Package: dpkg
Version: 1.19.0.5+b1
Severity: important
Dear Guillem,
dpkg just crashed with a segfault during setting up all remaining
package after a dist-upgrade (via aptitude) which had some issues with a
few packages (namely some emacs plugins which caused emacs'
recompilation-trigger to
Yes, It was twice per day.
I have increased update frequency to 4 time per day as recommended,
on 4:10, 10:10, 16:10 and 22:10 (in UTC )
Regards,
Farid
On Tue, Jun 5, 2018 at 1:01 PM, Julien Cristau wrote:
> Looks much better, thanks.
>
> How often does the mirror update? It looks like it's
On Thu, Jun 07, 2018 at 03:00:46PM -0700, Julian Andres Klode wrote:
> Package: python3-default
> Severity: serious
> When python3 default version changes, and a new python3-minimal is
> unpacked before its python3.N-minimal, we end up with a system without a
> working python3 symlink. This
Source: gkrellmoon
Version: 0.6-5.1
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap
gkrellmoon fails to cross build from source, because it uses the build
architecture toolchain. debian/rules does not pass cross tools to make
(fixed by using dh_auto_build) and the build system does not
To me severity of this issue is minor:
1) Purge does exactly what's expected. IMHO no need to prompt user, not at
the cost of debconf maintenance for merely one boolean question.
2) This not a real prompt but merely a 10 seconds delay. Could have been
worse but definitely breaks no unattended
Package: npm2deb
Version: 0.2.7-6
Severity: normal
Tags: patch
Dear Maintainer,
While trying to use npm2deb with my prototype package form npm 6.0.1 I
discovered newer versions of npm report more warning messages
so Npm2Deb.download() was failing with a filename to long error message because
Package: roundcube
Version: 1.2.3+dfsg.1-4+deb9u2
Severity: normal
Dear Maintainer,
*** Reporter, please consider answering these questions, where appropriate ***
* What led up to the situation?
Patching operating system
* What exactly did you do (or not do) that was effective (or
On 9 June 2018 at 12:28, Pavel N. Krivitsky wrote:
| Package: ess
| Version: 17.11-2
| Severity: normal
| Tags: patch
|
| Dear Maintainer,
How about we close this here and you reopen over here:
https://github.com/emacs-ess/ESS/issues
There is not a long I can do for you here...
Dirk
|
|
Dear Maintainer,
My apologies, there is no patch. I made a mistake on reportbug.
Best,
Pavel
On Fri, 08 Jun 2018, Adam D. Barratt wrote:
> Control: tags -1 + confirmed
>
> On Fri, 2018-05-18 at 12:24 -0300, Henrique de Moraes Holschuh wrote:
> ...
> > I'd like to update the intel-microcode package in Debian jessie.
> >
> > This update adds the microcode-side fix for CVE-2017-5715 aka
Package: xfonts-jmk
Version: 3.0-21
Severity: normal
Tags: patch
Dear Maintainer,
The neep font has surprisingly good Unicode coverage, but it is
missing some characters. In particular, I noticed it is missing the
eight RUNIC LETTERS, U+16F1 to U+16F8, that were added in Unicode 7.0
a few years
Package: ess
Version: 17.11-2
Severity: normal
Tags: patch
Dear Maintainer,
STEPS TO REPRODUCE:
1) Set up a git merge conflict:
# Create the repository.
git init test
cd test
# Create and commit a file containing '0' (a syntactically correct R file).
echo '0' > test.R
git add .
git commit -m
Solved.
Added workaround instructions for re-instating a fixed-IP network
configuration after running freedombox-setup at:
https://wiki.debian.org/FreedomBox/Hardware/Debian
Most of the problem was my complete unfamiliarity with NetworkManager,
including not knowing that a lot of things can't
Hi Jean-Marc,
Can you try installing libprocps6 directly? Eg apt install libprocps6 procps
It's saying it cannot install it but not why. I suspect there is something
awry with that arch but not sure what.
- Craig
>
> --
Craig Small https://dropbear.xyz/ csmall at :
On Sat, Jun 09, 2018 at 10:26:05AM +1000, Ben Finney wrote:
> The package currently has (discovered when investigating this
> behaviour, so thank you) a bug in its definition of the ‘debian/rules’
> target ‘override_dh_auto_build’.
>
> I'm unsure about Debhelper failing to find the sequence for
Package: turing
Version: 0.10~beta-1
Severity: serious
Dear Maintainer,
Launching turing on the command line yields:
QStandardPaths: XDG_RUNTIME_DIR not set, defaulting to '/tmp/runtime-lbrenta'
NoneType: None
Traceback (most recent call last):
File "/usr/share/turing/src/main.py", line 86,
Control: tags -1 + patch moreinfo
On 08-Jun-2018, Santiago Vila wrote:
> dpkg-source --before-build python-coverage-4.5+dfsg.1
> fakeroot debian/rules clean
> debian/rules:166: warning: overriding recipe for target
> 'override_dh_auto_build'
> debian/rules:129: warning: ignoring old recipe
Control: found -1 git-buildpackage/0.9.9
Control: affects -1 src:python-coverage
On 01-Dec-2017, Guido Günther wrote:
> […] since the upstream tarball is not in the build-area at this
> point "debuild -S" will complain. That's o.k. since the postexport
> hook is exactly for messing with the
Any advance? Did you report it upstream?
signature.asc
Description: OpenPGP digital signature
Hi Paul,
my guess is that the DB crashed so the 'tc.log' file was created and it
prevent the mariadb-server to start again.
Let me check with the dev team were to investigate on this possible
crash and I will come back to you.
In the mean time, if you want to continue your investigation, I
Il giorno gio, 18/01/2018 alle 13.42 +0100, Philipp Marek ha scritto:
> Package: vim-fugitive
> Version: 2.2-2
> Severity: normal
>
> At least the current version doesn't quote filenames when passing to
> "git",
> so any pathnames with spaces in them aren't relayed properly.
>
> Eg. when in a
On Fri, Jun 08, 2018 at 11:22:59PM +, Santiago Vila wrote:
> Package: src:adios
> Version: 1.13.1-1
> Severity: serious
>
> Dear maintainer:
>
> I tried to build this package in stretch with "dpkg-buildpackage -A"
Oops. I meant "buster" here, of course. (The same is also true for the
other
Package: sponsorship-requests
Severity: wishlist
Dear mentors,
I am looking for a sponsor for my package "linoleum"
* Package name: linoleum
Version : 1.6-1
Upstream Author : Raphael Jolly
* URL : http://linoleum.java.net/
* License : GPL
Section
Package: src:udunits
Version: 2.2.26-4
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
dh build-indep
Package: src:pyro
Version: 1:3.16-2
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
dh build-indep --with
Package: src:yodl
Version: 4.02.00-2
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
dh build-indep
Package: src:openvswitch
Version: 2.8.1+dfsg1-6
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
pyversions:
Package: src:libgpuarray
Version: 0.6.9-2
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
dh build-indep --with
Package: src:syslog-ng
Version: 3.13.2-4
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
make: 'build-indep' is
Package: src:rxvt-unicode
Version: 9.22-3
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
dh build-indep
Package: src:sane-backends-extras
Version: 1.0.22.5
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
dh
Package: src:ciftilib
Version: 1.5.1-1
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
dh build-indep
Package: src:adios
Version: 1.13.1-1
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
dh build-indep --with
Package: src:python-coverage
Version: 4.5+dfsg.1-3
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
dpkg-buildpackage: info: source
Package: src:chezscheme
Version: 9.5+dfsg-2
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
dh build-indep
Package: src:icmake
Version: 9.02.07-1
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
dh build-indep
Package: src:grr
Version: 3.1.0.2+dfsg-5
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
dh build-indep --with
Package: src:libgdamm5.0
Version: 4.99.11-1
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
dh build-indep
Package: src:grib-api
Version: 1.26.1-2
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
dh build-indep
Package: src:eccodes
Version: 2.7.3-2
Severity: serious
Dear maintainer:
I tried to build this package in stretch with "dpkg-buildpackage -A"
but it failed:
[...]
debian/rules build-indep
dh build-indep
Package: firehol-doc,firehol-tools-doc,fireqos-doc
Version: 3.1.5+ds-2
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts
Hi,
during a test with piuparts I noticed your package failed to install
because it tries to overwrite other packages files without declaring a
For future reference, there is an Ubuntu PPA for GNS3 [1], and it looks
like their development team [2] is fairly active.
[1] https://launchpad.net/~gns3/+archive/ubuntu/ppa
[2] https://launchpad.net/~gns3
--
Eldon Koyle
Package: bluez
Version: 5.43-2+deb9u1
Several crashes while working with gatttool in stretch kernel 4.9.0-6-amd64
#1 SMP Debian 4.9.88-1+deb9u1 (2018-05-07) x86_64 GNU/Linux
libglib2 version 2.50.3-2
Here's some output from gdb session (using bliez-dbg)
Starting program: /usr/bin/gatttool -b
Package: cluster-glue-dev
Version: 1.0.12-9
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts
Hi,
during a test with piuparts I noticed your package fails to upgrade from
'stretch'.
It installed fine in 'stretch', then the upgrade to 'buster' fails
because it tries to
Package: libatlas-doc
Version: 3.10.3-6
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts
Hi,
during a test with piuparts I noticed your package fails to upgrade from
'stretch'.
It installed fine in 'stretch', then the upgrade to 'buster' fails
because it tries to overwrite
Built a package that at least builds successfully on linux/amd64. It was a
little finicky to get right because of node-gyp being involved..but it does
seem to work:
https://notabug.org/themusicgod1/node-fibers
hopefully this helps
Jeff Cliff
On Fri, Jun 08, 2018 at 07:37:09PM +, Holger Levsen wrote:
> Hi nicoo,
>
> On Fri, Jun 08, 2018 at 09:27:10PM +0200, Nicolas Braud-Santoni wrote:
> > On virtual machines, however, the data that the HAVEGE algorithm produces
> > is not necessarily unpredictable [1]; hence, we shouldn't install
Control: forwarded -1 https://github.com/biocore/biom-format/issues/777
Control: tags -1 upstream
Control: tags -1 help
Hi,
I have reported the issue upstream. I have the vague suspicion that the
migration to numpy 1.4.x might have caused the problem since it is
connected in time to the failure
Source: primesieve
Version: 7.0+ds-1
User: debian...@lists.debian.org
Usertags: regression
Dear maintainers,
With the upload of version 7.0+ds-1 your autopkgtest¹ started to fail.
I have copied the output below.
Could you please investigate and fix your autopkgtest? This is currently
delaying
Control: tags -1 + confirmed
On Fri, 2018-05-18 at 12:24 -0300, Henrique de Moraes Holschuh wrote:
...
> I'd like to update the intel-microcode package in Debian jessie.
>
> This update adds the microcode-side fix for CVE-2017-5715 aka Spectre
> v2.
>
> It has been very extensibly tested, as
Control: tag -1 + confirmed patch
On Fri, 08 Jun 2018 21:28:37 +0300, Niko Tyni wrote:
> Source: libtest-differences-perl
> Version: 0.64-1
> Severity: important
> User: debian-p...@lists.debian.org
> Usertags: perl-5.28-transition
>
> This package fails to build with perl 5.28.0-RC1 (currently
Control: tags -1 + confirmed
On Fri, 2018-05-18 at 21:13 +0200, Bas Zoetekouw wrote:
> Hi!
>
> > Please use 1.0.5-1+deb8u1 and as target distribution just 'jessie'.
> > Use 1.1.0-2+deb9u1 and targeting 'stretch' instead (not
> > stretch-security).
> >
>
> Fixed. New debdiffs follow:
>
Control: tags -1 + confirmed
On Mon, 2018-01-29 at 17:45 +0100, Guido Günther wrote:
> This update brings debian-security-support in line with unstable.
> Most
> notably in oldstable this affects swftools since security support for
> it is
> now limited and chromium which doesn't receive any
Source: ethstatus
Version: 0.4.8
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap
ethstatus fails to cross build from source, because the Makefile hard
codes gcc. After making it substitutable, ethstatus cross builds
successfully. Please consider applying the attached patch.
Helmut
Package: idle
Version: 3.6.5-3
Priority: minor
The desktop file does not display the desired icon and clicking on the script
shortcut starts only IDLE itself.
The reason is a broken link to the icon and an incorrect argument format in the
desktop file.
To fix "idle.desktop" needs to replace
Package: sqlite3
Version: 3.24.0-1
Severity: wishlist
Hi,
there is a tool named "sqlite3_analyzer" described on
https://www.sqlite.org/sqlanalyze.html and part of the SQLite source
code. Unfortunatly, it's not packaged in Debian. It would be nice if
this tool was available in Debian.
Regards,
On Fri, 08 Jun 2018 21:38:12 +0300, Niko Tyni wrote:
> Source: libpgobject-type-json-perl
> Version: 2.01-1
> Severity: important
> User: debian-p...@lists.debian.org
> Usertags: perl-5.28-transition
>
> This package fails to build with Perl 5.28 (currently in experimental.)
>
>
>
Source: caja-seahorse
Version: 1.18.4-1
Tags: patch upstream
User: helm...@debian.org
Usertags: rebootstrap
caja-seahorse fails to cross build from source. The reason is best
explained in lintian tag
autotools-pkg-config-macro-not-cross-compilation-safe. The attached
patch fixes that. Please
Source: node-sshpk
Version: 1.13.1+dfsg-1
Severity: important
Tags: security upstream
Forwarded: https://github.com/joyent/node-sshpk/issues/44
Hi,
The following vulnerability was published for node-sshpk.
CVE-2018-3737[0]:
| sshpk is vulnerable to ReDoS when parsing crafted invalid public
Source: passwordsafe
Version: 1.05+dfsg-2
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap
passwordsafe fails to cross build from source for two reasons. The
upstream build system hard codes the build architecture pkg-config and
the debian packaging fails running tests despite
Source: dwm
Version: 6.1-4
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap
dwm fails to cross build from source, because it does not pass cross
tools to make and thus uses the build architecture compiler. The easiest
way of passing them is letting dh_auto_build do it and then dwm cross
On Fri, 08 Jun 2018 22:18:49 +0300, Niko Tyni wrote:
> Source: libur-perl
> Version: 0.450-1
> Severity: important
> User: debian-p...@lists.debian.org
> Usertags: perl-5.28-transition
>
> This package fails to build with Perl 5.28 (currently in experimental.)
>
>
>
Hi Markus,
On Fri, Jun 08, 2018 at 10:46:19PM +0200, Markus Koschany wrote:
> Hi Salvatore,
>
> Am 08.06.2018 um 22:38 schrieb Salvatore Bonaccorso:
> > Hi Markus,
> >
> > On Tue, Jun 05, 2018 at 02:52:58PM +0200, Markus Koschany wrote:
> >> Control: tags -1 patch
> >>
> >> Dear maintainer,
>
Hi Salvatore,
Am 08.06.2018 um 22:38 schrieb Salvatore Bonaccorso:
> Hi Markus,
>
> On Tue, Jun 05, 2018 at 02:52:58PM +0200, Markus Koschany wrote:
>> Control: tags -1 patch
>>
>> Dear maintainer,
>>
>> I've prepared a patch fixing CVE-2018-7225. I am also going to send the
>> debdiffs for
Source: lv2vocoder
Version: 1-5
Tags: patch upstream
User: helm...@debian.org
Usertags: rebootstrap
lv2vocoder fails to cross build from source, because the upstream
GNUmakefile hard codes build architecture build tools. The attached
patch fixes that and makes lv2vocoder cross build successfully.
Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu
dosbox is broken in the default setting on a number of systems/DOS binaries
(see #857341). This got fixed in unstable back in September, but the patch
is also needed in stretch.
Hi Markus,
On Tue, Jun 05, 2018 at 02:52:58PM +0200, Markus Koschany wrote:
> Control: tags -1 patch
>
> Dear maintainer,
>
> I've prepared a patch fixing CVE-2018-7225. I am also going to send the
> debdiffs for stretch and jessie to the security team.
>
> Please find attached the debdiff for
Control: tags -1 + confirmed
On Fri, 2017-11-24 at 17:14 +, Ben Hutchings wrote:
> On Tue, 2017-06-27 at 22:55 +0200, Cyril Brulebois wrote:
> > Control: tag -1 moreinfo
> >
> > Ben Hutchings (2017-05-07):
> > > rar should be updated to fix #860952.
> > >
> > > The orig tarballs need to be
On Fri, 08 Jun 2018 21:21:35 +0100, Adam D. Barratt wrote:
> On Sat, 2018-01-13 at 02:42 +0100, gregor herrmann wrote:
> > I've prepared an update for dh-make-perl in jessie which fixes
> > #851848.
>
> Please go ahead; sorry for the long delay.
Thank you. Uploaded.
Cheers,
gregor
--
.''`.
Control: tags -1 + moreinfo
On Mon, 2017-10-23 at 08:59 -0400, Antoine Beaupré wrote:
> On 2017-07-19 11:35:56, Michael Shuler wrote:
...
> > I spent a few sessions over the past few days getting the mozilla
> > bundle
> > 2.14 committed to all the suite branches wheezy and newer. I have
> > some
Control: tags -1 +moreinfo
On Mon, 2017-11-27 at 19:50 +, Adam D. Barratt wrote:
...
> On Mon, 2017-11-27 at 21:23 +0200, Otto Kekäläinen wrote:
...
> > I will prepare the final changelog when I have thumbs up from you
> > to
> > do so.
>
> You appear to be stuck in a little bit of a
Control: tags 898381 + patch
Control: tags 898381 + pending
Dear maintainer,
I've prepared an NMU for pypass (versioned as 0.2.1-1.1) and uploaded
it to DELAYED/14. Please feel free to tell me if I should cancel it.
cu
Adrian
--
"Is there not promise of rain?" Ling Tan asked suddenly
On Thu, 7 Jun 2018 21:36:40 +0300 Alexander Turenko
wrote:
> On Sun, 12 Nov 2017 11:15:19 +0200 Adrian Bunk wrote:
> > Source: tarantool
> > Version: 1.7.5.46.gd98815384-1
> > Severity: serious
> >
> >
>
https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/tarantool.html
> >
> >
Control: tags -1 + confirmed
On Sat, 2018-01-20 at 11:22 -0200, Eduardo M KALINOWSKI wrote:
> I've made a small change to the package, changing the new dependency
> from gvfs to desktop-file-utils, since that's what's really necessary
> (as discovered in #885086).
>
> The new debdiff is
Control: tags -1 + moreinfo
On Thu, 2017-12-07 at 18:14 -0500, d...@fifthhorseman.net wrote:
> Please consider an update to publicsuffix in debian jessie.
>
> This package reflects the state of the network, and keeping it
> current
> is useful for all the packages that depend on it.
>
I'm
Control tag -1 +pending
On Sat, Jun 02, 2018 at 03:38:20PM +0200, Thomas Schmitt wrote:
>Hi,
>
>i wrote:
>> Add to the xorriso run of live-wrapper the command
>>
>> -compliance no_emul_toc
Added in git now, so should show up in builds from this point
forwards.
--
Steve McIntyre, Cambridge,
Control: tags -1 + confirmed
On Fri, 2017-12-22 at 23:44 +, Roger A. Light wrote:
> This patch fixes CVE-2017-9868 for mosquitto. The security team
> believes
> it is not worthy of a DSA and should be fixed by a point release
> instead.
>
Please go ahead; sorry for the delay.
Regards,
Control: tags -1 + confirmed
On Thu, 2017-12-28 at 11:43 +0100, Sven Joachim wrote:
>
The same problem with the same fix as in #885582 for stretch.
Please go ahead. Apologies for the very long delay.
Regards,
Adam
Control: tags 898375 + patch
Control: tags 898375 + pending
Dear maintainer,
I've prepared an NMU for duo-unix (versioned as 1.9.21-1.1) and uploaded
it to DELAYED/14. Please feel free to tell me if I should cancel it.
cu
Adrian
--
"Is there not promise of rain?" Ling Tan asked
retitle 900848 RM: skipfish -- RoM; dead upstream, RC-buggy
reassign 900848 ftp.debian.org
severity 900848 normal
thanks
On Fri, Jun 08, 2018 at 08:41:06AM +0200, bart...@fenski.pl wrote:
> Hey Moritz,
>
> Yeah I think we should remove that package at this point.
> Thanks a lot for taking care
Control: tags -1 + confirmed
On Wed, 2017-12-27 at 17:19 +, James Cowgill wrote:
> This soundtouch update fixes 3 no-DSA security bugs: #870854,
> #870856,
> and #870857. I have tested the package on jessie and with the
> attached
> debdiff, soundstretch still works and the proof of concepts
Control: tags -1 + moreinfo
On Thu, 2017-12-28 at 17:32 +0100, Bertrand Marc wrote:
> Would you allow an update of libextractor 1.3-2 in Jessie to fix
> several minor security issues?
> 7 issues skipped by the security teams:
>
[...]
> * CVE-2017-15600
Control: tags -1 + confirmed
On Sat, 2018-01-13 at 02:42 +0100, gregor herrmann wrote:
> I've prepared an update for dh-make-perl in jessie which fixes
> #851848.
>
> The problem is that the Contents files have changed between then and
> now, and dh-make-perl in jessie fails to parse them now.
Control: tags -1 + confirmed
On Fri, 2018-02-23 at 20:03 +0100, Didier 'OdyX' Raboud wrote:
> (Mirroring #891142 for stretch):
>
> CUPS is affected by CVE-2017-18190: remote attackers could execute
> arbitrary
> IPP commands by sending POST requests to the CUPS daemon in
> conjunction with
> DNS
Control: tags -1 + confirmed
On Sun, 2018-03-04 at 18:52 +0100, Héctor Orón Martínez wrote:
> Hello,
>
> 2018-03-04 15:44 GMT+01:00 Emilio Pozuelo Monfort :
> > On 04/03/18 12:46, Héctor Orón Martínez wrote:
> > >
> > > diff --git a/debian/changelog b/debian/changelog
> > > index
Source: gnupg1
Version: 1.4.21-4
Severity: grave
Tags: patch security upstream
Justification: user security hole
Forwarded: https://dev.gnupg.org/T4012
Hi,
The following vulnerability was published for gnupg1. I'm aware this
is only the legacy packages, the issue though is present there and not
Indeed, "release a=now" seems to have superseded 'origin ""' for matching
locally-installed packages. Using origin with an empty string is shown twice in
apt_preferences(5), but it appears to not work anymore, whereas "release a=now"
does work.
--
Kenyon Ralph
Source: libcatalyst-plugin-session-store-dbi-perl
Version: 0.16-2
Severity: serious
Tags: buster sid
This package fails to build on current sid/amd64. The autopkgtest
checks are broken too, though ci.debian.net hasn't noticed yet (seems
wedged somehow?)
It looks like it's just missing an
Control: tags -1 + confirmed
On Tue, 2018-04-17 at 17:45 +0200, Laszlo Boszormenyi (GCS) wrote:
> I'd like to fix CVE-2018-1000156 in patch for Jessie, which is an
> arbitrary command execution in ed-style patches.
> While it might be used for remote compromise, it would need a setup
> to
>
Control: tags -1 + confirmed
On Mon, 2018-03-19 at 14:39 +0100, Salvatore Bonaccorso wrote:
> This is the corresponding request to #891918 but for jessie-pu.
>
> I like to propose the following little change for the upcoming point
> release to include for reportbug. The secure testing security
Control: tags -1 + confirmed
On Fri, 2018-05-18 at 21:13 +0200, Bas Zoetekouw wrote:
> Hi!
>
> > Please use 1.0.5-1+deb8u1 and as target distribution just 'jessie'.
> > Use 1.1.0-2+deb9u1 and targeting 'stretch' instead (not
> > stretch-security).
> >
>
> Fixed. New debdiffs follow:
>
Hi nicoo,
On Fri, Jun 08, 2018 at 09:27:10PM +0200, Nicolas Braud-Santoni wrote:
> On virtual machines, however, the data that the HAVEGE algorithm produces
> is not necessarily unpredictable [1]; hence, we shouldn't install haveged
> on those environments.
interesting, thanks! sadly it doesnt
On 06/05/2018 12:28 AM, Ian Campbell wrote:
> On Tue, 2018-06-05 at 02:14 +0100, Ben Hutchings wrote:
>
>> I don't think it's OK to cause a regression like this. Since this is
>> problem affects a specific known platform, the driver ought to
>> recognise it and disable itself automatically.
>
>
On Fri, Jun 08, 2018 at 10:18:49PM +0300, Niko Tyni wrote:
> Source: libur-perl
> Version: 0.450-1
> Severity: important
> User: debian-p...@lists.debian.org
> Usertags: perl-5.28-transition
>
> This package fails to build with Perl 5.28 (currently in experimental.)
>
>
>
Hi Holger,
On Thu, May 24, 2018 at 09:06:27AM +, Holger Levsen wrote:
> > > Do we have a reasonablish way of telling whether a system is “real”
> > > hardware or a virtual machine, and choose whether to install haveged or
> > > not
> > > accordingly?
>
> why only install it on physical
Package: wnpp
Severity: wishlist
* Package name: node-fibers
Version : 2.0.0
Upstream Author : Marcel Laverdet
* URL : https://notabug.org/themusicgod1/node-fibers
* License : MIT
Programming Lang: Javascript
Description : Fiber/coroutine support for v8
Source: libur-perl
Version: 0.450-1
Severity: important
User: debian-p...@lists.debian.org
Usertags: perl-5.28-transition
This package fails to build with Perl 5.28 (currently in experimental.)
Found the bug.
Docker uses seccomp security profiles to restrict e.g. system calls [1].
In docker 17.05 system call "statx" is blocked [2][3], in trunk and in
18.04 which is not released yet that system call will be allowed [4][5].
By running the docker container with "--security-opt
Package: flightgear
Version: 1:2018.1.1+dfsg-3
Severity: normal
Dear Maintainer,
In launcher mode, there is a tool to "install (manually) downloaded scenery"
from FlightGear site. This tools expects to find tar, gz or tgz files, but
Scenery Download site serves zip files, which are not
Package: src:linux
Version: 4.16.12-1~bpo9+1
Severity: important
[ OK ] Stopped Remount Root and Kernel File Systems.
[ OK ] Reached target Shutdown.
[ 1125.048758] hpwdt: Unexpected close, not stopping watchdog!
[ 1129.467546] Kernel panic - not syncing: An NMI occurred. Depending on your
1 - 100 of 230 matches
Mail list logo