Processing control commands:
> tag -1 pending
Bug #924508 [src:neutron] neutron: CVE-2019-9735: it's possible to add a
security group rule for VRRP with a dport
Added tag(s) pending.
--
924508: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924508
Debian Bug Tracking System
Contact
Control: tag -1 pending
Hello,
Bug #924508 in neutron reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
Hi,
On 13/03/19 at 22:18 +0100, Ivo De Decker wrote:
> Control: severity -1 serious
>
> Hi,
>
> On Mon, Aug 28, 2017 at 03:01:18PM +0200, Lucas Nussbaum wrote:
> > After a private discussion with Gianfranco, I'm retitling this bug and
> > downgrading its severity. (Gianfranco agrees, at least
Greetings! I should have some time to look at this this week. If you
happen to develop a patch, that would of course speed things up
considerably.
Thanks so much for your report!
Andreas Beckmann writes:
> Package: lam4-dev
> Version: 7.1.4-3.1
> Severity: serious
> Tags: sid buster
>
>
On Wed, 13 Mar 2019 20:24:59 +0200, Niko Tyni wrote:
> - have perl_5.28.1-5 Build-Depend on libgdbm-dev (>= 1.18-3)
> [any gdbm version built with LFS support would do, but 1.18-3
>fixed other binary compat issues so pick that for safety]
> - have perl_5.28.1-5 Break libmarc-charset-perl
Tags: patch
You can find attached two patches. The first corrects the namespace of PIL
imports in cfv 1.18.3. The second one replaces the dependency on python-imaging
with python-pil.
--- a/cfv
+++ b/cfv
@@ -1837,7 +1837,7 @@
if filename == '':
return '0','0'
try:
- import Image
+ from
Hi Mathias,
On Wed, 13 Mar 2019 00:27:27 +0100 Mathias Behrle
wrote:
> Basically cached_property *is* and *was* working, it is only that the tests
> are
> failing due to API incompatibilities introduced by a test utility (freezegun)
> during or shortly before the soft freeze.
Do I understand
On 13/03/2019 21:30, Markus Koschany wrote:
Michael Crusoe has suggested a workaround[1]. What do you think about
this?
>>>
>>> In case there is no answer to this question I assume it is OK to
>>> upload the workaround. Hope you agree with this.
>>
>> please look at the new upstream
Processing control commands:
> severity -1 serious
Bug #794466 [src:virtualbox] virtualbox: might not be suitable for stable
releases due to lack of cooperation from upstream on security support for older
releases
Severity set to 'serious' from 'important'
--
794466:
Your message dated Wed, 13 Mar 2019 21:04:19 +
with message-id
and subject line Bug#921558: fixed in lsb 10.2019031300
has caused the Debian Bug report #921558,
regarding lsb-base: killproc does not pass name parameter to start-stop-daemon
to be marked as done.
This means that you claim that
Your message dated Wed, 13 Mar 2019 21:04:19 +
with message-id
and subject line Bug#921558: fixed in lsb 10.2019031300
has caused the Debian Bug report #921558,
regarding stunnel4: Fails to stop with sysvinit: start-stop-daemon: matching
only on non-root pidfile
Processing control commands:
> severity -1 important
Bug #923364 [libitext-java] FTBS: Can't build against bouncy-castle build with
newer jdk
Severity set to 'important' from 'serious'
--
923364: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=923364
Debian Bug Tracking System
Contact
Control: severity -1 important
On Sat, 2 Mar 2019 15:38:51 +0100 Markus Koschany wrote:
[...]
> Could you elaborate on why this is a bug in libitext-java and how this
> is connected to bouncycastle?
Unfortunately you haven't responded to my last email. I can't reproduce
this behavior in
Le mercredi, 13 mars 2019, 18.17:34 h CET Dmitry Bogatov a écrit :
> [2019-03-11 21:51] Axel Beckert
> > > I believe it would be reasonable to add '--name $base' into `else'
> > > clause. Opinions?
> >
> > Sounds sane, I just checked that with #924311 (miredo, uses
> > start-stop-daemon
Processing commands for cont...@bugs.debian.org:
> tags 919843 + pending
Bug #919843 [lirc-doc] lirc-doc: broken symlinks:
/usr/share/doc/lirc/lirc.org/* ->
/build/lirc-rOeUaU/lirc-0.10.1/debian/tmp/usr/share/doc/lirc/*
Ignoring request to alter tags of bug #919843 to the same tags previously
Am 13.03.19 um 17:47 schrieb Matthias Klose:
> On 13.03.19 10:54, Andreas Tille wrote:
>> On Tue, Mar 12, 2019 at 11:41:22AM +0100, Andreas Tille wrote:
>>> Michael Crusoe has suggested a workaround[1]. What do you think about
>>> this?
>>
>> In case there is no answer to this question I assume
Hi there Andreas,
Le mercredi, 6 février 2019, 20.20:54 h CET Andreas Metzler a écrit :
> there is a logic error in /lib/lsb/init-functions's killproc:
>
> base=${1##*/}
> if [ ! $pidfile ]; then
> name_param="--name $base --pidfile /var/run/$base.pid"
> else
>
Package: rsync
Version: 3.1.3-5
Severity: grave
Tags: security
rsync ships a local copy of zlib, which misses the security fixes for
CVE-2016-9840 CVE-2016-9841 CVE-2016-9842 CVE-2016-9843.
I've attached the respective upstream patches.
Also, let's revisit using the shared zlib copy for
Source: neutron
Version: 2:13.0.2-10
Severity: grave
Tags: security upstream
Justification: user security hole
Forwarded: https://bugs.launchpad.net/neutron/+bug/1818385
Hi,
The following vulnerability was published for neutron.
CVE-2019-9735[0]:
| An issue was discovered in the iptables
Processing commands for cont...@bugs.debian.org:
> close 781128
Bug #781128 [security.debian.org] security.debian.org: GeoDNS load balancing of
Debian Security mirrors + out of date mirrors means you cant patch
Marked Bug as done
> thanks
Stopping processing here.
Please contact me if you need
close 781128
thanks
On Wed, Feb 27, 2019 at 09:20:25PM +0200, Niko Tyni wrote:
> On Mon, Feb 25, 2019 at 11:31:14AM +0100, Gianfranco Costamagna wrote:
> > Package: libmarc-charset-perl
> > Version: 1.35-2
> > Severity: serious
> >
> > Hello, for some reasons the package testsuite started to fail in Ubuntu for
> >
Processing commands for cont...@bugs.debian.org:
> forwarded 923804 https://github.com/ncw/swift/issues/119
Bug #923804 [src:golang-github-ncw-swift] golang-github-ncw-swift: FTBFS
randomly (TestWatchdogReaderOnSlowNetwork fails)
Set Bug forwarded-to-address to
Santiago, very nice catch - thank you so much. I completely oversee this
consequence of changing the build tools which was needed because we use
the tools to build qtxdg starting with 0.14.1.
Cheers Alf
Your message dated Wed, 13 Mar 2019 17:19:15 +
with message-id
and subject line Bug#924474: fixed in lxqt-qtplugin 0.14.0-2
has caused the Debian Bug report #924474,
regarding lxqt-qtplugin: FTBFS (dh_auto_configure fails)
to be marked as done.
This means that you claim that the problem has
[2019-03-11 21:51] Axel Beckert
> > I believe it would be reasonable to add '--name $base' into `else'
> > clause. Opinions?
>
> Sounds sane, I just checked that with #924311 (miredo, uses
> start-stop-daemon directly, edited the init script) as well as #924312
> (stunnel4, by editing
On 13.03.19 10:54, Andreas Tille wrote:
> On Tue, Mar 12, 2019 at 11:41:22AM +0100, Andreas Tille wrote:
>> Michael Crusoe has suggested a workaround[1]. What do you think about
>> this?
>
> In case there is no answer to this question I assume it is OK to
> upload the workaround. Hope you agree
Package: retroarch-assets
Version: 1.3.6+git20160731+dfsg1-1
Followup-For: Bug #922947
Being as roboto-hinted reverted until after the buster release, perhaps the
priority should be set to normal so that retroarch can be included in
buster.
-- System Information:
Debian Release: buster/sid
Thg Upstream has pushed a 4.9 ta.
Cheers,
--
Pierre-Yves David
Hey Otto,
> Fix for this pending at
> https://salsa.debian.org/mariadb-team/mariadb-10.3/commits/bugfix/910902-mov
> e-resolveip-to-server-core
thanks, but this is still not enough to run a mysql_install_db successfully.
$ /usr/bin/mysql_install_db --datadir=/tmp/test
FATAL ERROR: Could
On 2019-03-13 20:29 +0800, Paul Wise wrote:
> On Wed, 2019-03-13 at 13:11 +0100, Jakub Wilk wrote:
>
>> Also, it looks like dpkg doesn't update directory permissions on
>> upgrade. Ugh. :-(
>
> dpkg maintainers, do you know if this is a known bug or intentional?
Both, see #515211[1].
Cheers,
Package: src:shimdandy
Version: 1.2.0-2
Severity: serious
Tags: ftbfs
Dear maintainer:
I tried to build this package in buster but it failed:
[...]
debian/rules build-indep
dh build-indep
Your message dated Wed, 13 Mar 2019 15:19:06 +
with message-id
and subject line Bug#921732: fixed in hg-git 0.8.12-1.1
has caused the Debian Bug report #921732,
regarding hg-git: incompatible with mercurial 4.9
to be marked as done.
This means that you claim that the problem has been dealt
This has been fixed upstream in the newly released 0.11.0
https://github.com/jorisroovers/gitlint/releases
https://github.com/jorisroovers/gitlint/archive/v0.11.0.tar.gz
https://github.com/jorisroovers/gitlint/issues/78
Your message dated Wed, 13 Mar 2019 15:04:00 +
with message-id
and subject line Bug#870406: fixed in mpg321 0.3.2-2
has caused the Debian Bug report #870406,
regarding CVE-2017-11552
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case
Your message dated Wed, 13 Mar 2019 15:04:00 +
with message-id
and subject line Bug#887057: fixed in mpg321 0.3.2-2
has caused the Debian Bug report #887057,
regarding CVE-2017-11552
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case
Your message dated Wed, 13 Mar 2019 15:04:00 +
with message-id
and subject line Bug#887057: fixed in mpg321 0.3.2-2
has caused the Debian Bug report #887057,
regarding CVE-2017-11552
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case
Your message dated Wed, 13 Mar 2019 15:04:00 +
with message-id
and subject line Bug#870406: fixed in mpg321 0.3.2-2
has caused the Debian Bug report #870406,
regarding CVE-2017-11552
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case
Hi,
I'll be uploading a NMU for hg-git in a minute. debdiff below, also
pushed to
https://salsa.debian.org/python-team/applications/hg-git/merge_requests/1
Cheers,
Julien
diff -Nru hg-git-0.8.12/debian/changelog hg-git-0.8.12/debian/changelog
--- hg-git-0.8.12/debian/changelog 2019-01-10
Processing commands for cont...@bugs.debian.org:
> severity 906144 serious
Bug #906144 [libmypaint-common] libmypaint-common: drop Conflicts: mypaint-data
Severity set to 'serious' from 'important'
> reassign 906144 libmypaint-common
Bug #906144 [libmypaint-common] libmypaint-common: drop
Your message dated Wed, 13 Mar 2019 13:49:02 +
with message-id
and subject line Bug#924472: fixed in beads 1.1.18+dfsg-3
has caused the Debian Bug report #924472,
regarding beads: FTBFS (quazip5/quazip.h: No such file or directory)
to be marked as done.
This means that you claim that the
Package: zotero-standalone
Version: 4.0.29.16+dfsg-1
Followup-For: Bug #864827
It may be time to ask for removal... What do you think?
-- System Information:
Debian Release: buster/sid
APT prefers unstable
APT policy: (990, 'unstable'), (500, 'stable'), (100, 'experimental')
Architecture:
This bug is reported against a very old version of Debian, please close it.
Processing control commands:
> tags 918339 + patch
Bug #918339 [dovecot-mysql] dovecot-mysql: dovecot/auth segfaults with
double-free in mysql_close() / passdb_deinit()
Added tag(s) patch.
> tags 918339 + pending
Bug #918339 [dovecot-mysql] dovecot-mysql: dovecot/auth segfaults with
double-free
Control: tags 918339 + patch
Control: tags 918339 + pending
Dear maintainer,
I've prepared an NMU for dovecot (versioned as 1:2.3.4.1-1.1) and
uploaded it to DELAYED/3. Please feel free to tell me if I
should delay it longer.
Regards.
diff -Nru dovecot-2.3.4.1/debian/changelog
On Wed, 2019-03-13 at 13:11 +0100, Jakub Wilk wrote:
> This never does anything, because closing square bracket is missing:
Fixed locally.
> Also, it looks like dpkg doesn't update directory permissions on
> upgrade. Ugh. :-(
Hmm, so the upgrade has to deal with that automatically in a
On Wed, 2019-03-13 at 13:11 +0100, Jakub Wilk wrote:
> Also, it looks like dpkg doesn't update directory permissions on
> upgrade. Ugh. :-(
dpkg maintainers, do you know if this is a known bug or intentional?
--
bye,
pabs
https://wiki.debian.org/PaulWise
signature.asc
Description: This is
Hi!
Apparently, python-tesserocr tests don't work if the system locale
differs from "C". The simple patch fixes this FTBFS:
--- a/debian/rules
+++ b/debian/rules
@@ -5,6 +5,7 @@
export PYBUILD_NAME=tesserocr
export DEB_BUILD_MAINT_OPTIONS = hardening=+all
+export
This bug has been sitting for 4 years and isn't actually a bug, a mirror
was just slow to sync. After many years of using Debian, I can say that
when I see this happening (once or twice so far) I usually check the
next day for the update and it's there.
I'm proposing that this bug is closed.
+ if [ ! -e $(script) ; then chmod 1777 debian/corekeeper/var/crash ; fi
This never does anything, because closing square bracket is missing:
/bin/sh: 1: [: missing ]
Also, it looks like dpkg doesn't update directory permissions on
upgrade. Ugh. :-(
--
Jakub Wilk
Hi,
the issue was fixed upstream in a new release (Mikkel, thanks a lot
for the quick and helpful solution).
The new release does contain more things than just a fix for that very
problem but other changes (for instance "Port to python3"). I admit my
prefered fix for this bug would be to simply
Hi,
I tried to reproduce this issue and need to admit I can not reproduce
that timing problem (I would assume that might depend from the hardware
used for the build. However
apt-get source ruby-voight-kampff
cd ruby-voight-kampff
pdebuild
leaded to:
...
On Wed, 2019-03-13 at 02:00 +, John Morris wrote:
> Package: czmq
> Version: 4.2.0-1
> Followup-For: Bug #923695
>
> Dear Maintainer,
>
> The version 4.2.0-2 pushed to Sid fixes this problem, but the problem
> still exists in Buster, still at 4.2.0-1.
>
> Thanks!
It will migrate to buster
Hi,
I just realised that several reverse dependencies of mpg321 are in
danger of getting autoremoved from testing.
Kind regards
Andreas.
--
http://fam-tille.de
On Tue, Mar 12, 2019 at 11:41:22AM +0100, Andreas Tille wrote:
> Michael Crusoe has suggested a workaround[1]. What do you think about
> this?
In case there is no answer to this question I assume it is OK to
upload the workaround. Hope you agree with this.
Kind regards
Andreas.
>
Package: src:duc
Version: 1.4.3-5
Severity: serious
Tags: ftbfs
Dear maintainer:
I tried to build this package in buster but it failed:
[...]
debian/rules build-arch
dh build-arch --with autoreconf
Package: src:lxqt-qtplugin
Version: 0.14.0-1
Severity: serious
Tags: ftbfs
Dear maintainer:
I tried to build this package in buster but it failed:
[...]
debian/rules build-arch
dh build-arch --buildsystem cmake
On Sat, 2 Mar 2019 13:32:36 +0100 Andrej Shadura
wrote:
Unless you tell me how to reproduce this issue, I’m going to keep it closed.
Have you tried to install it on system with sysv-rc?
I can give you access to virtual host.
--
sergio.
Processing control commands:
> block -1 by 908815
Bug #924459 [release.debian.org] transition: libdmtx
924459 was not blocked by any bugs.
924459 was not blocking any bugs.
Added blocking bug(s) of 924459: 908815
--
924459: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924459
Debian Bug
Your message dated Wed, 13 Mar 2019 08:37:24 +
with message-id
and subject line Bug#924272: fixed in decopy 0.2.4.1-2
has caused the Debian Bug report #924272,
regarding decopy: FTBFS (mv: cannot stat 'README.1': No such file or directory)
to be marked as done.
This means that you claim that
Fix for this pending at
https://salsa.debian.org/mariadb-team/mariadb-10.3/commits/bugfix/910902-move-resolveip-to-server-core
Control: tag -1 pending
Hello,
Bug #910902 in mariadb-10.3 reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
Processing control commands:
> tag -1 pending
Bug #910902 [mariadb-server] resolveip is missing for a fresh installation of
Akonadi
Added tag(s) pending.
--
910902: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=910902
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
Control: tags -1 moreinfo
Hello!
Can you still reproduce this with latest versions of MariaDB 10.3.13
and mod_perl ?
Processing control commands:
> tags -1 moreinfo
Bug #916375 [libmariadbclient18] apache2: Segmentation fault when mod_perl.so
is enabled
Added tag(s) moreinfo.
--
916375: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916375
Debian Bug Tracking System
Contact ow...@bugs.debian.org with
Package: lam4-dev
Version: 7.1.4-3.1
Severity: serious
Tags: sid buster
Installing lam4-dev after libopenmpi-dev results in messed up
alternatives:
# apt-get install libopenmpi-dev
# ls -la /etc/alternatives/mpi /usr/include/mpi /usr/bin/mpicc
ls: cannot access '/usr/include/mpi': No such file
Processing commands for cont...@bugs.debian.org:
> reassign 924420 sponsorship-requests
Bug #924420 [fonts-myanmar] Subject: RFS: fonts-myanmar/0.1-1 [ITP] -- Prease
Sponsor for myanmar-font pack
Warning: Unknown package 'fonts-myanmar'
Bug reassigned from package 'fonts-myanmar' to
Processing control commands:
> tags -1 + patch
Bug #924397 [corekeeper] corekeeper: insecure use of world-writable /var/crash
Added tag(s) patch.
--
924397: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924397
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
Processing control commands:
> tags -1 + patch
Bug #924397 [corekeeper] corekeeper: insecure use of world-writable /var/crash
Ignoring request to alter tags of bug #924397 to the same tags previously set
--
924397: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924397
Debian Bug Tracking
Control: tags -1 + patch
On Wed, 13 Mar 2019 08:16:16 +0800 Paul Wise wrote:
> On Tue, 2019-03-12 at 15:50 +0100, Jakub Wilk wrote:
>
> > I don't understand why /var/crash is world-writable
>
> I guess that is for when the core dump handler is unused and probably I
> forgot to change it when
Your message dated Wed, 13 Mar 2019 06:58:04 +0100
with message-id
and subject line Re: Bug#922263: turbogears2-doc: FTBFS (ImportError: cannot
import name flatten_arguments)
has caused the Debian Bug report #922263,
regarding turbogears2-doc: FTBFS (ImportError: cannot import name
71 matches
Mail list logo
