Bug#840553: libxml2: CVE-2016-4658

Source: libxml2 Version: 2.9.4+dfsg1-2 Severity: grave Tags: security upstream patch fixed-upstream Hi, the following vulnerability was published for libxml2. CVE-2016-4658[0]: | libxml2 in Apple iOS before 10, OS X before 10.12, tvOS before 10, and | watchOS before 3 allows remote attackers to

Bug#782720: one filename is not valid utf-8

Dear Maintainer, I work currently on the bug. -- Simon

Bug#840554: libxml2: CVE-2016-5131

Source: libxml2 Version: 2.9.4+dfsg1-2 Severity: grave Tags: security upstream patch fixed-upstream Hi, the following vulnerability was published for libxml2. CVE-2016-5131[0]: | Use-after-free vulnerability in libxml2 through 2.9.4, as used in | Google Chrome before 52.0.2743.82, allows remote

Bug#840382: [Pkg-samba-maint] Bug#840382: samba (2:4.4.6+dfsg-2) still crashes with libtevent0-0.31

(please keep the bug in CC). Hi, 2016-10-12 16:29 GMT+02:00 Rene Hogendoorn : [...] > Thanks for the quick response. > Please, find a backtrace below. Thanks > Note, that there are several backtraces in the file because the daemon kept > being restarted and,

Bug#837232: statsmodels: FTBFS: Tests failures

On Tue, 11 Oct 2016, Ole Streicher wrote: > DearYaroslav, > could you ensure that the "statmodels" package migrate to testing, so > that the dependent packages will not be removed? help is always welcome -- I bless you Ole for any help you could give to make that happen ;) filed an RM for

Bug#840546: marked as done (KMail: HTML injection in plain text viewer)

Your message dated Wed, 12 Oct 2016 19:19:32 + with message-id and subject line Bug#840546: fixed in kdepimlibs 4:4.14.10-6 has caused the Debian Bug report #840546, regarding KMail: HTML injection in plain text viewer to be marked as done. This means

Bug#840546: Stable Debdiff For CVE-2016-7966/kdepimlibs

B0;115;0cOn Wed, Oct 12, 2016 at 02:56:06PM -0400, Scott Kitterman wrote: > Proposed update attached. It is the exact upstream commit that resolved this > issue upstream (relevant code is unchanged from stable) and I have the fix > running locally. I do not have an example of the exploit to

Bug#840547: marked as done (KMail: HTML injection in plain text viewer)

Your message dated Wed, 12 Oct 2016 19:34:57 + with message-id and subject line Bug#840547: fixed in kcoreaddons 5.26.0-2 has caused the Debian Bug report #840547, regarding KMail: HTML injection in plain text viewer to be marked as done. This means that

Bug#840546: Stable Debdiff For CVE-2016-7966/kdepimlibs

Hi Scott, On Wed, Oct 12, 2016 at 02:56:06PM -0400, Scott Kitterman wrote: > Proposed update attached. It is the exact upstream commit that resolved this > issue upstream (relevant code is unchanged from stable) and I have the fix > running locally. I do not have an example of the exploit to

Bug#827395: get less on 49.0. at my end -

Package: firefox Version: 49.0-4 Severity: normal Dear Maintainer, I used wireshark to find out as can be seen at http://unix.stackexchange.com/questions/315315/how-to-get-list-of-sites-domains-linked-to-in-wireshark and in a new profile in firefox 49.0 the situation doesn't seem to be so dire,

Bug#837281: manila-ui: FTBFS: compressor.exceptions.OfflineGenerationError: No template loaders defined. You must set TEMPLATE_LOADERS in your settings or set 'loaders' in your TEMPLATES dictionary.

found 837281 2.5.1-0 thanks I can still reproduce the error reported by Lucas in this version. I attach a build log for 2.5.1-0. I think this could be a bug in openstack-dashboard, one of the build-depends. If this is really the case, please use reassign and affects so that we can see the bug

Processed: Re: manila-ui: FTBFS: compressor.exceptions.OfflineGenerationError: No template loaders defined. You must set TEMPLATE_LOADERS in your settings or set 'loaders' in your TEMPLATES dictionary

Processing commands for cont...@bugs.debian.org: > found 837281 2.5.1-0 Bug #837281 {Done: Thomas Goirand } [src:manila-ui] manila-ui: FTBFS: compressor.exceptions.OfflineGenerationError: No template loaders defined. You must set TEMPLATE_LOADERS in your settings or set

Processed (with 1 error): Singular4: readline migration: piping error

Processing commands for cont...@bugs.debian.org: > severity 840481 serious Bug #840481 [singular-ui] singular-ui: segfault when piping to stdin Severity set to 'serious' from 'important' > retitle 840481 Singular4: readline migration: piping error Bug #840481 [singular-ui] singular-ui: segfault

Bug#840571: python-txaio: FTBFS (ValueError: Empty module name)

Package: src:python-txaio Version: 2.5.1-2 Severity: serious Dear maintainer: I tried to build this package in stretch with "dpkg-buildpackage -A" (which is what the "Arch: all" autobuilder would do to build it) but it failed:

Bug#840572: ruby-benchmark-suite: FTBFS (failing tests)

Package: src:ruby-benchmark-suite Version: 1.0.0+git.20130122.5bded6-2 Severity: serious Dear maintainer: I tried to build this package in stretch with "dpkg-buildpackage -A" (which is what the "Arch: all" autobuilder would do to build it) but it failed:

Bug#840573: unicon: DFSG-incompatible license

Source: unicon Severity: serious Tags: upstream Justification: Policy 2.2.1 Dear Maintainer, The file unicon/ImmModules/cxterm/utils/HZtable.h has the following license: Copyright 1994,1995 by Yongguang Zhang. All Rights Reserved Permission to retain, use, modify, copy, and distribute CXTERM

Processed: Re: [Pkg-mozext-maintainers] Bug#840569: xul-ext-nosquint is dead, long live nosquint

Processing control commands: > severity -1 serious Bug #840569 [src:nosquint] xul-ext-nosquint is dead, long live nosquint Severity set to 'serious' from 'important' -- 840569: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=840569 Debian Bug Tracking System Contact ow...@bugs.debian.org with

Bug#840575: sbuild bpo: uses non-available option gnupg --pinentry-mode

Package: sbuild Version: 0.71.0-2~bpo8+1 Severity: grave Tags: patch Dear backport maintainer, Since the upload of sbuild 0.71.0-2~bpo8+1 to stable backport, running sbuild-update --keygen leads to this error message: gpg: Invalid option "--pinentry-mode" Indeed, it looks like --pinentry-mode

Bug#840546: Stable Debdiff For CVE-2016-7966/kdepimlibs

On Wednesday, October 12, 2016 09:36:13 PM Salvatore Bonaccorso wrote: > Hi Scott, > > On Wed, Oct 12, 2016 at 02:56:06PM -0400, Scott Kitterman wrote: > > Proposed update attached. It is the exact upstream commit that resolved > > this issue upstream (relevant code is unchanged from stable) and

Bug#840333: rapidjson: Includes jsonchecker testsuite, licensed under the infamous json "good not evil" license

Am Dienstag, den 11.10.2016, 10:59 +0200 schrieb Rene Engelhard: > found 840333 0.12~git20141031-3 > thanks > > Hi, > > On Mon, Oct 10, 2016 at 07:18:48PM +0200, Tobias Frost wrote: > > The library includes the jsonchecker testsuite, which is from > > json.org. > > Upstream of rapidjson mentions

Bug#840333: rapidjson: Includes jsonchecker testsuite, licensed under the infamous json "good not evil" license

>Ok, sorry for the noise, I did see it... Oops, There is a "not" missing...  -- tobi

Bug#840298: marked as done (libtevent0:i386: new version causes samba to crash)

Your message dated Wed, 12 Oct 2016 06:20:46 + with message-id and subject line Bug#840298: fixed in samba 2:4.4.6+dfsg-2 has caused the Debian Bug report #840298, regarding libtevent0:i386: new version causes samba to crash to be marked as done. This

Bug#840382: marked as done (samba: After upgrade to 2:4.4.5+dfsg-3 samba crashes)

Your message dated Wed, 12 Oct 2016 06:20:46 + with message-id and subject line Bug#840382: fixed in samba 2:4.4.6+dfsg-2 has caused the Debian Bug report #840382, regarding samba: After upgrade to 2:4.4.5+dfsg-3 samba crashes to be marked as done. This

Bug#840488: bareos: Bareos crashes on "status dir"

Package: bareos Version: 15.2.4-1+b1 Severity: grave Justification: renders package unusable Dear Maintainer, * What led up to the situation? After upgrading Bareos on my Stretch machine here im having troubles with Bareos. After this update Bareos crashes when im trying to get the status

Bug#840492: sexplib310: no longer builds libsexplib-camlp4-dev

Source: sexplib310 Version: 113.33.03-3 Severity: serious Hi, Your package no longer builds libsexplib-camlp4-dev, and the new libsexplib-ocaml-dev doesn't provide it. This would be fine if it weren't for the number of reverse dependencies that build-depend on it: * source package sexplib310

Bug#840494: mono: FTBFS on mipsel: Assertion: should not be reached at mini-mips.c:2229

Source: mono Version: 4.6.1.3+dfsg-4 Severity: serious Your package failed to build on mipsel: chmod +x _tmpinst/bin/al if test -w /«BUILDDIR»/mono-4.6.1.3+dfsg/mcs; then :; else chmod -R +w /«BUILDDIR»/mono-4.6.1.3+dfsg/mcs; fi cd /«BUILDDIR»/mono-4.6.1.3+dfsg/mcs && /usr/bin/make

Bug#839767: marked as done (ncmpcpp fails to start due to undefined symbol in binary)

Your message dated Wed, 12 Oct 2016 13:53:46 +0200 with message-id <87bmyp6awl@anonymous.siccegge.de> and subject line Re: Bug#839767: ncmpcpp fails to start due to undefined symbol in binary has caused the Debian Bug report #839767, regarding ncmpcpp fails to start due to undefined symbol in

Bug#839767: ncmpcpp fails to start due to undefined symbol in binary

Hi! Nick Black writes: > I rebuilt the source package against current libtag, and it works once > more. Which is exactly what happened in unstable ~1 day ago as part of the transition. So this seems to be a totally normal unstable disturbance and not a bug.

Bug#840382: samba (2:4.4.6+dfsg-2) still crashes with libtevent0-0.31

samba (2:4.4.6+dfsg-2) still crashes with libtevent0-31; only downgrading to libtevent0-0.28 solves the crashes. Regards, Rene

Bug#836352: Scrollbar can't go to the bottom with a theme other than Adwaita

Control: severity -1 important On Fr 02 Sep 2016 05:15:40 CEST, Raphaël Halimi wrote: Package: caja Version: 1.14.2-1 Severity: grave This bug certainly has the same root cause as #826261, as it has the same symptoms: it doesn't appear with Adwaita theme, and it only appear when the window

Bug#840434: marked as done (ffmpeg: CVE-2016-7122 CVE-2016-7450 CVE-2016-7502 CVE-2016-7555 CVE-2016-7562 CVE-2016-7785 CVE-2016-7905)

Your message dated Wed, 12 Oct 2016 11:21:51 + with message-id and subject line Bug#840434: fixed in ffmpeg 7:3.1.4-1 has caused the Debian Bug report #840434, regarding ffmpeg: CVE-2016-7122 CVE-2016-7450 CVE-2016-7502 CVE-2016-7555 CVE-2016-7562

Processed: Re: Bug#836352: Scrollbar can't go to the bottom with a theme other than Adwaita

Processing control commands: > severity -1 important Bug #836352 [caja] Scrollbar can't go to the bottom with a theme other than Adwaita Severity set to 'important' from 'grave' -- 836352: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836352 Debian Bug Tracking System Contact

Bug#840382: [Pkg-samba-maint] Bug#840382: samba (2:4.4.6+dfsg-2) still crashes with libtevent0-0.31

Hi, 2016-10-12 12:26 GMT+02:00 Rene Hogendoorn : > samba (2:4.4.6+dfsg-2) still crashes with libtevent0-31; only downgrading to > libtevent0-0.28 solves the crashes. > Regards, Can you provide the backtrace? Thanks. -- Mathieu

Bug#840346: qjoypad: FTBFS: install: cannot create regular file '/usr/bin/qjoypad': Permission denied

On Wed, 12 Oct 2016 08:56:04 +0200, Stephen Kitt wrote: > On Mon, 10 Oct 2016 20:12:05 +0100, Chris Lamb wrote: > > qjoypad fails to build from source in unstable/amd64: > > Thanks for filing this, the following patch fixes the build: > > ---

Bug#840516: doesn't work with django 1.10

Package: graphite-web Version: 0.9.15+debian-2 Severity: serious Hi Jonas, graphite-web doesn't work with django 1.10 anymore, can you please upgrade? Regards, Daniel

Processed: Re: FTBFS under Django 1.10

Processing commands for cont...@bugs.debian.org: > tag 828673 fixed-upstream Bug #828673 [src:python-django-tagging] FTBFS under Django 1.10 Added tag(s) fixed-upstream. > thanks Stopping processing here. Please contact me if you need assistance. -- 828673:

Bug#828673: FTBFS under Django 1.10

tag 828673 fixed-upstream thanks Hi, the current upstream version (0.4.5) works fine with django 1.10. Regards, Daniel

Bug#765473: marked as done (dovecot-common: Dovecot (previous to V2.1) doesn't allow to disable SSLv3 which is bad: CVE-2014-3566)

Your message dated Wed, 12 Oct 2016 17:15:49 +0300 with message-id <20161012141549.3aaxgx7vs42pt...@bunk.spdns.de> and subject line Already fixed in oldstable has caused the Debian Bug report #765473, regarding dovecot-common: Dovecot (previous to V2.1) doesn't allow to disable SSLv3 which is

Bug#735932: marked as done ([grub2-common] Computer does not boot)

Your message dated Wed, 12 Oct 2016 18:15:18 +0300 with message-id <20161012151518.aogpir6q52ndb...@bunk.spdns.de> and subject line CLosing due to lack of updates from the submitter has caused the Debian Bug report #735932, regarding [grub2-common] Computer does not boot to be marked as done.

Bug#831039: marked as done (totem crash on startup, can't start it)

Your message dated Wed, 12 Oct 2016 10:32:54 -0500 with message-id <20161012153254.2jnruqnu7spw7...@knives.aquaticape.us> and subject line Re: Bug#831039: totem crash on startup, can't start it has caused the Debian Bug report #831039, regarding totem crash on startup, can't start it to be marked

Bug#838792: openmw: FTBFS on armhf: error: conflicting declaration for GLsizeiptr

Hello everyone, this is a follow-up email because while the bug was closed and OpenMW compiles (and runs) on armhf, what is rendered to the screen via OSG-3.4 is everything but pretty. The short term solution is to disable building OpenMW on armhf and rebuild any builds still online. I have more

Bug#840417: pdf2htmlex: FTBFS with new release of fontforge

Hi, On Tue, 11 Oct 2016 17:55:28 +0530 Vasudev Kamath wrote: > pdf2htmlex FTBFS with new version of fontforge (currently in experimental). > Below is the snippet of log showing the error. > > [...] > /usr/bin/cc -I/<>/pdf2htmlex-0.14.6+ds/src -I/usr/include/poppler >

Bug#840435: marked as done (CVE-2016-7906)

Your message dated Wed, 12 Oct 2016 12:34:26 + with message-id and subject line Bug#840435: fixed in imagemagick 8:6.9.6.2+dfsg-1 has caused the Debian Bug report #840435, regarding CVE-2016-7906 to be marked as done. This means that you claim that the

Bug#839767: ncmpcpp fails to start due to undefined symbol in binary

Control: reopen -1 Control: reassign -1 libtag1v5 Control: found -1 1.11+dfsg.1-0.1 Christoph Egger writes: > Which is exactly what happened in unstable ~1 day ago as part of the > transition. So this seems to be a totally normal unstable disturbance > and not a bug.

Bug#840543: node-ebnf-parser: FTBFS (Attempt to unlock test@*, which hasn't been locked)

clone git://github.com/zaach/jison.git undefined npm ERR! not found: git npm ERR! npm ERR! Failed using git. npm ERR! This is most likely not a problem with npm itself. npm ERR! Please check if you have git installed and in your PATH. npm ERR! System Linux 4.7.0-1-amd64 npm ERR! command "/usr/bi

Bug#839795: Acknowledgement (FTBFS, needs to be updated for liblognorm v2 and libfastjson)

Hi, I did a NMU to close this bug. I will do an upload DELAY/5 today. debian/changelog: sagan (1.1.2-0.1) unstable; urgency=medium . * Non-maintainer upload. * New upstream release. (Closes: #839795). * debian/control: - debhelper 10. - lsb-base package added to

Bug#776512: marked as done (function InsertData() is defined twice: installation is broken)

Your message dated Wed, 12 Oct 2016 17:11:18 +0300 with message-id <20161012141118.yeuqmvqqrvemz...@bunk.spdns.de> and subject line Closing Mantis bugs has caused the Debian Bug report #776512, regarding function InsertData() is defined twice: installation is broken to be marked as done. This

Processed: Re: Bug#839118: ghostscript: CVE-2013-5653: getenv and filenameforall ignore -dSAFER

Processing control commands: > severity -1 serious Bug #839118 [ghostscript] ghostscript: CVE-2013-5653: getenv and filenameforall ignore -dSAFER Severity set to 'serious' from 'normal' -- 839118: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=839118 Debian Bug Tracking System Contact

Bug#746005: Status of lilypond

On Mon, 10 Oct 2016, Antonio Ospite wrote: > I tried compiling lilypond with guile-2.0 from Debian unstable, and > building the binaries works, and some simple input file worked too. Yes, but it fails for more complicated input files, as evidenced by the failure to build the documentation. I'm

Bug#837117: marked as done (libscrypt0: Library does not appear to be working)

Your message dated Wed, 12 Oct 2016 21:47:26 +0900 with message-id <20161012124726.GC22759@somnambulist.local> and subject line This bug does not exist in unstable has caused the Debian Bug report #837117, regarding libscrypt0: Library does not appear to be working to be marked as done. This

Bug#780875: marked as done (mantis: MantisBT <1.2.19 multiple vulnerabilities (Access control bypass/XSS/SQL injection/etc))

Your message dated Wed, 12 Oct 2016 17:11:18 +0300 with message-id <20161012141118.yeuqmvqqrvemz...@bunk.spdns.de> and subject line Closing Mantis bugs has caused the Debian Bug report #780875, regarding mantis: MantisBT <1.2.19 multiple vulnerabilities (Access control bypass/XSS/SQL

Bug#840352: marked as done (non-free license of debian/*)

Your message dated Wed, 12 Oct 2016 20:58:11 +0900 with message-id <20161012115811.GA22759@somnambulist.local> and subject line Issue corrected in clod/1.0.2-1 has caused the Debian Bug report #840352, regarding non-free license of debian/* to be marked as done. This means that you claim that the

Processed (with 5 errors): This bug is not found in 1.21-3

Processing commands for cont...@bugs.debian.org: > notfound 837117 1.21-3 Bug #837117 [libscrypt0] libscrypt0: Library does not appear to be working Ignoring request to alter found versions of bug #837117 to the same values previously set > Hi, Unknown command or malformed arguments to command.

Bug#837117: This bug is not found in 1.21-3

notfound 837117 1.21-3 Hi, I spent some time today checking, and 1.21-3 's source doesn't differ materially from the SHA presented by the reporter. I can confirm that the bug is definitely present in the version in Jessie, but unstable is clear. If I have some time, I'll look at what is

Bug#840437: marked as done (CVE-2016-7799 mogrify global buffer overflow)

Your message dated Wed, 12 Oct 2016 12:34:26 + with message-id and subject line Bug#840437: fixed in imagemagick 8:6.9.6.2+dfsg-1 has caused the Debian Bug report #840437, regarding CVE-2016-7799 mogrify global buffer overflow to be marked as done. This

Processed: Re: Bug#839767: ncmpcpp fails to start due to undefined symbol in binary

Processing control commands: > reopen -1 Bug #839767 {Done: Christoph Egger } [ncmpcpp] ncmpcpp fails to start due to undefined symbol in binary Bug reopened Ignoring request to alter fixed versions of bug #839767 to the same values previously set > reassign -1 libtag1v5

Bug#840393: [Pkg-fonts-devel] Bug#840393: mensis: FTBFS with newly released fontforge

On Tue, 11 Oct 2016 13:12:54 +0530 Vasudev Kamath wrote: > mensis fails to build from source with fontforge version 20161005 from > experimental. It fails in the configure step with following error > > checking fontforge/basics.h usability... no > checking

Processed: Re: Bug#840346: qjoypad: FTBFS: install: cannot create regular file '/usr/bin/qjoypad': Permission denied

Processing control commands: > tag -1 + patch Bug #840346 [src:qjoypad] qjoypad: FTBFS: install: cannot create regular file '/usr/bin/qjoypad': Permission denied Added tag(s) patch. -- 840346: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=840346 Debian Bug Tracking System Contact

Bug#840346: qjoypad: FTBFS: install: cannot create regular file '/usr/bin/qjoypad': Permission denied

Control: tag -1 + patch On Mon, 10 Oct 2016 20:12:05 +0100, Chris Lamb wrote: > qjoypad fails to build from source in unstable/amd64: Thanks for filing this, the following patch fixes the build: --- debian/rules.orig 2016-10-12 08:50:16.827628161 +0200 +++ debian/rules

Bug#839749: marked as done (mahimahi: FTBFS (undefined reference to symbol 'xcb_create_pixmap_checked'))

Your message dated Wed, 12 Oct 2016 07:03:39 + with message-id and subject line Bug#839749: fixed in mahimahi 0.95-1 has caused the Debian Bug report #839749, regarding mahimahi: FTBFS (undefined reference to symbol 'xcb_create_pixmap_checked') to be

Processed: tagging 840346

Processing commands for cont...@bugs.debian.org: > tags 840346 + pending Bug #840346 [src:qjoypad] qjoypad: FTBFS: install: cannot create regular file '/usr/bin/qjoypad': Permission denied Added tag(s) pending. > thanks Stopping processing here. Please contact me if you need assistance. --

Processed: cloning 840546

Processing commands for cont...@bugs.debian.org: > clone 840546 -1 Bug #840546 [kdepimlibs] KMail: HTML injection in plain text viewer Bug 840546 cloned as bug 840547 > reassign -1 kcoreaddons 5.0 Bug #840547 [kdepimlibs] KMail: HTML injection in plain text viewer Bug reassigned from package

Processed: Re: [Pkg-fonts-devel] pdf2htmlex: FTBFS with new release of fontforge

Processing control commands: > reassign -1 libfontforge-dev Bug #840417 [src:pdf2htmlex] pdf2htmlex: FTBFS with new release of fontforge Bug reassigned from package 'src:pdf2htmlex' to 'libfontforge-dev'. Ignoring request to alter found versions of bug #840417 to the same values previously set

Processed: tagging 840547

Processing commands for cont...@bugs.debian.org: > tags 840547 - patch Bug #840547 [kcoreaddons] KMail: HTML injection in plain text viewer Removed tag(s) patch. > thanks Stopping processing here. Please contact me if you need assistance. -- 840547:

Bug#840393: [Pkg-fonts-devel] Bug#840393: Bug#840393: mensis: FTBFS with newly released fontforge

Hello Yamane San, Hideki Yamane writes: > On Tue, 11 Oct 2016 13:12:54 +0530 > Vasudev Kamath wrote: >> mensis fails to build from source with fontforge version 20161005 from >> experimental. It fails in the configure step with following error >>

Bug#839260: marked as done (ghostscript: CVE-2016-7976: various userparams allow %pipe% in paths, allowing remote shell command execution)

Your message dated Wed, 12 Oct 2016 22:17:11 + with message-id and subject line Bug#839260: fixed in ghostscript 9.06~dfsg-2+deb8u2 has caused the Debian Bug report #839260, regarding ghostscript: CVE-2016-7976: various userparams allow %pipe% in paths,

Bug#839845: marked as done (ghostscript: CVE-2016-7978: reference leak in .setdevice allows use-after-free and remote code execution)

Your message dated Wed, 12 Oct 2016 22:17:11 + with message-id and subject line Bug#839845: fixed in ghostscript 9.06~dfsg-2+deb8u2 has caused the Debian Bug report #839845, regarding ghostscript: CVE-2016-7978: reference leak in .setdevice allows

Bug#838960: marked as done (mpg123: CVE-2016-1000247: denial of service with crafted id3v2 tags)

Your message dated Wed, 12 Oct 2016 22:17:49 + with message-id and subject line Bug#838960: fixed in mpg123 1.20.1-2+deb8u1 has caused the Debian Bug report #838960, regarding mpg123: CVE-2016-1000247: denial of service with crafted id3v2 tags to be marked

Bug#834685: python-reno: FTBFS in testing (failing tests)

found 834685 1.3.0-5 thanks Still happening in this version. If you need a build log, just say so, but this was already diagnosed in the past as indicated by the changelog. Now the changelog entry for 1.3.0-4 has disappeared (?), and the changelog entry for 1.3.0-5 says again "Added gnupg as

Bug#839481: marked as done (openafs: FTBFS: Tests failures)

Your message dated Wed, 12 Oct 2016 22:35:11 + with message-id and subject line Bug#839481: fixed in openafs 1.6.18.3-3 has caused the Debian Bug report #839481, regarding openafs: FTBFS: Tests failures to be marked as done. This means that you claim that

Bug#835360: rkt: FTBFS on several architectures

On Tuesday, 11 October 2016 3:41:59 PM AEDT Jonathan Boulle wrote: > Dmitry, could you point me towards the "golang-github-appc-spec" 0.8.7 > FTBFS? Thank you for following our progress, Jonathan. This problem happened on my dev box when I tried to prepare new upload of appc-spec:

Bug#835360: rkt: FTBFS on several architectures

On Tuesday, 11 October 2016 8:03:28 PM AEDT Andreas Henriksson wrote: > Excuse me for being very naive here, but this is my first encounter > with (packaging) go. > > The attached patch seems to make the appc-spec package build for me Awesome. Thank you very much Andreas. On my own I could not

Bug#831966: marked as done (imediff2: FTBFS with dpkg-buildpackage -A: dpkg-genchanges: error: binary build with no binary artifacts found; cannot distribute)

Your message dated Wed, 12 Oct 2016 22:25:32 + with message-id and subject line Bug#831966: fixed in imediff2 1.1.2-3 has caused the Debian Bug report #831966, regarding imediff2: FTBFS with dpkg-buildpackage -A: dpkg-genchanges: error: binary build with

Bug#840355: Failed to create spool file /var/spool/exim4//input//...-D: Permission denied

On Tue, 2016-10-11 at 04:38 +0800, 積丹尼 Dan Jacobson wrote: > Can't send mail, because: > 2016-10-11 04:30:53 Failed to create spool file > /var/spool/exim4//input//1bthDp-0002gq-Fy-D: Permission denied That looks awfully similar to

Bug#840575: marked as done (sbuild bpo: uses non-available option gnupg --pinentry-mode)

Your message dated Wed, 12 Oct 2016 23:07:39 +0100 with message-id <20161012220739.GA69478@Jamess-MacBook.local> and subject line Re: Bug#840575: sbuild bpo: uses non-available option gnupg --pinentry-mode has caused the Debian Bug report #840575, regarding sbuild bpo: uses non-available option

Processed: retitle 840229 to texlive-latex-extra should Breaks: dblatex (<< 0.3.9-1~) ...

Processing commands for cont...@bugs.debian.org: > retitle 840229 texlive-latex-extra should Breaks: dblatex (<< 0.3.9-1~) Bug #840229 [texlive-latex-extra] texlive-latex-extra should Breaks: dblatex (<< 0.3.8-2~) Changed Bug title to 'texlive-latex-extra should Breaks: dblatex (<< 0.3.9-1~)'

Bug#840451: marked as done (ghostscript: CVE-2016-8602)

Your message dated Wed, 12 Oct 2016 22:17:31 + with message-id and subject line Bug#840451: fixed in ghostscript 9.06~dfsg-2+deb8u3 has caused the Debian Bug report #840451, regarding ghostscript: CVE-2016-8602 to be marked as done. This means that you

Processed: Re: python-reno: FTBFS in testing (failing tests)

Processing commands for cont...@bugs.debian.org: > found 834685 1.3.0-5 Bug #834685 {Done: Thomas Goirand } [src:python-reno] python-reno: FTBFS in testing (failing tests) Marked as found in versions python-reno/1.3.0-5; no longer marked as fixed in versions python-reno/1.3.0-5

Bug#839846: marked as done (ghostscript: CVE-2016-7979: type confusion in .initialize_dsc_parser allows remote code execution)

Your message dated Wed, 12 Oct 2016 22:17:11 + with message-id and subject line Bug#839846: fixed in ghostscript 9.06~dfsg-2+deb8u2 has caused the Debian Bug report #839846, regarding ghostscript: CVE-2016-7979: type confusion in .initialize_dsc_parser

Bug#839118: marked as done (ghostscript: CVE-2013-5653: getenv and filenameforall ignore -dSAFER)

Your message dated Wed, 12 Oct 2016 22:17:11 + with message-id and subject line Bug#839118: fixed in ghostscript 9.06~dfsg-2+deb8u2 has caused the Debian Bug report #839118, regarding ghostscript: CVE-2013-5653: getenv and filenameforall ignore -dSAFER to

Bug#839841: marked as done (ghostscript: CVE-2016-7977: .libfile doesn't check PermitFileReading array, allowing remote file disclosure)

Your message dated Wed, 12 Oct 2016 22:17:11 + with message-id and subject line Bug#839841: fixed in ghostscript 9.06~dfsg-2+deb8u2 has caused the Debian Bug report #839841, regarding ghostscript: CVE-2016-7977: .libfile doesn't check PermitFileReading

Bug#840581: vim-conque: ConqueTerm doesn't appear to load into vim

Package: vim-conque Version: 2.3-1 Severity: grave Justification: renders package unusable Dear Maintainer, Having installed the vim-conque package, I start vim: $ vim and then try to start bash within it: :ConqueTerm bash and just get this error: E492: Not an editor command:

Bug#840355: Failed to create spool file /var/spool/exim4//input//...-D: Permission denied

Yes. Glad they found the bug.

Bug#832966: marked as done (totem no longer start)

Your message dated Wed, 12 Oct 2016 10:32:54 -0500 with message-id <20161012153254.2jnruqnu7spw7...@knives.aquaticape.us> and subject line Re: Bug#831039: totem crash on startup, can't start it has caused the Debian Bug report #831039, regarding totem no longer start to be marked as done. This

Bug#840417: [Pkg-fonts-devel] pdf2htmlex: FTBFS with new release of fontforge

Control: reassign -1 libfontforge-dev Control: forwarded -1 https://github.com/fontforge/fontforge/issues/2907 Johannes Schauer writes: > Hi, > > On Tue, 11 Oct 2016 17:55:28 +0530 Vasudev Kamath > wrote: >> pdf2htmlex FTBFS with new version of

Processed: found 840547 in 5.7.0-1

Processing commands for cont...@bugs.debian.org: > found 840547 5.7.0-1 Bug #840547 [kcoreaddons] KMail: HTML injection in plain text viewer There is no source info for the package 'kcoreaddons' at version '5.7.0-1' with architecture '' Unable to make a source version for version '5.7.0-1'

Bug#839308: marked as done (libgee-0.8: FTBFS: lightmapfuture.vala:44.2-44.23: error: overriding method `Gee.LightMapFuture.wait_until' is incompatible with base method `Gee.Future.wait_until': incomp

Your message dated Wed, 12 Oct 2016 17:42:51 + with message-id and subject line Bug#839308: fixed in libgee-0.8 0.18.1-1 has caused the Debian Bug report #839308, regarding libgee-0.8: FTBFS: lightmapfuture.vala:44.2-44.23: error: overriding method

Bug#840355: Failed to create spool file /var/spool/exim4//input//...-D: Permission denied

On 2016-10-11 積丹尼 Dan Jacobson wrote: > > "AM" == Andreas Metzler writes: > AM> Is this a fresh installation or an upgrade? > Upgrade from > Installed: 4.88~RC1-1 to > Candidate: 4.88~RC2-1 [...] > so maybe the problem is with the process

Processed: tagging 840547

Processing commands for cont...@bugs.debian.org: > tags 840547 + pending Bug #840547 [kcoreaddons] KMail: HTML injection in plain text viewer Added tag(s) pending. > thanks Stopping processing here. Please contact me if you need assistance. -- 840547:

Bug#834186: cpp-netlib: FTBFS: 94% tests passed, 1 tests failed out of 17

Control: tags -1 + patch The same behavior is noticed on other architectures as well: alpha, arm64, kfreebsd-amd64, kfreebsd-i386, mips64el, s390x, sparc64. https://buildd.debian.org/status/logs.php?pkg=cpp-netlib=0.11.2%2Bdfsg1-2%2Bb2=sid I took a look on github repository and this test has

Processed: RE: Bug#834186:cpp-netlib: FTBFS: 94% tests passed, 1 tests failed out of 17

Processing control commands: > tags -1 + patch Bug #834186 [src:cpp-netlib] cpp-netlib: FTBFS: 94% tests passed, 1 tests failed out of 17 Added tag(s) patch. -- 834186: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=834186 Debian Bug Tracking System Contact ow...@bugs.debian.org with

Bug#840546: KMail: HTML injection in plain text viewer

Package: kdepimlibs Version: 4:4.4.5-2 Severity: grave Tags: security patch upstream Justification: user security hole KDE Project Security Advisory = Title: KMail: HTML injection in plain text viewer Risk Rating:Important CVE:CVE-2016-7966

Bug#817742: yaret: Removal of debhelper compat 4

Control: tags 817742 patch Control: tags 817742 pending Hi, I uploaded a NMU to 10-day/delay queue. Feel free to cancel this upload if needed. The debian/changelog is: yaret (2.1.0-5.1) unstable; urgency=medium * Non-maintainer upload. * Bumped DH level to 10. (Closes: #817742) * Used

Processed: Re: yaret: Removal of debhelper compat 4

Processing control commands: > tags 817742 patch Bug #817742 [src:yaret] yaret: Removal of debhelper compat 4 Ignoring request to alter tags of bug #817742 to the same tags previously set > tags 817742 pending Bug #817742 [src:yaret] yaret: Removal of debhelper compat 4 Added tag(s) pending. --

Bug#812948: marked as done (libbson-doc: contains manpages with generic names: index(3), installing(3), errors(3))

Your message dated Wed, 12 Oct 2016 22:00:26 -0400 with message-id and subject line has caused the Debian Bug report #812948, regarding libbson-doc: contains manpages with generic names: index(3), installing(3), errors(3) to

Bug#812949: marked as done (libmongoc-doc: contains manpages with generic names: index(3), installing(3))

Your message dated Wed, 12 Oct 2016 22:00:26 -0400 with message-id and subject line has caused the Debian Bug report #812949, regarding libmongoc-doc: contains manpages with generic names: index(3), installing(3) to be marked

Processed: xkbset: diff for NMU version 0.5-5.2

Processing control commands: > tags 817733 + patch Bug #817733 [src:xkbset] xkbset: Removal of debhelper compat 4 Added tag(s) patch. > tags 817733 + pending Bug #817733 [src:xkbset] xkbset: Removal of debhelper compat 4 Added tag(s) pending. -- 817733:

Bug#817733: xkbset: diff for NMU version 0.5-5.2

Control: tags 817733 + patch Control: tags 817733 + pending Dear maintainer, I've prepared an NMU for xkbset (versioned as 0.5-5.2) and uploaded it to DELAYED/10. Please feel free to tell me if I should delay it longer. Regards, Eriberto diff -u xkbset-0.5/debian/changelog

Bug#817627: poster: diff for NMU version 1:20050907-1.1

Control: tags 817627 + patch Control: tags 817627 + pending Dear maintainer, I've prepared an NMU for poster (versioned as 1:20050907-1.1) and uploaded it to DELAYED/10. Please feel free to tell me if I should delay it longer. Regards, Eriberto diff -u poster-20050907/debian/changelog

Processed: poster: diff for NMU version 1:20050907-1.1

Processing control commands: > tags 817627 + patch Bug #817627 [src:poster] poster: Removal of debhelper compat 4 Added tag(s) patch. > tags 817627 + pending Bug #817627 [src:poster] poster: Removal of debhelper compat 4 Added tag(s) pending. -- 817627:

  1   2   >