Package: osslsigncode
Version: 2.1-1
Severity: grave
Tags: security
X-Debbugs-Cc: secur...@debian.org, deb...@rocketjump.eu, Debian Security Team
It was reported through IRC that the current stable version of osslsigncode
contains an unpatched security vulnerability:
On Sat, 18 Mar 2023 17:06:08 +0100 Dominique Dumont wrote:
On Tue, 14 Feb 2023 22:21:26 +0100 Lee Garrett wrote:
> Bumped severity as this makes bts currently unusable, and probably
> breaks for quite a few DDs their workflow.
This does not break on my system where bts is connected to
Package: psi-plus
Version: 1.4.554-5+b2
Severity: grave
X-Debbugs-Cc: deb...@rocketjump.eu
Hi,
psi-plus currently simply segfaults on a stock bookworm installation:
$ psi-plus
[20230310 15:43:12] W:libpng warning: iCCP: known incorrect sRGB profile
(unknown:0, unknown)
[20230310 15:43:12]
Package: zcfan
Severity: serious
X-Debbugs-Cc: deb...@rocketjump.eu
Hi,
while testing the Breaks: directive between zcfan and thinkfan, I noticed that
the zcfan service is not stopped upon uninstall. This is not caught by piuparts,
as by default the zcfan service is not started. The solution is
I'm bumping the bug severity because currently it will ignore
security-relevant settings like keysize and algo, and the defaults are
pretty weak.
Bumped severity as this makes bts currently unusable, and probably
breaks for quite a few DDs their workflow.
Package: command-not-found
Version: 20.10.1-1
Severity: grave
Tags: patch
X-Debbugs-Cc: deb...@rocketjump.eu, k...@debian.org
Hi Julian,
(this is somewhat related to #968757 and #954249)
(kibi CCed)
Steps to reproduce (on an bullseye installation)
1) Install command-not-found
2) Edit
IIRC this was added because the last python transition (3.9->3.10) broke
the autopkgtests, so I've added it. As this seems to work this time
around, I acknowledge the NMU.
On Tue, 10 Jan 2023 08:21:09 -0800 Steve Langasek
wrote:
Package: ansible-core
Version: 2.14.1-1
Severity: serious
Hi Scott,
I got around to fix the issue. I took the upstream patch as yours didn't
apply cleanly to 2.14 anymore. I will upload the package in the next hour.
Thanks for bringing this to my attention!
Regards,
Lee
On 23/11/2022 17:17, Scott Kitterman wrote:
Package: ansible-core
Version:
Hi Scott,
thanks for the bug report. A NMU is not needed, I'm currently preparing
the newest upstream release and hopefully will upload it in the next
days. If I don't upload within 7 days, feel free to NMU it.
Regards,
Lee
On 23/11/2022 17:17, Scott Kitterman wrote:
Package: ansible-core
Package: tetradraw
Version: 2.0.3-9+b2
Followup-For: Bug #716386
X-Debbugs-Cc: deb...@rocketjump.eu
Hi Rhonda,
sorry to grave dig this bug report, but it seems that tetradraw might be broken
for a couple of releases now. On bullseye it segfaults with rc 139. A few people
in #debian reported the
On 07/10/2021 16:56, Daniel Baumann wrote:
> Package: ansible
> Version: 4.6.0-1
> Severity: serious
> Tags: experimental
>
> Hi,
>
> ansible in experimental is currently uninstallable because of the
> dependency on ansible-core which is unavailable/not yet uploaded in
> Debian as it seems.
>
>
Hi,
On 28/09/2021 22:46, Thorsten Glaser wrote:
> Debian FTP Masters dixit:
>
>> * Don't ship an example config in /etc/thinkfan.yaml (Closes: #983727)
>> * Ship example config in /usr/share/doc/thinkfan/examples/
>
> I don’t think these resolve my issue with the newer thinkfan releases.
>
Hi Baptiste,
On 20/04/2021 22:07, Baptiste Beauplat wrote:
> Hi Lee,
>
> On 2021/04/19 11:06 PM, Debian Bug Tracking System wrote:
>> #983140: ansible: Does not detect correct python interpreter on bullseye
>> target
>>
>> It has been closed by Debian FTP M
Hi Dominic,
I'll upload a fix as soon as the unblock request for ansible-base goes
through. As a workaround you can also set the python interpreter as
described in [0], either changing the default or setting it for
individual hosts.
I'm not sure if putting python3 further up the list might break
I can confirm that upgrading libx11-6 to match libx11-xcb1 fixed my
issue with chromium. Thanks!
Package: chromium
Version: 87.0.4280.88-0.4
Severity: grave
X-Debbugs-Cc: deb...@rocketjump.eu
Hi,
starting chromium on bullseye will render a window (with various elements
shifted down by half a screen), which is impossible to interact with, and causes
gnome to offer a "force quit" prompt after
Hi Sebastian,
thanks, I acknowledge the NMU. I'm in the process of packaging ansible
2.10.x which will already contain the fix. So feel free to consider this
bug closed.
Regards,
Lee
On Wed, 6 Jan 2021 12:07:18 +0100 Sebastian Ramacher
wrote:
> Control: tags 971309 + patch
> Control: tags
Hi,
I've prepared a fix for this package at
https://salsa.debian.org/python-team/packages/python-bleach/-/merge_requests/1
I lack permissions to merge to master and upload this package. The patch
itself is based on a pending upstream MR, details are in the quilt patch
annotation.
Regards,
Package: gnome-twitch
Version: 0.4.1-3
Severity: grave
Hi,
current gnome-twitch will segfault on any stream selected. I've tried the
gstreamer-cairo and gstreamer-opengl backend to verify it's not backend related.
It starts fine, but selecting any stream will give the following output:
$
Package: rspamd
Followup-For: Bug #951488
Hi,
after debugging the issue further with the upstream author we came to the
conclusion that the packages in Debian are not reponsible for the issue.
Apparently even older versions shipped by Synology appliances are causing the
issue due to a broken
Hi,
it seems as though geany-plugin-webhelper was removed from buster/sid.
Looking at the changelog, there's the following entry:
geany-plugins (1.32+dfsg-3) unstable; urgency=medium
* [67b34ed] Disable webkit-using plugins: markdown, webhelper
webkitgtk-3.0 is not to be used as it is
Package: testssl.sh
Version: 2.9.5-7+dfsg1-1
Severity: serious
Justification: Policy 3.5
Hi,
on a minimal Debian installation testssl fails to work. It's missing at least
these dependencies (package name in brackets):
- dig (dnsutils)
- host (bind9-host)
- ps (procps)
- hexdump (bsdmainutils)
Hi,
your issue is related to mixing stable and testing, which is not supported and
causing your issue here. More below:
On Tue, 26 Feb 2019 10:54:15 +1100 "G. Branden Robinson"
wrote:
> Package: chromium
> Version: 72.0.3626.96-1~deb9u1
> Severity: grave
> Justification: renders package
reproduce the issue on stretch.
On 08/11/2018 11:51, Lee Garrett wrote:
> Hi,
>
> sorry for the late response. CVE-2018-16837 should be fairly straight-forward
> to fix in stretch and jessie.
>
> For CVE-2018-10875 I have a patch in my work dir that should fix it. I'll push
&g
Hi,
sorry for the late response. CVE-2018-16837 should be fairly straight-forward
to fix in stretch and jessie.
For CVE-2018-10875 I have a patch in my work dir that should fix it. I'll push
it to the git stretch branch tomorrow (not on my work machine right now).
For CVE-2018-10874, it's not
Hi Sebastiaan,
On 01/11/2018 20:15, Sebastiaan Couwenberg wrote:> Hi Lee,
>
> On 11/1/18 6:41 PM, Lee Garrett wrote:
>> installing icinga2-common on a system that does not have icinga2 installed
fails
>> as follows:
>>
>> [...]
>>
>> Installing ic
Package: icinga2-common
Version: 2.6.0-2
Severity: serious
Justification: Policy 3.5
Dear maintainer,
installing icinga2-common on a system that does not have icinga2 installed fails
as follows:
--->8-->8-->8-->8-->8-->8-->8-->8-->8-->8---
# apt install
Hi,
Any update on this bug? dnssec-trigger will be autoremoved due to this bug
tomorrow. I'd like to see it in buster, though.
Regards,
Lee
Hi,
I triaged this bug on a fresh stretch VM. Installing postgrey 1.36-3 and
rebooting did not trigger the bug. I tried with both systemd and sysvinit.
Looking at /etc/init.d/postgrey, I see the following:
PIDFILE=/var/run/$DAEMON_NAME.pid
So the above init script shipped in stretch does not
The problem here is that the newer enigmail from buster depends on gnupg (>=
2.2.8-2~), which is only available in stretch-backports. If there is no way to
make it work with gnupg from stable, I proprose to remove enigmail from
stable, and offer it via stretch-backports.
Whatever the eventual
Package: gplaycli
Version: 0.2.10-1~bpo9+1
Severity: grave
Justification: renders package unusable
Hi,
I'm currently having a hard time to get gplaycli running again. It seems as
though the version in Debian is currently unusable:
# with stable-backports:
$ gplaycli -d com.imgur.mobile -v
Hi Daniel,
I've fixed it again. However, I'm not sure how this FTBFS for you. It built
fine before, and also on the buildds. Maybe you have some setting that turns
lintian warnings into errors?
Regards,
Lee
On 18/05/18 20:55, Harlan Lieberman-Berg wrote:
> Oh, I see what's happening.
>
> Lee,
reassign 870599 python-jinja2
kthxbye
Hi,
can you add a Breaks: ansible << 2.3 to python-jinja2 in sid? That will help
with upgrading from stretch to buster. The template module in ansible 2.2.1
(stretch) is broken with jinja2 2.9 and above.
Regards,
Lee
Hi Robbie,
this is due to the ansible template module being incompatible with jinja2
v2.9. We are aware of this problem [0], and it has already been reported
upstream [1]. I know this is annoying, but at least it stops people upgrading
from stable to testing/unstable to break their ansible
Source: snort
Version: 2.9.7.0-5
Severity: grave
Justification: renders package unusable
Dear maintainer,
The version of snort in Debian testing/sid has reached EOL in March [0], making
it difficult to provide security updates or rule updates over the lifecycle of
stretch. Since no newer
Hi Richard,
please ask for support in the Debian IRC channel, which you can reach at
#debian on irc.oftc.net. Or the debian-user mailinglist, which is found at
https://lists.debian.org/debian-user/. There we'll be able to further debug
your issue. See you there!
Greetings,
Lee
Hi John,
thank you for coming forward with your problem, but I think a better approach
for resolving your issue is to bring it up on IRC, or use the the debian-user
mailing list to further debug the issue. Then, if your problem is not solved,
but further narrowed down, you can provide better
hat achieve this have suffered bit rot due to API changes.
> To be honest, I'm out of time these days and I don't think it'll go
> better. Any help is greatly appreciated.
>
> Regards,
Regards,
Lee
> Le 07/11/2016 à 17:11, Lee Garrett a écrit :
>> Package: gplaycli
>>
On 17/05/16 14:21, Vlad Orlov wrote:
> Hi,
>
> This doesn't happen even in VirtualBox working on a host with an old Core 2
> Duo
> (both host and guest Debian installations are 64-bit). The upgrade went fine.
This is because your CPU architecture is not 32 bit, and not i586 or lower.
I'm sure
Hi Dirk,
which type of processor do you have on that machine? As ydirson pointed out,
older CPU types (80586 and below on the i386 architecture) are not supported
anymore in stretch.
For everyone else: I can't reproduce this bug on my Intel i5, so it's safe to
upgrade.
Regards,
Lee
needrestart is being skipped since dpkg has failed
E: Sub-process /usr/bin/dpkg returned an error code (1)
Failed to perform requested operation on package. Trying to recover:
Press Return to continue.
Kind regards,
Lee Garrett
-- System Information:
Debian Release: stretch/sid
APT prefers testing
Hi Jay,
thanks for going through the effort of checking up on all CVEs and
packaging it up.
CVE-2012-2088 still affects 3.9.4-5+squeeze5 though. The only other
vulnerability left is tracked in #688944, which was opened just today.
--Lee
--
To UNSUBSCRIBE, email to
This might have to do with the fact that SIP is broken in
1:1.6.2.9-2+squeeze7.
Also see http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688053
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
On 09/23/2012 01:52 PM, Luciano Bello wrote:
The patch looks good for me. I can write the DSA text today. Just a minor
question: CVE-2010-2482 should be fixed in 3.9.4. Did I missed something?
According to the sources linked to in Debian's security-tracker, all
versions up to and including
AFAICS stable is still affected by both CVEs. Can you confirm this?
Patches are available in the Ubuntu natty version of libtiff4.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Package: linux-wlan-ng-firmware
Version: 0.2.6+svn20061108+dfsg-1
Severity: grave
Justification: renders package unusable
Hello there,
with moving prism2dl to the -firmware package following bug shows up:
First of all, line 46 is redundant (cd $my_temp), as we already are in that
working dir.
Package: linux-wlan-ng-source
Version: 0.2.4+svn20060128-1
Severity: grave
Justification: renders package unusable
Hello,
generating a modules package with make-kpkg results in a uninstallable
package, because $(PACKAGE).postinst is empty. Checking debian/rules,
$(PACKAGE).postinst is generated
48 matches
Mail list logo