Bug#891266: libtest-postgresql-perl: Incomplete debian/copyright?

Source: libtest-postgresql-perl Version: 1.23-1 Severity: serious Justication: Policy 12.5 X-Debbugs-CC: Don Armstrong Hi, I just ACCEPTed libtest-postgresql-perl from NEW but noticed it was missing attribution in debian/copyright for at least Junio Hamano. :) (This is not

Processed: tagging 870421

Processing commands for cont...@bugs.debian.org: > tags 870421 + buster sid Bug #870421 [libgnome2-canvas-perl] libgnome2-canvas-perl: Remove libgnome2-canvas-perl during the Buster cycle Added tag(s) sid and buster. > thanks Stopping processing here. Please contact me if you need assistance.

Bug#889811: gosa-encrypt-password is broken since PHP7.2's php-mcrypt removal

On Thu, 15 Feb 2018 09:33:27 + Mike Gabriel wrote: > Hi, > > On Mi 07 Feb 2018 14:01:53 CET, Holger Levsen wrote: > > > control: affects -1 src:debian-edu > > # thanks for this bug report, Wolfgang! > > I just notified GONICUS about this issue and

Bug#882141: closed by Scott Kitterman <sc...@kitterman.com> (Bug#882141: fixed in postfix 3.2.4-1)

On Fri, 23 Feb 2018 10:05:55 +0100 Bastian Blank wrote: > On Fri, Feb 23, 2018 at 02:51:12AM -0500, Scott Kitterman wrote: > > > Please tell me how this would change the environment the _generator_ is > > > running in. > > Maybe I've been away from this bug too long and I need

Processed: your mail

Processing commands for cont...@bugs.debian.org: > package redshift-gtk Limiting to bugs with field 'package' containing at least one of 'redshift-gtk' Limit currently set to 'package':'redshift-gtk' > severity 883119 important Bug #883119 [redshift-gtk] redshift-gtk: No redshift icon in the

Bug#891270: ruby-fog FTBFS: Could not find 'json' (~> 2.0) - did find: [json-1.8.3.1]

Source: ruby-fog Version: 1.42.0-1 Severity: serious https://buildd.debian.org/status/fetch.php?pkg=ruby-fog=all=1.42.0-1=1519421760=0 ...

Processed: bug 888165 is forwarded to https://github.com/voxpupuli/puppet-syntax/issues/89

Processing commands for cont...@bugs.debian.org: > forwarded 888165 https://github.com/voxpupuli/puppet-syntax/issues/89 Bug #888165 [src:ruby-puppet-syntax] ruby-puppet-syntax: FTBFS on ruby2.5: OpenSSL::ASN1::ASN1Error: oid exists Set Bug forwarded-to-address to

Bug#889059: marked as done (FTBFS with 2.0.20171212)

Your message dated Sat, 24 Feb 2018 00:35:58 + with message-id and subject line Bug#889059: fixed in warzone2100 3.2.1-3 has caused the Debian Bug report #889059, regarding FTBFS with 2.0.20171212 to be marked as done. This means that you claim that the

Processed: found 843926 in 3.6.0-3

Processing commands for cont...@bugs.debian.org: > found 843926 3.6.0-3 Bug #843926 {Done: Faidon Liambotis } [libjemalloc1] jemalloc uses a hard coded page size detected during build Marked as found in versions jemalloc/3.6.0-3. > thanks Stopping processing here. Please

Bug#891278: ntpsec-ntpviz: fails to install: install: invalid user 'ntp'

Since ntpsec-ntpviz does not Depend, much less Pre-Depend, on ntpsec, the adduser from ntpsec.postinst needs to be duplicated into ntpsec-ntpviz.postinst. I’ll take care of this in a couple days. -- Richard

Processed: user debian...@lists.debian.org, found 886936 in 1.4.3.0~pre-20180217-1, usertagging 891159 ...

Processing commands for cont...@bugs.debian.org: > user debian...@lists.debian.org Setting user to debian...@lists.debian.org (was a...@debian.org). > found 886936 1.4.3.0~pre-20180217-1 Bug #886936 [icewm-lite] icewm-lite: fails to install: update-alternatives: error: alternative path

Bug#891062: marked as done (chromium: skia fails to build on arm64)

Your message dated Sat, 24 Feb 2018 05:07:18 + with message-id and subject line Bug#891062: fixed in chromium-browser 65.0.3325.74-1 has caused the Debian Bug report #891062, regarding chromium: skia fails to build on arm64 to be marked as done. This

Bug#891279: gitlab-ci-multi-runner: FTBFS on i386: cannot find package "github.com/emicklei/go-restful/swagger"

Source: gitlab-ci-multi-runner Version: 9.1.1+dfsg-1 Severity: serious Justification: fails to build from source (but built successfully in the past) Hi, gitlab-ci-multi-runner FTBFS on i386: debian/rules override_dh_auto_build make[1]: Entering directory

Bug#891276: marked as pending

tag 891276 pending thanks Hello, Bug #891276 reported by you has been fixed in the Git repository. You can see the changelog below, and you can check the diff of the fix at: https://anonscm.debian.org/cgit/pkg-remote/x2goserver.git/commit/?id=613cce6 --- commit

Processed: Bug#891276 marked as pending

Processing commands for cont...@bugs.debian.org: > tag 891276 pending Bug #891276 [x2goserver-common] x2goserver-common: fails to install: post-installation script subprocess returned error exit status 1 Added tag(s) pending. > thanks Stopping processing here. Please contact me if you need

Bug#891276: marked as done (x2goserver-common: fails to install: post-installation script subprocess returned error exit status 1)

Your message dated Sat, 24 Feb 2018 03:04:22 + with message-id and subject line Bug#891276: fixed in x2goserver 4.1.0.0-2 has caused the Debian Bug report #891276, regarding x2goserver-common: fails to install: post-installation script subprocess returned

Bug#891110: marked as done (usbauth-notifier: missing build dependency on libudev-dev)

Your message dated Sat, 24 Feb 2018 04:04:40 + with message-id and subject line Bug#891110: fixed in usbauth-notifier 1.0~git20180119-2 has caused the Debian Bug report #891110, regarding usbauth-notifier: missing build dependency on libudev-dev to be

Bug#891159: marked as done (usbauth-notifier: Install fails with "preinst: db_stop: not found" and leave package in bad inconsistent state)

Your message dated Sat, 24 Feb 2018 04:04:40 + with message-id and subject line Bug#891159: fixed in usbauth-notifier 1.0~git20180119-2 has caused the Debian Bug report #891159, regarding usbauth-notifier: Install fails with "preinst: db_stop: not found"

Bug#878633: marked as done (python-pgpy FTBFS with more than one supported Python3 version)

Your message dated Sat, 24 Feb 2018 01:05:54 + with message-id and subject line Bug#878633: fixed in python-pgpy 0.4.3-3 has caused the Debian Bug report #878633, regarding python-pgpy FTBFS with more than one supported Python3 version to be marked as

Bug#891280: python{,3}-cmor: fails to install: SyntaxError

Package: python-cmor,python3-cmor Version: 3.3.1-1 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package failed to install. As per definition of the release team this makes the package too buggy for a release, thus the

Bug#778041: marked as done (open-axiom: ftbfs with GCC-5)

Your message dated Sat, 24 Feb 2018 04:33:40 + with message-id and subject line Bug#891123: Removed package(s) from unstable has caused the Debian Bug report #778041, regarding open-axiom: ftbfs with GCC-5 to be marked as done. This means that you claim

Bug#852363: marked as done (python-pisa: xhtml2pdf throws exception (html5lib.inputstream))

Your message dated Sat, 24 Feb 2018 04:33:11 + with message-id and subject line Bug#891115: Removed package(s) from unstable has caused the Debian Bug report #852363, regarding python-pisa: xhtml2pdf throws exception (html5lib.inputstream) to be marked as

Bug#859557: marked as done (pound: Please migrate to openssl1.1 in buster)

Your message dated Sat, 24 Feb 2018 04:36:04 + with message-id and subject line Bug#891248: Removed package(s) from unstable has caused the Debian Bug report #859557, regarding pound: Please migrate to openssl1.1 in buster to be marked as done. This means

Bug#866452: marked as done (pisa: depends on obsolete python-imaging (replace with python3-pil or python-pil))

Your message dated Sat, 24 Feb 2018 04:33:11 + with message-id and subject line Bug#891115: Removed package(s) from unstable has caused the Debian Bug report #866452, regarding pisa: depends on obsolete python-imaging (replace with python3-pil or

Bug#873240: Processed: your mail

Control: severity -1 important On Sat, 2018-02-24 at 00:21 +, Debian Bug Tracking System wrote: > Bug #873240 [redshift-gtk] redshift-gtk: redshift doesn't launch > either when launching in the console or at start of computer > Bug #883119 [redshift-gtk] redshift-gtk: No redshift icon in the

Processed: Re: Processed: your mail

Processing control commands: > severity -1 important Bug #873240 [redshift-gtk] redshift-gtk: redshift doesn't launch either when launching in the console or at start of computer Bug #883119 [redshift-gtk] redshift-gtk: No redshift icon in the notification area Severity set to 'important' from

Bug#891276: x2goserver-common: fails to install: post-installation script subprocess returned error exit status 1

Package: x2goserver-common Version: 4.1.0.0-1 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package failed to install. As per definition of the release team this makes the package too buggy for a release, thus the severity.

Bug#891278: ntpsec-ntpviz: fails to install: install: invalid user 'ntp'

Package: ntpsec-ntpviz Version: 1.0.0+dfsg1-3 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package failed to install. As per definition of the release team this makes the package too buggy for a release, thus the severity.

Bug#888161: marked as done (ruby-multimap: FTBFS on ruby2.5: error: void value not ignored as it ought to be)

Your message dated Sat, 24 Feb 2018 04:30:31 + with message-id and subject line Bug#890923: Removed package(s) from unstable has caused the Debian Bug report #888161, regarding ruby-multimap: FTBFS on ruby2.5: error: void value not ignored as it ought to

Bug#885320: marked as done (dolibarr: CVE-2017-14238 CVE-2017-14239 CVE-2017-14240 CVE-2017-14241)

Your message dated Sat, 24 Feb 2018 04:28:46 + with message-id and subject line Bug#890598: Removed package(s) from unstable has caused the Debian Bug report #885320, regarding dolibarr: CVE-2017-14238 CVE-2017-14239 CVE-2017-14240 CVE-2017-14241 to be

Bug#885321: marked as done (dolibarr: CVE-2017-17897 CVE-2017-17898 CVE-2017-17899 CVE-2017-17900)

Your message dated Sat, 24 Feb 2018 04:28:46 + with message-id and subject line Bug#890598: Removed package(s) from unstable has caused the Debian Bug report #885321, regarding dolibarr: CVE-2017-17897 CVE-2017-17898 CVE-2017-17899 CVE-2017-17900 to be

Bug#891238: openam: Is opennam still maintained?

Package: openam Severity: serious Justification: MIA-team While doing housekeeping for the MIA team, I came accross this pacakge. With the last upload in 2010 and VCS-Browser and upstream hompage link dead, I wonder if this pacakge is still maintained. If the package is still maintained, please

Bug#891224: Just enabling the module makes apache children segfault

On Fri, Feb 23, 2018 at 05:55:31PM +0100, Christoph Martin wrote: > Do you happen to have mod_php enabled? mod_php is not enabled, but it could be that some other module is enabled that has the same issue with openssl. > We have seen problems together with mod_php which is falsely linked with >

Bug#891224: Just enabling the module makes apache children segfault

Hi Enrico, Am 23.02.2018 um 15:25 schrieb Enrico Zini: > Package: libapache2-mod-auth-openidc > Version: 2.1.6-1 > Severity: serious > > Hello, > > this has just been witnessed on diabelli.debian.org: > > apt install libapache2-mod-auth-openidc > a2enmod auth_openidc > systemctl restart

Bug#891242: libquazip binary-any FTBFS: mv: cannot stat 'debian/*-doc/usr/share/doc/*-dev/html': No such file or directory

Source: libquazip Version: 0.7.3-4 Severity: serious https://buildd.debian.org/status/package.php?p=libquazip=sid ... dh_installdocs find debian -name "*.md5" -delete # somehow the docs are installed to libquazip-dev which is not good since there are two -dev packages mv

Bug#889100: Trying to reproduce #889100

Hi Peter, many thanks for looking into this. I've fixed the debian-upstream version accordingly and I'm hoping the new version will be uploaded soon. Thanks again, Christoph.

Bug#884514: marked as done (ruby-fog-aws: fails to upgrade from 'sid' - trying to overwrite /usr/lib/ruby/vendor_ruby/fog/aws/service_mapper.rb)

Your message dated Fri, 23 Feb 2018 17:34:44 + with message-id and subject line Bug#884514: fixed in ruby-fog 1.42.0-1 has caused the Debian Bug report #884514, regarding ruby-fog-aws: fails to upgrade from 'sid' - trying to overwrite

Bug#891172: marked as done (libhmsbeagle: please drop the spurious B-D: libpoclu-dev)

Your message dated Fri, 23 Feb 2018 08:50:49 + with message-id and subject line Bug#891172: fixed in libhmsbeagle 2.1.2+20171110-1 has caused the Debian Bug report #891172, regarding libhmsbeagle: please drop the spurious B-D: libpoclu-dev to be marked as

Bug#890981: closing 890981

close 890981 2.7.4-7 thanks Hi, This has already been fixed in 2.7.4-7. Closing this bug Cheers, Laurent Bigonville

Processed: closing 890981

Processing commands for cont...@bugs.debian.org: > close 890981 2.7.4-7 Bug #890981 [src:nut] nut FTBFS on several architectures: invalid symbols file Marked as fixed in versions nut/2.7.4-7. Bug #890981 [src:nut] nut FTBFS on several architectures: invalid symbols file Marked Bug as done >

Bug#891222: marked as done (libquazip FTBFS with cmake 3.10)

Your message dated Fri, 23 Feb 2018 16:35:08 + with message-id and subject line Bug#891222: fixed in libquazip 0.7.3-4 has caused the Debian Bug report #891222, regarding libquazip FTBFS with cmake 3.10 to be marked as done. This means that you claim that

Processed: Re: Bug#851317: ruby-sidekiq-cron: FTBFS randomly (failing tests)

Processing control commands: > severity -1 serious Bug #851317 [src:ruby-sidekiq-cron] ruby-sidekiq-cron: FTBFS randomly (failing tests) Severity set to 'serious' from 'important' -- 851317: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851317 Debian Bug Tracking System Contact

Bug#891160: marked as done (libgaminggear FTBFS with cmake 3.10)

Your message dated Fri, 23 Feb 2018 15:06:27 + with message-id and subject line Bug#891160: fixed in libgaminggear 0.15.1-7 has caused the Debian Bug report #891160, regarding libgaminggear FTBFS with cmake 3.10 to be marked as done. This means that you

Bug#865661: marked as done (django-compat FTBFS with Django 1.11)

Your message dated Fri, 23 Feb 2018 15:04:46 + with message-id and subject line Bug#865661: fixed in django-compat 1.0.15-1 has caused the Debian Bug report #865661, regarding django-compat FTBFS with Django 1.11 to be marked as done. This means that you

Bug#891228: asterisk: CVE-2018-7286: AST-2018-005: Crash when large numbers of TCP connections are closed suddenly

Source: asterisk Version: 1:13.18.5~dfsg-1 Severity: grave Tags: patch security upstream Hi, the following vulnerability was published for asterisk. CVE-2018-7286[0]: | An issue was discovered in Asterisk through 13.19.1, 14.x through | 14.7.5, and 15.x through 15.2.1, and Certified Asterisk

Bug#880554: xen domu freezes with kernel linux-image-4.9.0-4-amd64

Hi Valentin, Christian, Finally getting back to you about the max grant frames issue. We discussed this with upstream Xen developers, and a different fix was proposed. I would really appreciate if you could test it and confirm it also solves the issue. Testing does not involve recompiling the

Bug#891249: linux: unstable kernel/data corruption on ppc64el

Source: linux Version: 4.9.82-1+deb9u2 Severity: critical Justification: causes serious data corruption DSA has installed the latest security kernel (4.9.82-1+deb9u2) on the Debian POWER8 machines running ppc64el. While they boot correctly, then programs segfault randomly (apt, sbuild, systemd,

Bug#891245: CVE-2018-6544 / CVE-2018-1000051

Package: mupdf Version: 1.11+ds1-2 Severity: grave Tags: security Please see https://security-tracker.debian.org/tracker/CVE-2018-151 https://security-tracker.debian.org/tracker/CVE-2018-6544 Cheers, Moritz

Bug#891250: ruby-fog-core: ruby-excon build dependency must be raised to (>= 0.58)

Source: ruby-fog-core Version: 1.45.0-1 Severity: serious https://buildd.debian.org/status/fetch.php?pkg=ruby-fog-core=all=1.45.0-1=1519407453=0 ...

Processed: severity of 891235 is serious, tagging 891235

Processing commands for cont...@bugs.debian.org: > severity 891235 serious Bug #891235 [src:spl-linux] spl-linux: Build failure with kernel 4.15 (timer updates) Severity set to 'serious' from 'important' > tags 891235 + upstream fixed-upstream Bug #891235 [src:spl-linux] spl-linux: Build failure

Processed: found 891227 in 1:13.14.1~dfsg-1

Processing commands for cont...@bugs.debian.org: > found 891227 1:13.14.1~dfsg-1 Bug #891227 [src:asterisk] asterisk: CVE-2018-7284: AST-2018-004: Crash when receiving SUBSCRIBE request Marked as found in versions asterisk/1:13.14.1~dfsg-1. > thanks Stopping processing here. Please contact me

Processed: found 891228 in 1:13.14.1~dfsg-1

Processing commands for cont...@bugs.debian.org: > found 891228 1:13.14.1~dfsg-1 Bug #891228 [src:asterisk] asterisk: CVE-2018-7286: AST-2018-005: Crash when large numbers of TCP connections are closed suddenly Marked as found in versions asterisk/1:13.14.1~dfsg-1. > thanks Stopping processing

Bug#891152: marked as done (drupal7: SA-CORE-2018-001: Private file access bypass)

Your message dated Fri, 23 Feb 2018 20:51:25 + with message-id and subject line Bug#891152: fixed in drupal7 7.57-1 has caused the Debian Bug report #891152, regarding drupal7: SA-CORE-2018-001: Private file access bypass to be marked as done. This means

Bug#891150: marked as done (drupal7: SA-CORE-2018-001: JavaScript cross-site scripting prevention is incomplete)

Your message dated Fri, 23 Feb 2018 20:51:25 + with message-id and subject line Bug#891150: fixed in drupal7 7.57-1 has caused the Debian Bug report #891150, regarding drupal7: SA-CORE-2018-001: JavaScript cross-site scripting prevention is incomplete to

Bug#891153: marked as done (drupal7: SA-CORE-2018-001: jQuery vulnerability with untrusted domains)

Your message dated Fri, 23 Feb 2018 20:51:25 + with message-id and subject line Bug#891153: fixed in drupal7 7.57-1 has caused the Debian Bug report #891153, regarding drupal7: SA-CORE-2018-001: jQuery vulnerability with untrusted domains to be marked as

Bug#891154: marked as done (drupal7: SA-CORE-2018-001: External link injection on 404 pages when linking to the current page)

Your message dated Fri, 23 Feb 2018 20:51:25 + with message-id and subject line Bug#891154: fixed in drupal7 7.57-1 has caused the Debian Bug report #891154, regarding drupal7: SA-CORE-2018-001: External link injection on 404 pages when linking to the

Bug#888316: marked as done (jackson-databind: CVE-2018-5968)

Your message dated Fri, 23 Feb 2018 11:34:17 + with message-id and subject line Bug#888316: fixed in jackson-databind 2.8.6-1+deb9u3 has caused the Debian Bug report #888316, regarding jackson-databind: CVE-2018-5968 to be marked as done. This means that

Bug#891209: ruby-github-api: Depends: ruby-faraday (< 0.10) but 0.13.1-2 is to be installed

Package: ruby-github-api Version: 0.14.2-1 Severity: serious Tags: buster sid The following packages have unmet dependencies: ruby-github-api : Depends: ruby-faraday (< 0.10) but 0.13.1-2 is to be installed

Processed: affects 889795

Processing commands for cont...@bugs.debian.org: > affects 889795 zfs-dkms Bug #889795 [zfs-linux] [zfs-linux] Pleaes Package 0.7.6 Bug #891026 [zfs-linux] zfs-dkms: Incompatible with kernel 4.15 Added indication that 889795 affects zfs-dkms Added indication that 891026 affects zfs-dkms > thanks

Processed: found 889795 in 0.7.5-1

Processing commands for cont...@bugs.debian.org: > found 889795 0.7.5-1 Bug #889795 [zfs-linux] [zfs-linux] Pleaes Package 0.7.6 Bug #891026 [zfs-linux] zfs-dkms: Incompatible with kernel 4.15 There is no source info for the package 'zfs-linux' at version '0.7.5-1' with architecture '' Unable to

Bug#887530: cen64-qt FTBFS with libquazip5-headers 0.7.3-3

Hi! Just as a heads-up: I'm currently in the process of handing the cen64-qt package over to Dan who is also the upstream maintainer of the software. I will be Dan's sponsor as he isn't a Debian Maintainer or Developer yet, the fixed package should be uploaded within the next few days. Thanks,

Bug#891205: assword FTBFS: assword: command not found

Source: assword Version: 0.11-1 Severity: serious https://buildd.debian.org/status/fetch.php?pkg=assword=all=0.11-1=1519380459=0 ... cli: Testing cli FAIL 5 dump non-existant db assword dump lib/test-lib.sh: line 417: assword: command not found FAIL add first entry assword

Bug#891207: simbody binary-all FTBFS: tests not run

Source: simbody Version: 3.5.4+dfsg2-1 Severity: serious https://buildd.debian.org/status/fetch.php?pkg=simbody=all=3.5.4%2Bdfsg2-1=1519350416=0 ... 0% tests passed, 101 tests failed out of 101 Total Test time (real) = 0.14 sec The following tests FAILED: 1 - BNTTest (Not Run)

Bug#883523: marked as done (xpdf: FTBFS with poppler 0.61.1)

Your message dated Fri, 23 Feb 2018 12:12:44 + with message-id and subject line Bug#883523: fixed in xpdf 3.04-6 has caused the Debian Bug report #883523, regarding xpdf: FTBFS with poppler 0.61.1 to be marked as done. This means that you claim that the

Bug#871300:

control: noutfound -1 + 8:6.9.9.34+dfsg-1

Bug#891188: blends-dev: created d/control recommends packages not in main

Hi Ole, [Ole Streicher] > It did. astro-catalogs 1.0 (included in Stretch) has "Suggests: > astrometry-data-2mass" in the package and "Depends: > astrometry-data-2mass" in the tasks page: But why did it? Was it because astrometry-data-2mass was in contrib or non-free while astro-catalogs was

Bug#891188: blends-dev: created d/control recommends packages not in main

Hi Petter, On 23.02.2018 11:29, Petter Reinholdtsen wrote: > [Ole Streicher] >> It did. astro-catalogs 1.0 (included in Stretch) has "Suggests: >> astrometry-data-2mass" in the package and "Depends: >> astrometry-data-2mass" in the tasks page: > > But why did it? Was it because

Bug#891148: marked as done (sat-xmpp-primitivus : Depends: python-urwid-satext (< 0.7~) but 0.7.0d-1 is to be installed)

Your message dated Fri, 23 Feb 2018 09:04:57 + with message-id and subject line Bug#891148: fixed in salutatoi 0.6.1.1+hg20180208-1 has caused the Debian Bug report #891148, regarding sat-xmpp-primitivus : Depends: python-urwid-satext (< 0.7~) but

Bug#882141: closed by Scott Kitterman <sc...@kitterman.com> (Bug#882141: fixed in postfix 3.2.4-1)

On Fri, Feb 23, 2018 at 02:51:12AM -0500, Scott Kitterman wrote: > > Please tell me how this would change the environment the _generator_ is > > running in. > Maybe I've been away from this bug too long and I need to go restudy how the > generator works again, but I think the generator running is

Bug#876921: python-pint FTBFS with python-numpy 1.13.1: test failures

> TypeError: unsupported operand type(s) for ** or pow(): 'numpy.ndarray' and > 'Quantity' Upstream is working on a fix, tentative ETA is this weekend. https://github.com/hgrecco/pint/issues/577#issuecomment-366917313 Christoph

Bug#891188: blends-dev: created d/control recommends packages not in main

Package: blends-dev Version: 0.6.100 Severity: serious Hi, when I run "make" on a blend's package, it puts all that is in "Recommends" in the tasks package into "Recommends" of d/control, independent of the status of the package. Examples, from debian-astro

Bug#891188: blends-dev: created d/control recommends packages not in main

[Ole Streicher] > This violates the policy in the generated blends tasks packages; > therefore the severity. > > IMO this is a regression; it worked some time ago, right? As far as I know, this has never behaved differently. I am not aware of blends-dev every looking at main/contrib status, only

Bug#891188: blends-dev: created d/control recommends packages not in main

Hi Petter, On 23.02.2018 10:56, Petter Reinholdtsen wrote: > [Ole Streicher] >> This violates the policy in the generated blends tasks packages; >> therefore the severity. >> >> IMO this is a regression; it worked some time ago, right? > > As far as I know, this has never behaved differently.

Bug#888201: marked as done (mailman: CVE-2018-5950)

Your message dated Fri, 23 Feb 2018 13:34:51 + with message-id and subject line Bug#888201: fixed in mailman 1:2.1.18-2+deb8u2 has caused the Debian Bug report #888201, regarding mailman: CVE-2018-5950 to be marked as done. This means that you claim that

Bug#891217: voms-api-java FTBFS: java.lang.NoClassDefFoundError

Source: voms-api-java Version: 3.3.0-1 Severity: serious https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/voms-api-java.html ... constituent[38]: file:/usr/share/maven/lib/commons-lang3.jar constituent[39]: file:/usr/share/maven/lib/commons-io.jar constituent[40]:

Processed: affects 890743

Processing commands for cont...@bugs.debian.org: > affects 890743 src:pajeng Bug #890743 [libfl-dev] libfl-dev: missing dependency on libfl2 Added indication that 890743 affects src:pajeng > thanks Stopping processing here. Please contact me if you need assistance. -- 890743:

Bug#891220: web2py: CVE-2016-3952 CVE-2016-3953 CVE-2016-3954 CVE-2016-3957

Source: web2py Version: 2.12.3-1 Severity: grave Tags: security upstream Hi, the following vulnerabilities were published for web2py. CVE-2016-3952[0]: | web2py before 2.14.1, when using the standalone version, allows remote | attackers to obtain environment variable values via a direct request

Processed: tagging 891220

Processing commands for cont...@bugs.debian.org: > tags 891220 + fixed-upstream Bug #891220 [src:web2py] web2py: CVE-2016-3952 CVE-2016-3953 CVE-2016-3954 CVE-2016-3957 Added tag(s) fixed-upstream. > thanks Stopping processing here. Please contact me if you need assistance. -- 891220:

Bug#891188: blends-dev: created d/control recommends packages not in main

Hi Andreas, could you Cc your mails to the bug? On 23.02.2018 13:23, Andreas Tille wrote: > Did you somehow changed /etc/blends/sources.list or are you > pointing to some different location with -s option? No. As you can see from my last mail, the list of missing or avoided packages seems to be

Bug#867404: marked as done (python3-exam: incorrect dependencies)

Your message dated Fri, 23 Feb 2018 12:47:08 + with message-id and subject line Bug#867404: fixed in exam 0.10.5-1+deb9u1 has caused the Debian Bug report #867404, regarding python3-exam: incorrect dependencies to be marked as done. This means that you

Bug#882463: marked as done (xrdp: CVE-2017-16927: Buffer-overflow in scp_v0s_accept function in session manager)

Your message dated Fri, 23 Feb 2018 12:47:10 + with message-id and subject line Bug#882463: fixed in xrdp 0.9.1-9+deb9u2 has caused the Debian Bug report #882463, regarding xrdp: CVE-2017-16927: Buffer-overflow in scp_v0s_accept function in session

Bug#879848: marked as done (cappuccino: missing dependency on gir1.2-gtk-3.0)

Your message dated Fri, 23 Feb 2018 12:47:07 + with message-id and subject line Bug#879848: fixed in cappuccino 0.5.1-6+deb9u1 has caused the Debian Bug report #879848, regarding cappuccino: missing dependency on gir1.2-gtk-3.0 to be marked as done. This

Bug#891188: blends-dev: created d/control recommends packages not in main

Hi Ole, On Fri, Feb 23, 2018 at 10:43:01AM +0100, Ole Streicher wrote: > > when I run "make" on a blend's package, it puts all that is in > "Recommends" in the tasks package into "Recommends" of d/control, > independent of the status of the package. > > Examples, from debian-astro >

Bug#891215: qmmp FTBFS: AutoMoc error

Source: qmmp Version: 1.1.10-1.1 Severity: serious Some recent change in unstable makes qmmp FTBFS: https://tests.reproducible-builds.org/debian/history/qmmp.html https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/qmmp.html ... make[4]: Entering directory

Bug#890000: marked as done (exim4: CVE-2018-6789: Buffer overflow in an utility function)

Your message dated Fri, 23 Feb 2018 13:32:42 + with message-id and subject line Bug#89: fixed in exim4 4.84.2-2+deb8u5 has caused the Debian Bug report #89, regarding exim4: CVE-2018-6789: Buffer overflow in an utility function to be marked as

Bug#867396: marked as done (python3-cerealizer: missing python3 dependency)

Your message dated Fri, 23 Feb 2018 12:47:08 + with message-id and subject line Bug#867396: fixed in cerealizer 0.8.1-1+deb9u1 has caused the Debian Bug report #867396, regarding python3-cerealizer: missing python3 dependency to be marked as done. This

Bug#891188: blends-dev: created d/control recommends packages not in main

[Andreas Tille] >> In my view, it is the responsibility of the people writing the tasks >> to decide if a package in contrib should use recommends or suggest, >> not the blends build system. > > No. Recommends need to reside in main (per policy). I believe I understand what both you and Ola

Bug#891188: blends-dev: created d/control recommends packages not in main

Hi Ole, On Fri, Feb 23, 2018 at 01:32:17PM +0100, Ole Streicher wrote: > could you Cc your mails to the bug? Ups, bounced ... > On 23.02.2018 13:23, Andreas Tille wrote: > > Did you somehow changed /etc/blends/sources.list or are you > > pointing to some different location with -s option? > >

Bug#891188: blends-dev: created d/control recommends packages not in main

On 23.02.2018 14:00, Petter Reinholdtsen wrote: > If the sources.list file do not list contrib and non-free, as any > policy compliant task setup should, then no package from contrib and > non-free will be listed as recommended in the resulting task > package. s/will/shall/ That is the problem.

Bug#888316: marked as done (jackson-databind: CVE-2018-5968)

Your message dated Fri, 23 Feb 2018 13:33:48 + with message-id and subject line Bug#888316: fixed in jackson-databind 2.4.2-2+deb8u3 has caused the Debian Bug report #888316, regarding jackson-databind: CVE-2018-5968 to be marked as done. This means that

Bug#891222: libquazip FTBFS with cmake 3.10

Source: libquazip Version: 0.7.3-3 Severity: serious Tags: patch https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/libquazip.html ... dh_install dh_install: Cannot find (any matches for) "usr/share/cmake-3.9/Modules/FindQuaZip.cmake" (tried in ., debian/tmp) dh_install:

Bug#891224: Just enabling the module makes apache children segfault

Package: libapache2-mod-auth-openidc Version: 2.1.6-1 Severity: serious Hello, this has just been witnessed on diabelli.debian.org: apt install libapache2-mod-auth-openidc a2enmod auth_openidc systemctl restart apache2 at this point, just visiting sso.debian.org causes an internal server

Bug#890927: [pkg-go] Bug#890927: golang-golang-x-tools: FTBFS and Debci failure with golang-1.10-go

On 20/02/18 19:17, Adrian Bunk wrote: > Source: golang-golang-x-tools > Version: 1:0.0~git20170707.0.bce9606b+ds-1 > Severity: serious Thanks for the report. It seems this is one of the packages that broke with the swtich to golang 1.10. I will take a look into it. -- Martín Ferrari (Tincho)