Bug#858148: marked as done (unblock: glance/2:13.0.0-3)

2017-03-18 Thread Debian Bug Tracking System 
Your message dated Sat, 18 Mar 2017 22:16:03 +
with message-id 
and subject line unblock glance
has caused the Debian Bug report #858148,
regarding unblock: glance/2:13.0.0-3
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
858148: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858148
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package glance/2:13.0.0-3. This version closes bug
#858123. Debdiff attached.

Thanks.

unblock glance/2:13.0.0-3

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru glance-13.0.0/debian/changelog glance-13.0.0/debian/changelog
--- glance-13.0.0/debian/changelog  2017-01-20 11:26:08.0 +0100
+++ glance-13.0.0/debian/changelog  2017-03-18 19:06:26.0 +0100
@@ -1,3 +1,10 @@
+glance (2:13.0.0-3) unstable; urgency=medium
+
+  * Team upload.
+  * Added dependency: net-tools ( Closes: #858123 )
+
+ -- David Rabel   Sat, 18 Mar 2017 19:06:26 +0100
+
 glance (2:13.0.0-2) unstable; urgency=medium
 
   * Team upload.
diff -Nru glance-13.0.0/debian/control glance-13.0.0/debian/control
--- glance-13.0.0/debian/control2017-01-20 11:24:21.0 +0100
+++ glance-13.0.0/debian/control2017-03-18 19:06:26.0 +0100
@@ -206,6 +206,7 @@
  glance-common (= ${source:Version}),
  python-openstackclient,
  q-text-as-data,
+ net-tools,
  ${misc:Depends},
  ${ostack-lsb-base},
  ${python:Depends},
--- End Message ---
--- Begin Message ---
Unblocked glance.--- End Message ---

Bug#858118: marked as done (unblock: wget/1.18-5)

2017-03-18 Thread Debian Bug Tracking System 
Your message dated Sat, 18 Mar 2017 22:13:19 +
with message-id 
and subject line unblock wget
has caused the Debian Bug report #858118,
regarding unblock: wget/1.18-5
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
858118: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858118
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package wget

wget has a security problem CVE-2017-6508 #857073
https://security-tracker.debian.org/tracker/CVE-2017-6508

I fixed it in unstable but unstable already has the new upstream
version 1.19.1. To fix this problem in stretch I fixed only this
problem with the wget package 1.18-5

The debdiff:

$ debdiff wget_1.18-4.1.dsc wget_1.18-5.dsc 
dpkg-source: Warnung: unsigniertes Quellpaket wird extrahiert 
(/home/nk/debian/wget/wget-stretch/wget_1.18-5.dsc)
diff -Nru wget-1.18/debian/changelog wget-1.18/debian/changelog
--- wget-1.18/debian/changelog  2017-02-25 16:58:53.0 +0100
+++ wget-1.18/debian/changelog  2017-03-18 15:12:55.0 +0100
@@ -1,3 +1,9 @@
+wget (1.18-5) testing-proposed-updates; urgency=medium
+
+  * applied upstream patch to fix CVE-2017-6508 closes: Bug#857073
+
+ -- Noël Köthe   Sat, 18 Mar 2017 15:12:55 +0100
+
 wget (1.18-4.1) testing-proposed-updates; urgency=medium
 
   * Non-maintainer upload.
diff -Nru wget-1.18/debian/patches/CVE-2017-6508.patch 
wget-1.18/debian/patches/CVE-2017-6508.patch
--- wget-1.18/debian/patches/CVE-2017-6508.patch1970-01-01 
01:00:00.0 +0100
+++ wget-1.18/debian/patches/CVE-2017-6508.patch2017-03-18 
15:12:55.0 +0100
@@ -0,0 +1,32 @@
+commit 4d729e322fae359a1aefaafec1144764a54e8ad4
+Author: Tim Rühsen 
+Date:   Mon Mar 6 10:04:22 2017 +0100
+
+Fix CRLF injection in Wget host part
+
+* src/url.c (url_parse): Reject control characters in host part of URL
+
+Reported-by: Orange Tsai
+
+diff --git a/src/url.c b/src/url.c
+index 8f8ff0b8..7d36b27d 100644
+--- a/src/url.c
 b/src/url.c
+@@ -925,6 +925,17 @@ url_parse (const char *url, int *error, struct iri *iri, 
bool percent_encode)
+   url_unescape (u->host);
+   host_modified = true;
+ 
++  /* check for invalid control characters in host name */
++  for (p = u->host; *p; p++)
++{
++  if (c_iscntrl(*p))
++{
++  url_free(u);
++  error_code = PE_INVALID_HOST_NAME;
++  goto error;
++}
++}
++
+   /* Apply IDNA regardless of iri->utf8_encode status */
+   if (opt.enable_iri && iri)
+ {
diff -Nru wget-1.18/debian/patches/series wget-1.18/debian/patches/series
--- wget-1.18/debian/patches/series 2016-09-26 15:07:33.0 +0200
+++ wget-1.18/debian/patches/series 2017-03-18 15:12:55.0 +0100
@@ -4,3 +4,4 @@
 wget-doc-CRLs.patch
 wget-openssl1.1.0.patch
 CVE-2016-7098.patch
+CVE-2017-6508.patch

If this is OK for you release-team I can upload it to testing-proposed-updates.

Thanks for your release work and greeting from the credativ BSP.;)

unblock wget/1.18-5

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
--- End Message ---
--- Begin Message ---
Unblocked wget.--- End Message ---

Bug#858148: unblock: glance/2:13.0.0-3

2017-03-18 Thread Ondřej Nový 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package glance/2:13.0.0-3. This version closes bug
#858123. Debdiff attached.

Thanks.

unblock glance/2:13.0.0-3

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru glance-13.0.0/debian/changelog glance-13.0.0/debian/changelog
--- glance-13.0.0/debian/changelog  2017-01-20 11:26:08.0 +0100
+++ glance-13.0.0/debian/changelog  2017-03-18 19:06:26.0 +0100
@@ -1,3 +1,10 @@
+glance (2:13.0.0-3) unstable; urgency=medium
+
+  * Team upload.
+  * Added dependency: net-tools ( Closes: #858123 )
+
+ -- David Rabel   Sat, 18 Mar 2017 19:06:26 +0100
+
 glance (2:13.0.0-2) unstable; urgency=medium
 
   * Team upload.
diff -Nru glance-13.0.0/debian/control glance-13.0.0/debian/control
--- glance-13.0.0/debian/control2017-01-20 11:24:21.0 +0100
+++ glance-13.0.0/debian/control2017-03-18 19:06:26.0 +0100
@@ -206,6 +206,7 @@
  glance-common (= ${source:Version}),
  python-openstackclient,
  q-text-as-data,
+ net-tools,
  ${misc:Depends},
  ${ostack-lsb-base},
  ${python:Depends},

Bug#858147: marked as done (unblock: qpid-proton/0.14.0-5)

2017-03-18 Thread Debian Bug Tracking System 
Your message dated Sat, 18 Mar 2017 22:05:02 +
with message-id 
and subject line unblock qpid-proton
has caused the Debian Bug report #858147,
regarding unblock: qpid-proton/0.14.0-5
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
858147: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858147
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package qpid-proton/0.14.0-5. This version closes bug
#857411. Debdiff attached.

Thanks.

unblock qpid-proton/0.14.0-5

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru qpid-proton-0.14.0/debian/changelog 
qpid-proton-0.14.0/debian/changelog
--- qpid-proton-0.14.0/debian/changelog 2016-11-22 00:13:40.0 +0100
+++ qpid-proton-0.14.0/debian/changelog 2017-03-10 22:56:38.0 +0100
@@ -1,3 +1,11 @@
+qpid-proton (0.14.0-5) unstable; urgency=medium
+
+  * Team upload.
+  * Change libqpid-proton-cpp8-dev depend to libqpid-proton-cpp8
+(Closes: #857411)
+
+ -- Ondřej Nový   Fri, 10 Mar 2017 22:56:38 +0100
+
 qpid-proton (0.14.0-4) unstable; urgency=medium
 
   * Team upload.
diff -Nru qpid-proton-0.14.0/debian/control qpid-proton-0.14.0/debian/control
--- qpid-proton-0.14.0/debian/control   2016-11-21 20:15:48.0 +0100
+++ qpid-proton-0.14.0/debian/control   2017-03-10 22:48:34.0 +0100
@@ -72,7 +72,7 @@
 Provides: libqpid-proton-cpp-dev
 Architecture: any
 Section: libdevel
-Depends: libqpid-proton8 (= ${binary:Version}),
+Depends: libqpid-proton-cpp8 (= ${binary:Version}),
  libqpid-proton8-dev (= ${binary:Version}),
  ${misc:Depends},
 Description: C++ Development libraries for writing messaging apps with Qpid 
Proton
--- End Message ---
--- Begin Message ---
Unblocked qpid-proton.--- End Message ---

Bug#858118: unblock: wget/1.18-5

2017-03-18 Thread Cyril Brulebois 
Ivo De Decker  (2017-03-18):
> On Sat, Mar 18, 2017 at 04:10:11PM +0100, Noël Köthe wrote:
> > I fixed it in unstable but unstable already has the new upstream
> > version 1.19.1. To fix this problem in stretch I fixed only this
> > problem with the wget package 1.18-5
> > 
> > The debdiff:
> 
> The package was uploaded to t-p-u and I approved it, but it also needs
> an unblock-udeb (diff below).

Test results look good, no objections.


KiBi.


signature.asc
Description: Digital signature

Bug#858147: unblock: qpid-proton/0.14.0-5

2017-03-18 Thread Ondřej Nový 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package qpid-proton/0.14.0-5. This version closes bug
#857411. Debdiff attached.

Thanks.

unblock qpid-proton/0.14.0-5

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru qpid-proton-0.14.0/debian/changelog 
qpid-proton-0.14.0/debian/changelog
--- qpid-proton-0.14.0/debian/changelog 2016-11-22 00:13:40.0 +0100
+++ qpid-proton-0.14.0/debian/changelog 2017-03-10 22:56:38.0 +0100
@@ -1,3 +1,11 @@
+qpid-proton (0.14.0-5) unstable; urgency=medium
+
+  * Team upload.
+  * Change libqpid-proton-cpp8-dev depend to libqpid-proton-cpp8
+(Closes: #857411)
+
+ -- Ondřej Nový   Fri, 10 Mar 2017 22:56:38 +0100
+
 qpid-proton (0.14.0-4) unstable; urgency=medium
 
   * Team upload.
diff -Nru qpid-proton-0.14.0/debian/control qpid-proton-0.14.0/debian/control
--- qpid-proton-0.14.0/debian/control   2016-11-21 20:15:48.0 +0100
+++ qpid-proton-0.14.0/debian/control   2017-03-10 22:48:34.0 +0100
@@ -72,7 +72,7 @@
 Provides: libqpid-proton-cpp-dev
 Architecture: any
 Section: libdevel
-Depends: libqpid-proton8 (= ${binary:Version}),
+Depends: libqpid-proton-cpp8 (= ${binary:Version}),
  libqpid-proton8-dev (= ${binary:Version}),
  ${misc:Depends},
 Description: C++ Development libraries for writing messaging apps with Qpid 
Proton

Bug#858146: release.debian.org: unblock (pre-approval): augeas/1.7.0-1

2017-03-18 Thread Hilko Bengen 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Dear release team,

I would like to upload augeas/1.7.0-1 (1.7.0-0.1 is in testing) and am
seeking pre-approval.

I am not worried about the two bugfix patches I added, but I have also
added Multi-Arch headers to the binary packages as requested in #715554.

Cheers,
-Hilko
diff -Nru augeas-1.7.0/debian/changelog augeas-1.7.0/debian/changelog
--- augeas-1.7.0/debian/changelog	2017-01-19 23:09:49.0 +0100
+++ augeas-1.7.0/debian/changelog	2017-03-18 21:25:44.0 +0100
@@ -1,3 +1,13 @@
+augeas (1.7.0-1) unstable; urgency=medium
+
+  * Adopting package
+  * Update Maintainer, Uploaders fields, with permission from previous
+maintainer
+  * Add Multi-Arch support (Closes: #715554)
+  * Add fixes to NRPE (Closes: #749919) and krb5 (Closes: #822765) parsers
+
+ -- Hilko Bengen   Sat, 18 Mar 2017 21:25:44 +0100
+
 augeas (1.7.0-0.1) unstable; urgency=medium
 
   * Non-maintainer upload  
diff -Nru augeas-1.7.0/debian/control augeas-1.7.0/debian/control
--- augeas-1.7.0/debian/control	2017-01-19 23:09:30.0 +0100
+++ augeas-1.7.0/debian/control	2017-03-18 21:25:44.0 +0100
@@ -1,7 +1,9 @@
 Source: augeas
 Priority: optional
-Maintainer: Nicolas Valcárcel Scerpella 
-Uploaders: Free Ekanayaka , Micah Anderson 
+Maintainer: Hilko Bengen 
+Uploaders:
+ Marc Haber ,
+ Micah Anderson 
 Build-Depends: debhelper (>= 9), dh-autoreconf,
  libreadline-dev,
  libselinux1-dev [linux-any],
@@ -12,13 +14,13 @@
 Standards-Version: 3.9.8
 Section: libs
 Homepage: http://augeas.net/
-DM-Upload-Allowed: yes
 Vcs-Git: git://anonscm.debian.org/collab-maint/augeas.git
 Vcs-Browser: http://anonscm.debian.org/cgit/collab-maint/augeas.git
 
 Package: augeas-tools
 Section: admin
 Architecture: any
+Multi-Arch: foreign
 Depends: ${shlibs:Depends}, ${misc:Depends}
 Description: Augeas command line tools
  Augeas is a configuration editing tool. It parses configuration files in their
@@ -32,6 +34,7 @@
 Package: libaugeas-dev
 Section: libdevel
 Architecture: any
+Multi-Arch: same
 Depends: libaugeas0 (= ${binary:Version}), libxml2-dev, ${shlibs:Depends},
  ${misc:Depends}
 Description: Development files for writing applications based on libaugeas0
@@ -45,6 +48,7 @@
 Package: libaugeas0
 Section: libs
 Architecture: any
+Multi-Arch: same
 Depends: ${shlibs:Depends}, ${misc:Depends}, augeas-lenses
 Suggests: augeas-tools
 Description: Augeas configuration editing library and API
@@ -60,6 +64,7 @@
 Section: debug
 Priority: extra
 Architecture: any
+Multi-Arch: same
 Depends: libaugeas0 (= ${binary:Version}), augeas-tools (= ${binary:Version}), 
  ${misc:Depends}
 Description: Debugging symbols for libaugeas0
@@ -76,6 +81,7 @@
 Depends: ${misc:Depends}
 Suggests: augeas-doc
 Architecture: all
+Multi-Arch: foreign
 Description: Set of lenses needed by libaugeas0 to parse config files
  Augeas parses configuration files described in lenses into a tree structure,
  which it exposes through its public API. Changes made through the API are
@@ -94,6 +100,7 @@
 Section: doc
 Depends: ${misc:Depends}
 Architecture: all
+Multi-Arch: foreign
 Description: Augeas lenses documentation
  Augeas parses configuration files described in lenses into a tree structure,
  which it exposes through its public API. Changes made through the API are
diff -Nru augeas-1.7.0/debian/patches/0003-Make-NRPE-lens-less-strict.patch augeas-1.7.0/debian/patches/0003-Make-NRPE-lens-less-strict.patch
--- augeas-1.7.0/debian/patches/0003-Make-NRPE-lens-less-strict.patch	1970-01-01 01:00:00.0 +0100
+++ augeas-1.7.0/debian/patches/0003-Make-NRPE-lens-less-strict.patch	2017-03-18 21:25:44.0 +0100
@@ -0,0 +1,55 @@
+From: Hilko Bengen 
+Date: Sat, 18 Mar 2017 21:06:52 +0100
+Subject: Make NRPE lens less strict
+
+---
+ lenses/nrpe.aug|  4 +++-
+ lenses/tests/test_nrpe.aug | 13 +
+ 2 files changed, 16 insertions(+), 1 deletion(-)
+
+diff --git a/lenses/nrpe.aug b/lenses/nrpe.aug
+index c8b0fb4..dedacea 100644
+--- a/lenses/nrpe.aug
 b/lenses/nrpe.aug
+@@ -18,6 +18,8 @@ let eq = Sep.equal
+ (* View: word *)
+ let word = /[^=\n\t ]+/
+ 
++let words = word . ( / +/ . word )*
++
+ (* View: item_re *)
+ let item_re = /[^#=\n\t\/ ]+/ - (/command\[[^]\/\n]+\]/ | "include" | "include_dir")
+ 
+@@ -41,7 +43,7 @@ let command =
+ 
+  > allow_bash_command_substitution=0
+ *)
+-let item = [ key item_re . eq . store word . eol ]
++let item = [ key item_re . eq . store words . eol ]
+ 
+ (* View: include
+ An include entry.
+diff --git a/lenses/tests/test_nrpe.aug b/lenses/tests/test_nrpe.aug
+index 8bfe475..e86a241 100644
+--- a/lenses/tests/test_nrpe.aug
 b/lenses/tests/test_nrpe.aug
+@@ -34,6 +34,19 @@ module Test_nrpe =
+ { }
+ 
+ 
++  (*

Bug#858137: marked as done (unblock: dpuser/3.3+p1+dfsg-2)

2017-03-18 Thread Debian Bug Tracking System 
Your message dated Sat, 18 Mar 2017 20:19:26 +
with message-id 
and subject line unblock dpuser
has caused the Debian Bug report #858137,
regarding unblock: dpuser/3.3+p1+dfsg-2
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
858137: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858137
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: 858...@bugs.debian.org

Dear release team,

please unblock dpuser .It solves #858094 "no spectrum is displayed",
severity: important. Changelog entry:

dpuser (3.3+p1+dfsg-2) unstable; urgency=medium

  * Force LC_NUMERIC locale to "C". (Closes: #858094)

 -- Ole Streicher   Sat, 18 Mar 2017 13:57:17 +0100

The debdiff is attached. Requested commands:

unblock dpuser/3.3+p1+dfsg-2

Best regards

Ole
diff -Nru dpuser-3.3+p1+dfsg/debian/changelog 
dpuser-3.3+p1+dfsg/debian/changelog
--- dpuser-3.3+p1+dfsg/debian/changelog 2016-07-27 14:19:00.0 +0200
+++ dpuser-3.3+p1+dfsg/debian/changelog 2017-03-18 13:57:17.0 +0100
@@ -1,3 +1,9 @@
+dpuser (3.3+p1+dfsg-2) unstable; urgency=medium
+
+  * Force LC_NUMERIC locale to "C". (Closes: #858094)
+
+ -- Ole Streicher   Sat, 18 Mar 2017 13:57:17 +0100
+
 dpuser (3.3+p1+dfsg-1) unstable; urgency=medium
 
   * Import version 3.3+p1+dfsg patched by upstream
diff -Nru dpuser-3.3+p1+dfsg/debian/patches/Force-LC_NUMERIC-locale-to-C.patch 
dpuser-3.3+p1+dfsg/debian/patches/Force-LC_NUMERIC-locale-to-C.patch
--- dpuser-3.3+p1+dfsg/debian/patches/Force-LC_NUMERIC-locale-to-C.patch
1970-01-01 01:00:00.0 +0100
+++ dpuser-3.3+p1+dfsg/debian/patches/Force-LC_NUMERIC-locale-to-C.patch
2017-03-18 13:56:33.0 +0100
@@ -0,0 +1,22 @@
+From: Ole Streicher 
+Date: Sat, 18 Mar 2017 13:55:21 +0100
+Subject: Force LC_NUMERIC locale to "C".
+
+This is a quick workaround for the missing spectrum.
+Closes: #858094
+---
+ dpuser/parser/dpuser.y | 1 +
+ 1 file changed, 1 insertion(+)
+
+diff --git a/dpuser/parser/dpuser.y b/dpuser/parser/dpuser.y
+index dbc2ef9..10a98d8 100644
+--- a/dpuser/parser/dpuser.y
 b/dpuser/parser/dpuser.y
+@@ -294,6 +294,7 @@ int main(int argc, char *argv[]) {
+ #endif /* DPQT */
+   int i;
+ 
++  setlocale(LC_NUMERIC, "C");
+   init_functions();
+   init_procedures();
+   gsl_set_error_handler(_gsl_error_handler);
diff -Nru dpuser-3.3+p1+dfsg/debian/patches/series 
dpuser-3.3+p1+dfsg/debian/patches/series
--- dpuser-3.3+p1+dfsg/debian/patches/series2016-07-27 14:19:07.0 
+0200
+++ dpuser-3.3+p1+dfsg/debian/patches/series2017-03-18 13:56:33.0 
+0100
@@ -6,3 +6,4 @@
 Load-the-help-from-usr-share-doc-qfitsview-instead-of-the.patch
 Remove-obsolete-vtkRenderingFreeTypeOpenGL-module.patch
 Remove-the-update-check.patch
+Force-LC_NUMERIC-locale-to-C.patch
--- End Message ---
--- Begin Message ---
Unblocked dpuser.--- End Message ---

Bug#858137: unblock: dpuser/3.3+p1+dfsg-2

2017-03-18 Thread Ole Streicher 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: 858...@bugs.debian.org

Dear release team,

please unblock dpuser .It solves #858094 "no spectrum is displayed",
severity: important. Changelog entry:

dpuser (3.3+p1+dfsg-2) unstable; urgency=medium

  * Force LC_NUMERIC locale to "C". (Closes: #858094)

 -- Ole Streicher   Sat, 18 Mar 2017 13:57:17 +0100

The debdiff is attached. Requested commands:

unblock dpuser/3.3+p1+dfsg-2

Best regards

Ole
diff -Nru dpuser-3.3+p1+dfsg/debian/changelog 
dpuser-3.3+p1+dfsg/debian/changelog
--- dpuser-3.3+p1+dfsg/debian/changelog 2016-07-27 14:19:00.0 +0200
+++ dpuser-3.3+p1+dfsg/debian/changelog 2017-03-18 13:57:17.0 +0100
@@ -1,3 +1,9 @@
+dpuser (3.3+p1+dfsg-2) unstable; urgency=medium
+
+  * Force LC_NUMERIC locale to "C". (Closes: #858094)
+
+ -- Ole Streicher   Sat, 18 Mar 2017 13:57:17 +0100
+
 dpuser (3.3+p1+dfsg-1) unstable; urgency=medium
 
   * Import version 3.3+p1+dfsg patched by upstream
diff -Nru dpuser-3.3+p1+dfsg/debian/patches/Force-LC_NUMERIC-locale-to-C.patch 
dpuser-3.3+p1+dfsg/debian/patches/Force-LC_NUMERIC-locale-to-C.patch
--- dpuser-3.3+p1+dfsg/debian/patches/Force-LC_NUMERIC-locale-to-C.patch
1970-01-01 01:00:00.0 +0100
+++ dpuser-3.3+p1+dfsg/debian/patches/Force-LC_NUMERIC-locale-to-C.patch
2017-03-18 13:56:33.0 +0100
@@ -0,0 +1,22 @@
+From: Ole Streicher 
+Date: Sat, 18 Mar 2017 13:55:21 +0100
+Subject: Force LC_NUMERIC locale to "C".
+
+This is a quick workaround for the missing spectrum.
+Closes: #858094
+---
+ dpuser/parser/dpuser.y | 1 +
+ 1 file changed, 1 insertion(+)
+
+diff --git a/dpuser/parser/dpuser.y b/dpuser/parser/dpuser.y
+index dbc2ef9..10a98d8 100644
+--- a/dpuser/parser/dpuser.y
 b/dpuser/parser/dpuser.y
+@@ -294,6 +294,7 @@ int main(int argc, char *argv[]) {
+ #endif /* DPQT */
+   int i;
+ 
++  setlocale(LC_NUMERIC, "C");
+   init_functions();
+   init_procedures();
+   gsl_set_error_handler(_gsl_error_handler);
diff -Nru dpuser-3.3+p1+dfsg/debian/patches/series 
dpuser-3.3+p1+dfsg/debian/patches/series
--- dpuser-3.3+p1+dfsg/debian/patches/series2016-07-27 14:19:07.0 
+0200
+++ dpuser-3.3+p1+dfsg/debian/patches/series2017-03-18 13:56:33.0 
+0100
@@ -6,3 +6,4 @@
 Load-the-help-from-usr-share-doc-qfitsview-instead-of-the.patch
 Remove-obsolete-vtkRenderingFreeTypeOpenGL-module.patch
 Remove-the-update-check.patch
+Force-LC_NUMERIC-locale-to-C.patch

Re: Processed: Adding a conflict in systemd-sysv

2017-03-18 Thread Michael Biebl 
Am 18.03.2017 um 19:11 schrieb Francois Marier:
> Control: reassign -1 systemd-sysv
> 
>> This looks like a genuine bug in molly-guard,
> 
> Yes and that's tracked in bug #837928.

And why is that bug not treated as RC then?

> The present bug is specifically about the interaction between
> molly-guard and systemd-sysv.

No, it's in the broken dpkg-divert handling of molly-guard. You can't
blame systemd-sysv here.

>> so this RC bug should be assigned to molly-guard.
>>
>> Adding a Breaks to systemd-sysv is backwards.
> 
> If the underlying bug was going to be fixed in time for stretch, then
> sure, that would be ideal. However, that's not going to happen in time.
> 
> The breaks/conflict seems like the best option to resolve this issue
> without removing molly-guard entirely from the release.
> 

Well, if molly-guard does not work with the default init system, it
doesn't seem like it's in a releasable state and it should indeed be
removed from stretch.
As such this RC bugs needs to be assigned to molly-guard and not
systemd. Or #837928 needs to be made RC, in which point this bug report
against systemd-sysv is pointless.

Adding a Conflicts to systemd might even be considered a policy violation.

Asking the release team for their input.

-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#858118: unblock: wget/1.18-5

2017-03-18 Thread Cyril Brulebois 
Hi,

Ivo De Decker  (2017-03-18):
> On Sat, Mar 18, 2017 at 04:10:11PM +0100, Noël Köthe wrote:
> > I fixed it in unstable but unstable already has the new upstream
> > version 1.19.1. To fix this problem in stretch I fixed only this
> > problem with the wget package 1.18-5
> > 
> > The debdiff:
> 
> The package was uploaded to t-p-u and I approved it, but it also needs
> an unblock-udeb (diff below).

Not visible from tpu yet, so I can't test d-i right away. Will do in a
couple of hours…


KiBi.


signature.asc
Description: Digital signature

Bug#858118: unblock: wget/1.18-5

2017-03-18 Thread Ivo De Decker 
Hi,

On Sat, Mar 18, 2017 at 04:10:11PM +0100, Noël Köthe wrote:
> I fixed it in unstable but unstable already has the new upstream
> version 1.19.1. To fix this problem in stretch I fixed only this
> problem with the wget package 1.18-5
> 
> The debdiff:

The package was uploaded to t-p-u and I approved it, but it also needs an
unblock-udeb (diff below).

Cheers,

Ivo

> $ debdiff wget_1.18-4.1.dsc wget_1.18-5.dsc 
> dpkg-source: Warnung: unsigniertes Quellpaket wird extrahiert 
> (/home/nk/debian/wget/wget-stretch/wget_1.18-5.dsc)
> diff -Nru wget-1.18/debian/changelog wget-1.18/debian/changelog
> --- wget-1.18/debian/changelog2017-02-25 16:58:53.0 +0100
> +++ wget-1.18/debian/changelog2017-03-18 15:12:55.0 +0100
> @@ -1,3 +1,9 @@
> +wget (1.18-5) testing-proposed-updates; urgency=medium
> +
> +  * applied upstream patch to fix CVE-2017-6508 closes: Bug#857073
> +
> + -- Noël Köthe   Sat, 18 Mar 2017 15:12:55 +0100
> +
>  wget (1.18-4.1) testing-proposed-updates; urgency=medium
>  
>* Non-maintainer upload.
> diff -Nru wget-1.18/debian/patches/CVE-2017-6508.patch 
> wget-1.18/debian/patches/CVE-2017-6508.patch
> --- wget-1.18/debian/patches/CVE-2017-6508.patch  1970-01-01 
> 01:00:00.0 +0100
> +++ wget-1.18/debian/patches/CVE-2017-6508.patch  2017-03-18 
> 15:12:55.0 +0100
> @@ -0,0 +1,32 @@
> +commit 4d729e322fae359a1aefaafec1144764a54e8ad4
> +Author: Tim Rühsen 
> +Date:   Mon Mar 6 10:04:22 2017 +0100
> +
> +Fix CRLF injection in Wget host part
> +
> +* src/url.c (url_parse): Reject control characters in host part of URL
> +
> +Reported-by: Orange Tsai
> +
> +diff --git a/src/url.c b/src/url.c
> +index 8f8ff0b8..7d36b27d 100644
> +--- a/src/url.c
>  b/src/url.c
> +@@ -925,6 +925,17 @@ url_parse (const char *url, int *error, struct iri 
> *iri, bool percent_encode)
> +   url_unescape (u->host);
> +   host_modified = true;
> + 
> ++  /* check for invalid control characters in host name */
> ++  for (p = u->host; *p; p++)
> ++{
> ++  if (c_iscntrl(*p))
> ++{
> ++  url_free(u);
> ++  error_code = PE_INVALID_HOST_NAME;
> ++  goto error;
> ++}
> ++}
> ++
> +   /* Apply IDNA regardless of iri->utf8_encode status */
> +   if (opt.enable_iri && iri)
> + {
> diff -Nru wget-1.18/debian/patches/series wget-1.18/debian/patches/series
> --- wget-1.18/debian/patches/series   2016-09-26 15:07:33.0 +0200
> +++ wget-1.18/debian/patches/series   2017-03-18 15:12:55.0 +0100
> @@ -4,3 +4,4 @@
>  wget-doc-CRLs.patch
>  wget-openssl1.1.0.patch
>  CVE-2016-7098.patch
> +CVE-2017-6508.patch
>

Bug#858130: jessie-pu: package wget/1.16-1+deb8u2

2017-03-18 Thread Noël Köthe 
Package: release.debian.org
Severity: normal
Tags: jessie
User: release.debian@packages.debian.org
Usertags: pu

Hello,

wget 1.16-1+deb8u2 fixes CVE-2017-6508 (no-dsa) with the upstream patch.
https://security-tracker.debian.org/tracker/CVE-2017-6508

The update is included in sid and unblocked for stretch (#858118) today.

I prepared the jessie upload with pbuilder and the debdiff is:

$ debdiff wget_1.16-1+deb8u1.dsc wget_1.16-1+deb8u2.dsc
dpkg-source: Warnung: unsigniertes Quellpaket wird extrahiert 
(/home/nk/debian/wget/wget-jessie/wget_1.16-1+deb8u2.dsc)
diff -Nru wget-1.16/debian/changelog wget-1.16/debian/changelog
--- wget-1.16/debian/changelog  2016-07-05 16:21:21.0 +0200
+++ wget-1.16/debian/changelog  2017-03-18 15:39:29.0 +0100
@@ -1,3 +1,9 @@
+wget (1.16-1+deb8u2) jessie; urgency=medium
+
+  * added upstream patch to fix CVE-2017-6508 closes: Bug#857073
+
+ -- Noël Köthe   Sat, 18 Mar 2017 15:39:29 +0100
+
 wget (1.16-1+deb8u1) jessie; urgency=medium
 
   * added patch for CVE-2016-4971. closes: #827003, #829130
diff -Nru wget-1.16/debian/patches/CVE-2017-6508.patch 
wget-1.16/debian/patches/CVE-2017-6508.patch
--- wget-1.16/debian/patches/CVE-2017-6508.patch1970-01-01 
01:00:00.0 +0100
+++ wget-1.16/debian/patches/CVE-2017-6508.patch2017-03-18 
15:39:29.0 +0100
@@ -0,0 +1,32 @@
+commit 4d729e322fae359a1aefaafec1144764a54e8ad4
+Author: Tim Rühsen 
+Date:   Mon Mar 6 10:04:22 2017 +0100
+
+Fix CRLF injection in Wget host part
+
+* src/url.c (url_parse): Reject control characters in host part of URL
+
+Reported-by: Orange Tsai
+
+diff --git a/src/url.c b/src/url.c
+index 8f8ff0b8..7d36b27d 100644
+--- a/src/url.c
 b/src/url.c
+@@ -925,6 +925,17 @@ url_parse (const char *url, int *error, struct iri *iri, 
bool percent_encode)
+   url_unescape (u->host);
+   host_modified = true;
+ 
++  /* check for invalid control characters in host name */
++  for (p = u->host; *p; p++)
++{
++  if (c_iscntrl(*p))
++{
++  url_free(u);
++  error_code = PE_INVALID_HOST_NAME;
++  goto error;
++}
++}
++
+   /* Apply IDNA regardless of iri->utf8_encode status */
+   if (opt.enable_iri && iri)
+ {
diff -Nru wget-1.16/debian/patches/series wget-1.16/debian/patches/series
--- wget-1.16/debian/patches/series 2016-06-30 17:21:45.0 +0200
+++ wget-1.16/debian/patches/series 2017-03-18 15:39:29.0 +0100
@@ -2,4 +2,4 @@
 wget-doc-remove-usr-local-in-wget.texi
 wget-passive_ftp-default
 wget-CVE-2016-4971.patch 
-
+CVE-2017-6508.patch


If this is OK for you I would upload it.


-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#858124: RM: npm/1.4.21+ds-3

2017-03-18 Thread Jérémy Lal 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: rm

This package is obsolete, too difficult to maintain and to
update to a new upstream version, making it something that
shouldn't be shipped in next debian stable.

I've postponed that removal for years, believing one day
i'd find the time and motivation to update it, and that
never happened - i feel so sorry for that.

Please see also https://bugs.debian.org/857986 for the list
of reverse (build-) dependencies blocking the bug.

Cheers,
Jérémy.


-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#856539: updating sitesummary in stable+oldtable due to regression introduced with apache update (Re: Bug#856539: jessie-pu: package sitesummary/0.1.17+deb8u2)

2017-03-18 Thread Holger Levsen 
Hi LTS folks,

On Fri, Mar 10, 2017 at 07:11:07AM +0100, Petter Reinholdtsen wrote:
> [Sébastien Delafond]
> > Sure, we can do that. Send us a debdiff and we can take it from there.
> 
> The debdiff for jessie is in bts already.  Here is the equivalent diff
> for wheezy.  The code change is the same, only the changelog version is
> different.
> 
> diff --git a/debian/changelog b/debian/changelog
> index f8e2c48..f8df229 100644
> --- a/debian/changelog
> +++ b/debian/changelog
> @@ -1,3 +1,11 @@
> +sitesummary (0.1.8+deb7u2) UNRELEASED; urgency=medium
> +
> +  [ Wolfgang Schweer ]
> +  * Adjust sitesummary-upload to use CRLF (\r\n) line endings to be compliant
> +with apache 2.4.25 security fixes for HTTP requests. (Closes: #852623).
> +
> + -- Wolfgang Schweer   Fri, 27 Jan 2017 15:49:50 +0100
> +
>  sitesummary (0.1.8+deb7u1) wheezy; urgency=low
>  
>* No change upload targeted at wheezy-proposed-update for the upcoming 7.2
> diff --git a/sitesummary-upload b/sitesummary-upload
> index 050aefa..28c19d6 100755
> --- a/sitesummary-upload
> +++ b/sitesummary-upload
> @@ -78,15 +78,13 @@ $form .= "$ORS";
>  my $formlen = length($form);
>  
>  #Send data
> -print $remote <<"EOF";
> -POST $submiturl HTTP/1.1
> -User-Agent: sitesummary-upload
> -Host: $host
> -content-type: multipart/form-data; boundary=$boundary
> -content-length: $formlen
> -
> -$form
> -EOF
> +print $remote "POST $submiturl HTTP/1.1\r\n";
> +print $remote "User-Agent: sitesummary-upload\r\n";
> +print $remote "Host: $host\r\n";
> +print $remote "Content-Type: multipart/form-data; boundary=$boundary\r\n";
> +print $remote "Content-Length: $formlen\r\n";
> +print $remote "\r\n";
> +print $remote "$form";
>  
>  #Get answer
>  my($answer)="";
> -- 
 
I've just uploaded this to wheezy-security and am still waiting for my 
secure-testing
git svn clone to update, so that I can allocate a DLA number for it.

I'll also send the DLA once that has happened…


-- 
cheers,
Holger


signature.asc
Description: Digital signature

Bug#858118: unblock: wget/1.18-5

2017-03-18 Thread Ivo De Decker 
Control: tags -1 confirmed moreinfo

Hi,

On Sat, Mar 18, 2017 at 04:10:11PM +0100, Noël Köthe wrote:
> Please unblock package wget
> 
> wget has a security problem CVE-2017-6508 #857073
> https://security-tracker.debian.org/tracker/CVE-2017-6508
> 
> I fixed it in unstable but unstable already has the new upstream
> version 1.19.1. To fix this problem in stretch I fixed only this
> problem with the wget package 1.18-5
> 
> The debdiff:

[...]

> If this is OK for you release-team I can upload it to 
> testing-proposed-updates.

Please go ahead with the upload and remove the moreinfo tag from this bug once
the upload is in t-p-u.

Please note that this will also need an unblock-udeb, but we can take care of
that later.

> Thanks for your release work and greeting from the credativ BSP.;)

:)

Cheers,

Ivo

Processed: Re: unblock: wget/1.18-5

2017-03-18 Thread Debian Bug Tracking System 
Processing control commands:

> tags -1 confirmed moreinfo
Bug #858118 [release.debian.org] unblock: wget/1.18-5
Added tag(s) confirmed and moreinfo.

-- 
858118: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858118
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#858118: unblock: wget/1.18-5

2017-03-18 Thread Noël Köthe 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package wget

wget has a security problem CVE-2017-6508 #857073
https://security-tracker.debian.org/tracker/CVE-2017-6508

I fixed it in unstable but unstable already has the new upstream
version 1.19.1. To fix this problem in stretch I fixed only this
problem with the wget package 1.18-5

The debdiff:

$ debdiff wget_1.18-4.1.dsc wget_1.18-5.dsc 
dpkg-source: Warnung: unsigniertes Quellpaket wird extrahiert 
(/home/nk/debian/wget/wget-stretch/wget_1.18-5.dsc)
diff -Nru wget-1.18/debian/changelog wget-1.18/debian/changelog
--- wget-1.18/debian/changelog  2017-02-25 16:58:53.0 +0100
+++ wget-1.18/debian/changelog  2017-03-18 15:12:55.0 +0100
@@ -1,3 +1,9 @@
+wget (1.18-5) testing-proposed-updates; urgency=medium
+
+  * applied upstream patch to fix CVE-2017-6508 closes: Bug#857073
+
+ -- Noël Köthe   Sat, 18 Mar 2017 15:12:55 +0100
+
 wget (1.18-4.1) testing-proposed-updates; urgency=medium
 
   * Non-maintainer upload.
diff -Nru wget-1.18/debian/patches/CVE-2017-6508.patch 
wget-1.18/debian/patches/CVE-2017-6508.patch
--- wget-1.18/debian/patches/CVE-2017-6508.patch1970-01-01 
01:00:00.0 +0100
+++ wget-1.18/debian/patches/CVE-2017-6508.patch2017-03-18 
15:12:55.0 +0100
@@ -0,0 +1,32 @@
+commit 4d729e322fae359a1aefaafec1144764a54e8ad4
+Author: Tim Rühsen 
+Date:   Mon Mar 6 10:04:22 2017 +0100
+
+Fix CRLF injection in Wget host part
+
+* src/url.c (url_parse): Reject control characters in host part of URL
+
+Reported-by: Orange Tsai
+
+diff --git a/src/url.c b/src/url.c
+index 8f8ff0b8..7d36b27d 100644
+--- a/src/url.c
 b/src/url.c
+@@ -925,6 +925,17 @@ url_parse (const char *url, int *error, struct iri *iri, 
bool percent_encode)
+   url_unescape (u->host);
+   host_modified = true;
+ 
++  /* check for invalid control characters in host name */
++  for (p = u->host; *p; p++)
++{
++  if (c_iscntrl(*p))
++{
++  url_free(u);
++  error_code = PE_INVALID_HOST_NAME;
++  goto error;
++}
++}
++
+   /* Apply IDNA regardless of iri->utf8_encode status */
+   if (opt.enable_iri && iri)
+ {
diff -Nru wget-1.18/debian/patches/series wget-1.18/debian/patches/series
--- wget-1.18/debian/patches/series 2016-09-26 15:07:33.0 +0200
+++ wget-1.18/debian/patches/series 2017-03-18 15:12:55.0 +0100
@@ -4,3 +4,4 @@
 wget-doc-CRLs.patch
 wget-openssl1.1.0.patch
 CVE-2016-7098.patch
+CVE-2017-6508.patch

If this is OK for you release-team I can upload it to testing-proposed-updates.

Thanks for your release work and greeting from the credativ BSP.;)

unblock wget/1.18-5

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Bug#856539: updating sitesummary in stable+oldtable due to regression introduced with apache update (Re: Bug#856539: jessie-pu: package sitesummary/0.1.17+deb8u2)

2017-03-18 Thread Holger Levsen 
Hi Seb,

On Thu, Mar 16, 2017 at 08:48:04AM +0100, Sébastien Delafond wrote:
> > I meant a debdiff specifically targetting jessie-security. Please
> > change jessie to jessie-security, set severity to high, and upload to
> > security-master (no source-only upload).

I've done all this now.

Will you write and send the DSA? I guess the text should basically just be
something like what we wrote in debian/changelog:

  * Adjust sitesummary-upload to use CRLF (\r\n) line endings to be compliant
with apache 2.4.25 security fixes for HTTP requests. (Closes: #852623).


Thanks!

(Will prepare+upload to whezzy-lts in a moment.)


-- 
cheers,
Holger


signature.asc
Description: Digital signature

Bug#858115: marked as done (unblock: mat/0.6.1-4)

2017-03-18 Thread Debian Bug Tracking System 
Your message dated Sat, 18 Mar 2017 14:34:27 +
with message-id 
and subject line unblock mat
has caused the Debian Bug report #858115,
regarding unblock: mat/0.6.1-4
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
858115: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858115
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package mat 0.6.1-4, that fixes:

 * a bug with security implications (Jessie is not affected): one of the
   operation modes of MAT silently fails to clean metadata;
 * the --backup option, which is required to fix the aforementioned
   bug.

Both patches are minimal, trivial fixes cherry-picked from upstream; but to be
fair, I have authored them upstream in the first place. I've asked the current
upstream maintainer to request a CVE and put a new upstream release out.

autopkgtests pass locally, ci.debian.net hasn't tested the package yet.

unblock mat/0.6.1-4

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (990, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
 changelog|   13 ++
 patches/Make-the-Nautilus-extension-work-again.patch |   31 +++
 patches/Revert-Improves-a-bit-portability.patch  |   38 +++
 patches/series   |2 +
 4 files changed, 84 insertions(+)

diff -Nru mat-0.6.1/debian/changelog mat-0.6.1/debian/changelog
--- mat-0.6.1/debian/changelog  2016-08-26 08:40:53.0 +
+++ mat-0.6.1/debian/changelog  2017-03-18 11:28:06.0 +
@@ -1,3 +1,16 @@
+mat (0.6.1-4) unstable; urgency=medium
+
+  * New patch (Make-the-Nautilus-extension-work-again.patch) cherry-picked
+from upstream: fix the Nautilus extension silently failing
+(Closes: #858058).
+  * New patch (Revert-Improves-a-bit-portability.patch), cherry-picked
+from upstream: fix the --backup option. This option is not only available
+in all interfaces (CLI, GUI), but it's forcibly enabled in the Nautilus
+extension, so it has to work for the Nautilus extension to work.
+Thus, this additional change is needed to fully fix #858058.
+
+ -- intrigeri   Sat, 18 Mar 2017 11:28:06 +
+
 mat (0.6.1-3) unstable; urgency=medium
 
   * Update documentation of recommended packages in README.Debian.
diff -Nru mat-0.6.1/debian/patches/Make-the-Nautilus-extension-work-again.patch 
mat-0.6.1/debian/patches/Make-the-Nautilus-extension-work-again.patch
--- mat-0.6.1/debian/patches/Make-the-Nautilus-extension-work-again.patch   
1970-01-01 00:00:00.0 +
+++ mat-0.6.1/debian/patches/Make-the-Nautilus-extension-work-again.patch   
2017-03-18 11:28:06.0 +
@@ -0,0 +1,31 @@
+From: intrigeri 
+Date: Sat, 18 Mar 2017 08:31:27 +
+Debian-Bug: https://bugs.debian.org/858058
+Origin: 
https://0xacab.org/mat/mat/commit/94ca62a429bb6a3a5f293de26053e54bbfeea9f9
+Subject: Make the Nautilus extension work again.
+
+It was broken since commit 0d1fe2555e90db35eeb531a1b6026ff64f1f5ae5,
+i.e. in the MAT 0.6 and 0.6.1 releases.
+
+The impact is: the MAT extension for Nautilus fails to clean metadata,
+without making the user aware of it.
+
+This bug was discovered by the Tails contributor sajolida, and initially
+reported to Debian as https://bugs.debian.org/858058.
+---
+ nautilus/nautilus-mat.py | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/nautilus/nautilus-mat.py b/nautilus/nautilus-mat.py
+index 0974bef..7c2d740 100644
+--- a/nautilus/nautilus-mat.py
 b/nautilus/nautilus-mat.py
+@@ -77,7 +77,7 @@ class MatExtension(GObject.GObject, Nautilus.MenuProvider):
+ :param current_file: Name of the selected file
+ :param menu: Menu id from which the callback was activated. Unused.
+ """
+-if file.is_gone():
++if current_file.is_gone():
+ return
+ 
+ # files url in nautilus are starting with 'file://', of length 7
diff -Nru mat-0.6.1/debian/patches/Revert-Improves-a-bit-portability.patch 
mat-0.6.1/debian/patches/Revert-Improves-a-bit-portability.patch
--- mat-0.6.1/debian/patches/Revert-Improves-a-bit-portability.patch
1970-01-01

Bug#858115: unblock: mat/0.6.1-4

2017-03-18 Thread intrigeri 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package mat 0.6.1-4, that fixes:

 * a bug with security implications (Jessie is not affected): one of the
   operation modes of MAT silently fails to clean metadata;
 * the --backup option, which is required to fix the aforementioned
   bug.

Both patches are minimal, trivial fixes cherry-picked from upstream; but to be
fair, I have authored them upstream in the first place. I've asked the current
upstream maintainer to request a CVE and put a new upstream release out.

autopkgtests pass locally, ci.debian.net hasn't tested the package yet.

unblock mat/0.6.1-4

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (990, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
 changelog|   13 ++
 patches/Make-the-Nautilus-extension-work-again.patch |   31 +++
 patches/Revert-Improves-a-bit-portability.patch  |   38 +++
 patches/series   |2 +
 4 files changed, 84 insertions(+)

diff -Nru mat-0.6.1/debian/changelog mat-0.6.1/debian/changelog
--- mat-0.6.1/debian/changelog  2016-08-26 08:40:53.0 +
+++ mat-0.6.1/debian/changelog  2017-03-18 11:28:06.0 +
@@ -1,3 +1,16 @@
+mat (0.6.1-4) unstable; urgency=medium
+
+  * New patch (Make-the-Nautilus-extension-work-again.patch) cherry-picked
+from upstream: fix the Nautilus extension silently failing
+(Closes: #858058).
+  * New patch (Revert-Improves-a-bit-portability.patch), cherry-picked
+from upstream: fix the --backup option. This option is not only available
+in all interfaces (CLI, GUI), but it's forcibly enabled in the Nautilus
+extension, so it has to work for the Nautilus extension to work.
+Thus, this additional change is needed to fully fix #858058.
+
+ -- intrigeri   Sat, 18 Mar 2017 11:28:06 +
+
 mat (0.6.1-3) unstable; urgency=medium
 
   * Update documentation of recommended packages in README.Debian.
diff -Nru mat-0.6.1/debian/patches/Make-the-Nautilus-extension-work-again.patch 
mat-0.6.1/debian/patches/Make-the-Nautilus-extension-work-again.patch
--- mat-0.6.1/debian/patches/Make-the-Nautilus-extension-work-again.patch   
1970-01-01 00:00:00.0 +
+++ mat-0.6.1/debian/patches/Make-the-Nautilus-extension-work-again.patch   
2017-03-18 11:28:06.0 +
@@ -0,0 +1,31 @@
+From: intrigeri 
+Date: Sat, 18 Mar 2017 08:31:27 +
+Debian-Bug: https://bugs.debian.org/858058
+Origin: 
https://0xacab.org/mat/mat/commit/94ca62a429bb6a3a5f293de26053e54bbfeea9f9
+Subject: Make the Nautilus extension work again.
+
+It was broken since commit 0d1fe2555e90db35eeb531a1b6026ff64f1f5ae5,
+i.e. in the MAT 0.6 and 0.6.1 releases.
+
+The impact is: the MAT extension for Nautilus fails to clean metadata,
+without making the user aware of it.
+
+This bug was discovered by the Tails contributor sajolida, and initially
+reported to Debian as https://bugs.debian.org/858058.
+---
+ nautilus/nautilus-mat.py | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/nautilus/nautilus-mat.py b/nautilus/nautilus-mat.py
+index 0974bef..7c2d740 100644
+--- a/nautilus/nautilus-mat.py
 b/nautilus/nautilus-mat.py
+@@ -77,7 +77,7 @@ class MatExtension(GObject.GObject, Nautilus.MenuProvider):
+ :param current_file: Name of the selected file
+ :param menu: Menu id from which the callback was activated. Unused.
+ """
+-if file.is_gone():
++if current_file.is_gone():
+ return
+ 
+ # files url in nautilus are starting with 'file://', of length 7
diff -Nru mat-0.6.1/debian/patches/Revert-Improves-a-bit-portability.patch 
mat-0.6.1/debian/patches/Revert-Improves-a-bit-portability.patch
--- mat-0.6.1/debian/patches/Revert-Improves-a-bit-portability.patch
1970-01-01 00:00:00.0 +
+++ mat-0.6.1/debian/patches/Revert-Improves-a-bit-portability.patch
2017-03-18 11:28:06.0 +
@@ -0,0 +1,38 @@
+From: intrigeri 
+Date: Sat, 18 Mar 2017 11:21:57 +
+Origin: 
https://0xacab.org/mat/mat/commit/8f6303a1f26fe8dad83ba96ab8328dbdfa3af59a
+Bug-Upstream: https://0xacab.org/mat/mat/issues/11526
+Subject: Revert "Improves a bit portability"
+
+This reverts commit d054e313d7d83ec0089f7e0efe6b8a988fe99b3a.
+
+os.path.join is *not* suitable for concatenating parts of the basename of
+a file.
+
+Closes: #11526
+---
+ libmat/parser.py | 4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+
+diff --git a/libmat/parser.py b/libmat/parser.py
+index 2a82a25..1b58f87 100644
+--- a/libmat/parser.py
 b/libmat/parser.py
+@@ -51,7

Bug#858020: marked as done (unblock: dublin-traceroute/0.3-3)

2017-03-18 Thread Debian Bug Tracking System 
Your message dated Sat, 18 Mar 2017 12:26:55 +
with message-id 
and subject line unblock dublin-traceroute
has caused the Debian Bug report #858020,
regarding unblock: dublin-traceroute/0.3-3
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
858020: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858020
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package dublin-traceroute

The change adds dependencies on libdulintraceroute0 - closes: #857162

unblock dublin-traceroute/0.3-3

-- System Information:
Debian Release: 9.0
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_IE.UTF-8, LC_CTYPE=en_IE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

 Description: NAT-aware multipath tracerouting tool (dev)
  Dublin Traceroute uses the techniques invented by the authors of
  Paris-traceroute to enumerate the paths of ECMP flow-based load balancing,


dublin-traceroute_0.3-2_against_0.3-3.debdiff
Description: Binary data
--- End Message ---
--- Begin Message ---
Unblocked dublin-traceroute.--- End Message ---

Bug#858075: marked as done (unblock: kdesvn/2.0.0-3)

2017-03-18 Thread Debian Bug Tracking System 
Your message dated Sat, 18 Mar 2017 10:56:51 +
with message-id 
and subject line unblock kdesvn
has caused the Debian Bug report #858075,
regarding unblock: kdesvn/2.0.0-3
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
858075: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858075
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package kdesvn

It contains two changes:

  * Cherrypick upstream commit fixing broken startup from .desktop file.
(Closes: #858072)

That's the important one to get into stretch. Otherwise starting the
application from the menu will be broken.

  * Drop Build-Depends on libssl-dev, no longer needed. (Closes: #855339)

That's a low risk change, which doesn't have any effect on the package itself.
I included it to drop this package from the list of packages involved in the
openssl1.0/1.1 transition.

Regards,
Michael


unblock kdesvn/2.0.0-3

-- System Information:
Debian Release: 9.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (200, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru kdesvn-2.0.0/debian/changelog kdesvn-2.0.0/debian/changelog
--- kdesvn-2.0.0/debian/changelog   2016-12-09 00:59:19.0 +0100
+++ kdesvn-2.0.0/debian/changelog   2017-03-18 01:15:09.0 +0100
@@ -1,3 +1,17 @@
+kdesvn (2.0.0-3) unstable; urgency=medium
+
+  [ Aurélien COUDERC ]
+  * Cherrypick upstream commit fixing broken startup from .desktop file.
+(Closes: #858072)
+
+ -- Michael Biebl   Sat, 18 Mar 2017 01:15:09 +0100
+
+kdesvn (2.0.0-2) unstable; urgency=medium
+
+  * Drop Build-Depends on libssl-dev, no longer needed. (Closes: #855339)
+
+ -- Michael Biebl   Fri, 17 Feb 2017 00:00:05 +0100
+
 kdesvn (2.0.0-1) unstable; urgency=medium
 
   * New major upstream release based on Qt 5 and KDE Frameworks 5 (KF5).
diff -Nru kdesvn-2.0.0/debian/control kdesvn-2.0.0/debian/control
--- kdesvn-2.0.0/debian/control 2016-12-09 00:23:52.0 +0100
+++ kdesvn-2.0.0/debian/control 2017-02-16 23:50:18.0 +0100
@@ -23,7 +23,6 @@
libkf5texteditor-dev,
libkf5wallet-dev,
libkf5widgetsaddons-dev,
-   libssl-dev (>= 0.9.8a),
libsvn-dev (>= 1.6.0),
pkg-kde-tools (>= 0.9),
qtbase5-dev
diff -Nru 
kdesvn-2.0.0/debian/patches/0002-Fix-startup-s-caption-qwindowtitle.patch 
kdesvn-2.0.0/debian/patches/0002-Fix-startup-s-caption-qwindowtitle.patch
--- kdesvn-2.0.0/debian/patches/0002-Fix-startup-s-caption-qwindowtitle.patch   
1970-01-01 01:00:00.0 +0100
+++ kdesvn-2.0.0/debian/patches/0002-Fix-startup-s-caption-qwindowtitle.patch   
2017-03-18 01:01:17.0 +0100
@@ -0,0 +1,26 @@
+From 5ea40285741a885198a351bd9afe58ff746a1192 Mon Sep 17 00:00:00 2001
+From: Andreas Sturmlechner 
+Date: Sun, 4 Dec 2016 23:26:07 +0100
+Subject: [PATCH] Fix startup: s/caption/qwindowtitle/
+
+REVIEW: 129614
+---
+ src/org.kde.kdesvn.desktop | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/src/org.kde.kdesvn.desktop b/src/org.kde.kdesvn.desktop
+index 0fbac0d3..5455338a 100644
+--- a/src/org.kde.kdesvn.desktop
 b/src/org.kde.kdesvn.desktop
+@@ -49,7 +49,7 @@ GenericName[sl]=Odjemalec za SVN
+ GenericName[sv]=SVN-klient
+ GenericName[uk]=Клієнт SVN
+ GenericName[x-test]=xxSVN Clientxx
+-Exec=kdesvn -caption "%c" %u
++Exec=kdesvn -qwindowtitle "%c" %u
+ Icon=kdesvn
+ Type=Application
+ X-DocPath=kdesvn/index.html
+-- 
+2.11.0
+
diff -Nru kdesvn-2.0.0/debian/patches/series kdesvn-2.0.0/debian/patches/series
--- kdesvn-2.0.0/debian/patches/series  2016-12-09 00:24:22.0 +0100
+++ kdesvn-2.0.0/debian/patches/series  2017-03-18 01:01:17.0 +0100
@@ -1 +1,2 @@
 0001-Make-sure-the-man-pages-are-built-and-installed.patch
+0002-Fix-startup-s-caption-qwindowtitle.patch
--- End Message ---
--- Begin Message ---
Unblocked kdesvn.--- End Message ---

Bug#858105: marked as done (unblock: gmrun/0.9.2-2.2)

2017-03-18 Thread Debian Bug Tracking System 
Your message dated Sat, 18 Mar 2017 10:53:33 +
with message-id 
and subject line unblock gmrun
has caused the Debian Bug report #858105,
regarding unblock: gmrun/0.9.2-2.2
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
858105: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858105
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
User: release.debian@packages.debian.org
Usertags: unblock
Severity: normal

Hi,

Please unblock the package gmrun. The automatic update ("recompiled with
PIC") broke the package (because of API changes in gtk2, it only
produces segmentation faults). The uploaded package includes the patch
extracted from the Fedora project (provided by Andreas Henriksson) to
fix the issue and makes the package usable again. The changelog entry
is:

gmrun (0.9.2-2.2) unstable; urgency=medium

  * Non-maintainer upload.

[ Andreas Henriksson ]
  * fix return type of gtk_completion_line_get_type (Closes: #857065)

 -- Lukas Schwaighofer   Sun, 12 Mar 2017 23:49:46 
+0100

I've attached the debdiff between the version in testing and in
unstable.

Thank you
Lukas Schwaighofer
diff -Nru gmrun-0.9.2/debian/changelog gmrun-0.9.2/debian/changelog
--- gmrun-0.9.2/debian/changelog	2010-07-17 19:05:43.0 +0200
+++ gmrun-0.9.2/debian/changelog	2017-03-12 23:49:46.0 +0100
@@ -1,3 +1,12 @@
+gmrun (0.9.2-2.2) unstable; urgency=medium
+
+  * Non-maintainer upload.
+
+  [ Andreas Henriksson ]
+  * fix return type of gtk_completion_line_get_type (Closes: #857065)
+
+ -- Lukas Schwaighofer   Sun, 12 Mar 2017 23:49:46 +0100
+
 gmrun (0.9.2-2.1) unstable; urgency=low
 
   * Non-maintainer upload.
diff -Nru gmrun-0.9.2/debian/patches/return-type-gtk_completion_line_get_type.patch gmrun-0.9.2/debian/patches/return-type-gtk_completion_line_get_type.patch
--- gmrun-0.9.2/debian/patches/return-type-gtk_completion_line_get_type.patch	1970-01-01 01:00:00.0 +0100
+++ gmrun-0.9.2/debian/patches/return-type-gtk_completion_line_get_type.patch	2017-03-12 23:49:46.0 +0100
@@ -0,0 +1,45 @@
+From: Andreas Henriksson 
+Date: Wed, 8 Mar 2017 23:21:15 +0100
+Subject: fix return type of gtk_completion_line_get_type
+
+Patch originally downloaded from
+https://src.fedoraproject.org/cgit/rpms/gmrun.git/plain/gmrun-0.9.2-f12.patch
+
+slighly modified (parts dropped, fuzz fixed) to apply on top of debian
+package
+
+Closes: #857065
+---
+ src/gtkcompletionline.cc | 4 ++--
+ src/gtkcompletionline.h  | 2 +-
+ 2 files changed, 3 insertions(+), 3 deletions(-)
+
+diff --git a/src/gtkcompletionline.cc b/src/gtkcompletionline.cc
+index 90897f7..c247994 100644
+--- a/src/gtkcompletionline.cc
 b/src/gtkcompletionline.cc
+@@ -77,9 +77,9 @@ static gboolean
+ on_key_press(GtkCompletionLine *cl, GdkEventKey *event, gpointer data);
+ 
+ /* get_type */
+-guint gtk_completion_line_get_type(void)
++GtkType gtk_completion_line_get_type(void)
+ {
+-  static guint type = 0;
++  static GtkType type = 0;
+   if (type == 0)
+   {
+ GtkTypeInfo type_info =
+diff --git a/src/gtkcompletionline.h b/src/gtkcompletionline.h
+index 5e14cd7..caed4c7 100644
+--- a/src/gtkcompletionline.h
 b/src/gtkcompletionline.h
+@@ -76,7 +76,7 @@ extern "C++" {
+ void (* cancel)(GtkCompletionLine *cl);
+   };
+ 
+-  guint gtk_completion_line_get_type(void);
++  GtkType gtk_completion_line_get_type(void);
+   GtkWidget *gtk_completion_line_new();
+ 
+   void gtk_completion_line_last_history_item(GtkCompletionLine*);
diff -Nru gmrun-0.9.2/debian/patches/series gmrun-0.9.2/debian/patches/series
--- gmrun-0.9.2/debian/patches/series	2010-07-17 19:05:49.0 +0200
+++ gmrun-0.9.2/debian/patches/series	2017-03-12 23:49:46.0 +0100
@@ -9,3 +9,4 @@
 90-window_placement.patch
 100-gmrunrc.patch
 debian-changes-0.9.2-2.1
+return-type-gtk_completion_line_get_type.patch


pgpewKSKVuxtL.pgp
Description: OpenPGP digital signature
--- End Message ---
--- Begin Message ---
Unblocked gmrun.--- End Message ---

Bug#858099: marked as done (unblock: resource-agents/1:4.0.0~rc1-3)

2017-03-18 Thread Debian Bug Tracking System 
Your message dated Sat, 18 Mar 2017 10:42:27 +
with message-id 
and subject line unblock resource-agents
has caused the Debian Bug report #858099,
regarding unblock: resource-agents/1:4.0.0~rc1-3
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
858099: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858099
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package resource-agents

It fixes a missing Build-Depends and Recommends on net-tools,
as reported in #857368 (Severity: serious).  ifconfig is used by the
IPaddr agent.


diff -Nru resource-agents-4.0.0~rc1/debian/changelog 
resource-agents-4.0.0~rc1/debian/changelog
--- resource-agents-4.0.0~rc1/debian/changelog  2017-01-23 11:07:20.0 
+0100
+++ resource-agents-4.0.0~rc1/debian/changelog  2017-03-14 08:36:06.0 
+0100
@@ -1,3 +1,9 @@
+resource-agents (1:4.0.0~rc1-3) unstable; urgency=medium
+
+  * debian/control: add net-tools to Recommends (Closes: #857368)
+
+ -- Valentin Vidic   Tue, 14 Mar 2017 08:36:06 +0100
+
 resource-agents (1:4.0.0~rc1-2) unstable; urgency=medium
 
   * resource-agents: depend on gawk for LVM monitor
diff -Nru resource-agents-4.0.0~rc1/debian/control 
resource-agents-4.0.0~rc1/debian/control
--- resource-agents-4.0.0~rc1/debian/control2017-01-23 11:07:11.0 
+0100
+++ resource-agents-4.0.0~rc1/debian/control2017-03-14 08:36:06.0 
+0100
@@ -23,6 +23,7 @@
libstonith1-dev (>= 1.0.12~),
libtool,
libxml2-utils,
+   net-tools,
pkg-config,
python,
 #  for systemd.pc:
@@ -37,6 +38,7 @@
 Package: resource-agents
 Architecture: any
 Depends: ${misc:Depends}, ${shlibs:Depends}, cluster-glue, gawk, python
+Recommends: net-tools
 Replaces: cluster-agents (<= 1:1.0.4-1), rgmanager (<= 3.0.12-2+b1), 
resource-agents-dev (<< 1:3.9.6)
 Conflicts: cluster-agents (<= 1:1.0.4-1), rgmanager (<= 3.0.12-2+b1), 
resource-agents-dev (<< 1:3.9.6)
 Provides: resource-agents-dev

unblock resource-agents/1:4.0.0~rc1-3

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)
--- End Message ---
--- Begin Message ---
Unblocked resource-agents.--- End Message ---

Bug#858105: unblock: gmrun/0.9.2-2.2

2017-03-18 Thread Lukas Schwaighofer 
Package: release.debian.org
User: release.debian@packages.debian.org
Usertags: unblock
Severity: normal

Hi,

Please unblock the package gmrun. The automatic update ("recompiled with
PIC") broke the package (because of API changes in gtk2, it only
produces segmentation faults). The uploaded package includes the patch
extracted from the Fedora project (provided by Andreas Henriksson) to
fix the issue and makes the package usable again. The changelog entry
is:

gmrun (0.9.2-2.2) unstable; urgency=medium

  * Non-maintainer upload.

[ Andreas Henriksson ]
  * fix return type of gtk_completion_line_get_type (Closes: #857065)

 -- Lukas Schwaighofer   Sun, 12 Mar 2017 23:49:46 
+0100

I've attached the debdiff between the version in testing and in
unstable.

Thank you
Lukas Schwaighofer
diff -Nru gmrun-0.9.2/debian/changelog gmrun-0.9.2/debian/changelog
--- gmrun-0.9.2/debian/changelog	2010-07-17 19:05:43.0 +0200
+++ gmrun-0.9.2/debian/changelog	2017-03-12 23:49:46.0 +0100
@@ -1,3 +1,12 @@
+gmrun (0.9.2-2.2) unstable; urgency=medium
+
+  * Non-maintainer upload.
+
+  [ Andreas Henriksson ]
+  * fix return type of gtk_completion_line_get_type (Closes: #857065)
+
+ -- Lukas Schwaighofer   Sun, 12 Mar 2017 23:49:46 +0100
+
 gmrun (0.9.2-2.1) unstable; urgency=low
 
   * Non-maintainer upload.
diff -Nru gmrun-0.9.2/debian/patches/return-type-gtk_completion_line_get_type.patch gmrun-0.9.2/debian/patches/return-type-gtk_completion_line_get_type.patch
--- gmrun-0.9.2/debian/patches/return-type-gtk_completion_line_get_type.patch	1970-01-01 01:00:00.0 +0100
+++ gmrun-0.9.2/debian/patches/return-type-gtk_completion_line_get_type.patch	2017-03-12 23:49:46.0 +0100
@@ -0,0 +1,45 @@
+From: Andreas Henriksson 
+Date: Wed, 8 Mar 2017 23:21:15 +0100
+Subject: fix return type of gtk_completion_line_get_type
+
+Patch originally downloaded from
+https://src.fedoraproject.org/cgit/rpms/gmrun.git/plain/gmrun-0.9.2-f12.patch
+
+slighly modified (parts dropped, fuzz fixed) to apply on top of debian
+package
+
+Closes: #857065
+---
+ src/gtkcompletionline.cc | 4 ++--
+ src/gtkcompletionline.h  | 2 +-
+ 2 files changed, 3 insertions(+), 3 deletions(-)
+
+diff --git a/src/gtkcompletionline.cc b/src/gtkcompletionline.cc
+index 90897f7..c247994 100644
+--- a/src/gtkcompletionline.cc
 b/src/gtkcompletionline.cc
+@@ -77,9 +77,9 @@ static gboolean
+ on_key_press(GtkCompletionLine *cl, GdkEventKey *event, gpointer data);
+ 
+ /* get_type */
+-guint gtk_completion_line_get_type(void)
++GtkType gtk_completion_line_get_type(void)
+ {
+-  static guint type = 0;
++  static GtkType type = 0;
+   if (type == 0)
+   {
+ GtkTypeInfo type_info =
+diff --git a/src/gtkcompletionline.h b/src/gtkcompletionline.h
+index 5e14cd7..caed4c7 100644
+--- a/src/gtkcompletionline.h
 b/src/gtkcompletionline.h
+@@ -76,7 +76,7 @@ extern "C++" {
+ void (* cancel)(GtkCompletionLine *cl);
+   };
+ 
+-  guint gtk_completion_line_get_type(void);
++  GtkType gtk_completion_line_get_type(void);
+   GtkWidget *gtk_completion_line_new();
+ 
+   void gtk_completion_line_last_history_item(GtkCompletionLine*);
diff -Nru gmrun-0.9.2/debian/patches/series gmrun-0.9.2/debian/patches/series
--- gmrun-0.9.2/debian/patches/series	2010-07-17 19:05:49.0 +0200
+++ gmrun-0.9.2/debian/patches/series	2017-03-12 23:49:46.0 +0100
@@ -9,3 +9,4 @@
 90-window_placement.patch
 100-gmrunrc.patch
 debian-changes-0.9.2-2.1
+return-type-gtk_completion_line_get_type.patch


pgp471REmv7dI.pgp
Description: OpenPGP digital signature

Bug#858091: marked as done (unblock: biosig4c++/1.3.0-2.2)

2017-03-18 Thread Debian Bug Tracking System 
Your message dated Sat, 18 Mar 2017 10:44:02 +
with message-id 
and subject line unblock biosig4c++
has caused the Debian Bug report #858091,
regarding unblock: biosig4c++/1.3.0-2.2
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
858091: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858091
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock

Hi!

biosig4c++_1.3.0-2.2 contains a small patch provided by upstream
which fixes an FTBFS on architectures where char is unsigned by
default.

Thanks,
Adrian

unblock biosig4c++/1.3.0-2.2

-- System Information:
Debian Release: 9.0
  APT prefers buildd-unstable
  APT policy: (500, 'buildd-unstable'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.10.0-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru biosig4c++-1.3.0/debian/changelog biosig4c++-1.3.0/debian/changelog
--- biosig4c++-1.3.0/debian/changelog   2015-08-19 20:32:12.0 +0200
+++ biosig4c++-1.3.0/debian/changelog   2017-03-18 08:37:44.0 +0100
@@ -1,3 +1,12 @@
+biosig4c++ (1.3.0-2.2) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * debian/patches:
+- added fix_STR_END_signage_FTBFS from upstream to fix FTBFS
+  on architectures where char is unsigned (Closes: #857121)
+
+ -- John Paul Adrian Glaubitz   Sat, 18 Mar 2017 
08:37:44 +0100
+
 biosig4c++ (1.3.0-2.1) unstable; urgency=medium
 
   * Non-maintainer upload.
diff -Nru biosig4c++-1.3.0/debian/patches/fix_STR_END_signage_FTBFS 
biosig4c++-1.3.0/debian/patches/fix_STR_END_signage_FTBFS
--- biosig4c++-1.3.0/debian/patches/fix_STR_END_signage_FTBFS   1970-01-01 
01:00:00.0 +0100
+++ biosig4c++-1.3.0/debian/patches/fix_STR_END_signage_FTBFS   2017-03-18 
08:37:10.0 +0100
@@ -0,0 +1,16 @@
+Description: Fix FTBFS on architectures where char is unsigned
+Author: Christoph Schmidt-Hieber 
+Origin: upstream, 8e7c3d7e485e1d3af3f3094641282274424b7385
+Last-Update: 2017-03-18
+
+--- biosig4c++-1.3.0.orig/t210/codes.h
 biosig4c++-1.3.0/t210/codes.h
+@@ -22,7 +22,7 @@ Foundation, Inc., 59 Temple Place - Suit
+ #ifndef __CODES_H__
+ #define __CODES_H__
+ 
+-static const char STR_END[]={-1,'\0'};
++static const char STR_END[]={(char)-1,'\0'};
+ static char STR_NULL[]=" unspecified/unknown ";
+ 
+ static alfabetic _special[]={
diff -Nru biosig4c++-1.3.0/debian/patches/series 
biosig4c++-1.3.0/debian/patches/series
--- biosig4c++-1.3.0/debian/patches/series  2015-08-19 20:15:58.0 
+0200
+++ biosig4c++-1.3.0/debian/patches/series  2017-03-18 08:36:01.0 
+0100
@@ -1,3 +1,4 @@
 deb_no_mex_copy_upstairs
 deb_no_locals
 up_memcpy_str_cast
+fix_STR_END_signage_FTBFS
--- End Message ---
--- Begin Message ---
Unblocked biosig4c++.--- End Message ---

Processed: Re: Bug#858086: RM: owncloud/7.0.4+dfsg-4~deb8u4

2017-03-18 Thread Debian Bug Tracking System 
Processing control commands:

> clone -1 -2
Bug #858086 [release.debian.org] RM: owncloud/7.0.4+dfsg-4~deb8u4
Bug 858086 cloned as bug 858103
> retitle -1 RM: owncloud -- RoM; unsupportable
Bug #858086 [release.debian.org] RM: owncloud/7.0.4+dfsg-4~deb8u4
Changed Bug title to 'RM: owncloud -- RoM; unsupportable' from 'RM: 
owncloud/7.0.4+dfsg-4~deb8u4'.
> retitle -2 RM: owncloud-apps -- RoM; unsupportable
Bug #858103 [release.debian.org] RM: owncloud/7.0.4+dfsg-4~deb8u4
Changed Bug title to 'RM: owncloud-apps -- RoM; unsupportable' from 'RM: 
owncloud/7.0.4+dfsg-4~deb8u4'.

-- 
858086: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858086
858103: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858103
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#858086: RM: owncloud/7.0.4+dfsg-4~deb8u4

2017-03-18 Thread Adam D. Barratt 
Control: clone -1 -2
Control: retitle -1 RM: owncloud -- RoM; unsupportable
Control: retitle -2 RM: owncloud-apps -- RoM; unsupportable

On Fri, 2017-03-17 at 19:33 -1000, David Prévot wrote:
> As discussed with the security team, please remove owncloud from stable:
> we’re not able to maintain this version on our own anymore, especially
> since we had to give up our efforts to provide it for Stretch.
> 
> Please note that a fair amount of related packages won’t be useful
> anymore (owncloud-doc and owncloud-apps come to mind, but there are many
> PHP classes and few other things that were only packaged for ownCloud).
> I can try to draft a complete list if you’re in the mood of mass-rm.

owncloud-apps at least will definitely need removing, as it Depends: on
owncloud.

Regards,

Adam

Processed: tagging 858086

2017-03-18 Thread Debian Bug Tracking System 
Processing commands for cont...@bugs.debian.org:

> tags 858086 + jessie
Bug #858086 [release.debian.org] RM: owncloud/7.0.4+dfsg-4~deb8u4
Added tag(s) jessie.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
858086: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858086
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

Bug#858099: unblock: resource-agents/1:4.0.0~rc1-3

2017-03-18 Thread Valentin Vidic 
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package resource-agents

It fixes a missing Build-Depends and Recommends on net-tools,
as reported in #857368 (Severity: serious).  ifconfig is used by the
IPaddr agent.


diff -Nru resource-agents-4.0.0~rc1/debian/changelog 
resource-agents-4.0.0~rc1/debian/changelog
--- resource-agents-4.0.0~rc1/debian/changelog  2017-01-23 11:07:20.0 
+0100
+++ resource-agents-4.0.0~rc1/debian/changelog  2017-03-14 08:36:06.0 
+0100
@@ -1,3 +1,9 @@
+resource-agents (1:4.0.0~rc1-3) unstable; urgency=medium
+
+  * debian/control: add net-tools to Recommends (Closes: #857368)
+
+ -- Valentin Vidic   Tue, 14 Mar 2017 08:36:06 +0100
+
 resource-agents (1:4.0.0~rc1-2) unstable; urgency=medium
 
   * resource-agents: depend on gawk for LVM monitor
diff -Nru resource-agents-4.0.0~rc1/debian/control 
resource-agents-4.0.0~rc1/debian/control
--- resource-agents-4.0.0~rc1/debian/control2017-01-23 11:07:11.0 
+0100
+++ resource-agents-4.0.0~rc1/debian/control2017-03-14 08:36:06.0 
+0100
@@ -23,6 +23,7 @@
libstonith1-dev (>= 1.0.12~),
libtool,
libxml2-utils,
+   net-tools,
pkg-config,
python,
 #  for systemd.pc:
@@ -37,6 +38,7 @@
 Package: resource-agents
 Architecture: any
 Depends: ${misc:Depends}, ${shlibs:Depends}, cluster-glue, gawk, python
+Recommends: net-tools
 Replaces: cluster-agents (<= 1:1.0.4-1), rgmanager (<= 3.0.12-2+b1), 
resource-agents-dev (<< 1:3.9.6)
 Conflicts: cluster-agents (<= 1:1.0.4-1), rgmanager (<= 3.0.12-2+b1), 
resource-agents-dev (<< 1:3.9.6)
 Provides: resource-agents-dev

unblock resource-agents/1:4.0.0~rc1-3

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)

Bug#858091: unblock: biosig4c++/1.3.0-2.2

2017-03-18 Thread John Paul Adrian Glaubitz 
Package: release.debian.org
Severity: normal
Tags: patch
User: release.debian@packages.debian.org
Usertags: unblock

Hi!

biosig4c++_1.3.0-2.2 contains a small patch provided by upstream
which fixes an FTBFS on architectures where char is unsigned by
default.

Thanks,
Adrian

unblock biosig4c++/1.3.0-2.2

-- System Information:
Debian Release: 9.0
  APT prefers buildd-unstable
  APT policy: (500, 'buildd-unstable'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.10.0-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru biosig4c++-1.3.0/debian/changelog biosig4c++-1.3.0/debian/changelog
--- biosig4c++-1.3.0/debian/changelog   2015-08-19 20:32:12.0 +0200
+++ biosig4c++-1.3.0/debian/changelog   2017-03-18 08:37:44.0 +0100
@@ -1,3 +1,12 @@
+biosig4c++ (1.3.0-2.2) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * debian/patches:
+- added fix_STR_END_signage_FTBFS from upstream to fix FTBFS
+  on architectures where char is unsigned (Closes: #857121)
+
+ -- John Paul Adrian Glaubitz   Sat, 18 Mar 2017 
08:37:44 +0100
+
 biosig4c++ (1.3.0-2.1) unstable; urgency=medium
 
   * Non-maintainer upload.
diff -Nru biosig4c++-1.3.0/debian/patches/fix_STR_END_signage_FTBFS 
biosig4c++-1.3.0/debian/patches/fix_STR_END_signage_FTBFS
--- biosig4c++-1.3.0/debian/patches/fix_STR_END_signage_FTBFS   1970-01-01 
01:00:00.0 +0100
+++ biosig4c++-1.3.0/debian/patches/fix_STR_END_signage_FTBFS   2017-03-18 
08:37:10.0 +0100
@@ -0,0 +1,16 @@
+Description: Fix FTBFS on architectures where char is unsigned
+Author: Christoph Schmidt-Hieber 
+Origin: upstream, 8e7c3d7e485e1d3af3f3094641282274424b7385
+Last-Update: 2017-03-18
+
+--- biosig4c++-1.3.0.orig/t210/codes.h
 biosig4c++-1.3.0/t210/codes.h
+@@ -22,7 +22,7 @@ Foundation, Inc., 59 Temple Place - Suit
+ #ifndef __CODES_H__
+ #define __CODES_H__
+ 
+-static const char STR_END[]={-1,'\0'};
++static const char STR_END[]={(char)-1,'\0'};
+ static char STR_NULL[]=" unspecified/unknown ";
+ 
+ static alfabetic _special[]={
diff -Nru biosig4c++-1.3.0/debian/patches/series 
biosig4c++-1.3.0/debian/patches/series
--- biosig4c++-1.3.0/debian/patches/series  2015-08-19 20:15:58.0 
+0200
+++ biosig4c++-1.3.0/debian/patches/series  2017-03-18 08:36:01.0 
+0100
@@ -1,3 +1,4 @@
 deb_no_mex_copy_upstairs
 deb_no_locals
 up_memcpy_str_cast
+fix_STR_END_signage_FTBFS