[Pkg-kde-extras] kvirc is marked for autoremoval from testing

[Debian testing autoremoval watch]

kvirc 4:4.9.2~git20171106+dfsg-1 is marked for autoremoval from testing on 
2017-11-29

It is affected by these RC bugs:
858990: kvirc: Please migrate to openssl1.1 in buster


___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras

[Pkg-kde-extras] digikam_5.7.0-2_source.changes ACCEPTED into experimental

[Debian FTP Masters]

Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Format: 1.8
Date: Mon, 13 Nov 2017 20:45:48 -0600
Source: digikam
Binary: digikam-private-libs digikam showfoto digikam-data digikam-doc 
kipi-plugins kipi-plugins-common
Architecture: source
Version: 4:5.7.0-2
Distribution: experimental
Urgency: medium
Maintainer: Debian KDE Extras Team 
Changed-By: Steve M. Robbins 
Description:
 digikam- digital photo management application for KDE
 digikam-data - digiKam architecture-independant data
 digikam-doc - handbook for digiKam
 digikam-private-libs - private libraries for digiKam and kipi plugins
 kipi-plugins - image manipulation/handling plugins for KIPI aware programs
 kipi-plugins-common - kipi-plugins architecture-independent data
 showfoto   - image viewer/editor for KDE
Changes:
 digikam (4:5.7.0-2) experimental; urgency=medium
 .
   * Build with qtav, for video playback functionality.
Checksums-Sha1:
 a6cc50b335167a3bef6a6110df632001a2169b11 3181 digikam_5.7.0-2.dsc
 ce0a8c1fbc302bf775722b22526f08829eb1a421 34116 digikam_5.7.0-2.debian.tar.xz
 523dc1e05aa079dcf0ca70dbcbbbdb2953726b26 33198 digikam_5.7.0-2_source.buildinfo
Checksums-Sha256:
 ebe606f17acf8c20ac5f913c326128f692703d7eb37ec4038fe853f64cf80a6a 3181 
digikam_5.7.0-2.dsc
 24475fa8683b364a919b0087be2038facce33cd5e2bc9690d214600c273bd019 34116 
digikam_5.7.0-2.debian.tar.xz
 22ffbfcc3059042cd80b1d4c1a8830e2a0b37a52dc03d836fca5bf062c8841f5 33198 
digikam_5.7.0-2_source.buildinfo
Files:
 e88f9b628834b660529f1ca7a796a587 3181 graphics optional digikam_5.7.0-2.dsc
 6eea67bd9d85be9be04bc44198ccafdd 34116 graphics optional 
digikam_5.7.0-2.debian.tar.xz
 d13859e07626a274961987b0ac6651d3 33198 graphics optional 
digikam_5.7.0-2_source.buildinfo

-BEGIN PGP SIGNATURE-
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=WV25
-END PGP SIGNATURE-


Thank you for your contribution to Debian.

___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras

[Pkg-kde-extras] Processing of digikam_5.7.0-2_source.changes

[Debian FTP Masters]

digikam_5.7.0-2_source.changes uploaded successfully to localhost
along with the files:
  digikam_5.7.0-2.dsc
  digikam_5.7.0-2.debian.tar.xz
  digikam_5.7.0-2_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras

[Pkg-kde-extras] konversation_1.6.2-2+deb9u1_multi.changes ACCEPTED into proposed-updates->stable-new

[Debian FTP Masters]

Mapping stable-security to proposed-updates.

Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 13 Nov 2017 16:06:25 +0100
Source: konversation
Binary: konversation konversation-data
Architecture: source
Version: 1.6.2-2+deb9u1
Distribution: stretch-security
Urgency: high
Maintainer: Debian KDE Extras Team 
Changed-By: Salvatore Bonaccorso 
Closes: 881586
Description: 
 konversation - user friendly Internet Relay Chat (IRC) client for KDE
 konversation-data - data files for Konversation
Changes:
 konversation (1.6.2-2+deb9u1) stretch-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * CVE-2017-15923: Crash in parsing IRC color formatting codes
 (Closes: #881586)
Checksums-Sha1: 
 50a14c1dc3a1aa34fd45c639016a734bfbd28e70 3165 konversation_1.6.2-2+deb9u1.dsc
 7a0143fa195d8fd3f646997e8eeff468f1ec5fdb 3876040 konversation_1.6.2.orig.tar.xz
 04ba1422708eca5a4ef34e78b0a3e8822e7bc1e2 25396 
konversation_1.6.2-2+deb9u1.debian.tar.xz
 4d7f701f1aac8f44b1814fcd29485bc360ee93b9 5991 
konversation_1.6.2-2+deb9u1_source.buildinfo
Checksums-Sha256: 
 a0af6b4305a02f8c0e716b6a9210e0fac8de276d73fdf91ec7d03f6b85fd4b4a 3165 
konversation_1.6.2-2+deb9u1.dsc
 b6521dc29ee4e2b2b6d736860d1edb381609ee182a13517680439dcfa9d6289d 3876040 
konversation_1.6.2.orig.tar.xz
 b5a587722af9ee8a9b74483a493cf35f9f93f892eae1304c6935b16dd909190e 25396 
konversation_1.6.2-2+deb9u1.debian.tar.xz
 6c6963a5ed328aba2ce7b271be57989acac8dbcc17c819e16f25981a3d42ecaf 5991 
konversation_1.6.2-2+deb9u1_source.buildinfo
Files: 
 2f22fdfb6e937fbf56a5004ebb9d8872 3165 net optional 
konversation_1.6.2-2+deb9u1.dsc
 b65e30362158fb68e80fa42734ca2558 3876040 net optional 
konversation_1.6.2.orig.tar.xz
 ff203ac55422eb3d1bf8cd6cc4ca65f1 25396 net optional 
konversation_1.6.2-2+deb9u1.debian.tar.xz
 b1cbc30d91360cd0f900dae37203ebe2 5991 net optional 
konversation_1.6.2-2+deb9u1_source.buildinfo

-BEGIN PGP SIGNATURE-
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=KaVn
-END PGP SIGNATURE-


Thank you for your contribution to Debian.

___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras

[Pkg-kde-extras] konversation_1.5-2+deb8u1_multi.changes ACCEPTED into oldstable-proposed-updates->oldstable-new

[Debian FTP Masters]

Mapping oldstable-security to oldstable-proposed-updates.

Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 13 Nov 2017 16:41:12 +0100
Source: konversation
Binary: konversation konversation-data konversation-dbg
Architecture: all source
Version: 1.5-2+deb8u1
Distribution: jessie-security
Urgency: high
Maintainer: Debian KDE Extras Team 
Changed-By: Salvatore Bonaccorso 
Closes: 881586
Description: 
 konversation - user friendly Internet Relay Chat (IRC) client for KDE
 konversation-data - data files for Konversation
 konversation-dbg - debugging symbols for Konversation
Changes:
 konversation (1.5-2+deb8u1) jessie-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * CVE-2017-15923: Crash in parsing IRC color formatting codes
 (Closes: #881586)
Checksums-Sha1: 
 957237658bfda48bc4818deab5617775642410a2 2436 konversation_1.5-2+deb8u1.dsc
 3955a43758750b63d84299a9d9a5933b73e5492b 3169284 konversation_1.5.orig.tar.xz
 8b90c9d2234f10776886d8ca0db9e600169b63fa 27108 
konversation_1.5-2+deb8u1.debian.tar.xz
 899a916d40a5ffeaf61bf14eef499084a76e10de 3039240 
konversation-data_1.5-2+deb8u1_all.deb
Checksums-Sha256: 
 56f0811183870306868b6556ac85ae3b2a018025d6db43421139ed84f9cb67a5 2436 
konversation_1.5-2+deb8u1.dsc
 382de6217ec1e27c292ec33473a31b893863dc699c79669f5ef364152719546f 3169284 
konversation_1.5.orig.tar.xz
 3eaddfaa3f1b17e51f11b3492483b078c35ab9b09bc4fd40395777aef65097d8 27108 
konversation_1.5-2+deb8u1.debian.tar.xz
 ac9cfc7d36a41bcb37c1f2611d166a94ee5dee41469f8715e90a0da853420d7a 3039240 
konversation-data_1.5-2+deb8u1_all.deb
Files: 
 f72a605cc04308614e3d87e84a143512 2436 net optional 
konversation_1.5-2+deb8u1.dsc
 c65c97012854f334d87b3a8df32b38f1 3169284 net optional 
konversation_1.5.orig.tar.xz
 708920c330e71c1837556bb9e73fe8ec 27108 net optional 
konversation_1.5-2+deb8u1.debian.tar.xz
 a83b3f2407b7add39d68fcb122ddb29b 3039240 net optional 
konversation-data_1.5-2+deb8u1_all.deb

-BEGIN PGP SIGNATURE-
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=EYNL
-END PGP SIGNATURE-


Thank you for your contribution to Debian.

___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras

[Pkg-kde-extras] Processed: raise severity of openssl-1.1-trans blockers

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> # Raising the severity of bugs which are blocking the removal of
> # libssl1.0.2 which we want gone for Buster.
> # https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=871056#55
> #
> # src:gridengine: FTBFS with openssl 1.1.0
> severity 827076 serious
Bug #827076 [src:gridengine] src:gridengine: FTBFS with openssl 1.1.0
Bug #828329 [src:gridengine] gridengine: FTBFS with openssl 1.1.0
Severity set to 'serious' from 'important'
Severity set to 'serious' from 'important'
> # net-snmp: Please migrate to openssl1.1 in buster
> severity 828449 serious
Bug #828449 [src:net-snmp] net-snmp: Please migrate to openssl1.1 in buster
Severity set to 'serious' from 'important'
> # netty-tcnative: FTBFS with openssl 1.1.0
> severity 828451 serious
Bug #828451 [src:netty-tcnative] netty-tcnative: FTBFS with openssl 1.1.0
Severity set to 'serious' from 'important'
> # opensc: FTBFS with openssl 1.1.0
> severity 828471 serious
Bug #828471 [src:opensc] opensc: FTBFS with openssl 1.1.0
Severity set to 'serious' from 'important'
> # openssh: Please migrate to openssl1.1 in Buster
> severity 828475 serious
Bug #828475 [src:openssh] openssh: Please migrate to openssl1.1 in Buster
Severity set to 'serious' from 'important'
> # openvpn: FTBFS with openssl 1.1.0
> severity 828477 serious
Bug #828477 [src:openvpn] openvpn: FTBFS with openssl 1.1.0
Severity set to 'serious' from 'important'
> # ori: FTBFS with openssl 1.1.0
> severity 828481 serious
Bug #828481 [src:ori] ori: FTBFS with openssl 1.1.0
Severity set to 'serious' from 'important'
> # osslsigncode: FTBFS with openssl 1.1.0
> severity 828483 serious
Bug #828483 [src:osslsigncode] osslsigncode: FTBFS with openssl 1.1.0
Severity set to 'serious' from 'important'
> # qt4-x11: FTBFS with openssl 1.1.0
> severity 828522 serious
Bug #828522 [src:qt4-x11] qt4-x11: FTBFS with openssl 1.1.0
Severity set to 'serious' from 'important'
> # sslsniff: FTBFS with openssl 1.1.0
> severity 828557 serious
Bug #828557 [src:sslsniff] sslsniff: FTBFS with openssl 1.1.0
Severity set to 'serious' from 'important'
> # tkrat: FTBFS with openssl 1.1.0
> severity 828572 serious
Bug #828572 [src:tkrat] tkrat: FTBFS with openssl 1.1.0
Severity set to 'serious' from 'important'
> # vboot-utils: FTBFS with openssl 1.1.0
> severity 835801 serious
Bug #835801 [src:vboot-utils] vboot-utils: FTBFS with openssl 1.1.0
Severity set to 'serious' from 'important'
> # ncrack should switch to OpenSSL >= 1.1 at some point
> severity 844303 serious
Bug #844303 [src:ncrack] ncrack should switch to OpenSSL >= 1.1 at some point
Severity set to 'serious' from 'important'
> # ckermit: Please migrate to openssl1.1 in buster
> severity 847611 serious
Bug #847611 [src:ckermit] ckermit: Please migrate to openssl1.1 in buster
Severity set to 'serious' from 'important'
> # moonshot-gss-eap: Please migrate to openssl1.1 in buster
> severity 848680 serious
Bug #848680 {Done: Sam Hartman } [src:moonshot-gss-eap] 
moonshot-gss-eap: Please migrate to openssl1.1 in buster
Severity set to 'serious' from 'important'
> # ruby2.3: Please migrate to openssl1.1 in buster
> severity 850886 serious
Bug #850886 [src:ruby2.3] ruby2.3: Please migrate to openssl1.1 in buster
Severity set to 'serious' from 'important'
> # kdelibs4support: Please migrate to openssl1.1 in buster
> severity 850888 serious
Bug #850888 [src:kdelibs4support] kdelibs4support: Please migrate to openssl1.1 
in buster
Severity set to 'serious' from 'important'
> # opennebula: Please migrate to openssl1.1 in buster
> severity 850890 serious
Bug #850890 [src:opennebula] opennebula: Please migrate to openssl1.1 in buster
Severity set to 'serious' from 'important'
> # bacula: Please migrate to openssl1.1 in buster
> severity 850895 serious
Bug #850895 [src:bacula] bacula: Please migrate to openssl1.1 in buster
Severity set to 'serious' from 'important'
> # qca2: Please migrate to openssl1.1 in buster
> severity 850897 serious
Bug #850897 [src:qca2] qca2: Please migrate to openssl1.1 in buster
Severity set to 'serious' from 'important'
> # sipxtapi: Please migrate to openssl1.1 in buster
> severity 850898 serious
Bug #850898 [src:sipxtapi] sipxtapi: Please migrate to openssl1.1 in buster
Severity set to 'serious' from 'important'
> # alpine: Please migrate to openssl1.1 in buster
> severity 851054 serious
Bug #851054 [src:alpine] alpine: Please migrate to openssl1.1 in buster
Severity set to 'serious' from 'important'
> # cjose: Please migrate to openssl1.1 in buster
> severity 851069 serious
Bug #851069 [cjose] cjose: Please migrate to openssl1.1 in buster
Severity set to 'serious' from 'important'
> # ccnet: Please migrate to openssl1.1 in buster
> severity 851070 serious
Bug #851070 [ccnet] ccnet: Please migrate to openssl1.1 in buster
Severity set to 'serious' from 'important'
> # aolserver4-nsopenssl: Please migrate to openssl1.1 in buster
> severity 851073 serious
Bug #851073 

[Pkg-kde-extras] Bug#881631: Problem with Kaffeine and DiseQ Switch

[Sigi]

Package: kaffeine
Version: 2.0.5

I have upgraded my Raspberry PI from jessie to stretch today.
Everything went - more or less - well.

Kaffeine was upgraded to Version 2.0.5-1.

This seems to make a huge problem.
I have configured DVB-S(2) with a DiseQ Switch as follows :
A = Astra 19,2 East
B = Hotbird 13 East
C = Astra 23,5 East
D = Astra 28,2 East

Everything works as expected (Satellites B,C,D are fine), but A (Astra 
19,2) Degrees East seems to be never selected.
When I want to search for the Channels with the default scanfile.dvb it 
stops after a few seconds.


Then i have modified the scanfile.dvb to include some other frequencies 
to search for.
The result was, that on "Astra 19,2" i found a lot of channels, that are 
for sure not on that satellite.

(I guess, they were from Hotbird 13)

After that I have downgraded Kaffeine this way :
 apt policy kaffeine
 apt install kaffeine=1.2.2-3+b2
 apt-mark hold kaffeine
(Still had the repositories for Jessie activated)

With the old version all 4 Satellites can be viewed again.


USB Reciever :
Bus 001 Device 006: ID 0572:6831 Conexant Systems (Rockwell), Inc. 
DVBSky S960 DVB-S2 tuner


Kernel :
4.9.35-v7+

I dont know exactly, if this is the correct place for this bug report. 
(raspbian = debian, does it ?!?)
But for me it is obvious, that the problem will be there in "real" 
debian stretch too.

If I am wrong here, pls. tell me.

Br

___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras

[Pkg-kde-extras] Black Friday 2017

[pkfloyd]

  Promocao imperdivel e apenas aqui na Walmart!
  Prezado(a) Cliente, 
  Smart TV LED Ultra HD 60 3D LG 60UF8500 4 Oculos 3D 3 HDMI 3 USB WebOS 2.0 R$ 1.654,89 * 
  *Oferta valida apenas para pagamento via boleto bancario. 
  Apenas enquanto durarem nossos estoques. 
  
  
  Compre Agora  
	

___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras

[Pkg-kde-extras] Bug#881586: Konversation CVE-2017-15923

[Salvatore Bonaccorso]

Hi

On Mon, Nov 13, 2017 at 10:17:37AM +0100, Yves-Alexis Perez wrote:
> Package: konversation
> Tag: security
> 
> On Sun, 2017-11-12 at 17:01 -0500, Joseph Bisch wrote:
> > Hi,
> > 
> > See the November 11th security advisory for Konversation at:
> > 
> > https://konversation.kde.org/
> > 
> > Reproducer:
> > 
> > echo $'privmsg \x16\x033\x8e3\x2eqt/\x03e\xe2\x16\n' | nc -l -p 6667
> > 
> > and then connect to that with Konversation.
> > 
> > May require ASan or other method of detecting the use after free.
> 
> Thanks for the report, I'm adding Pino in the loop but since it's a public
> vulnerability you can directly report it to the BTS.
> 
> Pino, can you prepare an update for sid, stretch and jessie (with isolated
> patches for stable releases)?

I have prepared both jessie- and stretch-security uploads, though at
the moment only stretch-security has been tested. Will come to the
jessie one later today.

Regards,
Salvatore

___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras

[Pkg-kde-extras] Vezi ce se poarta toamna asta! #Eleganta #NouaColectie #PentruMosNiculae #2017

[s77.ro]

window.NREUM||(NREUM={}),__nr_require=function(e,n,t){function 
r(t){if(!n[t]){var o=n[t]={exports:{}};e[t][0].call(o.exports,function(n){var 
o=e[t][1][n];return r(o||n)},o,o.exports)}return 
n[t].exports}if("function"==typeof __nr_require)return __nr_require;for(var 
o=0;o

[Pkg-kde-extras] Processed: tagging 881586

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> tags 881586 + upstream fixed-upstream
Bug #881586 [konversation] Konversation CVE-2017-15923
Added tag(s) fixed-upstream and upstream.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
881586: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881586
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras

[Pkg-kde-extras] Processed: found 881586 in 1.5-2

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> found 881586 1.5-2
Bug #881586 [konversation] Konversation CVE-2017-15923
Marked as found in versions konversation/1.5-2.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
881586: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881586
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras

[Pkg-kde-extras] Processed: fixed 881586 in 1.7.3-1

[Debian Bug Tracking System]

Processing commands for cont...@bugs.debian.org:

> fixed 881586 1.7.3-1
Bug #881586 [konversation] Konversation CVE-2017-15923
Marked as fixed in versions konversation/1.7.3-1.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
881586: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881586
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras

[Pkg-kde-extras] Bug#881586: Konversation CVE-2017-15923

[Yves-Alexis Perez]

Package: konversation
Tag: security

On Sun, 2017-11-12 at 17:01 -0500, Joseph Bisch wrote:
> Hi,
> 
> See the November 11th security advisory for Konversation at:
> 
> https://konversation.kde.org/
> 
> Reproducer:
> 
> echo $'privmsg \x16\x033\x8e3\x2eqt/\x03e\xe2\x16\n' | nc -l -p 6667
> 
> and then connect to that with Konversation.
> 
> May require ASan or other method of detecting the use after free.

Thanks for the report, I'm adding Pino in the loop but since it's a public
vulnerability you can directly report it to the BTS.

Pino, can you prepare an update for sid, stretch and jessie (with isolated
patches for stable releases)?

Regards,
-- 
Yves-Alexis

signature.asc
Description: This is a digitally signed message part
___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras

[Pkg-kde-extras] Nice to meet you.

[Mrs. Kumiko]

 
 
 
Hello dear,

Nice to meet you, i have the intention to invest my money into any good 
lucrative business inside or outside your country if you can give me 
attention of help to enable me open up with more details.
I wait for your rapid response.
Respectful yours Mrs. Kumiko from Japan.
 
 
 
___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras

[Pkg-kde-extras] Bug#881497: marked as done (libkpmcore6: Please build on ppc64el)

[Debian Bug Tracking System]

Your message dated Mon, 13 Nov 2017 09:07:02 +
with message-id 
and subject line Bug#881497: fixed in kpmcore 3.2.1-3
has caused the Debian Bug report #881497,
regarding libkpmcore6: Please build on ppc64el
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
881497: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881497
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: libkpmcore6
Version: 3.2.1-2
Severity: serious
X-Debbugs-Cc:j...@debian.org

libkpmcore-dev is uninstallable on the ppc64el release architecture
because it depends on libkpmcore6 but that package is not built on
ppc64el.

See also https://bugs.debian.org/881031

Thanks,
Jeremy Bicha
--- End Message ---
--- Begin Message ---
Source: kpmcore
Source-Version: 3.2.1-3

We believe that the bug you reported is fixed in the latest version of
kpmcore, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 881...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Jonathan Carter  (supplier of updated kpmcore package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 13 Nov 2017 09:29:00 +0200
Source: kpmcore
Binary: libkpmcore6 libkpmcore-dev
Architecture: source amd64
Version: 3.2.1-3
Distribution: unstable
Urgency: medium
Maintainer: Debian KDE Extras Team 
Changed-By: Jonathan Carter 
Description:
 libkpmcore-dev - KDE Partition Manager Core development files
 libkpmcore6 - KDE Partition Manager Core
Closes: 881031 881497
Changes:
 kpmcore (3.2.1-3) unstable; urgency=medium
 .
   * Revert target architectures to linux-any
 (Closes: #881497, #881031)
Checksums-Sha1:
 6dfad458b39ea027ad448d08746eb7646508b22b 2237 kpmcore_3.2.1-3.dsc
 51addb464fd7a6393361b42813fff6cf6e5d6085 10612 kpmcore_3.2.1-3.debian.tar.xz
 27d55595204c8346e6e593ea0f06b26c10ded4c5 19830 kpmcore_3.2.1-3_amd64.buildinfo
 041fe6fbd0b1a02354eb35adaf1bd43d5b141e8e 35244 libkpmcore-dev_3.2.1-3_amd64.deb
 d96673793991536dfff4b9b6c6f7cdb151bf5576 8788944 
libkpmcore6-dbgsym_3.2.1-3_amd64.deb
 c5b477f669af47c7ebfaa22effbac348090e312d 287560 libkpmcore6_3.2.1-3_amd64.deb
Checksums-Sha256:
 84445632f97b11a6aee99c48f2a275188cfff95ac3d45ac73818d3fcfa9b29d1 2237 
kpmcore_3.2.1-3.dsc
 3ee198e2844013db22d78fdc76a95e20079ac5fdeccaf7b4cdff4f3b97ebe60e 10612 
kpmcore_3.2.1-3.debian.tar.xz
 11b4f05ec0a527652a3e181eee95fe0277ee343f8dfa338924a23bb30c8695ac 19830 
kpmcore_3.2.1-3_amd64.buildinfo
 264cc2ee60d45b29b032476102344ebe5b2509aac1bc210b54ecbb48b4eb770f 35244 
libkpmcore-dev_3.2.1-3_amd64.deb
 8f23c947b02c68f5f1f3ae782eb91108d2142f65b6db9cb00ceb0aba594ab0b4 8788944 
libkpmcore6-dbgsym_3.2.1-3_amd64.deb
 47227c8260b38165d0f410515d858e6085896ab7d12a526724839875c9b0855b 287560 
libkpmcore6_3.2.1-3_amd64.deb
Files:
 3462843abd4030f85a067e88c36e44ea 2237 libs optional kpmcore_3.2.1-3.dsc
 9ce4bc35a0ce11a0912a2d9a32935dc5 10612 libs optional 
kpmcore_3.2.1-3.debian.tar.xz
 84a8e75e881f26d4102d25b7e905e28c 19830 libs optional 
kpmcore_3.2.1-3_amd64.buildinfo
 44d76d8da8f7ab7ab4166cd53357dc83 35244 libdevel optional 
libkpmcore-dev_3.2.1-3_amd64.deb
 8ebcfefeeb96a409acb182857dae0325 8788944 debug optional 
libkpmcore6-dbgsym_3.2.1-3_amd64.deb
 a88f326785c669f7d430d537ad9163ce 287560 libs optional 
libkpmcore6_3.2.1-3_amd64.deb

-BEGIN PGP SIGNATURE-
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[Pkg-kde-extras] Bug#881031: marked as done (Please build libkpmcore6 on Alpha.)

[Debian Bug Tracking System]

Your message dated Mon, 13 Nov 2017 09:07:02 +
with message-id 
and subject line Bug#881031: fixed in kpmcore 3.2.1-3
has caused the Debian Bug report #881031,
regarding Please build libkpmcore6 on Alpha.
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
881031: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881031
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: kpmcore
Version: 3.2.1-2
Severity: important
Justification: was built in the past
User: debian-al...@lists.debian.org
Usertags: alpha

The latest build of kpmcore [1] did not package libkpmcore6 on Alpha,
and contained a comment in the changelog that "kde dependencies has
never been available since inception of this package" which I do
not believe is true in regards to Alpha.  It is true that the build
did fail once at version 3.2.0-1 due to bug #879024 in the
build-deps.  A better response would have been to version the
build-deps so that kpmcore would not build on Alpha until such time
as the build-deps can be fixed.  As it is, an updated version of the
build-deps are now available on Alpha so please re-enable the
packaging of libkpmcore6 in the build of kpmcore on Alpha.

Thanks,
Michael.

[1] 
https://buildd.debian.org/status/fetch.php?pkg=kpmcore=alpha=3.2.1-2=1509942961=0
--- End Message ---
--- Begin Message ---
Source: kpmcore
Source-Version: 3.2.1-3

We believe that the bug you reported is fixed in the latest version of
kpmcore, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 881...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Jonathan Carter  (supplier of updated kpmcore package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 13 Nov 2017 09:29:00 +0200
Source: kpmcore
Binary: libkpmcore6 libkpmcore-dev
Architecture: source amd64
Version: 3.2.1-3
Distribution: unstable
Urgency: medium
Maintainer: Debian KDE Extras Team 
Changed-By: Jonathan Carter 
Description:
 libkpmcore-dev - KDE Partition Manager Core development files
 libkpmcore6 - KDE Partition Manager Core
Closes: 881031 881497
Changes:
 kpmcore (3.2.1-3) unstable; urgency=medium
 .
   * Revert target architectures to linux-any
 (Closes: #881497, #881031)
Checksums-Sha1:
 6dfad458b39ea027ad448d08746eb7646508b22b 2237 kpmcore_3.2.1-3.dsc
 51addb464fd7a6393361b42813fff6cf6e5d6085 10612 kpmcore_3.2.1-3.debian.tar.xz
 27d55595204c8346e6e593ea0f06b26c10ded4c5 19830 kpmcore_3.2.1-3_amd64.buildinfo
 041fe6fbd0b1a02354eb35adaf1bd43d5b141e8e 35244 libkpmcore-dev_3.2.1-3_amd64.deb
 d96673793991536dfff4b9b6c6f7cdb151bf5576 8788944 
libkpmcore6-dbgsym_3.2.1-3_amd64.deb
 c5b477f669af47c7ebfaa22effbac348090e312d 287560 libkpmcore6_3.2.1-3_amd64.deb
Checksums-Sha256:
 84445632f97b11a6aee99c48f2a275188cfff95ac3d45ac73818d3fcfa9b29d1 2237 
kpmcore_3.2.1-3.dsc
 3ee198e2844013db22d78fdc76a95e20079ac5fdeccaf7b4cdff4f3b97ebe60e 10612 
kpmcore_3.2.1-3.debian.tar.xz
 11b4f05ec0a527652a3e181eee95fe0277ee343f8dfa338924a23bb30c8695ac 19830 
kpmcore_3.2.1-3_amd64.buildinfo
 264cc2ee60d45b29b032476102344ebe5b2509aac1bc210b54ecbb48b4eb770f 35244 
libkpmcore-dev_3.2.1-3_amd64.deb
 8f23c947b02c68f5f1f3ae782eb91108d2142f65b6db9cb00ceb0aba594ab0b4 8788944 
libkpmcore6-dbgsym_3.2.1-3_amd64.deb
 47227c8260b38165d0f410515d858e6085896ab7d12a526724839875c9b0855b 287560 
libkpmcore6_3.2.1-3_amd64.deb
Files:
 3462843abd4030f85a067e88c36e44ea 2237 libs optional kpmcore_3.2.1-3.dsc
 9ce4bc35a0ce11a0912a2d9a32935dc5 10612 libs optional 
kpmcore_3.2.1-3.debian.tar.xz
 84a8e75e881f26d4102d25b7e905e28c 19830 libs optional 
kpmcore_3.2.1-3_amd64.buildinfo
 44d76d8da8f7ab7ab4166cd53357dc83 35244 libdevel optional 
libkpmcore-dev_3.2.1-3_amd64.deb
 8ebcfefeeb96a409acb182857dae0325 8788944 debug optional 
libkpmcore6-dbgsym_3.2.1-3_amd64.deb
 a88f326785c669f7d430d537ad9163ce 287560 libs optional 
libkpmcore6_3.2.1-3_amd64.deb

-BEGIN PGP SIGNATURE-

iQJDBAEBCgAtFiEExyA8CpIGcL+U8AuxsB0acqyNyaEFAloJS6EPHGpjY0BkZWJp
YW4ub3JnAAoJELAdGnKsjcmho8IP/3Q5hSnBJLXg+c9u1SHhnMU1ORhkbNFf5aVt

[Pkg-kde-extras] kpmcore_3.2.1-3_amd64.changes ACCEPTED into unstable

[Debian FTP Masters]

Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Mon, 13 Nov 2017 09:29:00 +0200
Source: kpmcore
Binary: libkpmcore6 libkpmcore-dev
Architecture: source amd64
Version: 3.2.1-3
Distribution: unstable
Urgency: medium
Maintainer: Debian KDE Extras Team 
Changed-By: Jonathan Carter 
Description:
 libkpmcore-dev - KDE Partition Manager Core development files
 libkpmcore6 - KDE Partition Manager Core
Closes: 881031 881497
Changes:
 kpmcore (3.2.1-3) unstable; urgency=medium
 .
   * Revert target architectures to linux-any
 (Closes: #881497, #881031)
Checksums-Sha1:
 6dfad458b39ea027ad448d08746eb7646508b22b 2237 kpmcore_3.2.1-3.dsc
 51addb464fd7a6393361b42813fff6cf6e5d6085 10612 kpmcore_3.2.1-3.debian.tar.xz
 27d55595204c8346e6e593ea0f06b26c10ded4c5 19830 kpmcore_3.2.1-3_amd64.buildinfo
 041fe6fbd0b1a02354eb35adaf1bd43d5b141e8e 35244 libkpmcore-dev_3.2.1-3_amd64.deb
 d96673793991536dfff4b9b6c6f7cdb151bf5576 8788944 
libkpmcore6-dbgsym_3.2.1-3_amd64.deb
 c5b477f669af47c7ebfaa22effbac348090e312d 287560 libkpmcore6_3.2.1-3_amd64.deb
Checksums-Sha256:
 84445632f97b11a6aee99c48f2a275188cfff95ac3d45ac73818d3fcfa9b29d1 2237 
kpmcore_3.2.1-3.dsc
 3ee198e2844013db22d78fdc76a95e20079ac5fdeccaf7b4cdff4f3b97ebe60e 10612 
kpmcore_3.2.1-3.debian.tar.xz
 11b4f05ec0a527652a3e181eee95fe0277ee343f8dfa338924a23bb30c8695ac 19830 
kpmcore_3.2.1-3_amd64.buildinfo
 264cc2ee60d45b29b032476102344ebe5b2509aac1bc210b54ecbb48b4eb770f 35244 
libkpmcore-dev_3.2.1-3_amd64.deb
 8f23c947b02c68f5f1f3ae782eb91108d2142f65b6db9cb00ceb0aba594ab0b4 8788944 
libkpmcore6-dbgsym_3.2.1-3_amd64.deb
 47227c8260b38165d0f410515d858e6085896ab7d12a526724839875c9b0855b 287560 
libkpmcore6_3.2.1-3_amd64.deb
Files:
 3462843abd4030f85a067e88c36e44ea 2237 libs optional kpmcore_3.2.1-3.dsc
 9ce4bc35a0ce11a0912a2d9a32935dc5 10612 libs optional 
kpmcore_3.2.1-3.debian.tar.xz
 84a8e75e881f26d4102d25b7e905e28c 19830 libs optional 
kpmcore_3.2.1-3_amd64.buildinfo
 44d76d8da8f7ab7ab4166cd53357dc83 35244 libdevel optional 
libkpmcore-dev_3.2.1-3_amd64.deb
 8ebcfefeeb96a409acb182857dae0325 8788944 debug optional 
libkpmcore6-dbgsym_3.2.1-3_amd64.deb
 a88f326785c669f7d430d537ad9163ce 287560 libs optional 
libkpmcore6_3.2.1-3_amd64.deb

-BEGIN PGP SIGNATURE-
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=4UvF
-END PGP SIGNATURE-


Thank you for your contribution to Debian.

___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras

[Pkg-kde-extras] Bug#881497: missing shared library

[Matthias Klose]

why is the -dev package linux-any, and the shared library specific to certain
architectures? both should be the same.

___
pkg-kde-extras mailing list
pkg-kde-extras@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-kde-extras