Le 21 mai 2019 21:40:35 GMT+02:00, Guilhem Moulin a écrit :
>Hi Xavier,
>
> # Load session data into object
> if ($data) {
>+if ( $self->kind ) {
>+unless ( $data->{_session_kind} eq $self->kind ) {
>+$self->error("Session kind mistmatch");
>+
Hi,
On Mon, 6 May 2019 12:08:03 +0100 "Rebecca N. Palmer"
wrote:
> Control: forcemerge -1 926193
> Control: tags -1 upstream patch
> Control: retitle -1 linux-image-4.19.0-4-amd64: [regression] No graphics on
> some IvyBridge / Haswell systems
> Control: forwarded -1
Processing commands for cont...@bugs.debian.org:
> forwarded 926193 https://bugs.freedesktop.org/show_bug.cgi?id=109806,
> merged-upstream: https://bugs.freedesktop.org/show_bug.cgi?id=107100, moved
> to: https://gitlab.freedesktop.org/xorg/xserver/issues/542
Bug #926193 [src:linux]
Package: wordplay
Version: 7.22-19
Severity: serious
Justification: Policy 2.2.1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
the license is nondfsg compatible
- -- System Information:
Debian Release: 10.0
APT prefers testing
APT policy: (990, 'testing'), (400, 'unstable')
Architecture:
Processing commands for cont...@bugs.debian.org:
> forwarded 926193 "https://bugs.freedesktop.org/show_bug.cgi?id=109806,
> merged-upstream: https://bugs.freedesktop.org/show_bug.cgi?id=107100, moved
> to: https://gitlab.freedesktop.org/xorg/xserver/issues/542;
Bug #926193 [src:linux]
Processing commands for cont...@bugs.debian.org:
> forwarded 926193 https://bugs.freedesktop.org/show_bug.cgi?id=109806,
Bug #926193 [src:linux] linux-image-4.19.0-4-amd64: [regression] No graphics on
some IvyBridge / Haswell systems
Bug #92 [src:linux] linux-image-4.19.0-4-amd64:
On Mon, May 20, 2019 at 09:53:27PM +0200, Giovanni Mascellani wrote:
> Upstream confirms that an update that handles 32 bit archs is not on the
> radar soon. I don't know what it is the best way forward now, but if it
> is decided that it is ok the ignore the error for 32 bit archs, then I
> can
>How about removing all php5-packages or at least the php5-mysql package from
>your system?
We had to migrate a none php7 compatible 3rd party application first, therefore
the test took a little bit longer.
I can finally confirm that removing all php5 packages did solve the problem.
Thanks!
Your message dated Tue, 21 May 2019 20:48:35 +
with message-id
and subject line Bug#897109: fixed in fastqc 0.11.8+dfsg-2
has caused the Debian Bug report #897109,
regarding fastqc: autopkgtest fails with new version while succeeded in the
past; htsjdk.samtools.util.RuntimeIOException:
Your message dated Tue, 21 May 2019 20:48:35 +
with message-id
and subject line Bug#897109: fixed in fastqc 0.11.8+dfsg-2
has caused the Debian Bug report #897109,
regarding fastqc: autopkgtest regression
to be marked as done.
This means that you claim that the problem has been dealt with.
Your message dated Tue, 21 May 2019 20:40:12 +
with message-id
and subject line Bug#929232: fixed in flycheck 31-3
has caused the Debian Bug report #929232,
regarding flycheck: FTBFS (ValueError: Invalid placeholder in string)
to be marked as done.
This means that you claim that the problem
On dinsdag 21 mei 2019 21:20:18 CEST Diederik de Haas wrote:
> What was the reason for the test?
FTR: before I did the test I had already downgraded firmware-amd-graphics and
consequently also firmware-linux-nonfree and firmware-misc-nonfree back to
version 20190114-1
signature.asc
Source: libvirt
Version: 5.0.0-2
Severity: grave
Tags: security upstream
Control: found -1 5.0.0-2.1
Control: found -1 5.2.0-2
Hi,
The following vulnerability was published for libvirt.
CVE-2019-10132[0]:
Insecure permissions for systemd socket for virtlockd/virtlogd
If you fix the
Processing control commands:
> found -1 5.0.0-2.1
Bug #929334 [src:libvirt] libvirt: CVE-2019-10132: Insecure permissions for
systemd socket for virtlockd/virtlogd
Marked as found in versions libvirt/5.0.0-2.1.
> found -1 5.2.0-2
Bug #929334 [src:libvirt] libvirt: CVE-2019-10132: Insecure
On dinsdag 21 mei 2019 21:20:18 CEST Diederik de Haas wrote:
> Checking 'git log' for that specific file before I did the test made me
> conclude it wouldn't make a difference with packaged version 20190114-1
> (but did the test anyway as requested).
To verify whether that single file wasn't an
On Mon, May 20, 2019 at 07:03:04PM +0200, Daniel Baumann wrote:
> Hi Moritz,
>
> sorry for the late response, your mail slipped through the cracks on my
> end.. :(
>
> re adoption: removal request sounds fine, I currently have not enough
> time to take on more packages in Debian.
Ack, I just
Source: ironic-inspector
Version: 8.0.0-2
Severity: grave
Tags: security upstream
Hi,
The following vulnerability was published for ironic-inspector.
CVE-2019-10141[0]:
SQL Injection vulnerability when receiving introspection data
If you fix the vulnerability please also make sure to include
Processing commands for cont...@bugs.debian.org:
> # common anchestor for BTS graph
> found 929297 1.2.20130907-4
Bug #929297 {Done: Salvatore Bonaccorso } [minissdpd]
minissdpd: CVE-2019-12106
Marked as found in versions minissdpd/1.2.20130907-4.
> thanks
Stopping processing here.
Please
Hi Xavier,
# Load session data into object
if ($data) {
+if ( $self->kind ) {
+unless ( $data->{_session_kind} eq $self->kind ) {
+$self->error("Session kind mistmatch");
+return undef;
+}
+}
Doesn't that break CDA
Processing commands for cont...@bugs.debian.org:
> tags 929297 + upstream fixed-upstream
Bug #929297 {Done: Salvatore Bonaccorso } [minissdpd]
minissdpd: CVE-2019-12106
Added tag(s) upstream and fixed-upstream.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
On dinsdag 21 mei 2019 19:24:07 CEST Romain Perier wrote:
> Hi,
Hi,
> firmware-amd-graphics 20190502-1 is based onto upstream commit
> 92e17d0dd2437140fab044ae62baf69b35d7d1fa, that is commit "amdgpu: update
> vega20 to the latest 19.10 firmware" . Two commits behind there is commit
> "amdgpu:
found 929297 1.2.20130907-4.1
close 929297 1.5.20190210-1
thanks
Processing commands for cont...@bugs.debian.org:
> found 929297 1.2.20130907-4.1
Bug #929297 [minissdpd] minissdpd: CVE-2019-12106
Marked as found in versions minissdpd/1.2.20130907-4.1.
> close 929297 1.5.20190210-1
Bug #929297 [minissdpd] minissdpd: CVE-2019-12106
Ignoring request to alter
Your message dated Tue, 21 May 2019 19:03:34 +
with message-id
and subject line Bug#924393: fixed in acme-tiny 1:4.0.4-1
has caused the Debian Bug report #924393,
regarding acme-tiny: Please update to ACMEv2 API
to be marked as done.
This means that you claim that the problem has been dealt
Dear maintainer,
With the latest upload of MariaDB 10.3, --libmysqld-libs is now supported by
mysql_config/mariadb_config:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=928230#46
Can you please trigger a rebuild of amarok once mariadb-10.3_1:10.3.15-1 has
hit unstable?
Please also consider
On Tue, May 21, 2019 at 09:59:21AM +0200, Diederik de Haas wrote:
> Got a new MB BIOS and after installing that, I made a new attempt with
> firmware-amd-graphics version 20190502-1.
> It failed again, but it got slightly further this time.
> I saw a remount message, then a blinking cursor and
On Tue, May 21, 2019 at 12:08:45PM -0400, Boyuan Yang wrote:
> On Fri, 30 Nov 2018 19:51:20 +0100 Moritz Muehlenhoff wrote:
> > Source: swftools
> > Severity: serious
> >
> > swftools is orphaned for a year, dead upstream and has frequent security
> > issues. Also, Flash is a thing of the past,
Your message dated Tue, 21 May 2019 16:18:33 +
with message-id
and subject line Bug#928957: fixed in apt-cacher-ng 3.2-2
has caused the Debian Bug report #928957,
regarding expiration task fails on non-existent files
to be marked as done.
This means that you claim that the problem has been
On Fri, 30 Nov 2018 19:51:20 +0100 Moritz Muehlenhoff wrote:
> Source: swftools
> Severity: serious
>
> swftools is orphaned for a year, dead upstream and has frequent security
> issues. Also, Flash is a thing of the past, so let's drop it from buster
> (initially filing this bug to out it out
Your message dated Tue, 21 May 2019 16:05:37 +
with message-id
and subject line Bug#922669: fixed in sqlalchemy 1.2.18+ds1-2
has caused the Debian Bug report #922669,
regarding sqlalchemy: CVE-2019-7164 CVE-2019-7548 (SQL injection)
to be marked as done.
This means that you claim that the
Your message dated Tue, 21 May 2019 15:33:38 +
with message-id
and subject line Bug#928990: fixed in dmarc-cat 0.9.2-2
has caused the Debian Bug report #928990,
regarding dmarc-cat: attempts internet communication during build
to be marked as done.
This means that you claim that the problem
Processing control commands:
> tag -1 pending
Bug #928990 [dmarc-cat] dmarc-cat: attempts internet communication during build
Added tag(s) pending.
--
928990: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=928990
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
Control: tag -1 pending
Hello,
Bug #928990 in dmarc-cat reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
Hi,
Here's, attached to this message, the debdiff to fix this CVE. Note that
the patch was backported to 1.2 by upstream himself, so it's kind of
safe to apply, however, it may potentially impact SQLAlchemy reverse
dependencies. It should be safe for OpenStack applications though.
Please, either
Processing commands for cont...@bugs.debian.org:
> forwarded 897109 https://github.com/samtools/htsjdk/issues/1373
Bug #897109 [src:fastqc] fastqc: autopkgtest fails with new version while
succeeded in the past; htsjdk.samtools.util.RuntimeIOException:
java.io.IOException: Stream closed
Bug
Hello,
I've updated gcc-doc/gcc-doc-defaults packages to support new gcc-8
documentation generation. NMU Packages are uploaded to
mentors.debian.net
for review, git trees are put on salsa.debian.org/gcc-doc (-defaults).
--
With best wishes
Dmitry
Hi Dylan,
On Tue, May 21, 2019 at 02:32:48PM +0200, Dylan Aïssi wrote:
> Control: severity -1 serious
>
> Hi,
> I have tested the testsuite with the upstream binary (FastQC 0.11.8)
> and there is no error, so the testsuite is fine. This bug was probably
> hidden before we added the test of bam
Processing control commands:
> tags 915270 + patch
Bug #915270 [src:libgovirt] libgovirt: FTBFS because https-cert/ca-cert.pem is
expired
Added tag(s) patch.
> tags 915270 + pending
Bug #915270 [src:libgovirt] libgovirt: FTBFS because https-cert/ca-cert.pem is
expired
Added tag(s) pending.
--
Control: tags 915270 + patch
Control: tags 915270 + pending
Dear maintainer,
I've prepared an NMU for libgovirt (versioned as 0.3.4-3.1) and
uploaded it to DELAYED/02. Please feel free to tell me if I
should delay it longer.
Regards, Giovanni.
--
Giovanni Mascellani
Postdoc researcher -
Processing control commands:
> severity -1 serious
Bug #897109 [src:fastqc] fastqc: autopkgtest fails with new version while
succeeded in the past; htsjdk.samtools.util.RuntimeIOException:
java.io.IOException: Stream closed
Bug #923428 [src:fastqc] fastqc: autopkgtest regression
Severity set to
On Tue, May 21, 2019 at 10:01:55AM +0200, Aljoscha Lautenbach wrote:
> Hi,
>
> On Mon, 20 May 2019 at 23:11, Moritz Mühlenhoff wrote:
> > What's considered needed is that someone should actually look through
> > https://security-tracker.debian.org/tracker/source-package/libsass and
> >
Your message dated Tue, 21 May 2019 09:20:54 +
with message-id
and subject line Bug#928393: fixed in mariadb-10.3 1:10.3.15-1
has caused the Debian Bug report #928393,
regarding mariadb-10.3: CVE-2019-2614 CVE-2019-2627 CVE-2019-2628
to be marked as done.
This means that you claim that the
Your message dated Tue, 21 May 2019 09:20:54 +
with message-id
and subject line Bug#921599: fixed in mariadb-10.3 1:10.3.15-1
has caused the Debian Bug report #921599,
regarding python-mysqldb: always connects to localhost ignoring host entry in
option file
to be marked as done.
This means
Processing commands for cont...@bugs.debian.org:
> fixed 929297 1.5.20190210-1
Bug #929297 [minissdpd] minissdpd: CVE-2019-12106
Marked as fixed in versions minissdpd/1.5.20190210-1.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
929297:
On 5/21/19 8:06 AM, Chris Lamb wrote:
> Package: minissdpd
> Version: 1.2.20130907-3+deb8u1
> X-Debbugs-CC: t...@security.debian.org
> Severity: grave
> Tags: security
>
> Hi,
>
> The following vulnerability was published for minissdpd.
>
> CVE-2019-12106[0]:
> | The updateDevice function in
Hi,
On Mon, 20 May 2019 at 23:11, Moritz Mühlenhoff wrote:
> What's considered needed is that someone should actually look through
> https://security-tracker.debian.org/tracker/source-package/libsass and
> triage/fix.
>
> The only visible action done in five weeks was to lower the severity, so
>
Hello,
>I don't know how to handle this in the package build... Maybe I should
>just disable the test suite?
maybe ask upstream for a test switch to disable a subset of tests might be good?
>Is there a knob (like an environment variable) that I can use to disable
>the test suite selectively
For information, I just updated evolvotron package in my debian sid with
the fixing patch and it's working very well!
Many thanks to all of you for the attention and support, the Debian
Community is great!
Your message dated Tue, 21 May 2019 06:48:34 +
with message-id
and subject line Bug#927126: fixed in aqemu 0.9.2-2.2
has caused the Debian Bug report #927126,
regarding aqemu: after updating can't open VMs
to be marked as done.
This means that you claim that the problem has been dealt with.
Hi,
> minissdpd: CVE-2019-12106
Security team, would you like me to prepare an upload for stretch here?
Best wishes,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
Package: minissdpd
Version: 1.2.20130907-3+deb8u1
X-Debbugs-CC: t...@security.debian.org
Severity: grave
Tags: security
Hi,
The following vulnerability was published for minissdpd.
CVE-2019-12106[0]:
| The updateDevice function in minissdpd.c in MiniUPnP MiniSSDPd 1.4 and
| 1.5 allows a remote
51 matches
Mail list logo
