Processing control commands:
> retitle -1 shibboleth-sp: CVE-2021-31826: Session recovery feature contains a
> null pointer deference
Bug #987608 [src:shibboleth-sp] shibboleth-sp: Session recovery feature
contains a null pointer deference
Changed Bug title to 'shibboleth-sp: CVE-2021-31826:
Control: retitle -1 shibboleth-sp: CVE-2021-31826: Session recovery feature
contains a null pointer deference
Hi,
On Mon, Apr 26, 2021 at 03:16:14PM +0200, Ferenc W??gner wrote:
> Source: shibboleth-sp
> Version: 3.0.2+dfsg1-1
> Severity: important
> Tags: upstream patch security
> Forwarded:
Package: surf
Version: 2.0+git20201107-2
Severity: grave
Tags: upstream
Justification: renders package unusable
Dear Maintainer,
surf does not start anymore since version 2.0+git20201107.
Expected behaviour : surf should start.
Steps to reproduce :
$ /usr/bin/surf
output :
Source: ruby-rugged
Version: 1.1.0+ds-3
Severity: serious
Tags: ftbfs
https://tests.reproducible-builds.org/debian/rb-pkg/bullseye/amd64/ruby-rugged.html
...
1) Error:
OnlineLsTest#test_ls_over_https:
Rugged::NetworkError: failed to resolve address for github.com: Temporary
failure in name
Processing commands for cont...@bugs.debian.org:
> tags 984490 + ftbfs
Bug #984490 [src:mercurial] test-archive.t fails in the autopkg tests
Added tag(s) ftbfs.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
984490:
Source: eclipse-titan
Version: 7.2.0-1
Severity: serious
Tags: ftbfs
eclipse-titan (7.2.0-1) unstable; urgency=medium
...
* debian/rules:
...
- removed unnecessary --no-parallel option
-- Gergely Pilisi Tue, 16 Feb 2021 10:25:17 +0100
Unfortunately --no-parallel is still necessary:
Source: nomad
Version: 0.12.10+dfsg1-1
Severity: serious
Tags: ftbfs
https://tests.reproducible-builds.org/debian/rb-pkg/bullseye/amd64/nomad.html
...
config_test.go:494: write err: x509: certificate has expired or is not yet
valid: current time 2022-05-26T18:21:44Z is after
Your message dated Mon, 26 Apr 2021 21:18:25 +
with message-id
and subject line Bug#986565: fixed in git-flow 1.12.3-3
has caused the Debian Bug report #986565,
regarding unusable with current git
to be marked as done.
This means that you claim that the problem has been dealt with.
If this
Source: ne10
Version: 1.2.1-4
Severity: serious
Tags: ftbfs bullseye sid
https://tests.reproducible-builds.org/debian/rb-pkg/bullseye/arm64/ne10.html
...
cd /build/ne10-1.2.1/obj-aarch64-linux-gnu/test && /usr/bin/cmake -E
cmake_link_script CMakeFiles/NE10_imgproc_unit_test_static.dir/link.txt
Source: e2fsprogs
Version: 1.46.2-1
Severity: serious
Tags: upstream ftbfs
Justification: fails to build from source (but built successfully in the past)
Forwarded: https://github.com/tytso/e2fsprogs/issues/65
e2fsprogs builds fine on armel/armhf when built on a machine with a
32-bit kernel.
Source: zsnes
Version: 1.510+bz2-10
Severity: serious
Tags: ftbfs
https://tests.reproducible-builds.org/debian/rb-pkg/bullseye/i386/zsnes.html
...
g++ -o zsnes cfg.o endmem.o init.o initc.o input.o md.o patch.o ui.o vcache.o
version.o zloader.o zmovie.o zpath.o zstate.o ztime.o ztimec.o
Source: smlsharp
Version: 1.2.0-2
Severity: serious
Tags: ftbfs bullseye sid
https://tests.reproducible-builds.org/debian/rb-pkg/bullseye/i386/smlsharp.html
...
(cd precompiled/x86-linux \
&& gcc -m32 -Wl,-z,relro -Wl,-z,now ../../src/runtime/smlsharp_entry.o \
`cat
Source: fenix
Version: 0.92a.dfsg1-12
Severity: serious
Tags: ftbfs bullseye sid
https://tests.reproducible-builds.org/debian/rb-pkg/bullseye/i386/fenix.html
...
gcc -g -O2 -fdebug-prefix-map=/build/fenix-0.92a.dfsg1=.
-fstack-protector-strong -Wformat -Werror=format-security -Wall
Source: libcxl
Version: 1.7-1
Severity: serious
Tags: ftbfs bullseye sid patch
Forwarded: https://github.com/ibm-capi/libcxl/pull/34
...
dh_auto_build -a
make -j16 "INSTALL=install --strip-program=true"
make[1]: Entering directory '/home/bunk/build/libcxl-1.7'
Makefile:28: *** 'cxl.h
Source: micro-evtd
Version: 3.4-5
Severity: serious
Tags: ftbfs bullseye sid
...
src/micro-evtd.c:49:10: fatal error: sys/io.h: No such file or directory
49 | #include
| ^~
compilation terminated.
make[2]: *** [micro-evtd.mak:185: obj/micro-evtd.o] Error 1
Removing
Control: tag -1 pending
Hello,
Bug #987496 in salt reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
Processing control commands:
> tag -1 pending
Bug #987496 [src:salt] salt: CVE-2021-31607
Added tag(s) pending.
--
987496: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987496
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
Processing commands for cont...@bugs.debian.org:
> tags 987608 + fixed-upstream
Bug #987608 [src:shibboleth-sp] shibboleth-sp: Session recovery feature
contains a null pointer deference
Added tag(s) fixed-upstream.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
Processing commands for cont...@bugs.debian.org:
> severity 987608 grave
Bug #987608 [src:shibboleth-sp] shibboleth-sp: Session recovery feature
contains a null pointer deference
Severity set to 'grave' from 'important'
> thanks
Stopping processing here.
Please contact me if you need
Your message dated Mon, 26 Apr 2021 15:16:34 -0400
with message-id <684cd3958c95d451b93a01bdf68069d0004146a9.ca...@debian.org>
and subject line Bug fixed in recent upload
has caused the Debian Bug report #987509,
regarding libgranite6: missing Breaks+Replaces: libgranite5
to be marked as done.
Dear maintainers,
On Sun, 25 Apr 2021 22:26:09 +0200 Roland Clobus wrote:
> this ticket was handled during the BSP in Salzburg, which took place
> this weekend.
>
> A simplified handling of ttyon and ttyoff was implemented.
> Paul Gevers is planning to NMU the patch in MR5 [1]
> tomorrow to
Your message dated Mon, 26 Apr 2021 18:03:55 +
with message-id
and subject line Bug#981422: fixed in xdg-utils 1.1.3-4.1
has caused the Debian Bug report #981422,
regarding xdg-utils: autopkgtest failure: make: dh: No such file or directory
to be marked as done.
This means that you claim
Processing control commands:
> severity -1 important
Bug #987575 [linux-kbuild-5.10] linux-kbuild-5.10: please add Breaks:
sl-modem-dkms (<< 2.9.11~20110321-16.0)
Severity set to 'important' from 'serious'
--
987575: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987575
Debian Bug Tracking
Control: severity -1 important
I don't believe this should be considered an RC bug in Linux packages,
but we should still mitigate the problem.
There are three different bugs involved:
1. linux-headers-*-common uses the upstream Makefile, which defaults
to attempting a full kernel build.
Processing commands for cont...@bugs.debian.org:
> #
> # bts-link upstream status pull for source package cinnamon-session
> # see http://lists.debian.org/debian-devel-announce/2006/05/msg1.html
> # https://bts-link-team.pages.debian.net/bts-link/
> #
> user
Your message dated Mon, 26 Apr 2021 17:04:08 +
with message-id
and subject line Bug#986599: fixed in mpich 3.4.1-4
has caused the Debian Bug report #986599,
regarding libmpich-dev: leaves alternatives after purge:
/etc/alternatives/mpi-
to be marked as done.
This means that you claim that
On Mon, Apr 26, 2021 at 12:41:42PM +0800, Paul Wise wrote:
>...
> I think that switching the ImageMagick policy so that it allows writes
> to PS/PS2/PS3/EPS/PDF/XPS/etc but not reads would fix the FTBFS and
> possibly also stop security issues in GhostScript from being triggered?
>From the
Processing commands for cont...@bugs.debian.org:
> forcemerge 987588 987589
Bug #987588 [sshguard] sshguard: The sshguard package in the testing & stable
branches is outdated and buggy
Bug #987589 [sshguard] sshguard in both of stable and testing branches is buggy
and outdated
Merged 987588
I think I am also experiencing this bug. I'm seeing it manifest when I
resume from sleep, none of my monitors wake up and I can't switch TTYs.
On Thu, 22 Apr 2021 21:10:15 + "Maxime G." wrote:
> Package: xserver-xorg-video-amdgpu
> Version: 19.1.0-2
> Severity: critical
>
> Hi.
>
> Today I
Processing control commands:
> tag -1 buster
Bug #986779 [fwupd] preinst script misses dependency on dpkg-dev
Added tag(s) buster.
> severity -1 serious
Bug #986779 [fwupd] preinst script misses dependency on dpkg-dev
Severity set to 'serious' from 'normal'
--
986779:
Source: libica
Version: 3.2.0-3
Severity: serious
Tags: ftbfs
...
/usr/bin/ld:
/tmp/ccGQQSb3.o:/home/bunk/build/libica-3.2.0/src/tests/libica_sha_test/./include/sha_tests.h:26:
multiple definition of `silent';
Package: wims-lti
Version: 0.4.4.1-2
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts
Hi,
during a test with piuparts I noticed your package modifies shipped
files.
debsums reports modification of the following files,
from the attached log (scroll to the bottom...):
Processing commands for cont...@bugs.debian.org:
> user debian...@lists.debian.org
Setting user to debian...@lists.debian.org (was a...@debian.org).
> usertags 983429 piuparts
There were no usertags set.
Usertags are now: piuparts.
> severity 983429 serious
Bug #983429 [mosquitto] mosquitto:
Your message dated Mon, 26 Apr 2021 13:03:29 +
with message-id
and subject line Bug#973188: fixed in virt-top 1.0.9-1.1
has caused the Debian Bug report #973188,
regarding virt-top: FTBFS: Error: Cannot find file camlheader_pic
to be marked as done.
This means that you claim that the problem
severity 984767 normal
tag 984767 + moreinfo
thanks
❦ 8 mars 2021 08:55 +01, Johann Queuniet:
> I have issues with building packages with dh-virtualenv using a compat
> of 12 or higher, ending up with the following error:
>
> ```
> debian/rules binary
> dh binary --with python-virtualenv
Processing commands for cont...@bugs.debian.org:
> severity 984767 normal
Bug #984767 [dh-virtualenv] dh-virtualenv: Can't build packages with compat >=
12 as --buildsystem doesn't work
Severity set to 'normal' from 'serious'
> tag 984767 + moreinfo
Bug #984767 [dh-virtualenv] dh-virtualenv:
Processing commands for cont...@bugs.debian.org:
> severity 987603 important
Bug #987603 [src:gnome-desktop3] XKB layout variants not shown in the g-c-c
menu of respective language but under Others
Severity set to 'important' from 'serious'
>
End of message, stopping processing here.
Please
Andreas Tille writes:
> /usr/bin/ld: cannot find -lpthreads
Thanks for posting a link to the full log! AFAICT, the actual errors
appear much earlier, on lines 1573-1593:
CMake Error: File
/builds/science-team/arrayfire/debian/output/source_dir/extern/forge/CMakeModules/version.h.in
does
Andreas Tille writes:
> Hi,
>
> I personally have no interest in arrayfire but I realised that the
> Debian packaged version depends clblas (and is the only remaining
> package that needs cblas and I would like to see it removed from Debian
> due to bug #949767)
Hi,
FWIW: It seems that
Your message dated Mon, 26 Apr 2021 11:18:28 +
with message-id
and subject line Bug#987535: fixed in ggcov 0.10-3
has caused the Debian Bug report #987535,
regarding ggcov FTBFS: 1/21 tests passed
to be marked as done.
This means that you claim that the problem has been dealt with.
If this
Processing control commands:
> tag -1 pending
Bug #987603 [src:gnome-desktop3] XKB layout variants not shown in the g-c-c
menu of respective language but under Others
Added tag(s) pending.
--
987603: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987603
Debian Bug Tracking System
Contact
Control: tag -1 pending
Hello,
Bug #987603 in gnome-desktop3 reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
Package: src:gnome-desktop3
Version: 3.38.4-1
Severity: serious
The GUI in gnome-control-center for adding input sources is broken. The
XKB layout variants should be visible in the menu of respective
language, but instead they are all shown under "Others".
A cherry pick of this upstream
On 4/24/21 6:55 PM, Romain Porte wrote:
> Hi,
>
> Please find attached the debdiff that should fix most of the issues
> listed (enough that the issue should not be marked "serious" anymore,
> thus unblock bullseye release).
>
> Thanks!
>
> Romain, on behalf on the Debian Saslzburg BSP.
ahh,
Processing control commands:
> clone -1 -2
Bug #929685 [ca-certificates-java,default-jre-headless,openjdk-11-jre-headless]
ca-certificates-java,default-jre-headless,openjdk-11-jre-headless: get rid of
the circular dependency
Bug 929685 cloned as bug 987602
987602 was blocked by: 922981
987602
Control: clone -1 -2
Control: reassign -2 src:ca-certificates
Control: block -1 by -2
Didn't notice that the re-assign didn't work. ca-certificates also has a pull
request on gitlab.
Hi,
I personally have no interest in arrayfire but I realised that the
Debian packaged version depends clblas (and is the only remaining
package that needs cblas and I would like to see it removed from Debian
due to bug #949767) Thus I tried to upgrade arrayfire to the latest
upstream version in
Your message dated Mon, 26 Apr 2021 08:34:30 +
with message-id
and subject line Bug#987534: fixed in soundtouch 2.2+ds1-2
has caused the Debian Bug report #987534,
regarding soundtouch builds with -march=native and NEON on armhf
to be marked as done.
This means that you claim that the
Your message dated Mon, 26 Apr 2021 07:33:30 +
with message-id
and subject line Bug#986839: fixed in mpv 0.32.0-3
has caused the Debian Bug report #986839,
regarding mpv: CVE-2021-30145 - demux_mf: improve format string processing
to be marked as done.
This means that you claim that the
Your message dated Mon, 26 Apr 2021 07:03:25 +
with message-id
and subject line Bug#987507: fixed in notion 4.0.2+dfsg-5
has caused the Debian Bug report #987507,
regarding notion: binary-all FTBFS
to be marked as done.
This means that you claim that the problem has been dealt with.
If this
Package: sshguard
Version: 2.3.1-1
Severity: grave
Tags: security
Justification: renders package unusable
Dear Maintainer,
sshguard blocks the remote ssh client at 1st mistake regardless of THRESHOLD
option value
OS: Debian Linux 10.9
SSH server: openssh-server 1:7.9p1-10+deb10
sshguard
* Georges Khaznadar [210426 06:43]:
> Dear Chris, thank you for the bug report.
>
> I believe that the bug is fixed with the newly uploaded release
> 3.35.2-3.
>
> What should I do next to allow clonezilla to be included in bullseye ?
> Is the upload enough or must I make some other
Package: sshguard
Version: 2.3.1-1
Severity: grave
Tags: security
Justification: renders package unusable
Dear Maintainer,
sshguard blocks the remote ssh client at 1st mistake regardless of THRESHOLD
option value
OS: Debian Linux 10.9
SSH server: openssh-server 1:7.9p1-10+deb10
sshguard
Processing commands for cont...@bugs.debian.org:
> found 986701 2.0.7-1
Bug #986701 {Done: Roger A. Light } [src:mosquitto]
mosquitto: CVE-2021-28166
The source 'mosquitto' and version '2.0.7-1' do not appear to match any binary
packages
Marked as found in versions mosquitto/2.0.7-1.
> thanks
Processing commands for cont...@bugs.debian.org:
> block 987441 with 987587
Bug #987441 [src:debian-installer] debian-installer: D-I must get ready for
Bullseye
987441 was blocked by: 987449 987377 987568 987368
987441 was not blocking any bugs.
Added blocking bug(s) of 987441: 987587
> thanks
Processing commands for cont...@bugs.debian.org:
> block 987377 with 987587
Bug #987377 [rescue-mode] rescue-mode: when in graphical mode, locks up one
prompt before the shell
987377 was not blocked by any bugs.
987377 was blocking: 987441
Added blocking bug(s) of 987377: 987587
> thanks
Package: libpango1.0-udeb
Version: 1.44.7-3
Severity: grave
Tags: d-i
Justification: renders package unusable
X-Debbugs-Cc: debian-b...@lists.debian.org
Hi,
In the “better late than never” department… I've completed a debugging session
that shows that upgrading libpango1.0-udeb from 1.42.4-8 to
57 matches
Mail list logo
