n,
Thank you for the bug report. Unless I am missing some context, this is
another instance of the discussion in #978172 [1], just with a different
library. I mention it in case you'd like to weigh in on that bug.
In the meantime, I am adding the dependency on libabsl-dev.
Cheers,
tony
[
On Fri, Feb 04, 2022 at 09:44:26PM +, Daniel Bungert wrote:
> Package: icmake
> Version: 10.01.01-2
> Severity: normal
>
> Tested against both Debian Sid and Ubuntu Jammy, icmake will fail to
> build valid binaries for bobcat on s390x.
I am working with the upstream author and the build failu
cmake and run under gdb, but I won't be able to
try that until tomorrow.
Cheers,
tony
bobcat_icmake_strace.out.gz
Description: application/gzip
On Sun, Feb 06, 2022 at 08:12:12AM -0800, tony mancill wrote:
> Source: capnproto
> Version: 0.9.1-1
> Severity: important
>
> This bug is for tracking the armel build failure [1]:
And it's the same on mipsel. Did upstream drop support for 32-bit
architectures ot
./.libs/libkj.so
> -lpthread -pthread
> /usr/bin/ld: ./.libs/libcapnp.so: undefined reference to `__atomic_load_8'
> /usr/bin/ld: ./.libs/libcapnp.so: undefined reference to `__atomic_store_8'
> collect2: error: ld returned 1 exit status
> make[2]: *** [Makefile:2111: cap
effort and detail you put into these reviews!
Regards,
tony
signature.asc
Description: PGP signature
beside the point. The point is that I don't understand the
policy basis upon which this bug is severity serious.
Thank you,
tony
signature.asc
Description: PGP signature
atch and also getting an autopkgtest in place for icmake.
Thank you,
tony
signature.asc
Description: PGP signature
On Mon, Jan 31, 2022 at 06:49:45AM -0700, Neil Mayhew wrote:
> On 2022-01-29 08:59, Neil Mayhew wrote:
> > On 2022-01-28 22:33, tony mancill wrote:
> > > I noticed that 8.12.42 was released a couple days ago [4].
> > > My thought was to let 8.12.41 transition
On Mon, Jan 31, 2022 at 01:18:49AM +0100, Emmanuel Bourg wrote:
> Le 31/01/2022 à 00:47, Markus Koschany a écrit :
>
> > Thanks tony! I'm currently rebuilding all reverse-dependencies of log4j1.2.
> > So
> > far it looks like I was right and there is no package that
acement for the log4j 1.2.x jar for
applications at ${dayjob} without any problem. Once you decide how you
would like to address the CVE, we can discuss the possibility of
packaging reload4j for bookworm as a replacement for apache-log4j1.2.
Cheers,
tony
signature.asc
Description: PGP signature
eye. In fact, I just did a test build against bullseye and it
built correctly.
Cheers,
tony KG7IEL
bullseye release
Hi Laurent, Matthias, Andreas:
I am reviving the discussion now that bullseye has been released. The
commit that added the B-D on libboost-thread-dev to libphonenumber-dev
is [1].
What are the drawbacks to leaving the boost B-D in libphonenumber-dev
and closing the bug?
Thank y
On Sat, Jan 29, 2022 at 08:59:32AM -0700, Neil Mayhew wrote:
> On 2022-01-28 22:33, tony mancill wrote:
> > I noticed that 8.12.42 was released a couple days ago [4].
> > My thought was to let 8.12.41 transition to testing (5 days) before
> > uploading to unstable again,
aged for Debian, and that libphonenumber does appear to require a
more recent version of it.
By the way, I noticed that 8.12.42 was released a couple days ago [4].
My thought was to let 8.12.41 transition to testing (5 days) before
uploading to unstable again, in case that impacts whether/when Ubuntu
p
On Fri, Jan 28, 2022 at 08:29:36AM -0700, Neil Mayhew wrote:
> On 2022-01-28 07:59, tony mancill wrote:
> > it is surprising to see it fail with this:
> > > /<>/cpp/src/phonenumbers/geocoding/geocoding_data.cc:787278:13:
> > > error: ‘i18n::phonenumbers::{anon
y once this is resolved, the package is
good and will transition to testing without delay.
Thanks,
tony
signature.asc
Description: PGP signature
ng the reverse dependencies now to make sure it's not going to
introduce regressions (or to at least know what they are).
I expect to be able to upload in the next few days.
Cheers,
tony
signature.asc
Description: PGP signature
hese procedures.
No worries. If you run into difficulties, feel free to reach out and/or
to go ahead with your updated package upload. We can take care of
getting the repo updated after the fact.
Regards,
tony KG7IEL
t from hamexam
> ...
To update to a new upstream version, can you revert the commit to master
and then use `gbp import-orig` to import the version, and then push the
update master, upstream, and pristine-tar branches plus the
corresponding upstream/1.8.1 tag?
Thank
I propose we remove it.
Sounds like a reasonable goal for bookworm.
> (... and I should finally get around to upload sdrangel.)
https://github.com/f4exb/sdrangel looks to be quite active.
Thank you for your packaging work,
tony
On Tue, Jan 11, 2022 at 09:43:28PM -0800, tony mancill wrote:
> On Tue, Jan 11, 2022 at 09:51:55AM +, Vincent G. wrote:
> > Hi,
> > Here is the patch for 4.3-22.
> > Regards,
>
> Hello Vincent,
>
> Thank you for the updated patch. I intend to add some autop
On Tue, Jan 11, 2022 at 09:51:55AM +, Vincent G. wrote:
> Hi,
> Here is the patch for 4.3-22.
> Regards,
Hello Vincent,
Thank you for the updated patch. I intend to add some autopkgtests to
bsdiff and then will apply the patch and upload.
Cheers,
tony
signature.asc
Descrip
the update and clear communications regarding your
progress.
Cheers,
tony
On Sat, Jan 01, 2022 at 05:12:15PM -0800, tony mancill wrote:
Transition request is #1003004.
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1003004
ition.
Thank you,
tony
[1] https://tracker.debian.org/pkg/capnproto
[2] https://release.debian.org/transitions/html/auto-capnproto.html
[3] https://tracker.debian.org/pkg/clickhouse
[4] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=996130
Ben file:
title = "capnproto";
is_affe
Source: capnproto
Version: 0.7.0-7
Severity: wishlist
This is a tracking bug to get capnproto 0.8.0 into unstable.
ome to contribute!
>
> If you reassign this bug to another package, please marking it as
> 'affects'-ing
> this package. See https://www.debian.org/Bugs/server-control#affects
>
> If you fail to reproduce this, please provide a build log and diff it with
> mine
> so that we can identify if something relevant changed in the meantime.
Is it okay for me to reassign to dh-python and mark this closed in
5.20211225? Or should I forcemerge this into 1002182?
Thank you,
tony
signature.asc
Description: PGP signature
On Mon, Dec 20, 2021 at 05:55:24PM +0200, Afif Elghraoui wrote:
> On 12/14/21 7:48 AM, tony mancill wrote:
> > On Tue, Feb 09, 2021 at 09:25:09PM +0100, Helmut Grohne wrote:
> >> Package: libfabric1
> >> Version: 1.11.0-2
> >> Tags: patch
> >> User
s is safe to upload, but I would like someone else to
> confirm the change. Bumping compat level from 5 to 7 which is also
> deprecated is a sloppy fix, but would probably do for now.
Hi Andrius,
Those Ant and JDK versions in the manifest simply represent version
bumps in the toolchain.
Source: logback
Version: 1:1.2.8-1
Severity: wishlist
This is a place-holder bug for coordination purposes.
Upstream 1.2.9 has been released, but there is not yet a tag in the
github/qos/logback repo. This has been reported upstream as
https://jira.qos.ch/browse/LOGBACK-1598.
signature.asc
Des
On Fri, Dec 17, 2021 at 12:37:24PM -0800, Vagrant Cascadian wrote:
> With this patch applied, gr-satellites should build reproducibly on
> tests.reproducible-builds.org!
Thank you for the patch Vagrant. I've applied it to the packaging repo
so it will be part of the next upload.
C
a for collaboration and get the
current package and its history pushed into that repo.
Cheers,
tony
signature.asc
Description: PGP signature
in
HPC and came across this bug via Debian Med (it affects the abyss
package), so when I say "team" upload, I merely keeping the packaging
repo updated. I have requested team access via Salsa.
Thanks,
tony
signature.asc
Description: PGP signature
On Sun, Dec 12, 2021 at 10:37:54AM +0100, Emmanuel Bourg wrote:
> Le 10/12/2021 à 15:20, Felix Lechner a écrit :
>
> > Lintian cites your manual as supporting documentation for several
> > tags. [1][2][3][4][5][6][7][8] Such references help users when
> > grasping the conditions that provoke Linti
he update
and appreciate that we were able to avoid duplication of effort.
Cheers,
tony
signature.asc
Description: PGP signature
Source: batik
Version: 1.12-4
Severity: wishlist
I am preparing an update to batik to 1.14. This bug is to avoid
duplication of effort.
s], where X is the greater
of the minimum necessary runtime version and the compilation target
version.
Cheers,
tony
[1] https://snapshot.debian.org/package/openjdk-7/7u261-2.6.22-1~deb8u1/
[2] https://snapshot.debian.org/package/openjdk-6/6b41-1.13.13-1/
signature.asc
Description: PGP signature
ppers that depends on a Java runtime, since it is technically
against Java Policy [1] for a library package to depend on a runtime.
That would also address bug #566901 [2]. Any thoughts on whether this
would be confusing to users?
In any event, I will update the Recommends with the next upload.
Regard
On Sun, Oct 31, 2021 at 07:49:03PM -0700, tony mancill wrote:
> On Thu, Oct 28, 2021 at 09:07:45PM -0700, tony mancill wrote:
> > On Wed, Oct 27, 2021 at 03:55:11PM +0100, Simon Tatham wrote:
> > > Package: svnkit
> > > Version: 1.8.14-4
> > >
> > >
le back but got side-tracked. I
will resume that effort.
Cheers,
tony
On Sat, Nov 13, 2021 at 12:49:11PM +0100, Christoph Berg wrote:
> Re: tony mancill
> > > It would be great if you could make a backport of wsjtx 2.5.2 for
> > > bullseye.
> >
> > The backport of wsjtx appears to be trivial once hamlib 4.1 or newer is
> > a
| source
> python-flup |1.0.2-5 | all
>
> Maintainer: John Hedges
>
> --- Reason ---
>
> --
>
> Checking reverse dependencies...
> No dependency problem found.
Thank you,
tony
signature.asc
Description: PGP signature
ib to remain at version 4.0
for other reasons (although I don't know what those would be), since the
upgrade will require hamlib and wsjtx to update at the same time.
Any thoughts or concerns from others on the team about proceeding with
hamlib and wsjtx for bullseye-backports?
Cheers,
tony
4th if the
Debian Python Team (or some other maintainer) doesn't decide to take the
package and update it.
Cheers,
tony
signature.asc
Description: PGP signature
On Mon, Aug 23, 2021 at 08:28:00PM +, Martin wrote:
> On 2021-08-23 18:59, tony mancill wrote:
> > I haven't heard from John and don't use flup myself. If you think the
> > Debian Python Modules Team would still like to take over the package, I
> &g
Package: wsjtx
Version: 2.5.1+repack-1
Severity: wishlist
WSJT-X 2.5.2 is now available.
Debian package creation is in process. This is simply a tracking bug to
prevent duplicated effort.
hat this build dependency should transitively
leak into projects that have build dependencies on commons-io, but
syncany builds again after adding junit5 to the build-deps, so the fix
is quite simple.
I will freshen a few other things in the package and upload later today.
Cheers,
tony
[1]
On Thu, Oct 28, 2021 at 09:07:45PM -0700, tony mancill wrote:
> On Wed, Oct 27, 2021 at 03:55:11PM +0100, Simon Tatham wrote:
> > Package: svnkit
> > Version: 1.8.14-4
> >
> > If I install svnkit and try to use the 'jsvn' command-line interface, I
> >
On Sun, Oct 31, 2021 at 12:39:50PM +, Hilary Snaden wrote:
>
> On 29/10/2021 03:12, tony mancill wrote:
> > The version to test with is 2.5.0+repack-3. It us currently in unstable
> > and should be in testing sometime tomorrow or perhaps on the 30th.
> >
> >
will take
a bit yet because it requires a newer libjna-java (which should be ready
soon - I'm just making sure there aren't any unexpected regressions in
its reverse build-deps).
Once that is ready, I will take a look at the scripts in svnkit binary
package too.
Cheers,
tony
signature.asc
Description: PGP signature
On Thu, Oct 28, 2021 at 07:39:32PM +0100, Hilary Snaden wrote:
>
> On 23/10/2021 19:12, tony mancill wrote:
> > On Fri, Oct 22, 2021 at 08:28:50PM -0700, tony mancill wrote:
> > > On Mon, Oct 18, 2021 at 10:41:07AM +0200, Christoph Berg wrote:
> > > > wsjtx ru
ded up in my spam
folder and I didn't see it before my rebuild upload. I am uploading a
build with the patch now and will also prepare an upload of 2.5.1.
Cheers,
tony
signature.asc
Description: PGP signature
On Fri, Oct 22, 2021 at 08:28:50PM -0700, tony mancill wrote:
> On Mon, Oct 18, 2021 at 10:41:07AM +0200, Christoph Berg wrote:
> > wsjtx runs fine here with hamlib 4.3 when still compiled against 4.1;
> > I have not tested rebuilding yet.
>
> I went ahead and performed anot
On Mon, Oct 18, 2021 at 10:41:07AM +0200, Christoph Berg wrote:
> Re: tony mancill
> > That's a good idea. The diffoscope results in 100MB of diff, almost all
> > of it in the resulting binaries,
>
> Uh, I guess that was to be expected... sorry for the naive suggesti
On Sun, Oct 17, 2021 at 11:56:35PM +0200, Christoph Berg wrote:
> Re: tony mancill
> > I am tempted to upload a new source package to trigger a rebuild to see
> > if that solves the problem with the deb in the archive. Perhaps wsjtx
> > got caught up in a transition causin
committed a very similar patch to the packaging repo to address the
issue with the reproducible build but it hadn't been uploaded yet. I
have done that now. (And apologies for the duplicated efforts.)
Cheers,
tony
signature.asc
Description: PGP signature
On Mon, Oct 04, 2021 at 07:32:28AM -0700, tony mancill wrote:
> On Mon, Sep 27, 2021 at 09:07:49PM +0100, Hilary Snaden wrote:
> > Package: wsjtx
> > Version: 2.5.0~rc6+repack-1
> > Severity: important
> >
> > Dear Maintainer,
> >
> > The program
NETWORKING=OFF.
In any event, thank you for maintaining KeePassXC.
tony
signature.asc
Description: PGP signature
will prepare an upload soon.
Thank you for the patch!
tony
signature.asc
Description: PGP signature
periencing any problems with transmit with this version of
wsjtx. Can you provide more details about your configuration and/or
hardware?
Thank you,
tony
I had a possibly related symptom described in
https://forums.debian.net/viewtopic.php?p=743616#p743616 with my fix
described in https://forums.debian.net/viewtopic.php?p=743676#p743676.
In short, a USB device seems to have caused issues with the kernel that led
to the increased network latency. Fo
.org/linux-perf-users/20210910102307.2055484-1-to...@leastfixedpoint.com/T/#u
Cheers,
Tony
>From e3df73f35abf7485c351e541b6ab9280328cbbc9 Mon Sep 17 00:00:00 2001
From: Tony Garnock-Jones
Date: Fri, 10 Sep 2021 12:19:46 +0200
Subject: [PATCH v2] tools/perf: Use long-running addr2line per dso
y well. What used to take endless minutes now takes a few
seconds.
Please find my small patch (against "apt source linux-perf-5.10") attached.
I have also started the process of submitting it upstream.
Best Regards,
Tony
From 536e3e3f348c4bbf28810e8fa4b8bbbfc16d4372 Mon Sep 17 00:00:00
here as it obviously comes from itext, not libfonts.
>
> I offer to team-upload the package soon.
Hi Pierre,
Thank you for helping us clean up some of the cruft that has
accumulated in these packages.
Cheers,
tony
resent in unstable as
> a cruft
> package but is completely gone from testing.
Thank you for the bug report. Dropping this build-dep has no impact on
the resulting binary packages, so I am preparing an upload now.
Cheers,
tony
ckage, I
am happy to assist with that.
Otherwise, I propose that we remove it from the archive. The last
update for the flup6 was in July 2015 and the bitbucket.org link for the
project homepage is now defunct.
Cheers,
tony
signature.asc
Description: PGP signature
out when the directory isn't
> there, e.g. arch:any builds)
>
> This way the arch:any builds will just skip this step...
Thanks for catching this and the pointer on the fix. I will get an
update uploaded soon.
Cheers,
tony
signature.asc
Description: PGP signature
repo you suggest [1]. I will check with Sudip to be
sure, but I think we should probably update the debian/watch file to use
[1] as well.
Cheers,
tony
[2] https://github.com/io-sgr/s2-geometry-library-java
a clause would mean anyway now that "Sun
Microsystems" is defunct since 2010. How would a licensee disparage a
non-existent entity?
My second question is more just wondering what happens... I guess we
will have to figure out the files that are (presumably) licensed under
the problematic licenses.
Cheers,
tony
, if there ends up being a use case.
Cheers,
tony
signature.asc
Description: PGP signature
On Fri, Jul 16, 2021 at 06:43:53AM +0200, Christoph Anton Mitterer wrote:
> On Thu, 2021-07-15 at 21:18 -0700, tony mancill wrote:
> > This is certainly a valid point. There is not time to change the
> > situation for bullseye aside from filing an RM bug to prevent the
> >
block request!
Cheers,
tony
unblock hamlib/4.0-7
diff -Nru hamlib-4.0/debian/changelog hamlib-4.0/debian/changelog
--- hamlib-4.0/debian/changelog 2021-05-11 10:03:12.0 -0700
+++ hamlib-4.0/debian/changelog 2021-07-15 21:31:14.0 -0700
@@ -1,3 +1,11 @@
+hamlib (4.0-7) unstable; urgency=m
a very quick check of wsjtx.
Any concerns with an upload to unstable, hopefully in time a last-second
unblock request for bullseye? (debdiff attached)
Cheers,
tony
diff -Nru hamlib-4.0/debian/changelog hamlib-4.0/debian/changelog
--- hamlib-4.0/debian/changelog 2021-05-11 10:03:12.0 -0700
addressing the situation in bookworm. (One idea I would
propose is paring down the package to build just libzookeeper-java,
because I imagine that many people use the Debian package to run their
ZooKeeper ensembles, although maybe that's not true.)
Help is always appreciated.
Cheers,
tony
signature.asc
Description: PGP signature
nblock.
Cheers,
tony
unblock soapyosmo/0.2.5-4
diff -Nru soapyosmo-0.2.5/debian/changelog soapyosmo-0.2.5/debian/changelog
--- soapyosmo-0.2.5/debian/changelog2019-10-20 08:31:08.0 -0700
+++ soapyosmo-0.2.5/debian/changelog2021-07-03 09:31:09.0 -0700
@@ -1,3 +1,10 @@
+soa
On Mon, Jul 05, 2021 at 12:34:04PM +0200, Christoph Berg wrote:
> Re: tony mancill
> > However, the patched build alone does not resolve the crash of
> > sdrangelove on my system until I also install the updated hamlib4 from
> > experimental. That is, sdrangelove appe
o to get us one step
closer?
The patch/debdiff is attached.
Thanks,
tony
diff -Nru soapyosmo-0.2.5/debian/changelog soapyosmo-0.2.5/debian/changelog
--- soapyosmo-0.2.5/debian/changelog 2019-10-20 08:31:08.0 -0700
+++ soapyosmo-0.2.5/debian/changelog 2021-07-03 09:31:09.0 -0
bian.org/cgi-bin/bugreport.cgi?bug=990231
Thank you for your help!
tony
/changelog
[x] I reviewed all changes and I approve them
[x] attach debdiff against the package in testing
Thank you for considering this unblock request.
Cheers,
tony
unblock uimaj/2.10.2-4
diff -Nru uimaj-2.10.2/debian/changelog uimaj-2.10.2/debian/changelog
--- uimaj-2.10.2/debian/changelog
On Tue, Jun 22, 2021 at 07:57:13AM +0900, Hideki Yamane wrote:
> Hi,
>
> On Mon, 21 Jun 2021 11:52:14 -0700
> tony mancill wrote:
> > I saw the note in the changelog that Breaks is in fact there to remove
> > the empty package, but it's not happening for me when I tr
On Sat, Jun 19, 2021 at 07:46:28AM -0700, tony mancill wrote:
> On Sat, Jun 19, 2021 at 10:29:25PM +0900, Hideki Yamane wrote:
> > So let's remove its binary package and add Breaks: to it.
> > MR is here, could someone review it, please?
> > https://salsa.
ust one quick question... Why is the Breaks necessary? Is it there to
force removal of libuima-adapter-soap-java when libuima-core-java is
upgraded?
Cheers,
tony
ads
directory, which I believe we want to be visible to the user and not
buried under .config/.
Cheers,
tony
signature.asc
Description: PGP signature
to look.
Let's start by determining what window manager, etc. you are running and
see if we can reproduce the problem on another system.
My assumption is that initialise isn't present because
App::ClusterSSH::Window->new() failed in some unexpected way - that is,
somewhere in here:
ime, I'll nmu this package post bullseye release, if
> not uploaded on time.
Thank you for the patch. Low-threshold NMUs are welcome, but I
appreciate the bug report and the patch. I will apply and upload along
with the other changes that have accumulated in Salsa.
Cheers, and t
all Emmanuel proposing this previously, so I am
adding my +1 for dropping the *-java-doc packages entirely. Any
concerns about making this Java Team goal for bookworm?
Cheers,
tony
signature.asc
Description: PGP signature
On Tue, May 18, 2021 at 09:01:51PM +0200, Moritz Mühlenhoff wrote:
> Am Mon, Apr 05, 2021 at 09:37:41AM -0700 schrieb tony mancill:
> > On Sat, Mar 27, 2021 at 07:52:37PM +0100, Salvatore Bonaccorso wrote:
> > > Source: libpdfbox2-java
> > > Version: 2.0.22-1
> >
debdiff against the package in testing
[ Other info ]
My apologies for submitting a request with such a large diff. Thank you
for considering the request.
Cheers,
tony
unblock libpdfbox2-java/2.0.23-1
libpdfbox2-java_2.0.22-1_vs_2.0.23-1.dsc.debdiff.gz
Description: application/gzip
On Thu, May 13, 2021 at 05:44:35PM -0700, tony mancill wrote:
> Source: bouncycastle
> Version: 1.68-1
> Severity: minor
>
> I noticed while updating bouncycastle to include the bctls that the
> poms weren't refreshed for the 1.68-1 upload and the package installs
>
inary package for bctls (which will result in the packaging going
through NEW). Maybe there's still time to fix this for bullseye.
Cheers,
tony
> src:bouncycastle [2]. Please consider adding it as a binary package.
Thank you for the bug report.
I will upload an updated package that includes a libbctls-java binary
package to experimental soon.
tony
signature.asc
Description: PGP signature
+ * Team upload.
+ * Add patch to ignore UnsupportedOperationException when setting SO_SNDBUF
+in NioSocketAcceptor (Closes: #986866)
+
+ -- tony mancill Mon, 03 May 2021 09:05:20 -0700
+
mina2 (2.1.4-1) unstable; urgency=medium
* Team upload.
diff -Nru mina2-2.1.4/debian/patches/se
On Sun, May 02, 2021 at 07:29:56AM -0700, tony mancill wrote:
> 1) The exception is being thrown in the mina library (source package
> mina2: https://tracker.debian.org/pkg/mina2), so we will likely end up
> reassigning the bug to that package.
I have reassigned the bug to mina2.
>
o, when I look at the Java 11 javadoc for ServerSocketChannel [1], I
don't see SO_SNDBUF as a supported option anyway.
Assuming my hunch is correct, I propose patching mina2 to no longer
attempt to set SO_SNDBUF [2]. mina2 is only used by ApacheDS within
Debian, so it should be fairly quick t
-0700
@@ -1,3 +1,12 @@
+fwlogwatch (1.4-3) unstable; urgency=medium
+
+ * QA upload.
+ * Correct service PID file (Closes: #987315)
+ * Mark autopkgtest as superficial (Closes: #969828)
+ * Correct the path to the fwlogwatch command in the autopkgtest.
+
+ -- tony mancill Fri, 23 Apr 2021 21:10:36 -0700
g the file.
>
> Versions Affected: Apache PDFBox <= 2.0.22
>
> Mitigation: Upgrade to Apache PDFBox 2.0.23
Note that others have drawn the same conclusion from the announcement -
e.g.
https://github.com/apache/ofbiz-framework/commit/df69401118c99896432b417690f2229bc757072c
Thanks,
tony
signature.asc
Description: PGP signature
On Mon, Apr 05, 2021 at 05:15:12PM +0200, Salvatore Bonaccorso wrote:
> On Sun, Apr 04, 2021 at 09:05:06PM -0700, tony mancill wrote:
> > On Sat, Mar 27, 2021 at 07:54:11PM +0100, Salvatore Bonaccorso wrote:
> > > Source: libpdfbox2-java
> > > Version: 2.0.22-1
> >
On Mon, Apr 05, 2021 at 09:37:41AM +0200, Markus Koschany wrote:
> Am Sonntag, den 04.04.2021, 21:05 -0700 schrieb tony mancill:
> > On Sat, Mar 27, 2021 at 07:54:11PM +0100, Salvatore Bonaccorso wrote:
> > > Source: libpdfbox2-java
> > > Version: 2.0.22-1
> >
will address both CVE-2021-27807
and CVE-2021-27906.
I have an upload ready (using DEP-14 branches, so it won't change
master). I originally considered uploading 2.0.23 to experimental due
to the freeze, but I think it should go to unstable and then we can
discuss what we do for bullseye.
Con
301 - 400 of 2577 matches
Mail list logo