Bug#934740: nftables: broken on BE

2019-08-14 Thread Gianfranco Costamagna
Source: nftables Version: 0.9.1-2 Severity: serious Tags patch Hello, after trying to understand why firewalld was completely broken on s390x, and discussing with nftables upstream, they found that a particular commit: 142350f154c7 broke Big Endian machines. this is the set of patches:

Bug#917238: ndpi 2.2-1: FTBFS, alignment problem

2019-08-14 Thread Gianfranco Costamagna
control: severity -1 important I asked to remove the package on armhf, to avoid this bug being RC. G. On Mon, 12 Aug 2019 16:27:47 +0200 Gianfranco Costamagna wrote: > control: forwarded -1 https://github.com/ntop/nDPI/issues/763 > > > updating forwarded tag. > > G. > >

Processed: Re: ndpi 2.2-1: FTBFS, alignment problem

2019-08-14 Thread Debian Bug Tracking System
Processing control commands: > severity -1 important Bug #917238 [src:ndpi] ndpi 2.2-1: FTBFS, alignment problem Severity set to 'important' from 'serious' -- 917238: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917238 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Processed: severity 928129 important

2019-08-14 Thread Debian Bug Tracking System
Processing commands for cont...@bugs.debian.org: > severity 928129 important Bug #928129 [src:python-os-win] python-os-win: FTBFS on i386: ClusterPropertyListParsingError: Parsing a cluster property list failed. Severity set to 'important' from 'serious' > End of message, stopping processing

Bug#891532: captagent FTBFS with shared libfl

2019-08-14 Thread Gianfranco Costamagna
and attached. diff -Nru captagent-6.1.0.20/debian/changelog captagent-6.1.0.20/debian/changelog --- captagent-6.1.0.20/debian/changelog 2017-01-15 21:09:31.0 +0100 +++ captagent-6.1.0.20/debian/changelog 2019-08-14 09:59:44.0 +0200 @@ -1,3 +1,11 @@ +captagent (6.1.0.20-3.1)

Processed: Re: captagent FTBFS with shared libfl

2019-08-14 Thread Debian Bug Tracking System
Processing control commands: > tags -1 patch pending Bug #891532 [src:captagent] captagent FTBFS with shared libfl Added tag(s) pending. -- 891532: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891532 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#934674: marked as done (python-os-win: (build-)depends on cruft package.)

2019-08-14 Thread Debian Bug Tracking System
Your message dated Wed, 14 Aug 2019 09:02:36 +0200 with message-id <95192aea-4c7a-36a9-fe07-f41639ff5...@debian.org> and subject line Re: Bug#934674: python-os-win: (build-)depends on cruft package. has caused the Debian Bug report #934674, regarding python-os-win: (build-)depends on cruft

Bug#891532: captagent FTBFS with shared libfl

2019-08-14 Thread Gianfranco Costamagna
control: tags -1 patch pending On Mon, 26 Feb 2018 15:22:58 +0200 Adrian Bunk wrote: > Source: captagent > Version: 6.1.0.20-3 > Severity: serious > Tags: buster sid > > https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/captagent.html > > ... > checking whether make sets

Bug#933742: marked as done (slirp4netns: CVE-2019-14378: heap buffer overflow during packet reassembly)

2019-08-14 Thread Debian Bug Tracking System
Your message dated Wed, 14 Aug 2019 11:49:41 + with message-id and subject line Bug#933742: fixed in slirp4netns 0.3.2-1 has caused the Debian Bug report #933742, regarding slirp4netns: CVE-2019-14378: heap buffer overflow during packet reassembly to be marked as done. This means that you

Processed: reassign 934390 to totem, fixed 934390 in 3.32.0-2, tagging 904660, found 934281 in 1.24.1-1 ...

2019-08-14 Thread Debian Bug Tracking System
Processing commands for cont...@bugs.debian.org: > reassign 934390 totem 3.30.0-4 Bug #934390 {Done: Simon McVittie } [totem,nautilus] totem, nautilus: not co-installable in unstable Bug reassigned from package 'totem,nautilus' to 'totem'. Ignoring request to alter found versions of bug #934390

Bug#934747: /usr/bin/rtorrent: rtorrent crashes with error "Could not create download: Info hash already used by another torrent."

2019-08-14 Thread Thomas Nemeth
Package: rtorrent Version: 0.9.7-1 Severity: grave File: /usr/bin/rtorrent Tags: upstream Justification: renders package unusable Hi, for several weeks now, rtorrent crashes when I start it (no changes have been made to either its configuration nor its torrents list for many month). Here is the

Bug#934708: marked as done (gitlab: CVE-2019-14942 CVE-2019-14944 (GitLab Critical Security Release: 12.1.6, 12.0.6, and 11.11.8))

2019-08-14 Thread Debian Bug Tracking System
Your message dated Wed, 14 Aug 2019 12:05:22 + with message-id and subject line Bug#934708: fixed in gitlab 11.11.8+dfsg-1 has caused the Debian Bug report #934708, regarding gitlab: CVE-2019-14942 CVE-2019-14944 (GitLab Critical Security Release: 12.1.6, 12.0.6, and 11.11.8) to be marked as

Processed: re: New upstream version 0.8 available, compatible with python3

2019-08-14 Thread Debian Bug Tracking System
Processing commands for cont...@bugs.debian.org: > Severity 929949 serious Bug #929949 [duplicity] New upstream version 0.8 available, compatible with python3 Severity set to 'serious' from 'minor' > Thanks. Stopping processing here. Please contact me if you need assistance. -- 929949:

Bug#934788: gst-plugins-good1.0 non-buildd binaries

2019-08-14 Thread peter green
Package: gst-plugins-good1.0 Version: 1.16.0-2 Severity: serious The release team have decreed that non-buildd binaries can no longer migrate to testing, please make a source-only upload so your package can migrate.

Bug#933757: Firefox-esr FTBFS "failed to open: /sbuild-nonexistent/.cargo/.package-cache"

2019-08-14 Thread peter green
So the libvpx transition prompted me to take a look at this, I added some code to debian/rules to create a fake homedir, use it for the build and remove it in the clean target. Unfortunately I then ran into another failure.

Bug#934799: supertuxkart FTBFS (armel, mips, mipsel, m68k, powerpc, sh4): undefined reference to symbol '__atomic_load_8@@LIBATOMIC_1.0'

2019-08-14 Thread Helmut Grohne
Source: supertuxkart Version: 1.0-2 Severity: serious Tags: ftbfs supertuxkart currently fails to build from source on armel, mips, mipsel, m68k, powerpc and sh4 with the following error during final linking: | /usr/bin/ld: CMakeFiles/supertuxkart.dir/src/graphics/irr_driver.cpp.o: undefined

Bug#931970: marked as done (gphoto2: autopkgtest failure block readline migration)

2019-08-14 Thread Debian Bug Tracking System
Your message dated Wed, 14 Aug 2019 19:11:54 -0500 with message-id <2057837.3Le9lR8jrT@riemann> and subject line Re: gphoto2: autopkgtest failure block readline migration has caused the Debian Bug report #931970, regarding gphoto2: autopkgtest failure block readline migration to be marked as done.

Bug#934034: monkeysphere: FTBFS in stretch

2019-08-14 Thread Chris Lamb
Dear Niels, > 1) The current bug metadata suggests it affects sid. Please ensure the > bug is resolved in sid (by fixing it in sid or correcting bug > metadata as appropriate). I cannot reproduce in buster, sid or experimental and have thus adjusting the metadata of #934034 to match.

Bug#933757: Firefox-esr FTBFS "failed to open: /sbuild-nonexistent/.cargo/.package-cache"

2019-08-14 Thread Mike Hommey
On Thu, Aug 15, 2019 at 03:16:20AM +0100, peter green wrote: > So the libvpx transition prompted me to take a look at this, I added some > code to debian/rules to create a fake homedir, use it for the build and > remove it in the clean target.

Bug#934802: ruby-nokogiri: CVE-2019-5477: command injection vulnerability

2019-08-14 Thread Salvatore Bonaccorso
Source: ruby-nokogiri Version: 1.10.3+dfsg1-2 Severity: grave Tags: security upstream Justification: user security hole Forwarded: https://github.com/sparklemotion/nokogiri/issues/1915 Hi, The following vulnerability was published for ruby-nokogiri. CVE-2019-5477[0]: Command Injection

Bug#934801: kubernetes: CVE-2019-11250

2019-08-14 Thread Salvatore Bonaccorso
Source: kubernetes Version: 1.7.16+dfsg-1 Severity: grave Tags: security upstream Forwarded: https://github.com/kubernetes/kubernetes/issues/81114 Hi, The following vulnerability was published for kubernetes. CVE-2019-11250[0]: Bearer tokens are revealed in logs If you fix the vulnerability

Bug#934758: DKMS module fails to build for linux 5.2.0-2

2019-08-14 Thread Benjamin Kaduk
severity 934758 important tags 934758 + fixed-upstream pending thanks On Wed, Aug 14, 2019 at 09:53:40AM -0400, Ryan Kavanagh wrote: > Package: openafs-modules-dkms > Version: 1.8.2-1 > Severity: grave > Justification: renders package unusable > > The openafs DKMS module fails to build for Linux

Processed: Re: Bug#934758: DKMS module fails to build for linux 5.2.0-2

2019-08-14 Thread Debian Bug Tracking System
Processing commands for cont...@bugs.debian.org: > severity 934758 important Bug #934758 [openafs-modules-dkms] DKMS module fails to build for linux 5.2.0-2 Severity set to 'important' from 'grave' > tags 934758 + fixed-upstream pending Bug #934758 [openafs-modules-dkms] DKMS module fails to

Bug#934783: mongodb: CVE-2019-2386

2019-08-14 Thread Salvatore Bonaccorso
Source: mongodb Version: 1:3.4.18-2 Severity: grave Tags: security upstream Forwarded: https://jira.mongodb.org/browse/SERVER-38984 Hi, The following vulnerability was published for mongodb. CVE-2019-2386[0]: | After user deletion in MongoDB Server the improper invalidation of | authorization

Bug#891532: marked as done (captagent FTBFS with shared libfl)

2019-08-14 Thread Debian Bug Tracking System
Your message dated Wed, 14 Aug 2019 08:45:00 + with message-id and subject line Bug#891532: fixed in captagent 6.1.0.20-3.1 has caused the Debian Bug report #891532, regarding captagent FTBFS with shared libfl to be marked as done. This means that you claim that the problem has been dealt

Processed: Re: prctl: probably shouldn't be in testing/stable

2019-08-14 Thread Debian Bug Tracking System
Processing control commands: > tag -1 moreinfo Bug #934482 [prctl] prctl: probably shouldn't be in testing/stable Added tag(s) moreinfo. -- 934482: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934482 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#934758: DKMS module fails to build for linux 5.2.0-2

2019-08-14 Thread Ryan Kavanagh
Package: openafs-modules-dkms Version: 1.8.2-1 Severity: grave Justification: renders package unusable The openafs DKMS module fails to build for Linux kernel 5.2.0-2. This renders openafs unusable. I have attached the build log containing the error messages, in particular, it seems to have

Bug#934482: prctl: probably shouldn't be in testing/stable

2019-08-14 Thread Andreas Beckmann
Control: tag -1 moreinfo On Sun, 11 Aug 2019 15:09:15 +0200 Ivo De Decker wrote: > The buildd 'Packages-arch-specific' configuration has this line for prct: > > %prctl: hppa ia64 alpha powerpc # > ANAIS based on syscall availability > >

Bug#933035: dmtcp: Should this package be removed?

2019-08-14 Thread Moritz Mühlenhoff
On Tue, Aug 13, 2019 at 08:29:23PM +, Cooperman, Gene wrote: > Hi Moritz, > I'm sorry for the delayed reply. We are about to release DMTCP version > 2.6.0, and we are including a Debian package. We have verified with Yaroslav > Halchenko that our proposed Debian package will pass. We

Processed: Re: monkeysphere: FTBFS in stretch (failing tests)

2019-08-14 Thread Debian Bug Tracking System
Processing commands for cont...@bugs.debian.org: > notfound 934034 0.43-3 Bug #934034 [src:monkeysphere] monkeysphere: FTBFS in stretch (failing tests) Ignoring request to alter found versions of bug #934034 to the same values previously set > notfound 934034 0.44-1 Bug #934034

Bug#934766: libexosip2: CVE-2014-10375

2019-08-14 Thread Salvatore Bonaccorso
Source: libexosip2 Version: 4.1.0-2.1 Severity: grave Tags: security upstream Hi, The following vulnerability was published for libexosip2. CVE-2014-10375[0]: | handle_messages in eXtl_tls.c in eXosip before 5.0.0 mishandles a | negative value in a content-length header. If you fix the

Processed: Re: Bug#934747: /usr/bin/rtorrent: rtorrent crashes with error "Could not create download: Info hash already used by another torrent."

2019-08-14 Thread Debian Bug Tracking System
Processing control commands: > reassign -1 libcurl4 7.65.1-1 Bug #934747 [rtorrent] /usr/bin/rtorrent: rtorrent crashes with error "Could not create download: Info hash already used by another torrent." Bug reassigned from package 'rtorrent' to 'libcurl4'. No longer marked as found in versions

Bug#934747: /usr/bin/rtorrent: rtorrent crashes with error "Could not create download: Info hash already used by another torrent."

2019-08-14 Thread Bernhard Übelacker
Control: reassign -1 libcurl4 7.65.1-1 Control: affects -1 + rtorrent Control: tags -1 + upstream fixed-upstream Control: fixed -1 7.65.3-1 Dear Maintainer, I just tried to find some more information from the given backtrace. That I guess would translate to something like below [1], if it would

Bug#933143: FTBFS, not Django 2.2 ready

2019-08-14 Thread Antonio Terceiro
On Fri, Jul 26, 2019 at 11:24:50PM +0200, Thomas Goirand wrote: > Package: python-django-mptt > Version: 0.8.7-1 > Severity: serious > Tags: patch > > Hi, > > Please find attached patch to do the Python 2 removal. > After this patch, your package continues to FTBFS. Please > get a fix for it.

Bug#934026: marked as done (python-django: CVE-2019-14232 CVE-2019-14233 CVE-2019-14234 CVE-2019-14235)

2019-08-14 Thread Debian Bug Tracking System
Your message dated Wed, 14 Aug 2019 18:47:47 + with message-id and subject line Bug#934026: fixed in python-django 1:1.10.7-2+deb9u6 has caused the Debian Bug report #934026, regarding python-django: CVE-2019-14232 CVE-2019-14233 CVE-2019-14234 CVE-2019-14235 to be marked as done. This