Bug#989137: cockpit-ws: No sysvinit script

On 5/27/21 1:57 PM, Martin Pitt wrote: Hello Simon, Simon Walter [2021-05-27 10:17 +0900]: I was trying to make it quicker to deploy for those who run it like this anyway, but I understand not wanting to be responsible for partially functioning software. In that case, shall I open a bug to

Bug#989159: packagekit: APT::Default-Release is ignored

Package: packagekit Version: 1.2.2-2 Severity: normal X-Debbugs-Cc: d...@gnui.org It seems, that packagekitʼs APT backend do not respect APT default release (aka target release). ## Steps to reproduce /etc/apt/sources.list deb https://deb.debian.org/debian/ sid main deb

Bug#956390: aptitude -o complains about empty value

David Kalnischkies wrote: > That said, it might make sense to be able to set an empty value from the > cmdline, yes, but apt doesn't have a way for it either It seems, that tools from apt package now (ver. 2.2.3) _do_ allow to unset an apt.conf(5) option by using `-o`: $ apt-cache

Bug#989157: isc-dhcp: diff for NMU version 4.4.1-2.3

Control: tags 989157 + patch Control: tags 989157 + pending Dear maintainer, I've prepared an NMU for isc-dhcp (versioned as 4.4.1-2.3) and uploaded it to DELAYED/2. Please feel free to tell me if I should delay it longer (or even if fine with the NMU and want me to reschedule). Regards,

Bug#989158: libffi: update symbols for musl-linux-mipsel

Source: libffi Version: 3.3-6 Tags: patch User: helm...@debian.org Usertags: rebootstrap libffi needs a symbol update to build for musl-linux-mipsel. As it happens, the symbols work like on mipsel. I think they're actually independent of the libc and kernel and therefore suggest replacing mipsel

Bug#989137: cockpit-ws: No sysvinit script

Hello Simon, Simon Walter [2021-05-27 10:17 +0900]: > I was trying to make it quicker to deploy for those who run it like this > anyway, but I understand not wanting to be responsible for partially > functioning software. In that case, shall I open a bug to make systemd a > dependency? This is

Bug#989157: isc-dhcp: CVE-2021-25217: A buffer overrun in lease file parsing code can be used to exploit a common vulnerability shared by dhcpd and dhclient

Source: isc-dhcp Version: 4.4.1-2.2 Severity: grave Tags: security upstream Justification: user security hole X-Debbugs-Cc: car...@debian.org, Debian Security Team Control: found -1 4.4.1-2 Hi, The following vulnerability was published for isc-dhcp. CVE-2021-25217[0]: | In ISC DHCP 4.1-ESV-R1

Bug#989156: topydo: Prints "module not found" errors on every nontrivial invokation

Package: topydo Version: 0.14-4 Severity: important X-Debbugs-Cc: calumlikesapple...@gmail.com -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Every use of topydo on my system (other than simply stating the name and getting a task list) results in a ModuleNotFound error being printed. I am

Bug#989155: dh_installinit: when upgrading to a version that adds --no-restart-after-upgrade, the service is not restarted

Package: debhelper Version: 13.3.4 Severity: normal Control: affects -1 slapd Dear maintainer, It looks like if I currently use dh_installinit --restart-after-upgrade (the default), and in a newer version I change it to use --no-restart-after-upgrade, then when I upgrade to that newer

Bug#989150: ddclient: Fail to update IP address in some rare cases with PPP connection

Package: ddclient Version: 3.8.3-1.1 Severity: normal Dear Maintainer, I was using ddclient to manage my dynamic DNS for years. I'm using a PPP connection which is supposed to remain connected all the time, but still, disconnections can happen, and when it does, my IP address usually need to

Bug#976122: (no subject)

I found using the dtbs from the upstream firmware appears to work: http://github.com/raspberrypi/firmware/archive/1.20200902.tar.gz I then have u-boot use the kernel package's dtbs for when it boots the kernel.

Bug#986176: openuniverse runs with crippled GUI, then crashes.

Hello Ray, Warning, a coredump from this system would be immense. Or, well anyway pretty darn large. systemd-coredump should limit the core to 2G. And as a first target, the journal output might have a backtrace from which one could start looking. Maybe running openuniverse with a memory

Bug#970275: lintian: Please allow /usr/share/gtk-doc/html without emitting package-contains-documentation-outside-usr-share-doc

Control: affects 970275 + libgmime-3.0-doc On Mon 2020-09-14 09:13:02 +0100, Simon McVittie wrote: > However, it currently causes Lintian to emit > package-contains-documentation-outside-usr-share-doc. Perhaps there could > be logic like this pseudocode? > > for each file outside

Bug#986649: 1.6-1 not fixed

I can't confirm that this issue is fixed, as firefox 88.0.1-1 still flickers with sway 1.6-1 -- sergio.

Bug#943425: klibc: debdiff for NMU 2.0.8-6.1

Hi Ben, maks, please find attached the debdiff fixing this release-critical bug. I’ve uploaded to DELAYED/0 per devref. Please integrate this into the next maintainer upload. I’ve only added the patch for the wrong registers being saved, not the one fixing sig{set,long}jmp because, apparently,

Bug#989153: linux-image-amd64: Pleset set CONFIG_VIRTIO_CONSOLE=y to boot with virtio console

Package: linux-image-amd64 Version: 5.10.38-1 Severity: normal Dear Maintainer, Please compile virtio serial as built-in (CONFIG_VIRTIO_CONSOLE=y) to be able to boot with serial=hvc0

Bug#989122: exim4: takes 10 seconds to accept connections after waking up on another network

here comes the strace: hobbes@sphax:~$ sudo strace -p 671890 strace: Process 671890 attached select(6, [3 4 5], NULL, NULL, NULL waits here before I send the mail )= 1 (in [5]) wait4(-1, 0x7ffd5fdf4034, WNOHANG, NULL) = -1 ECHILD (Aucun processus enfant) accept(5,

Bug#892275: redshift: Unable to connect to GeoClue

* Paul Gevers [210526 21:49]: > On Thu, 4 Feb 2021 14:29:55 +0100 Laurent Bigonville > wrote: > > IMVHO, you should remove the redshift systemd file and let redshift > > start via de xdg autostart mechanism. The geoclue agent should then be > > started before redshift as I think it start the

Bug#989152: linux: Mouse wheel support is broken after resume

Source: linux Version: Mouse wheel behaviour is broken after resume Severity: normal Dear Maintainer, I've remarked that on a specific laptop the mouse wheel function is not restored after resume. This is a regression that has been introduced between Buster and Bullseye, and only occurs on one

Bug#988963: upgrade-reports: upgrade process requires a second "apt full-upgrade"

On Wed, May 26, 2021 at 07:50:53PM +, Holger Levsen wrote: > On Wed, May 26, 2021 at 12:00:46PM +0200, Bill Allombert wrote: > > One way to fix that is to update libgc1c2 in stable to not > > Conflict/Replaces with libgc1. > > while this is true, this is also not the most desireable fix,

Bug#989151: aerc: please package newer upstream version (0.5.2 as of today)

Package: aerc Severity: wishlist Dear Maintainer, Thank you for introducing this software in Debian. Could you please update the package of aerc to a newer upstream version? The current one, 0.5.2 according to the website, has been out for more than 6 months. Thanks a lot! Cédric

Bug#884992: roundcube-plugins: No documentation to enable plugins

On Wed, 26 May 2021 at 12:16:14 -0500, Jonathan Hutchins wrote: > Thank you for pointing me to the correct information. I'm not sure it was > there when I originally installed the package. 1.2.3+dfsg.1-4+deb9u1 has this information as well. Note that /usr/share/doc/$PACKAGE/README.Debian is the

Bug#989050: syncplay: Please consider splitting the package into a client and server package

Quoting Bruno Kleinert (2021-05-26 04:42:59) > thank you for the report and feedback. I uploaded a revision to experimental > that builds syncplay, syncplay-server and syncplay-common. Awesome, thanks a lot! The server and client worked out of the box for me and my friends, so thanks for

Bug#989140: roundcube-core: Error displayed during upgrade if manually installed plugins are in use in /var/lib/roundcube

On Wed, 26 May 2021 at 13:25:21 -0300, Kurt Fitzner wrote: > During an upgrade of roundcube-core, if there are any manually installed > plugins in /var, then an error is shown: Thanks for the report! > It may be a disply-only error with no actual ramifications. AFAICT that's correct,

Bug#989095: debdiff patch for CVE-2021-23017

Hello! > If you fix the vulnerability please also make sure to include the CVE (Common > Vulnerabilities & Exposures) id in your changelog entry. I made a debdiff for myself according to upstream instructions from the patch [0]. It is attached to this e-mail. Link to the upstream patch was

Bug#988963: upgrade-reports: upgrade process requires a second "apt full-upgrade"

On Wed, May 26, 2021 at 10:09:30PM +0200, Paul Gevers wrote: > I may be missing something, but *to me* the issue doesn't seem too bad. > I mean, so far it seems nothing really breaks, just that after the > upgrade not all packages are upgraded. Which that can be fixed with > *another* upgrade. I

Bug#988963: upgrade-reports: upgrade process requires a second "apt full-upgrade"

Hi Holger, On 26-05-2021 22:04, Holger Levsen wrote: > Hi Paul, > > On Wed, May 26, 2021 at 09:55:36PM +0200, Paul Gevers wrote: >> I agree with "it should be possible" but I'd like to note that the >> release notes already explicitly recommend to update before upgrade. > [...] >> Ack. We could

Bug#989149: libgrss: CVE-2016-20011: No TLS certificate verification

Source: libgrss Version: 0.7.0-2 Severity: important Tags: security upstream Forwarded: https://gitlab.gnome.org/GNOME/libgrss/-/issues/4 X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for libgrss. CVE-2016-20011[0]: | libgrss through 0.7.0

Bug#988963: upgrade-reports: upgrade process requires a second "apt full-upgrade"

Hi Paul, On Wed, May 26, 2021 at 09:55:36PM +0200, Paul Gevers wrote: > I agree with "it should be possible" but I'd like to note that the > release notes already explicitly recommend to update before upgrade. [...] > Ack. We could add a note to the release notes for those people that > don't

Bug#989148: tpm2-tools: CVE-2021-3565

Source: tpm2-tools Version: 5.0-1 Severity: important Tags: security upstream Forwarded: https://github.com/tpm2-software/tpm2-tools/issues/2738 X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for tpm2-tools. CVE-2021-3565[0]: | during

Bug#989147: glibc: CVE-2021-33574: mq_notify does not handle separately allocated thread attributes

Source: glibc Version: 2.31-12 Severity: important Tags: security upstream Forwarded: https://sourceware.org/bugzilla/show_bug.cgi?id=27896 X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for glibc, basically purely to track the upstream issue

Bug#988963: upgrade-reports: upgrade process requires a second "apt full-upgrade"

Hi Holger, On 26-05-2021 21:50, Holger Levsen wrote: > On Wed, May 26, 2021 at 12:00:46PM +0200, Bill Allombert wrote: >> One way to fix that is to update libgc1c2 in stable to not >> Conflict/Replaces with libgc1. > > while this is true, this is also not the most desireable fix, because > it

Bug#988963: upgrade-reports: upgrade process requires a second "apt full-upgrade"

On Wed, May 26, 2021 at 12:00:46PM +0200, Bill Allombert wrote: > One way to fix that is to update libgc1c2 in stable to not > Conflict/Replaces with libgc1. while this is true, this is also not the most desireable fix, because it should be possible to update from *any* stable installation to

Bug#988963: upgrade-reports: upgrade process requires a second "apt full-upgrade"

Hi Bill, Thank you for figuring this out... On 26-05-2021 12:00, Bill Allombert wrote: > At this point could you send the message of > apt-get install libobjc4 > just to be sure. See below. Paul root@stable:/# apt install libobjc4 Reading package lists... Done Building dependency tree... Done

Bug#989146: unblock: node-cpr/3.0.1-4

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package node-cpr [ Reason ] I did an error when including node-mkdirp (≥1) patch. Here is the fix which permits to reenable all tests. [ Impact ] Maybe node-cpr is unable

Bug#989145: Please do not use uml fakemachine backend in the DEP-8 test

Package: debos Version: 1.0.0+git20201203.e939090-4 Severity: wishlist Dear maintainer, The DEP-8 test recently added to src:debos, called build-chroot, makes use of the user-mode-linux package (the fakemachine backend used). However, user-mode-linux is not available in Ubuntu as in Debian

Bug#989024: php-horde-text-filter 2.3.5-3+deb10u2 flagged for acceptance

package release.debian.org tags 989024 = buster pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian buster. Thanks for your contribution! Upload details == Package: php-horde-text-filter Version:

Bug#989023: libmateweather 1.20.2-1+deb10u1 flagged for acceptance

package release.debian.org tags 989023 = buster pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian buster. Thanks for your contribution! Upload details == Package: libmateweather Version:

Bug#988482: libgetdata 0.10.0-5+deb10u1 flagged for acceptance

package release.debian.org tags 988482 = buster pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian buster. Thanks for your contribution! Upload details == Package: libgetdata Version:

Bug#987548: node-redis 2.8.0-1+deb10u1 flagged for acceptance

package release.debian.org tags 987548 = buster pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian buster. Thanks for your contribution! Upload details == Package: node-redis Version:

Bug#944372: What more can be done?

The issue is still pending and I don't see any reply from the maintainer. What more than providing even the patch for the issue can be done to get this thing moving forward? -- Dipl.-Ing. Jochen Betz jochen.b...@gmx.net signature.asc Description: OpenPGP digital signature

Bug#989144: inspircd: memory disclosure

Source: inspircd Version: 3.8.1-1 Severity: grave Tags: security upstream X-Debbugs-Cc: car...@debian.org, Debian Security Team This is already fixed in unstable with 3.8.1-2: https://docs.inspircd.org/security/2021-01/ The fix should ideally go into testing/bullseye. Regards, Salvatore

Bug#889817: linux: kernel does not always provide a heap [alpha arm64 mips64el ppc64el ppc64 s390x sparc64]

Hi Aurelien, On Wed, May 26, 2021 at 06:09:45PM +0200, Aurelien Jarno wrote: > control: fixed 889817 5.2.6-1 > control: fixed 889817 4.19.87-1 > > Hi Salvatore, > > On 2021-05-24 08:31, Salvatore Bonaccorso wrote: > > Source: linux > > Source-Version: 5.10.38-1 > > > > Hi, > > > > On Wed, Feb

Bug#984956: Pmix issues with openmpi-4.1.0

Hi Alastair, On 26-05-2021 15:53, Alastair McKinstry wrote: > You mean do an upload of 1.10.0~rc1-7 > (current testing UCX) > as 1.10.1 > ~rc1.really.1.10.0-1? >

Bug#989078: several SIGABRT in containers

Am 26.05.2021 um 04:19 schrieb Simon Richter: On Tue, May 25, 2021 at 11:39:35PM +0200, Michael Biebl wrote: Running this on a Debian sid system, the build completes successfully (log attached). Interesting, for me the build stopped during dh_auto_test -- but your log contains several test

Bug#989143: initramfs-tools: doesn’t actually compress with zstd

Package: initramfs-tools Version: 0.140 Severity: normal Hey. Just noted by coincidence, that even though I have set: COMPRESS=zstd and zstd is installed and even runs (seen in e.g. top utility) when running update-initramfs -u the files are in the end nevertheless plain cpio: file

Bug#884992: closed by Guilhem Moulin (Re: Bug#884992: roundcube-plugins: No documentation to enable plugins)

Thank you for pointing me to the correct information. I'm not sure it was there when I originally installed the package. I do feel somewhat put-upon that I have to know how to write arrays in PHP syntax to turn features on, but it's just one more configuration language. -- Jonathan

Bug#989126: package statically links without using a Built-Using attribute

Control: reassign -1 src:orthanc-wsi 1.0-2 On Mi, 26 mai 21, 12:08:19, Matthias Klose wrote: > Package: src:orthanc-wsi1.0-2 > Version: 1.0-2 > Severity: serious > Tags: sid bulseye > > The package statically links without using a Built-Using attribute, apparently > introduced in the last -3

Bug#989142: logstash: Illegal reflective access by org.jruby.util.SecurityHelper

Package: logstash Version: 1:6.8.16-1 Severity: normal Dear Maintainer, * What led up to the situation? Update deb package * What exactly did you do (or not do) that was effective (or ineffective)? apt upgrade * What was the outcome of this action? Setting up logstash

Bug#989086: New version 1.11.12 available

Am Tue, May 25, 2021 at 05:08:33PM +0200 schrieb Marcus Frings: > Package: leafnode > Version: 1.11.11-3 > Severity: wishlist > > Dear Moritz, > > After some years of dormant sleep, leafnode received an update to 1.11.12 in > 2021. > > Please consider the new version to be included in Debian.

Bug#989141: /usr/share/php/smarty3/sysplugins/smarty_security.php: Smarty Security: not trusted file path

Package: smarty3 Version: 3.1.31+20161214.1.c7d42e4+selfpack1-2+deb9u3 File: /usr/share/php/smarty3/sysplugins/smarty_security.php Severity: important Dear Maintainer, In the last update on Stretch (3.1.31+20161214.1.c7d42e4+selfpack1-2+deb9u3), it seem to have a confusion between $this->ds

Bug#989140: roundcube-core: Error displayed during upgrade if manually installed plugins are in use in /var/lib/roundcube

Package: roundcube Version: 1.4.11+dfsg.1-4 Severity: minor During an upgrade of roundcube-core, if there are any manually installed plugins in /var, then an error is shown: Setting up roundcube-mysql (1.4.11+dfsg.1-4) ... Setting up libx11-xcb1:amd64 (2:1.7.1-1) ... Setting up roundcube-core

Bug#889817: linux: kernel does not always provide a heap [alpha arm64 mips64el ppc64el ppc64 s390x sparc64]

control: fixed 889817 5.2.6-1 control: fixed 889817 4.19.87-1 Hi Salvatore, On 2021-05-24 08:31, Salvatore Bonaccorso wrote: > Source: linux > Source-Version: 5.10.38-1 > > Hi, > > On Wed, Feb 07, 2018 at 12:37:44PM +0100, Aurelien Jarno wrote: > > Source: linux > > Version: 4.14.13-1 > >

Bug#987672: Known issue

Hi, This is a known issue. Designate is "DNS as a Service" in OpenStack, so it does all sorts of unit testing during the build. I would prefer if I could *not* blacklist those tests that are parsing /etc/resolv.conf, this would lower the quality of the package, rather than increasing it. I don't

Bug#989139: gnome-flashback segfaults on login

Can you get stacktrace? Maybe this helps?: https://gitlab.gnome.org/GNOME/gnome-flashback/-/commit/7676c3a243aad62150b1108dd126132b5f91f8d7 On Wed, May 26, 2021 at 6:03 PM Grzegorz Szymaszek wrote: > Package: gnome-session-flashback > Version: 3.38.0-1 > > When I login to a GNOME Flashback

Bug#928744: u-boot: add support for the Turris Omnia and other OpenSSL reqiring hardware

On Fri, 10 May 2019 15:08:43 +0800 Paul Wise wrote: On Thu, 2019-05-09 at 23:45 -0700, Vagrant Cascadian wrote: > I've thought about this as well... I've been hesitant to implement it > wondering how it would interact with the NEW queue... Only one way to find out :) > Ideally, of course,

Bug#989006: [RFS] [preapproval] Bug#989006: unblock: vtk-dicom/0.8.12-3

Control: tags -1 - moreinfo Hi Sebastian, Sebastian Ramacher, on 2021-05-25: > Something seems to be wrong with the autopkgtests. They are not run. > Could you please check what's wrong there? Once fixed, vtk-dicom will be > able to migrate without an unblock. Thanks for you review! It looks

Bug#989131: unblock: gosa/2.7.4+reloaded3-16

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-Cc: debian-edu-pkg-t...@lists.alioth.debian.org Please unblock package gosa * debian/gosa.postinst: + Don't choke on failing httpd service restarts. This allows gosa to

Bug#891867: closed by "Chris Lamb" (Re: diffoscope: improve .changes diffs)

Hi Chris, On Wed, May 26, 2021 at 09:59:03AM +0100, Chris Lamb wrote: > Can you confirm in, say, version 175? If so, do you have a testcase that > I can replicate locally? I find this way of dealing with the issue quite disrespectful. I've included a patch (which admittedly is more of a

Bug#989139: gnome-flashback segfaults on login

Package: gnome-session-flashback Version: 3.38.0-1 When I login to a GNOME Flashback session from GDM3, it fails with a “something has gone wrong” screen. When I click “Log Out”, I am able to see the GNOME Flashback desktop, but I get logged out anyway. Relevant dmesg fragment:

Bug#989138: RFP: cli53 -- Command line tool for Amazon AWS Route 53

Package: wnpp Severity: wishlist * Package name: cli53 Version : 0.8.18 Upstream Author : Barnaby Gray * URL : https://github.com/barnybug/cli53 * License : MIT Programming Lang: go Description : Command line tool for Amazon AWS Route 53 cli53 -

Bug#989103: pulseaudio crashes on startup

Control: tags -1 unreproducible moreinfo On Tue, May 25, 2021 at 10:27 PM Michał Mirosław wrote: > Package: pulseaudio > Version: 14.2-2 > Severity: grave > Justification: renders package unusable > X-Debbugs-Cc: mirq-debo...@rere.qmqm.pl > > After upgrade to bullseye, pulseaudio crashes on

Bug#984956: Pmix issues with openmpi-4.1.0

Hi Paul To confirm: You mean do an upload of 1.10.0~rc1-7 (current testing UCX) as 1.10.1 ~rc1.really.1.10.0-1? thanks Alastair On

Bug#987672: designate accesses the internet during the build

Control: retitle -1 designate requires a nameserver in /etc/resolv.conf during the build Control: severity -1 normal What fails is parsing /etc/resolv.conf without nameserver, which is not a problem on the buildds. cu Adrian

Bug#989137: cockpit-ws: No sysvinit script

Package: cockpit-ws Version: 188-1 Severity: normal Tags: patch Dear Maintainer, Here is a patch for a sysvinit script. -- System Information: Debian Release: 10.9 APT prefers stable APT policy: (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.19.0-16-amd64 (SMP w/2 CPU cores)

Bug#989111: libopenmpi-dev: broken symlinks: /usr/lib/i386-linux-gnu/openmpi/lib/libmca_common_{ofi,ompio}.so

This appears to be limited to i386/ 32-bit systems. They're shipped elsewhere. There have been changes on 32-bit support. Thanks Alastair On 26/05/2021 08:15, Andreas Beckmann wrote: Package: libopenmpi-dev Version: 4.1.1-1 Severity: serious User: debian...@lists.debian.org Usertags:

Bug#984956: Still occurring here with 4.1.0-9

Alastair McKinstry Hi Can you confirm that openmpi 4.1.0-9 is present on all the nodes ? Regards Alastair From: Dominique Brazziel Reply to: Dominique Brazziel , <984...@bugs.debian.org> Date: Thursday 20 May 2021 at 13:03 To: "984...@bugs.debian.org" <984...@bugs.debian.org> Subject:

Bug#971530: dnspython 2.x breaks all of OpenStack

On Thu, Oct 01, 2020 at 12:15 PM, Thomas Goirand wrote: > Package: python3-dnspython > Version: 2.0.0-1 > Severity: important > > Hi, > > I'm sending this just to let you know that dnspython broke Eventlet, > which is unfortunately the base of many OpenStack stuff. As a > consequence, the

Bug#989135: unblock: hexchat/2.14.3-6

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package hexchat [ Reason ] Moving away from Freenode to Libera.chat. [ Impact ] Probably little changes for debian, since the default network has been OFTC for a while, but

Bug#989134: RFS: schism/2:20210525-1 -- ImpulseTracker clone aiming at providing the same look

Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for my package "schism": * Package name: schism Version : 2:20210525-1 Upstream Author : Storlek/chisel * URL : http://schismtracker.org/ * License : GPL-2-or-later

Bug#988174: Updating metadata

Control: fixed -1 1:6.0+dfsg-1~exp0 Control: tag -1 patch Control: tag -1 upstream Control: tag -1 bullseye I've now done several runs spread over several days and they all succeeded, so that alone would indicate that the issue is resolved with the 6.0 version. On top of that, Bernhard Übelacker

Bug#989133: RFS: welle.io/2.3-1 -- DAB/DAB+ Software Radio

Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for my package "welle.io": * Package name: welle.io Version : 2.3-1 Upstream Author : Albrecht Lohofener * URL : https://www.welle.io/ * License : LGPL-2.1+,

Bug#989122: exim4: takes 10 seconds to accept connections after waking up on another network

On Wed, May 26, 2021 at 11:31:25AM +0200, Rémi Letot wrote: > when I put my laptop to sleep, then wake it up on another network > (which is what happens 95% of the times that I put it to sleep), > exim takes 10 seconds to accept any connection until I restart it. Does it send out any DNS queries

Bug#989132: buster-pu: package wml/2.12.2~ds1-3~deb10u1

Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu X-Debbugs-Cc: Axel Beckert , debian-...@lists.debian.org Hi, (a...@debian.org in x-d-cc, who agreed with my helping on this topic, and debian-...@lists.debian.org for information)

Bug#989129: buster-pu: package node-ws/1.1.0+ds1.e6ddaae4-5+deb10u1

Here is the missing debdiff diff --git a/debian/changelog b/debian/changelog index d8d3387..20f5a00 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +node-ws (1.1.0+ds1.e6ddaae4-5+deb10u1) buster; urgency=medium + + * Team upload + * Fix ReDoS vulnerability (Closes:

Bug#443700: monitor a path recursively

Hello, I'm not sure if this is already done. In 0.5.12-1+deb10u1, when I watch the root of my home directory with IN_CLOSE_WRITE,IN_MOVED_TO,IN_ONLYDIR, changes in subdirectories trigger a run of the associated script. Personally, I'd prefer to have an additional flag IN_RECURSIVE if a

Bug#989130: gnutls28: made uninstallable by latest update

Source: gnutls28 Version: 3.6.7-4+deb10u6 Severity: normal Dear Maintainer, there seems to be a discrepancy between the versions of the packages provided by the gnutls28 source package for the amd64 and i386 architectures, breaking a multiarch installation. The latest apt dist-upgrade therefore

Bug#989129: buster-pu: package node-ws/1.1.0+ds1.e6ddaae4-5+deb10u1

Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu [ Reason ] node-ws is vulnerable to re regex denial of service (ReDoS) (CVE-2021-32640). [ Impact ] A specially crafted value of the `Sec-Websocket-Protocol` header could be used

Bug#989124: grub-installer: occasional failure to install grub (when two DEs selected)

Philip Hands (2021-05-26): > Dear Maintainer, Dear Bug Reporter, (:D) > While testing under openQA (so in qemu/kvm) if selecting more than one DE, > somthing like one in ten installs will fail to install grub, resulting in an > unbootable system. > > Given that this is only happening in the

Bug#989128: package statically links without using a Built-Using attribute

Package: src:orthanc-dicomweb Version: 1.5+dfsg-2 Severity: serious Tags: sid bulseye The package statically links without using a Built-Using attribute, apparently introduced in the last -2 upload. You need to add such an attribute when statically linking.

Bug#989127: package statically links without using a Built-Using attribute

Package: src:orthanc-webviewer Version: 2.7-3 Severity: serious Tags: sid bulseye The package statically links without using a Built-Using attribute, apparently introduced in the last -3 upload. You need to add such an attribute when statically linking.

Bug#989126: package statically links without using a Built-Using attribute

Package: src:orthanc-wsi1.0-2 Version: 1.0-2 Severity: serious Tags: sid bulseye The package statically links without using a Built-Using attribute, apparently introduced in the last -3 upload. You need to add such an attribute when statically linking.

Bug#989125: lists.debian.org: Request a mailing list named "debian-loongarch64"

Package: lists.debian.org Severity: wishlist Tags: upstream Dear Maintainer, Rationale:We have a new architecture named loongarch64, We have alreadly compelted loongarch64 debian port in our local workspace. Now, We plane to post it to debian for becomeing a offical debian port. We need a

Bug#988963: upgrade-reports: upgrade process requires a second "apt full-upgrade"

On Tue, May 25, 2021 at 10:00:48PM +0200, Paul Gevers wrote: > See below. > The following additional packages will be installed: > libgc1 libobjc4 > The following packages will be REMOVED: > libgc1c2 > The following NEW packages will be installed: > libgc1 > The following packages will be

Bug#757356: Apple keyboard: Scan code event (EV_MSC) not generated when the EV_KEY event is generated by hid-apple.c

Control: retitle -1 Apple keyboard: Scan code event (EV_MSC) not generated when the EV_KEY event is generated by hid-apple.c Control: tags -1 patch On 2021-05-26 10:39:11 +0200, Vincent Lefevre wrote: > And the cursor keys. Actually, all the keys corresponding to > > static const struct

Bug#989124: grub-installer: occasional failure to install grub (when two DEs selected)

Package: grub-installer Version: 1.178 Severity: minor Dear Maintainer, While testing under openQA (so in qemu/kvm) if selecting more than one DE, somthing like one in ten installs will fail to install grub, resulting in an unbootable system. Given that this is only happening in the unusual

Bug#443524:

..-- I know that we are just knowing each other for the first time but we can share ideas,lets be friends I'm expecting your reply .

Bug#989123: xlog manual not properly displayed

Package: xlog Version: 2.0.20-1 Severity: normal X-Debbugs-Cc: elaw...@grizzy.com Dear Maintainer, When I attempt to open the manual pages from the help menu, the page that is displayed shows a blank, gray panel to the left of the Xlog logo instead of a navigation menu of various sections of the

Bug#989078: several SIGABRT in containers

control: severity -1 normal control: tags -1 + moreinfo upstream Am 25.05.21 um 15:29 schrieb Simon Richter: Package: systemd Version: 241-7~deb10u7 Severity: important Tags: upstream Hi, I have a Docker container where I compile FPGA images using the QuartusII toolchain, but this fails with

Bug#989122: exim4: takes 10 seconds to accept connections after waking up on another network

Package: exim4 Version: 4.94.2-5 Severity: normal Dear Maintainer, when I put my laptop to sleep, then wake it up on another network (which is what happens 95% of the times that I put it to sleep), exim takes 10 seconds to accept any connection until I restart it. Demonstration:

Bug#989121: unblock: adminer/4.7.9-2

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi, Please unblock package adminer. Per the security team advice, the updated version contains a fix for: CVE-2021-29625: XSS in doc_link diff -Nru adminer-4.7.9/debian/changelog

Bug#989120: golang-github-go-sourcemap-sourcemap accesses the network during the build

Package: src:golang-github-go-sourcemap-sourcemap Version: 2.1.3+git20201028.eed1c20-2 Severity: serious Tags: sid bookworm golang-github-go-sourcemap-sourcemap accesses the network during the build, seen on the Ubuntu buildds: dh_auto_test -O--buildsystem=golang cd

Bug#960396: web security flaws in src:adminer/4.7.1-1 in stable?

Hi, > Thanks. Can you attach the debdiff between the current version in > buster and the proposed one to this bug? Here it is. Alex diff -Nru adminer-4.7.1/debian/adminer.apache2 adminer-4.7.1/debian/adminer.apache2 --- adminer-4.7.1/debian/adminer.apache21970-01-01 01:00:00.0

Bug#891867: closed by "Chris Lamb" (Re: diffoscope: improve .changes diffs)

Hey Helmut, So sorry, I didn't see this email at the time. > Control: reopen -1 > > > Closing as per: > > > > > > https://salsa.debian.org/reproducible-builds/diffoscope/-/issues/30#note_168909 > > If you close a bug, please include the fixed version. Will do. :) Glancing through the

Bug#989119: ITP: golang-github-skeema-tengo -- Go La Tengo: a MySQL automation library (library)

Package: wnpp Owner: Andrius Merkys Severity: wishlist Control: block -1 by 989107 * Package name: golang-github-skeema-tengo Version : 0.10.1 Upstream Author : Skeema LLC * URL : https://github.com/skeema/tengo * License : Apache-2.0 Programming Lang: (C,

Bug#989117: ITP: jack-mixer -- GTK+ JACK audio mixer application

On Wed, May 26, 2021 at 8:30 AM Kyle Robbertze wrote: > The original jack-mixer was removed from Debian for being Python2 only > and depending on pygtk. This fork has been updated to Python3 and > removed the pygtk dependency. Please note the extra requirements when reintroducing packages,

Bug#757356: Scan code event not generated for some keys of the Apple keyboard: those in applespi_fn_codes

Control: retitle -1 Scan code event not generated for some keys of the Apple keyboard: those in applespi_fn_codes On 2021-05-26 09:52:16 +0200, Vincent Lefevre wrote: > No MSC_SCAN line for F1 to F12. [...] > Same issue for the Enter and Backspace keys: [...] And the cursor keys. Actually, all

Bug#989118: please try https first

Package: apt-cacher-ng Version: 3.6.3-1 Severity: wishlist Sorry to say, but configuring https for apt-cacher-ng is APITA. Would it be possible for ACNG to silently try https first, if the client asked for http? That would be similar to an explicit http://HTTPS///get.docker.com/ubuntu, except

Bug#960396: web security flaws in src:adminer/4.7.1-1 in stable?

Hi Alexandre, On Wed, May 26, 2021 at 09:38:32AM +0200, Alexandre Rossi wrote: > Hi, > > Here is an updated debdiff per the security team advice adding also > changes from the original request. > > Adding fix for: > > CVE-2021-29625 > > Thanks, Thanks. Can you attach the debdiff between the

Bug#988929: jverein: broken symlinks: /usr/share/jameica/plugins/jverein/lib/*-*.jar -> ../../../../java/*.jar

Followup-For: Bug #988929 Control: found -1 2.8.18+git20200921.6212a59+dfsg-6 There is one broken link left: 7m26.6s ERROR: FAIL: Broken symlinks: /usr/share/jameica/plugins/jverein/lib/javax.mail-1.6.2.jar -> ../../../../java/javax.mail.jar (jverein) Andreas

  1   2   >