Bug#851877: fails every time

On Mon, May 15, 2017 at 1:52 AM, Guillaume Delacour wrote: > Hi, > > Le 15/05/2017 à 00:50, Adam Borowski a écrit : > > > > > So it's a fully _reproducible_ bug, with a well-defined immediate cause > > (even if we haven't identified the indirect cause yet) -- unlike the > >

Bug#189026: side-by-side diffs are unreadable

Hi. The current behavior of splitting diffs into whitespace-separated tokens completely obliterates readability of side-by-side diffs. Can we do something about that? I'm attaching a patch to handle this case specifically. This isn't very nice, but it proves the concept. To make side-by-side

Bug#862607: ucf: [PATCH] diffs are rendered with broken spacing

Package: ucf Version: 3.0036 Severity: normal Hi. Currently diffs generated by ucf produce TABs, which can make diffs render improperly. This is especially an issue with side-by-side diffs, where clobbered spacing makes the output unreadable. I'm attaching a patch that asks diff to expand TABs

Bug#771790: Package broken

I'm interested in fixing this package if there are still users interested in using it. Popcon says 1 machine uses this: https://qa.debian.org/popcon.php?package=dirty.js Marcos, do you still use this package?

Bug#853801: useless with this bug

Control: severity -1 grave Well, since left click is the only documented way to set up any mapping (doing it manually requires 1. seeing a sample config, 2. having the table of key codes), the package is effectively useless as shipped. The patch doesn't apply, need to revert that clang "fix"

Bug#862605: Missing ondemand CPU governor.

Package: linux-image-3.16.0-4-amd64 Version: 3.16.39-1+deb8u2 Severity: serious A kernel update removed the cpufreq_ondemand.ko kernel module. Don't know exactly which version. The module was build as per the kernel configuration -- grep -i ondemand config-3.16.0-4-amd64

Bug#862606: intel-microcode: microcode update may hang Xeon E7-8891v4/E7-8893v4

Package: intel-microcode Version: 3.20160607.1 Severity: important Erratum BDF90 (BDX90?) for the Xeon E7v4 (and maybe Xeon E5v4) may result in a hung system on all affected processors when a microcode update is attempted during boot on a Debian system with the intel-microcode package installed.

Bug#861699: RFS: writegood-mode/2.0.2-1 [ITP]

control: tag -1 -moreinfo On Sun, May 14, 2017 at 05:02:23PM -0700, Sean Whitton wrote: > control: owner -1 ! > control: tag -1 +moreinfo > > On Tue, May 02, 2017 at 04:58:31PM -0400, Nicholas D Steeves wrote: > > I am looking for a sponsor for my package "writegood-mode" > > a5b0ac4 looks

Bug#862603: te923con: FTBFS on non-Linux: usb_*_driver_np undefined

Source: te923con Version: 0.6.1-1 Severity: important Justification: fails to build from source The build of te923con for hurd-i386 (admittedly not a release architecture) failed: te923usb.c: In function 'te923_handle': te923usb.c:67:9: warning: implicit declaration of function

Bug#862604: dh-make-elpa: extending create_docs{}

Package: dh-make-elpa Version: 0.7.1 Severity: wishlist Hi Sean, I thought I'd take a quick look at dh-make-elpa's create_docs, because I've been using dh-make-elpa a lot recently. What do you think of iteratively printing (filename\n) from a list generated from *.md and *.org instead of

Bug#789150: #789150 boot failure with root=UUID= and software RAID

I ran into this issue myself and was trying to figure out how to solve it. Examining the initrd image which had been created, the 63-md-raid-arrays.rules and 64-md-raid-assembly.rules files were absent. As mentioned in #789150, mdadm now has its own /usr/share/initramfs-tools/hooks/mdadm which

Bug#862602: libcore-cache-clojure: Package is missing a dependency

Package: libcore-cache-clojure Version: 0.6.5-1 Severity: grave Justification: renders package unusable Control: block -1 by 855722 Hello! While working on packaging libstencil-clojure, I noticed that the dependency org.clojure/data.priority-map was missing, and traced it down to this package:

Bug#862601: libmaven3-core-java: Version upgrade request to 3.5.0

Package: libmaven3-core-java Version: 3.3.9-4 Severity: wishlist Control: block 862233 by -1 To facilitate packaging leiningen2, this package needs an upgrade to version 3.5.0. This is because its dependency libpomegranate-clojure currently depends on a version of maven much older than

Bug#862422: [pkg-golang-devel] Bug#862422: gccgo-go: wrap gccgo-7 for full Go 1.8 runtime

Michael Hudson-Doyle writes: > Makes sense to me, I'd be happy to upload that change to experimental. Great, thanks! > What's the timeframe for gccgo-7 getting into unstable? Just waiting for > buster development to open? Presumably; I'm not aware of another

Bug#861584: xfwm4 bug report filed

See XFCE / xfwm4 bug report filed here: https://bugzilla.xfce.org/show_bug.cgi?id=13575 See recent email here: https://mail.xfce.org/pipermail/xfce/2017-May/035584.html

Bug#860609: influxdb: FTBFS: Test failures

Version: 1.1.1+dfsg1-4 On Wed, 19 Apr 2017, Lucas Nussbaum wrote: > Source: influxdb > Version: 1.1.1+dfsg1-2 > Severity: serious > Tags: stretch sid > User: debian...@lists.debian.org > Usertags: qa-ftbfs-20170418 qa-ftbfs > Justification: FTBFS in stretch on amd64 > > Hi, > > During a

Bug#842634: Bug#851877: fails every time

Control: severity -1 important On Mon, May 15, 2017 at 01:52:09AM +0200, Guillaume Delacour wrote: > Le 15/05/2017 à 00:50, Adam Borowski a écrit : > > So it's a fully _reproducible_ bug, with a well-defined immediate cause > > (even if we haven't identified the indirect cause yet) -- unlike the

Bug#861699: RFS: writegood-mode/2.0.2-1 [ITP]

control: owner -1 ! control: tag -1 +moreinfo On Tue, May 02, 2017 at 04:58:31PM -0400, Nicholas D Steeves wrote: > I am looking for a sponsor for my package "writegood-mode" a5b0ac4 looks good, except I think you should install the README, which could be quite useful to users. If you're able

Bug#771671: Fixing kexec-tools bugs in jessie

On 05/14/2017 05:59 AM, Adrian Bunk wrote: > Hi Khalid, > > the following RC bugs are open for kexec-tools in jessie and > seem worth fixing: > > 771671 /sbin/kexec: Unable to load kdump kernel on i386 > 782033 kexec-tools: Reboots the machine while removing the package > 785714

Bug#862600: tests.r-b.o: tests version from sid in testing due to the source is in testing due to Built-Using:…

Package: jenkins.debian.org Severity: normal x-debbugs-cc: b...@debian.org Dear Maintainer, < bunk> https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/golang-github-rackspace-gophercloud.html < bunk> This seems confused by the more recent source that is in stretch due to

Bug#842634: Bug#851877: fails every time

Hi, Le 15/05/2017 à 00:50, Adam Borowski a écrit : > > So it's a fully _reproducible_ bug, with a well-defined immediate cause > (even if we haven't identified the indirect cause yet) -- unlike the > original report by Santiago Villa. Thus, it looks we have two different > bugs that just

Bug#862599: webhook.service should have ConditionFileExist=/etc/webhook.conf

Package: webhook Version: 2.5.0-1+b2 Severity: wishlist Hi, The webhook service file could benefit from having ConditionFileExists=/etc/webhook.conf . Since webhook can't do anything if there is no config file, it makes sense to not even start the service if the config file does not exist.

Bug#862593: xarchiver: Adding files to .tar.xz deletes existing content

> Steps to reproduce: > > $ echo foo > "Kieran Daycare Contract.pdf" > $ echo bar > "Kieran Daycare 2.pdf" > $ tar cJvf "Kieran Daycare Contract.pdf.tar.xz" "Kieran Daycare > Contract.pdf" > Kieran Daycare Contract.pdf > > $ xarchiver Kieran\ Daycare\ Contract.pdf.tar.xz > # Select Action->Add

Bug#862354: ITP: installation-birthday -- Receive congratulations on system installation anniversaries

On Fri, May 12, 2017 at 10:09:09AM +0100, Chris Lamb wrote: > Updated the package description to make this clearer. :) cool, thanks! is it already suggested by debian-goodies? ;-) -- cheers, Holger signature.asc Description: Digital signature

Bug#862598: unblock: udfclient/0.8.7-1

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package udfclient New upstream version fixes CVE-2017-8305 (Buffer overflow in strlcpy implementation), debian bug #861347. As protection for buffer overflows, package has

Bug#844431: policy: packages should be reproducible

On Mon, May 15, 2017 at 12:05:17AM +0200, Bill Allombert wrote: > On Sun, May 14, 2017 at 03:20:54PM +, Holger Levsen wrote: > > On Sun, May 14, 2017 at 05:05:36PM +0200, Bill Allombert wrote: > > a.) go to http://reproducible.debian.net/$srcpkg and see if its > > reproducible today. > As I

Bug#789059: what is the state of this?

Hello Michael Do you have anything done on this yet? I've quickly given it a look at, here http://sid.ethz.ch/debian/infer/ Yours,

Bug#829046: Moving away from (unsupportable) FusionForge on Alioth?

On Sunday, May 14 2017, Boyuan Yang wrote: > 在 2017年5月14日星期日 CST 下午3:04:26，Pirate Praveen 写道： >> As far as I understand, the only thing that is blocking is non >> availability of pagure package. >> >> So helping fix this would help move this forward (currently pagure tests >> are failing). >>

Bug#842634: Bug#851877: fails every time

On Sun, May 14, 2017 at 10:37:17PM +0200, Michael Stapelberg wrote: > On Sun, May 14, 2017 at 7:59 AM, Adam Borowski wrote: > > > Use: gcc -Wall -o gai gai.c && ./gai localhost 9002 > > > > On all three machines, it looks fine: > > ai_family = 10 > > host=::1, serv=9002

Bug#862597: clang-3.9-doc: -doc package contains (almost) no documentation

Package: clang-3.9-doc Version: 1:3.9.1-8 Severity: grave Justification: renders package unusable Dear Maintainer, According to its description, this package should contain documentation for Clang. It is, however, almost empty: wraith:~$ dpkg -L clang-3.9-doc /. /usr /usr/share

Bug#862497: texlive-lang-portuguese: Extra \endcsname

tags + 862497 moreinfo thanks Dear Osamu, thanks for your investigation and test case. > Careful tracing of the bug lead me to the following minimal source case > and root cause pf the problem seems to be this texlive-lang-portuguese > package. I suspect the file: >

Bug#862595: FTBFS with python3.6

Source: reprozip Version: 1.0.9-2 Tags: upstream patch Hi, Currently reprozip FTBFS in Ubuntu[1], which has switched to python3.6. The failure is in the test suite: > == > ERROR: test_combine (test_reprozip.TestCombine) >

Bug#862596: libasyncns0: Assignment instead of check for equality in assert: asyncns_setuserdata, asyncns_getuserdata

Package: libasyncns0 Severity: minor Tags: upstream patch Hello. Since I forwarded my bugreport, I'll also forward this one, quite obvious, and still present one, reported by Olof Sivertsson: https://bugs.freedesktop.org/show_bug.cgi?id=91859 Bug applies to libasyncns release 0.8 and current

Bug#862594: libasyncns0: libasyncns using pthreads blocks until workers die on free()

Package: libasyncns0 Severity: normal Tags: patch upstream Hello, Forwarding here this bug, since there's no any action from upstream: https://bugs.freedesktop.org/show_bug.cgi?id=94849 When using libasyncns with pthreads support, it freezes entire application, when you try to asyncns_free()

Bug#844431: policy: packages should be reproducible

On Sun, May 14, 2017 at 03:20:54PM +, Holger Levsen wrote: > On Sun, May 14, 2017 at 05:05:36PM +0200, Bill Allombert wrote: > a.) go to http://reproducible.debian.net/$srcpkg and see if its reproducible > today. As I said, I would like to check that my package build is reproducible before I

Bug#862593: xarchiver: Adding files to .tar.xz deletes existing content

Package: xarchiver Version: 1:0.5.4-1+deb8u1 Severity: critical Justification: causes serious data loss As far as I can tell, using xarchiver to add additional files to a .tar.xz file will destroy the existing data. Steps to reproduce: $ echo foo > "Kieran Daycare Contract.pdf" $ echo bar >

Bug#862422: [pkg-golang-devel] Bug#862422: gccgo-go: wrap gccgo-7 for full Go 1.8 runtime

Makes sense to me, I'd be happy to upload that change to experimental. What's the timeframe for gccgo-7 getting into unstable? Just waiting for buster development to open? On 13 May 2017 at 03:13, Aaron M. Ucko wrote: > Package: gccgo-go > Version: 2:1.8~1 > Severity: important

Bug#844431: policy: packages should be reproducible

On Sun, May 14, 2017 at 09:58:12PM +0200, Guillem Jover wrote: > On Sun, 2017-05-14 at 15:20:54 +, Holger Levsen wrote: > > Bill, did you do this for your packages? on re-reading what I wrote here, it occurred to me that this could be read *hostile* despite me having *zero* intentions to

Bug#862592: taskcoach: please make the build reproducible

Source: taskcoach Version: 1.4.3-2 Severity: wishlist Tags: patch User: reproducible-bui...@lists.alioth.debian.org Usertags: fileordering X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org Hi, Whilst working on the Reproducible Builds effort [0], we noticed that taskcoach could not be

Bug#862591: libvte-2.91-0: xfce4-terminal crashes when dumping a lot of text

Control: tags -1 moreinfo unreproducible Control: severity -1 normal Am 14.05.2017 um 22:57 schrieb Brian Warner: > Package: libvte-2.91-0 > Version: 0.46.1-1 > Severity: grave > > There seems to be a bug in sid's libvte, such that dumping a large > amount of text to stdout in a short period of

Bug#830844: closed by Damyan Ivanov <d...@debian.org> (Bug#830844: fixed in libauthen-krb5-perl 1.9-5)

-=| Adrian Bunk, 14.05.2017 21:42:59 +0300 |=- > On Tue, Jul 12, 2016 at 10:00:21AM +, Debian Bug Tracking System wrote: > >... > >[ Damyan Ivanov ] > >* add patch removing references to obsolete krb5_{get,free}_krbhst. > > Thanks to Sergio Gelato. Closes: #830844 > >... > > Hi

Bug#861623: qytile: broken dependencies render it useless in Stretch

qtile isn't in stretch. On Sun, May 14, 2017, at 09:07 PM, Andreas Hoenen wrote: > Same here. > > Doesn't that mean that qtile is just unusable in Stretch? Which would > mean a release-critical severity like "grave", wouldn't it? > > And shouldn't #861623 and #861680 get merged? > > Regards,

Bug#862588: tkhtml1: please make the build reproducible

user 862588 reproducible-bui...@lists.alioth.debian.org usertag 862588 = buildpath thanks Hi, > tkhtml1: please make the build reproducible This is due to shipping a `tkhtml1Config.sh` config file containing build paths (hat won't work on end-user systems anyway as they will never match. :)

Bug#862591: libvte-2.91-0: xfce4-terminal crashes when dumping a lot of text

Package: libvte-2.91-0 Version: 0.46.1-1 Severity: grave There seems to be a bug in sid's libvte, such that dumping a large amount of text to stdout in a short period of time causes the terminal program to crash. "cat" of a file with 1MB of the letter "a" is sufficient to reproduce it. I'm

Bug#761627: libtomcrypt-dev: arch-dependent file in "Multi-Arch: same" package

Thanks for investigating this issue and providing the updated patch. As Debian is currently in a freeze, I can’t upload the patch right now. Could you ping this email thread/bug report once Debian left the freeze please? Thank you. On Sun, May 14, 2017 at 5:49 PM, François Poirotte

Bug#862590: CVE-2017-8352

package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded:

Bug#861581: ITP: rainloop -- Simple, modern & fast web-based email client

Hi Daniel, Daniel Ring dijo [Sun, May 07, 2017 at 11:01:33AM +]: > Hi Gunnar, > > I've finished putting together a preliminary version of the package, but I > have a few concerns about it. > > The largest one is that the build system is NodeJS-based, and requires a > version of npm newer

Bug#862588: tkhtml1: please make the build reproducible

Source: tkhtml1 Version: 1.04-1 Severity: wishlist Tags: patch User: reproducible-bui...@lists.alioth.debian.org Usertags: timestamps X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org Hi, Whilst working on the Reproducible Builds effort [0], we noticed that tkhtml1 could not be built

Bug#862589: CVE-2017-8351

package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded:

Bug#862587: CVE-2017-8350

package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded:

Bug#862485: fwsnort mustn't set iptables rules when purged

Axel Beckert wrote: > Point taken. Will move that line (or an "fwsnort --ipt-flush") into a > (to be created) prerm and do another QA upload. (Unless you're already > onto it. Feel free to do that.) Unfortunately "fwsnort --ipt-flush" only flushes the chains but does not remove the chains: #

Bug#862585: Please re-enable build on x32

Source: reprozip Version: 1.0.9-2 Severity: wishlist Hi, You disabled every architecture except amd64 and i386 as a result of #862351, but upstream actually supports x32 too (I just successfully built it in an x32 chroot). Please could you add x32 back to the list of architectures? Regards,

Bug#862586: devscripts: debrepro should first check that faketime is present

Package: devscripts Version: 2.17.5 Severity: normal I, if faketime is not installed, debrepro will fail on the second run. I realize it is already Suggested, be can you please make debrepro fail sooner to avoid wasting CPU/time ? Cheers, -- Package-specific info: --- /etc/devscripts.conf

Bug#842634: Bug#851877: fails every time

On Sun, May 14, 2017 at 7:59 AM, Adam Borowski wrote: > On Sat, May 13, 2017 at 08:44:15PM +0200, Michael Stapelberg wrote: > > Sorry for the late reply. > > > > Adam, could you run the attached example program (derived from the > > getaddrinfo and getnameinfo manpages)

Bug#862584: thunderbird: Thunderbird hang on some usenet articles with attachements

Package: thunderbird Version: 1:45.8.0-3 Severity: normal Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? I have subscribed to nntp group, where is a lot of articles with attachments. This group was a mirror

Bug#862583: RFS: reprozip/1.0.9-3 [RC]

Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for the following package: * Package name: reprozip   Version : 1.0.9   Upstream Author : Remi Rampin * URL : https://www.reprozip.org/ * License : BSD   Section :

Bug#862582: ITP: libtgvoip - VoIP library for Telegram clients

Package: wnpp Severity: wishlist Hello everybody! I intend to make a package for this VoIP library that is used by the new version of Telegram Desktop. The source is available on GitHub: https://github.com/grishka/libtgvoip This library is software in public domain, and it's distributed under

Bug#862581: mirror listing update for debian.redlibre.cl

Package: mirrors Severity: minor User: mirr...@packages.debian.org Usertags: mirror-list Submission-Type: update Site: debian.redlibre.cl Type: leaf Archive-architecture: amd64 armhf i386 mips mipsel powerpc s390x Archive-http: /debian/ Archive-upstream: mirrors.kernel.org Updates: four

Bug#861623: qytile: broken dependencies render it useless in Stretch

Same here. Doesn't that mean that qtile is just unusable in Stretch? Which would mean a release-critical severity like "grave", wouldn't it? And shouldn't #861623 and #861680 get merged? Regards, Andreas -- Andreas Hoenen GPG: 1024D/B888D2CE A4A6 E8B5 593A

Bug#862580: pam: PAM 'user unknown' prevents domain login but allows local logins

Package: libpam0g Version: 1.1.8-3.5 Severity: important File: pam Dear Maintainer, I'm trying to login via ssh as a Windows AD user and auth fails. When doing a ssh-login as a local user it works fine. After login out the local user and trying as domain user again, it works fine, like

Bug#862578: CVE-2017-8348

package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded:

Bug#862461: tiptop: requires root to run

On Sun, 2017-05-14 at 10:43 +0200, Tomasz Buchert wrote: > On 12/05/17 18:54, Nathaniel Beaver wrote: > > [...] > > Thank you, Nathaniel. > > I confirm the problem. A safe bet is that > https://lkml.org/lkml/2016/1/11/587 is the cause.  You can verify that > /proc/sys/kernel/perf_event_paranoid

Bug#844431: policy: packages should be reproducible

On Sun, 2017-05-14 at 15:20:54 +, Holger Levsen wrote: > On Sun, May 14, 2017 at 05:05:36PM +0200, Bill Allombert wrote: > > OK, but how can I check that my package build is reproducible before > > uploading > > it ? > > in general you cannot find out with 100% certainity whether a given

Bug#862579: CVE-2017-8349

package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded:

Bug#862577: CVE-2017-8347

package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded:

Bug#797722: spamassassin cron.daily fails with permission denied for tmp file

On 12.05.2017 00:52, Noah Meyerhans wrote: > On Tue, Sep 01, 2015 at 10:57:57PM +, Simon Walter wrote: >> Package: spamassassin >> Version: 3.4.0-6 >> >> cron.daily spamassassin fails because the tmp file can't be created. script >> seems to be executed in /root/ > This bug has been open for

Bug#862576: etoys: Doesn't get beyond Squeak security key generation

Package: etoys Version: 5.0.2408-1 Severity: grave Justification: renders package unusable Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? Just running etoys&. * What exactly did you do (or not do)

Bug#862575: CVE-2017-8346

package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded:

Bug#862572: CVE-2017-8343: he ReadAAIImage function in aai.c allows attackers to cause a denial of service (memory leak) via a crafted file.

Package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded:

Bug#862574: CVE-2017-8344

package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded:

Bug#862573: CVE-2017-8345

package: src:imagemagick Version: 8:6.9.7.4+dfsg-6 Severity: important Tags: security X-Debbugs-CC: t...@security.debian.org control: found -1 8:6.8.9.9-5+deb8u8 control: found -1 8:6.7.7.10-5+deb7u13 control: found -1 8:6.7.7.10-5+deb7u4 forwarded:

Bug#862571: pcmanfm: single instance socket may be blocked by another user.

Package: pcmanfm Version: 1.2.5-2 Version: 1.2.3-1.1 Severity: serious Tags: upstream security The socket placed in /tmp is predictable and public-writable. Therefore if one user placed a symlink to another socket instead of socket for another user then said another user will either be unable to

Bug#684499: Streaming MOVE commands

Hi Adrian, Adrian Bunk writes: > What was the result? > Any chance of getting this one-line change into jessie? So far the current Jessie packages don't include the fix, which forces me to use my own custom packages, so indeed, this is not optimal. jessie-backports seem to

Bug#862570: libmenu-cache: menu-cached socket may be blocked by another user.

Package: libmenu-cache3 Version: 1.0.2-2 Severity: serious Tags: upstream security The socket placed in /tmp is predictable and public-writable. Therefore if one user placed a symlink to another socket instead of socket for another use then said another user will either be unable to get menu, or

Bug#830844: closed by Damyan Ivanov <d...@debian.org> (Bug#830844: fixed in libauthen-krb5-perl 1.9-5)

On Tue, Jul 12, 2016 at 10:00:21AM +, Debian Bug Tracking System wrote: >... >[ Damyan Ivanov ] >* add patch removing references to obsolete krb5_{get,free}_krbhst. > Thanks to Sergio Gelato. Closes: #830844 >... Hi Damyan, thanks a lot for fixing this bug for stretch. It is

Bug#834213: perlcritic: some code causes a perltidy.ERR file to be created or overwritten

Control: tags -1 + security * Paul Wise , 2016-08-13, 15:09: There is some code which causes perlcritic to create or overwrite a perltidy.ERR file in the current directory. Perl::Tidy tries to delete existing perltidy.ERR; but if deleting fails, it proceeds as if nothing

Bug#817837: closed by Jonathan McDowell <nood...@earth.li> (Bug#817837: fixed in l2tpns 2.2.1-2)

On Tue, Jul 05, 2016 at 10:09:57AM +, Debian Bug Tracking System wrote: >... > l2tpns (2.2.1-2) unstable; urgency=low > . >* Fix log buffer overrun, thanks to Dave Reeve (closes: #817837) >... Hi Jonathan, thanks a lot for fixing this bug for stretch. It is still present in jessie,

Bug#862569: unblock: bind9/1:9.10.3.dfsg.P4-12.3

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi Please unblock package bind9 The upload fixes three issues: +bind9 (1:9.10.3.dfsg.P4-12.3) unstable; urgency=high + + * Non-maintainer upload. + * Dns64 with "break-dnssec yes;" can

Bug#861718: src:cppunit: please update cppunit to 0.14.0

Hi, On Sun, May 14, 2017 at 10:25:48AM -0500, Steve Robbins wrote: >Hi. I think your plan is fine. I no longer use cppunit myself so I'm happy >to see you take an active role in the maintenance. Please consider OK. >yourself the lead maintainer and feel free to go ahead with upload

Bug#862368: scan-copyrights fails to consolidate when licensecheck doesn't report years

Hi Dominique, On 14-05-17 09:29, Dominique Dumont wrote: > What command did you use ? scan-copyright or 'cme update' ? cme update dpkg-copyright > Which package are you working on ? (I need to retrieve your package to > reproduce the issue). batmon.app¹, with proposed dsc included from here:

Bug#862568: python-ncclient: Incomplete debian/copyright?

Source: python-ncclient Version: 0.5.3-1 Severity: serious Justication: Policy 12.5 X-Debbugs-CC: Sebastien Badia Hi, I just ACCEPTed python-ncclient from NEW but noticed it was missing attribution in debian/copyright for at least examples/csr1000v_example.py

Bug#862567: [PATCH] apt.systemd.daily: fix error from locking code

Error: pkgs that look like they should be upgraded: Error in function stop Traceback (most recent call last): File "/usr/lib/python3/dist-packages/apt/progress/text.py", line 240, in stop apt_pkg.size_to_str(self.current_cps))).rstrip("\n")) File

Bug#862567: apt.systemd.daily always fails - 'NoneType' object has no attribute 'write' (self._file)

Package: apt Version: 1.4.3 Severity: important I have a patch which fixes this error; I will attach it forthwith. apt.systemd.daily fails every time. Errors are shown in the system journal. The error is from unattended-upgrades, so to reproduce this bug you must have installed and enabled

Bug#862183: Pending fixes for bugs in the libjgroups-java package

tag 862183 + pending thanks Some bugs in the libjgroups-java package are closed in revision 1a2932b2662037acd2c01677ebfeb86d2cf9c331 in branch 'master' by tony mancill The full diff can be seen at https://anonscm.debian.org/cgit/pkg-java/libjgroups-java.git/commit/?id=1a2932b Commit message:

Bug#859660: Bug#859660: artemis running issue

On Thu, May 11, 2017 at 12:33:36PM -0500, Jerome wrote: > Thank's a lot for your questions and remark. This will help me to detect > where was the problem. > And i apologize that teh error is generated during the creation of a live > debian iso file. As the error wa detected in the live itself, i

Bug#862566: Pick a package name by clicking on a window

Package: reportbug Version: 7.1.6 Severity: wishlist Hello, suppose I want to report a bug on a GUI software, but the window title says "Video Player": what package name should I use? This "simple" one-liner lets you pick a window and outputs its package name to stdout: dpkg -S $(readlink

Bug#862565: unblock: packer/0.10.2+dfsg-5

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package packer This release add a patch to handle ABI change of golang-golang-x-crypto-dev, which result FTBFS in all ARCHs. After the patch, build is fixed. Enclosed is

Bug#862564: ITP: node-chokidar -- wrapper around node.js fs.watch / fs.watchFile / fsevents

Package: wnpp Severity: wishlist Owner: Pirate Praveen X-Debbugs-CC: debian-de...@lists.debian.org * Package name: node-chokidar Version : 1.7.0 Upstream Author : Paul Miller (http://paulmillr.com) * URL : https://github.com/paulmillr/chokidar *

Bug#862563: debian-live: Check for updates function don't work

Package: debian-live Severity: normal Dear Maintainer, After launch the command apt update, when you click in Settings > Details > Check for updates, it say "Software is up to date". But when go to Synaptic, they have a lot of upgrades to do. -- System Information: Debian Release: 9.0 APT

Bug#862521: further investigation

Correction: the Realtek NIC doesn't, in fact, require that firmware. System works the same (aside from the boot message abouit not finding the firmware file) without it, devices renamed the same... And I booted into d-i far enough to see that, yep, it sees the new name when it sets up the NIC.

Bug#862561: unblock: debian-reference/2.68

Hi, debdiff attached. > 862561: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862561 diff -Nru debian-reference-2.67/bin/fuzzypo debian-reference-2.68/bin/fuzzypo --- debian-reference-2.67/bin/fuzzypo 1970-01-01 09:00:00.0 +0900 +++ debian-reference-2.68/bin/fuzzypo 2017-05-06

Bug#862562: debian-live: Log Out option don't work

Package: debian-live Severity: normal Dear Maintainer, The menu on the top right offers an option to log out (in the submenu "Debian Live user"), it does not work and crash the system. -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (500, 'testing')

Bug#862561: unblock: debian-reference/2.68

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package debian-reference (explain the reason for the unblock here) * Added PDF (This is also for updating www.debian.org page) * Local browser script updated. * Updated

Bug#862219: unblock: at-spi2-atk/2.22.0-2

Niels Thykier (2017-05-12): > > Upstream of at-spi has released some serious fixes for at-spi2-atk, > > which I have uploaded as at-spi2-atk 2.22.0-2, and attached to this > > mail. > > > > git-7cdc1f91c9802b0b8ecd2afea38c1717b1921736 fixes a memory corruption > > reported by

Bug#862220: unblock: at-spi2-core/2.22.0-6

Niels Thykier (2017-05-12): > > Upstream of at-spi has released some serious fixes for at-spi2-core, > > which I have uploaded as at-spi2-core 2.22.0-6, and attached to this > > mail. > > > > git-329ef2c4ebcb3aec6dcfcac15357fd583a60c969 is reported to help fixing > >

Bug#862243: unblock: linux/4.9.25-1

Niels Thykier (2017-05-12): > > There was need of an ABI bump for this update, which should possibly > > be the last one before stretch release, but not completely ruled > > out. > > > > unblock linux/4.9.25-1 No objections, thanks. KiBi. signature.asc Description:

Bug#861282: Pending fixes for bugs in the packer package

tag 861282 + pending thanks Some bugs in the packer package are closed in revision 3b5252a6242d6f53c6f2abb41d0d86932df69785 in branch 'master' by Roger Shimizu The full diff can be seen at https://anonscm.debian.org/cgit/pkg-go/packages/packer.git/commit/?id=3b5252a Commit message: Add

Bug#862560: debian-live: GNOME Software in Debian Live lists only installed packages

Package: debian-live Severity: normal Dear Maintainer, * What led up to the situation? Launch GNOME Software in Debian Live. Only "Installed" tab show packages. The "All" tab only show "Editor's Picks" on the top, the rest is blank. * What exactly did you do (or not do) that was effective

Bug#861718: src:cppunit: please update cppunit to 0.14.0

Hi. I think your plan is fine. I no longer use cppunit myself so I'm happy to see you take an active role in the maintenance. Please consider yourself the lead maintainer and feel free to go ahead with upload or whatever. Best Steve On May 14, 2017 6:49:49 AM CDT, Rene Engelhard

Bug#852750: libreadline7: readline() interferes with blocked SIGALRM

Control: tags -1 fixed-upstream Control: severity -1 serious Justification: renders package twinkle-console unusable by all users Hi Matthias, Could you apply upstream patch 003 to resolve this issue? https://ftp.gnu.org/gnu/readline/readline-7.0-patches/readline70-003 Please let me know if

  1   2   >