Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4ea426a6 by Daniel Leidert at 2024-05-21T00:30:24+02:00
Add note for runc
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
56997afc by Daniel Leidert at 2024-05-21T00:29:23+02:00
LTS: claim runc in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla
Am Sonntag, dem 19.05.2024 um 21:16 +0200 schrieb
bernd@mailbox.org:
[..]
> meine Frau möchte sich demnächst einen neuen Laptop kaufen, weil der
> alte (ThinkPad T570) so langsam sonderbare alterschwache
> Erscheinungen aufweist.
[..]
> Könnt ihr mir einen Tip geben für einen alternativen
Can this *please* finally be fixed asap? This has been known for more
than two months now, and even before the official release of Ubuntu
24.04 LTS had been made. How this issue is handled for the LTS release
is becoming quite a source of frustration.
--
You received this bug notification
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
74f84053 by Daniel Leidert at 2024-05-10T13:47:33+02:00
LTS: claim dnsmasq in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data
Hi,
I was examining and working on multiple packages in April.
I continued working on the upload of dnsmasq for Buster and continued
testing the complex updates.
I also started working on h2o for Buster and runc for Bullseye.
While I checked some of the packages in the TODO list, I researched
Hi Monika,
Am Freitag, dem 03.05.2024 um 14:14 +0200 schrieb Monika Keil:
>
> ich möchte einen im Büro stehenden PC (OpenSuse Leap 15.5) aus dem
> HomeOffice anschalten und wieder ausschalten können. Das Anschalten
> klappt mittlerweile per WakeOnLan - das Ausschalten leider nicht ohne
>
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
63ccc448 by Daniel Leidert at 2024-04-30T01:07:27+02:00
LTS: claim runc in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6e63d00b by Daniel Leidert at 2024-04-30T01:06:46+02:00
LTS: release claim on runc in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
92dbe571 by Daniel Leidert at 2024-04-30T01:05:10+02:00
CVE-2023-25809 does not affect Buster
The code is not present and seems to be in the code handling cgroup2 mounts.
That code was added later
Package: remmina
Version: 1.4.35+dfsg-1+b1
Severity: serious
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi,
when I try to connect to a windows (11) system, I get errors saying something
like "check security protocol negotiation". When I set it the security protocol
negotiation to automatic
Package: remmina
Version: 1.4.35+dfsg-1+b1
Severity: serious
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi,
when I try to connect to a windows (11) system, I get errors saying something
like "check security protocol negotiation". When I set it the security protocol
negotiation to automatic
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
29e4090e by Daniel Leidert at 2024-04-22T11:14:46+02:00
LTS: claim h2o in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6d218e0c by Daniel Leidert at 2024-04-22T10:49:10+02:00
LTS: claim runc in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
edd60855 by Daniel Leidert at 2024-04-07T23:33:37+02:00
Add patch link for CVE-2021-41089
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d0a41abf by Daniel Leidert at 2024-04-07T22:37:43+02:00
Update findings for CVE-2023-49288
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0aed7153 by Daniel Leidert at 2024-04-07T22:35:32+02:00
LTS: release claim on docker.io in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1c2cea8e by Daniel Leidert at 2024-04-07T21:03:13+02:00
LTS: claim docker.io in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8ea09c58 by Daniel Leidert at 2024-04-07T20:34:27+02:00
Add Link to PR for CVE-2023-49288
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9b4e7834 by Daniel Leidert at 2024-04-07T20:16:49+02:00
Add notes regarding fix from 3.6.2+dfsg-23
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b738fe72 by Daniel Leidert at 2024-04-07T20:13:21+02:00
LTS: release claim on lucene-solr in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
79cce308 by Daniel Leidert at 2024-04-07T19:29:03+02:00
LTS: claim lucene-solr in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Am Freitag, dem 29.03.2024 um 23:20 +0100 schrieb Moritz Mühlenhoff:
> Russ Allbery wrote:
> > I think this question can only be answered with reverse-engineering of the
> > backdoors, and I personally don't have the skills to do that.
>
> In the pre-disclosure discussion permission was asked to
Hi,
I was working on three packages this month.
For pdns-recursor in Buster, I added patches for CVE-2020-14196 and
CVE-2020-25829. Unfortunately, the upload is currently still blocked by
#1067124. Thus, no DLA has been issued yet.
I also prepared patches for dnsmasq in Buster to fix
Hi,
I would like to send a ping. If this was fixed, I could upload the
pdns-recursor to Buster LTS. Your help is appreciated.
Regards, Daniel
signature.asc
Description: This is a digitally signed message part
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4e51613f by Daniel Leidert at 2024-03-19T01:10:02+01:00
Add note regarding #1067124
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla
Package: ftp.debian.org
Severity: important
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
I tried to upload pdns-recursor_4.1.11-1+deb10u2 to buster-security as part of
LTS, but it failed with:
pdns-recursor_4.1.11-1+deb10u2_amd64.deb: Built-Using refers to non-existing
source package
Am Dienstag, dem 12.03.2024 um 07:53 +0100 schrieb Luca Bertoncello:
>
[..]
> Hier die Funktion mit dem Problem:
>
> GPIO.setup(speakerPIN, GPIO.OUT)
> GPIO.setup(key2PIN, GPIO.IN, pull_up_down = GPIO.PUD_UP)
> GPIO.setup(key3PIN, GPIO.IN, pull_up_down = GPIO.PUD_UP)
>
Hi Ola,
Am Sonntag, dem 10.03.2024 um 23:03 +0100 schrieb Ola Lundqvist:
>
> I was about to remove runc from dla-needed but since Adrian sent out
> a question email about the removal I thought one more time. (I'm
> trying to learn from my mistakes) :-)
>
> I'm getting a little confused about
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ca2afd5e by Daniel Leidert at 2024-03-09T03:07:36+01:00
Add patch links for pdns-recursor
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d8b5f519 by Daniel Leidert at 2024-03-09T02:11:19+01:00
LTS: claim pdns-recursor in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
008b7da4 by Daniel Leidert at 2024-03-07T22:59:10+01:00
LTS: claim dnsmasq in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data
Hi,
I was working mostly on runc this month, backporting the patches to fix
and harden runc in Buster against CVE-2021-43784 and CVE-2024-21626,
issueing DLA 3735-1.
I also prepared the same patchset for runc for ELTS because it seemed
that the version from Buster had been uploaded to Stretch.
Am Montag, dem 19.02.2024 um 07:11 +0100 schrieb Salvatore Bonaccorso:
[..]
> > Debian LTS Advisory DLA-3735-1
[..]
> The DLA reservation for this update in data/DLA/list seems missing,
> can you push the changes there? Otherwise there is potential that
> there will be a
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
77e961eb by Daniel Leidert at 2024-02-19T03:04:51+01:00
Reserve DLA-3735-1 for runc
- - - - -
f20527be by Daniel Leidert at 2024-02-19T10:47:42+01:00
Merge branch master
-
Debian LTS Advisory DLA-3735-1debian-...@lists.debian.org
https://www.debian.org/lts/security/ Daniel Leidert
February 19, 2024 https://wiki.debian.org/LTS
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9668367c by Daniel Leidert at 2024-02-12T01:50:37+01:00
LTS: release claim on cairosvg in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1e881489 by Daniel Leidert at 2024-02-12T00:18:23+01:00
LTS: claim cairosvg in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data
Hi,
I'm currently in the process of backporting the runc patches to fix
CVE-2024-21626. I have issues with this patch:
https://github.com/opencontainers/runc/commit/284ba3057e428f8d6c7afcc3b0ac752e525957df
second, but unrelated part of this patch is:
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2a2421cc by Daniel Leidert at 2024-02-08T23:43:01+01:00
Add note for runc claim
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
43c22611 by Daniel Leidert at 2024-02-05T16:41:27+01:00
LTS: claim runc in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla
Hi,
I was working solely on asyncssh this month, backporting the patches
for CVE-2023-46445, CVE-2023-46446, and CVE-2023-48795; finally
uploading 1.12.2-1+deb10u1 with the fix for CVE-2023-48795, issueing
DLA 3730-1.
The patches for CVE-2023-46445 and CVE-2023-46446 have been backported
and
-
Debian LTS Advisory DLA-3730-1 debian-...@lists.debian.org
https://www.debian.org/lts/security/ Daniel Leidert
February 01, 2024 https://wiki.debian.org/LTS
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c8aa42ac by Daniel Leidert at 2024-02-01T01:00:11+01:00
Reserve DLA-3730-1 for python-asyncssh
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d85c571e by Daniel Leidert at 2024-01-29T00:51:38+01:00
Add node
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Control: tag -1 pending
Hello,
Bug #1055999 in python-asyncssh reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ebd4178e by Daniel Leidert at 2024-01-23T04:09:56+01:00
Add note regarding current status
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
63a68d30 by Daniel Leidert at 2024-01-17T22:50:56+01:00
Claim python-asyncssh
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Package: hw-probe
Version: 1.6.5-1
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
The package recommends mcelog and pnputils. Both of these do not exist in
Debian. rmadison doesn't show any installation candidates at all. mcelog had
been removed in 2018, pnputils even in 2012.
Source: firmware-misc-nonfree
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
The file i915/mtl_huc_gsc.bin is part of the source. However, it is not shipped
and leads to the usual:
W: Possible missing firmware /lib/firmware/i915/mtl_huc_gsc.bin for module i915
I wonder if it
Am Freitag, dem 15.12.2023 um 17:39 +0100 schrieb ro...@seffner.de:
>
> ich habe hier einen Server im RZ (komme also physisch nicht ran), der
> nach "etwas" (sagen wir mal halbe Stunde) Laufzeit den reboot nicht
> schafft. Mir scheint, er bleibt im shutdown hängen.
Ich habe auch ein paar Systeme
Package: ansible
Version: 7.7.0+dfsg-3
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
When trying to use the community.general.ssh_config module, I receive:
An exception occurred during task execution. To see the full traceback, use
- -vvv. The error was: ModuleNotFoundError:
Package: vmdb2
Version: 0.28-1
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
I have a chached rootfs. Here the snippet from the .vmdb2 file:
- mount: /
- unpack-rootfs: /
- debootstrap: bookworm
target: /
mirror: https://deb.debian.org/debian
arch: amd64
Package: prospector
Version: 1.1.7-4
Severity: serious
X-Debbugs-Cc: daniel.leid...@ext.secunet.com
The package declares a dependency on python3-typed-ast. However, due to
#1051802, this package is no longer available. It is my understanding that
python3-typed-ast has been superseeded by the
Package: prospector
Version: 1.1.7-4
Severity: serious
X-Debbugs-Cc: daniel.leid...@ext.secunet.com
The package declares a dependency on python3-typed-ast. However, due to
#1051802, this package is no longer available. It is my understanding that
python3-typed-ast has been superseeded by the
Package: nvidia-vulkan-icd
Version: 525.125.06-2
Severity: minor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi,
the package vulkan-utils does not exist (anymore). Please remove the suggestion
or replace it by vulkan-tools.
Regards, Daniel
- -- Package-specific info:
uname -a:
Linux
Package: network-manager-openconnect-gnome
Version: 1.2.10-1
Severity: serious
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hello,
I have existing network-manager profiles for openconnect (anyconnect) and I try
to create new ones. If I want to create a new profile, the dialog appears, but
Package: network-manager-openconnect-gnome
Version: 1.2.10-1
Severity: serious
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hello,
I have existing network-manager profiles for openconnect (anyconnect) and I try
to create new ones. If I want to create a new profile, the dialog appears, but
Package: vmdb2
Version: 0.27+really.0.26-1
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
The images I built in the past started very quickly. In a recent Image based on
Debian Bookworm, the boot process needs several minutes. The `systemd-analyze
blame` command shows over 4
Hi,
hier lesen meines Wissens einige Netzwerkadmins mit. Vielleicht habt
ihr eine Idee, womit die folgenden Probleme zusammenhängen können.
Ich betreibe meinen eigenen Gitlab-Server bei Hetzner und baue dort
Images (raw, VDI, VMDK, etc. mit mind 2 GB) und stelle diese als Build-
Artefakte zum
Ping?
Am Donnerstag, dem 20.07.2023 um 00:44 +0200 schrieb Daniel Leidert:
> Hi,
>
> I'd like to join the team. I've packaged and uploaded python-keycloak
> recently, and I would like to maintain it under the team's umbrealla.
> I've read the policy and my salsa hand
Am Donnerstag, dem 27.07.2023 um 13:01 +0200 schrieb
ottmar-schm...@web.de:
> Hallo Frunde,
>
> ich habe ein spezielles Problemchen. Ein Fujitsu Lifebook Da war
> irgend ne Linux Distri auf einer kleinen Platte drauf. ich hab ne
> andere Platte eingebaut und Debian draufgenagelt. Danach hatte
Package: open-vm-tools-containerinfo
Version: 2:12.2.5-1
Severity: minor
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
The postinst throws this warning:
open-vm-tools-containerinfo (2:12.2.5-1) [..]
Unknown option: q
inactive
The -q switch used does not exist. The output ćan be redirected to
Package: debhelper
Version: 13.11.4
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
I have a native package source from which I build multiple binary packages. The
files are organized as they would be on the target system with their full
destination path. As an example, the
Hi,
I'd like to join the team. I've packaged and uploaded python-keycloak
recently, and I would like to maintain it under the team's umbrealla.
I've read the policy and my salsa handle is "dleidert".
Regards, Daniel
Package: firmware-misc-nonfree
Version: 20230515-2
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
The file dg2_huc_gsc.bin is part of the source, but it is not shipped as part
of firmware-misc-nonfree. I cannot find any reason, why it is not packaged as
well. So I wonder if
Package: firmware-misc-nonfree
Version: 20230515-2
Severity: normal
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
The file dg2_huc_gsc.bin is part of the source, but it is not shipped as part
of firmware-misc-nonfree. I cannot find any reason, why it is not packaged as
well. So I wonder if
Package: simple-cdd
Version: 0.6.9
Severity: important
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
With debian-cd 3.2.0, simple-cdd fails to create an installer image with the
following errors:
2023-04-24 03:07:41 ERROR build/debian-cd exited with code 2
2023-04-24 03:07:41 ERROR Last 5
Am Dienstag, dem 18.04.2023 um 17:23 +0200 schrieb Luca Bertoncello:
> Am 18.04.2023 um 13:11 schrieb Daniel Leidert:
>
> > Meine Rechner laufen mit Asus Mainboards (allerdings Mini-ITX), u.a.
> > P11C-I und Xeon 2200 (bis zu 8 Kerne/16 Threads) sowie ASUS ROG Strix
> >
Hi Luca,
Am Montag, dem 17.04.2023 um 18:42 +0200 schrieb Luca Bertoncello:
> >
> > Mein aktueller Rechner ist ziemlich alt und ich würde demnächst
> > eine
> > Aktualisierung planen...
[..]
> > 9) (Achtung, Überraschung!) 100% mit Linux kompatibel
Ich habe lange nichts mehr gesehen, was nicht
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e18a76b3 by Daniel Leidert at 2023-04-11T16:23:15+02:00
Claim cairosvg
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Hi,
Am Mittwoch, dem 29.03.2023 um 18:42 +0200 schrieb Dominique Dumont:
>
> Turns out that Perl module Net::SMTP supports SSL since 2014 [1], but
> bts still use Net::SMTPS which is an old wrapper around Net::SMTP.
>
> I've patched bts to use Net::SMTP instead of Net::STMPS and I can
> connect
Hi,
Am Mittwoch, dem 29.03.2023 um 18:42 +0200 schrieb Dominique Dumont:
>
> Turns out that Perl module Net::SMTP supports SSL since 2014 [1], but
> bts still use Net::SMTPS which is an old wrapper around Net::SMTP.
>
> I've patched bts to use Net::SMTP instead of Net::STMPS and I can
> connect
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7071cbce by Daniel Leidert at 2023-04-03T17:47:38+02:00
Re-claim
The package is prepared and waiting for ruby-rails-html-sanitizer to be
prepared,
which utkarsh announced to be doing
Hey Utkarsh,
Am Freitag, dem 17.03.2023 um 01:23 +0100 schrieb Daniel Leidert:
> Am Freitag, dem 17.03.2023 um 04:58 +0530 schrieb Utkarsh Gupta:
[..]
>
> > I could do a thorough review of your patches if you'd like?
>
> Sure, please do so.
Any news about this?
Regards, Daniel
Am Freitag, dem 17.03.2023 um 04:58 +0530 schrieb Utkarsh Gupta:
> On Thu, Mar 16, 2023 at 7:06 PM Utkarsh Gupta
> wrote:
> > Please hold off on the update for a while. I have something to add wrt
> > ruby-rails-html-sanitizer. I just haven't had the time to write it
> > down, I'll get back in
Am Mittwoch, dem 15.03.2023 um 21:19 +0530 schrieb Pirate Praveen:
> On Mon, 13 Mar 2023 23:17:02 +0530 Mohd Bilal
> wrote:
> > Hello,
> >
> > The upstream[1] for ruby-github-api has been inactive for over 2 years
> > now and this is affecting other packages like ruby-oauth2[2] and
> >
Am Mittwoch, dem 15.03.2023 um 21:19 +0530 schrieb Pirate Praveen:
> On Mon, 13 Mar 2023 23:17:02 +0530 Mohd Bilal
> wrote:
> > Hello,
> >
> > The upstream[1] for ruby-github-api has been inactive for over 2 years
> > now and this is affecting other packages like ruby-oauth2[2] and
> >
Am Mittwoch, dem 15.03.2023 um 21:19 +0530 schrieb Pirate Praveen:
> On Mon, 13 Mar 2023 23:17:02 +0530 Mohd Bilal
> wrote:
> > Hello,
> >
> > The upstream[1] for ruby-github-api has been inactive for over 2 years
> > now and this is affecting other packages like ruby-oauth2[2] and
> >
Am Mittwoch, dem 15.03.2023 um 12:34 +0100 schrieb Emilio Pozuelo
Monfort:
[..]
> >
> > What do you think? I wonder if that is an acceptable change?
>
> Without looking in detail, my question would be:
>
> Is the output change likely to cause issues to loofah users? If not, then
> keep
> the
Am Dienstag, dem 14.03.2023 um 11:34 +0100 schrieb Daniel Leidert:
> Am Dienstag, dem 14.03.2023 um 06:11 +0100 schrieb Anton Gladky:
>
>
[..]
> > 3) Please check, why piuparts is failing on CI.
>
> I have already yesterday, and I wasn't able to reproduce that (the log
>
Hi Anton,
thanks for your feedback.
Am Dienstag, dem 14.03.2023 um 06:11 +0100 schrieb Anton Gladky:
> Hi Daniel,
>
> congratulations on your first update!
>
> Some notes:
>
> 1) to be consistent with all other updates please do not add the suffix
> in the version number
I'm not quite sure
Hi there,
I prepared my first LTS update. You can find it here:
https://salsa.debian.org/lts-team/packages/ruby-loofah
When I ran some test cases to see if all the vulnerabilities are fixed,
I discovered that there is a slight behavioral change:
As part of the fix for CVE-2022-23516, loofah
Daniel Leidert pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
366bf573 by Daniel Leidert at 2023-03-13T22:26:09+01:00
Reclaim ruby-loofah
(thanks to Chris for contacting me)
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Hi Chris,
Am Montag, dem 13.03.2023 um 16:29 + schrieb Chris Lamb:
> Hi Daniel,
>
> After being unclaimed through inactivity, I took over the claim for
> ruby-loofah in data/dla-needed.txt. However, I've just noticed that
> you have already authored and prepared some patches in the Git repo,
Package: vmdb2
Version: 0.26-2
Severity: important
Tags: patch
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi,
I recently started to receive errors when building images using the ansible
directive:
DEBUG STDERR: ERROR: Ansible requires the locale encoding to be UTF-8; Detected
None.
Booting an older kernel/initrd and then downgrading libargon2-1 to the
version in Testing and updating the initrd resolves the situation for
now. Thanks to Kai and Guilhem.
Regards, Daniel
signature.asc
Description: This is a digitally signed message part
Booting an older kernel/initrd and then downgrading libargon2-1 to the
version in Testing and updating the initrd resolves the situation for
now. Thanks to Kai and Guilhem.
Regards, Daniel
signature.asc
Description: This is a digitally signed message part
Am Sonntag, dem 26.02.2023 um 21:36 +0200 schrieb Adrian Bunk:
> On Sun, Feb 26, 2023 at 07:09:59PM +0100, Daniel Leidert wrote:
> > Am Sonntag, dem 26.02.2023 um 19:45 +0200 schrieb Adrian Bunk:
> > >
> > [..]
> > > Debian Policy §4.9 says that *a
Am Sonntag, dem 26.02.2023 um 21:36 +0200 schrieb Adrian Bunk:
> On Sun, Feb 26, 2023 at 07:09:59PM +0100, Daniel Leidert wrote:
> > Am Sonntag, dem 26.02.2023 um 19:45 +0200 schrieb Adrian Bunk:
> > >
> > [..]
> > > Debian Policy §4.9 says that *a
Am Sonntag, dem 26.02.2023 um 19:45 +0200 schrieb Adrian Bunk:
>
[..]
> Debian Policy §4.9 says that *attempting* to access the internet
> is forbidden:
>
> For packages in the main archive, required targets must not attempt
> network access, except, via the loopback interface, to services
Am Sonntag, dem 26.02.2023 um 16:57 +0200 schrieb Adrian Bunk:
> On Sun, Feb 26, 2023 at 03:47:49PM +0100, Daniel Leidert wrote:
> > Am Samstag, dem 25.02.2023 um 16:15 +0200 schrieb Adrian Bunk:
> >
> > [..]
> > > FYI:
> > >
> > > The packag
Am Sonntag, dem 26.02.2023 um 16:57 +0200 schrieb Adrian Bunk:
> On Sun, Feb 26, 2023 at 03:47:49PM +0100, Daniel Leidert wrote:
> > Am Samstag, dem 25.02.2023 um 16:15 +0200 schrieb Adrian Bunk:
> >
> > [..]
> > > FYI:
> > >
> > > The packag
Am Sonntag, dem 26.02.2023 um 16:57 +0200 schrieb Adrian Bunk:
> On Sun, Feb 26, 2023 at 03:47:49PM +0100, Daniel Leidert wrote:
> > Am Samstag, dem 25.02.2023 um 16:15 +0200 schrieb Adrian Bunk:
> >
> > [..]
> > > FYI:
> > >
> > > The packag
Am Samstag, dem 25.02.2023 um 16:15 +0200 schrieb Adrian Bunk:
[..]
> FYI:
>
> The package in bookworm builds with jekyll-github-metadata 2.15.0:
> https://tests.reproducible-builds.org/debian/rb-pkg/bookworm/amd64/ruby-jekyll-remote-theme.html
> (the buildinfo link has the complete package
Am Samstag, dem 25.02.2023 um 16:15 +0200 schrieb Adrian Bunk:
[..]
> FYI:
>
> The package in bookworm builds with jekyll-github-metadata 2.15.0:
> https://tests.reproducible-builds.org/debian/rb-pkg/bookworm/amd64/ruby-jekyll-remote-theme.html
> (the buildinfo link has the complete package
Am Samstag, dem 25.02.2023 um 16:15 +0200 schrieb Adrian Bunk:
[..]
> FYI:
>
> The package in bookworm builds with jekyll-github-metadata 2.15.0:
> https://tests.reproducible-builds.org/debian/rb-pkg/bookworm/amd64/ruby-jekyll-remote-theme.html
> (the buildinfo link has the complete package
Source: ruby-jekyll-remote-theme
Version: 0.4.3-3
Severity: serious
Forwarded:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
The package fails to build right now with jekyll-github-metadata 2.15.0. The
culprit seems to be
Source: ruby-jekyll-remote-theme
Version: 0.4.3-3
Severity: serious
Forwarded:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
The package fails to build right now with jekyll-github-metadata 2.15.0. The
culprit seems to be
Source: ruby-jekyll-remote-theme
Version: 0.4.3-3
Severity: serious
Forwarded:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
The package fails to build right now with jekyll-github-metadata 2.15.0. The
culprit seems to be
1 - 100 of 5678 matches
Mail list logo