Bug#1053098: unadf 0.7.11a-5 calls system() with unsanitized input

Package: unadf Version: 0.7.11a-5 Severity: grave Tags: security Justification: user security hole X-Debbugs-Cc: Debian Security Team Dear Maintainer, See upstream ADFLib commit 8e973d7b8945 ("Fix unsafe extraction by using mkdir() instead of shell command") [1]. 'unadf' passes the directory

Bug#971068: Assertion failure in i915 intel_display.c#assert_plane() after resume from hibernation

per fixes have been backported to v6.1 stable kernels. BR, Jani. -- Jani Nikula, Intel Open Source Graphics Center

Bug#919266: msmtp: AppArmor profile makes .msmtprc symlink unusable

Package: msmtp Version: 1.8.1-2 Severity: important Dear Maintainer, I store my dotfiles in a git repo, and symlink the actual dotfiles to the git checkout. After msmtp update, the AppArmor profile blocked this: [622972.288769] audit: type=1400 audit(1547459536.817:103): apparmor="DENIED"

Bug#862319: sparse: out-of-bounds array access leads to bogus warnings (dereference of noderef expression)

Package: sparse Version: 0.5.0-1+b1 Severity: important Dear Maintainer, There's a nasty out-of-bounds array access bug in sparse 0.5.0 that spews out tons of unwarranted warnings: ./include/linux/err.h:35:16: warning: dereference of noderef expression ./include/linux/err.h:30:23: warning:

Bug#843127: [Paul Wise] Bug#843127: notmuch: race condition in `notmuch new`?

On Fri, 04 Nov 2016, David Bremner wrote: > I wonder if this some kind of race condition in `notmuch new` > processing. Do you have some other software modifying your mail store while you're running notmuch new? BR, Jani.