Hi,
On Fri, Nov 22, 2019 at 03:20:45PM +0300, dinar qurbanov wrote:
> so, in order to serve a package with malware to a
> user, disrtribution/repository admins would have to also serve wrong
> "packages" and "release" files to him. so, if user checks the
> "release" file, that it is ok, enough,
On Fri, 2019-11-22 at 09:09:20 +0100, Raphael Hertzog wrote:
> On Thu, 21 Nov 2019, Alexandros Prekates wrote:
> > Visiting https://tracker.debian.org/pkg/glibc
> > i noticed many dead links in the binaries section
> > of the page.
>
> Those are binary packages that the glibc source package can
Package: wnpp
Severity: wishlist
description: prettyping is a wrapper around the standard ping tool with the
objective of making the output prettier, more colorful, more compact, and
easier to read.
source code URL: https://github.com/denilsonsa/prettyping
LICENSE: MIT
Source: lightdm
Version: 1.26.0-6
Severity: normal
Dear Maintainer,
I'm tired. Your package already build-depends on yelp-tools so I'm
going to just assume that the gnome-doc-utils build-dependency is
a leftover from before switching to yelp/itstool. I don't have the
energy left to build-test
On 2019-11-22 12:15, Jonas Meurer wrote:
Hello,
On Tue, 19 Nov 2019 17:11:05 +0800 Daniel Kahn Gillmor
wrote:
thunderbird 68 is now in buster-new and in security.debian.org
sadly, the enigmail upstream versions are closely tied to the
thunderbird versions. (enigmail 2.0.x works with TB 60,
Julien Cristau writes:
> I don't think this change is good as-is. The "don't depend on X font
> packages" is still very much relevant, for applications that use the
> "traditional" X font system, where the X server loads the fonts. The X
> server can still be on a different machine from the
Source: direwolf
Version: 1.5+dfsg-3
Severity: normal
The following "new" architectures are also little endian:
mips64el
ia64
riscv64
Package: krb5-auth-dialog
Version: 3.26.1-2
Severity: normal
Tags: bullseye sid
Dear Maintainer,
I'm looking at reducing the reverse dependencies of gnome-doc-utils as
it's been deprecated for >5 years and found this in your packages
upstream ChangeLog:
"Use yelp-tools instead of
That sounds great.
On 22 November 2019 08:27:12 GMT-08:00, Jonathan Watt wrote:
>Perhaps it would be best to have separate 'isso' and 'isso-multi'
>systemd units?
>
>Additionally, is there somewhere that documents setting up Isso with
>the current
>unit? I guess maybe the man page (although that
Hello,
You have to enable the -proposed-updates archive in Stretch to download
the latest version of ublock-origin. It will be merged to stable
eventually.
Regards,
Markus
signature.asc
Description: OpenPGP digital signature
Control: tags -1 pending
Am 20.11.19 um 14:45 schrieb Bernhard Übelacker:
> Control: tags -1 + upstream fixed-upstream patch
>
>
> Dear Maintainer,
> the issue seems to be with newer gcc versions string literals
> get not put into memory mappings " r-xp ",
> instead they are mapped " r--p ".
>
On Fri, 22 Nov 2019 at 14:05:50 +0100, Ansgar wrote:
> I'm fairly sure that systemd-tmpfiles doesn't require systemd as pid-1
It doesn't, but its dh_installsystemd integration currently does, so
maintainer scripts relying on it would currently be buggy. I think it
would be premature to recommend
Package: grub-common
Version: 2.04-4
Severity: normal
Dear Maintainer,
I'm doing tests to use LVM snapshots to go back in case of apt dist-upgrade
errors and I'm having a problem when a new kernel version is installed:
I can not remove the snapshot because of a grub-mount.
You can reproduce the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Thu, 21 Nov 2019 22:20:03 -0600 tubus wrote:
> Package: thunar
> Version: 1.8.4-1
> Severity: important
>
> Dear Maintainer,
>
> I have set environment variable FREETYPE_PROPERTIES in /etc/environment
>
What's wrong with a failed git checkout?
---
gbp/deb/git.py | 15 ---
gbp/scripts/buildpackage.py | 2 ++
gbp/scripts/export_orig.py | 6 +-
3 files changed, 19 insertions(+), 4 deletions(-)
diff --git a/gbp/deb/git.py b/gbp/deb/git.py
index 3584f6ff..fa45807a
On Fri, Nov 22, 2019 at 06:08:01PM +0100, Didier 'OdyX' Raboud wrote:
> For some time now, ssh (openssh-client) unnecessarily warns for:
>
> > invalid attribute length
> > failed to fetch key
>
> when SSH'ing to a host with libsimple-tpm-pk11.so as PKCS11Provider.
>
> Relevant lines from a
fix for previous patch:
diff --git a/gbp/deb/git.py b/gbp/deb/git.py
index fa45807a..aa4562b4 100644
--- a/gbp/deb/git.py
+++ b/gbp/deb/git.py
@@ -324,7 +324,7 @@ class DebianGitRepository(PkgGitRepository):
self.pristine_tar.checkout(source.name,
source.upstream_version, comp.type,
Package: cloud.debian.org
Severity: normal
Dear Maintainer,
When starting the debian/buster64 vagrant box with virtualbox, vagrant-vbguest
tries to install linux-headers-`uname -r` which is needed for the guest
extensions.
This command failes, because the kernel version of the box is 1.19.0-5,
Ignore what I said previously. I believe I've figured out why both Tiger!P and I
have been having problems.
I had assumed isso would be set up for normal use. However, it appears that the
systemd unit is set up for the "Multiple Sites" method documented here:
Package: indicator-sensors
Version: 0.9-2
Severity: normal
Dear Maintainer,
The gnome-doc-utils package is deprecated since >5 years. It's unlikely
to survive to the bullseye release because of the python2 removal.
I could not find anything in your package that actually uses
gnome-doc-utils and
Hi Helmut,
On 22/11/2019 06.25, Helmut Grohne wrote:
> povray fails to cross build from source, because it ships a broken,
> outdated, embedded copy of AX_BOOST_BASE in
> unix/config/ax_boost_base.m4. The actual bug #872256 is already fixed
> for a while in autoconf-archive, but povray happens to
Hi,
On Mon, 18 Nov 2019 09:35:20 + Mark Weyer
wrote:
> In the mean time I realized the metioned behaviour is triggered by the
> presence of a file named enum.py. Hence, the way to reproduce the bug in a
> hitherto empty directory is:
>
> touch enum.py && echo "import PySide2.QtCore as
Source: sensors-applet
Version: 3.0.0+git6-0.2
Severity: normal
Dear Maintainer,
The gnome-doc-utils package is deprecated since >5 years.
It will likely not survive to bullseye release because of the python2
removal.
It seems your package doesn't actually need the build-dependency
on
Hi Rebecca
> The binNMUs (to add python3.8 support) of pandas and statsmodels failed.
> I think this will make them work (but haven't tried it):
>
> - Apply the (existing) #943418 fix to python-xlrd.
> - Build matplotlib, pandas and statsmodels in that order. (ben can't
> work this out because
Package: openssh-client
Version: 1:8.1p1-1
Severity: normal
For some time now, ssh (openssh-client) unnecessarily warns for:
> invalid attribute length
> failed to fetch key
when SSH'ing to a host with libsimple-tpm-pk11.so as PKCS11Provider.
Relevant lines from a verbose connection:
$ ssh
Control: retitle -1 Thunar ignores
FREETYPE_PROPERTIES="truetype:interpreter-version=35"
Simon McVittie writes:
> On Fri, 22 Nov 2019 at 14:05:50 +0100, Ansgar wrote:
>> I'm fairly sure that systemd-tmpfiles doesn't require systemd as pid-1
> It doesn't, but its dh_installsystemd integration currently does, so
> maintainer scripts relying on it would currently be buggy. I think it
On Fri, 22 Nov 2019 11:36, Hans-Christoph Steiner said:
> It should create a zero length file, as recommended in the draft: "it
> is sufficient if that file has a zero length".
Good idea. Tracked upstream as https://dev.gnupg.org/T4753
Shalom-Salam,
Werner
--
Die Gedanken sind frei.
Hi Ondřej,
I update the salsa repository [1]
but I am having son troubles to building the packge
Also, I need to work on [2]. Pygtk is no longer supported, and upstream used it.
[1] https://salsa.debian.org/ocaml-team/coccinelle
[2] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885267
OK, I will do it.
$4
On Tue, Nov 19, 2019 at 04:32:10PM +0100, Martin wrote:
> Source: kore
> Version: 2.0.0-4
> Severity: wishlist
>
> Dear maintainer,
>
> there were some releases since the last update of kore.
>
> See e.g. https://blog.kore.io/posts/kore-3-released
> and
Package: fonts-cabin
Version: 1.5-2
Severity: important
The upstream of fonts-cabin has migrated to https://github.com/impallari/Cabin
with new upstream 2.2 release. Please consider packaging the new version.
--
Best,
Boyuan Yang
signature.asc
Description: This is a digitally signed message
Le jeudi, 21 novembre 2019, 08.46:43 h CET intrigeri a écrit :
> Hi,
>
> Rudolf Polzer:
> > For me it is still not working, because I changed
> > /etc/cups/cups-pdf.conf
> >
> > from
> > Out ${HOME}/Transport
> > to
> > Out ${HOME}
> >
> > and get the error message
> >
> > audit[5146]: AVC
Hello,
On Tue, 19 Nov 2019 17:11:05 +0800 Daniel Kahn Gillmor
wrote:
> thunderbird 68 is now in buster-new and in security.debian.org
>
> sadly, the enigmail upstream versions are closely tied to the
> thunderbird versions. (enigmail 2.0.x works with TB 60, but 2.1.x works
> with TB 68) See
I ran across a procedure for emitting debug info to a file:
https://lists.ofono.org/hyperkitty/list/edk2-de...@lists.01.org/message/XS2Y2POANJ6J65JLFEOOSH5DVPYFLTFY/
Given that, I wonder if there might be a way to create a single build
that users can optionally configure to enable debug
Perhaps it would be best to have separate 'isso' and 'isso-multi' systemd units?
Additionally, is there somewhere that documents setting up Isso with the current
unit? I guess maybe the man page (although that doesn't really contain anything
useful right now)? How would I go about submitting
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Fri, 2019-11-22 at 17:18 +0100, Andreas Henriksson wrote:
> I'm tired. Your package already build-depends on yelp-tools so I'm
> going to just assume that the gnome-doc-utils build-dependency is
> a leftover from before switching to yelp/itstool.
Source: libarchive
Version: 3.4.0-1
Severity: important
Tags: security upstream
Forwarded: https://github.com/libarchive/libarchive/issues/1276
Hi,
The following vulnerability was published for libarchive.
CVE-2019-19221[0]:
| In Libarchive 3.4.0, archive_wstring_append_from_mbs in
|
Source: shotwell
Version: 0.30.7-1
Severity: normal
Dear Maintainer,
The gnome-doc-utils package is deprecated since >5 years.
It will likely not survive the bullseye release because of the python2
removal.
It seems shotwell has been converted over to yelp/itstool (and you
already build-depend
On Fri, 2019-11-22 at 12:07 +, Simon McVittie wrote:
> On Fri, 22 Nov 2019 at 09:03:29 +0100, Ansgar wrote:
> > I would like to recommend packages to use tmpfiles.d(5) to manage
> > creating directories in locations such as /var or /etc instead of
> > maintainer scripts.
>
> Using
Hi all,
El dl. 11 de 11 de 2019 a les 21:32 +0100, en/na Salvatore Bonaccorso
va escriure:
> Control: retitle -1 mailutils: local privilege escalation in maidag
> utility (fixed in 3.8) (CVE-2019-18862)
Given this does not affect Debian by default, should my upload go
through debian-security or
Hi,
I'm also interested in adding this package.
> There are already lots and lots of HTTP servers in Debian for all sorts
of use-cases. What use-case is supported by darkhttpd but not by any other
existing HTTP server in Debian?
This one is for static files only, it is really tiny, fast and
Control: tags -1 + pending
Samuel Thibault, le lun. 18 nov. 2019 22:39:48 +0100, a ecrit:
> Samuel Thibault, le mer. 13 nov. 2019 00:12:50 +0100, a ecrit:
> > I have significantly reworked and simplified the patch:
>
> I have modified it a bit to fix the "directory" value in the manual
>
On Wed, 2019-11-20 at 12:14:44 +0100, Raphael Hertzog wrote:
> On Wed, 20 Nov 2019, Guillem Jover wrote:
> > > To achieve this in a more elegant way, could you possibly implement some
> > > "dpkg --is-running" test ? And/or maybe "dpkg --wait-lock-release" or
> > > something similar ?
> >
> > I'm
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Fri, 2019-11-08 at 21:55 +0100, Yves-Alexis Perez wrote:
> On Fri, 2019-11-08 at 20:53 +, Adam D. Barratt wrote:
> > Sorry for the delay in getting back to you.
>
> Yeah, this time it's me who's really sorry.
> > That sounds OK, but it looks
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
On Thu, 2019-10-24 at 11:44 +0200, Emilio Pozuelo Monfort wrote:
> Just go ahead with the package rename / soname bump, no need to revert it and
> then do the transition in this case, given the rdeps are going to build fine
> so
> there will be
Hey,
qutebrowser upstream here - I recently looked into this a bit, and partially
found out what's going on.
Turns out when supposed to display an error page, "jstProcess is not defined"
gets logged instead.
When I look at the source of the error page on my Archlinux machine, that
JavaScript
Package: clevis-dracut
Version: 11-2
Followup-For: Bug #934922
Dear Maintainer,
This bug hasn't been fixed yet. As a workarround you can edit
/usr/lib/dracut/modules.d/60clevis/module-setup.sh and change line 39 this way:
39c39
< clevis-decrypt-http \
---
> cryptsetup \
You
Package: wnpp
Severity: normal
I intend to orphan the fet package.
The upstream is active, but the program takes a long time to build on my pc.
The package description is:
FET is a program for automatically generating the timetable
of a school, high-school or university.
.
Usually, FET is
Ansgar writes:
> I think no option says we shouldn't use services that don't rely on
> systemd as pid-1 (which also includes widely used things like udev).
I agree, but if, say, Sam's option 3 wins, we can directly incorporate
this, whereas if, say, Ian's option wins, then we should have a
Hi Florian!
El vie., 22 nov. 2019 14:57, Florian Bruhin escribió:
> Hey,
>
> qutebrowser upstream here - I recently looked into this a bit, and
> partially
> found out what's going on.
>
> Turns out when supposed to display an error page, "jstProcess is not
> defined"
> gets logged instead.
>
>
Source: libonig
Version: 6.9.2-1
Severity: important
Tags: security upstream
Forwarded: https://github.com/kkos/oniguruma/issues/163
Hi,
The following vulnerability was published for libonig.
CVE-2019-19203[0]:
| An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the
| function
It seems that fpdoc fails silently with an EInOutError exception and thus the
compilation of the docs is aborted. Moreover as the returned exit code seems to
be set to 0 and thus make does not catch the issue and continues with next job.
touch fpdoc.chk
mkdir fpdoc
mv -f fpdoc.html
On Fri, Nov 22, 2019 at 06:19:17PM -0300, Lisandro Damián Nicanor Pérez Meyer
wrote:
> Hi Florian!
>
> El vie., 22 nov. 2019 14:57, Florian Bruhin escribió:
>
> > Hey,
> >
> > qutebrowser upstream here - I recently looked into this a bit, and
> > partially
> > found out what's going on.
> >
>
Apologies for the duplicate submission. (#945393) Issues with my MTA,
and I thought the first one had bounced, but it had just been delayed...
This report can be closed/deleted.
--
Jonathan Addleman - http://www.redowl.ca
Source: roger-router
Version: 1.8.14-4
Severity: serious
Tags: ftbfs
Justification: fails to build from source (but built successfully in the past)
User: debian...@lists.debian.org
Usertags: piuparts
Hi,
roger-router FTBFS against the current evolution-data-server version in
sid:
Package: ftp.debian.org
Severity: normal
Please remove cvc3. It's unmaintained (last maintainer upload is from 2014
and the maintainer is also one of the authors) and FTBFSes since 1.5 years.
Cheers,
Moritz
Martin Pitt wrote:
[…]
> But these overrides now stopped working:
[…]
Without looking into too much detail, are the following the same issue?
https://bugs.debian.org/945276
https://bugs.debian.org/945299
Regards,
--
,''`.
: :' : Chris Lamb
`. `'`
Package: calendar-google-provider
Version: 1:60.9.0-1~deb10u1
Severity: grave
Justification: renders package unusable
Dear Maintainer,
Thunderbird and lightning packages were recently updated to 1:68.2.2-1~deb10u1
to fix security problems, but calendar-google-provider has not been updated.
Package: ftp.debian.org
Severity: normal
This package has low popcon (10) and is only used by node-command-join (see
https://bugs.debian.org/945302).
If we ever need it again, it can be embedded (~ 200 LOC).
The maintainer is the Debian Javascript Maintainers team of which I am part of.
My
Control: reassign -1 src:linux 5.2.17-1
Control: tag -1 moreinfo
On Thu, 2019-11-21 at 08:58 +, Anton Ivanov wrote:
> Package: linux-image-5.2.0-3-amd64
> Version: 5.2.17+1
> Severity: important
>
> Dear Maintainer,
>
> Dear Maintainer,
>
> OOM handling appears to be broken in 5.2.17-1 if
Package: ftp.debian.org
Severity: normal
This package has low popcon (6) and is not used anywhere in Debian.
When the ITP (https://bugs.debian.org/846218) was filed it was required for
yarnpkg, but they dropped the dependency:
https://github.com/yarnpkg/yarn/pull/3079
Also duck reports that
Package: prometheus-node-exporter
Version: 0.17.0+ds-3+b11
Followup-For: Bug #922803
Dear Maintainer,
this can also be fixed when gawk is installed so I would suggest setting
it as a dependency.
-- System Information:
Debian Release: 10.2
APT prefers stable-updates
APT policy: (500,
Package: calendar-google-provider
Version: 1:60.9.0-1~deb10u1
Severity: grave
Justification: renders package unusable
Dear Maintainer,
Thunderbird and lightning packages were recently updated to
1:68.2.2-1~deb10u1
to fix security problems, but calendar-google-provider has not been updated.
Package: ftp.debian.org
Severity: normal
This package has low popcon (4) and was a build-dep of node-commander, but that
dependency was removed with version 2.11.0:
https://github.com/tj/commander.js/blob/master/CHANGELOG.md#2110--2017-07-03
Also the upstream repo has last been updated 5 years
Package: ftp.debian.org
Severity: normal
This package has low popcon (7) and is currently not used.
According to the ITP (https://bugs.debian.org/849255) it was required for lerna
which was a dependency of babel-cli.
But in the meantime lerna is stuck at RFP (https://bugs.debian.org/849258) and
On 22/11/2019 17:06, Graham Inggs wrote:
I scheduled statsmodels there, but it
still fails.
The error message points to joblib, which has just been uploaded
(#942899): try again when the new version is available?
Dear Maintainer,
I reported the issue upstream:
https://github.com/rzvncj/xCHM/issues/9
Kind regards,
Bernhard
Source: polymake
Version: 3.2r4-4
Severity: serious
Tags: ftbfs
Justification: fails to build from source (but built successfully in the past)
User: debian...@lists.debian.org
Usertags: piuparts
Control: affects -1 + libpolymake3.2
polymake FTBFS against perl 5.30:
On Fri, 22 Nov 2019 at 22:52, Rebecca N. Palmer wrote:
> The error message points to joblib, which has just been uploaded
> (#942899): try again when the new version is available?
That worked, thanks. I'll schedule the rest of the architectures later.
On Fri, 22 Nov 2019 09:09:24 -0800, Russ Allbery wrote:
> Julien Cristau writes:
> > I don't think this change is good as-is. The "don't depend on X font
> > packages" is still very much relevant, for applications that use the
> > "traditional" X font system, where the X server loads the fonts.
Package: lintian
Version: 2.37.0
Severity: serious
Justification: causes ftp-master autorejects
Hi,
this is a regression in 2.36 or 2.37. It worked fine up to 2.35.
In povray, I have this in debian/source/lintian-overrides:
= 8< =
# upstream did not release a source tarball,
# the
On Fri, 2019-11-15 at 16:22 +, Adam D. Barratt wrote:
> On 2019-11-15 16:04, Luca Boccassi wrote:
> > On Fri, 2019-11-15 at 15:00 +, Adam D. Barratt wrote:
> > > On 2019-11-15 14:26, Luca Boccassi wrote:
> > > > This release has only one bug fix, which fixes a regression
> > > > introduced
Package: libhsdis0-fcml
Version: 1.2.0-1
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts
Hi,
during a test with piuparts I noticed your package failed to install. As
per definition of the release team this makes the package too buggy for
a release, thus the severity.
>From
Package: ftp.debian.org
Severity: normal
This package has low popcon (6) and is currently not used.
According to the ITP (https://bugs.debian.org/849254) it was required for lerna
which was a dependency of babel-cli.
But in the meantime lerna is stuck at RFP (https://bugs.debian.org/849258)
Fixed in:
https://salsa.debian.org/lintian/lintian/commit/cbf3f6487b19d16a99e8582e24ddc2817a5487ac
Kind regards,
Felix Lechner
Source: libonig
Version: 6.9.2-1
Severity: important
Tags: security upstream
Forwarded: https://github.com/kkos/oniguruma/issues/162
Hi,
The following vulnerability was published for libonig.
CVE-2019-19204[0]:
| An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the
| function
I've opened https://salsa.debian.org/pkg-security-team/plaso/merge_requests/1
and uploaded the same change sto DELAYED-7
On Fri, Nov 22, 2019 at 2:28 PM Moritz Mühlenhoff wrote:
>
> On Wed, Nov 13, 2019 at 04:26:52PM -0500, Sandro Tosi wrote:
> > Hi Hilko,
> >
> > On Fri, 30 Aug 2019 07:31:12
On Fri, 2019-11-22 at 09:05 -0800, Russ Allbery wrote:
> Simon McVittie writes:
> > I had also thought that, in the current state of non-systemd-init-world,
> > having a dependency on a package containing systemd-tmpfiles was likely
> > to be practically problematic because it would indirectly
Hi,
I've just push to my own repository the new upstream release [1]
I have not access to [2].
Ludovico, could you give me access to [2], please? This way I can
update the package.
I will need sponsorship too :)
[1] https://salsa.debian.org/eamanu-guest/jcc
[2]
Package: clang-9
Version: 1:9.0.0-3+b1
Severity: normal
Tags: upstream
Dear Maintainer,
clang-9 can not parse the sanitizer suppressions that it generated
itself.
To reproduce:
$ export UBSAN_OPTIONS="suppressions=./supp:report_error_type=1"
$ cat ./supp
Package: pan
Version: 0.146-1
Severity: important
Dear Maintainer,
pan stopped sending posts.
After "Send Article" it says:
There were problems with the post. / Error: bad email address. / Go back
Continue Anyway
After "Continue anyway" task is hanging.
In pan's Events register I can see
Package: lists.debian.org
Hi,
The list description for debian-stable-announce currently reads:
Announcements relating to the stable-update section include new uploads
and changes
The suite is named "stable-updates", and the wording doesn't quite feel
right. Thus, please change the description
On Wed, Nov 13, 2019 at 04:26:52PM -0500, Sandro Tosi wrote:
> Hi Hilko,
>
> On Fri, 30 Aug 2019 07:31:12 + Matthias Klose wrote:
> > Package: src:plaso
> > Version: 20190131-1
> > Severity: normal
> > Tags: sid bullseye
> > User: debian-pyt...@lists.debian.org
> > Usertags: py2removal
>
>
Package: ftp.debian.org
Severity: normal
This package has low popcon (7) and is not used anywhere in Debian.
The maintainer is the Debian Javascript Maintainers team of which I am part of.
My intention to remove it was announced in the team mailing list about 3 weeks
ago:
Source: bbmap
Version: 38.63+dfsg-1
Severity: serious
$ file jni/*.o jni/*.dylib
jni/BBMergeOverlapper.o:ELF 64-bit LSB relocatable, x86-64, version 1
(SYSV), not stripped
jni/BandedAlignerJNI.o: ELF 64-bit LSB relocatable, x86-64, version 1
(SYSV), not stripped
Hi Andreas,
On Fri, Nov 22, 2019 at 05:05:33PM +0100, Andreas Beckmann wrote:
> Does the latest version of ax_boost_base.m4 available from
> https://www.gnu.org/software/autoconf-archive/ax_boost_base.html contain
> the fixes? I'd like to point upstream to that location with "please
> update your
Source: xcftools
Version: 1.0.7-6
Severity: important
Tags: security upstream
Hi,
The following vulnerabilities were published for xcftools.
CVE-2019-5086[0]:
| An exploitable integer overflow vulnerability exists in the
| flattenIncrementally function in the xcf2png and xcf2pnm binaries of
|
On 22/11/2019 21.51, Helmut Grohne wrote:
> In any case, it would be much better if povray could use the version
> from the autoconf-archive binary package. In case we encounter another
> bug, that'd save a lot of time. It shouldn't matter which version
> upstream embeds.
I'm now B-D:
Note that ubuntu focal (current development version) has rustc 1.38,
and librsvg 2.44.15 fails to build from source with it. The upstream
project committed a fix to the 2.44 branch
(https://gitlab.gnome.org/GNOME/librsvg/commit/de26c4d8), but they
advise packaging 2.46 instead as 2.44 is EOL.
Hi intrigeri,
please make a suggestion how I should now proceed to get pdf printing
running on my stable Debian, because selecting a subdirectory of home
doesn't work - I get the same error message as before.
Regards,
Rudolf
Control: tags -1 + upstream patch
Dear Maintainer,
I could reproduce the crash with some old versions of
php_enhanced_en.chm I found on the net [1].
The current version from php.net [2] does not crash.
While it looks like the search is also not working
and gives no results.
With a package
Source: freecad
Version: 0.18.4+dfsg1-1
Severity: serious
Tags: ftbfs
Justification: fails to build from source (but built successfully in the past)
User: debian...@lists.debian.org
Usertags: piuparts
Control: affects -1 + libfreecad-python3-0.18
freecad did FTBFS on amd64, i386, armhf during the
On Fri, 22 Nov 2019 20:33:26 +0100 Paolo Greppi
wrote:
> Package: ftp.debian.org
> Severity: normal
>
> This package has low popcon (10) and is only used by node-command-join (see
https://bugs.debian.org/945302).
> If we ever need it again, it can be embedded (~ 200 LOC).
>
> The maintainer
Source: maint-guide
Version: 1.2.43
Severity: normal
Tags: patch
§5.10 of maint-guide mentions using /etc/default to disable a demon. However,
§9.3.3.1 of Debian Policy states
An older practice, which should not be used, was to include a line
like DISABLED=yes in the package’s
Package: ruby-maxitest
Version: 3.1.0-2
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts
Hi,
during a test with piuparts I noticed your package is no longer
installable in sid:
The following packages have unmet dependencies:
ruby-maxitest : Depends: ruby-minitest (<
Package: libldns2
Version: 1.7.0-4
Dear maintainer
The ldns library from stable, testing and unstable (libldns2 1.7.0-4)
signs CDS and CDNSKEY RRs with the ZSK; such RRs must be signed with the
KSK instead (see RFC 7344 section 4.1). This bug makes managing DS RRs
in the parent zone via CDS and
Package: src:pysph
Version: 1.0~a6-3
Severity: serious
Tags: sid bullseye
User: debian-pyt...@lists.debian.org
Usertags: python3.8
pysph ftbfs in unstable.
https://buildd.debian.org/status/fetch.php?pkg=pysph=amd64=1.0%7Ea6-3%2Bb1=1574243914=0
= 45 failed, 635 passed, 283 skipped, 71 deselected,
Package: src:python-pomegranate
Version: 0.11.1+dfsg2-1
Severity: serious
Tags: sid bullseye
User: debian-pyt...@lists.debian.org
Usertags: python3.8
[...]
==
ERROR: Failure: AttributeError (type object 'pomegranate.hmm.array'
Hi Helmut,
Thank you for your contribution.
I have applied your patch in the upload of dh-golang 1.43.
I see that there are more challenges that need to be tackled with a
complete solution for cross-building Go Debian packages, so I have
reopened this bug, so please feel free to continue the
On Fri, Nov 22, 2019 at 4:21 PM Raphael Hertzog wrote:
> Those are binary packages that the glibc source package can build but that
> it only builds on non-release architectures... so indeed the binary
> packages are unknown by packages.debian.org which only knows about
> packages available on
1 - 100 of 184 matches
Mail list logo
