Package: python-django
Version: 1:1.10.7-2+deb9u9
X-Debbugs-CC: t...@security.debian.org
Severity: grave
Tags: security
Hi,
The following vulnerabilities were published for python-django.
CVE-2020-24583
CVE-2020-24584
If you fix the vulnerabilities please also make sure to include the
CVE
Package: python3-yarl
Version: 1.3.0-1
Tags: upstream
Control: affects -1 + python3-aiohttp-wsgi
According to the documentation at
https://yarl.readthedocs.io/en/latest/api.html#yarl.URL.raw_query_string,
the raw_query_string member contains:
| Encoded query part of URL, empty string if query is
findent-3.1.7-1 is now available in sid.
On Tue, 4 Aug 2020 08:43:50 +0200 Willem Vermin wrote:
Hi Lucas,
thanks for mentioning the failing rebuild of findent.
It is caused by a change in bison-3.7. In this version the generated
file parser.hpp is now included in the generated parser.cpp.
Source: linux
Version: 4.19.118-2
Severity: important
Tags: ipv6 upstream fixed-upstream
IPv6 connectivity (and other network protocols relying on multicast) are
broken when using a Dell D6000 USB-C dock.
Quoting Miguel Rodríguez that filed the equivalent bug in ubuntu:
Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian@packages.debian.org
Usertags: pu
[ Reason ]
Insufficient validation and sanitization of user input exists in url-parse
npm package version 1.4.4 and earlier may allow attacker to bypass security
checks.
[ Impact ]
Control: retitle -1 ITP: Enki - a text editor for programmers
Owner: peter_...@yeah.net
Dear Maintainer,
Enki is a text editor for programmers and It works very well on my computer.
I'm interested in this package and would like to pack and maintain it.
Regards,
Peter Ji
Am 29.08.20 um 10:31 schrieb Francois Mescam:
> There is something I do not understand : in /etc/systemd/system.conf and
> in /etc/systemd/user.conf I have :
>
> LogLevel=err
>
> to filter messages of level info. Why messages of XDG wich are of level
> info appear in the logs ?
LogLevel=err
It seems that upstream has changed the way they set the SO version
information:
https://salsa.debian.org/med-team/nifticlib/-/commit/eabee0938978a7f5e8e28522be3d856dee3975cf#48dc04d58c3c3f29ad0415ca64d38e3231bffd87_0_17
and the previous explicit set in the top-level CMakeLists.txt is gone.
--
Somehow I think your problem might be related to sudo
If you log in as root, and then do the dist-upgrade, do you get the
failure as well?
Please provide a full log in that case.
signature.asc
Description: OpenPGP digital signature
On Fri, 28 Aug 2020 13:16:07 +0200 Michael Biebl wrote:
> Control: tags -1 + upstream
>
> Thanks for the patch. Since that is not a Debian integration issue,
> please consider submitting that upstream as pull request
> https://github.com/systemd/systemd/pulls
>
Once this has been fixed
Hello,
On Wed, 19 Aug 2020 22:39:03 +0200 =?UTF-8?B?SsOpcsOpbXkgTGFs?=
wrote:
> Le mer. 19 ao??t 2020 ?? 21:12, Gianfranco Costamagna <
> locutusofb...@debian.org> a ??crit :
>
> > Source: nodejs
> > Version: 12.18.2~dfsg-1
> > Severity: serious
> >
> > Hello, looks like node-create-hask,
Hi,
> Just wanted to note that this patch has been merged upstream and should
> be part of the 0.12 release.
Thanks. Is there a new upstream release pending, do you know? Would be nice
to get this fixed.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org /
Any updates for this package?
Looking at the ticket it was abandoned without moving further.
Source: ignition-math
Version: 6.4.0+ds-9
Severity: serious
Hello, your package failed to build on arm64, ppc64el, s390x, ia64, powerpc,
ppc64, riscv64
because of a testsuite error:
Start 22: UNIT_Pose_TEST
22/46 Test #22: UNIT_Pose_TEST ...***Failed0.00 sec
Running
Package: aptitude
Version: 0.8.13-2
Starting from a task-desktop-lxde setup, and trying to remove
xserver-xorg-video-all and
reselecting packages I don't want to go away seems to cause issues to aptitude.
I'm keeping an aptitude bundle for initial state, available on request (not
sure it makes
On Tuesday, 1 September 2020 4:57:56 AM AEST Moritz Mühlenhoff wrote:
> There's radio silence on https://bugs.mysql.com/bug.php?id=98839,
They are not very transparent and their public bug tracker is somewhat
redundant, I think... They are also slow to make transitional changes...
> let's
Control: tags -1 pending
Hi,
I pushed the latest upstream version that supports Python3 to Git. The
only remaining issue is in the build-time test:
...
> raise child_exception_type(errno_num, err_msg, err_filename)
E FileNotFoundError: [Errno 2] No such file or
Source: python-flask-cors
Version: 3.0.8-2
Severity: important
Tags: security upstream
X-Debbugs-Cc: car...@debian.org, Debian Security Team
Control: found -1 3.0.7-1
Hi,
The following vulnerability was published for python-flask-cors.
CVE-2020-25032[0]:
| An issue was discovered in Flask-CORS
Package: clevis-dracut
Version: 11-2
dracut: Generating /boot/initrd.img-4.19.0-10-amd64
dracut-install: ERROR: installing 'clevis-decrypt-http'
dracut: FAILED: /usr/lib/dracut/dracut-install -D
/var/tmp/dracut.Bn3yfD/initramfs -a /etc/services clevis-decrypt-http
clevis-decrypt-tang
Control: severity -1 normal
Severity: normal
Downgrading severity since ia64 is an esoteric platform and not worth
preventing the whole mariadb-10.3 from migrating from unstable to
testing for everybody.
Package: kmail
Version: 4:20.04.1-2
Severity: important
Dear Maintainer,
I discovered an issue with kmail on my i386 system, debian/testing.
Description:
Kmail is started and is fetching all new mails. But when I click a mail and
want it to read, it is not shown and kmails is freezing. This
Control: severity -1 important
On Fri, 21 Aug 2020 02:40:13 +0200 Frank Heckenbach wrote:
> % apt-get update
> Hit:1 http://raspbian.raspberrypi.org/raspbian buster InRelease
> Hit:2 http://archive.raspberrypi.org/debian buster InRelease
> Traceback (most recent call last):
...
> KeyError: 'rpi'
On Sun, Dec 01, 2019 at 10:08:49AM +0100, Gunter Königsmann wrote:
> After an
>
> export GTK_IM_MODULE=xim
>
> the combination GTK3.0, wxWidgets and any ribbon, nearly any list view
> and all scrolled windows flicker real bad. At least if the CPU power
> doesn't allow for a repaint before the
On Tue, 13 Aug 2019 13:12:26 +0200 Julian Andres Klode wrote:
> ugh, no. verification is pretty complex, we don't want people to
> reimplement it.
FTR this is exactly what has happened with apt-offline due to:
https://bugs.debian.org/871656
In that report David suggested `apt-helper
Package: lists.debian.org
Severity: wishlist
X-Debbugs-CC: jathanblack...@gmail.com
Hi,
Could you please create a list?
Name: debian-acad...@lists.debian.org
Rationale: The Debian Academy project is running: jathan gave a presentation at
DebConf20, there's an active wiki page at
101 - 125 of 125 matches
Mail list logo