date (Closes: #847963)
+* Handle public keys listed multiple times (Closes: #847964)
+
+ -- Nicolas Braud-Santoni <nico...@braud-santoni.eu> Fri, 27 Jan 2017
21:10:30 +0100
+
keyringer (0.3.7-1) unstable; urgency=low
* Added .gitignore
diff --git c/debian/patches/0001-Handle-s
On Tue, Jul 24, 2018 at 01:59:39PM +0800, Nicolas Braud-Santoni wrote:
> While I didn't yet rebuild all impacted packages, I expect all (or most) to
> rebuild cleanly as the removed APIs have been deprecated for a while.
I'm currently doing the mass-rebuild and filing FTBFSes, but th
Package: release.debian.org
Severity: normal
Tags: stretch security
User: release.debian@packages.debian.org
Usertags: pu
Control: block 906128 by -1
Hi,
I would like to upload a fix for #906128 (CVE-2018-14779 and CVE-2018-14780)
to stretch-pu; I already backported the fix from upstream to
Control: tag -1 - moreinfo
On Thu, Aug 16, 2018 at 10:06:03AM +0200, Julien Cristau wrote:
> This isn't fixed in sid.
Yes, gwolf sponsored the upload, but it was rejected as his new signing
subkey isn't yet in debian-keyring; I requested jcc@d.o to sponsor the
upload instead.
Best,
nicoo
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition
Control: block 844452 by -1
Control: retitle 844452 Orphan json-c
Hi,
I need to request a transition slot for json-c; the autogenerated tracker
[0] seems correct, and I will also need
Control: tag -1 - moreinfo
Hi Adam,
Sorry for getting back to you this late.
On Wed, Aug 29, 2018 at 08:21:18AM +0100, Adam D. Barratt wrote:
> Control: tags -1 + moreinfo
>
> Why does the diff contain (and not mention):
>
> upstream-signing-key.pgp
> 1451 ---
>
shows current touch policies
++ Bugfix: Fix support for german (DE) keyboard layout for static passwords
+ Closes: #925212
+
+ * debian/control: Add Afif Elghraoui as uploader
+
+ -- Nicolas Braud-Santoni Thu, 21 Mar 2019 12:30:40 +0100
+
yubikey-manager (2.0.0-2) unstable; urgency=low
1.6.2/debian/changelog 2018-09-25 11:40:12.0
+0200
+++ yubico-piv-tool-1.7.0/debian/changelog 2019-04-06 20:21:30.0
+0200
@@ -1,3 +1,19 @@
+yubico-piv-tool (1.7.0-1) UNRELEASED; urgency=high (security fixes)
+
+ [ Nicolas Braud-Santoni ]
+ * New upstream version 1.7.0
++
)
+ * debian/control: Add missing build dependency on dh-python
+
+ -- Nicolas Braud-Santoni Fri, 08 Feb 2019 12:24:25 +0100
+
kazam (1.4.5-2) unstable; urgency=medium
* configparser_api_changes.patch: Update for changes
diff -Nru kazam-1.4.5/debian/control kazam-1.4.5/debian
by fuzzing.
+ Fixes for memleaks.
* Remove unused lintian override
* debian/rules: Remove useless dh_missing invocation.
A single binary package is being produced.
-- Nicolas Braud-Santoni Mon, 04 Mar 2019 18:40:01 +0100
Moreover, version 0.5-1 closes several Debian bugs
On Sat, Feb 23, 2019 at 02:27:04PM +0100, Nicolas Braud-Santoni wrote:
> On Fri, Feb 15, 2019 at 04:55:58PM +0100, Nicolas Braud-Santoni wrote:
> > On Wed, Feb 13, 2019 at 03:34:50PM +0100, Nicolas Braud-Santoni wrote:
> > > I assume I can't just dput this, as it already ex
Hi Niels,
On Tue, Mar 05, 2019 at 07:12:00AM +, Niels Thykier wrote:
> I have unblocked mblaze/0.5.1-1.
Thanks :)
> For next time, it would have made it
> easier if you had waited for mblaze/0.5-1 to migrate to testing before
> uploading mblaze/0.5.1-1.
Yes, I simply didn't want to delay
On Fri, Feb 15, 2019 at 04:55:58PM +0100, Nicolas Braud-Santoni wrote:
> On Wed, Feb 13, 2019 at 03:34:50PM +0100, Nicolas Braud-Santoni wrote:
> > I assume I can't just dput this, as it already exists in stable-new.
> > Could you reject the existing package first, and
trol: Fix relationships on liblirc{,client}-dev.
+This should be Breaks+Replaces, not Conflict+Replaces.
+Using the former should ensure that upgrading from stretch works smoothly.
+
+ * debian/changelog: Fix spelling in v0.10.1-4
+
+ -- Nicolas Braud-Santoni Sun, 10 Mar 2019 00:28:01 +0100
+
lirc
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: rm
Control: user bugsqu...@qa.debian.org
Control: usertags 884463 + ni...@debian.org
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Dear release team,
Passenger has had an open, grave security
On Tue, Mar 12, 2019 at 07:46:34AM +0100, Andreas Beckmann wrote:
> Hi Nicolas,
Hi Andreas,
> On 2019-03-12 02:21, Nicolas Braud-Santoni wrote:
> I didn't spot anything obviously broken in the new diff.
\o/
Sorry this took so much back-and-forth, and thanks for your patience &l
tarball) :
yubikey-manager (2.0.0-2) unstable; urgency=low
[ Nicolas Braud-Santoni ]
* Autogenerate a manpage with help2man.
This is what upstream did, though doing it in the package build avoids
having it go out-of-sync with the actual binary. (Closes: #912029
* Rename debian/post{inst,rm} to lirc.post{inst,rm}
* debian/lirc.{postinst,prerm}: Recompile and remove Python bytecode as
needed
Closes: #924158
@@ -23,7 +26,7 @@ lirc (0.10.1-5.1) unstable; urgency=medium
* debian/changelog: Fix spelling in v0.10.1-4
- -- Nicolas
relationships on liblirc{,client}-dev.
+This should be Breaks+Replaces, not Conflict+Replaces.
+Using the former should ensure that upgrading from stretch works smoothly.
+
+ * debian/changelog: Fix spelling in v0.10.1-4
+
+ -- Nicolas Braud-Santoni Sun, 10 Mar 2019 00:28:01 +0100
+
lirc (0.10.1-5
On Mon, Mar 11, 2019 at 07:53:44PM +0100, Paul Gevers wrote:
> Control: tags -1 moreinfo
>
> Hi Nicolas
Hi Paul,
> On 11-03-2019 13:29, Nicolas Braud-Santoni wrote:
> > Passenger has had an open, grave security bug open since December 2017
> > (#884463)
> > and
Hi Birger, Boyuan, and Emilio !
On Tue, Jan 15, 2019 at 04:22:51PM +0100, Emilio Pozuelo Monfort wrote:
> On 15/01/2019 15:56, Boyuan Yang wrote:
> > I noticed that we've missed the transition freeze. Does that mean that
> > json-c
> > 0.13 will miss Debian Buster?
>
> Yeah, sorry but I'd
On Wed, Feb 13, 2019 at 03:21:44PM +0100, Nicolas Braud-Santoni wrote:
> > Didn't you do that? (Or your sponsor, I guess, but I still assumed you'd be
> > aware.)
> > [...]
> > I didn't remove anything, no. I have nothing to do with the package, just
> > looking at w
On Fri, Feb 08, 2019 at 12:53:14PM +, Adam D. Barratt wrote:
> > On Wed, Aug 29, 2018 at 08:21:18AM +0100, Adam D. Barratt wrote:
> >
> > It seems the tags in the packaging repo do not actually match the
> > uploads
> > to the archive, and I do not know why: this is a team-maintained
> >
On Wed, Feb 13, 2019 at 03:34:50PM +0100, Nicolas Braud-Santoni wrote:
> I assume I can't just dput this, as it already exists in stable-new.
> Could you reject the existing package first, and I will reupload?
Uploaded a new revision at the request of jcristau.
signature.asc
Descriptio
(1.19.3-3) unstable; urgency=high (fixes RC bug)
+
+ * Ship udev rules again, as libyubikey-udev
+Closes: 924787
+
+ -- Nicolas Braud-Santoni Sat, 06 Apr 2019 21:14:35 +0200
+
yubikey-personalization (1.19.3-2) unstable; urgency=medium
* debian/control: Mark libykpers-1-dev as Multi
On Sun, Jun 09, 2019 at 08:25:37PM +0200, Paul Gevers wrote:
> Happened. Unblocked, thanks.
Hi, Paul, Niels, and Afif,
Thank you very much for taking care of this :)
I also wanted to apologise for dropping off for such a long time.
As you noticed, I was stuck with no debian-keyring update
Control: tag -1 - d-i
Hi Jonathan,
On Sun, Aug 04, 2019 at 02:37:25PM +0100, Jonathan Wiltshire wrote:
> As there's a udeb involved I will just check with the d-i release managers
> that this isn't an issue, though I can't see that fixing a crash would be
> all that controversial.
I can confirm
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: binnmu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
nmu lutok_0.4+dfsg-1 . all amd64 . unstable . -m "Rebuild on buildd for
transition to bullseye"
- -- System Information:
Debian Release:
Control: tags -1 - moreinfo
Hi Adam,
Sorry for the slow reply, I got my other -pu uploads through the finish
line and forgot I had another one inflight >_>'
On Fri, Jul 26, 2019 at 04:13:20PM -0300, Adam D. Barratt wrote:
> On 2019-07-20 11:15, Nicolas Braud-Santoni wrote:
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: binnmu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
nmu tasksel_3.54 . ANY . unstable . -m "Rebuild for transition to bullseye"
tasksel/3.54 had to be a binary upload, as it went through NEW
On Tue, Aug 20, 2019 at 09:27:45PM +0100, Adam D. Barratt wrote:
> On Tue, 2019-08-13 at 01:15 +0200, Nicolas Braud-Santoni wrote:
> > Fixed, thanks for the catch.
> > May I go ahead and upload? Updated debdiff attached
>
> Please do.
Done, thanks again :)
Best,
On Thu, Aug 29, 2019 at 10:28:33PM +0100, Adam D. Barratt wrote:
> On Thu, 2019-08-29 at 00:04 +0200, Nicolas Braud-Santoni wrote:
> > I would like to backport the fix for CVE-2019-9578 in the next point
> > release
> > for stretch. Please find enclosed
Package: release.debian.org
Severity: normal
Tags: buster
User: release.debian@packages.debian.org
Usertags: pu
Control: block 923874 by -1
Control: block 925274 by -1
Control: tag 923874 + pending buster
Control: tag 925274 + pending buster
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
On Wed, Aug 28, 2019 at 10:29:02PM +0200, Nicolas Braud-Santoni wrote:
> I would like to backport the following patches for libu2f-host to stretch:
>
> + Fix for CVE-2019-9578 (Closes: #923874)
I was confused, this is a minor security issue for which no CVE was assigned.
(CVE-
On Thu, Aug 22, 2019 at 09:28:18PM +0100, Adam D. Barratt wrote:
> Ping on a new upload? There's just over a week if you want to get this
> in to 9.10.
Thanks for the reminder; uploaded.
signature.asc
Description: PGP signature
) stretch; urgency=medium
+
+ * Backport fix for CVE-2019-9578 (Closes: #923874)
+ * Configure git-buildpackage for stretch
+
+ -- Nicolas Braud-Santoni Wed, 28 Aug 2019 23:52:13 +0200
+
libu2f-host (1.1.2-2+deb9u1) stretch-security; urgency=high
* Backport patch for CVE-2018-20340 (Closes
-2019-12209. (Closes: #930021)
+ + Fix debug file descriptor leak CVE-2019-12210. (Closes: #930023)
+ + Fix a non-critical buffer out-of-bounds access.
+
+ * Backport a reliability fix
+pam-u2f could previously segfault following a failure to allocate a buffer.
+
+ -- Nicolas Braud-Santoni
descriptor leak CVE-2019-12210. (Closes: #930023)
+ + Fix a non-critical buffer out-of-bounds access. (Closes: #930047)
+
+ * Backport a reliability fix
+pam-u2f could previously segfault following a failure to allocate a buffer.
+
+ -- Nicolas Braud-Santoni Sat, 20 Jul 2019 16:10:16 +0200
,11 @@
+yubikey-personalization (1.19.3-3+deb10u1) buster-proposed-updates;
urgency=medium
+
+ * Backport security improvements from v1.20.0
+ * debian/control: Add missing Break+Replaces on libyubikey-udev
+Closes: #931081
+
+ -- Nicolas Braud-Santoni Sat, 20 Jul 2019 11:43:51 +0200
+
yubi
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Dear release team,
Please unblock the package rust-proc-macro2.
Its transition to bullseye is blocked because
- - rust-quote/1.0.2-1
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: binnmu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Dear release team,
I have several Rust packages which cannot transition to bullseye due to a
binary upload (required for going through NEW).
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: binnmu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
nmu haveged_1.9.8-1 . amd64 . unstable . -m "Rebuild on buildd for transition
to testing"
- -- System Information:
Debian Release:
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: binnmu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
nmu rust-box-drawing_0.1.2-1 . amd64 . unstable . -m "Rebuild on buildd for
transition to testing"
- -- System Information:
Debian Release:
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: binnmu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
nmu seriousproton_2019.05.21+dfsg-1 . amd64 . unstable . -m "Rebuild on buildd
for transition to testing"
- -- System Information:
Debian
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: binnmu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
nmu endlessh_1.0-1 . amd64 . unstable . -m "Rebuild on buildd for transition to
testing"
- -- System Information:
Debian Release:
45 matches
Mail list logo