NEW changes in stable-new
Processing changes file: dwarfutils_20120410-2+deb8u1_arm64.changes ACCEPT Processing changes file: dwarfutils_20120410-2+deb8u1_armel.changes ACCEPT Processing changes file: dwarfutils_20120410-2+deb8u1_armhf.changes ACCEPT Processing changes file: dwarfutils_20120410-2+deb8u1_i386.changes ACCEPT Processing changes file: dwarfutils_20120410-2+deb8u1_mips.changes ACCEPT Processing changes file: dwarfutils_20120410-2+deb8u1_mipsel.changes ACCEPT Processing changes file: dwarfutils_20120410-2+deb8u1_powerpc.changes ACCEPT Processing changes file: dwarfutils_20120410-2+deb8u1_ppc64el.changes ACCEPT Processing changes file: dwarfutils_20120410-2+deb8u1_s390x.changes ACCEPT Processing changes file: gnome-sudoku_3.14.1-1+deb8u1_amd64.changes ACCEPT Processing changes file: gnome-sudoku_3.14.1-1+deb8u1_arm64.changes ACCEPT Processing changes file: gnome-sudoku_3.14.1-1+deb8u1_armel.changes ACCEPT Processing changes file: gnome-sudoku_3.14.1-1+deb8u1_armhf.changes ACCEPT Processing changes file: gnome-sudoku_3.14.1-1+deb8u1_i386.changes ACCEPT Processing changes file: gnome-sudoku_3.14.1-1+deb8u1_mips.changes ACCEPT Processing changes file: gnome-sudoku_3.14.1-1+deb8u1_mipsel.changes ACCEPT Processing changes file: gnome-sudoku_3.14.1-1+deb8u1_powerpc.changes ACCEPT Processing changes file: gnome-sudoku_3.14.1-1+deb8u1_ppc64el.changes ACCEPT Processing changes file: gnome-sudoku_3.14.1-1+deb8u1_s390x.changes ACCEPT
NEW changes in stable-new
Processing changes file: mariadb-10.0_10.0.27-0+deb8u1_armel.changes ACCEPT Processing changes file: mariadb-10.0_10.0.27-0+deb8u1_armhf.changes ACCEPT
NEW changes in stable-new
Processing changes file: mariadb-10.0_10.0.27-0+deb8u1_arm64.changes ACCEPT
NEW changes in stable-new
Processing changes file: mariadb-10.0_10.0.27-0+deb8u1_s390x.changes ACCEPT
NEW changes in stable-new
Processing changes file: mariadb-10.0_10.0.27-0+deb8u1_i386.changes ACCEPT Processing changes file: mariadb-10.0_10.0.27-0+deb8u1_mipsel.changes ACCEPT Processing changes file: mariadb-10.0_10.0.27-0+deb8u1_ppc64el.changes ACCEPT
NEW changes in stable-new
Processing changes file: mariadb-10.0_10.0.27-0+deb8u1_mips.changes ACCEPT
Bug#833421: jessie-pu: debian-edu-config/1.818+deb8u2
On Sat, Sep 10, 2016 at 07:52:06PM +0100, Adam D. Barratt wrote: > Flagged for acceptance into p-u; thanks. thank you very much (for both d-e-c and d-e-d!), looking forward to next weekend! :) -- cheers, Holger signature.asc Description: Digital signature
NEW changes in stable-new
Processing changes file: dwarfutils_20120410-2+deb8u1_amd64.changes ACCEPT Processing changes file: gnome-sudoku_3.14.1-1+deb8u1_source.changes ACCEPT
Processed: Re: Bug#834745: jessie-pu: package dwarfutils/20120410-2+deb8u1
Processing control commands: > tags -1 + pending Bug #834745 [release.debian.org] jessie-pu: package dwarfutils/20120410-2+deb8u1 Added tag(s) pending. -- 834745: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=834745 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Processed: Re: Bug#836157: jessie-pu: gnome-sudoku/1:3.14.1-1+deb8u1
Processing control commands: > tags -1 + pending Bug #836157 [release.debian.org] jessie-pu: gnome-sudoku/1:3.14.1-1+deb8u1 Added tag(s) pending. -- 836157: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836157 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#834745: jessie-pu: package dwarfutils/20120410-2+deb8u1
Control: tags -1 + pending On Sat, 2016-09-10 at 11:54 +0100, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Thu, 2016-08-18 at 16:33 +0200, Fabian Wolff wrote: > > I would like to propose the following changes to the dwarfutils > > package in jessie: > > > > * New maintainer. > > * Add patch CVE-2015-8538.patch to fix CVE-2015-8538 (Closes: #807817). > > * Add patch CVE-2015-8750.patch to fix CVE-2015-8750 (Closes: #813182). > > * Add patch CVE-2016-2050.patch to fix CVE-2016-2050. > > * Add patch CVE-2016-2091.patch to fix CVE-2016-2091 (Closes: #813148). > > * Add patch CVE-2016-5034.patch to fix CVE-2016-5034. > > * Add patch CVE-2016-5036.patch to fix CVE-2016-5036. > > * Add patch CVE-2016-5038.patch to fix CVE-2016-5038. > > * Add patch CVE-2016-5039.patch to fix CVE-2016-5039. > > * Add patch CVE-2016-5042.patch to fix CVE-2016-5042. > > Apologies for not getting back to you sooner. > > Assuming that the resulting package has been tested on jessie, please go > ahead, bearing in mind that the window for 8.6 closes this weekend. Uploaded and flagged for acceptance. Regards, Adam
NEW changes in stable-new
Processing changes file: debian-edu-config_1.818+deb8u2_amd64.changes ACCEPT Processing changes file: debian-edu-doc_1.6~20160910+deb8u2_amd64.changes ACCEPT Processing changes file: mariadb-10.0_10.0.26-0+deb8u1_multi.changes ACCEPT Processing changes file: mariadb-10.0_10.0.26-0+deb8u1_amd64.changes ACCEPT Processing changes file: mariadb-10.0_10.0.26-0+deb8u1_arm64.changes ACCEPT Processing changes file: mariadb-10.0_10.0.26-0+deb8u1_armel.changes ACCEPT Processing changes file: mariadb-10.0_10.0.26-0+deb8u1_armhf.changes ACCEPT Processing changes file: mariadb-10.0_10.0.26-0+deb8u1_i386.changes ACCEPT Processing changes file: mariadb-10.0_10.0.26-0+deb8u1_mips.changes ACCEPT Processing changes file: mariadb-10.0_10.0.26-0+deb8u1_mipsel.changes ACCEPT Processing changes file: mariadb-10.0_10.0.26-0+deb8u1_ppc64el.changes ACCEPT Processing changes file: mariadb-10.0_10.0.26-0+deb8u1_s390x.changes ACCEPT Processing changes file: mariadb-10.0_10.0.27-0+deb8u1_amd64.changes ACCEPT Processing changes file: pdns_3.4.1-4+deb8u6_allonly.changes ACCEPT Processing changes file: pdns_3.4.1-4+deb8u6_amd64.changes ACCEPT Processing changes file: pdns_3.4.1-4+deb8u6_arm64.changes ACCEPT Processing changes file: pdns_3.4.1-4+deb8u6_armel.changes ACCEPT Processing changes file: pdns_3.4.1-4+deb8u6_armhf.changes ACCEPT Processing changes file: pdns_3.4.1-4+deb8u6_i386.changes ACCEPT Processing changes file: pdns_3.4.1-4+deb8u6_mips.changes ACCEPT Processing changes file: pdns_3.4.1-4+deb8u6_mipsel.changes ACCEPT Processing changes file: pdns_3.4.1-4+deb8u6_powerpc.changes ACCEPT Processing changes file: pdns_3.4.1-4+deb8u6_ppc64el.changes ACCEPT Processing changes file: pdns_3.4.1-4+deb8u6_s390x.changes ACCEPT
Bug#837300: jessie-pu: package mariadb-10.0/10.0.27-0+deb8u1
Control: tags -1 + pending On Sat, 2016-09-10 at 13:10 +0100, Adam D. Barratt wrote: > On Sat, 2016-09-10 at 14:42 +0300, Otto Kekäläinen wrote: > > The powerpc build of the security release 10.0.26-0+deb8u1 fails to > > build due to an upstream regression (see Bug#832931). This has been > > fixed in 10.0.27, but as it is not a security release (at least not > > publicly at the moment) I propose it to be uploaded via > > stable-updates. [..] > There's also a source package there - is that what you're proposing to > upload? If so, then please go ahead, That bit happened, and I've flagged it for acceptance. > but do attach a debdiff to this bug > log - a compressed copy is fine. Regards, Adam
Processed: Re: Bug#837300: jessie-pu: package mariadb-10.0/10.0.27-0+deb8u1
Processing control commands: > tags -1 + pending Bug #837300 [release.debian.org] jessie-pu: package mariadb-10.0/10.0.27-0+deb8u1 Added tag(s) pending. -- 837300: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837300 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Processed: Re: Bug#837296: jessie-pu: package debian-edu-doc/1.6~20160910+deb8u2
Processing control commands: > tags -1 + pending Bug #837296 [release.debian.org] jessie-pu: package debian-edu-doc/1.6~20160910+deb8u2 Added tag(s) pending. -- 837296: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837296 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#837296: jessie-pu: package debian-edu-doc/1.6~20160910+deb8u2
Control: tags -1 + pending On Sat, 2016-09-10 at 12:40 +0200, Holger Levsen wrote: > please accept debian-edu-doc/1.6~20160910+deb8u2 into jessie-pu, which > I'm uploading atm as it only contains documentation updates plus an > updated package description in debian/control and updated > debian/copyright (included, because it's updated by scripts…) Flagged for acceptance. Regards, Adam
Processed: Re: Bug#833421: jessie-pu: debian-edu-config/1.818+deb8u2
Processing control commands: > tags -1 + pending Bug #833421 [release.debian.org] jessie-pu: debian-edu-config/1.818+deb8u2 Added tag(s) pending. -- 833421: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=833421 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#833421: jessie-pu: debian-edu-config/1.818+deb8u2
Control: tags -1 + pending On Sat, 2016-09-10 at 15:35 +, Holger Levsen wrote: > On Sat, Sep 10, 2016 at 04:26:08PM +0100, Adam D. Barratt wrote: > > Please go ahead, bearing in mind the time constraints for getting this > > into 8.6. > > thanks, uploaded. Flagged for acceptance into p-u; thanks. Regards, Adam
Bug#833433: jessie-pu: package flashplugin-nonfree/1:3.6.1+deb8u1
Control: tags -1 + confirmed On Sat, 2016-08-06 at 05:20 +, Bart Martens wrote: > Control: tag -1 - moreinfo > > On Fri, Aug 05, 2016 at 11:02:40PM +0200, Julien Cristau wrote: > > Control: tag -1 moreinfo > > > > The current code is not a guarantee for the future. The function is > > named "human_time". That makes it IMO wrong to use in a script. It's > > also not stable across timezones. > > Using %Y now, see attached debdiff. Permission to upload? Sorry for the delay. Please go ahead, bearing in mind that the window for 8.6 closes this weekend. Regards, Adam
Processed: Re: Bug#833433: jessie-pu: package flashplugin-nonfree/1:3.6.1+deb8u1
Processing control commands: > tags -1 + confirmed Bug #833433 [release.debian.org] jessie-pu: package flashplugin-nonfree/1:3.6.1+deb8u1 Added tag(s) confirmed. -- 833433: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=833433 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#833421: jessie-pu: debian-edu-config/1.818+deb8u2
On Sat, Sep 10, 2016 at 04:26:08PM +0100, Adam D. Barratt wrote: > Please go ahead, bearing in mind the time constraints for getting this > into 8.6. thanks, uploaded. -- cheers, Holger signature.asc Description: Digital signature
Processed: Re: Bug#833421: jessie-pu: debian-edu-config/1.818+deb8u2
Processing control commands: > tags -1 + confirmed Bug #833421 [release.debian.org] jessie-pu: debian-edu-config/1.818+deb8u2 Added tag(s) confirmed. -- 833421: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=833421 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#833421: jessie-pu: debian-edu-config/1.818+deb8u2
Control: tags -1 + confirmed On Sat, 2016-09-10 at 14:55 +, Holger Levsen wrote: > Control: tag -1 - moreinfo > > Hi & sorry for the delay on this… > > On Fri, Aug 05, 2016 at 05:11:51PM +0200, Julien Cristau wrote: > > So I'm not seeing anything that handles conffile renaming in maintainer > > scripts (and e.g. removal of directories under /etc/iceweasel). That > > seems wrong, I think? > > indeed, we had forgotten that commit… Please go ahead, bearing in mind the time constraints for getting this into 8.6. Regards, Adam
Processed: Re: Bug#833421: jessie-pu: debian-edu-config/1.818+deb8u2
Processing control commands: > tag -1 - moreinfo Bug #833421 [release.debian.org] jessie-pu: debian-edu-config/1.818+deb8u2 Removed tag(s) moreinfo. -- 833421: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=833421 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#833421: jessie-pu: debian-edu-config/1.818+deb8u2
Control: tag -1 - moreinfo Hi & sorry for the delay on this… On Fri, Aug 05, 2016 at 05:11:51PM +0200, Julien Cristau wrote: > So I'm not seeing anything that handles conffile renaming in maintainer > scripts (and e.g. removal of directories under /etc/iceweasel). That > seems wrong, I think? indeed, we had forgotten that commit… I'd now like to upload the following changes compared to previously in this bug-report: +- Add code to cleanup iceweasel and firefox-esr related conffiles in + postinst and preinst scripts. +- Adjust testsuite/ltsp and testsuite/webserver as + /etc/firefox-esr/cert_override.txt is no longer useful. +- Adjust sbin/snakeoil-on-ice as only the /etc/skel location on the main + server seems to be useful for the certificate override file. +- Move debian-edu.js -> etc/firefox-esr/debian-edu.js as this is the + location for syspref now. Or, if you prefer, these are the changes compared to whats in stable now: +debian-edu-config (1.818+deb8u2) UNRELEASED; urgency=medium + + [ Wolfgang Schweer ] + * Take 2b2a657f from sid on cf/cf.ldapclient: don't purge libnss-mdns +cause cups now needs mdns for automatic printer detection. +(Closes: #825919). + * dhclient-exit-hooks.d/hostname: adjust for the case of a dedicated +LTSP server. (Closes: #783087). + * Adjust ldap-tools/ldap-debian-edu-install to be compliant with systemd +now that unit samba.service is masked (see #769714). (Closes: #826201). + * Move from Iceweasel to Firefox ESR: (Closes: #827448) +- rename several files containing iceweasel and also the directory + share/iceweasel. +- replace iceweasel with firefox-esr in various files. +- use '/etc/firefox-esr' as place for firefox preference files. +- update Makefile. +- Add code to cleanup iceweasel and firefox-esr related conffiles in + postinst and preinst scripts. +- Adjust testsuite/ltsp and testsuite/webserver as + /etc/firefox-esr/cert_override.txt is no longer useful. +- Adjust sbin/snakeoil-on-ice as only the /etc/skel location on the main + server seems to be useful for the certificate override file. +- Move debian-edu.js -> etc/firefox-esr/debian-edu.js as this is the + location for syspref now. + + [ Mike Gabriel ] + * Iceweasel -> Firefox transition: system-wide, non-configurable browser +defaults now go into /usr/share/firefox-esr/browser/defaults/, not +/usr/share/firefox/defaults/. + * Rename cf.firefox to cf.firefox-esr and make sure it operated on + /etc/firefox-esr. + * firefox-networked-prefs.js: Fix configuration folder in comment. + * sbin/snake-on-ice: Rename /etc/firefox to /etc/firefox-esr. Only +declare OVERRIDE_FILE once and then use it accordingly (instead +of hard-coding /etc/firefox(-esr) several times. Use more quotes. + * debian/dirs: We ship /etc/firefox-esr, not /etc/firefox. + * kickoffrc: Use firefox-esr.desktop, rather than firefox.desktop. + * testsuite/ltsp: Check presence of cert_override.txt in /etc/firefox-esr/, +rather than /etc/firefox/. + * testsuite/webserver: Dito (check presence of cert_override.txt in /etc/firefox-esr/, +rather than /etc/firefox/). + + [ Holger Levsen ] + * Move code to cleanup /usr/share/pam-configs/krb5 diversion from postinst +to preinst to ease upgrades from old wheezy installations. +(Closes: #779641) + * Adjust cf.krb5client to ensure that cfengine runs are idempotent. +(Closes: #779642) - Patch taken from master branch from Wolfgang. For upload I'll obviously change the distribution to "jessie". Attached are three files: - d-e-c-previous.diff - the diff to what whas previously proposed in this bug - d-e-c-stable.diff.gz - the diff to what's in stable - d-e-c-stable-M.diff - the diff to what's in stable but generated with diff -M So, is this ok to upload? Thanks for your work on this point release! -- cheers, Holger diff --git a/Makefile b/Makefile index a1ea964..a083d4f 100644 --- a/Makefile +++ b/Makefile @@ -112,6 +112,7 @@ SYSCONFFILES = \ exim4/exim-ldap-client-v4.conf \ exim4/exim-ldap-server-v4.conf \ filesystems \ + firefox-esr/debian-edu.js \ gosa/gosa.conf \ php5/apache2/php-debian-edu.ini \ insserv/overrides/kdm \ @@ -454,7 +455,6 @@ install: install-testsuite share/debian-edu-config/rsyslog-collector \ share/debian-edu-config/firefox-networked-prefs.js \ share/debian-edu-config/squid3.conf \ - share/firefox-esr/browser/defaults/preferences/debian-edu.js \ share/pam-configs/edu-group \ share/pam-configs/edu-umask \ share/perl5/Debian/Edu.pm \ diff --git a/cf/cf.firefox-esr b/cf/cf.firefox-esr index 89fd0e0..cd70a4e 100644 --- a/cf/cf.firefox-esr +++ b/cf/cf.firefox-esr @@ -1,17 +1,9 @@ # # Set up firefox to accept the default ssl certificate created through cf.apache2. # -# Should create cert_override.txt in /etc/firefox/profile/ that will be included -# in new firefox profiles created
Bug#837312: Bug#837319: Bug#837312: nmu: cdist_4.3.1-1
Hi Dmitry,
On Sat, Sep 10, 2016 at 05:09:20PM +0300, Dmitry Bogatov wrote:
> > Since not every sphinx reverse dependency which uses
> > ${sphinxdoc:Depends} (about 527 source packages in unstable according
> > to [1]) seems to have that rather strict dependency (thanks to Mattia
> > for pointing that out on IRC :-), I wonder what makes cdist's package
> > build causing that strict dependency.
>
> dh_linktree. Replacing files (images, fonts, ...) with symbolic links
> in deduplicate mode.
>
> I could drop it, it would result in increased binary package size and,
> what bothers me more, several instances of same file in my /usr.
Please drop it. dh_sphinxdoc replaces the JS files with correct symlinks,
so you do not need to care about it.
(It does not replace the images though, but they are few hundred bytes
each, so linking them will not have much sense.)
--
Dmitry Shachnev
signature.asc
Description: PGP signature
Bug#837312: Bug#837319: Bug#837312: nmu: cdist_4.3.1-1
> *sigh* I'd reopened and reassiged it if I were you. Not doing that now
> myself because there is also a sponsorship request for cdist at
> https://bugs.debian.org/837319 which will solve this anyways.
>
> Dmitry: Will have a look at #837319. :-)
Fine.
> > While on it I'd investigate why it has such particular needs of a so
> > weird depdency.
>
> That's something the sphinx maintainers should have a look at it as
> they seem to have decided that it's needed, otherwise they probably
> wouldn't have made the effort to implement it.
>
> Since not every sphinx reverse dependency which uses
> ${sphinxdoc:Depends} (about 527 source packages in unstable according
> to [1]) seems to have that rather strict dependency (thanks to Mattia
> for pointing that out on IRC :-), I wonder what makes cdist's package
> build causing that strict dependency.
dh_linktree. Replacing files (images, fonts, ...) with symbolic links
in deduplicate mode.
I could drop it, it would result in increased binary package size and,
what bothers me more, several instances of same file in my /usr.
Sorry, I do not follow very well about situation. I beleive -2
revision should solve issue, isn't it?
Bug#837312: nmu: cdist_4.3.1-1
Hi,
Mattia Rizzolo wrote:
> On Sat, Sep 10, 2016 at 03:03:42PM +0200, Axel Beckert wrote:
> > cdist-doc depends on "sphinx-common (<< 1.4.5.0~), sphinx-common (>=
> > 1.4.5)". This causes the following issues:
> >
> > * It's uninstallable in unstable
> > * sphinx doesn't migrate to testing[0]
> >
> > Rebuilding against sphinx 1.4.6-1 inside a clean chroot
> > (e.g. pbuilder) helps[1]. So please schedule a BinNMU on architecture
> > "all" for cdist:
> >
> > nmu cdist_4.3.1-1 . all . unstable . -m "Rebuild documentation against
> > sphinx 1.4.6"
[…]
> You need to ask for a full upload, perhaps by means of a RC bug (given
> that it's blocking other stuff, and it is uninstallable)
*sigh* I'd reopened and reassiged it if I were you. Not doing that now
myself because there is also a sponsorship request for cdist at
https://bugs.debian.org/837319 which will solve this anyways.
Dmitry: Will have a look at #837319. :-)
> While on it I'd investigate why it has such particular needs of a so
> weird depdency.
That's something the sphinx maintainers should have a look at it as
they seem to have decided that it's needed, otherwise they probably
wouldn't have made the effort to implement it.
Since not every sphinx reverse dependency which uses
${sphinxdoc:Depends} (about 527 source packages in unstable according
to [1]) seems to have that rather strict dependency (thanks to Mattia
for pointing that out on IRC :-), I wonder what makes cdist's package
build causing that strict dependency.
Regards, Axel
--
,''`. | Axel Beckert , http://people.debian.org/~abe/
: :' : | Debian Developer, ftp.ch.debian.org Admin
`. `' | 4096R: 2517 B724 C5F6 CA99 5329 6E61 2FF9 CD59 6126 16B5
`-| 1024D: F067 EA27 26B9 C3FC 1486 202E C09E 1D89 9593 0EDE
Bug#837312: marked as done (nmu: cdist_4.3.1-1)
Your message dated Sat, 10 Sep 2016 13:10:59 + with message-id <20160910131057.ixo34hsjtz53r...@chase.mapreri.org> and subject line Re: Bug#837312: nmu: cdist_4.3.1-1 has caused the Debian Bug report #837312, regarding nmu: cdist_4.3.1-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 837312: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837312 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu Hi, cdist-doc depends on "sphinx-common (<< 1.4.5.0~), sphinx-common (>= 1.4.5)". This causes the following issues: * It's uninstallable in unstable * sphinx doesn't migrate to testing[0] Rebuilding against sphinx 1.4.6-1 inside a clean chroot (e.g. pbuilder) helps[1]. So please schedule a BinNMU on architecture "all" for cdist: nmu cdist_4.3.1-1 . all . unstable . -m "Rebuild documentation against sphinx 1.4.6" (Hope, I got the "Architecture: all" thing right in the line above. :-) [0] https://qa.debian.org/excuses.php?package=sphinx [1] Be aware of https://bugs.debian.org/837311 (cdist FTBFS with additional packages being installed; seems a Python 2 vs 3 issue) -- System Information: Debian Release: stretch/sid APT prefers unstable APT policy: (990, 'unstable'), (600, 'testing'), (500, 'unstable-debug'), (500, 'buildd-unstable'), (110, 'experimental'), (1, 'experimental-debug'), (1, 'buildd-experimental') Architecture: amd64 (x86_64) Kernel: Linux 4.8.0-rc5-amd64 (SMP w/8 CPU cores) Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init) --- End Message --- --- Begin Message --- On Sat, Sep 10, 2016 at 03:03:42PM +0200, Axel Beckert wrote: > cdist-doc depends on "sphinx-common (<< 1.4.5.0~), sphinx-common (>= > 1.4.5)". This causes the following issues: > > * It's uninstallable in unstable > * sphinx doesn't migrate to testing[0] > > Rebuilding against sphinx 1.4.6-1 inside a clean chroot > (e.g. pbuilder) helps[1]. So please schedule a BinNMU on architecture > "all" for cdist: > > nmu cdist_4.3.1-1 . all . unstable . -m "Rebuild documentation against sphinx > 1.4.6" > > (Hope, I got the "Architecture: all" thing right in the line > above. :-) that should be right, and a binNMU would be scheduled, but then dak would reject it https://anonscm.debian.org/git/mirror/dak.git/commit/?id=368b5f9e628e664fef3cfce060943a0e7d168c59 So you can't even build it locally and upload. You need to ask for a full upload, peraphs by means of a RC bug (given that it's blocking other suff, and it is uninstallable) While on it I'd investigate why it has such particular needs of a so weird depdency. -- regards, Mattia Rizzolo GPG Key: 66AE 2B4A FCCF 3F52 DA18 4D18 4B04 3FCD B944 4540 .''`. more about me: https://mapreri.org : :' : Launchpad user: https://launchpad.net/~mapreri `. `'` Debian QA page: https://qa.debian.org/developer.php?login=mattia `- signature.asc Description: PGP signature --- End Message ---
Bug#837312: nmu: cdist_4.3.1-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu Hi, cdist-doc depends on "sphinx-common (<< 1.4.5.0~), sphinx-common (>= 1.4.5)". This causes the following issues: * It's uninstallable in unstable * sphinx doesn't migrate to testing[0] Rebuilding against sphinx 1.4.6-1 inside a clean chroot (e.g. pbuilder) helps[1]. So please schedule a BinNMU on architecture "all" for cdist: nmu cdist_4.3.1-1 . all . unstable . -m "Rebuild documentation against sphinx 1.4.6" (Hope, I got the "Architecture: all" thing right in the line above. :-) [0] https://qa.debian.org/excuses.php?package=sphinx [1] Be aware of https://bugs.debian.org/837311 (cdist FTBFS with additional packages being installed; seems a Python 2 vs 3 issue) -- System Information: Debian Release: stretch/sid APT prefers unstable APT policy: (990, 'unstable'), (600, 'testing'), (500, 'unstable-debug'), (500, 'buildd-unstable'), (110, 'experimental'), (1, 'experimental-debug'), (1, 'buildd-experimental') Architecture: amd64 (x86_64) Kernel: Linux 4.8.0-rc5-amd64 (SMP w/8 CPU cores) Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
Bug#837300: jessie-pu: package mariadb-10.0/10.0.27-0+deb8u1
On Sat, 2016-09-10 at 14:42 +0300, Otto Kekäläinen wrote: > The powerpc build of the security release 10.0.26-0+deb8u1 fails to > build due to an upstream regression (see Bug#832931). This has been > fixed in 10.0.27, but as it is not a security release (at least not > publicly at the moment) I propose it to be uploaded via > stable-updates. > > The update has been prepared and tested in the same way as > mariadb-10.0 security updates to Jessie have been. The package source > (with pristine-tar) is available in the jessie branch at > https://anonscm.debian.org/cgit/pkg-mysql/mariadb-10.0.git/log/?id=refs/heads/jessie > > This change contains only: > - upstream changes > - dropped patches that have been applied upstream > - updated changelog > > The debdiff is essentially just this commit: > https://anonscm.debian.org/cgit/pkg-mysql/mariadb-10.0.git/commit/?id=5e64c3d0ac76da03e239c2858bcf88c81b3cc8dc That may be the debdiff in the packaging changes - it's certainly not the debdiff against the previous stable(-security) upload, which is what is always requested. (and if my guess below is correct, then works out at "428 files changed, 7099 insertions(+), 6322 deletions(-)".) > Unsigned testing binaries are available at > http://labs.seravo.fi/~otto/debian/mariadb-10.0-jessie-amd64/?C=M;O=D There's also a source package there - is that what you're proposing to upload? If so, then please go ahead, but do attach a debdiff to this bug log - a compressed copy is fine. > Once the release team gives permission, I will upload the package. > > > I know the deadline for 8.5 this weekend, but I don't know at what > timestamp exactly, so I'll be watching my mail and upload very quickly > if you allow so. The deadline for 8.5 was a few months ago. ;-) Regards, Adam
Bug#837300: jessie-pu: package mariadb-10.0/10.0.27-0+deb8u1
Package: release.debian.org Severity: normal Tags: jessie User: release.debian@packages.debian.org Usertags: pu The powerpc build of the security release 10.0.26-0+deb8u1 fails to build due to an upstream regression (see Bug#832931). This has been fixed in 10.0.27, but as it is not a security release (at least not publicly at the moment) I propose it to be uploaded via stable-updates. The update has been prepared and tested in the same way as mariadb-10.0 security updates to Jessie have been. The package source (with pristine-tar) is available in the jessie branch at https://anonscm.debian.org/cgit/pkg-mysql/mariadb-10.0.git/log/?id=refs/heads/jessie This change contains only: - upstream changes - dropped patches that have been applied upstream - updated changelog The debdiff is essentially just this commit: https://anonscm.debian.org/cgit/pkg-mysql/mariadb-10.0.git/commit/?id=5e64c3d0ac76da03e239c2858bcf88c81b3cc8dc Unsigned testing binaries are available at http://labs.seravo.fi/~otto/debian/mariadb-10.0-jessie-amd64/?C=M;O=D Once the release team gives permission, I will upload the package. I know the deadline for 8.5 this weekend, but I don't know at what timestamp exactly, so I'll be watching my mail and upload very quickly if you allow so. Thanks!
Bug#836795: jessie-pu: package samba/2:4.1.17+dfsg-2+deb8u2
On Sat, 2016-09-10 at 13:15 +0200, Salvatore Bonaccorso wrote: > Thanks for CC'ing. It's right we haven't marked it as no-dsa (yet). > But it's true we asked (originally Andrew Barlett), to have samba > updated via a point release to adresss remaining (minor) regressions > introduced by the original fixes. Samba upstream has released several > updates in meanwhile and the idea was to have the packages exposed to > more wider testing via the jessie-proposed-updates before beeing > included in stable. Okay, thanks. That makes sense, although a package uploaded now will either not get much (if any) testing or have to wait for 8.7. > If this is not possible at this stage, It would be great to have for > the next point release (in that case maybe we can release a targetted > update for CVE-2016-2119 only via a DSA, but it would not be high > priority). Okay. > Does this clarify? Our prefered view would be to see samba beeing > updated to the latest minor update of the 4.2 series to be included in > stable. Yes, thanks. Regards, Adam
Bug#836795: jessie-pu: package samba/2:4.1.17+dfsg-2+deb8u2
Hi Adam, On Sat, Sep 10, 2016 at 11:16:00AM +0100, Adam D. Barratt wrote: > Control: tags -1 + moreinfo > > [CC += team@security] > > On Mon, 2016-09-05 at 20:50 +, Jelmer Vernooij wrote: > > I'd like to update Samba in jessie to 4.2.14+dfsg. Debdiff is attached. > > This didn't make it to debian-release, most likely due to the size of > the debdiff. > > > The 4 Samba releases since 4.2.10 (currently in jessie) only fix > > important bugs, in particular a CVE (CVE-2016-2119) and various > > regressions introduced by the security fixes from 4.2.10. > > Has the possibility of releasing this via the security archive been > discussed? CVE-2016-2119 isn't marked no-dsa in the Security Tracker > currently and by the sound of it the remaining changes relate to fixes > for issues in the previous security update. Thanks for CC'ing. It's right we haven't marked it as no-dsa (yet). But it's true we asked (originally Andrew Barlett), to have samba updated via a point release to adresss remaining (minor) regressions introduced by the original fixes. Samba upstream has released several updates in meanwhile and the idea was to have the packages exposed to more wider testing via the jessie-proposed-updates before beeing included in stable. If this is not possible at this stage, It would be great to have for the next point release (in that case maybe we can release a targetted update for CVE-2016-2119 only via a DSA, but it would not be high priority). Does this clarify? Our prefered view would be to see samba beeing updated to the latest minor update of the 4.2 series to be included in stable. Regards, Salvatore signature.asc Description: PGP signature
Bug#834745: jessie-pu: package dwarfutils/20120410-2+deb8u1
Control: tags -1 + confirmed On Thu, 2016-08-18 at 16:33 +0200, Fabian Wolff wrote: > I would like to propose the following changes to the dwarfutils > package in jessie: > > * New maintainer. > * Add patch CVE-2015-8538.patch to fix CVE-2015-8538 (Closes: #807817). > * Add patch CVE-2015-8750.patch to fix CVE-2015-8750 (Closes: #813182). > * Add patch CVE-2016-2050.patch to fix CVE-2016-2050. > * Add patch CVE-2016-2091.patch to fix CVE-2016-2091 (Closes: #813148). > * Add patch CVE-2016-5034.patch to fix CVE-2016-5034. > * Add patch CVE-2016-5036.patch to fix CVE-2016-5036. > * Add patch CVE-2016-5038.patch to fix CVE-2016-5038. > * Add patch CVE-2016-5039.patch to fix CVE-2016-5039. > * Add patch CVE-2016-5042.patch to fix CVE-2016-5042. Apologies for not getting back to you sooner. Assuming that the resulting package has been tested on jessie, please go ahead, bearing in mind that the window for 8.6 closes this weekend. Regards, Adam
Processed: Re: Bug#834745: jessie-pu: package dwarfutils/20120410-2+deb8u1
Processing control commands: > tags -1 + confirmed Bug #834745 [release.debian.org] jessie-pu: package dwarfutils/20120410-2+deb8u1 Added tag(s) confirmed. -- 834745: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=834745 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Processed: tagging 829130
Processing commands for cont...@bugs.debian.org: > # Fix tags inadvertently broken by earlier reopening > tags 829130 + pending Bug #829130 [release.debian.org] jessie-pu: package wget/1.16-1+deb8u1 Added tag(s) pending. > thanks Stopping processing here. Please contact me if you need assistance. -- 829130: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=829130 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Processed: Re: Bug#835812: jessie-pu: package ccache/3.1.12-2
Processing control commands: > tags -1 + confirmed Bug #835812 [release.debian.org] jessie-pu: package ccache/3.1.12-2 Added tag(s) confirmed. -- 835812: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=835812 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#835812: jessie-pu: package ccache/3.1.12-2
Control: tags -1 + confirmed
On Sun, 2016-08-28 at 16:59 +0200, Joel Rosdahl wrote:
> To fix #829088 ("ccache don't stop immediately on SIGINT and SIGTERM"), I
> propose to upgrade ccache from 3.1.12-1 to 3.1.12-2 in
> stable-proposed-updates.
>
> The change is a simple one-liner: Call _exit(1) at the end of the signal
> handler to exit from e.g. SIGTERM. Without the exit, ccache will resume and
> run
> the compiler again.
Please go ahead, bearing in mind that the window for 8.6 closes this
weekend.
Regards,
Adam
Bug#836823: jessie-pu: package glusterfs/3.5.2-2+deb8u2
Control: tags -1 + confirmed On Tue, 2016-09-06 at 11:20 +0200, Patrick Matthäi wrote: > +glusterfs (3.5.2-2+deb8u3) jessie-proposed-updates; urgency=medium > + > + * quota: Fix could not start auxiliary mount issue by adding upstream patch > +03-quota-fix-could-not-start-auxiliary-mount-issue. > +Closes: #825834 Please go ahead, bearing in mind that the window for inclusion in 8.6 closes this weekend. Regards, Adam
Processed: Re: Bug#836823: jessie-pu: package glusterfs/3.5.2-2+deb8u2
Processing control commands: > tags -1 + confirmed Bug #836823 [release.debian.org] jessie-pu: package glusterfs/3.5.2-2+deb8u2 Added tag(s) confirmed. -- 836823: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836823 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Processed: Re: Bug#836157: jessie-pu: gnome-sudoku/1:3.14.1-1+deb8u1
Processing control commands: > tags -1 + confirmed Bug #836157 [release.debian.org] jessie-pu: gnome-sudoku/1:3.14.1-1+deb8u1 Added tag(s) confirmed. -- 836157: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836157 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#836157: jessie-pu: gnome-sudoku/1:3.14.1-1+deb8u1
Control: tags -1 + confirmed On Tue, 2016-08-30 at 21:50 -0400, Jeremy Bicha wrote: > gnome-sudoku had a bug where it would generate the same sequence of > puzzles every time the app was run. I'm applying the patch included > upstream in 3.18.3. Please go ahead, bearing in mind that the window for 8.6 closes this weekend. Regards, Adam
Processed: Re: Bug#836795: jessie-pu: package samba/2:4.1.17+dfsg-2+deb8u2
Processing control commands: > tags -1 + moreinfo Bug #836795 [release.debian.org] jessie-pu: package samba/2:4.1.17+dfsg-2+deb8u2 Added tag(s) moreinfo. -- 836795: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836795 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#836795: jessie-pu: package samba/2:4.1.17+dfsg-2+deb8u2
Control: tags -1 + moreinfo [CC += team@security] On Mon, 2016-09-05 at 20:50 +, Jelmer Vernooij wrote: > I'd like to update Samba in jessie to 4.2.14+dfsg. Debdiff is attached. This didn't make it to debian-release, most likely due to the size of the debdiff. > The 4 Samba releases since 4.2.10 (currently in jessie) only fix > important bugs, in particular a CVE (CVE-2016-2119) and various > regressions introduced by the security fixes from 4.2.10. Has the possibility of releasing this via the security archive been discussed? CVE-2016-2119 isn't marked no-dsa in the Security Tracker currently and by the sound of it the remaining changes relate to fixes for issues in the previous security update. Regards, Adam
Bug#837199: transition: armadillo
On 09/10/2016 02:11 AM, Kumar Appaiah wrote: > armadillo has already been uploaded to unstable. While the reverse > dependencies should build with a binNMU, I have not tested them and > will test it in the next couple of days. Because gdal needs to be rebuilt for the armadillo transition to unblock the vtk6 rebuild for the openmpi transition, I've also done a round of rebuilds to assess the impact. Fortunately the number of reverse dependencies for armadillo is limited, and all packages rebuilt successfully: gdal (2.1.1+dfsg-4) OK gnss-sdr (0.0.8-1) OK mlpack (2.0.2-1) OK seer (1.1.1-2) OK pktools (2.6.7-2) OK I'd like to have gdal (2.1.1+dfsg-4) migrate to testing to get the two RC bugfixes into stretch, before binNMUs for the armadillo rdeps are scheduled. Kind Regards, Bas -- GPG Key ID: 4096R/6750F10AE88D4AF1 Fingerprint: 8182 DE41 7056 408D 6146 50D1 6750 F10A E88D 4AF1
Bug#835397: transition: superlu soname 4 -> 5
This transition is complicated by being intertwined with the openmpi transition. The getfem++ & petsc build dependencies cannot be installed until scalapack is rebuilt with openmpi 2.0, unfortunately scalapack FTBFS due to test failures (#837062) which need to be resolved first. And the slepc build dependencies cannot be installed until petsc is rebuilt with openmpi. pysparse (1.1-2) FTBFS due to an incompatibility with superlu 5.2.1: Src/superlu3module.c:270:3: error: too few arguments to function 'dgstrf' dgstrf(>options, , relax, panel_size, ^~ This was already reported in #836677, whose severity has now been increased to serious. Kind Regards, Bas -- GPG Key ID: 4096R/6750F10AE88D4AF1 Fingerprint: 8182 DE41 7056 408D 6146 50D1 6750 F10A E88D 4AF1
Re: The (uncalled for) toolchain maintainers roll call for stretch
On 09/10/2016 12:48 AM, Matthias Klose wrote: > Uncovered by the upstream primary and secondary platforms are the mips* > architectures and powerpc. For the uncovered archs I would expect somehow > more > and pro-active Debian maintenance, however I fail to see this happen. > > - see the history of ftbfs on the buildd page of the gcc-snapshot package > - see the status of the gcc-6 package for the pre-release uploads > - see the number of RC issues for binutils which came up with 2.27, >some still open. > - Toolchain packages are not watched by porters, and I can't track >every regression myself, however this is not done well by porters. > > On the recent Porter's call I didn't see any toolchain support for the powerpc > architecture. I would actually be happy to take over the powerpc port as its official porter. I'm already taking care of powerpcspe, so I think it would be a perfect fit. Let me know what needs to be done to make this happen! I don't want to see powerpc go too soon. Cheers, Adrian -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913
jessie-ignore for "maintainer address bounces" bugs?
Hi, would it be OK to tag "maintainer address bounces" bugs as jessie-ignore? Andreas
NEW changes in stable-new
Processing changes file: kamailio_4.2.0-2+deb8u2_mipsel.changes ACCEPT
Processed: bug 837199 is forwarded to https://release.debian.org/transitions/html/auto-armadillo.html
Processing commands for cont...@bugs.debian.org: > forwarded 837199 > https://release.debian.org/transitions/html/auto-armadillo.html Bug #837199 [release.debian.org] transition: armadillo Set Bug forwarded-to-address to 'https://release.debian.org/transitions/html/auto-armadillo.html'. > thanks Stopping processing here. Please contact me if you need assistance. -- 837199: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=837199 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
NEW changes in stable-new
Processing changes file: kamailio_4.2.0-2+deb8u2_armel.changes ACCEPT Processing changes file: kamailio_4.2.0-2+deb8u2_mips.changes ACCEPT
