Processing commands for cont...@bugs.debian.org:
> tags 860287 + fixed-upstream
Bug #860287 [src:libosip2] libosip2: CVE-2016-10324 CVE-2016-10325
CVE-2016-10326 CVE-2017-7853
Added tag(s) fixed-upstream.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
860287: ht
Source: libosip2
Version: 4.1.0-2
Severity: grave
Tags: upstream security patch
Justification: user security hole
Hi,
the following vulnerabilities were published for libosip2.
CVE-2016-10324[0]:
| In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a
| heap buffer overflow in the
Hi Timo,
On Thu, Apr 13, 2017 at 11:59:38PM +0300, Timo Aaltonen wrote:
> On Thu, 13 Apr 2017, Salvatore Bonaccorso wrote:
>
> > Control: tags -1 + patch
> >
> > Hi
> >
> > The fix apparently applied in CentOS 1.3.5.10-20.el7_3 is
> >
> > https://git.centos.org/raw/rpms!389-ds-base!/c9e5dad69e
Your message dated Fri, 14 Apr 2017 03:04:02 +
with message-id
and subject line Bug#855509: fixed in golang-github-cloudflare-cfssl
1.2.0+git20160825.89.7fb22c8-2
has caused the Debian Bug report #855509,
regarding golang-cfssl: /usr/bin/mkbundle already used by mono-devel
to be marked as don
Processing commands for cont...@bugs.debian.org:
> tag 855509 +pending
Bug #855509 [golang-cfssl] golang-cfssl: /usr/bin/mkbundle already used by
mono-devel
Added tag(s) pending.
>
End of message, stopping processing here.
Please contact me if you need assistance.
--
855509: http://bugs.debian.
Package: imagemagick-doc
Version: 8:6.9.7.4+dfsg-4
Severity: serious
...
Preparing to unpack .../03-imagemagick-doc_8%3a6.9.7.4+dfsg-4_all.deb ...
dpkg: warning: version 'imagemagick-doc' has bad syntax: version number does
not start with digit
dpkg-maintscript-helper: error: missing arguments af
On Thu, 13 Apr 2017, Salvatore Bonaccorso wrote:
Control: tags -1 + patch
Hi
The fix apparently applied in CentOS 1.3.5.10-20.el7_3 is
https://git.centos.org/raw/rpms!389-ds-base!/c9e5dad69e2b497f118efac56f43cc6c74b6a695/SOURCES!0072-fix-for-cve-2017-2668-simple-return-text-if-suffix-n.patch
Your message dated Thu, 13 Apr 2017 20:51:02 +
with message-id
and subject line Bug#860100: fixed in tslib 1.8-3
has caused the Debian Bug report #860100,
regarding libts0: missing Breaks+Replaces: tsconf (<< 1.8)
to be marked as done.
This means that you claim that the problem has been dealt
Your message dated Thu, 13 Apr 2017 20:48:51 +
with message-id
and subject line Bug#860271: fixed in cacti 0.8.8h+ds1-9
has caused the Debian Bug report #860271,
regarding cacti: polling at a higher frequency than cron doesn't work due to
php 7 deprecation of split()
to be marked as done.
Th
Control: tags -1 stretch sid
thanks
Hi,
gdb with symbols and sources produces this stack trace:
(gdb) run
Starting program: /usr/bin/gnome-paint
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
[New Thread 0x7fffef4b5700 (LWP
Processing control commands:
> tags -1 stretch sid
Bug #860233 [gnome-paint] gnome-paint: Segmentation fault on startup
Added tag(s) sid and stretch.
--
860233: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860233
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
Package: cacti
Version: 0.8.8h+ds1-8
Severity: serious
Justification: breaks usability in valid and supported use case
Tags: pending patch
poller.php calls split() in two places, which is deprecated in PHP 7.
The code in question isn't run by default, but it causes problems when
the administrator
Your message dated Thu, 13 Apr 2017 21:19:14 +0200
with message-id
and subject line Not a concern for sid/testing
has caused the Debian Bug report #859772,
regarding Fix include regression
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the ca
Processing control commands:
> tags -1 + patch
Bug #860125 [src:389-ds-base] 389-ds-base: CVE-2017-2668: Remote crash via
crafted LDAP messages
Added tag(s) patch.
--
860125: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860125
Debian Bug Tracking System
Contact ow...@bugs.debian.org with pr
Control: tags -1 + patch
Hi
The fix apparently applied in CentOS 1.3.5.10-20.el7_3 is
https://git.centos.org/raw/rpms!389-ds-base!/c9e5dad69e2b497f118efac56f43cc6c74b6a695/SOURCES!0072-fix-for-cve-2017-2668-simple-return-text-if-suffix-n.patch
Regards,
Salvatore
Processing commands for cont...@bugs.debian.org:
> #
> # bts-link upstream status pull for source package openteacher
> # see http://lists.debian.org/debian-devel-announce/2006/05/msg1.html
> #
> user bts-link-upstr...@lists.alioth.debian.org
Setting user to bts-link-upstr...@lists.alioth.debi
Your message dated Thu, 13 Apr 2017 17:33:53 +
with message-id
and subject line Bug#847282: fixed in imagemagick 8:6.9.7.4+dfsg-4
has caused the Debian Bug report #847282,
regarding imagemagick-doc: fails to upgrade wheezy -> jessie -> stretch
to be marked as done.
This means that you claim t
Your message dated Thu, 13 Apr 2017 17:33:53 +
with message-id
and subject line Bug#859771: fixed in imagemagick 8:6.9.7.4+dfsg-4
has caused the Debian Bug report #859771,
regarding imagemagick: CVE-2017-7606: Undefined behavoir in rle
to be marked as done.
This means that you claim that the
Your message dated Thu, 13 Apr 2017 17:33:53 +
with message-id
and subject line Bug#859769: fixed in imagemagick 8:6.9.7.4+dfsg-4
has caused the Debian Bug report #859769,
regarding imagemagick: CVE-2017-7619: Infinite loop due to rounding error
to be marked as done.
This means that you claim
Source: xf86-input-tslib
Version: 0.0.6-6
Severity: serious
Tags: wheezy sid
User: debian...@lists.debian.org
Usertags: qa-ftbfs-20110502 qa-ftbfs
Justification: FTBFS on amd64
Hi,
During a rebuild of all packages in sid, your package failed to build on
amd64.
Relevant part:
> gcc -DHAVE_CONFIG
Processing commands for cont...@bugs.debian.org:
> notfound 860233 0.4.0-4
Bug #860233 [gnome-paint] gnome-paint: Segmentation fault on startup
Ignoring request to alter found versions of bug #860233 to the same values
previously set
> found 860233 0.4.0-4+b1
Bug #860233 [gnome-paint] gnome-paint
Package: dhcpcanon
Version: 0.1.8.2-1
Severity: serious
It does not have any known bug, but it has not been tested enough and there
will be new upstream releases in the next months.
Thanks,
ju.
Hi,
on bytecode only architectures, the native related files won't be compiled
because
ocamlopt is not available in ocaml. So I made those files optional in the
attached patch.
Note that on ppc64el, ocamlopt is available starting with ocaml 4.03 and
.a, .cmx and .cmxa will be generated.
F.
diff
Hi,
on bytecode only architectures, the native related files won't be compiled
because
ocamlopt is not available in ocaml. So I made those files optional in the
attached patch.
Note that on ppc64el, ocamlopt is available starting with ocaml 4.03 and
.cmx and .cmxa will be generated.
F.
diff -u o
Processing control commands:
> notfound -1 0.4.0-4
Bug #860233 [gnome-paint] gnome-paint: Segmentation fault on startup
No longer marked as found in versions gnome-paint/0.4.0-4.
--
860233: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860233
Debian Bug Tracking System
Contact ow...@bugs.debi
Your message dated Thu, 13 Apr 2017 16:05:58 +
with message-id
and subject line Bug#856133: fixed in shiboken 1.2.2-3.1
has caused the Debian Bug report #856133,
regarding shiboken FTBFS on i386/armel/armhf: other_collector_external_operator
test failed
to be marked as done.
This means that
Dear Maintainer,don't know if related, but timely it would fit.With this
Samba version 4.5.8+dfsg-1_amd64 updated on 5th of April under stretch simple
symlinks (within the same share) are not followed any more. Although
'follow symlinks = Yes' is default. Explicitly enabling does not help. A qui
Hi,
On Sun, Mar 26, 2017 at 04:48:13PM +0200, Gilles Filippini wrote:
> The problem is that the *2 operation may causes an overflow when the results
> is > ULONG_MAX.
> To fix the test, either drop the *2, or store unsigned long long into
> Collector.items(). The easiest being the former, IMHO.
On Wed, Apr 12, 2017 at 12:13:30PM +0300, Adrian Bunk wrote:
> On Thu, Mar 23, 2017 at 03:09:56PM +0900, Satoru KURASHIKI wrote:
> >...
> > In the later stage of freeze, are there any chance to upload newer
> > upstream version (into testing) to fix RC bugs?
> > If it can, I will finish staged git
Hi,
On Fri, Mar 24, 2017 at 10:09:14AM -0600, Anthony Fok wrote:
> On Sun, Mar 19, 2017 at 8:21 AM, Dr. Tobias Quathamer
> wrote:
> > control: tag -1 sid
> > thanks
> >
> > Hi,
> >
> > thanks for the bug report. However, hugo still builds fine in a stretch
> > chroot, this bug only applies to un
Hi,
I guess that ocaml generates C code that is not compliant with gcc6 :
https://gcc.gnu.org/gcc-6/porting_to.html
For the time being I propose the attached patch.
Note that I included m68k arch for the workaround because buildd shows that
it fails for this arch as the build was newer than for al
Ok found why it fail:
oldstable -> stable create images.dpkg-backup -> ../imagemagick/images
and www.dpkg-backup -> ../imagemagick/www backup symlink.
These are not owned by package...
I suppose I could nuke them after checking if they point to something sensible
Bastien
Source: umockdev
Version: 0.9-1
Severity: serious
https://buildd.debian.org/status/package.php?p=umockdev&suite=sid
...
/umockdev-testbed/clear: OK
/umockdev-testbed/disable: OK
/umockdev-testbed/remove: OK
/umockdev-testbed/proc: **
ERROR:tests/test-umockdev.c:1939:t_testbed_proc: assertion fail
Your message dated Thu, 13 Apr 2017 12:34:07 +
with message-id
and subject line Bug#860165: fixed in gfal2 2.13.3-3
has caused the Debian Bug report #860165,
regarding gfal2: Incomplete debian/copyright?
to be marked as done.
This means that you claim that the problem has been dealt with.
If
Your message dated Thu, 13 Apr 2017 11:48:49 +
with message-id
and subject line Bug#859587: fixed in x2goserver 4.0.1.20-4
has caused the Debian Bug report #859587,
regarding x2goserver-fmbindings: fails to install:
x2goserver-fmbindings.postinst: update-mime-database: not found
to be marked
On Thu, 13 Apr 2017, Marco d'Itri wrote:
> On Apr 11, Raphael Hertzog wrote:
>
> > Why aren't you providing openbsd-inetd.service as the real file and
> > inetd.service as a symlink ?
> Because naming the init script "openbsd-inetd" was an historical
> accident caused by problems when replacing
Your message dated Thu, 13 Apr 2017 08:49:56 +
with message-id
and subject line Bug#860210: fixed in starjava-topcat 4.4-2
has caused the Debian Bug report #860210,
regarding starjava-topcat: Incomplete debian/copyright?
to be marked as done.
This means that you claim that the problem has bee
Ole Streicher wrote:
> Maybe I should just change the wording in the patch description itself
> to clarify that the cited license is not the license of the patch?
Please do so. :)
(Perhaps this didn't warrant an RC bug after all, but it's better to err
on the side of clarification.)
Regards,
Hi Chris,
Am 13.04.2017 um 09:10 schrieb Chris Lamb:
>>Remove-edu.jhu.htm-reference.patch just removes
>> the link to a package that has a non-free license. For reference, this
>> license is given in the patch, but it is *not* the license of the patch.
>> The patch is licen
Package: gnome-paint
Version: 0.4.0-4+b1
Severity: grave
Justification: renders package unusable
% gnome-paint
Gtk-Message: (for origin information, set GTK_DEBUG): failed to retrieve
property `gtk-primary-button-warps-slider' of type `gboolean' from rc file
value "((GString*) 0x560fa1f6e280)" of
Hi Ole,
Thanks!
>Remove-edu.jhu.htm-reference.patch just removes
> the link to a package that has a non-free license. For reference, this
> license is given in the patch, but it is *not* the license of the patch.
> The patch is licensed along with the main license of the p
Processing commands for cont...@bugs.debian.org:
> fixed 856135 gegl/0.3.10-1
Bug #856135 {Done: m...@debian.org (Matteo F. Vescovi)} [src:gegl] gegl FTBFS
on arm64: gegl-tester segfault
Marked as fixed in versions gegl/0.3.10-1.
> thanks
Stopping processing here.
Please contact me if you need a
42 matches
Mail list logo
