Bug#920610: Please include http mod to grubnetx64.efi

This would also help our setup. This change has already been made in Ubuntu. https://bugs.launchpad.net/ubuntu/+source/grub2/+bug/1787630

Bug#930012: gcc-8: ICE building firefox 68.0~b6-2 on s390x

Package: gcc-8 Version: 8.3.0-7 Severity: normal See https://buildd.debian.org/status/fetch.php?pkg=firefox=s390x=68.0%7Eb6-2=1559711675=0 /<>/gfx/skia/skia/third_party/skcms/src/Transform_inl.h: In function 'void baseline::exec_ops(const Op*, const void**, const char*, char*, int)':

Bug#929283: zookeeper: CVE-2019-0201: information disclosure vulnerability

On Fri, May 31, 2019 at 09:01:12AM +0200, Salvatore Bonaccorso wrote: > Hi Tony, > > On Thu, May 30, 2019 at 06:47:33AM -0700, tony mancill wrote: > > On Mon, May 27, 2019 at 10:07:38PM -0700, tony mancill wrote: > > > On Sun, May 26, 2019 at 08:58:29PM +0200, Moritz Mühlenhoff wrote: > > > >

Bug#930011: xserver-xorg-video-radeon: Can not login to X

Package: xserver-xorg-video-radeon Version: 1:19.0.1-1 Severity: important Dear Maintainer, Couldn't login to X after buster apt upgrade. Solution was to log in as root and do: #nano /etc/X11/Xwrapper.config Replace: needs_root_rights=yesallowed_users=anybody With: needs_root_rights=yes

Bug#930010: warnings with postgresql 11

Package: pgcli Version: 1.9.0-1 Hi Lennart, when using pgcli in buster which has postgresql 11, I'll get the following ugly warnings on start: ---snip--- $ sudo -u postgres pgcli Version: 1.9.1 Chat: https://gitter.im/dbcli/pgcli Mail: https://groups.google.com/forum/#!forum/pgcli Home:

Bug#929609: different fix upstream

This was solved with a different patch that is already merged upstream: https://github.com/ntop/nDPI/pull/662 -- Bernhard M. Wiedemann openSUSE Developer and Cloud Software Developer and Sysadmin SUSE Linux GmbH, Maxfeldstr. 5, D-90409 Nürnberg GF: Felix Imendörffer, Jane Smithard, Graham Norton,

Bug#930009: clisp: add support of MIPS r6

Package: src:clisp Version: 1:2.49.20180218+really2.49.92-3 Control: forward -1 https://sourceforge.net/p/clisp/patches/56/ MIPS r6 removes the mult/mflo/mfhi, and replace them with mul/muh. -- YunQiang Su mips-r6.diff Description: Binary data

Bug#836355: libglib2.0-0: makes all entries of fstab show up as desktop items

GLib bug on GitLab (https://gitlab.gnome.org/GNOME/glib/issues/1271 "fstab binds appear as mounts (x-gvfs-hide is being ignored)") shows two commits, the second of which https://gitlab.gnome.org/GNOME/glib/merge_requests/366 (and the bug itself) appear to have been fixed in GLib version 2.59.0

Bug#930008: clang-8: --target=arm-linux-gnueabihf should target armv7 instead of armv6

Package: clang-8 Version: 1:8-3 Severity: wishlist Dear Maintainer, The target that one gives to clang needs, to some extent, to match what the toolchain prefix is for binutils. For armhf, that is arm-linux-gnueabihf. When using clang --target=arm-linux-gnueabihf, clang still targets armv6, when

Bug#930007: dtrx does not support password encrypted zip files

Package: dtrx Version: 7.1-2 Severity: wishlist Since this package is currently orphaned... Thank you for to whoever takes on the maintainership of dtrx. This is a very simple feature request. There is currently no way to extract password protected zip files with dtrx. I'd love it it there was.

Bug#908329: lightdm: LightDM shuts down the screen on lock and won't turn it on

Sounds like this thing is still  being a thorn in everyones side doesn't it? On 06/04/2019 06:49 PM, Brian Clemens wrote: > Package: lightdm > Version: 1.26.0-4 > Followup-For: Bug #908329 > > I'm having similar issues.  After using either `dm-tool lock` or > `light-locker-command -l`, the screen

Bug#929482: Info received (Bug#929482: cacti: After apt-get install cacti, the installation stated something old version DB(?) and does not proceed.)

This is not a strictly speaking bug report. But I noticed that when I try to access the mail archive of pkg-cacti-maint via the web interface, my norton anti-virus's safe browser feature shuts the access off initially stating that the web site is a dangerous site, etc. What on earth is going

Bug#908329: lightdm: LightDM shuts down the screen on lock and won't turn it on

Package: lightdm Version: 1.26.0-4 Followup-For: Bug #908329 -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 I'm having similar issues. After using either `dm-tool lock` or `light-locker-command -l`, the screen turns off. I can unlock the screen by typing my password and hitting enter, so the

Bug#893327: gandi-cli: command without manual page, ‘gandi’

Control: found -1 gandi-cli/1.4-2 Control: found -1 gandi-cli/1.5-1 Control: forwarded -1 https://github.com/Gandi/gandi.cli/issues/283 On 18-Mar-2018, Ben Finney wrote: > This is because the upstream source release omits the source for the > manual page. I have reported an issue upstream for

Bug#892264: Hy 0.17.0

I've updated Git with what I think is finally successful packaging of a newer Hy version (0.17.0 ATM). It requires updated "python-astor" (I tested 0.8.0) and "python-rply" (I tested 0.7.7), which I don't have time to chase down properly right now. "dh_auto_test" is passing but the autopkgtests

Bug#929067: reopen

Hi, The patch enable-md-clear.patch in the deb9u6 update for stretch is wrong. It defines md-clear to the 26th bit of FEAT_6_EAX instead of the 10th bit of FEAT_7_0_EDX because the offset is wrong in the patch and the first line does not match. Result: the guest does not see the cpu flag: #

Bug#929467: RFS: tfortune-1.0.0 [ITP]

On Tue, Jun 04, 2019 at 05:06:00PM +0200, Andre Noll wrote: > v3 is pushed out now and contains > a simple debian/rules file which fully relies on dh. Besides > dh_auto_configure I also had to override dh_autoreconf for reasons > explained in the commit message. The package looks almost good now.

Bug#929983: ipxe-qemu: virtio booting no longer works after upgrade to buster

On Tue, 4 Jun 2019, Vagrant Cascadian wrote: > Works for me using a virt-manager configured with virtio or the > hypervisor default for netoworking with the same seabios and ipxe Hmm. > versions. My system was recently upgraded from stretch to buster. This one was a fair bit older, I think it

Bug#930006: flashrom: "nicintel" programmer does not access more than 128K

Package: flashrom Version: 1.0.1-1 Severity: normal Tags: upstream Dear Maintainer, I tried to read an Eon EN29F002NT 256K EEPROM in an Intel Ethernet Pro 100 network card using the -f option. 262144 bytes were stored but instead of reading the whole EEPROM, the first half was read twice. When

Bug#929903: openssl: m2crypto test case regression

On 2019-06-04 14:24:12 [+0200], Matěj Cepl wrote: > Sebastian Andrzej Siewior píše v Út 04. 06. 2019 v 14:15 +0200: > > Let me ping upstream: Matěj, could you please take a look at > > https://bugs.debian.org/929903 > > > > and check if it is okay the test no longer fails or if openssl

Bug#929283: zookeeper: CVE-2019-0201: information disclosure vulnerability

Hi Moritz, > > Thanks. Here is my diff: > > Looks fine, but can you please also include the test case upstream added? > Given that it's quite complex to reconstruct the specific affected ZK setup, > we should at least ship/run the test case. Sure. Here's my updated patch: diffstat for

Bug#930005: regina-rexx: rexxutil error

Package: regina-rexx Version: 3.6-2.1 Severity: grave Justification: renders package unusable Dear Maintainer, When try to run any of my programs that use RexxUtil, got an error, so ran $ regina /usr/share/doc/regina-rexx/examples/regutil.rexx and received the error: regina: symbol lookup

Bug#929877: installation-reports: Buster installer hangs at hard disk step with arabic language

Am Sonntag, 2. Juni 2019 schrieb Holger Wansing: > > Hi, > > Am Sonntag, 2. Juni 2019 schrieb Samuel Thibault: > > ButterflyOfFire, le dim. 02 juin 2019 15:43:41 +, a ecrit: > > > >> "لاحقاً" > > > > > > This word means "later" and can be replaced by "لاحقا". > > > > That avoids the issue

Bug#927856: [Pkg-freeipa-devel] unblock: python-jwcrypto/0.6.0-1

On 4.6.2019 22.40, Paul Gevers wrote: > Ping... [adding the team] > > On 30-05-2019 22:18, Paul Gevers wrote: >> Hi Timo, >> >> On 30-05-2019 13:18, Timo Aaltonen wrote: >>> Hi, I don't know how much would have to be backported, but it's probably >>> better to just unblock freeipa 4.7.2-3

Bug#929597: CVE-2019-12211 CVE-2019-12212 CVE-2019-12213 CVE-2019-12214

On Tue, Jun 04, 2019 at 08:20:33PM +0200, Anton Gladky wrote: > severity 929597 important > thanks > > The fix from upstream is still not available. I am not feeling > confident enough to provide a fix for this complex peace > of code without breaking it. > > Also reducing the severity. If the

Bug#928807: unblock: mesa/18.3.6-2

Hi. It would be great to get as many mesa fixes into buster as possible, so I decided to review all your git commits. I have no idea if the release team will find this useful or not, but there's no way I could construct a useful argument in favor of the inclusion without the review. I am *not*

Bug#930004: gitlab: CVE-2019-12428 CVE-2019-12431 CVE-2019-12432 CVE-2019-12433 CVE-2019-12434 CVE-2019-12441 CVE-2019-12442 CVE-2019-12443 CVE-2019-12444 CVE-2019-12445 CVE-2019-12446

Source: gitlab Version: 11.8.10+dfsg-1 Severity: grave Tags: security upstream Justification: user security hole Hi, The following vulnerabilities were published for gitlab, see [11] for a complete listing. CVE-2019-12428[0]: Mandatory External Authentication Provider Sign-In Restrictions

Bug#919759: Downgrade bug severity

control: severity -1 normal Hi, in order to re-sync the golang package versions in unstable and testing (see [1] and [2] for more details), gokey has been uploaded with the previous version, which does not FTBFS. I'm therefore downgrading this bug to enable the migration of gokey to testing. In

Bug#930003: php7.3 breaks symfony autopkgtest (maybe only deprecation warnings?)

Hi, Le 04/06/2019 à 09:56, Paul Gevers a écrit : > Normally I copy some of the output at the bottom of this report, but in > this case I couldn't spot the real failure Here it is (the trick is to grep for the “KO” string). > Testing src/Symfony/Component/Validator > > […] > > There were 2

Bug#918475: mercurial fails to fetch clone bundles from bitbucket.org (SSL error)

Package: mercurial Version: 4.9-2 Followup-For: Bug #918475 -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Dear Maintainer, I've opened a but report with bitbucket.org regarding this issue: https://bitbucket.org/site/master/issues/18846/bitbucket-servers-require-rsa_pkcs1_sha1 - -- System

Bug#930003: php7.3 breaks symfony autopkgtest (maybe only deprecation warnings?)

Source: php7.3, symfony Control: found -1 php7.3/7.3.6-1 Control: found -1 symfony/3.4.22+dfsg-2 Severity: important X-Debbugs-CC: debian...@lists.debian.org User: debian...@lists.debian.org Usertags: breaks needs-update Dear maintainers, With a recent upload of php7.3 the autopkgtest of symfony

Bug#930002: capstone: CVE-2016-7151

Source: capstone Version: 4.0.1+really+3.0.5-1 Severity: important Tags: security upstream Forwarded: https://github.com/aquynh/capstone/pull/725 Control: found -1 3.0.4-1 Hi, The following vulnerability was published for capstone. CVE-2016-7151[0]: | Capstone 3.0.4 has an out-of-bounds

Bug#930000: debarchiver: [INTL:de] updated German man page translation

Package: debarchiver Version: 0.11.3 Severity: wishlist Tags: patch l10n Please find the updated German man page translation for debarchiver attached. If you update your template, please use 'msgfmt --statistics ' to check the po-files for fuzzy or untranslated strings. If there are such

Bug#930001: xen: XSA-287: x86: steal_page violates page_struct access discipline

Source: xen Version: 4.11.1+26-g87f51bf366-3 Severity: important Tags: security upstream Hi As there are no CVE assigned for the recent XSAs to get a unique identifier inside Debian for tracking I'm filling an individual bug for this XSA. Please see https://xenbits.xen.org/xsa/advisory-287.html

Bug#929999: xen: XSA-293: x86: PV kernel context switch corruption

Source: xen Version: 4.11.1+26-g87f51bf366-3 Severity: important Tags: security upstream Hi As there are no CVE assigned for the recent XSAs to get a unique identifier inside Debian for tracking I'm filling an individual bug for this XSA. Please see https://xenbits.xen.org/xsa/advisory-293.html

Bug#929998: xen: XSA-285: race with pass-through device hotplug

Source: xen Version: 4.11.1+26-g87f51bf366-3 Severity: important Tags: security upstream Hi As there are no CVE assigned for the recent XSAs to get a unique identifier inside Debian for tracking I'm filling an individual bug for this XSA. Please see https://xenbits.xen.org/xsa/advisory-285.html

Bug#929996: xen: XSA-290: missing preemption in x86 PV page table unvalidation

Source: xen Version: 4.11.1+26-g87f51bf366-3 Severity: important Tags: security upstream Hi As there are no CVE assigned for the recent XSAs to get a unique identifier inside Debian for tracking I'm filling an individual bug for this XSA. Please see https://xenbits.xen.org/xsa/advisory-290.html

Bug#929995: xen: XSA-291: x86/PV: page type reference counting issue with failed IOMMU update

Source: xen Version: 4.11.1+26-g87f51bf366-3 Severity: important Tags: security upstream Hi As there are no CVE assigned for the recent XSAs to get a unique identifier inside Debian for tracking I'm filling an individual bug for this XSA. Please see https://xenbits.xen.org/xsa/advisory-291.html

Bug#923070: eom: can't handle wrong file extensions

Package: eom Version: 1.20.2-2 Followup-For: Bug #923070 I do expirience the same issue. With JPEG file with .png extension, the eom displays an error about inability to open a file. Eom should ignore the file extension, or only use it as a hint if at all. GIMP opens this file without any issue.

Bug#927856: unblock: python-jwcrypto/0.6.0-1

Ping... [adding the team] On 30-05-2019 22:18, Paul Gevers wrote: > Hi Timo, > > On 30-05-2019 13:18, Timo Aaltonen wrote: >> Hi, I don't know how much would have to be backported, but it's probably >> better to just unblock freeipa 4.7.2-3 instead, because python-jwcrypto >> is a dep of

Bug#929997: gnome-menus: [INTL:de] updated German po file translation

Package: gnome-menus Version: 3.32.0-1 Severity: wishlist Tags: patch l10n Please find the updated German po file translation for gnome-menus attached. If you update your template, please use 'msgfmt --statistics ' to check the po-files for fuzzy or untranslated strings. If there are such

Bug#929991: xen: XSA-284: grant table transfer issues on large hosts

Source: xen Version: 4.11.1+26-g87f51bf366-3 Severity: important Tags: security upstream Hi As there are no CVE assigned for the recent XSAs to get a unique identifier inside Debian for tracking I'm filling an individual bug for this XSA. Please see https://xenbits.xen.org/xsa/advisory-284.html

Bug#929993: xen: XSA-292: x86: insufficient TLB flushing when using PCID

Source: xen Version: 4.11.1+26-g87f51bf366-3 Severity: important Tags: security upstream Hi As there are no CVE assigned for the recent XSAs to get a unique identifier inside Debian for tracking I'm filling an individual bug for this XSA. Please see https://xenbits.xen.org/xsa/advisory-292.html

Bug#929992: xen: XSA-294: x86 shadow: Insufficient TLB flushing when using PCID

Source: xen Version: 4.11.1+26-g87f51bf366-3 Severity: important Tags: security upstream Hi As there are no CVE assigned for the recent XSAs to get a unique identifier inside Debian for tracking I'm filling an individual bug for this XSA. Please see https://xenbits.xen.org/xsa/advisory-294.html

Bug#928185: unblock: openjdk-11/11.0.3+7-4

Ping... [fixed borked address of doko and added Tony] On 29-05-2019 20:22, Paul Gevers wrote: > Control: tags -1 928185 moreinfo > Control: reopen -1 > > Hi, > > On 28-05-2019 23:50, Emmanuel Bourg wrote: >> Tony Mancill has prepared the tpu upload yesterday and Matthias was ok >> with 11.0.3+7

Bug#929994: xen: XSA-288: x86: Inconsistent PV IOMMU discipline

Source: xen Version: 4.11.1+26-g87f51bf366-3 Severity: important Tags: security upstream Hi As there are no CVE assigned for the recent XSAs to get a unique identifier inside Debian for tracking I'm filling an individual bug for this XSA. Please see https://xenbits.xen.org/xsa/advisory-288.html

Bug#928451: linux: riscv64 updates (change kernel image type to flat image and enable vdso)

Control: tags 928451 pending On 2019-05-05, Karsten Merker wrote: > the riscv64 architecture is changing its standard kernel image > format from ELF to a flat kernel image with a PE/COFF-compatible > header (similar to arm64) to make EFI stub support possible, so > we need to ship

Bug#929990: apparmor: CVE-2016-1585: mount rules grant excessive permissions

Source: apparmor Version: 2.13.2-10 Severity: normal Tags: security upstream Forwarded: https://bugs.launchpad.net/apparmor/+bug/1597017 Control: found -1 2.11.0-3+deb9u2 Control: found -1 2.11.0-1 Hi, The following vulnerability was published for apparmor. This is already siscussed in the

Bug#929607: unblock: qemu/1:3.1+dfsg-8 (pre-upload)

Hi Michael, Jonathan, On Tue, 4 Jun 2019 14:11:23 +0100 Jonathan Wiltshire wrote: > On Mon, May 27, 2019 at 08:23:09AM +0300, Michael Tokarev wrote: > > I've prepared next release of the qemu debian package, with > > a few bugfixes, and am asking if it's okay to upload these > > changes to

Bug#929989: unblock: hugo/0.55.6+really0.54.0-1

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package hugo This is part of the effort to re-sync golang package versions in unstable and testing, see https://bugs.debian.org/928227 unblock hugo/0.55.6+really0.54.0-1

Bug#929988: unblock: gokey/0.0~git20190103.40eba7e+really0.0~git20181023.b4e2780-1

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package gokey This is part of the effort to re-sync golang package versions in unstable and testing, see https://bugs.debian.org/928227 unblock

Bug#929634: easy-rsa: Program name mismatch in manpage

On 5/27/19 6:35 PM, Christoph Biedl wrote: Hi Cristoph! Sorry for the late reply; I fixed the bug on salsa, and will upload a new version for it soon. Thanks, -- μ.

Bug#929956: unblock: glib2.0/2.58.3-2

Simon McVittie (2019-06-04): > Please unblock package glib2.0 to fix CVE-2019-12450. > > glib2.0 builds a udeb (for the graphical installer) so this will need > a d-i ack. > > unblock glib2.0/2.58.3-2 > unblock-udeb glib2.0/2.58.3-2 Tests look good, no objections from the d-i side. Cheers,

Bug#929983: ipxe-qemu: virtio booting no longer works after upgrade to buster

On 2019-06-04, Thorsten Glaser wrote: > On this virtualisation system I’ve upgraded to buster (using libvirt and > Linux-kvm), netbooting VMs no longer works: > > > -BEGIN cutting here may damage your screen surface- > SeaBIOS (version 1.12.0-1) > Machine UUID … > > Press ESC for boot

Bug#929987: ycmd: Node.js code completion not working

Package: ycmd Version: 0+20181101+git600f54d-0.1+b2 Severity: normal Tags: upstream Dear Maintainer, I think that the bug should be filled in ycmd, but I found the bug using vim- youcompleteme. While trying to use vim-youcompleteme for Node.js code completion it didn't work. For example, doing:

Bug#929986: flash-kernel: configfile wrongly handled by both debconf and ucf

Package: flash-kernel Version: 3.99 Severity: normal -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Editing by hand the configfile /etc/default/flash-kernel and then running "dpkg-reconfigure flash-kernel" bogusly presents string "quiet" regardless of actual content in the configfile. Pressing

Bug#929907: libgnutls30: Connections to older GnUTLS servers break

On 2019-06-03 Dominik George wrote: > Hi, >> Is this reproducile with gnutls-cli or is the respective server >> publically accessible? > It is reproducible. > 1. Create a buster chroot for the server, or something >similar. > 2. Install gnutls-bin 3.6.6-3 and ssl-cert. > 3. Start

Bug#929597: CVE-2019-12211 CVE-2019-12212 CVE-2019-12213 CVE-2019-12214

severity 929597 important thanks The fix from upstream is still not available. I am not feeling confident enough to provide a fix for this complex peace of code without breaking it. Also reducing the severity. If the security team decides to keep it "grave" - feel free to revert it. Regards

Bug#929985: ftp.debian.org: Not maintained for years; low popcon

Package: ftp.debian.org Severity: normal Dear FTP masters, Please remove the mcrl2 from unstable (and thereby Buster). It has not been maintained in Debian for years and the popcon is very low. It might return later if upstream packaging work is pushed towards Debian again? Kind regards, Paul

Bug#929984: lspci: please make -nn the default

Package: pciutils Version: 1:3.5.2-1 Severity: wishlist Very frequently, people ask for help with their devices (video, network, etc.) and someone asks them to show the output of lspci. Which they eventually do. But it would be *so* much more helpful if they would show the output of "lspci -nn"

Bug#929983: ipxe-qemu: virtio booting no longer works after upgrade to buster

Package: ipxe-qemu Version: 1.0.0+git-20190125.36a4c85-1 Severity: serious Justification: makes package unusable On this virtualisation system I’ve upgraded to buster (using libvirt and Linux-kvm), netbooting VMs no longer works: -BEGIN cutting here may damage your screen surface-

Bug#929982: chromium: stretch/updates security version won't display google's Oswald font.

Package: chromium Version: 73.0.3683.75-1~deb9u1 Severity: normal The version of chromium in stretch no longer displays fonts on webpages I use regularly. The font in question is googles' Oswald font at the following link: https://fonts.google.com/specimen/Oswald Those fonts all vanish after

Bug#929912: unblock: ltsp/5.18.12-3

Niels Thykier (2019-06-04): > Control: tags -1 confirmed d-i > > Vagrant Cascadian: > > Please unblock package ltsp > > > > unblock ltsp/5.18.12-3 > > Looks good to me, CC'ing KiBi for a d-i ack before completing the unblock. No objections, thanks. Cheers, -- Cyril Brulebois

Bug#929913: unblock: simple-cdd/0.6.7

Niels Thykier (2019-06-04): > Vagrant Cascadian: > > unblock simple-cdd/0.6.7 > > Looks good to me, CC'ing KiBi for a d-i ack before completing the unblock. No objections, thanks. Cheers, -- Cyril Brulebois (k...@debian.org) D-I release manager -- Release

Bug#929913: unblock: simple-cdd/0.6.7

Vagrant Cascadian: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > X-Debbugs-Cc: vagr...@debian.org, debian-b...@lists.debian.org > > Please unblock package simple-cdd > > This update fixes several release-critical and

Bug#929980: kwallet-kf5 FTCBFS: missing Build-Depends: qttools5-dev

Source: kwallet-kf5 Version: 5.54.0-1 Tags: pending kwallet-kf5 fails to cross build from source. This is fixed in git: https://salsa.debian.org/qt-kde-team/kde/kwallet/commit/d825523fe88c40b64f5052da048aa60326064c56 Please close this bug with the next upload to trigger a qa rebuild. Helmut

Bug#929912: unblock: ltsp/5.18.12-3

Control: tags -1 confirmed d-i Vagrant Cascadian: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > X-Debbugs-Cc: vagr...@debian.org, debian-b...@lists.debian.org > > Please unblock package ltsp > > This fixes two

Bug#929977: move vanessa-logger.pc to a multiarch location

Package: libvanessa-logger-dev Version: 0.0.10-3 Tags: patch User: debian-cr...@lists.debian.org Usertags: ftcbfs Control: affects -1 + src:perdition perdition fails to cross build from source, because it cannot find vanessa-logger.pc. During cross compilation, pkg-config only searches

Bug#929978: perdition FTCBFS: does not pass --host to ./configure

Source: perdition Version: 2.2-3 Tags: patch User: debian-cr...@lists.debian.org Usertags: ftcbfs perdition fails to cross build from source, because it does not pass --host to ./configure. The easiest way of doing so - using dh_auto_configure - is not sufficient to make perdition cross buildable

Bug#929979: courier-authlib FTCBFS: fails finding mysql library

Source: courier-authlib Version: 0.69.0-2 Tags: patch upstream User: debian-cr...@lists.debian.org Usertags: rebootstrap courier-authlib fails to cross build from source, because it fails finding mysql libraries. It tries doing so using mysql_config, but that's unusable during cross compilation.

Bug#929793: liblopsub: please make the build reproducible

Andre Noll wrote: > Then I don't grok the purpose of the > > LC_ALL=C date -u -r '$(SOURCE_DATE_EPOCH)' '$(DATE_FMT)' > > command. After all, at least GNU date(1) expects a filename as the > argument to -r. I do not have access to such a system but I believe this is for BSD variants of

Bug#929613: stretch-pu: package minissdpd/1.2.20130907-4.1+deb9u1

Hi Adam, > On Mon, 2019-05-27 at 10:17 +0100, Chris Lamb wrote: > >   minissdpd (1.2.20130907-4.1+deb9u1) stretch; urgency=medium > >    > > * CVE-2019-12106: Prevent a use-after-free vulnerability that > > would allow a remote attacker to crash the process. (Closes: #929297) > >

Bug#929976: /usr/sbin/xtables-nft-multi: ebtables-nft-restore errors with -o option on chains which ebtables-legacy-restore accepts

Package: iptables Version: 1.8.2-4 Severity: important File: /usr/sbin/xtables-nft-multi Dear Maintainer, When using the '-o' / '--out-interface' option I get a regression between legacy ebtables and new nft backed ebtables. E.g., using the following rules: # cat

Bug#929903: openssl: m2crypto test case regression

On Tue, Jun 04, 2019 at 02:24:12PM +0200, Matěj Cepl wrote: > Sebastian Andrzej Siewior píše v Út 04. 06. 2019 v 14:15 +0200: > > Let me ping upstream: Matěj, could you please take a look at > > https://bugs.debian.org/929903 > > > > and check if it is okay the test no longer fails or if

Bug#929482: cacti: After apt-get install cacti, the installation stated something old version DB(?) and does not proceed.

On Sat, 25 May 2019 10:18:06 +0200 Paul Gevers wrote: > Control: tags -1 moreinfo > > Hi ISHIKAWA, > > Thanks for reporting issues you encounter. > > On 24-05-2019 13:00, ISHIKAWA,chiaki wrote: > > dbconfig-generate-include is part of dbconfig-common. Can you check that > you have a file >

Bug#929927: python-django: CVE-2019-12308: AdminURLFieldWidget XSS

Yep, planning on tackling this evening. (PDT) Per discussion with Security Team a DSA isn't warranted for this issue. On Tue, 4 Jun 2019 at 10:11, Chris Lamb wrote: > [Adding lfara...@debian.org to CC] > > Salvatore Bonaccorso wrote > > > CVE-2019-12308[0]: > > AdminURLFieldWidget XSS > > > >

Bug#929975: python-numpy: move python3-matplotlib dependency to depend-indep

Package: python-numpy Version: 1:1.16.2-1 Severity: normal Tags: patch Dear Maintainer, The build dependency on python3-matplotlib creates an unnecessary build dependency loop. I believe the attached patch fixes the packaging so that python3-matplotlib is only required when building the

Bug#928026: release-notes: document the state of security support for golang packages in Buster

Paul Gevers wrote: > + > +Go based packages > + > + The Debian infrastructure currently doesn't properly enable rebuilding > + packages that statically link parts of other packages on a large > + scale. Until buster that hasn't been a problem in practice, but with > the

Bug#928716: mediawiki: File uploads broken (UploadStashBadPathException)

Hi, On 5/9/19 10:11 AM, Chris Boot wrote: > This will apparently be fixed in MediaWiki 1.31.2 when that's released, > but given that file uploads appear to be non-functional it may be worth > carrying a patch locally for the Buster release or soon after. 1.31.2 should be coming out later this

Bug#929467: RFS: tfortune-1.0.0 [ITP]

On Sun, Jun 02, 22:57, Adam Borowski wrote > On Sat, Jun 01, 2019 at 11:17:53PM +0200, Andre Noll wrote: > > Adam, do you want me to provide v3 with debian/rules changed to > > something like the above? > > v2 still suffers from the non-standard perms on usr/ and so on, thus I guess > it'd be

Bug#929969: marked as done (Warning 4: Failed to open /usr/share/qgis/resources/data/world_map.shp: Permission denied.)

See also https://github.com/qgis/QGIS/issues/25876 -- Jürgen E. Fischer norBIT GmbH Tel. +49-4931-918175-31 Dipl.-Inf. (FH) Rheinstraße 13 Fax. +49-4931-918175-50 Software Engineer D-26506 Nordenhttps://www.norbit.de QGIS release

Bug#929974: debian-installer: netinstall on buster set link down for ethernet with r8169 module

Package: debian-installer Severity: normal Dear Maintainer, * What led up to the situation? We use netinstall on buster with this kernel image: https://d-i.debian.org/daily-images/amd64/daily/netboot/debian-installer/amd64/linux And after boot installer shows message "Network device not

Bug#929973: Missing dependency on libhdf5-100

Package: qgis Version: 3.4.8+dfsg-1 With these exact versions appended, $ qgis --help /usr/bin/qgis.bin: error while loading shared libraries: libhdf5_serial_hl.so.100: cannot open shared object file: No such file or directory One must install libhdf5-100 to clear the error. Versions of

Bug#929972: Add HHMMSS to temporary filenames

Package: reportbug Version: 7.5.2 Severity: wishlist Which is newer? /tmp/reportbug-qgis-backup-20190604-12819-kidsf7go /tmp/reportbug-qgis-backup-20190604-5996-5qs5kihp Well we could tell if instead of using what perhaps is the PID, you used also HHMMSS .

Bug#881692: command-not-found: I re-wrote command-not-found

Package: command-not-found Version: 18 Followup-For: Bug #881692 Dear Maintainer, Dear Maintainer, A snap hook was just merged https://github.com/snapcore/snapd/pull/6734 My package now supports the Commands hook that Ubuntu servers export (as well as apt-file). As Debian does not yet ship

Bug#929957: autodep8: allow customization of python module name

Thanks for you response. > This has nothing to do with Django packages. It will fail for any > package where the main module does not match the (upstream) package > name. > > This import test is also the very minimal testing that can be done in a > python package. If you care enough about

Bug#929970: speaker test: mention how to produce an continuous sound on a particular speaker

Package: alsa-utils Version: 1.1.8-2 Severity: wishlist File: /usr/share/man/man1/speaker-test.1.gz Document how to make continuous sound on the front left speaker (while I check the cords to find out where the break is.) Best I could do: while :; do speaker-test -c 2 -s 2; done (To end: do ^Z

Bug#929971: speaker test: be sure to mention to use -c when using -s.

Package: alsa-utils Version: 1.1.8-2 Severity: wishlist File: /usr/share/man/man1/speaker-test.1.gz At -s | --speaker CHANNEL Do a single-shot speaker test for the given channel. The channel number starts from 1. The channel number corresponds to left, right, rear-left,

Bug#929969: Warning 4: Failed to open /usr/share/qgis/resources/data/world_map.shp: Permission denied.

Package: qgis Version: 3.4.8+dfsg-1 Severity: minor Start Qgis for the first time and hit CTRL+SHIFT+P. We see the message Warning 4: Failed to open /usr/share/qgis/resources/data/world_map.shp: Permission denied. in the calling shell. However $ ls -l /usr/share/qgis/resources/data/world_map.shp

Bug#929968: linux: Missing C_CAN module

Source: linux Severity: normal Dear Maintainer, All Debian kernel configurations are missing the C_CAN drivers. This device is available on TI am335x chips, which run, e.g., BeagleBone Black. It would be great to have at least the armmp flavour set the following configuration options:

Bug#929957: autodep8: allow customization of python module name

Hi, On Tue, Jun 04, 2019 at 11:46:52AM +0200, Alexandre Rossi wrote: > Package: autodep8 > Version: 0.18 > Severity: normal > > Dear Maintainer, > > For django packages, autodep8 fails to determine the proper python module > name: > > $ autodep8 > Test-Command: set -e ; for py in $(pyversions

Bug#929964: debian-edu-config: sudo fails on LTSP clients

>Perhaps it is time to switch all clients to sssd? Oh yes, please... Happy to put that on my list of all the tests to do in Hamburg ;). -nik

Bug#929965: unblock: buildbot/2.0.1-2

On Tue, Jun 04, 2019 at 02:30:19PM +0200, Robin Jarry wrote: > Please unblock package buildbot. > > Version 2.0.1-2 resolves a grave security bug in buildbot (#929849). Unblocked; thanks. -- Jonathan Wiltshire j...@debian.org Debian Developer

Bug#929964: debian-edu-config: sudo fails on LTSP clients

[Wolfgang Schweer] > During a recent test I noticed that sudo is unusable on LTSP clients. > The LDAP server connection can't be established. > > While the related configuration (/etc/sudo-ldap.conf) is ok on the > server, the LDAP URI needs to be set explicitly for clients. Why do the LTSP

Bug#929967: CMake: use TBBConfig instead of FindTBB

Package: libtbb-dev Version: 2018~U6-4 X-Debbugs-CC: ti...@debian.org TBB provides a TBBInstallConfig CMake module to generate TBBConfig files for packages: see description here https://github.com/intel/tbb/blob/tbb_2019/cmake/README.rst#tbbinstallconfig TBBConfig files are automatically invoked

Bug#929966: g++-8: ICE (SIGILL in collect2) building musescore-snapshot on riscv64

Package: g++-8 Version: 8.3.0-7 https://buildd.debian.org/status/fetch.php?pkg=musescore-snapshot=riscv64=3.1%2Bdfsg1-1=1559616036=0 Excerpt: […] make[4]: Entering directory '/<>/obj-riscv64-linux-gnu' [ 86%] Building CXX object

Bug#929965: unblock: buildbot/2.0.1-2

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Tags: security Control: affects -1 src:buildbot Please unblock package buildbot. Version 2.0.1-2 resolves a grave security bug in buildbot (#929849). A source debdiff against 2.0.1-1

Bug#929903: openssl: m2crypto test case regression

Sebastian Andrzej Siewior píše v Út 04. 06. 2019 v 14:15 +0200: > Let me ping upstream: Matěj, could you please take a look at > https://bugs.debian.org/929903 Also, the upstream bug for this is https://gitlab.com/m2crypto/m2crypto/issues/258 Best, Matěj --

Bug#929903: openssl: m2crypto test case regression

Sebastian Andrzej Siewior píše v Út 04. 06. 2019 v 14:15 +0200: > Let me ping upstream: Matěj, could you please take a look at > https://bugs.debian.org/929903 > > and check if it is okay the test no longer fails or if openssl suddenly > eats up the error code. Afterall: OK, I have this

Bug#929652: systemd: sshd processes are not put into the correct slice/scope

Sorry for the late reply here. Got caught up in other stuff. I did some digging around. Set the loglevel with systemd-analyze to debug and also added the debug flag to pam_systemd.so. What I noticed is that on boot, when 5000+ machines try to authenticate at once, pam_systemd seems to fall on

  1   2   >