Bug#1071161: glib2.0 2.66.8-1+deb11u4 flagged for acceptance
On Tue, 2024-05-21 at 11:23 +0100, Simon McVittie wrote: > On Mon, 20 May 2024 at 20:12:24 +0000, Adam D Barratt wrote: > > The upload referenced by this bug report has been flagged for > > acceptance > > into the proposed-updates queue for Debian bullseye. > ... > > Package: glib2.0 > > Version: 2.66.8-1+deb11u4 > > Explanation: fix a (rare) memory leak > > Thanks for reviewing this change. Please consider also accepting > #1071159 into bookworm-p-u (same change, different base version) to > preserve the property that bookworm has no regressions when compared > with bullseye, which I assume is something we want to be able to > treat as an invariant. Yep, that's the plan. I just ran out of time on yesterday's run through the queues before I got to handling the bookworm upload. Regards, Adam
Bug#1071266: software-properties 0.99.30-4.1~deb12u1 flagged for acceptance
package release.debian.org tags 1071266 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: software-properties Version: 0.99.30-4.1~deb12u1 Explanation: software-properties-qt: Add Conflicts+Replaces: software-properties-kde for smoother upgrades from bullseye
Bug#1071161: glib2.0 2.66.8-1+deb11u4 flagged for acceptance
package release.debian.org tags 1071161 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: glib2.0 Version: 2.66.8-1+deb11u4 Explanation: fix a (rare) memory leak
Bug#1070232: python3.11 3.11.2-6+deb12u2 flagged for acceptance
package release.debian.org tags 1070232 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: python3.11 Version: 3.11.2-6+deb12u2 Explanation: protect zipfile from "quoted-overlap" zipbomb [CVE-2024-0450]; tempfile.TemporaryDirectory: fix symlink bug in cleanup [CVE-2023-6597]; fix "os.path.normpath(): Path truncation at null bytes" [CVE-2023-41105]; avoid bypass of TLS handshake protections on closed sockets [CVE-2023-40217]; strip C0 control and space characters in urlsplit [CVE-2023-24329]; avoid a potential null pointer dereference in filleutils
Bug#1070799: rustc-web 1.70.0+dfsg1-7~deb11u1 flagged for acceptance
package release.debian.org tags 1070799 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: rustc-web Version: 1.70.0+dfsg1-7~deb11u1 Explanation: support firefox-esr and thunderbird in bullseye for LTS
Bug#1069933: emacs 28.2+1-15+deb12u1 flagged for acceptance
package release.debian.org tags 1069933 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: emacs Version: 28.2+1-15+deb12u1 Explanation: security fixes [CVE-2024-30202 CVE-2024-30203 CVE-2024-30204 CVE-2024-30205]
Bug#1070218: pypy3 7.3.11+dfsg-2+deb12u2 flagged for acceptance
package release.debian.org tags 1070218 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: pypy3 Version: 7.3.11+dfsg-2+deb12u2 Explanation: strip C0 control and space characters in urlsplit [CVE-2023-24329]; avoid bypass of TLS handshake protections on closed sockets [CVE-2023-40217]; tempfile.TemporaryDirectory: fix symlink bug in cleanup [CVE-2023-6597]; protect zipfile from "quoted-overlap" zipbomb [CVE-2024-0450]
Bug#1069880: cpu 1.4.3-14~deb11u1 flagged for acceptance
package release.debian.org tags 1069880 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: cpu Version: 1.4.3-14~deb11u1 Explanation: provide exactly one definition of globalLdap in ldap plugin
Bug#1065071: php-symfony-contracts 1.1.10-2+deb11u1 flagged for acceptance
package release.debian.org tags 1065071 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: php-symfony-contracts Version: 1.1.10-2+deb11u1 Explanation: force loading of system dependencies
Bug#1068694: bullseye-pu: package json-smart/2.2-2+deb11u1
On Mon, 2024-04-22 at 17:57 +0100, Jonathan Wiltshire wrote: > Control: tag -1 confirmed > > On Tue, Apr 09, 2024 at 10:01:11AM +0200, Andreas Beckmann wrote: > > +++ b/debian/patches/0004-CVE-2021-31684-Fix-indexOf.patch > > @@ -0,0 +1,27 @@ > > +From: HAPPY > > Well if that doesn't tickle my antennae nothing will :) > > Please go ahead. It looks like the bookworm update didn't make it to stable-new (and thus p-u) yet, so the bullseye update is stuck in oldstable-new so as not to cause version skew. Regards, Adam
Bug#1069943: Bug#1031888: emacs-nox: bullseye-security update fails to install on mips64el
On Thu, 2024-05-16 at 17:01 +0100, Sean Whitton wrote: > control: reopen 1031888 > > Hello Adam, > > On Fri 21 Apr 2023 at 10:19am +01, Adam D. Barratt wrote: > [...] > > With my DSA hat on, I'm not aware of it having been confirmed to > > fix > > the issue on bullseye. I'm happy to test an updated package in the > > meantime. (FWIW the update isn't in p-u currently because of this > > issue.) > > I have prepared an update for bullseye incorporating upstream's fix > for the memory leak. > I would be grateful if you could test whether the mips64el > installation is still reproducible. > > As deb11u3 is already in p-u and tagged, I've versioned this deb11u4. > I've pushed it to the fix-1031888 branch of salsa:rlb/deb-emacs.git. > I've built a 27.1+1-3.1+deb11u4~1.gbp4104c1 package, and confirmed that it installs cleanly over +deb11u2 on mipsel-osuosl-01. I then checked the version numbers, and realised that +deb11u2 was the version that was previously failing. Checking back, all of the debian.org systems that were affected by the bug are either down or have already been upgraded to bookworm, so I'm afraid I no longer have a useful test environment for #1031888. Regards, Adam
Bug#1070761: bullseye-pu: package bart-cuda/0.6.00-1+deb11u1
On Tue, 2024-05-14 at 20:51 +0200, Santiago Vila wrote: > > > As bart-cuda build-depends on nvidia-cuda-toolkit, which is in > > > non- > > > free, bart-cuda is not buildable on the buildd network, so this > > > will > > > also need a binary upload to be performed. > > > > Ok, what's the best way to solve this? Can you reject the upload > > so that I do it again including .debs? > > Nevermind. I see that the upload was already accepted, and what is > missing is a binary-only upload matching the already existing source. > Yes, sorry if I wasn't clear enough about that. > I'll make the missing binary upload. Thanks. Regards, Adam
Bug#1070761: bullseye-pu: package bart-cuda/0.6.00-1+deb11u1
On Wed, 2024-05-08 at 17:18 +0200, Santiago Vila wrote: > This upload fixes Bug #1070757 FTBFS in bullseye. > Note: A similar request for a similar bug has been made for package > "bart". > > [ Impact ] > Anybody who try to build the package from source may find > that the package FTBFS unexpectedly. As bart-cuda build-depends on nvidia-cuda-toolkit, which is in non- free, bart-cuda is not buildable on the buildd network, so this will also need a binary upload to be performed. Regards, Adam
Bug#1065013: nvidia-graphics-drivers 470.239.06-1 flagged for acceptance
On Wed, 2024-05-08 at 18:22 +0100, Adam D. Barratt wrote: > On Wed, 2024-05-08 at 19:18 +0200, Andreas Beckmann wrote: > > On 05/05/2024 20.52, Adam D Barratt wrote: > > > Package: nvidia-graphics-drivers > > > Version: 470.239.06-1 > > > > > Explanation: upstream security fixes [CVE-2022-42265 CVE-2024- > > > 0074 > > > CVE-2024-0078] > > > > Can we push these packages to bullseye-updates? > > The kernel change that recently caused problems for the nvidia > > modules > > in bookworm has now reached bullseye, too: #1070726, but the new > > upstream already sitting in bullseye-pu is sufficient to fix that. > > Would wording similar to > https://lists.debian.org/debian-stable-announce/2024/02/msg2.html > be accurate / suitable? (With the 12.5 reference changed to the > relevant DSA number.) Not sure if you saw the previous mail, but see below for suggested SUA text. Regards, Adam === This update addresses problems in three non-free driver packages supporting nVidia graphics cards. The Linux kernel released in DSA 5681-1 changed an inlined function to call two GPL-only symbols, making that function inaccessible to non-free kernel modules. As a result, the nVidia kernel modules cannot be built via DKMS at installation time for the updated kernel. The following packages have been updated to correct the problem: Source package Fixed version == = nvidia-graphics-drivers470.239.06-1 nvidia-graphics-drivers-tesla-470 470.239.06-1~deb11u1 nvidia-settings470.239.06-1 If you use the affected packages, we recommend you upgrade to these versions. ===
Re: Accepted libcxx-serial 1.2.1-6 (source) into testing-proposed-updates
Hi, On Sun, 2024-05-12 at 19:04 +, Debian FTP Masters wrote: > Format: 1.8 > Date: Sun, 12 May 2024 20:28:16 +0200 > Source: libcxx-serial > Built-For-Profiles: nocheck > Architecture: source > Version: 1.2.1-6 > Distribution: trixie I'm assuming that you intended to upload this to unstable. The version of the package in unstable is 1.2.1-5, which is the same as in testing, so uploading a version to t-p-u doesn't make sense. (Even for intentional uploads to t-p-u, they should be discussed and agreed beforehand and use an appropriate version number.) Regards, Adam
Bug#1070670: shim-helpers-arm64-signed 1+15.8+1~deb11u1 flagged for acceptance
package release.debian.org tags 1070670 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: shim-helpers-arm64-signed Version: 1+15.8+1~deb11u1 Explanation: rebuild against shim 15.8.1
Bug#1070670: shim-helpers-amd64-signed 1+15.8+1~deb11u1 flagged for acceptance
package release.debian.org tags 1070670 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: shim-helpers-amd64-signed Version: 1+15.8+1~deb11u1 Explanation: rebuild against shim 15.8.1
Bug#1070660: shim-helpers-i386-signed 1+15.8+1~deb12u1 flagged for acceptance
package release.debian.org tags 1070660 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: shim-helpers-i386-signed Version: 1+15.8+1~deb12u1 Explanation: rebuild against shim 15.8.1
Bug#1070670: shim-helpers-i386-signed 1+15.8+1~deb11u1 flagged for acceptance
package release.debian.org tags 1070670 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: shim-helpers-i386-signed Version: 1+15.8+1~deb11u1 Explanation: rebuild against shim 15.8.1
Bug#1070660: shim-helpers-arm64-signed 1+15.8+1~deb12u1 flagged for acceptance
package release.debian.org tags 1070660 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: shim-helpers-arm64-signed Version: 1+15.8+1~deb12u1 Explanation: rebuild against shim 15.8.1
Bug#1070660: shim-helpers-amd64-signed 1+15.8+1~deb12u1 flagged for acceptance
package release.debian.org tags 1070660 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: shim-helpers-amd64-signed Version: 1+15.8+1~deb12u1 Explanation: rebuild against shim 15.8.1
Bug#1070660: shim 15.8-1~deb12u1 flagged for acceptance
package release.debian.org tags 1070660 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: shim Version: 15.8-1~deb12u1 Explanation: new upstream release
Bug#1070670: shim 15.8-1~deb11u1 flagged for acceptance
package release.debian.org tags 1070670 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: shim Version: 15.8-1~deb11u1 Explanation: new upstream release
Bug#1065013: nvidia-graphics-drivers 470.239.06-1 flagged for acceptance
On Wed, 2024-05-08 at 19:18 +0200, Andreas Beckmann wrote: > On 05/05/2024 20.52, Adam D Barratt wrote: > > Package: nvidia-graphics-drivers > > Version: 470.239.06-1 > > > Explanation: upstream security fixes [CVE-2022-42265 CVE-2024-0074 > > CVE-2024-0078] > > Can we push these packages to bullseye-updates? > The kernel change that recently caused problems for the nvidia > modules > in bookworm has now reached bullseye, too: #1070726, but the new > upstream already sitting in bullseye-pu is sufficient to fix that. Would wording similar to https://lists.debian.org/debian-stable-announce/2024/02/msg2.html be accurate / suitable? (With the 12.5 reference changed to the relevant DSA number.) Regards, Adam
Bug#1067106: bullseye-pu: package nvidia-settings/470.239.06-1
Control: tags -1 + pending On Mon, 2024-05-06 at 20:29 +0200, Andreas Beckmann wrote: > while accepting the nvidia stack yesterday (many thanks for that!) > you missed to tag etc. this bug, while the package was accepted > (perhaps attributed to a different bug?). Yep, the metadata in the comment file had a typo in the bug number. Fixed now, thanks. Regards, Adam
Bug#1065053: nvidia-graphics-drivers-tesla-470 470.239.06-1~deb11u1 flagged for acceptance
package release.debian.org tags 1065053 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: nvidia-graphics-drivers-tesla-470 Version: 470.239.06-1~deb11u1 Explanation: new upstream LTS release [CVE-2024-0074 CVE-2024-0078 CVE-2022-42265]
Bug#1065013: nvidia-graphics-drivers 470.239.06-1 flagged for acceptance
package release.debian.org tags 1065013 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: nvidia-graphics-drivers Version: 470.239.06-1 Explanation: upstream security fixes [CVE-2022-42265 CVE-2024-0074 CVE-2024-0078]
Bug#1067843: nvidia-open-gpu-kernel-modules 535.161.08-1~deb12u1 flagged for acceptance
package release.debian.org tags 1067843 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: nvidia-open-gpu-kernel-modules Version: 535.161.08-1~deb12u1 Explanation: update to 535 series LTS drivers [CVE-2023-0180 CVE-2023-0183 CVE-2023-0184 CVE-2023-0185 CVE-2023-0187 CVE-2023-0188 CVE-2023-0189 CVE-2023-0190 CVE-2023-0191 CVE-2023-0194 CVE-2023-0195 CVE-2023-0198 CVE-2023-0199 CVE-2023-25515 CVE-2023-25516 CVE-2023-31022 CVE-2024-0074 CVE-2024-0075 CVE-2024-0078]
Bug#1067821: nvidia-graphics-drivers 535.161.08-2~deb12u1 flagged for acceptance
package release.debian.org tags 1067821 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: nvidia-graphics-drivers Version: 535.161.08-2~deb12u1 Explanation: new upstream stable release [CVE-2023-0180 CVE-2023-0183 CVE-2023-0184 CVE-2023-0185 CVE-2023-0187 CVE-2023-0188 CVE-2023-0189 CVE-2023-0190 CVE-2023-0191 CVE-2023-0194 CVE-2023-0195 CVE-2023-0198 CVE-2023-0199 CVE-2023-25515 CVE-2023-25516 CVE-2023-31022 CVE-2024-0074 CVE-2024-0075 CVE-2024-0078]
Bug#1067742: nvidia-xconfig 535.171.04-1~deb12u1 flagged for acceptance
package release.debian.org tags 1067742 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: nvidia-xconfig Version: 535.171.04-1~deb12u1 Explanation: new upstream LTS release
Bug#1067745: nvidia-settings 535.171.04-1~deb12u1 flagged for acceptance
package release.debian.org tags 1067745 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: nvidia-settings Version: 535.171.04-1~deb12u1 Explanation: new upstream LTS release
Bug#1067739: nvidia-persistenced 535.171.04-1~deb12u1 flagged for acceptance
package release.debian.org tags 1067739 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: nvidia-persistenced Version: 535.171.04-1~deb12u1 Explanation: switch to 535 series LTS drivers; update list of supported drivers
Bug#1065653: nvidia-modprobe 535.161.07-1~deb12u1 flagged for acceptance
package release.debian.org tags 1065653 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: nvidia-modprobe Version: 535.161.07-1~deb12u1 Explanation: prepare to switch to 535 series LTS drivers
Bug#1070175: RM: salt/3002.6+dfsg1-4+deb11u1
On Wed, 2024-05-01 at 19:46 +0200, Moritz Muehlenhoff wrote: > On Wed, May 01, 2024 at 06:29:29PM +0100, Adam D. Barratt wrote: > > On Wed, 2024-05-01 at 13:02 +0200, Moritz Muehlenhoff wrote: > > > Please remove salt in the next Bullseye point release. > > > It was already removed frm unstable for being unsupportable > > > and unmaintained (https:://bugs.debian.org/1069654). > > > > > > There are two related packages which need to be removed > > > alongside, since salt-common depends on them (but which > > > have no other dependencies outside of salt): > > > > > > pytest-salt-factories 0.93.0-1 > > > pytest-testinfra 6.1.0-1 > > > > I'm not doubting whether at least the former should be removed, but > > "salt-common depends on them" isn't a reason to remove things in > > itself. A relationship in the opposite direction certainly would be > > (i.e. "they depend on salt-common"). > > It's actually build dependencies, both pytest-salt-factories and > pytest-testinfra build depend on salt-common. Ah, that makes more sense. Thanks for the clarification. Regards, Adam
Bug#1070175: RM: salt/3002.6+dfsg1-4+deb11u1
On Wed, 2024-05-01 at 13:02 +0200, Moritz Muehlenhoff wrote: > Please remove salt in the next Bullseye point release. > It was already removed frm unstable for being unsupportable > and unmaintained (https:://bugs.debian.org/1069654). > > There are two related packages which need to be removed > alongside, since salt-common depends on them (but which > have no other dependencies outside of salt): > > pytest-salt-factories 0.93.0-1 > pytest-testinfra 6.1.0-1 I'm not doubting whether at least the former should be removed, but "salt-common depends on them" isn't a reason to remove things in itself. A relationship in the opposite direction certainly would be (i.e. "they depend on salt-common"). Regards, Adam
Bug#1067821: bookworm-pu: package nvidia-graphics-drivers/535.161.08-2~deb12u1
On Sun, 2024-04-28 at 13:43 +0200, Andreas Beckmann wrote: > Please reject nvidia-graphics-drivers/535.161.08-1~deb12u1, nvidia- > driver-full is uninstallable on ppc64el (but that was hidden by the > other t64 transition blockers). Done, thanks for letting us know. Regards, Adam
Bug#1068798: bookworm-pu: package fdroidserver/2.2.1-1
Control: tags -1 + moreinfo On Thu, 2024-04-11 at 11:36 +0200, Jochen Sprickerhof wrote: > [ ] the issue is verified as fixed in unstable > [...] > Upstream is still working on a long term fix that will be uploaded to > unstable later. I agreed with upstream to use use the patch provided > in the mail on oss-security already now. In any case, assuming that the issue affects unstable (which appears to be the case), it should be fixed there first. Regards, Adam
Bug#1051024: bookworm-pu: package igtf-policy-bundle/1.22-1~deb12u1
On Mon, 2024-04-08 at 14:26 +0200, Dennis van Dok wrote: > I've uploaded a new version since unstable is already at 1.128-1. The package you've uploaded is versioned 1.128-1+deb12u1, which is higher than the version in unstable. The stable upload needs to have a lower version number, conventionally 1.128-1~deb12u1. It appears you've also uploaded a 1.128-1~deb12u1 package, which confusingly seems to be a rebuild of 1.12_7_-1 from unstable. I'm going to flag both uploads for rejection. Once you get confirmation of that having been actioned, if what you're actually aiming for is to get a rebuild of 1.128-1 into stable then please: - use 1.128-1~deb12u1 as the package version - attach a revised debdiff to this bug Regards, Adam
Your "python-xapian-haystack" stable upload
Hi, Thanks for caring about fixing #1066136 in stable. Your upload has an unconventional version number, and I'm not sure that all tooling will correctly handle a version suffix of "+deb12u0.1". The concept of NMUs isn't really used in the same way for (old)stable uploads as it is in unstable / experimental. Could you please re-upload using the more usual version style of 2.1.1-1+deb12u1? As a side note, please also consider filing p-u bugs against release.debian.org to track such uploads. As noted in DevRef, for uncontroversial uploads you can upload at the same time as filing the bug, without waiting for an ACK. Thanks, Adam
Re-planning for 12.6
Hi, As we had to postpone 12.6, let's look at alternative dates. April 13th - Not great for me for personal reasons, mhy previously said no. I could probably do if need be April 20th - Doesn't work for me; I'm away from the Tuesday before until late on the Friday April 27th - Doesn't work for me; I have a pre-existing appointment which means I'll be AFK much of the day May 4th - Apparently doesn't work for me; long weekend in the UK May 11th - Should work for me Regards, Adam
Re: Upcoming stable point release (12.6)
On Fri, 2024-02-16 at 17:35 +, Jonathan Wiltshire wrote: > The next point release for "bookworm" (12.6) is scheduled for > Saturday, April 6th. Processing of new uploads into bookworm- > proposed-updates will be frozen during the preceeding weekend. Due to recent events, the point release has been postponed. A new date will be announced when possible. Regards, Adam
Bug#1067821: bookworm-pu: package nvidia-graphics-drivers/535.161.08-1~deb12u1
On Thu, 2024-03-28 at 18:40 +0100, Andreas Beckmann wrote: > On 27/03/2024 21.10, Adam D. Barratt wrote: > > Please go ahead, bearing in mind that the window for 12.6 closes > > over > > the coming weekend. > > The whole nvidia stack has now been uploaded, > src:nvidia-graphics-drivers is sitting in NEW. It's now in stable-new. We have a bit of an issue in terms of accepting / shipping the 535 bookworm stack, however. The upload of 535 to unstable is blocked from migration to testing by openssl, which is in turn blocked by dpkg, which is manually blocked for the time64 transition. Would we be better to ship the 525 packages that are already in p-u and revisit 535 for 12.7, or skip those updates as well and just include 535 when we can? Regards, Adam
Bug#1068016: bookworm-pu: package node-babel7/7.20.15+ds1+~cs214.269.168-3+deb12u2
Control: tags -1 + confimred On Fri, 2024-03-29 at 17:41 +0100, Andreas Beckmann wrote: > To smoothen some upgrade paths from buster -> bullseye -> bookworm we > need to add some Breaks+Replaces against obsolete packages. Please go ahead. Regards, Adam
Bug#1067980: bookworm-pu: package gpaste/43.1-3+deb12u1
Control: tags -1 + confirmed On Fri, 2024-03-29 at 15:57 +0100, Andreas Beckmann wrote: > In order to smoothen upgrade paths I'd like to add some > Breaks+Replaces > to bookworm. This avoids a file conflict in case libgpaste6 (last > released with stretch) is still installed. Please go ahead. Regards, Adam
Bug#1067843: bookworm-pu: package nvidia-open-gpu-kernel-modules/535.161.08-1~deb12u1
Control: tags -1 + confirmed On Wed, 2024-03-27 at 14:43 +0100, Andreas Beckmann wrote: > We need to update src:nvidia-open-gpu-kernel-modules to a new > upstream > version to stay in sync with src:nvidia-graphics-drivers (for a > matching > firmware-nvidia-gsp upstream version) and to fix some CVEs. [...] > [ ] the issue is verified as fixed in unstable > I'm currently doing interoperability tests with > src:nvidia-graphics-drivers. (These two source packages > need to be updated together due to the strict firmware > dependency.) An upload to bookworm will only happen after the > package is in sid. Please go ahead, bearing in mind that the window for 12.6 closes over the coming weekend. Regards, Adam
Bug#1067821: bookworm-pu: package nvidia-graphics-drivers/535.161.08-1~deb12u1
Control: tags -1 + confirmed On Wed, 2024-03-27 at 09:51 +0100, Andreas Beckmann wrote: > In order to receive further upstream support (i.e. CVE fixes), we > need > to switch src:nvidia-graphics-drivers from the 525 series (EoL > 12/2023) > to the 535 series, a new LTSB branch sufficient for the lifetime of > bookworm. (The first 535 beta appeared during deep freeze of > bookworm.) > This driver supports a superset of the GPUs supported by the 525 > drivers, no GPUs have been dropped. > [...] > I'm currently doing interoperability tests with > src:nvidia-open-gpu-kernel-modules. (These two source packages > need to be updated together due to the strict firmware > dependency.) An upload to bookworm will only happen after the > package is in sid. Please go ahead, bearing in mind that the window for 12.6 closes over the coming weekend. Regards, Adam
Bug#1067745: bookworm-pu: package nvidia-settings/535.171.04-1~deb12u1
Control: tags -1 + confirmed On Tue, 2024-03-26 at 11:09 +0100, Andreas Beckmann wrote: > In order to upgrade src:nvidia-graphics-drivers to the 535 LTS series > (the 525 series currently in stable is already EoL), we need to > update > some additional packages (some driver components can be built from > source and reside in contrib). Please go ahead. Regards, Adam
Bug#1067742: bookworm-pu: package nvidia-xconfig/535.171.04-1~deb12u1
Control: tags -1 + confirmed On Tue, 2024-03-26 at 10:51 +0100, Andreas Beckmann wrote: > In order to upgrade src:nvidia-graphics-drivers to the 535 LTS series > (the 525 series currently in stable is already EoL), we need to > update > some additional packages (some driver components can be built from > source and reside in contrib). Please go ahead. Regards, Adam
Bug#1067739: bookworm-pu: package nvidia-persistenced/535.171.04-1~deb12u1
Control: tags -1 + confirmed On Tue, 2024-03-26 at 10:40 +0100, Andreas Beckmann wrote: > In order to upgrade src:nvidia-graphics-drivers to the 535 LTS series > (the 525 series currently in stable is already EoL), we need to > update > some additional packages (some driver components can be built from > source and reside in contrib). Please go ahead. Regards, Adam
Bug#1067564: bookworm-pu: package cpu/1.4.3-14~deb12u1
Control: tags -1 + confirmed On Sat, 2024-03-23 at 18:40 +0100, Andreas Beckmann wrote: > The last QA upload four years ago fixed a FTBFS (multiple definitions > of > a global variable) by replacing that variable with an extern > declaration > and zero definitions. This didn't result in a linker error (missing > symbol) because it happens in a plugin library and thus is only > detected > at runtime when the plugin gets loaded (i.e. always). Oh dear... Please go ahead. Regards, Adam
Bug#1067149: bookworm-pu: package hovercraft/2.7-6~deb12u1
Control: tags -1 + confirmed On Tue, 2024-03-19 at 12:03 +0100, Andreas Beckmann wrote: > hovercraft is unusable w/o python3-setuptools > > [ Impact ] > hovercraft is unusable without manual installation of additional > packages. Please go ahead. Regards, Adam
Bug#1066096: bookworm-pu: package libpod/4.3.1+ds1-8+deb12u1
Control: tags -1 + confirmed On Tue, 2024-03-12 at 10:24 -0400, Jérôme Charaoui wrote: > podman in bookworm suffers from a race condition which causes the > "network ls" command to fail intermittently in certain scenarios Please go ahead. Regards, Adam
Bug#1065052: nvidia-graphics-drivers-tesla-470 470.239.06-1~deb12u1 flagged for acceptance
package release.debian.org tags 1065052 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: nvidia-graphics-drivers-tesla-470 Version: 470.239.06-1~deb12u1 Explanation: new upstream stable release; improve compatibility with newer kernel versions; security fixes [CVE-2022-42265 CVE-2024-0074 CVE-2024-0078]
Bug#1065653: bookworm-pu: package nvidia-modprobe/535.161.07-1~deb12u1
Control: tags -1 + confirmed On Fri, 2024-03-08 at 09:42 +0100, Andreas Beckmann wrote: > In preparation to switching bookworm from the nvidia-graphics-drivers > 525.* series (production branch, EoL) to the 535.* series (long term > support branch, receives updates until July 2026), we need to update > nvidia-modprobe again. We already have a 535 release in bookworm, but > there was recently a new option being added. Please go ahead. Regards, Adam
Bug#1065264: bookworm-pu: package phpseclib/1.0.20-1+deb12u2
Control: tags -1 + confirmed On Sat, 2024-03-02 at 11:19 +0100, David Prévot wrote: > I’d like to see CVE-2024-27354 and CVE-2024-27355 addressed in the > next > point release. We agreed with the security team that these issues are > not worth a DSA. This update also fixes an issue in dependency > loading > similar to CVE-2024-24821 as fixed in composer/DSA-5632-1. > Please go ahead. Regards, Adam
Bug#1065261: bookworm-pu: package php-phpseclib3/3.0.19-1+deb12u3
Control: tags -1 + confirmed On Sat, 2024-03-02 at 11:15 +0100, David Prévot wrote: > I’d like to see CVE-2024-27354 and CVE-2024-27355 addressed in the > next > point release. We agreed with the security team that these issues are > not worth a DSA. This update also fixes an issue in dependency > loading > similar to CVE-2024-24821 as fixed in composer/DSA-5632-1. Please go ahead. Regards, Adam
Bug#1065263: bookworm-pu: package php-phpseclib/2.0.42-1+deb12u2
Control: tags -1 + confirmed On Sat, 2024-03-02 at 11:17 +0100, David Prévot wrote: > I’d like to see CVE-2024-27354 and CVE-2024-27355 addressed in the > next > point release. We agreed with the security team that these issues are > not worth a DSA. Please go ahead. Regards, Adam
Bug#1065068: bookworm-pu: package php-doctrine-deprecations/1.0.0-2+deb12u1
Control: tags -1 + confirmed On Thu, 2024-02-29 at 12:12 +0100, David Prévot wrote: > This is a follow up from composer/DSA-5632-1 (the last one for > Bookworm). > > In order to fix a Debian-specific issue related to CVE-2024-24821, we > agreed with the security team to push related dependencies via the > next > point release. Please go ahead. Regards, Adam
Bug#1065067: bookworm-pu: package php-doctrine-lexer/2.1.0-2+deb12u1
Control: tags -1 + confirmed On Thu, 2024-02-29 at 12:08 +0100, David Prévot wrote: > This is a follow up from composer/DSA-5632-1. > > In order to fix a Debian-specific issue related to CVE-2024-24821, we > agreed with the security team to push related dependencies via the > next > point release. Again the branch name probably wants adjusting. Please go ahead. Regards, Adam
Bug#1065065: bookworm-pu: package php-doctrine-annotations/2.0.1-1+deb12u1
Control: tags -1 + confirmed On Thu, 2024-02-29 at 12:05 +0100, David Prévot wrote: > This is a follow up from composer/DSA-5632-1. > > In order to fix a Debian-specific issue related to CVE-2024-24821, we > agreed with the security team to push related dependencies via the > next > point release. Please go ahead. Regards, Adam
Bug#1065062: bookworm-pu: package php-zend-code/4.8.0-1+deb12u1
Control: tags -1 + confirmed On Thu, 2024-02-29 at 11:58 +0100, David Prévot wrote: > This is a follow up from composer/DSA-5632-1. > > In order to fix a Debian-specific issue related to CVE-2024-24821, we > agreed with the security team to push related dependencies via the > next > point release. Please go ahead. Regards, Adam
Bug#1065060: bookworm-pu: package php-proxy-manager/2.11.1+1.0.14-1+deb12u1
Control: tags -1 + confirmed On Thu, 2024-02-29 at 11:50 +0100, David Prévot wrote: > This is a follow up from composer/DSA-5632-1. > > In order to fix a Debian-specific issue related to CVE-2024-24821, we > agreed with the security team to push related dependencies via the > next > point release. Please go ahead. Regards, Adam
Bug#1065059: bookworm-pu: package symfony/5.4.23+dfsg-1+deb12u2
Control: tags -1 + confirmed On Thu, 2024-02-29 at 11:54 +0100, David Prévot wrote: > Hi, > > Le Thu, Feb 29, 2024 at 11:40:25AM +0100, David Prévot a écrit : > > [x] attach debdiff against the package in (old)stable > > Now it’s true. Please go ahead. Regards, Adam
Bug#1065058: bookworm-pu: package php-symfony-contracts/2.5.2-1+deb12u1
Control: tags -1 + confirmed On Thu, 2024-02-29 at 11:31 +0100, David Prévot wrote: > This is a follow up from composer/DSA-5632-1, #1065056 and #1065057. > > In order to fix a Debian-specific issue related to CVE-2024-24821, we > agreed with the security team to push related dependencies via the > next > point release. Please go ahead. Regards, Adam
Bug#1065057: bookworm-pu: package php-composer-xdebug-handler/3.0.3-2+deb12u1
Control: tags -1 + confirmed On Thu, 2024-02-29 at 11:18 +0100, David Prévot wrote: > This is a follow up from composer/DSA-5632-1. > > In order to fix a Debian-specific issue related to CVE-2024-24821, we > agreed with the security team to push related dependencies via the > next > point release. + * Track debian/bookworm-security Even though this update isn't going to the security archive? Please go ahead. Regards, Adam
Bug#1065056: bookworm-pu: package php-composer-class-map-generator/1.0.0-2+deb12u1
Control: tags -1 + confirmed On Thu, 2024-02-29 at 11:10 +0100, David Prévot wrote: > [1/9 for bookworm] > > This is a follow up from composer/DSA-5632-1. > > In order to fix a Debian-specific issue related to CVE-2024-24821, we > agreed with the security team to push related dependencies via the > next point release. All 9 of them. :-/ Please go ahead. Regards, Adam
Bug#1066928: ovn 23.03.1-1~deb12u2 flagged for acceptance
package release.debian.org tags 1066928 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: ovn Version: 23.03.1-1~deb12u2 Explanation: fix insufficient validation of incoming BFD packets [CVE-2024-2182]
Bug#1065413: openssl 3.0.13-1~deb12u1 flagged for acceptance
package release.debian.org tags 1065413 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: openssl Version: 3.0.13-1~deb12u1 Explanation: new upstream stable release; fix excessive time taken issues [CVE-2023-5678 CVE-2023-6237], vector register corruption issue on PowerPC [CVE-2023-6129], PKCS12 Decoding crashes [CVE-2024-0727]
Bug#1064993: systemd 252.23-1~deb12u1 flagged for acceptance
package release.debian.org tags 1064993 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: systemd Version: 252.23-1~deb12u1 Explanation: new upstream stable release; fix denial of service issues [CVE-2023-50387 CVE-2023-50868]
Bug#1065562: postfix 3.7.11-0+deb12u1 flagged for acceptance
package release.debian.org tags 1065562 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: postfix Version: 3.7.11-0+deb12u1 Explanation: new upstream stable release
Bug#1064588: glibc 2.36-9+deb12u5 flagged for acceptance
package release.debian.org tags 1064588 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: glibc Version: 2.36-9+deb12u5 Explanation: revert fix to always call destructors in reverse constructor order due to unforeseen application compatibility issues; fix a DTV corruption due to a reuse of a TLS module ID following dlclose with unused TLS
Bug#1067206: amavisd-new 2.13.0-3+deb12u1 flagged for acceptance
package release.debian.org tags 1067206 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: amavisd-new Version: 2.13.0-3+deb12u1 Explanation: handle multiple boundary parameters that contain conflicting values [CVE-2024-28054]; fix race condition in postinst
Bug#1052455: freetype 2.12.1+dfsg-5+deb12u3 flagged for acceptance
package release.debian.org tags 1052455 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: freetype Version: 2.12.1+dfsg-5+deb12u3 Explanation: disable COLRv1 support again; fix function existence check when calling get_colr_glyph_paint()
Bug#1065376: libxml-stream-perl 1.24-4+deb12u1 flagged for acceptance
package release.debian.org tags 1065376 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: libxml-stream-perl Version: 1.24-4+deb12u1 Explanation: fix compatibility with IO::Socket::SSL >= 2.078
Bug#1065413: bookworm-pu: package openssl/3.0.13-1~deb12u1
On Mon, 2024-03-04 at 07:38 +0100, Sebastian Andrzej Siewior wrote: > This is an update to the current stable OpenSSL release in the 3.0.x > series. It addresses the following CVE reports which were postponed > due to low severity: [...] > I'm not aware of a problems/ regression at this point. Sorry for not getting to this sooner. Is this still the case? Regards, Adam
Bug#1063621: clamav 1.0.5+dfsg-1~deb12u1 flagged for acceptance
package release.debian.org tags 1063621 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: clamav Version: 1.0.5+dfsg-1~deb12u1 Explanation: new upstream stable release; fix possible heap overflow issue [CVE-2024-20290], possible command injection issue [CVE-2024-20328]
Bug#1063621: bookworm-pu: package clamav/clamav_1.0.5+dfsg-1~deb12u1
On Fri, 2024-02-09 at 23:12 +0100, Sebastian Andrzej Siewior wrote: > This is an update to the latest clamav release in the 1.0.x series. One small thing you may want to fix for any follow-up updates: +clamav (1.0.5+dfsg-1~deb12u1) bookworm; urgency=medium + + * Import 1.0.4 (Closes: #1063479). Regards, Adam
Bug#1064031: rustc-web 1.70.0+dfsg1-7~deb12u2 flagged for acceptance
package release.debian.org tags 1064031 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: rustc-web Version: 1.70.0+dfsg1-7~deb12u2 Explanation: fix build issues and file conflicts
Bug#1064031: rustc-web 1.70.0+dfsg1-7~deb12u1 flagged for acceptance
On Sat, 2024-03-02 at 03:54 -0500, Andres Salomon wrote: > rustc-web (1.70.0+dfsg1-7~deb12u2) bookworm; urgency=medium > > * Non-maintainer upload. > * Increase allowed test failures on armhf and ppc64el to fix > FTBFS. > * Provide Conflicts/Replaces for rust*-mozilla*, which could still > be > installed from oldstable (closes: #1064562). > * Add Provides/Conflicts/Replaces for libstd-rust-1.70 (closes: > #1064563). Please go ahead. Regards, Adam
Bug#1064031: rustc-web 1.70.0+dfsg1-7~deb12u1 flagged for acceptance
On Tue, 2024-02-27 at 15:00 -0500, Andres Salomon wrote: > So it looks like I'll need a new upload to fix two bookworm > architecture > build failures (armhf and ppc64el), and also to fix #1064562. Should > I > file a new release.d.o bug, or continue using this one? Given that both issues are related to the initial upload tracked in this bug, re-using this one is ifne. Regards, Adam
Bug#1064031: rustc-web 1.70.0+dfsg1-7~deb12u1 flagged for acceptance
package release.debian.org tags 1064031 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: rustc-web Version: 1.70.0+dfsg1-7~deb12u1 Explanation: new source package to support builds of web browsers
Bug#1064031: chromium and rustc in bookworm
Control: tags -1 + confirmed On Thu, 2024-02-15 at 19:25 -0500, Andres Salomon wrote: > Chromium now requires a Rust compiler to build, and it specifically > needs a rustc with profiler support built into it. This package can > hopefully be shared with firefox and other browser/web engines that > end up needing a newer rustc. Please go ahead. Regards, Adam
Re: Planning for 12.6
On Mon, 2024-02-12 at 18:04 +, Jonathan Wiltshire wrote: > 12.6 should be around 10th April, so please indicate availability > for: > > 7 April I assume you mean the 6th here. That should be doable. > 13 April Could work, but I would prefer not to for personal reasons. > 20 April I'll be returning from time abroad probably late the day before, so no from me. Regards, Adam
Bug#1063675: bookworm-pu: package nvidia-graphics-drivers/525.147.05-6~deb12u1
On Mon, 2024-02-12 at 17:59 +, Jonathan Wiltshire wrote: > The point release dates go to > debian-stable-annou...@lists.debian.org which > is very low traffic. Actually, that's one place they *don't* go in advance. The first mail to -stable-announce is at the point that processing of uploads is already frozen. (They do go to -project@ldo, amongst others, which is also generally not too busy.) Sending to d-d-a would require a second mail in each case, as the main announcement is to debian-release@ BCCed to several other lists and team aliases. From memory of previous discussions, dda was avoided both for that reason and because it doesn't really capture the right audience (not everyone who cares about point releases is a DD, and "many" DDs don't particularly care about stable updates). If it would help, we could easily add an additional address to the notification list. Regards, Adam
Bug#1062044: qemu 7.2+dfsg-7+deb12u5 flagged for acceptance
package release.debian.org tags 1062044 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: qemu Version: 7.2+dfsg-7+deb12u5 Explanation: revert patch causing regressions in suspend / resume functionality
Bug#1062044: qemu 7.2+dfsg-7+deb12u4 flagged for acceptance
On Tue, 2024-02-06 at 20:49 +0300, Michael Tokarev wrote: > 06.02.2024 20:33, Adam D. Barratt: > > On Tue, 2024-02-06 at 19:37 +0300, Michael Tokarev wrote: > > > problematic upstream commit (on master) is this one: > > > https://gitlab.com/qemu-project/qemu/-/commit/effd60c878176bcaf97fa7ce2b12d04bb8ead6f7 > > > Technically we already froze p-u for 12.5 on Sunday evening, as > > previously announced. If you could get an upload just fixing that > > single issue with a small change uploaded today then I'd be tempted > > to > > accept it anyway. > > Oh. I knew we're getting late, but not *that* late. > The point release(s) are on Saturday, and we always freeze a week beforehand. > The change isn't small per se, as the commit is rather large (mostly > due to many changed tests, - it changes order of output in quite some > places). Here's the diffstat: > > monitor/qmp.c | 17 + > qapi/qmp-dispatch.c | 24 +- > -- This is the relevant bit for size IMO. If you're happy with the result then please upload as soon as you're ready. Regards, Adam
Bug#1062044: qemu 7.2+dfsg-7+deb12u4 flagged for acceptance
On Tue, 2024-02-06 at 19:37 +0300, Michael Tokarev wrote: > e problematic upstream commit (on master) is this one: > https://gitlab.com/qemu-project/qemu/-/commit/effd60c878176bcaf97fa7ce2b12d04bb8ead6f7 > It has links to 2 bugs it is fixing, and there are quite a few > other bugs which are fixed too. > > I can add a revert of this single commit (with all tests) for debian > stable (for deb12u5 release) on top of current deb12u4. I think > this would be best, despite the way it goes, - first the change is > added in v7.2.9.diff, and next removed in a followup revert, - > because this way we follow upstream releases, and this patch > will be easy to remove in subsequent update. [...] > re thing, if the solution will be found in a couple of days, > I'll try to push that one instead, but it also depends on the > complexity and possible risks there, and timeline. Technically we already froze p-u for 12.5 on Sunday evening, as previously announced. If you could get an upload just fixing that single issue with a small change uploaded today then I'd be tempted to accept it anyway. Presumably the bugs being fixed by that commit already exist in bookworm's qemu, so not including the commit isn't a regression? Please also attach a debdiff against the previous upload. Regards, Adam
Bug#1063035: xen 4.17.3+10-g091466ba55-1~deb12u1 flagged for acceptance
package release.debian.org tags 1063035 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: xen Version: 4.17.3+10-g091466ba55-1~deb12u1 Explanation: new upstream stable release; security fixes [CVE-2023-46837 CVE-2023-46839 CVE-2023-46840]
Bug#1063005: tzdata 2024a-0+deb12u1 flagged for acceptance
package release.debian.org tags 1063005 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: tzdata Version: 2024a-0+deb12u1 Explanation: new upstream stable release
Bug#1063017: tzdata 2024a-0+deb11u1 flagged for acceptance
package release.debian.org tags 1063017 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: tzdata Version: 2024a-0+deb11u1 Explanation: new upstream stable release
Bug#1059289: spip 3.2.11-3+deb11u10 flagged for acceptance
package release.debian.org tags 1059289 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: spip Version: 3.2.11-3+deb11u10 Explanation: fix cross-site scripting issue
Bug#1058928: cryptsetup 2.6.1-4~deb12u2 flagged for acceptance
package release.debian.org tags 1058928 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: cryptsetup Version: 2.6.1-4~deb12u2 Explanation: cryptsetup-initramfs: Add support for compressed kernel modules; cryptsetup-suspend-wrapper: Don't error out on missing /lib/systemd/system-sleep directory; add_modules(): Change suffix drop logic to match initramfs-tools
Bug#1061608: compton 1-1+deb11u1 flagged for acceptance
package release.debian.org tags 1061608 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: compton Version: 1-1+deb11u1 Explanation: remove recommendation of picom
Bug#1061607: compton 1-1+deb12u1 flagged for acceptance
package release.debian.org tags 1061607 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: compton Version: 1-1+deb12u1 Explanation: remove recommendation of picom
Bug#1061380: atril 1.26.0-2+deb12u2 flagged for acceptance
package release.debian.org tags 1061380 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: atril Version: 1.26.0-2+deb12u2 Explanation: use libarchive instead of external command for extracing documents [CVE-2023-51698]
Bug#1058928: bookworm-pu: package cryptsetup/2:2.6.1-4~deb12u2
Control: tags -1 + confirmed On Mon, 2023-12-18 at 14:10 +0100, Guilhem Moulin wrote: > 1. cryptsetup-suspend 2:2.6.1-4~deb12u1 was found incompatible with > systemd 254.1-3 and later, in particular with systemd/bookworm- > backports. > > 2. cryptsetup-initramfs 2:2.6.1-4~deb12u2 dos not support kernel > shipping compressed modules under MODULES=dep, as is done by default > with linux 6.6 (currently in Debian experimental). Please go ahead. Regards, Adam
Bug#1062685: libdatetime-timezone-perl 2.47-1+2024a flagged for acceptance
package release.debian.org tags 1062685 = bullseye pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bullseye. Thanks for your contribution! Upload details == Package: libdatetime-timezone-perl Version: 2.47-1+2024a Explanation: update included timezone data
Bug#1062686: libdatetime-timezone-perl 2.60-1+2024a flagged for acceptance
package release.debian.org tags 1062686 = bookworm pending thanks Hi, The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian bookworm. Thanks for your contribution! Upload details == Package: libdatetime-timezone-perl Version: 2.60-1+2024a Explanation: update included timezone data
Bug#1062044: qemu 7.2+dfsg-7+deb12u4 flagged for acceptance
On Sat, 2024-02-03 at 12:47 +0300, Michael Tokarev wrote: > 03.02.2024 12:43, Adam D. Barratt : > .. > > > I'm aware of the autopkgtest failure with cryptsetup, working on > > > it > > > now. > > > It looks like we broke suspend/resume in this version of qemu. > > > > Oops. Is that related to the cryptsetup failure, or a separate > > issue? > > Yes, it is related to cryptsetup autopkgtest failure. It looks > like this is the only place where suspend/resume code in qemu > is actually being used, - it's rather rare to suspend (hybernate) > a virtual machine, and cryptsetup performs testing of how the > encrypted filesystem is unlocked (or not) on resume. > > I already found the upstream commit which broke this (in all > supported versions of upstream qemu, including master), dunno > yet what to do with it, - trying to reduce the cryptroot test > to some manageable minimum. > > It'd be sad to avoid updating of qemu due to this. But let's > see.. Thanks for the update, and for being proactive. Regards, Adam
Bug#1061608: bullseye-pu: package compton/compton_1-1+deb11u1
On Thu, 2024-02-01 at 06:30 +, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Sat, 2024-01-27 at 10:25 +, Phil Wyett wrote: > > * Remove 'Recommends' for 'picom' which is a fork of compton, thus > > another X11 compositor. > > We should not be installing two packages of this type when only one > > asked for by the user. > > The same comment on the changelog wording applies here as for the > bookworm update, but please go ahead. I noticed that the bullseye update has been uploaded (with the original wording, but) but not the bookworm one. For the record, as bullseye and bookworm currently have the same package version, we cannot accept the bullseye version without the bookwork version being available in at least p-u first. Regards, Adam