: #1061045
+Fix more timing side-channel inside RSA-PSK key exchange. CVE-2024-0553
+GNUTLS-SA-2024-01-14 Closes: #1061046
+
+ -- Andreas Metzler Sat, 20 Jan 2024 07:56:15 +0100
+
gnutls28 (3.7.1-5+deb11u4) bullseye; urgency=medium
* Backport fix for CVE-2023-5981 / GNUTLS-SA-2023-10-23
Closes: #1061046
+
+ -- Andreas Metzler Fri, 19 Jan 2024 18:28:37 +0100
+
gnutls28 (3.7.9-2+deb12u1) bookworm; urgency=medium
* Backport fix for CVE-2023-5981 / GNUTLS-SA-2023-10-23 (timing sidechannel
diff -Nru gnutls28-3.7.9/debian/patches/61-x509-detect-loop-in-certificate-chain.patch
Closes: #1061046
+
+ -- Andreas Metzler Fri, 19 Jan 2024 18:28:37 +0100
+
gnutls28 (3.7.9-2+deb12u1) bookworm; urgency=medium
* Backport fix for CVE-2023-5981 / GNUTLS-SA-2023-10-23 (timing sidechannel
diff -Nru gnutls28-3.7.9/debian/patches/61-x509-detect-loop-in-certificate-chain.patch
Hello,
do you plan/would you rather fix these two issues (CVE-2024-0567 and
CVE-2024-0553) by DSA or should I go for a (old)stable update?
TIA, cu Andreas
--
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'
On 2015-12-15 "Eugene V. Lyubimkin" wrote:
> Package: wnpp
> Severity: normal
> Hello,
> I request an adopter for the fbreader package, since I don't use it
> actively anymore.
[...]
fbreader upstream has switched their business/mainainance model ages
ago, it not free software, not even open
On 2015-12-15 "Eugene V. Lyubimkin" wrote:
> Package: wnpp
> Severity: normal
> Hello,
> I request an adopter for the fbreader package, since I don't use it
> actively anymore.
[...]
fbreader upstream has switched their business/mainainance model ages
ago, it not free software, not even open
Control: reopen 1014058
Control: retitle 1014058 exim4-daemon-heavy: please compile with DMARC support
On 2023-03-23 Jämes Ménétrey wrote:
> Dear Marc,
> I am reaching out to you back regarding the wishlist item that was
> mistakenly flagged as a duplicate and subsequently closed.
> Indeed,
On 2024-01-11 bi...@debian.org wrote:
> Source: efl
> Version: 1.27.0-1
> Severity: normal
> User: pkg-systemd-maintain...@lists.alioth.debian.org
> Usertags: systemd-dev
> Hi,
> your package efl declares a Build-Depends on systemd and/or udev.
> In most cases, this build dependency is added to
On 2024-01-11 Giuseppe Sacco wrote:
> Package: exim4-daemon-heavy
> Version: 4.96-15+deb12u4
> Severity: normal
> File: /usr/sbin/exim4
> Dear Maintainer,
> I keep finding many messages like this one in paniclog:
> 2024-01-11 09:55:20 1rNqqH-008cnX-0s SIGSEGV (fault address: 0x58)
> 2024-01-11
On 2023-12-16 Fernando Toledo wrote:
> Package: libk5crypto3
> Version: 1.18.3-6+deb11u3
> Severity: important
> Dear Maintainer,
> running apt upgrade on debian 11
> root@scarlet:~# LANG=C apt upgrade
[...]
> dpkg: error processing archive
>
On 2024-01-03 Andrew C Aitchison via Exim-dev wrote:
[...]
> Do we know whether PCRE2 is 64-bit clean?
Pcre2 was released end of 2015 whixch was more than ten years after the
indroduction of amd64. At this time 64bit was already the norm. It is
very unlikely that Pcre2 has more bugs that show up
On 2024-01-01 Salvatore Bonaccorso wrote:
> On Mon, Jan 01, 2024 at 04:45:24PM +0100, Andreas Metzler wrote:
[...]
> > I have prepared updates for either DSA or stable update. (I will be on my
> > dayjob again tomorrow, so I will not be that responsive on workdays.)
> Hap
ood friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'
>From ae3c47947917673912c89bf59226f9d205466534 Mon Sep 17 00:00:00 2001
From: Andreas Metzler
Date: Sun, 31 Dec 2023 16:44:13 +0100
Subject: [PATCH] CVE-2023-51766 fix
Co
On 2006-08-17 Nigel Williams wrote:
> Here's another fix for the bug, this time against the unstable
> version.
[...]
Hello Nigel,
could you please doublecheck whether the problem is still present in
recent (11.x) versions?
cu Andreas
--
`What a good friend you are to him, Dr. Maturin. His
On 2006-08-17 Nigel Williams wrote:
> Here's another fix for the bug, this time against the unstable
> version.
[...]
Hello Nigel,
could you please doublecheck whether the problem is still present in
recent (11.x) versions?
cu Andreas
--
`What a good friend you are to him, Dr. Maturin. His
On 2005-08-26 Nigel Williams wrote:
> Package: netpbm
> Version: 2:10.0-8
> Severity: normal
> The following sequence of commands should result in an identical bitmap,
> but does not. It has a small vertical black bar in it.
> ---
> pngtopnm yellow_red_gradient.png > x.pnm
> pngtopnm -alpha
On 2005-08-26 Nigel Williams wrote:
> Package: netpbm
> Version: 2:10.0-8
> Severity: normal
> The following sequence of commands should result in an identical bitmap,
> but does not. It has a small vertical black bar in it.
> ---
> pngtopnm yellow_red_gradient.png > x.pnm
> pngtopnm -alpha
On 2005-04-02 Michelle Konzack wrote:
> Package: netpbm
> Version: 2:10.0-8
> Severity: wishlist
> Hello Andreas,
> please add the 'ppmsvgalib' to the package. I do not like to
> compile the packages each time my self by modifiing Makefiles.
> And while working on console and with scripts,
On 2005-04-02 Michelle Konzack wrote:
> Package: netpbm
> Version: 2:10.0-8
> Severity: wishlist
> Hello Andreas,
> please add the 'ppmsvgalib' to the package. I do not like to
> compile the packages each time my self by modifiing Makefiles.
> And while working on console and with scripts,
On 2023-12-30 Salvatore Bonaccorso wrote:
> On Sat, Dec 30, 2023 at 03:40:42PM +0100, Andreas Metzler wrote:
> > are you going to release a DSA (I can start preparing one) or should I
> > aim for another stable update?
> We certainly can do. We have not fully evaluat
On 2023-12-24 Salvatore Bonaccorso wrote:
> Source: exim4
> Version: 4.97-2
> Severity: important
> Tags: security upstream
> Forwarded: https://bugs.exim.org/show_bug.cgi?id=3063
[...]
> The following vulnerability was published for exim4.
> CVE-2023-51766[0]:
> | Exim through 4.97 allows SMTP
On 2023-04-25 Michael Deegan wrote:
> Package: hugin
> Version: 2022.0.0+dfsg-2
> Followup-For: Bug #1023954
> Hello,
> I can confirm this bug still also occurs with 2022.0.0+dfsg-2.
> I'm currently using dcraw as converter of choice (as having to close
> Darktable each time I want to import
On 2023-04-25 Michael Deegan wrote:
> Package: hugin
> Version: 2022.0.0+dfsg-2
> Followup-For: Bug #1023954
> Hello,
> I can confirm this bug still also occurs with 2022.0.0+dfsg-2.
> I'm currently using dcraw as converter of choice (as having to close
> Darktable each time I want to import
Control: tags -1 wontfix
On 2023-12-16 Athanasius wrote:
> Package: exim4
> Version: 4.96-15+deb12u3
> Severity: wishlist
> Dear Maintainer,
> Given Google's recommendation of using ARC[1] when forwarding emails,
> could activation of `EXPERIMENTAL_ARC` support in the Debian packages be
>
On 2023-12-16 Jérémy Lal wrote:
[...]
> * Package name: acme.sh
> Version : 3.0.7
> Upstream Contact: w...@neilpang.com
> * URL : https://acme.sh
> * License : GPL-3
> Programming Lang: Shell
> Description : Pure unix shell script implementing ACME
On 2023-12-16 Jérémy Lal wrote:
[...]
> * Package name: acme.sh
> Version : 3.0.7
> Upstream Contact: w...@neilpang.com
> * URL : https://acme.sh
> * License : GPL-3
> Programming Lang: Shell
> Description : Pure unix shell script implementing ACME
On 2023-12-16 Jérémy Lal wrote:
[...]
> * Package name: acme.sh
> Version : 3.0.7
> Upstream Contact: w...@neilpang.com
> * URL : https://acme.sh
> * License : GPL-3
> Programming Lang: Shell
> Description : Pure unix shell script implementing ACME
Package: devscripts
Version: 2.23.6
Severity: normal
Hello,
when searchmode=plain is set pagemangle rules will not be evaluated. Which
afaict is not documented.
cu Andreas
On 2023-12-06 Dimitri John Ledkov wrote:
[...]
> May I also do a mass bug file against the above set of packages, at
> wishlist priority to nudge maintainers (or QA or Janitor) to make an
> upload?
> ideally bundled with any other reasonable modernisations. As such an
> algorithm indicates that
On 2023-12-06 Chris Hofstaedtler wrote:
[...]
> Are there any blockers, or could this move forward?
> I expect all other packages will have fixes in unstable on December
> 10th, and then I would like to continue with the next steps for the
> udev rules migrations.
Hello,
I have just made the
On 2023-12-06 Chris Hofstaedtler wrote:
[...]
> Are there any blockers, or could this move forward?
> I expect all other packages will have fixes in unstable on December
> 10th, and then I would like to continue with the next steps for the
> udev rules migrations.
Hello,
I have just made the
On 2023-12-04 Emanuele Rocca wrote:
> Hi Andreas!
> On 2023-12-03 06:20, Andreas Metzler wrote:
> > gnutls28 is currently blocked from testing because gsasl's autopkg test
> > fails.
> We recently enabled stack-clash-protection on all arm ports. On 32 bit
> arm the feat
Hello,
gnutls28 is currently blocked from testing because gsasl's autopkg test
fails. I have played around on abel:
Taking a trixie chroot and pulling in newer gnutls via LD_LIBRARY_PATH
makes most of the testsuite fail, including this trivial test:
8X--
tarted
imap4d: read error on control stream
imap4d: process 16378 finished with code 74 (I/O error)
imap4d: Getting auth info for user ametzler
imap4d: source=system, name=ametzler, passwd=x, uid=2571, gid=2571,
gecos=Andreas Metzler, dir=/home/ametzler, shell=/bin/bash,
mailbox=/var/mail/amet
On 2023-12-02 Mannem Anil kumar wrote:
> Dear Concern,
> As i was exploring Linux related commands, i
> have executed the following command in terminal. Where that file is not
> existed and find command not says that file is not found.
>
On 2023-11-26 Chris Hofstaedtler wrote:
[...]
> Please consider applying this patch at your earliest convenience.
Looks good to me, thanks!
@Ferenc: I can fix this via a Team upload, unless you do not want me to.
cu Andreas
--
`What a good friend you are to him, Dr. Maturin. His other friends
On 2023-11-26 Chris Hofstaedtler wrote:
[...]
> Please consider applying this patch at your earliest convenience.
Looks good to me, thanks!
@Ferenc: I can fix this via a Team upload, unless you do not want me to.
cu Andreas
--
`What a good friend you are to him, Dr. Maturin. His other friends
-11-30 11:37:44.0 +0100
@@ -1,3 +1,10 @@
+gnutls28 (3.7.1-5+deb11u4) bullseye; urgency=medium
+
+ * Backport fix for CVE-2023-5981 / GNUTLS-SA-2023-10-23 (timing sidechannel
+in RSA-PSK key exchange) from 3.8.2. Closes: #1056188
+
+ -- Andreas Metzler Thu, 30 Nov 2023 11:37:44 +0100
-11-30 11:37:44.0 +0100
@@ -1,3 +1,10 @@
+gnutls28 (3.7.1-5+deb11u4) bullseye; urgency=medium
+
+ * Backport fix for CVE-2023-5981 / GNUTLS-SA-2023-10-23 (timing sidechannel
+in RSA-PSK key exchange) from 3.8.2. Closes: #1056188
+
+ -- Andreas Metzler Thu, 30 Nov 2023 11:37:44 +0100
) from 3.8.2. Closes: #1056188
+
+ -- Andreas Metzler Thu, 30 Nov 2023 07:50:48 +0100
+
gnutls28 (3.7.9-2) unstable; urgency=medium
* CI: Do not try to run tests/ktls.sh, it uses a helper binary. (Plus gnutls
diff -Nru gnutls28-3.7.9/debian/patches/60-auth-rsa_psk-side-step-potential-side
) from 3.8.2. Closes: #1056188
+
+ -- Andreas Metzler Thu, 30 Nov 2023 07:50:48 +0100
+
gnutls28 (3.7.9-2) unstable; urgency=medium
* CI: Do not try to run tests/ktls.sh, it uses a helper binary. (Plus gnutls
diff -Nru gnutls28-3.7.9/debian/patches/60-auth-rsa_psk-side-step-potential-side
On 2023-11-04 Andreas Metzler wrote:
[...]
> Thank you, updated.
Another iteration, adding
+ 76-14-Lookups-Fix-dnsdb-lookup-of-multi-chunk-TXT.-Bug-305.patch Fix
regression in dnsdb in CVE-2023-42119 fix. (Upstream bug 3054)
dnsdb lookups were swallowing the last charac
On 2023-11-04 Andreas Metzler wrote:
[...]
> Thank you, updated.
Another iteration, adding
+ 76-14-Lookups-Fix-dnsdb-lookup-of-multi-chunk-TXT.-Bug-305.patch Fix
regression in dnsdb in CVE-2023-42119 fix. (Upstream bug 3054)
dnsdb lookups were swallowing the last charac
On 2023-11-18 Andreas Metzler wrote:
[...]
> /tmp/fmtutil.VGYt4Mud (attached) shows:
actually attaching now.
cu Andreas
fmtutil: fmtutil is using the following fmtutil.cnf files (in precedence order):
fmtutil: /usr/share/texmf/web2c/fmtutil.cnf
fmtutil: /usr/share/texlive/texmf-dist/we
Package: texlive-binaries
Version: 2023.20230311.66589-7
Severity: important
Affects: tex-common
Hello,
trying to install texlive-latex-base+texlive-plain-generic to fullfill a
build dependency resulted in:
8X--
Setting up tex-common (6.18) ...
Running mktexlsr. This may take
On 2023-11-10 "Preuße, Hilmar" wrote:
> On 10.11.2023 03:10, Wookey wrote:
>> I think your options are
>> 1) add an epoch (which exists to deal with this sort of problem)
>>
> Well, would like to avoid it, if possible.
I think it is also not the right solutions, epochs are imho intended to
fix
On 2023-11-11 Michael Stone wrote:
> On Sat, Nov 11, 2023 at 11:50:31AM +0100, Andreas Metzler wrote:
> > you seem to have missed/deleted the paragraph where Ansgar suggested how
> > to do this *without* tradeoff. ("explicitly disable/enable build options
> >
Package: apt-listchanges
Version: 4.4
Severity: normal
Hello,
linux seems to do strange things with its changelogs:
ametzler@argenau:/home$ dpkg -l 'linux-image*' | grep ^ii
ii linux-image-6.5.0-2-amd64 6.5.6-1 amd64Linux 6.5 for
64-bit PCs (signed)
ii
On 2023-11-10 Michael Stone wrote:
> On Fri, Nov 10, 2023 at 03:10:42PM +0100, Ansgar wrote:
>> Please avoid producing different results depending on the build
>> environment. That just results in non-reproducible issues in unclean
>> environments (suddenly different dependencies, different
Follow-up Comment #2, bug #64857 (project findutils):
The special thing to keep in mind is that -cnewer compares the *mtime* of the
reference file with the _ctime_ of the tested files.
___
Reply to this item at:
On 2023-11-04 Bastian Germann wrote:
[...]
> Please also drop gpgv2, which can be done now because the only reverse
> dependency only has an alternative dependency on it.
I have done this in debian/experimental GIT.
cu Andreas
Control: block -1 by 1055395 1055397 1055398 1055399 1055400 1055401 1055402
1055403 1055404 1055405 1055406 1055407
On 2017-08-25 Holger Levsen wrote:
> Package: gnupg2
> Version: 2.1.18-6
> Severity: normal
> user: qa.debian@packages.debian.org
> usertags: transitional
> Please drop
Package: python3-securesystemslib
Version: 0.26.0-1
Severity: normal
User: pkg-gnupg-ma...@lists.alioth.debian.org
Usertags: gnupg2-rdep
Hello,
this package recommends gnupg2 which has been a transitional package
depending on gnupg since 2016. Please refer to gnupg instead.
cu Andreas
Package: pass-extension-tail
Version: 1.1.1-2.1
Severity: normal
User: pkg-gnupg-ma...@lists.alioth.debian.org
Usertags: gnupg2-rdep
Hello,
this package depends on gnupg2 which has been a transitional package
depending on gnupg since 2016. Please depend on gnupg instead.
cu Andreas
Package: openstack-cluster-installer-utils
Version: 42.3.1
Severity: normal
User: pkg-gnupg-ma...@lists.alioth.debian.org
Usertags: gnupg2-rdep
Hello,
this package depends on gnupg2 which has been a transitional package
depending on gnupg since 2016. Please depend on gnupg instead.
cu Andreas
Package: neurodebian-archive-keyring
Version: 0.42.1
Severity: normal
User: pkg-gnupg-ma...@lists.alioth.debian.org
Usertags: gnupg2-rdep
Hello,
this package depends on gnupg2 which has been a transitional package
depending on gnupg since 2016. Please depend on gnupg instead.
cu Andreas
Package: obs-server
Version: 2.9.4-9
Severity: normal
User: pkg-gnupg-ma...@lists.alioth.debian.org
Usertags: gnupg2-rdep
Hello,
this package depends on gnupg2 which has been a transitional package
depending on gnupg since 2016. Please depend on gnupg instead.
cu Andreas
Package: obs-server
Version: 2.9.4-9
Severity: normal
User: pkg-gnupg-ma...@lists.alioth.debian.org
Usertags: gnupg2-rdep
Hello,
this package depends on gnupg2 which has been a transitional package
depending on gnupg since 2016. Please depend on gnupg instead.
cu Andreas
Package: mandos
Version: 1.8.16-1
Severity: normal
User: pkg-gnupg-ma...@lists.alioth.debian.org
Usertags: gnupg2-rdep
Hello,
this package depends on gnupg2 which has been a transitional package
depending on gnupg since 2016. Please depend on gnupg instead.
cu Andreas
Package: gnupg-pkcs11-scd
Version: 0.10.0-2
Severity: normal
User: pkg-gnupg-ma...@lists.alioth.debian.org
Usertags: gnupg2-rdep
Hello,
this package suggests gnupg2 which has been a transitional package
depending on gnupg since 2016. Please refer to gnupg instead.
cu Andreas
Package: in-toto
Version: 1.3.1-1
Severity: normal
User: pkg-gnupg-ma...@lists.alioth.debian.org
Usertags: gnupg2-rdep
Hello,
this package recommends gnupg2 which has been a transitional package
depending on gnupg since 2016. Please refer to gnupg instead.
cu Andreas
Package: gopass
Version: 1.5.0-1
Severity: normal
User: pkg-gnupg-ma...@lists.alioth.debian.org
Usertags: gnupg2-rdep
Hello,
this package depends on gnupg2 which has been a transitional package
depending on gnupg since 2016. Please depend on gnupg instead.
cu Andreas
Package: acetoneiso
Version: 2.4-4
Severity: normal
User: pkg-gnupg-ma...@lists.alioth.debian.org
Usertags: gnupg2-rdep
Hello,
this package depends on gnupg2 which has been a transitional package
depending on gnupg since 2016. Please depend on gnupg instead.
cu Andreas
Package: debdelta
Version: 0.67
Severity: normal
User: pkg-gnupg-ma...@lists.alioth.debian.org
Usertags: gnupg2-rdep
Hello,
this package depends on gnupg2 which has been a transitional package
depending on gnupg since 2016. Please depend on gnupg instead.
cu Andreas
Package: apt-transport-in-toto
Version: 0.1.1-3
Severity: normal
User: pkg-gnupg-ma...@lists.alioth.debian.org
Usertags: gnupg2-rdep
Hello,
this package depends on gnupg2 which has been a transitional package
depending on gnupg since 2016. Please depend on gnupg instead.
cu Andreas
Package: acetoneiso
Version: 2.4-4
Severity: normal
User: pkg-gnupg-ma...@lists.alioth.debian.org
Usertags: gnupg2-rdep
Hello,
this package depends on gnupg2 which has been a transitional package
depending on gnupg since 2016. Please depend on gnupg instead.
cu Andreas
On 2023-11-04 Salvatore Bonaccorso wrote:
> On Wed, Nov 01, 2023 at 12:03:37PM +0100, Andreas Metzler wrote:
[...]
> > * Update code to 4.96.2, fixing issues with the proxy protocol
> > (CVE-2023-42117) and the `dnsdb` lookup subsystem (CVE-2023-42219). It
> > als
On 2023-11-04 Salvatore Bonaccorso wrote:
> On Wed, Nov 01, 2023 at 12:03:37PM +0100, Andreas Metzler wrote:
[...]
> > * Update code to 4.96.2, fixing issues with the proxy protocol
> > (CVE-2023-42117) and the `dnsdb` lookup subsystem (CVE-2023-42219). It
> > als
On 2023-11-03 carsten wolf wrote:
> Package: hugin
> Version: 2023.0~rc1+dfsg-1
> Severity: normal
> Dear Maintainer,
> *** Reporter, please consider answering these questions, where appropriate ***
>* What led up to the situation?
> starting hugin
> import 2x png images to stich.
>*
On 2023-11-03 carsten wolf wrote:
> Package: hugin
> Version: 2023.0~rc1+dfsg-1
> Severity: normal
> Dear Maintainer,
> *** Reporter, please consider answering these questions, where appropriate ***
>* What led up to the situation?
> starting hugin
> import 2x png images to stich.
>*
On 2023-11-02 Larry Doolittle wrote:
> On Thu, Nov 02, 2023 at 04:51:55PM +0100, Andreas Metzler wrote:
>> Just to be clear: You have got a domain but lack both control of a
>> machine that is not blocked from accessing outgoing port 25 (and could
>> deliver)
> Right.
On 2023-11-02 Samuel Thibault wrote:
> Source: pinentry
> Severity: normal
> Tags: patch
> Hello,
> When bootstrapping a new port, buildds needs to use gnupg to sign
> packages, which depends on gpg-agent, which depends on pinentry. But
> pinentry build-deps on qt, gtk etc. which we don't
On 2023-10-28 Larry Doolittle wrote:
> Andreas -
> On Mon, Oct 16, 2023 at 10:53:17AM -0700, Larry Doolittle wrote:
> > My use case is being stuck behind an ISP's firewall,
> > so the smarthost is supplied by the ISP. When the ISP
> > delivers the mail to gmail, google needs some indication
> >
On 2023-11-01 Debian Bug Tracking System wrote:
[...]
> #1042659: restic: FTBFS with Sphinx 7.1, docutils 0.20: TypeError: not all
> arguments converted during string formatting
> It has been closed by Debian FTP Masters
> (reply to Félix Sipma ).
[...]
>* New upstream version 0.16.0
On 2023-11-01 Debian Bug Tracking System wrote:
[...]
> #1042659: restic: FTBFS with Sphinx 7.1, docutils 0.20: TypeError: not all
> arguments converted during string formatting
> It has been closed by Debian FTP Masters
> (reply to Félix Sipma ).
[...]
>* New upstream version 0.16.0
On 2023-11-01 Debian Bug Tracking System wrote:
[...]
> #1042659: restic: FTBFS with Sphinx 7.1, docutils 0.20: TypeError: not all
> arguments converted during string formatting
> It has been closed by Debian FTP Masters
> (reply to Félix Sipma ).
[...]
>* New upstream version 0.16.0
On 2023-11-01 Vincent Lefevre wrote:
> On 2023-11-01 18:39:24 +0100, Andreas Metzler wrote:
> > I am closing this since afaict this is a solved issue and I do not see
> > any TODOs on the gpgme side.
> > https://bugs.debian.org/cgi-bin/pkgreport.cgi?tag=gpgme-config-transiti
-building-with-Sphinx-6.patch from upstream to fix
+FTBFS against sphinx >= 6. Closes: #1042659
+
+ -- Andreas Metzler Wed, 01 Nov 2023 13:49:52 +0100
+
restic (0.14.0-1) unstable; urgency=medium
* New upstream version 0.14.0 (Closes: #1018154)
diff -Nru restic-0.14.0/debian/patches/0
-building-with-Sphinx-6.patch from upstream to fix
+FTBFS against sphinx >= 6. Closes: #1042659
+
+ -- Andreas Metzler Wed, 01 Nov 2023 13:49:52 +0100
+
restic (0.14.0-1) unstable; urgency=medium
* New upstream version 0.14.0 (Closes: #1018154)
diff -Nru restic-0.14.0/debian/patches/0
-building-with-Sphinx-6.patch from upstream to fix
+FTBFS against sphinx >= 6. Closes: #1042659
+
+ -- Andreas Metzler Wed, 01 Nov 2023 13:49:52 +0100
+
restic (0.14.0-1) unstable; urgency=medium
* New upstream version 0.14.0 (Closes: #1018154)
diff -Nru restic-0.14.0/debian/patches/0
he `dnsdb` lookup subsystem (CVE-2023-42219). It
+also includes additional hardening for spf lookups, however CVE-2023-42218
+was diagnosed as a vulnerability in the libspf2 library and needs to be
+addressed there. Closes: #1053310
+
+ -- Andreas Metzler Wed, 01 Nov 2023 07:07:57 +0100
he `dnsdb` lookup subsystem (CVE-2023-42219). It
+also includes additional hardening for spf lookups, however CVE-2023-42218
+was diagnosed as a vulnerability in the libspf2 library and needs to be
+addressed there. Closes: #1053310
+
+ -- Andreas Metzler Wed, 01 Nov 2023 07:07:57 +0100
erability in the libspf2 library and needs to be
+addressed there. Closes: #1053310
+
+ -- Andreas Metzler Wed, 01 Nov 2023 07:07:57 +0100
+
exim4 (4.96-15+deb12u2) bookworm-security; urgency=high
* Non-maintainer upload by the Security Team.
diff -Nru exim4-4.96/debian/patches/75_74-Cancel-e
erability in the libspf2 library and needs to be
+addressed there. Closes: #1053310
+
+ -- Andreas Metzler Wed, 01 Nov 2023 07:07:57 +0100
+
exim4 (4.96-15+deb12u2) bookworm-security; urgency=high
* Non-maintainer upload by the Security Team.
diff -Nru exim4-4.96/debian/patches/75_74-Cancel-e
On 2023-10-31 Tomas Pospisek wrote:
[...]
> PS: I'd prefer this bugreport to be open as long as the stable and
> oldstable packages are still vulnerable...
Hello Thomas,
The Debian BTS does not use a simple open/close logic, it tracks which
specific versions a bug applies to. If you look at
On 2023-10-31 Tomas Pospisek wrote:
[...]
> PS: I'd prefer this bugreport to be open as long as the stable and
> oldstable packages are still vulnerable...
Hello Thomas,
The Debian BTS does not use a simple open/close logic, it tracks which
specific versions a bug applies to. If you look at
On 2023-10-31 Tomas Pospisek wrote:
> On Tue, 31 Oct 2023, Salvatore Bonaccorso wrote:
[...]
>> Fixes for CVE-2023-42117 and CVE-2023-42119 are right now considered
>> no-dsa (see comment on the security-tracker about it), and are going
>> to be fixed in the next point releases.
> The notes say:
On 2023-10-31 Tomas Pospisek wrote:
> On Tue, 31 Oct 2023, Salvatore Bonaccorso wrote:
[...]
>> Fixes for CVE-2023-42117 and CVE-2023-42119 are right now considered
>> no-dsa (see comment on the security-tracker about it), and are going
>> to be fixed in the next point releases.
> The notes say:
Colntrol: tags -1 patch
On 2023-07-30 Lucas Nussbaum wrote:
> Source: restic
[...]
> restic fails to build with Sphinx 7.1 and docutils 0.20, both of which
> are currently available in experimental.
> Relevant part (hopefully):
[...]
> >
> > Exception occurred:
> > File
Colntrol: tags -1 patch
On 2023-07-30 Lucas Nussbaum wrote:
> Source: restic
[...]
> restic fails to build with Sphinx 7.1 and docutils 0.20, both of which
> are currently available in experimental.
> Relevant part (hopefully):
[...]
> >
> > Exception occurred:
> > File
Colntrol: tags -1 patch
On 2023-07-30 Lucas Nussbaum wrote:
> Source: restic
[...]
> restic fails to build with Sphinx 7.1 and docutils 0.20, both of which
> are currently available in experimental.
> Relevant part (hopefully):
[...]
> >
> > Exception occurred:
> > File
On 2023-10-30 Mathieu Malaterre wrote:
> Dear all,
> I am trying to follow documentation from:
> * http://debomatic-amd64.debian.net/
> and:
> *
> https://deb-o-matic.readthedocs.io/en/stable/upload.html#prepare-command-files
> Which does not seems to be working for me today;
> % dcut -U
On 2023-10-29 Andreas Metzler wrote:
[...]
> Looking at other Debian packages this does not look like right. However I
> have checked "python3 setup.py install --help" and tried to look at
> python3-setuptools documentation to find the correct knob/setting to
> swit
Hello,
I am trying to unbreak building of gpgme python bindings (#1054786).
The build result differs/breaks when python3-setuptools is installed.
Afaiui python3-setuptools is a newer/extended version of python's
built-in distutil (which is scheduled for removal). If
python3-setuptools the new
Thank you, works for me.
--
You received this bug notification because you are a member of Hugin Bug
Hunters, which is subscribed to Hugin.
https://bugs.launchpad.net/bugs/2041687
Title:
does not show/log enblend error messages
Status in Hugin:
Fix Committed
Bug description:
Hello,
Thank you, works for me.
--
You received this bug notification because you are a member of Hugin
Developers, which is subscribed to Hugin.
https://bugs.launchpad.net/bugs/2041687
Title:
does not show/log enblend error messages
Status in Hugin:
Fix Committed
Bug description:
Hello,
Contol: tags 1039724 - pending
Contol: tags 1039724 - wontfix
On 2023-10-27 Lucas Nussbaum wrote:
> Source: gpgme1.0
> Version: 1.18.0-3
[...]
> During a rebuild of all packages in sid, your package failed to build
> on amd64.
> Relevant part (hopefully):
[...]
> > dh_install: warning: Cannot
Contol: tags 1039724 - pending
Contol: tags 1039724 - wontfix
On 2023-10-27 Lucas Nussbaum wrote:
> Source: gpgme1.0
> Version: 1.18.0-3
[...]
> During a rebuild of all packages in sid, your package failed to build
> on amd64.
> Relevant part (hopefully):
[...]
> > dh_install: warning: Cannot
Public bug reported:
Hello,
hugin does not show/log enblend errors. I think it did previously. This
is on 2023.0~beta1+dfsg-1.
This was originally reported by Michael Deegan in
https://bugs.debian.org/1054129
It is easy to reproduce by replacing enblend with a dummy-script like this one
Public bug reported:
Hello,
hugin does not show/log enblend errors. I think it did previously. This
is on 2023.0~beta1+dfsg-1.
This was originally reported by Michael Deegan in
https://bugs.debian.org/1054129
It is easy to reproduce by replacing enblend with a dummy-script like this one
201 - 300 of 13410 matches
Mail list logo