Bug#859066: linux-image-*: recommend firmware-ath9k-htc

Hi, Am 31.03.2017 um 07:15 schrieb Paul Fertser: On Thu, Mar 30, 2017 at 10:04:24PM +0100, Ben Hutchings wrote: On Thu, 2017-03-30 at 09:22 +0800, Paul Wise wrote: Source: linux Version: 4.10~rc6-1~exp1 Severity: wishlist X-Debbugs-CC: open-ath9k-htc-firmw...@packages.debian.org Now that

Bug#859150: installation-guide: leaves many /tmp/tmp* files behind

Hi, Am Fr. Mär. 31 00:24:41 2017 GMT+0200 schrieb Samuel Thibault: > Hello Holger, > > Cyril Brulebois, on ven. 31 mars 2017 00:09:34 +0200, wrote: > > Maybe to ease hands-on debugging, dblatex is called with the -d flag, > > which tells it to leave temporary files behind. This ends up filling >

Bug#859152: libsystemd-dev: Dependency error, lib-dev should not depend on systemd

Michael Biebl [2017-03-31 3:08 +0200]: > Imo the only clean solution is to split out the tests into a separate > package systemd-tests, which then can have a strictly versioned > dependency on systemd (= ${binary:Version}) The systemd dependency is a good reason indeed, so I suppose let's do

Bug#859173: ninja-build is unuseable for package cross compilation

Package: ninja-build Severity: wishlist Michael Biebl (Cced) asked me to look into cross compilation with meson. meson stands on the shoulders of ninja-build, so looking into ninja-build is the obvious first step. ninja-build currently is an `Architecture: any` package which is implicitly marked

Bug#859172: telegram-desktop: Segmentfault due to lack of libappindicator3-1 library dep

Package: telegram-desktop Version: 1.0.14-1 Severity: important Tags: patch upstream Telegram-desktop build-depends on libappindicator-dev, however build system did not deduce its corresponding library dependency (libappindicator3-1). As a result, when telegram-desktop was started on GTK-based

Bug#859066: linux-image-*: recommend firmware-ath9k-htc

On Thu, Mar 30, 2017 at 10:04:24PM +0100, Ben Hutchings wrote: > On Thu, 2017-03-30 at 09:22 +0800, Paul Wise wrote: > > Source: linux > > Version: 4.10~rc6-1~exp1 > > Severity: wishlist > > X-Debbugs-CC: open-ath9k-htc-firmw...@packages.debian.org > > > > Now that open-ath9k-htc-firmware has

Bug#859159: pidgin: CVE-2017-2640

Package: pidgin Version: 2.10.11-1 X-Debbugs-CC: t...@security.debian.org secure-testing-t...@lists.alioth.debian.org Severity: grave Tags: security Control: fixed -1 2.11.0-0+deb8u2 Hi, the following vulnerability was published for pidgin. Filling this with RC severity, since it's although

Bug#859158: python3-aiohttp: Please package 2.0 for experimental

Package: python3-aiohttp Version: 1.1.5-1 Severity: wishlist 2.0 has been out for long enough ;-) -- System Information: Debian Release: 8.7 APT prefers stable APT policy: (700, 'stable'), (650, 'testing'), (600, 'unstable'), (550, 'experimental'), (550, 'oldstable') Architecture: amd64

Bug#859072: Contribute extended dep8 testing

FYI: I am just one of a team in Debian, not 'the' maintainer, Luigi is that. So I am just auditing the patch as presented for inclusion to Debian. On Thu, 30 Mar 2017 14:26:59 +0200 Christian Ehrhardt wrote: > On Thu, Mar 30, 2017 at 1:28 PM, Amos Jeffries wrote: > > > Thank you. > > > > Biggest

Bug#858671: bugs.debian.org: Handle "source" in {split,join}_status_fields

On Fri, 24 Mar 2017, James McCoy wrote: > When I attempted to tag 845066 pending, it failed in check_limit() since > "source" had not been split into a list. I'm not sure if there should > be something preventing things from getting in this state, but the > attached patch should at least allow

Bug#859155: openafs-modules-dkms: Please support kernel 4.10

Package: openafs-modules-dkms Version: 1.6.20-2 Severity: wishlist Tags: fixed-upstream patch Forwarded: http://git.openafs.org/?p=openafs.git;a=commitdiff;h=789319bf0f2b26ad67995f8cbe88cee87a1bbdc0;hp=961cee00b8f5c302de5f66beb81caa33242c7971 The openafs module fails to build on kernel 4.10, and

Bug#859043: (no subject)

s/saintfish/gogits/ -- actively maintained fork

Bug#859153: openvpn: DNS leaks: /etc/openvpn/update-resolv-conf fails without openresolv installed.

Package: openvpn Version: 2.4.0-4 Severity: important Dear Maintainer, In my use of openvpn on debian sid I have found that the following settings only work after openresolv is installed, leading to DNS leaking.: #/etc/openvpn/client/client.conf dhcp-option DNS 8.8.8.8

Bug#859152: libsystemd-dev: Dependency error, lib-dev should not depend on systemd

Am 31.03.2017 um 01:16 schrieb Arthur Gautier: > Package: libsystemd-dev > Version: 232-22 > Severity: normal > > Dear maintainer, > > One should be able to install libsystemd and libsystemd-dev without having > systemd. > > When using a build machine with sysvinit instead of systemd, we can't

Bug#797613: libosl: diff for NMU version 0.8.0-1.1

Control: tag -1 patch Control: tag -1 pending Dear maintainer, I've prepared an NMU for libosl (versioned as 0.8.0-1.1). The diff is attached to this message. I've directly uploaded it, it's going through NEW (and I intend to ask for fast-tracking, so the only rdep gets rebuilt right away,

Bug#858676: /dev/console is not unmounted in chroot

Hi, I have some details on this issue. It appears that mounted folder remains in the chroot /dev/console. This is a regression - the previous version 0.228.5~bpo8+1 worked correctly. I consider this bug as serious. Cheers -- Slávek

Bug#859101: [Pkg-samba-maint] Bug#859101: regression: net: security update makes `net ads join` freeze when run a second time

On Thu, 2017-03-30 at 22:36 +0200, Mathieu Parent wrote: > Can you try this patch: > https://git.samba.org/?p=samba.git;a=commitdiff;h=38beef2ff63664d7d5805f1032bb9f69d0b965d7 Thanks! This patch fixes the issue, my $work would appreciate it if you could fold this into the next update to Debian

Bug#736887: trickle: diff for NMU version 1.07-10.1

Control: tags 736887 + pending Dear maintainer, I've prepared an NMU for trickle (versioned as 1.07-10.1) and uploaded it to DELAYED/5. Please feel free to tell me if I should delay it longer. Regards. -- regards, Mattia Rizzolo GPG Key: 66AE 2B4A FCCF 3F52 DA18 4D18

Bug#802211: systemd: rescue.service fails if root password is not set, needs sulogin --force

On Fri, Mar 31, 2017 at 12:51:08AM +0200, Michael Biebl wrote: > Maybe I'm overly paranoid here, but maybe that helps to better > understand my concerns. No, your concerns sound reasonable to me, and I agree that demanding a username from group sudo, along with its password sounds like it could

Bug#859151: thunderbird: Please backport sparc64 support fixes

Source: icedove Version: 1:45.8.0-3 Severity: normal Tags: patch User: debian-sp...@lists.debian.org Usertags: sparc64 Hi! Attached is a tested patch with the cherry-picked changes from firefox upstream to fix the build of xulrunner and thus Thunderbird on sparc64. Since we are planning to make

Bug#859152: libsystemd-dev: Dependency error, lib-dev should not depend on systemd

Package: libsystemd-dev Version: 232-22 Severity: normal Dear maintainer, One should be able to install libsystemd and libsystemd-dev without having systemd. When using a build machine with sysvinit instead of systemd, we can't build packages depending on libsystemd-dev without installing first

Bug#848345: gpsshogi: diff for NMU version 0.7.0-1.1

Control: tags 848345 + patch Control: tags 848345 + pending Dear maintainer, I've prepared an NMU for gpsshogi (versioned as 0.7.0-1.1) and uploaded it to DELAYED/2. Please feel free to tell me if I should delay it longer. Also, all of this is cause by you not incorporating the previous NMU.

Bug#859150: installation-guide: leaves many /tmp/tmp* files behind

Samuel Thibault (2017-03-31): > Hello Holger, > > Cyril Brulebois, on ven. 31 mars 2017 00:09:34 +0200, wrote: > > Maybe to ease hands-on debugging, dblatex is called with the -d flag, > > which tells it to leave temporary files behind. This ends up filling > > up dillon's

Bug#858601: [Pkg-samba-maint] Bug#858601: Bug#858601: winbind: user authentication using windows domain fails after upgrade to 4.2.14+dfsg-0+deb8u4

On Fri, Mar 31, 2017 at 12:33:29AM +0200, Mathieu Parent wrote: > 2017-03-30 23:50 GMT+02:00 Albert Dengg : > > sorry for the late reply i was a bit busy and re-upgrading the > > server is a slight problem as it is an activly used producticion > > server were people need > >

Bug#802211: systemd: rescue.service fails if root password is not set, needs sulogin --force

Am 31.03.2017 um 00:27 schrieb Nathan Dorfman: > Hi, this is still an issue with the default stretch install, if the > option to not set a root password is taken at installation. > > It is quite severe IMO, especially considering how likely it is to be > discovered only when the rescue shell is

Bug#858591: limesuite: Please update to newer release

On Fri, Mar 24, 2017 at 08:27:15AM +0100, Sebastian Reichel wrote: > I received my LimeSDR yesterday and it comes with a newer FW than > expected by limesuite resulting in incorrect behaviour in lots of > places. The following information is printed to standard output: This is rather unfortunate

Bug#824364: spice-vdagent intentionally doesn't resize, expects gnome to do it

#858549 might be a dupe of this one. As I noted there[1], it turns out that instead of resizing the display directly, spice-vdagent now just informs Gnome that the resize is needed. Consequently, resize only works with Gnome. (I found that information in a related redhat ticket, [2].) -nd. [1]

Bug#856720: diaspora{, -installer}: fails to install: Errno::EEXIST: File exists @ dir_s_mkdir - /usr/share/diaspora/tmp

Followup-For: Bug #856720 Control: found -1 0.6.3.0+debian4 Hi, and there we go again ... [...] Precompiling assets... W, [2017-03-30T07:12:27.702004 #19736] WARN -- : You are setting a key that conflicts with a built-in method OmniAuth::AuthHash::InfoHash#name defined at

Bug#858601: [Pkg-samba-maint] Bug#858601: Bug#858601: winbind: user authentication using windows domain fails after upgrade to 4.2.14+dfsg-0+deb8u4

2017-03-30 23:50 GMT+02:00 Albert Dengg : > sorry for the late reply i was a bit busy and re-upgrading the > server is a slight problem as it is an activly used producticion > server were people need Reading your smb.conf, it looks like you're affectected by the vfs_shadow_copy2

Bug#788387: gdebi downgrade bug not fixed

gdebi 0.9.5.3ubuntu2 still cannot downgrade packages. Only the underlying library was fixed, and even that fix has not shown up as of python-apt 0.9.3.5ubuntu2. Please reopen. I have verified that the fix works, once enabled in gdebi. This is a blocker, unless someone can explain how to

Bug#858590: Test packages fixing samba regressions

Hello all, I've prepared samba packages fixing vfs_shadowcopy2 and "follow symlink = no". Can you test and report? (I've tested simple cases with those two options only). Those are, signed with my key, at: https://people.debian.org/~sathieu/samba/ Regards -- Mathieu Parent

Bug#802211: systemd: rescue.service fails if root password is not set, needs sulogin --force

Hi, this is still an issue with the default stretch install, if the option to not set a root password is taken at installation. It is quite severe IMO, especially considering how likely it is to be discovered only when the rescue shell is actually needed. If this really can't be fixed before

Bug#859150: installation-guide: leaves many /tmp/tmp* files behind

Hello Holger, Cyril Brulebois, on ven. 31 mars 2017 00:09:34 +0200, wrote: > Maybe to ease hands-on debugging, dblatex is called with the -d flag, > which tells it to leave temporary files behind. This ends up filling > up dillon's /tmp (in addition to being rather bad style in the first >

Bug#859049: pixbros: Pixbros is not installable on amd64 system

Am 29.03.2017 um 21:30 schrieb Andrej Mernik: > Package: pixbros > Version: 0.6.3-2 > Severity: important > > Dear Maintainer, > > it appears that the pixbros package is not installable on Stretch amd64, > because its depends are not installable. > > I am aware that the package itself might be

Bug#859147: [Pkg-utopia-maintainers] Bug#859147: network-manager: restart failure on upgrade

Am 30.03.2017 um 23:50 schrieb ydir...@free.fr: > Any other information would be useful ? Can you attach the following information journalctl -alb systemd-cgls -- Why is it that all of the instruments seeking intelligent life in the universe are pointed away from Earth?

Bug#859150: installation-guide: leaves many /tmp/tmp* files behind

Source: installation-guide Severity: serious Tags: patch Justification: Fills up /tmp on dillon.debian.org Hi, Maybe to ease hands-on debugging, dblatex is called with the -d flag, which tells it to leave temporary files behind. This ends up filling up dillon's /tmp (in addition to being rather

Bug#859149: python-sklearn-doc: broken symlink: /usr/share/doc/python-sklearn-doc/html/_static/underscore.js -> ../../../../javascript/jquery/underscore.js

Package: python-sklearn-doc Version: 0.18-5 Severity: normal User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package ships (or creates) a broken symlink. >From the attached log (scroll to the bottom...): 0m14.5s ERROR: FAIL: Broken symlinks:

Bug#859148: python-paver: broken symlink: /usr/share/doc/python-paver/html/_static/underscore.js -> ../../../../javascript/jquery/underscore.js

Package: python-paver Version: 1.2.1-1.1 Severity: normal User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package ships (or creates) a broken symlink. >From the attached log (scroll to the bottom...): 0m11.2s ERROR: FAIL: Broken symlinks:

Bug#853855: di-utils: Kernel boot options containing a dot are not propagated to the installed system

Ben Hutchings, on jeu. 30 mars 2017 15:24:03 +0100, wrote: > they are likely to be outnumbered by those who do want them set. Not only that, but the manual does document that such options *are* propagated to the installed system when placed properly. Not doing so is really unexpected behavior.

Bug#858601: [Pkg-samba-maint] Bug#858601: winbind: user authentication using windows domain fails after upgrade to 4.2.14+dfsg-0+deb8u4

sorry for the late reply i was a bit busy and re-upgrading the server is a slight problem as it is an activly used producticion server were people need On Thu, Mar 30, 2017 at 10:34:28PM +0200, Mathieu Parent wrote: > )Control: tag -1 + moreinfo > > 2017-03-24 15:20 GMT+01:00 Mathieu Parent

Bug#859147: network-manager: restart failure on upgrade

Package: network-manager Version: 1.6.2-3 When upgrading from 1.6.2-2: Setting up network-manager (1.6.2-3) ... Job for NetworkManager.service failed because a timeout was exceeded. See "systemctl status NetworkManager.service" and "journalctl -xe" for details. invoke-rc.d: initscript

Bug#856590: systemd: Unspecified problems mounting /usr partition

Am 30.03.2017 um 23:07 schrieb Emmanuel DECAEN: > Hi, > > I have the same of problem on multiple servers with systemd/232-19. > > You will find journalctl -alb et udevadm info in attachments. Your journal shows problems with /var, /tmp, /home and swap. Makes me wonder if your /etc/fstab is

Bug#859143: kup: please update to v0.3.6 due changes on k.o

Control: severity -1 serious On Thu, 2017-03-30 at 23:17 +0200, Sebastian Andrzej Siewior wrote: > Package: kup > Version: 0.3.2-1 > Severity: wishlist > > The kup-server on k.o will be probably upgraded / changed around > kernel's rc6 and rc7 which renders current kup-client version useless / >

Bug#859144: unblock: celery/3.1.23-7

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package celery Fixes bashisms in initd scripts. See #858298. Patch is from upstream. diff -Nru celery-3.1.23/debian/changelog celery-3.1.23/debian/changelog ---

Bug#859020: unblock: ruby-bootstrap-sass/3.3.5.1-4

On Thu, Mar 30, 2017 at 07:55:00PM +, Niels Thykier wrote: > Thanks for the changeset. > > Unfortunately, as a matter of policy I would strongly prefer if the > compat bump was undone. They have "actions at a distance" that are hard > to reason about in general, so it is easier to simply say

Bug#859143: kup: please update to v0.3.6 due changes on k.o

Package: kup Version: 0.3.2-1 Severity: wishlist The kup-server on k.o will be probably upgraded / changed around kernel's rc6 and rc7 which renders current kup-client version useless / not working. Konstantin tagged as of today 0.3.6 which is working / contains the required changes on the client

Bug#859066: linux-image-*: recommend firmware-ath9k-htc

Control: tag -1 moreinfo On Thu, 2017-03-30 at 09:22 +0800, Paul Wise wrote: > Source: linux > Version: 4.10~rc6-1~exp1 > Severity: wishlist > X-Debbugs-CC: open-ath9k-htc-firmw...@packages.debian.org > > Now that open-ath9k-htc-firmware has been accepted into Debian > unstable, please add

Bug#858800: RFS: xtrs/4.9d-1 [ITA]

Dear Branden, On Thu, Mar 30, 2017 at 09:29:25AM -0400, G. Branden Robinson wrote: > It can. I've uploaded xtrs 4.9c-4 with a far leaner set of changes, and > am attaching a diff of the diff to this message. As you can see, it's > far leaner. > > Thoughts? Was the Build-Depends change

Bug#859048: [pkg-horde] Bug#859048: Attachment check hook prevents IMP smartmobile view to send message with 'attachment' word when there's no attachment

Em 30/03/2017 04:31, "Mathieu Parent" escreveu: 2017-03-29 21:28 GMT+02:00 Leonardo Bruno : > Package: php-horde-imp > Version: 6.2.2-3 > Severity: important > > Scenario: Compose a message using the IMP smartmobile view in a Horde setup > with the

Bug#802259: ITP: libntru -- implementation of the public-key encryption

As of March 27, the patents are no longer an issue: https://github.com/NTRUOpenSourceProject/NTRUEncrypt/issues/11 > The patents are intended to also be public domain. To be specific, we will > not take any enforcement action against anyone for any > use of the indicated > patents on or after

Bug#859142: keepalived: if host section in SMPT_CHECK, healthchecker process segfaults

Package: keepalived Version: 1.2.13-1 Severity: important Dear Maintainer, keepalived segfaults on start when trying to load a config with a host{} section under an SMTP_CHECK block. This bug was corrected upstream in version 1.2.17 [1] in commit 6756a27c94993bfe92e2e09b702502e5e269487c[2].

Bug#858601: [Pkg-samba-maint] Bug#858601: winbind: user authentication using windows domain fails after upgrade to 4.2.14+dfsg-0+deb8u4

)Control: tag -1 + moreinfo 2017-03-24 15:20 GMT+01:00 Mathieu Parent : > 2017-03-24 11:19 GMT+01:00 Albert Dengg : >> Package: winbind >> Version: 2:4.2.14+dfsg-0+deb8u2 >> Severity: important >> >> after upgrading windbind and samba to

Bug#859059: keyboard-configuration: many mac keymap in keyboard-configuration are faulty

Hi, Thanks for your quick reply I understand it may not be easy. Maybe a solution would to be to have more atomic keyboard description file that could be combined together, but it may add some strange results, though. The problem, for now, is that nothing raises a warning or an error saying it

Bug#859101: [Pkg-samba-maint] Bug#859101: regression: net: security update makes `net ads join` freeze when run a second time

Hi, 2017-03-30 13:12 GMT+02:00 Paul Wise : > Control: fixed -1 2:4.5.6+dfsg-1 > > On Thu, 2017-03-30 at 18:30 +0800, Paul Wise wrote: > >> I've confirmed that the freeze does not happen on samba 4.1 using >> snapshot.d.o. The issue still occurs with 2:4.2.14+dfsg-0+deb8u4. > >

Bug#848978: Unsuitable to be part of stable release without proper maintainer

Control: -1 pending Hi, I'm attempting to take over the courier packages and maintain them for stretch. Uploads will follow shortly. Kind Regards Markus Wanner signature.asc Description: OpenPGP digital signature

Bug#858892: unblock: haproxy/1.7.4-1

Control: tags -1 confirmed moreinfo Vincent Bernat: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > > Hey! > > We would like to upload HAProxy 1.7.4 to unstable. This is mostly a > bugfix only release (1.7 is the current

Bug#859008: dvb-tools: dvbv5-scan segfaults with DVB-T2 HD service that just started in Germany

Hi Gregor, Em Wed, 29 Mar 2017 20:45:06 +0200 Gregor Jasny escreveu: > Hello Mauro & list, > > could you please have a look at the dvbv5-scan crash report below? > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859008 > > Is there anything else you need to debug

Bug#859141: tigervnc-standalone-server: Wrapper script is unreasonably intolerant of slightly slow or busy systems

Package: tigervnc-standalone-server Version: 1.7.0+dfsg-6 Severity: normal The /usr/bin/tigervncserver wrapper script gives up and kills the server it just started if it doesn't have its VNC-TCP and X11-unix sockets up and running within one second. If a machine is a bit bogged down, this can

Bug#858915: unblock: logtool/1.2.8-9

Control: tags -1 moreinfo Wouter Verhelst: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > > Please unblock package logtool > > logtool hadn't been updated in almost 7 years (upstream hasn't been > active, and the package

Bug#859084: unblock: win32-loader/0.8.2

Didier 'OdyX' Raboud (2017-03-30): > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > > Please unblock-udeb package win32-loader 0.8.2 as it fixes a FTBFS > in stretch (and is always blocked because of the manual

Bug#858943: unblock: systemd/232-22

Control: tags -1 confirmed Michael Biebl: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > > Hello release team, > > since 232-19, a couple of fixes accumulated which we'd like to see enter > testing/stretch > > As this

Bug#858795: RFS: python-zxcvbn/4.4.14-0.1 [ITA]

I see that the package at mentors has version 4.4.14-0.1 so I retitle the RFS to match that version. Hi, thank you for having changed the title, I had forgotten to do it. probably a lot of stuff still need changes, but I can address it only if you fix the above. Hi Granfranco I changed

Bug#856626: Pending fixes for bugs in the lucene-solr package

tag 856626 + pending thanks Some bugs in the lucene-solr package are closed in revision 02a1b0e68a97c67864d7747e045233c2b33a1560 in branch 'master' by Markus Koschany The full diff can be seen at https://anonscm.debian.org/cgit/pkg-java/lucene-solr.git/commit/?id=02a1b0e Commit message:

Bug#859020: unblock: ruby-bootstrap-sass/3.3.5.1-4

Control: tags -1 moreinfo Antonio Terceiro: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > > Please unblock package ruby-bootstrap-sass > > This release fixes the integration with compass. > > the debdiff against the

Bug#859138: java.lang.UnsupportedOperationException: The BROWSE action is not supported on the current platform!

On Thu, 30 Mar 2017, Thorsten Glaser wrote: > tglase@tglase-nb:~ $ java -jar testcase.jar > java.lang.UnsupportedOperationException: The BROWSE action is not supported > on the current platform! Note that both sensible-browser and xdg-open show the website, and that this generally works in

Bug#859008: dvb-tools: dvbv5-scan segfaults with DVB-T2 HD service that just started in Germany

Hello Mauro, could you please take a look? Thanks, Gregor On 3/30/17 9:36 PM, Frank Heckenbach wrote: > I got the same problem, only on some channels though, e.g. ZDF using > this input: > > [CH34] > DELIVERY_SYSTEM = DVBT2 > FREQUENCY = 57800 > BANDWIDTH_HZ = 800 > MODULATION = QAM/16

Bug#859108: unblock: mapdamage/2.0.6+dfsg-2

Hi Niels On Thu, Mar 30, 2017 at 07:03:00PM +, Niels Thykier wrote: > @Nadiya: Many thanks for your work! :) +1 > @Andreas: Thanks for reverting the dh 10 change. :-) > I have unblocked the package; it is clearly in a much better state than > previously and I only had a minor remark. >

Bug#859135: CVE-2016-10127: XXE attack via crafted SAML XML request or response

On Thu, Mar 30, 2017 at 09:27:56PM +0200, Salvatore Bonaccorso wrote: > On Thu, Mar 30, 2017 at 02:40:58PM -0400, Antoine Beaupre wrote: > > Package: python-pysaml2 > > X-Debbugs-CC: t...@security.debian.org > > secure-testing-t...@lists.alioth.debian.org > > Severity: normal > > Tags: security >

Bug#859140: /usr/bin/xdg-open[938]: : can't execute: Is a directory

Package: xdg-utils Version: 1.1.1-1 Severity: normal tglase@tglase-nb:~ $ xdg-open http://www.mirbsd.org/ /usr/bin/xdg-open[938]: : can't execute: Is a directory It still _works_ as is, but this error message is weird. This is caused by line 669: command_exec=`which $command

Bug#859008: dvb-tools: dvbv5-scan segfaults with DVB-T2 HD service that just started in Germany

I got the same problem, only on some channels though, e.g. ZDF using this input: [CH34] DELIVERY_SYSTEM = DVBT2 FREQUENCY = 57800 BANDWIDTH_HZ = 800 MODULATION = QAM/16 *** Error in `dvbv5-scan': malloc(): memory corruption: 0x00fe13c0 *** I did some debugging with gdb and

Bug#859139: RFS: synergy/1.4.16-1+deb8u1

Package: sponsorship-requests Severity: important Dear mentors, I am looking for a sponsor for the package "synergy" to be uploaded for jessie. This is a proposed update and was approved by the release team in #857434 ( https://bugs.debian.org/857434 ) Package name: synergy Version

Bug#859135: CVE-2016-10127: XXE attack via crafted SAML XML request or response

On Thu, Mar 30, 2017 at 02:40:58PM -0400, Antoine Beaupre wrote: > Package: python-pysaml2 > X-Debbugs-CC: t...@security.debian.org > secure-testing-t...@lists.alioth.debian.org > Severity: normal > Tags: security > > Hi, > > the following vulnerability was published for python-pysaml2. > >

Bug#859059: keyboard-configuration: many mac keymap in keyboard-configuration are faulty

forcemerge 535834 859059 thanks On Wed, Mar 29, 2017 at 10:28:42PM +0200, raphael wrote: > > I have a macbook pro with us keymap, I tried different layouts > available in keyboard-configuration to get accents, but ended with Can > not find "mac" in "macintosh_vndr/us". or Can not find

Bug#859138: java.lang.UnsupportedOperationException: The BROWSE action is not supported on the current platform!

Package: openjdk-8-jre-headless Version: 8u121-b13-4 Severity: normal tglase@tglase-nb:~ $ cat >testcase.java <<\EOF import java.awt.Desktop; import java.net.URI; public class testcase { public static void main(String[] args) { try {

Bug#858381: Openvpn inside systemd-nspawn stops shutdown of container

On 03/27/2017 10:58 AM, Alberto Gonzalez Iniesta wrote: > In order to use upstream's systemd unit files, you have to move your > configuration to /etc/openvpn/server and enable it with: > systemctl enable openvpn-server@server *ups* *sorry* My /etc/openvpn/server.conf is a (soft) link

Bug#859133: unblock: pcre3/2:8.39-3

Control: tags -1 confirmed Salvatore Bonaccorso: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > > Hi > > (Know this is somewhere in a thread already, but wanted to make an > explicit unblock request, Cyril Brulebois

Bug#690942: python-pgmagick: Image.attribute does not set the attribute but instead appends to it

Hi all, this is beahviour described in GM's docs - see http://www.graphicsmagick.org/Magick++/Image.html#attribute Retested with libgraphicsmagick++1 (=1.3.25-8) and python-pgmagick (=0.6.4-1) from Stretch. > If the named attribute already exists, the provided text is appended to the

Bug#859087: [Pkg-freeradius-maintainers] Bug#859087: freeradius-mysql.postintst reloads config of not-running-now freeradius

The following patch should address this issue: --- i/debian/freeradius-mysql.postinst +++ w/debian/freeradius-mysql.postinst @@ -5,7 +5,11 @@ set -e case "$1" in configure) -invoke-rc.d freeradius force-reload +# Only reload when FreeRADIUS is running, see #859087 +if invoke-rc.d

Bug#859136: CVE-2016-1566: XSS vulnerability in file browser

Package: guacamole-client X-Debbugs-CC: t...@security.debian.org secure-testing-t...@lists.alioth.debian.org Severity: normal Tags: security Version: 0.9.9+dfsg-1 Hi, the following vulnerability was published for guacamole. CVE-2016-1566[0]: | Cross-site scripting (XSS) vulnerability in the

Bug#859135: CVE-2016-10127: XXE attack via crafted SAML XML request or response

Package: python-pysaml2 X-Debbugs-CC: t...@security.debian.org secure-testing-t...@lists.alioth.debian.org Severity: normal Tags: security Hi, the following vulnerability was published for python-pysaml2. CVE-2016-10127[0]: | PySAML2 allows remote attackers to conduct XML external entity (XXE)

Bug#859134: unblock: ruby-httpclient/2.7.1-1.1

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Please unblock package ruby-httpclient I fixed RC bug #834686 which is about FTBFS due to errors in the test-suite. I applied similar fixes

Bug#834686: ruby-httpclient: diff for NMU version 2.7.1-1.1

Hi Antonio, On 03/30/17 14:40, Antonio Terceiro wrote: > Are you also going to request the unblock, or do you want me to do it? I'll do that now (after checking it isn't there yet). Paul signature.asc Description: OpenPGP digital signature

Bug#859133: unblock: pcre3/2:8.39-3

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi (Know this is somewhere in a thread already, but wanted to make an explicit unblock request, Cyril Brulebois X-Debbugs-CC'ed): Please unblock package pcre3 The upload fixes

Bug#859132: unblock: ghostscript/9.20~dfsg-3

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi Please unblock package ghostscript The recent upload to unstable of ghostscript fixed CVE-2017-7207, a NULL pointer dereference vulnerability in mem_get_bits_rectangle function.

Bug#858851: debarchiver: [INTL:de] updated German man page translation

Hi It is an old self signed cert on that site. Just accept and you should have the source. / Ola Sent from a phone Den 30 mar 2017 18:09 skrev "Helge Kreutzmann" : Hello Ola, On Wed, Mar 29, 2017 at 09:29:29PM +0200, Ola Lundqvist wrote: > Apparently... > Uploading to

Bug#859131: unblock: openpyxl/2.3.0-3

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi Not the maintainer here. Please unblock package openpyxl Unfortunately it looks an unblock for this update was never requested. openpyxl/2.3.0-3 fixed CVE-2017-5992, allowing a remote

Bug#858595: [Pkg-nginx-maintainers] Bug#858595: nginx logrotate doesn't properly switch to new logfiles

> # lsof -p $(systemctl show -pMainPID nginx| cut -d= -f2)|grep /var/log This actually showed no *.log.1 -files being open, but lsof -c nginx |grep ... does > # invoke-rc.d nginx rotate > # lsof -p $(systemctl show -pMainPID nginx| cut -d= -f2)|grep /var/log Didn't start showing *.log.1 -files

Bug#704176: xournal: Export to PDF gives very low resolution

Thanks, I will try to upload the new version soon. Carlo On Thu, 30 Mar 2017, Angus Frinc wrote: Package: xournal Version: 1:0.4.8-1 Followup-For: Bug #704176 Dear Maintainer, Regarding upstream bug report https://sourceforge.net/p/xournal/bugs/165/ this issue have been resolved in commits

Bug#856971: freetype: diff for NMU version 2.6.3-3.1

Control: tags 856971 + pending Dear maintainer, I've prepared an NMU for freetype (versioned as 2.6.3-3.1) and uploaded it to DELAYED/5. Please feel free to tell me if I should delay it longer or if I can reschedule it to upload earlier. Regards, Salvatore diff -u

Bug#810283: jessie: note that armel/iop32x subarch was removed

Baptiste Jammet: > Hi, > > Le 30/03/2017 07:56, Niels Thykier a écrit : >> Control: reopen -1 > >> I saw this commit going to trunk[1] (stretch release notes) but original >> report requested "jessie release notes". > Oh, sorry! And thanks for the catch. > Thanks for trying to fix this bug in

Bug#859130: TAG: lina -- iso-compliant Forth interpreter and compiler

Package: wntpp Severity: wishlist Information: Homepage: https://github.com/albertvanderhorst/ciforth lina is a 32 bit classic Forth system, (mostly) compliant to the ISO Forth94 standard, with a library in source form. It is small, yet allows to generate elf-executables that can be shipped to

Bug#858975: fixed in linux 4.9.18-1

Control: reopen -1 On Thu, 30 Mar 2017 04:20:26 + Ben Hutchings wrote: [...] >    * w1: Enable W1_MASTER_GPIO as module (Closes: #858975) [...] For some reason that change got lost. Ben. -- Ben Hutchings In a hierarchy, every employee tends to rise to his level of

Bug#859029: Acknowledgement (po4a: [INTL:de] updated German man page translation)

On Thu, Mar 30, 2017 at 06:15:02PM +0200, Helge Kreutzmann wrote: > > Is it ok if I directly push to the alioth git repository (as I did for > the SVN one)? Yes, of course! I'd be glad if you could do that. You will find the gits from the following page:

Bug#858431: strip-nondeterminism does not normalize Unix ownership from zip archives

On Wed, Mar 22, 2017 at 07:29:03PM +, Chris Lamb wrote: > > > What I expect to see, and believe should happen, is all UIDs and GIDs in > > > the zip archive become 0, owned by root. > > > > That would be inconsistent with the current behaviour with tarballs, > > which also contain UIDs and

Bug#842388: RFP: zcash -- an implementation of the "Zerocash" protocol

Our APT repo was down briefly at the time of Jeffrey Cliff's comment, but it's up now. -- Daira Hopwood ⚧Ⓐ

Bug#859129: release-notes: [stretch] possible perl-related issues

Package: release-notes Severity: normal Tags: patch Hi, Attached is a patch to en/issues.dbk which adds a section about possible problems in third party software caused by the Perl upgrade under "5. Issues to be aware for stretch" → "5.3. Package specific issues". Thanks for considering,

Bug#840235: Lintian dir-or-file-in-etc-opt should not be 'fatal'

control: tag 840235 + confirmed On Sun, 9 Oct 2016 15:20:25 -0400 David Steele wrote: > Debian Policy does not support blanket rejects based on the Lintian > dir-or-file-in-etc-opt tag. > The tag should be removed from the "fatal" list at >

Bug#859029: Acknowledgement (po4a: [INTL:de] updated German man page translation)

Hello Martin, On Wed, Mar 29, 2017 at 10:37:35PM +0200, Martin Quinson wrote: > package po4a > tag 859029 fixed-upstream > thanks > > Hello, > > On Wed, Mar 29, 2017 at 07:44:51PM +0200, Helge Kreutzmann wrote: > > > > Hello, > > btw. is the SVN repository still the main one? > > actually, no.

Bug#859128: libthrift-perl: installs Thrift.pm outside of perl's @INC paths

Package: libthrift-perl Version: 0.9.3-2 Severity: serious Justification: broken libthrift-perl installs Thrift.pm into /usr/lib/perl5/ but perl's @INC paths do not include that directory, so the module cannot be imported by default. This means the package is broken by default. pabs@chianamo ~ $

Bug#858851: debarchiver: [INTL:de] updated German man page translation

Hello Ola, On Wed, Mar 29, 2017 at 09:29:29PM +0200, Ola Lundqvist wrote: > Apparently... > Uploading to ftp-master (via ftp to ftp.upload.debian.org): > Uploading debarchiver_0.11.1.dsc: done. > Uploading debarchiver_0.11.1.tar.gz: done. > Uploading debarchiver_0.11.1_all.deb: done. >

  1   2   3   >