2024-05-07 19:26:27.0 +
@@ -1,3 +1,10 @@
+fossil (1:2.24-6~deb12u1) bookworm; urgency=medium
+
+ * Non maintainer upload with acknowledgement by maintainer
+ * Backport to bookworm
+
+ -- Bastien Roucari??s Tue, 07 May 2024 19:26:27 +
+
fossil (1:2.24-6) unstable; urgency=medium
sid, it should be trivially backportable to
> (old)*stable. There should be NEWS about that change.
Test validated and pushed to git.
Lack only the NEWS entry.
Due to the complexity of this issue, as an outsider due you have an idea how to
explain to a simple user.
Bastien
>
> Andreas
>
signature.asc
Description: This is a digitally signed message part.
Le lundi 29 avril 2024, 18:40:39 UTC Barak A. Pearlmutter a écrit :
> Bastien,
>
> Okay, got it. Thanks for letting me know.
>
> I can cherry-pick that fossil commit, but you know the right magic for
> a versioned apache2 breakage and how to deal with proposed-updates.
> So
in order to enable O RejectNUL=True directive,
but I do not achieved the fact to enable it by default.
It will need a NEWS.debian entry I suppose
Andreas could you get a glimpse at how to render RejectNUL a default ?
Bastien
signature.asc
Description: This is a digitally signed message part.
, and an eap_peap_decrypt vulnerability
+can then be abused to skip Phase 2 authentication.
+The attack vector is sending an EAP-TLV Success packet
+instead of starting Phase 2. This allows an adversary
+to impersonate Enterprise Wi-Fi networks.
+
+ -- Bastien Roucari??s Tue, 30 Apr 2024 22
, and an eap_peap_decrypt vulnerability
+can then be abused to skip Phase 2 authentication.
+The attack vector is sending an EAP-TLV Success packet
+instead of starting Phase 2. This allows an adversary
+to impersonate Enterprise Wi-Fi networks.
+
+ -- Bastien Roucari??s Tue, 30 Apr 2024 22:45:18
.)", and did the (trivial) backport of that package
> to bookworm and bullseye, with the "breaks:" modified to the
> appropriate version.
I agree with you, may be a fullbackport is better for bookworm see changes here
(line with * are interesting commit to backport)
Yadd do you have a pie
hem.
If so you could drop for bookworm (if release team is ok) and sid this embeded
code copy
BTW I have just opened a bug and add some comment on embded code copy
Bastien
signature.asc
Description: This is a digitally signed message part.
if release team is ok) and sid this embeded
code copy
Bastien
signature.asc
Description: This is a digitally signed message part.
Le mardi 30 avril 2024, 15:24:11 UTC Benjamin Drung a écrit :
> Hi,
>
> On Mon, 2024-04-15 at 18:58 +, Bastien Roucariès wrote:
> > Package: distro-info
> > Version: 1.7
> > Severity: minor
> >
> > Dear Maintainer,
> >
> > distro-info --ali
f and
> > /etc/resolv.conf differ
A solution may be to bind mount ro /etc/resolv.conf to
/var/spool/postfix/etc/resolv.conf
Bastien
>
> BTW, note that this is a security issue, because with wifi,
> the DNS server often corresponds to the local router (e.g.
> 10.3.0.1), and it
Le lundi 29 avril 2024, 18:40:39 UTC Barak A. Pearlmutter a écrit :
> Bastien,
>
> Okay, got it. Thanks for letting me know.
>
> I can cherry-pick that fossil commit, but you know the right magic for
> a versioned apache2 breakage and how to deal with proposed-updates.
> So
Le lundi 29 avril 2024, 18:40:39 UTC Barak A. Pearlmutter a écrit :
> Bastien,
>
> Okay, got it. Thanks for letting me know.
>
> I can cherry-pick that fossil commit, but you know the right magic for
> a versioned apache2 breakage and how to deal with proposed-updates.
> So
?id=68905
I can help here and do proposed update
We also need to use breaks relationship in apache2, in order to allow smooth
upgrade
Bastien
signature.asc
Description: This is a digitally signed message part.
Le lundi 15 avril 2024, 13:58:19 UTC Steve McIntyre a écrit :
> On Mon, Apr 15, 2024 at 11:33:14AM +0000, Bastien Roucariès wrote:
> >Source: shim
> >Followup-For: Bug #1061519
> >Control: tags -1 + patch
> >
> >Dear Maintainer,
> >
> >Please find a
Package: distro-info
Version: 1.7
Severity: minor
Dear Maintainer,
distro-info --alias=trixie -r is misleading it return trixie instead of 13...
Maybe a feature but should be documented
I workarround by doing in my script in two steps:
distro-info --$(distro-info --alias=trixie) -r
Bastien
Source: shim
Severity: minor
Dear Maintainer,
Could you install the ca used for secure boot somewhere in the tree ?
It will help to check by autopkgtest the ca chain
Bastien
signature.asc
Description: This is a digitally signed message part.
Source: shim
Followup-For: Bug #1061519
Control: tags -1 + patch
Dear Maintainer,
Please find a MR here
https://salsa.debian.org/efi-team/shim/-/merge_requests/13
Bastien
signature.asc
Description: This is a digitally signed message part.
Source: json-smart
Version: 2.2-3
Severity: wishlist
Dear Maintainer,
Please package the new upstream version
I do not achieve to get maven compile it
Bastien
signature.asc
Description: This is a digitally signed message part.
Le samedi 13 avril 2024, 14:01:24 UTC Bastien Roucariès a écrit :
> Le samedi 13 avril 2024, 14:00:00 UTC Moritz Mühlenhoff a écrit :
> Hi,
>
> > Am Tue, Apr 09, 2024 at 10:01:11AM +0200 schrieb Andreas Beckmann:
> > > Package: release.debian.org
> > > Seve
gt; Usertags: pu
> > X-Debbugs-Cc: Bastien Roucariès
> > Control: affects -1 + src:json-smart
> > Control: block 1039985 with -1
> > Control: block 1033474 with -1
> >
> > [ Reason ]
> > Two CVEs were fixed in buster-lts, but not yet in bullseye or later,
>
name or login ID, this issue is
+potentially critical.
+ * Add salsa CI
+
+ -- Bastien Roucari??s Mon, 25 Mar 2024 08:30:56 +
+
zookeeper (3.8.0-11+deb12u1) bookworm-security; urgency=medium
* Team upload:
diff -Nru zookeeper-3.8.0/debian/patches/0027-CVE-2024-23944-ZOOKEEPER-4799
control: tags -1 + patch
Hi,
You will find a merge request for fixing CVE-2023-52160
https://salsa.debian.org/debian/wpa/-/merge_requests/15
I can do a NMU if neeeded
Bastien
signature.asc
Description: This is a digitally signed message part.
n.net/deps/dep3/
>
>
> Le 28 mars 2024 19:23:08 GMT+01:00, "Bastien Roucariès" a
> écrit :
> >Le jeudi 28 mars 2024, 18:16:09 UTC Fab Stz a écrit :
> >> Hello Bastien,
> >>
> >> Iirc not so many packages depend on it and none seems to use
Le jeudi 28 mars 2024, 18:16:09 UTC Fab Stz a écrit :
> Hello Bastien,
>
> Iirc not so many packages depend on it and none seems to use the files that
> are not shipped anymore in the binary package (the individual 'rules').
>
> Concerning the build maybe you could look at d/
of reverse depends ?
How does it build ?
Bastien
>
> Regards
> Fab
>
> On Tue, 19 Mar 2024 08:58:23 +0100 Fab Stz wrote:
> > Source: modernizr
> > Version: update
> > Severity: wishlist
> > Tags: patch
> >
> > Dear Maintainer,
> >
>
Source: jupyterlab
Version: 4.0.11+ds1-1
Severity: important
Dear Maintainer,
Your package include files included elsewhere:
python3-jupyterlab: /usr/share/jupyter/lab/staging/node_modules/get-
intrinsic/.eslintrc
python3-jupyterlab: /usr/share/jupyter/lab/staging/node_modules/get-
Source: jupyterlab
Version: 4.0.11+ds1-1
Severity: important
Dear Maintainer,
node-call-bind provided virtual package provides these files
python3-jupyterlab: /usr/share/jupyter/lab/staging/node_modules/call-
bind/.eslintignore
python3-jupyterlab:
Moreover, it was hard for debian to get this files builded and @xtuc ones does
not build from source
Bastien
-- System Information:
Debian Release: trixie/sid
APT prefers testing-debug
APT policy: (900, 'testing-debug'), (900, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Le jeu. 22 févr. 2024 à 06:07, Shriram Ravindranathan a écrit :
>
> Thank you Bastien,
> I tried doing this but it appears that the scripts to build these
> example files all depend on having the highlight binary itself installed
> on the machine. I am unsure whether it
Le mer. 21 févr. 2024 à 15:38, Soren Stoutner a écrit :
>
> Shriram,
>
> On Wednesday, February 21, 2024 8:30:54 AM MST Shriram Ravindranathan wrote:
> > Upon inspecting the embedded font, It seems to be a bespoke icon-font
> > generated using a tool called "Fontello" from one of the icons of the
control: tags -1 + pending
Uploaded waiting ftpmaster
Le vendredi 9 février 2024, 03:39:41 UTC Marco Trevisan a écrit :
> Package: wnpp
> Severity: wishlist
> Owner: Marco Trevisan (Treviño)
> X-Debbugs-CC: debian-de...@lists.debian.org
>
> * Package name: node-long
> Version :
Hi,
Go ahead ASAP
Bastien
Le sam. 17 févr. 2024 à 17:40, Steve Langasek a écrit :
>
> Source: imagemagick
> Version: 8:6.9.12.98+dfsg1-5
> Severity: important
> Tags: patch pending sid trixie
> User: debian-...@lists.debian.org
> Usertags: time-t
>
> NOTICE: these c
Hi all
I have done some work here
https://salsa.debian.org/js-team/node-long/
Yadd could you get a glimpse why the webassembly is not strictly identical ?
Bastien
Le ven. 16 févr. 2024 à 19:16, Bastien ROUCARIES
a écrit :
>
> Hi,
>
> .
> >
> > I've given acc
Hi,
.
>
> I've given access to the js salsa team.
>
> [1] https://salsa.debian.org/3v1n0-guest/node-esm2umd/
It is not the node-long tree...
>
python3-jupyterlab:
/usr/share/jupyter/lab/staging/node_modules/minimist/test/long.js
Bastien
Le sam. 10 févr. 2024 à 17:28, Marco Trevisan a écrit :
>
> Hi Bastien,
>
> I checked again, it definitely still has it, however it's completely
> optional so I think we can just do
intainer, but I'll be
> happy keeping the maintenance of it.
>
Hi will do but last i checked it has a long line of wasm wirhout source
Bastien
>
> I've given access to the js salsa team.
>
> [1] https://salsa.debian.org/3v1n0-guest/node-esm2umd/
>
>
Le jeudi 8 février 2024, 19:57:22 UTC Bill Allombert a écrit :
> On Thu, Feb 08, 2024 at 06:39:18PM +0000, Bastien Roucariès wrote:
> > Le jeudi 8 février 2024, 18:31:28 UTC Santiago Ruano Rincón a écrit :
> > > On Sat, 14 Oct 2023 20:23:18 +0200 Bill Allombert
> > >
Le jeudi 8 février 2024, 18:31:28 UTC Santiago Ruano Rincón a écrit :
> On Sat, 14 Oct 2023 20:23:18 +0200 Bill Allombert wrote:
> > On Sun, Sep 18, 2022 at 12:14:07AM +0100, Colin Watson wrote:
> > > Package: lintian
> > > Version: 2.115.3
> > > Severity: normal
> > >
> > > Lintian issues these
Le lundi 5 février 2024, 12:42:04 UTC Bill Allombert a écrit :
> On Mon, Feb 05, 2024 at 12:28:02PM +0100, Axel Beckert wrote:
> > Hi Bill,
> >
> > Bill Allombert wrote:
> > > By the way, what happened to lintian.debian.org ?
> >
> > Seems as if someone (not me, just noticed it today when
> >
Le dimanche 4 février 2024, 14:02:58 UTC Bill Allombert a écrit :
> On Tue, Aug 16, 2022 at 11:56:20AM +0000, Bastien Roucariès wrote:
> > Source: lintian
> > Version: 2.115.2
> > Followup-For: Bug #1012289
> >
> > Dear Maintainer,
> >
> > I will
Le vendredi 2 février 2024, 16:53:10 UTC Sebastian Ramacher a écrit :
> Control: tags -1 moreinfo
>
> Hi Bastien
>
> On 2024-01-05 22:35:44 +, Bastien Roucariès wrote:
> > Package: release.debian.org
> > Severity: important
> > User: release.debian
Hi,
A gentle remainder about imagemagick7 transition plan.
Many thanks for santiago to review partially it, but I need green light from
release team.
Bastien
signature.asc
Description: This is a digitally signed message part.
of fork ?
Bastien
-- System Information:
Debian Release: trixie/sid
APT prefers testing-debug
APT policy: (900, 'testing-debug'), (900, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386, armel
Kernel: Linux 6.5.0-5-amd64 (SMP w/4 CPU threads; PREEMPT)
Locale: LANG=fr_FR.UTF-8
particularly for sensitive
security components like sudo
Bastien
-- System Information:
Debian Release: trixie/sid
APT prefers testing-debug
APT policy: (900, 'testing-debug'), (900, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386, armel
Kernel: Linux 6.5.0-5-amd64 (SMP w/4
otpion to mark it really as
> duplicate (and request a reject from MITRE) or it is again just a
> ALEOS issue "... tinyxml as used in". Again the table here is not very
> clear in the report, for the CVE-2023-34194 and CVE-2023-40462 there
> were explicitly listed
do you think of this plan ? From a security point of view it is better to
go to imagemagick7 (so important severity)
I expect breakage only on the last step. See
https://imagemagick.org/script/porting.php
ftpmaster it need more work because it will need three manual step.
Bastien
* perlmagick
Hi,
I have just fix this CVE for buster and I want to know if you need help to
release a fix for unstable ?
The LTS fix are here https://salsa.debian.org/lts-team/packages/keystone/
Thanks
Bastien
signature.asc
Description: This is a digitally signed message part.
Hi,
I have just uploaded
Bastien
signature.asc
Description: This is a digitally signed message part.
control: reopen -1
control: found -1 5.4.0-1
control: forwarded -1
https://github.com/ansible-collections/amazon.aws/pull/1704
control: tag -1 + fixed-upstream
Hi,
This bug lie in ansible...
Reopen this bug and use the patch as fwd field.
rouca
signature.asc
Description: This is a digitally
Le lundi 13 novembre 2023, 11:18:42 UTC Markus Koschany a écrit :
> Hey,
>
> Am Montag, dem 13.11.2023 um 09:19 + schrieb Bastien Roucariès:
>
> [...]
> > Apo can I add myself to your package ? Do you care to comaintain with
> > javascript team ?
>
> I
Le samedi 11 novembre 2023, 18:22:41 UTC Bastien Roucariès a écrit :
> control: tags -1 + patch
>
> Hi,
>
> Could you apply the merge request
> https://salsa.debian.org/multimedia-team/audiofile/-/merge_requests/5 and
> made a release ?
>
> It fix the two CVE
>
control: tags -1 + patch
Hi,
Could you apply the merge request
https://salsa.debian.org/multimedia-team/audiofile/-/merge_requests/5 and made
a release ?
It fix the two CVE
Bastien
signature.asc
Description: This is a digitally signed message part.
control: tags -1 + pending
I have a merge request waiting here
Plan a NMU/7
https://salsa.debian.org/multimedia-team/sox/-/merge_requests?scope=all=opened
rouca
signature.asc
Description: This is a digitally signed message part.
Hi,
I have one package that fail actually due to this.
A CVE was fixed by coordinating a fix between rmagick and imagemagick and I
test that the CVE is closed using an autopkgtest
I believe also it is important from a security point of view to add fix for
security issue
Bastien
Package: wnpp
Severity: important
Owner: Bastien Roucariès
X-Debbugs-Cc: debian-de...@lists.debian.org
* Package name: node-envinfo
Version : 7.11.0+~cs13.4.1
Upstream Contact: https://github.com/tabrindle/envinfo#readme
https://github.com/sindresorhus/os-name
Package: dh-nodejs
Version: 0.15.15
Severity: important
Dear Maintainer,
dh-nodejs should provide dh-nodejs-autodocs
-- System Information:
Debian Release: trixie/sid
APT prefers testing-debug
APT policy: (900, 'testing-debug'), (900, 'testing')
Architecture: amd64 (x86_64)
Foreign
to export default for both
Bastien
signature.asc
Description: This is a digitally signed message part.
Package: python3
Version: 3.11.4-5+b1
Severity: important
Tags: newcomer
Dear Maintainer,
I order to avoid some strange error in autopkgtest of python related package,
could be possible to recommend netbase ? It is needed for acessing
/etc/services and well known port/host
Bastien
-- System
Package: webpack
Version: 5.76.1+dfsg1+~cs17.16.16-1
Severity: important
Dear Maintainer,
I think the way to go is to split env from webpack
env need webpack to build but need a few package
Yadd what do you think ?
Bastien
signature.asc
Description: This is a digitally signed message part.
gainst the imagemagick package:
> >
> > #1038637: Recompile imagemagick with libraw
> >
> > It has been closed by Debian FTP Masters
> > (reply to Bastien Roucariès ).
> >
> > Their explanation is attached below along with your original report.
> > If this explanat
Package: ftp.debian.org
Severity: normal
User: ftp.debian@packages.debian.org
Usertags: remove
X-Debbugs-Cc: imagemag...@packages.debian.org
Control: affects -1 + src:imagemagick
Please remove this two transitionnal package
Thanks
Bastien
control: retitle -1 golang-github-facebook-ent: include non free font Calibre
Le mardi 24 octobre 2023, 06:13:41 UTC Cyril Brulebois a écrit :
> Hi Bastien,
>
> Bastien Roucariès (2023-10-23):
> > Source: golang-github-facebook-ent
> > Version: 0.5.4-3
> > Severi
control: retitle -1 fasttext: website is build with Docusaurus not packaged
for debian
Le mardi 24 octobre 2023, 06:41:55 UTC Andrius Merkys a écrit :
> Hi,
>
> On 2023-10-23 22:06, Bastien Roucariès wrote:
> > Source: fasttext
>
> Source package names in Subject an
control: retitle -1 node-katex: website is build with Docusaurus not packaged
for debian
Le mardi 24 octobre 2023, 06:40:59 UTC Andrius Merkys a écrit :
> Hi,
>
> On 2023-10-23 22:04, Bastien Roucariès wrote:
> > Source: node-katex
>
> Source package names in Subject an
/
You should repack or package docusaurus and rebuild
Bastien
signature.asc
Description: This is a digitally signed message part.
You should repack or package docusaurus and rebuild
Bastien
signature.asc
Description: This is a digitally signed message part.
control: reassign -1 ts-node
signature.asc
Description: This is a digitally signed message part.
/
You should repack or package docusaurus and rebuild
Bastien
signature.asc
Description: This is a digitally signed message part.
repack or package docusaurus and rebuild
Bastien
signature.asc
Description: This is a digitally signed message part.
/docusaurus.config.js/?hl=54#L54
You should repack or package docusaurus and rebuild
Bastien
signature.asc
Description: This is a digitally signed message part.
repack or package docusaurus and rebuild
Bastien
signature.asc
Description: This is a digitally signed message part.
repack or package docusaurus and rebuild
Bastien
signature.asc
Description: This is a digitally signed message part.
Source: node-react-redux
Version: 8.1.2+dfsg1+~cs1.2.3-1
Severity: serious
Tags: ftbfs
Justification: FTBFS
Control: block -1 by 1054426
Dear Maintainer,
The documentation is build with docusaurus.
See website directory
You should repack or package docusaurus and rebuild
Bastien
Source: node-redux
Version: 4.2.1-1
Severity: serious
Tags: ftbfs
Justification: FTBFS
Control: block -1 by 1054426
Dear Maintainer,
The documentation is build with docusaurus.
See website directory
You should repack or package docusaurus and rebuild
Bastien
signature.asc
Description
Source: fasttext
Version: 0.9.2+ds-5
Severity: serious
Tags: ftbfs
Justification: FTBFS
Control: block -1 by 1054426
Dear Maintainer,
The documentation is build with docusaurus.
See website directory
You should repack or package docusaurus and rebuild
Bastien
signature.asc
Description
docusaurus and rebuild
Bastien
signature.asc
Description: This is a digitally signed message part.
docusaurus and rebuild
Bastien
-- System Information:
Debian Release: trixie/sid
APT prefers testing-debug
APT policy: (900, 'testing-debug'), (900, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386, armel
Kernel: Linux 6.5.0-2-amd64 (SMP w/4 CPU threads; PREEMPT)
Locale: LANG
Package: wnpp
Severity: wishlist
* Package name: docusaurus
Version : 1
Upstream Contact: Facebook, Inc. and its affiliates. (Facebook, Inc. and its
affiliates.)
* URL : https://github.com/facebook/docusaurus
* License : expat
Programming Lang: javascript
by nodejs-punycode
Thanks
bastien
Le lun. 23 oct. 2023 à 11:45, Vincent Lefevre a écrit :
> Control: found -1 8:6.9.12.98+dfsg1-2
>
> On 2022-09-20 18:18:23 +0200, fab...@debian.org wrote:
> > you are receiving this bug report, because your package declares a
> > relationship with the gsfonts and/or gsfonts-x11 packages. Both
>
Le dimanche 22 octobre 2023, 15:03:50 UTC Sebastian Ramacher a écrit :
> Control: tags -1 confirmed
>
> On 2023-10-22 14:51:42 +, Bastien Roucariès wrote:
> > Le dimanche 22 octobre 2023, 14:08:20 UTC Sebastian Ramacher a écrit :
> > > Hi Bastien
> > >
&
Le dimanche 22 octobre 2023, 14:08:20 UTC Sebastian Ramacher a écrit :
> Hi Bastien
>
> On 2023-10-21 20:10:47 +, Bastien Roucariès wrote:
> > Can I go ahead with imagemagick experimental ?
>
> As a year has past since the last mail to the transition bug report: did
>
Hi,
Can I go ahead with imagemagick experimental ?
Thanks
Bastien
signature.asc
Description: This is a digitally signed message part.
/packages/n/node-punycode/control-2.2.3-2
piupart is ok so it is normally ok
Could you restest ?
Bastien
-
signature.asc
Description: This is a digitally signed message part.
Source: prometheus-alertmanager
Severity: important
Dear Maintainer,
Could you package the GUI.
ELM is now under debian
Bastien
-- System Information:
Debian Release: trixie/sid
APT prefers testing-debug
APT policy: (900, 'testing-debug'), (900, 'testing')
Architecture: amd64 (x86_64
and comaintain debian side this package ?
I only need that dracut is supported and tested.
Kaisen could you support dracut ?
Bastien
signature.asc
Description: This is a digitally signed message part.
g to this email.
>
Seems sensible note that linux manpages mandate now some behavior for EDITOR,
PAGER and VISUAL
Bastien
signature.asc
Description: This is a digitally signed message part.
Le dimanche 10 septembre 2023, 05:44:02 UTC Rene Engelhard a écrit :
> severity 1051474 important
>
> thanks
>
> Hi,
>
> Am 08.09.23 um 19:19 schrieb Bastien Roucariès:
> > Source: libreoffice
> > Severity: serious
> > Tags: security
> > Justifica
be documented.
Moreover you do not document where you downloaded these file a comment under
copyright will be helpful (README.source say how to retrieve it not the link to
get).
Thanks
Bastien
-- System Information:
Debian Release: trixie/sid
APT prefers testing-debug
APT policy: (900, 'testing-debug
Reuben Thomas writes:
> However, it would seem to make sense that elpa-org would get
> its own copy
Indeed!
--
Bastien
Le vendredi 18 août 2023, 23:16:04 UTC Markus Koschany a écrit :
> Am Montag, dem 31.07.2023 um 11:56 + schrieb Bastien Roucariès:
> > Source: ublock-origin
> > Severity: serious
> > Justification: not prefered form of modification
> >
> > Dear Maintaine
Le lun. 14 août 2023 à 08:57, Kunal Mehta a écrit :
> severity 1042532 normal
> tags 1042532 wontfix
> thanks
>
> Hi,
>
> On 7/31/23 07:23, roucaries bastien wrote:
> > hi,
> > Le lun. 31 juil. 2023 à 08:27, Kunal Mehta a écrit
> :
> >> These ar
control: tags -1 + patch
Hi,
Find the patch hereFrom: =?utf-8?q?Bastien_Roucari=C3=A8s?=
Date: Sun, 13 Aug 2023 14:14:09 +
Subject: CVE-2023-32627 Filter null sampling rate in VOC coder
Avoid a divide by zero and out of bound read by rejecting null sampling rate in VOC file
bug:
hile we change the org-element parser.
It's okay to use the manual for non-trivial known issues, whether we
can provide hacks to circumvent them or not.
--
Bastien Guerry
Hi,
This problem is fixed by CVE-2022-31650.patch
Channel could not overflow
signature.asc
Description: This is a digitally signed message part.
s" rather belong
to this page on Worg: https://orgmode.org/worg/org-hacks.html
HTH,
--
Bastien
Source: zoneminder
Severity: serious
Justification: embded code copy
Dear Maintainer,
Your package include a copy of cake php. Could you use the packaged one ?
Thanks
signature.asc
Description: This is a digitally signed message part.
Source: umatrix
Followup-For: Bug #976697
Forwarded: https://gitlab.com/vannilla/ematrix/
Dear Maintainer,
I have asked guidance to the last fork about firefox/chromium support. If not
RM is the wayto go
Bastien
-- System Information:
Debian Release: trixie/sid
APT prefers testing-debug
is due that for instance punycode was not in prefered form of
modification due to being wepackaged (transpiled) in order to be an ES module.
They may be other transpiled package in this subdirectory
Bastien
signature.asc
Description: This is a digitally signed message part.
1 - 100 of 3733 matches
Mail list logo