Processing commands for cont...@bugs.debian.org:
> unarchive 1025125
Bug #1025125 {Done: Antonio Terceiro } [src:ruby-sinatra]
ruby-sinatra: CVE-2022-45442: Reflected File Download attack
Unarchived Bug 1025125
> found 1025125 2.0.8.1-2
Bug #1025125 {Done: Antonio Terceiro } [src:ruby-sinatra]
Hello fellow Debian users,
I wish I had better news for you but at this point in time PipeWire is
not a replacement for JACK when it comes to pro-audio. Neither in terms
of reliability, performance or features. It is certainly not something
to use in a studio with paying customers, or live on
Processing commands for cont...@bugs.debian.org:
> severity 1032706 important
Bug #1032706 [lxc] lxc-snapshot cannot restore containers with loop storage
backend
Severity set to 'important' from 'grave'
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
1032706:
severity 1032706 important
thanks
Hi,
"Sperl, Mario" wrote on 11/03/2023 at 09:30:06+0100:
> Package: lxc
> Version: 1:5.0.2-1
> Severity: grave
> Justification: causes data loss
>
> Dear Maintainer,
>
> *** Reporter, please consider answering these questions, where appropriate ***
>
>*
Processing commands for cont...@bugs.debian.org:
> severity 1033065 normal
Bug #1033065 [release-notes] release-notes: i386 notes should specify minimum
CPU requirements
Severity set to 'normal' from 'serious'
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
On Mon, Mar 20, 2023 at 12:05:24PM +, James Addison wrote:
> On Mon, 20 Mar 2023 13:31:37 +0800, pabs wrote:
> > Perhaps lintian could add classification tags for the relevant CPU
> > instructions and then the i386 port could have extra autopkgtest nodes
> > that only process the packages
Processing commands for cont...@bugs.debian.org:
> tags 1033250 + upstream
Bug #1033250 [src:node-request] node-request: CVE-2023-28155
Added tag(s) upstream.
> forwarded 1033250 https://github.com/request/request/issues/3442
Bug #1033250 [src:node-request] node-request: CVE-2023-28155
Set Bug
Source: upx-ucl
X-Debbugs-CC: t...@security.debian.org
Severity: grave
Tags: security
Hi,
The following vulnerability was published for upx-ucl.
CVE-2023-23456[0]:
| A heap-based buffer overflow issue was discovered in UPX in
| PackTmt::pack() in p_tmt.cpp file. The flow allows an attacker to
|
Processing control commands:
> severity -1 serious
Bug #1033065 [release-notes] release-notes: i386 notes should specify minimum
CPU requirements
Severity set to 'serious' from 'important'
--
1033065: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033065
Debian Bug Tracking System
Contact
Processing control commands:
> severity -1 serious
Bug #1018718 [apache2-doc] apache2-doc: despite having been disabled,
apache2-doc.conf gets rather silently re-enabled automatically
Severity set to 'serious' from 'important'
--
1018718:
Processing commands for cont...@bugs.debian.org:
> tags 1033212 patch upstream fixed-upstream
Bug #1033212 [kwin] plasma-mobile fails to start on PP after kwin's commit
eef9bd5c with "libkwinglutils: Shaders are not supported"
Added tag(s) patch, upstream, and fixed-upstream.
>
End of message,
Processing commands for cont...@bugs.debian.org:
> severity 1033212 grave
Bug #1033212 [kwin] plasma-mobile fails to start on PP after kwin's commit
eef9bd5c with "libkwinglutils: Shaders are not supported"
Severity set to 'grave' from 'normal'
>
End of message, stopping processing here.
Please
Your message dated Mon, 20 Mar 2023 13:39:33 -0400
with message-id <3c1d8f59-d96d-6120-c967-d1757f59c...@debian.org>
and subject line Re: puppet: apt install puppet and puppet modules clash with
official upstream repo
has caused the Debian Bug report #1033243,
regarding puppet: apt install puppet
Processing commands for cont...@bugs.debian.org:
> tags 1033243 wontfix
Bug #1033243 [puppet] puppet: apt install puppet and puppet modules clash with
official upstream repo
Added tag(s) wontfix.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
1033243:
Hi,
First note that:
$ jexec
can't locate java: No such file or directory
$ ls -l /etc/alternatives/jexec
lrwxrwxrwx 1 root root 44 28 déc. 19:45 /etc/alternatives/jexec ->
/usr/lib/jvm/java-17-openjdk-amd64/lib/jexec
$ /usr/lib/jvm/java-17-openjdk-amd64/lib/jexec
Error: -jar requires jar file
Package: puppet
Version: 7.23.0
Severity: grave
Tags: upstream
Justification: renders package unusable
Dear Maintainers,
At work I must install foreman and puppet using the official upstream repos for
a testing environment which are
cat puppet7.list
# Puppet 7 bullseye Repository
deb
On Thu, 16 Mar 2023 10:23:53 +0100 Israel Galadima
wrote:
> Hi,
>
> Michael and I have done some packaging work for corepack.
> Of note, we have updated clipanion and packaged some dependencies of
> proxy-agent.
>
> Although, some of our work is awaiting uploads because of the freeze.
>
>
Your message dated Mon, 20 Mar 2023 14:35:36 +
with message-id
and subject line Bug#1033224: fixed in gnome-builder 43.6-3
has caused the Debian Bug report #1033224,
regarding gnome-builder: Depends on obsolete gir1.2-webkit2-5.0 package
to be marked as done.
This means that you claim that
Hi Jorge,
On Sun, Mar 19, 2023 at 10:45:32PM -0400, Jorge Moraleda wrote:
> Hello Tony,
>
> I propose that we either reduce the severity, ignore the bug for the
> > bookworm release cycle, or remove only the libitext-rups-java binary
> > package from bookworm.
> >
> Thank you. I believe the
On Mon, Mar 20, 2023 at 09:48:36AM -0400, Jeremy Bícha wrote:
> This was a mistake in cherry-picking from the Experimental branch
> where I had previously applied
> https://salsa.debian.org/gnome-team/gnome-builder/-/commit/f87150bc
Maybe it's not a bad idea to let gir:Depends handle this
On Mon, Mar 20, 2023 at 7:15 AM Alberto Garcia wrote:
> gnome-builder 43.6-2 switched the build dependency from WebtKitGTK 5.0
> to 6.0 since the former API is no longer available and is going away.
>
> However it still contains a dependency on gir1.2-webkit2-5.0, so it
> effectively depends on
Source: webkit2gtk
Version: 2.40.0-2
Severity: serious
Hello, for some reasons, now webkit2gtk is not linking anymore libGLESv2.so.2
causing surf to fail autopkgtests on arm64 and armhf
autopkgtest [05:16:23]: test command3: timeout -v 5m xvfb-run
debian/tests/test_text.sh
autopkgtest
Control: tags -1 patch
debdiff attached
Berto
diff -Nru gnome-builder-43.6/debian/changelog
gnome-builder-43.6/debian/changelog
--- gnome-builder-43.6/debian/changelog 2023-03-16 01:29:37.0 +0100
+++ gnome-builder-43.6/debian/changelog 2023-03-20 12:45:40.0 +0100
@@ -1,3 +1,11
Processing control commands:
> tags -1 patch
Bug #1033224 [gnome-builder] gnome-builder: Depends on obsolete
gir1.2-webkit2-5.0 package
Added tag(s) patch.
--
1033224: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033224
Debian Bug Tracking System
Contact ow...@bugs.debian.org with
Your message dated Mon, 20 Mar 2023 12:05:23 +
with message-id
and subject line Bug#987355: fixed in phpldapadmin 1.2.6.3-0.3
has caused the Debian Bug report #987355,
regarding CVE-2020-35132
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is
Processing control commands:
> tags -1 patch pending
Bug #987355 [phpldapadmin] CVE-2020-35132
Added tag(s) pending and patch.
--
987355: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987355
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
Adrian Bunk wrote:
> Control: affects -1 src:beaker
[…]
> beaker has a FTBFS that looks similar, without fakeredis installed:
> https://buildd.debian.org/status/logs.php?pkg=beaker=1.12.1-1
Putting aside the question of the beaker FTBFS for a second, this
issue (ie. #1030600, ie. preventing
Package: gnome-builder
Version: 43.6-2
Severity: serious
Justification: Policy 7.2
gnome-builder 43.6-2 switched the build dependency from WebtKitGTK 5.0
to 6.0 since the former API is no longer available and is going away.
However it still contains a dependency on gir1.2-webkit2-5.0, so it
Package: chromium
Version: 111.0.5563.64-1
Severity: serious
Tags: patch
Justification: unusable under wayland kde
Dear Maintainer,
Under wayland chromium tab are unresponsible to mouse.
#ozone-platform-hint set to auto instead of default help here to detect
wayland.
Could you set this option
I would suggest to add a note to https://github.com/lxc/lxc/issues/4289
to mention that LXC was kicked out from Bookworm due to this bug. Maybe
they don't know.
Regards
Harri
Processing control commands:
> tags 1031741 + patch
Bug #1031741 [goxel] goxel: usage of sanitizers might introduce vulnerabilities
Added tag(s) patch.
> tags 1031741 + pending
Bug #1031741 [goxel] goxel: usage of sanitizers might introduce vulnerabilities
Added tag(s) pending.
--
1031741:
Control: tags 1031741 + patch
Control: tags 1031741 + pending
Dear maintainer,
I've prepared an NMU for goxel (versioned as 0.11.0-1.1) and uploaded
it to DELAYED/2. Please feel free to tell me if I should cancel it.
cu
Adrian
diff -Nru goxel-0.11.0/debian/changelog
Your message dated Mon, 20 Mar 2023 07:20:43 +
with message-id
and subject line Bug#1032551: fixed in ruby-kubeclient 4.11.0-1
has caused the Debian Bug report #1032551,
regarding ruby-kubeclient: FTBFS in testing: ERROR: Test "ruby3.1" failed.
to be marked as done.
This means that you claim
Your message dated Mon, 20 Mar 2023 07:20:34 +
with message-id
and subject line Bug#1032551: fixed in ruby-kubeclient 4.9.3-2
has caused the Debian Bug report #1032551,
regarding ruby-kubeclient: FTBFS in testing: ERROR: Test "ruby3.1" failed.
to be marked as done.
This means that you claim
34 matches
Mail list logo
