> control: retitle -1 unblock: broadcom-sta/6.30.223.271-17
>
> unblock broadcom-sta/6.30.223.271-17
ping.
I'm asking because this package is marked as autoremoval from testing
on June 8th.
Is there any concern regarding to the unblocking?
Thank you!
Cheers,
--
Roger Shimizu, GMT +9 Tokyo
Package: wims-lti
Severity: wishlist
Tags: l10n patch
Dear Maintainer,
Please find attached the updated Dutch translation of wims-lti debconf
messages.
It has been submitted for review to the debian-l10n-dutch mailing list.
Please add it to your next package revision.
It
Hi Roger,
On 24-05-2021 19:05, Roger Shimizu wrote:
>> control: retitle -1 unblock: broadcom-sta/6.30.223.271-17
>>
>> unblock broadcom-sta/6.30.223.271-17
>
> ping.
>
> I'm asking because this package is marked as autoremoval from testing
> on June 8th.
Although of course slightly annoying
Source: puma
Version: 4.3.6-1
Severity: grave
Tags: security upstream
Justification: user security hole
X-Debbugs-Cc: car...@debian.org, Debian Security Team
Hi,
The following vulnerability was published for puma, it is caused due
to an incomplete fix for CVE-2019-16770.
CVE-2021-29509[0]:
|
Package: syncplay
Version: 1.6.7+repack1-5
Severity: normal
Hi,
currently, the syncplay package includes the client as well as the
server. This means that a server installation also includes the heavy
dependencies that are only needed for the client. Installing syncplay on
a bare-bones Debian
Source: libapache2-mod-auth-openidc
Version: 2.4.4.1-1
Severity: grave
Tags: security upstream
X-Debbugs-Cc: car...@debian.org, Debian Security Team
Hi,
The following vulnerability was published for libapache2-mod-auth-openidc.
CVE-2021-20718[0]:
| mod_auth_openidc 2.4.0 to 2.4.7 allows a
Control: tags -1 patch
Hi,
On 01-05-2021 22:55, Lucas Nussbaum wrote:
> One of the change that occured in the kernel side since bullseye that is
> SCSI device probing is now non-deterministic.
>
> We have been bitten by that at $dayjob because we were still relying on
> disks ordering (sda,
Am Fri, May 21, 2021 at 12:39:42PM +0200 schrieb Alexandre Rossi:
> bullseye : this bug is not RC, so no update.
Security bugs can still be fixed in they are sensibly backportable,
even if not RC. Simply upload to unstable and ask for an unblock.
Cheers,
Moritz
On Mon, 24 May 2021, Michael Biebl wrote:
> Am 24.05.2021 um 21:26 schrieb Mikulas Patocka:
>
> > Init: sysvinit (via /sbin/init)
>
> systemd does create those symlinks.
> I was told, sysvinit (initscripts) would do the same.
>
> Can you reproduce the issue with systemd as PID 1?
With
Package: security-tracker
Severity: wishlist
https://security-tracker.debian.org/tracker/source-package/foo shows
CVEs tagged as "vulnerable (no DSA)". If there's an update
pending (i.e. if a CVE is listed in data/next-point-release.txt) it
could instead be presented as "pending for next point
Hi,
> On Wed, 10 Mar 2021 14:23:10 -0800 Elana Hashman wrote:
> > On 2021-03-10 11:34, Alexander Wirt wrote:
> > > [...]
> > > Uh, oh. Yeah, please.
> >
> > There's been no objections since this email was last sent -- anyone on
> > the list who does not want to be migrated over to the new
Hallo,
* Laurent Bigonville [Tue, Jul 16 2019, 11:55:52AM]:
> Package: apt-cacher-ng
> Version: 3.2-2
> Severity: wishlist
>
> Hi,
>
> Currectly, the apparmor-profiles-extra package includes a profile for
> apt-cacher-ng (/etc/apparmor.d/usr.sbin.apt-cacher-ng)
>
> IMVHO, it would be better if it
Package: curl
Version: 7.74.0-1.2
Severity: serious
Tags: patch upstream
Hi,
ymmv, but as there are probably zillions of scripts out there parsing
the output of curl -w, I think switching to microseconds accidentally
will break enough things to warrant a serious bug.
Upstream bug is
Package: udev
Version: 248.3-1
Severity: important
Dear Maintainer,
*** Reporter, please consider answering these questions, where appropriate ***
* What led up to the situation?
I ran lvm2 testsuite and every test fails. I analyzed the problem, it turns out
that the "/dev/fd" symlink is
Source: mrc
Version: 1.2.3-2
Severity: normal
Dear Maintainer,
The build fails with the following error:
make[1]: Entering directory '/<>'
>> mrc.cpp
>> dummy.cpp
g++ -std=c++17 -o mrc-bootstrap obj/mrc.o obj/dummy.o -L/usr/lib/hppa-linux-gnu
-lboost_program_options
./mrc-bootstrap -o
On Mon, May 24, 2021 at 07:21:45PM +0200, Thorsten Glaser wrote:
> Package: lynx
> Version: 2.9.0dev.6-2
> Severity: normal
> X-Debbugs-Cc: t...@mirbsd.de
>
> Affected: Lynx Version 2.9.0dev.6 (Debian 2.9.0dev.6-2)
> Not affected: Lynx Version 2.8.8dev.16-MirOS-0AB8.1
>
> $ lynx
Package: lynx
Version: 2.9.0dev.6-2
Severity: normal
X-Debbugs-Cc: t...@mirbsd.de
Affected: Lynx Version 2.9.0dev.6 (Debian 2.9.0dev.6-2)
Not affected: Lynx Version 2.8.8dev.16-MirOS-0AB8.1
$ lynx http://www.mirbsd.org/permalinks/wlog2020_e20210207.htm
In Advanced mode, naviate to link #68
Package: debspawn
Severity: serious
Justification: security hole
Tags: security
When building a package using debspawn, it dynamically allocates a
system user that is used to perform the build. Since system users are
allocated sequentially, the chosen uid is very likely to collide with a
uid
Package: src:linux
Version: 5.10.28-1
Severity: important
Dear Kernel team,
As previously reported in bug #959069
(https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=959069) for kernel
5.5.0-2, the config parameter CONFIG_AMD_MEM_ENCRYPT is missing and,
hence, booting an Debian Buster image
Package: dumpasn1
Version: 20191022-2
Severity: wishlist
Tags: patch
Peter Gutmann released dumpasn1 20200928 last year. It'd be great to
have it in debian, as it includes a default configuration with many more
OIDs than the version currently patched.
I looked into the packaging and it looks
Hi Malvin,
> > > I have now upgraded three different machines from (fully updated) Buster
> > > to Bullseye, and all three times KDE Plasma was not usable afterwards.
And I have now tried the update myself, successfully:
- install debian buster wit KDE desktop
- log into plasma, play around
- do
Source: libyang
Severity: important
Tags: security
X-Debbugs-Cc: Debian Security Team
CVE-2021-28906
https://github.com/CESNET/libyang/issues/1455
CVE-2021-28905
https://github.com/CESNET/libyang/issues/1452
CVE-2021-28904
https://github.com/CESNET/libyang/issues/1451
CVE-2021-28903
Am 24.05.2021 um 22:32 schrieb Mikulas Patocka:
On Mon, 24 May 2021, Michael Biebl wrote:
Am 24.05.2021 um 21:26 schrieb Mikulas Patocka:
Init: sysvinit (via /sbin/init)
systemd does create those symlinks.
I was told, sysvinit (initscripts) would do the same.
Can you reproduce the issue
On Mon, May 24, 2021 at 08:44:55PM +0200, Paul Gevers wrote:
> Hi,
>
> On 23-05-2021 08:55, Bill Allombert wrote:
> > On Sat, May 22, 2021 at 11:01:54PM +0200, Paul Gevers wrote:
> >> Hi Bill,
> >>
> >> On 22-05-2021 21:42, Bill Allombert wrote:
> >>> Do you have a list of packages whose upgrade
Am 24.05.21 um 19:00 schrieb Michael Biebl:
Fwiw, I would do the following:
- Move /etc/thinkpad.yaml to /usr/share/doc/thinkpad/examples
- Do not remove /etc/thinkpad.conf (automatically) on upgrades
Or at least only remove it when it is unmodified[1] and do *not* rename
it to dpkg-bak when
Am 24.05.2021 um 21:26 schrieb Mikulas Patocka:
Init: sysvinit (via /sbin/init)
systemd does create those symlinks.
I was told, sysvinit (initscripts) would do the same.
Can you reproduce the issue with systemd as PID 1?
Package: userv
Version: 1.2.0
Severity: normal
Dear Ian,
The userv spec, describing the command-line interface, says:
service-user specifies which user is to provide the service. The user
may be a login name or a numeric uid, or - to indicate that the
service user is to be the same as the
Hi,
On 23-05-2021 08:55, Bill Allombert wrote:
> On Sat, May 22, 2021 at 11:01:54PM +0200, Paul Gevers wrote:
>> Hi Bill,
>>
>> On 22-05-2021 21:42, Bill Allombert wrote:
>>> Do you have a list of packages whose upgrade triggers this issue ?
>>
>>
On Mon, 24 May 2021 at 16:46:54 +0100, Will Tuladhar-Douglas wrote:
> Whenever gnome control panel is open to the Language and Region screen,
> if one selects the "+" icon to add a new input source, there's a
> segfault.
This isn't crashing for me, but I might be able to get
somewhere with it if
Source: pillow
Version: 8.1.2+dfsg-0.1
Severity: important
Tags: security
X-Debbugs-Cc: Debian Security Team
Fixed in experimental, but open for bullseye/sid:
https://pillow.readthedocs.io/en/stable/releasenotes/8.2.0.html#cve-2021-28678-fix-blp-dos
Package: ruby-google-protobuf
Version: 3.14.0-1
Severity: wishlist
I'm trying to update ruby-pg-query to 2.0.3 (required for gitlab
13.12.0) and build fails with
/usr/lib/ruby/vendor_ruby/rubygems/dependency.rb:307:in `to_specs':
Could not find 'google-protobuf' (~> 3.15.5) among 57 total
Fwiw, I would do the following:
- Move /etc/thinkpad.yaml to /usr/share/doc/thinkpad/examples
- Do not remove /etc/thinkpad.conf (automatically) on upgrades
- Put up a big fat NEWS entry with instructions how to convert from
/etc/thinkpad.conf to /etc/thinkpad.yaml
I know, this will leave
Source: rabbitmq-server
Version: 3.8.9-3
Severity: important
Tags: security upstream
X-Debbugs-Cc: car...@debian.org, Debian Security Team
Hi,
The following vulnerability was published for rabbitmq-server.
CVE-2021-22116[0]:
| improper input validation may lead to DoS
Reference is at [1]
Control: tags -1 - moreinfo
Hi Stefano,
On 23-05-2021 01:42, Stefano Rivera wrote:
> Hi Paul (2021.05.22_15:22:35_-0400)
>> Currently this regression is blocking the migration of pyyaml to testing
>> [1]. Of course, pyyaml shouldn't just break your autopkgtest (or even
>> worse, your package),
Source: intel-mkl
Version: 2020.4.304-1
User: debian...@lists.debian.org
Usertags: regression
X-Debbugs-CC: debian...@lists.debian.org
Dear maintainer,
Your package has an autopkgtest, great! However, since the beginning of
this year it started to fail [1]. Looking at the error, it's because
Hi Étienne,
Étienne Mollier (2021-05-24):
> I admit having checkout out from time to time some of the other open
> bugs blocking the release of d-i for bullseye, although I haven't been
> following accurately wether the appropriate fix landed in daily builds
> yet, so thanks for your ping in
Package: nvidia-driver
Version: 460.80-1
Severity: Serious
Dear Maintainer,
Bug report done against the testing 460.73.01-1 package as the unstable
package 460.80-1 is unusable.
Computer doesn't start when my display is plugged to the displayport.
Computer crash when I plug the same display on
Package: debdelta
Version: 0.62
Severity: normal
Dear Maintainer,
I cannot use debdelta at all, because it complains of missing
signatures. I do not know if the problems has something to do with my
systems special options like still using inittab. I have included a file
with all messages so
On Mon, 2021-05-24 at 15:19 -0700, ddueh...@verizon.net wrote:
>
> Comments/Problems:
>
> It’s far easier to just download an image than to try to figure out how to
> download via bittorrent.
The downloads are small enough that I can wait for them to download. I spent
much more time finding
Package: installation-reports
See comments
Boot method:
Image version:
Date:
Machine:
Processor:
Memory:
Partitions:
Output of lspci -knn (or lspci -nn):
Base System Installation Checklist:
[O] = OK, [E] = Error (please elaborate below), [ ] = didn't try it
Initial
Hi Alex,
On Mon, May 24, 2021 at 11:22 PM Alexander Wirt wrote:
> > Ack, please send me the gpg encrypted list of subscribers and I will
> > provide the new list asap.
> jftr, I created the list, it is ready to use. I will import the
> subscribers as soon as I receive them.
Thanks a bunch! \o/
Hi Guillem,
On 3/26/21 10:39 AM, Vineet Gupta wrote:
> On 3/4/21 3:56 PM, Vineet Gupta wrote:
>>> Also just to make sure, the GNU triplets are:
>>>
>>> arc-linux-gnu
>>> arceb-linux-gnu
>>> No ABI modifiers (stuff like “eabi”) for the libc part (“gnu“) right?
>> Actually it seems we are
Hi,
On 24/05/21 at 21:38 +0200, Paul Gevers wrote:
> On 01-05-2021 22:55, Lucas Nussbaum wrote:
> > One of the change that occured in the kernel side since bullseye that is
> > SCSI device probing is now non-deterministic.
> >
> > We have been bitten by that at $dayjob because we were still
Hi again,
Cyril Brulebois (2021-05-21):
> Paul Gevers (2021-05-20):
> > Ok from my side. As this upload is to fix the d-i issue I'm pretty
> > sure that debian-boot is also fine, but I promised kibi this morning
> > that I'll follow the process and wait for an explicit ACK from their
> > side.
Package: radare2
Severity: important
Tags: security
X-Debbugs-Cc: Debian Security Team
CVE-2021-32613
https://github.com/radareorg/radare2/issues/18679
https://github.com/radareorg/radare2/commit/049de62730f4954ef9a642f2eeebbca30a8eccdc
Cheers,
Moritz
Package: open-invaders
Version: 0.3-4.3+b1
Severity: normal
Tags: patch
Dear Debian QA Team,
The program occasionally segfaults during gameplay. A core
dump shows that the problem is caused by the collision
detection routine writing out of bounds on an array.
Specifically,
Dear maintainer
this exact behavior is still present in the current bullseye build under
Gnome (Wayland).
'apt policy audacity
audacity:
...
Version table:
2.4.2~dfsg0-4 -1
990 http://deb.debian.org/debian bullseye/main amd64 Packages
300 http://deb.debian.org/debian
On Mon, May 24, 2021 at 10:43:50PM +0200, Moritz Mühlenhoff wrote:
> Am Fri, May 21, 2021 at 12:39:42PM +0200 schrieb Alexandre Rossi:
> > bullseye : this bug is not RC, so no update.
>
> Security bugs can still be fixed in they are sensibly backportable,
> even if not RC. Simply upload to
Package: wnpp
Severity: wishlist
Owner: James Valleroy
X-Debbugs-Cc: debian-de...@lists.debian.org, jvalle...@mailbox.org
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
* Package name: object-cloner
Version : 0.2
Upstream Author : Kamran Zafar
* URL :
Hi Alex,
On Wed, 10 Mar 2021 14:23:10 -0800 Elana Hashman wrote:
> On 2021-03-10 11:34, Alexander Wirt wrote:
> > [...]
> > Uh, oh. Yeah, please.
>
> There's been no objections since this email was last sent -- anyone on
> the list who does not want to be migrated over to the new list, speak
>
reassign 989032 www.debian.org
retitle 989032 Monaco missing from countries list
tags 989032 = patch
thanks
Qontinuum schrieb am Monday, dem 24. May 2021:
> Submission-Type: update
> Site: debian.qontinuum.space
> Type: leaf
> Archive-architecture: amd64 arm64 armel armhf i386 mips mips64el
Hi Phillip
Am 24.05.2021 um 06:19 schrieb Cyril Brulebois:
trigger to cold plug all devices. Both scripts are set -e. The Xen
Virtual Keyboard driver and at least one other driver have always failed
to trigger due to having absurdly long modalias, but the error used to
be ignored. The kernel
Theodore Y. Ts'o (2021-05-20):
> The real world corner cases are if you are using a 32-bit arm binary
> on a 64-bit binary, and if you are using a sparc64 system (not an
> officially supported Debian arch). I'm not sure if misaligned pointer
> accesses are allowed in arm-32 kernel code, but it's
Package: wifi-qr
Version: 0.2-1
Severity: normal
Dear Maintainer,
* What led up to the situation?
I was looking for a tool which shares files from PC to Android phone,
maybe sending the link via QR.
* What was the outcome of this action?
apt search has found your package. But reading
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: debian-r...@lists.debian.org
Hello,
We had to bump ruby-marcel to a newer version because the mimemagic
dependency - which relies on GPL-licensed mime type data from
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: debian-r...@lists.debian.org
Hello,
Rails was recently affected by 3 CVEs (CVE-2021-2290{2,4} and CVE-2021-22885).
I'm attaching a filtered diff for your review; the diff is
Hi Malvin,
> > I have now upgraded three different machines from (fully updated) Buster
> > to Bullseye, and all three times KDE Plasma was not usable afterwards.
Interesting.
Do you know which set of packages you had installed? Which meta-package?
> > The problem goes away after reinstalling
Mike Hommey writes:
>
> Can you also provide about:support content for that working firefox 88?
Application Basics
--
Name: Firefox
Version: 88.0.1
Build ID: 20210504152106
Distribution ID:
User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:88.0) Gecko/20100101 Firefox/88.0
OS:
Package: nyx
Version: 2.1.0-2.1
Severity: normal
nyx leaks memory, 262144 (== 64*4096) bytes every 5 seconds in my case.
Under Buster it didn't.
Running
strace -e trace=mmap -v -ttt -f -p $(pgrep nyx)
shows calls to
99483: mmap(NULL, 262144, ...)
every 5 seconds. Running
dd
Control: retitle -1 kdenlive: fails to start natively under Wayland with
"QWaylandGLContext::makeCurrent: eglError: 3009, this: 0x555c4734dcc0"
Control: tag -1 upstream
Control: severity -1 wishlist
X-Debbugs-CC: mar...@kucharczyk.im
I'm lowering the severity since native Wayland support in
Control: tag 890947 + unreproducible
I forgot to follow up with this formally. I've tried changing settings
like font, background, etc. from l-g-g-s locally and never got any sort
of truncation issues.
I suspect that if this happens again, the app will log some errors,
maybe in
Package: mirrors
Severity: minor
User: mirr...@packages.debian.org
Usertags: mirror-list
Submission-Type: update
Site: debian.qontinuum.space
Type: leaf
Archive-architecture: amd64 arm64 armel armhf i386 mips mips64el mipsel powerpc
ppc64el s390x
Archive-http: /debian/
Archive-rsync: debian/
Hi Paul,
On Wed, 19 May 2021 22:12:59 +0200 Paul Gevers wrote:
> This new rails version renewed its versioned dependency on ruby-marcel.
> The new ruby-marcel version doesn't look like a targeted fix, so it
> doesn't fit the freeze policy. If I read the changelog correctly, this
> dependency is
Hi,
Ritesh Raj Sarraf (2021-05-24):
> Dear Release Team and Paul,
>
> I am hopeful that this recent upload of open-iscsi at version 2.1.3-5
> is proper. I request an unblock of this version so that the d-i issue
> is fixed.
>
> The patch was prepared in close co-ordination with Cyril from d-i
Hello,
what's the status of the fix/patch in this bug?
We see many leaks for cryptsetup in valgrind tests if running under Debian
(while other distros apparently do not have this problem) and it seems
all reported problems are with poptGetNextOpt ...
Thanks,
Milan
Control: tags -1 patch
On Fri, May 21, 2021 at 09:52:53PM +0200, Paul Gevers wrote:
> Oh, with the current downgraded dependency the issue is gone.
You can also fix it with the attached patch, it's probably the easiest
solution.
Berto
diff --git a/debian/tests/screenshot
Qontinuum schrieb am Monday, dem 24. May 2021:
> I also added mips, mipsel, mips64el and s390x to the mirror (I don't know if
> you have seen it since I forgot to mention it in the comments section)
I hadn't, thanks for the reminder.
Cheers,
--
| .''`. **
forwarded 988789
https://salsa.debian.org/reproducible-builds/diffoscope/-/issues/259
thanks
I've forwarded this upstream here:
https://salsa.debian.org/reproducible-builds/diffoscope/-/issues/259
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org /
Hi Peter, William,
thank you for the detailed report, and for the sample file in the Debian
bug report. The effect also happens with the (debianized) version 8.3b1
which is in Debian Experimental. I don't think this directly connected
to WCS: The output we see here is
%1.8G
which looks
Package: cdebootstrap
Version: 0.7.8+b1
Severity: normal
Hi,
I've tried to bootstrap a Devuan system, with
cdebootstrap \
--verbose \
--keyring /tmp/devuan-archive-keyring.gpg \
beowulf /target http://deb.devuan.org/merged
This successfully downloads one package,
Hi,
FTR, pending now in
https://git.kernel.org/pub/scm/linux/kernel/git/sunxi/linux.git/commit/?h=sunxi/fixes-for-5.13
Salvatore
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
sorry.
I made a mistake in the address, so I will resend it.
-
> Could you please provide the kernel logs from when you tried to
> suspend your machine?
suspended it as follows and extracted it from log file.
> $ sudo mount -o remount,sync /
Hi Antonio (2021.05.24_11:58:22_+)
> The lava upstream tests caught a problem with this patch on buster,
> please cancel the delayed upload.
Cancelled. Great, I missed that. And your upstream PR :)
SR
--
Stefano Rivera
http://tumbleweed.org.za/
+1 415 683 3272
Control: retitle -1 unblock: open-iscsi/2.1.3-5
Dear Release Team and Paul,
I am hopeful that this recent upload of open-iscsi at version 2.1.3-5
is proper. I request an unblock of this version so that the d-i issue
is fixed.
The patch was prepared in close co-ordination with Cyril from d-i
Hi Cyril,
Cyril Brulebois, on 2021-05-24:
> Étienne Mollier (2021-04-28):
> > Device en_US fr_FR
> > /dev/sdb1ok ok
> > /dev/nvme0n1p1 ok ok
> > /dev/md/0ok ok
> > /dev/debian-vg/root ok ok
[...]
> I'm not sure whether you
Hi,
On Sun, May 23, 2021 at 11:53:56AM -0400, Stefano Rivera wrote:
> Control: tags 988998 + pending
>
> Dear maintainer,
>
> I've prepared an NMU for lava (versioned as 2020.12-4.1) and
> uploaded it to DELAYED/5. Please feel free to tell me if I
> should delay it longer.
Thanks for looking
Dear Release team, Adam,
I also came across bugs that are in the buster version, and the last answer
from the release team is from April 26 2020.
Can you please comment ?
Can it be uploaded to buster-updates ?
It would be nice to close this bug with a decision to let Debian users know
about it.
Chris Lamb wrote:
> > APKs (Android app files) often contain Linux ELF shared library files, e.g.
> > lib/arm64-v8a/libtor.so. These are only compared using a binary diff, but
> > they
> > should use the shared library comparison. The output looks like:
>
> It would be great to fix this for
Package: kactivitymanagerd
Version: 5.20.5-1
Severity: important
X-Debbugs-Cc: t...@webologix.com
Dear Maintainer,
*** Reporter, please consider answering these questions, where appropriate ***
* What led up to the situation?
Not shure but I think it happend with Bullseye version.
* What
On 2021-05-18 15:45:52, Andreas Beckmann wrote:
> Source: qthid-fcd-controller
> Version: 4.1-5
> Severity: serious
>
> Hi,
>
> src:qthid-fcd-controller triggers the lintian autoreject tag
> 'bogus-mail-host',
> i.e. if the package would be reuploaded today without changes, it would
> be
Package: aide-common
Severity: normal
https://salsa.debian.org/debian/aide/-/merge_requests/2
Debian has switched to keeping only 4 rotations of syslog instead of 7.
Unfortunately this rule change won't make it to bullseye.
Greetings
Marc
Okay, thank you.
I also added mips, mipsel, mips64el and s390x to the mirror (I don't know if
you have seen it since I forgot to mention it in the comments section)
\ Original Message
On May 24, 2021, 9:09 AM, Peter Palfrader < wea...@debian.org> wrote:
reassign 989032
Thank you everyone for the analysis. Will check how to make it work
correctly, let fix it on the next upload.
Source: eterm
Version: 0.9.6-6
Severity: grave
Tags: security upstream
X-Debbugs-Cc: car...@debian.org, Debian Security Team
Control: found -1 0.9.6-5
Hi,
The following vulnerability was published for eterm.
Strictly speaking the severity to RC is overrated, but I think it is
sensible to make
Am Wed, May 19, 2021 at 07:39:55PM +0200 schrieb Fabian Grünbichler:
> On May 18, 2021 8:42 pm, Moritz Muehlenhoff wrote:
> > Source: rust-hyper
> > Severity: grave
> > Tags: security
> > X-Debbugs-Cc: Debian Security Team
> >
> > CVE-2021-21299:
> >
Package: qemu
Severity: important
Tags: security
X-Debbugs-Cc: Debian Security Team
Multiple low severity vhost-user-gpu, none merged yet:
CVE-2021-3544: multiple memory leaks
CVE-2021-3545: information disclosure due to uninitialized memory reads
CVE-2021-3546: out-of-bounds write in
Source: squid
Version: 4.13-9
Severity: important
Tags: security upstream
X-Debbugs-Cc: car...@debian.org, Debian Security Team
Hi,
The following vulnerabilities were published for squid.
CVE-2021-31806[0], CVE-2021-31807[1], CVE-2021-31808[2], see the SuSE
bug as well at [3].
If you fix the
Package: gnome-control-center
Version: 1:3.38.4-1
Severity: normal
-- System Information
Debian Release: 11.0
Kernel Version: Linux taksaka 5.10.0-7-amd64 #1 SMP Debian 5.10.38-1
(2021-05-20) x86_64 GNU/Linux
Package info:
Package: gnome-control-center
Status: install ok installed
Priority:
Bug #980171 in obs-studio reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/multimedia-team/obs-studio/-/commit/bc9e9f60da6c180164c699f0dc850e2af3232cfb
This
Package: libcurl3-gnutls
Version: 7.74.0-1.2~bpo10+1
Severity: important
Dear Maintainer,
This bug - https://github.com/curl/curl/issues/6825 - is possibly the
underlying cause of #831756 and #987187. Given the importance of
the git workflow in particular, I'd like to request that you consider
Control: retitle -1 unblock: mercurial/5.6.1-4
Made one more change to get a build on mips64el:
mercurial (5.6.1-4) unstable; urgency=medium
* Revert -mno-lra workaround on mips64el, #871514 was fixed. Fixes
occasional FTBFS on mips64el.
-- Stefano Rivera Sun, 23 May 2021 08:37:06
91 matches
Mail list logo
