reproducibly.
This is because it did not generate the manpage correctly — it contained
a traceback with the error (which included the absolute build path).
Patch attached that sets PYTHONPATH correctly.
[0] https://reproducible-builds.org/
Regards,
--
,''`.
: :' : Chris Lamb
Chris Lamb wrote:
> [..]
Gentle ping on this?
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modules-team@alioth-lists.debian.net
ht
Chris Lamb wrote:
> Would you consider applying this patch and uploading?
Friendly ping on this? Seems like there hasn't been any update on this bug in
991 days now (!).
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co
Chris Lamb wrote:
> [..]
Gentle ping on this?
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modules-team@alioth-lists.debian.net
ht
Chris Lamb wrote:
> Would you consider applying this patch and uploading?
Friendly ping on this? Seems like there hasn't been any update on this bug in
287 days now (!).
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co
Chris Lamb wrote:
> Would you consider applying this patch and uploading?
Friendly ping on this? Seems like there hasn't been any update on this bug in
305 days now (!).
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co
ttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24584
[2] https://www.djangoproject.com/weblog/2020/sep/01/security-releases/
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
___
Py
,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
` a/debian/rules 2020-07-20 11:14:23.254979286 +0100
--- b/debian/rules 2020-07-20 11:20:45.409510366 +0100
@@ -12,3 +12,8 @@
%:
dh $@ --with python3 --buildsystem=pybuild
+
+override_dh_auto_install
Hi Sébastien,
> They look fine, please upload to security-master.
Done.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modules-t
Chris Lamb wrote:
> The full debdiffs are attached. Can you especially check the
> versioning scheme and distribution fields for me? I often get this
> wrong and end up confusing myself. Really appreciated.
They are now attached.
Regards,
--
,''`.
: :' : C
Chris Lamb wrote:
> I will wait a few days to see what upstream says. I will also have to
> re-release for jessie LTS, alas.
Okay, this is now fixed in the following versions (without and with
the regression fix):
DistributionUpload with regressionUpload with regression
three.
However, I just independently discovered a regression in the latest
change for CVE-2020-13254:
https://code.djangoproject.com/ticket/31654#comment:14
I will wait a few days to see what upstream says. I will also have to
re-release for jessie LTS, alas.
Regards,
--
,''`.
: :'
Hi,
> python-django: CVE-2020-13254 CVE-2020-13596
Security team, would you like an update for stretch and/or buster to
address these issues? It's fixed in sid, experimental as well as
jessie LTS. Bullseye is just pending migration time AFAICT.
Regards,
--
,''`.
: :' : Ch
rity-tracker.debian.org/tracker/CVE-2020-13254
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13254
[1] https://security-tracker.debian.org/tracker/CVE-2020-13596
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13596
Regards,
--
,''`.
: :' : Chris Lamb
`. `'`
Error 2
dpkg-buildpackage: error: debian/rules build subprocess returned exit status 2
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
-debian-experimental.python3-mini-buildd/mini-buildd-1.1.31'
make: *** [debian/rules:4: build] Error 2
dpkg-buildpackage: error: debian/rules build subprocess returned exit status 2
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'`
1]: Leaving directory
'/home/lamby/temp/cdt.20200516235112.uZ6Wnbr4DL.ags.lamby-debian-experimental.freedombox/plinth-20.8'
make: *** [debian/rules:7: binary] Error 2
dpkg-buildpackage: error: debian/rules binary subprocess returned exit status
2
[…]
The full build log is attached.
[debian/rules:12: override_dh_auto_test] Error 25
make[1]: Leaving directory
'/home/lamby/temp/cdt.20200517000807.BbMTSL1dzK.ags.lamby-debian-experimental.python3-django-celery-haystack/celery-haystack-0.10'
make: *** [debian/rules:9: build] Error 2
dpkg-buildpackage: error: debian/rules build subprocess returne
log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
djangorestframework.3.10.2-1.unstable.amd64.log.txt.gz
Description: Binary data
___
Python-modules-team mailing list
Py
/rules:6: build] Error 2
dpkg-buildpackage: error: debian/rules build subprocess returned exit status 2
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
python-django-tagging.1:0.4.5-3.unstabl
ailed with: exit code=2:
python3.8 setup.py test
dh_auto_test: error: pybuild --test -i python{version} -p 3.8 returned exit
code 13
make: *** [debian/rules:9: binary] Error 25
dpkg-buildpackage: error: debian/rules binary subprocess returned exit status
2
[…]
The full build log is atta
override_dh_auto_test] Error 25
make[1]: Leaving directory
'/home/lamby/temp/cdt.20200517001318.QUh0NKOOtV.ags.lamby-debian-experimental.python3-django-extensions/python-django-extensions-2.2.1'
make: *** [debian/rules:6: build] Error 2
dpkg-buildpackage: error: debian/rules build subproces
subprocess returned exit status 2
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
python-django-mptt.0.10.0-1.unstable.amd64.log.txt.gz
17002556.DquEm9jhp8.ags.lamby-debian-experimental.python3-django-navtag/python-django-navtag-2.1.3'
make: *** [debian/rules:9: build] Error 2
dpkg-buildpackage: error: debian/rules build subprocess returned exit status 2
[…]
The full build log is attached.
Regards,
--
,''`.
package: error: debian/rules build subprocess returned exit status 2
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
libthumbor.1.3.3-2.unstable.amd64.log.txt.gz
Description: Binary data
_
y. Must be one of:
admin_list
admin_modify
admin_urls
cache
i18n
l10n
log
static
tz
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
django-oauth-toolkit.1.3.2-1.unstable.amd64.log.txt.
n-0.13.3'
make: *** [debian/rules:6: build] Error 2
dpkg-buildpackage: error: debian/rules build subprocess returned exit status 2
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
ke: *** [debian/rules:10: build] Error 2
dpkg-buildpackage: error: debian/rules build subprocess returned exit status 2
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
django-fsm.2.
rules:7: build] Error 2
dpkg-buildpackage: error: debian/rules build subprocess returned exit status 2
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
django-model-utils.3.1.1-2.unstable.amd64.log.txt.gz
D
Hi Scott,
> Looks like the attached patch is empty.
Trying again...
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`- --- a/debian/patches/reproducible-build.patch 1970-01-01 01:00:00.0
+0100
--- b/debian/patc
test] Error 25
make[1]: Leaving directory
'/home/lamby/temp/cdt.20200517002210.n7i3i8p1o1.ags.lamby-debian-experimental.python3-django-jsonfield/python-django-jsonfield-1.1.0'
make: *** [debian/rules:6: build] Error 2
dpkg-buildpackage: error: debian/rules build subprocess returned exit sta
rt text_type
ModuleNotFoundError: No module named 'django.utils.six'
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
python-django-contact-form.1.4.2-3.unstable.amd64.l
25: override_dh_auto_test] Error 1
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
django-pipeline.1.6.14-3.unstable.amd64.log.txt.gz
Description: Binary data
_
ards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
python-django-csp.3.5-2.unstable.amd64.log.txt.gz
Description: Binary data
___
Python-modules-team mailing list
Python-modules-team@al
rs-headers-2.2.0'
make: *** [debian/rules:5: build] Error 2
dpkg-buildpackage: error: debian/rules build subprocess returned exit status 2
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
dja
ncoding import python_2_unicode_compatible
ImportError: cannot import name 'python_2_unicode_compatible' from
'django.utils.encoding'
(/usr/lib/python3/dist-packages/django/utils/encoding.py)
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debi
ode_compatible
ImportError: cannot import name 'python_2_unicode_compatible' from
'django.utils.encoding'
(/usr/lib/python3/dist-packages/django/utils/encoding.py)
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debi
mpatible' from
'django.utils.encoding'
(/usr/lib/python3/dist-packages/django/utils/encoding.py)
[…]
The full build log is attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
sorl-thumbnail.12.5.0-2.unstable.amd64.log.txt.gz
Descriptio
long-term goal. However, it would be nice to be able
for people to elect to install 3.x from experimental, as well as to
get started on the various small updates on the many leaf packages.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debia
plinth
Michal Čihař
django-taggit
Stephan Sürken
mini-buildd
§
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-mo
" in the dh_auto_test line is right.
"{interpreter}" there is replaced with pypy). This also assumes that
running PyPy at runtime will have identical behaviour as Python 3.x.
Enjoy...
Regards,
--
,''`.
: :' : Chris Lamb
`. `'`
Chris Lamb wrote:
> I will take charge of fixing this in jessie with the utmost urgency.
I have just uploaded 14.0.2-3+deb8u2 and DLA-2145-2 will be announced
after sending this email. Thank you again for raising this issue.
Best wishes,
--
,''`.
: :' : Chris L
Hi all,
> Please, can you […] revert this patch and re-publish the working (but
> security flawed) 14.0.2-3 twisted version ?
I will take charge of fixing this in jessie with the utmost urgency.
Thank you for raising this issue.
Regards,
--
,''`.
: :' : Chri
it would be a shame that individual maintainers need to add/test
the introduction of +fixfilepath everywhere.)
Best wishes,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`-
___
Python-modules-team mai
forwarded 950138 https://github.com/pikepdf/pikepdf/pull/76
thanks
I've forwarded this upstream here:
https://github.com/pikepdf/pikepdf/pull/76
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
that was
determined by their layout on the filesystem which is, at least in
UNIX systems, non-deterministic.
Patch attached that addresses both these issues.
[0] https://reproducible-builds.org/
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
not be built reproducibly.
This is because the documentation embedded the build user's home
directory (via the XDG config directory).
Patch attached.
[0] https://reproducible-builds.org/
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
his exception was already fixed in
#947549…
> Happy New Year!
… you too. :)
Best wishes,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modules-
e or fix in sqlite3 is not forthcoming within a few days.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modules-team@alioth-lists.debian.net
https://alio
blog/2019/dec/18/security-releases/
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modules-team@alioth-lists.debian.net
https://al
g too. I was being overly-
cautious in assuming that it was vulnerable without doing any checking
first, thus leading to this noise (for which I apologise).
I have updated data/dla-needed.txt and data/CVE/list to match.
Best wishes,
--
,''`.
: :' : Chris Lamb
`. `'` la...@
Chris Lamb wrote:
> Package: python-django
> Version: 1.7.11-1+deb8u7
[…]
> CVE-2019-19118[0]:
> | Django 2.1 before 2.1.15 and 2.2 before 2.2.8 allows unintended model
> | editing. A Django model admin displaying inline related models, where
> | the user has view-only permi
9118
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modules-team@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/list
forwarded 944782 https://github.com/cjw296/sybil/pull/18
thanks
I've forwarded this upstream here:
https://github.com/cjw296/sybil/pull/18
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
reproducible
+Author: Chris Lamb
+Last-Update: 2019-11-15
+
+--- python-sybil-1.2.0.orig/docs/conf.py
python-sybil-1.2.0/docs/conf.py
+@@ -1,5 +1,5 @@
+ # -*- coding: utf-8 -*-
+-import os, pkg_resources, datetime, sys
++import os, pkg_resources, datetime, sys, time
+
+ on_rtd = os.environ.get
b_metadata'
This appears to be a regression from 0.12.0-1 (which has this
dependency). Discovered when trying to release diffoscope on behalf on
the Reproducible Builds[0] effort hence the X-Debbugs-CC, but likely
affects other packages.
[0] https://reproducible-builds.org
Chris Lamb wrote:
> Patch attached.
Let's try that again:
--- a/traitlets/traitlets.py
+++ b/traitlets/traitlets.py
@@ -2366,6 +2366,10 @@ class Set(List):
"""
super(Set, self).__init__(trait, default_value, minlen, maxlen,
**kwargs)
forwarded 942342 https://github.com/ipython/traitlets/pull/535
thanks
I've forwarded this upstream here:
https://github.com/ipython/traitlets/pull/535
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
/
amd64/nbconvert.html on 20191014)
This is due to it not iterating over a Set traitlet type in a
deterministic ordering when generating the "Default:" human-readable
string.
Patch attached.
[0] https://reproducible-builds.org/
Regards,
--
,''`.
: :' :
reproducibly.
This is because it generated a version.py file that contains the current
build date. A patch is attached that uses SOURCE_DATE_EPOCH [1].
[0] https://reproducible-builds.org/
[1] https://reproducible-builds.org/specs/source-date-epoch/
Regards,
--
,''`.
: :' : Chris Lamb
Hi Paul,
> How is progress here? I failed to spot recent activity, but I may have
> missed it.
I'm not sure you've missed anything, at least from me -- I've not found
it possible to prioritise time on this, alas.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'`
Chris Lamb wrote:
> > > +python-django (1:1.11.23-1~deb10u1) buster-security; urgency=high
> >
> > Thanks, these both look good; please upload to security-master.
>
> Both uploaded to security-master.
There is now a 1.11.24 (ie. 1:1.11.24-1~deb10u1) upstream:
htt
Hi Scott,
> It's stilll there as cruft:
[…]
> Once those binaries are gone we'll pick it up with the arch all decrufting.
Ah, thanks for explaining. It seems a little bit of waste of Doku's
energy to file unactionable bug reports. :)
Regards,
--
,''`.
: :' : Chri
quot;buster".
* Update debian/gbp.conf to refer to debian/sid after merge.
-- Chris Lamb Sun, 07 Jul 2019 11:59:04 -0300
[..]
python-django (1:2.0~alpha1-2) experimental; urgency=medium
New upstream alpha release of Django 2.0.
<https://docs.djangoproject.com/
exposing by doing that, knowing MySQL...
Therefore I think the best solution would be to upload a new version
of python3-mysqldb. I'm taking the liberty of reassigning (with a
"reverse" affects for visibility) here in lieu of asking you to file a
separate bug.
Regards,
--
,''`.
curity-master.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modules-team@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/python-modules-team
although it's not a "re"-build of anything; 1.11.23 won't be in any
other suite… :p)
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python
on we should use?
> > 1:1.11.23-1~deb10u1?
>
> Looks good!
Updated debdiff attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`-diff --git a/Django.egg-info/PKG-INFO b/Django.egg-info/PKG-INFO
index 75a27527c..f6cdde7db
PoV Lintian should probably just waive that check
> unless the target distro for the upload is "unstable".
I took a different approach (to mirror similar existing logic) here:
https://salsa.debian.org/lintian/lintian/commit/bcded0a16c1094ae55afdd65caca7f598e3be7fc
Regards,
-
given that
> we agreed to follow 1.11.x in buster, shouldn't we rather use that one?
D'oh, that makes more sense. Okay, I can prepare a debdiff for that --
however, can you just confirm the version we should use?
1:1.11.23-1~deb10u1?
Regards,
--
,''`.
: :' : Chris Lamb
`. `'
about existing releases? How does it
> know that 1:1.11.22-1 is missing?
debian/changelog. Lintian, as a strict rule, does not query external
sources.
(I should probably clarify; missing *sequential* releases.)
Regards,
--
,''`.
: :' : Chris Lamb
`. `'`
new debian/buster branch.
-- Chris Lamb Wed, 03 Jul 2019 15:18:13 -0300
… and that I've tentatively versioned the updated version to address
these new CVEs as 1:1.11.22-1+deb10u1 (ie. with a plus, not a tilde).
I mention it specifically as I'm not 100% confident this is correct
and Lintian somew
forwarded 934120 https://github.com/mozilla/bleach/pull/465
thanks
I've forwarded this upstream here:
https://github.com/mozilla/bleach/pull/465
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
--- a/debian/patches/0003-reproducible_build.patch 1970-01-01
01:00:00.0 +0100
--- b/debian/patches/0003-reproducible_build.patch 2019-08-07
09:24:23.478886645 +0100
@@ -0,0 +1,15 @@
+D
[Adding t...@security.debian.org to CC]
Chris Lamb wrote:
> The following vulnerabilities were published for python-django.
>
> CVE-2019-14232[0]:
> CVE-2019-14233[1]:
> CVE-2019-14234[2]:
> CVE-2019-14235[3]:
I have just fixed this in sid and will fix this in jessie LTS
=CVE-2019-14235
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modules-team@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi
python-semantic-version
… still Build-Depend or Build-Depend-Indep on python-django.
(Zigo, did you neglect python-oauth2client and python-semantic-version
in your mass uploads recently?)
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb
of regular reverse-dependencies but I fear I would
be missing the test ones. Or: if someone could furnish me with such a
list I will happily file the bugs in question.
Thanks again for your patience and understanding here, Paul.
Best wishes,
--
,''`.
: :' : Chris Lamb
`. `'
oing forward regarding this CVE, at least?
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modules-team@alioth-lists.debian.net
ht
looked into the specifics...)
> Your package is trying to fix a CVE
Can you elaborate? I'm a little distracted by DebConf stuff but I
can't seem to grok what you mean here specifically.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-l
t builds for me (with all
tests passing) in a stretch chroot.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`-diff --git a/debian/changelog b/debian/changelog
index fa89c8b21..5bb1d6625 100644
--- a/debian/changelog
+++ b/debian/ch
e?
Best wishes,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modules-team@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman
embargo? I
might have some bandwidth the next day or so if not, but let me know.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modul
archive").
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modules-team@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/python-modules-team
25969
>
> Am I missing something?
No, I just have a terrible memory and/or didn't read what you wrote
more carefully before replying.
Fixing this bug and reuploading now... :)
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.o
ackage, though; any objection from
the rest of the DPMT?
Best wishes,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modules-team@alioth-lists.debian
forwarded 924784 https://code.djangoproject.com/ticket/30264#ticket
thanks
I've forwarded this upstream here:
https://code.djangoproject.com/ticket/30264#ticket
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
Hi Moritz,
> > Security team, may I upload this to stretch-security? Diff attached.
>
> This doesn't warrant a DSA, let's postpone this until more severe comes up.
Noted. Can you update data/CVE/list?
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la..
Chris Lamb wrote:
> Locally I cannot reproduce.
Ah, I can now; it's a non-determinism issue in the NFA.minimize
routine itself
dfa.__dict__ = {'initial': 1, 'transitions': {1: {'a': 3, 'b': 2}, 3: {'a':
1}, 2: {'b': 1}}, 'defaults': {}, 'final_states': {1}, 'outlabels': {}}
g
ackages/_pytest/_code/code.py", line 415, in
__init__
self._excinfo = tup
File "whoosh/collectors.py", line 1075, in _was_signaled
raise TimeLimit
TimeLimit
Locally I cannot reproduce.
Note that I just uploaded 2.7.4+git6-g9134ad92-2 to fix a number of
smaller is
Chris Lamb wrote:
> [Adding t...@security.debian.org to CC]
>
> > retitle 922027 CVE-2019-6975: Memory exhaustion in
> > django.utils.numberformat.format()
> > severity 922027 grave
> > found 922027 1:1.10.7-2+deb9u3
> > tags 922027 + security
> &g
[Adding t...@security.debian.org to CC]
Chris Lamb wrote:
> retitle 922027 CVE-2019-6975: Memory exhaustion in
> django.utils.numberformat.format()
> severity 922027 grave
> found 922027 1:1.10.7-2+deb9u3
> tags 922027 + security
> thanks
Security team, may I upload this t
#comment:4
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python-modules-team@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman
forwarded 921513 https://github.com/sphinx-doc/sphinx/pull/6028
thanks
I've forwarded this upstream here:
https://github.com/sphinx-doc/sphinx/pull/6028
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co.uk
` variable ends up
in the final constructed filename; I assume there is a good reason
for including the `options` dictionary in the first place, otherwise
we could simply omit it.
[0] https://reproducible-builds.org
(Patch attached.)
Regards,
--
,''`.
: :' : Chris Lamb
Nicholas,
> Alternatively, would you like to me ask upstream to document their
> copyright holders?
That sounds far better than trying to guess at-length at their
intentions and will result in a better longer-term outcome.
Regards,
--
,''`.
: :' : Chri
Hi,
> your package ships the header file(s):
FYI this will be explicitly detected and reported on in lintian
2.5.123 in the package-contains-python-header-in-incorrect-
directory tag.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org chris-lamb.co
so please check over the entire package
carefully and address these on your next upload.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
___
Python-modules-team mailing list
Python
load.debian.org for security-master.
> Thank you for your work on this update,
No problem.
Best wishes,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
___
Python-modules-team mailing l
included all of these nonsense changes.
Updated patch attached.
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
`-
diff --git a/debian/changelog b/debian/changelog
index b1c56f7c5..fa89c8b21 100644
--- a/debian/changelog
+++ b/debian/chang
1 - 100 of 145 matches
Mail list logo