Processed: tagging 782018
Processing commands for cont...@bugs.debian.org: # Maintainer said 'please wait' tags 782018 + moreinfo Bug #782018 [release.debian.org] unblock: nodejs/0.10.29~dfsg-2 Added tag(s) moreinfo. thanks Stopping processing here. Please contact me if you need assistance. -- 782018: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=782018 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.142834418115151.transcr...@bugs.debian.org
Bug#781392: marked as done (unblock (pre-approval): mate-desktop/1.8.1+dfsg1-3)
Your message dated Mon, 06 Apr 2015 20:24:19 +0200 with message-id 5522cf53.4000...@thykier.net and subject line Re: Bug#781392: unblock (pre-approval): mate-desktop/1.8.1+dfsg1-3 has caused the Debian Bug report #781392, regarding unblock (pre-approval): mate-desktop/1.8.1+dfsg1-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 781392: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781392 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please consider unblocking planned upload of package mate-desktop. + * debian/patches: ++ Add 0001_fix-pkexec-calls-in-desktop-launcher.patch. In + mate-desktop-item.c: Add a child watch if do not reap child flag is set. + This avoids double forking with desktop files that have exec pkexec ... + inside. (Closes: #781246). - Applications launched via pkexec via a .desktop file in MATE double fork, which let's the pkexec call fail in some situations. light+love, Mike unblock mate-desktop/1.8.1+dfsg1-3 -- System Information: Debian Release: 8.0 APT prefers stable APT policy: (990, 'stable'), (500, 'testing-updates'), (500, 'testing-proposed-updates'), (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) diff -Nru mate-desktop-1.8.1+dfsg1/debian/changelog mate-desktop-1.8.1+dfsg1/debian/changelog --- mate-desktop-1.8.1+dfsg1/debian/changelog 2014-10-25 23:38:01.0 +0200 +++ mate-desktop-1.8.1+dfsg1/debian/changelog 2015-03-28 14:54:56.0 +0100 @@ -1,3 +1,14 @@ +mate-desktop (1.8.1+dfsg1-3) unstable; urgency=medium + + [ Mike Gabriel ] + * debian/patches: ++ Add 0001_fix-pkexec-calls-in-desktop-launcher.patch. In + mate-desktop-item.c: Add a child watch if do not reap child flag is set. + This avoids double forking with desktop files that have exec pkexec ... + inside. (Closes: #781246). + + -- Mike Gabriel sunwea...@debian.org Sat, 28 Mar 2015 14:53:31 +0100 + mate-desktop (1.8.1+dfsg1-2) unstable; urgency=medium [ Vangelis Mouhtsis ] diff -Nru mate-desktop-1.8.1+dfsg1/debian/patches/0001_fix-pkexec-calls-in-desktop-launcher.patch mate-desktop-1.8.1+dfsg1/debian/patches/0001_fix-pkexec-calls-in-desktop-launcher.patch --- mate-desktop-1.8.1+dfsg1/debian/patches/0001_fix-pkexec-calls-in-desktop-launcher.patch 1970-01-01 01:00:00.0 +0100 +++ mate-desktop-1.8.1+dfsg1/debian/patches/0001_fix-pkexec-calls-in-desktop-launcher.patch 2015-03-28 14:41:53.0 +0100 @@ -0,0 +1,64 @@ +From 1a779ce4a20e578e6e73789dbc75876838f2e012 Mon Sep 17 00:00:00 2001 +From: Monsta mon...@inbox.ru +Date: Wed, 25 Mar 2015 15:21:34 +0300 +Subject: [PATCH] mate-desktop-item: add a child watch if do not reap child + flag set + +similar to https://git.gnome.org/browse/gnome-panel/commit/?id=76acc5b + +avoids double forking with desktop files that have exec pkexec ... +inside. +--- + libmate-desktop/mate-desktop-item.c | 17 - + 1 file changed, 16 insertions(+), 1 deletion(-) + +diff --git a/libmate-desktop/mate-desktop-item.c b/libmate-desktop/mate-desktop-item.c +index eb004d9..c0ee1da 100644 +--- a/libmate-desktop/mate-desktop-item.c b/libmate-desktop/mate-desktop-item.c +@@ -1721,6 +1721,17 @@ make_environment_for_screen (GdkScreen *screen, + return retval; + } + ++static void ++dummy_child_watch (GPid pid, ++ gint status, ++ gpointer user_data) ++{ ++ /* Nothing, this is just to ensure we don't double fork ++ * and break pkexec: ++ * https://bugzilla.gnome.org/show_bug.cgi?id=675789 ++ */ ++} ++ + static int + ditem_execute (const MateDesktopItem *item, + const char *exec, +@@ -1749,6 +1760,7 @@ ditem_execute (const MateDesktopItem *item, + char *new_exec, *uris, *temp; + char *exec_locale; + int launched = 0; ++ GPid pid; + #ifdef HAVE_STARTUP_NOTIFICATION + GdkDisplay *gdkdisplay; + SnLauncherContext *sn_context; +@@ -1957,14 +1969,17 @@ ditem_execute (const MateDesktopItem *item, + (do_not_reap_child ? G_SPAWN_DO_NOT_REAP_CHILD : 0) | G_SPAWN_SEARCH_PATH /* flags */, + NULL, /* child_setup_func */ + NULL, /* child_setup_func_data */ +- ret /* child_pid */, ++ (do_not_reap_child ? pid : NULL) /* child_pid */, + error)) { + /* The error was set for us, + * we just
Bug#781743: unblock (pre-approval): kde-workspace/4:4.11.13-2.1
On Thursday 02 April 2015 21:10:00 John Paul Adrian Glaubitz wrote: On 04/02/2015 04:26 PM, John Paul Adrian Glaubitz wrote: Attaching revision 2 of my debdiff. While reviewing my own patch, I noticed a typo in the change I made in the debian/rules file (overriden_command - overridden_command). I have fixed this now and made the changelog entry slightly more accurate. Attaching revision 3 of my patch. I wouldn't mind a better systemd integration, but your patch seems half done. You have lost the integration with the desktop-base package and the related theming. Do you even get a valid kdm configuration by this patch in a new setup? the setup_config() function in the current init script is there for a reason. /Sune -- I didn’t stop pretending when I became an adult, it’s just that when I was a kid I was pretending that I fit into the rules and structures of this world. And now that I’m an adult, I pretend that those rules and structures exist. - zefrank -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/1994684.tsfNPAhC3i@dabney
Bug#781897: marked as done (unblock: erlang/17.3-dfsg-4)
Your message dated Mon, 06 Apr 2015 20:22:10 +0200 with message-id 5522ced2.8090...@thykier.net and subject line Re: Bug#781897: unblock: erlang/17.3-dfsg-4 has caused the Debian Bug report #781897, regarding unblock: erlang/17.3-dfsg-4 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 781897: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781897 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi release team! Please, allow me to upload erlang 17.3-dfsg-4 which fixes CVE-2015-2774 in its SSL implementation (see [1] for further details). I also took the liberty to fix one trivial bug in build dependencies (should've replace libsystemd-daemon-dev by libsystemd-dev long time ago, see [2]) and one bug with incorrect variable type in a function header (see [3]). The debdiff between the current erlang and 17.3-dfsg-4 is attached. [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781839 [2] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=779750 [3] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=747593 unblock erlang/17.3-dfsg-4 -- System Information: Debian Release: 8.0 APT prefers testing APT policy: (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/8 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) diff -Nru erlang-17.3-dfsg/debian/changelog erlang-17.3-dfsg/debian/changelog --- erlang-17.3-dfsg/debian/changelog 2014-11-30 22:40:16.0 +0300 +++ erlang-17.3-dfsg/debian/changelog 2015-04-04 17:00:58.0 +0300 @@ -1,3 +1,14 @@ +erlang (1:17.3-dfsg-4) unstable; urgency=medium + + * Added a patch from upstream which fixes TLS POODLE vulnerability in +the Erlang SSL application (CVE-2015-2774) (closes: #781839). + * Fixed erts_gzinflate_buffer() declaration to prevent possible buffer +overflow (closes: #747593). + * Replaced libsystemd-daemon-dev by libsystemd-dev in build dependencies +(closes: #779750). + + -- Sergei Golovan sgolo...@debian.org Sat, 04 Apr 2015 17:00:55 +0300 + erlang (1:17.3-dfsg-3) unstable; urgency=medium * Added a patch by Olly Betts which updates hard-coded wx constant values diff -Nru erlang-17.3-dfsg/debian/control erlang-17.3-dfsg/debian/control --- erlang-17.3-dfsg/debian/control 2014-10-05 13:14:24.0 +0400 +++ erlang-17.3-dfsg/debian/control 2015-03-05 13:49:32.0 +0300 @@ -8,7 +8,7 @@ libncurses5-dev, autotools-dev, unixodbc-dev, bison, flex, ed, libwxgtk3.0-dev, dctrl-tools, xsltproc, libgl1-mesa-dev | libgl-dev, libglu1-mesa-dev | libglu-dev, - libsctp-dev [linux-any], libsystemd-daemon-dev [linux-any], dh-systemd + libsctp-dev [linux-any], libsystemd-dev [linux-any], dh-systemd Build-Depends-Indep: fop, default-jdk | sun-java6-jdk Build-Conflicts: autoconf2.13, libwxgtk2.4-dev, libwxgtk2.6-dev, libwxgtk2.8-dev Homepage: http://www.erlang.org/ diff -Nru erlang-17.3-dfsg/debian/patches/beamload.patch erlang-17.3-dfsg/debian/patches/beamload.patch --- erlang-17.3-dfsg/debian/patches/beamload.patch 1970-01-01 03:00:00.0 +0300 +++ erlang-17.3-dfsg/debian/patches/beamload.patch 2015-04-04 16:58:18.0 +0300 @@ -0,0 +1,15 @@ +Author: Sergei Golovan +Description: Patch fixes function declaration. +Bugs-Debian: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=747593 + +--- a/erts/emulator/beam/beam_load.c b/erts/emulator/beam/beam_load.c +@@ -43,7 +43,7 @@ + #include hipe_arch.h + #endif + +-ErlDrvBinary* erts_gzinflate_buffer(char*, int); ++ErlDrvBinary* erts_gzinflate_buffer(char*, uLong); + + #define MAX_OPARGS 8 + #define CALLED0 diff -Nru erlang-17.3-dfsg/debian/patches/series erlang-17.3-dfsg/debian/patches/series --- erlang-17.3-dfsg/debian/patches/series 2014-11-30 22:38:28.0 +0300 +++ erlang-17.3-dfsg/debian/patches/series 2015-04-04 16:58:41.0 +0300 @@ -11,3 +11,5 @@ ssl.patch wx3.0-constants.patch sslv3disable.patch +ssltlspoodle.patch +beamload.patch diff -Nru erlang-17.3-dfsg/debian/patches/ssltlspoodle.patch erlang-17.3-dfsg/debian/patches/ssltlspoodle.patch --- erlang-17.3-dfsg/debian/patches/ssltlspoodle.patch 1970-01-01 03:00:00.0 +0300 +++ erlang-17.3-dfsg/debian/patches/ssltlspoodle.patch 2015-04-04 16:32:11.0 +0300 @@ -0,0 +1,571 @@ +Author: Ingela Anderton Andin ing...@erlang.org +Description: [PATCH] ssl: Reenable padding check for
Bug#781830: marked as done (unblock: mate-power-manager/1.8.1+dfsg1-5)
Your message dated Mon, 06 Apr 2015 20:23:13 +0200 with message-id 5522cf11.2060...@thykier.net and subject line Re: Bug#781830: unblock: mate-power-manager/1.8.1+dfsg1-5 has caused the Debian Bug report #781830, regarding unblock: mate-power-manager/1.8.1+dfsg1-5 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 781830: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781830 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package mate-power-manager + * debian/patches: ++ Add 0003_fix-power-statistics-when-unplugging-wireless-device-with- + battery.patch. Fix crashes of mate-power-statistics when unplugging + wireless devices that have a battery (e.g. wireless mouse). The crashes + were due to a not fully implemented adaptation to API changes in upower + 0.99 API. (Closes: #780844). - This patch/upload fixes yet another crash in mate-power-statistics. There may even come a follow-up upload, because when testing I discovered one more (unrelated to the above issue) segfault [1] when clicking through the mate-power-statistics GUI. light+love, Mike [1] https://github.com/mate-desktop/mate-power-manager/issues/142 unblock mate-power-manager/1.8.1+dfsg1-5 -- System Information: Debian Release: 8.0 APT prefers stable APT policy: (990, 'stable'), (500, 'testing-updates'), (500, 'testing-proposed-updates'), (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) diff -Nru mate-power-manager-1.8.1+dfsg1/debian/changelog mate-power-manager-1.8.1+dfsg1/debian/changelog --- mate-power-manager-1.8.1+dfsg1/debian/changelog 2015-03-05 08:10:57.0 +0100 +++ mate-power-manager-1.8.1+dfsg1/debian/changelog 2015-04-03 16:03:01.0 +0200 @@ -1,3 +1,14 @@ +mate-power-manager (1.8.1+dfsg1-5) unstable; urgency=medium + + * debian/patches: ++ Add 0003_fix-power-statistics-when-unplugging-wireless-device-with- + battery.patch. Fix crashes of mate-power-statistics when unplugging + wireless devices that have a battery (e.g. wireless mouse). The crashes + were due to a not fully implemented adaptation to API changes in upower + 0.99 API. (Closes: #780844). + + -- Mike Gabriel sunwea...@debian.org Fri, 03 Apr 2015 16:02:50 +0200 + mate-power-manager (1.8.1+dfsg1-4) unstable; urgency=medium * debian/patches: diff -Nru mate-power-manager-1.8.1+dfsg1/debian/patches/0003_fix-power-statistics-when-unplugging-wireless-device-with-battery.patch mate-power-manager-1.8.1+dfsg1/debian/patches/0003_fix-power-statistics-when-unplugging-wireless-device-with-battery.patch --- mate-power-manager-1.8.1+dfsg1/debian/patches/0003_fix-power-statistics-when-unplugging-wireless-device-with-battery.patch 1970-01-01 01:00:00.0 +0100 +++ mate-power-manager-1.8.1+dfsg1/debian/patches/0003_fix-power-statistics-when-unplugging-wireless-device-with-battery.patch 2015-04-03 15:59:06.0 +0200 @@ -0,0 +1,193 @@ +From 125bdfed22d23f6239b266426acf8fb8508691b8 Mon Sep 17 00:00:00 2001 +From: Monsta mon...@inbox.ru +Date: Tue, 10 Mar 2015 14:38:07 +0300 +Subject: [PATCH] statistics: adjustment for API breakage in upower 0.99 + +--- + src/gpm-statistics.c | 99 +--- + 1 file changed, 71 insertions(+), 28 deletions(-) + +diff --git a/src/gpm-statistics.c b/src/gpm-statistics.c +index 13489dc..ecb71a7 100644 +--- a/src/gpm-statistics.c b/src/gpm-statistics.c +@@ -1183,10 +1183,33 @@ gpm_stats_window_activated_cb (EggUnique *egg_unique, gpointer data) + } + + /** ++ * gpm_stats_device_changed_cb: ++ **/ ++static void ++#if UP_CHECK_VERSION(0, 99, 0) ++gpm_stats_device_changed_cb (UpDevice *device, GParamSpec *pspec, gpointer user_data) ++#else ++gpm_stats_device_changed_cb (UpClient *client, UpDevice *device, gpointer user_data) ++#endif ++{ ++ const gchar *object_path; ++ object_path = up_device_get_object_path (device); ++ if (object_path == NULL || current_device == NULL) ++ return; ++ egg_debug (changed: %s, object_path); ++ if (g_strcmp0 (current_device, object_path) == 0) ++ gpm_stats_update_info_data (device); ++} ++ ++/** + * gpm_stats_add_device: + **/ + static void ++#if UP_CHECK_VERSION(0, 99, 0) ++gpm_stats_add_device (UpDevice *device, GPtrArray *devices) ++#else +
Processed: tagging 781743
Processing commands for cont...@bugs.debian.org: tags 781743 + moreinfo Bug #781743 [release.debian.org] unblock (pre-approval): kde-workspace/4:4.11.13-2.1 Added tag(s) moreinfo. thanks Stopping processing here. Please contact me if you need assistance. -- 781743: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781743 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.c.142834446416883.transcr...@bugs.debian.org
Bug#782014: marked as done (unblock: caja-extensions/1.8.0-3)
Your message dated Mon, 06 Apr 2015 20:27:54 +0200 with message-id 5522d02a.7080...@thykier.net and subject line Re: Bug#782014: unblock: caja-extensions/1.8.0-3 has caused the Debian Bug report #782014, regarding unblock: caja-extensions/1.8.0-3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 782014: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=782014 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package caja-extensions + * debian/control: ++ Add to D (caja-gksu): gksu. (Closes: #781951). - As reported by the bug submitter of #781951, nothing happens in the caja-gksu extension if gksu is not installed. To make this extension work properly, gksu must be installed. light+love, Mike unblock caja-extensions/1.8.0-3 -- System Information: Debian Release: 8.0 APT prefers testing-updates APT policy: (500, 'testing-updates'), (500, 'testing-proposed-updates'), (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) diff -Nru caja-extensions-1.8.0/debian/changelog caja-extensions-1.8.0/debian/changelog --- caja-extensions-1.8.0/debian/changelog 2014-10-25 19:36:42.0 +0200 +++ caja-extensions-1.8.0/debian/changelog 2015-04-06 15:55:11.0 +0200 @@ -1,3 +1,10 @@ +caja-extensions (1.8.0-3) unstable; urgency=medium + + * debian/control: ++ Add to D (caja-gksu): gksu. (Closes: #781951). + + -- Mike Gabriel sunwea...@debian.org Mon, 06 Apr 2015 15:54:52 +0200 + caja-extensions (1.8.0-2) unstable; urgency=medium [ Mike Gabriel ] diff -Nru caja-extensions-1.8.0/debian/control caja-extensions-1.8.0/debian/control --- caja-extensions-1.8.0/debian/control 2014-10-24 21:19:35.0 +0200 +++ caja-extensions-1.8.0/debian/control 2015-04-06 15:55:03.0 +0200 @@ -27,6 +27,7 @@ Depends: ${shlibs:Depends}, ${misc:Depends}, caja-extensions-common (= ${source:Version}), + gksu, Description: privilege granting extension for caja using gksu Caja is the official file manager for the MATE desktop. This package adds extended functionality to the Caja file manager. ---End Message--- ---BeginMessage--- On 2015-04-06 16:18, Mike Gabriel wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package caja-extensions + * debian/control: ++ Add to D (caja-gksu): gksu. (Closes: #781951). - As reported by the bug submitter of #781951, nothing happens in the caja-gksu extension if gksu is not installed. To make this extension work properly, gksu must be installed. light+love, Mike unblock caja-extensions/1.8.0-3 [...] Unblocked, thanks. ~Niels---End Message---
Bug#781743: unblock (pre-approval): kde-workspace/4:4.11.13-2.1
Hi Sune! On 04/06/2015 07:31 PM, Sune Vuorela wrote: I wouldn't mind a better systemd integration, but your patch seems half done. You have lost the integration with the desktop-base package and the related theming. Indeed, as Moritz pointed out here [1], I have overlooked this part. Do you even get a valid kdm configuration by this patch in a new setup? the setup_config() function in the current init script is there for a reason. I wasn't actually aware that there additional code in the sysvinit init script that would customize or even create a new kdmrc. The kdm package actually ships a kdmrc file, so I just added a few lines to make the package systemd-aware. In any case, I'd be very happy to have my suggested patch by the one that Moritz came up with, updated to work with the default-display- manager mechanism. My patch does at least work in the sense that systemd treats kdm as a native systemd unit which is configured using the debconf mechanism to choose the default display manager. Adrian [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=755359#165 -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5522d087.9060...@physik.fu-berlin.de
Bug#782000: marked as done (unblock: upower/0.99.1-3.2)
Your message dated Mon, 06 Apr 2015 20:26:12 +0200 with message-id 5522cfc4.9000...@thykier.net and subject line Re: Bug#782000: unblock: upower/0.99.1-3.2 has caused the Debian Bug report #782000, regarding unblock: upower/0.99.1-3.2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 782000: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=782000 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package upower + [ Mike Gabriel ] + * Non-maintainer upload. - As Martin Pitt asked to help with fixing the below mentioned issue, I did an NMU of upower just now. The upload has already been discussed with and ack'ed by Niels Thykier on IRC today. + [ Vlad Orlov ] + * null-init-pointers.patch: new patch. Properly initialize two +pointers, avoid segfaults. (Closes: #774546). - This patch fixes crashes in mate-power-statistics and gnome-power-statistics in certain situations (see #774546 for details about when these crashes occur). light+love, Mike unblock upower/0.99.1-3.2 -- System Information: Debian Release: 8.0 APT prefers testing-updates APT policy: (500, 'testing-updates'), (500, 'testing-proposed-updates'), (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) diff -Nru upower-0.99.1/debian/changelog upower-0.99.1/debian/changelog --- upower-0.99.1/debian/changelog 2014-11-28 16:42:02.0 +0100 +++ upower-0.99.1/debian/changelog 2015-04-06 12:21:31.0 +0200 @@ -1,3 +1,14 @@ +upower (0.99.1-3.2) unstable; urgency=medium + + [ Mike Gabriel ] + * Non-maintainer upload. + + [ Vlad Orlov ] + * null-init-pointers.patch: new patch. Properly initialize two +pointers, avoid segfaults. (Closes: #774546). + + -- Mike Gabriel sunwea...@debian.org Mon, 06 Apr 2015 12:03:26 +0200 + upower (0.99.1-3.1) unstable; urgency=medium * Non-maintainer upload. diff -Nru upower-0.99.1/debian/patches/null-init-pointers.patch upower-0.99.1/debian/patches/null-init-pointers.patch --- upower-0.99.1/debian/patches/null-init-pointers.patch 1970-01-01 01:00:00.0 +0100 +++ upower-0.99.1/debian/patches/null-init-pointers.patch 2015-04-06 12:02:17.0 +0200 @@ -0,0 +1,27 @@ +Description: NULL-initialize two pointers, avoid crash +Author: Vlad Orlov mon...@inbox.ru +Abstract: + Two uninitialized pointers in upower's code cause segfault + of gnome-power-statistics and mate-power-statistics in some + situations. + +--- a/libupower-glib/up-device.c b/libupower-glib/up-device.c +@@ -422,7 +422,7 @@ GPtrArray * + up_device_get_history_sync (UpDevice *device, const gchar *type, guint timespec, guint resolution, GCancellable *cancellable, GError **error) + { + GError *error_local = NULL; +- GVariant *gva; ++ GVariant *gva = NULL; + guint i; + GPtrArray *array = NULL; + gboolean ret; +@@ -502,7 +502,7 @@ GPtrArray * + up_device_get_statistics_sync (UpDevice *device, const gchar *type, GCancellable *cancellable, GError **error) + { + GError *error_local = NULL; +- GVariant *gva; ++ GVariant *gva = NULL; + guint i; + GPtrArray *array = NULL; + gboolean ret; diff -Nru upower-0.99.1/debian/patches/series upower-0.99.1/debian/patches/series --- upower-0.99.1/debian/patches/series 2014-11-28 16:24:28.0 +0100 +++ upower-0.99.1/debian/patches/series 2015-04-06 12:00:50.0 +0200 @@ -2,3 +2,4 @@ git-tests-py3.4.patch git-split-tests.patch git-fix-memleak.patch +null-init-pointers.patch ---End Message--- ---BeginMessage--- On 2015-04-06 12:28, Mike Gabriel wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package upower + [ Mike Gabriel ] + * Non-maintainer upload. - As Martin Pitt asked to help with fixing the below mentioned issue, I did an NMU of upower just now. The upload has already been discussed with and ack'ed by Niels Thykier on IRC today. + [ Vlad Orlov ] + * null-init-pointers.patch: new patch. Properly initialize two +pointers, avoid segfaults. (Closes: #774546). - This patch fixes crashes in mate-power-statistics and gnome-power-statistics in certain situations (see #774546 for details about when these crashes occur). light+love, Mike unblock upower/0.99.1-3.2 [...] Unblocked, thanks.
Bug#781395: marked as done (unblock (pre-approval): mate-control-center/1.8.3+dfsg1-2)
Your message dated Mon, 06 Apr 2015 20:25:08 +0200 with message-id 5522cf84.3090...@thykier.net and subject line Re: Bug#781395: unblock (pre-approval): mate-control-center/1.8.3+dfsg1-2 has caused the Debian Bug report #781395, regarding unblock (pre-approval): mate-control-center/1.8.3+dfsg1-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 781395: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781395 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please consider unblocking planned upload of package mate-control-center. + * debian/patches (i18n fixes): ++ Add 0003_fix-i18n-category-names.patch. Fix i18n names of Settings / + System sub-categories in MATE control center window. (Closes: #780580). ++ Add 0004_fix-set-preferred-apps-in-some-locales.patch. Fix missing preferred + applications launcher for Russion and Ukranian locale in common tasks + section. (Closes: #781303). ++ Add 2002_fix-common-tasks-section-for-German-locale.patch. Fix translation + of items in the Common Tasks section of MATE's control center. - Fix several i18n issues in the MATE control center main window. + * debian/patches (functionality fixes): ++ Add 0005_fix-desktop-item-launching.patch. In libslab: do not reap child + when launching desktop items. (Closes: #781247). - Don't double fork applications launched via .desktop file. Fixes .desktop launching containing pkexec calls in certain situations. + * debian/control: ++ Switch to versioned D (mate-control-center): mate-desktop (= 1.8.1+dfsg1-3). + (required by new patch 0005_fix-desktop-item-launching.patch). - This updated package revisions requires mate-desktop 1.8.1+dfsg1-3 to be accepted for jessie, as well. light+love, Mike unblock mate-control-center/1.8.3+dfsg1-2 -- System Information: Debian Release: 8.0 APT prefers stable APT policy: (990, 'stable'), (500, 'testing-updates'), (500, 'testing-proposed-updates'), (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) diff -Nru mate-control-center-1.8.3+dfsg1/debian/changelog mate-control-center-1.8.3+dfsg1/debian/changelog --- mate-control-center-1.8.3+dfsg1/debian/changelog 2014-10-22 23:05:07.0 +0200 +++ mate-control-center-1.8.3+dfsg1/debian/changelog 2015-03-28 15:17:04.0 +0100 @@ -1,3 +1,22 @@ +mate-control-center (1.8.3+dfsg1-2) unstable; urgency=medium + + * debian/patches (i18n fixes): ++ Add 0003_fix-i18n-category-names.patch. Fix i18n names of Settings / + System sub-categories in MATE control center window. (Closes: #780580). ++ Add 0004_fix-set-preferred-apps-in-some-locales.patch. Fix missing preferred + applications launcher for Russion and Ukranian locale in common tasks + section. (Closes: #781303). ++ Add 2002_fix-common-tasks-section-for-German-locale.patch. Fix translation + of items in the Common Tasks section of MATE's control center. + * debian/patches (functionality fixes): ++ Add 0005_fix-desktop-item-launching.patch. In libslab: do not reap child + when launching desktop items. (Closes: #781247). + * debian/control: ++ Switch to versioned D (mate-control-center): mate-desktop (= 1.8.1+dfsg1-3). + (required by new patch 0005_fix-desktop-item-launching.patch). + + -- Mike Gabriel sunwea...@debian.org Sat, 28 Mar 2015 15:16:54 +0100 + mate-control-center (1.8.3+dfsg1-1) unstable; urgency=medium [ Vangelis Mouhtsis ] diff -Nru mate-control-center-1.8.3+dfsg1/debian/control mate-control-center-1.8.3+dfsg1/debian/control --- mate-control-center-1.8.3+dfsg1/debian/control 2014-10-06 23:57:54.0 +0200 +++ mate-control-center-1.8.3+dfsg1/debian/control 2015-03-28 14:29:50.0 +0100 @@ -57,7 +57,7 @@ caja-common (= 1.8.0), mate-settings-daemon, mate-menus, - mate-desktop, + mate-desktop (= 1.8.1+dfsg1-3), mate-icon-theme, desktop-file-utils, gsettings-desktop-schemas, diff -Nru mate-control-center-1.8.3+dfsg1/debian/patches/0003_fix-i18n-category-names.patch mate-control-center-1.8.3+dfsg1/debian/patches/0003_fix-i18n-category-names.patch --- mate-control-center-1.8.3+dfsg1/debian/patches/0003_fix-i18n-category-names.patch 1970-01-01
Processed: Re: Bug#782002: unblock: (pre-approval) opensc
Processing control commands: tags -1 confirmed moreinfo Bug #782002 [release.debian.org] unblock: (pre-approval) opensc Added tag(s) confirmed and moreinfo. -- 782002: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=782002 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b782002.142834529022137.transcr...@bugs.debian.org
Bug#782002: unblock: (pre-approval) opensc
Control: tags -1 confirmed moreinfo On 2015-04-06 12:46, Laurent Bigonville wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Dear release team, Currently opensc is not supporting the new Belgian electronic ID card that have a validity of 10 years (see: #781221) Upstream has commited a patch that fix this issues: https://github.com/OpenSC/OpenSC/commit/5149dd3e62594eb2477f699d834584991ab54d5f.patch The changes are contained in the belpic driver and shouldn't impact the other cards. card-belpic.c | 84 +++--- 1 file changed, 81 insertions(+), 3 deletions(-) Without this patch, the Belgian citizens that will replace their card during the jessie release will not be able to use opensc to login on the different gouvernemental websites (Taxes,...) Would the release team be OK with the attached patch? Cheers, Laurent Bigonville [...] Ack, please upload this to unstable and let us know once it has been accepted! ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5522d1c2.10...@thykier.net
Bug#781965: wheezy-pu: package ircd-hybrid/1:7.2.2.dfsg.2-10
Control: tags -1 + pending On Sun, 2015-04-05 at 19:52 +0100, Dominic Hargreaves wrote: On Sun, Apr 05, 2015 at 07:46:26PM +0100, Adam D. Barratt wrote: Control: tags -1 + confirmed On Sun, 2015-04-05 at 19:08 +0100, Dominic Hargreaves wrote: As per #779082, ircd-hybrid in wheezy (when recompiled to support SSL) currently listens on SSLv3, which could be exposing a risk of a POODLE attack. The patch to disable SSLv3 is simple, and I've attached a tested package diff. The Debian security team treats this as a no-dsa issue. Please go ahead, thanks. Thank you! On its way. Flagged for acceptance into p-u. Regards, Adam -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/1428349712.2113.6.ca...@adam-barratt.org.uk
Bug#782042: wheezy-pu: package ikiwiki/3.20120629.2
Package: release.debian.org Severity: normal Tags: wheezy User: release.debian@packages.debian.org Usertags: pu Raghav Bisht reported a cross-site-scripting vulnerability in ikiwiki (#781483, CVE-2015-2793). The security team have asked me to fix it via wheezy-proposed-updates rather than wheezy-security. OK to upload? (As before, the double diff for the changelog is because CHANGELOG is a symlink to debian/changelog.) Thanks, S diffstat for ikiwiki-3.20120629.1 ikiwiki-3.20120629.2 CHANGELOG |8 debian/changelog |8 templates/openid-selector.tmpl |2 +- 3 files changed, 17 insertions(+), 1 deletion(-) diff -Nru ikiwiki-3.20120629.1/CHANGELOG ikiwiki-3.20120629.2/CHANGELOG --- ikiwiki-3.20120629.1/CHANGELOG 2015-01-17 11:53:38.0 + +++ ikiwiki-3.20120629.2/CHANGELOG 2015-04-06 21:15:31.0 +0100 @@ -1,3 +1,11 @@ +ikiwiki (3.20120629.2) wheezy; urgency=medium + + [ Joey Hess ] + * Fix XSS in openid selector. Thanks, Raghav Bisht. (Closes: #781483; +CVE-2015-2793) + + -- Simon McVittie s...@debian.org Mon, 06 Apr 2015 20:34:51 +0100 + ikiwiki (3.20120629.1) wheezy; urgency=medium Backport blogspam plugin from experimental, because the version in diff -Nru ikiwiki-3.20120629.1/debian/changelog ikiwiki-3.20120629.2/debian/changelog --- ikiwiki-3.20120629.1/debian/changelog 2015-01-17 11:53:38.0 + +++ ikiwiki-3.20120629.2/debian/changelog 2015-04-06 21:15:31.0 +0100 @@ -1,3 +1,11 @@ +ikiwiki (3.20120629.2) wheezy; urgency=medium + + [ Joey Hess ] + * Fix XSS in openid selector. Thanks, Raghav Bisht. (Closes: #781483; +CVE-2015-2793) + + -- Simon McVittie s...@debian.org Mon, 06 Apr 2015 20:34:51 +0100 + ikiwiki (3.20120629.1) wheezy; urgency=medium Backport blogspam plugin from experimental, because the version in diff -Nru ikiwiki-3.20120629.1/templates/openid-selector.tmpl ikiwiki-3.20120629.2/templates/openid-selector.tmpl --- ikiwiki-3.20120629.1/templates/openid-selector.tmpl 2015-01-14 22:06:16.0 + +++ ikiwiki-3.20120629.2/templates/openid-selector.tmpl 2015-04-06 21:15:27.0 +0100 @@ -23,7 +23,7 @@ /div div id=openid_input_area label for=openid_identifier class=blockEnter your OpenID:/label - input id=openid_identifier name=openid_identifier type=text value=TMPL_VAR OPENID_URL/ + input id=openid_identifier name=openid_identifier type=text value=TMPL_VAR ESCAPE=HTML OPENID_URL/ input id=openid_submit type=submit value=Login/ /div TMPL_IF OPENID_ERROR
Bug#781743: unblock (pre-approval): kde-workspace/4:4.11.13-2.1
On Monday 06 April 2015 20:29:27 John Paul Adrian Glaubitz wrote: I wasn't actually aware that there additional code in the sysvinit init script that would customize or even create a new kdmrc. The kdm package actually ships a kdmrc file, so I just added a few lines to make the package systemd-aware. The shipped kdmrc file is invalid (on purpose) and needs preprocessing to actually work. What is needed for testing things is: new install with desktop-base installed: Debian lines theme should be used New install without desktop-base installed: The upstream provided theme (elarun?) should be used new install with desktop-base installed, and then removed: The upstream provided theme should be used. new install with user configured theming. The user configured theme should be used New install with another desktop theme provider than desktop-base installed: The selected theme should be used Debian live with autologin should also be tested. And then there is all the upgrading cases. IT is not a small task, and that's part of the reason why it has been postponed so far. I wouldn't mind taking a 'less' tested approach in another point in the Debian release cycle, but at this point, it needs really some testing and people looking at the code. Unfortunately, I'm not volunteering for that. /Sune -- I didn’t stop pretending when I became an adult, it’s just that when I was a kid I was pretending that I fit into the rules and structures of this world. And now that I’m an adult, I pretend that those rules and structures exist. - zefrank -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/10582915.PAePxskrsW@dabney
NEW changes in stable-new
Processing changes file: arj_3.10.22-10+deb7u1_amd64.changes ACCEPT Processing changes file: arj_3.10.22-10+deb7u1_armel.changes ACCEPT Processing changes file: arj_3.10.22-10+deb7u1_armhf.changes ACCEPT Processing changes file: arj_3.10.22-10+deb7u1_i386.changes ACCEPT Processing changes file: arj_3.10.22-10+deb7u1_ia64.changes ACCEPT Processing changes file: arj_3.10.22-10+deb7u1_kfreebsd-amd64.changes ACCEPT Processing changes file: arj_3.10.22-10+deb7u1_kfreebsd-i386.changes ACCEPT Processing changes file: arj_3.10.22-10+deb7u1_mips.changes ACCEPT Processing changes file: arj_3.10.22-10+deb7u1_mipsel.changes ACCEPT Processing changes file: arj_3.10.22-10+deb7u1_powerpc.changes ACCEPT Processing changes file: arj_3.10.22-10+deb7u1_s390.changes ACCEPT Processing changes file: arj_3.10.22-10+deb7u1_s390x.changes ACCEPT Processing changes file: arj_3.10.22-10+deb7u1_sparc.changes ACCEPT Processing changes file: ircd-hybrid_7.2.2.dfsg.2-10+deb7u1_merged.changes ACCEPT Processing changes file: linux_3.2.68-1_multi.changes ACCEPT Processing changes file: mailman_2.1.15-1+deb7u1_amd64.changes ACCEPT Processing changes file: mailman_2.1.15-1+deb7u1_armel.changes ACCEPT Processing changes file: mailman_2.1.15-1+deb7u1_armhf.changes ACCEPT Processing changes file: mailman_2.1.15-1+deb7u1_i386.changes ACCEPT Processing changes file: mailman_2.1.15-1+deb7u1_ia64.changes ACCEPT Processing changes file: mailman_2.1.15-1+deb7u1_kfreebsd-amd64.changes ACCEPT Processing changes file: mailman_2.1.15-1+deb7u1_kfreebsd-i386.changes ACCEPT Processing changes file: mailman_2.1.15-1+deb7u1_mips.changes ACCEPT Processing changes file: mailman_2.1.15-1+deb7u1_mipsel.changes ACCEPT Processing changes file: mailman_2.1.15-1+deb7u1_powerpc.changes ACCEPT Processing changes file: mailman_2.1.15-1+deb7u1_s390.changes ACCEPT Processing changes file: mailman_2.1.15-1+deb7u1_s390x.changes ACCEPT Processing changes file: mailman_2.1.15-1+deb7u1_sparc.changes ACCEPT -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1yfczn-00077r...@franck.debian.org
Bug#781276: pre-approval for mutter/3.14.4-1
Le jeudi 26 mars 2015 à 21:22 +0100, Josselin Mouette a écrit : I think all these fixes are useful, but of course I can upload a targeted fix for the nVidia problem if it’s too much. However, the shlibs bump will remain, since it’s precisely here for the function required by that workaround. Ping? -- .''`. Josselin Mouette : :' : `. `' `- -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/1428346843.8479.13.ca...@debian.org
Processed: Re: Bug#781965: wheezy-pu: package ircd-hybrid/1:7.2.2.dfsg.2-10
Processing control commands: tags -1 + pending Bug #781965 [release.debian.org] wheezy-pu: package ircd-hybrid/1:7.2.2.dfsg.2-10 Added tag(s) pending. -- 781965: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781965 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b781965.142834972116758.transcr...@bugs.debian.org
NEW changes in stable-new
Processing changes file: linux_3.2.68-1_s390.changes ACCEPT -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1yffnq-00021z...@franck.debian.org
Bug#782053: unblock: devscripts/2.15.3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package devscripts Update debchange to understand the versioning for jessie-backports and make that the default release when using “dch --bpo”. The release is (relatively) imminent and I'd rather have this ready at release time rather than wait for a stable upload, even though that means sid users creating new backports will have to manually adjust the changelog header. $ debdiff devscripts_2.15.1.dsc devscripts_2.15.3.dsc diffstat for devscripts-2.15.1 devscripts-2.15.3 debian/changelog | 13 + po4a/po/de.po |4 ++-- po4a/po/devscripts.pot |2 +- po4a/po/fr.po |4 ++-- scripts/debchange.1|2 +- scripts/debchange.pl |6 +++--- 6 files changed, 22 insertions(+), 9 deletions(-) diff -Nru devscripts-2.15.1/debian/changelog devscripts-2.15.3/debian/changelog --- devscripts-2.15.1/debian/changelog 2015-01-01 09:51:28.0 -0500 +++ devscripts-2.15.3/debian/changelog 2015-04-03 21:48:02.0 -0400 @@ -1,3 +1,16 @@ +devscripts (2.15.3) unstable; urgency=medium + + * debchange: Use bpo8 instead of bpo80 for jessie-backports, per +https://lists.debian.org/debian-backports/2014/11/msg00031.html. + + -- James McCoy james...@debian.org Fri, 03 Apr 2015 21:47:54 -0400 + +devscripts (2.15.2) unstable; urgency=medium + + * debchange: Make jessie default backports release. + + -- James McCoy james...@debian.org Thu, 02 Apr 2015 21:37:39 -0400 + devscripts (2.15.1) unstable; urgency=medium [ Julien Cristau ] diff -Nru devscripts-2.15.1/po4a/po/de.po devscripts-2.15.3/po4a/po/de.po --- devscripts-2.15.1/po4a/po/de.po 2015-01-01 09:51:28.0 -0500 +++ devscripts-2.15.3/po4a/po/de.po 2015-04-03 21:48:02.0 -0400 @@ -7086,10 +7086,10 @@ #. type: Plain text #: ../scripts/debchange.1:256 msgid -Increment the Debian release number for an upload to wheezy-backports, and +Increment the Debian release number for an upload to jessie-backports, and add a backport upload changelog comment. msgstr -erhöht die Debian-Veröffentlichungsnummer für ein Hochladen nach wheezy- +erhöht die Debian-Veröffentlichungsnummer für ein Hochladen nach jessie- backports und fügt einen Changelog-Kommentar »backport upload« hinzu. #. type: TP diff -Nru devscripts-2.15.1/po4a/po/devscripts.pot devscripts-2.15.3/po4a/po/devscripts.pot --- devscripts-2.15.1/po4a/po/devscripts.pot2015-01-01 09:53:59.0 -0500 +++ devscripts-2.15.3/po4a/po/devscripts.pot2015-04-03 21:53:13.0 -0400 @@ -5354,7 +5354,7 @@ #. type: Plain text #: ../scripts/debchange.1:256 msgid -Increment the Debian release number for an upload to wheezy-backports, and +Increment the Debian release number for an upload to jessie-backports, and add a backport upload changelog comment. msgstr diff -Nru devscripts-2.15.1/po4a/po/fr.po devscripts-2.15.3/po4a/po/fr.po --- devscripts-2.15.1/po4a/po/fr.po 2015-01-01 09:51:28.0 -0500 +++ devscripts-2.15.3/po4a/po/fr.po 2015-04-03 21:48:02.0 -0400 @@ -7075,11 +7075,11 @@ #. type: Plain text #: ../scripts/debchange.1:256 msgid -Increment the Debian release number for an upload to wheezy-backports, and +Increment the Debian release number for an upload to jessie-backports, and add a backport upload changelog comment. msgstr Incrémenter le numéro de publication de Debian pour un envoi d'un -rétroportage pour Wheezy, et ajouter un commentaire pour l'envoi du +rétroportage pour Jessie, et ajouter un commentaire pour l'envoi du rétroportage dans le changelog. #. type: TP diff -Nru devscripts-2.15.1/scripts/debchange.1 devscripts-2.15.3/scripts/debchange.1 --- devscripts-2.15.1/scripts/debchange.1 2015-01-01 09:51:28.0 -0500 +++ devscripts-2.15.3/scripts/debchange.1 2015-04-03 21:48:02.0 -0400 @@ -251,7 +251,7 @@ distribution. Increment the Debian version. .TP .B \-\-bpo -Increment the Debian release number for an upload to wheezy-backports, +Increment the Debian release number for an upload to jessie-backports, and add a backport upload changelog comment. .TP .BR \-\-local , \-l \fIsuffix\fR diff -Nru devscripts-2.15.1/scripts/debchange.pl devscripts-2.15.3/scripts/debchange.pl --- devscripts-2.15.1/scripts/debchange.pl 2015-01-01 09:51:28.0 -0500 +++ devscripts-2.15.3/scripts/debchange.pl 2015-04-03 21:48:02.0 -0400 @@ -179,7 +179,7 @@ distribution name --bpo Increment the Debian release number for a backports upload - to wheezy-backports + to jessie-backports -l, --local suffix Add a suffix to the Debian version number for a local build -b, --force-bad-version @@ -624,8 +624,8 @@ my $EMAIL = 'EMAIL'; my $DISTRIBUTION = 'UNRELEASED'; my $bpo_dist = ''; -my %bpo_dists = ( 60, 'squeeze', 70, 'wheezy', 80, 'jessie'
NEW changes in stable-new
Processing changes file: linux_3.2.68-1_i386.changes ACCEPT -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1yfgjg-0001sl...@franck.debian.org
Bug#782044: unblock: tor/0.2.5.12-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package tor: unblock tor/0.2.5.12-1 This version fixes several hidden service related denial of service bugs that have been fixed in stable with DSA 3216-1: - disgleirio discovered that a malicious client could trigger an assertion failure in a Tor instance providing a hidden service, thus rendering the service inaccessible. [CVE-2015-2928] - DonnchaC discovered that Tor clients would crash with an assertion failure upon parsing specially crafted hidden service descriptors. [CVE-2015-2929] - Introduction points would accept multiple INTRODUCE1 cells on one circuit, making it inexpensive for an attacker to overload a hidden service with introductions. Introduction points no longer allow multiple such cells on the same circuit. A complete debdiff of the source package to 0.2.5.11-1, the version currently in jessie, is attached. For your consideration, weasel diff -Nru tor-0.2.5.11/ChangeLog tor-0.2.5.12/ChangeLog --- tor-0.2.5.11/ChangeLog 2015-03-17 14:39:09.0 +0100 +++ tor-0.2.5.12/ChangeLog 2015-04-06 15:57:54.0 +0200 @@ -1,3 +1,27 @@ +Changes in version 0.2.5.12 - 2015-04-06 + Tor 0.2.5.12 backports two fixes from 0.2.6.7 for security issues that + could be used by an attacker to crash hidden services, or crash clients + visiting hidden services. Hidden services should upgrade as soon as + possible; clients should upgrade whenever packages become available. + + This release also backports a simple improvement to make hidden + services a bit less vulnerable to denial-of-service attacks. + + o Major bugfixes (security, hidden service): +- Fix an issue that would allow a malicious client to trigger an + assertion failure and halt a hidden service. Fixes bug 15600; + bugfix on 0.2.1.6-alpha. Reported by disgleirio. +- Fix a bug that could cause a client to crash with an assertion + failure when parsing a malformed hidden service descriptor. Fixes + bug 15601; bugfix on 0.2.1.5-alpha. Found by DonnchaC. + + o Minor features (DoS-resistance, hidden service): +- Introduction points no longer allow multiple INTRODUCE1 cells to + arrive on the same circuit. This should make it more expensive for + attackers to overwhelm hidden services with introductions. + Resolves ticket 15515. + + Changes in version 0.2.5.11 - 2015-03-17 Tor 0.2.5.11 is the second stable release in the 0.2.5 series. diff -Nru tor-0.2.5.11/ReleaseNotes tor-0.2.5.12/ReleaseNotes --- tor-0.2.5.11/ReleaseNotes 2015-03-17 14:39:31.0 +0100 +++ tor-0.2.5.12/ReleaseNotes 2015-04-06 15:57:44.0 +0200 @@ -2,6 +2,30 @@ of Tor. If you want to see more detailed descriptions of the changes in each development snapshot, see the ChangeLog file. +Changes in version 0.2.5.12 - 2015-04-06 + Tor 0.2.5.12 backports two fixes from 0.2.6.7 for security issues that + could be used by an attacker to crash hidden services, or crash clients + visiting hidden services. Hidden services should upgrade as soon as + possible; clients should upgrade whenever packages become available. + + This release also backports a simple improvement to make hidden + services a bit less vulnerable to denial-of-service attacks. + + o Major bugfixes (security, hidden service): +- Fix an issue that would allow a malicious client to trigger an + assertion failure and halt a hidden service. Fixes bug 15600; + bugfix on 0.2.1.6-alpha. Reported by disgleirio. +- Fix a bug that could cause a client to crash with an assertion + failure when parsing a malformed hidden service descriptor. Fixes + bug 15601; bugfix on 0.2.1.5-alpha. Found by DonnchaC. + + o Minor features (DoS-resistance, hidden service): +- Introduction points no longer allow multiple INTRODUCE1 cells to + arrive on the same circuit. This should make it more expensive for + attackers to overwhelm hidden services with introductions. + Resolves ticket 15515. + + Changes in version 0.2.5.11 - 2015-03-17 Tor 0.2.5.11 is the second stable release in the 0.2.5 series. diff -Nru tor-0.2.5.11/configure tor-0.2.5.12/configure --- tor-0.2.5.11/configure 2015-03-12 17:56:50.0 +0100 +++ tor-0.2.5.12/configure 2015-04-06 16:04:40.0 +0200 @@ -1,6 +1,6 @@ #! /bin/sh # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.69 for tor 0.2.5.11. +# Generated by GNU Autoconf 2.69 for tor 0.2.5.12. # # # Copyright (C) 1992-1996, 1998-2012 Free Software Foundation, Inc. @@ -577,8 +577,8 @@ # Identity of this package. PACKAGE_NAME='tor' PACKAGE_TARNAME='tor' -PACKAGE_VERSION='0.2.5.11' -PACKAGE_STRING='tor 0.2.5.11' +PACKAGE_VERSION='0.2.5.12' +PACKAGE_STRING='tor 0.2.5.12' PACKAGE_BUGREPORT='' PACKAGE_URL='' @@ -1374,7 +1374,7 @@ # Omit some internal or obsolete options to make the
Bug#782042: wheezy-pu: package ikiwiki/3.20120629.2
Control: tags -1 + confirmed On Mon, 2015-04-06 at 21:55 +0100, Simon McVittie wrote: Raghav Bisht reported a cross-site-scripting vulnerability in ikiwiki (#781483, CVE-2015-2793). The security team have asked me to fix it via wheezy-proposed-updates rather than wheezy-security. Please go ahead, thanks. Regards, Adam -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/1428354991.2113.7.ca...@adam-barratt.org.uk
Processed: Re: Bug#782042: wheezy-pu: package ikiwiki/3.20120629.2
Processing control commands: tags -1 + confirmed Bug #782042 [release.debian.org] wheezy-pu: package ikiwiki/3.20120629.2 Added tag(s) confirmed. -- 782042: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=782042 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b782042.142835500115143.transcr...@bugs.debian.org
NEW changes in stable-new
Processing changes file: linux_3.2.68-1_amd64.changes ACCEPT Processing changes file: linux_3.2.68-1_powerpc.changes ACCEPT -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1yfg2x-0004b6...@franck.debian.org
Re: Please backport EDAC_IE31200 to Linux 3.16.x
Bug #780773 requests backporting a new EDAC (Error Detection And Correction) driver that is wanted on some Intel-based servers. It seems to be simple to backport to 3.16, but I'm not sure whether it meets the release criteria. EDAC drivers are not needed for hardware enablement, but they are needed for logging of correctable ECC errors and detailed information about uncorrectable ECC errors, which is important for highly reliable systems. Please can I have an ack or nak from the release team? Ben. -- Ben Hutchings Hoare's Law of Large Problems: Inside every large problem is a small problem struggling to get out. signature.asc Description: This is a digitally signed message part
NEW changes in stable-new
Processing changes file: ircd-hybrid_7.2.2.dfsg.2-10+deb7u1_kfreebsd-i386.changes ACCEPT -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1yff5r-0003un...@franck.debian.org
Uploading linux (3.16.7-ckt9-1)
I intend to upload linux version 3.16.7-ckt9-1 to unstable tomorrow evening (Tuesday 7th April). The currently pending changes are: - Many fixes from stable release 3.16.7-ckt{8,9} - New hardware support: early console support on various systems, Xen MCE log, power control on some Allwinner (sunxi) systems, FocalTech PS/2 touchpads - Security fixes: CVE-2014-8159, CVE-2014-9710, CVE-2015-0275, CVE-2015-2666, CVE-2015-2922 - Fix for data corruption on some Marvell Armada SoCs - Require upgraded flash-kernel on Kirkwood systems to avoid boot failure - Use the right fan control drivers on G5 PowerMac - Fix two instances of boot console noise on x86 (#781953, #781418) - Fix WARNING when attaching some display devices to i915 GPU - Fix race condition in thingm driver - Hide eMMC RPMB partitions which userland doesn't need to see and which often cause hangs I'm hoping this will be the one that goes into Debian 8.0, but there is probably a window of a few days after this to fix any showstoppers. Ben. -- Ben Hutchings Power corrupts. Absolute power is kind of neat. - John Lehman, Secretary of the US Navy 1981-1987 signature.asc Description: This is a digitally signed message part
Re: Uploading linux (3.16.7-ckt9-1)
On 2015-04-06 23:11, Ben Hutchings wrote: I intend to upload linux version 3.16.7-ckt9-1 to unstable tomorrow evening (Tuesday 7th April). The currently pending changes are: - Many fixes from stable release 3.16.7-ckt{8,9} - New hardware support: early console support on various systems, Xen MCE log, power control on some Allwinner (sunxi) systems, FocalTech PS/2 touchpads - Security fixes: CVE-2014-8159, CVE-2014-9710, CVE-2015-0275, CVE-2015-2666, CVE-2015-2922 - Fix for data corruption on some Marvell Armada SoCs - Require upgraded flash-kernel on Kirkwood systems to avoid boot failure - Use the right fan control drivers on G5 PowerMac - Fix two instances of boot console noise on x86 (#781953, #781418) - Fix WARNING when attaching some display devices to i915 GPU - Fix race condition in thingm driver - Hide eMMC RPMB partitions which userland doesn't need to see and which often cause hangs I'm hoping this will be the one that goes into Debian 8.0, but there is probably a window of a few days after this to fix any showstoppers. Ben. Hi Ben, Thanks for the update. Could I perhaps convince you to comment on the RC bug #780858. It is tagged pending, but I do not see it listed above? Thanks, ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5522f9af.5060...@thykier.net
NEW changes in stable-new
Processing changes file: ircd-hybrid_7.2.2.dfsg.2-10+deb7u1_amd64.changes ACCEPT Processing changes file: ircd-hybrid_7.2.2.dfsg.2-10+deb7u1_i386.changes ACCEPT Processing changes file: ircd-hybrid_7.2.2.dfsg.2-10+deb7u1_kfreebsd-amd64.changes ACCEPT Processing changes file: ircd-hybrid_7.2.2.dfsg.2-10+deb7u1_mipsel.changes ACCEPT Processing changes file: ircd-hybrid_7.2.2.dfsg.2-10+deb7u1_powerpc.changes ACCEPT Processing changes file: ircd-hybrid_7.2.2.dfsg.2-10+deb7u1_s390.changes ACCEPT -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1yffkm-0006v8...@franck.debian.org
Re: Uploading linux (3.16.7-ckt9-1)
On Mon, 2015-04-06 at 23:25 +0200, Niels Thykier wrote: On 2015-04-06 23:11, Ben Hutchings wrote: I intend to upload linux version 3.16.7-ckt9-1 to unstable tomorrow evening (Tuesday 7th April). [...] - Fix for data corruption on some Marvell Armada SoCs [...] Thanks for the update. Could I perhaps convince you to comment on the RC bug #780858. It is tagged pending, but I do not see it listed above? It's there, just not with the same title. :-) Ben. -- Ben Hutchings Power corrupts. Absolute power is kind of neat. - John Lehman, Secretary of the US Navy 1981-1987 signature.asc Description: This is a digitally signed message part
Re: Uploading linux (3.16.7-ckt9-1)
On 2015-04-06 23:38, Ben Hutchings wrote: On Mon, 2015-04-06 at 23:25 +0200, Niels Thykier wrote: On 2015-04-06 23:11, Ben Hutchings wrote: I intend to upload linux version 3.16.7-ckt9-1 to unstable tomorrow evening (Tuesday 7th April). [...] - Fix for data corruption on some Marvell Armada SoCs [...] Thanks for the update. Could I perhaps convince you to comment on the RC bug #780858. It is tagged pending, but I do not see it listed above? It's there, just not with the same title. :-) Ben. Ah thanks. I was confused by the absent Closes-statement, thanks for clarifying it. :) Thanks, ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5522ff98.7010...@thykier.net
NEW changes in stable-new
Processing changes file: libgd2_2.0.36~rc1~dfsg-6.1+deb7u1_amd64.changes ACCEPT Processing changes file: libgd2_2.0.36~rc1~dfsg-6.1+deb7u1_armel.changes ACCEPT Processing changes file: libgd2_2.0.36~rc1~dfsg-6.1+deb7u1_armhf.changes ACCEPT Processing changes file: libgd2_2.0.36~rc1~dfsg-6.1+deb7u1_i386.changes ACCEPT Processing changes file: libgd2_2.0.36~rc1~dfsg-6.1+deb7u1_ia64.changes ACCEPT Processing changes file: libgd2_2.0.36~rc1~dfsg-6.1+deb7u1_kfreebsd-amd64.changes ACCEPT Processing changes file: libgd2_2.0.36~rc1~dfsg-6.1+deb7u1_kfreebsd-i386.changes ACCEPT Processing changes file: libgd2_2.0.36~rc1~dfsg-6.1+deb7u1_mips.changes ACCEPT Processing changes file: libgd2_2.0.36~rc1~dfsg-6.1+deb7u1_mipsel.changes ACCEPT Processing changes file: libgd2_2.0.36~rc1~dfsg-6.1+deb7u1_powerpc.changes ACCEPT Processing changes file: libgd2_2.0.36~rc1~dfsg-6.1+deb7u1_s390.changes ACCEPT Processing changes file: libgd2_2.0.36~rc1~dfsg-6.1+deb7u1_s390x.changes ACCEPT Processing changes file: libgd2_2.0.36~rc1~dfsg-6.1+deb7u1_sparc.changes ACCEPT -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1yfecw-0004hf...@franck.debian.org
NEW changes in stable-new
Processing changes file: ircd-hybrid_7.2.2.dfsg.2-10+deb7u1_armhf.changes ACCEPT Processing changes file: ircd-hybrid_7.2.2.dfsg.2-10+deb7u1_s390x.changes ACCEPT Processing changes file: linux_3.2.68-1_s390x.changes ACCEPT -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1yffyv-0008ty...@franck.debian.org
NEW changes in stable-new
Processing changes file: ircd-hybrid_7.2.2.dfsg.2-10+deb7u1_armel.changes ACCEPT Processing changes file: ircd-hybrid_7.2.2.dfsg.2-10+deb7u1_sparc.changes ACCEPT -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1yfhqz-0007ss...@franck.debian.org
NEW changes in stable-new
Processing changes file: linux_3.2.68-1_armhf.changes ACCEPT Processing changes file: linux_3.2.68-1_sparc.changes ACCEPT -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1yfhcd-0005m7...@franck.debian.org
NEW changes in stable-new
Processing changes file: ircd-hybrid_7.2.2.dfsg.2-10+deb7u1_mips.changes ACCEPT Processing changes file: linux_3.2.68-1_armel.changes ACCEPT -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1yfktx-0003gv...@franck.debian.org
NEW changes in stable-new
Processing changes file: ircd-hybrid_7.2.2.dfsg.2-10+deb7u1_ia64.changes ACCEPT Processing changes file: linux_3.2.68-1_ia64.changes ACCEPT -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1yfhu8-0002lz...@franck.debian.org
Bug#782044: marked as done (unblock: tor/0.2.5.12-1)
Your message dated Tue, 07 Apr 2015 05:40:41 +0100 with message-id 1428381641.2113.9.ca...@adam-barratt.org.uk and subject line Re: Bug#782044: unblock: tor/0.2.5.12-1 has caused the Debian Bug report #782044, regarding unblock: tor/0.2.5.12-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 782044: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=782044 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package tor: unblock tor/0.2.5.12-1 This version fixes several hidden service related denial of service bugs that have been fixed in stable with DSA 3216-1: - disgleirio discovered that a malicious client could trigger an assertion failure in a Tor instance providing a hidden service, thus rendering the service inaccessible. [CVE-2015-2928] - DonnchaC discovered that Tor clients would crash with an assertion failure upon parsing specially crafted hidden service descriptors. [CVE-2015-2929] - Introduction points would accept multiple INTRODUCE1 cells on one circuit, making it inexpensive for an attacker to overload a hidden service with introductions. Introduction points no longer allow multiple such cells on the same circuit. A complete debdiff of the source package to 0.2.5.11-1, the version currently in jessie, is attached. For your consideration, weasel diff -Nru tor-0.2.5.11/ChangeLog tor-0.2.5.12/ChangeLog --- tor-0.2.5.11/ChangeLog 2015-03-17 14:39:09.0 +0100 +++ tor-0.2.5.12/ChangeLog 2015-04-06 15:57:54.0 +0200 @@ -1,3 +1,27 @@ +Changes in version 0.2.5.12 - 2015-04-06 + Tor 0.2.5.12 backports two fixes from 0.2.6.7 for security issues that + could be used by an attacker to crash hidden services, or crash clients + visiting hidden services. Hidden services should upgrade as soon as + possible; clients should upgrade whenever packages become available. + + This release also backports a simple improvement to make hidden + services a bit less vulnerable to denial-of-service attacks. + + o Major bugfixes (security, hidden service): +- Fix an issue that would allow a malicious client to trigger an + assertion failure and halt a hidden service. Fixes bug 15600; + bugfix on 0.2.1.6-alpha. Reported by disgleirio. +- Fix a bug that could cause a client to crash with an assertion + failure when parsing a malformed hidden service descriptor. Fixes + bug 15601; bugfix on 0.2.1.5-alpha. Found by DonnchaC. + + o Minor features (DoS-resistance, hidden service): +- Introduction points no longer allow multiple INTRODUCE1 cells to + arrive on the same circuit. This should make it more expensive for + attackers to overwhelm hidden services with introductions. + Resolves ticket 15515. + + Changes in version 0.2.5.11 - 2015-03-17 Tor 0.2.5.11 is the second stable release in the 0.2.5 series. diff -Nru tor-0.2.5.11/ReleaseNotes tor-0.2.5.12/ReleaseNotes --- tor-0.2.5.11/ReleaseNotes 2015-03-17 14:39:31.0 +0100 +++ tor-0.2.5.12/ReleaseNotes 2015-04-06 15:57:44.0 +0200 @@ -2,6 +2,30 @@ of Tor. If you want to see more detailed descriptions of the changes in each development snapshot, see the ChangeLog file. +Changes in version 0.2.5.12 - 2015-04-06 + Tor 0.2.5.12 backports two fixes from 0.2.6.7 for security issues that + could be used by an attacker to crash hidden services, or crash clients + visiting hidden services. Hidden services should upgrade as soon as + possible; clients should upgrade whenever packages become available. + + This release also backports a simple improvement to make hidden + services a bit less vulnerable to denial-of-service attacks. + + o Major bugfixes (security, hidden service): +- Fix an issue that would allow a malicious client to trigger an + assertion failure and halt a hidden service. Fixes bug 15600; + bugfix on 0.2.1.6-alpha. Reported by disgleirio. +- Fix a bug that could cause a client to crash with an assertion + failure when parsing a malformed hidden service descriptor. Fixes + bug 15601; bugfix on 0.2.1.5-alpha. Found by DonnchaC. + + o Minor features (DoS-resistance, hidden service): +- Introduction points no longer allow multiple INTRODUCE1 cells to + arrive on the same circuit. This should make it more expensive for + attackers to overwhelm hidden services with introductions. + Resolves ticket 15515. + + Changes in version 0.2.5.11 - 2015-03-17 Tor 0.2.5.11 is the
Bug#782053: marked as done (unblock: devscripts/2.15.3)
Your message dated Tue, 07 Apr 2015 05:38:35 +0100 with message-id 1428381515.2113.8.ca...@adam-barratt.org.uk and subject line Re: Bug#782053: unblock: devscripts/2.15.3 has caused the Debian Bug report #782053, regarding unblock: devscripts/2.15.3 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 782053: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=782053 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package devscripts Update debchange to understand the versioning for jessie-backports and make that the default release when using “dch --bpo”. The release is (relatively) imminent and I'd rather have this ready at release time rather than wait for a stable upload, even though that means sid users creating new backports will have to manually adjust the changelog header. $ debdiff devscripts_2.15.1.dsc devscripts_2.15.3.dsc diffstat for devscripts-2.15.1 devscripts-2.15.3 debian/changelog | 13 + po4a/po/de.po |4 ++-- po4a/po/devscripts.pot |2 +- po4a/po/fr.po |4 ++-- scripts/debchange.1|2 +- scripts/debchange.pl |6 +++--- 6 files changed, 22 insertions(+), 9 deletions(-) diff -Nru devscripts-2.15.1/debian/changelog devscripts-2.15.3/debian/changelog --- devscripts-2.15.1/debian/changelog 2015-01-01 09:51:28.0 -0500 +++ devscripts-2.15.3/debian/changelog 2015-04-03 21:48:02.0 -0400 @@ -1,3 +1,16 @@ +devscripts (2.15.3) unstable; urgency=medium + + * debchange: Use bpo8 instead of bpo80 for jessie-backports, per +https://lists.debian.org/debian-backports/2014/11/msg00031.html. + + -- James McCoy james...@debian.org Fri, 03 Apr 2015 21:47:54 -0400 + +devscripts (2.15.2) unstable; urgency=medium + + * debchange: Make jessie default backports release. + + -- James McCoy james...@debian.org Thu, 02 Apr 2015 21:37:39 -0400 + devscripts (2.15.1) unstable; urgency=medium [ Julien Cristau ] diff -Nru devscripts-2.15.1/po4a/po/de.po devscripts-2.15.3/po4a/po/de.po --- devscripts-2.15.1/po4a/po/de.po 2015-01-01 09:51:28.0 -0500 +++ devscripts-2.15.3/po4a/po/de.po 2015-04-03 21:48:02.0 -0400 @@ -7086,10 +7086,10 @@ #. type: Plain text #: ../scripts/debchange.1:256 msgid -Increment the Debian release number for an upload to wheezy-backports, and +Increment the Debian release number for an upload to jessie-backports, and add a backport upload changelog comment. msgstr -erhöht die Debian-Veröffentlichungsnummer für ein Hochladen nach wheezy- +erhöht die Debian-Veröffentlichungsnummer für ein Hochladen nach jessie- backports und fügt einen Changelog-Kommentar »backport upload« hinzu. #. type: TP diff -Nru devscripts-2.15.1/po4a/po/devscripts.pot devscripts-2.15.3/po4a/po/devscripts.pot --- devscripts-2.15.1/po4a/po/devscripts.pot2015-01-01 09:53:59.0 -0500 +++ devscripts-2.15.3/po4a/po/devscripts.pot2015-04-03 21:53:13.0 -0400 @@ -5354,7 +5354,7 @@ #. type: Plain text #: ../scripts/debchange.1:256 msgid -Increment the Debian release number for an upload to wheezy-backports, and +Increment the Debian release number for an upload to jessie-backports, and add a backport upload changelog comment. msgstr diff -Nru devscripts-2.15.1/po4a/po/fr.po devscripts-2.15.3/po4a/po/fr.po --- devscripts-2.15.1/po4a/po/fr.po 2015-01-01 09:51:28.0 -0500 +++ devscripts-2.15.3/po4a/po/fr.po 2015-04-03 21:48:02.0 -0400 @@ -7075,11 +7075,11 @@ #. type: Plain text #: ../scripts/debchange.1:256 msgid -Increment the Debian release number for an upload to wheezy-backports, and +Increment the Debian release number for an upload to jessie-backports, and add a backport upload changelog comment. msgstr Incrémenter le numéro de publication de Debian pour un envoi d'un -rétroportage pour Wheezy, et ajouter un commentaire pour l'envoi du +rétroportage pour Jessie, et ajouter un commentaire pour l'envoi du rétroportage dans le changelog. #. type: TP diff -Nru devscripts-2.15.1/scripts/debchange.1 devscripts-2.15.3/scripts/debchange.1 --- devscripts-2.15.1/scripts/debchange.1 2015-01-01 09:51:28.0 -0500 +++ devscripts-2.15.3/scripts/debchange.1 2015-04-03 21:48:02.0 -0400 @@ -251,7 +251,7 @@ distribution. Increment the Debian version. .TP .B \-\-bpo -Increment the Debian release number for an upload to wheezy-backports, +Increment the Debian release number for an
Bug#781989: marked as done (unblock: b43-fwcutter/1:019-2)
Your message dated Mon, 06 Apr 2015 08:10:13 +0200 with message-id 55222345.5040...@thykier.net and subject line Re: Bug#781989: unblock: b43-fwcutter/1:019-2 has caused the Debian Bug report #781989, regarding unblock: b43-fwcutter/1:019-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 781989: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781989 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package b43-fwcutter b43-fwcutter (1:019-2) unstable; urgency=medium * Fix upgrade in postinst files when network connecton is unavailable. Closes: #781544 + Thanks Julian Moreno for the patch -- Daniel Echeverry epsilo...@gmail.com Sun, 05 Apr 2015 20:03:23 -0500 Full source diff attached. unblock b43-fwcutter/1:019-2 Regards -- Daniel Echeverry http://wiki.debian.org/DanielEcheverry Linux user: #477840 Debian user Software libre b43-fwcutter.debdiff Description: Binary data ---End Message--- ---BeginMessage--- On 2015-04-06 04:32, Daniel Echeverry wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package b43-fwcutter b43-fwcutter (1:019-2) unstable; urgency=medium * Fix upgrade in postinst files when network connecton is unavailable. Closes: #781544 + Thanks Julian Moreno for the patch -- Daniel Echeverry epsilo...@gmail.com Sun, 05 Apr 2015 20:03:23 -0500 Full source diff attached. unblock b43-fwcutter/1:019-2 Regards Unblocked, thanks. ~Niels---End Message---
Bug#781830: unblock: mate-power-manager/1.8.1+dfsg1-5
Control: tags -1 - moreinfo - Original message - Control: tags -1 confirmed moreinfo On 2015-04-03 16:19, Mike Gabriel wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package mate-power-manager + * debian/patches: + + Add 0003_fix-power-statistics-when-unplugging-wireless-device-with- + battery.patch. Fix crashes of mate-power-statistics when unplugging + wireless devices that have a battery (e.g. wireless mouse). The crashes + were due to a not fully implemented adaptation to API changes in upower + 0.99 API. (Closes: #780844). - This patch/upload fixes yet another crash in mate-power-statistics. There may even come a follow-up upload, because when testing I discovered one more (unrelated to the above issue) segfault [1] when clicking through the mate-power-statistics GUI. light+love, Mike [1] https://github.com/mate-desktop/mate-power-manager/issues/142 unblock mate-power-manager/1.8.1+dfsg1-5 [...] Approved, provided it is uploaded in time to reach testing before the quiet period (i.e. it is in testing before the 18th of April). This package version has already been in unstable for a couple of days now. light+love, Mike -- DAS-NETZWERKTEAM mike gabriel, herweg 7, 24357 fleckeby fon: +49 (1520) 1976148 GnuPG Key ID 0x25771B13 mail: mike.gabr...@das-netzwerkteam.de, http://das-netzwerkteam.de -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/1428311628.1705.2.camel@Nokia-N900
Processed: Re: Bug#781830: unblock: mate-power-manager/1.8.1+dfsg1-5
Processing control commands: tags -1 - moreinfo Bug #781830 [release.debian.org] unblock: mate-power-manager/1.8.1+dfsg1-5 Removed tag(s) moreinfo. -- 781830: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781830 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b781830.14283116379198.transcr...@bugs.debian.org
Bug#781395: unblock (pre-approval): mate-control-center/1.8.3+dfsg1-2
Control: tags -1 - moreinfo - Original message - Control: tags -1 confirmed moreinfo On 2015-03-28 15:34, Mike Gabriel wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please consider unblocking planned upload of package mate-control-center. [...] light+love, Mike unblock mate-control-center/1.8.3+dfsg1-2 [...] Approved, provided it is uploaded in time to reach testing before the quiet period (i.e. it is in testing before the 18th of April). Uploaded and accepted in unstable. light+love, Mike -- DAS-NETZWERKTEAM mike gabriel, herweg 7, 24357 fleckeby fon: +49 (1520) 1976148 GnuPG Key ID 0x25771B13 mail: mike.gabr...@das-netzwerkteam.de, http://das-netzwerkteam.de -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/1428314315.1705.8.camel@Nokia-N900
Bug#781392: unblock (pre-approval): mate-desktop/1.8.1+dfsg1-3
Control: tags -1 - moreinfo - Original message - Control: tags -1 confirmed moreinfo On 2015-03-28 15:03, Mike Gabriel wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please consider unblocking planned upload of package mate-desktop. + * debian/patches: + + Add 0001_fix-pkexec-calls-in-desktop-launcher.patch. In + mate-desktop-item.c: Add a child watch if do not reap child flag is set. + This avoids double forking with desktop files that have exec pkexec ... + inside. (Closes: #781246). - Applications launched via pkexec via a .desktop file in MATE double fork, which let's the pkexec call fail in some situations. light+love, Mike unblock mate-desktop/1.8.1+dfsg1-3 [...] Approved, provided it is uploaded in time to reach testing before the quiet period (i.e. it is in testing before the 18th of April). Uploaded and accepted in unstable. Mike -- DAS-NETZWERKTEAM mike gabriel, herweg 7, 24357 fleckeby fon: +49 (1520) 1976148 GnuPG Key ID 0x25771B13 mail: mike.gabr...@das-netzwerkteam.de, http://das-netzwerkteam.de -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/1428314230.1705.5.camel@Nokia-N900
Processed: Re: Bug#781395: unblock (pre-approval): mate-control-center/1.8.3+dfsg1-2
Processing control commands: tags -1 confirmed moreinfo Bug #781395 [release.debian.org] unblock (pre-approval): mate-control-center/1.8.3+dfsg1-2 Added tag(s) confirmed and moreinfo. -- 781395: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781395 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b781395.14283057696612.transcr...@bugs.debian.org
Bug#781395: unblock (pre-approval): mate-control-center/1.8.3+dfsg1-2
Control: tags -1 confirmed moreinfo On 2015-03-28 15:34, Mike Gabriel wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please consider unblocking planned upload of package mate-control-center. [...] light+love, Mike unblock mate-control-center/1.8.3+dfsg1-2 [...] Approved, provided it is uploaded in time to reach testing before the quiet period (i.e. it is in testing before the 18th of April). Thanks, ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/55223760.5000...@thykier.net
Bug#782000: unblock: upower/0.99.1-3.2
Hello Mike, Mike Gabriel [2015-04-06 12:28 +0200]: Please unblock package upower [...] + [ Vlad Orlov ] + * null-init-pointers.patch: new patch. Properly initialize two +pointers, avoid segfaults. (Closes: #774546). This has my blessings, thanks Mike for your help! Martin -- Martin Pitt| http://www.piware.de Ubuntu Developer (www.ubuntu.com) | Debian Developer (www.debian.org) -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/20150406104212.gi2...@piware.de
Bug#781897: unblock: erlang/17.3-dfsg-4
Control: tags -1 moreinfo On 2015-04-04 16:48, Sergei Golovan wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi release team! Please, allow me to upload erlang 17.3-dfsg-4 which fixes CVE-2015-2774 in its SSL implementation (see [1] for further details). I also took the liberty to fix one trivial bug in build dependencies (should've replace libsystemd-daemon-dev by libsystemd-dev long time ago, see [2]) and one bug with incorrect variable type in a function header (see [3]). The debdiff between the current erlang and 17.3-dfsg-4 is attached. [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781839 [2] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=779750 [3] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=747593 unblock erlang/17.3-dfsg-4 [...] Hi Sergei, Thanks for providing this debdiff. I am afraid that erlang is not really my strong suite, so I have to ask the following before I can answer your request. * Is this change backwards compatible in API/ABI? Will existing reverse dependencies build,link and run against erlang without any changes and without needing to be rebuilt? - In particular, #747593 suggests it will change the size of a C data structure. Thanks, ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/552227fc.4020...@thykier.net
Bug#781897: unblock: erlang/17.3-dfsg-4
Hi Niels, On Mon, Apr 6, 2015 at 9:30 AM, Niels Thykier ni...@thykier.net wrote: Hi Sergei, Thanks for providing this debdiff. I am afraid that erlang is not really my strong suite, so I have to ask the following before I can answer your request. * Is this change backwards compatible in API/ABI? Will existing reverse dependencies build,link and run against erlang without any changes and without needing to be rebuilt? - In particular, #747593 suggests it will change the size of a C data structure. There are 3 bugs fixed in this version, I'll try to go through all of them. 1) #781839: The patch doesn't change the exported SSL API, it adds a new option for TLS 1.0 connections (padding check, which has to be added and set to true if we want to fix the CVE vulnerbaility). A few internal functions has been changed, though they are never called from outside the SSL application itself. I've checked a few reverse dependencies (yaws, ejabberd), they work fine as far as I can tell. 2) #779750: It's a trivial bug which just helps the systemd maintainers to get rid of all the libsystemd-*-dev packages more quickly. 3) #747593: As you can see in [1], the signature of erts_gzinflate_buffer is really ErlDrvBinary*(char*, uLong), and its prototype in [2] is just incorrect. The patch changes only the prototype and only for one specific call [3] to make sure the arguments types in function call at [3] are correctly converted. So, this patch doesn't change any API or ABI. [1] http://sources.debian.net/src/erlang/1:17.3-dfsg-3/erts/emulator/drivers/common/gzio.c/#L752 [2] http://sources.debian.net/src/erlang/1:17.3-dfsg-3/erts/emulator/beam/beam_load.c/#L46 [3] http://sources.debian.net/src/erlang/1:17.3-dfsg-3/erts/emulator/beam/beam_load.c/#L1018 Cheers! -- Sergei Golovan -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/CAOq2pXFbNZOxyGXqNG8g+S0=brntvjvoecmmyy86oy0ymhe...@mail.gmail.com
Processed: Re: Bug#781395: unblock (pre-approval): mate-control-center/1.8.3+dfsg1-2
Processing control commands: tags -1 - moreinfo Bug #781395 [release.debian.org] unblock (pre-approval): mate-control-center/1.8.3+dfsg1-2 Removed tag(s) moreinfo. -- 781395: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781395 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b781395.1428314320407.transcr...@bugs.debian.org
Processed: Re: Bug#781392: unblock (pre-approval): mate-desktop/1.8.1+dfsg1-3
Processing control commands: tags -1 - moreinfo Bug #781392 [release.debian.org] unblock (pre-approval): mate-desktop/1.8.1+dfsg1-3 Removed tag(s) moreinfo. -- 781392: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781392 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b781392.142831423932418.transcr...@bugs.debian.org
Bug#782000: unblock: upower/0.99.1-3.2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package upower + [ Mike Gabriel ] + * Non-maintainer upload. - As Martin Pitt asked to help with fixing the below mentioned issue, I did an NMU of upower just now. The upload has already been discussed with and ack'ed by Niels Thykier on IRC today. + [ Vlad Orlov ] + * null-init-pointers.patch: new patch. Properly initialize two +pointers, avoid segfaults. (Closes: #774546). - This patch fixes crashes in mate-power-statistics and gnome-power-statistics in certain situations (see #774546 for details about when these crashes occur). light+love, Mike unblock upower/0.99.1-3.2 -- System Information: Debian Release: 8.0 APT prefers testing-updates APT policy: (500, 'testing-updates'), (500, 'testing-proposed-updates'), (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) diff -Nru upower-0.99.1/debian/changelog upower-0.99.1/debian/changelog --- upower-0.99.1/debian/changelog 2014-11-28 16:42:02.0 +0100 +++ upower-0.99.1/debian/changelog 2015-04-06 12:21:31.0 +0200 @@ -1,3 +1,14 @@ +upower (0.99.1-3.2) unstable; urgency=medium + + [ Mike Gabriel ] + * Non-maintainer upload. + + [ Vlad Orlov ] + * null-init-pointers.patch: new patch. Properly initialize two +pointers, avoid segfaults. (Closes: #774546). + + -- Mike Gabriel sunwea...@debian.org Mon, 06 Apr 2015 12:03:26 +0200 + upower (0.99.1-3.1) unstable; urgency=medium * Non-maintainer upload. diff -Nru upower-0.99.1/debian/patches/null-init-pointers.patch upower-0.99.1/debian/patches/null-init-pointers.patch --- upower-0.99.1/debian/patches/null-init-pointers.patch 1970-01-01 01:00:00.0 +0100 +++ upower-0.99.1/debian/patches/null-init-pointers.patch 2015-04-06 12:02:17.0 +0200 @@ -0,0 +1,27 @@ +Description: NULL-initialize two pointers, avoid crash +Author: Vlad Orlov mon...@inbox.ru +Abstract: + Two uninitialized pointers in upower's code cause segfault + of gnome-power-statistics and mate-power-statistics in some + situations. + +--- a/libupower-glib/up-device.c b/libupower-glib/up-device.c +@@ -422,7 +422,7 @@ GPtrArray * + up_device_get_history_sync (UpDevice *device, const gchar *type, guint timespec, guint resolution, GCancellable *cancellable, GError **error) + { + GError *error_local = NULL; +- GVariant *gva; ++ GVariant *gva = NULL; + guint i; + GPtrArray *array = NULL; + gboolean ret; +@@ -502,7 +502,7 @@ GPtrArray * + up_device_get_statistics_sync (UpDevice *device, const gchar *type, GCancellable *cancellable, GError **error) + { + GError *error_local = NULL; +- GVariant *gva; ++ GVariant *gva = NULL; + guint i; + GPtrArray *array = NULL; + gboolean ret; diff -Nru upower-0.99.1/debian/patches/series upower-0.99.1/debian/patches/series --- upower-0.99.1/debian/patches/series 2014-11-28 16:24:28.0 +0100 +++ upower-0.99.1/debian/patches/series 2015-04-06 12:00:50.0 +0200 @@ -2,3 +2,4 @@ git-tests-py3.4.patch git-split-tests.patch git-fix-memleak.patch +null-init-pointers.patch
Processed: Re: Bug#781897: unblock: erlang/17.3-dfsg-4
Processing control commands: tags -1 moreinfo Bug #781897 [release.debian.org] unblock: erlang/17.3-dfsg-4 Added tag(s) moreinfo. -- 781897: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781897 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b781897.142830183119444.transcr...@bugs.debian.org
Bug#781392: unblock (pre-approval): mate-desktop/1.8.1+dfsg1-3
Control: tags -1 confirmed moreinfo On 2015-03-28 15:03, Mike Gabriel wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please consider unblocking planned upload of package mate-desktop. + * debian/patches: ++ Add 0001_fix-pkexec-calls-in-desktop-launcher.patch. In + mate-desktop-item.c: Add a child watch if do not reap child flag is set. + This avoids double forking with desktop files that have exec pkexec ... + inside. (Closes: #781246). - Applications launched via pkexec via a .desktop file in MATE double fork, which let's the pkexec call fail in some situations. light+love, Mike unblock mate-desktop/1.8.1+dfsg1-3 [...] Approved, provided it is uploaded in time to reach testing before the quiet period (i.e. it is in testing before the 18th of April). Thanks, ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/552236f8.10...@thykier.net
Processed: Re: Bug#781392: unblock (pre-approval): mate-desktop/1.8.1+dfsg1-3
Processing control commands: tags -1 confirmed moreinfo Bug #781392 [release.debian.org] unblock (pre-approval): mate-desktop/1.8.1+dfsg1-3 Added tag(s) confirmed and moreinfo. -- 781392: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781392 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b781392.14283056656221.transcr...@bugs.debian.org
Bug#781897: unblock: erlang/17.3-dfsg-4
Hi Niels, On Mon, Apr 6, 2015 at 10:25 AM, Niels Thykier ni...@thykier.net wrote: Excellent, thanks for confirming. Please upload this to unstable and let us know once it has been accepted. :) The package has been accepted into unstable. Cheers! -- Sergei Golovan -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/caoq2pxglxxt1bvypqqxhpumx9y2c-ym3ydhvq6mhqeqpmvz...@mail.gmail.com
Processed: Re: Bug#781830: unblock: mate-power-manager/1.8.1+dfsg1-5
Processing control commands: tags -1 confirmed moreinfo Bug #781830 [release.debian.org] unblock: mate-power-manager/1.8.1+dfsg1-5 Added tag(s) confirmed and moreinfo. -- 781830: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781830 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b781830.142830215121022.transcr...@bugs.debian.org
Bug#781830: unblock: mate-power-manager/1.8.1+dfsg1-5
Control: tags -1 confirmed moreinfo On 2015-04-03 16:19, Mike Gabriel wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package mate-power-manager + * debian/patches: ++ Add 0003_fix-power-statistics-when-unplugging-wireless-device-with- + battery.patch. Fix crashes of mate-power-statistics when unplugging + wireless devices that have a battery (e.g. wireless mouse). The crashes + were due to a not fully implemented adaptation to API changes in upower + 0.99 API. (Closes: #780844). - This patch/upload fixes yet another crash in mate-power-statistics. There may even come a follow-up upload, because when testing I discovered one more (unrelated to the above issue) segfault [1] when clicking through the mate-power-statistics GUI. light+love, Mike [1] https://github.com/mate-desktop/mate-power-manager/issues/142 unblock mate-power-manager/1.8.1+dfsg1-5 [...] Approved, provided it is uploaded in time to reach testing before the quiet period (i.e. it is in testing before the 18th of April). Thanks, ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/5522293e.9030...@thykier.net
Bug#781897: unblock: erlang/17.3-dfsg-4
Control: tags -1 confirmed On 2015-04-06 09:11, Sergei Golovan wrote: Hi Niels, On Mon, Apr 6, 2015 at 9:30 AM, Niels Thykier ni...@thykier.net wrote: Hi Sergei, Thanks for providing this debdiff. I am afraid that erlang is not really my strong suite, so I have to ask the following before I can answer your request. * Is this change backwards compatible in API/ABI? Will existing reverse dependencies build,link and run against erlang without any changes and without needing to be rebuilt? - In particular, #747593 suggests it will change the size of a C data structure. There are 3 bugs fixed in this version, I'll try to go through all of them. [...] Cheers! Excellent, thanks for confirming. Please upload this to unstable and let us know once it has been accepted. :) Thanks, ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/552234d0.5070...@thykier.net
Bug#781474: marked as done (unblock: rtmpdump/2.4+20150115.gita107cef-1)
Your message dated Mon, 06 Apr 2015 09:30:03 +0200 with message-id 552235fb.4010...@thykier.net and subject line Re: Bug#781474: unblock: rtmpdump/2.4+20150115.gita107cef-1 has caused the Debian Bug report #781474, regarding unblock: rtmpdump/2.4+20150115.gita107cef-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 781474: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781474 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package rtmpdump. In jessie streaming to YouTube over RTMP is broken with timestamps longer thant 24 bits. Also authenticating to Wozwa servers is broken. These two issues have been fixed upstream. The fixes are rather small and I'd like to get them included into jessie. Full debdiff is attached. The changelog is: rtmpdump (2.4+20150115.gita107cef-1) unstable; urgency=medium * Team upload. * New upstream snapshot fixing multiple issues when streaming to YouTube and Wowza: - Fix RTMP streams with timestamps longer than 24 bits. - Fix authentication with Wowza 4.x servers. * debian/patches/03_suppress_warning.diff: Suppress warning about 24-bit timestamps. Thanks to William King. -- Sebastian Ramacher sramac...@debian.org Sun, 29 Mar 2015 18:27:52 +0200 unblock rtmpdump/2.4+20150115.gita107cef-1 Cheers -- Sebastian Ramacher diff -Nru rtmpdump-2.4+20131018.git79459a2/debian/changelog rtmpdump-2.4+20150115.gita107cef/debian/changelog --- rtmpdump-2.4+20131018.git79459a2/debian/changelog 2014-11-11 15:56:13.0 +0100 +++ rtmpdump-2.4+20150115.gita107cef/debian/changelog 2015-03-29 18:29:14.0 +0200 @@ -1,3 +1,15 @@ +rtmpdump (2.4+20150115.gita107cef-1) unstable; urgency=medium + + * Team upload. + * New upstream snapshot fixing multiple issues when streaming to YouTube and +Wowza: +- Fix RTMP streams with timestamps longer than 24 bits. +- Fix authentication with Wowza 4.x servers. + * debian/patches/03_suppress_warning.diff: Suppress warning about 24-bit +timestamps. Thanks to William King. + + -- Sebastian Ramacher sramac...@debian.org Sun, 29 Mar 2015 18:27:52 +0200 + rtmpdump (2.4+20131018.git79459a2-5) unstable; urgency=medium * Team upload. diff -Nru rtmpdump-2.4+20131018.git79459a2/debian/patches/03_suppress_warning.diff rtmpdump-2.4+20150115.gita107cef/debian/patches/03_suppress_warning.diff --- rtmpdump-2.4+20131018.git79459a2/debian/patches/03_suppress_warning.diff 1970-01-01 01:00:00.0 +0100 +++ rtmpdump-2.4+20150115.gita107cef/debian/patches/03_suppress_warning.diff 2015-03-29 15:38:38.0 +0200 @@ -0,0 +1,14 @@ +Description: Suppress warning +Author: William King william.l...@quentustech.com +Last-Update: 2015-03-29 + +--- rtmpdump-2.4+20150115.gita107cef.orig/librtmp/rtmp.c rtmpdump-2.4+20150115.gita107cef/librtmp/rtmp.c +@@ -3969,7 +3969,6 @@ RTMP_SendPacket(RTMP *r, RTMPPacket *pac + { + header -= 4; + hSize += 4; +- RTMP_Log(RTMP_LOGWARNING, Larger timestamp than 24-bit: 0x%x, t); + } + + hptr = header; diff -Nru rtmpdump-2.4+20131018.git79459a2/debian/patches/series rtmpdump-2.4+20150115.gita107cef/debian/patches/series --- rtmpdump-2.4+20131018.git79459a2/debian/patches/series 2014-10-24 00:49:28.0 +0200 +++ rtmpdump-2.4+20150115.gita107cef/debian/patches/series 2015-03-29 15:38:53.0 +0200 @@ -1,2 +1,3 @@ 01_unbreak_makefile.diff 02_gnutls_requires.private.diff +03_suppress_warning.diff diff -Nru rtmpdump-2.4+20131018.git79459a2/librtmp/rtmp.c rtmpdump-2.4+20150115.gita107cef/librtmp/rtmp.c --- rtmpdump-2.4+20131018.git79459a2/librtmp/rtmp.c 2014-04-08 02:56:09.0 +0200 +++ rtmpdump-2.4+20150115.gita107cef/librtmp/rtmp.c 2015-01-15 09:24:28.0 +0100 @@ -142,6 +142,8 @@ static int HTTP_Post(RTMP *r, RTMPTCmd cmd, const char *buf, int len); static int HTTP_read(RTMP *r, int fill); +static void CloseInternal(RTMP *r, int reconnect); + #ifndef _WIN32 static int clk_tck; #endif @@ -2538,7 +2540,6 @@ { if (strstr(r-Link.app.av_val, av_authmod_adobe.av_val) != NULL) { RTMP_Log(RTMP_LOGERROR, %s, wrong pubUser pubPasswd for publisher auth, __FUNCTION__); - r-Link.pFlags |= RTMP_PUB_CLEAN; return 0; } else if(r-Link.pubUser.av_len r-Link.pubPasswd.av_len) { pubToken.av_val = malloc(r-Link.pubUser.av_len + av_authmod_adobe.av_len + 8); @@ -2546,10
Processed: Re: Bug#781897: unblock: erlang/17.3-dfsg-4
Processing control commands: tags -1 confirmed Bug #781897 [release.debian.org] unblock: erlang/17.3-dfsg-4 Added tag(s) confirmed. -- 781897: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=781897 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/handler.s.b781897.14283051133467.transcr...@bugs.debian.org
Bug#782002: unblock: (pre-approval) opensc
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Dear release team, Currently opensc is not supporting the new Belgian electronic ID card that have a validity of 10 years (see: #781221) Upstream has commited a patch that fix this issues: https://github.com/OpenSC/OpenSC/commit/5149dd3e62594eb2477f699d834584991ab54d5f.patch The changes are contained in the belpic driver and shouldn't impact the other cards. card-belpic.c | 84 +++--- 1 file changed, 81 insertions(+), 3 deletions(-) Without this patch, the Belgian citizens that will replace their card during the jessie release will not be able to use opensc to login on the different gouvernemental websites (Taxes,...) Would the release team be OK with the attached patch? Cheers, Laurent Bigonville -- System Information: Debian Release: 8.0 APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.19.0-trunk-amd64 (SMP w/8 CPU cores) Locale: LANG=fr_BE.utf8, LC_CTYPE=fr_BE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) diff -Nru opensc-0.14.0/debian/changelog opensc-0.14.0/debian/changelog --- opensc-0.14.0/debian/changelog 2014-07-05 23:08:28.0 +0200 +++ opensc-0.14.0/debian/changelog 2015-04-06 12:45:39.0 +0200 @@ -1,3 +1,10 @@ +opensc (0.14.0-2) UNRELEASED; urgency=medium + + * debian/patches/01_belpic_2048.patch: Supports newer belpic cards that have +a key length of 2048 bits (Closes: #781221) + + -- Laurent Bigonville bi...@debian.org Mon, 06 Apr 2015 12:44:49 +0200 + opensc (0.14.0-1) unstable; urgency=medium * New upstream release. (Closes: #746694, #731235, #746663) diff -Nru opensc-0.14.0/debian/patches/01_belpic_2048.patch opensc-0.14.0/debian/patches/01_belpic_2048.patch --- opensc-0.14.0/debian/patches/01_belpic_2048.patch 1970-01-01 01:00:00.0 +0100 +++ opensc-0.14.0/debian/patches/01_belpic_2048.patch 2015-04-06 12:30:17.0 +0200 @@ -0,0 +1,143 @@ +From 5149dd3e62594eb2477f699d834584991ab54d5f Mon Sep 17 00:00:00 2001 +From: Wouter Verhelst wouter.verhe...@fedict.be +Date: Thu, 26 Mar 2015 13:16:04 +0100 +Subject: [PATCH] belpic: Support 2K cards + +Recent BELPIC cards (issued since March 2014) have a validity of 10 +years (rather than 5 as before), and therefore also increased the key +size from 1024 bits to 2048 bits. + +Key size can be detected by checking the applet version, for which we +have to issue a GetCardData command. If the applet is version 0x17 or +higher, keys are 2048 bits. + +Use #defines rather than magic numbers + +Keeps the code slightly more readable. + +While we're at it, refactor slightly so that the code which issues the +GET CARD DATA command doesn't just keep the applet version, but also +makes other things available. + +This latter in preparation of setting the serial number. +--- + src/libopensc/card-belpic.c | 84 +++-- + 1 file changed, 81 insertions(+), 3 deletions(-) + +diff --git a/src/libopensc/card-belpic.c b/src/libopensc/card-belpic.c +index 73969d0..cfb963e 100644 +--- a/src/libopensc/card-belpic.c b/src/libopensc/card-belpic.c +@@ -127,6 +127,40 @@ static long t1, t2, tot_read = 0, tot_dur = 0, dur; + #define BELPIC_PAD_CHAR 0xFF + #define BELPIC_KEY_REF_NONREP 0x83 + ++/* Data in the return value for the GET CARD DATA command: ++ * All fields are one byte, except when noted otherwise. ++ * ++ * See §6.9 in ++ * https://github.com/Fedict/eid-mw/blob/master/doc/sdk/documentation/Public_Belpic_Applet_v1%207_Ref_Manual%20-%20A01.pdf ++ * for the full documentation on the GET CARD DATA command. ++ */ ++// Card serial number (16 bytes) ++#define BELPIC_CARDDATA_OFF_SERIALNUM 0 ++// Component code ++#define BELPIC_CARDDATA_OFF_COMPCODE 16 ++// OS number ++#define BELPIC_CARDDATA_OFF_OSNUM 17 ++// OS version ++#define BELPIC_CARDDATA_OFF_OSVER 18 ++// Softmask number ++#define BELPIC_CARDDATA_OFF_SMNUM 19 ++// Softmask version ++#define BELPIC_CARDDATA_OFF_SMVER 20 ++// Applet version ++#define BELPIC_CARDDATA_OFF_APPLETVERS 21 ++// Global OS version (2 bytes) ++#define BELPIC_CARDDATA_OFF_GL_OSVE 22 ++// Applet interface version ++#define BELPIC_CARDDATA_OFF_APPINTVERS 24 ++// PKCS#1 support version ++#define BELPIC_CARDDATA_OFF_PKCS1 25 ++// Key exchange version ++#define BELPIC_CARDDATA_OFF_KEYX 26 ++// Applet life cycle (Should always be 0F for released cards, is 07 when not issued yet) ++#define BELPIC_CARDDATA_OFF_APPLCYCLE 27 ++// Full length of reply ++#define BELPIC_CARDDATA_RESP_LEN 28 ++ + /* Used for a trick in select file and read binary */ + static size_t next_idx = (size_t)-1; + +@@ -577,6 +611,42 @@ static int str2lang(sc_context_t *ctx, char *lang) + return -1; + } + ++static int get_carddata(sc_card_t *card, u8* carddata_loc, unsigned int
Bug#782018: unblock: nodejs/0.10.29~dfsg-2
Please wait for another debdiff proposal - upstream wrote a better fix for the test, avoiding the check for hex error code. Jérémy. -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/cajxtcxzq9yc0pdih7blwuepmlhfocuaci0mnzafbohi9y2c...@mail.gmail.com
Bug#782018: unblock: nodejs/0.10.29~dfsg-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package nodejs it simply reverts a fix for a test that was broken by a previous openssl version. Now with openssl 1.0.1k-3 the upstream test does not fail and the patch is no longer needed. i'll upload the package as soon as i have your consentment. unblock nodejs/0.10.29~dfsg-2 Jérémy diff -Nru nodejs-0.10.29~dfsg/debian/changelog nodejs-0.10.29~dfsg/debian/changelog --- nodejs-0.10.29~dfsg/debian/changelog 2014-12-28 13:53:34.0 +0100 +++ nodejs-0.10.29~dfsg/debian/changelog 2015-04-06 16:47:44.0 +0200 @@ -1,3 +1,11 @@ +nodejs (0.10.29~dfsg-2) unstable; urgency=medium + + * Unapply 2015_fix_test_crypto_stream.patch, no longer needed +with openssl found in current testing. +Closes: #781710. + + -- Jérémy Lal kapo...@melix.org Mon, 06 Apr 2015 16:47:42 +0200 + nodejs (0.10.29~dfsg-1.1) unstable; urgency=medium * Non-maintainer upload. diff -Nru nodejs-0.10.29~dfsg/debian/patches/series nodejs-0.10.29~dfsg/debian/patches/series --- nodejs-0.10.29~dfsg/debian/patches/series 2014-12-28 13:53:34.0 +0100 +++ nodejs-0.10.29~dfsg/debian/patches/series 2015-04-06 16:40:53.0 +0200 @@ -13,4 +13,3 @@ 2014_donotinclude_root_certs.patch 1006_relax_timeouts_in_tests.patch 1007_revert_invalid_utf8_fix.patch -2015_fix_test_crypto_stream.patch
Bug#782014: unblock: caja-extensions/1.8.0-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package caja-extensions + * debian/control: ++ Add to D (caja-gksu): gksu. (Closes: #781951). - As reported by the bug submitter of #781951, nothing happens in the caja-gksu extension if gksu is not installed. To make this extension work properly, gksu must be installed. light+love, Mike unblock caja-extensions/1.8.0-3 -- System Information: Debian Release: 8.0 APT prefers testing-updates APT policy: (500, 'testing-updates'), (500, 'testing-proposed-updates'), (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) diff -Nru caja-extensions-1.8.0/debian/changelog caja-extensions-1.8.0/debian/changelog --- caja-extensions-1.8.0/debian/changelog 2014-10-25 19:36:42.0 +0200 +++ caja-extensions-1.8.0/debian/changelog 2015-04-06 15:55:11.0 +0200 @@ -1,3 +1,10 @@ +caja-extensions (1.8.0-3) unstable; urgency=medium + + * debian/control: ++ Add to D (caja-gksu): gksu. (Closes: #781951). + + -- Mike Gabriel sunwea...@debian.org Mon, 06 Apr 2015 15:54:52 +0200 + caja-extensions (1.8.0-2) unstable; urgency=medium [ Mike Gabriel ] diff -Nru caja-extensions-1.8.0/debian/control caja-extensions-1.8.0/debian/control --- caja-extensions-1.8.0/debian/control 2014-10-24 21:19:35.0 +0200 +++ caja-extensions-1.8.0/debian/control 2015-04-06 15:55:03.0 +0200 @@ -27,6 +27,7 @@ Depends: ${shlibs:Depends}, ${misc:Depends}, caja-extensions-common (= ${source:Version}), + gksu, Description: privilege granting extension for caja using gksu Caja is the official file manager for the MATE desktop. This package adds extended functionality to the Caja file manager.