Bascially, updating to 0.35 should resolve the problem. I report this because I think this is so severe that it should be fixed before the release of Debian 9. -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages xserver-xorg-input-wacom depends on: ii libc6 2.24-10 ii libudev1 232-23 ii libx11-6 2:1.6.4-3 ii libxext6 2:1.3.3-1+b2 ii libxi6 2:1.7.9-1 ii libxinerama1 2:1.1.3-1+b3 ii libxrandr2 2:1.5.1-1 ii xserver-xorg-core [xorg-input-abi-24] 2:1.19.2-1 xserver-xorg-input-wacom recommends no packages. Versions of packages xserver-xorg-input-wacom suggests: pn xinput -- no debconf information
Bug#862570: libmenu-cache: menu-cached socket may be blocked by another user.
Hi I requested a CVE via cveform.mitre.org for this issue. Regards, Salvatore
Bug#862639: input-wacom: Re: xserver-xorg-input-wacom: polluting my syslog (update to 0.35)
Package: xserver-xorg-input-wacom Version: 0.34.0-1 Followup-For: Bug #862639 Dear Maintainer, sorry, updating to 0.34.2 solves it (0.35 does not exist). Just did so and succeeded with it. Please fix this before the Debian 9 release! -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages xserver-xorg-input-wacom depends on: ii libc6 2.24-10 ii libudev1 232-23 ii libx11-6 2:1.6.4-3 ii libxext6 2:1.3.3-1+b2 ii libxi6 2:1.7.9-1 ii libxinerama1 2:1.1.3-1+b3 ii libxrandr2 2:1.5.1-1 ii xserver-xorg-core [xorg-input-abi-24] 2:1.19.2-1 xserver-xorg-input-wacom recommends no packages. Versions of packages xserver-xorg-input-wacom suggests: pn xinput -- no debconf information
Bug#862571: pcmanfm: single instance socket may be blocked by another user.
Hi I requested a CVE for this issue via cveform.mitre.org Regards, Salvatore
Bug#860656: forwarded upstream
Control: forwarded -1 https://bitbucket.org/wooster/biplist/issues/8 Since the plist format stores the length of the integer, storing a long should always return a long: 0001 # of bytes is 2^, big-endian bytes https://en.wikipedia.org/wiki/Property_list#Mac_OS_X On python3 this does not matter, since there is no long type, only int.
Bug#862441: [mutter] backport fix for at-spi reporting the wrong position of gnome-shell elements
Control: tag -1 + moreinfo anonym: > Versions before mutter 3.24 are affected by a bug making gnome-shell report > the wrong x-coordinate of its elements via at-spi. For details, see: It would be nice to sum up the impact of the bug here (e.g. for users of universal access technologies), so the maintainers and the release team don't have to go through additional hops to understand why this normal severity bug should be fixed in Stretch. Thanks in advance!
Bug#861732:
Control: tags -1 pending Fixed in git commit 636f10fb5be2a49072d2543e0d2aecb23f1a168e [0]. Waiting Stretch to be stable to push this into sid. [0] https://anonscm.debian.org/cgit/pkg-suricata/pkg-suricata.git/commit/?h=unstable-next=636f10fb5be2a49072d2543e0d2aecb23f1a168e
Bug#862652: debian-edu-config: wrong exim4 configuration breaks SMTP server security
control: found -1 1.926 control: found -1 1.818+deb8u2 control: Severity -1 serious thanks -- cheers, Holger signature.asc Description: Digital signature
Bug#862655: update node-readdirp to latest upstream release
package: node-readdirp version: 0.2.4-2 node-chokidar wants a newer version on node-readdirp But the following tests fail $ tap test/readdirp.js test/readdirp.js 18/24 # Subtest: not ok test unfinished: reading root using glob filter at: line: 104 column: 1 file: test/readdirp.js source: | test('\nreading root using glob filter', function (t) { not ok child test left in queue: reading root using function filter at: line: 182 column: 1 file: test/readdirp.js source: | test('\n\nreading root using function filter', function (t) { not ok child test left in queue: reading root specifying maximum depth at: line: 206 column: 1 file: test/readdirp.js source: | test('\nreading root specifying maximum depth', function (t) { not ok child test left in queue: reading root with no recursion at: line: 215 column: 1 file: test/readdirp.js source: | test('\nreading root with no recursion', function (t) { not ok child test left in queue: progress callbacks at: line: 224 column: 1 file: test/readdirp.js source: | test('\nprogress callbacks', function (t) { not ok child test left in queue: resolving of name, full and relative paths at: line: 243 column: 1 file: test/readdirp.js source: | test('resolving of name, full and relative paths', function (t) { total ... 18/24 18 passing (346.297ms) 6 failing signature.asc Description: OpenPGP digital signature
Bug#862654: Input event (e. g. typing on keyboard) is sent repeatedly during high load
Package: xserver-common Version: 2:1.19.3-1 Hi, I have that bug again, which was solved once (see upstream bug https://bugzilla.gnome.org/show_bug.cgi?id=757942 and especially https://bugzilla.gnome.org/show_bug.cgi?id=757942#c33 I think) but which is back today : Using Firefox, I open a new tab (ctrl+t) and start typing in the url bar : the first letter is repeated several times (for instance "cccinema"). I'm using Debian Sid 64 bits with GNOME-Wayland and : Xwayland 2:1.19.3-1 libwayland-client0 1.12.0-1 firefox 52.0.2-1 Linux HAL 4.9.0-3-amd64 #1 SMP Debian 4.9.25-1 (2017-05-02) x86_64 GNU/Linux Thanks ! Thibaut
Bug#861198: Shutting down public FTP services
On Sun, May 07, 2017 at 09:58:12PM -0700, Vagrant Cascadian wrote: > Any chance you could review the urllib implementation that is in git > soonish? :) I've been adventurously busy, I hope it's not too late. In bfc0329060e262bfd889b5e40c32ad9099197dcb I have mixed feelings about this, as it uses string split on a path while python has os.path.split. However, I couldn't at a glance follow the code to see what kind of input it works on, and if it's something like http://ftp.fr.debian.org/debian/dists/jessie/Release then the lines are not really paths: -prefix_len = 7 + len(env.get("DI_CODENAME")) # dists/{DI_CODENAME}/ -relname = file[prefix_len:] +separator = os.path.join('dists/', env.get("DI_CODENAME"), '') +separator, relname = file.split(separator) About 6717a008549cd792a4c08d7c21d09cbd8b82a67a: COOL! In b164d54b912a8d702576c191a821ec2f374642cf I agree that except without an exception is too broad, like in here: try: checksums.verify_file(output, relname) except: raise Fail("Checksum invalid: %s", output) I noticed that verify_file in simple_cdd/utils.py already throws Fail if something is wrong. I would get rid of the try/except block altogether, and just call verify_file. 1faddb9cfe4992c36bca7e502f5190e96de74f77 looks good, I can't think of a better way of doing it. I'm attaching a proposed patch for the over-broad excepts. Enrico -- GPG key: 4096R/634F4BD1E7AD5568 2009-05-08 Enrico ZiniFrom c84da64e7485cc89d0c72ab5d15c3df9f58945b5 Mon Sep 17 00:00:00 2001 From: Enrico Zini Date: Mon, 15 May 2017 12:41:33 +0200 Subject: [PATCH] Avoid except: that might catch too much --- simple_cdd/tools/mirror_wget.py | 7 ++- 1 file changed, 2 insertions(+), 5 deletions(-) diff --git a/simple_cdd/tools/mirror_wget.py b/simple_cdd/tools/mirror_wget.py index 73999a3..dc914cf 100644 --- a/simple_cdd/tools/mirror_wget.py +++ b/simple_cdd/tools/mirror_wget.py @@ -46,7 +46,7 @@ class ToolMirrorWget(Tool): checksums.verify_file(output, relname) log.debug("skipping download: %s checksum matched", output) return -except: +except Fail: log.debug("re-downloading: %s checksum invalid", output) pass if not os.path.isdir(os.path.dirname(output)): @@ -54,10 +54,7 @@ class ToolMirrorWget(Tool): log.debug("downloading: %s", output) request.urlretrieve(url, filename=output) if checksums: -try: -checksums.verify_file(output, relname) -except: -raise Fail("Checksum invalid: %s", output) +checksums.verify_file(output, relname) if env.get("mirror_files"): # Download the checksums present in the archive "extrafiles" and verify -- 2.11.0 signature.asc Description: PGP signature
Bug#862638: logcheck: Please add suricata rules to logcheck
Package: logcheck Version: 1.3.18 Severity: wishlist Dear Maintainer, I am very happy with logcheck. It is great working and very usefull. However, it would be nice, if you could add a ruleset for suricata (a successor to the well known snort IDS), so I get alerted, when something fishy is going on. In my case logcheck is run every 30 minutes, so I am very fast aware, when an attack is going on. On the other hand, I found no realtime alert option with suricata. Best way, IMO, would be a ruleset for suricata logs, which do alert me by mail (as logcheck normally do). I search in the web, but things like snorby, scirius, evebox etc. did not fit the things I am searching for. Thank you for reading this and thanks for logcheck, it is great! Best regards Hans -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (500, 'testing'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 4.9.0-2-686-pae (SMP w/2 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages logcheck depends on: ii adduser 3.115 ii cron [cron-daemon] 3.0pl1-128+b1 ii lockfile-progs 0.1.17+b1 ii logtail 1.3.18 ii mime-construct 1.11+nmu2 ii postfix [mail-transport-agent] 3.1.4-4 ii rsyslog [system-log-daemon] 8.24.0-1 Versions of packages logcheck recommends: ii logcheck-database 1.3.18 Versions of packages logcheck suggests: pn syslog-summary -- Configuration Files: /etc/logcheck/logcheck.conf [Errno 13] Keine Berechtigung: '/etc/logcheck/logcheck.conf' /etc/logcheck/logcheck.logfiles [Errno 13] Keine Berechtigung: '/etc/logcheck/logcheck.logfiles' -- no debconf information
Bug#862656: cryptsetup: WARNING: failed to detect canonical device of none
Package: initramfs-tools Version: 0.130 Severity: normal Hello, after reading /usr/share/doc/initramfs-tools/NEWS.Debian.gz I set RESUME=none in /etc/initramfs-tools/conf.d/resume but when running "update-initramfs -u" I get a warning from cryptsetup as if none isn't being treated specially and it's still treated like a device name: # update-initramfs -u update-initramfs: Generating /boot/initrd.img-4.9.0-2-amd64 W: Possible missing firmware /lib/firmware/i915/kbl_guc_ver9_14.bin for module i915 W: Possible missing firmware /lib/firmware/i915/bxt_guc_ver8_7.bin for module i915 cryptsetup: WARNING: failed to detect canonical device of none Enrico -- Package-specific info: -- initramfs sizes -rw-r--r-- 1 root root 30M Mar 5 10:53 /boot/initrd.img-4.9.0-1-amd64 -rw-r--r-- 1 root root 29M May 15 12:48 /boot/initrd.img-4.9.0-2-amd64 -- /proc/cmdline BOOT_IMAGE=/vmlinuz-4.9.0-2-amd64 root=/dev/mapper/viaza-root ro quiet splash -- resume # See /usr/share/doc/initramfs-tools/NEWS.Debian.gz #RESUME=/dev/mapper/viaza-swap_1 RESUME=none -- /proc/filesystems btrfs ext3 ext2 ext4 vfat iso9660 -- lsmod Module Size Used by cpuid 16384 0 nls_utf8 16384 0 isofs 40960 0 nls_ascii 16384 0 nls_cp437 20480 0 vfat 20480 0 fat69632 1 vfat uas24576 0 usb_storage73728 1 uas ctr16384 6 ccm20480 3 veth 16384 0 bridge135168 0 stp16384 1 bridge llc16384 2 bridge,stp pci_stub 16384 1 vboxpci24576 0 vboxnetadp 28672 0 vboxnetflt 28672 0 vboxdrv 454656 3 vboxnetadp,vboxnetflt,vboxpci cpufreq_conservative16384 0 cpufreq_powersave 16384 0 cpufreq_userspace 16384 0 binfmt_misc20480 1 algif_skcipher 20480 0 af_alg 16384 1 algif_skcipher dm_crypt 24576 3 pata_pcmcia20480 0 uvcvideo 90112 0 videobuf2_vmalloc 16384 1 uvcvideo videobuf2_memops 16384 1 videobuf2_vmalloc videobuf2_v4l2 24576 1 uvcvideo videobuf2_core 36864 2 uvcvideo,videobuf2_v4l2 videodev 176128 3 uvcvideo,videobuf2_core,videobuf2_v4l2 media 40960 2 uvcvideo,videodev iTCO_wdt 16384 0 iTCO_vendor_support16384 1 iTCO_wdt hp_wmi 16384 0 sparse_keymap 16384 1 hp_wmi tpm_infineon 20480 0 acpi_cpufreq 20480 1 intel_powerclamp 16384 0 coretemp 16384 0 kvm_intel 192512 0 kvm 589824 1 kvm_intel irqbypass 16384 1 kvm crct10dif_pclmul 16384 0 crc32_pclmul 16384 0 ghash_clmulni_intel16384 0 intel_cstate 16384 0 intel_uncore 118784 0 pcmcia 65536 1 pata_pcmcia joydev 20480 0 pcspkr 16384 0 serio_raw 16384 0 arc4 16384 2 snd_hda_codec_hdmi 49152 2 iwldvm139264 0 mac80211 671744 1 iwldvm intel_ips 20480 0 snd_hda_codec_idt 57344 1 snd_hda_codec_generic69632 1 snd_hda_codec_idt iwlwifi 147456 1 iwldvm sg 32768 0 yenta_socket 49152 0 pcmcia_rsrc20480 1 yenta_socket cfg80211 589824 3 iwlwifi,mac80211,iwldvm snd_hda_intel 36864 5 pcmcia_core24576 3 yenta_socket,pcmcia,pcmcia_rsrc lpc_ich24576 0 snd_hda_codec 135168 4 snd_hda_intel,snd_hda_codec_idt,snd_hda_codec_hdmi,snd_hda_codec_generic mfd_core 16384 1 lpc_ich rfkill 24576 4 hp_wmi,cfg80211 snd_hda_core 81920 5 snd_hda_intel,snd_hda_codec,snd_hda_codec_idt,snd_hda_codec_hdmi,snd_hda_codec_generic snd_hwdep 16384 1 snd_hda_codec snd_pcm_oss49152 0 snd_mixer_oss 24576 1 snd_pcm_oss snd_pcm 110592 6 snd_pcm_oss,snd_hda_intel,snd_hda_codec,snd_hda_core,snd_hda_codec_hdmi snd_timer 32768 1 snd_pcm snd86016 19 snd_pcm_oss,snd_hda_intel,snd_hwdep,snd_mixer_oss,snd_hda_codec,snd_hda_codec_idt,snd_timer,snd_hda_codec_hdmi,snd_hda_codec_generic,snd_pcm soundcore 16384 1 snd shpchp 36864 0 mei_me 36864 0 mei 102400 1 mei_me battery16384 0 hp_accel 28672 0 lis3lv02d 20480 1 hp_accel input_polldev 16384 1 lis3lv02d ac 16384 0 evdev 24576 26 tpm_tis16384 0 tpm_tis_core 20480 1 tpm_tis tpm45056 3
Bug#862643: O: libipc-signal-perl -- utility functions dealing with signals for Perl
Package: wnpp The current maintainer of libipc-signal-perl, Roderick Schertler, is apparently not active anymore. Therefore, I orphan this package now. Maintaining a package requires time and skills. Please only adopt this package if you will have enough time and attention to work on it. If you want to be the new maintainer, please see https://www.debian.org/devel/wnpp/#howto-o for detailed instructions how to adopt a package properly. Some information about this package: Package: libipc-signal-perl Binary: libipc-signal-perl Version: 1.00-6 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 3.0.5), perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.5.2 Format: 1.0 Files: e0e1793bbaf5db7fbc20b2e1ec6b595a 636 libipc-signal-perl_1.00-6.dsc 4cebf17fdf1785eaf8c151bf2e8c360a 2649 libipc-signal-perl_1.00.orig.tar.gz 339c186e680f53366ffdaf1b33a6a2c2 2316 libipc-signal-perl_1.00-6.diff.gz Checksums-Sha1: 17a15526e00ee730d306f6b2a68276fc1285 636 libipc-signal-perl_1.00-6.dsc a76796569421b3ac5ad777da04c32828ae294746 2316 libipc-signal-perl_1.00-6.diff.gz cdc9ca73d54da258013714c229924e0672684026 2649 libipc-signal-perl_1.00.orig.tar.gz Checksums-Sha256: cf3b3bb70d1c917521e6cc52dc295aec511d6364b175a5aad2f929be44cc0d9d 636 libipc-signal-perl_1.00-6.dsc 7f2737293664cfd2dfe89bfcd6cb79b03e75361456b0699e4e688c2a59a93290 2316 libipc-signal-perl_1.00-6.diff.gz 7c21f9c8c2d0c0f0f0f46e77de7c3d879dd562668ddf0525875c38cef2076fd0 2649 libipc-signal-perl_1.00.orig.tar.gz Directory: pool/main/libi/libipc-signal-perl Priority: source Section: perl Package: libipc-signal-perl Binary: libipc-signal-perl Version: 1.00-6.2 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.5.2 Format: 1.0 Files: cd5f8e3cbefe6f4cc1e0fe4fad50417f 1862 libipc-signal-perl_1.00-6.2.dsc 4cebf17fdf1785eaf8c151bf2e8c360a 2649 libipc-signal-perl_1.00.orig.tar.gz daa86139da6c7f6967568a474778f4b0 2535 libipc-signal-perl_1.00-6.2.diff.gz Checksums-Sha256: a23937acfe4cc2f3dab08123192f91344d42854e31d110e2c6308070fa5851d0 1862 libipc-signal-perl_1.00-6.2.dsc 7c21f9c8c2d0c0f0f0f46e77de7c3d879dd562668ddf0525875c38cef2076fd0 2649 libipc-signal-perl_1.00.orig.tar.gz 54ffe89faf571ef8f808cf3d0e3c8a672fb0138e52552ae9e92ba3141c1981b8 2535 libipc-signal-perl_1.00-6.2.diff.gz Package-List: libipc-signal-perl deb perl optional arch=all Directory: pool/main/libi/libipc-signal-perl Priority: source Section: perl Package: libipc-signal-perl Version: 1.00-6.2 Installed-Size: 21 Maintainer: Roderick Schertler Architecture: all Depends: perl Description-en: utility functions dealing with signals for Perl This Perl module contains utility functions for dealing with signals. Currently these are just translating between signal names and signal numbers and vice versa. Description-md5: 4c67b23ecdfba7046bc13dbfaefbdc78 Tag: devel::lang:perl, devel::library, implemented-in::perl Section: perl Priority: optional Filename: pool/main/libi/libipc-signal-perl/libipc-signal-perl_1.00-6.2_all.deb Size: 6272 MD5sum: 752b9c1d7b2a276d7506f4a37490bf80 SHA256: ea9b4fcadad6529aef515664f6a5d25731110cc2b5932b8e74c3166b446854eb Package: libipc-signal-perl Version: 1.00-6 Installed-Size: 64 Maintainer: Roderick Schertler Architecture: all Depends: perl (>= 5.6.0-16) Description-en: utility functions dealing with signals for Perl This Perl module contains utility functions for dealing with signals. Currently these are just translating between signal names and signal numbers and vice versa. Description-md5: 4c67b23ecdfba7046bc13dbfaefbdc78 Tag: devel::lang:perl, devel::library, implemented-in::perl Section: perl Priority: optional Filename: pool/main/libi/libipc-signal-perl/libipc-signal-perl_1.00-6_all.deb Size: 7008 MD5sum: 249d3c103a06826f9890f5398a2b SHA1: c00c07eaf4c0e29fb069001ab00ff3de760e297c SHA256: 9ded893ff31fc11666482dd8b5ff4a63fa317372e26589e25ec0ca8ce3083066 Package: libipc-signal-perl Version: 1.00-6.2 Installed-Size: 21 Maintainer: Roderick Schertler Architecture: all Depends: perl Description-en: utility functions dealing with signals for Perl This Perl module contains utility functions for dealing with signals. Currently these are just translating between signal names and signal numbers and vice versa. Description-md5: 4c67b23ecdfba7046bc13dbfaefbdc78 Tag: devel::lang:perl, devel::library, implemented-in::perl Section: perl Priority: optional Filename: pool/main/libi/libipc-signal-perl/libipc-signal-perl_1.00-6.2_all.deb Size: 6272 MD5sum: 752b9c1d7b2a276d7506f4a37490bf80 SHA256: ea9b4fcadad6529aef515664f6a5d25731110cc2b5932b8e74c3166b446854eb Package: libipc-signal-perl Version: 1.00-6 Installed-Size: 64 Maintainer: Roderick Schertler Architecture: all Depends: perl (>= 5.6.0-16) Description-en: utility
Bug#862642: O: hearse -- exchange Nethack bones files with other players
Package: wnpp The current maintainer of hearse, Roderick Schertler, is apparently not active anymore. Therefore, I orphan this package now. Maintaining a package requires time and skills. Please only adopt this package if you will have enough time and attention to work on it. If you want to be the new maintainer, please see https://www.debian.org/devel/wnpp/#howto-o for detailed instructions how to adopt a package properly. Some information about this package: Package: hearse Binary: hearse Version: 1.5-8.1 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 4.1.68), perl (>= 5.6.0-16), po-debconf Architecture: all Standards-Version: 3.7.2 Format: 1.0 Files: b530303ba5114470de59b6f40d30ab83 1643 hearse_1.5-8.1.dsc 4c022342d3f75af3b70a3e07e8e82ee0 29202 hearse_1.5.orig.tar.gz f3915106d5f029755f940801ac9ca60c 19897 hearse_1.5-8.1.diff.gz Checksums-Sha1: 03f7f0059df072be4ebecb511df84156af83709f 1643 hearse_1.5-8.1.dsc bc1ea58589067107fe82f9c3143e655418f27b78 29202 hearse_1.5.orig.tar.gz baca1769dc67acec653b17caa84ce9142cd92b18 19897 hearse_1.5-8.1.diff.gz Checksums-Sha256: 942ecade36bed1c838c77fd9e4a1d1f9ee8cdedf2fca94938eac52fc11c8659b 1643 hearse_1.5-8.1.dsc 2f339bef82cb416a818ed458e4b1e8b0ccbb1d6abf8e33a99b5d7fdffec7fb12 29202 hearse_1.5.orig.tar.gz 19c76414ebb9732f68f2e3063a214bb95f9387c134679832263d72521dd9f2a2 19897 hearse_1.5-8.1.diff.gz Package-List: hearse deb games optional Directory: pool/main/h/hearse Priority: source Section: games Package: hearse Binary: hearse Version: 1.5-8.3 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16), po-debconf Architecture: all Standards-Version: 3.7.2 Format: 1.0 Files: 7f3a938938748f2033e512a0707e80b1 1636 hearse_1.5-8.3.dsc 4c022342d3f75af3b70a3e07e8e82ee0 29202 hearse_1.5.orig.tar.gz 14195fbe505ee7e94aab3e5bb4a9577f 22235 hearse_1.5-8.3.diff.gz Checksums-Sha256: 1432471641d3b589cb49b4eda4e339a98bc566d887f653f40ed146ea173acf41 1636 hearse_1.5-8.3.dsc 2f339bef82cb416a818ed458e4b1e8b0ccbb1d6abf8e33a99b5d7fdffec7fb12 29202 hearse_1.5.orig.tar.gz 5f7ae8b5d7326f516c712519295c532da5db153e8dc7fdc617b98091a98bffc2 22235 hearse_1.5-8.3.diff.gz Package-List: hearse deb games optional arch=all Directory: pool/main/h/hearse Priority: source Section: games Package: hearse Version: 1.5-8.3 Installed-Size: 105 Maintainer: Roderick Schertler Architecture: all Depends: debconf (>= 1.2.0) | debconf-2.0, perl, libwww-perl, nethack-common | nethack Description-en: exchange Nethack bones files with other players Nethack sometimes saves the level on which you die (including your stuff, what killed you, and your ghost) in a "bones file". These files get loaded into later Nethack games. If you're the only Nethack player on your system you'll only get bones files you created yourself. . With Hearse, you can automatically exchange bones files with other Nethack players. When run it uploads any new bones files it finds on your system, then downloads any bones files the server feels like giving it. See http://www.argon.org/~roderick/hearse/ for more information. . An important thing to note is that by default using Hearse will cause you to end up with more bones than you otherwise would have. This changes the game's balance and is considered by many players to be a mild form of cheating. You can address this by turning on the --delete-uploaded option, but the down side is you'll never encounter your own bones files. Description-md5: 5794f9e6ad2af9faa035c500662b5ce9 Tag: game::rpg:rogue, interface::commandline, role::program, scope::utility, use::downloading, use::gameplaying Section: games Priority: optional Filename: pool/main/h/hearse/hearse_1.5-8.3_all.deb Size: 36988 MD5sum: fe6949a0454b73dd645753b1612c1b55 SHA256: 62ecb216a6c6f6eb00ff9a8bed0ba7b11e8be37192f70ba27d82cca6cd7d8500 Package: hearse Version: 1.5-8.1 Installed-Size: 143 Maintainer: Roderick Schertler Architecture: all Depends: debconf (>= 1.2.0) | debconf-2.0, perl, libwww-perl, nethack-common | nethack Description-en: exchange Nethack bones files with other players Nethack sometimes saves the level on which you die (including your stuff, what killed you, and your ghost) in a "bones file". These files get loaded into later Nethack games. If you're the only Nethack player on your system you'll only get bones files you created yourself. . With Hearse, you can automatically exchange bones files with other Nethack players. When run it uploads any new bones files it finds on your system, then downloads any bones files the server feels like giving it. See http://www.argon.org/~roderick/hearse/ for more information. . An important thing to note is that by default using Hearse will cause you to end up with more bones than you otherwise would have. This changes the game's balance and is considered by many players
Bug#862646: O: libstring-shellquote-perl -- quote strings for passing through the shell
Package: wnpp The current maintainer of libstring-shellquote-perl, Roderick Schertler, is apparently not active anymore. Therefore, I orphan this package now. Maintaining a package requires time and skills. Please only adopt this package if you will have enough time and attention to work on it. If you want to be the new maintainer, please see https://www.debian.org/devel/wnpp/#howto-o for detailed instructions how to adopt a package properly. Some information about this package: Package: libstring-shellquote-perl Binary: libstring-shellquote-perl Version: 1.03-1 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 3.0.5), perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.6.1 Format: 1.0 Files: 5074421504bf88c0cb9ad49ddb0ae639 662 libstring-shellquote-perl_1.03-1.dsc b42822efe385f6604f55b0cea5ac0b76 6471 libstring-shellquote-perl_1.03.orig.tar.gz d0a925af31997794e3cef26bc212648a 2379 libstring-shellquote-perl_1.03-1.diff.gz Checksums-Sha1: e3ce28962e0508941e9dcb3fff6dd987c7e661b7 662 libstring-shellquote-perl_1.03-1.dsc 80f9973c4dc980ab110ba8f92c0aced4e0981ea5 2379 libstring-shellquote-perl_1.03-1.diff.gz c13a0f05ca3798059cc5209ee4b61ec6d3b91746 6471 libstring-shellquote-perl_1.03.orig.tar.gz Checksums-Sha256: ab745bd4aa7be0f36e50c4ab72c2d55c36e776862c3fa4ecff4817568786bfab 662 libstring-shellquote-perl_1.03-1.dsc 9c76d878bb9789c8fb14f8ff9b817b06bbeedc1c98884ece287558ee9cef3b8a 2379 libstring-shellquote-perl_1.03-1.diff.gz 8dbd89a07fbcd81b73eb177e6d5dc4925fb3b61733828de71d25f298b08d9d83 6471 libstring-shellquote-perl_1.03.orig.tar.gz Directory: pool/main/libs/libstring-shellquote-perl Priority: source Section: perl Package: libstring-shellquote-perl Binary: libstring-shellquote-perl Version: 1.03-1.2 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.9.6 Format: 1.0 Files: 7ca6f57fba70f61739f598d632a2d2fe 1795 libstring-shellquote-perl_1.03-1.2.dsc b42822efe385f6604f55b0cea5ac0b76 6471 libstring-shellquote-perl_1.03.orig.tar.gz 7687d884fa2d7c9f8d6a3e7861e805da 2778 libstring-shellquote-perl_1.03-1.2.diff.gz Checksums-Sha256: 2c41c7b3b0efd4c62126a74938a3137ba5a0550225fdb9d1c56d43fbae37ab63 1795 libstring-shellquote-perl_1.03-1.2.dsc 8dbd89a07fbcd81b73eb177e6d5dc4925fb3b61733828de71d25f298b08d9d83 6471 libstring-shellquote-perl_1.03.orig.tar.gz 5a3918c7a2009184ce25ae47cb5d1c9f74586d5a8475f445460bc602440bef7e 2778 libstring-shellquote-perl_1.03-1.2.diff.gz Package-List: libstring-shellquote-perl deb perl optional arch=all Directory: pool/main/libs/libstring-shellquote-perl Priority: source Section: perl Package: libstring-shellquote-perl Version: 1.03-1.2 Installed-Size: 33 Maintainer: Roderick Schertler Architecture: all Depends: perl Description-en: quote strings for passing through the shell This Perl module contains some functions which are useful for quoting strings which are going to pass through the shell or a shell-like object, plus a command-line interface to it. It is useful for doing robust tool programming, particularly when dealing with files whose names contain white space or shell globbing characters. Description-md5: 55b0377c637e234b4c7bca7f878736f1 Tag: devel::lang:perl, devel::library, implemented-in::perl, works-with::text Section: perl Priority: optional Filename: pool/main/libs/libstring-shellquote-perl/libstring-shellquote-perl_1.03-1.2_all.deb Size: 12188 MD5sum: c52e69edf7ad64c068470563e1760ed8 SHA256: 050c49ade44e4148cfee6bfc29a5d553ab0e49de528f267d748ad53234f72107 Package: libstring-shellquote-perl Version: 1.03-1 Installed-Size: 84 Maintainer: Roderick Schertler Architecture: all Depends: perl (>= 5.6.0-16) Description-en: quote strings for passing through the shell This Perl module contains some functions which are useful for quoting strings which are going to pass through the shell or a shell-like object, plus a command-line interface to it. It is useful for doing robust tool programming, particularly when dealing with files whose names contain white space or shell globbing characters. Description-md5: 55b0377c637e234b4c7bca7f878736f1 Tag: devel::lang:perl, devel::library, implemented-in::perl, works-with::text Section: perl Priority: optional Filename: pool/main/libs/libstring-shellquote-perl/libstring-shellquote-perl_1.03-1_all.deb Size: 14030 MD5sum: f533f1afc830c5430be18a7ebfc72621 SHA1: 6e56bf98a8b764bae2c2d8456b27d05953d8d057 SHA256: f9613b8900d4cd34795013304654a79f111d6301065a5462289f8fe083aa4e20 Package: libstring-shellquote-perl Version: 1.03-1.2 Installed-Size: 33 Maintainer: Roderick Schertler Architecture: all Depends: perl Description-en: quote strings for passing through the shell This Perl module contains some functions which are useful for quoting strings which are going to pass through the shell or a
Bug#862641: O: ftp-upload -- put files with FTP from a script
Package: wnpp The current maintainer of ftp-upload, Roderick Schertler, is apparently not active anymore. Therefore, I orphan this package now. Maintaining a package requires time and skills. Please only adopt this package if you will have enough time and attention to work on it. If you want to be the new maintainer, please see https://www.debian.org/devel/wnpp/#howto-o for detailed instructions how to adopt a package properly. Some information about this package: Package: ftp-upload Binary: ftp-upload Version: 1.5 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 3.0.5), perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.6.2 Format: 1.0 Files: 37280d21ab9c0583def6af538476e537 528 ftp-upload_1.5.dsc c5ca0b74454785af7d8ff684d50345ba 8882 ftp-upload_1.5.tar.gz Checksums-Sha1: 5ccbf46aa99e2df021f337b8219618495a46e5a4 528 ftp-upload_1.5.dsc ae07d2764589b4859d7f2b25612c16a72d172560 8882 ftp-upload_1.5.tar.gz Checksums-Sha256: 94071ce50dcad986391fc537705ed181f13609490bae7ce6764ced0fbf007112 528 ftp-upload_1.5.dsc dc476a30b08d71566d6ed148db86dfe76df9b85d47d87dce88267a61d916f2b4 8882 ftp-upload_1.5.tar.gz Directory: pool/main/f/ftp-upload Priority: source Section: net Package: ftp-upload Binary: ftp-upload Version: 1.5+nmu2 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.9.7 Format: 3.0 (native) Files: 8d31453642910113e3934ff42e63b523 1424 ftp-upload_1.5+nmu2.dsc 63563ada4fcbc1866d015a2725fab10b 8756 ftp-upload_1.5+nmu2.tar.xz Checksums-Sha256: d1a9856123d3b1117811656aa1523d8db139e308322cb5c3477eb444a1cd4413 1424 ftp-upload_1.5+nmu2.dsc 143d2c5f9d1d3cb0ddaa0291ba9792b3f2fde7b582e191f8139a887c366cd839 8756 ftp-upload_1.5+nmu2.tar.xz Package-List: ftp-upload deb net optional arch=all Directory: pool/main/f/ftp-upload Priority: source Section: net Package: ftp-upload Version: 1.5+nmu2 Installed-Size: 32 Maintainer: Roderick Schertler Architecture: all Depends: perl, libnet-perl Description-en: put files with FTP from a script ftp-upload transfers local files to another machine using FTP. It's meant to be used by scripts and such rather than interactively. There's no user interface, the program is controlled strictly via the command line. It is disciplined with its exit status. Description-md5: 608a9b6be46b2c40737b1b93c824a8d0 Tag: interface::commandline, network::client, protocol::ftp, role::program, use::transmission, works-with::file Section: net Priority: optional Filename: pool/main/f/ftp-upload/ftp-upload_1.5+nmu2_all.deb Size: 12486 MD5sum: 32d874dbd8f86c6df306480c384ac384 SHA256: 8bb376faeef6d03c6c8f0a0521f18ecd149fc2d75f91eb6d7b030fbe886b5ceb Package: ftp-upload Version: 1.5 Installed-Size: 68 Maintainer: Roderick Schertler Architecture: all Depends: perl, libnet-perl Description-en: put files with FTP from a script ftp-upload transfers local files to another machine using FTP. It's meant to be used by scripts and such rather than interactively. There's no user interface, the program is controlled strictly via the command line. It is disciplined with its exit status. Description-md5: 608a9b6be46b2c40737b1b93c824a8d0 Tag: interface::commandline, network::client, protocol::ftp, role::program, use::transmission, works-with::file Section: net Priority: optional Filename: pool/main/f/ftp-upload/ftp-upload_1.5_all.deb Size: 13760 MD5sum: 2aac35eaa14747ba774c12f3ad0db2e1 SHA1: f7fbf4a252f7a41e80715490bf45131fd0cebaa7 SHA256: fa26abd9e66a4c03826a8ea21772e5fe161c205e4550ace778476b986565b1f2 Package: ftp-upload Version: 1.5+nmu2 Installed-Size: 32 Maintainer: Roderick Schertler Architecture: all Depends: perl, libnet-perl Description-en: put files with FTP from a script ftp-upload transfers local files to another machine using FTP. It's meant to be used by scripts and such rather than interactively. There's no user interface, the program is controlled strictly via the command line. It is disciplined with its exit status. Description-md5: 608a9b6be46b2c40737b1b93c824a8d0 Tag: interface::commandline, network::client, protocol::ftp, role::program, use::transmission, works-with::file Section: net Priority: optional Filename: pool/main/f/ftp-upload/ftp-upload_1.5+nmu2_all.deb Size: 12486 MD5sum: 32d874dbd8f86c6df306480c384ac384 SHA256: 8bb376faeef6d03c6c8f0a0521f18ecd149fc2d75f91eb6d7b030fbe886b5ceb Package: ftp-upload Version: 1.5 Installed-Size: 68 Maintainer: Roderick Schertler Architecture: all Depends: perl, libnet-perl Description-en: put files with FTP from a script ftp-upload transfers local files to another machine using FTP. It's meant to be used by scripts and such rather than interactively. There's no user interface, the program is controlled strictly via the command line. It is disciplined with its exit status.
Bug#862652: debian-edu-config: wrong exim4 configuration breaks SMTP server security
control: tags -1 + pending # a fix is in git already, though improvements have been discussed on irc # ;tl;dr: we're on it. -- cheers, Holger signature.asc Description: Digital signature
Bug#861732: closing bug, fixed in the archive
Control: repoen -1 Control: notfixed -1 3.2.1-1 On Mon, 15 May 2017 10:17:25 +0200 Arturo Borrero Gonzalezwrote: > Control: fixed -1 3.2.1-1 > > This fixed code is already in the archive starting with suricata 3.2.1-1. > > Closing the bug now. > Sorry wrong bug number. Reopening :-)
Bug#862639: xserver-xorg-input-wacom: polluting my syslog (update to 0.35)
Package: xserver-xorg-input-wacom Version: 0.34.0-1 Followup-For: Bug #862639 Dear Maintainer, sorry, 0.34.2 is the version that solves it (0.35 does not exist). Just tried it out myself manually and it worked. Please fix this before the Debian 9 release! -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages xserver-xorg-input-wacom depends on: ii libc6 2.24-10 ii libudev1 232-23 ii libx11-6 2:1.6.4-3 ii libxext6 2:1.3.3-1+b2 ii libxi6 2:1.7.9-1 ii libxinerama1 2:1.1.3-1+b3 ii libxrandr2 2:1.5.1-1 ii xserver-xorg-core [xorg-input-abi-24] 2:1.19.2-1 xserver-xorg-input-wacom recommends no packages. Versions of packages xserver-xorg-input-wacom suggests: pn xinput -- no debconf information
Bug#862652: debian-edu-config: wrong exim4 configuration breaks SMTP server security
Package: debian-edu-config Version: 1.926 1.818+deb8u2 Severity: seious Hi, while testing if Thunderbird works like expected in Debian Edu Stretch, I noticed that the provided exim4 server configuration (/etc/exim4/exim-ldap-server-v4.conf) is leading to a broken SMTP server: sending mail is possible w/o authentication, TLS is missing. Only possible SMTP settings are: (1) No connection security (2) No authentification These issues are caused by exim4 security fix for CVE-2016-1531 and commit 4beb721 (master branch, fix for #794602). Jessie is affected as well (both issues, same fixes needed). Wolfgang signature.asc Description: PGP signature
Bug#862387: openstack-dashboard: instance delete fails with: 403 Forbidden - CSRF verification failed. Request aborted.
On Fri, May 12, 2017 at 09:00:00AM +0200, Valentin Vidic wrote: > Instance delete fails when I access: > > http://os-ctrl/horizon/project/instances/ > > and select "Delete Instance" from the list of actions with > the error: > > Forbidden (403) > CSRF verification failed. Request aborted. > > Help > Reason given for failure: > CSRF token missing or incorrect. Downgrading python-django to 1.8.16-1~bpo8+1 seems to help, so it seems this version of horizon is not compatible with django 1.10 somehow? -- Valentin
Bug#862637: CVE-2017-8830
package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded: https://github.com/ImageMagick/ImageMagick/issues/467 he ReadBMPImage function in bmp.c:1379 allows attackers to cause a denial of service (memory leak) via a crafted file.
Bug#862649: O: mime-construct -- construct/send MIME messages from the command line
Package: wnpp The current maintainer of mime-construct, Roderick Schertler, is apparently not active anymore. Therefore, I orphan this package now. Maintaining a package requires time and skills. Please only adopt this package if you will have enough time and attention to work on it. If you want to be the new maintainer, please see https://www.debian.org/devel/wnpp/#howto-o for detailed instructions how to adopt a package properly. Some information about this package: Package: mime-construct Binary: mime-construct Version: 1.11 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 3.0.18), perl (>= 5.6.0-16), libmime-base64-perl, libmime-types-perl, libproc-waitstat-perl Architecture: all Standards-Version: 3.8.0 Format: 1.0 Files: 06d78103233f49fe41eebfbd71f70250 818 mime-construct_1.11.dsc 73834ea780fbea81b89dbd9b2fb54f58 12906 mime-construct_1.11.tar.gz Checksums-Sha1: c092e2eb41a1e0dacea6af2a1214ba209252b0dc 818 mime-construct_1.11.dsc b4bdd9a84779c8d614fea8ba3cb8346491542b1a 12906 mime-construct_1.11.tar.gz Checksums-Sha256: c3e59627e6e08d187bd1c689145594867e957756a2ef8f773036d2c21b29ec3a 818 mime-construct_1.11.dsc 4cd7bb61b51d41192d1498c1051aa6a4ccd75aeb09b71d2ec706a7084a4a9303 12906 mime-construct_1.11.tar.gz Directory: pool/main/m/mime-construct Priority: source Section: mail Package: mime-construct Binary: mime-construct Version: 1.11+nmu2 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16), libmime-base64-perl, libmime-types-perl, libproc-waitstat-perl Architecture: all Standards-Version: 3.8.0 Format: 1.0 Files: 27fea96470c9e30f482416ebfbe6d52d 1340 mime-construct_1.11+nmu2.dsc 17cbab71c497cb0bdc7ed88a9f843620 12375 mime-construct_1.11+nmu2.tar.gz Checksums-Sha256: 4e4f1504053460ca0d961a539a77a6e5a433b55c57a12934165624aeae9b51fd 1340 mime-construct_1.11+nmu2.dsc ebeeec0936e4086759921c848cc53ea06e76019472996da2d54055bde07a96d2 12375 mime-construct_1.11+nmu2.tar.gz Package-List: mime-construct deb mail optional arch=all Directory: pool/main/m/mime-construct Priority: source Section: mail Package: mime-construct Version: 1.11+nmu2 Installed-Size: 46 Maintainer: Roderick Schertler Architecture: all Depends: perl, libmime-base64-perl, libmime-types-perl, libproc-waitstat-perl Description-en: construct/send MIME messages from the command line mime-construct constructs and (by default) mails MIME messages. It is entirely driven from the command line, it is designed to be used by other programs, or people who act like programs. Description-md5: e07442bc1343c7ea762a25120a1d5920 Tag: implemented-in::perl, interface::commandline, role::program, scope::utility, works-with::mail Section: mail Priority: optional Filename: pool/main/m/mime-construct/mime-construct_1.11+nmu2_all.deb Size: 17432 MD5sum: d47b54c9c728d76ba4bc18414f04e6f7 SHA256: 957fe87db0a1ec3b930c663572060acceb3d3dee52e27359864ee3cf5d69548b Package: mime-construct Version: 1.11 Installed-Size: 84 Maintainer: Roderick Schertler Architecture: all Depends: perl, libmime-base64-perl, libmime-types-perl, libproc-waitstat-perl Description-en: construct/send MIME messages from the command line mime-construct constructs and (by default) mails MIME messages. It is entirely driven from the command line, it is designed to be used by other programs, or people who act like programs. Description-md5: e07442bc1343c7ea762a25120a1d5920 Tag: implemented-in::perl, interface::commandline, role::program, scope::utility, works-with::mail Section: mail Priority: optional Filename: pool/main/m/mime-construct/mime-construct_1.11_all.deb Size: 19690 MD5sum: 5088958ea2d83bfd71e5728dfbb51252 SHA1: 55775526ee25015577d57f5d77eae716210a9107 SHA256: 0a98f2ca16a59cafe1d4d9f95e0e9642ec96fd29f6ba001421b61253c5d91c9a Package: mime-construct Version: 1.11+nmu2 Installed-Size: 46 Maintainer: Roderick Schertler Architecture: all Depends: perl, libmime-base64-perl, libmime-types-perl, libproc-waitstat-perl Description-en: construct/send MIME messages from the command line mime-construct constructs and (by default) mails MIME messages. It is entirely driven from the command line, it is designed to be used by other programs, or people who act like programs. Description-md5: e07442bc1343c7ea762a25120a1d5920 Tag: implemented-in::perl, interface::commandline, role::program, scope::utility, works-with::mail Section: mail Priority: optional Filename: pool/main/m/mime-construct/mime-construct_1.11+nmu2_all.deb Size: 17432 MD5sum: d47b54c9c728d76ba4bc18414f04e6f7 SHA256: 957fe87db0a1ec3b930c663572060acceb3d3dee52e27359864ee3cf5d69548b Package: mime-construct Version: 1.11 Installed-Size: 84 Maintainer: Roderick Schertler Architecture: all Depends: perl, libmime-base64-perl, libmime-types-perl, libproc-waitstat-perl Description-en: construct/send MIME messages from
Bug#861878: nvidia-cuda-toolkit: nvcc needs to pass -fpie to compiler
@doko GCC-5 may be removed from unstable when CUDA 9.0 is uploaded. See below. (Maybe doko is already in some of these lists.) > The problem is the move of some parts of the toolchain to pie by > default, without updating the whole toolchain. Whenever not using only > gcc for building object files, the issue shows up. nvcc is only an > example of this. Yes, toolchain problem. Due to the difference on the default option, the mixed use of GCC and CLANG may end up with a failure as shown in previous examples. This issue is not related to CUDA so I think another bug against clang should be submitted. >> And what can we do from the CUDA packaging side except for a new >> NEWS/README.Debian section? >> > That's probably a reasonable thing to do on that side, yes. The good news is that, the upcoming CUDA 9.0 supports GCC-6 and CLANG-3.9, as reported here https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862522 That means, the "build your whole application with clang-3.8" advise is temporary and specific to CUDA 8.0. Before uploading CUDA 9.0 to unstable/experimental, we can change the default compiler back to GCC. And backporting CUDA 9.0 to stretch will eliminate the compiler trouble.
Bug#862650: O: xtail -- like "tail -f", but works on truncated files, directories, more
Package: wnpp The current maintainer of xtail, Roderick Schertler, is apparently not active anymore. Therefore, I orphan this package now. Maintaining a package requires time and skills. Please only adopt this package if you will have enough time and attention to work on it. If you want to be the new maintainer, please see https://www.debian.org/devel/wnpp/#howto-o for detailed instructions how to adopt a package properly. Some information about this package: Package: xtail Binary: xtail Version: 2.1-5 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 3.0.5) Architecture: any Standards-Version: 3.5.6 Format: 1.0 Files: 63146c0748cd13508da4b66ec6cea506 560 xtail_2.1-5.dsc 2e4717c591a2cbbd4aeb63d00c87a0cb 26769 xtail_2.1.orig.tar.gz 24f33d989e9e49d8ce12e9a1d41d9665 4787 xtail_2.1-5.diff.gz Checksums-Sha1: 1e4ae11b47fbd5c99bfde9805be3f840597a7b2e 560 xtail_2.1-5.dsc d990282d7084b8c2a862f8557c57646676b6182b 4787 xtail_2.1-5.diff.gz 1188baaf47e19a1ed6176a17ee6d144078657c17 26769 xtail_2.1.orig.tar.gz Checksums-Sha256: 7806b70f56ba55d21dc0447996edb4ca5193e963088a874595e8c3fae6c03241 560 xtail_2.1-5.dsc b586cfddec1eaa67bf69b016e42d10cf8b19f35ed5a4ed186eb9215126de7422 4787 xtail_2.1-5.diff.gz 75184926dffd89e9405769b24f01c8ed3b25d3c4a8eac60271fc5bb11f6c2d53 26769 xtail_2.1.orig.tar.gz Directory: pool/main/x/xtail Priority: source Section: utils Package: xtail Binary: xtail Version: 2.1-5.1 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 9) Architecture: any Standards-Version: 3.9.6 Format: 1.0 Files: e50395400cd808a8aac81ab73a5640dd 1590 xtail_2.1-5.1.dsc 2e4717c591a2cbbd4aeb63d00c87a0cb 26769 xtail_2.1.orig.tar.gz 227635b3097771214e4ed5c97b698ff2 5022 xtail_2.1-5.1.diff.gz Checksums-Sha256: e4ee0a0b705fb7809251d38876d35d43f1e5b8b4b225418e5e77de935a357648 1590 xtail_2.1-5.1.dsc 75184926dffd89e9405769b24f01c8ed3b25d3c4a8eac60271fc5bb11f6c2d53 26769 xtail_2.1.orig.tar.gz eb59ff51c5a595e306c28a98c09af3eb8176a0ff891a385107e8a489a2fe5196 5022 xtail_2.1-5.1.diff.gz Package-List: xtail deb utils optional arch=any Directory: pool/main/x/xtail Priority: source Section: utils Package: xtail Source: xtail (2.1-5.1) Version: 2.1-5.1+b1 Installed-Size: 35 Maintainer: Roderick Schertler Architecture: amd64 Depends: libc6 (>= 2.14) Description-en: like "tail -f", but works on truncated files, directories, more xtail watches the growth of files. It's like running a "tail -f" on a bunch of files at once. It notices if a file is truncated and starts from the beginning. You can specify both filenames and directories on the command line. If you specify a directory, it watches all the files in that directory. It will notice when new files are created (and start watching them) or when old files are deleted (and stop watching them). . Note that xtail isn't a graphical (X11) program, it runs on a plain tty. The name likely comes from "eXtended tail" or such. Description-md5: 9aa631c9d9da2fabcc414190df0572f0 Tag: implemented-in::c, interface::commandline, interface::text-mode, role::program, use::monitor, use::viewing, works-with::file, works-with::logfile Section: utils Priority: optional Filename: pool/main/x/xtail/xtail_2.1-5.1+b1_amd64.deb Size: 11210 MD5sum: c091d5936f6bd059662084823273c843 SHA256: aeb03f81eea2f72883a94b7b00680d256dfbbdfd7176ff113775efe298bd3635 Package: xtail Version: 2.1-5 Installed-Size: 68 Maintainer: Roderick Schertler Architecture: amd64 Depends: libc6 (>= 2.7-1) Description-en: like "tail -f", but works on truncated files, directories, more xtail watches the growth of files. It's like running a "tail -f" on a bunch of files at once. It notices if a file is truncated and starts from the beginning. You can specify both filenames and directories on the command line. If you specify a directory, it watches all the files in that directory. It will notice when new files are created (and start watching them) or when old files are deleted (and stop watching them). . Note that xtail isn't a graphical (X11) program, it runs on a plain tty. The name likely comes from "eXtended tail" or such. Description-md5: 9aa631c9d9da2fabcc414190df0572f0 Tag: implemented-in::c, interface::commandline, interface::text-mode, role::program, use::monitor, use::viewing, works-with::file, works-with::logfile Section: utils Priority: optional Filename: pool/main/x/xtail/xtail_2.1-5_amd64.deb Size: 11400 MD5sum: f55e64bff259205aa16fe40dc6d4516d SHA1: 5dbfb9b250f3c79eef8dd2337f6d062e371e1524 SHA256: 8b2082aed94a93f7ede131e1dbe01504f3d44db8121227c28362d5c56c713c40 Package: xtail Source: xtail (2.1-5.1) Version: 2.1-5.1+b1 Installed-Size: 35 Maintainer: Roderick Schertler Architecture: amd64 Depends: libc6 (>= 2.14) Description-en: like "tail -f", but works on truncated files, directories, more xtail watches the growth of files. It's
Bug#862640: O: debget -- download/compile source and binary Debian packages
Package: wnpp The current maintainer of debget, Roderick Schertler, is apparently not active anymore. Therefore, I orphan this package now. Maintaining a package requires time and skills. Please only adopt this package if you will have enough time and attention to work on it. If you want to be the new maintainer, please see https://www.debian.org/devel/wnpp/#howto-o for detailed instructions how to adopt a package properly. Some information about this package: Package: debget Binary: debget Version: 1.6+nmu1 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 3.0.5), perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.6.1 Format: 1.0 Files: 7e3dfaa3bd6e77abf4c212eb6685f8ae 721 debget_1.6+nmu1.dsc fde0c55e89692036180fbff985eca9e0 19834 debget_1.6+nmu1.tar.gz Checksums-Sha1: 4f383491345d5c0d21eab88a6df7f819ea2d413c 721 debget_1.6+nmu1.dsc 446f87de033bbbaf0fa8f21b8917a0a4eaa9d820 19834 debget_1.6+nmu1.tar.gz Checksums-Sha256: d2ac904bdc74449c18fb51611151ad633521ab6f3c383bc9c6b91f4e723c4361 721 debget_1.6+nmu1.dsc e7a5ce3bf1dc0339f20f0286b226b50ddf980f8bfa9701b61a55a44e1067eed4 19834 debget_1.6+nmu1.tar.gz Directory: pool/main/d/debget Priority: source Section: utils Package: debget Binary: debget Version: 1.6+nmu4 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.9.7 Format: 3.0 (native) Files: 0ea5f102510645336df49b0e755dec6d 1405 debget_1.6+nmu4.dsc 1309562000283fe0709ecc87e19a32de 18412 debget_1.6+nmu4.tar.xz Checksums-Sha256: 29bc52ba117339db306fc1c8571f72d5e5f07be7bd2fd1e7bc20d7662dd999c7 1405 debget_1.6+nmu4.dsc 365b17c4c1d6cf2066dd21a7831ed2f11ab1370db8ea7892ef7372ed48df4137 18412 debget_1.6+nmu4.tar.xz Package-List: debget deb utils optional arch=all Directory: pool/main/d/debget Priority: source Section: utils Package: debget Version: 1.6+nmu4 Installed-Size: 77 Maintainer: Roderick Schertler Architecture: all Depends: perl, libapt-pkg-perl, libnet-perl, libproc-waitstat-perl, libwww-perl Suggests: devscripts Description-en: download/compile source and binary Debian packages debget downloads source and binary Debian packages by name. It doesn't require a local copy of the Packages files, instead it queries packages.debian.org to find out what versions are available. . debget can also optionally unpack and compile source packages, and even install the generated binary packages. If you intend to use these features you should install the devscripts package for the dscverify script it contains. Description-md5: 9398bebdde9c7a6959820e531a6d100b Tag: devel::packaging, interface::commandline, role::program, scope::utility, suite::debian Section: utils Priority: optional Filename: pool/main/d/debget/debget_1.6+nmu4_all.deb Size: 27074 MD5sum: c296a34c9b3a4edb72fa5afc7961def5 SHA256: 87b11edc5c11a7e9a17c02be10a8571f89073bdbeab591f2314a7190517c35a6 Package: debget Version: 1.6+nmu1 Installed-Size: 140 Maintainer: Roderick Schertler Architecture: all Depends: perl (>= 5.6.0-16), libapt-pkg-perl, libnet-perl, libproc-waitstat-perl, libwww-perl Suggests: devscripts Description-en: download/compile source and binary Debian packages debget downloads source and binary Debian packages by name. It doesn't require a local copy of the Packages files, instead it queries packages.debian.org to find out what versions are available. . debget can also optionally unpack and compile source packages, and even install the generated binary packages. If you intend to use these features you should install the devscripts package for the dscverify script it contains. Description-md5: 9398bebdde9c7a6959820e531a6d100b Tag: devel::packaging, interface::commandline, role::program, scope::utility, suite::debian Section: utils Priority: optional Filename: pool/main/d/debget/debget_1.6+nmu1_all.deb Size: 30848 MD5sum: 215a4ff1c99bfbe4f43742db229288b9 SHA1: 8d5ec3b56eba941a2afb8722e3ef560cf34a5983 SHA256: 29d8c631c052b313ac5c00892312a1867839dc9c8b818a0a838a70fdb26bb508 Package: debget Version: 1.6+nmu4 Installed-Size: 77 Maintainer: Roderick Schertler Architecture: all Depends: perl, libapt-pkg-perl, libnet-perl, libproc-waitstat-perl, libwww-perl Suggests: devscripts Description-en: download/compile source and binary Debian packages debget downloads source and binary Debian packages by name. It doesn't require a local copy of the Packages files, instead it queries packages.debian.org to find out what versions are available. . debget can also optionally unpack and compile source packages, and even install the generated binary packages. If you intend to use these features you should install the devscripts package for the dscverify script it contains. Description-md5: 9398bebdde9c7a6959820e531a6d100b Tag: devel::packaging, interface::commandline, role::program, scope::utility,
Bug#862644: O: libproc-syncexec-perl -- spawn processes but report exec() errors properly
Package: wnpp The current maintainer of libproc-syncexec-perl, Roderick Schertler, is apparently not active anymore. Therefore, I orphan this package now. Maintaining a package requires time and skills. Please only adopt this package if you will have enough time and attention to work on it. If you want to be the new maintainer, please see https://www.debian.org/devel/wnpp/#howto-o for detailed instructions how to adopt a package properly. Some information about this package: Package: libproc-syncexec-perl Binary: libproc-syncexec-perl Version: 1.01-1 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 3.0.5), perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.5.2 Format: 1.0 Files: c8410a5a66a2c3674986f8d1a9981a00 648 libproc-syncexec-perl_1.01-1.dsc 38dd51ed78504d73bf6520a044744cb8 4967 libproc-syncexec-perl_1.01.orig.tar.gz e1e906cf3292a399bd622273d7a24019 2332 libproc-syncexec-perl_1.01-1.diff.gz Checksums-Sha1: 2bd5592cfd6cd5fe065b192a53b908c49a8c6c74 648 libproc-syncexec-perl_1.01-1.dsc 75410e4fe2e9030a3febc03d4a5cb62cac85a0b4 2332 libproc-syncexec-perl_1.01-1.diff.gz ce91d132ddae828d18dbd46812c127ac578089dd 4967 libproc-syncexec-perl_1.01.orig.tar.gz Checksums-Sha256: 0e4b430fd7d09ef71d64ac30b2d459cf1a8eb108a7ff6c026823f9a3acebf395 648 libproc-syncexec-perl_1.01-1.dsc 4df0056543a4ebed20a745be673506c0b2e7ba6fa477ed0976f5a6fd1d60f531 2332 libproc-syncexec-perl_1.01-1.diff.gz 2060f8a3f5ea26944d6ec013c81f46662ead6c1e32ad1b3ab394d9c0f7462d20 4967 libproc-syncexec-perl_1.01.orig.tar.gz Directory: pool/main/libp/libproc-syncexec-perl Priority: source Section: perl Package: libproc-syncexec-perl Binary: libproc-syncexec-perl Version: 1.01-1.2 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 10~), perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.5.2 Format: 1.0 Files: 4d5103c9d1dd3d0c3b7c229bc98d1ad8 1775 libproc-syncexec-perl_1.01-1.2.dsc 38dd51ed78504d73bf6520a044744cb8 4967 libproc-syncexec-perl_1.01.orig.tar.gz 5f7e4133d3208ec803e8fc8d5e125f5a 2571 libproc-syncexec-perl_1.01-1.2.diff.gz Checksums-Sha256: 6605853943ae680fef68c55d1649b6d3a8d31350bdcb23b7e72d0f49ce1ac190 1775 libproc-syncexec-perl_1.01-1.2.dsc 2060f8a3f5ea26944d6ec013c81f46662ead6c1e32ad1b3ab394d9c0f7462d20 4967 libproc-syncexec-perl_1.01.orig.tar.gz f2a94ed7e86e87a57985760cd3b5730ec5ab7bc64d9a5b8402c807ed55740d55 2571 libproc-syncexec-perl_1.01-1.2.diff.gz Package-List: libproc-syncexec-perl deb perl optional arch=all Directory: pool/main/libp/libproc-syncexec-perl Priority: source Section: perl Package: libproc-syncexec-perl Version: 1.01-1.2 Installed-Size: 26 Maintainer: Roderick Schertler Architecture: all Depends: perl Description-en: spawn processes but report exec() errors properly This Perl module contains functions for synchronized process spawning with full error return. If the child's exec() call fails the reason for the failure is reported back to the parent. Description-md5: 020adc57461dff147f30454ea76aff31 Tag: devel::lang:perl, devel::library, implemented-in::perl Section: perl Priority: optional Filename: pool/main/libp/libproc-syncexec-perl/libproc-syncexec-perl_1.01-1.2_all.deb Size: 9314 MD5sum: 38d4f4653af516a8b86c13f266b23bea SHA256: b6dec30e3312404dda4e5525b42ff22a1f85f23e665aa1ee663094c4d465ccb7 Package: libproc-syncexec-perl Version: 1.01-1 Installed-Size: 68 Maintainer: Roderick Schertler Architecture: all Depends: perl (>= 5.6.0-16) Description-en: spawn processes but report exec() errors properly This Perl module contains functions for synchronized process spawning with full error return. If the child's exec() call fails the reason for the failure is reported back to the parent. Description-md5: 020adc57461dff147f30454ea76aff31 Tag: devel::lang:perl, devel::library, implemented-in::perl Section: perl Priority: optional Filename: pool/main/libp/libproc-syncexec-perl/libproc-syncexec-perl_1.01-1_all.deb Size: 10348 MD5sum: 7103da3326f6f218160c10097ef1ef50 SHA1: 2a5e0fce92432a2e18759552ef014a52a2d3f365 SHA256: 5ced678f824ca9f2d2093d6e1e86eb0e3677f08fe6548cde12219c111e0d085e Package: libproc-syncexec-perl Version: 1.01-1.2 Installed-Size: 26 Maintainer: Roderick Schertler Architecture: all Depends: perl Description-en: spawn processes but report exec() errors properly This Perl module contains functions for synchronized process spawning with full error return. If the child's exec() call fails the reason for the failure is reported back to the parent. Description-md5: 020adc57461dff147f30454ea76aff31 Tag: devel::lang:perl, devel::library, implemented-in::perl Section: perl Priority: optional Filename: pool/main/libp/libproc-syncexec-perl/libproc-syncexec-perl_1.01-1.2_all.deb Size: 9314 MD5sum: 38d4f4653af516a8b86c13f266b23bea SHA256: b6dec30e3312404dda4e5525b42ff22a1f85f23e665aa1ee663094c4d465ccb7 Package:
Bug#862645: O: libproc-waitstat-perl -- interpret and act on wait() status values
Package: wnpp The current maintainer of libproc-waitstat-perl, Roderick Schertler, is apparently not active anymore. Therefore, I orphan this package now. Maintaining a package requires time and skills. Please only adopt this package if you will have enough time and attention to work on it. If you want to be the new maintainer, please see https://www.debian.org/devel/wnpp/#howto-o for detailed instructions how to adopt a package properly. Some information about this package: Package: libproc-waitstat-perl Binary: libproc-waitstat-perl Version: 1.00-4 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 3.0.5), perl (>= 5.6.0-16), libipc-signal-perl Architecture: all Standards-Version: 3.5.2 Format: 1.0 Files: 2ba01b2ffd40343e7ede9efddc574e9d 668 libproc-waitstat-perl_1.00-4.dsc b911bd579b6b142391b21de1efa30c95 3223 libproc-waitstat-perl_1.00.orig.tar.gz 02d510b2d9d07b95d604d25589f4d2ec 2308 libproc-waitstat-perl_1.00-4.diff.gz Checksums-Sha1: 13b0bebf3a48a2fd0559f76cc8604bf474cf4c32 668 libproc-waitstat-perl_1.00-4.dsc b8f8f159c4b345e2ea27efc2bf94cedcb5ffe424 2308 libproc-waitstat-perl_1.00-4.diff.gz 2b3c56f1748fbcbf6e164268834adba5865527b4 3223 libproc-waitstat-perl_1.00.orig.tar.gz Checksums-Sha256: 34127da94e940b0b800efee81ec9807fef87d3b2bc8bc387fab245dfd901de65 668 libproc-waitstat-perl_1.00-4.dsc d5fd50c85cea1f67e2e3a2d67ddfb584cf1c30af21dfdc01bf401790a495e03d 2308 libproc-waitstat-perl_1.00-4.diff.gz d07563f5e787909d16e7390241e877f49ab739b1de9d0e2ea1a41bd0bf4474bc 3223 libproc-waitstat-perl_1.00.orig.tar.gz Directory: pool/main/libp/libproc-waitstat-perl Priority: source Section: perl Package: libproc-waitstat-perl Binary: libproc-waitstat-perl Version: 1.00-4.2 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16), libipc-signal-perl Architecture: all Standards-Version: 3.5.2 Format: 1.0 Files: 6cf9e7625f65984f9089bc5e6ce25f7f 1608 libproc-waitstat-perl_1.00-4.2.dsc b911bd579b6b142391b21de1efa30c95 3223 libproc-waitstat-perl_1.00.orig.tar.gz b1e77edd7b69b1e5b437a02c6f128ac5 2038 libproc-waitstat-perl_1.00-4.2.diff.gz Checksums-Sha256: 476bfe7b0877b305ec93723044f66b14baad0d33c4a56bee9bf5a4fd241fbc2c 1608 libproc-waitstat-perl_1.00-4.2.dsc d07563f5e787909d16e7390241e877f49ab739b1de9d0e2ea1a41bd0bf4474bc 3223 libproc-waitstat-perl_1.00.orig.tar.gz 0da55a0b842f9659dbdc83f74b99f4c856d3c0475e367c1914ff8f7570469db4 2038 libproc-waitstat-perl_1.00-4.2.diff.gz Package-List: libproc-waitstat-perl deb perl optional arch=all Directory: pool/main/libp/libproc-waitstat-perl Priority: source Section: perl Package: libproc-waitstat-perl Version: 1.00-4.2 Installed-Size: 22 Maintainer: Roderick Schertler Architecture: all Depends: perl, libipc-signal-perl Description-en: interpret and act on wait() status values This Perl module contains functions which are useful for interpreting and acting on wait() status values. Description-md5: ba774cbff5e3902aaee874b1aa3dad86 Tag: devel::lang:perl, devel::library, implemented-in::perl Section: perl Priority: optional Filename: pool/main/libp/libproc-waitstat-perl/libproc-waitstat-perl_1.00-4.2_all.deb Size: 7038 MD5sum: 83ed8dbb236d431df650c3b34320d7f5 SHA256: 5a7a348fc8c35e67a3af5c860c9ae9b7f2dcc3a16912a0955d9bd2ab9d9bfb52 Package: libproc-waitstat-perl Version: 1.00-4 Installed-Size: 64 Maintainer: Roderick Schertler Architecture: all Depends: perl (>= 5.6.0-16), libipc-signal-perl Description-en: interpret and act on wait() status values This Perl module contains functions which are useful for interpreting and acting on wait() status values. Description-md5: ba774cbff5e3902aaee874b1aa3dad86 Tag: devel::lang:perl, devel::library, implemented-in::perl Section: perl Priority: optional Filename: pool/main/libp/libproc-waitstat-perl/libproc-waitstat-perl_1.00-4_all.deb Size: 7790 MD5sum: 3b303897cd712a78e54a2b4baf3370d6 SHA1: 68d3e6c7d3af38a8925f581afb4a6c64a6c0da16 SHA256: f93bb36227f2d694c3a51d992d4973301499cc6deed5c8ce2e93e66bf04d8868 Package: libproc-waitstat-perl Version: 1.00-4.2 Installed-Size: 22 Maintainer: Roderick Schertler Architecture: all Depends: perl, libipc-signal-perl Description-en: interpret and act on wait() status values This Perl module contains functions which are useful for interpreting and acting on wait() status values. Description-md5: ba774cbff5e3902aaee874b1aa3dad86 Tag: devel::lang:perl, devel::library, implemented-in::perl Section: perl Priority: optional Filename: pool/main/libp/libproc-waitstat-perl/libproc-waitstat-perl_1.00-4.2_all.deb Size: 7038 MD5sum: 83ed8dbb236d431df650c3b34320d7f5 SHA256: 5a7a348fc8c35e67a3af5c860c9ae9b7f2dcc3a16912a0955d9bd2ab9d9bfb52 Package: libproc-waitstat-perl Version: 1.00-4 Installed-Size: 64 Maintainer: Roderick Schertler Architecture: all Depends: perl (>= 5.6.0-16), libipc-signal-perl
Bug#862647: O: libtime-period-perl -- Perl library for testing if a time() is in a specific period
Package: wnpp The current maintainer of libtime-period-perl, Roderick Schertler, is apparently not active anymore. Therefore, I orphan this package now. Maintaining a package requires time and skills. Please only adopt this package if you will have enough time and attention to work on it. If you want to be the new maintainer, please see https://www.debian.org/devel/wnpp/#howto-o for detailed instructions how to adopt a package properly. Some information about this package: Package: libtime-period-perl Binary: libtime-period-perl Version: 1.20-8 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 3.0.5), perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.5.2 Format: 1.0 Files: eba73c648924487b1a2ba52d2846f816 641 libtime-period-perl_1.20-8.dsc 63b073af8ec96e7fa48801cd6fcccdd1 10711 libtime-period-perl_1.20.orig.tar.gz 9f1a1d0bc608d83f6ccb169d9f615283 2572 libtime-period-perl_1.20-8.diff.gz Checksums-Sha1: 149f4f8cbf2a16c0aca449f6e6d3d6f5b6eda887 641 libtime-period-perl_1.20-8.dsc 76f1141b01be6578e67efcda000f470c2ccc5ae6 2572 libtime-period-perl_1.20-8.diff.gz 98d324e9858debfa918d60892600650230a86e87 10711 libtime-period-perl_1.20.orig.tar.gz Checksums-Sha256: e0cc2d05b10ba36f39272bed73a7daac532cb6e3400234f387972b444afe03e7 641 libtime-period-perl_1.20-8.dsc 777f7329971ce8fcddcdf2add917bd3543fc82bdd2d7c5337dfc6a7ef54f1b4d 2572 libtime-period-perl_1.20-8.diff.gz 22b2d9e33e6d0a5fc2194aee03318807d58380e225c9c41092330298526a1e30 10711 libtime-period-perl_1.20.orig.tar.gz Directory: pool/main/libt/libtime-period-perl Priority: source Section: perl Package: libtime-period-perl Binary: libtime-period-perl Version: 1.20-8.2 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 9), perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.9.6 Format: 1.0 Files: e12b6f747e7dc97a2cf25e04dd3576ad 1744 libtime-period-perl_1.20-8.2.dsc 63b073af8ec96e7fa48801cd6fcccdd1 10711 libtime-period-perl_1.20.orig.tar.gz 311c56c8ad7105fd903b59d6a4aac9d5 1947 libtime-period-perl_1.20-8.2.diff.gz Checksums-Sha256: 9a9060351f511bef2f8a83cd7125699ec1d69407e53b1e5f548531415f8ed9b2 1744 libtime-period-perl_1.20-8.2.dsc 22b2d9e33e6d0a5fc2194aee03318807d58380e225c9c41092330298526a1e30 10711 libtime-period-perl_1.20.orig.tar.gz 83f8e9e76b8d120bc4d947474e7c77761508a810ac8e9fef995fdad5aaff0caf 1947 libtime-period-perl_1.20-8.2.diff.gz Package-List: libtime-period-perl deb perl optional arch=all Directory: pool/main/libt/libtime-period-perl Priority: source Section: perl Package: libtime-period-perl Version: 1.20-8.2 Installed-Size: 70 Maintainer: Roderick Schertler Architecture: all Depends: perl Description-en: Perl library for testing if a time() is in a specific period This Perl library provides a function which tells whether a specific time falls within a specified time period. Its syntax for specifying time periods allows you to test for conditions like "Monday to Friday, 9am till 5pm" and "on the second Tuesday of the month" and "between 4pm and 4:15pm" and "in the first half of each minute" and "in January of 1998". Description-md5: 65413d2cf8621141f0dc283bdadc299c Tag: devel::lang:perl, devel::library, implemented-in::perl, use::timekeeping Section: perl Priority: optional Filename: pool/main/libt/libtime-period-perl/libtime-period-perl_1.20-8.2_all.deb Size: 13182 MD5sum: 5d871047426f07794b8d64b8621a196c SHA256: 0a6573832fe8ca330fe2e18e48ac9802c5dbbc1a8bf202cb616697238d5a9251 Package: libtime-period-perl Version: 1.20-8 Installed-Size: 84 Maintainer: Roderick Schertler Architecture: all Depends: perl (>= 5.6.0-16) Description-en: Perl library for testing if a time() is in a specific period This Perl library provides a function which tells whether a specific time falls within a specified time period. Its syntax for specifying time periods allows you to test for conditions like "Monday to Friday, 9am till 5pm" and "on the second Tuesday of the month" and "between 4pm and 4:15pm" and "in the first half of each minute" and "in January of 1998". Description-md5: 65413d2cf8621141f0dc283bdadc299c Tag: devel::lang:perl, devel::library, implemented-in::perl, use::timekeeping Section: perl Priority: optional Filename: pool/main/libt/libtime-period-perl/libtime-period-perl_1.20-8_all.deb Size: 15152 MD5sum: bda9ccd126428e43b86d1a18c75f7b02 SHA1: 389d9f7241a2f2065f4c5091c9148b7f9ba233cc SHA256: 9df5e2ef5db144fe560cf5aeda2b4d9f8b53e53089b50ceda28c6d9c33b076b9 Package: libtime-period-perl Version: 1.20-8.2 Installed-Size: 70 Maintainer: Roderick Schertler Architecture: all Depends: perl Description-en: Perl library for testing if a time() is in a specific period This Perl library provides a function which tells whether a specific time falls within a specified time period. Its syntax for specifying time periods allows you to test for conditions like
Bug#862648: O: makepatch -- generate/apply patch files with more functionality than plain diff
Package: wnpp The current maintainer of makepatch, Roderick Schertler, is apparently not active anymore. Therefore, I orphan this package now. Maintaining a package requires time and skills. Please only adopt this package if you will have enough time and attention to work on it. If you want to be the new maintainer, please see https://www.debian.org/devel/wnpp/#howto-o for detailed instructions how to adopt a package properly. Some information about this package: Package: makepatch Binary: makepatch Version: 2.03-1 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 3.0.5) Build-Depends-Indep: perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.7.3 Format: 1.0 Files: e006dfe99dec3038f0fd8ab0caaef7b9 619 makepatch_2.03-1.dsc 172e8b5225ae0c92b07f349a862bdc66 28340 makepatch_2.03.orig.tar.gz a3cf9707fc2108c527547fa1b7907bea 3497 makepatch_2.03-1.diff.gz Checksums-Sha1: 1c5025d8c9336d2754e7ab1ebc8cf45278bccfe9 619 makepatch_2.03-1.dsc 1e1bf2089ffbe9991f505db8f8b6aa8e740c0c43 3497 makepatch_2.03-1.diff.gz 8be6dd9f7058da89d4a8a4ac854ce9c92d723318 28340 makepatch_2.03.orig.tar.gz Checksums-Sha256: 9725054b10a4ad82caa23438571e5f62fa8de13f7c4313c2bd5ee72925b96f4c 619 makepatch_2.03-1.dsc 82cd7a52abc2e0a758942812aa1b7ad80911e0642749782d19d7630acb07054d 3497 makepatch_2.03-1.diff.gz 34cad26a220d57dc242e4f0548d65f5f62465baea2a1f52cb335b23c429fb549 28340 makepatch_2.03.orig.tar.gz Directory: pool/main/m/makepatch Priority: source Section: utils Package: makepatch Binary: makepatch Version: 2.03-1.1 Maintainer: Roderick Schertler Build-Depends: debhelper (>= 3.0.5) Build-Depends-Indep: perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.7.3 Format: 1.0 Files: 64b10691d312a4ba1e00ddf09f599537 1809 makepatch_2.03-1.1.dsc 172e8b5225ae0c92b07f349a862bdc66 28340 makepatch_2.03.orig.tar.gz 446c1f7035a3258b4a3dcb6ab7465e6e 3603 makepatch_2.03-1.1.diff.gz Checksums-Sha256: 178e38108b613efbfa6d6568462f98bf7262eae5ec374d2e826ce1b2eb808732 1809 makepatch_2.03-1.1.dsc 34cad26a220d57dc242e4f0548d65f5f62465baea2a1f52cb335b23c429fb549 28340 makepatch_2.03.orig.tar.gz 191b6e7d9a982b546a318b61cb971a3d28f64143da421132d53d58c3c1714684 3603 makepatch_2.03-1.1.diff.gz Package-List: makepatch deb utils optional arch=all Directory: pool/main/m/makepatch Priority: source Section: utils Package: makepatch Version: 2.03-1.1 Installed-Size: 102 Maintainer: Roderick Schertler Architecture: all Depends: perl Description-en: generate/apply patch files with more functionality than plain diff This package contains a pair of programs, makepatch and applypatch, to assist in the generation and application of patch kits to synchronise source trees. . makepatch knows about common conventions for patch kits (it generates Index: and Prereq: lines, it patches patchlevel.h first, it can use manifest files), plus it prepends some shell code which if run will take care adding directories, removing files, setting execute mode on scripts, and the like. . applypatch uses some extra data supplied by makepatch to verify both the patch and the source directory before applying the patch. Afterwards it will clean up the directory tree plus fix up the permissions and even the timestamps on the patched files. Description-md5: b4caf25577e62a959089ee2261ad5afe Tag: devel::packaging, works-with-format::diff Section: utils Priority: optional Filename: pool/main/m/makepatch/makepatch_2.03-1.1_all.deb Size: 36654 MD5sum: 8728e9befda15df43c1532fffb1cd529 SHA256: 5a5cc2f72272050cca90d0391154a4568d4e8a8617096c25614e62f784499efb Package: makepatch Version: 2.03-1 Installed-Size: 148 Maintainer: Roderick Schertler Architecture: all Depends: perl Description-en: generate/apply patch files with more functionality than plain diff This package contains a pair of programs, makepatch and applypatch, to assist in the generation and application of patch kits to synchronise source trees. . makepatch knows about common conventions for patch kits (it generates Index: and Prereq: lines, it patches patchlevel.h first, it can use manifest files), plus it prepends some shell code which if run will take care adding directories, removing files, setting execute mode on scripts, and the like. . applypatch uses some extra data supplied by makepatch to verify both the patch and the source directory before applying the patch. Afterwards it will clean up the directory tree plus fix up the permissions and even the timestamps on the patched files. Description-md5: b4caf25577e62a959089ee2261ad5afe Tag: devel::packaging, works-with-format::diff Section: utils Priority: optional Filename: pool/main/m/makepatch/makepatch_2.03-1_all.deb Size: 39954 MD5sum: 72f72b7a15c307bd39fa4cb07543baac SHA1: 4a8f92c64b6813e32e8f977607d19b23c7a86295 SHA256: 58517c7e3158364a58c117553dd8d00e04cabab269e2fcc1d03a2560bbf2d8fe Package: makepatch
Bug#862651: btrfs-progs: btrfs quota disable leads to kernel panic. to old?
Package: btrfs-progs Version: 4.9.1-1 Severity: important Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? * What exactly did you do (or not do) that was effective (or ineffective)? * What was the outcome of this action? * What outcome did you expect instead? *** End of the template - remove these template lines *** i activated quota for testing-reasons (to learn how quota works). I had installed btrfs-progs from stretch (v4.7) and kernel 4.9 and 4.10.1 from experimental. I got several kernel-hung and kernel-panic since activating quota. Now i wanted to install the appropriate version for my kernel 4.10, but the btrfs-progs-version in sid is to old. In this conversation https://www.spinics.net/lists/linux-btrfs/msg62508.html i read, that v9 has bad issues on quota, reported similar problems than me. When i try to deactivate quota with btrfs quota deactivate / i get a kernel panic, deactivating is not working. With quota, the system freezes spontaniously. Maybe on write actions. But i couldn't find, if this is exactly the reason. Please update the version in sid or experimental to the appropriate kernel-version. jakob -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (990, 'testing'), (800, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.10.0-trunk-amd64 (SMP w/4 CPU cores) Locale: LANG=de_AT.UTF-8, LC_CTYPE=de_AT.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages btrfs-progs depends on: ii e2fslibs1.43.4-2 ii libblkid1 2.29.2-1 ii libc6 2.24-10 ii libcomerr2 1.43.4-2 ii liblzo2-2 2.08-1.2+b2 ii libuuid12.29.2-1 ii zlib1g 1:1.2.8.dfsg-5 btrfs-progs recommends no packages. Versions of packages btrfs-progs suggests: pn duperemove -- no debconf information
Bug#862653: CVE-2017-8765
package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded: https://github.com/ImageMagick/ImageMagick/issues/466 The function named ReadICONImage in coders\icon.c in ImageMagick 7.0.5-5 has a memory leak vulnerability which can cause memory exhaustion via a crafted ICON file.
Bug#862659: libparmetis-dev: misses dependency on libmetis-dev
Package: libparmetis-dev Version: 4.0.3-4+b4 Severity: important /usr/include/parmetis.h has `#include `, but the libparmetis-dev binary package has no dependency on a package providing that include (libmetis-dev). Ansgar -- System Information: Debian Release: 9.0 Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores) Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) Versions of packages libparmetis-dev depends on: ii libparmetis4.0 4.0.3-4+b4 ii mpi-default-dev 1.8 libparmetis-dev recommends no packages. Versions of packages libparmetis-dev suggests: pn parmetis-doc -- no debconf information
Bug#853086: livestreamer: Can't play twitch streams: Client Error: Bad Request for url
Per the comments at https://github.com/chrippa/livestreamer/issues/1478#issuecomment-247242827 and https://github.com/chrippa/livestreamer/issues/1478#issuecomment-247392244 , the expected solution for this is via livestreamer's '--http-header' option, which can be provided in one of two ways. On the livestreamer command line, add the option: --http-header=Client-ID=ewvlchtxgqq88ru9gmfp1gmyt6h2b93 Or in ~/.livestreamerrc, add a line reading http-header=Client-ID=ewvlchtxgqq88ru9gmfp1gmyt6h2b93 (Other Client-IDs could potentially work; that one is the ID apparently assigned to livestreamer itself. People have reported success using the ID assigned to the Twitch Web-based player, but that seems less appropriate.) Whether having this in the config file would cause any problems for streaming from other sites I don't know, but it seems to make things work fine for Twitch, with the livestreamer version currently available in testing. There's also a patch in that thread which looks as if it should both make the Client-ID potentially configurable (without exposing a configuration interface for it, though) and use the ID automatically. I haven't tested with it, although I wouldn't be surprised if it or a derivative had been adopted by the 'streamlink' fork. -- The Wanderer The reasonable man adapts himself to the world; the unreasonable one persists in trying to adapt the world to himself. Therefore all progress depends on the unreasonable man. -- George Bernard Shaw signature.asc Description: OpenPGP digital signature
Bug#862569: unblock: bind9/1:9.10.3.dfsg.P4-12.3
Salvatore Bonaccorso(2017-05-14): > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > > Hi > > Please unblock package bind9 > > The upload fixes three issues: > > +bind9 (1:9.10.3.dfsg.P4-12.3) unstable; urgency=high > + > + * Non-maintainer upload. > + * Dns64 with "break-dnssec yes;" can result in a assertion failure > +(CVE-2017-3136) (Closes: #860224) > + * Some chaining (CNAME or DNAME) responses to upstream queries could > trigger > +assertion failures (CVE-2017-3137) (Closes: #860225) > + * 'rndc ""' could trigger a assertion failure in named (CVE-2017-3138) > +(Closes: #860226) > + > + -- Salvatore Bonaccorso Sun, 07 May 2017 15:22:46 +0200 > > of which CVE-2017-3137 should be considered RC (and filled as such), > the other two are minor, but were included as well in the stable > update released as DSA-3854-1. > > unblock bind9/1:9.10.3.dfsg.P4-12.3 > > Attached is the full debdiff agains the current version in testing. As usual, no objections since bind9 udebs are only used on non-Linux architectures. KiBi. signature.asc Description: Digital signature
Bug#858510: ITP: ddcutil -- control monitor settings
Hi Sanford, On Wed, 3 May 2017 08:48:42 -0400, Sanford Rockowitzwrote: > I responded to your email by replying to the bug. Not sure if that was > the right way. On the chance you didn't see my reply I'm forwarding the > message to you directly. Thanks — unfortunately the Debian BTS doesn’t forward replies, so I didn’t see your original reply. (The emails *you* receive should be correctly setup with the appropriate Reply-To though, so replying with the defaults should work.) > I installed the ddcci driver in my SuSE environment that uses the > nouveau and i2c-dev drivers. Directory /sys/bus/ddcci is created, but > directory /sys/bus/ddcci/devices is empty. As I read the code ddcci > requires i2c-dev, which isn't present with a proprietary video driver > such as nvidia or fglrx, so there's no point trying to use it in those > environments. Yes, that’s correct. In Debian we tend to only support the free drivers though (with best-effort on the proprietary NVIDIA drivers which are packaged in non-free). The fglrx driver can’t be used any more so that’s a non-issue... I’m using the ddcci module on Intel GPUs and it works very well there. > I'd very much appreciate your help as co-maintainer and sponsor. This > is my first attempt to submit a package to debian. ddcutil has been > packaged on OBS and Launchpad for some time now, but I spent hours this > morning lost in the proverbial "maze of twisty little passages, all > alike", trying to figure out how to submit the package. I'm sure there's > a lot of cruddy details to be fixed up. Can you point me to whichever repo you consider to have the current packaging? I’ll take a look. Would you like to take care of the packaging, and have me review it, or would you like me to take a more hands-on approach and fix things up myself? (Assuming things need fixing of course.) > The ddcci driver is an interesting project. It hides the gory details > of building and sending DDC packets. But there also seems to be a lot > of missing functionality: e.g. EDID reads on slave address x50, only a > few DDC commands are supported.The ddccii driver implementation of > the capabilities inquiry returns an error if any write/read sub-exchange > fails. In my experience with marginal monitors, you need retry logic > for both the individual sub-exchanges and the entire meta exchange, what > ddcutil calls multi-part-exchanges - otherwise you just don't get lucky. All that is good to know. AFAICT the ddcci module is just a first stab currently, I’m sure the author would welcome help too ;-). The killer feature for me is that it integrates with the backlight support, so users can control their monitors’ backlights using their desktop environment’s features (e.g. the brightness slider in GNOME), including automatic features with light sensors. > Because of the early experimentation, the layer that reads and writes > I2C packets is designed to be swapped, so it should be possible to use > ddcci as an alternative strategy. However, ddcutil would still need to > use the i2c-dev interface for things the ddcci driver does not do, and > I'd prefer not to add a dependency on a driver that can't be relied on > to always be there. > > Given all these issues, I think the best relationship between ddcutil > and the ddcci driver would be to use ddcutil as a testing framework for > the driver. That sounds like an excellent plan (and I guess your follow-up email is the result, right?). Regards, Stephen pgp_tXAPXu0hQ.pgp Description: OpenPGP digital signature
Bug#862400: several bios updates exist since 2007
(please keep me in CC) On Sat, 13 May 2017 06:16:44 +0200 franckrwrote: > Hi Arturo, > > I cannot help for kernel, however, and you probably already know it: > Several bios updates became available since 10/04/2007 version. > Did you consider them ? (ie checking release logs) > Will you try ? > Sure, we are in the way of updating the BIOS. But the question remains, is this some kind of kernel regression?
Bug#862657: bridge-utils: shutting down a bridge causes eth0 to shutdown even while still in use for vlans
Package: bridge-utils Version: 1.5-9 Severity: important We have the following setup: br0 connected to eth0.6 (vlan 6) br1 connected to eth0.7 (vlan 7) br2 connected to eth0 When shutting down br2 (ifdown br2), it takes down eth0, thereby also shutting down the link for eth0.6 and eth0.7 and disconnecting the machine. This seems to me like undesirable, eth0.6 and eth0.7 are still in use and should stay up. Can it be changed that eth0 does not go down when it is still in used in other places? If not, is there a way where I could shut down br2 without breaking the rest of the setup? Thanks! Sebastian -- System Information: Debian Release: 8.6 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 3.16.0-4-amd64 (SMP w/12 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages bridge-utils depends on: ii libc6 2.19-18+deb8u6 bridge-utils recommends no packages. Versions of packages bridge-utils suggests: ii ifupdown 0.7.53.1 -- no debconf information
Bug#862658: Eye of mate not showing images >= 12 megapixel
Package: eom Version: 1.16.0-2 Severity: important Tags: upstream Dear Maintainer, Steps to reproduce: Create an image in gimp, - size 4608x3456 - export it as a jpg file - Open it with eye of mate (eom) -> instead of the image, a gray area is shown. hope this report may be helpful Daniel Auth *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? * What exactly did you do (or not do) that was effective (or ineffective)? * What was the outcome of this action? * What outcome did you expect instead? *** End of the template - remove these template lines *** -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 4.9.0-2-amd64 (SMP w/2 CPU cores) Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages eom depends on: ii dconf-gsettings-backend [gsettings-backend] 0.26.0-2+b1 ii eom-common 1.16.0-2 ii libatk1.0-0 2.22.0-1 ii libc62.24-10 ii libcairo-gobject21.14.8-1 ii libcairo21.14.8-1 ii libdbus-1-3 1.10.18-1 ii libdbus-glib-1-2 0.108-2 ii libexempi3 2.4.1-1 ii libexif120.6.21-2+b2 ii libgdk-pixbuf2.0-0 2.36.5-2 ii libgirepository-1.0-11.50.0-1+b1 ii libgl1-mesa-glx 13.0.6-1+b2 ii libglib2.0-0 2.50.3-2 ii libgtk-3-0 3.22.11-1 ii libjpeg62-turbo 1:1.5.1-2 ii liblcms2-2 2.8-4 ii libmate-desktop-2-17 1.16.1-1 ii libpango-1.0-0 1.40.5-1 ii libpangocairo-1.0-0 1.40.5-1 ii librsvg2-2 2.40.16-1+b1 ii librsvg2-common 2.40.16-1+b1 ii libstartup-notification0 0.12-4+b2 ii libx11-6 2:1.6.4-3 ii libxml2 2.9.4+dfsg1-2.2 ii mate-desktop-common 1.16.1-1 ii shared-mime-info 1.8-1 ii zlib1g 1:1.2.8.dfsg-5 eom recommends no packages. eom suggests no packages. -- no debconf information
Bug#862006: hexchat: segfault an /server connect
Hi there! On Sun, May 07, 2017 at 01:48:00PM +0200, treaki wrote: > wau, that was unexpected, i just tried to connect to some server and then it > was gone for good :( > it kept crashing and crashing, looks like i am unable to use this server Does this mean you can connect to other servers?? > please fix this serious issue as soon as possible! I believe this is the same as https://bugs.debian.org/779892 which I believe to be fixed by https://anonscm.debian.org/git/collab-maint/hexchat.git/commit/?id=e3f2f90b3e7c13621343cebadacf7ddaf2e042d0 Now, you are right, that bug ought to be fixed in stable too. Though, as back then I wasn't able to reproduce it myself for some weird reason, I'd like to ask you to try and see whether the package you can find in jessie-backport present the same issue. The traceback you reported was without the debug symbol installed (that well, aren't available in jessie, as we introduced them in stretch… so not really anything you can do about it), so there are not many information available, but at least it seem to crash "near" that point. If you could try again, I believe a `bt full` (within gdb) would be more helpful. > thanks a lot in advance Thank you for reporting this! -- regards, Mattia Rizzolo GPG Key: 66AE 2B4A FCCF 3F52 DA18 4D18 4B04 3FCD B944 4540 .''`. more about me: https://mapreri.org : :' : Launchpad user: https://launchpad.net/~mapreri `. `'` Debian QA page: https://qa.debian.org/developer.php?login=mattia `- signature.asc Description: PGP signature
Bug#862660: unblock: smb4k/1.2.1-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Dear release team, I've just uploaded smb4k in order to fix CVE-2017-8849 (#862505). It has already built in all the release architectures, you find the corresponding debdiff attached to this report. Happy hacking, Please unblock package smb4k unblock smb4k/1.2.1-2 [1]: https://security-tracker.debian.org/tracker/CVE-2017-8849 -- System Information: Debian Release: 9.0 APT prefers unstable-debug APT policy: (500, 'unstable-debug'), (500, 'testing-debug'), (500, 'testing'), (500, 'stable'), (50, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386, armhf Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Init: systemd (via /run/systemd/system) diff -Nru smb4k-1.2.1/debian/changelog smb4k-1.2.1/debian/changelog --- smb4k-1.2.1/debian/changelog2016-03-25 16:26:46.0 +0100 +++ smb4k-1.2.1/debian/changelog2017-05-15 12:18:34.0 +0200 @@ -1,3 +1,11 @@ +smb4k (1.2.1-2) unstable; urgency=medium + + * Team upload. + * Cherry pick "Find the mount/umount commands in the helper" +This fixes CVE-2017-8849 (Closes: 862505) + + -- Maximiliano CuriaMon, 15 May 2017 12:18:34 +0200 + smb4k (1.2.1-1) unstable; urgency=medium * Team upload. diff -Nru smb4k-1.2.1/debian/patches/Find-the-mount-umount-commands-in-the-helper.patch smb4k-1.2.1/debian/patches/Find-the-mount-umount-commands-in-the-helper.patch --- smb4k-1.2.1/debian/patches/Find-the-mount-umount-commands-in-the-helper.patch 1970-01-01 01:00:00.0 +0100 +++ smb4k-1.2.1/debian/patches/Find-the-mount-umount-commands-in-the-helper.patch 2017-05-15 12:18:34.0 +0200 @@ -0,0 +1,362 @@ +From: Alexander Reinholdt +Date: Wed, 10 May 2017 10:23:34 +0200 +Subject: Find the mount/umount commands in the helper + +Instead of trusting what we get passed in +CVE-2017-8849 +--- + core/smb4kglobal.cpp | 65 +++- + core/smb4kglobal.h | 16 - + core/smb4kmounter_p.cpp | 78 + helpers/CMakeLists.txt | 6 +++- + helpers/smb4kmounthelper.cpp | 51 +++-- + 5 files changed, 139 insertions(+), 77 deletions(-) + +diff --git a/core/smb4kglobal.cpp b/core/smb4kglobal.cpp +index 172016f..818a78a 100644 +--- a/core/smb4kglobal.cpp b/core/smb4kglobal.cpp +@@ -2,7 +2,7 @@ + smb4kglobal - This is the global namespace for Smb4K. + --- + begin: Sa Apr 2 2005 +-copyright: (C) 2005-2014 by Alexander Reinholdt ++copyright: (C) 2005-2017 by Alexander Reinholdt + email: alexander.reinho...@kdemail.net + ***/ + +@@ -851,3 +851,66 @@ QStringList Smb4KGlobal::whitelistedMountArguments() + #endif + + ++const QString Smb4KGlobal::findMountExecutable() ++{ ++ QString mount; ++ QStringList paths; ++ paths << "/bin"; ++ paths << "/sbin"; ++ paths << "/usr/bin"; ++ paths << "/usr/sbin"; ++ paths << "/usr/local/bin"; ++ paths << "/usr/local/sbin"; ++ ++ for (int i = 0; i < paths.size(); ++i) ++ { ++#if defined(Q_OS_LINUX) ++mount = KGlobal::dirs()->findExe("mount.cifs", paths.at(i)); ++#elif defined(Q_OS_FREEBSD) || defined(Q_OS_NETBSD) ++mount = KGlobal::dirs()->findExe("mount_smbfs", paths.at(i)); ++#endif ++ ++if (!mount.isEmpty()) ++{ ++ break; ++} ++else ++{ ++ continue; ++} ++ } ++ ++ return mount; ++} ++ ++ ++const QString Smb4KGlobal::findUmountExecutable() ++{ ++ // Find the umount program. ++ QString umount; ++ QStringList paths; ++ paths << "/bin"; ++ paths << "/sbin"; ++ paths << "/usr/bin"; ++ paths << "/usr/sbin"; ++ paths << "/usr/local/bin"; ++ paths << "/usr/local/sbin"; ++ ++ for ( int i = 0; i < paths.size(); ++i ) ++ { ++umount = KGlobal::dirs()->findExe("umount", paths.at(i)); ++ ++if (!umount.isEmpty()) ++{ ++ break; ++} ++else ++{ ++ continue; ++} ++ } ++ ++ return umount; ++} ++ ++ +diff --git a/core/smb4kglobal.h b/core/smb4kglobal.h +index db1805b..0ef377d 100644 +--- a/core/smb4kglobal.h b/core/smb4kglobal.h +@@ -2,7 +2,7 @@ + smb4kglobal - This is the global namespace for Smb4K. + --- + begin: Sa Apr 2 2005 +-copyright: (C) 2005-2014 by Alexander Reinholdt ++copyright: (C) 2005-2017 by Alexander Reinholdt + email: alexander.reinho...@kdemail.net + ***/ + +@@ -455,6 +455,20 @@
Bug#862661: python3-proboscis: packaging broken
Package: python3-proboscis Version: 1.2.6.0-2 Severity: important Dear Maintainers, The packaging of python3-proboscis is broken, see below: $ python3 Python 3.5.3 (default, Jan 19 2017, 14:11:04) [GCC 6.3.0 20170118] on linux Type "help", "copyright", "credits" or "license" for more information. >>> import proboscis Traceback (most recent call last): File "", line 1, in File "/usr/lib/python3/dist-packages/proboscis/__init__.py", line 27, in from proboscis.core import ProboscisTestMethodClassNotDecorated File "/usr/lib/python3/dist-packages/proboscis/core.py", line 23, in from proboscis import compatability File "/usr/lib/python3/dist-packages/proboscis/compatability/__init__.py", line 21, in from proboscis.compatability.exceptions_2_6 import capture_exception ImportError: No module named 'proboscis.compatability.exceptions_2_6' In debian/rules, the files "proboscis/compatability/*2*.py" are removed for python3, which is wrong. === PROPOSED PATCH BEGIN === diff --git a/debian/rules b/debian/rules index 9955037..101426c 100755 --- a/debian/rules +++ b/debian/rules @@ -16,7 +16,7 @@ override_dh_auto_install: set -e && for pyvers in $(PYTHON3S); do \ python$$pyvers setup.py install --install-layout=deb \ --root $(CURDIR)/debian/python3-proboscis; \ - rm $(CURDIR)/debian/python3-proboscis/usr/lib/python3/dist-packages/proboscis/compatability/*2*.py ; \ + rm $(CURDIR)/debian/python3-proboscis/usr/lib/python3/dist-packages/proboscis/compatability/*2_5*.py ; \ done === PROPOSED PATCH END === Alternatively remove the complete line "rm ...". -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages python3-proboscis depends on: ii dpkg 1.18.23 pn python3:any python3-proboscis recommends no packages. python3-proboscis suggests no packages. -- no debconf information With best regards, Philippe Goetz Siemens AG Building Technologies Division Solution and Service Portfolio Danger Management System BT SSP SOL R CI DMS Siemens Aktiengesellschaft: Chairman of the Supervisory Board: Gerhard Cromme; Managing Board: Joe Kaeser, Chairman, President and Chief Executive Officer; Roland Busch, Lisa Davis, Klaus Helmrich, Janina Kugel, Cedrik Neike, Michael Sen, Ralf P. Thomas; Registered offices: Berlin and Munich, Germany; Commercial registries: Berlin Charlottenburg, HRB 12300, Munich, HRB 6684; WEEE-Reg.-No. DE 23691322
Bug#862662: liblensfun-dev: liblensfun causing segfault in ufraw
Package: liblensfun-dev Version: 0.3.2-3 Severity: normal Dear Maintainer, on converting a DJI-Drone DNG to TIFF with ufraw-batch (0.22) i get an segfault and the resulting tiff has a size of 8 bytes. After uncommenting the lenfun-lines in ufraws config file, the dng file will processed successfully. I have ufraw 0.22 compiled on an Ubuntu 16.04.2 LTS against liblensfun-dev (0.2.8-3). On this system no segfault occurs. After this try i had uninstalled liblensfun and ufraw and had compiled liblensfun 0.2.83 und ufraw 0.22 from source. In this constellation i get also an segfault, but the resulting tiff file is readable and have an appropriated size. In opposite with the maintained packages segfault will be logged es segfault in liblensfun, not in ufraw-batch. -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
Bug#862663: amavis shoud suggest unrar-free instead of unrar
Package: amavisd-new Version: 1:2.10.1-4 Severity: minor Dear maintainer, amavis currently suggest installation on unrar, which is unavailable in Debian. On startup, log file says: "No ext program for .rar, tried: unrar-free" which seems to indicate that unrar-free is supported. It should be added in the dependencies as a suggests:, possibly replacing unrar, or at least as an alternative. Thank you for taking care of amavis Cheers -- System Information: Debian Release: 8.8 APT prefers stable APT policy: (990, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores) Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
Bug#862332: dblatex: tags processed by hyphen-encode can sometimes drop meaningful spaces
Hello, On Sat, 13 May 2017, Andreas Hoenen wrote: > Do you have a minimal example exposing the problem? That would help in > evaluating it. Yes. Attached (test.xml the source, test.pdf the result of "dblatex test.xml"). As you see we lost spaces in and . All tags processed by inline.monoseq / inline.sansseq are affected. > However as you have more pressing needs, feel free to contact the > release managers about a patch targeted for Stretch. (Honestly, if I > were a release manager, I would only accept dblatex patches that fix > severe problems in the Stretch documentation. But I don't have any > insights in the backstage of the Debian release process, thus my > assessment might be far-fetched). Should you receive any positive > indication from the release team, there are two possibilities: I think that they asked to not do "pre-approval upload request" this time around... so it would be test to first prepare the fix in unstable and then to file the unblock request. > (1) I could create a patched release version 0.3.9-2, but would need you > to sponsor it. I can certainly sponsor your upload. > Please don't take my reluctance amiss, I just want to let the Stretch > release happen as soon as possible. Me too. :) Cheers, -- Raphaël Hertzog ◈ Debian Developer Support Debian LTS: https://www.freexian.com/services/debian-lts.html Learn to master Debian: https://debian-handbook.info/get/ test.xml Description: XML document test.pdf Description: Adobe PDF document
Bug#862664: clvm: invalid path to cmirrord in systemd lvm2-cmirrord.service file
Package: clvm Version: 2.02.168-2 Severity: normal Dear Maintainer, In a service file lvm2-cmirrord.service there is wrong path for a program execution; ExecStart=/sbin/cmirrord insted of ExecStart=/usr/sbin/cmirrord Starting the service file causes an error; lvm2-cmirrord.service: Failed at step EXEC spawning /sbin/cmirrord: No such file or directory Thanks, Matija -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 4.9.0-2-amd64 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages clvm depends on: ii dlm-controld 4.0.7-1 ii init-system-helpers 1.48 ii libblkid1 2.29.2-1 ii libc6 2.24-10 ii libcmap4 2.4.2-3 ii libcpg4 2.4.2-3 ii libdevmapper-event1.02.1 2:1.02.137-2 ii libdevmapper1.02.12:1.02.137-2 ii libdlm3 4.0.7-1 ii libquorum52.4.2-3 ii libudev1 232-23 ii lvm2 2.02.168-2 clvm recommends no packages. Versions of packages clvm suggests: pn pacemaker pn resource-agents -- no debconf information
Bug#861754: libpll: FTBFS on non-x86: x86intrin.h: No such file or directory
Andreas Tillewrites: > Thanks, patch updated, pending upload after discussing #861755 with > upstream. Alas, non-x86 builds are still failing, with the immediate cause of failure being either an uncompilable cpuid call or (in the case of powerpc[spe] and ppc64[el]) the use of x86-specific compiler flags for certain files. Please limit all of the above to x86 architectures. Thanks! -- Aaron M. Ucko, KB1CJC (amu at alum.mit.edu, ucko at debian.org) http://www.mit.edu/~amu/ | http://stuff.mit.edu/cgi/finger/?a...@monk.mit.edu
Bug#862591: libvte-2.91-0: xfce4-terminal crashes when dumping a lot of text
Hello Brian Warner, Thanks for your bug report. Would like to add a few notes besides what Michael already said... See below. On Sun, May 14, 2017 at 01:57:32PM -0700, Brian Warner wrote: > Package: libvte-2.91-0 > Version: 0.46.1-1 > Severity: grave > > There seems to be a bug in sid's libvte, such that dumping a large > amount of text to stdout in a short period of time causes the terminal > program to crash. "cat" of a file with 1MB of the letter "a" is > sufficient to reproduce it. fwiw, I'm not able to reprocude this on amd64 with gnome-terminal. > > I'm assigning this to libvte because I was able to crash xfce4-terminal, > lilyterm, and termit this way, so it's clearly not specific to any one > terminal program. I'm marking it "grave" because losing a terminal is > pretty harsh.. any programs you've spawned from there (emacs, web > browsers) abruptly exit too. > > I'm running this on an ARM64 chromebook (an Acer R13), which might be an > unusual platform, just in case that makes a difference. > > I was able to get a stack trace by building vte2.91-0.46.1 and > xfce4-terminal-0.8.4 locally with debug symbols turned on. It looks like > this: > > Thread 1 "xfce4-terminal" received signal SIGABRT, Aborted. > __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51 > 51../sysdeps/unix/sysv/linux/raise.c: No such file or directory. > #0 0x007cb52229fc in __GI_raise (sig=sig@entry=6) at > ../sysdeps/unix/sysv/linux/raise.c:51 > #1 0x007cb5223df4 in __GI_abort () at abort.c:89 > #2 0x007cb53dc59c in g_assertion_message > (domain=domain@entry=0x7cb5fa3bb8 "Vte", file=file@entry=0x7cb5fac250 > "/home/warner/stuff/debian/vte2.91-0.46.1/./src/vtestream-file.h", > line=line@entry=790, func=func@entry=0x7cb5fac098 > <_vte_boa_uncompress::__PRETTY_FUNCTION__> "unsigned int > _vte_boa_uncompress(char*, unsigned int, const char*, unsigned int)", > message=message@entry=0x5ccf97f720 "assertion failed (z_ret == Z_OK): > (4294967293 == 0)") at ././glib/gtestutils.c:2432 [...] In other words, this assertion fails: http://sources.debian.net/src/vte2.91/0.46.1-1/src/vtestream-file.h/#L790 z_ret = uncompress ((Bytef *) dst, _ulongf, (const Bytef *) src, srclen); g_assert_cmpuint (z_ret, ==, Z_OK); Would be great if you could confirm by posting the asserting message that the application outputs when crashing. Seems to me like you need to seek the answer to why uncompress fails in the zlib library (Possibly vte could handle the error more gracefully but probably a good idea to find out why zlib uncompress fails first.) HTH. Regards, Andreas Henriksson
Bug#862570: libmenu-cache: menu-cached socket may be blocked by another user.
Control: retitle -1 menu-cache: CVE-2017-8933: socket may be blocked by another user Hi This issue has been assigned CVE-2017-8933. Regards, Salvatore