Bug#769746: marked as done (RM: lletters-media/0.1.9a-5)
Your message dated Sun, 16 Nov 2014 10:09:14 +0100 with message-id 546869ba.5080...@thykier.net and subject line Re: Bug#769746: RM: lletters-media/0.1.9a-5 has caused the Debian Bug report #769746, regarding RM: lletters-media/0.1.9a-5 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769746: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769746 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: rm Hi! Please remove lletters-media from jessie, it's a data package for lletters which is not a part of jessie, with nil chances of being introduced. ---End Message--- ---BeginMessage--- On 2014-11-16 04:04, Adam Borowski wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: rm Hi! Please remove lletters-media from jessie, it's a data package for lletters which is not a part of jessie, with nil chances of being introduced. Removal hint added. ~Niels---End Message---
Bug#769676: marked as done (unblock: dateutils/0.3.1-1.1)
Your message dated Sun, 16 Nov 2014 10:13:36 +0100 with message-id 54686ac0.70...@thykier.net and subject line Re: Bug#769676: unblock: dateutils/0.3.1-1.1 has caused the Debian Bug report #769676, regarding unblock: dateutils/0.3.1-1.1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769676: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769676 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package dateutils It fix two RC bugs: dateutils (0.3.1-1.1) unstable; urgency=medium [ Bastien Roucariès ] * Non-maintainer upload * Bug fix: please do not use -march=native, thanks to James Cowgill (Closes: #768995). * Bug fix: Tests fails with LC_* = fr_FR.UTF-8, thanks to Michael Bonfils (Closes: #769669). diff -Nru dateutils-0.3.1/debian/changelog dateutils-0.3.1/debian/changelog --- dateutils-0.3.1/debian/changelog2014-10-15 05:26:45.0 +0200 +++ dateutils-0.3.1/debian/changelog2014-11-15 14:55:39.0 +0100 @@ -1,3 +1,14 @@ +dateutils (0.3.1-1.1) unstable; urgency=medium + + [ Bastien Roucariès ] + * Non-maintainer upload + * Bug fix: please do not use -march=native, thanks to James Cowgill +(Closes: #768995). + * Bug fix: Tests fails with LC_* = fr_FR.UTF-8, thanks to Michael +Bonfils (Closes: #769669). + + -- Bastien Roucariès roucaries.bastien+deb...@gmail.com Sat, 15 Nov 2014 14:55:09 +0100 + dateutils (0.3.1-1) unstable; urgency=medium * New upstream release diff -Nru dateutils-0.3.1/debian/patches/0001-do-not-use-march-native-compiler-flags.diff dateutils-0.3.1/debian/patches/0001-do-not-use-march-native-compiler-flags.diff --- dateutils-0.3.1/debian/patches/0001-do-not-use-march-native-compiler-flags.diff 1970-01-01 01:00:00.0 +0100 +++ dateutils-0.3.1/debian/patches/0001-do-not-use-march-native-compiler-flags.diff 2014-11-15 13:10:14.0 +0100 @@ -0,0 +1,29 @@ +Subject: Do not use march=native that lead to segv +author: Bastien ROUCARIÈS roucariès.bastien+deb...@gmail.com + +bug-debian: https://bugs.debian.org/768995 +forwarded: not-needed +Index: dateutils-0.3.1/m4/sxe-compiler.m4 +=== +--- dateutils-0.3.1.orig/m4/sxe-compiler.m4 dateutils-0.3.1/m4/sxe-compiler.m4 +@@ -383,12 +383,13 @@ AC_DEFUN([SXE_OPTIFLAGS], [dnl + ## don't bother + ;; + (*) +- SXE_CHECK_COMPILER_FLAG([-xHost], [ +- optiflags=${optiflags} -xHost], [ +- ## non-icc +- SXE_CHECK_COMPILER_FLAG([-mtune=native -march=native], [ +- optiflags=${optiflags} -mtune=native -march=native]) +- ]) ++ # do not mtune ++ #SXE_CHECK_COMPILER_FLAG([-xHost], [ ++ # optiflags=${optiflags} -xHost], [ ++ # ## non-icc ++ # SXE_CHECK_COMPILER_FLAG([-mtune=native -march=native], [ ++ # optiflags=${optiflags} -mtune=native -march=native]) ++ #]) + ;; + esac + ])dnl SXE_OPTIFLAGS diff -Nru dateutils-0.3.1/debian/patches/series dateutils-0.3.1/debian/patches/series --- dateutils-0.3.1/debian/patches/series 1970-01-01 01:00:00.0 +0100 +++ dateutils-0.3.1/debian/patches/series 2014-11-15 13:06:18.0 +0100 @@ -0,0 +1 @@ +0001-do-not-use-march-native-compiler-flags.diff diff -Nru dateutils-0.3.1/debian/rules dateutils-0.3.1/debian/rules --- dateutils-0.3.1/debian/rules2014-10-15 05:47:05.0 +0200 +++ dateutils-0.3.1/debian/rules2014-11-15 14:13:22.0 +0100 @@ -15,6 +15,9 @@ override_dh_auto_configure: dh_auto_configure -- --program-prefix='dateutils.' +override_dh_auto_test: + LC_ALL=C dh_auto_test + override_dh_auto_clean: [ -f Makefile ] dh_auto_clean || true rm -f info/dadd.manu info/dconv.man info/ddiff.mand info/dgrep.man \ unblock dateutils/0.3.1-1.1 -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (900, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16-2-amd64 (SMP w/8 CPU cores) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- On 2014-11-15 16:00, bastien ROUCARIES wrote: Package: release.debian.org Severity:
Bug#769675: marked as done (unblock: gnucash/1:2.6.4-3)
Your message dated Sun, 16 Nov 2014 10:17:17 +0100 with message-id 54686b9d.8080...@thykier.net and subject line Re: Bug#769675: unblock: gnucash/1:2.6.4-3 has caused the Debian Bug report #769675, regarding unblock: gnucash/1:2.6.4-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769675: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769675 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Dear Release Team, Please unblock gnucash 1:2.6.4-3. Changelog is: gnucash (1:2.6.4-3) unstable; urgency=medium * barchart.patch: incorporate upstream fix for stacked barchart graphs. (Closes: #767735) -- Sébastien Villemot sebast...@debian.org Sat, 15 Nov 2014 14:59:46 +0100 The debdiff is attached. Since this is a patch to a patch, I also attach the corresponding interdiff. unblock gnucash/1:2.6.4-3 Thanks, -- .''`.Sébastien Villemot : :' :Debian Developer `. `' http://www.dynare.org/sebastien `- GPG Key: 4096R/381A7594 diff -Nru gnucash-2.6.4/debian/changelog gnucash-2.6.4/debian/changelog --- gnucash-2.6.4/debian/changelog 2014-10-18 00:03:22.0 +0200 +++ gnucash-2.6.4/debian/changelog 2014-11-15 14:59:46.0 +0100 @@ -1,3 +1,10 @@ +gnucash (1:2.6.4-3) unstable; urgency=medium + + * barchart.patch: incorporate upstream fix for stacked barchart graphs. +(Closes: #767735) + + -- Sébastien Villemot sebast...@debian.org Sat, 15 Nov 2014 14:59:46 +0100 + gnucash (1:2.6.4-2) unstable; urgency=medium * crash-missing-comma.patch: new patch, fixes random crashes. diff -Nru gnucash-2.6.4/debian/patches/barchart.patch gnucash-2.6.4/debian/patches/barchart.patch --- gnucash-2.6.4/debian/patches/barchart.patch 2014-10-18 00:02:52.0 +0200 +++ gnucash-2.6.4/debian/patches/barchart.patch 2014-11-15 14:54:52.0 +0100 @@ -3,13 +3,30 @@ https://github.com/Gnucash/gnucash/commit/96289823e5a7b7904bf9e64fe94bcb1dbcb0c7ee https://github.com/Gnucash/gnucash/commit/6d0a3707e1f6cc0d8ca00a5a96fe0e9355bcbb61 https://github.com/Gnucash/gnucash/commit/00b827dbf255d8c29c4c296e10a7baf4ee172cfe +https://github.com/Gnucash/gnucash/commit/3b21aacbc8476484f00a4558add9c198b0bdd306 Bug: https://bugzilla.gnome.org/show_bug.cgi?id=737815 Bug-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=765412 -Last-Update: 2014-10-17 +https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=767735 +Last-Update: 2014-11-15 --- This patch header follows DEP-3: http://dep.debian.net/deps/dep3/ --- a/src/report/report-system/html-barchart.scm +++ b/src/report/report-system/html-barchart.scm +@@ -359,12 +359,12 @@ + (push var d) + (push series-index) + (push = [];\n))) +- (series-data-add (lambda (series-index date y) ++ (series-data-add (lambda (series-index x y) + (push (string-append + d +(number-string series-index) +.push([ +- \ date \ ++ (number-string x) +, +(number-string y) +]);\n @@ -386,7 +386,7 @@ (push (gnc:html-js-include jqplot/jquery.jqplot.js)) (push (gnc:html-js-include jqplot/jqplot.barRenderer.js)) @@ -19,15 +36,25 @@ (push (gnc:html-js-include jqplot/jqplot.highlighter.js)) (push (gnc:html-js-include jqplot/jqplot.canvasTextRenderer.js)) (push (gnc:html-js-include jqplot/jqplot.canvasAxisTickRenderer.js)) -@@ -421,7 +421,7 @@ - data) - (series-data-end col (list-ref-safe (gnc:html-barchart-col-labels barchart) col)) - (if ( col (- cols 1)) -- (loop (+ 1 col) 1) -+ (loop (+ 1 col) 0) - - - (push var options = { +@@ -406,15 +406,15 @@ + (if (and data (list? data)) + (let ((rows (length data)) + (cols 0)) +-(let loop ((col 0) (rowcnt 0)) ++(let loop ((col 0) (rowcnt 1)) + (series-data-start col) + (if (list? (car data)) + (begin + (set! cols (length (car data) +
Bug#767750: marked as done (unblock: libnet-dns-perl/0.81-1)
Your message dated Sun, 16 Nov 2014 10:49:14 +0100 with message-id 20141116094913.ga28...@ugent.be and subject line Re: unblock: libnet-dns-perl/0.81-1 has caused the Debian Bug report #767750, regarding unblock: libnet-dns-perl/0.81-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 767750: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=767750 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Please unblock package libnet-dns-perl Hi, the version of libnet-dns-perl in unstable fixes some FTBFS errors in other packages (#755317), so it's desired to have it in testing, but it's a 0.81 pre-released version and the 0.80_2 version is causing problems at least in spamassasssin (#766718). libnet-dns-perl has undergone some big refactoring in between version in stable and testing and last few upstream releases are just cleanups of that refactoring (mainly packages using some Net::DNS internal they shouldn't be using). Unfortunatelly upstream missed the freeze-10 days a little bit, thus I am asking for a permission to upload final 0.81 release and let it migrate to testing. Thank you for considering this. Cheers, Ondrej Cleaned-up[1] upstream diff attached, diffstat is here: $ diffstat /tmp/libnet-dns-perl-0.80.2-0.81.diff Packet.pm |8 Parameters.pm | 18 +- RR.pm |4 RR/MX.pm|4 ++-- RR/TSIG.pm |3 +-- Resolver/Recurse.pm |2 +- 6 files changed, 21 insertions(+), 18 deletions(-) unblock libnet-dns-perl/0.81-1 - -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (990, 'testing'), (700, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_DK.UTF-8, LC_CTYPE=en_DK.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQJ8BAEBCgBmBQJUVh3jXxSAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQzMEI5MzNEODBGQ0UzRDk4MUEyRDM4RkIw Qzk5QjcwRUY0RkNCQjA3AAoJEAyZtw70/LsH7tQP/3vkysYdAchdrJ08MGN2YHMI WqQqmACE2c9scgoSW+3iEjJo31h9lKUOyToDWD/XV2vORsICHYly/yOEfttvOaDk UOVo5q/V6SbDrpxkqXijAKDh0wjK0N/5vE0vsk6x1QYjfmNIoKCS+scFQ5kTN/Yt z9YdjeIlITPhX5W6Tp5zZc9Prp0mQK4sHwUYk6QKySRS1Bs13+fkzMlJ14E1Af1V zBeMPMvGLqvE7iv3jRg6+An1tNG3rXoaa0Hm1ehDXsn6ZOoM9mS1CJ2b/qTtUXed mkUGMT0UklC1fD5NmgiK7+bh12/ofMrmf0a2fiIgRR8HKFg9VLcGEEg3hcfLnWqf jAVsdr29PsSS2SjpZYEv7tYEfSOR56GgmDcnYQxnorcrCu9GCEB3vqTjdbL3l48w k6XjDC0lVpavMjJFOwJjxIy5bfAXV+Ey+n65LPvRJ62MjH1zxSqBTtH3coJOc810 HacdoKSQGBVoZUTEEbj7gjBg1WAKW2rJw4z73Jo3GtjVp7EYksU6u/jUC1snPhH0 w8hTxcLX61nGXmsb21pLde9cs2DtaPvIrdmRetB5sywQGZHrIFBGXF535tmdntYb ZRPzY1YGkCpXzCy3qtkkosC5NLI/rhmd1A5e76c/mSFAfRJIYU5Z2rgN+b54X27+ BFwn+pdf3RIJvEp7AQAU =EraZ -END PGP SIGNATURE- ---End Message--- ---BeginMessage--- Hi, On Sun, Nov 02, 2014 at 01:04:56PM +0100, Ondřej Surý wrote: unblock libnet-dns-perl/0.81-1 Unblocked. Cheers, Ivo---End Message---
Bug#769591: unblock: owfs/2.9p8-6
On 15/11/2014 12:40, Philipp Kern wrote: On Fri, Nov 14, 2014 at 09:06:08PM +0100, Vincent Danjean wrote: As the bug is not RC, I ask you is it would be ok to upload this fix now (or if I must wait for jessie release). Sounds good to me. Please ping the bug once it has reached the archive. Thanks. It is now in unstable. Thanks Vincent -- Vincent Danjean GPG key ID 0xD17897FA vdanj...@debian.org GPG key fingerprint: 621E 3509 654D D77C 43F5 CA4A F6AE F2AF D178 97FA Unofficial pkgs: http://moais.imag.fr/membres/vincent.danjean/deb.html APT repo: deb http://people.debian.org/~vdanjean/debian unstable main -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546874a5.1070...@debian.org
Bug#769715: marked as done (unblock: kgb-bot/1.33-2)
Your message dated Sun, 16 Nov 2014 11:27:30 +0100 with message-id 20141116102729.ga29...@ugent.be and subject line Re: Bug#769715: unblock: kgb-bot/1.33-2 has caused the Debian Bug report #769715, regarding unblock: kgb-bot/1.33-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769715: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769715 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package kgb-bot. Version 1.33-2 fixes #769239, FTBFS due to failing tests. The tests are failing because they don't cater for the case when the gecos information about the user running them contains no full name. The bot caters for this case, and because of this the expactations of the tests don't match the actual output of the bot. The fix is to make the tests handle the missing full name, adapting the expected output. With it the tests pass in pbuilder (no full name in gecos) and when run manually (with full name in gecos). The quilt patch that is added is attached, as well as a full debdiff to version 1.33-1 in jessie. kgb-bot (1.33-2) unstable; urgency=medium * add patch fixing tests in build environments where the current user has no full name (Closes: #769239 -- FTBFS) -- Damyan Ivanov d...@debian.org Sat, 15 Nov 2014 19:03:05 + unblock kgb-bot/1.33-2 Thanks, dam fix-username-in-tests.patch Description: Binary data kgb-bot.diff Description: Binary data ---End Message--- ---BeginMessage--- Hi, On Sat, Nov 15, 2014 at 08:14:49PM +, Damyan Ivanov wrote: Please unblock package kgb-bot. Version 1.33-2 fixes #769239, FTBFS due to failing tests. Unblocked. Cheers, Ivo---End Message---
Bug#769668: wheezy-pu: package showfoto/4:2.6.0-1
Control: tag -1 moreinfo Hi, On Sat, Nov 15, 2014 at 01:36:15PM +, Jean-Michel Nirgal Vourgère wrote: Showfoto fails to upgrade from squeeze. See #767570. The fix is trivial. Attached is a proposal. Do you think this is ok to put in wheezy? This needs to be fixed in unstable first, and migrated to Jessie. Thanks, -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Processed: Re: Bug#769668: wheezy-pu: package showfoto/4:2.6.0-1
Processing control commands: tag -1 moreinfo Bug #769668 [release.debian.org] wheezy-pu: package showfoto/4:2.6.0-1 Added tag(s) moreinfo. -- 769668: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769668 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769668.141613551010365.transcr...@bugs.debian.org
Bug#769768: unblock: [security] imagemagick/8:6.8.9.9-3
Package: release.debian.org Severity: important User: release.debian@packages.debian.org Usertags: unblock Please unblock package imagemagick It fix CVE-2014-8716 (a two line change). I have also updated previous changelog entry with proper CVE. diff -Nru imagemagick-6.8.9.9/debian/changelog imagemagick-6.8.9.9/debian/changelog --- imagemagick-6.8.9.9/debian/changelog2014-10-28 18:48:23.0 +0100 +++ imagemagick-6.8.9.9/debian/changelog2014-11-12 21:58:20.0 +0100 @@ -1,3 +1,13 @@ +imagemagick (8:6.8.9.9-3) unstable; urgency=high + + * Fix a security bug (DOS). Some special crafted JPEG +files could create a dos due to missing check in +embeded EXIF properties (EXIF directory offsets +must be greater than 0). Fix CVE-2014-8716 +(Closes: #768494). + + -- Bastien Roucariès roucaries.bastien+deb...@gmail.com Fri, 07 Nov 2014 21:16:20 +0100 + imagemagick (8:6.8.9.9-2) unstable; urgency=high * Remove build-dep loop. Remove inkscape. @@ -9,10 +19,11 @@ * New upstream version, fixing four security problems: - Remotely DOS: convert +profile regression enters infinite loop exhausting memory, thanks to - Yuri D'Elia (Closes: #764872). -- Fixed buffer overflow in PCX and DCM coder. + Yuri D'Elia (Closes: #764872). Fix CVE-2014-8561. +- Fixed buffer overflow in PCX and DCM coder. Fix + CVE-2014-8562 and CVE-2014-8355. - Don't clone a 0x0 image breaking some assumption - in client code. + in client code. Fix CVE-2014-8354. - Off-by-one count when parsing an 8BIM profile. * Fix identify -quiet has non zero exit code on warnings (Closes: #763686). diff -Nru imagemagick-6.8.9.9/debian/patches/0001-Use-svg-instead-of-png-for-generating-class-diagram.patch imagemagick-6.8.9.9/debian/patches/0001-Use-svg-instead-of-png-for-generating-class-diagram.patch --- imagemagick-6.8.9.9/debian/patches/0001-Use-svg-instead-of-png-for-generating-class-diagram.patch 2014-10-28 18:50:28.0 +0100 +++ imagemagick-6.8.9.9/debian/patches/0001-Use-svg-instead-of-png-for-generating-class-diagram.patch 2014-11-15 14:47:56.0 +0100 @@ -82,5 +82,5 @@ # If DOT_IMAGE_FORMAT is set to svg, then this option can be set to YES to # enable generation of interactive SVG images that allow zooming and panning. -- -2.1.1 +2.1.3 diff -Nru imagemagick-6.8.9.9/debian/patches/0002-Fix-html-documents.patch imagemagick-6.8.9.9/debian/patches/0002-Fix-html-documents.patch --- imagemagick-6.8.9.9/debian/patches/0002-Fix-html-documents.patch 2014-10-28 18:50:29.0 +0100 +++ imagemagick-6.8.9.9/debian/patches/0002-Fix-html-documents.patch 2014-11-15 14:47:56.0 +0100 @@ -5152,5 +5152,5 @@ +!-- Magick Cache 25th July 2014 04:06 -- + -- -2.1.1 +2.1.3 diff -Nru imagemagick-6.8.9.9/debian/patches/0003-Fix-meta-tag-damage-in-html-documentation.patch imagemagick-6.8.9.9/debian/patches/0003-Fix-meta-tag-damage-in-html-documentation.patch --- imagemagick-6.8.9.9/debian/patches/0003-Fix-meta-tag-damage-in-html-documentation.patch 2014-10-28 18:50:30.0 +0100 +++ imagemagick-6.8.9.9/debian/patches/0003-Fix-meta-tag-damage-in-html-documentation.patch 2014-11-15 14:47:57.0 +0100 @@ -2290,5 +2290,5 @@ \ No newline at end of file +!-- Magick Cache 25th July 2014 05:32 -- -- -2.1.1 +2.1.3 diff -Nru imagemagick-6.8.9.9/debian/patches/0004-Fix-remaining-html-error.patch imagemagick-6.8.9.9/debian/patches/0004-Fix-remaining-html-error.patch --- imagemagick-6.8.9.9/debian/patches/0004-Fix-remaining-html-error.patch 2014-10-28 18:50:30.0 +0100 +++ imagemagick-6.8.9.9/debian/patches/0004-Fix-remaining-html-error.patch 2014-11-15 14:47:57.0 +0100 @@ -162,5 +162,5 @@ /div -- -2.1.1 +2.1.3 diff -Nru imagemagick-6.8.9.9/debian/patches/0005-Avoid-crash-and-DOS-with-special-crafted-jpeg-file.patch imagemagick-6.8.9.9/debian/patches/0005-Avoid-crash-and-DOS-with-special-crafted-jpeg-file.patch --- imagemagick-6.8.9.9/debian/patches/0005-Avoid-crash-and-DOS-with-special-crafted-jpeg-file.patch 1970-01-01 01:00:00.0 +0100 +++ imagemagick-6.8.9.9/debian/patches/0005-Avoid-crash-and-DOS-with-special-crafted-jpeg-file.patch 2014-11-15 14:47:57.0 +0100 @@ -0,0 +1,33 @@ +From b61b7f4f0e705b6a9a9ba8b8af898a406b0fc87e Mon Sep 17 00:00:00 2001 +From: =?UTF-8?q?Bastien=20ROUCARI=C3=88S?= roucaries.bast...@gmail.com +Date: Fri, 7 Nov 2014 21:05:07 +0100 +Subject: [PATCH] Avoid crash and DOS with special crafted jpeg file + +Some special crafted JPEG file could lead to dos due to missing check in +embeded EXIF properties (EXIF directory offsets must be greater than 0). + +Fix CVE-2014-8716. + +Forwarded: http://www.imagemagick.org/discourse-server/viewtopic.php?f=3t=26456 +Bug-debian: http://bugs.debian.org/768494 +Applied-Upstream: 6.9.9.10 +--- + magick/property.c | 2 ++ + 1 file changed, 2 insertions(+) +
Bug#769668: wheezy-pu: package showfoto/4:2.6.0-1
On Sun, Nov 16, 2014 at 10:58:25 +, Jonathan Wiltshire wrote: Control: tag -1 moreinfo Hi, On Sat, Nov 15, 2014 at 01:36:15PM +, Jean-Michel Nirgal Vourgère wrote: Showfoto fails to upgrade from squeeze. See #767570. The fix is trivial. Attached is a proposal. Do you think this is ok to put in wheezy? This needs to be fixed in unstable first, and migrated to Jessie. The bug affects squeeze to wheezy upgrades, it's not relevant for jessie. Cheers, Julien signature.asc Description: Digital signature
Bug#769703: nmu: several octave add-ons on {kfreebsd,hurd}-i386
On Sat, Nov 15, 2014 at 18:17:07 +0100, Sébastien Villemot wrote: Due to the change of GNU triplet on *-i386, several octave packages need to be rebuilt on that {kfreebsd,hurd}-i386 (the case of linux-i386 has already been dealt with in #762098). The reason is that the location of arch-specific files in Octave add-ons depends on the GNU triplet. That triplet change was a disaster all around... Cheers, Julien signature.asc Description: Digital signature
Bug#769768: marked as done (unblock: [security] imagemagick/8:6.8.9.9-3)
Your message dated Sun, 16 Nov 2014 11:13:50 + with message-id 1416136430.19889.12.ca...@adam-barratt.org.uk and subject line Re: Bug#769768: unblock: [security] imagemagick/8:6.8.9.9-3 has caused the Debian Bug report #769768, regarding unblock: [security] imagemagick/8:6.8.9.9-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769768: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769768 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: important User: release.debian@packages.debian.org Usertags: unblock Please unblock package imagemagick It fix CVE-2014-8716 (a two line change). I have also updated previous changelog entry with proper CVE. diff -Nru imagemagick-6.8.9.9/debian/changelog imagemagick-6.8.9.9/debian/changelog --- imagemagick-6.8.9.9/debian/changelog2014-10-28 18:48:23.0 +0100 +++ imagemagick-6.8.9.9/debian/changelog2014-11-12 21:58:20.0 +0100 @@ -1,3 +1,13 @@ +imagemagick (8:6.8.9.9-3) unstable; urgency=high + + * Fix a security bug (DOS). Some special crafted JPEG +files could create a dos due to missing check in +embeded EXIF properties (EXIF directory offsets +must be greater than 0). Fix CVE-2014-8716 +(Closes: #768494). + + -- Bastien Roucariès roucaries.bastien+deb...@gmail.com Fri, 07 Nov 2014 21:16:20 +0100 + imagemagick (8:6.8.9.9-2) unstable; urgency=high * Remove build-dep loop. Remove inkscape. @@ -9,10 +19,11 @@ * New upstream version, fixing four security problems: - Remotely DOS: convert +profile regression enters infinite loop exhausting memory, thanks to - Yuri D'Elia (Closes: #764872). -- Fixed buffer overflow in PCX and DCM coder. + Yuri D'Elia (Closes: #764872). Fix CVE-2014-8561. +- Fixed buffer overflow in PCX and DCM coder. Fix + CVE-2014-8562 and CVE-2014-8355. - Don't clone a 0x0 image breaking some assumption - in client code. + in client code. Fix CVE-2014-8354. - Off-by-one count when parsing an 8BIM profile. * Fix identify -quiet has non zero exit code on warnings (Closes: #763686). diff -Nru imagemagick-6.8.9.9/debian/patches/0001-Use-svg-instead-of-png-for-generating-class-diagram.patch imagemagick-6.8.9.9/debian/patches/0001-Use-svg-instead-of-png-for-generating-class-diagram.patch --- imagemagick-6.8.9.9/debian/patches/0001-Use-svg-instead-of-png-for-generating-class-diagram.patch 2014-10-28 18:50:28.0 +0100 +++ imagemagick-6.8.9.9/debian/patches/0001-Use-svg-instead-of-png-for-generating-class-diagram.patch 2014-11-15 14:47:56.0 +0100 @@ -82,5 +82,5 @@ # If DOT_IMAGE_FORMAT is set to svg, then this option can be set to YES to # enable generation of interactive SVG images that allow zooming and panning. -- -2.1.1 +2.1.3 diff -Nru imagemagick-6.8.9.9/debian/patches/0002-Fix-html-documents.patch imagemagick-6.8.9.9/debian/patches/0002-Fix-html-documents.patch --- imagemagick-6.8.9.9/debian/patches/0002-Fix-html-documents.patch 2014-10-28 18:50:29.0 +0100 +++ imagemagick-6.8.9.9/debian/patches/0002-Fix-html-documents.patch 2014-11-15 14:47:56.0 +0100 @@ -5152,5 +5152,5 @@ +!-- Magick Cache 25th July 2014 04:06 -- + -- -2.1.1 +2.1.3 diff -Nru imagemagick-6.8.9.9/debian/patches/0003-Fix-meta-tag-damage-in-html-documentation.patch imagemagick-6.8.9.9/debian/patches/0003-Fix-meta-tag-damage-in-html-documentation.patch --- imagemagick-6.8.9.9/debian/patches/0003-Fix-meta-tag-damage-in-html-documentation.patch 2014-10-28 18:50:30.0 +0100 +++ imagemagick-6.8.9.9/debian/patches/0003-Fix-meta-tag-damage-in-html-documentation.patch 2014-11-15 14:47:57.0 +0100 @@ -2290,5 +2290,5 @@ \ No newline at end of file +!-- Magick Cache 25th July 2014 05:32 -- -- -2.1.1 +2.1.3 diff -Nru imagemagick-6.8.9.9/debian/patches/0004-Fix-remaining-html-error.patch imagemagick-6.8.9.9/debian/patches/0004-Fix-remaining-html-error.patch --- imagemagick-6.8.9.9/debian/patches/0004-Fix-remaining-html-error.patch 2014-10-28 18:50:30.0 +0100 +++ imagemagick-6.8.9.9/debian/patches/0004-Fix-remaining-html-error.patch 2014-11-15 14:47:57.0 +0100 @@ -162,5 +162,5 @@ /div -- -2.1.1 +2.1.3 diff -Nru imagemagick-6.8.9.9/debian/patches/0005-Avoid-crash-and-DOS-with-special-crafted-jpeg-file.patch imagemagick-6.8.9.9/debian/patches/0005-Avoid-crash-and-DOS-with-special-crafted-jpeg-file.patch ---
Processed: severity of 769768 is normal
Processing commands for cont...@bugs.debian.org: # Unblocks are normal severity 769768 normal Bug #769768 [release.debian.org] unblock: [security] imagemagick/8:6.8.9.9-3 Severity set to 'normal' from 'important' thanks Stopping processing here. Please contact me if you need assistance. -- 769768: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769768 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.141613634415377.transcr...@bugs.debian.org
Bug#769773: unblock: texlive-bin/2014.20140926.35254-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Dear release team, here a bit more difficult unblock request for texlive-bin The last update I uploaded missed the freeze, but contains several pulls from upstream svn that would be very useful to have in the next stable release. The changelog lists the upstream changes: + * cherrypick fixes from upstream svn: +- fix enctex reading \^^ab control sequences +- fix mpost reading fontmap file multiple times (Closes: #767967) +- dvipdfmx fixes: + . fix pk support + . correct behaviour for subtractions in pkfont.c + . fix crash when gqpn is unset + . support for ghostscript 9.15 + . fix bug in spc_dvips_at_end_page (wrong logic) + * bump standards version, no changes necessary (full debdiff attached) All of these fixes are properly documented in the ChangeLog files changed by the respective patches in debian/patches/upstream-svnN-desc Thanks for your consideration Norbert unblock texlive-bin/2014.20140926.35254-3 -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (200, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.18.0-rc4+ (SMP w/4 CPU cores; PREEMPT) Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash diff -Nru texlive-bin-2014.20140926.35254/debian/changelog texlive-bin-2014.20140926.35254/debian/changelog --- texlive-bin-2014.20140926.35254/debian/changelog 2014-10-02 14:26:56.0 +0900 +++ texlive-bin-2014.20140926.35254/debian/changelog 2014-11-06 09:37:43.0 +0900 @@ -1,3 +1,18 @@ +texlive-bin (2014.20140926.35254-3) unstable; urgency=medium + + * cherrypick fixes from upstream svn: +- fix enctex reading \^^ab control sequences +- fix mpost reading fontmap file multiple times (Closes: #767967) +- dvipdfmx fixes: + . fix pk support + . correct behaviour for subtractions in pkfont.c + . fix crash when gqpn is unset + . support for ghostscript 9.15 + . fix bug in spc_dvips_at_end_page (wrong logic) + * bump standards version, no changes necessary + + -- Norbert Preining prein...@debian.org Thu, 06 Nov 2014 09:37:33 +0900 + texlive-bin (2014.20140926.35254-2) unstable; urgency=medium * remove libxp build dep (Closes: #763304) diff -Nru texlive-bin-2014.20140926.35254/debian/control texlive-bin-2014.20140926.35254/debian/control --- texlive-bin-2014.20140926.35254/debian/control 2014-10-02 14:26:56.0 +0900 +++ texlive-bin-2014.20140926.35254/debian/control 2014-11-06 09:37:43.0 +0900 @@ -4,7 +4,7 @@ Maintainer: Debian TeX Maintainers debian-tex-ma...@lists.debian.org Uploaders: Norbert Preining prein...@debian.org, Frank Küster fr...@kuesterei.ch Build-Depends: debhelper (= 7.0.50~), sharutils, libncurses5-dev | libncurses-dev, libxaw7-dev, zlib1g-dev | libz-dev, flex, bison, libpoppler-private-dev (= 0.12.4), libfontconfig1-dev, dh-autoreconf, time, libgraphite2-dev, libgs-dev, libpixman-1-dev (= 0.32.4), libzzip-dev (= 0.12), libharfbuzz-dev (= 0.9.18-3), libicu-dev, recode, texinfo, automake (= 1:1.13.1), autoconf (= 2.69), libtool (= 2.4.2), m4 (= 1.4.16), libpotrace-dev (= 1.11), libxi-dev, libpaper-dev, libmpfr-dev, libgmp-dev -Standards-Version: 3.9.5 +Standards-Version: 3.9.6 Homepage: http://www.tug.org/texlive/ Vcs-Git: git://anonscm.debian.org/debian-tex/texlive-bin.git Vcs-Browser: http://anonscm.debian.org/gitweb/?p=debian-tex/texlive-bin.git diff -Nru texlive-bin-2014.20140926.35254/debian/patches/series texlive-bin-2014.20140926.35254/debian/patches/series --- texlive-bin-2014.20140926.35254/debian/patches/series 2014-10-02 14:26:56.0 +0900 +++ texlive-bin-2014.20140926.35254/debian/patches/series 2014-11-06 09:37:43.0 +0900 @@ -12,3 +12,9 @@ upupstream-fix-math-list-crash-svn5019 upupstream-bug907-svn5024 libpng-arm64-neon-fix +upstream-svn35304-dvipdfmx-bug-spc-dvips-end-page +upstream-svn35312-dvipdfmx-ghostscript-fix +upstream-svn35457-enctex-chars +upstream-svn35461-dvipdfmx-pk-support +upstream-svn35516-dvipdfmx-fix-crash-missing-fontmap +upstream-svn35518-mpost-fontmap-warnings diff -Nru texlive-bin-2014.20140926.35254/debian/patches/upstream-svn35304-dvipdfmx-bug-spc-dvips-end-page texlive-bin-2014.20140926.35254/debian/patches/upstream-svn35304-dvipdfmx-bug-spc-dvips-end-page --- texlive-bin-2014.20140926.35254/debian/patches/upstream-svn35304-dvipdfmx-bug-spc-dvips-end-page 1970-01-01 09:00:00.0 +0900 +++ texlive-bin-2014.20140926.35254/debian/patches/upstream-svn35304-dvipdfmx-bug-spc-dvips-end-page 2014-11-06 09:37:43.0 +0900 @@ -0,0 +1,27 @@ +--- + texk/dvipdfm-x/ChangeLog |5 + + texk/dvipdfm-x/spc_dvips.c |2 +- + 2 files changed, 6 insertions(+), 1 deletion(-) + +--- texlive-bin.orig/texk/dvipdfm-x/spc_dvips.c
Bug#769777: nmu: ioquake3_1.36+u20140929+g918eed9+dfsg1-1
Package: release.debian.org Severity: normal Tags: experimental User: release.debian@packages.debian.org Usertags: binnmu nmu ioquake3_1.36+u20140929+g918eed9+dfsg1-1 . ALL . experimental . -m Rebuild against libjpeg62-turbo. to get rid of Depends: libjpeg62 (= 1:1.3.1) Andreas -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141116115328.24907.24335.report...@zam581.zam.kfa-juelich.de
Bug#769780: (pre-approval for) unblock: vmdebootstrap/0.5-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock I'd like to close two important bugs in vmdebootstrap and upload to unstable to migrate these changes into jessie: #767196 - downgrade dependency on grub2-common (used for grub2 support inside vm images) to a Recommends: to allow for users who are running grub-legacy. #767913 - one character change to the grub2 support to allow a boot partition to be used in a VM image using grub2. Both fixes would also be considered for an update to the existing wheezy-backport, once migrated into jessie. The current package limits users of grub-legacy to not be able to use grub2 in VM images, so this needs to be expressed in the manpage. So I'm proposing to make a new upstream release with the patch from 767913 applied, the changes for 767196 made in debian/control and updates to the grub2 section of the manpage made upstream. If these changes are not likely to be approved, I'll work on a range of the other bugs filed against vmdebootstrap and make a 0.5 upstream tag and release to upload to experimental only. So the debdiff is not complete at this stage but will contain: diff --git a/debian/control b/debian/control index 00518f3..6cb5338 100644 --- a/debian/control +++ b/debian/control @@ -17,10 +17,10 @@ Package: vmdebootstrap Architecture: linux-any Depends: debootstrap, qemu-utils, extlinux [amd64 i386], - grub2-common [!mips !s390x], kpartx, parted, python-cliapp, ${python:Depends}, ${misc:Depends} -Recommends: squashfs-tools, qemu-system, qemu-user-static +Recommends: grub2-common [!mips !s390x], + squashfs-tools, qemu-system, qemu-user-static Description: Bootstrap Debian into a (virtual machine) disk image vmdebootstrap is a wrapper around debootstrap to install Debian into a disk image, which can be used with a virtual machine (such as KVM). and the patch in the BTS: https://bugs.debian.org/cgi-bin/bugreport.cgi?msg=20;filename=0001-Make-grub-installation-work-even-with-a-boot-partiti.patch;att=1;bug=767913 (applied upstream) + changes in the manpage. -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 armhf arm64 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_GB.UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141116120746.6884.82836.reportbug@sylvester.codehelp
Bug#769782: rm: sipml5 from testing
Package: release.debian.org User: release.debian@packages.debian.org UserTags: rm I just orphaned sipml5 and made an upload to sid changing maintainer to Debian QA Please remove from the testing/jessie distribution, it can hang around in sid a bit longer to see if anybody wants to take over. -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/546897e4.90...@pocock.pro
Bug#769784: unblock: carmetal/3.5.2+dfsg-1.1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package carmetal The RC bugs targetting this package have been fixed ---source debdiff8--- diff -Nru carmetal-3.5.2+dfsg/debian/changelog carmetal-3.5.2+dfsg/debian/changelog --- carmetal-3.5.2+dfsg/debian/changelog2011-03-10 15:09:26.0 +0100 +++ carmetal-3.5.2+dfsg/debian/changelog2014-11-10 18:38:08.0 +0100 @@ -1,3 +1,17 @@ +carmetal (3.5.2+dfsg-1.1) unstable; urgency=medium + + * Non-maintainer upload. + * upgraded Standards-Version to 3.9.6 + * removed the --with quilt clauses from debian/rules + * removed --with clauses after commands like dh_auto_clean which ignore +this switch; added jh_* scripts in place. + * removed 'jh_depends --jvm=open sun6' from debian/rules. +Closes: #753787 + * checked that the package can be built and is working inside debian/sid. +Closes: #552990; Closes: #577119 + + -- Georges Khaznadar georg...@debian.org Mon, 10 Nov 2014 17:58:38 +0100 + carmetal (3.5.2+dfsg-1) unstable; urgency=low * New upstream release diff -Nru carmetal-3.5.2+dfsg/debian/control carmetal-3.5.2+dfsg/debian/control --- carmetal-3.5.2+dfsg/debian/control 2011-03-10 15:36:28.0 +0100 +++ carmetal-3.5.2+dfsg/debian/control 2014-11-10 17:58:16.0 +0100 @@ -2,9 +2,10 @@ Section: math Priority: extra Maintainer: Yves Combe y...@ycombe.net -Build-Depends: debhelper (= 7.0.50~), javahelper (= 0.32), quilt (= 0.46-7~), ant, ant-optional, docbook-to-man, rhino +Build-Depends: debhelper (= 7.0.50~), javahelper (= 0.32), + quilt (= 0.46-7~), ant, ant-optional, docbook-to-man, rhino Build-Depends-Indep: default-jdk -Standards-Version: 3.9.1 +Standards-Version: 3.9.6 Package: carmetal Architecture: all diff -Nru carmetal-3.5.2+dfsg/debian/rules carmetal-3.5.2+dfsg/debian/rules --- carmetal-3.5.2+dfsg/debian/rules2011-03-10 15:06:53.0 +0100 +++ carmetal-3.5.2+dfsg/debian/rules2014-11-10 18:07:09.0 +0100 @@ -6,17 +6,19 @@ export CLASSPATH=js.jar %: - dh --with javahelper,quilt $@ + dh --with javahelper $@ override_dh_auto_build: - dh_auto_build --with javahelper,quilt + dh_auto_build + jh_clean docbook-to-man debian/carmetal.sgml debian/carmetal.1 override_dh_auto_clean: - dh_auto_clean --with javahelper,quilt + dh_auto_clean + jh_clean rm -f debian/carmetal.1 override_jh_manifest: -override_jh_depends: - jh_depends --jvm=open sun6 +#override_jh_depends: +# jh_depends --jvm=open sun6 ---8--- Please, unblock carmetal/3.5.2+dfsg-1.1 -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (990, 'testing'), (650, 'stable'), (600, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.14-2-amd64 (SMP w/2 CPU cores) -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141116125106.12949.41445.report...@georges.khaznadar.fr
Bug#769785: unblock: rinse/3.0.6
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package rinse 3.0.6. Debdiff included. It fixes two important bugs: #768501 [i| [rinse] CentOS 7 support completely broken #768549 [i| [rinse] Missing packages for CentOS6 chroot I'm sorry, but these bug numbers are not included in the changelog, because I've fixed them really fast before the bug reports were available. No change was made to the rinse code itself. I only had to add some packages to the configuration files for CentOS 6 and 7 and some code was added to the centos-7/post-install.sh script. This code is only executed when creating a CentOS7 chroot, but not for any other chroot distribution that is supported by rinse. Please consider unblocking it. === debdiff === --- rinse-3.0.4/debian/changelog2014-07-25 14:35:35.0 +0200 +++ rinse-3.0.6/debian/changelog2014-10-29 15:29:08.0 +0100 @@ -1,3 +1,16 @@ +rinse (3.0.6) unstable; urgency=low + + * add missing symlink for ld + + -- Thomas Lange la...@debian.org Wed, 29 Oct 2014 15:29:08 +0100 + +rinse (3.0.5) unstable; urgency=low + + * add missing packages for CentOS 6 and 7 + * add commands to postinst for CentOS 7 + + -- Thomas Lange la...@debian.org Wed, 29 Oct 2014 15:17:33 +0100 + rinse (3.0.4) unstable; urgency=low * add missing package for CentOS 7 --- rinse-3.0.4/etc/centos-6.packages 2014-07-01 00:24:30.0 +0200 +++ rinse-3.0.6/etc/centos-6.packages 2014-10-29 14:09:42.0 +0100 @@ -110,3 +110,8 @@ yum-metadata-parser yum-utils zlib +libblkid +libdevmapper +libss +libuuid +gmp --- rinse-3.0.4/etc/centos-7.packages 2014-07-25 13:36:30.0 +0200 +++ rinse-3.0.6/etc/centos-7.packages 2014-10-29 15:07:35.0 +0100 @@ -106,3 +106,11 @@ zlib libffi libsemanage +libblkid +libmount +device-mapper-libs +libestr +gmp +json-c +libss +libuuid --- rinse-3.0.4/scripts/centos-7/post-install.sh2014-06-19 22:01:03.0 +0200 +++ rinse-3.0.6/scripts/centos-7/post-install.sh2014-10-29 15:28:40.0 +0100 @@ -1,7 +1,7 @@ #!/bin/sh # # post-install.sh -# CentOS 6 +# CentOS 7 prefix=$1 @@ -15,6 +15,41 @@ touch ${prefix}/etc/mtab + +# add command, that are normally executed in postinst or similar +mv $prefix/var/run/* $prefix/run +rmdir $prefix/var/run +ln -s /run $prefix/var/run +ln -s /run/lock $prefix/var/lock + +chroot $prefix alternatives --install /usr/bin/ld ld /usr/bin/ld.bfd 50 +chroot $prefix alternatives --install /usr/bin/ld ld /usr/bin/ld.gold 30 +chroot $prefix alternatives --auto ld + +chroot $prefix groupadd -g 22 -r -f utmp +chroot $prefix touch /var/log/wtmp /var/run/utmp /var/log/btmp +chroot $prefix chown root:utmp /var/log/wtmp /var/run/utmp /var/log/btmp +chroot $prefix chmod 664 /var/log/wtmp /var/run/utmp +chroot $prefix chmod 600 /var/log/btmp + +chroot $prefix groupadd -g 35 -r -f utempter +chroot $prefix groupadd -g 21 -r -f slocate + +install -m 600 /dev/null $prefix/var/log/tallylog + +cd $prefix/var/log +for n in messages secure maillog spooler;do + [ -f $n ] continue + umask 066 touch $n +done +cd / +touch $prefix/var/log/lastlog +chown root:root $prefix/var/log/lastlog +chmod 0644 $prefix/var/log/lastlog + +ln -fs /proc/mounts $prefix/etc/mtab + + echo Bootstrapping yum chroot ${prefix} /usr/bin/yum -y install yum vim-minimal dhclient 2/dev/null -- regards Thomas -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/21608.40506.956712.670...@kueppers.informatik.uni-koeln.de
Bug#769786: unblock: cdebootstrap/0.6.4
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock cdebootstrap/0.6.4. It fixes one regression and adds Built-Using. cdebootstrap (0.6.4) unstable; urgency=medium * Build helper debs with gzip compression to support releases before Squeeze. (closes: #768540) * Add proper Built-Using to binary packages. (closes: #769352) -- Bastian Blank wa...@debian.org Sat, 15 Nov 2014 20:31:27 +0100 unblock cdebootstrap/0.6.4 -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16-3-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141116125655.17242.29190.report...@rockhammer.waldi.eu.org
Bug#769787: unblock (pre-approval): poco 1.3.6p1-5
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi, I'm seeking approval for the upload of poco 1.3.6p1-5. I received a patch for CVE-2014-0350 (#746637) from Maxime Chatelle, who prepared an upload for unstable. Debdiff is attached, dsc is available on mentors: http://mentors.debian.net/debian/pool/main/p/poco/poco_1.3.6p1-5.dsc I don't see problems with the patch but would like approval from the release team before going ahead. If we don't apply the patch now, poco 1.3.6p1-4 should be removed from testing. Thanks, -- Cristian Greco GPG key ID: 0xCF4D32E4 diff -u poco-1.3.6p1/debian/control poco-1.3.6p1/debian/control --- poco-1.3.6p1/debian/control +++ poco-1.3.6p1/debian/control @@ -1,7 +1,7 @@ Source: poco Priority: optional Maintainer: Cristian Greco crist...@debian.org -Uploaders: Patrick Gansterer par...@paroga.com +Uploaders: Patrick Gansterer par...@paroga.com, Maxime Chatelle x...@rxsoft.eu Build-Depends: debhelper (= 5), dpatch, libexpat1-dev, libmysqlclient-dev, libpcre3-dev (= 7.8), libsqlite3-dev (= 3.6.13), libssl-dev (= 0.9.8), unixodbc-dev, zlib1g-dev Standards-Version: 3.8.3 Section: libs diff -u poco-1.3.6p1/debian/changelog poco-1.3.6p1/debian/changelog --- poco-1.3.6p1/debian/changelog +++ poco-1.3.6p1/debian/changelog @@ -1,3 +1,11 @@ +poco (1.3.6p1-5) unstable; urgency=medium + + * Adds debian/patches/70_fix_CVE-2014-0350.dpatch (Closes: #746637). +The patch is backported from poco-1.4.7 where the vulnerability +has been fixed. + + -- Maxime Chatelle x...@rxsoft.eu Sat, 15 Nov 2014 20:10:18 +0100 + poco (1.3.6p1-4) unstable; urgency=low * Wheezy cleanup release (3): should fix FTBFS on GNU/kFreeBSD for real. diff -u poco-1.3.6p1/debian/patches/00list poco-1.3.6p1/debian/patches/00list --- poco-1.3.6p1/debian/patches/00list +++ poco-1.3.6p1/debian/patches/00list @@ -6,0 +7 @@ +70_fix_CVE-2014-0350.dpatch only in patch2: unchanged: --- poco-1.3.6p1.orig/debian/patches/70_fix_CVE-2014-0350.dpatch +++ poco-1.3.6p1/debian/patches/70_fix_CVE-2014-0350.dpatch @@ -0,0 +1,142 @@ +#! /bin/sh /usr/share/dpatch/dpatch-run +## 70_fix_CVE-2014-0350.dpatch by Maxime Chatelle x...@rxsoft.eu +## +## All lines beginning with `## DP:' are a description of the patch. +## DP: Backported fix against CVE-2014-0350 + +@DPATCH@ + +diff -urNad poco-1.3.6p1~/NetSSL_OpenSSL/include/Poco/Net/X509Certificate.h poco-1.3.6p1/NetSSL_OpenSSL/include/Poco/Net/X509Certificate.h +--- poco-1.3.6p1~/NetSSL_OpenSSL/include/Poco/Net/X509Certificate.h 2009-12-21 19:15:02.0 +0100 poco-1.3.6p1/NetSSL_OpenSSL/include/Poco/Net/X509Certificate.h 2014-11-07 22:09:56.519596616 +0100 +@@ -102,7 +102,7 @@ + + protected: + static bool containsWildcards(const std::string commonName); +- static bool matchByAlias(const std::string alias, const HostEntry heData); ++ static bool matchWildcard(const std::string wildcard, const std::string hostName); + + private: + enum +diff -urNad poco-1.3.6p1~/NetSSL_OpenSSL/src/X509Certificate.cpp poco-1.3.6p1/NetSSL_OpenSSL/src/X509Certificate.cpp +--- poco-1.3.6p1~/NetSSL_OpenSSL/src/X509Certificate.cpp 2009-12-21 19:15:02.0 +0100 poco-1.3.6p1/NetSSL_OpenSSL/src/X509Certificate.cpp 2014-11-07 22:11:30.847592322 +0100 +@@ -107,51 +107,47 @@ + std::string commonName; + std::setstd::string dnsNames; + certificate.extractNames(commonName, dnsNames); ++ if (!commonName.empty()) dnsNames.insert(commonName); + bool ok = (dnsNames.find(hostName) != dnsNames.end()); +- +- char buffer[NAME_BUFFER_SIZE]; +- X509_NAME* subj = 0; +- if (!ok (subj = X509_get_subject_name(const_castX509*(certificate.certificate( X509_NAME_get_text_by_NID(subj, NID_commonName, buffer, sizeof(buffer)) 0) ++ if (!ok) + { +- buffer[NAME_BUFFER_SIZE - 1] = 0; +- std::string commonName(buffer); // commonName can contain wildcards like *.appinf.com +- try ++ for (std::setstd::string::const_iterator it = dnsNames.begin(); !ok it != dnsNames.end(); ++it) + { +- // two cases: strData contains wildcards or not +- if (containsWildcards(commonName)) +- { +-// a compare by IPAddress is not possible with wildcards +-// only allow compare by name +-const HostEntry heData = DNS::resolve(hostName); +-ok = matchByAlias(commonName, heData); +- } +- else ++ try + { +-// it depends on hostName if we compare by IP or by alias +-IPAddress ip; +-if (IPAddress::tryParse(hostName, ip)) ++// two cases: strData contains wildcards or not ++if (containsWildcards(*it)) + { +- // compare by IP +- const HostEntry heData = DNS::resolve(commonName); +- const HostEntry::AddressList addr = heData.addresses(); +- HostEntry::AddressList::const_iterator it = addr.begin(); +- HostEntry::AddressList::const_iterator itEnd = addr.end(); +- for (; it != itEnd !ok; ++it) +- { +- ok = (*it == ip); +- } ++ // a compare by IPAddress is not possible
Bug#769777: marked as done (nmu: ioquake3_1.36+u20140929+g918eed9+dfsg1-1)
Your message dated Sun, 16 Nov 2014 14:07:39 +0100 with message-id 20141116130739.gb31...@ugent.be and subject line Re: Bug#769777: nmu: ioquake3_1.36+u20140929+g918eed9+dfsg1-1 has caused the Debian Bug report #769777, regarding nmu: ioquake3_1.36+u20140929+g918eed9+dfsg1-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769777: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769777 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal Tags: experimental User: release.debian@packages.debian.org Usertags: binnmu nmu ioquake3_1.36+u20140929+g918eed9+dfsg1-1 . ALL . experimental . -m Rebuild against libjpeg62-turbo. to get rid of Depends: libjpeg62 (= 1:1.3.1) Andreas ---End Message--- ---BeginMessage--- Hi, On Sun, Nov 16, 2014 at 12:53:28PM +0100, Andreas Beckmann wrote: nmu ioquake3_1.36+u20140929+g918eed9+dfsg1-1 . ALL . experimental . -m Rebuild against libjpeg62-turbo. Scheduled. Cheers, Ivo---End Message---
Bug#768315: unblock: util-linux/2.25.2-3
Hi, Thanks Andreas for your work on util-linux, it’s really appreciated. Le 15/11/2014 17:57, Andreas Henriksson a écrit : I really don't understand why we're having this discussion now at all. Where where everyone before the freeze? The whole message seems unneededly harsh, but as a data point specific to this point, please don’t forget that the first maintainer upload (since before the previous wheezy freeze) that made it into testing was: [2014-10-20] util-linux 2.25.1-5 MIGRATED to testing (Britney) That’s about two weeks prior to the actual freeze. That doesn’t let much time to discuss or spot anything (and yes, I used the versions you uploaded to experimental before that, but I wouldn’t expect everyone to do it, I’m pretty sure d-i didn’t for example). Regards David signature.asc Description: OpenPGP digital signature
Bug#769786: marked as done (unblock: cdebootstrap/0.6.4)
Your message dated Sun, 16 Nov 2014 14:14:02 +0100 with message-id 20141116131401.gc31...@ugent.be and subject line Re: Bug#769786: unblock: cdebootstrap/0.6.4 has caused the Debian Bug report #769786, regarding unblock: cdebootstrap/0.6.4 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769786: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769786 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock cdebootstrap/0.6.4. It fixes one regression and adds Built-Using. cdebootstrap (0.6.4) unstable; urgency=medium * Build helper debs with gzip compression to support releases before Squeeze. (closes: #768540) * Add proper Built-Using to binary packages. (closes: #769352) -- Bastian Blank wa...@debian.org Sat, 15 Nov 2014 20:31:27 +0100 unblock cdebootstrap/0.6.4 -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16-3-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- Hi, On Sun, Nov 16, 2014 at 01:56:55PM +0100, Bastian Blank wrote: Please unblock cdebootstrap/0.6.4. It fixes one regression and adds Built-Using. Unblocked earlier today. Cheers, Ivo---End Message---
Bug#769785: marked as done (unblock: rinse/3.0.6)
Your message dated Sun, 16 Nov 2014 14:15:44 +0100 with message-id 20141116131544.gd31...@ugent.be and subject line Re: Bug#769785: unblock: rinse/3.0.6 has caused the Debian Bug report #769785, regarding unblock: rinse/3.0.6 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769785: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769785 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package rinse 3.0.6. Debdiff included. It fixes two important bugs: #768501 [i| [rinse] CentOS 7 support completely broken #768549 [i| [rinse] Missing packages for CentOS6 chroot I'm sorry, but these bug numbers are not included in the changelog, because I've fixed them really fast before the bug reports were available. No change was made to the rinse code itself. I only had to add some packages to the configuration files for CentOS 6 and 7 and some code was added to the centos-7/post-install.sh script. This code is only executed when creating a CentOS7 chroot, but not for any other chroot distribution that is supported by rinse. Please consider unblocking it. === debdiff === --- rinse-3.0.4/debian/changelog2014-07-25 14:35:35.0 +0200 +++ rinse-3.0.6/debian/changelog2014-10-29 15:29:08.0 +0100 @@ -1,3 +1,16 @@ +rinse (3.0.6) unstable; urgency=low + + * add missing symlink for ld + + -- Thomas Lange la...@debian.org Wed, 29 Oct 2014 15:29:08 +0100 + +rinse (3.0.5) unstable; urgency=low + + * add missing packages for CentOS 6 and 7 + * add commands to postinst for CentOS 7 + + -- Thomas Lange la...@debian.org Wed, 29 Oct 2014 15:17:33 +0100 + rinse (3.0.4) unstable; urgency=low * add missing package for CentOS 7 --- rinse-3.0.4/etc/centos-6.packages 2014-07-01 00:24:30.0 +0200 +++ rinse-3.0.6/etc/centos-6.packages 2014-10-29 14:09:42.0 +0100 @@ -110,3 +110,8 @@ yum-metadata-parser yum-utils zlib +libblkid +libdevmapper +libss +libuuid +gmp --- rinse-3.0.4/etc/centos-7.packages 2014-07-25 13:36:30.0 +0200 +++ rinse-3.0.6/etc/centos-7.packages 2014-10-29 15:07:35.0 +0100 @@ -106,3 +106,11 @@ zlib libffi libsemanage +libblkid +libmount +device-mapper-libs +libestr +gmp +json-c +libss +libuuid --- rinse-3.0.4/scripts/centos-7/post-install.sh2014-06-19 22:01:03.0 +0200 +++ rinse-3.0.6/scripts/centos-7/post-install.sh2014-10-29 15:28:40.0 +0100 @@ -1,7 +1,7 @@ #!/bin/sh # # post-install.sh -# CentOS 6 +# CentOS 7 prefix=$1 @@ -15,6 +15,41 @@ touch ${prefix}/etc/mtab + +# add command, that are normally executed in postinst or similar +mv $prefix/var/run/* $prefix/run +rmdir $prefix/var/run +ln -s /run $prefix/var/run +ln -s /run/lock $prefix/var/lock + +chroot $prefix alternatives --install /usr/bin/ld ld /usr/bin/ld.bfd 50 +chroot $prefix alternatives --install /usr/bin/ld ld /usr/bin/ld.gold 30 +chroot $prefix alternatives --auto ld + +chroot $prefix groupadd -g 22 -r -f utmp +chroot $prefix touch /var/log/wtmp /var/run/utmp /var/log/btmp +chroot $prefix chown root:utmp /var/log/wtmp /var/run/utmp /var/log/btmp +chroot $prefix chmod 664 /var/log/wtmp /var/run/utmp +chroot $prefix chmod 600 /var/log/btmp + +chroot $prefix groupadd -g 35 -r -f utempter +chroot $prefix groupadd -g 21 -r -f slocate + +install -m 600 /dev/null $prefix/var/log/tallylog + +cd $prefix/var/log +for n in messages secure maillog spooler;do + [ -f $n ] continue + umask 066 touch $n +done +cd / +touch $prefix/var/log/lastlog +chown root:root $prefix/var/log/lastlog +chmod 0644 $prefix/var/log/lastlog + +ln -fs /proc/mounts $prefix/etc/mtab + + echo Bootstrapping yum chroot ${prefix} /usr/bin/yum -y install yum vim-minimal dhclient 2/dev/null -- regards Thomas ---End Message--- ---BeginMessage--- Hi, On Sun, Nov 16, 2014 at 01:53:14PM +0100, Thomas Lange wrote: Please unblock package rinse 3.0.6. Debdiff included. Unblocked. Cheers, Ivo---End Message---
Processed: Re: Bug#769122: unblock: qpid-proton/0.7-8
Processing control commands: tag -1 - moreinfo + confirmed Bug #769122 [release.debian.org] unblock: qpid-proton/0.7-8 Removed tag(s) moreinfo. Bug #769122 [release.debian.org] unblock: qpid-proton/0.7-8 Added tag(s) confirmed. -- 769122: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769122 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769122.14161450322279.transcr...@bugs.debian.org
Bug#769122: unblock: qpid-proton/0.7-8
Control: tag -1 - moreinfo + confirmed On Sat, Nov 15, 2014 at 07:33:57AM -0500, Darryl L. Pierce wrote: On Sat, Nov 15, 2014 at 10:55:00AM +, Jonathan Wiltshire wrote: The debdiff doesn't show your adding the python helper? I had sent the wrong one, before I had added the python helper. I sent a second email but not sure why it's not attached to the bug. Here is the correct one: Ok, that looks fine apart from getting rid of the now-empty lintian override file. Thanks, -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Bug#769784: unblock: carmetal/3.5.2+dfsg-1.1
Control: tag -1 moreinfo On Sun, Nov 16, 2014 at 01:51:06PM +0100, Georges Khaznadar wrote: Please unblock package carmetal The RC bugs targetting this package have been fixed The diff looks fine, but I'm not enthusiastic about the package. It's not currently in testing, and of the three bugs you close two (including the RC bug) didn't get a maintainer response, and the third did but in 2012. How can we be sure that if released in Jessie, it won't just rot there instead? -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Processed: Re: Bug#769784: unblock: carmetal/3.5.2+dfsg-1.1
Processing control commands: tag -1 moreinfo Bug #769784 [release.debian.org] unblock: carmetal/3.5.2+dfsg-1.1 Added tag(s) moreinfo. -- 769784: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769784 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769784.14161457376836.transcr...@bugs.debian.org
Bug#769780: (pre-approval for) unblock: vmdebootstrap/0.5-1
Control: tag -1 confirmed On Sun, Nov 16, 2014 at 12:07:46PM +, Neil Williams wrote: I'd like to close two important bugs in vmdebootstrap and upload to unstable to migrate these changes into jessie: Yes, this all looks fine. Thanks, -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Processed: Re: Bug#769780: (pre-approval for) unblock: vmdebootstrap/0.5-1
Processing control commands: tag -1 confirmed Bug #769780 [release.debian.org] (pre-approval for) unblock: vmdebootstrap/0.5-1 Added tag(s) confirmed. -- 769780: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769780 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769780.14161458808284.transcr...@bugs.debian.org
Bug#769027: marked as done (unblock: dhcpy6d/0.4-2)
Your message dated Sun, 16 Nov 2014 14:56:56 +0100 with message-id 20141116135655.ga...@ugent.be and subject line Re: Bug#769027: (pre-approval for) unblock: dhcpy6d/0.4-2 has caused the Debian Bug report #769027, regarding unblock: dhcpy6d/0.4-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769027: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769027 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock I intend to upload the debdiff below to unstable to fix the following two RC bugs: #768989 [G|P| ] [dhcpy6d] dhcpy6d: Overwrites lease databases upon package upgrade if SQLite backend is used #767817 [S|P| ] [dhcpy6d] dhcpy6d: modifies conffiles (policy 10.7.3): /etc/default/dhcpy6d Since the minimal fix for #767817 introduced a new lintian warning (executable-not-elf-or-script usr/share/dhcpy6d/default/dhcpy6d) and because the fix #768989 already modifies the one line in debian/dhcpy6d.postinst which needs to be changed to fix the remaining part of ... #769006 [m| | ] [dhcpy6d] dhcpy6d: Multiple files with unnecessary executable bit I included a fix for this issue/lintian warning, too, but I have neither yet pushed that part nor uploaded 0.4-2 yet. So if the fix for #769006 included below is not ok, and the lintian warning executable-not-elf-or-script is ok to be introduced by the RC fix, I'll upload 0.4-2 without the #769006 fix (and send a new debdiff afterwards). Please note that the removal of dhcpy6d-0.4/debian/dhcpy6d.default below is actually just deletion of a symbolic link. Upstream's dhcpy6d-0.4/etc/default/dhcpy6d (to which the symlink pointed) still exists. Following the debdiff between the two source packages and then the debdiff between the two resulting binary packages. $ debdiff ../dhcpy6d_0.4-{1,2}.dsc diff -Nru dhcpy6d-0.4/debian/changelog dhcpy6d-0.4/debian/changelog --- dhcpy6d-0.4/debian/changelog2014-10-22 21:03:57.0 +0200 +++ dhcpy6d-0.4/debian/changelog2014-11-10 19:56:59.0 +0100 @@ -1,3 +1,18 @@ +dhcpy6d (0.4-2) unstable; urgency=medium + + * Handle /etc/default/dhcpy6d with ucf. (Closes: #767817) ++ Install file to /usr/share/dhcpy6d/default/dhcpy6d instead, remove + symlink debian/dhcpy6d.default, add debian/dhcpy6d.install. ++ Depend on ucf. + * Install volatile.sqlite into /usr/share/dhcpy6d/ and copy it to +/var/lib/dhcpy6d/volatile.sqlite during postinst only if it doesn't +yet exist. Remove it upon purge. (Closes: #768989) + * Both fixes above together also remove unnecessary executable bits. +(Else the fix for #767817 newly introduces the lintian warning +executable-not-elf-or-script; closes: #769006) + + -- Axel Beckert a...@debian.org Mon, 10 Nov 2014 19:56:57 +0100 + dhcpy6d (0.4-1) unstable; urgency=low [ Henri Wahl ] diff -Nru dhcpy6d-0.4/debian/control dhcpy6d-0.4/debian/control --- dhcpy6d-0.4/debian/control 2014-10-22 15:41:40.0 +0200 +++ dhcpy6d-0.4/debian/control 2014-11-10 12:40:18.0 +0100 @@ -15,6 +15,7 @@ Package: dhcpy6d Architecture: all Depends: adduser, + ucf, ${misc:Depends}, ${python:Depends} Pre-Depends: dpkg (= 1.16.5) diff -Nru dhcpy6d-0.4/debian/dhcpy6d.default dhcpy6d-0.4/debian/dhcpy6d.default --- dhcpy6d-0.4/debian/dhcpy6d.default 2014-10-22 21:36:32.0 +0200 +++ dhcpy6d-0.4/debian/dhcpy6d.default 1970-01-01 01:00:00.0 +0100 @@ -1,2 +0,0 @@ -# dhcpy6d is disabled by default -#RUN=yes diff -Nru dhcpy6d-0.4/debian/dhcpy6d.dirs dhcpy6d-0.4/debian/dhcpy6d.dirs --- dhcpy6d-0.4/debian/dhcpy6d.dirs 1970-01-01 01:00:00.0 +0100 +++ dhcpy6d-0.4/debian/dhcpy6d.dirs 2014-11-10 16:13:28.0 +0100 @@ -0,0 +1 @@ +usr/share/dhcpy6d/ diff -Nru dhcpy6d-0.4/debian/dhcpy6d.install dhcpy6d-0.4/debian/dhcpy6d.install --- dhcpy6d-0.4/debian/dhcpy6d.install 1970-01-01 01:00:00.0 +0100 +++ dhcpy6d-0.4/debian/dhcpy6d.install 2014-11-07 19:45:02.0 +0100 @@ -0,0 +1 @@ +etc/default/dhcpy6d usr/share/dhcpy6d/default/ diff -Nru dhcpy6d-0.4/debian/dhcpy6d.postinst dhcpy6d-0.4/debian/dhcpy6d.postinst --- dhcpy6d-0.4/debian/dhcpy6d.postinst 2014-09-18 19:53:36.0 +0200 +++ dhcpy6d-0.4/debian/dhcpy6d.postinst 2014-11-10 19:14:41.0 +0100 @@ -50,14 +50,23 @@ if [ ! -e /var/log/dhcpy6d.log ]; then touch /var/log/dhcpy6d.log fi -chown $SERVER_USER:$SERVER_GROUP /var/log/dhcpy6d.log -chmod 0770 /var/log/dhcpy6d.log +if [
Processed: Re: Bug#767961: #767961: unblock pre-approval: beignet/0.9.3~really.0.8+dfsg-1
Processing control commands: tags -1 confirmed Bug #767961 [release.debian.org] unblock pre-approval: beignet/0.9.3~really.0.8+dfsg-1 Bug #768886 [release.debian.org] unblock pre-approval: beignet/0.9.3~really.0.8+dfsg-1 Added tag(s) confirmed. Added tag(s) confirmed. -- 767961: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=767961 768886: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768886 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b767961.141614754419677.transcr...@bugs.debian.org
Bug#767961: [Pkg-opencl-devel] Bug#767961: #767961: unblock pre-approval: beignet/0.9.3~really.0.8+dfsg-1
On 2014-11-16 15:18, Ivo De Decker wrote: We can drop beignet from jessie if you want that, but if you don't, an upload based on 0.8+dfsg-1 is the way to go. Feel free to upload the proposed patch to unstable, but remove the entry for 0.9.3~dfsg-1 from the changelog (the Can we upload this to TPU using a more sane version of 0.8+dfsg-1 instead? Andreas -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5468b65b.9030...@debian.org
Bug#769795: unblock: python-whoosh/2.5.7-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package python-whoosh Reason for unblock: * Change python-whoosh.maintscript into python-whoosh-doc.maintscript /usr/share/doc/python-whoosh-doc was a link to python-whoosh. Fixed 'prior-version' as the current one, see dpkg-maintscript-helper(1). Drop optional 'package' since where are not using maintscript but python-whoosh-doc.maintscript. Drop unused Pre-Depends on dpkg with support of symlink_to_dir, added missing Pre-Depends on misc:Pre-Depends in python-whoosh-doc (Closes: #768275) Debdiff attached. unblock python-whoosh/2.5.7-3 -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (990, 'testing'), (500, 'testing-updates'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- أحمد المحمودي (Ahmed El-Mahmoudy) Digital design engineer GPG KeyID: 0xEDDDA1B7 GPG Fingerprint: 8206 A196 2084 7E6D 0DF8 B176 BC19 6A94 EDDD A1B7 diff --git a/debian/changelog b/debian/changelog index 1e1c72d..6f93923 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,20 @@ +python-whoosh (2.5.7-3) unstable; urgency=medium + + [ أحمد المحمودي (Ahmed El-Mahmoudy) ] + * Update my email address. + * debian/control: Bumped Standards-Version to 3.9.6 + + [ Jean-Michel Nirgal Vourgère ] + * Change python-whoosh.maintscript into python-whoosh-doc.maintscript +/usr/share/doc/python-whoosh-doc was a link to python-whoosh. Fixed +'prior-version' as the current one, see dpkg-maintscript-helper(1). Drop +optional 'package' since where are not using maintscript but +python-whoosh-doc.maintscript. Drop unused Pre-Depends on dpkg with support +of symlink_to_dir, added missing Pre-Depends on misc:Pre-Depends in +python-whoosh-doc (Closes: #768275) + + -- أحمد المحمودي (Ahmed El-Mahmoudy) aelmahmo...@users.sourceforge.net Sun, 16 Nov 2014 12:16:23 +0200 + python-whoosh (2.5.7-2) unstable; urgency=medium [ Zygmunt Krynicki ] diff --git a/debian/control b/debian/control index 3355663..e7b736a 100644 --- a/debian/control +++ b/debian/control @@ -1,10 +1,10 @@ Source: python-whoosh Section: python Priority: optional -Maintainer: أحمد المحمودي (Ahmed El-Mahmoudy) aelmahmo...@sabily.org +Maintainer: أحمد المحمودي (Ahmed El-Mahmoudy) aelmahmo...@users.sourceforge.net Build-Depends: debhelper (= 9), dh-python, python-setuptools, python3-setuptools Build-Depends-Indep: python3-sphinx (= 1.0.7+dfsg), python-all (= 2.6.6-2), python3-all, python-pytest, python3-pytest -Standards-Version: 3.9.5 +Standards-Version: 3.9.6 Homepage: http://bitbucket.org/mchaput/whoosh/ X-Python-Version: = 2.5 X-Python3-Version: = 3.2 @@ -13,7 +13,6 @@ Vcs-Browser: http://anonscm.debian.org/gitweb/?p=collab-maint/python-whoosh.git Package: python-whoosh Architecture: all -Pre-Depends: dpkg (= 1.17.5) Depends: ${python:Depends}, ${misc:Depends} Suggests: python-whoosh-doc Description: pure-Python full-text indexing, search, and spell checking library (Python 2) @@ -29,7 +28,6 @@ Description: pure-Python full-text indexing, search, and spell checking library Package: python3-whoosh Architecture: all -Pre-Depends: dpkg (= 1.17.5) Depends: ${python3:Depends}, ${misc:Depends} Suggests: python-whoosh-doc Description: pure-Python full-text indexing, search, and spell checking library (Python 3) @@ -47,6 +45,7 @@ Package: python-whoosh-doc Architecture: all Section: doc Priority: extra +Pre-Depends: ${misc:Pre-Depends} Depends: ${misc:Depends}, ${sphinxdoc:Depends} Replaces: python-whoosh ( 2.1.0) Description: full-text indexing, search, and spell checking library (doc) diff --git a/debian/copyright b/debian/copyright index 687e355..8dcf9d8 100644 --- a/debian/copyright +++ b/debian/copyright @@ -9,7 +9,7 @@ License: BSD-2-clause Files: debian/* Copyright: 2009 Daniel Watkins dan...@daniel-watkins.co.uk - 2010-2014 أحمد المحمودي (Ahmed El-Mahmoudy) aelmahmo...@sabily.org + 2010-2014 أحمد المحمودي (Ahmed El-Mahmoudy) aelmahmo...@users.sourceforge.net License: BSD-2-clause License: BSD-2-clause diff --git a/debian/python-whoosh-doc.maintscript b/debian/python-whoosh-doc.maintscript new file mode 100644 index 000..3e276e1 --- /dev/null +++ b/debian/python-whoosh-doc.maintscript @@ -0,0 +1 @@ +symlink_to_dir /usr/share/doc/python-whoosh-doc python-whoosh 2.5.7-2.1~ diff --git a/debian/python-whoosh.maintscript b/debian/python-whoosh.maintscript deleted file mode 100644 index 3f0ae77..000 --- a/debian/python-whoosh.maintscript +++ /dev/null @@ -1 +0,0 @@ -symlink_to_dir /usr/share/doc/python-whoosh /usr/share/doc/python-whoosh-doc 2.4.1-1~ python-whoosh signature.asc Description:
Bug#769358: closed by Jonathan Wiltshire j...@debian.org (Re: Bug#769358: unblock: libjson-java/2.3-3)
Control: reopen -1 Hi Jonathan, Debian Bug Tracking System wrote (15 Nov 2014 12:09:09 GMT) : #769358: unblock: libjson-java/2.3-3 It has been closed by Jonathan Wiltshire j...@debian.org. $ curl -s https://release.debian.org/britney/hints/jmw | grep -B1 '^unblock libjson-java' #20141115 unblock libjson-java/ = the PTS says Unblock request by jmw ignored due to version mismatch:. -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/85mw7rrxym@boum.org
Processed: Re: Bug#769358 closed by Jonathan Wiltshire j...@debian.org (Re: Bug#769358: unblock: libjson-java/2.3-3)
Processing control commands: reopen -1 Bug #769358 {Done: Jonathan Wiltshire j...@debian.org} [release.debian.org] unblock: libjson-java/2.3-3 Bug reopened Ignoring request to alter fixed versions of bug #769358 to the same values previously set -- 769358: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769358 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769358.14161501105327.transcr...@bugs.debian.org
Processed: block 768671 with 769358
Processing commands for cont...@bugs.debian.org: block 768671 with 769358 Bug #768671 [src:jenkins] jenkins: FTBFS in jessie: build-dependency not installable: libjson-java 768671 was blocked by: 721072 768671 was not blocking any bugs. Added blocking bug(s) of 768671: 769358 thanks Stopping processing here. Please contact me if you need assistance. -- 768671: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768671 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.14161501175356.transcr...@bugs.debian.org
Re: Bug#751767: libBLT changes SONAME without changing package name
On Fri, Nov 14, 2014 at 11:46:14AM -0600, Sergei Golovan wrote: On the other hand, I've reviewed the licenses for the source codes and found a few disturbing files. They are library/dd_protocols/*.tcl (I've attached one of them here). The copyright statement stands: Copyright (c) 1993 ATT All Rights Reserved So, I'm unsure what to do now. That presumably makes this package undistributable, or have I misunderstood? The impact of that would be: Checking reverse dependencies... # Broken Depends: ngspice/non-free: tclspice [amd64] python-stdlib-extensions: python-tk python-tk-dbg python3-stdlib-extensions: python3-tk python3-tk-dbg saods9: saods9 sixpack/contrib: sixpack skycat: skycat tkdesk: tkdesk # Broken Build-Depends: magic: blt-dev ngspice/non-free: blt-dev python-stdlib-extensions: blt-dev (= 2.4z-9) python2.7: blt-dev (= 2.4z) python3-stdlib-extensions: blt-dev (= 2.4z-9) python3.4: blt-dev (= 2.4z) saods9: blt-dev (= 2.5.3) skycat: blt-dev (= 2.5.3) tkdesk: blt-dev (= 2.5.3) -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Processed: Re: Bug#769044: unblock (pre-approval): xfce4-notes-plugin
Processing control commands: tag -1 confirmed Bug #769044 [release.debian.org] unblock (pre-approval): xfce4-notes-plugin Added tag(s) confirmed. -- 769044: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769044 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769044.141615164317708.transcr...@bugs.debian.org
Bug#769330: marked as done (unblock: dh-python/1.20141111-1)
Your message dated Sun, 16 Nov 2014 15:31:36 + with message-id 20141116153136.gn6...@lupin.home.powdarrmonkey.net and subject line Re: Bug#769330: unblock: dh-python/1.2014-2 has caused the Debian Bug report #769330, regarding unblock: dh-python/1.2014-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769330: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769330 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package dh-python Python's Requires field can contain module names and hence dh_python2/dh_python3 was generating incorrect dependencies while guessing package name for modules with such requirements. See f.e. https://bugs.launchpad.net/ubuntu/+source/dh-python/+bug/1389283 In 1.2014-1 upload I changed dh_python* to use pre-generated list of all packages that ship Egg metadata (and not only those with unusual names - this change makes this upload backwards compatible) and disabled guessing for modules not available during build or on the fallback list. In Jessie+1 I will add a code that searches also for modules (unless you think such changes are acceptable for an unblock as well :). guess_dependency() is used only in pydist.py and depends.py (both support returning None in this function) The other change in this upload is to set binary package's Multi-Arch to foreign. `debdiff dh-python_1.20141026-1.dsc dh-python_1.2014-1.dsc | filterdiff -x '*_fallback'` output attached (fallback files contain list of all packages with Egg metadata) unblock dh-python/1.2014-1 diff -Nru dh-python-1.20141026/debian/changelog dh-python-1.2014/debian/changelog --- dh-python-1.20141026/debian/changelog 2014-10-26 23:41:38.0 +0100 +++ dh-python-1.2014/debian/changelog 2014-11-11 21:23:22.0 +0100 @@ -1,3 +1,15 @@ +dh-python (1.2014-1) unstable; urgency=medium + + * Set dh-python's Multi-Arch to foreign (closes: 767339) + * dist_fallback files now contain list of all packages that provide Egg +metadata (i.e. not just packages that don't have sensible name) + * dh_python* no longer guesses dependency from requires.txt files nor Requires +fields. Dependencies are generated only if given requirement is available +in dist_fallback file (generated at dh-python's build time) or if it's +available at build time (hint: Build-Depends) + + -- Piotr Ożarowski pi...@debian.org Tue, 11 Nov 2014 21:23:20 +0100 + dh-python (1.20141026-1) unstable; urgency=medium [ Stefano Rivera ] diff -Nru dh-python-1.20141026/debian/control dh-python-1.2014/debian/control --- dh-python-1.20141026/debian/control 2014-10-26 23:41:17.0 +0100 +++ dh-python-1.2014/debian/control 2014-11-11 15:42:25.0 +0100 @@ -14,6 +14,7 @@ Package: dh-python Architecture: all +Multi-Arch: foreign Depends: ${misc:Depends}, ${python3:Depends} Breaks: # due to /usr/bin/dh_python3 and debhelper files diff -Nru dh-python-1.20141026/dhpython/pydist.py dh-python-1.2014/dhpython/pydist.py --- dh-python-1.20141026/dhpython/pydist.py 2014-10-26 23:41:41.0 +0100 +++ dh-python-1.2014/dhpython/pydist.py 2014-11-11 21:23:41.0 +0100 @@ -117,13 +117,14 @@ def guess_dependency(impl, req, version=None): -log.debug('trying to guess dependency for %s (python=%s)', +log.debug('trying to find dependency for %s (python=%s)', req, version) if isinstance(version, str): version = Version(version) # some upstreams have weird ideas for distribution name... name, rest = re.compile('([^!= \(\)\[]+)(.*)').match(req).groups() +# TODO: check stdlib and dist-packaged for name.py and name.so files req = safe_name(name) + rest data = load(impl) @@ -154,7 +155,7 @@ else: return item['dependency'] -# try dpkg -S +# search for Egg metadata file or directory (using dpkg -S) query = PYDIST_DPKG_SEARCH_TPLS[impl].format(ci_regexp(safe_name(name))) log.debug(invoking dpkg -S %s, query) @@ -175,13 +176,13 @@ else: log.debug('dpkg -S did not find package for %s: %s', name, stderr) -# fall back to python-distname pname = sensible_pname(impl, name) -log.info('Cannot find installed package that provides %s. ' - 'Using %s as package name. Please add %s correct_package_name ' - 'line to %s to override it IF this is incorrect.', -
Re: Bug#751767: libBLT changes SONAME without changing package name
On Sun, Nov 16, 2014 at 6:20 PM, Jonathan Wiltshire j...@debian.org wrote: That presumably makes this package undistributable, or have I misunderstood? Yes, I think so as well. Fortunately, these files aren't important for the BLT library at all. In fact, I've found only one piece of software which ever uses one function from these sources (see the reference for dd_send_text in [1]). So, I believe I could just repackage the source package to make it distributable. [1] https://searchcode.com/codesearch/view/16892304/ Cheers! -- Sergei Golovan -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/CAOq2pXH=cwffgmuimppv7vedv5cv9iykb_22hm+o0psg3je...@mail.gmail.com
Bug#769358: marked as done (unblock: libjson-java/2.3-3)
Your message dated Sun, 16 Nov 2014 15:39:41 + with message-id 20141116153941.gq6...@lupin.home.powdarrmonkey.net and subject line Re: Bug#769358: closed by Jonathan Wiltshire j...@debian.org (Re: Bug#769358: unblock: libjson-java/2.3-3) has caused the Debian Bug report #769358, regarding unblock: libjson-java/2.3-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769358: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769358 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package libjson-java. The license uncertainty has been clarified (#721072) and it can be allowed back in testing. This will fix the build issue with jenkins in testing (#768671). Thank you unblock libjson-java/2.3-3 ---End Message--- ---BeginMessage--- On Sun, Nov 16, 2014 at 04:01:37PM +0100, intrigeri wrote: Debian Bug Tracking System wrote (15 Nov 2014 12:09:09 GMT) : #769358: unblock: libjson-java/2.3-3 It has been closed by Jonathan Wiltshire j...@debian.org. $ curl -s https://release.debian.org/britney/hints/jmw | grep -B1 '^unblock libjson-java' #20141115 unblock libjson-java/ = the PTS says Unblock request by jmw ignored due to version mismatch:. Oh, whoops. Thanks, updated. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature ---End Message---
Bug#769334: marked as done (unblock: python-boto/2.34.0-2)
Your message dated Sun, 16 Nov 2014 15:38:32 + with message-id 20141116153832.gp6...@lupin.home.powdarrmonkey.net and subject line Re: Bug#769334: unblock: python-boto/2.34.0-2 has caused the Debian Bug report #769334, regarding unblock: python-boto/2.34.0-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769334: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769334 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package python-boto to address bts#769310. Much of the full diff consists of whitespace changes, so I've attached output that separates them (filterdiff commands at the bottom of this email). I realize that new upstreams are frowned upon at this stage, but aside from the sigv4 fixes (important in their own right), and the addition of support for eu-central-1 (a big deal, particularly for German users of AWS), there is only a handful of minor changes (typos and the like) that remain. Backporting the required changes would come very close to yielding the same results. I also realize that I pulled the trigger on an unstable upload too quickly, and that I should have sought approval first. I also failed to reference #769310 in the changelog. Sorry about that, I have no excuse. Thanks, unblock python-boto/2.34.0-2 -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash [1]: whitespace debdiff python-boto_2.33.0-1.dsc python-boto_2.34.0-2.dsc \ | filterdiff \ -ipython-boto-2.33.0/boto/cloudtrail/exceptions.py \ -ipython-boto-2.33.0/boto/cloudtrail/layer1.py \ -ipython-boto-2.33.0/boto/datapipeline/layer1.py \ -ipython-boto-2.33.0/boto/directconnect/exceptions.py \ -ipython-boto-2.33.0/boto/directconnect/layer1.py \ -ipython-boto-2.33.0/boto/logs/layer1.py [2]: without whitespace debdiff python-boto_2.33.0-1.dsc python-boto_2.34.0-2.dsc \ | filterdiff \ -xpython-boto-2.33.0/boto/cloudtrail/exceptions.py \ -xpython-boto-2.33.0/boto/cloudtrail/layer1.py \ -xpython-boto-2.33.0/boto/datapipeline/layer1.py \ -xpython-boto-2.33.0/boto/directconnect/exceptions.py \ -xpython-boto-2.33.0/boto/directconnect/layer1.py \ -xpython-boto-2.33.0/boto/logs/layer1.py -- Eric Evans eev...@debian.org --- python-boto-2.33.0/boto/cloudtrail/exceptions.py 2014-10-08 14:41:04.0 -0500 +++ python-boto-2.34.0/boto/cloudtrail/exceptions.py 2014-10-23 11:19:50.0 -0500 @@ -24,6 +24,7 @@ pass + class InsufficientSnsTopicPolicyException(BotoServerError): Raised when the SNS topic does not allow Cloudtrail to post @@ -31,18 +32,21 @@ pass + class InvalidTrailNameException(BotoServerError): Raised when the trail name is invalid. pass + class InternalErrorException(BotoServerError): Raised when there was an internal Cloudtrail error. pass + class TrailNotFoundException(BotoServerError): Raised when the given trail name is not found. --- python-boto-2.33.0/boto/cloudtrail/layer1.py 2014-10-08 14:41:04.0 -0500 +++ python-boto-2.34.0/boto/cloudtrail/layer1.py 2014-10-23 11:19:50.0 -0500 @@ -75,7 +75,6 @@ InsufficientS3BucketPolicyException: exceptions.InsufficientS3BucketPolicyException, } - def __init__(self, **kwargs): region = kwargs.pop('region', None) if not region: @@ -351,4 +350,3 @@ exception_class = self._faults.get(fault_name, self.ResponseError) raise exception_class(response.status, response.reason, body=json_body) - --- python-boto-2.33.0/boto/datapipeline/layer1.py 2014-10-08 14:41:04.0 -0500 +++ python-boto-2.34.0/boto/datapipeline/layer1.py 2014-10-23 11:19:50.0 -0500 @@ -83,7 +83,6 @@ InternalServiceError: exceptions.InternalServiceError, } - def __init__(self, **kwargs): region = kwargs.pop('region', None) if not region: @@ -638,4 +637,3 @@ exception_class = self._faults.get(fault_name, self.ResponseError)
Processed: Re: Bug#769390: unblock: sane-backends/1.0.24-4
Processing control commands: tag -1 moreinfo Bug #769390 [release.debian.org] unblock: sane-backends/1.0.24-4 Added tag(s) moreinfo. -- 769390: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769390 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769390.141615281925253.transcr...@bugs.debian.org
Bug#769390: unblock: sane-backends/1.0.24-4
Control: tag -1 moreinfo On Thu, Nov 13, 2014 at 11:30:42AM +0100, Jörg Frings-Fürst wrote: diff -Nru sane-backends-1.0.24/debian/libsane-common.preinst sane-backends-1.0.24/debian/libsane-common.preinst --- sane-backends-1.0.24/debian/libsane-common.preinst1970-01-01 01:00:00.0 +0100 +++ sane-backends-1.0.24/debian/libsane-common.preinst2014-10-25 13:15:35.0 +0200 @@ -0,0 +1,32 @@ +#!/bin/sh +set -e + +# From http://wiki.debian.org/DpkgConffileHandling +# Remove a no-longer used conffile +rm_conffile() { +PKGNAME=$1 +CONFFILE=$2 +if [ -e $CONFFILE ]; then +md5sum=`md5sum \$CONFFILE\ | sed -e \s/ .*//\` +old_md5sum=`dpkg-query -W -f='${Conffiles}' $PKGNAME | sed -n -e \' $CONFFILE '{s/ obsolete$//;s/.* //p}\` +if [ $md5sum != $old_md5sum ]; then +echo Obsolete conffile $CONFFILE has been modified by you. +echo Saving as $CONFFILE.dpkg-bak ... +mv -f $CONFFILE $CONFFILE.dpkg-bak +else +echo Removing obsolete conffile $CONFFILE ... +rm -f $CONFFILE +fi +fi +} Would dpkg's maintscript helper be of use here? diff -Nru sane-backends-1.0.24/debian/libsane.symbols.amd64.org sane-backends-1.0.24/debian/libsane.symbols.amd64.org --- sane-backends-1.0.24/debian/libsane.symbols.amd64.org 2014-10-08 12:55:49.0 +0200 +++ sane-backends-1.0.24/debian/libsane.symbols.amd64.org 1970-01-01 01:00:00.0 +0100 What's this file and why is it removed? It's not mentioned in your changelog, unless I've misunderstood. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Bug#767961: [Pkg-opencl-devel] Bug#767961: #767961: unblock pre-approval: beignet/0.9.3~really.0.8+dfsg-1
Hi Andreas, On Sun, Nov 16, 2014 at 03:36:11PM +0100, Andreas Beckmann wrote: On 2014-11-16 15:18, Ivo De Decker wrote: We can drop beignet from jessie if you want that, but if you don't, an upload based on 0.8+dfsg-1 is the way to go. Feel free to upload the proposed patch to unstable, but remove the entry for 0.9.3~dfsg-1 from the changelog (the Can we upload this to TPU using a more sane version of 0.8+dfsg-1 instead? No, but you can use a version like 1:0.8+dfsg-1 in unstable if you don't like 0.9.3~really.0.8+dfsg-1. Cheers, Ivo -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141116154737.ga...@ugent.be
Processed: Re: Bug#769404: unblock: grilo-plugins/0.2.13-2
Processing control commands: tag -1 confirmed Bug #769404 [release.debian.org] unblock: grilo-plugins/0.2.13-2 Added tag(s) confirmed. -- 769404: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769404 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769404.141615288825533.transcr...@bugs.debian.org
Bug#769404: unblock: grilo-plugins/0.2.13-2
Control: tag -1 confirmed On Sat, Nov 15, 2014 at 03:33:20PM +0100, intrigeri wrote: Given the changes are small, seem to match the freeze policy, and can anyway be reverted later if needed: if I were you, I would skip the pre-approval procedure, upload to sid and then ping this bug to avoid more round-trips. Ack. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Bug#769780: vmdebootstrap 0.5-1 uploaded to unstable
retitle 769780 unblock: vmdebootstrap/0.5-1 thanks The final debdiff is attached, including the changes described in earlier plus the full details of the manpage changes to add information to a bootloaders section. unblock vmdebootstrap/0.5-1 -- Neil Williams = http://www.linux.codehelp.co.uk/ diffstat for vmdebootstrap-0.4 vmdebootstrap-0.5 debian/changelog | 10 ++ debian/control |4 ++-- vmdebootstrap |4 ++-- vmdebootstrap.8.in | 31 --- 4 files changed, 34 insertions(+), 15 deletions(-) diff -Nru vmdebootstrap-0.4/debian/changelog vmdebootstrap-0.5/debian/changelog --- vmdebootstrap-0.4/debian/changelog 2014-10-21 09:04:55.0 +0100 +++ vmdebootstrap-0.5/debian/changelog 2014-11-16 15:27:52.0 + @@ -1,3 +1,13 @@ +vmdebootstrap (0.5-1) unstable; urgency=medium + + * New upstream bug fix release for Jessie. + * Allow parted to reserve space for grub2 on disk when +also using --bootsize option. (Closes: #767913) + * Move grub2-common to Recommends. (Closes: #767196) + * Add section on bootloaders to manpage. + + -- Neil Williams codeh...@debian.org Sun, 16 Nov 2014 15:11:34 + + vmdebootstrap (0.4-3) unstable; urgency=medium * Fix syntax for excluding grub2-common on mips and s390x diff -Nru vmdebootstrap-0.4/debian/control vmdebootstrap-0.5/debian/control --- vmdebootstrap-0.4/debian/control 2014-10-21 09:04:55.0 +0100 +++ vmdebootstrap-0.5/debian/control 2014-11-16 15:27:52.0 + @@ -17,10 +17,10 @@ Architecture: linux-any Depends: debootstrap, qemu-utils, extlinux [amd64 i386], - grub2-common [!mips !s390x], kpartx, parted, python-cliapp, ${python:Depends}, ${misc:Depends} -Recommends: squashfs-tools, qemu-system, qemu-user-static +Recommends: grub2-common [!mips !s390x], + squashfs-tools, qemu-system, qemu-user-static Description: Bootstrap Debian into a (virtual machine) disk image vmdebootstrap is a wrapper around debootstrap to install Debian into a disk image, which can be used with a virtual machine (such as KVM). diff -Nru vmdebootstrap-0.4/vmdebootstrap vmdebootstrap-0.5/vmdebootstrap --- vmdebootstrap-0.4/vmdebootstrap 2014-10-18 19:35:19.0 +0100 +++ vmdebootstrap-0.5/vmdebootstrap 2014-11-16 15:10:24.0 + @@ -27,7 +27,7 @@ import time -__version__ = '0.4' +__version__ = '0.5' class VmDebootstrap(cliapp.Application): @@ -245,7 +245,7 @@ if self.settings['bootsize'] and self.settings['bootsize'] is not '0%': bootsize = str(self.settings['bootsize'] / (1024 * 1024)) self.runcmd(['parted', '-s', self.settings['image'], - 'mkpart', 'primary', 'fat16', '0', bootsize]) + 'mkpart', 'primary', 'fat16', '0%', bootsize]) else: bootsize = '0%' self.runcmd(['parted', '-s', self.settings['image'], diff -Nru vmdebootstrap-0.4/vmdebootstrap.8.in vmdebootstrap-0.5/vmdebootstrap.8.in --- vmdebootstrap-0.4/vmdebootstrap.8.in 2014-10-18 19:35:19.0 +0100 +++ vmdebootstrap-0.5/vmdebootstrap.8.in 2014-11-16 15:10:24.0 + @@ -57,16 +57,30 @@ or .BR qemu (1). Configure the virtual machine to use the image you've created. -Then start the virtual machine, +Then start the virtual machine, (see +.B EXAMPLES +) and log into it via its console to configure it. -.PP +The image has an empty root password and will not have networking +configured by default. Set the root password before you configure +networking. +.SH BOOTLOADERS Unless the \-\-no\-extlinux or \-\-grub options are specified, the image will use .BR extlinux (1) as a boot loader. -The image has an empty root password and will not have networking -configured by default. Set the root password before you configure -networking. +.B bootsize +is not recommended when using +.B extlinux +- use grub instead. +Versions of grub2 in wheezy +can fail to install in the VM, at which point vmdebootstrap will fall back to +extlinux. It may still be possible to complete the installation of grub2 after +booting the VM as the problem may be related to the need to use loopback +devices during the grub-install operation. Details of the error will appear in the +vmdebootstrap log file, if enabled with the \-\-log option. Note that +.B grub-legacy +is not supported. .SH OPTIONS .IP \-\-output=FILE write output to FILE, instead of standard output @@ -136,12 +150,7 @@ .IP \-\-grub Disable extlinux installation and configure grub2 instead. grub2 will be added to the list of packages to install. update-grub will be called once the debootstrap is -complete and grub-install will be called in the image. Versions of grub2 in wheezy -can fail to install in the VM, at which point vmdebootstrap will fall back to -extlinux. It may still be possible to complete the installation of grub2 after -booting the VM as the problem may be related to the need to use loopback -devices
Bug#769583: unblock: bind9/ 9.9.5 with patch or 9.9.6?
On 16 November 2014 16:58:47 CET, Jonathan Wiltshire j...@debian.org wrote: Control: tag -1 moreinfo On Fri, Nov 14, 2014 at 07:28:02PM +0100, Daniel Pocock wrote: I understand the release team would usually prefer to see the one line fix for debian/rules against the existing package and I'm happy to NMU if the maintainers aren't able to provide that in the next couple of days. However, does anybody feel there is a strong enough case to jump directly to the latest version, 9.9.6, does the security team have any opinion on this package and its upstream changelog? Did you get any responses from elsewhere to this? Not yet, I'll follow up after the weekend. If no response, I'm happy to NMU the one line fix to copy the missing header into the dev package, please advise if that would be OK for the release team. -- http://danielpocock.com -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/33c1282b-f4f8-4846-921a-4fdef3670...@pocock.pro
Bug#769583: unblock: bind9/ 9.9.5 with patch or 9.9.6?
Control: tag -1 moreinfo On Fri, Nov 14, 2014 at 07:28:02PM +0100, Daniel Pocock wrote: I understand the release team would usually prefer to see the one line fix for debian/rules against the existing package and I'm happy to NMU if the maintainers aren't able to provide that in the next couple of days. However, does anybody feel there is a strong enough case to jump directly to the latest version, 9.9.6, does the security team have any opinion on this package and its upstream changelog? Did you get any responses from elsewhere to this? -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Processed: Re: Bug#769583: unblock: bind9/ 9.9.5 with patch or 9.9.6?
Processing control commands: tag -1 moreinfo Bug #769583 [release.debian.org] unblock: bind9/ 9.9.5 with patch or 9.9.6? Added tag(s) moreinfo. -- 769583: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769583 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769583.141615353129906.transcr...@bugs.debian.org
Bug#769591: marked as done (unblock: owfs/2.9p8-6)
Your message dated Sun, 16 Nov 2014 16:01:20 + with message-id 20141116160120.gw6...@lupin.home.powdarrmonkey.net and subject line Re: Bug#769591: unblock: owfs/2.9p8-6 has caused the Debian Bug report #769591, regarding unblock: owfs/2.9p8-6 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769591: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769591 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package owfs Hi, In #769523, it has been reported that some spurious output can occurs when installing owfs-common. The reason is that ls is used to find with shell globs some files to handle but, when the glob do not match anything, ls complain. The bug is not RC but it occurs on (some) upgrade and the fix is really simple (redirect stderr of ls to /dev/null). As the bug is not RC, I ask you is it would be ok to upload this fix now (or if I must wait for jessie release). I know it is a purely cosmetic bug, no bad behavior is involved in any case. Regards, Vincent Debdiff against the testing version (2.9p8-5): vdanjean@eyak:~/debian/mainteneur/owfs/build-area$ debdiff owfs_2.9p8-5.dsc owfs_2.9p8-6.dsc diff -Nru owfs-2.9p8/debian/changelog owfs-2.9p8/debian/changelog --- owfs-2.9p8/debian/changelog 2014-11-08 23:15:12.0 +0100 +++ owfs-2.9p8/debian/changelog 2014-11-14 18:55:50.0 +0100 @@ -1,3 +1,10 @@ +owfs (2.9p8-6) unstable; urgency=medium + + * Hide ls error messages when nothing have to do done on +upgrade (Closes: #769523) + + -- Vincent Danjean vdanj...@debian.org Fri, 14 Nov 2014 18:54:21 +0100 + owfs (2.9p8-5) unstable; urgency=medium * Add missing Breaks/Replaces required due to some files moved diff -Nru owfs-2.9p8/debian/owfs-common.preinst owfs-2.9p8/debian/owfs-common.preinst --- owfs-2.9p8/debian/owfs-common.preinst 2014-11-08 23:15:12.0 +0100 +++ owfs-2.9p8/debian/owfs-common.preinst 2014-11-14 18:55:50.0 +0100 @@ -2,7 +2,7 @@ set -e last= -for i in $(ls /etc/modprobe.d/libow-*-*.conf) +for i in $(ls /etc/modprobe.d/libow-*-*.conf 2/dev/null) do if test $(md5sum $i) \ != 9c0ce25c8de4426c2dff7738ccf67f96 -; then vdanjean@eyak:~/debian/mainteneur/owfs/build-area$ unblock owfs/2.9p8-6 -- System Information: Debian Release: jessie/sid APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'unstable'), (500, 'testing'), (500, 'stable'), (500, 'oldstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 armel mipsel Kernel: Linux 3.16-3-amd64 (SMP w/8 CPU cores) Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- On Sun, Nov 16, 2014 at 10:55:49AM +0100, Vincent Danjean wrote: On 15/11/2014 12:40, Philipp Kern wrote: On Fri, Nov 14, 2014 at 09:06:08PM +0100, Vincent Danjean wrote: As the bug is not RC, I ask you is it would be ok to upload this fix now (or if I must wait for jessie release). Sounds good to me. Please ping the bug once it has reached the archive. Thanks. Unblocked. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature ---End Message---
Bug#769612: marked as done (unblock: bcache-tools/1.0.7-1)
Your message dated Sun, 16 Nov 2014 16:03:41 + with message-id 20141116160341.gx6...@lupin.home.powdarrmonkey.net and subject line Re: Bug#769612: unblock: bcache-tools/1.0.7-1 has caused the Debian Bug report #769612, regarding unblock: bcache-tools/1.0.7-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769612: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769612 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package bcache-tools This package didn't make it in time for the freeze, however jessie ships with a bcache-capable kernel so I think it is important to have userspace tools available. See also #708132 for more context. thanks! unblock bcache-tools/1.0.7-1 -- System Information: Debian Release: jessie/sid APT prefers testing-updates APT policy: (500, 'testing-updates'), (500, 'testing-proposed-updates'), (500, 'testing'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16-3-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- Control: tag -1 wontfix On Sat, Nov 15, 2014 at 12:30:48AM +, Filippo Giunchedi wrote: Please unblock package bcache-tools This package didn't make it in time for the freeze, however jessie ships with a bcache-capable kernel so I think it is important to have userspace tools available. See also #708132 for more context. Given that it arrived in unstable on 28th October, I'm not satisfied that this will have anywhere near enough testing for a stable release. I suggest you use jessie-backports when it becomes available. Thanks, -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature ---End Message---
Bug#769709: pre-approval: perl/5.20.1-3
Control: tag -1 confirmed On Sat, Nov 15, 2014 at 20:02:39 +0200, Niko Tyni wrote: Please let me know if you'd be OK with this, and many thanks for your work, ack. Cheers, Julien signature.asc Description: Digital signature
Bug#769711: unblock: pdns/3.4.1-3
Control: tag -1 moreinfo On Sat, Nov 15, 2014 at 19:16:14 +0100, Christian Hofstaedtler wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Dear Release Team, pdns 3.4.1-3 is a simple packaging change (in fact, it removes a single space character) to workaround bug #766559 in dpkg, where the fixed version of dpkg did not arrive on the buildds before 3.4.1-2 was built (and I did not know of that bug). Please unblock package pdns, debdiff follows. unblock pdns/3.4.1-3 Why is #769701 important? Cheers, Julien signature.asc Description: Digital signature
Processed: Re: Bug#769709: pre-approval: perl/5.20.1-3
Processing control commands: tag -1 confirmed Bug #769709 [release.debian.org] pre-approval: perl/5.20.1-3 Added tag(s) confirmed. -- 769709: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769709 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769709.14161542032260.transcr...@bugs.debian.org
Processed: Re: Bug#769711: unblock: pdns/3.4.1-3
Processing control commands: tag -1 moreinfo Bug #769711 [release.debian.org] unblock: pdns/3.4.1-3 Added tag(s) moreinfo. -- 769711: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769711 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769711.14161542962562.transcr...@bugs.debian.org
Processed: Re: Bug#769705: unblock: pdns-recursor/3.6.2-2
Processing control commands: tag -1 moreinfo Bug #769705 [release.debian.org] unblock: pdns-recursor/3.6.2-2 Added tag(s) moreinfo. -- 769705: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769705 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769705.14161543933065.transcr...@bugs.debian.org
Bug#769705: unblock: pdns-recursor/3.6.2-2
Control: tag -1 moreinfo On Sat, Nov 15, 2014 at 18:40:29 +0100, Christian Hofstaedtler wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Dear Release Team, pdns-recursor 3.6.2-2 contains only packaging changes, they are: * Set PACKAGEVERSION to identify the packages as coming from Debian for security polling support. This closes #767701 (important) What makes that bug important? Cheers, Julien signature.asc Description: Digital signature
Bug#767202: pu: package sysvinit/2.88dsf-41+deb7u1: bootlogd log on multiple consoles
Please don't break threads. Thanks, Julien signature.asc Description: Digital signature
Bug#769744: marked as done (nmu: ibutils_1.5.7-3)
Your message dated Sun, 16 Nov 2014 17:14:45 +0100 with message-id 20141116161445.gk2...@betterave.cristau.org and subject line Re: Bug#769744: nmu: ibutils_1.5.7-3 has caused the Debian Bug report #769744, regarding nmu: ibutils_1.5.7-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769744: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769744 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu libopensm5 ships three libraries with independent soversions. One of them had an unnoticed soversion bump at some point, rendering packages build against the old version installable but unusable. #769742 libopensm5 Reverse Depends: opensmsame source as libopensm5 libopensm-dev same source as libopensm5 libibnetdisc5 OK infiniband-diags OK libibdm1 OK ibutils BROKEN # ldd /usr/bin/ibis # a binary from ibutils linux-vdso.so.1 (0x7fffdadfc000) libopensm.so.5 = /usr/lib/x86_64-linux-gnu/libopensm.so.5 (0x7fa47d615000) libosmvendor.so.3 = not found libosmcomp.so.3 = /usr/lib/x86_64-linux-gnu/libosmcomp.so.3 (0x7fa47d406000) libopensm5 ships libosmvendor.so.4 nowadays Since it is too late for doing a proper transition for jessie, I would suggest to do a binNMU of ibutils (in jessie? or sid?) and tag #769742 jessie-ignore nmu ibutils_1.5.7-3 . ALL . jessie-proposed-updates . -m Rebuild against opensm 3.3.18 Is that the correct syntax? Do jessie binNMUs work that way? Since the version in jessie and sid is currently the same, would a jessie-binNMU be copied to sid afterwards? (This binNMU can probably be done safely in sid, too, if it is possible to migrate the binNMU. But what about cases where a binNMU in sid would pickup dependencies that cannot go to jessie?) Andreas ---End Message--- ---BeginMessage--- On Sun, Nov 16, 2014 at 03:29:41 +0100, Andreas Beckmann wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu libopensm5 ships three libraries with independent soversions. One of them had an unnoticed soversion bump at some point, rendering packages build against the old version installable but unusable. #769742 libopensm5 Reverse Depends: opensmsame source as libopensm5 libopensm-dev same source as libopensm5 libibnetdisc5 OK infiniband-diags OK libibdm1 OK ibutils BROKEN # ldd /usr/bin/ibis # a binary from ibutils linux-vdso.so.1 (0x7fffdadfc000) libopensm.so.5 = /usr/lib/x86_64-linux-gnu/libopensm.so.5 (0x7fa47d615000) libosmvendor.so.3 = not found libosmcomp.so.3 = /usr/lib/x86_64-linux-gnu/libosmcomp.so.3 (0x7fa47d406000) libopensm5 ships libosmvendor.so.4 nowadays Since it is too late for doing a proper transition for jessie, I would suggest to do a binNMU of ibutils (in jessie? or sid?) and tag #769742 jessie-ignore NAK, this needs to be fixed properly IMO. Cheers, Julien signature.asc Description: Digital signature ---End Message---
Bug#769711: unblock: pdns/3.4.1-3
* Julien Cristau jcris...@debian.org [141116 17:11]: Why is #769701 important? With PACKAGEVERSION being set wrong, this happens: pdns[28833]: Could not retrieve security status update for '.Debian' on 'auth-.Debian.security-status.secpoll.powerdns.com.', RCODE = Non-Existent domain So this does a DNS request on startup and periodically after some time to retrieve security status of the running powerdns. Right now this check is broken because the version encoded in the DNS label is missing (this is taken from PACKAGEVERSION). This causes quite useless/confusing log messages for our users, plus queries for invalid domains on the powerdns.com side. -- ,''`. Christian Hofstaedtler z...@debian.org : :' : Debian Developer `. `' 7D1A CFFA D9E0 806C 9C4C D392 5C13 D6DB 9305 2E03 `- pgpgXIN4uc5ZN.pgp Description: PGP signature
Bug#769773: marked as done (unblock: texlive-bin/2014.20140926.35254-3)
Your message dated Sun, 16 Nov 2014 17:18:39 +0100 with message-id 20141116161839.gl2...@betterave.cristau.org and subject line Re: Bug#769773: unblock: texlive-bin/2014.20140926.35254-3 has caused the Debian Bug report #769773, regarding unblock: texlive-bin/2014.20140926.35254-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769773: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769773 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Dear release team, here a bit more difficult unblock request for texlive-bin The last update I uploaded missed the freeze, but contains several pulls from upstream svn that would be very useful to have in the next stable release. The changelog lists the upstream changes: + * cherrypick fixes from upstream svn: +- fix enctex reading \^^ab control sequences +- fix mpost reading fontmap file multiple times (Closes: #767967) +- dvipdfmx fixes: + . fix pk support + . correct behaviour for subtractions in pkfont.c + . fix crash when gqpn is unset + . support for ghostscript 9.15 + . fix bug in spc_dvips_at_end_page (wrong logic) + * bump standards version, no changes necessary (full debdiff attached) All of these fixes are properly documented in the ChangeLog files changed by the respective patches in debian/patches/upstream-svnN-desc Thanks for your consideration Norbert unblock texlive-bin/2014.20140926.35254-3 -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (200, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.18.0-rc4+ (SMP w/4 CPU cores; PREEMPT) Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash diff -Nru texlive-bin-2014.20140926.35254/debian/changelog texlive-bin-2014.20140926.35254/debian/changelog --- texlive-bin-2014.20140926.35254/debian/changelog 2014-10-02 14:26:56.0 +0900 +++ texlive-bin-2014.20140926.35254/debian/changelog 2014-11-06 09:37:43.0 +0900 @@ -1,3 +1,18 @@ +texlive-bin (2014.20140926.35254-3) unstable; urgency=medium + + * cherrypick fixes from upstream svn: +- fix enctex reading \^^ab control sequences +- fix mpost reading fontmap file multiple times (Closes: #767967) +- dvipdfmx fixes: + . fix pk support + . correct behaviour for subtractions in pkfont.c + . fix crash when gqpn is unset + . support for ghostscript 9.15 + . fix bug in spc_dvips_at_end_page (wrong logic) + * bump standards version, no changes necessary + + -- Norbert Preining prein...@debian.org Thu, 06 Nov 2014 09:37:33 +0900 + texlive-bin (2014.20140926.35254-2) unstable; urgency=medium * remove libxp build dep (Closes: #763304) diff -Nru texlive-bin-2014.20140926.35254/debian/control texlive-bin-2014.20140926.35254/debian/control --- texlive-bin-2014.20140926.35254/debian/control 2014-10-02 14:26:56.0 +0900 +++ texlive-bin-2014.20140926.35254/debian/control 2014-11-06 09:37:43.0 +0900 @@ -4,7 +4,7 @@ Maintainer: Debian TeX Maintainers debian-tex-ma...@lists.debian.org Uploaders: Norbert Preining prein...@debian.org, Frank Küster fr...@kuesterei.ch Build-Depends: debhelper (= 7.0.50~), sharutils, libncurses5-dev | libncurses-dev, libxaw7-dev, zlib1g-dev | libz-dev, flex, bison, libpoppler-private-dev (= 0.12.4), libfontconfig1-dev, dh-autoreconf, time, libgraphite2-dev, libgs-dev, libpixman-1-dev (= 0.32.4), libzzip-dev (= 0.12), libharfbuzz-dev (= 0.9.18-3), libicu-dev, recode, texinfo, automake (= 1:1.13.1), autoconf (= 2.69), libtool (= 2.4.2), m4 (= 1.4.16), libpotrace-dev (= 1.11), libxi-dev, libpaper-dev, libmpfr-dev, libgmp-dev -Standards-Version: 3.9.5 +Standards-Version: 3.9.6 Homepage: http://www.tug.org/texlive/ Vcs-Git: git://anonscm.debian.org/debian-tex/texlive-bin.git Vcs-Browser: http://anonscm.debian.org/gitweb/?p=debian-tex/texlive-bin.git diff -Nru texlive-bin-2014.20140926.35254/debian/patches/series texlive-bin-2014.20140926.35254/debian/patches/series --- texlive-bin-2014.20140926.35254/debian/patches/series 2014-10-02 14:26:56.0 +0900 +++ texlive-bin-2014.20140926.35254/debian/patches/series 2014-11-06 09:37:43.0 +0900 @@ -12,3 +12,9 @@ upupstream-fix-math-list-crash-svn5019 upupstream-bug907-svn5024 libpng-arm64-neon-fix +upstream-svn35304-dvipdfmx-bug-spc-dvips-end-page +upstream-svn35312-dvipdfmx-ghostscript-fix
Bug#769705: unblock: pdns-recursor/3.6.2-2
Control: tag -1 - moreinfo * Julien Cristau jcris...@debian.org [141116 17:13]: * Set PACKAGEVERSION to identify the packages as coming from Debian for security polling support. This closes #767701 (important) What makes that bug important? pdns-recursor does a check with upstream to see if they think the version the user is running has a security issue. (This check is done using DNS and a log message is printed if there are known issues.) While this works fine with the current version, there's no way the powerdns.com servers can know if this is a Debian version or the vanilla thing. When a security upload happens it'd be useful for that to work, so a 3.6.2-2deb8u1 can be identified and be known as being a fixed version. (Right now, it asks for 3.6.2, not 3.6.2-1.Debian.) Thank you for your consideration, -- ,''`. Christian Hofstaedtler z...@debian.org : :' : Debian Developer `. `' 7D1A CFFA D9E0 806C 9C4C D392 5C13 D6DB 9305 2E03 `- pgpEQfXYl2tn0.pgp Description: PGP signature
Processed: Re: Bug#769705: unblock: pdns-recursor/3.6.2-2
Processing control commands: tag -1 - moreinfo Bug #769705 [release.debian.org] unblock: pdns-recursor/3.6.2-2 Removed tag(s) moreinfo. -- 769705: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769705 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769705.14161550397161.transcr...@bugs.debian.org
Processed: Re: Bug#769680: unblock: ntfs-3g/2014.2.15AR.3-1
Processing control commands: tag -1 moreinfo Bug #769680 [release.debian.org] unblock: ntfs-3g/2014.2.15AR.3-1 Added tag(s) moreinfo. -- 769680: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769680 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769680.141615591612559.transcr...@bugs.debian.org
Bug#769782: marked as done (rm: sipml5 from testing)
Your message dated Sun, 16 Nov 2014 17:34:43 +0100 with message-id 20141116163443.gm2...@betterave.cristau.org and subject line Re: Bug#769782: rm: sipml5 from testing has caused the Debian Bug report #769782, regarding rm: sipml5 from testing to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769782: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769782 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org User: release.debian@packages.debian.org UserTags: rm I just orphaned sipml5 and made an upload to sid changing maintainer to Debian QA Please remove from the testing/jessie distribution, it can hang around in sid a bit longer to see if anybody wants to take over. ---End Message--- ---BeginMessage--- On Sun, Nov 16, 2014 at 13:26:12 +0100, Daniel Pocock wrote: Package: release.debian.org User: release.debian@packages.debian.org UserTags: rm I just orphaned sipml5 and made an upload to sid changing maintainer to Debian QA Please remove from the testing/jessie distribution, it can hang around in sid a bit longer to see if anybody wants to take over. rm hint added. Cheers, Julien signature.asc Description: Digital signature ---End Message---
Bug#769680: unblock: ntfs-3g/2014.2.15AR.3-1
Control: tag -1 moreinfo On Sat, Nov 15, 2014 at 16:14:46 +0100, Laszlo Boszormenyi (GCS) wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Dear Release Team, I'm asking for permission to upload ntfs-3g/2014.2.15AR.3-1 as it fixes an RC bug[1]. Current version of ntfs-3g doesn't work with 2.6.x kernels as it falls back to a wrong FUSE compatibility level. Upstream released a new version which contains only a bugfix for this issue. That bug is currently not RC, at severity important. Nor should it be, as far as I can tell, the older kernel version jessie needs to handle is 3.2.x. Two things make it a bit difficult. Packages testdisk and partclone will need binNMUs: nmu testdisk_6.14-3 . ALL . -m rebuild against ntfs-3g 1:2014.2.15AR.3-1 nmu partclone_0.2.73-2 . ALL . -m rebuild against ntfs-3g 1:2014.2.15AR.3-1 The package contains an udeb, but it's not concerned about this bugfix. Would it be allowed for upload? I'm afraid not, a SONAME bump at this state is not acceptable. And I don't understand why this fix requires a SONAME bump, please clarify. Cheers, Julien signature.asc Description: Digital signature
Processed: tagging 769711
Processing commands for cont...@bugs.debian.org: tags 769711 - moreinfo Bug #769711 [release.debian.org] unblock: pdns/3.4.1-3 Removed tag(s) moreinfo. thanks Stopping processing here. Please contact me if you need assistance. -- 769711: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769711 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.141615626414705.transcr...@bugs.debian.org
Bug#769705: unblock: pdns-recursor/3.6.2-2
On Sun, Nov 16, 2014 at 17:24:02 +0100, Christian Hofstaedtler wrote: Control: tag -1 - moreinfo * Julien Cristau jcris...@debian.org [141116 17:13]: * Set PACKAGEVERSION to identify the packages as coming from Debian for security polling support. This closes #767701 (important) What makes that bug important? pdns-recursor does a check with upstream to see if they think the version the user is running has a security issue. (This check is done using DNS and a log message is printed if there are known issues.) Calling home sounds like a misfeature... Cheers, Julien signature.asc Description: Digital signature
Bug#769680: unblock: ntfs-3g/2014.2.15AR.3-1
On Sun, Nov 16, 2014 at 5:38 PM, Julien Cristau jcris...@debian.org wrote: On Sat, Nov 15, 2014 at 16:14:46 +0100, Laszlo Boszormenyi (GCS) wrote: I'm asking for permission to upload ntfs-3g/2014.2.15AR.3-1 as it fixes an RC bug[1]. Current version of ntfs-3g doesn't work with 2.6.x kernels as it falls back to a wrong FUSE compatibility level. Upstream released a new version which contains only a bugfix for this issue. That bug is currently not RC, at severity important. Nor should it be, as far as I can tell, the older kernel version jessie needs to handle is 3.2.x. It was RC, I've downgraded its severity when I couldn't reproduce it. Then the reported said s/he uses a 2.6.x kernel for his/her old (embedded) box. This way upstream could test and fix it. Would it be allowed for upload? I'm afraid not, a SONAME bump at this state is not acceptable. And I don't understand why this fix requires a SONAME bump, please clarify. Neither know to me why upstream did a SONAME bump. The new upstream release contains this fix only and the SONAME bump for an unknown reason. I can revert the latter of course. If you say Jessie only should support kernels later than 3.2.x while do not allow users to keep their old kernels (from Wheezy or earlier) then sure, this is a no go. Then it should be noted in the release notes that some programs, like ntfs-3g requires 3.2.x+ kernels. Otherwise please consider this upload, with the same SONAME like in Jessie. Cheers, Laszlo/GCS -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/cakjshr1-t9da1wc2jh_rkdqyeemvr7qyjczxhglbiyyndwd...@mail.gmail.com
Bug#769705: unblock: pdns-recursor/3.6.2-2
* Julien Cristau jcris...@debian.org [141116 17:45]: On Sun, Nov 16, 2014 at 17:24:02 +0100, Christian Hofstaedtler wrote: pdns-recursor does a check with upstream to see if they think the version the user is running has a security issue. (This check is done using DNS and a log message is printed if there are known issues.) Calling home sounds like a misfeature... In general I'd agree with you. Users can turn this off by setting security-poll-suffix empty, as pointed out by the upstream docs. I think for PowerDNS the home call is warranted, given that... 1) both pdns-server and -recursor are usually Internet exposed services that regularly see abuse (DDoS reflection, regular DoS, ...) 2) they usually end up being installed and then forgotten until they stop working (then somebody may read a log file) 3) upstream is not some evil enterprise corp, but a pure open source company that really tries to tie in and work with downstreams. Cheers, Christian -- ,''`. Christian Hofstaedtler z...@debian.org : :' : Debian Developer `. `' 7D1A CFFA D9E0 806C 9C4C D392 5C13 D6DB 9305 2E03 `- pgpFnTAYHsfTU.pgp Description: PGP signature
Bug#769612: unblock: bcache-tools/1.0.7-1
Control: tag -1 + moreinfo Hi Filippo, hi bcache-tools maintainers, [I'm not on the release team, just trying to give a hand.] Filippo Giunchedi wrote (15 Nov 2014 00:30:48 GMT) : This package didn't make it in time for the freeze, however jessie ships with a bcache-capable kernel so I think it is important to have userspace tools available. I acknowledge that giving Debian Jessie users the means to use bcache feels somewhat important strategically, which *might* be a good enough reason to make an exception to the freeze policy on this one. On the other hand: * Is there any strong reason why this use case cannot be addressed via jessie-backports? (if it were *that* important to have in Jessie, I guess the maintainers would probably have had it uploaded way earlier) * This package was accepted into Debian for the first time less than 3 weeks ago. What kind of testing has it seen? See also #708132 for more context. OK, so it has taken ages to get a package in good shape and uploaded to Debian. Hmm, this doesn't make me wish the release team lets this package go into Jessie despite the freeze policy. I would instead suggest maintaining bcache-tools in jessie-backports, and getting it in good shape early enough for the Stretch freeze :) What do the bcache-tools maintainers think? Cheers, -- intrigeri -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/858ujboyt1@boum.org
Bug#769404: unblock: grilo-plugins/0.2.13-2
On Sun, Nov 16, 2014 at 03:48:04PM +, Jonathan Wiltshire wrote: Given the changes are small, seem to match the freeze policy, and can anyway be reverted later if needed: if I were you, I would skip the pre-approval procedure, upload to sid and then ping this bug to avoid more round-trips. I updated the changelog message as suggested and uploaded the package, here's the debdiff. Thanks, Berto diff -Nru grilo-plugins-0.2.13/debian/changelog grilo-plugins-0.2.13/debian/changelog --- grilo-plugins-0.2.13/debian/changelog 2014-08-27 14:48:24.0 +0300 +++ grilo-plugins-0.2.13/debian/changelog 2014-11-16 17:58:56.0 +0200 @@ -1,3 +1,15 @@ +grilo-plugins (0.2.13-2) unstable; urgency=medium + + * debian/control: +- Add build dependency on librest-dev, needed by the Pocket + plugin. This has been working so far because librest-dev is also + a dependency of libgoa-1.0-dev, but we should not rely on that. +- Make grilo-plugins recommend dleyna-server (Closes: #765986). + * fix-dleyna-crash.patch: +- Fix crash due to variable redefinition (Closes: #769357). + + -- Alberto Garcia be...@igalia.com Sun, 16 Nov 2014 17:58:49 +0200 + grilo-plugins (0.2.13-1) unstable; urgency=medium * New upstream release (Closes: #750038). diff -Nru grilo-plugins-0.2.13/debian/control grilo-plugins-0.2.13/debian/control --- grilo-plugins-0.2.13/debian/control 2014-08-27 14:48:24.0 +0300 +++ grilo-plugins-0.2.13/debian/control 2014-11-16 17:58:56.0 +0200 @@ -10,6 +10,7 @@ yelp-tools, python-dbusmock, libarchive-dev, + librest-dev (= 0.7.90), libglib2.0-dev (= 2.36), libgrilo-0.2-dev (= 0.2.11), libxml2-dev, @@ -36,6 +37,7 @@ Pre-Depends: ${misc:Pre-Depends} Depends: ${shlibs:Depends}, ${misc:Depends} +Recommends: dleyna-server Description: Framework for discovering and browsing media - Plugins Grilo is a framework focused on making media discovery and browsing easy for application developers. diff -Nru grilo-plugins-0.2.13/debian/patches/fix-dleyna-crash.patch grilo-plugins-0.2.13/debian/patches/fix-dleyna-crash.patch --- grilo-plugins-0.2.13/debian/patches/fix-dleyna-crash.patch 1970-01-01 02:00:00.0 +0200 +++ grilo-plugins-0.2.13/debian/patches/fix-dleyna-crash.patch 2014-11-16 17:58:56.0 +0200 @@ -0,0 +1,16 @@ +From: Juan A. Suarez Romero jasua...@igalia.com +Subject: Remove variable redefinition +Bug: https://bugzilla.gnome.org/show_bug.cgi?id=740052 +Bug-Debian: https://bugs.debian.org/769357 +Index: grilo-plugins/src/dleyna/grl-dleyna-utils.c +=== +--- grilo-plugins.orig/src/dleyna/grl-dleyna-utils.c grilo-plugins/src/dleyna/grl-dleyna-utils.c +@@ -213,7 +213,6 @@ is_our_user_ipv6 (struct sockaddr_in6 *a + + status = g_io_channel_read_line (file, line, NULL, NULL, NULL); + while (status == G_IO_STATUS_NORMAL) { +-char *line; + int j, k, l; + /* 4*8 for IP, 4 for port, 1 for :, 1 for NUL */ + char buffer[4*8 + 4 + 1 + 1]; diff -Nru grilo-plugins-0.2.13/debian/patches/series grilo-plugins-0.2.13/debian/patches/series --- grilo-plugins-0.2.13/debian/patches/series 1970-01-01 02:00:00.0 +0200 +++ grilo-plugins-0.2.13/debian/patches/series 2014-11-16 17:58:56.0 +0200 @@ -0,0 +1 @@ +fix-dleyna-crash.patch
Processed: Re: Bug#769612: unblock: bcache-tools/1.0.7-1
Processing control commands: tag -1 + moreinfo Bug #769612 {Done: Jonathan Wiltshire j...@debian.org} [release.debian.org] unblock: bcache-tools/1.0.7-1 Added tag(s) moreinfo. -- 769612: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769612 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769612.141615791226109.transcr...@bugs.debian.org
Bug#769612: unblock: bcache-tools/1.0.7-1
Ooops, sorry, Jonathan had already replied. You can thus ignore my previous email on this bug. -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/85sihjnjya@boum.org
Bug#769680: unblock: ntfs-3g/2014.2.15AR.3-1
László Böszörményi (GCS) wrote (16 Nov 2014 16:49:43 GMT) : If you say Jessie only should support kernels later than 3.2.x while do not allow users to keep their old kernels (from Wheezy or earlier) then sure, this is a no go. Then it should be noted in the release notes that some programs, like ntfs-3g requires 3.2.x+ kernels. Data point: Wheezy ships with Linux 3.2. -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/85zjbrnk0s@boum.org
Bug#769813: pre-approval: unblock: hdapsd/1:20141024-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi, the current version of hdapsd in testing (1:20141024-1) behaves differently when installed on systemd-systems compared to sysvinit-systems: it is not started automatically as the unit is shipped in disabled state. Full blame on me for not properly checking my memory against the actual package. I would like to upload -2 to fix this. And if possible, update documentation and debian/watch in the same upload. The relevant diff would be like this: diff --git a/debian/README.Debian b/debian/README.Debian index 97ea7cf..f914834 100644 --- a/debian/README.Debian +++ b/debian/README.Debian @@ -1,6 +1,16 @@ hdapsd for Debian - +disable hdapsd +== + +hdapsd can be disabled on boot, if you want to start it manually. + +To disable hdapsd under systemd, use “systemctl disable hdapsd.service”. +For inits using the init.d scripts, adjust /etc/default/hdapsd to have + START=no +in it. + hdapsd with kernels = 2.6.27 = diff --git a/debian/rules b/debian/rules index fdbeae1..a7c6726 100755 --- a/debian/rules +++ b/debian/rules @@ -14,10 +14,3 @@ override_dh_auto_install: override_dh_auto_clean: dh_auto_clean rm -f $(CURDIR)/misc/*.service - -override_dh_systemd_enable: - # Do not enable the file by default on purpose. - # The user should enable it only after making sure the configuration is - # appropriate for his/her computer. - # This corresponds to START=no in /etc/default/hdapsd - dh_systemd_enable --no-enable diff --git a/debian/watch b/debian/watch index a7f75b4..b9ae217 100644 --- a/debian/watch +++ b/debian/watch @@ -1,3 +1,2 @@ version=3 -opts=filenamemangle=s/(?:.*)?v?(\d[\d\.]*)\.tar\.gz/hdapsd-$1.tar.gz/ \ - https://github.com/evgeni/hdapsd/tags (?:.*/)?v?(\d[\d\.]*)\.tar\.gz +https://github.com/evgeni/hdapsd/releases .*/download/.*/hdapsd-(\d[\d\.]*)\.tar\.gz Does this sound reasonable for you? Greets Evgeni -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20141116172401.17676.86630.reportbug@nana
Processed: Re: Bug#769612: unblock: bcache-tools/1.0.7-1
Processing control commands: tag -1 + moreinfo Bug #769612 {Done: Jonathan Wiltshire j...@debian.org} [release.debian.org] unblock: bcache-tools/1.0.7-1 Ignoring request to alter tags of bug #769612 to the same tags previously set -- 769612: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769612 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769612.1416158834398.transcr...@bugs.debian.org
Bug#769390: unblock: sane-backends/1.0.24-4
Hallo Jonathan, first thanks for your comments. Am Sonntag, den 16.11.2014, 15:46 + schrieb Jonathan Wiltshire: Control: tag -1 moreinfo On Thu, Nov 13, 2014 at 11:30:42AM +0100, Jörg Frings-Fürst wrote: diff -Nru sane-backends-1.0.24/debian/libsane-common.preinst sane-backends-1.0.24/debian/libsane-common.preinst --- sane-backends-1.0.24/debian/libsane-common.preinst 1970-01-01 01:00:00.0 +0100 +++ sane-backends-1.0.24/debian/libsane-common.preinst 2014-10-25 13:15:35.0 +0200 @@ -0,0 +1,32 @@ +#!/bin/sh +set -e + +# From http://wiki.debian.org/DpkgConffileHandling +# Remove a no-longer used conffile +rm_conffile() { [...] Would dpkg's maintscript helper be of use here? Yes. But I don't make to much changes in this version. diff -Nru sane-backends-1.0.24/debian/libsane.symbols.amd64.org sane-backends-1.0.24/debian/libsane.symbols.amd64.org --- sane-backends-1.0.24/debian/libsane.symbols.amd64.org 2014-10-08 12:55:49.0 +0200 +++ sane-backends-1.0.24/debian/libsane.symbols.amd64.org 1970-01-01 01:00:00.0 +0100 What's this file and why is it removed? It's not mentioned in your changelog, unless I've misunderstood. Sorry my error. I was thinking that I have deleted the file already in the last version. Normally I create the symbol file from my local logs. But I don't have any architectures / ports available. So I rename this files and delete them before upload. At last I build the files from debian logs. The symbol files are also not included, because I don't make to much changes. If you want I can make the changes shortly and upload the new packages to my sponsor. I wish you a nice Sunday evening. CU Jörg -- pgp Fingerprint: 7D13 3C60 0A10 DBE1 51F8 EBCB 422B 44B0 BE58 1B6E pgp Key: BE581B6E CAcert Key S/N: 0E:D4:56 Jörg Frings-Fürst D-54526 Niederkail Threema: SYR8SJXB IRC: j_...@freenode.net j_...@oftc.net signature.asc Description: This is a digitally signed message part
Bug#769680: unblock: ntfs-3g/2014.2.15AR.3-1
On Sun, Nov 16, 2014 at 6:16 PM, intrigeri intrig...@debian.org wrote: László Böszörményi (GCS) wrote (16 Nov 2014 16:49:43 GMT) : If you say Jessie only should support kernels later than 3.2.x while do not allow users to keep their old kernels (from Wheezy or earlier) then sure, this is a no go. Then it should be noted in the release notes that some programs, like ntfs-3g requires 3.2.x+ kernels. Data point: Wheezy ships with Linux 3.2. Then that kernel comes from Squeeze or an own compilation. Question still remains, should ntfs-3g support Jessie userland and 2.6.x kernel combo like the bug reporter has or not. Laszlo/GCS -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/cakjshr0cmdgmidw-wvbdwy-ff73dobu2hgse-fabo+i8rcf...@mail.gmail.com
Bug#769680: unblock: ntfs-3g/2014.2.15AR.3-1
László Böszörményi (GCS) wrote (16 Nov 2014 18:15:34 GMT) : Question still remains, should ntfs-3g support Jessie userland and 2.6.x kernel combo like the bug reporter has or not. Lack of support for this combination shouldn't be RC, in my opinion. Cheers, -- intrigeri -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/85vbmfkmr5@boum.org
Bug#769498: unblock: rtkit/0.11-2
On Sat, Nov 15, 2014 at 9:16 AM, Jonathan Wiltshire j...@debian.org wrote: Control: tag -1 confirmed On Fri, Nov 14, 2014 at 12:08:35AM -0300, Felipe Sateler wrote: I write to ask if the attached diff would be an appropriate upload to unstable that would be granted an unblock request. It fixes two severity important bugs: Yes. Please ping when it's in the archive. I uploaded this today. Thanks -- Saludos, Felipe Sateler -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/caafdzj-msg3egzh4dncxdbg5y5y78jg0g6pvs0syzjlyoa6...@mail.gmail.com
Bug#769404: marked as done (unblock: grilo-plugins/0.2.13-2)
Your message dated Sun, 16 Nov 2014 20:36:04 + with message-id 20141116203604.gy6...@lupin.home.powdarrmonkey.net and subject line Re: Bug#769404: unblock: grilo-plugins/0.2.13-2 has caused the Debian Bug report #769404, regarding unblock: grilo-plugins/0.2.13-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769404: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769404 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package grilo-plugins I'm about to upload the new package, which contains the following fixes: http://bugs.debian.org/769357 There is a variable redefinition in the code that parses IPv6 addresses that makes the plugin crash (in short: the code iterates over an uninitialized array). This renders programs like totem unusable. http://bugs.debian.org/765986 The dLeyna plugin uses the dleyna-server DBUS API, but the grilo-plugins package does not define any relationship to dleyna-server. This change adds a Recommends: dleyna-server field. In addition to that, I added a build dependency on librest-dev. This is a hard requirement for one of the plugins and the dependency is explicitly checked in the configure script. If it's working at the moment it's because it's coincidentally being pulled by other build dependencies. I don't have any bug for this, so if this change is not appropriate I'll revert it. I haven't uploaded the package yet, I'll do it as soon as I get the confirmation that the changes are fine. Thanks! unblock grilo-plugins/0.2.13-2 -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash diff -Nru grilo-plugins-0.2.13/debian/changelog grilo-plugins-0.2.13/debian/changelog --- grilo-plugins-0.2.13/debian/changelog 2014-08-27 14:48:24.0 +0300 +++ grilo-plugins-0.2.13/debian/changelog 2014-11-13 14:11:23.0 +0200 @@ -1,3 +1,13 @@ +grilo-plugins (0.2.13-2) unstable; urgency=medium + + * debian/control: +- Add build dependency on librest-dev. +- Make grilo-plugins recommend dleyna-server (Closes: #765986). + * fix-dleyna-crash.patch: +- Fix crash due to variable redefinition (Closes: #769357). + + -- Alberto Garcia be...@igalia.com Thu, 13 Nov 2014 14:11:07 +0200 + grilo-plugins (0.2.13-1) unstable; urgency=medium * New upstream release (Closes: #750038). diff -Nru grilo-plugins-0.2.13/debian/control grilo-plugins-0.2.13/debian/control --- grilo-plugins-0.2.13/debian/control 2014-08-27 14:48:24.0 +0300 +++ grilo-plugins-0.2.13/debian/control 2014-11-13 14:11:23.0 +0200 @@ -10,6 +10,7 @@ yelp-tools, python-dbusmock, libarchive-dev, + librest-dev (= 0.7.90), libglib2.0-dev (= 2.36), libgrilo-0.2-dev (= 0.2.11), libxml2-dev, @@ -36,6 +37,7 @@ Pre-Depends: ${misc:Pre-Depends} Depends: ${shlibs:Depends}, ${misc:Depends} +Recommends: dleyna-server Description: Framework for discovering and browsing media - Plugins Grilo is a framework focused on making media discovery and browsing easy for application developers. diff -Nru grilo-plugins-0.2.13/debian/patches/fix-dleyna-crash.patch grilo-plugins-0.2.13/debian/patches/fix-dleyna-crash.patch --- grilo-plugins-0.2.13/debian/patches/fix-dleyna-crash.patch 1970-01-01 02:00:00.0 +0200 +++ grilo-plugins-0.2.13/debian/patches/fix-dleyna-crash.patch 2014-11-13 14:11:23.0 +0200 @@ -0,0 +1,16 @@ +From: Juan A. Suarez Romero jasua...@igalia.com +Subject: Remove variable redefinition +Bug: https://bugzilla.gnome.org/show_bug.cgi?id=740052 +Bug-Debian: https://bugs.debian.org/769357 +Index: grilo-plugins/src/dleyna/grl-dleyna-utils.c +=== +--- grilo-plugins.orig/src/dleyna/grl-dleyna-utils.c grilo-plugins/src/dleyna/grl-dleyna-utils.c +@@ -213,7 +213,6 @@ is_our_user_ipv6 (struct sockaddr_in6 *a + + status = g_io_channel_read_line (file, line, NULL, NULL, NULL); + while (status == G_IO_STATUS_NORMAL) { +-char *line; + int j, k, l; + /* 4*8 for IP, 4 for port, 1 for :, 1 for NUL */ + char buffer[4*8 + 4 + 1 + 1]; diff -Nru
Bug#769498: marked as done (unblock: rtkit/0.11-2)
Your message dated Sun, 16 Nov 2014 20:37:32 + with message-id 20141116203732.gz6...@lupin.home.powdarrmonkey.net and subject line Re: Bug#769498: unblock: rtkit/0.11-2 has caused the Debian Bug report #769498, regarding unblock: rtkit/0.11-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769498: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769498 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Dear release team, I write to ask if the attached diff would be an appropriate upload to unstable that would be granted an unblock request. It fixes two severity important bugs: #696900 Wrong build-dependency on libpolkit-backend-1-dev #747568 [rtkit-daemon.service:32] Unknown lvalue 'ControlGroup' The first should avoid a FTBFS when polkit is updated in unstable (probably soon after jessie is released), the second avoids a warning during boot on systemd systems. Please find attached the diff of the proposed upload against 0.11-1. -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash diff --git a/debian/changelog b/debian/changelog index c32f5f7..8dc7726 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,11 @@ +rtkit (0.11-2) unstable; urgency=medium + + * Remove build dependency on libpolkit-backend-1-dev, it is not used +(Closes: #696900) + * Drop removed ControlGroup stanza (Closes: #747568) + + -- Felipe Sateler fsate...@debian.org Thu, 13 Nov 2014 23:56:19 -0300 + rtkit (0.11-1) unstable; urgency=low * New upstream release. diff --git a/debian/control b/debian/control index 7e6ae4c..b9c317d 100644 --- a/debian/control +++ b/debian/control @@ -11,7 +11,6 @@ Build-Depends: debhelper (= 7.0.50~), libcap-dev, libdbus-1-dev, - libpolkit-backend-1-dev Standards-Version: 3.9.5 Vcs-Git: https://alioth.debian.org/anonscm/git/pkg-multimedia/rtkit.git Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-multimedia/rtkit.git diff --git a/debian/patches/0002-Drop-Removed-ControlGroup-stanza.patch b/debian/patches/0002-Drop-Removed-ControlGroup-stanza.patch new file mode 100644 index 000..763953b --- /dev/null +++ b/debian/patches/0002-Drop-Removed-ControlGroup-stanza.patch @@ -0,0 +1,17 @@ +Description: Drop removed ControlGroup stanza + Systemd = 205 do not have this directive anymore. + This is not a problem for us because the debian kernel does not have + CONFIG_RT_GROUP_SCHED enabled, so rt budgets are not per-cgroup +Bug-Debian: 747568 +--- a/rtkit-daemon.service.in b/rtkit-daemon.service.in +@@ -27,9 +27,5 @@ CapabilityBoundingSet=CAP_SYS_NICE CAP_D + PrivateTmp=yes + PrivateNetwork=yes + +-# Work around the fact that the Linux currently doesn't assign any RT +-# budget to CPU control groups that have none configured explicitly +-ControlGroup=cpu:/ +- + [Install] + WantedBy=graphical.target diff --git a/debian/patches/series b/debian/patches/series index cf9a390..1558bca 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -1 +1,2 @@ 0001-SECURITY-Pass-uid-of-caller-to-polkit.patch +0002-Drop-Removed-ControlGroup-stanza.patch ---End Message--- ---BeginMessage--- On Sun, Nov 16, 2014 at 04:17:03PM -0300, Felipe Sateler wrote: On Sat, Nov 15, 2014 at 9:16 AM, Jonathan Wiltshire j...@debian.org wrote: Control: tag -1 confirmed On Fri, Nov 14, 2014 at 12:08:35AM -0300, Felipe Sateler wrote: I write to ask if the attached diff would be an appropriate upload to unstable that would be granted an unblock request. It fixes two severity important bugs: Yes. Please ping when it's in the archive. I uploaded this today. Unblocked. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature ---End Message---
Bug#769711: unblock: pdns/3.4.1-3
On Sun, Nov 16, 2014 at 05:19:12PM +0100, Christian Hofstaedtler wrote: * Julien Cristau jcris...@debian.org [141116 17:11]: Why is #769701 important? With PACKAGEVERSION being set wrong, this happens: pdns[28833]: Could not retrieve security status update for '.Debian' on 'auth-.Debian.security-status.secpoll.powerdns.com.', RCODE = Non-Existent domain So this does a DNS request on startup and periodically after some time to retrieve security status of the running powerdns. Right now this check is broken because the version encoded in the DNS label is missing (this is taken from PACKAGEVERSION). This causes quite useless/confusing log messages for our users, plus queries for invalid domains on the powerdns.com side. I'm not sure how happy I am at the idea of powerdns phoning home for this. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Bug#769780: marked as done (unblock: vmdebootstrap/0.5-1)
Your message dated Sun, 16 Nov 2014 20:41:27 + with message-id 20141116204127.gb6...@lupin.home.powdarrmonkey.net and subject line Re: Bug#769780: vmdebootstrap 0.5-1 uploaded to unstable has caused the Debian Bug report #769780, regarding unblock: vmdebootstrap/0.5-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769780: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769780 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock I'd like to close two important bugs in vmdebootstrap and upload to unstable to migrate these changes into jessie: #767196 - downgrade dependency on grub2-common (used for grub2 support inside vm images) to a Recommends: to allow for users who are running grub-legacy. #767913 - one character change to the grub2 support to allow a boot partition to be used in a VM image using grub2. Both fixes would also be considered for an update to the existing wheezy-backport, once migrated into jessie. The current package limits users of grub-legacy to not be able to use grub2 in VM images, so this needs to be expressed in the manpage. So I'm proposing to make a new upstream release with the patch from 767913 applied, the changes for 767196 made in debian/control and updates to the grub2 section of the manpage made upstream. If these changes are not likely to be approved, I'll work on a range of the other bugs filed against vmdebootstrap and make a 0.5 upstream tag and release to upload to experimental only. So the debdiff is not complete at this stage but will contain: diff --git a/debian/control b/debian/control index 00518f3..6cb5338 100644 --- a/debian/control +++ b/debian/control @@ -17,10 +17,10 @@ Package: vmdebootstrap Architecture: linux-any Depends: debootstrap, qemu-utils, extlinux [amd64 i386], - grub2-common [!mips !s390x], kpartx, parted, python-cliapp, ${python:Depends}, ${misc:Depends} -Recommends: squashfs-tools, qemu-system, qemu-user-static +Recommends: grub2-common [!mips !s390x], + squashfs-tools, qemu-system, qemu-user-static Description: Bootstrap Debian into a (virtual machine) disk image vmdebootstrap is a wrapper around debootstrap to install Debian into a disk image, which can be used with a virtual machine (such as KVM). and the patch in the BTS: https://bugs.debian.org/cgi-bin/bugreport.cgi?msg=20;filename=0001-Make-grub-installation-work-even-with-a-boot-partiti.patch;att=1;bug=767913 (applied upstream) + changes in the manpage. -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 armhf arm64 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_GB.UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- On Sun, Nov 16, 2014 at 03:55:46PM +, Neil Williams wrote: retitle 769780 unblock: vmdebootstrap/0.5-1 thanks The final debdiff is attached, including the changes described in earlier plus the full details of the manpage changes to add information to a bootloaders section. Thanks, unblocked. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature ---End Message---
Bug#769795: marked as done (unblock: python-whoosh/2.5.7-3)
Your message dated Sun, 16 Nov 2014 20:44:36 + with message-id 20141116204436.gc6...@lupin.home.powdarrmonkey.net and subject line Re: Bug#769795: unblock: python-whoosh/2.5.7-3 has caused the Debian Bug report #769795, regarding unblock: python-whoosh/2.5.7-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769795: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769795 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package python-whoosh Reason for unblock: * Change python-whoosh.maintscript into python-whoosh-doc.maintscript /usr/share/doc/python-whoosh-doc was a link to python-whoosh. Fixed 'prior-version' as the current one, see dpkg-maintscript-helper(1). Drop optional 'package' since where are not using maintscript but python-whoosh-doc.maintscript. Drop unused Pre-Depends on dpkg with support of symlink_to_dir, added missing Pre-Depends on misc:Pre-Depends in python-whoosh-doc (Closes: #768275) Debdiff attached. unblock python-whoosh/2.5.7-3 -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (990, 'testing'), (500, 'testing-updates'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- أحمد المحمودي (Ahmed El-Mahmoudy) Digital design engineer GPG KeyID: 0xEDDDA1B7 GPG Fingerprint: 8206 A196 2084 7E6D 0DF8 B176 BC19 6A94 EDDD A1B7 diff --git a/debian/changelog b/debian/changelog index 1e1c72d..6f93923 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,20 @@ +python-whoosh (2.5.7-3) unstable; urgency=medium + + [ أحمد المحمودي (Ahmed El-Mahmoudy) ] + * Update my email address. + * debian/control: Bumped Standards-Version to 3.9.6 + + [ Jean-Michel Nirgal Vourgère ] + * Change python-whoosh.maintscript into python-whoosh-doc.maintscript +/usr/share/doc/python-whoosh-doc was a link to python-whoosh. Fixed +'prior-version' as the current one, see dpkg-maintscript-helper(1). Drop +optional 'package' since where are not using maintscript but +python-whoosh-doc.maintscript. Drop unused Pre-Depends on dpkg with support +of symlink_to_dir, added missing Pre-Depends on misc:Pre-Depends in +python-whoosh-doc (Closes: #768275) + + -- أحمد المحمودي (Ahmed El-Mahmoudy) aelmahmo...@users.sourceforge.net Sun, 16 Nov 2014 12:16:23 +0200 + python-whoosh (2.5.7-2) unstable; urgency=medium [ Zygmunt Krynicki ] diff --git a/debian/control b/debian/control index 3355663..e7b736a 100644 --- a/debian/control +++ b/debian/control @@ -1,10 +1,10 @@ Source: python-whoosh Section: python Priority: optional -Maintainer: أحمد المحمودي (Ahmed El-Mahmoudy) aelmahmo...@sabily.org +Maintainer: أحمد المحمودي (Ahmed El-Mahmoudy) aelmahmo...@users.sourceforge.net Build-Depends: debhelper (= 9), dh-python, python-setuptools, python3-setuptools Build-Depends-Indep: python3-sphinx (= 1.0.7+dfsg), python-all (= 2.6.6-2), python3-all, python-pytest, python3-pytest -Standards-Version: 3.9.5 +Standards-Version: 3.9.6 Homepage: http://bitbucket.org/mchaput/whoosh/ X-Python-Version: = 2.5 X-Python3-Version: = 3.2 @@ -13,7 +13,6 @@ Vcs-Browser: http://anonscm.debian.org/gitweb/?p=collab-maint/python-whoosh.git Package: python-whoosh Architecture: all -Pre-Depends: dpkg (= 1.17.5) Depends: ${python:Depends}, ${misc:Depends} Suggests: python-whoosh-doc Description: pure-Python full-text indexing, search, and spell checking library (Python 2) @@ -29,7 +28,6 @@ Description: pure-Python full-text indexing, search, and spell checking library Package: python3-whoosh Architecture: all -Pre-Depends: dpkg (= 1.17.5) Depends: ${python3:Depends}, ${misc:Depends} Suggests: python-whoosh-doc Description: pure-Python full-text indexing, search, and spell checking library (Python 3) @@ -47,6 +45,7 @@ Package: python-whoosh-doc Architecture: all Section: doc Priority: extra +Pre-Depends: ${misc:Pre-Depends} Depends: ${misc:Depends}, ${sphinxdoc:Depends} Replaces: python-whoosh ( 2.1.0) Description: full-text indexing, search, and spell checking library (doc) diff --git a/debian/copyright b/debian/copyright index 687e355..8dcf9d8 100644 --- a/debian/copyright +++ b/debian/copyright @@ -9,7 +9,7 @@ License: BSD-2-clause Files: debian/* Copyright: 2009 Daniel Watkins
Bug#769705: Bug#769711: unblock: pdns/3.4.1-3
* Jonathan Wiltshire j...@debian.org [141116 21:39]: On Sun, Nov 16, 2014 at 05:19:12PM +0100, Christian Hofstaedtler wrote: So this does a DNS request on startup and periodically after some time to retrieve security status of the running powerdns. Right now this check is broken because the version encoded in the DNS label is missing (this is taken from PACKAGEVERSION). [..] I'm not sure how happy I am at the idea of powerdns phoning home for this. I made some points rgd. this in #769705, which is the unblock bug for pdns-recursor. (See message #29.) I want to clarify that both updates are not to *enable* the polling, but to correct the embedded version number (polling is on by default and can be turned off). -- ,''`. Christian Hofstaedtler z...@debian.org : :' : Debian Developer `. `' 7D1A CFFA D9E0 806C 9C4C D392 5C13 D6DB 9305 2E03 `- pgpzARdHmM7BM.pgp Description: PGP signature
Bug#769668: wheezy-pu: package showfoto/4:2.6.0-1
Control: tag -1 confirmed On Sun, Nov 16, 2014 at 12:07:07PM +0100, Julien Cristau wrote: On Sun, Nov 16, 2014 at 10:58:25 +, Jonathan Wiltshire wrote: Control: tag -1 moreinfo Hi, On Sat, Nov 15, 2014 at 01:36:15PM +, Jean-Michel Nirgal Vourgère wrote: Showfoto fails to upgrade from squeeze. See #767570. The fix is trivial. Attached is a proposal. Do you think this is ok to put in wheezy? This needs to be fixed in unstable first, and migrated to Jessie. The bug affects squeeze to wheezy upgrades, it's not relevant for jessie. Granted, but I don't think the Jessie version should drop the Breaks even so. It feels dishonest. But I don't have especially strong feelings, so I'll accept an upload to just Wheezy if that's more straightforward. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Processed: Re: Bug#769668: wheezy-pu: package showfoto/4:2.6.0-1
Processing control commands: tag -1 confirmed Bug #769668 [release.debian.org] wheezy-pu: package showfoto/4:2.6.0-1 Added tag(s) confirmed. -- 769668: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769668 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769668.141617126512572.transcr...@bugs.debian.org
Bug#769705: Bug#769711: unblock: pdns/3.4.1-3
On Sun, Nov 16, 2014 at 09:54:50PM +0100, Christian Hofstaedtler wrote: * Jonathan Wiltshire j...@debian.org [141116 21:39]: On Sun, Nov 16, 2014 at 05:19:12PM +0100, Christian Hofstaedtler wrote: So this does a DNS request on startup and periodically after some time to retrieve security status of the running powerdns. Right now this check is broken because the version encoded in the DNS label is missing (this is taken from PACKAGEVERSION). [..] I'm not sure how happy I am at the idea of powerdns phoning home for this. I made some points rgd. this in #769705, which is the unblock bug for pdns-recursor. (See message #29.) Followed up there. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Bug#769705: unblock: pdns-recursor/3.6.2-2
On Sun, Nov 16, 2014 at 06:00:12PM +0100, Christian Hofstaedtler wrote: * Julien Cristau jcris...@debian.org [141116 17:45]: On Sun, Nov 16, 2014 at 17:24:02 +0100, Christian Hofstaedtler wrote: pdns-recursor does a check with upstream to see if they think the version the user is running has a security issue. (This check is done using DNS and a log message is printed if there are known issues.) Calling home sounds like a misfeature... In general I'd agree with you. Users can turn this off by setting security-poll-suffix empty, as pointed out by the upstream docs. I think for PowerDNS the home call is warranted, given that... 1) both pdns-server and -recursor are usually Internet exposed services that regularly see abuse (DDoS reflection, regular DoS, ...) 2) they usually end up being installed and then forgotten until they stop working (then somebody may read a log file) 3) upstream is not some evil enterprise corp, but a pure open source company that really tries to tie in and work with downstreams. We have a security team for this. Users who want to stay secure should subscribe to debian-security-announce, and react to DSAs. I'd be pretty surprised if I installed pdns-* and found them checking up on security for me, even if it is mentioned in the upstream docs. After all, the point of installing from packages is that the maintainer has done the donkey work of making things work, so I might not even have cause to refer to them. I realise this is done with the best of intentions by upstream, but it would be better if they worked with the security team and stable release managers to proactively push updates out to users, instead of relying on them finding a log snippet. IMO this should be conservative and disabled by default in the package. That said, I'm not about to pull pdns from Jessie for it. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Processed: Re: Bug#769813: pre-approval: unblock: hdapsd/1:20141024-2
Processing control commands: tag -1 moreinfo Bug #769813 [release.debian.org] pre-approval: unblock: hdapsd/1:20141024-2 Added tag(s) moreinfo. -- 769813: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769813 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b769813.141617251920280.transcr...@bugs.debian.org
Bug#769829: unblock: haskell-tls/1.2.9-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Please unblock package haskell-tls Thijs Kinkhorst suggested to remove SSL3 support from haskell-tls due to the POODLE attack. This patch follows that recommendating, taking upstream’s trivial change to disable SSL3 by default. See http://bugs.debian.org/768164 unblock haskell-tls/1.2.9-2 - -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (101, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 armhf Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -BEGIN PGP SIGNATURE- Version: GnuPG v1 iEYEARECAAYFAlRpFAgACgkQ9ijrk0dDIGyPjgCfcz7/6ki8vVlccE3aw+PBzbJ3 YdcAn0r90WOQpw0STAbfvgB3QHJjo35h =WlbC -END PGP SIGNATURE- diff -Nru haskell-tls-1.2.9/debian/changelog haskell-tls-1.2.9/debian/changelog --- haskell-tls-1.2.9/debian/changelog 2014-09-16 20:43:09.0 +0200 +++ haskell-tls-1.2.9/debian/changelog 2014-11-16 21:47:16.0 +0100 @@ -1,3 +1,9 @@ +haskell-tls (1.2.9-2) unstable; urgency=medium + + * Disable SSL3 by default (Closes: #768164) + + -- Joachim Breitner nome...@debian.org Sun, 16 Nov 2014 21:47:16 +0100 + haskell-tls (1.2.9-1) unstable; urgency=medium * New upstream version. diff -Nru haskell-tls-1.2.9/debian/patches/no-ssl3 haskell-tls-1.2.9/debian/patches/no-ssl3 --- haskell-tls-1.2.9/debian/patches/no-ssl3 1970-01-01 01:00:00.0 +0100 +++ haskell-tls-1.2.9/debian/patches/no-ssl3 2014-11-16 21:43:56.0 +0100 @@ -0,0 +1,16 @@ +Debian-Bug: http://bugs.debian.org/768164 +Upstream-Patch: https://github.com/vincenthz/hs-tls/commit/5353bd2f717a31fd63c2a5d67112d8d8279bd1e6 + +Index: haskell-tls-1.2.9/Network/TLS/Parameters.hs +=== +--- haskell-tls-1.2.9.orig/Network/TLS/Parameters.hs 2014-11-16 21:42:36.875208330 +0100 haskell-tls-1.2.9/Network/TLS/Parameters.hs 2014-11-16 21:42:47.111406646 +0100 +@@ -126,7 +126,7 @@ + + defaultSupported :: Supported + defaultSupported = Supported +-{ supportedVersions = [TLS12,TLS11,TLS10,SSL3] ++{ supportedVersions = [TLS12,TLS11,TLS10] + , supportedCiphers= [] + , supportedCompressions = [nullCompression] + , supportedHashSignatures = [ (Struct.HashSHA512, SignatureRSA) diff -Nru haskell-tls-1.2.9/debian/patches/series haskell-tls-1.2.9/debian/patches/series --- haskell-tls-1.2.9/debian/patches/series 1970-01-01 01:00:00.0 +0100 +++ haskell-tls-1.2.9/debian/patches/series 2014-11-16 21:41:55.0 +0100 @@ -0,0 +1 @@ +no-ssl3
Bug#769813: pre-approval: unblock: hdapsd/1:20141024-2
Control: tag -1 moreinfo On Sun, Nov 16, 2014 at 06:24:01PM +0100, Evgeni Golov wrote: +To disable hdapsd under systemd, use “systemctl disable hdapsd.service”. +For inits using the init.d scripts, adjust /etc/default/hdapsd to have + START=no +in it. We have update-rc.d, no? -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature
Bug#769829: marked as done (unblock: haskell-tls/1.2.9-2)
Your message dated Sun, 16 Nov 2014 21:21:12 + with message-id 20141116212112.gh6...@lupin.home.powdarrmonkey.net and subject line Re: Bug#769829: unblock: haskell-tls/1.2.9-2 has caused the Debian Bug report #769829, regarding unblock: haskell-tls/1.2.9-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 769829: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769829 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Please unblock package haskell-tls Thijs Kinkhorst suggested to remove SSL3 support from haskell-tls due to the POODLE attack. This patch follows that recommendating, taking upstream’s trivial change to disable SSL3 by default. See http://bugs.debian.org/768164 unblock haskell-tls/1.2.9-2 - -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (101, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 armhf Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -BEGIN PGP SIGNATURE- Version: GnuPG v1 iEYEARECAAYFAlRpFAgACgkQ9ijrk0dDIGyPjgCfcz7/6ki8vVlccE3aw+PBzbJ3 YdcAn0r90WOQpw0STAbfvgB3QHJjo35h =WlbC -END PGP SIGNATURE- diff -Nru haskell-tls-1.2.9/debian/changelog haskell-tls-1.2.9/debian/changelog --- haskell-tls-1.2.9/debian/changelog 2014-09-16 20:43:09.0 +0200 +++ haskell-tls-1.2.9/debian/changelog 2014-11-16 21:47:16.0 +0100 @@ -1,3 +1,9 @@ +haskell-tls (1.2.9-2) unstable; urgency=medium + + * Disable SSL3 by default (Closes: #768164) + + -- Joachim Breitner nome...@debian.org Sun, 16 Nov 2014 21:47:16 +0100 + haskell-tls (1.2.9-1) unstable; urgency=medium * New upstream version. diff -Nru haskell-tls-1.2.9/debian/patches/no-ssl3 haskell-tls-1.2.9/debian/patches/no-ssl3 --- haskell-tls-1.2.9/debian/patches/no-ssl3 1970-01-01 01:00:00.0 +0100 +++ haskell-tls-1.2.9/debian/patches/no-ssl3 2014-11-16 21:43:56.0 +0100 @@ -0,0 +1,16 @@ +Debian-Bug: http://bugs.debian.org/768164 +Upstream-Patch: https://github.com/vincenthz/hs-tls/commit/5353bd2f717a31fd63c2a5d67112d8d8279bd1e6 + +Index: haskell-tls-1.2.9/Network/TLS/Parameters.hs +=== +--- haskell-tls-1.2.9.orig/Network/TLS/Parameters.hs 2014-11-16 21:42:36.875208330 +0100 haskell-tls-1.2.9/Network/TLS/Parameters.hs 2014-11-16 21:42:47.111406646 +0100 +@@ -126,7 +126,7 @@ + + defaultSupported :: Supported + defaultSupported = Supported +-{ supportedVersions = [TLS12,TLS11,TLS10,SSL3] ++{ supportedVersions = [TLS12,TLS11,TLS10] + , supportedCiphers= [] + , supportedCompressions = [nullCompression] + , supportedHashSignatures = [ (Struct.HashSHA512, SignatureRSA) diff -Nru haskell-tls-1.2.9/debian/patches/series haskell-tls-1.2.9/debian/patches/series --- haskell-tls-1.2.9/debian/patches/series 1970-01-01 01:00:00.0 +0100 +++ haskell-tls-1.2.9/debian/patches/series 2014-11-16 21:41:55.0 +0100 @@ -0,0 +1 @@ +no-ssl3 ---End Message--- ---BeginMessage--- On Sun, Nov 16, 2014 at 10:15:58PM +0100, Joachim Breitner wrote: Please unblock package haskell-tls Thijs Kinkhorst suggested to remove SSL3 support from haskell-tls due to the POODLE attack. This patch follows that recommendating, taking upstream’s trivial change to disable SSL3 by default. Unblocked. -- Jonathan Wiltshire j...@debian.org Debian Developer http://people.debian.org/~jmw 4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC 74C3 5394 479D D352 4C51 signature.asc Description: Digital signature ---End Message---
Bug#769705: unblock: pdns-recursor/3.6.2-2
* Jonathan Wiltshire j...@debian.org [141116 22:13]: On Sun, Nov 16, 2014 at 06:00:12PM +0100, Christian Hofstaedtler wrote: * Julien Cristau jcris...@debian.org [141116 17:45]: On Sun, Nov 16, 2014 at 17:24:02 +0100, Christian Hofstaedtler wrote: pdns-recursor does a check with upstream to see if they think the version the user is running has a security issue. (This check is done using DNS and a log message is printed if there are known issues.) Calling home sounds like a misfeature... In general I'd agree with you. Users can turn this off by setting security-poll-suffix empty, as pointed out by the upstream docs. I think for PowerDNS the home call is warranted, given that... 1) both pdns-server and -recursor are usually Internet exposed services that regularly see abuse (DDoS reflection, regular DoS, ...) 2) they usually end up being installed and then forgotten until they stop working (then somebody may read a log file) 3) upstream is not some evil enterprise corp, but a pure open source company that really tries to tie in and work with downstreams. We have a security team for this. Users who want to stay secure should subscribe to debian-security-announce, and react to DSAs. I think the case here is that some users need more pushing, and people come crying to upstream when they run versions from oldstable. After all, Debian ends support for stable distributions after some time, and root servers in some data center farms tend to run way longer than that. I'd be pretty surprised if I installed pdns-* and found them checking up on security for me, even if it is mentioned in the upstream docs. After all, the point of installing from packages is that the maintainer has done the donkey work of making things work, so I might not even have cause to refer to them. I realise this is done with the best of intentions by upstream, but it would be better if they worked with the security team and stable release managers to proactively push updates out to users, instead of relying on them finding a log snippet. I agree, and I must say that I personally think the Debian packaging (freshness) as well as upstream's (actual and commitment to) help have improved dramatically. IMO this should be conservative and disabled by default in the package. I disagree based on my view of what software runs (on) the Internet today, and is sending me and others useless, dangerous, and expensive traffic. (I do see the privacy issue here, but it's something different for a server daemon and, say, an office package.) -- ,''`. Christian Hofstaedtler z...@debian.org : :' : Debian Developer `. `' 7D1A CFFA D9E0 806C 9C4C D392 5C13 D6DB 9305 2E03 `- signature.asc Description: Digital signature