On Mon, Apr 08, 2019 at 01:38:04PM +, Ivo De Decker wrote:
> The latest version of python-trustme in unstable fails on all:
See also bug 925576. I haven't got round to looking at it yet. I hope to
investigate and fix it soon; patches also welcome.
signature.asc
Description: PGP signature
Package: openssh-server
Severity: serious
Justification: Policy 8.2
Dear Maintainer,
Due to a change in how some options are handled in sshd_config, upgrading to
buster can result in the user getting locked out of their system if the config
is not updated.
Probably the most likely cause (and wha
On 2019-04-08 14:50, Julien Cristau wrote:
> as documented in
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=83 libleveldb's
> ABI changed incompatibly in 1.20. The 1.20-2.1 NMU changed SONAME to
> reflect that, and leveldb-sharp 1.9.1-1.2 was patched to use the new
> SONAME. However, wi
package: src:python-trustme
version: 0.4.0-2
severity: serious
tags: ftbfs
Hi,
The latest version of python-trustme in unstable fails on all:
https://buildd.debian.org/status/package.php?p=python-trustme
Cheers,
Ivo
Looking a bit further it seems that /var/lib/alsa/asound.state doesn't
exist.
That means that we are facing a chicken-egg problem here, the file will
never be created as the service is never started (and then never
stopped).
I don't know, if it helps, but I could manually create a working
sett
Hi Hugo,
On Mon, Apr 08, 2019 at 10:04:35AM +0200, Hugo Lefeuvre wrote:
> > This should help confirming vulnerability in other suites.
>
> 2.7.3-1 and all later releases affected. In addition, both 2.7.3-1 and
> 2.8-1 are affected by the previous str.format issue[0].
>
> [0] https://palletsproje
Package: wnpp
Severity: wishlist
Subject: ITP: r-cran-psychometric -- GNU R applied psychometric theory
Package: wnpp
Owner: Andreas Tille
Severity: wishlist
* Package name: r-cran-psychometric
Version : 2.2
Upstream Author : Thomas D. Fletcher
* URL : https://cran.r-
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package nodejs
Two trivial changes:
- two tests are marked as flaky
(one fails with eatmydata, one fails for no known reason
though i suspect it is related to running tests
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package node-deep-extend
Hi all,
node-deep-extend is vulnerable to CVE-2018-3750 [1]. This vulnerability
has been tagged as unimportant, however patch is simple and package
Hi Filippo,
I realised that msxpertsuite is marked for removal from testing in 7 days
while it is not yet marked for unblock. I'm just pinging this bug to avoid
that it will be removed soon.
Kind regards
Andreas.
--
http://fam-tille.de
Package: wnpp
Severity: wishlist
Subject: ITP: r-cran-multilevel -- GNU R multilevel functions for applied
psychology
Package: wnpp
Owner: Andreas Tille
Severity: wishlist
* Package name: r-cran-multilevel
Version : 2.6
Upstream Author : Paul Bliese
* URL : https://c
Source: leveldb-sharp
Version: 1.9.1-1.1
Severity: serious
Hi,
as documented in
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=83 libleveldb's
ABI changed incompatibly in 1.20. The 1.20-2.1 NMU changed SONAME to
reflect that, and leveldb-sharp 1.9.1-1.2 was patched to use the new
SONAME.
Source: libdmtx
Version: 0.7.5-2.1
Severity: serious
Justication: Policy § 12.5
X-Debbugs-CC: Simon McVittie , ftpmas...@debian.org,
spwhit...@debian.org
Hi,
I just ACCEPTed libdmtx from NEW but the FTP team had noticed that the
copyright stanza for debian/ is labelled GPL-2+ but its content is
Package: release.debian.org
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock diffutils. It fixes a random FTBFS problem which
has already happened on a release architecture but it could in theory
happen anywhere (for now I've decided to disable the test, there will
be
Hi,
On Fri, Apr 05, 2019 at 04:24:14PM +, Debian Bug Tracking System wrote:
> #819331: libvirt0: fails to start KVM instance using readonly ISO image
>
> It has been closed by Christian Ehrhardt .
[...]
> you can disable dynamic ownership in /etc/libvirt/qemu.conf, see [1]
> for the file i
meanwhile 0.6.0 is out, how's your packaging progress on this?
best,
Hello,
bringing ipfs in Debian requires packaging lots of dependencies:
$ dh-make-golang estimate github.com/ipfs/go-ipfs
2019/04/08 07:31:22 Bringing github.com/ipfs/go-ipfs to Debian requires
packaging the following Go packages:
github.com/ipfs/go-ipfs-addr
github.com/ipfs/go-log
github
Based on this analysis by Frédéric Bonnard (thanks a lot!) I infer
that the "sleep 5" does not fix the problem at all, so I'm going
to disable the test completely for buster, as it's clearly buggy.
- Forwarded message from Frédéric Bonnard -
Date: Wed, 27 Feb 2019 16:48:38 +0100
From: Fr
On Monday, April 08, 2019 10:38:40 AM Clint Adams wrote:
> On Sat, Apr 06, 2019 at 12:59:15AM +0200, Stefan Schörghofer wrote:
> > Please remove the package ytalk due to following reasons:
> > - Package is orphaned since > 1500 days
> > - lates upstream release is from 2005
> > - Popcon is < 250
Package: texlive-binaries
Version: 2018.20181218.49446-1
Severity: normal
Dear Maintainer,
dvipdfmx in texlive-binaries_2018.20180907.48586-2_amd64.deb works well
with "-m option".
However, dvipdfmx in texlive-binaries_2018.20181104.49075-1_amd64.deb
and later igonres "-m option".
*** Report
Package: mandos-client
Version: 1.8.3-3
Severity: normal
With --global-options=--debug in conf/conf.d/mandos/plugin-runner.conf,
mandos runs into a memory leaks:
} ~ # /scripts/init-premount/mandos
} ~ # Mandos plugin mandos-client: Ignoring hook "." - not a file
} Mandos plugin mandos-client: Ig
Package: mandos-client
Version: 1.8.3-3
Severity: important
Hi!
This is a pretty minimal, fresh buster. It has also dropbear-initramfs
installed so that may also be to blame.
During boot, mandos' plugin-runner can't run the plugins:
| ~ # /lib/mandos/plugin-runner: fexecve for
/lib/mandos/plu
Package: dgit
Version: 8.4
Severity: wishlist
Sam Hartman pointed out the following possible workflow practices:
1. Use `3.0 (quilt)' with single-debian-patch
2. Expect dgit to generate or update debian/patches/
3. Not keep debian/patches in git at all
4. Have a salsa branch which does not co
Control: tag -1 + moreinfo
> I have spent a while trying to reproduce this. I found that there is
> indeed code which is supposed to remove taints when they are
> overridden.
>
> It wasn't tested at all. But I wrote a sketch of a test, which I
> thought would resemble what happened to this pack
Package: release.debian.org
User: release.debian@packages.debian.org
Usertags: unblock
Severity: normal
Hey,
Please unblock package ruby-hangouts-chat.
This was affected by #926247, which was an RC bug.
However, in the latest upload, this has been fixed and is good to go.
The bug was reporte
retitle -1 check signing key availability (add short keyid test case)
severity -1 minor
Sam writes that the consequences of this bug are that dgit does a lot
of work and then fails with a less than helpful error message. (Ie,
as I thought, it does not carry on and use a possibly-wrong key, so
thi
Package: wnpp
Severity: wishlist
Owner: Thomas Goirand
* Package name: python-pure-sasl
Version : 0.5.1
Upstream Author : Tyler Hobbs
* URL : https://github.com/thobbs/pure-sasl
* License : Expat
Programming Lang: Python
Description : pure Python clien
On Sat, Apr 06, 2019 at 12:59:15AM +0200, Stefan Schörghofer wrote:
> Please remove the package ytalk due to following reasons:
> - Package is orphaned since > 1500 days
> - lates upstream release is from 2005
> - Popcon is < 250
How are these good reasons?
Hello!
> What I see, you do not run autopkgtest within the pipelines. In my
> understanding, this test should go to a autopkgtest. I'll add it to my TODO
> list, to write such an test for mariadb, when I'm writing autopkgtest for
> akonadi.
We do run: see
https://salsa.debian.org/mariadb-team/ma
tags 854714 + patch
thanks
Hi. I've noticed this is still happening in buster, and contrary to
what I suggested in the initial bug report, the number of CPUs have
absolutely nothing to do with this. To reproduce, just build the
package a lot of times. I've added some more build logs here:
https:/
Hello Brian,
as i saw on github, Michael provided a patch, which solve the problem.
Any date where this patch will be integrated into Debian Buster?
Kind regards and a happy weekend.
Emin Kaya
Am Di., 5. März 2019 um 11:48 Uhr schrieb Brian Potkin <
claremont...@gmail.com>:
> forwarded 921741
Package: util-linux
Version: 2.33.1-0.1
Severity: normal
Tags: patch a11y
Dear Maintainer,
the rename.ul, which is into the package, is not listed among the possible
alternatives for the "rename" command, like - for example - prename or
file-rename. Thus the command is reacheable only by calling
Hi Guido,
On Mon, Apr 08, 2019 at 11:26:58AM +0200, Guido Günther wrote:
> Hi,
> On Sun, Apr 07, 2019 at 03:33:53PM +0200, Salvatore Bonaccorso wrote:
> > Hi Guido,
> >
> > On Fri, Apr 05, 2019 at 09:54:30PM +0200, Salvatore Bonaccorso wrote:
> > > Hi Guido,
> > >
> > > On Fri, Apr 05, 2019 at 0
Package: dirmngr
Version: 2.2.12-1
On a fresh install of buster from a week ago, dirmngr was working
before. Now when I try to do `gpg --recv-keys`, dirmngr fails:
$ gpg --recv-keys 00aa5556
gpg: connecting dirmngr at '/run/user/1000/gnupg/S.dirmngr' failed: IPC
connect call failed
gpg: keyser
On Tue, Apr 02, 2019 at 12:32:52PM +0100, Colin Watson wrote:
> If it were just the VMware issue, then my inclination would be to leave
> OpenSSH as it is: it's proprietary software and the only leverage we
> have to get them to fix it is to have their customers complaining.
A VMware employee popp
control: tags -1 pending
On Sun, Apr 07, 2019 at 02:12:54PM +0200, Andreas Beckmann wrote:
> I think the symlink setup is overly complicated by using both
> /lib and /usr/lib. You should either move everything to /lib
> (if that is really required for compatibility with libsystemd0)
> or just rest
Control: reassign -1 release-notes
On Sun, Apr 07, 2019 at 08:36:11PM +, Sam Bull wrote:
> Package: openssh-server
> Severity: serious
> Justification: Policy 8.2
Policy 8.2 is "Shared library support files", which seems to have
nothing to do with this.
> Due to a change in how some options
On Sun, 2019-04-07 at 11:31 +0200, Thomas Monjalon wrote:
> 26/03/2019 19:05, Jason Gunthorpe:
> > On Tue, Mar 26, 2019 at 02:51:25PM +0100, Thomas Monjalon wrote:
> > > 26/03/2019 10:21, Christian Ehrhardt:
> > > > > > rdma-core configures modprobe for ib/rdma modules, installs
> > > > > > some
>
Package: spyder3
Version: 3.3.3+dfsg1-1
Severity: normal
Dear Maintainer,
A new version of Spyder (3.3.4) is available : https://github.com/spyder-
ide/spyder/releases
You may consider upgrading the current package to this version.
Regards,
Sébastien
-- System Information:
Debian Release: b
Package: gscan2pdf
Version: 2.5.1-1
Severity: normal
When I open a session, then select a few pages and hit "save", the
dialog takes about 8 seconds to show up.
At the same time, in the debug log, I see:
INFO - fc-list : family style file
INFO - Spawned PID 7825
and then am left with
mad
Am 06.04.2019 um 13:42 schrieb Ivo De Decker:
> Control: tags -1 moreinfo
>
> Hi,
>
> On Tue, Mar 26, 2019 at 11:33:20AM +0100, Patrick Matthäi wrote:
>> I would like to upload glusterfs 5.5-1 (currently in experimental) to sid and
>> target this release for buster. It is a bugfix only release, a
Package: python-scipy
Version: 1.1.0-4
Followup-For: Bug #919929
Curiously, only python2 is affected now.
Same sympton, MemoryError, now in TestInt32Overflow.test_matvecs and
TestInt32Overflow.test_dia_matvec.
Assuming the MemoryError is again triggered by excessive warnings, the
warning generati
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Sun, 2019-04-07 at 14:22 +0200, Christian Ehrhardt wrote:
> I have no Debian VM that supports autopkgtest, maybe you could upload
> that to experimental or the QA team could otherwise help to verify the
> suggestion.
> Or - if you want - you can t
Hi,
On Sat, May 19, 2018 at 07:18:06PM +0200, Sandro Knauß wrote:
> I now created a debdiff for kdepim. The patch depdends on the new symbol that
> was added in new messageviewer (see #899127).
Does this bug still affect buster/sid? From the bug log and the tracker for
CVE-2017-17689, it look li
Hi,
On Sun, Apr 07, 2019 at 03:33:53PM +0200, Salvatore Bonaccorso wrote:
> Hi Guido,
>
> On Fri, Apr 05, 2019 at 09:54:30PM +0200, Salvatore Bonaccorso wrote:
> > Hi Guido,
> >
> > On Fri, Apr 05, 2019 at 07:10:25PM +0200, Guido Günther wrote:
> > > Hi,
> > > On Thu, Apr 04, 2019 at 10:30:14PM +
Package: gdebi
Version: 0.9.5.7+nmu3
Severity: minor
Tags: l10n
Dear Maintainer,
I install a deb package with gdebi, gdebi asks if I really want to install the
package, I answer o (oui ie yes in French).
In French:
Voulez-vous installer le paquet logiciel ? [o/N] :o
Immediately, gdebi prints:
/u
Package: apt-cacher-ng
Version: 3.1-1
We've configured an apt proxy server with apt-cacher-ng, while it works for
most packages, when trying to install rabbitmq-server with mentioning a
specific version it fails with 403 error.
Any attempts to use regex in the V/PfilePatternEx ended up with the sa
Package: src:linux
Version: linux-image-4.19.0-4-amd64
Severity: normal
--- Please enter the report below this line. ---
I realized that the trackpad and trackpoint stopped working recently in my
Thinkpad P50 laptop.
I am using Debian testing updated daily. The problem has been detected with
the
Package: release.debian.org
User: release.debian@packages.debian.org
Usertags: unblock
Severity: normal
Please unblock package libpng1.6
Finally, the arm issue we are facing since a lot of time (upstream had a look,
to understand if the failing test
was a real bug or a testsuite one, and now
> This should help confirming vulnerability in other suites.
2.7.3-1 and all later releases affected. In addition, both 2.7.3-1 and
2.8-1 are affected by the previous str.format issue[0].
[0] https://palletsprojects.com/blog/jinja-281-released/
--
Hugo Lefeuvre (hle)|www
I am contacting you concerning my previous mail waiting for your
respond towards the deposited fund (5.5m) By my late client that you
bear the same surname.barr laben benson,(Esq)
usertag 917501 bsp-2019-04-se-gothenburg
thank you
On Sat, 30 Mar 2019 19:35:37 +0100 Giovanni Mascellani
wrote:
> I tried to work on this bug for a few hours, but I am quite puzzled:
> first of all, the issue I am experiencing right now is different from
> what is already described in the bug l
Package: compiz-core
Version: 2:0.8.16.1-10
Tags: upstream
Owner: b...@hypra.fr
User: b...@hypra.fr
Usertags: hypra colomban
Forwarded: https://gitlab.com/compiz/compiz-core/issues/134
DESCRIPTION FROM UPSTREAM:
Hi,
How would you feel about a GSettings backend for storing and loading
configurat
package: tdbcmysql
version: 1.1.0-1
severity: serious
Hi,
tdbcmysql has a hard-coded (build-)dependency on "libmariadbclient18 |
libmysqlclient18 | libmysqlclient20". This is clearly wrong.
This now blocks the migration of mariadb-10.3 to testing, because
libmariadbclient18 is no longer built.
Hey,
> Can you please test again with the latest version in Debian unstable
> and verify this is fixed now?
I tested the 41873 build and now akonadi-server is able to start a fresh
installation with only madiadb-server-core. So 1:10.3.13-3 will finally make it
possible to switch back to madiadb
Package: release-notes
Severity: normal
We need to document that PostgreSQL clusters need reindexing (or a
dump-restore upgrade) because glibc changes collation.
https://lists.debian.org/debian-glibc/2019/03/msg00030.html
Patch from my side pending.
Christoph
Hi,
I'm working on a potential jinja2 Debian LTS security update. Here is a
proof of concept which allows to easily reproduce the issue. This should
help confirming vulnerability in other suites.
>>> from jinja2.sandbox import SandboxedEnvironment
>>> env = SandboxedEnvironment()
>>> config = {'S
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package pbgenomicconsensus
Hi,
since this package went through several iterations until the autopkgtest
was finally fixed I'm hereby refreshing the metadata of the unblock
On Sun, Apr 07, 2019 at 09:17:13PM +0200, Thomas Lange wrote:
>
>
> My proposal to list these items on /doc:
>
> Manual licenses comply with DFSG
> We use Docbook XML for our documents
> The sources should be at https://salsa.debian.org/ddp-team
> www.debian.org/doc/ will be the
Hi,
Pierre-Elliott Bécue:
> See the two latest commits for lxc:
> https://salsa.debian.org/lxc-team/lxc/commits/master
> Tell me what you think about them,
Sweet, thanks! :)
> and if needed don't hesitate to submit a MR! :)
There you go: https://salsa.debian.org/lxc-team/lxc/merge_requests/4
C
101 - 160 of 160 matches
Mail list logo