Bug#930401: mutter: Crashes on restart if Static Workspaces are enabled (gnome-shell)

2019-06-11 Thread Matthew Gabeler-Lee
Package: mutter Version: 3.30.2-7 Severity: normal Tags: upstream If you enable static instead of dynamic workspaces, then gnome-shell segfaults if you restart it. This has been reported and fixed upstream in 3.32.x, it would be nice if this fix could be backported to Debian's 3.30.x release.

Bug#930404: [Meta] move gitlab back to main from contrib

2019-06-11 Thread Pirate Praveen
Package: gitlab Version: 11.8.10+dfsg-1 Severity: wishlist Control: block -1 by 863293 Control: block -1 by 930372 This is a meta bug to track progress of packaging node dependencies. -- Sent from my Android device with K-9 Mail. Please excuse my brevity.

Bug#928185: unblock: openjdk-11/11.0.3+7-4

2019-06-11 Thread tony mancill
On Wed, Jun 12, 2019 at 12:37:11AM +0200, Moritz Mühlenhoff wrote: > On Mon, Jun 10, 2019 at 09:46:41PM -0700, tony mancill wrote: > > I am not a member of the OpenJDK team and contributed far less to the > > JDK 8 -> 11 transition than Emmanuel has. If he and Matthias are in > > agreement and

Bug#930402: kball FTCBFS: uses the build architecture compiler

2019-06-11 Thread Helmut Grohne
Source: kball Version: 0.0.20041216-10 Tags: patch User: debian-cr...@lists.debian.org Usertags: ftcbfs kball fails to cross build from source, because it uses the build architecture compiler. It uses a non-standard variable GCC for the compiler while debhelper passes it as CXX. After renaming

Bug#930403: ibod FTCBFS: strips with the wrong strip

2019-06-11 Thread Helmut Grohne
Source: ibod Version: 1.5.0-6 Tags: patch User: debian-cr...@lists.debian.org Usertags: ftcbfs ibod fails to cross build from source, because its make install passes the -s flag to install and thus uses the wrong strip. Beyond breaking cross compilation, this also breaks DEB_BUILD_OPTIONS=nostrip

Bug#927254: [Pkg-javascript-devel] Bug#927254: possible solution

2019-06-11 Thread Paolo Greppi
On 10/06/19 20:03, Paolo Greppi wrote: ... Tomorrow I'll test the generated file inside laminar. If that works this is an acceptable solution. The last bit is to move this config change to debian/rollup-umd.js so that it does not impact all builds.. Paolo I tested with the non-minified

Bug#930351: linux-image-4.9.0-9-amd64: soft lockup / stuck in pid_revalidate

2019-06-11 Thread Bernhard M. Wiedemann
Package: src:linux Version: 4.9.168-1+deb9u2 Severity: important Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? ran the server for some days with KVM VMs on top * What exactly did you do (or not do) that

Bug#930314: [debian-mysql] Bug#930314: mariadb-10.3 FTCBFS: multiple reasons

2019-06-11 Thread Otto Kekäläinen
Hello! I converted the patch into a git commit at https://salsa.debian.org/mariadb-team/mariadb-10.3/commit/a91d8491ce4587efdc41f11b73905f261f0366d4 Tests running at https://salsa.debian.org/mariadb-team/mariadb-10.3/pipelines/50365

Bug#927254: [Pkg-javascript-devel] Bug#927254: possible solution

2019-06-11 Thread Paolo Greppi
On 11/06/19 08:03, Pirate Praveen wrote: I think rollup-plugin-commonjs will also work without extra options, see node-d3-fetch. rollup-plugin-commonjs is already there in the upstream rollup config: https://salsa.debian.org/js-team/vue-router.js/blob/master/build/configs.js#L4 P.

Bug#930348: chromium: missing intrinsics on armhf

2019-06-11 Thread Michael Gilbert
package: src:chromium severity: serious version: 75.0.3770.80-1 The latest upload fails to build on armhf due to missing intrinsics [0]. Best wishes, Mike [0]https://buildd.debian.org/status/fetch.php?pkg=chromium=armhf=75.0.3770.80-1=1560141959=0

Bug#927996: RFS: diskfit/2.0.2.3 [ITP] -- Simple disk fit calculator

2019-06-11 Thread Heiko Schäfer
Good morning, an updated package is available at https://launchpad.net/~velnias/+archive/ubuntu/sandbox/+sourcefiles/diskfit/ 2.0.2.13-1~eoan~ppa1/diskfit_2.0.2.13-1~eoan~ppa1.dsc Am Dienstag, 11. Juni 2019, 00:41:15 CEST schrieb Adam Borowski: > Hi! > > On Wed, May 29, 2019 at 08:30:50AM

Bug#927254: [Pkg-javascript-devel] Bug#927254: possible solution

2019-06-11 Thread Pirate Praveen
On 2019, ജൂൺ 10 11:33:29 PM IST, Paolo Greppi wrote: >If I build manually the UMD version using the same command as in >debian/rules: > >NODE_PATH=debian/node_modules/ rollup -m -c debian/rollup-umd.js > >I get this: > >/home/paolog/Sviluppo/debian/vue-router.js/src/index.js →

Bug#911844: okular: Prints to the wrong printer

2019-06-11 Thread Martin Steigerwald
forwarded 911844 https://bugs.kde.org/402015 thanks -- Martin

Bug#930350: gnome-shell: Play/pause keyboard button stops controlling Rhythmbox/Totem

2019-06-11 Thread Mike Crowe
Package: gnome-shell Version: 3.30.2-9 Severity: normal I use Totem to listen to long media files and pause/resume them using the Play/Pause button on my keyboard. After a while (sometimes a few hours, sometimes a few days) this button stops working. Pressing it has no effect on Totem, Rhythmbox

Bug#911844: okular: Prints to the wrong printer

2019-06-11 Thread Martin Steigerwald
severity: important thanks Hi Brian, Brian Potkin - 10.06.19, 21:32: > Severity: critical > thanks > > On Thu 25 Oct 2018 at 12:50:25 +0100, Brian Potkin wrote: > > Package: okular > > Version: 4:17.12.2-2 > > Severity: critical > > Tags: upstream security > > > > > > > > "critical" because

Bug#929078: fixed in ibus-sunpinyin 2.0.3+git20181120-2

2019-06-11 Thread Gedalya
Hi, With ibus-sunpinyin 2.0.3+git20181120-2, I get the following: $ /usr/lib/ibus/ibus-setup-sunpinyin (main.py:2830): IBUS-WARNING **: 14:03:58.069: org.freedesktop.IBus.Config.GetValue: GDBus.Error:org.freedesktop.DBus.Error.Failed: Config value [engine/SunPinyin/General:MemoryPower] does

Bug#930134: [PKG-Openstack-devel] Bug#930134: Please package new upstream version

2019-06-11 Thread Thomas Goirand
On 6/10/19 9:59 PM, Jonas Meurer wrote: > Mh, but the version in Debian is 1.0.0, so that doesn't work for current > OpenStack version either, right? Mailman3 would be fine with any version > newer than 1.0.0, so 1.4.1 would be sufficient. > > Cheers > jonas As much as I know, 1.0.0 to 1.4.1 is

Bug#930322: French Translation : at least one text string is not translated

2019-06-11 Thread gilles . charabot
Of course, I would like to point out that, although I have translated everything, I confirm that we can see "Paramètres" -> "Réseau" -> "Filaire" -> "Identité" in the network-manager-gnome graphic application. In addition, with the result of the following command line I think other languages

Bug#930349: undertow: CVE-2019-3888: leak credentials to log files UndertowLogger.REQUEST_LOGGER.undertowRequestFailed

2019-06-11 Thread Salvatore Bonaccorso
Source: undertow Version: 1.4.25-2 Severity: important Tags: security upstream Forwarded: https://github.com/undertow-io/undertow/pull/736 Hi, The following vulnerability was published for undertow. CVE-2019-3888[0]: leak credentials to log files

Bug#926032: [chromium] Buggy / Solarized videos

2019-06-11 Thread Vincent Bernat
Package: chromium Version: 75.0.3770.80-1 Followup-For: Bug #926032 -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hello, I am also hit by this bug and it's still present in 75. It seems to be known upstream: https://bugs.freedesktop.org/show_bug.cgi?id=109548

Bug#930134: Please package new upstream version

2019-06-11 Thread Thomas Goirand
On 6/10/19 9:59 PM, Jonas Meurer wrote: > Hi Thomas, > > Thomas Goirand: >>> do you have plans to update the python-falcon packages to a newer >>> upstream version (2.0.0 being the most recent one at the moment) >>> anytime soon? >>> >>> python3-falcon is a dependency for mailman3 and starting

Bug#911844: okular: Prints to the wrong printer

2019-06-11 Thread Brian Potkin
On Tue 11 Jun 2019 at 09:53:50 +0200, Martin Steigerwald wrote: > severity: important > thanks > > Hi Brian, > > Brian Potkin - 10.06.19, 21:32: > > Severity: critical > > thanks > > > > On Thu 25 Oct 2018 at 12:50:25 +0100, Brian Potkin wrote: > > > Package: okular > > > Version: 4:17.12.2-2

Bug#929830: syslog shows netlink error

2019-06-11 Thread Vincent Bernat
❦ 11 juin 2019 11:36 +02, michael-dev : > the problem occured on multiple machines. Directly after restart, > lldpd memory usage seems fine, but eventually memory usage starts > exploding again. > The started happening within weeks after upgrading to stretch. All > machines were restartet after

Bug#924155: icewm-common: broken-symlink /usr/share/doc/icewm-common/FAQ/index.html -> IceWM-FAQ.html

2019-06-11 Thread Thorsten Glaser
Package: icewm-common Version: 1.5.5+git20190610-1 Followup-For: Bug #924155 This bug is still pertinent, as reported by adequate. (Also, why do you upload a new upstream version to sid during deep freeze?) -- System Information: Debian Release: 10.0 APT prefers unreleased APT policy: (500,

Bug#730572: reprepro: support for ddebs (debug symbols)

2019-06-11 Thread Simon McVittie
On Sun, 20 Dec 2015 at 08:53:16 +, Niels Thykier wrote: > In the actual implementation we got live now, there are a couple of > changes though. > > * The dbgsym packages use the .deb extension For the non-Debian projects for which I developed this patch, we still need at least basic support

Bug#930343: libgcr410 FTCBFS: uses the wrong compiler

2019-06-11 Thread Peter 'p2' De Schrijver
Go ahead. Peter. On 2019-06-11 06:13:16 (+0200), Helmut Grohne wrote: > Source: libgcr410 > Version: 2.4.0-9.2 > Tags: patch > User: debian-cr...@lists.debian.org > Usertags: ftcbfs > > libgcr410 fails to cross build from source, because it does not pass > cross tools to make. The easiest

Bug#930361: exim4: Further on to CVE-2019-10149

2019-06-11 Thread Brent Clark
Package: exim4 Version: 4.89-2+deb9u4 Severity: important Dear Maintainer, This is just a FYI and I sure hope its nothing. In light of CVE-2019-10149 What I did was build a vagrant instance with Exim 4.89-2+deb9u3 to replicate the POC. Please see https://pastebin.com/raw/EiLbpsH4 for

Bug#930354: curl: Verbose output contains accidental debug messages

2019-06-11 Thread Sebastian Krause
Package: curl Version: 7.64.0-3 Severity: normal Tags: patch Dear Maintainer, Executing curl with verbose output (-v) contains a lot of debug messages like these: * Expire in 0 ms for 6 (transfer 0x56013e137dd0) * Expire in 1 ms for 1 (transfer 0x56013e137dd0) * Expire in 0 ms for 1 (transfer

Bug#930350: Reboot not required to fix

2019-06-11 Thread Mike Crowe
It appears that normal behaviour of the play/pause button returns if I log out and log back in again. A full reboot is not required. Mike.

Bug#930361: More to add

2019-06-11 Thread Brent Clark
Sorry, just to add, I used the following link to test. https://www.openwall.com/lists/oss-security/2019/06/06/1 Please read points 3 and 4 under section 'Default configuration' HTH Regards Brent Clark

Bug#930356: CVE-2019-12760

2019-06-11 Thread Moritz Muehlenhoff
Source: parso Severity: grave Tags: security Please see https://bugzilla.redhat.com/show_bug.cgi?id=1718212 Patch is at https://gist.github.com/dhondta/f71ae7e5c4234f8edfd2f12503a5dcc7 Cheers, Moritz

Bug#775029: Processed: reassign 775029 to src:trac

2019-06-11 Thread W. Martin Borgert
I assume, that the bug is not present in Debian >= 8, i.e. Trac >= 1. It has been fixed upstream seven years ago. If the bug is still present in Debian 10, please reopen.

Bug#924961: [Mailman-Developers] Re: How strict are the dependencies on the django-compressor related backends?

2019-06-11 Thread Christian Ehrhardt
[...] > I think this is perfectly fine and I don't see much benefit in combining > the CSS and JS files at build-time. It would allow to drop the > django-compressor dependency but with the cost of more heavy build-time > adjustments that need to be maintained in future. I agree, the extra gain

Bug#930352: RFS: easy-rsa 3.0.6-2

2019-06-11 Thread Michele Orru
Package: easy-rsa Version: 3.0.6-1 Severity: normal Dear mentors, I am looking for a sponsor for my package easy-rsa: * Package name: easy-rsa Version : 3.0.6-1 Upstream Author : the Open-Source OpenVPN development community * URL :

Bug#930355: ftp.debian.org: add lintian autoreject: invalid-versioned-provides

2019-06-11 Thread Andreas Beckmann
Package: ftp.debian.org Severity: important Hi, to prevent bugs like #930256 (versioned provides with non-equal DepCompareOp) from happening again, please add invalid-versioned-provides to the list of autorejects. Andreas

Bug#908868: RFH: docker.io // Would like to maintain Docker.io package

2019-06-11 Thread Arnaud Rebillout
On 6/11/19 9:25 AM, Dmitry Smirnov wrote: > On Monday, 10 June 2019 3:03:23 PM AEST Arnaud Rebillout wrote: >> I also want to try to unbundle >> containerd from the docker package, > This may be very risky to do so one have to have a good justification what > those risks are taken for. > > It

Bug#865975: docker.io changes iptables default FORWARD policy to DROP, breaks VM and others

2019-06-11 Thread Shengjing Zhu
Hi, I checked more carefully on https://github.com/moby/moby/pull/28257 and https://github.com/moby/moby/issues/14041 Then I concluded that docker does nothing wrong in this case. If you didn't set net.ipv4.ip_forward=1 before starting docker, then docker will set this for you by default,

Bug#926178: grub2 efi boot installs grub.cfg file that seems to be ignored (just stays at prompt)

2019-06-11 Thread Norbert Lange
I don't know how I initially got there, but I kept the old version's .deb archived around when I first encountered the issue, and installed them with dpkg -i afterwards. And whether shim-signed is installed or not makes no difference, it just affects the defaults grub is using. I always have to

Bug#930357: stretch-pu: package miniupnpd/1.8.20140523-4.1+deb9u2 CVE-2019-12107, CVE-2019-12108, CVE-2019-12109, CVE-2019-12110

2019-06-11 Thread Thomas Goirand
Package: release.debian.org Severity: normal Tags: stretch User: release.debian@packages.debian.org Usertags: pu Dear release team, Please allow me to upload miniupnpd/1.8.20140523-4.1+deb9u2, as the security team told me the CVE in the Subject do not need a DSA. The upload only adds the

Bug#930358: qmodbus: Qt-based ModBus master application

2019-06-11 Thread Cédric
Package: wnpp Severity: wishlist Package name: qmodbus Version : 0.3.0 Upstream Author : Karl-Heinz Reichel URL : https://github.com/ed-chemnitz/qmodbus License : GPL2+ Programming Lang: C++ Description : ModBus master GUI QModBus is a free Qt-based

Bug#930359: xwayland: Sluggish performance with Intel 520

2019-06-11 Thread tkoeck
Package: xwayland Version: 2:1.20.4-1 Severity: normal Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** I upgraded from Debian 9 to Debian 10. I am using a Thinkpad with a 0:02.0 VGA compatible controller: Intel Corporation HD Graphics 520 (rev

Bug#930360: pelican warnings when building bits.d.o in Buster

2019-06-11 Thread Laura Arjona Reina
Package: press Severity: normal X-Debbugs-CC: debian-public...@lists.debian.org Hi all I've tried to build bits.debian.org in a machine with Debian Buster (currently testing, but it will be stable soon) and I get these pelican warnings: WARNING: %s usage in TRANSLATION_FEED_ATOM is

Bug#865975: #865975 docker.io breaks (bridged) network for VMs

2019-06-11 Thread Jonathan Dowland
severity 865975 critical thanks My report just got merged into this one as a duplicate, so sorry for being late to the party… On Tue, Nov 27, 2018 at 12:42:28PM +1100, Dmitry Smirnov wrote: I'm lowering severity back to "important". You are not wrong that Docker is hostile to other

Bug#930302: installing and starting docker changes iptables FORWARD policy, breaking unrelated things

2019-06-11 Thread Jonathan Dowland
On Mon, Jun 10, 2019 at 07:12:37PM +0800, Shengjing Zhu wrote: I looked at the bug list of docker.io, found it's already reported at #865975 Thank you, I missed this when I looked myself. docker did this intentionally, and also metioned this behaviour in its chanelog(in src

Bug#929830: syslog shows netlink error

2019-06-11 Thread michael-dev
Hi, the problem occured on multiple machines. Directly after restart, lldpd memory usage seems fine, but eventually memory usage starts exploding again. The started happening within weeks after upgrading to stretch. All machines were restartet after upgrading to stretch. Regards, M. Braun

Bug#929931: [Pkg-samba-maint] Bug#929931: CTDB: Debian Enablement (focus: NFS HA)

2019-06-11 Thread Mathieu Parent
Hello Rafael, Thanks for your work. Have you sent all patches to upstream? Once this is done, please propose a MR at: https://salsa.debian.org/samba-team/samba (with cherry-picked commits, with "-x") Those may go in Debian 10 buster. Thanks again Mathieu Parent

Bug#929521: Conflicts in upgrade to 418.74-1 with optimus setup

2019-06-11 Thread Luca Boccassi
On Tue, 2019-06-11 at 00:21 +0200, Andreas Beckmann wrote: > On 07/06/2019 18.12, Luca Boccassi wrote: > > Hi, this should be the list: > > > > bbswitch bumblebee bumblebee-nvidia primus primus-libs primus-libs- > > ia32 > > nvidia-driver-libs-nonglvnd nvidia-driver-libs-nonglvnd-i386 > > Is

Bug#930363: faad2: fix build with gcc-9 [patch]

2019-06-11 Thread Gianfranco Costamagna
Source: faad2 Version: 2.8.8-3 Severity: normal tags: patch Hello, looks like gcc-9 is adding wl,asneeded flag in compilation, so libs passed as CFLAGS are not correctly used by gcc anymore, because only LIBS is added at the end of the compilation line. The following patch fixes the issue, and

Bug#930367: cloud.debian.org: vagrant images: use systemd-networkd for virtualbox provider

2019-06-11 Thread Nicolas Quiniou-Briand
Package: cloud.debian.org Severity: normal Dear Maintainer, I noticed a difference between providers for the same box (debian/stretch64): * with libvirt provider, `systemd-networkd` service is enabled and started after first boot of VM. * with virtualbox provider, `systemd-networkd` service

Bug#930371: unblock: dbus/1.12.16-1

2019-06-11 Thread Simon McVittie
Package: release.debian.org Severity: normal Tags: d-i User: release.debian@packages.debian.org Usertags: unblock Please unblock package dbus to fix CVE-2019-12749. I forgot to set high urgency, so you might want to adjust its age-days too. Filtered and full diffs are attached (the former

Bug#930363: faad2: fix build with gcc-9 [patch]

2019-06-11 Thread Sebastian Ramacher
Control: tags -1 + moreinfo On 2019-06-11 15:06:01, Gianfranco Costamagna wrote: > Source: faad2 > Version: 2.8.8-3 > Severity: normal > tags: patch > > Hello, looks like gcc-9 is adding wl,asneeded flag in compilation, so libs > passed as CFLAGS are not correctly > used by gcc anymore, because

Bug#930365: CUDA 10.1 Update 1 is now available

2019-06-11 Thread Graham Inggs
Source: nvidia-cuda-toolkit Version: 9.2.148-6 Severity: wishlist Hi Maintainers CUDA 10.1 Update 1 (10.1.168) was released at the end of May, 2019. The minimum NVIDIA driver version remains at 418.39 and support is added for Clang 8. As per the release notes [1]: "CUDA 10.1 Update 1 is a

Bug#930350: Not related to the Media Player Indicator extension

2019-06-11 Thread Mike Crowe
I disabled the Media Player Indicator extension in Tweaks, yet the play/pause button has just stopped working again. I probably should have mentioned earlier that I'm running on Wayland. This appears to mean that I can't try restarting gnome-shell to see if that fixes the problem. Mike.

Bug#929469: systemd-networkd: systemd-networkd: fails with "could not set address: Permission denied"

2019-06-11 Thread Raphael Hertzog
Hi, On Wed, 05 Jun 2019, Michael Biebl wrote: > systemd-networkd.service in v241 is locked down more tightly then v232. > It might be worth a try to comment out the hardening features one by one > to see if one of them causes your problem. Thanks for the idea! I tried that but it did not help. I

Bug#905772: Not Fixed by dh* in the meantime, actually got worse in experimental

2019-06-11 Thread Christian Ehrhardt
Hi, I checked this issue for Ubuntu bug 1786179 as I wanted to drop the related delta that we formerly had. That is the same topic as https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=905772 that we discuss here. At first I thought the changes to dh_ resolved this sysV-vs-systemd fight as I've

Bug#930370: debconf: Overriding debconf db with file fails with a message "access to disallowed key Filename in restricted hash"

2019-06-11 Thread Jiri Palecek
Package: debconf Version: 1.5.71 Severity: normal Dear Maintainer, while trying to debug some difficulties with unattended package installation, I came accross an interesting problem. While debconf(7) says you can use DEBCONF_DB_OVERRIDE like this:

Bug#929821: libgd2: CVE-2019-11038: Uninitialized read in gdImageCreateFromXbm

2019-06-11 Thread Jonas Meurer
Hello, Salvatore Bonaccorso wrote: > The following vulnerability was published for libgd2. > > CVE-2019-11038[0]: > Uninitialized read in gdImageCreateFromXbm > > If you fix the vulnerability please also make sure to include the > CVE (Common Vulnerabilities & Exposures) id in your changelog

Bug#930364: unblock: gvfs/1.38.1-5

2019-06-11 Thread Simon McVittie
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package gvfs to fix a missing authorization check on a private D-Bus socket (no CVE ID yet). This also adds some security hardening that was applied upstream at the same

Bug#930350: marked as done (gnome-shell: Play/pause keyboard button stops controlling Rhythmbox/Totem)

2019-06-11 Thread Simon McVittie
Mike Crowe wrote: > It appears that functionality of the play/pause keyboard button returns to > normal if I close Google Chrome This probably means Google Chrome uses GNOME's D-Bus APIs to register itself as a media player, so that the play/pause/etc. keys can control sites like Youtube and

Bug#930311: lintian: Possible exception to package-contains-documentation-outside-usr-share-doc

2019-06-11 Thread Chris Lamb
Niels Thykier wrote: > If we intend to create the exception in lintian, I would personally > probably go with making the exception first and then filing the bug > against dh-r to remove the auto-generation. Good call. I've done the former task and filed the latter as #930369. Regards, --

Bug#771339: linux: linux-headers 3.16 Makefile contains VERSION=2 PATCHLEVEL=6

2019-06-11 Thread Fab Stz
Source: linux Version: 4.9.0 or 4.19... probably any Followup-For: Bug #771339 Dear Maintainer, This bug still exists in linux 4.9 and 4.19 (stretch, stretch-backports and also buster) Like the first reporter, I tried compiling the amdgpu driver provided by AMD (through DKMS) and it is

Bug#930366: initramfs-tools: unmkinitramfs fails to unpack lz4 compressed initrd

2019-06-11 Thread Dimitri John Ledkov
Package: initramfs-tools Version: 0.133 Severity: normal Tags: patch Dear Maintainer, unmkinitramfs fails to unpack lz4 compressed initrd, ie.: $ sudo apt install initramfs-tools lz4 file $ mkinitramfs -c lz4 -o foo.img $ unmkinitramfs foo.img bar cpio: premature end of archive $ echo $? 2 I

Bug#930369: dh-r: Please drop automated package-contains-documentation-outside-usr-share-doc Lintian override generation

2019-06-11 Thread Chris Lamb
Package: dh-r Version: 20190121 Severity: wishlist X-Debbugs-CC: lintian-ma...@debian.org Hi, In #930311, Niels Thykier mentions that he: > noticed that the dh-r package by default creates an override for > package-contains-documentation-outside-usr-share-doc when the R > package puts

Bug#930367: cloud.debian.org: vagrant images: use systemd-networkd for virtualbox provider

2019-06-11 Thread Antonio Terceiro
Control: retitle -1 vagrant images: network setup in libvirt images are not consistent with Debian defaults On Tue, Jun 11, 2019 at 04:15:12PM +0200, Nicolas Quiniou-Briand wrote: > Package: cloud.debian.org > Severity: normal > > Dear Maintainer, > > I noticed a difference between providers

Bug#930362: new post: Help the Java Team Distribute your project!

2019-06-11 Thread Laura Arjona Reina
Package: press Severity: normal X-Debbugs-CC: debian-public...@lists.debian.org, debian-j...@lists.debian.org Hi Thanks Hans-Christoph Steiner for resuming the work on this post. This bug is the continuation of the !16 merge request in Salsa [1], I have merged the work so far, and turned the

Bug#930363: faad2: fix build with gcc-9 [patch]

2019-06-11 Thread Gianfranco Costamagna
control: tags -1 - moreinfo Hello Sebastian do you like the attached version then? :) thanks for the quick update, I think a CFLAG passed as LIB doesn't matter that much, while the opposite hurts more, but you are right, we should keep them separate indeed. thanks for pointing it out!

Bug#930368: gatb-core: FTBFS due to inaccurate symbols file

2019-06-11 Thread Gilles Filippini
Source: gatb-core Version: 1.4.1+git20181225.44d5a44+dfsg-2 Severity: serious Justification: FTBFS -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi, During a rebuild of gatb-core for unstable on amd64 I experienced a FTBFS at the dh_makeshlibs step: dh_makeshlibs

Bug#930363: faad2: fix build with gcc-9 [patch]

2019-06-11 Thread Fabian Greffrath
Control: forwarded -1 https://github.com/knik0/faad2/commit/920ec985a74c6f88fe507181df07a0cd7e51d519 Control: tags -1 +upstream +fixed-upstream Applied upstream, thanks! Am Dienstag, den 11.06.2019, 16:05 +0200 schrieb Gianfranco Costamagna: > control: tags -1 - moreinfo > > Hello Sebastian >

Bug#930311: lintian: Possible exception to package-contains-documentation-outside-usr-share-doc

2019-06-11 Thread Chris Lamb
Hi Niels, > Re: > https://salsa.debian.org/lintian/lintian/commit/a16cd3a1c812c8894bddf9b920561eb0dd602d85 > > I suspect we should probably match usr/lib/R/site-library/ as a prefix > rather than an exact match. Whoops. Fixed in:

Bug#910143:

2019-06-11 Thread Emmanuel Kasper
For virtualbox vagrant boxes, please find new box releases at https://app.vagrantup.com/debian Libvirt boxes are pending. Extending the disk image to 20GB slows the build process a bit, as we need to zero free a bigger filesystem, but it is still acceptable. -- Diese Nachricht wurde von

Bug#930377: unblock: haskell-argon2/1.3.0.1-5

2019-06-11 Thread Sean Whitton
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package haskell-argon2. Fixes a stretch->buster upgrade bug caused by libargon2-0-dev becoming a virtual package. unblock haskell-argon2/1.3.0.1-5 -- System Information:

Bug#930379: xfdesktop4: Deskop icons order resets at login

2019-06-11 Thread Simon
Package: xfdesktop4 Version: 4.12.4-2.1 Severity: important Dear Maintainer, Current xfdesktop4 version still suffers from a bug opened in 2014 and now (at last!) solved upstream in version 4.12.5. https://bugzilla.xfce.org/show_bug.cgi?id=11266 Since it makes life of XFCE users a lot easier,

Bug#930378: ITP: qunit-selenium -- Run QUnit tests through Selenium WebDriver

2019-06-11 Thread Jongmin Kim
Package: wnpp Severity: wishlist Owner: Jongmin Kim * Package name: qunit-selenium Version : 0.0.4 Upstream Author : Silvio Montanari * URL : https://github.com/smontanari/qunit-selenium * License : Expat Programming Lang: Ruby Description : Run QUnit

Bug#930311: lintian: Possible exception to package-contains-documentation-outside-usr-share-doc

2019-06-11 Thread Niels Thykier
Chris Lamb: > Hi Niels, > >> My question is: Should we move this exception to lintian itself and >> stop having people automate overrides > > Oh, without any doubt here — the idea of automatically-generated > overrides simply makes me squirm. > > (Shall we begin by cloning this bug "against"

Bug#930375: CVE-2019-12749: DBusServer DBUS_COOKIE_SHA1 authentication bypass

2019-06-11 Thread Simon McVittie
Package: libdbus-1-3 Version: 1.0.0-1 Severity: grave Tags: security fixed-upstream patch Forwarded: https://gitlab.freedesktop.org/dbus/dbus/issues/269 Joe Vennix of Apple Information Security discovered an implementation flaw in the DBUS_COOKIE_SHA1 authentication mechanism. A malicious client

Bug#930380: calligraflow: crash on startup (when run under gnome?)

2019-06-11 Thread Zack Weinberg
Package: calligraflow Version: 1:2.9.11+dfsg-4+b1 Severity: important calligraflow crashes on startup - possibly only when run under a GNOME desktop session and/or with KDE persistent state not properly initialized, since a stack trace fingers the KDE most-recently-used-files implementation.

Bug#930373: Shotwell: double clicking on the image viewer freezes an image of the picture. Reboot required

2019-06-11 Thread Fran Glais
Package: shotwell Version: 0.30.1-1 Severity: critical Tags: patch Justification: breaks unrelated software Dear Maintainer, In a Wayland session (gnome-shell in my case), double-clicking on an image when using the Shotwell Viewer fullscreens the image, but then fails to close the picture. This

Bug#930375: CVE-2019-12749: DBusServer DBUS_COOKIE_SHA1 authentication bypass

2019-06-11 Thread Simon McVittie
Version: 1.12.16-1 On Tue, 11 Jun 2019 at 17:34:40 +0100, Simon McVittie wrote: > For buster this has been fixed in libdbus-1-3 1.12.16-1. I'll close this > bug when I have a bug number.

Bug#930376: gvfsd GetConnection() missing authorization check

2019-06-11 Thread Simon McVittie
Package: gvfs-daemons Version: 1.14.1-1 Severity: grave Tags: security fixed-upstream patch Forwarded: https://gitlab.gnome.org/GNOME/gvfs/commit/70dbfc68a79faac49bd3423e079cb6902522082a While looking for services that might be vulnerable to CVE-2019-12749 or a similar vulnerability, I noticed

Bug#930372: Provide node-bootstrap (install package.json and symlink dist to /usr/lib/nodejs)

2019-06-11 Thread Pirate Praveen
Package: libjs-bootstrap4 severity: wishlist version: 4.3.1+dfsg2-1 gitlab uses webpack and expects bootstrap node module. Please provide this in addition to libjs.

Bug#929708: Reopen the accidentially-closed ITP report

2019-06-11 Thread Boyuan Yang
Control: reopen -1 Seems that my new upload came with a wrong number of bug report. Reopening this ITP bug to fix this problem. Sorry for the noise. Regards, Boyuan Yang signature.asc Description: This is a digitally signed message part

Bug#920567: bash: dpkg-reconfigure: command not found

2019-06-11 Thread Jiri Palecek
On Sun, 27 Jan 2019 09:12:32 +0600 Thulium Equasman wrote: > Package: python3-reportbug > Version: 7.5.1 > Severity: normal > Tags: d-i > > Hi, > I got the message "bash: dpkg-reconfigure: command not found > " when I ran `dpkg-reconfigure fontconfig-config`. I ran this command as root. > I then

Bug#930383: sniffit: New upstream homepage

2019-06-11 Thread Joao Eriberto Mota Filho
Package: sniffit Severity: normal Please see: https://github.com/resurrecting-open-source-projects/sniffit Regards, Eriberto

Bug#930381: txt2html: New upstream homepage

2019-06-11 Thread Joao Eriberto Mota Filho
Package: txt2html Severity: normal Please, see: https://github.com/resurrecting-open-source-projects/txt2html Regards, Eriberto

Bug#930382: outguess: New upstream homepage

2019-06-11 Thread Joao Eriberto Mota Filho
Package: outguess Severity: normal Please, see: https://github.com/resurrecting-open-source-projects/outguess Regards, Eriberto

Bug#929821: libgd2: CVE-2019-11038: Uninitialized read in gdImageCreateFromXbm

2019-06-11 Thread Jonas Meurer
Jonas Meurer wrote: > Salvatore Bonaccorso wrote: > > The following vulnerability was published for libgd2. > > > > CVE-2019-11038[0]: > > Uninitialized read in gdImageCreateFromXbm > > > > If you fix the vulnerability please also make sure to include the > > CVE (Common Vulnerabilities &

Bug#905772: we might also need --no-restart-after-upgrade in addition to --no-stop-on-upgrade

2019-06-11 Thread Christian Ehrhardt
Was: systemctl --system daemon-reload >/dev/null || true if [ -n "$2" ]; then _dh_action=restart else _dh_action=start fi deb-systemd-invoke $_dh_action 'libvirt-guests.service' 'virtlockd-admin.socket' 'virtlockd.service' 'virtlockd.socket'

Bug#930373: Shotwell: double clicking on the image viewer freezes an image of the picture. Reboot required

2019-06-11 Thread Jörg Frings-Fürst
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi, Am Dienstag, den 11.06.2019, 20:19 +0200 schrieb Jörg Frings-Fürst: [...] > Hello Fran, > 8...] > Please can you send me the output of > > dconf dump /org/yorba/shotwell > [...] Sorry this must be dconf dump /org/yorba/shotwell/ CU

Bug#930373: Shotwell: double clicking on the image viewer freezes an image of the picture. Reboot required

2019-06-11 Thread Fran Glais
Hello Jörg, Thank you for your prompt reply. You can find the output requested below. As for reproducing this bug, it was mentioned upstream that it could be hardware related. I'm running Debian with Sandybridge integrated graphics (2450M to be more specific). Upstream issue:

Bug#926434: fixed (in my point of view) & not listetd in "netinst.iso-image Debian 9.9"

2019-06-11 Thread Martin Kubiak
Hi Julian, I answered your question of defining the upstream-mirror correctly at "05.04.2019, 18:07". So I thought it is done. Isn't it? It seems to be open:  * https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=926434 And another part: Today I installed a new machine and wondered that

Bug#930388: ruby-openid: CVE-2019-11027

2019-06-11 Thread Salvatore Bonaccorso
Source: ruby-openid Version: 2.7.0debian-1 Severity: grave Tags: security upstream Justification: user security hole Forwarded: https://github.com/openid/ruby-openid/issues/122 Hi, The following vulnerability was published for ruby-openid. CVE-2019-11027[0]: | Ruby OpenID (aka ruby-openid)

Bug#930390: iperf server will not exit

2019-06-11 Thread dann frazier
Package: iperf Version: 2.0.12+dfsg1-2 Severity: important Tags: patch, upstream After running some iperf testing, ^c'ing the server fails: $ iperf -s Server listening on TCP port 5001 TCP window size: 128 KByte (default)

Bug#930389: twisted: CVE-2019-12387

2019-06-11 Thread Salvatore Bonaccorso
Source: twisted Version: 18.9.0-3 Severity: important Tags: security upstream Hi, The following vulnerability was published for twisted. CVE-2019-12387[0]: | In Twisted before 19.2.1, twisted.web did not validate or sanitize | URIs or HTTP methods, allowing an attacker to inject invalid |

Bug#930391: frei0r-plugins-dev: Missing header files in /usr/include directory

2019-06-11 Thread Laurent BRULET
Package: frei0r-plugins-dev Version: 1.6.1-2 Severity: important Dear Maintainer, I was trying to build a frei0r plugin I wrote in C++. But the compilation failed because the header file frei0r.hpp was not present in /usr/include The unique present header file is frei0r.h which allows to build

Bug#930393: RFS: aqemu/0.9.2-2.3 [NMU] [RC] -- Fix #927126 including suggestion from #929342 - aqemu: after updating can't open VMs

2019-06-11 Thread Alexis Murzeau
Package: sponsorship-requests Severity: important X-Debbugs-CC: Ignace Mouzannar X-Debbugs-CC: Abhijith PA Dear mentors, I am looking for a sponsor for a NMU of "aqemu" to fix this RC bug: #927126 - aqemu: after updating can't open VMs [0]. This bug was fixed in previous NMU aqemu/0.9.2-2.2

Bug#930392: unblock: ibus-sunpinyin/2.0.3+git20181120-4

2019-06-11 Thread Boyuan Yang
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-CC: debian-input-met...@lists.debian.org idaob...@gmail.com Please unblock ibus-sunpinyin 2.0.3+git20181120-4. This upload fixes https://bugs.debian.org/929078 , which caused

Bug#916610: spacenavd: diff for NMU version 0.6-1.1

2019-06-11 Thread sur5r
Control: tags 916610 + pending Dear maintainer, I've prepared an NMU for spacenavd (versioned as 0.6-1.1) and uploaded it to DELAYED/2. Please feel free to tell me if I should delay it longer. Regards. diff -Nru spacenavd-0.6/debian/changelog spacenavd-0.6/debian/changelog ---

Bug#930385: RFP: container-diff -- Diff your Docker containers

2019-06-11 Thread Varac
Package: wnpp Severity: wishlist -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 * Package name: container-diff Version : latest Upstream Author : ? * URL : https://github.com/GoogleContainerTools/container-diff * License : Apache-2.0 Programming Lang:

Bug#930386: hangs and connection resets w/ high thread count

2019-06-11 Thread dann frazier
Package: iperf Version: 2.0.12+dfsg1-2 Severity: important Tags: upstream patch When attempting an iperf run with 24 threads, I either hit a hang [*] or a bunch of "write failed: Connection reset by peer" errors [**]. These are both resolved by the following upstream commit:

Bug#930387: rdekstop: security issues fixed in 1.8.5 and 1.8.6

2019-06-11 Thread Salvatore Bonaccorso
Source: rdesktop Version: 1.8.4-1 Severity: grave Tags: security upstream fixed-upstream Justification: user security hole Control: fixed -1 1.8.6-1 Hi 1.8.6-1 mentions a new upstream release with many security fixes, but none of those apparently have (yet) a CVE. Filling this bug for having an

  1   2   >