Processing commands for cont...@bugs.debian.org:
> retitle 894868 gitlab: CVE-2018-9244: Persistent XSS in milestones
> data-milestone-id
Bug #894868 {Done: Pirate Praveen } [src:gitlab] gitlab:
Persistent XSS in milestones data-milestone-id
Changed Bug title to 'gitlab:
Processing commands for cont...@bugs.debian.org:
> retitle 894259 drupal7: CVE-2018-7600: SA-CORE-2018-002
Bug #894259 [src:drupal7] drupal7: DRUPAL-PSA-2018-001
Changed Bug title to 'drupal7: CVE-2018-7600: SA-CORE-2018-002' from 'drupal7:
DRUPAL-PSA-2018-001'.
> thanks
Stopping processing
Processing commands for cont...@bugs.debian.org:
> retitle 890905 jabref: doesn't build/run with default-jdk/-jre
Bug #890905 [jabref] jabref: doesn't start with liblog4j2-java 2.10.0-1
Bug #893251 [jabref] jabref: doesn't start with liblog4j2-java 2.10.0-1
Changed Bug title to 'jabref: doesn't
Processing commands for cont...@bugs.debian.org:
> retitle 893202 squirrelmail: CVE-2018-8741: path traversal vulnerability
Bug #893202 [src:squirrelmail] squirrelmail: path traversal vulnerability
Changed Bug title to 'squirrelmail: CVE-2018-8741: path traversal
vulnerability' from
Processing commands for cont...@bugs.debian.org:
> retitle 893202 squirrelmail: path traversal vulnerability
Bug #893202 [src:squirrelmail] squirrelmail: path traversal vulnerability allows
Changed Bug title to 'squirrelmail: path traversal vulnerability' from
'squirrelmail: path traversal
Processing commands for cont...@bugs.debian.org:
> retitle 886367 intel-microcode: spectre microcode updates for unstable/testing
Bug #886367 [intel-microcode] intel-microcode: coming updates for
meltdown/spectre
Changed Bug title to 'intel-microcode: spectre microcode updates for
Processing commands for cont...@bugs.debian.org:
> retitle 887856 intel-microcode: spectre microcode updates for stable
Bug #887856 [intel-microcode] intel-microcode: Spectre / Meltdown : bring
intel-microcode 20180104 to stretch
Changed Bug title to 'intel-microcode: spectre microcode updates
Processing commands for cont...@bugs.debian.org:
> retitle 892415 nvcc wants GCC 6 which we want to remove
Bug #892415 [nvidia-cuda-toolkit] eztrace-contrib: build-depends on GCC 6
Changed Bug title to 'nvcc wants GCC 6 which we want to remove' from
'eztrace-contrib: build-depends on GCC 6'.
>
Processing commands for cont...@bugs.debian.org:
> retitle 892311 ncl: FTBFS on various architectures
Bug #892311 [src:ncl] nlc: FTBFS on various architectures
Changed Bug title to 'ncl: FTBFS on various architectures' from 'nlc: FTBFS on
various architectures'.
> thanks
Stopping processing
Processing commands for cont...@bugs.debian.org:
> retitle 892179 util-linux: CVE-2018-7738: code execution in bash-completion
> for umount
Bug #892179 [src:util-linux] code execution in bash-completion for umount
Changed Bug title to 'util-linux: CVE-2018-7738: code execution in
Processing commands for cont...@bugs.debian.org:
> retitle 892096 gcc-snapshot: AddressSanitizer uses glibc internal functions
Bug #892096 [gcc-snapshot] libc6:i386 yields invalid writes, triggered by GCC's
AddressSanitizer
Changed Bug title to 'gcc-snapshot: AddressSanitizer uses glibc internal
Processing commands for cont...@bugs.debian.org:
> retitle 891727 from OpenSSL.SSL import * doesn't work
Bug #891727 [src:python-eventlet] python-eventlet FTBFS: ERROR:
tests.openssl_test.test_import
Changed Bug title to 'from OpenSSL.SSL import * doesn't work' from
'python-eventlet FTBFS:
Processing commands for cont...@bugs.debian.org:
> retitle 890747 clang-defaults: needs to provide a generic clang-tools package
Bug #890747 [clang] clang: missing dependency on clang-tools-4.0
Changed Bug title to 'clang-defaults: needs to provide a generic clang-tools
package' from 'clang:
Processing commands for cont...@bugs.debian.org:
> retitle 889567 dh-autoreconf: needs Breaks: quilt (<< 0.63-8.2~), dpatch (<<
> 2.0.38+nmu1~)
Bug #889567 [dh-autoreconf] dh-autoreconf needs Breaks: quilt (<< 0.63-8.2~)
Changed Bug title to 'dh-autoreconf: needs Breaks: quilt (<< 0.63-8.2~),
Processing commands for cont...@bugs.debian.org:
> retitle 889285 bind9: CVE-2018-5735: assertion failure in validator.c:1858
Bug #889285 [bind9] bind9: CVE-2018-5735: denial of service flaw was found in
the way BIND handled DNSSEC validation
Changed Bug title to 'bind9: CVE-2018-5735: assertion
Processing commands for cont...@bugs.debian.org:
> retitle 889285 bind9: CVE-2018-5735: denial of service flaw was found in the
> way BIND handled DNSSEC validation
Bug #889285 [bind9] bind9: assertion failure in validator.c:1858
Changed Bug title to 'bind9: CVE-2018-5735: denial of service flaw
Processing commands for cont...@bugs.debian.org:
> retitle 89 exim4: CVE-2018-6789: Buffer overflow in an utility function
Bug #89 [src:exim4] exim4: CVE-2018-6789
Changed Bug title to 'exim4: CVE-2018-6789: Buffer overflow in an utility
function' from 'exim4: CVE-2018-6789'.
> thanks
Processing commands for cont...@bugs.debian.org:
> retitle 889710 arch-test FTBFS: i686-w64-mingw32-ld: cannot find -lkernel32
Bug #889710 [src:arch-test] arch-test FTBFS: i686-w64-mingw32-ld: cannot find
Changed Bug title to 'arch-test FTBFS: i686-w64-mingw32-ld: cannot find
-lkernel32' from
Processing commands for cont...@bugs.debian.org:
> retitle 889688 gweled crashes when rsvg reports an error
Bug #889688 [gweled] rsvg_pixbuf_from_file_at_size broken in recent librsvg2-2
Changed Bug title to 'gweled crashes when rsvg reports an error' from
'rsvg_pixbuf_from_file_at_size broken
Processing commands for cont...@bugs.debian.org:
> retitle 889521 libmsv: missing build-dependency on file
Bug #889521 [src:libmsv] Bug#889521: libmsv: missing build-dependency on file
Changed Bug title to 'libmsv: missing build-dependency on file' from
'Bug#889521: libmsv: missing
Processing commands for cont...@bugs.debian.org:
> retitle 889450 django-anymail: CVE-2018-6596: Security issue with timing
> attack on WEBHOOK_AUTHORIZATION
Bug #889450 {Done: Scott Kitterman } [src:django-anymail]
src:django-anymail: Security issue with timing attack on
Processing commands for cont...@bugs.debian.org:
> retitle 886683 electrum: CVE-2018-122
Bug #886683 [electrum] electrum: Security vulnerability in electrum
Changed Bug title to 'electrum: CVE-2018-122' from 'electrum: Security
vulnerability in electrum'.
> thanks
Stopping processing
Processing commands for cont...@bugs.debian.org:
> retitle 888484 clamav: Security release 0.99.3 available (CVE-2017-12374
> CVE-2017-12375 CVE-2017-12376 CVE-2017-12377 CVE-2017-12378 CVE-2017-12379
> CVE-2017-12380)
Bug #888484 [clamav] clamav: Security release 0.99.3 available
Processing commands for cont...@bugs.debian.org:
> retitle 888452 389-ds-base: CVE-2017-15134: Remote DoS via search filters in
> slapi_filter_sprintf in slapd/util.c
Bug #888452 [src:389-ds-base] 389-ds-base: CVE-2017-15134: emote DoS via search
filters in slapi_filter_sprintf in slapd/util.c
Processing commands for cont...@bugs.debian.org:
> retitle 584469 CVE-2010-2058: prewikka: configuration file containing
> password world-readable
Bug #584469 {Done: Nico Golde } [prewikka] prewikka:
Permission security vulnerability
Bug #527476 {Done: Pierre Chifflier
Processing commands for cont...@bugs.debian.org:
> retitle 887596 wordpress: CVE-2018-5776: XSS vulnerability in MediaElement
Bug #887596 [src:wordpress] wordpress: XSS vulnerability in MediaElement
Changed Bug title to 'wordpress: CVE-2018-5776: XSS vulnerability in
MediaElement' from
Processing commands for cont...@bugs.debian.org:
> retitle 887330 civicrm: Multiple XSS vulnerabilities were found in CiviCRM
> <4.7.26
Bug #887330 [src:civicrm] civicrm: Multiple XSS vulnerabilities were found in
CiviCRM ≤4.7.26
Changed Bug title to 'civicrm: Multiple XSS vulnerabilities were
Hi Tobias,
Debian Bug Tracking System (2018-01-14):
> Processing commands for cont...@bugs.debian.org:
>
> > retitle 876388 discover: segfaults
> Bug #876388 [discover] (no subject)
> Set Bug title to 'discover: segfaults'.
> > severity 876388 grave
> Bug #876388
Processing commands for cont...@bugs.debian.org:
> retitle 876388 discover: segfaults
Bug #876388 [discover] (no subject)
Set Bug title to 'discover: segfaults'.
> severity 876388 grave
Bug #876388 [discover] discover: segfaults
Severity set to 'grave' from 'normal'
> thanks
Stopping processing
Processing commands for cont...@bugs.debian.org:
> retitle 886852 nvidia-graphics-drivers: CVE-2017-5753/CVE-2017-5715
> (spectre), CVE-2017-5754 (meltdown)
Bug #886852 [nvidia-driver] NVidia driver : upgrade to version 384.111
Changed Bug title to 'nvidia-graphics-drivers:
Processing commands for cont...@bugs.debian.org:
> retitle 886024 dh-elpa: make maintainer scripts more robust
Bug #886024 [dh-elpa] dh-elpa: make maintainer scripts more robust, severity it
importnat
Changed Bug title to 'dh-elpa: make maintainer scripts more robust' from
'dh-elpa: make
Processing commands for cont...@bugs.debian.org:
> retitle 885459 telegram-desktop: FTBFS on all architectures
Bug #885459 [src:telegram-desktop] telegram-desktop: FTCBFS on all architectures
Changed Bug title to 'telegram-desktop: FTBFS on all architectures' from
'telegram-desktop: FTCBFS on
Processing commands for cont...@bugs.debian.org:
> # Fix jidanni-style subject: No package name and too much generalizing.
> (Arora never locked my screen.)
> retitle 867737 arora: May lock the user's screen
Bug #867737 [arora] Do not use this package. It will lock your screen.
Changed Bug title
Processing commands for cont...@bugs.debian.org:
> retitle 881767 sensible-utils: CVE-2017-17512: Argument injection in
> sensible-browser
Bug #881767 {Done: Bastien Roucariès } [sensible-utils]
sensible-utils: Argument injection in sensible-browser
Changed Bug title to
Processing commands for cont...@bugs.debian.org:
> retitle 874261 ncftp: ./configure cannot be regenerated from source
Bug #874261 [src:ncftp] ncftp cannot be rebuilt from source
Changed Bug title to 'ncftp: ./configure cannot be regenerated from source'
from 'ncftp cannot be rebuilt from
Processing commands for cont...@bugs.debian.org:
> retitle 882671 exim4: CVE-2017-16944: handles BDAT data incorrectly and leads
> to crash
Bug #882671 [src:exim4] exim4: handles BDAT data incorrectly and leads to crash
Changed Bug title to 'exim4: CVE-2017-16944: handles BDAT data incorrectly
Processing commands for cont...@bugs.debian.org:
> retitle 882170 python-cryptography: extraneous setuptools dependency on cffi
Bug #882170 [python-cryptography] python-cryptography: extraneous setuptools
dependency
Changed Bug title to 'python-cryptography: extraneous setuptools dependency on
Processing commands for cont...@bugs.debian.org:
> retitle 851506 cpanminus: major parts of upstream sources with compressed
> white-space
Bug #851506 [cpanminus] cpanminus embeds other modules in fatpacked library
Changed Bug title to 'cpanminus: major parts of upstream sources with
compressed
Processing commands for cont...@bugs.debian.org:
> retitle 881532 Please keep goffice-0.8 out of buster
Bug #881532 [src:goffice-0.8] Please keep out of buster
Changed Bug title to 'Please keep goffice-0.8 out of buster' from 'Please keep
out of buster'.
> thanks
Stopping processing here.
Processing commands for cont...@bugs.debian.org:
> retitle 878566 pike7.8 - FTBFS with stricter linker due to variable declared
> extern and also having an initializer
Bug #878566 [src:pike7.8] pike7.8 FTBFS with PostgreSQL 10
Changed Bug title to 'pike7.8 - FTBFS with stricter linker due to
Processing commands for cont...@bugs.debian.org:
> retitle 881235 stop using in transitional packages
> myspell-{af,ca,en-gb,en-za,it,ky,sl,sw,th} and use hunspell-* instead in
> l10n.hunspell.
Bug #881235 [boxer-data] debian-parl: stop depending on transitional packages
Processing commands for cont...@bugs.debian.org:
> retitle 879063 ipmitool: dh_systemd_enable asked to --no-enable that does not
> exist
Bug #879063 [ipmitool] [dh_system_enable] don't notice the debhelper naming
convention
Changed Bug title to 'ipmitool: dh_systemd_enable asked to --no-enable
Processing commands for cont...@bugs.debian.org:
> retitle 878896 liquidsoap: FTBFS with OCaml 4.05.0
Bug #878896 [src:liquidsoap] liquidsoap with OCaml 4.05.0
Changed Bug title to 'liquidsoap: FTBFS with OCaml 4.05.0' from 'liquidsoap
with OCaml 4.05.0'.
> severity 847495 important
Bug #847495
Processing commands for cont...@bugs.debian.org:
> retitle 880141 file conflict (lacks Replaces:) with fonts-noto-unhinted <<
> 20171026-1
Bug #880141 [fonts-noto-hinted] [fonts-noto-hinted] error processing archive
/var/cache/apt/archives/fonts-noto-hinted_20171026-1_all.deb (--unpack)
Changed
Processing commands for cont...@bugs.debian.org:
> retitle 879907 python{,3}-tempest: fails to upgrade from sid - trying to
> overwrite /usr/bin/python[23]-check-uuid
Bug #879907 [python-tempest,python3-tempest] pythoni{,3}-tempest: fails to
upgrade from 'sid' - trying to overwrite
Processing commands for cont...@bugs.debian.org:
> retitle 879516 glm: Mailing list rejects mail from debian BTS
Bug #879516 [rrdtool] [Fwd: Bug#879511: Updating the rrdtool Uploaders list]
Changed Bug title to 'glm: Mailing list rejects mail from debian BTS' from
'[Fwd: Bug#879511: Updating the
Processing commands for cont...@bugs.debian.org:
> retitle 876854 git: CVE-2017-14867: cvsserver OS command injection
Bug #876854 {Done: Salvatore Bonaccorso } [src:git] git: Git
cvsserver OS Command Injection
Changed Bug title to 'git: CVE-2017-14867: cvsserver OS command
Processing commands for cont...@bugs.debian.org:
> retitle 869034 too strict version dependency on nokogiri declared in gemspecs
Bug #869034 {Done: Cédric Boutillier }
[ruby-rails-dom-testing] ruby-combustion: FTBFS: ERROR: Test "ruby2.3" failed.
Bug #869037 {Done: Cédric
Processing commands for cont...@bugs.debian.org:
> retitle 877436 botan1.10: CVE-2017-14737: A cryptographic cache-based side
> channel in the RSA implementation allows local attacker to recover
> information about RSA secret keys
Bug #877436 [src:botan1.10] botan1.10: CVE-2017-14737:A
Processing commands for cont...@bugs.debian.org:
> retitle 871906 mongodb-server: mongod segfault on ARM64 with 48-bit virtual
> addresses
Bug #871906 {Done: Apollon Oikonomopoulos } [src:mongodb]
mongodb FTBFS on arm64: test failure
Changed Bug title to 'mongodb-server:
Processing commands for cont...@bugs.debian.org:
> retitle 868429 gstreamer1.0-vaapi 1.12.3-1 is uninstallable on sid
Bug #868429 [gstreamer1.0-vaapi] 1.12.2 uninstallable
Changed Bug title to 'gstreamer1.0-vaapi 1.12.3-1 is uninstallable on sid' from
'1.12.2 uninstallable'.
> thanks
Stopping
Processing commands for cont...@bugs.debian.org:
> retitle 874693 ES6 syntax in 1.48+ breaks packages that redeclare variables
> with 'let'
Bug #874693 [gjs] breaks other packages
Changed Bug title to 'ES6 syntax in 1.48+ breaks packages that redeclare
variables with 'let'' from 'breaks other
Processing commands for cont...@bugs.debian.org:
> retitle 875696 courier-mlm: unsubstituted @piddir@ in /etc/courier/webmlmrc:
> "PORT=@piddir@/webmlm"
Bug #875696 [courier-mlm] courier-mlm fails to install
Changed Bug title to 'courier-mlm: unsubstituted @piddir@ in
/etc/courier/webmlmrc:
Processing commands for cont...@bugs.debian.org:
> retitle 810284 yubico-piv-tool: newer upstream release 1.4.3, needed by
> yubikey-piv-manager
Bug #810284 [src:yubico-piv-tool] yubico-piv-tool: newer upstream release
Changed Bug title to 'yubico-piv-tool: newer upstream release 1.4.3, needed
Processing commands for cont...@bugs.debian.org:
> retitle 874429 bzr: CVE-2017-14176: bzr+ssh URLs don't strip SSH options
Bug #874429 [src:bzr] bzr: bzr+ssh URLs don't strip SSH options
Changed Bug title to 'bzr: CVE-2017-14176: bzr+ssh URLs don't strip SSH
options' from 'bzr: bzr+ssh URLs
Processing commands for cont...@bugs.debian.org:
> retitle 874059 unrar-free: CVE-2017-14120: directory traversal vulnerability
Bug #874059 [src:unrar-free] unrar-free: directory traversal vulnerability
Changed Bug title to 'unrar-free: CVE-2017-14120: directory traversal
vulnerability' from
Processing control commands:
> retitle -1 An incomplete active theme can cause post-inst to fail on
Bug #858643 {Done: Aurélien COUDERC } [desktop-base]
stretch-pu: package desktop-base/9.0.2+deb9u1
Changed Bug title to 'An incomplete active theme can cause post-inst to fail
Processing commands for cont...@bugs.debian.org:
> retitle 873907 asterisk: CVE-2017-14099: AST-2017-005: Media takeover in RTP
> stack
Bug #873907 [src:asterisk] AST-2017-005 - Media takeover in RTP stack
Changed Bug title to 'asterisk: CVE-2017-14099: AST-2017-005: Media takeover in
RTP
Processing commands for cont...@bugs.debian.org:
> retitle 864078 openexr: CVE-2017-9110 CVE-2017-9112 CVE-2017-9116
Bug #864078 {Done: Markus Koschany } [src:openexr]
CVE-2017-9110 CVE-2017-9111 CVE-2017-9112 CVE-2017-9113 CVE-2017-9114
CVE-2017-9115 CVE-2017-9116
Processing commands for cont...@bugs.debian.org:
> retitle 873557 mbedtls: CVE-2017-14032: authentication bypass
Bug #873557 {Done: James Cowgill } [src:mbedtls] mbedtls:
possible authentication bypass
Changed Bug title to 'mbedtls: CVE-2017-14032: authentication bypass'
Processing commands for cont...@bugs.debian.org:
> retitle 873443 terminate called after throwing an instance of
> com::sun::star::uno::DeploymentException on architectures not using
> libmergedlo.so
Bug #873443 [uno-libs3] terminate called after throwing an instance of
Processing commands for cont...@bugs.debian.org:
> retitle 870109 imagemagick: CVE-2017-13139
Bug #870109 {Done: Bastien Roucariès } [src:imagemagick]
out-of-bounds read with the MNG CLIP chunk.
Changed Bug title to 'imagemagick: CVE-2017-13139' from 'out-of-bounds read
with
Processing commands for cont...@bugs.debian.org:
> # add missing spaces
> retitle 871710 mercurial: CVE-2017-1000116: command injection on clients
> through malicious ssh URLs
Bug #871710 [src:mercurial] mercurial:CVE-2017-1000116: command injection on
clients through malicious ssh URLs
Changed
Processing commands for cont...@bugs.debian.org:
> retitle 871465 python3-gpg: depends on, but does not install, ‘tofu’ module
Bug #871465 [python3-gpg] python3-gpg doesn't ship tofu
Bug #871609 [python3-gpg] dput fails to start with ImportError: cannot import
name 'tofu'
Changed Bug title to
Processing commands for cont...@bugs.debian.org:
> retitle 871609 python3-gpg: depends on, but does not install, ‘tofu’ module
Bug #871609 [python3-gpg] python3-gpg: depends on, but does not install, ‘tofu’
module
Bug #871465 [python3-gpg] python3-gpg: depends on, but does not install, ‘tofu’
Processing commands for cont...@bugs.debian.org:
> retitle 870959 RM: pearpc -- RoQA; missed both jessie and stretch
Bug #870959 [ftp.debian.org] RM: pearpc -- RoQA
Changed Bug title to 'RM: pearpc -- RoQA; missed both jessie and stretch' from
'RM: pearpc -- RoQA'.
> tags 852235 - moreinfo
Bug
Processing commands for cont...@bugs.debian.org:
> retitle 853513 libvigraimpex: BlockwiseWatershedTest not fit for gcc7
Bug #853513 [src:libvigraimpex] libvigraimpex: ftbfs with GCC-7
Changed Bug title to 'libvigraimpex: BlockwiseWatershedTest not fit for gcc7'
from 'libvigraimpex: ftbfs with
Processing commands for cont...@bugs.debian.org:
> retitle 869727 imagemagick: CVE-2017-12430: Memory exhaustion in mpc coder
Bug #869727 {Done: Bastien Roucariès } [src:imagemagick]
Memory exhaustion in mpc coder
Changed Bug title to 'imagemagick: CVE-2017-12430: Memory
Processing commands for cont...@bugs.debian.org:
> # "not ready for testing" may be misleading...
> retitle 870686 libglvnd: not ready for buster, yet
Bug #870686 [src:libglvnd] libglvnd: not ready for testing, yet
Changed Bug title to 'libglvnd: not ready for buster, yet' from 'libglvnd: not
Processing commands for cont...@bugs.debian.org:
> retitle 854733 zoneminder: CVE-2017-5367 CVE-2017-5368 CVE-2017-5595
Bug #854733 [src:zoneminder] CVE-2017-5367 / CVE-2017-5367 / CVE-2017-5368
Changed Bug title to 'zoneminder: CVE-2017-5367 CVE-2017-5368 CVE-2017-5595'
from 'CVE-2017-5367 /
Processing commands for cont...@bugs.debian.org:
> retitle 870467 varnish: Bogusly large chunk sizes may cause assert
Bug #870467 [src:varnish] varnish: DoS vulnerability
Changed Bug title to 'varnish: Bogusly large chunk sizes may cause assert' from
'varnish: DoS vulnerability'.
> forwarded
Processing commands for cont...@bugs.debian.org:
> # correct CVE in subject
> retitle 869639 firmware-brcm80211: BroadPwn vulnerability CVE-2017-9417
Bug #869639 [firmware-brcm80211] firmware-brcm80211: BroadPwn vulnerability
CVE-2017-8386
Changed Bug title to 'firmware-brcm80211: BroadPwn
Processing commands for cont...@bugs.debian.org:
> retitle 869551 screen: does not work at all if the current user has the user
> name "none"
Bug #869551 [screen] screen: GNU screen returns immediately after being
started, without reporting errors
Changed Bug title to 'screen: does not work at
Processing commands for cont...@bugs.debian.org:
> retitle 867514 libsolv: find_package called with invalid argument "2.7.13+"
Bug #867514 [libsolv] python2.7/cmake: find_package called with invalid
argument "2.7.13+"
Changed Bug title to 'libsolv: find_package called with invalid argument
Processing commands for cont...@bugs.debian.org:
> retitle 869210 imagemagick: CVE-2017-11523: endless loop in ReadTXTImage
Bug #869210 [src:imagemagick] endless loop in ReadTXTImage
Changed Bug title to 'imagemagick: CVE-2017-11523: endless loop in
ReadTXTImage' from 'endless loop in
Processing commands for cont...@bugs.debian.org:
> retitle 869209 imagemagick: CVE-2017-11522: Null-Point reference in
> WriteOnePNGImage
Bug #869209 [src:imagemagick] [imagemagick] Null-Point reference in
WriteOnePNGImage
Changed Bug title to 'imagemagick: CVE-2017-11522: Null-Point reference
Processing commands for cont...@bugs.debian.org:
> retitle 867894 imagemagick: CVE-2017-11450
Bug #867894 {Done: Bastien Roucariès } [src:imagemagick]
[imagemagick] Avoid heap based overflow for jpeg
Changed Bug title to 'imagemagick: CVE-2017-11450' from '[imagemagick] Avoid
Processing commands for cont...@bugs.debian.org:
> retitle 868300 yadm: CVE-2017-11353: race condition allows access to ssh and
> pgp keys
Bug #868300 [yadm] yadm: CVE-2017-11353: race condition allows access to ssh
and pgp
Changed Bug title to 'yadm: CVE-2017-11353: race condition allows
Processing commands for cont...@bugs.debian.org:
> retitle 868300 yadm: CVE-2017-11353: race condition allows access to SSH and
> PGP keys
Bug #868300 [yadm] yadm: CVE-2017-11353: race condition allows access to ssh
and pgp keys
Changed Bug title to 'yadm: CVE-2017-11353: race condition allows
Processing commands for cont...@bugs.debian.org:
> retitle 865777 cqrlog: FTBFS due to use of obsoleted Lazarus functions
Bug #865777 [cqrlog] cqrlog: FTBFS with Lazarus 1.8 (in experimental)
Changed Bug title to 'cqrlog: FTBFS due to use of obsoleted Lazarus functions'
from 'cqrlog: FTBFS with
Processing commands for cont...@bugs.debian.org:
> retitle 867905 cppunit: Incomplete debian/copyright?
Bug #867905 {Done: Rene Engelhard } [src:cppunit] cppunit:
Incomplete debian/copyright?
Ignoring request to change the title of bug#867905 to the same title
> thanks
Stopping
Processing commands for cont...@bugs.debian.org:
> retitle 867905 cppunit: Incomplete debian/copyright?
Bug #867905 {Done: Rene Engelhard } [src:cppunit] cppunit1.13:
Incomplete debian/copyright?
Changed Bug title to 'cppunit: Incomplete debian/copyright?' from 'cppunit1.13:
Processing commands for cont...@bugs.debian.org:
> retitle 867124 linux-image-4.9.0-3-amd64: crash if LRO / rx-mini is enabled
> with vmxnet3 on ESXi 6.5
Bug #867124 [src:linux] linux-image-4.9.0-3-amd64: Kernel will crash if LRO is
enabled
Changed Bug title to 'linux-image-4.9.0-3-amd64: crash
Processing commands for cont...@bugs.debian.org:
> retitle 867723 ejabberd broken due to upload of Erlang 20
Bug #867723 [ejabberd] ejabberd: `dpkg-reconfigure ejabberd` fails with `Can't
register admin user`
Changed Bug title to 'ejabberd broken due to upload of Erlang 20' from
'ejabberd:
Processing commands for cont...@bugs.debian.org:
> retitle 866691 linux-image-*-dbg meta-packages are uninstallable
Bug #866691 [src:linux-latest] linux-image-*-dbg metapackages are installable
Changed Bug title to 'linux-image-*-dbg meta-packages are uninstallable' from
'linux-image-*-dbg
Processing commands for cont...@bugs.debian.org:
> retitle 865549 linux: stack-guard fix incorrect
Bug #865549 [src:linux] linux-image-3.16.0-4-powerpc64le: stackguard fix
incorrect; probably causes cargo to segfault on ppc64el
Changed Bug title to 'linux: stack-guard fix incorrect' from
Processing commands for cont...@bugs.debian.org:
> retitle 865549 linux: stack-guard fix for CVE-2017-1000364 incorrect
Bug #865549 [src:linux] linux: stack-guard fix incorrect
Changed Bug title to 'linux: stack-guard fix for CVE-2017-1000364 incorrect'
from 'linux: stack-guard fix incorrect'.
>
Processing commands for cont...@bugs.debian.org:
> retitle 865413 flatpak: CVE-2017-9780: Flatpak security issue
Bug #865413 {Done: Simon McVittie } [flatpak] flatpak: Flatpak
security issue #845 involving setuid/world-writable files
Changed Bug title to 'flatpak: CVE-2017-9780:
Processing commands for cont...@bugs.debian.org:
> retitle 863290 src:linux: no warning that btrfs RAID5/6 is broken
Bug #863290 {Done: Ben Hutchings } [src:linux] src:linux:
no warning that btrfs RAID5/6 is buggered up
Changed Bug title to 'src:linux: no warning that btrfs
Processing commands for cont...@bugs.debian.org:
> retitle 863897 sudo: CVE-2017-1000368: Arbitrary terminal access due to issue
> in parsing /proc/[pid]/stat when process name contains newline
Bug #863897 [src:sudo] sudo: Further issue in parsing /proc/[pid]/stat when
process name contains
Processing commands for cont...@bugs.debian.org:
> retitle 863901 pjproject: CVE-2017-9372: AST-2017-002: Buffer Overrun in
> PJSIP transaction layer
Bug #863901 {Done: Bernhard Schmidt } [src:pjproject]
AST-2017-002: Buffer Overrun in PJSIP transaction layer
Changed Bug title
Processing commands for cont...@bugs.debian.org:
> retitle 863906 asterisk: CVE-2017-9358: AST-2017-004: Memory exhaustion on
> short SCCP packets
Bug #863906 [src:asterisk] AST-2017-004: Memory exhaustion on short SCCP packets
Changed Bug title to 'asterisk: CVE-2017-9358: AST-2017-004: Memory
Processing commands for cont...@bugs.debian.org:
> retitle 863902 pjproject: AST-2017-003: Crash in PJSIP multi-part body parser
Bug #863902 [src:pjproject] AST-2017-003: Crash in PJSIP multi-part body parser
Changed Bug title to 'pjproject: AST-2017-003: Crash in PJSIP multi-part body
parser'
Processing commands for cont...@bugs.debian.org:
> retitle 863887 debhelper: Broken handling of -indep/-arch override target in
> 10.3+
Bug #863887 [src:debhelper] debhelper: not running autoreconf anymore with
compat level 9
Changed Bug title to 'debhelper: Broken handling of -indep/-arch
Processing commands for cont...@bugs.debian.org:
> retitle 863584 zabbix: CVE-2017-2824 CVE-2017-2825
Bug #863584 [src:zabbix] CVE-2017-2824
Changed Bug title to 'zabbix: CVE-2017-2824 CVE-2017-2825' from 'CVE-2017-2824'.
> thanks
Stopping processing here.
Please contact me if you need
Processing commands for cont...@bugs.debian.org:
> retitle 863445 gajim: CVE-2016-10376: possible to remote extract plain-text
> from encrypted sessions
Bug #863445 {Done: deba...@debian.org (W. Martin Borgert)} [gajim] possible to
remote extract plain-text from encrypted sessions
Changed Bug
Processing commands for cont...@bugs.debian.org:
> retitle 850253 RM: retty; RoSponsor -- package doesn't work anymore
Bug #850253 [retty] retty doesn't work anymore
Changed Bug title to 'RM: retty; RoSponsor -- package doesn't work anymore'
from 'retty doesn't work anymore'.
> severity 850253
Processing commands for cont...@bugs.debian.org:
> retitle 863173 opendmarc: forcefully removes conffile on upgrade
Bug #863173 {Done: Scott Kitterman } [opendmarc] opendkim:
forcefully removes conffile on upgrade
Changed Bug title to 'opendmarc: forcefully removes conffile
Processing commands for cont...@bugs.debian.org:
> retitle 788350 libhttp-proxy-perl: FTBFS - proxy tests
Bug #788350 {Done: gregor herrmann } [libhttp-proxy-perl]
FTBFS - proxy tests
Changed Bug title to 'libhttp-proxy-perl: FTBFS - proxy tests' from 'FTBFS -
proxy tests'.
>
Processing commands for cont...@bugs.debian.org:
> retitle 862098 lxterminal: CVE-2016-10369: socket can be blocked by another
> user
Bug #862098 [lxterminal] lxterminal: socket can be blocked by another user
Changed Bug title to 'lxterminal: CVE-2016-10369: socket can be blocked by
another
701 - 800 of 2285 matches
Mail list logo