Bug#888878: fails to restore signed backup

Package: duplicity Version: 0.7.11-1 Severity: grave When trying to restore a signed backup, with -v 8 I get following error Volume was signed by key EE04D0D2B40F856F, not 0xEE04D0D2B40F856F Then duplicity hangs (in a futex system call checked by strace). Command was generated by duply as :

Bug#869805: closed by Benjamin Drung <benjamin.dr...@profitbricks.com> (Bug#869805: fixed in fastnetmon 1.1.3+dfsg-5)

Control: reopen -1 On Tue, Jan 30, 2018 at 11:54:04AM +, Debian Bug Tracking System wrote: >... > fastnetmon (1.1.3+dfsg-5) unstable; urgency=medium >... >* Link against atomic if __sync_fetch_and_add is missing (Closes: #869805) >... Unfortunately this problem doesn't seem to be fixed:

Bug#885407: raising severity of this report

Control: severity -1 serious Dear CDBS maintainers, this issue really becomes bothering... Thus, raising severity to an RC bug. (All people switch to DH compat level 11 these days). Thanks for maintaing CDBS, Mike -- DAS-NETZWERKTEAM mike gabriel, herweg 7, 24357 fleckeby mobile: +49

Bug#886460: jessie + wheezy: Regression fix for 0001_CVE-2017-1000480.patch

Hi, On Di 30 Jan 2018 18:02:10 CET, Chris Lamb wrote: Hi Mike, > For wheezy branch: > https://anonscm.debian.org/cgit/collab-maint/smarty3.git/commit/?h=debian/wheezy/updates=9c69bac107523fd5f28c08efd2d5d706e7bed923 > > I can dput both versions to wheezy-security and jessie-security if >

Bug#888877: llvm-toolchain-6.0: FTBFS on arm64: /usr/bin/ld.gold: unsupported TLSLE reloc 549 in shared code

Source: llvm-toolchain-6.0 Version: 1:6.0~+rc1-1 Severity: serious Hi, There are old 6.0 binaries lying around from old llvm-toolchain-snapshot versions, so this is RC as those binaries will prevent llvm-toolchain-6.0 from migrating to testing. [ 42%] Linking CXX shared library

Bug#888876: nodejs: s390x uses illegal instructions on Z10

Source: nodejs Version: 8.9.3~dfsg-11 Severity: serious Control: block 886294 with -1 Hi, Adding a bug against nodejs to track it. The newer version of nodejs in unstable has introduced a regression on Z10 and older processors, as it's using instructions only available on newer processors,

Bug#888875: RM: nageru [powerpc s390x] -- ANAIS; no longer built in these arches

Package: ftp.debian.org Severity: normal Hi, nageru is no longer built on powerpc and s390x. Please drop the old binaries. Thanks, Emilio

Bug#888873: exiv2: CVE-2017-12955

Source: exiv2 Version: 0.26-1 Severity: grave Tags: security upstream Forwarded: https://github.com/Exiv2/exiv2/issues/58 Hi, the following vulnerability was published for exiv2, only affecting experimental version. CVE-2017-12955[0]: | There is a heap-based buffer overflow in basicio.cpp of

Bug#888751: transition: gdbm

Control: tags -1 confirmed On 29/01/18 15:41, Gianfranco Costamagna wrote: > Package: release.debian.org > User: release.debian@packages.debian.org > Usertags: transition > Severity: normal > > Hello Release team, I think it is time to do the transition. > (KAction is MIA now, I prefer to

Bug#888874: exiv2: CVE-2017-11553

Source: exiv2 Version: 0.26-1 Severity: grave Tags: security upstream Forwarded: https://github.com/Exiv2/exiv2/issues/54 Hi, the following vulnerability was published for exiv2, only experimental is affected. CVE-2017-11553[0]: | There is an illegal address access in the extend_alias_table

Bug#888563: transition: fcitx

Control: tags -1 confirmed Control: block -1 with 887711 On 27/01/18 05:37, Boyuan Yang wrote: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: transition > > Dear Release Team, > > I'm working to push fcitx 4.2.9.5 into unstable. >

Bug#888872: exiv2: CVE-2017-12956

Source: exiv2 Version: 0.26-1 Severity: grave Tags: security upstream Forwarded: https://github.com/Exiv2/exiv2/issues/59 Hi, the following vulnerability was published for exiv2, only affecting experimental. CVE-2017-12956[0]: | There is an illegal address access in

Bug#888871: "better" summary and machine readable outputs

Package: numdiff Version: 5.9.0-1 Severity: wishlist Tags: upstream While using numdiff for comparing across a bulk of results files I came up with some wishes which I have shared with Paolo and we decided to cement them in an official bug report. I was whining about "clutter" in the output

Bug#888869: exiv2: CVE-2017-14857

Source: exiv2 Version: 0.26-1 Severity: grave Tags: security upstream Forwarded: https://github.com/Exiv2/exiv2/issues/76 Hi, the following vulnerability was published for exiv2, only affecting the experimental version. CVE-2017-14857[0]: | In Exiv2 0.26, there is an invalid free in the Image

Bug#888655: transition: libpinyin

Control: tags -1 confirmed On 28/01/18 14:30, ChangZhuo Chen (陳昌倬) wrote: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: transition > > Hi Release Team. > > I am working on push libpinyin13 into sid. The following are affacted >

Bug#888868: squid3 FTCBFS for 32bit archs on amd64: adds -m64 to CFLAGS via getconf for LFS

Source: squid3 Version: 3.5.23-5 Tags: patch User: helm...@debian.org Usertags: rebootstrap squid3 fails to cross build from source for 32bit architectures when built on amd64, because getconf yields -m64 for LFS CFLAGS. The key here is to avoid calling into getconf at all by passing

Bug#888870: ITP: astropy-healpix -- BSD-licensed HEALPix for Astropy

Package: wnpp Severity: wishlist Owner: Leo Singer * Package name: astropy-healpix Version : 0.2 Upstream Author : Christoph Deil * URL : http://astropy-healpix.readthedocs.io * License : BSD Programming Lang: C,

Bug#888867: exiv2: CVE-2017-14860

Source: exiv2 Version: 0.26-1 Severity: grave Tags: security upstream Forwarded: https://github.com/Exiv2/exiv2/issues/71 Hi, the following vulnerability was published for exiv2, only affecting the experimental version. CVE-2017-14860[0]: | There is a heap-based buffer over-read in the |

Bug#886294: transition: nodejs

On 29/01/18 20:15, Philipp Kern wrote: > On 2018-01-25 11:36, Aurelien Jarno wrote: >> Bumping the baseline to z196 looks like the easiest way and as you said, >> it would also fix go, rustc and maybe more software. However we discussed >> raising the ISA to z10 about one year and a half ago, and

Bug#819255: nothing depends on wine-binfmt

control: tags -1 pending Hi all, On 01/19/2018 08:41 PM, Adam Borowski wrote: >> This has also been brought up upstream in #39884 for their packages, and >> is now being discussed in wine-devel > > The discussion ended without a conclussion, be it for yes or for no. > > Upstream's packages are

Bug#888866: exiv2: CVE-2017-14863

Source: exiv2 Version: 0.26-1 Severity: grave Tags: security upstream Forwarded: https://github.com/Exiv2/exiv2/issues/132 Hi, the following vulnerability was published for exiv2, only affecting the experimental version. CVE-2017-14863[0]: | A NULL pointer dereference was discovered in |

Bug#888865: exiv2: CVE-2017-14865

Source: exiv2 Version: 0.26-1 Severity: grave Tags: security upstream Forwarded: https://github.com/Exiv2/exiv2/issues/134 Hi, the following vulnerability was published for exiv2, only affecting the experimental version. CVE-2017-14865[0]: | There is a heap-based buffer overflow in the

Bug#888864: exiv2: CVE-2017-1000126

Source: exiv2 Version: 0.26-1 Severity: grave Tags: security upstream Forwarded: https://github.com/Exiv2/exiv2/issues/175 Hi, the following vulnerability was published for exiv2, only affecting experimental version. CVE-2017-1000126[0]: | exiv2 0.26 contains a Stack out of bounds read in webp

Bug#888862: exiv2: CVE-2018-5772

Source: exiv2 Version: 0.26-1 Severity: grave Tags: security upstream Hi, the following vulnerability was published for exiv2, and is only affecting experimental version. Marking grave to indicate should not go into unstable (the issue itself does not really warrant grave severity, so if you

Bug#888863: exiv2: CVE-2017-1000127

Source: exiv2 Version: 0.26-1 Severity: grave Tags: security upstream Forwarded: https://github.com/Exiv2/exiv2/issues/176 Hi, the following vulnerability was published for exiv2, only affecting experimental version. CVE-2017-1000127[0]: | Exiv2 0.26 contains a heap buffer overflow in tiff

Bug#888861: schroot: Add operation mode running chroot image as systemd container

Package: schroot Version: 1.6.10-4 Severity: wishlist After seeing the capabilities of systemd-run and systemd-nspawn, I wonder if it would make sense to be able to configure an schroot to use these facilities. That would have the advantage of being able to provide greater sandboxing - for

Bug#887553: Acknowledgement (xmltooling-schemas: backport to wheezy update for CVE-2018-0486)

Hi Feri, I would like to take you up on the offer to backport to wheezy, it it is still on the table. Please let me know how to download. Obviously we'll upgrade the server ASAP, but that won't be for a bit. Sorry for the extra bother! Thanks very much! Chad.

Bug#888707: Make sure exim4-* are updated before, after, but not during, locales.

On 2018-01-30 積丹尼 Dan Jacobson wrote: > reopen 888707 > retitle Make sure exim4-* are updated before, after, but not during, locales. > thanks > There turns out to be a race condition. > Please adjust the Dependencies to be sure exim4-* is updated before, after, > but not

Bug#888804: iproute2: some upstream URLs broken

Control: tags -1 pending On Mon, 2018-01-29 at 18:47 -0800, Matt Taggart wrote: > Package: iproute2 > Version: 4.14.1-2 > Severity: wishlist > > The Homepage header in debian/control lists > >    https://wiki.linuxfoundation.org/networking/iproute2 > > but that page is 404. It's probably not

Bug#887384: Ability to provide password per-instance

forwarded 887384 https://savannah.gnu.org/bugs/index.php?53021 thanks Hello madduck, thx for your request. I forwarded your request to the upstream bugtracker and lets see what the answer will be.;) Am Dienstag, den 16.01.2018, 08:34 +1300 schrieb martin f krafft: > As far as I can tell, Wget

Bug#766914: Patch dropping hardware access groups

Control: tags 766914 patch Control: tags 821424 patch Hi, Please find attached an (untested) patch dropping the hardware access groups. Saludos 0001-Drop-several-groups-from-the-default-user-groups.patch Description: Binary data

Bug#888691: wget -b produces empty wget-log file

forwarded 888691 https://savannah.gnu.org/bugs/index.php?53020 tags 888691 + upstream confirmed found 888691 1.19.3-1 found 888691 1.19.4-1 thanks Hello Chris, Am Sonntag, den 28.01.2018, 19:50 +0100 schrieb chris: > wget -b "http://dreamicus.com/data/cat/cat-01.jpg; > > produces empty

Bug#887384: [bug #53021] Ability to provide password per-instance

URL: Summary: Ability to provide password per-instance Project: GNU Wget Submitted by: nok Submitted on: Tue 30 Jan 2018 07:28:37 PM CET Category: Feature Request

Bug#888691: [bug #53020] wget -b produces empty wget-log file

URL: Summary: wget -b produces empty wget-log file Project: GNU Wget Submitted by: nok Submitted on: Tue 30 Jan 2018 07:21:26 PM CET Category: User Interface Severity:

Bug#888860: node-js-beautify: cannot install: wants to overwrite /usr/bin/js-beautify from package jsbeautifier

Package: node-js-beautify Version: 1.7.5+dfsg-1 Severity: serious Justification: Policy 10.1 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 node-js-beautify tries to overwrite the file /usr/bin/js-beautify, which (when installed) is already provided by the package jsbeautifier. Please see

Bug#888748: ITP: enki-aseba -- Enki is a fast 2D physics-based robot simulator written in C++

Hi Georges, On Mon, Jan 29, 2018 at 03:19:31PM +0100, Georges Khaznadar wrote: Enki is able to simulate cinematics, collisions, sensors and cameras ^^ possible typo: kinematics? with a K? thanks, Ryan

Bug#888859: RFS: iolang/2017.09.06+dfsg-1 [ITP]

Package: sponsorship-requests Severity: wishlist Dear mentors, I am looking for a sponsor for my package "iolang" * Package name: iolang Version : 2017.09.06+dfsg-1 Upstream Author : "Steve Dekorte" * URL : http://www.iolang.com * License

Bug#888858: btrfs-progs: btrfs send/receive crash when stopped

Package: btrfs-progs Version: 4.13.3-1 Severity: normal Dear Maintainer, when doing a copy like: btrfs send . | btrfs receive target then pressing ^Z (for suspending the job) in the shell has a small (= works for me about 6 out of 7 times) but definite chance of crashing either btrfs send

Bug#888857: planner - missing on buster

Package: planner Version: 0.14.6-5 Branch: buster (testing) Hi, On debian buster is missing the planner application. Please, is posible add the planner to repository. Thanks a lot Best regards Ing. Yadickson Soto +56 9 9668 8798 Usuario Linux #497718

Bug#873945: Confirmed

Hi, I can confirm this issue/bug in mod_http2. Occasional segmentation faults when using mod_http2, reproducible by frequently accessing vhosts with enabled h2 support. I was also able to resolve it by upgrading mod_http2 to the version included in Apache 2.4.29. Coredump backtrace from

Bug#850753: fresh upstream (and ubuntu) is available (1.12.3)

On 15 November 2017 at 00:36, Bastian Venthur wrote: > If there is something blocking a new release, I could also try to help. Or > maybe adding a few more people to the maintainers list in general would be a > good idea for such an important package? The thing blocking a new

Bug#884222: valabind: Fails to build with vala 0.38

On Mon, 22 Jan 2018 06:52:24 -0500 Jeremy Bicha wrote: > https://salsa.debian.org/jbicha/valabind > > Sebastian, could you take a look? > Afaics this looks good and should be uploaded asap. This is the only bit which blocks the vala 0.38 introduction in testing. Regards,

Bug#888837: spamassassin: sa-update failed, spamd does not start anymore

Control: severity -1 normal Resetting severity to normal, since we don't ship with updates enabled at all by default. On Tue, Jan 30, 2018 at 09:07:26AM -0700, Will Aoki wrote: > forwarded 37 https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7540 > thanks > > We hit this bug this morning

Bug#888856: ITP: r-cran-truncdist -- GNU R Functions for extreme value distributions

Package: wnpp Severity: wishlist Owner: Sébastien Villemot * Package name: r-cran-truncdist Version : 1.0-2 Upstream Author : Frederick Novomestky * URL : https://cran.r-project.org/package=truncdist * License : GPL-2+

Bug#888073: glibc: Support amd64 systems without /lib64

X-Debbugs-CC: cl...@debian.org, adcon...@0c3.net, m...@suse.de, j...@suse.cz, a...@suse.de El dt 30 de 01 de 2018 a les 15:01 +, Michael Matz va escriure: > we split the world (into those that do support it, as allowed, and those > that don't, as also allowed). That is the point of giving

Bug#853668: closed by Santiago Garcia Mantinan <ma...@debian.org> (Bug#853668: fixed in squid 4.0.21-1~exp5)

Control: clone -1 -2 Control: reopen -2 Control: reassign -2 src:squid3 On Tue, Nov 21, 2017 at 10:03:22AM +, Debian Bug Tracking System wrote: > #853668: squid3: ftbfs with GCC-7 This bug report is very confusing now. src:squid3 FTBFS. The bug is fixed in src:squid/experimental though.

Bug#886460: jessie + wheezy: Regression fix for 0001_CVE-2017-1000480.patch

Hi Mike, > > For wheezy branch: > > https://anonscm.debian.org/cgit/collab-maint/smarty3.git/commit/?h=debian/wheezy/updates=9c69bac107523fd5f28c08efd2d5d706e7bed923 > > > > I can dput both versions to wheezy-security and jessie-security if > > ok with you. Please let me know. Go for it. Let

Bug#888853: gr-fcdproplus: Please add a watch file

Source: gr-fcdproplus Version: 3.7.11-3 Severity: wishlist Tags: patch User: de...@kali.org Usertags: origin-kali kali-patch Here's the watch file that you could add: -- version=3 opts=filenamemangle=s/.+\/v?(\d\S+)\.tar\.gz/-$1\.tar\.gz/ \ https://github.com/dl1ksv/gr-fcdproplus/tags

Bug#888854: zsh: printf truncates large values

Package: zsh Version: 5.4.2-3 Severity: normal Tags: upstream Forwarded: http://www.zsh.org/mla/workers/2018/msg00138.html cventin% printf "%x\n" 10865468317030705979 zsh: number truncated after 19 digits: 10865468317030705979 f1430962f7cd785 There's no reason to truncate the value on a 64-bit

Bug#882066: ansible-lint fails with ansible 2.4

Yeah, I can confirm this bug too. It is documented here: https://github.com/willthames/ansible-lint/issues/278 If it can help, here's two CI jobs trying to do the same thing, one with the Debian Sid package (fail) and one with the the latest pip version (working): Sid (3.4.13):

Bug#888852: Backport request

Package: ansible-lint Severity: wishlist Hi! We use ansible-lint for the DebConf Video Ansible CI tests and it would be nice to be able to run it on a Stretch machine. Once the package is available in testing, do you think you could also try to backport it to stretch-backports? Thanks! --

Bug#886460: jessie + wheezy: Regression fix for 0001_CVE-2017-1000480.patch

HI Chris, On Di 30 Jan 2018 17:38:33 CET, Mike Gabriel wrote: Hi Chris, hi Luciano, we need to get regression fixes into Debian. A project partner over at FusionDirectory finally managed to trigger the affected code portion and found a flaw in my patch (which is unfortunately really

Bug#888829: wpad-extract broken on stretch

Hi Mike, On Tue, Jan 30, 2018 at 12:17:10PM +, Mike Gabriel wrote: > On Di 30 Jan 2018 13:01:23 CET, Mike Gabriel wrote: > > On Debian Edu stretch, the proxy settings do not get updated from WPAD. > > Cause is the wpad-extract script in /usr/share/debian-edu-config/tools. > > It returns

Bug#886460: jessie + wheezy: Regression fix for 0001_CVE-2017-1000480.patch

Hi Chris, hi Luciano, we need to get regression fixes into Debian. A project partner over at FusionDirectory finally managed to trigger the affected code portion and found a flaw in my patch (which is unfortunately really obvious...): For jessie branch:

Bug#850753: [docker pkg] please please please, or may be we could help?

Current docker version in Debian started to "break on me"... Please let us know/guide us if you need help with the update. -- Yaroslav O. Halchenko Center for Open Neuroscience http://centerforopenneuroscience.org Dartmouth College, 419 Moore Hall, Hinman Box 6207, Hanover, NH 03755 Phone:

Bug#888851: pathspider: need to depend on python3-pycurl >= 7.43.0.1

Package: pathspider Version: 2.0.1-1 Severity: important Hi Iain, Currently this is not a versioned dependency, which means that those upgrading may not have the required version. Thanks, Iain.

Bug#888837: spamassassin: sa-update failed, spamd does not start anymore

forwarded 37 https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7540 thanks We hit this bug this morning with an sa-update. I'd hazard a guess that it's the faulty ruleset described in upstream bug #7540 (fixed less than two hours ago) and will clear up soon, when upstream publishes new

Bug#860503: libxcursor1: suggest /etc/alternatives/x-cursor-theme of the standard cursors

On Tue, 18 Apr 2017 11:05:45 +1000 Kevin Ryde wrote: > Package: libxcursor1 > Version: 1:1.1.14-1+b4 > Severity: wishlist > > It'd be good to have an /etc/alternatives/x-cursor-theme choice which is > the standard cursor font, so that's available when other packages

Bug#857330: Fw: [Bug 857330] bluefish: GTK+ Unicode input somewhat broken

Hi Celejar, I have adopted the bluefish package in Debian. I have reported this problem to the bluefish bug system (https://bugzilla.gnome.org/show_bug.cgi?id=792965). I have reported this error to the authors: They can not reproduce the error with version 2.2.10. Can you reproduce the error with

Bug#888279: ITP: node-css-loader -- css loader module for webpack

Control: tag -1 help On Wed, 24 Jan 2018 20:31:44 +0530 Pirate Praveen wrote:> Description : css loader module for webpack 6 tests are currently failing. 162 passing (1s) 6 failing 1) local minimized plus local: TypeError: Cannot read property

Bug#879816: eclipse-titan depends on gcc-6.3.0, but unstable has gcc-7.2.0

Hi! The problem just re-appeared as gcc was updated to 7.3.0 in unstable: g++ -c -DLINUX -I/usr/include -I/usr/include/titan -I../include -Wall -o EUTRA_Types.o EUTRA_Types.cc In file included from /usr/include/titan/TTCN3.hh:42:0, from EUTRA_Types.hh:19,

Bug#888850: systemd-timesyncd fails to start

Package: systemd Version: 236-6 After a recent installation of buster (aarch64), systemd-timesyncd fails to start systemctl status systemd-timesyncd says: systemd-timesyncd.service: Start request repeated too quickly systemd-timesyncd.service: Failed with result 'exit-code' I notice that

Bug#888236: [Pkg-privacy-maintainers] Bug#888236: torbrowser-launcher: broken by Tor Browser 7.5: No such file or directory: '.../Docs/sources/versions'

On Wed, Jan 31, 2018 at 12:55 AM, Antoine Beaupré wrote: > On 2018-01-30 23:53:47, Roger Shimizu wrote: >> On Tue, Jan 30, 2018 at 4:13 PM, intrigeri wrote: >>> Antoine Beaupre: This bug makes torbrowser-launcher completely unusable on Debian

Bug#888849: Running X clobbers /dev/tty1 owner

Package: xorg Version: 1:7.7+19 On 'buster', I log into the console and then manually run 'startx' from the command line. After X has terminated, the ownership of /dev/tty1 has changed from myself to root, thereby preventing subsequent programs from accessing it. I'm running on an aarch64

Bug#888848: ITP: wlroots -- Modular wayland compositor library

Package: wnpp Severity: wishlist Owner: Guido Günther * Package name: wlroots Version : git snapshots * URL : https://github.com/swaywm/wlroots * License : MIT Programming Lang: C Description : Modular wayland compositor library

Bug#888236: [Pkg-privacy-maintainers] Bug#888236: torbrowser-launcher: broken by Tor Browser 7.5: No such file or directory: '.../Docs/sources/versions'

On 2018-01-30 23:53:47, Roger Shimizu wrote: > On Tue, Jan 30, 2018 at 4:13 PM, intrigeri wrote: >> Antoine Beaupre: >>> This bug makes torbrowser-launcher completely unusable on Debian >>> stretch, as soon as the browser is updated (as it should). >> >>> What's expected

Bug#876224: Fixed in dak already

Should be fixed with this commit: https://salsa.debian.org/ftp-team/dak/commit/4988d9dd0713705751b962746bb73c56609f7ac6

Bug#884179: Gcc 6 Segfault fix in Debian

Hi, late last year i opened a bug and helped out fixing a regression in the gcc found in debian9. https://gcc.gnu.org/bugzilla/show_bug.cgi?id=83301 After that we also opened a Debian bug to get that fix into Debian, where we initially came across the issue.

Bug#888847: grokmirror: missing dependency on python-pkg-resources

Source: grokmirror Version: 1.0.0-1 Severity: important I installed a Debian Stretch system, installed grokmirror on it and then: |$ grok-manifest -m /srv/www/manifest.js.gz -t /srv/git/ |Traceback (most recent call last): | File "/usr/bin/grok-manifest", line 5, in |from pkg_resources

Bug#888846: node-webpack-sources FTBFS with node-source-map 0.7.0+dfsg-1

Package: node-webpack-sources Version: 1.0.1-1 Severity: serious Control: forwarded -1 https://github.com/webpack/webpack-sources/issues/34 Control: tag -1 help With the last upload of node-source-map, node-webpack-sources has 2 tests failing and hence FTBFS. 0.7 has many breaking changes

Bug#888845: libcli FTCBFS: uses the build architecture compiler

Source: libcli Version: 1.9.7-2 Tags: patch User: helm...@debian.org Usertags: rebootstrap libcli fails to cross build from source, because it uses the build architecture compiler as a make default. dh_auto_build passes cross compilers along so once using dh_auto_build, libcli cross builds

Bug#767272: Bug#866670: ca-certificates: update-ca-certificates -f does not pass removed certs to hooks

Dear Maintainer, I still run into this problem using debian stretch packages. ca-certificates 20161130+nmu1 ca-certificates-java 20170531+nmu1 For testing I put/removed my own certificates to/from "/usr/local/share/ca-certificates" and run "update-ca-certificates -f". New certificates are

Bug#887323: dewalls i386 test failure

On 2018-01-30 06:48 +, Philip Schuchardt wrote: > I know I’ve been dragging my feet on this. Let’s see if I can figure this out, > this week. I fished out an old netbook which is actually i386. And installed an unstable chroot on it (very slowly!) last night. Hopefully this will enable some

Bug#888073: glibc: Support amd64 systems without /lib64

Hi, On Tue, 30 Jan 2018, Javier Serrano Polo wrote: > El dl 29 de 01 de 2018 a les 16:24 +, Michael Matz va escriure: > > Is does, but draft means many things, and for the psABI doesn't include > > "making backward incompatible changes is okay". > > I am asking people to be nice, not

Bug#888794: e2fsprogs: fsck.ext4 doesn't find any superblock dumpe2fs suggests

On Tue, Jan 30, 2018 at 12:39:04AM +0100, Hanno 'Rince' Wagner wrote: > Package: e2fsprogs > Version: 1.43.8 > Severity: normal > Tags: upstream > > I have a broken filesystem and try to fsck it. Unfortunately, it is > ~21TB large and therefore not very easy to duplicate with dd or > similar

Bug#888236: [Pkg-privacy-maintainers] Bug#888236: torbrowser-launcher: broken by Tor Browser 7.5: No such file or directory: '.../Docs/sources/versions'

On Tue, Jan 30, 2018 at 4:13 PM, intrigeri wrote: > Antoine Beaupre: >> This bug makes torbrowser-launcher completely unusable on Debian >> stretch, as soon as the browser is updated (as it should). > >> What's expected from stable users here? Is there going to be a stable

Bug#888842: flatpak: D-Bus filtering can be bypassed by a crafted authentication handshake

On Tue, Jan 30, 2018 at 02:31:26PM +, Simon McVittie wrote: > The Debian security team has not generally treated Flatpak sandboxing > bypasses as security vulnerabilities, on the basis that the sandboxed > app provides its own security policy, so no privilege boundary is crossed > (in the

Bug#888844: bowtie: autopkgtest failure

Source: bowtie Version: 1.2.2+dfsg-1 User: ubuntu-de...@lists.ubuntu.com Usertags: origin-ubuntu bionic autopkgtest Hi Maintainer Since the upload of 1.2.2+dfsg-1, bowties's autopkgtests have been failing [1] with the following error: autopkgtest [08:20:41]: test run-unit-test:

Bug#888811: dnscrypt-proxy: upstream gone, new package

Control: severity -1 minor On Mon, 29 Jan 2018 22:51:23 -0800 Brian Clinkenbeard wrote: > Source: dnscrypt-proxy > Severity: serious > Tags: upstream > Justification: fails to build from source (but built successfully in the past) It succeeds to build from

Bug#888843: jackd2: jackd --version returns with non zero exit status

Package: jackd2 Version: 1.9.10+20150825git1ed50c92~dfsg-5 Severity: minor Tags: upstream Dear Maintainer, jackd --version returns with exit status 255. This may break some configure scripts.

Bug#888842: flatpak: D-Bus filtering can be bypassed by a crafted authentication handshake

Package: flatpak Version: 0.6.0-1 Severity: important Tags: security Many Flatpak apps ship with sandboxing metadata that gives them filtered access to the D-Bus session and/or system bus. Gabriel Campana of the Google security team discovered that a malicious app could bypass the intended

Bug#888840: hopenpgp-tools: hokey lint should explicitly warn if there is no usage flags subpacket

Package: hopenpgp-tools Version: 0.19.5-1 Severity: wishlist a "key usage flags" subpacket (https://tools.ietf.org/html/rfc4880#section-5.2.3.21) should be present on every self-sig and every subkey binding signature. the absence of a key usage flags subpacket should itself be displayed as a

Bug#888841: hopenpgp-tools: "hokey lint" should warn if a key is a subkey of itself

Package: hopenpgp-tools Version: 0.19.5-1 Severity: wishlist Discovered at https://github.com/open-keychain/open-keychain/issues/2260 is a bizarre construct, where a key is its own subkey. I've attached it here. hokey lint should notice this misconfiguration and warn about it explicitly.

Bug#886342: systemd-networkd: Unknown section 'Tap'. Ignoring.

Hello Michael, On Tue, 2018-01-30 at 15:07 +0100, Michael Biebl wrote: > Am 30.01.2018 um 15:01 schrieb Ritesh Raj Sarraf: > > > /etc/systemd/network/tap.netdev:5: Unknown section 'Tap'. Ignoring. > > Please always share your full config files you use. > Here's my config. rrs@priyasi:~$ cat

Bug#888839: Upstream has new versions

Package: tidy Version: 1:5.2.0-2 Severity: wishlist Upstream has new versions https://github.com/htacg/tidy-html5/releases .

Bug#886342: systemd-networkd: Unknown section 'Tap'. Ignoring.

Am 30.01.2018 um 15:01 schrieb Ritesh Raj Sarraf: > /etc/systemd/network/tap.netdev:5: Unknown section 'Tap'. Ignoring. Please always share your full config files you use. -- Why is it that all of the instruments seeking intelligent life in the universe are pointed away from Earth?

Bug#888838: libxfce4ui-common: xfce4-keyboard-shortcuts.xml not being installed

Package: libxfce4ui-common Version: 4.12.1-2 Severity: important Dear Maintainer, * What led up to the situation? I was looking for obsolete conf files with the following command: dpkg-query -W -f='${Conffiles}\n' | grep obsolete

Bug#888837: spamassassin: sa-update failed, spamd does not start anymore

Package: spamassassin Version: 3.4.1-6+deb9u1 Severity: grave Justification: renders package unusable Dear Maintainer, I enabled CRON=1 in /etc/default/spamassassin, to enable the cron job to automatically update spamassassin's rules. Then I run /etc/cron.daily/spamassassin, which failed with

Bug#886342: systemd-networkd: Unknown section 'Tap'. Ignoring.

On Tue, 2018-01-30 at 13:17 +0530, Ritesh Raj Sarraf wrote: > I noticed this in my logs today. So I'm also effected by this minor > annoynace bug. I wouldn't call it a minor annoyance. I just booted my uml image today, to test, and tap functionality was broken. rrs@priyasi:~$ systemctl status

Bug#886773: libvirtd: Resource Partitioning does not work with systemd and stretch

Hi, > Could you try installing the systemd-container package as described in > https://bugs.debian.org/887911 and possibly restarting libvirtd to see > if it picks up the newly-installed systemd-machined service? For some reason, I missed your message. This indeed resolves my issue. kind

Bug#888479: add. information, locale

> On Fri, 26 Jan 2018 12:07:37 + (UTC), Jens Sadowski > said: > 698 if ((unsigned char )*ch < NT_NUM_KEYS) > 699 cmd = CurrentKeyMap[(unsigned char )*ch]; > With this, the problem goes completely away (no complaint in

Bug#887985: jdbc

On Tue, Jan 30, 2018 at 02:23:35PM +0100, Elmar Dolgener wrote: >While direct connectors and odbc currently don't work, jdbc remains as a >last resort. Can you spare this bug which is about the mysql connector with this info? It's not related to this bug and besides that it#'s bad advice.

Bug#888836: hitch.service type=simple vs default forking configuration

Package: hitch Version: 1.4.4 Severity: normal Dear Maintainer, When doing a fresh installation of Hitch, the hitch.service file has type=simple, vs the default configuration file in the package sets "daemon=on". This leads to hitch forking on "systemctl start hitch", which systemd (assumed)

Bug#888835: hitch: Missing data directory on fresh install

Package: hitch Version: 1.4.4 Severity: normal Dear Maintainer, On a fresh installation of Hitch, with a trivial configuration, the following warning is logged when starting the daemon: Jan 30 14:20:14 hostname hitch[9648]: {ocsp} Warning: Unable to stat directory '/var/lib/hitch/': No such

Bug#887985: jdbc

While direct connectors and odbc currently don't work, jdbc remains as a last resort. For all companions in misfuture, as there are many details to miss a successful setup, a short summary: 1) apt-get install oracle-java8-installer 2) Download "mariadb mariadb-connector-j" from

Bug#888834: ITP: node-postcss-normalize-url -- Normalize URLs with PostCSS

Package: wnpp Severity: wishlist Owner: Pirate Praveen X-Debbugs-CC: debian-de...@lists.debian.org * Package name: node-postcss-normalize-url Version : 3.0.8 Upstream Author : Ben Briggs (http://beneb.info) * URL :

Bug#888695: nftables: Enabled systemd service blocks boot sequence

On 28 January 2018 at 11:12, Paolo Rosquin wrote: > Package: nftables > Version: 0.8.1-1 > Severity: important > Tags: upstream > > Dear Maintainer, > > When nftables is enabled at boot time, it will fail to load and stop the whole > booting process with "A start job is

Bug#885136: 4digits: Depends on unmaintained pygtk

On Tue, Jan 30, 2018 at 4:51 AM, Pan Yongzhi wrote: > I have updated the code to use gobject > (https://github.com/fossilet/4digits/commit/ffc2e3fe55ca73335e12b0ded42a52d21e555e9e), > though not yet released a version. How should I update it? Am I supposed to > release a new

Bug#888832: Stop CCing secure-testing-t...@lists.alioth.debian.org

Package: reportbug Version: 7.1.8 Severity: important Tags: patch About a decade ago a feature was added to reportbug to CC the testing security team for all security-relevant bug reports. That team doesn't exist for a long time now and the mailing list will soon stop working when Alioth gets

Bug#888833: RM: bibledit-gtk -- ROM; superseded by package bibledit

Package: ftp.debian.org Severity: normal Package "bibledit-gtk" has been superseded by package "bibledit". So there is not really a reason for having the old package. It also has currently some bugs filed against it. I will deal with those bugs later on.

<    1   2   3   >