Bug#641530: fop: fails with java.lang.IllegalArgumentException: Cannot open file sRGB.pf

Package: fop Version: 1:1.0.dfsg2-2 Severity: grave Justification: renders package unusable As you can see in #640308, fop doesn't work any longer... and I have the exact same problem when trying to build the publican package. I'm not sure what's the root cause of the problem but it might be

Bug#649476: fop: Fails to build publican's user guide with org.apache.fop.apps.FOPException java.lang.NullPointerException

Package: fop Version: 1:1.0.dfsg2-3 Severity: important publican 2.8 (that I just uploaded to unstable) has a test suite and fop is called as part of this test suite since it's the tool used to generate the PDF output. But fop fails with this highly unhelpful error message: Exception

Bug#762462: glassfish: Current version no longer supported upstream

Source: glassfish Version: 1:2.1.1-b31g+dfsg1-1 Severity: serious Tags: security Hello, while looking up open security issues in glassfish I noticed that the current version is no longer supported upstream (according to

Bug#795027: jarwrapper: Does not work when installed in chroot while already active outside the chroot

Package: jarwrapper Version: 0.52 Severity: important User: de...@kali.org Usertags: origin-kali In Kali, we have a package depending on jarwrapper and which provides /usr/bin/burpsuite as an executable jar. However when it gets installed in the build chroot of our live ISO image, the postinst of

Bug#802671: bouncycastle: ECC private keys can be recovered via invalid curve attack

Source: bouncycastle Version: 1.44+dfsg-2 Severity: serious Tags: security Control: fixed -1 1.51-1 Hello, bouncycastle 1.49 in stable/testing/unstable (and 1.44 in wheezy/squeeze) is vulnerable to an invalid curve attack as described here: