Your message dated Sat, 13 May 2023 02:33:57 +
with message-id
and subject line Bug#1034875: fixed in kitty 0.26.5-5
has caused the Debian Bug report #1034875,
regarding kitty: Should not handle application/x-sh mime type by executing the
script
to be marked as done.
This means that you
Processing control commands:
> tag -1 pending
Bug #1034875 [kitty] kitty: Should not handle application/x-sh mime type by
executing the script
Added tag(s) pending.
--
1034875: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034875
Debian Bug Tracking System
Contact ow...@bugs.debian.org
Control: tag -1 pending
Hello,
Bug #1034875 in kitty reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
James Addison dixit:
>I'm going to stay involved with this thread, but I think that it is
>upon you to develop or provide further guidance towards a patch if
>it's something you'd like to have implemented, Thorsten.
I actually have looked into that but I don’t understand the nodejs
and v8 source
On Fri, 12 May 2023 at 23:23, James Addison wrote:
>
> On Fri, 12 May 2023 at 16:54, Thorsten Glaser wrote:
> >
> > Yes, but given the usual ulimit, the new limit would be 4+ times
> > the old one, much much harder to reach.
>
> That does sound promising.
>
> I've followed up on this discussion
Johannes Schauer Marin Rodrigues writes:
> thank you! Would you like me to take care of filing the unblock request with
> release.debian.org or would you like to take care of that yourself?
Can you please do this?
Thanks
--
Brian May @ Debian
On Fri, 12 May 2023 at 16:54, Thorsten Glaser wrote:
>
> Yes, but given the usual ulimit, the new limit would be 4+ times
> the old one, much much harder to reach.
That does sound promising.
I've followed up on this discussion with the relevant upstream NodeJS
thread, and beyond there to the
Your message dated Fri, 12 May 2023 21:18:49 +
with message-id
and subject line Bug#1033836: fixed in postgresql-mysql-fdw 2.9.0-1
has caused the Debian Bug report #1033836,
regarding postgresql-mysql-fdw: autopkgtest regression: expected output changed
to be marked as done.
This means that
Your message dated Fri, 12 May 2023 21:05:18 +
with message-id
and subject line Bug#1035430: fixed in gmsh 4.8.4+ds2-3
has caused the Debian Bug report #1035430,
regarding libgmsh-private-headers-dev: missing copyright file (policy 12.5)
to be marked as done.
This means that you claim that
Your message dated Fri, 12 May 2023 20:35:25 +
with message-id
and subject line Bug#1035886: fixed in opencv 4.6.0+dfsg-12
has caused the Debian Bug report #1035886,
regarding libopencv-core406: please add Breaks: libopencv-core4.5 (<< 4.6)
to be marked as done.
This means that you claim
close 1035962 4.1.0-4
close 1035962 4.3.0-2
close 1035981 2:27.0.0-3
notfixed 1035978 2:27.0.0-3
thanks
Processing commands for cont...@bugs.debian.org:
> close 1035962 4.1.0-4
Bug #1035962 {Done: Thomas Goirand } [src:python-glance-store]
CVE-2023-2088 / OSSA-2023-003: Unauthorized volume access through deleted
volume attachments
Bug #1035978 {Done: Thomas Goirand } [src:python-glance-store]
Hi Markus,
Thanks for the reply and sorry for my bit grumpy mail yesterday. I was
tired and surprised.
On 11-05-2023 23:31, Markus Koschany wrote:
[...] (all good reply).
I'll check on Sunday on the proposal, unless somebody beats me to it. I
don't have time before then.
Paul
Your message dated Fri, 12 May 2023 17:49:17 +
with message-id
and subject line Bug#1035456: fixed in srpc 0.9.8-1.1
has caused the Debian Bug report #1035456,
regarding libsrpc-dev: missing Depends: libsrpc0 (= ${binary:Version})
to be marked as done.
This means that you claim that the
Your message dated Fri, 12 May 2023 17:49:00 +
with message-id
and subject line Bug#1035453: fixed in mygui 3.4.1+dfsg-3
has caused the Debian Bug report #1035453,
regarding libmygui-dev: missing Depends: libmygui.opengl3platform0debian1v5 (=
${binary:Version})
to be marked as done.
This
Your message dated Fri, 12 May 2023 17:33:49 +
with message-id
and subject line Bug#1035603: fixed in mpdscribble 0.24-3
has caused the Debian Bug report #1035603,
regarding mpdscribble: prompting due to modified conffiles which were not
modified by the user: /etc/mpdscribble.conf
to be
James Addison dixit:
>So: a fix here won't achieve stack capacity equality across
No. The fix you proposed won’t achieve that but others would
improve the situation much more, so that equality across arches
won’t need to matter any more.
>Or, to put it another way: applying an increase (either
Your message dated Fri, 12 May 2023 15:10:31 +
with message-id
and subject line Bug#1035872: fixed in tuxmath 2.0.3-9
has caused the Debian Bug report #1035872,
regarding tuxmath-data: broken symlink:
/usr/share/tuxmath/fonts/AndikaDesRevG.ttf ->
../../fonts/truetype/andika/Andika-R.ttf
to
On Sun, 19 Mar 2023 17:22:11 +0100 Helmut Grohne
wrote:
> I've prepared an update for debianutils and tested it in the
> following
> cases:
> * Installation on a pre-merged chroot -> /usr/bin/sh is added to
>/etc/shells.
> * Installation on a chroot merged by usrmerge -> no difference
> *
Processing control commands:
> tag -1 pending
Bug #1035872 [tuxmath-data] tuxmath-data: broken symlink:
/usr/share/tuxmath/fonts/AndikaDesRevG.ttf ->
../../fonts/truetype/andika/Andika-R.ttf
Added tag(s) pending.
--
1035872: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1035872
Debian Bug
Control: tag -1 pending
Hello,
Bug #1035872 in tuxmath reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
Processing commands for cont...@bugs.debian.org:
> severity 1035872 serious
Bug #1035872 [tuxmath-data] tuxmath-data: broken symlink:
/usr/share/tuxmath/fonts/AndikaDesRevG.ttf ->
../../fonts/truetype/andika/Andika-R.ttf
Severity set to 'serious' from 'important'
> thanks
Stopping processing
Control: tag -1 pending
Hello,
Bug #1033832 in php-db reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
Processing control commands:
> tag -1 pending
Bug #1033832 [src:php-db] php-db: autopkgtest regression: FAIL
DB::DB_Error[DB-1.11.0/tests/db_error.phpt]
Ignoring request to alter tags of bug #1033832 to the same tags previously set
--
1033832:
Processing commands for cont...@bugs.debian.org:
> reassign 1035820 usrmerge
Bug #1035820 [9base] 9base: leaves entries in /etc/shells after upgrade from
bullseye
Bug reassigned from package '9base' to 'usrmerge'.
No longer marked as found in versions 9base/1:6-13.
Ignoring request to alter
Processing commands for cont...@bugs.debian.org:
> reassign 1035978 src:python-glance-store
Bug #1035978 {Done: Thomas Goirand } [python3-glance-store]
CVE-2023-2088: Unauthorized volume access through deleted volume attachments
Bug reassigned from package 'python3-glance-store' to
Your message dated Fri, 12 May 2023 11:49:07 +
with message-id
and subject line Bug#1035961: fixed in cinder 2:21.1.0-3
has caused the Debian Bug report #1035961,
regarding CVE-2023-2088 / OSSA-2023-003: Unauthorized volume access through
deleted volume attachments
to be marked as done.
Processing commands for cont...@bugs.debian.org:
> forcemerge 1035962 1035978
Bug #1035962 {Done: Thomas Goirand } [src:python-glance-store]
CVE-2023-2088 / OSSA-2023-003: Unauthorized volume access through deleted
volume attachments
Unable to merge bugs because:
package of #1035978 is
Processing commands for cont...@bugs.debian.org:
> forcemerge 1035963 1035981
Bug #1035963 {Done: Thomas Goirand } [src:nova] CVE-2023-2088
/ OSSA-2023-003: Unauthorized volume access through deleted volume attachments
Bug #1035981 {Done: Thomas Goirand } [src:nova] CVE-2023-2088
/
Package: bazel-bootstrap
Version: 4.2.3+ds-8
Severity: serious
bazel-bootstrap depends on libtomcat9-java, only to use
tomcat9-annotations-api.jar
which provides the javax.annotations package. Since libtomcat9-java is about
to be removed this needs to be replaced.
libtomcat10-java provides a
Package: heat-cfntools
Version: 1.4.2-2.1
Severity: grave
Justification: renders package unusable
Dear Maintainer,
The package only include the stubs executables and lack the main modules
required to function:
# /usr/bin/cfn-init
Traceback (most recent call last):
File "/usr/bin/cfn-init",
Your message dated Fri, 12 May 2023 10:48:53 +
with message-id
and subject line Bug#1035992: fixed in apache-log4j-extras1.2 1.2.17-3
has caused the Debian Bug report #1035992,
regarding apache-log4j-extras1.2: Error while generating Javadoc: Unable to
write 'options' temporary file
to be
Your message dated Fri, 12 May 2023 10:49:18 +
with message-id
and subject line Bug#1035961: fixed in cinder 2:22.0.0-3
has caused the Debian Bug report #1035961,
regarding CVE-2023-2088 / OSSA-2023-003: Unauthorized volume access through
deleted volume attachments
to be marked as done.
Source: apache-log4j-extras1.2
Version: 1.2.17-2
Severity: serious
Tags: ftbfs
apache-log4j-extras1.2 fails to build with the following error:
[INFO]
[INFO] BUILD FAILURE
[INFO]
Processing commands for cont...@bugs.debian.org:
> # binNMUs were scheduled
> close 1034224
Bug #1034224 [pvpgn] pvpgn: dh_installsystemd doesn't handle files in
/usr/lib/systemd/system
Marked Bug as done
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
1034224:
Your message dated Fri, 12 May 2023 09:04:18 +
with message-id
and subject line Bug#1035981: fixed in nova 2:26.1.0-4
has caused the Debian Bug report #1035981,
regarding CVE-2023-2088 / OSSA-2023-003: Unauthorized volume access through
deleted volume attachments
to be marked as done.
This
Package: libpopplerkit0
Version: 0.0.20051227svn-11
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts
Hi,
an upgrade test with piuparts revealed that your package installs files
over existing symlinks and possibly overwrites files owned by other
packages. This usually means
On Thu, 11 May 2023 at 23:54, Thorsten Glaser wrote:
>
> James Addison dixit:
>
> >On Thu, 11 May 2023 at 02:43, Andres Salomon wrote:
>
> >> For ARM64, he says that raising the stack limit is not safe for v8
> >> *embedded inside WebView*, and therefore not appropriate for upstream
> >> v8. But
Your message dated Fri, 12 May 2023 08:24:13 +
with message-id
and subject line Bug#1035981: fixed in nova 2:27.0.0-4
has caused the Debian Bug report #1035981,
regarding CVE-2023-2088 / OSSA-2023-003: Unauthorized volume access through
deleted volume attachments
to be marked as done.
This
Your message dated Fri, 12 May 2023 08:23:45 +
with message-id
and subject line Bug#1035978: fixed in nova 2:27.0.0-3
has caused the Debian Bug report #1035978,
regarding CVE-2023-2088: Unauthorized volume access through deleted volume
attachments
to be marked as done.
This means that you
Processing commands for cont...@bugs.debian.org:
> user debian...@lists.debian.org
Setting user to debian...@lists.debian.org (was a...@debian.org).
> affects 1034755 + education-thin-client
Bug #1034755 [x2gothinclient-common] x2gothinclient-common: about .postinst and
.postrm scripts
Added
Processing control commands:
> tag -1 pending
Bug #1035981 [src:nova] CVE-2023-2088 / OSSA-2023-003: Unauthorized volume
access through deleted volume attachments
Added tag(s) pending.
--
1035981: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1035981
Debian Bug Tracking System
Contact
Control: tag -1 pending
Hello,
Bug #1035981 in nova reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
Source: nova
Version: 2:26.1.0-2
Severity: grave
Tags: patch
Affects
~~~
- Cinder: <20.2.1, >=21.0.0 <21.2.1, ==22.0.0
- Glance_store: <3.0.1, >=4.0.0 <4.1.1, >=4.2.0 <4.3.1
- Nova: <25.1.2, >=26.0.0 <26.1.2, ==27.0.0
- Os-brick: <5.2.3, >=6.0.0 <6.1.1, >=6.2.0 <6.2.2
Description
Your message dated Fri, 12 May 2023 07:34:57 +
with message-id
and subject line Bug#1035978: fixed in python-glance-store 4.3.0-2
has caused the Debian Bug report #1035978,
regarding CVE-2023-2088: Unauthorized volume access through deleted volume
attachments
to be marked as done.
This
Your message dated Fri, 12 May 2023 07:34:48 +
with message-id
and subject line Bug#1035978: fixed in python-glance-store 4.1.0-4
has caused the Debian Bug report #1035978,
regarding CVE-2023-2088: Unauthorized volume access through deleted volume
attachments
to be marked as done.
This
Your message dated Fri, 12 May 2023 07:35:06 +
with message-id
and subject line Bug#1011597: fixed in tiles 3.0.7-5
has caused the Debian Bug report #1011597,
regarding tiles: FTBFS with OpenJDK 17 due to an illegal reflective access in
maven-autotag-plugin
to be marked as done.
This means
Processing control commands:
> tag -1 pending
Bug #1035978 [python3-glance-store] CVE-2023-2088: Unauthorized volume access
through deleted volume attachments
Ignoring request to alter tags of bug #1035978 to the same tags previously set
--
1035978:
Control: tag -1 pending
Hello,
Bug #1035978 in python-glance-store reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
Control: tag -1 pending
Hello,
Bug #1035978 in python-glance-store reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
Processing control commands:
> tag -1 pending
Bug #1035978 [python3-glance-store] CVE-2023-2088: Unauthorized volume access
through deleted volume attachments
Ignoring request to alter tags of bug #1035978 to the same tags previously set
--
1035978:
Package: redmine-plugin-pretend
Version: 0.0.2+git20130821-5
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts
Hi,
during a test with piuparts I noticed your package failed to install. As
per definition of the release team this makes the package too buggy for
a release, thus
Processing control commands:
> tag -1 pending
Bug #1035978 [python3-glance-store] CVE-2023-2088: Unauthorized volume access
through deleted volume attachments
Ignoring request to alter tags of bug #1035978 to the same tags previously set
--
1035978:
Control: tag -1 pending
Hello,
Bug #1035978 in python-glance-store reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
Control: tag -1 pending
Hello,
Bug #1035978 in python-glance-store reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
Processing control commands:
> tag -1 pending
Bug #1035978 [python3-glance-store] CVE-2023-2088: Unauthorized volume access
through deleted volume attachments
Added tag(s) pending.
--
1035978: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1035978
Debian Bug Tracking System
Contact
Processing control commands:
> tag -1 pending
Bug #1011597 [src:tiles] tiles: FTBFS with OpenJDK 17 due to an illegal
reflective access in maven-autotag-plugin
Added tag(s) pending.
--
1011597: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1011597
Debian Bug Tracking System
Contact
Control: tag -1 pending
Hello,
Bug #1011597 in tiles reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
Package: python3-glance-store
Version: 4.3.0-1
Severity: grave
Tags: patch
OSSA-2023-003: Unauthorized volume access through deleted volume attachments
59 matches
Mail list logo
