Bug#858318: unblock: python-cutadapt/1.12-2

[Andreas Tille]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock package python-cutadapt

Cutadapt now (Build-)Depends python-xopen where I filed an unblock
request #858317 which should be resolved before unblocking
python-cutadapt to make sure it will be installable in testing.

Upstream has simply split of the xopen code (see #858053) and the
latest uploader of python-cutadapt has not realised this change.

I took the freedom of not only fixing this but also added build time
tests to the packaging to make sure that this will not happen in the
future again.  Thus the attached debdiff contains

  1. Fix for bug #858053 by adding python-xopen dependency
  2. Build time test to prove that the bug is really fixed

Thanks for your work as release team

  Andreas.

unblock python-cutadapt/1.12-2

-- System Information:
Debian Release: 8.7
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-4-amd64 (SMP w/1 CPU core)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru python-cutadapt-1.12/debian/changelog python-cutadapt-1.12/debian/changelog
--- python-cutadapt-1.12/debian/changelog	2016-12-02 03:56:33.0 +0100
+++ python-cutadapt-1.12/debian/changelog	2017-03-20 16:49:26.0 +0100
@@ -1,3 +1,11 @@
+python-cutadapt (1.12-2) unstable; urgency=medium
+
+  * Depends: python-xopen
+Closes: #858053
+  * Run build time tests
+
+ -- Andreas Tille   Mon, 20 Mar 2017 16:49:26 +0100
+
 python-cutadapt (1.12-1) unstable; urgency=medium
 
   * New upstream version 1.12 (Closes: #846471)
diff -Nru python-cutadapt-1.12/debian/control python-cutadapt-1.12/debian/control
--- python-cutadapt-1.12/debian/control	2016-12-02 03:56:33.0 +0100
+++ python-cutadapt-1.12/debian/control	2017-03-20 16:49:26.0 +0100
@@ -10,11 +10,15 @@
python-all,
python-all-dev,
python-setuptools,
+   python-nose,
+   python-xopen,
cython,
python3-all,
python3-all-dev,
python3-setuptools,
python3-six,
+   python3-nose,
+   python3-xopen,
cython3
 Standards-Version: 3.9.8
 Vcs-Browser: https://anonscm.debian.org/cgit/debian-med/python-cutadapt.git
diff -Nru python-cutadapt-1.12/debian/patches/0003_fixtest.patch python-cutadapt-1.12/debian/patches/0003_fixtest.patch
--- python-cutadapt-1.12/debian/patches/0003_fixtest.patch	1970-01-01 01:00:00.0 +0100
+++ python-cutadapt-1.12/debian/patches/0003_fixtest.patch	2017-03-20 16:49:26.0 +0100
@@ -0,0 +1,37 @@
+Author: Andreas Tille 
+Last-Update: Fri, 17 Mar 2017 21:20:50 +0100
+Description: Make sure test suite will find utils
+
+--- a/tests/testcolorspace.py
 b/tests/testcolorspace.py
+@@ -3,7 +3,7 @@ from __future__ import print_function, d
+ 
+ from cutadapt.colorspace import encode, decode
+ from cutadapt.scripts.cutadapt import main
+-from .utils import run, datapath
++from utils import run, datapath
+ 
+ # If there are any unknown characters in the test sequence,
+ # round tripping will only work if all characters after the
+--- a/tests/testpaired.py
 b/tests/testpaired.py
+@@ -4,7 +4,7 @@ from __future__ import print_function, d
+ import shutil
+ from nose.tools import raises
+ from cutadapt.scripts import cutadapt
+-from .utils import run, files_equal, datapath, cutpath, redirect_stderr, temporary_path
++from utils import run, files_equal, datapath, cutpath, redirect_stderr, temporary_path
+ 
+ def run_paired(params, in1, in2, expected1, expected2):
+ 	if type(params) is str:
+--- a/tests/tests.py
 b/tests/tests.py
+@@ -9,7 +9,7 @@ import sys
+ from nose.tools import raises
+ from cutadapt.scripts import cutadapt
+ from cutadapt.compat import StringIO
+-from .utils import run, files_equal, datapath, cutpath, redirect_stderr, temporary_path
++from utils import run, files_equal, datapath, cutpath, redirect_stderr, temporary_path
+ 
+ def test_example():
+ 	run('-N -b ADAPTER', 'example.fa', 'example.fa')
diff -Nru python-cutadapt-1.12/debian/patches/series python-cutadapt-1.12/debian/patches/series
--- python-cutadapt-1.12/debian/patches/series	2016-12-02 03:56:33.0 +0100
+++ python-cutadapt-1.12/debian/patches/series	2017-03-20 16:49:26.0 +0100
@@ -1,2 +1,3 @@
 cython_version.patch
 0002-Fix-encoding-issue-in-setup.py.patch
+0003_fixtest.patch
diff -Nru python-cutadapt-1.12/debian/rules python-cutadapt-1.12/debian/rules
--- python-cutadapt-1.12/debian/rules	2016-12-02 03:56:33.0 +0100
+++ python-cutadapt-1.12/debian/rules	2017-03-20 16:49:26.0 +0100
@@ -20,6 +20,8 @@
 
 export PYBUILD_NAME=cutadapt
 
+PYTHON2 := $(shell pyversions -r)
+PYTHON3 := $(shell py3versions -r)
 
 # main packagi

Bug#858316: rdiff-backup-fs: segmentation fault

[John Paul Adrian Glaubitz]

Control: tags -1 moreinfo

Hi Christian!

> rdiff-backup-fs crash
> Here is the gdb bt and rdiff-backup-fs output
> (...)

Could you provide a little more information on what exactly you did to provoke
the crash? Does rdiff-backup-fs always segfault or just under certain 
circumstances?

Adrian

-- 
 .''`.  John Paul Adrian Glaubitz
: :' :  Debian Developer - glaub...@debian.org
`. `'   Freie Universitaet Berlin - glaub...@physik.fu-berlin.de
  `-GPG: 62FF 8A75 84E0 2956 9546  0006 7426 3B37 F5B5 F913

Bug#858319: uscan: Handling of non-trivial repacking

[Christopher Hoskin]

Package: devscripts
Version: 2.17.2
Severity: normal

Dear Maintainer,

Sometimes it is necessary to repack an upstream tarball when it contains
material which violates the DFSG. In the case that whole files need to be
removed, this is adequately handled by mk-origtargz. However, there are
other situations which cannot be handled simply by excluding files, for
example, removing non-DFSG ICC profiles from images [0].

The watch file can specify a script to be called by uscan instead of
uupdate. Current practice seems to be to use this script to call a repack
script to perform custom repacking. For example, the Perl Team use [1].

There are a couple of problems with this approach however:

* the repacksuffix in the watch file is not passed to the repack script
* the  tag isn't set to the name of the repacked tarball

Thus there is no agreement between uscan/watch and the repack script about
what the repacked tarball should be called.

The impact of this is that when a command  such as

gbp import-orig --uscan --pristine-tar 

is called, the original tarball is commited to the pristine branch rather
than the repacked tarball.

Thanks.

Christopher Hoskin


[0] https://lists.debian.org/debian-devel/2014/05/msg00312.html
[1] 
https://pkg-perl.alioth.debian.org/howto/repacking.html#3._REPACKAGING%2C_in_the_olden_days

-- Package-specific info:

--- /etc/devscripts.conf ---

--- ~/.devscripts ---
DEBFULLNAME="Christopher Hoskin"
DEBEMAIL="christopher.hos...@gmail.com"
DEBSIGN_KEYID=7FF2B8B8
DEBSIGN_PROGRAM=gpg2
DSCVERIFY_KEYRINGS="~/.gnupg/pubring.gpg" 

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages devscripts depends on:
ii  dpkg-dev 1.18.23
ii  libc62.24-9
ii  perl 5.24.1-1
pn  python3:any  

Versions of packages devscripts recommends:
ii  apt 1.4~rc2
ii  at  3.1.20-3
ii  curl7.52.1-3
ii  dctrl-tools 2.24-2+b1
ii  debian-keyring  2017.01.20
ii  dput0.12.0
ii  equivs  2.0.9+nmu1
ii  fakeroot1.21-3.1
ii  file1:5.29-3
ii  gnupg   2.1.18-6
ii  gnupg2  2.1.18-6
ii  libdistro-info-perl 0.14
ii  libdpkg-perl1.18.23
ii  libencode-locale-perl   1.05-1
ii  libgit-wrapper-perl 0.047-1
ii  liblist-compare-perl0.53-1
ii  liblwp-protocol-https-perl  6.06-2
ii  libsoap-lite-perl   1.20-1
ii  liburi-perl 1.71-1
ii  libwww-perl 6.15-1
ii  licensecheck3.0.29-1
ii  lintian 2.5.51
ii  man-db  2.7.6.1-2
ii  patch   2.7.5-1+b2
ii  patchutils  0.3.4-2
ii  python3-debian  0.1.30
ii  python3-magic   1:5.29-3
ii  sensible-utils  0.0.9
ii  strace  4.15-2
ii  unzip   6.0-21
ii  wdiff   1.2.2-2
ii  wget1.18-5
ii  xz-utils5.2.2-1.2+b1

Versions of packages devscripts suggests:
ii  adequate 0.15.1
ii  autopkgtest  4.3
pn  bls-standalone   
ii  bsd-mailx [mailx]8.1.2-0.20160123cvs-3
ii  build-essential  12.3
pn  check-all-the-things 
ii  cvs-buildpackage 5.26
pn  devscripts-el
pn  diffoscope   
pn  disorderfs   
pn  dose-extra   
pn  duck 
pn  faketime 
pn  gnuplot  
ii  gpgv 2.1.18-6
pn  how-can-i-help   
ii  libauthen-sasl-perl  2.1600-1
ii  libfile-desktopentry-perl0.22-1
pn  libnet-smtps-perl
pn  libterm-size-perl
ii  libtimedate-perl 2.3000-2
pn  libyaml-syck-perl
pn  mozilla-devscripts   
ii  mutt 1.7.2-1
ii  openssh-client [ssh-client]  1:7.4p1-7
ii  piuparts 0.76
pn  ratt 
pn  reprotest
ii  svn-buildpackage 0.8.6
ii  w3m  0.5.3-34

-- no debconf information

Bug#858316: rdiff-backup-fs: segmentation fault

[Christian Marillat]

On 21 mars 2017 08:20, John Paul Adrian Glaubitz  
wrote:

> Control: tags -1 moreinfo
>
> Hi Christian!
>
>> rdiff-backup-fs crash
>> Here is the gdb bt and rdiff-backup-fs output
>> (...)
>
> Could you provide a little more information on what exactly you did to provoke
> the crash? Does rdiff-backup-fs always segfault or just under certain 
> circumstances?

Nothing special. I don't use rdiff-backup-fs daily so this I don't know
since when rdiff-backup-fs crash.

I called rdiff-backup-fs with sudo, same crash.

I did a try with two differents backups, same crash.

I don't see this bug on an amd64 machine (kernel 4.1.39)

I restored a directory today with rdiff-backup without problem.

Also I don't use the Debian kernel, but instead 4.1 (4.1.39 now)

Christian

Bug#783307: ITP: fzf -- General-purpose command-line fuzzy finder

[陳昌倬]

Hi,

What is the status of fzf packagin in Debian? Need any help?


-- 
ChangZhuo Chen (陳昌倬) 
Debian Developer (https://nm.debian.org/public/person/czchen)
Key fingerprint = BA04 346D C2E1 FE63 C790  8793 CC65 B0CD EC27 5D5B


signature.asc
Description: PGP signature

Bug#858316: rdiff-backup-fs: segmentation fault

[John Paul Adrian Glaubitz]

Hi Christian!

On 03/21/2017 08:37 AM, Christian Marillat wrote:
> I called rdiff-backup-fs with sudo, same crash.
> I did a try with two differents backups, same crash.

Ok, thanks. Will try to reproduce it.

> I don't see this bug on an amd64 machine (kernel 4.1.39)

Interesting. So it occurs on in i386 only.

> I restored a directory today with rdiff-backup without problem.

That was on amd64, I asumme?

> Also I don't use the Debian kernel, but instead 4.1 (4.1.39 now)

Ok, then I definitely have to test it myself because I need to
make sure it's not caused by your setup then. The kernel you are
using is not officially part of any current Debian release, so it
may be a problem on your machine.

Thanks,
Adrian

-- 
 .''`.  John Paul Adrian Glaubitz
: :' :  Debian Developer - glaub...@debian.org
`. `'   Freie Universitaet Berlin - glaub...@physik.fu-berlin.de
  `-GPG: 62FF 8A75 84E0 2956 9546  0006 7426 3B37 F5B5 F913

Bug#858308: flash-kernel: documentation for upgrading Odroid-U2/U3 to flash-kernel

[Adam Borowski]

On Tue, Mar 21, 2017 at 06:45:30AM +0100, Geert Stappers wrote:
> On Tue, Mar 21, 2017 at 12:31:46AM +0100, Adam Borowski wrote:
> > If you're booting from a SD card, skip until running sd-fusing.sh
> > Edit sd_fusing.sh, change sector numbers to those listed in
>  s/sd_fusing.sh/sd-fusing.sh/
> > ./sd-fusing.sh /dev/mmcblk0boot0
>  s/sd-fusing.sh/sd_fusing.sh/
> 
> Hyphen or underscore

D'oh!

> > what doesn't work
> > -
> > 
> > * rebooting: the machine gets stuck and needs to be physically power-cycled

BTW, Vagrant reports that rebooting _usually_ works on his U3, it rebooted
correctly only once on my U2.  Never had such a problem with the vendor
kernel before.

> > * audio
> > 
> > * the kernel whines about broken HDMI, video capture -- I can't even test
> >   those but I don't care
> 
> Please add   'Whoever can test HDMI, please report your milage'

Okay.

> > * the machine gets very hot; with 3.8 it never was even noticeably warm
> 
> What does mean: Kernel 3.8 is good  or bad?  Please remove ambigous mean

I dropped this entire line: that "very hot" is up to 77⁰ (at 70⁰ right now
in the middle of a libreoffice build) and never tripped, thus I have nothing
but subjective feelings from touching it by hand.  It's not unlikely the
difference comes from me having moved the machine, it was AFAIR resting on a
big whole-metal router before which could have drained heat well.

The fun thing is that all those years before I bought a fan for this box,
but because of delusions of replacing my main machine with this non-noisy
thing never actually mounted it.  Could do it now and play with overclocking
to 2GHz as Samsung used to advertise the U2 can do...


New version attached.

Also, I'm not married to being the sole editor of this file, please feel
free to make any edits you want...

-- 
⢀⣴⠾⠻⢶⣦⠀ Meow!
⣾⠁⢠⠒⠀⣿⡁
⢿⡄⠘⠷⠚⠋⠀ Collisions shmolisions, let's see them find a collision or second
⠈⠳⣄ preimage for double rot13!
How to upgrade an Odroid-U2/U3 to the modern kernel.


requirements


While strictly speaking, with perfect luck you don't need any extra bits,
in reality you need at least:
* an eMMC reader (if you bought your eMMC from Hardkernel, the included
  adapter works well in _some_ SD readers)
* a serial console (UART).  If you don't have one yet, with shipping it
  costs its weight in gold -- but fortunately it's not too heavy.


u-boot and other pre-kernel gubbins
---

apt install u-boot-exynos
wget http://odroid.in/guides/ubuntu-lfs/boot.tar.gz

Replace u-boot.bin from that tarball (2013 Samsung-private build) with
/usr/lib/u-boot/odroid/u-boot.bin (2016 vanilla), the other pieces are ok.

If you're booting from a SD card, skip until running sd_fusing.sh

On eMMC:

Edit sd_fusing.sh, change sector numbers to those listed in
/usr/share/doc/u-boot-exynos/README.odroid.gz :
.
signed_bl1_position=0
bl2_position=30
uboot_position=62
tzsw_position=2110
`

You may notice that these positions look wrong: on your eMMC (as originally
shipped) you have all those pieces in "SD" positions.  Tʜᴏꜱᴇ ᴀʀᴇ ᴅᴇᴄᴏʏꜱ ᴍᴀᴅᴇ
ᴛᴏ ᴡᴀꜱᴛᴇ ʏᴏᴜʀ ᴛɪᴍᴇ!  Replacing them does exactly nothing, the real bits are
on hidden parts of the eMMC.

There are rumours that it is possible to access them from a SD reader by a
"partition switch", but despite hours of searching I found no information
how to do that.  The only way seems to be using the U2 itself.  Which is a
dangerous thing as if anything goes wrong you won't be able to boot. 
Fortunately, recovery is possible with a micro-USB cable and a SD card with
a special image: http://forum.odroid.com/viewtopic.php?f=53&t=969 -- I did
not have the need to test that, though.

On the U2, you need to unlock the secret partition first:
https://www.kernel.org/doc/Documentation/mmc/mmc-dev-parts.txt
.
echo 0 > /sys/block/mmcblk0boot0/force_ro
`
The device name does vary: it's /dev/mmcblk0 on some kernels (vendor and
Debian's 4.10-trunk-armmp), /dev/mmcblk1 on others (Debian 4.9 and vanilla
4.11-rc2).  Only boot0 has anything, boot1 and rpmb are full of zeroes.

Run:
.
./sd_fusing.sh /dev/mmcblk0boot0
`
Watch the output -- it has no error detection at all and will lie that all
went ok even if it didn't!

Now pray and reboot.


u-boot console
--

Fortunately, unlike some other SoCs, modern u-boot _can_ boot both vendor
and mainline kernels.  Be prepared to do some manual loading, though.  For
convenience, here are relevant bits of old /boot/boot.scr:
.
setenv bootcmd "fatload mmc 0:1 0x40008000 zImage; fatload mmc 0:1 0x4200 
uInitrd; bootm 0x40008000 0x4200"
setenv bootargs "console=tty1 console=ttySAC1,115200n8 
root=UUID=e139ce78-9841-40fe-8823-96a304a09859 rootwait ro  mem=2047M"
`

If boot fails, type the commands inside bootcmd manually, perhaps replacing
"fatload" with "ext4load" (also helpful "ext4ls mmc 0:1" and so on).  The
"bootm"

Bug#858200: iptraf does not depend on iptraf-ng

[Frederic Peters]

Hi Samuel,

> Also, i can help with the fix, given the maintainers permission to do so.

Of course I am totally fine with this.


Thanks,


Fred

Bug#858320: golang-github-mesos-mesos-go: accesses the internet during build

[Chris Lamb]

Source: golang-github-mesos-mesos-go
Version: 0.0.2+dfsg-2
Severity: important
Justification: Policy 4.9
User: la...@debian.org
Usertags: network-access

Dear Maintainer,

Whilst golang-github-mesos-mesos-go builds successfully on unstable/amd64,
according to Debian Policy 4.9 packages may not attempt network access during
a build.

   00:00:00.00 IP 9038a1097bae.33448 > OpenWrt.lan.domain: 2772+ ? 
mesos.com. (27)
   00:00:00.00 IP 9038a1097bae.52467 > OpenWrt.lan.domain: 13901+ A? 
mesos.com. (27)
   00:00:00.173646 IP OpenWrt.lan.domain > 9038a1097bae.52467: 13901 1/0/0 A 
103.224.182.210 (43)
   00:00:00.178753 IP OpenWrt.lan.domain > 9038a1097bae.33448: 2772 0/0/0 (27)

  [..]

The full build log (including tcpdump output) is attached.


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-


golang-github-mesos-mesos-go.0.0.2+dfsg-2.unstable.amd64.log.txt.gz
Description: Binary data

Bug#853855: di-utils: Kernel boot options containing a dot are not propagated to the installed system

[Philip Hands]

BTW the jenkins tests have now been duplicated on the proper
jenkins.debian.net setup.

The successful run using the pu/bug-853855 branches of di-utils and
rootskel is here:

  https://jenkins.debian.net/job/lvc_debian-miniiso/355/console

and the same test failing with the current daily build is here (look for
"did not give the expected outcome"):

  
https://jenkins.debian.net/view/lvc/job/lvc_debian-DI-miniiso-gui-daily-bugtest/3/console

Cheers, Phil.
-- 
|)|  Philip Hands  [+44 (0)20 8530 9560]  HANDS.COM Ltd.
|-|  http://www.hands.com/http://ftp.uk.debian.org/
|(|  Hugo-Klemm-Strasse 34,   21075 Hamburg,GERMANY


signature.asc
Description: PGP signature

Bug#854447: Not sure I can reproduce this problem (CVE-2017-6962)

[Ola Lundqvist]

Hi Dileep

Thank you.

No I did not try that. I wanted to test with untouched binaries first.
The problem can still be there in the untouched binary. I just wanted to
check how that behaved to conclude the severity of the issue in stable and
oldstable.

Do you mean that I have to re-compile the binary in ASAN mode to be able to
trigger the problem, or just that the ASAN mode makes it more visible?

Best regards

// Ola

On 21 March 2017 at 07:24, Dileep Kumar  wrote:

> Hey,
>
> As mentioned, you need to compile the binary in ASAN mode. Have you tried
> using the make file in the attachment??
>
> Best Regards,
> Dileep
>
> On Tue, Mar 21, 2017 at 3:45 AM, Ola Lundqvist  wrote:
>
>> Hi
>>
>> I have tried to reproduce this problem but I can not reproduce a crash.
>> Or is it so that I just do not see it due to how the binary is built?
>>
>> Wheezy:
>> (wheezy_chroot)root@tigereye:/# apng2gif input-854447.png
>> apng2gif 1.5
>> Reading 'input-854447.png'...
>> Error: can't load 'input-854447.png'
>>
>> Sid:
>> (sid_chroot)root@tigereye:/# apng2gif input-854447.png
>> apng2gif 1.7
>> Reading 'input-854447.png'...
>> load_apng() failed: 'input-854447.png'
>>
>> Best regards
>>
>> // Ola
>>
>> --
>>  --- Inguza Technology AB --- MSc in Information Technology 
>> /  o...@inguza.comFolkebogatan 26\
>> |  o...@debian.org   654 68 KARLSTAD|
>> |  http://inguza.com/Mobile: +46 (0)70-332 1551
>> <+46%2070%20332%2015%2051> |
>> \  gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9  /
>>  ---
>>
>>
>


-- 
 --- Inguza Technology AB --- MSc in Information Technology 
/  o...@inguza.comFolkebogatan 26\
|  o...@debian.org   654 68 KARLSTAD|
|  http://inguza.com/Mobile: +46 (0)70-332 1551 |
\  gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9  /
 ---

Bug#858322: Please integrate a document

[martin f krafft]

Package: x11-xkb-utils
Version: 7.7+3+b1
Severity: wishlist

I kinda want to get rid of http://madduck.net/docs/extending-xkb/
(along with my entire webserver). It gets a lot of access (from
Debian machines, according to access.log), and I think it'd be best
included in the package, or pushed upstream if they care.

I'd put it under whatever licence suits, and please let me know what
format you prefer. It's Markdown right now.

Thanks for your consideration!

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_NZ, LC_CTYPE=en_NZ.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages x11-xkb-utils depends on:
ii  libc62.24-9
ii  libx11-6 2:1.6.4-3
ii  libxaw7  2:1.0.13-1
ii  libxkbfile1  1:1.0.9-2
ii  libxt6   1:1.1.5-1

x11-xkb-utils recommends no packages.

x11-xkb-utils suggests no packages.

-- no debconf information


-- 
 .''`.   martin f. krafft  @martinkrafft
: :'  :  proud Debian developer
`. `'`   http://people.debian.org/~madduck
  `-  Debian - when you have better things to do than fixing systems


digital_signature_gpg.asc
Description: Digital GPG signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current)

Bug#858321: linux-image-4.9.0-2-amd64: psmouse fails to reactivate synaptics touchpad after suspend

[Christian Gogolin]

Package: src:linux
Version: 4.9.13-1
Severity: important

Dear Maintainer,

after resuming from suspend and also after starting the xserver for the first 
time after boot the synaptics touchpad and trackpoint of my x1 yoga take a very 
long time to activate. Until this happens the touchpad and trackpoint remain 
completely unusable.

When the touchpad finally becomes usable I see the following in dmeseg

[   21.654648] IPv6: ADDRCONF(NETDEV_CHANGE): wlp4s0: link becomes ready
[  199.752167] psmouse serio2: trackpoint: IBM TrackPoint firmware: 0x0e, 
buttons: 3/3
[  199.989709] input: TPPS/2 IBM TrackPoint as 
/devices/platform/i8042/serio1/serio2/input/input23
[  200.617915] psmouse serio2: Failed to deactivate mouse on synaptics-pt/serio0
[  201.090321] psmouse serio2: Failed to enable mouse on synaptics-pt/serio0
[  363.266460] INFO: task kworker/2:1:44 blocked for more than 120 seconds.
[  363.266476]   Not tainted 4.9.0-2-amd64 #1
[  363.266482] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this 
message.
[  363.266489] kworker/2:1 D044  2 0x
[  363.266515] Workqueue: events_long serio_handle_event
[  363.266524]  8c5a945ce800  8c5a980550c0 
8c5aa25181c0
[  363.266536]  8c5a98acc040 b271c0dffc80 a61f6233 
8c5a9386d010
[  363.266547]  0032 8c5aa25181c0 8c5a9989e6d8 
8c5a980550c0
[  363.266558] Call Trace:
[  363.266583]  [] ? __schedule+0x233/0x6d0
[  363.266597]  [] ? schedule+0x32/0x80
[  363.266616]  [] ? __kernfs_remove+0x1ad/0x250
[  363.266625]  [] ? prepare_to_wait_event+0xf0/0xf0
[  363.266641]  [] ? kernfs_remove_by_name_ns+0x3e/0x90
[  363.266653]  [] ? remove_files.isra.1+0x30/0x70
[  363.266659]  [] ? sysfs_remove_group+0x3d/0x90
[  363.266691]  [] ? trackpoint_disconnect+0x20/0x40 [psmouse]
[  363.266710]  [] ? psmouse_disconnect+0x90/0x150 [psmouse]
[  363.266727]  [] ? serio_disconnect_driver+0x2b/0x40
[  363.266738]  [] ? serio_driver_remove+0x11/0x20
[  363.266756]  [] ? __device_release_driver+0x9a/0x150
[  363.266768]  [] ? device_release_driver+0x1e/0x30
[  363.266777]  [] ? serio_reconnect_subtree+0x4a/0xa0
[  363.266784]  [] ? serio_handle_event+0x145/0x200
[  363.266792]  [] ? process_one_work+0x184/0x410
[  363.266800]  [] ? worker_thread+0x4d/0x480
[  363.266806]  [] ? process_one_work+0x410/0x410
[  363.266812]  [] ? process_one_work+0x410/0x410
[  363.266822]  [] ? kthread+0xce/0xf0
[  363.266833]  [] ? __switch_to+0x2c1/0x6c0
[  363.266844]  [] ? kthread_park+0x60/0x60
[  363.266855]  [] ? ret_from_fork+0x25/0x30
[  380.765192] psmouse serio2: trackpoint: IBM TrackPoint firmware: 0x0e, 
buttons: 3/3
[  380.994004] input: TPPS/2 IBM TrackPoint as 
/devices/platform/i8042/serio1/serio2/input/input24
[  382.144299] psmouse serio2: Failed to deactivate mouse on synaptics-pt/serio0
[  382.615872] psmouse serio2: Failed to enable mouse on synaptics-pt/serio0
[  383.476364] psmouse serio2: trackpoint: IBM TrackPoint firmware: 0x0e, 
buttons: 3/3
[  383.710270] input: TPPS/2 IBM TrackPoint as 
/devices/platform/i8042/serio1/serio2/input/input25

The problems started only recently.

Bug#833267 in xserver-xorg-input-all could be related.

I suspect that this is a kernel issue. If not, please reassign this bug.

I am happy to provide more information if you tell me what is needed to get 
this fixed.


-- Package-specific info:
** Version:
Linux version 4.9.0-2-amd64 (debian-ker...@lists.debian.org) (gcc version 6.3.0 
20170221 (Debian 6.3.0-8) ) #1 SMP Debian 4.9.13-1 (2017-02-27)

** Command line:
BOOT_IMAGE=/vmlinuz-4.9.0-2-amd64 root=/dev/mapper/vg00-root ro quiet

** Not tainted

** Kernel log:
Unable to read kernel log; any relevant messages should be attached

** Model information
sys_vendor: LENOVO
product_name: 20FQ0040GE
product_version: ThinkPad X1 Carbon 4th
chassis_vendor: LENOVO
chassis_version: None
bios_vendor: LENOVO
bios_version: N1FET47W (1.21 )
board_vendor: LENOVO
board_name: 20FQ0040GE
board_version: SDK0J40697 WIN

** Loaded modules:
ctr
ccm
nls_ascii
nls_cp437
vfat
fat
ext4
crc16
jbd2
fscrypto
ecb
arc4
mbcache
snd_hda_codec_hdmi
snd_hda_codec_conexant
snd_hda_codec_generic
hid_sensor_gyro_3d
hid_sensor_magn_3d
hid_sensor_accel_3d
hid_sensor_als
snd_soc_skl
hid_sensor_trigger
hid_sensor_iio_common
snd_soc_skl_ipc
industrialio_triggered_buffer
acer_wmi
kfifo_buf
snd_soc_sst_ipc
industrialio
sparse_keymap
snd_soc_sst_dsp
snd_hda_ext_core
snd_soc_sst_match
snd_soc_core
intel_rapl
x86_pkg_temp_thermal
snd_compress
intel_powerclamp
coretemp
kvm_intel
iwlmvm
kvm
irqbypass
mac80211
snd_hda_intel
intel_cstate
efi_pstore
intel_uncore
snd_hda_codec
cdc_mbim
uvcvideo
snd_hda_core
cdc_wdm
videobuf2_vmalloc
videobuf2_memops
cdc_ncm
snd_hwdep
intel_rapl_perf
videobuf2_v4l2
videobuf2_core
iwlwifi
snd_pcm
i915
qcserial
pcspkr
videodev
usb_wwan
usbnet
iTCO_wdt
efivars
media
mii
usbserial
serio_raw
iTCO_vendor_support
snd_timer
sg
rtsx_pci_ms
cfg80211
drm_kms_helper
mei_

Bug#857946: okular fails to start from terminal reporting incompatible Qt libraries, but works otherwise

[Miguel Hermanns]

It seems the problem is not okular related since it affects other programs
too. I wanted to start Libreoffice from the terminal and got exactly the
same error message.

On Thu, Mar 16, 2017 at 4:21 PM, Miguel Hermanns 
wrote:

> Package: okular
> Version: 4:16.08.2-1+b1
> Severity: important
>
> Dear Maintainer,
>
> after installing debian stretch RC2 and rebooting the system a few
> times, okular fails to start from the terminal with the following message:
>
> Cannot mix incompatible Qt library /version 0x40807) with this library
> (version 0x40806)
> Aborted
>
> However, starting okular from inside KDE, for instance from the menu or
> when clicking on an attached pdf file, works perfectly.
>
>
>
> -- System Information:
> Debian Release: 9.0
>   APT prefers testing
>   APT policy: (500, 'testing')
> Architecture: amd64 (x86_64)
>
> Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores)
> Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/dash
> Init: systemd (via /run/systemd/system)
>
> Versions of packages okular depends on:
> ii  kde-runtime 4:16.08.3-1
> ii  libc6   2.24-9
> ii  libfreetype62.6.3-3+b2
> ii  libjpeg62-turbo 1:1.5.1-2
> ii  libkdecore5 4:4.14.26-1
> ii  libkdeui5   4:4.14.26-1
> ii  libkexiv2-114:15.04.3-1
> ii  libkio5 4:4.14.26-1
> ii  libkparts4  4:4.14.26-1
> ii  libkprintutils4 4:4.14.26-1
> ii  libkpty44:4.14.26-1
> ii  libokularcore7  4:16.08.2-1+b1
> ii  libphonon4  4:4.9.0-4
> ii  libpoppler-qt4-40.48.0-2
> ii  libqca2 2.1.1-4
> ii  libqimageblitz4 1:0.0.6-4+b2
> ii  libqmobipocket1 4:16.08.0-1
> ii  libqt4-dbus 4:4.8.7+dfsg-11
> ii  libqt4-declarative  4:4.8.7+dfsg-11
> ii  libqt4-svg  4:4.8.7+dfsg-11
> ii  libqt4-xml  4:4.8.7+dfsg-11
> ii  libqtcore4  4:4.8.7+dfsg-11
> ii  libqtgui4   4:4.8.7+dfsg-11
> ii  libsolid4   4:4.14.26-1
> ii  libspectre1 0.2.8-1
> ii  libstdc++6  6.3.0-6
> ii  phonon  4:4.9.0-4
> ii  zlib1g  1:1.2.8.dfsg-5
>
> Versions of packages okular recommends:
> ii  cups-bsd  2.2.1-8
>
> Versions of packages okular suggests:
> ii  ghostscript9.20~dfsg-2
> ii  jovie  4:16.08.0-1+b1
> pn  okular-extra-backends  
> ii  poppler-data   0.4.7-8
> ii  texlive-binaries   2016.20160513.41080.dfsg-1
> ii  unrar  1:5.3.2-1
>
> -- no debconf information
>

Bug#847571: smartly-lexer NMUed, please merge NMU into git

[Mike Gabriel]

Hi Holger,

On  Mo 20 Mär 2017 22:48:23 CET, Holger Levsen wrote:


On Mon, Mar 20, 2017 at 06:21:38PM +, Mike Gabriel wrote:

I am not sure, did we reach a conclusion on the smarty3 upload?.


uhm, yes:

[11:15] < sunweaver> I'll do the upload to unstable now, or do we  
want to ping the RT first?

[11:15] <  h01ger> | do it now
[11:15] <  h01ger> | it already has been discussed


Personally, I'd say that we should bump the versioned BD on  
snarty-lexer to the just uploaded version. Don't you think?


do.


Uploaded and B-D on smarty-lexer raised. Can you follow up on the  
unblock? (Thanks!)


Mike

--

DAS-NETZWERKTEAM
mike gabriel, herweg 7, 24357 fleckeby
mobile: +49 (1520) 1976 148
landline: +49 (4354) 8390 139

GnuPG Fingerprint: 9BFB AEE8 6C0A A5FF BF22  0782 9AF4 6B30 2577 1B31
mail: mike.gabr...@das-netzwerkteam.de, http://das-netzwerkteam.de



pgpiRW0Q5Vq26.pgp
Description: Digitale PGP-Signatur

Bug#857979: approx: does not start on sysvinit system

[Carsten Leonhardt]

Hi,

you could add a depends on "systemd-sysv | update-inetd" and configure
inetd only if it's installed:

[ -x /usr/sbin/update-inetd ]

And I'd recommend getting the fix into stretch, otherwise non-systemd
approx users will have a surprise when they dist-upgrade.

 - Carsten

Bug#854447: Not sure I can reproduce this problem (CVE-2017-6962)

[Dileep Kumar]

Hey,

Yep, the bug is always there, ASAN will just make the program abort on heap
overflow.

-Dileep

On Tue, Mar 21, 2017 at 2:05 PM, Ola Lundqvist  wrote:

> Hi Dileep
>
> Thank you.
>
> No I did not try that. I wanted to test with untouched binaries first.
> The problem can still be there in the untouched binary. I just wanted to
> check how that behaved to conclude the severity of the issue in stable and
> oldstable.
>
> Do you mean that I have to re-compile the binary in ASAN mode to be able
> to trigger the problem, or just that the ASAN mode makes it more visible?
>
> Best regards
>
> // Ola
>
> On 21 March 2017 at 07:24, Dileep Kumar  wrote:
>
>> Hey,
>>
>> As mentioned, you need to compile the binary in ASAN mode. Have you tried
>> using the make file in the attachment??
>>
>> Best Regards,
>> Dileep
>>
>> On Tue, Mar 21, 2017 at 3:45 AM, Ola Lundqvist  wrote:
>>
>>> Hi
>>>
>>> I have tried to reproduce this problem but I can not reproduce a crash.
>>> Or is it so that I just do not see it due to how the binary is built?
>>>
>>> Wheezy:
>>> (wheezy_chroot)root@tigereye:/# apng2gif input-854447.png
>>> apng2gif 1.5
>>> Reading 'input-854447.png'...
>>> Error: can't load 'input-854447.png'
>>>
>>> Sid:
>>> (sid_chroot)root@tigereye:/# apng2gif input-854447.png
>>> apng2gif 1.7
>>> Reading 'input-854447.png'...
>>> load_apng() failed: 'input-854447.png'
>>>
>>> Best regards
>>>
>>> // Ola
>>>
>>> --
>>>  --- Inguza Technology AB --- MSc in Information Technology 
>>> /  o...@inguza.comFolkebogatan 26\
>>> |  o...@debian.org   654 68 KARLSTAD|
>>> |  http://inguza.com/Mobile: +46 (0)70-332 1551
>>> <+46%2070%20332%2015%2051> |
>>> \  gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9  /
>>>  ---
>>>
>>>
>>
>
>
> --
>  --- Inguza Technology AB --- MSc in Information Technology 
> /  o...@inguza.comFolkebogatan 26\
> |  o...@debian.org   654 68 KARLSTAD|
> |  http://inguza.com/Mobile: +46 (0)70-332 1551
> <+46%2070%20332%2015%2051> |
> \  gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9  /
>  ---
>
>

Bug#858073: apparent freeze when exiting text session on second vt while X is running on first vt

[Daniel Haid]

Does changing

 if [ "$SHLVL" = 1 ]

in ~/.bash_logout to

 if  [ "$SHLVL" = 2 ]

alter the behaviour?


Yes, in this case I just get the login prompt on the same VT again,
and I can switch back with Ctrl+F1 without any problems.

Bug#832176: Patch to honor DPKG_ROOT in dpkg-maintscript-helper

[Bastien ROUCARIES]

Hi guillem,

On Tue, Mar 21, 2017 at 12:04 AM, Bastien ROUCARIES
 wrote:
> On Mon, Mar 20, 2017 at 11:01 PM, Bastien ROUCARIES
>  wrote:
>> Add also this patch
>>
>> On Mon, Mar 20, 2017 at 5:02 PM, Bastien ROUCARIES
>>  wrote:
>>> On Mon, Mar 20, 2017 at 4:32 PM, Bastien ROUCARIES
>>>  wrote:
 control: tags -1 + patch

 Hi,

 Found joinded patch to honor DPKG_ROOT. Tested using test suite
>>>
>>> Improve portability by not using find -printf
>

Could you get a glimpse at this serie
From 024298e9ddf236718c4b75155bbaf1e809fdc8e0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Bastien=20ROUCARI=C3=88S?= 
Date: Mon, 20 Mar 2017 23:00:36 +0100
Subject: [PATCH 7/7] Use simpler variant for find

Safer and simpler
---
 scripts/dpkg-maintscript-helper.sh | 11 +--
 1 file changed, 5 insertions(+), 6 deletions(-)

diff --git a/scripts/dpkg-maintscript-helper.sh b/scripts/dpkg-maintscript-helper.sh
index e8f4c662c..931b0f762 100755
--- a/scripts/dpkg-maintscript-helper.sh
+++ b/scripts/dpkg-maintscript-helper.sh
@@ -418,14 +418,13 @@ prepare_dir_to_symlink()
 		  error "directory '$PATHNAME' contains files not owned by" \
 		"package $PACKAGE, cannot switch to symlink"
 	else
-	(cd "$DPKG_ROOT$PATHNAME"; find ./ -print0 | xargs -0 -n1 \
+	(cd "$DPKG_ROOT"; find "./$PATHNAME" -print0) | xargs -0 -n1 \
 		   sh -c '
-		  file=$2;
-			  pathname=$1;
-			  echo -n $file |sed s,[.]/,$pathname/,g ;printf "\0"' \
-		   findhelper $PATHNAME | \
+		  file="$1";
+			  printf "%s\0" "${file#./}"' \
+		   findhelper | \
 		   xargs -0 -n1 \
-		   dpkg-maintscript-helper package_owns_file_or_error $PACKAGE) || \
+		   dpkg-maintscript-helper package_owns_file_or_error $PACKAGE || \
 		  error "directory '$PATHNAME' contains files not owned by" \
 		"package $PACKAGE, cannot switch to symlink"
 	fi
-- 
2.11.0

From a251b8f7aadd33203d26db3a61f9431bf9c4ac22 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Bastien=20ROUCARI=C3=88S?= 
Date: Mon, 20 Mar 2017 17:01:42 +0100
Subject: [PATCH 6/7] Improve portability by not using find -printf

---
 scripts/dpkg-maintscript-helper.sh | 14 +++---
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/scripts/dpkg-maintscript-helper.sh b/scripts/dpkg-maintscript-helper.sh
index 5becba33a..e8f4c662c 100755
--- a/scripts/dpkg-maintscript-helper.sh
+++ b/scripts/dpkg-maintscript-helper.sh
@@ -412,20 +412,20 @@ prepare_dir_to_symlink()
 
 	# If there are locally created files or files owned by another package
 	# we should not perform the switch.
-	if [ -n "$DPKG_ROOT" ]; then
+	if [ -z "$DPKG_ROOT" ]; then
 	find "$PATHNAME" -print0 | xargs -0 -n1 \
 		   dpkg-maintscript-helper package_owns_file_or_error $PACKAGE || \
 		  error "directory '$PATHNAME' contains files not owned by" \
 		"package $PACKAGE, cannot switch to symlink"
 	else
-	find "$DPKG_ROOT$PATHNAME" -printf "%P\0" | xargs -0 -n1 \
+	(cd "$DPKG_ROOT$PATHNAME"; find ./ -print0 | xargs -0 -n1 \
 		   sh -c '
-		   	  file=$2
-			  pathname=$1
-		   	  echo -n "$pathname/$file"; printf "\0"' \
-			  addpathname $PATHNAME | \
+		  file=$2;
+			  pathname=$1;
+			  echo -n $file |sed s,[.]/,$pathname/,g ;printf "\0"' \
+		   findhelper $PATHNAME | \
 		   xargs -0 -n1 \
-		   dpkg-maintscript-helper package_owns_file_or_error $PACKAGE || \
+		   dpkg-maintscript-helper package_owns_file_or_error $PACKAGE) || \
 		  error "directory '$PATHNAME' contains files not owned by" \
 		"package $PACKAGE, cannot switch to symlink"
 	fi
-- 
2.11.0

From 2d870b20534bac2847b55b544351c112a85595e8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Bastien=20ROUCARI=C3=88S?= 
Date: Mon, 20 Mar 2017 16:27:09 +0100
Subject: [PATCH 5/7] Honor DPKG_ROOT in dir to symlink

---
 scripts/dpkg-maintscript-helper.sh | 83 +++---
 1 file changed, 51 insertions(+), 32 deletions(-)

diff --git a/scripts/dpkg-maintscript-helper.sh b/scripts/dpkg-maintscript-helper.sh
index 0b867d805..5becba33a 100755
--- a/scripts/dpkg-maintscript-helper.sh
+++ b/scripts/dpkg-maintscript-helper.sh
@@ -354,10 +354,10 @@ dir_to_symlink() {
 	  "PACKAGE=$PACKAGE LASTVERSION=$LASTVERSION ACTION=$1 PARAM=$2"
 
 	case "$DPKG_MAINTSCRIPT_NAME" in
-	preinst)
+	preinst)
 		if [ "$1" = "install" -o "$1" = "upgrade" ] &&
 		   [ -n "$2" ] &&
-		   [ ! -h "$PATHNAME" ] && [ -d "$PATHNAME" ] &&
+		   [ ! -h "$DPKG_ROOT$PATHNAME" ] && [ -d "$DPKG_ROOT$PATHNAME" ] &&
 		   dpkg --compare-versions -- "$2" le-nl "$LASTVERSION"; then
 			prepare_dir_to_symlink "$PACKAGE" "$PATHNAME"
 		fi
@@ -368,24 +368,24 @@ dir_to_symlink() {
 		# have been unpacked, then upgraded with an unpack and thus
 		# never been configured before.
 		if [ "$1" = "configure" ] &&
-		   [ -d "${PATHNAME}.dpkg-backup" ] &&
-		   [ ! -h "$P

Bug#858299: installer doesn't load on an acer Aspire one

[Max Sievers]

Stable (8.7) doesn't work, too. I just checked it's an old Debian 7 usb stick 
which works. With an Debian 8.7 usb stick I get also the line

SYSLINUX 6.03 EDD [...]

and then only a cursor.

Bug#858308: flash-kernel: documentation for upgrading Odroid-U2/U3 to flash-kernel

[Ian Campbell]

On Tue, 2017-03-21 at 00:31 +0100, Adam Borowski wrote:
> Package: flash-kernel

Not sure that this (or u-boot) is really the best place for it, it
certainly wouldn't occur to look under either of those packages for
such documentation.

Perhaps a wiki page under wiki.debian.org/DebianOn might be better? Or
the installation guide perhaps?

Ian.

Bug#858324: binutils: CVE-2017-7210

[Salvatore Bonaccorso]

Source: binutils
Severity: important
Tags: patch security upstream
Forwarded: https://sourceware.org/bugzilla/show_bug.cgi?id=21157

Hi,

the following vulnerability was published for binutils.

CVE-2017-7210[0]:
| objdump in GNU Binutils 2.28 is vulnerable to multiple heap-based
| buffer over-reads (of size 1 and size 8) while handling corrupt STABS
| enum type strings in a crafted object file, leading to program crash.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-7210
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7210

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#858323: binutils: CVE-2017-7209

[Salvatore Bonaccorso]

Source: binutils
Version: 2.28-2
Severity: important
Tags: upstream security patch
Forwarded: https://sourceware.org/bugzilla/show_bug.cgi?id=21135

Hi,

the following vulnerability was published for binutils.

CVE-2017-7209[0]:
| The dump_section_as_bytes function in readelf in GNU Binutils 2.28
| accesses a NULL pointer while reading section contents in a corrupt
| binary, leading to a program crash.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-7209
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7209

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#858325: k3b: qk3b fails to start from terminal due to symbol lookup error, works otherwise

[Miguel Hermanns]

Package: k3b
Version: 2.0.3a-2+b2
Severity: important

Dear Maintainer,

starting k3b from the terminal fails with the following error message:

k3b: symbol lookup error: /usr/lib/x86_64-linux-gnu/libQt3Support.so.4:
undefined symbol: _ZTI9QMenuItem

However, starting k3b from the KDE menu works without problems.


-- Package-specific info:
Device was not specified. Trying to find an appropriate drive...
Detected CD-R drive: /dev/cdrw
Using /dev/cdrom of unknown capabilities
Device type: Removable CD-ROM
Version: 5
Response Format: 2
Capabilities   : 
Vendor_info: 'HL-DT-ST'
Identification : 'DVDRAM GH24NSD1 '
Revision   : 'LB00'
Device seems to be: Generic mmc2 DVD-R/DVD-RW.
Using generic SCSI-3/mmc   CD-R/CD-RW driver (mmc_cdr).
Driver flags   : MMC-3 SWABAUDIO BURNFREE 
Supported modes: TAO PACKET SAO SAO/R96P SAO/R96R RAW/R16 RAW/R96P RAW/R96R

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages k3b depends on:
ii  cdparanoia 3.10.2+debian-11
ii  cdrdao 1:1.2.3-3
ii  genisoimage9:1.1.11-3+b2
ii  k3b-data   2.0.3a-2
ii  kde-runtime4:16.08.3-1
ii  libc6  2.24-9
ii  libk3b62.0.3a-2+b2
ii  libkcddb4  4:16.08.3-1
ii  libkcmutils4   4:4.14.26-1
ii  libkde3support44:4.14.26-1
ii  libkdecore54:4.14.26-1
ii  libkdeui5  4:4.14.26-1
ii  libkfile4  4:4.14.26-1
ii  libkio54:4.14.26-1
ii  libknotifyconfig4  4:4.14.26-1
ii  libqt4-qt3support  4:4.8.7+dfsg-11
ii  libqt4-xml 4:4.8.7+dfsg-11
ii  libqtcore4 4:4.8.7+dfsg-11
ii  libqtgui4  4:4.8.7+dfsg-11
ii  libqtwebkit4   2.3.4.dfsg-9.1
ii  libsolid4  4:4.14.26-1
ii  libstdc++6 6.3.0-6
ii  udisks22.1.8-1
ii  wodim  9:1.1.11-3+b2

Versions of packages k3b recommends:
ii  dvd+rw-tools 7.1-11.1
ii  growisofs7.1-11.1
ii  libk3b6-extracodecs  2.0.3a-2+b2
ii  vcdimager0.7.24+dfsg-0.2

Versions of packages k3b suggests:
pn  k3b-extrathemes  
ii  k3b-i18n 2.0.3a-2
pn  kde-config-cddb  
pn  movixmaker-2 
pn  normalize-audio  
ii  sox  14.4.1-5+b2

-- no debconf information

Bug#858326: lintian: Please add /usr/bin/stap as valid interpreter

[gustavo panizzo]

Package: lintian
Version: 2.5.50.1
Severity: wishlist


Hello, 

I'm packaging tuned which includes some systemtap scripts. their sheban
is

#!/usr/bin/stap

then lintian complains

unusual-interpreter usr/sbin/diskdevstat #!/usr/bin/stap


can you add that shebang to  the list of interpreters?

thanks!

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (900, 'testing'), (300, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: armhf

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages lintian depends on:
ii  binutils  2.27.90.20170124-2
ii  bzip2 1.0.6-8.1
ii  diffstat  1.61-1+b1
ii  file  1:5.29-3
ii  gettext   0.19.8.1-2
ii  intltool-debian   0.35.0+20060710.4
ii  libapt-pkg-perl   0.1.30
ii  libarchive-zip-perl   1.59-1
ii  libclass-accessor-perl0.34-1
ii  libclone-perl 0.38-2+b1
ii  libdpkg-perl  1.18.23
ii  libemail-valid-perl   1.202-1
ii  libfile-basedir-perl  0.07-1
ii  libipc-run-perl   0.94-1
ii  liblist-moreutils-perl0.416-1+b1
ii  libparse-debianchangelog-perl 1.2.0-12
ii  libperl5.22 [libdigest-sha-perl]  5.22.2-5
ii  libperl5.24 [libdigest-sha-perl]  5.24.1-1
ii  libtext-levenshtein-perl  0.13-1
ii  libtimedate-perl  2.3000-2
ii  liburi-perl   1.71-1
ii  libyaml-libyaml-perl  0.63-2
ii  man-db2.7.6.1-2
ii  patchutils0.3.4-2
ii  perl  5.24.1-1
ii  t1utils   1.39-2
ii  xz-utils  5.2.2-1.2+b1

Versions of packages lintian recommends:
ii  dpkg 1.18.23
ii  libperlio-gzip-perl  0.19-1+b2
ii  perl 5.24.1-1
ii  perl-modules-5.22 [libautodie-perl]  5.22.2-5
ii  perl-modules-5.24 [libautodie-perl]  5.24.1-1

Versions of packages lintian suggests:
pn  binutils-multiarch 
ii  dpkg-dev   1.18.23
ii  libhtml-parser-perl3.72-3
ii  libtext-template-perl  1.46-1

-- no debconf information

Bug#795296: "You are not allowed to save the configuration" (both root and ordinary user)

[Maximiliano Curia]

Control: tag -1 + moreinfo

¡Hola Willi!

El 2017-03-20 a las 19:22 +0100, Willi Mann escribió:
the problem still exists. Let me know if you any idea how to track this 
down.


Sorry, I can't reproduce the issue here, the message seems to be related to a 
rule rejecting the request for your users, (even root?). Do you have a

specific policykit setup?

Do you have the polkit-kde-authentication-agent-1 service running?

What's the result of running: 
pkexec bash

in a terminal with your user?

Happy hacking,
--
"If you are in a hole, stop digging." -- The First Rule of Excavation
Saludos /\/\ /\ >< `/


signature.asc
Description: PGP signature

Bug#858308: flash-kernel: documentation for upgrading Odroid-U2/U3 to flash-kernel

[Adam Borowski]

On Tue, Mar 21, 2017 at 09:45:01AM +, Ian Campbell wrote:
> On Tue, 2017-03-21 at 00:31 +0100, Adam Borowski wrote:
> > Package: flash-kernel
> 
> Not sure that this (or u-boot) is really the best place for it, it
> certainly wouldn't occur to look under either of those packages for
> such documentation.

This doc is for converting to flash-kernel (and other modern bits), thus I
went for flash-kernel first.  You guys know what would be appropriate better
than me.

> Perhaps a wiki page under wiki.debian.org/DebianOn might be better? Or
> the installation guide perhaps?

It's not installation, merely upgrading from parts shipped by the vendor. 
You need their parts to even boot from eMMC, and the only way I know to put
Debian pieces to eMMC is... booting from said eMMC.

-- 
⢀⣴⠾⠻⢶⣦⠀ Meow!
⣾⠁⢠⠒⠀⣿⡁
⢿⡄⠘⠷⠚⠋⠀ Collisions shmolisions, let's see them find a collision or second
⠈⠳⣄ preimage for double rot13!

Bug#858327: RFP: python-face-recognition -- Recognize and manipulate faces from Python

[W. Martin Borgert]

Package: wnpp
Severity: wishlist

* Package name: python-face-recognition
  Version : 0.1.9
  Upstream Author : Adam Geitgey 
* URL : https://github.com/ageitgey/face_recognition
* License : MIT
  Programming Lang: Python
  Description : Recognize and manipulate faces from Python

>From the github description:

Recognize and manipulate faces from Python or from the command
line with the world's simplest face recognition library.

Built using dlib's state-of-the-art face recognition built with
deep learning. The model has an accuracy of 99.38% on the
Labeled Faces in the Wild benchmark.

This also provides a simple face_recognition command line tool
that lets you do face recognition on a folder of images from
the command line!

Bug#842008: php5-apcu: Random SEGFAULT crashing apache

[Alexander Hofstede]

There's been some fixes in later 4.0.x releases. This package would benefit 
from an update to 4.0.11. https://github.com/krakjoe/apcu/releases/tag/v4.0.11 


On Tue, 25 Oct 2016 09:39:27 +0200 Phillip Berndt 
 wrote:
> Package: php5-apcu
> Version: 4.0.7-1
> Severity: normal
> 
> Dear Maintainer,
> 
> my apache server SEGFAULT'ed in php's apcu.so module. The crash leaves a
> core dump in /etc/apache2 (which seems to be the default behaviour, I
> didn't configure this). The crash appears to be related to reloading
> apache (systemctl reload apache2.service), which happens automatically
> on the server whenever a letsencrypt certificate has been renewed.v I
> have three core dumps by now, and each one has the same backtrace:
> 
> -- gdb output
> Core was generated by `/usr/sbin/apache2 -k start'.
> Program terminated with signal SIGSEGV, Segmentation fault.
> #0  0x7f07ccaf174c in __pthread_rwlock_init
> (rwlock=0x, attr=) at
> pthread_rwlock_init.c:40
> (gdb) bt
> #0  0x7f07ccaf174c in __pthread_rwlock_init
> (rwlock=0x, attr=) at
> pthread_rwlock_init.c:40
> #1  0x7f07c2d78b10 in apc_lock_create () from 
> /usr/lib/php5/20131226/apcu.so
> #2  0x7f07c2d7e4f5 in apc_sma_api_init () from
> /usr/lib/php5/20131226/apcu.so
> #3  0x7f07c2d7ad51 in ?? () from /usr/lib/php5/20131226/apcu.so
> #4  0x7f07c817599e in zend_startup_module_ex () from
> /usr/lib/apache2/modules/libphp5.so
> #5  0x7f07c8182203 in zend_hash_apply () from
> /usr/lib/apache2/modules/libphp5.so
> #6  0x7f07c8179c2a in zend_startup_modules () from
> /usr/lib/apache2/modules/libphp5.so
> #7  0x7f07c810fcb3 in php_module_startup () from
> /usr/lib/apache2/modules/libphp5.so
> #8  0x7f07c8223ee5 in ?? () from /usr/lib/apache2/modules/libphp5.so
> #9  0x7f07c8224aa3 in ?? () from /usr/lib/apache2/modules/libphp5.so
> #10 0x7f07cd649eb3 in ap_run_post_config ()
> #11 0x7f07cd629394 in main ()
> 
> 
> -- Package-specific info:
> (for package libapache2-mod-php5 5.6.26+dfsg-0+deb8u1 because that looks
> much more useful than the output for php5-apcu alone.)
> 
>  Additional PHP 5 information 
> 
>  PHP 5 SAPI (php5query -S): 
> apache2
> cli
> 
>  PHP 5 Extensions (php5query -M -v): 
> apcu (Enabled for apache2 by maintainer script)
> json (Enabled for apache2 by maintainer script)
> curl (Enabled for apache2 by maintainer script)
> imagick (Enabled for apache2 by maintainer script)
> mysql (Enabled for apache2 by maintainer script)
> mcrypt (Enabled for apache2 by maintainer script)
> pdo_sqlite (Enabled for apache2 by maintainer script)
> gd (Enabled for apache2 by maintainer script)

Bug#858210: Bug#858209: Bug#858210: suggests alsa-base, which no longer exists

[Holger Levsen]

control: tags -1 pending
thanks

On Mon, Mar 20, 2017 at 11:15:53PM +0100, Michael Biebl wrote:
[alsa-base] 
> If this was added for loading the audio drivers, it's rather that this
> is no longer necessary nowadays. See
> https://wiki.debian.org/Modules#Automatic_loading_of_modules

thanks for the clarification & yes, indeed, it was added for this…


-- 
cheers,
Holger


signature.asc
Description: Digital signature

Bug#858312: gosa install tries to restart apache even if its not installed

[Holger Levsen]

control: severity -1 important
thanks

Hi Jason,

thanks for your bug report.

On Tue, Mar 21, 2017 at 12:32:54PM +1100, Jason Lewis wrote:
>trying to install gosa with light_httpd
[...]
>install fails beacause it tries to restart apache

gosa depends on "apache2 | lighttpd | httpd", so what you have been doing is
totally legit and packages must install cleanly, so this *must* not happen.

Not making this bug RC because it doesnt affect everyone and doesnt affect the
defaults, but I think this should be fixed for stretch.


-- 
cheers,
Holger


signature.asc
Description: Digital signature

Bug#858328: meshlab: Problem with non-ASCII characters in file-/dirname

[Benjamin Aigner]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256

Package: meshlab
Version: 1.3.2+dfsg1-3
Severity: normal

Dear Maintainer,

meshlab is not able to open files with a German "Umlaut"
either in the filename or the directory name.

Just for testing, I put the character 'ü' (hopefully the bugreport
interprets it correctly) at the end of the file:
sensor_carrier_testü.stl

resulting in an error that this file does not exist, reporting
following name back:

sensor_carrier_testü.stl

No other programs I currently use have the same problem.

Best wishes,

Benjamin


- -- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages meshlab depends on:
ii  lib3ds-1-31.3.0-9+b1
ii  libbz2-1.01.0.6-8.1
ii  libc6 2.24-9
ii  libgcc1   1:6.3.0-6
ii  libgl1-mesa-glx [libgl1]  13.0.5-1
ii  libglew2.02.0.0-3+b1
ii  libglu1-mesa [libglu1]9.0.0-2.1
ii  libmuparser2v52.2.3-6
ii  libopenctm1   1.0.3+dfsg1-1.1+b5
ii  libqhull7 2015.2-2
ii  libqt4-network4:4.8.7+dfsg-11
ii  libqt4-opengl 4:4.8.7+dfsg-11
ii  libqt4-script 4:4.8.7+dfsg-11
ii  libqt4-xml4:4.8.7+dfsg-11
ii  libqt4-xmlpatterns4:4.8.7+dfsg-11
ii  libqtcore44:4.8.7+dfsg-11
ii  libqtgui4 4:4.8.7+dfsg-11
ii  libstdc++66.3.0-6

Versions of packages meshlab recommends:
pn  chemical-mime-data  

meshlab suggests no packages.

- -- no debconf information
-BEGIN PGP SIGNATURE-

iQEzBAEBCAAdFiEEkZ15Sx/u8b4k40JmSXFOvY0eyL8FAljQ/1cACgkQSXFOvY0e
yL8G2Af9HH9eR2awUzuzZFZCreypEOWp/YdpwipIwxL8OZxSUgE8vZx0iMY6I/Xs
ii0aSiO5B7Y0Xj5BMbF7nVcug6dWs4LfY6IaqJkbJCIitMEubd7Ebyk4RL/ohlId
eVJgyNLoLYecuMK3aM134Gp4tiHbw2vDM/z0SHTliVNq5tcw9NKwDBQlNZb1xde+
VzypQCIf2CbQO/Xz5zb/d9ZKJPDRRA7XeO0CEg4ISPY9zIdHC8Cz9VY7RuvKzv3t
2pZjmD4w0XkaXQO7z4a0rPtVE3uO9u+cIU6UEGGkKoaagSkTDe/7OV6vRu/ztEu6
pE3zoRn5Earw1HX47bd1gFhUcC1Dow==
=tj68
-END PGP SIGNATURE-

Bug#858305: [Python-modules-team] Bug#858305: celeryd: celerdy should depend on python-celery-common?

[Brian May]

Nishanth Aravamudan  writes:

> It seems like celeryd incorrectly only depends on python-celery (which
> appears to just the python2 library code), but the init scripts in
> celeryd invoke celery and celeryd, which are (now?) in
> python-celery-common.

I have pushed a change through to git that will fix this on the next
release.

However note that I am not entirely happy with celeryd. The problem
being that the init.d depends on some project directory that is outside
the scope of Debian. As a result choices like python2 or python3 are
arbitrary (unless override in the defaults file) and may be wrong for
the given project. Or may change unexpectedly. e.g. installing
python3-celery will make it default to python3.

Would be better I think if the project supplied its own init.d script.
-- 
Brian May 

Bug#858251: qgis: no access to grass7 algorithms from toolbox

[Moritz Lennert]

On 20/03/17 18:28, Sebastiaan Couwenberg wrote:

Control: tags -1 moreinfo

On 03/20/2017 12:44 PM, Moritz Lennert wrote:

In QGIS 2.14.11 (but it seems this has been the case before), one cannot
launch any of the GRASS7 algorithms from the processing toolbox.

The issue is known and apparently corrected in Master: 
https://hub.qgis.org/issues/13072.

Would it be possible to cherry pick relevant parts of the fix to make it
work in 2.14 ? Especially since a release date for a new LTS version is
not fixed, yet ?


The fix linked in that issue [0] is already included in QGIS 2.14.11
(and earlier).


Yes, sorry, I didn't do my homework correctly on this one.



The issue seems to suggest that you should be using the GRASS 7 plugin
instead of the processing algorithms since the qgis package is built
with GRASS support and doesn't need to rely on external tools.


I don't really read the discussions in that issue as meaning that you 
should use the plugin instead of processing.


However, I think I found the culprit:

In

/usr/share/qgis/python/plugins/processing/algs/grass7/Grass7Utils.py

line 254 has:

command = 'grass70 ' + Grass7Utils.grassMapsetFolder() \

changing this to

 command = 'grass72 ' + Grass7Utils.grassMapsetFolder() \

or (probably even better) to

 command = 'grass ' + Grass7Utils.grassMapsetFolder() \

Solves the issue for me.

Other places that might need change to 7.2 :

line 80 (getGrassVersion()):
return '7.0.0'

(ideally this should probably rather call 'grass -v' to get its version)

line 420 (grassHelpPath()):
return helpPath if helpPath is not None else
'http://grass.osgeo.org/grass70/manuals/'

(command API should have staid more or less the same between 7.0 and 
7.2, but there might have been slight changes)


Changing line 254 to 'grass' and the other two to '7.2.0' and 'grass72' 
respectively makes GRASS7 processing work for me.




Doesn't the GRASS plugin do what you need?


No, it's a different approach. The GRASS plugin allows you to access a 
GRASS GISDBASE and locations. This means you have to set those up.


Processing allows you to use GRASS algorithms directly any layer you 
currently have in your project without having to create a GISDBASE and 
relevant locations.
Personally, I don't have any need for the plugin (I rather use GRASS 
directly), but I find the processing approach very useful, especially 
for teaching.


But in any case, the user shouldn't have to choose between the two.

Moritz

Bug#858261: gcc-6: "internal compiler error: Segmentation fault" when building webkit2gtk

[Lorenz Hübschle-Schneider]

Package: g++-6
Version: 6.3.0-9
Followup-For: Bug #858261

Dear Maintainer,

I get a similar failure when compiling RaftLib [1]. I'm not entirely sure it's
the same bug but it appeared with the last update (6.3.0-9) so it might well be.

Steps to reproduce:
git clone https://github.com/RaftLib/RaftLib
cd RaftLib
mkdir build
cd build
cmake ..
make

This fails with:

In file included from /tmp/RaftLib/raftinc/ringbufferheap.tcc:25:0,
 from /tmp/RaftLib/raftinc/ringbufferbase.tcc:66,
 from /tmp/RaftLib/raftinc/ringbuffer.tcc:34,
 from /tmp/RaftLib/raftinc/port.hpp:37,
 from /tmp/RaftLib/raftinc/kernel.hpp:29,
 from /tmp/RaftLib/raftinc/allocate.hpp:29,
 from /tmp/RaftLib/src/allocate.cpp:25:
/tmp/RaftLib/raftinc/ringbufferheap_abstract.tcc: In lambda function:
/tmp/RaftLib/raftinc/ringbufferheap_abstract.tcc:371:64: internal compiler 
error: Segmentation fault
 local_insert_helper( *begin, *end, sig );
^
Please submit a full bug report,
with preprocessed source if appropriate.
See  for instructions.
src/CMakeFiles/raft.dir/build.make:86: recipe for target 
'src/CMakeFiles/raft.dir/allocate.cpp.o' failed

Didn't get a coredump despite them being enabled, but don't have time to figure
out what's going on with that right now, sorry.

Cheers,
Lorenz

[1] https://github.com/RaftLib/RaftLib

-- System Information:
Debian Release: 9.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages g++-6 depends on:
ii  gcc-66.3.0-9
ii  gcc-6-base   6.3.0-9
ii  libc62.24-9
ii  libgmp10 2:6.1.2+dfsg-1
ii  libisl15 0.18-1
ii  libmpc3  1.0.3-1+b2
ii  libmpfr4 3.1.5-1
ii  libstdc++-6-dev  6.3.0-9
ii  zlib1g   1:1.2.8.dfsg-5

g++-6 recommends no packages.

Versions of packages g++-6 suggests:
ii  g++-6-multilib6.3.0-9
pn  gcc-6-doc 
ii  libstdc++6-6-dbg  6.3.0-9

-- no debconf information

Bug#831323: breeze: kaccessibleapp icon

[Maximiliano Curia]

¡Hola john.kirk!

El 2016-07-14 a las 12:58 -0500, john.k...@vfemail.net escribió:

Quoting john.k...@vfemail.net:
   Quoting Diederik de Haas :
   On donderdag 14 juli 2016 10:16:20 CEST john.k...@vfemail.net wrote:


   This is a long time issue. I decided to write it only now. I will 
   try with 
   the icon. But a problem with the panel exists in Kde Neon 5.7.1 
   also.


   Then you should report it upstream at https://bugs.kde.org as Debian 
   isn't in 
   a position to fix it. If you do or find an existing bug describing the 
   problem, 
   could you report that back so we can update Debian's BTS?We should then 
   also get notified when the issue is (or should be) resolved.



   Ok. I will do it . But this is from Debian Developer's Reference:


   "A big part of your job as Debian maintainer will be to stay in contact 
   with the upstream developers. Debian users will sometimes report bugs that 
   are not specific to Debian to our bug tracking system. You have to forward 
   these bug reports to the upstream developers so that they can be fixed in a 
   future upstream release."



Bug 365690:



https://bugs.kde.org/show_bug.cgi?id=365690


I think that this issue should be reassigned to kaccessible, which btw is a 
kde4 based app, so it won't gain proper HiDPI support till it's migrated to 
kf5. Is there any particular reason why this is reported against breeze? Is 
this issue not reproducible when you are using a different theme?


Happy hacking,
--
"Seek simplicity, and distrust it." -- Whitehead's Rule
Saludos /\/\ /\ >< `/


signature.asc
Description: PGP signature

Bug#857745: vbindiff: segmentation fault at end of file

[Reiner Herrmann]

Hi,

I'm getting the same segmentation fault.
It also happens when you are searching, but there are no further
search results (so it also reaches the end of file), which makes
the search functionality not really usable.

Here is a backtrace:

#0  strlen () at ../sysdeps/x86_64/strlen.S:106
No locals.
#1  0x7f076944cb88 in waddnstr (win=0x5633b16a9030, astr=0x20007ffec81f3730 
, n=) 
at ../../ncurses/base/lib_addstr.c:62
str = 0x20007ffec81f3730 
code = 0
#2  0x5633b07170a0 in ConWindow::put (s=0x20007ffec81f3730 , y=22, x=61, this=0x5633b091e828 
) at ./curses/ConWin.hpp:64
No locals.
#3  FileDisplay::display (this=0x5633b091e700 ) at vbindiff.cpp:494
str = 0x7ffec81f375a ' ' 
lineOffset = 130736
i = 
j = 
index = 
lineLength = 0
buf = ' ' 
buf2 = "0001 FEB0:", ' ' 
#4  0x5633b071a1e4 in FileDisplay::display (this=0x5633b091e700 ) at 
vbindiff.cpp:1721
No locals.
#5  handleCmd (cmd=) at vbindiff.cpp:1719
No locals.
#6  0x5633b0716678 in main (argc=, argv=) at 
vbindiff.cpp:1869
cmd = 



signature.asc
Description: Digital signature

Bug#858329: zoneminder: CVE-2017-7203

[Salvatore Bonaccorso]

Source: zoneminder
Version: 1.30.0+dfsg-2
Severity: important
Tags: patch security upstream
Forwarded: https://github.com/ZoneMinder/ZoneMinder/issues/1797

Hi,

the following vulnerability was published for zoneminder.

CVE-2017-7203[0]:
| A Cross-Site Scripting (XSS) was discovered in ZoneMinder 1.30.2. The
| vulnerability exists due to insufficient filtration of user-supplied
| data (postLoginQuery) passed to the
| "ZoneMinder-master/web/skins/classic/views/js/postlogin.js.php" URL. An
| attacker could execute arbitrary HTML and script code in a browser in
| the context of the vulnerable website.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-7203
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7203

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#858330: ITP: golang-gopkg-pg.v5 -- PostgreSQL client and ORM for Golang

[Sascha Steinbiss]

Package: wnpp
Severity: wishlist
Owner: Sascha Steinbiss 

* Package name: golang-gopkg-pg.v5
  Version : 5.3.3+git20170304.0.2246060-1
  Upstream Author : github.com/go-pg/pg Authors
* URL : https://github.com/go-pg/pg
* License : BSD-2-clause
  Programming Lang: Go
  Description : PostgreSQL client and ORM for Golang


Go-pg is a convenient PostgreSQL client and ORM for Golang with the
following features:

 -  Basic types: integers, floats, string, bool, time.Time.
 sql.NullBool, sql.NullString, sql.NullInt64,
 sql.NullFloat64 and pg.NullTime
 -  sql.Scanner and sql/driver.Valuer interfaces
 -  Structs, maps and arrays are marshalled as JSON by default
 -  PostgreSQL multidimensional Arrays using array tag and Array wrapper
 -  Hstore using hstore tag and Hstore wrapper
 -  All struct fields are nullable by default and zero values (empty string,
0, zero time) are marshalled as SQL NULL. ``sql:",notnull"` is used to
reverse this behaviour
 -  Transactions
 -  Prepared statements
 -  Notifications using LISTEN and NOTIFY
 -  Copying data using COPY FROM and COPY TO
 -  Timeouts
 -  Automatic connection pooling
 -  Queries retries on network errors
 -  Working with models using ORM and SQL
 -  Scanning variables using ORM and SQL
 -  SelectOrInsert using on-conflict
 -  INSERT ... ON CONFLICT DO UPDATE using ORM
 -  Common table expressions using WITH and WrapWith
 -  CountEstimate using EXPLAIN to get estimated number of matching rows
 -  HasOne, BelongsTo, HasMany and ManyToMany-
 -  Creating tables from structs
 -  Migrations
 -  Sharding

Bug#852324: [Xen-devel] Bug#852324: x86/mm: Found insecure W+X mapping

[Andrew Cooper]

On 17/03/17 03:05, Boris Ostrovsky wrote:
>
>
> On 03/16/2017 08:18 PM, Ben Hutchings wrote:
>> On Thu, 2017-03-16 at 21:49 +, Andrew Cooper wrote:
>>> On 16/03/2017 21:05, Ben Hutchings wrote:
 On Thu, 2017-03-16 at 00:50 +, Ben Hutchings wrote:
> On Wed, 2017-03-15 at 22:24 +, Ben Hutchings wrote:
>> Control: retitle -1 [xen] x86/mm: Found insecure W+X mapping
>> Control: tag -1 upstream confirmed
>> Control: found -1 4.9.13-1
>>
>> I can reproduce this with a current Debian kernel on top of Xen 4.4.
>> It doesn't happen with the same hardware booting the kernel
>> directly.
>
> With CONFIG_X86_PTDUMP enabled, I can see that the first 16 MiB of
> the
> low kernel mapping is mapped with W+X permissions, with a few
> exceptions:
>
> 0x8800-0x88099000 612K USR
> RW x  pte
> 0x88099000-0x8809a000   4K USR
> ro NX pte
> 0x8809a000-0x8809b000   4K USR
> ro x  pte
> 0x8809b000-0x8809f000  16K USR
> RW NX pte
> 0x8809f000-0x8810 388K USR RW PWT
> PCD x  pte
> 0x8810-0x88102000   8K USR
> RW x  pte
> 0x88102000-0x88000100   15352K USR
> RW x  pte
>
> This accounts for all the 4090 pages reported at boot.

 I see this same mapping when running Linux 4.9 under either Xen 4.4 or
 4.8 (from Debian stable or unstable).

 I don't really understand how the PV MMU page tables are set up.  I
 did
 try setting the NX flag in make_lowmem_page_readwrite() and that
 didn't
 make any difference to the number of W+X pages.
>>>
>>> 64bit PV guests have some rather special pagetable set up.  For one,
>>> the
>>> USR bit will be unconditionally set and Xen doesn't tolerate some
>>> mappings being writeable,
>>
>> I understood that much.
>>
>>> but these RWX areas are clearly ok in Xens eyes.
>>
>> So that proves these pages aren't mapped to native page tables or other
>> sensitive structures, right?
>>
>>> Everything from 0x8800 upwards belongs to the guest kernel
>>> per the PV ABI.  The initial layout will be constructed by the domain
>>> builder on behalf of the kernel, but it is Linux's to arbitrarily alter
>>> later on.
>>
>> But it seems to avoid doing that in generic code - see phys_pte_init()
>> in arch/x86/mm/init_64.c.
>
>
> I believe that's because we are reusing pre-built tables which don't
> have NX bit set, see xen_setup_kernel_pagetable().

Right, in which case the W+X warning is entirely correct and pointing
out a security weakness.

The domain builder can't usefully know exactly how Linux wants its NX
and RO mappings at boot, particularly if the init code wants to rely on
things being RW to start with.

xen_setup_kernel_pagetable() should be altered to make suitable
permission alterations to the provided initial pagetables.

~Andrew

Bug#858251: qgis: no access to grass7 algorithms from toolbox

[Bas Couwenberg]

Control: tags -1 pending

On 2017-03-21 11:17, Moritz Lennert wrote:

However, I think I found the culprit:

[...]

Changing line 254 to 'grass' and the other two to '7.2.0' and
'grass72' respectively makes GRASS7 processing work for me.


Thanks for these pointers, I've added patch with these changes to fix 
the GRASS 7.2.0 support. New uploads to experimental and unstable with 
the patch included will follow soon.


Kind Regards,

Bas

Bug#854441: Can not reproduce in wheezy, jessie or sid (CVE-2017-6961) or?

[Ola Lundqvist]

Hi

I'm quite sure I do not have as much as 4 GB ram on my machine. It is an
amd64 but I do not think I have more than 4 GB in total. I have to check
that.
Also it aborts with an error much earlier than I expect if it really tries
to allocate that size.

Best regards

// Ola

On 21 March 2017 at 07:02, Dileep Kumar  wrote:

> Hey,
>
> The way you built the binary should not be a problem for reproducing for
> this bug. What is the machine config that you are using to reproduce?? As
> mentioned in the analysis, this input.png will try to allocate 0xff8c
> bytes of memory which should be around 4GB, so try testing it in a machine
> with lower RAM or try limiting the process memory using ulimit or something
> similar. Hope it helps.
>
> Best Regards
>
> On Tue, Mar 21, 2017 at 3:32 AM, Ola Lundqvist  wrote:
>
>> Hi
>>
>> I have tried to reproduce this problem in wheezy, jessie and sid.
>>
>> Wheezy:
>> (wheezy_chroot)root@tigereye:/# apng2gif bugreport.png
>> apng2gif 1.5
>> Reading 'bugreport.png'...
>> Error: can't load 'bugreport.png'
>>
>> Jessie looks the same.
>>
>> Sid looks a little different:
>> (sid_chroot)root@tigereye:/# apng2gif bugreport.png
>> apng2gif 1.7
>> Reading 'bugreport.png'...
>> load_apng() failed: 'bugreport.png'
>>
>> But I can not find an indication of a core dump. Or is it so that I just
>> do not see that due to how the binary is built?
>>
>> Best regards
>>
>> // Ola
>> --
>>  --- Inguza Technology AB --- MSc in Information Technology 
>> /  o...@inguza.comFolkebogatan 26\
>> |  o...@debian.org   654 68 KARLSTAD|
>> |  http://inguza.com/Mobile: +46 (0)70-332 1551
>> <+46%2070%20332%2015%2051> |
>> \  gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9  /
>>  ---
>>
>>
>


-- 
 --- Inguza Technology AB --- MSc in Information Technology 
/  o...@inguza.comFolkebogatan 26\
|  o...@debian.org   654 68 KARLSTAD|
|  http://inguza.com/Mobile: +46 (0)70-332 1551 |
\  gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9  /
 ---

Bug#854447: Not sure I can reproduce this problem (CVE-2017-6962)

[Ola Lundqvist]

Thank you. As I suspected. Do you see same error message when you try that
without ASAN mode?

// Ola

On 21 March 2017 at 10:31, Dileep Kumar  wrote:

> Hey,
>
> Yep, the bug is always there, ASAN will just make the program abort on
> heap overflow.
>
> -Dileep
>
> On Tue, Mar 21, 2017 at 2:05 PM, Ola Lundqvist  wrote:
>
>> Hi Dileep
>>
>> Thank you.
>>
>> No I did not try that. I wanted to test with untouched binaries first.
>> The problem can still be there in the untouched binary. I just wanted to
>> check how that behaved to conclude the severity of the issue in stable and
>> oldstable.
>>
>> Do you mean that I have to re-compile the binary in ASAN mode to be able
>> to trigger the problem, or just that the ASAN mode makes it more visible?
>>
>> Best regards
>>
>> // Ola
>>
>> On 21 March 2017 at 07:24, Dileep Kumar  wrote:
>>
>>> Hey,
>>>
>>> As mentioned, you need to compile the binary in ASAN mode. Have you
>>> tried using the make file in the attachment??
>>>
>>> Best Regards,
>>> Dileep
>>>
>>> On Tue, Mar 21, 2017 at 3:45 AM, Ola Lundqvist  wrote:
>>>
 Hi

 I have tried to reproduce this problem but I can not reproduce a crash.
 Or is it so that I just do not see it due to how the binary is built?

 Wheezy:
 (wheezy_chroot)root@tigereye:/# apng2gif input-854447.png
 apng2gif 1.5
 Reading 'input-854447.png'...
 Error: can't load 'input-854447.png'

 Sid:
 (sid_chroot)root@tigereye:/# apng2gif input-854447.png
 apng2gif 1.7
 Reading 'input-854447.png'...
 load_apng() failed: 'input-854447.png'

 Best regards

 // Ola

 --
  --- Inguza Technology AB --- MSc in Information Technology 
 /  o...@inguza.comFolkebogatan 26\
 |  o...@debian.org   654 68 KARLSTAD|
 |  http://inguza.com/Mobile: +46 (0)70-332 1551
 <+46%2070%20332%2015%2051> |
 \  gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9  /
  ---


>>>
>>
>>
>> --
>>  --- Inguza Technology AB --- MSc in Information Technology 
>> /  o...@inguza.comFolkebogatan 26\
>> |  o...@debian.org   654 68 KARLSTAD|
>> |  http://inguza.com/Mobile: +46 (0)70-332 1551
>> <+46%2070%20332%2015%2051> |
>> \  gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9  /
>>  ---
>>
>>
>


-- 
 --- Inguza Technology AB --- MSc in Information Technology 
/  o...@inguza.comFolkebogatan 26\
|  o...@debian.org   654 68 KARLSTAD|
|  http://inguza.com/Mobile: +46 (0)70-332 1551 |
\  gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9  /
 ---

Bug#847099: yaml-cpp 0.5.2 is broken, please update to 0.5.3

[Gianfranco Costamagna]

Hello,

> You have more than one option to get this bug fixed.  Can someone please
> fix this package?

I uploaded a fix for ubuntu zesty, please test and ping back.
thanks

G.



signature.asc
Description: OpenPGP digital signature

Bug#858331: dpkg -S doesn't work properly with usrmerge

[Russell Coker]

Package: dpkg
Version: 1.18.23
Severity: normal

# dpkg -S /usr/lib/systemd/libsystemd-shared-232.so
dpkg-query: no path found matching pattern 
/usr/lib/systemd/libsystemd-shared-232.so
# dpkg -S /lib/systemd/libsystemd-shared-232.so
systemd: /lib/systemd/libsystemd-shared-232.so
# ls -l /lib
lrwxrwxrwx. 1 root root 7 Jan  5 15:04 /lib -> usr/lib

I think that dpkg should know that those 2 filenames are the same and return
the package systemd in both cases.

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages dpkg depends on:
ii  libbz2-1.0   1.0.6-8.1
ii  libc62.24-9
ii  liblzma5 5.2.2-1.2+b1
ii  libselinux1  2.6-3
ii  tar  1.29b-1.1
ii  zlib1g   1:1.2.8.dfsg-5

dpkg recommends no packages.

Versions of packages dpkg suggests:
ii  apt1.4~rc2
pn  debsig-verify  

-- no debconf information

Bug#858332: bug KDE

[Stefan Champailler]

Package: kde-baseapps-bin
Version: 4:16.08.3-1
Severity: minor
File: kde

Dear Maintainer,


I open the deskop effects panel of the settings. It shows the list of available 
effects. 
If I scroll the list with my mouse wheel, then the lists scrolls OK.
However, if one pays attention, some times (say every 5 scroll steps), the 
fonts 
get badly rendered, like if some horziontal lines were removed. The rest of the
list appears to be rendered OK (icons, background)

The panel is still usable but it just doesn't look good...

This may be related : sometimes in the launcher the small fonts gets garbled 
too. Again, no funtionality loss, but small text is unreadable.
 
-- System Information:
Debian Release: 9.0
APT prefers testing
APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages kde-baseapps-bin depends on:
ii  kde-baseapps-data  4:16.08.3-1
ii  kde-runtime4:16.08.3-1
ii  libc6  2.24-9
ii  libkdecore54:4.14.26-1
ii  libkdeui5  4:4.14.26-1
ii  libkfile4  4:4.14.26-1
ii  libkio54:4.14.26-1
ii  libkparts4 4:4.14.26-1
ii  libqt4-dbus4:4.8.7+dfsg-11
ii  libqt4-xml 4:4.8.7+dfsg-11
ii  libqtcore4 4:4.8.7+dfsg-11
ii  libqtgui4  4:4.8.7+dfsg-11
ii  libstdc++6 6.3.0-6
ii  libx11-6   2:1.6.4-3

kde-baseapps-bin recommends no packages.

kde-baseapps-bin suggests no packages.

-- no debconf information

Bug#858334: Dolphin KDE rendering bug

[Stefan Champailler]

Package: dolphin
Version: 4:16.08.3-3
Severity: normal

Dear Maintainer,

In encounter the following problem...

Start OpenBox session, then start dolphin. All the files appear but without 
their icons.
Dolphin seems usable though.
If I run it from KDE (same system), then it works fine


-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 4.8.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages dolphin depends on:
ii  baloo-kf5  5.28.0-2
ii  kinit  5.28.0-1
ii  kio5.28.0-1
ii  libc6  2.24-9
ii  libdolphinvcs5 4:16.08.3-3
ii  libkf5baloo5   5.28.0-2
ii  libkf5baloowidgets516.04.0-1+b1
ii  libkf5bookmarks5   5.28.0-1
ii  libkf5codecs5  5.28.0-1
ii  libkf5completion5  5.28.0-1
ii  libkf5configcore5  5.28.0-1
ii  libkf5configgui5   5.28.0-1
ii  libkf5configwidgets5   5.28.0-1
ii  libkf5coreaddons5  5.28.0-1
ii  libkf5crash5   5.28.0-1
ii  libkf5dbusaddons5  5.28.0-1
ii  libkf5filemetadata35.28.0-1
ii  libkf5i18n55.28.0-1
ii  libkf5iconthemes5  5.28.0-1
ii  libkf5itemviews5   5.28.0-1
ii  libkf5jobwidgets5  5.28.0-1
ii  libkf5kcmutils55.28.0-1
ii  libkf5kiocore5 5.28.0-1
ii  libkf5kiofilewidgets5  5.28.0-1
ii  libkf5kiowidgets5  5.28.0-1
ii  libkf5newstuff55.28.0-1
ii  libkf5notifications5   5.28.0-1
ii  libkf5parts5   5.28.0-1
ii  libkf5service-bin  5.28.0-1
ii  libkf5service5 5.28.0-1
ii  libkf5solid5   5.28.0-2
ii  libkf5textwidgets5 5.28.0-1
ii  libkf5widgetsaddons5   5.28.0-1
ii  libkf5windowsystem55.28.0-1
ii  libkf5xmlgui5  5.28.0-1
ii  libphonon4qt5-44:4.9.0-4
ii  libqt5core5a   5.7.1+dfsg-3+b1
ii  libqt5dbus55.7.1+dfsg-3+b1
ii  libqt5gui5 5.7.1+dfsg-3+b1
ii  libqt5widgets5 5.7.1+dfsg-3+b1
ii  libqt5xml5 5.7.1+dfsg-3+b1
ii  libstdc++6 6.3.0-6
ii  phonon4qt5 4:4.9.0-4

Versions of packages dolphin recommends:
ii  kio-extras  4:16.08.3-1
ii  ruby1:2.3.3

Versions of packages dolphin suggests:
pn  dolphin-plugins  

-- no debconf information

Bug#858333: doomsday: please make the build reproducible

[Chris Lamb]

Source: doomsday
Version: 1.15.8-3
Severity: wishlist
Tags: patch
User: reproducible-bui...@lists.alioth.debian.org
Usertags: timestamps permissions
X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org

Hi,

Whilst working on the Reproducible Builds effort [0], we noticed
that doomsday could not be built reproducibly.

Patch attached. This also makes the debian/patches/perms.patch
not required as we set the file mode manually.

 [0] https://reproducible-builds.org/


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-
diff --git a/doomsday/build/scripts/buildpackage.py 
b/doomsday/build/scripts/buildpackage.py
index 1f51441..133384d 100755
--- a/doomsday/build/scripts/buildpackage.py
+++ b/doomsday/build/scripts/buildpackage.py
@@ -7,7 +7,7 @@
 #   buildpackage (pack-dir) (output-dir)
 #
 
-import sys, os, os.path, zipfile
+import sys, os, os.path, zipfile, time
 
 if len(sys.argv) < 2:
 print "Usage: %s (pack-dir) (output-dir)" % sys.argv[0]
@@ -58,8 +58,12 @@ class Package:
 sys.exit(1)
 
 # Write entries in alphabetical order.
+date_time = time.localtime(int(os.environ.get('SOURCE_DATE_EPOCH', 
time.time(
 for full, internal in sorted(contents):
-pack.write(full, internal)
+info = zipfile.ZipInfo(internal, date_time)
+info.external_attr = 0644 << 16L
+with open(full, 'rb') as f:
+pack.writestr(info, f.read())
 
 # Write it out.
 print "Wrote %s (contains %i files)." % (outputName, 
len(pack.namelist()))

Bug#839218: nama: FTBFS: Failed 1/7 test programs. 0/91 subtests failed.Bad plan. You planned 126 tests but ran 57.

[Balint Reczey]

Control: reassign -1 perl 5.24.0~rc3-1
Control: affects -1 nama
Control: retitle -1 perl: Perl 24 makes nama FTBFS due to segfault

Dear Perl Maintainers,

On Fri, 30 Sep 2016 10:09:01 +0100 Chris Lamb  wrote:
> Source: nama
> Version: 1.208-1
> Severity: serious
> Justification: fails to build from source
> User: reproducible-bui...@lists.alioth.debian.org
> Usertags: ftbfs
> X-Debbugs-Cc: reproducible-bui...@lists.alioth.debian.org
> 
> Dear Maintainer,
> 
> nama fails to build from source in unstable/amd64:
> 
>   [..]
> 
>   ok 57 - set JACK client as input
>   sax: JACK source port is sax_in. Make connections manually.
>   
>   Track sax: source set to JACK manual port sax_in
>   Failed 69/126 subtests 
>   t/13_io.t ... 
>   1..1
>   ok 1 - use Audio::Nama::IO;
>   ok
>   
>   Test Summary Report
>   ---
>   t/12_nama.t   (Wstat: 139 Tests: 57 Failed: 0)
> Non-zero wait status: 139
> Parse errors: Bad plan.  You planned 126 tests but ran 57.
>   Files=7, Tests=91,  5 wallclock secs ( 0.03 usr  0.01 sys +  2.29 cusr  
> 0.43 csys =  2.76 CPU)
>   Result: FAIL
>   Failed 1/7 test programs. 0/91 subtests failed.
>   Makefile:930: recipe for target 'test_dynamic' failed
>   make[1]: *** [test_dynamic] Error 255
>   make[1]: Leaving directory 
> '/home/lamby/temp/cdt.20160930095107.55GhkE5sL3.db.nama/nama-1.208'
>   dh_auto_test: make -j1 test TEST_VERBOSE=1 returned exit code 2
>   debian/rules:4: recipe for target 'build' failed
>   make: *** [build] Error 2
> 
>   [..]


This looks like a problem in perl itself possibly causing random crashes
elsewhere, too.

Reproduction with the perl-debug package shows the internal assertion:

sudo apt-get install perl-debug
sudo apt-get build-dep nama
apt source nama
cd nama-*
dpkg-buildpackage
...
ok 57 - set JACK client as input
sax: JACK source port is sax_in. Make connections manually.

Track sax: source set to JACK manual port sax_in
Failed 69/126 subtests
t/13_io.t ...
1..1
ok 1 - use Audio::Nama::IO;
ok
..

PERL_DL_NONLAZY=1 PERL_USE_UNSAFE_INC=1 "/usr/bin/debugperl" \
"-MExtUtils::Command::MM" "-MTest::Harness" "-e" " test_harness(1, \
'inc', 'blib/lib', 'blib/arch')" t/12_nama.t

...

ok 57 - set JACK client as input
sax: JACK source port is sax_in. Make connections manually.
Track sax: source set to JACK manual port sax_in
debugperl: sv.c:6438: Perl_sv_clear: Assertion `SvTYPE(sv) !=
(svtype)SVTYPEMASK' failed.
Failed 69/126 subtests
...

Address Sanitizer shows the crash with non-debug perl:

LD_PRELOAD=libasan.so.3 PERL_DL_NONLAZY=1 PERL_USE_UNSAFE_INC=1 \
"/usr/bin/perl" "-MExtUtils::Command::MM" "-MTest::Harness" "-e" "
test_harness(1, 'inc', 'blib/lib', 'blib/arch')" t/12_nama.t
...
sax: JACK source port is sax_in. Make connections manually.
Track sax: source set to JACK manual port sax_in
ASAN:DEADLYSIGNAL
=
==13877==ERROR: AddressSanitizer: SEGV on unknown address 0x00ff0012
(pc 0x559191b15fd8 bp 0x62100013f578 sp 0x7fffaa838b00 T0)
#0 0x559191b15fd7  (/usr/bin/perl+0xd9fd7)
#1 0x559191b1616d in Perl_sv_unmagic (/usr/bin/perl+0xda16d)
#2 0x559191b1513a in Perl_sv_clear (/usr/bin/perl+0xd913a)
#3 0x559191b15a8f in Perl_sv_free2 (/usr/bin/perl+0xd9a8f)
#4 0x559191b4624e in Perl_leave_scope (/usr/bin/perl+0x10a24e)
#5 0x559191b49707  (/usr/bin/perl+0x10d707)
#6 0x559191b4ebab in Perl_die_unwind (/usr/bin/perl+0x112bab)
#7 0x559191aea518 in Perl_vcroak (/usr/bin/perl+0xae518)
#8 0x559191aeafb3 in Perl_croak (/usr/bin/perl+0xaefb3)
#9 0x559191b1d592 in Perl_sv_setsv_flags (/usr/bin/perl+0xe1592)
#10 0x559191b08ca9 in Perl_pp_sassign (/usr/bin/perl+0xccca9)
#11 0x559191b08605 in Perl_runops_standard (/usr/bin/perl+0xcc605)
#12 0x559191a8e6c8 in perl_run (/usr/bin/perl+0x526c8)
#13 0x559191a6787c in main (/usr/bin/perl+0x2b87c)
#14 0x7fa31be502b0 in __libc_start_main
(/lib/x86_64-linux-gnu/libc.so.6+0x202b0)
#15 0x559191a678b9 in _start (/usr/bin/perl+0x2b8b9)

AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV (/usr/bin/perl+0xd9fd7)
==13877==ABORTING
Dubious, test returned 1 (wstat 256, 0x100)
Failed 69/126 subtests

Cheers,
Balint

Bug#857745: vbindiff: segmentation fault at end of file

[Reiner Herrmann]

Control: tags -1 + patch upstream
Control: forwarded -1 https://github.com/madsen/vbindiff/pull/3

I just tested this oneline patch in the upstream pull request,
and it fixes the crash for me.

Please consider applying it for stretch.


signature.asc
Description: Digital signature

Bug#839218: nama: FTBFS: Failed 1/7 test programs. 0/91 subtests failed.Bad plan. You planned 126 tests but ran 57.

[gregor herrmann]

Control: retitle -1 Perl 5.24 makes nama FTBFS due to segfault
# or "Perl 5, version 24, ..."

On Tue, 21 Mar 2017 13:14:53 +0100, Balint Reczey wrote:

> Control: reassign -1 perl 5.24.0~rc3-1
> Control: affects -1 nama
> Control: retitle -1 perl: Perl 24 makes nama FTBFS due to segfault

> This looks like a problem in perl itself possibly causing random crashes
> elsewhere, too.

I wonder why you picked 5.24.0~rc3-1 as the broken perl version,
since this version doesn't exist in debian anymore (and actually was
only in experimental, and for exactly one day in April 2016).

Does this problem also show up with 5.24.1-1 in testing and/or
5.24.1-2 in unstable?
 

Cheers,
gregor

-- 
 .''`.  https://info.comodo.priv.at/ - Debian Developer https://www.debian.org
 : :' : OpenPGP fingerprint D1E1 316E 93A7 60A8 104D  85FA BB3A 6801 8649 AA06
 `. `'  Member of VIBE!AT & SPI, fellow of the Free Software Foundation Europe
   `-   BOFH excuse #215:  High nuclear activity in your area. 

Bug#858333: doomsday: please make the build reproducible

[Chris Lamb]

forwarded 858333 https://github.com/skyjake/Doomsday-Engine/pull/16
thanks

Forwarded upstream :)


Regards,

-- 
  ,''`.
 : :'  : Chris Lamb
 `. `'`  la...@debian.org / chris-lamb.co.uk
   `-

Bug#839218: nama: FTBFS: Failed 1/7 test programs. 0/91 subtests failed.Bad plan. You planned 126 tests but ran 57.

[gregor herrmann]

On Tue, 21 Mar 2017 13:31:32 +0100, gregor herrmann wrote:

> > This looks like a problem in perl itself possibly causing random crashes
> > elsewhere, too.
> Does this problem also show up with 5.24.1-1 in testing and/or
> 5.24.1-2 in unstable?

Looking at the upstream ticket at
https://rt.cpan.org/Public/Bug/Display.html?id=109852
it seems that the segfaults started with perl 5.23.x, that a perl bug
was fixed in 5.24.0, and that nama still segfaults. -- So not sure
where the problem lies; my guess would be nama.


Cheers,
gregor

-- 
 .''`.  https://info.comodo.priv.at/ - Debian Developer https://www.debian.org
 : :' : OpenPGP fingerprint D1E1 316E 93A7 60A8 104D  85FA BB3A 6801 8649 AA06
 `. `'  Member of VIBE!AT & SPI, fellow of the Free Software Foundation Europe
   `-   BOFH excuse #407:  Route flapping at the NAP. 

Bug#858335: systemd: should usr /run instead of /var/run

[Russell Coker]

Package: systemd
Version: 232-20
Severity: normal

https://lists.fedoraproject.org/pipermail/devel/2011-March/150031.html

The use of a /run tmpfs started in March 2011.  I think it's time for all
software to use /run directly not via the /var/run symlink.

Among other things we have special code in the SE Linux policy to deal with
access through both names for initial labeling and I'd like to just have 1
canonical name.

# strings /usr/lib/systemd/libsystemd-shared-232.so|grep var.run.dbus
kernel:path=/sys/fs/kdbus/0-system/bus;unix:path=/var/run/dbus/system_bus_socket

-- Package-specific info:

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages systemd depends on:
ii  adduser 3.115
ii  libacl1 2.2.52-3+b1
ii  libapparmor12.11.0-2
ii  libaudit1   1:2.6.7-1
ii  libblkid1   2.29.1-1
ii  libc6   2.24-9
ii  libcap2 1:2.25-1
ii  libcryptsetup4  2:1.7.3-3
ii  libgcrypt20 1.7.6-1
ii  libgpg-error0   1.26-2
ii  libidn111.33-1
ii  libip4tc0   1.6.0+snapshot20161117-5
ii  libkmod224-1
ii  liblz4-10.0~r131-2+b1
ii  liblzma55.2.2-1.2+b1
ii  libmount1   2.29.1-1
ii  libpam0g1.1.8-3.5
ii  libseccomp2 2.3.1-2.1
ii  libselinux1 2.6-3
ii  libsystemd0 232-20
ii  mount   2.29.1-1
ii  util-linux  2.29.1-1

Versions of packages systemd recommends:
ii  dbus1.10.16-1
pn  libpam-systemd  

Versions of packages systemd suggests:
pn  policykit-1
pn  systemd-container  
pn  systemd-ui 

Versions of packages systemd is related to:
pn  dracut   
pn  initramfs-tools  
ii  udev 232-20

-- Configuration Files:
/etc/systemd/timesyncd.conf changed [not included]

-- no debconf information

Bug#858336: glances: doesn't remove the created user "glances" on package removal/purge

[gurkan]

Package: glances
Version: 2.7.1.1-2
Severity: normal

after removing the package, the user stays:

# id glances
uid=117(glances) gid=124(glances) groups=124(glances)

i guess it should be removed.

yours,

Bug#858180: unblock: diaspora-installer/0.6.3.0+debian2

[Pirate Praveen]

control: retitle -1 unblock: diaspora-installer/0.6.3.0+debian3

On 2017, മാർച്ച് 20 3:15:18 AM IST, Emilio Pozuelo Monfort  
wrote:
>On 19/03/17 14:49, Pirate Praveen wrote:
>
>> +for i in vendor,app,bin,db,config; do
>> +  mkdir ${diaspora_home}/$i
>> +done
>
>That's going to create one folder names 'vendor,app,bin,db,config'...
>which
>makes me wonder whether you actually tested this change?

I was not very thorough last time. I have fixed this and also tested things 
more thoroughly this time.

Purging has been made more robust now.

>Also for these kind of changes, you should probably wait a bit longer
>before
>requesting an unblock - so that you don't have to request it several
>times if
>you end up needing additional changes.
>

I saw piuparts installed it successfully. But looking back there it only tests 
diaspora-common.

-- 
Sent from my Android device with K-9 Mail. Please excuse my brevity.

Bug#858180: unblock: diaspora-installer/0.6.3.0+debian2

[Pirate Praveen]

Attaching debdiff.
-- 
Sent from my Android device with K-9 Mail. Please excuse my brevity.

diaspora-installer_0.6.3.0+debian1.dsc..diaspora-installer_0.6.3.0+debian3.dsc.debdiff
Description: Binary data

Bug#783321: more issues

[Russell Coker]

When a program like systemd creates a file and checks the SE Linux 
file_contexts for the initial context it will be based on the path used.  So 
when systemd uses a path with /var/run we need a file contexts entry for that 
as well as for the /run version.

In the past we have had a subst entry making /var/run and /run equivalent but 
we are moving away from that to having direct entries for the paths used.

As /var/run is a symlink to /run in regard to Unix permissions there's no 
reason to stick with the /var/run name.

-- 
My Main Blog http://etbe.coker.com.au/
My Documents Bloghttp://doc.coker.com.au/

Bug#858337: apt-show-versions: wrong output when version of an installed package is missing from the Packages files

[Vincent Lefevre]

Package: apt-show-versions
Version: 0.22.7
Severity: important

[Severity important as this can lead the user to install potentially
broken packages.]

On my laptop:

zira:~> apt-show-versions -u | grep manually
fonts-opensymbol:all/experimental *manually* upgradeable from 
2:102.7+LibO5.2.6-1 to 2:102.10+LibO5.3.1-1
libreoffice-common:all/experimental *manually* upgradeable from 1:5.2.6-1 to 
1:5.3.1-1
libreoffice-java-common:all/experimental *manually* upgradeable from 1:5.2.6-1 
to 1:5.3.1-1
libreoffice-librelogo:all/experimental *manually* upgradeable from 1:5.2.6-1 to 
1:5.3.1-1
libreoffice-nlpsolver:all/experimental *manually* upgradeable from 
0.9+LibO5.2.6-1 to 0.9+LibO5.3.1-1
libreoffice-report-builder:all/experimental *manually* upgradeable from 
1:5.2.6-1 to 1:5.3.1-1
libreoffice-script-provider-bsh:all/experimental *manually* upgradeable from 
1:5.2.6-1 to 1:5.3.1-1
libreoffice-script-provider-js:all/experimental *manually* upgradeable from 
1:5.2.6-1 to 1:5.3.1-1
libreoffice-script-provider-python:all/experimental *manually* upgradeable from 
1:5.2.6-1 to 1:5.3.1-1
libreoffice-style-galaxy:all/experimental *manually* upgradeable from 1:5.2.6-1 
to 1:5.3.1-1
libreoffice-style-tango:all/experimental *manually* upgradeable from 1:5.2.6-1 
to 1:5.3.1-1
libreoffice-wiki-publisher:all/experimental *manually* upgradeable from 
1.2.0+LibO5.2.6-1 to 1.2.0+LibO5.3.1-1

I started to blame aptitude for upgrading packages from unstable
to experimental without any warning. However, after some analysis,
it appears that the messages from apt-show-versions are wrong!
These packages do NOT come from experimental.

I started to wonder about this when I compared two machines:

zira:~> apt-show-versions -a libreoffice-common
libreoffice-common:all 1:5.2.6-1 install ok installed
libreoffice-common:all 1:4.3.3-2+deb8u5 stable   ftp.de.debian.org
libreoffice-common:all 1:4.3.3-2+deb8u6 stable   security.debian.org
No stable-updates version
libreoffice-common:all 1:5.2.5-2testing  ftp.de.debian.org
No unstable version
libreoffice-common:all 1:5.3.1-1experimental http.debian.net
libreoffice-common:all 1:5.3.1-1experimental ftp.de.debian.org
libreoffice-common:all/experimental *manually* upgradeable from 1:5.2.6-1 to 
1:5.3.1-1

cventin:~> apt-show-versions -a libreoffice-common
libreoffice-common:all 1:5.2.6-1 install ok installed
libreoffice-common:all 1:4.3.3-2+deb8u5 stable   ftp.de.debian.org
libreoffice-common:all 1:4.3.3-2+deb8u6 stable   security.debian.org
No stable-updates version
libreoffice-common:all 1:5.2.5-2testing  ftp.de.debian.org
libreoffice-common:all 1:5.2.6-2unstable ftp.de.debian.org
libreoffice-common:all 1:5.3.1-1experimental ftp.de.debian.org
libreoffice-common:all 1:5.3.1-1experimental http.debian.net
libreoffice-common:all/unstable 1:5.2.6-1 upgradeable to 1:5.2.6-2

which is inconsistent.

What actually happened is that libreoffice-common and some of
the other packages of libreoffice source are missing from the
unstable Packages file on zira:

/var/lib/apt/lists/ftp.de.debian.org_debian_dists_unstable_main_binary-amd64_Packages

Perhaps the old 1:5.2.6-1 version has been removed from unstable for some
reason, before it got upgraded to 1:5.2.6-2. This Packages file on cventin
is a bit more recent and has 1:5.2.6-2, which explains why the problem
doesn't appear on this machine. I've attached a compressed diff of these
Packages files.

Now, concerning apt-show-versions, if the installed version (here,
1:5.2.6-1) cannot be found, then apt-show-versions must not assume
that it comes from experimental. Otherwise the user is tempted to
upgrade to the experimental version instead of waiting for the
package to be back in unstable.

-- System Information:
Debian Release: 9.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'stable-updates'), (500, 
'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=POSIX, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages apt-show-versions depends on:
ii  apt 1.4~rc2
ii  libapt-pkg-perl 0.1.30
ii  libperl5.24 [libstorable-perl]  5.24.1-2
ii  perl5.24.1-2

apt-show-versions recommends no packages.

apt-show-versions suggests no packages.

-- no debconf information


packages.diff.xz
Description: Binary data

Bug#858200: iptraf does not depend on iptraf-ng

[Aron Xu]

On Tue, Mar 21, 2017 at 3:43 PM, Frederic Peters  wrote:
> Hi Samuel,
>
>> Also, i can help with the fix, given the maintainers permission to do so.
>
> Of course I am totally fine with this.
>

How about building a dummy package from iptraf-ng?

Aron

Bug#858338: Enforce WPAD system-wide for Chromium browser

[Mike Gabriel]

Package: debian-edu-config
Version: 1.924
Severity: minor
Control: tag -1 patch

Hi all,

for our local schools we currently add chromium (and later on Chrome,  
once our diskless workstations have been switch to amd64 arch).


For Chromium / Chrome, it is nice to have WPAD enforcement as a  
system-wide (admin managed) setting (like we have for Firefox.


This can be achieved by placing a simple text file into  
/etc/chromium/policies/managed/


```
root@disklserver:/# cat  
/etc/chromium-browser/policies/managed/chromium-networked-prefs

{
"ProxyMode": "auto_detect",
}
```

Greets,
Mike
--

DAS-NETZWERKTEAM
mike gabriel, herweg 7, 24357 fleckeby
mobile: +49 (1520) 1976 148
landline: +49 (4354) 8390 139

GnuPG Fingerprint: 9BFB AEE8 6C0A A5FF BF22  0782 9AF4 6B30 2577 1B31
mail: mike.gabr...@das-netzwerkteam.de, http://das-netzwerkteam.de



pgp91hjwsv2MJ.pgp
Description: Digitale PGP-Signatur

Bug#858339: unblock: zfs-linux/0.6.5.9-5

[Aron Xu]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Please unblock zfs-linux/0.6.5.9-5, this update includes some fixes
for root zpool setup. It is stacked upon 0.6.5.9-3 which was unblocked
by not made into testing because of further uploads.

Debdiff from 0.6.5.9-3 is attached.

Regards,
Aron


zfs-linux_0.6.5.9-5.debdiff
Description: Binary data

Bug#858340: [INTL:tr] turkish translation update of mariadb-10.1

[Atila KOÇ]

Package: mariadb-10.1
Version: N/A
Severity: wishlist
Tags: l10n patch

Please find attached the Turkish translation of mariadb-10.1 package.

Regards,
Atila KOÇ

# Turkish translation of mariadb-server.
# This file is distributed under the same license as the mariadb-server package.
# Gürkan Aslan , 2004
# Atila KOÇ , 2015, 2017
#
msgid ""
msgstr ""
"Project-Id-Version: mariadb-10.1\n"
"Report-Msgid-Bugs-To: mariadb-1...@packages.debian.org\n"
"POT-Creation-Date: 2016-04-30 22:44+0300\n"
"PO-Revision-Date: 2017-03-16 13:16+0300\n"
"Last-Translator: Atila KOÇ \n"
"Language-Team: Turkish \n"
"Language: tr\n"
"MIME-Version: 1.0\n"
"Content-Type: text/plain; charset=UTF-8\n"
"Content-Transfer-Encoding: 8bit\n"
"Plural-Forms: nplurals=1; plural=0;\n"
"X-Generator: Poedit 1.8.7.1\n"

#. Type: note
#. Description
#: ../mariadb-server-10.1.templates:2001
msgid "The old data directory will be saved at new location"
msgstr "Eski veritabanı dizini yeni konumuna kaydedilecektir"

#. Type: note
#. Description
#: ../mariadb-server-10.1.templates:2001
msgid ""
"A file named /var/lib/mysql/debian-*.flag exists on this system. The number "
"indicates a database binary format version that cannot automatically be "
"upgraded (or downgraded)."
msgstr ""
"Bu sistemde /var/lib/mysql/debian-*.flag adlı bir dosya bulunmaktadır. "
"Belirtilen numara kendiliğinden yükseltilemeyecek ya da alçaltılamayacak bir "
"ikilik veritabanı biçimini işaret etmektedir."

#. Type: note
#. Description
#: ../mariadb-server-10.1.templates:2001
msgid ""
"Therefore the previous data directory will be renamed to /var/lib/mysql-* "
"and a new data directory will be initialized at /var/lib/mysql."
msgstr ""
"Önceki veri dizini /var/lib/mysql-* olarak yeniden adlandırılacak ve yeni "
"veri dizini /var/lib/mysql konumunda hazırlanacaktır."

#. Type: note
#. Description
#: ../mariadb-server-10.1.templates:2001
msgid ""
"Please manually export/import your data (e.g. with mysqldump) if needed."
msgstr "Gerektiğinde verinizi elle (ör. mysqldump ile) içe/dışa aktarın."

#. Type: note
#. Description
#: ../mariadb-server-10.1.templates:3001
msgid "Important note for NIS/YP users"
msgstr "NIS/YP kullanıcıları için önemli not"

#. Type: note
#. Description
#: ../mariadb-server-10.1.templates:3001
msgid ""
"Using MariaDB under NIS/YP requires a mysql user account to be added on the "
"local system with:"
msgstr ""
"MariaDB'nin NIS/YP ile kullanılması için yerel sisteme aşağıdaki komut "
"çalıştırılarak mysql kullanıcı hesabının eklenmesi gereklidir:"

#. Type: note
#. Description
#: ../mariadb-server-10.1.templates:3001
msgid ""
"You should also check the permissions and ownership of the /var/lib/mysql "
"directory:"
msgstr ""
"/var/lib/mysql dizininin sahiplik ve izin ayarlarını da gözden "
"geçirmelisiniz:"

#. Type: boolean
#. Description
#: ../mariadb-server-10.1.templates:4001
msgid "Remove all MariaDB databases?"
msgstr "Tüm MariaDB veritabanları kaldırılsın mı?"

#. Type: boolean
#. Description
#: ../mariadb-server-10.1.templates:4001
msgid ""
"The /var/lib/mysql directory which contains the MariaDB databases is about "
"to be removed."
msgstr ""
"MariaDB veritabanlarını barındıran /var/lib/mysql dizini kaldırılmak üzere"

#. Type: boolean
#. Description
#: ../mariadb-server-10.1.templates:4001
msgid ""
"If you're removing the MariaDB package in order to later install a more "
"recent version or if a different mariadb-server package is already using it, "
"the data should be kept."
msgstr ""
"Eğer MariaDB paketini daha sonra güncel bir sürümünü kurmak üzere "
"kaldırıyorsanız ya da veritabanlarınıza başka bir mariadb-server paketi ile "
"erişiyorsanız, veritabanlarınızı kaldırmamalısınız."

#~ msgid "A file named /var/lib/mysql/debian-*.flag exists on this system."
#~ msgstr ""
#~ "Bu sistemde /var/lib/mysql/debian-*.flag adlı bir dosya bulunmaktadır."

#~ msgid "Really proceed with downgrade?"
#~ msgstr "Sürüm düşürme işlemine gerçekten başlansın mı?"

#~ msgid ""
#~ "Such a file is an indication that a mariadb-server package with a higher "
#~ "version has been installed previously."
#~ msgstr ""
#~ "Böyle bir dosyanın varlığı daha yüksek sürümde bir mariadb-server "
#~ "paketinin önceden kurulu olduğunu gösterir."

#~ msgid ""
#~ "There is no guarantee that the version you're currently installing will "
#~ "be able to use the current databases."
#~ msgstr ""
#~ "Kurmakta olduğunuz sürümün var olan veritabanlarını kullanabileceğinin "
#~ "garantisi yoktur."

#~ msgid "Really migrate to MariaDB?"
#~ msgstr "MariaDB geçişi gerçekten yapılsın mı?"

#~ msgid ""
#~ "MariaDB is a drop-in replacement for MySQL. It will use your current "
#~ "configuration file (my.cnf) and current databases."
#~ msgstr ""
#~ "MariaDB, MySQL yerine birebir geçebilen bir pakettir. Varolan "
#~ "yapılandırma dosyanızı (my.cnf) ve veritabanlarınızı kullanac

Bug#858338: Enforce WPAD system-wide for Chromium browser

[Holger Levsen]

control: tags -1 patch

Hi Mike,

thanks for your bug report!

On Tue, Mar 21, 2017 at 01:04:49PM +, Mike Gabriel wrote:
> This can be achieved by placing a simple text file into
> /etc/chromium/policies/managed/
> 
> ```
> root@disklserver:/# cat
> /etc/chromium-browser/policies/managed/chromium-networked-prefs
> {
> "ProxyMode": "auto_detect",
> }
> ```

this is not a patch, this is a sketch at best. You know how to provide patches,
you even can commit them to git, so please do provide proper patches which are
easier to consume.


-- 
cheers,
Holger


signature.asc
Description: Digital signature

Bug#858341: cups-daemon: please usr /run instead of /var/run

[Russell Coker]

Package: cups-daemon
Version: 2.2.1-8
Severity: normal
Tags: patch

/run has been around since 2011, I think it's time to stop using the /var/run
symlink.  Supporting the symlink in SE Linux means supporting both names for
the contexts used in the initial creation of files and directories which I
want to remove.  Here's a patch to make cups not use /var/run:

--- /etc/init.d/cups.orig   2017-03-22 00:26:12.166644807 +1100
+++ /etc/init.d/cups2017-03-22 00:26:29.758408141 +1100
@@ -19,7 +19,7 @@
 PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
 DAEMON=/usr/sbin/cupsd
 NAME=cupsd
-PIDFILE=/var/run/cups/$NAME.pid
+PIDFILE=/run/cups/$NAME.pid
 DESC="Common Unix Printing System"
 SCRIPTNAME=/etc/init.d/cups
 
@@ -28,8 +28,8 @@
 # Exit if the package is not installed
 test -x $DAEMON || exit 0
 
-mkdir -p /var/run/cups/certs
-[ -x /sbin/restorecon ] && /sbin/restorecon -R /var/run/cups
+mkdir -p /run/cups/certs
+[ -x /sbin/restorecon ] && /sbin/restorecon -R /run/cups
 
 # Define LSB log_* functions.
 # Depend on lsb-base (>= 3.2-14) to ensure that this file is present
--- /etc/cups/cupsd.conf.orig   2017-03-22 00:28:32.900624971 +1100
+++ /etc/cups/cupsd.conf2017-03-22 00:28:48.528298483 +1100
@@ -16,7 +16,7 @@
 
 # Only listen for connections from the local machine.
 Listen 127.0.0.1:631
-Listen /var/run/cups/cups.sock
+Listen /run/cups/cups.sock
 
 # Show shared printers on the local network.
 Browsing On
-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages cups-daemon depends on:
ii  adduser  3.115
ii  bc   1.06.95-9+b3
ii  dpkg 1.18.23
ii  init-system-helpers  1.47
ii  libavahi-client3 0.6.32-2
ii  libavahi-common3 0.6.32-2
ii  libc62.24-9
ii  libcups2 2.2.1-8
ii  libcupsmime1 2.2.1-8
ii  libdbus-1-3  1.10.16-1
ii  libgssapi-krb5-2 1.15-1
ii  libpam0g 1.1.8-3.5
ii  libpaper11.1.24+nmu5
ii  libsystemd0  232-19
ii  lsb-base 9.20161125
ii  procps   2:3.3.12-3
ii  ssl-cert 1.0.38

Versions of packages cups-daemon recommends:
pn  avahi-daemon  
pn  colord
pn  cups-browsed  

Versions of packages cups-daemon suggests:
ii  cups 2.2.1-8
ii  cups-bsd 2.2.1-8
ii  cups-client  2.2.1-8
ii  cups-common  2.2.1-8
ii  cups-filters [foomatic-filters]  1.11.6-3
pn  cups-pdf 
ii  cups-ppdc2.2.1-8
ii  cups-server-common   2.2.1-8
ii  foomatic-db  20161201-1
ii  ghostscript  9.20~dfsg-2
pn  hplip
ii  poppler-utils0.48.0-2
pn  printer-driver-gutenprint
pn  printer-driver-hpcups
pn  smbclient
ii  udev 232-19

-- Configuration Files:
/etc/init.d/cups changed:
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
DAEMON=/usr/sbin/cupsd
NAME=cupsd
PIDFILE=/run/cups/$NAME.pid
DESC="Common Unix Printing System"
SCRIPTNAME=/etc/init.d/cups
unset TMPDIR
test -x $DAEMON || exit 0
mkdir -p /run/cups/certs
[ -x /sbin/restorecon ] && /sbin/restorecon -R /run/cups
. /lib/lsb/init-functions
if [ -z "$TZ" -a -e /etc/timezone ]; then
TZ=`cat /etc/timezone`
export TZ
fi
coldplug_usb_printers() {
if type udevadm > /dev/null 2>&1 && [ -x /lib/udev/udev-configure-printer 
]; then
for printer in `udevadm trigger --verbose --dry-run 
--subsystem-match=usb \
--attr-match=bInterfaceClass=07 
--attr-match=bInterfaceSubClass=01 2>/dev/null || true; \
udevadm trigger --verbose --dry-run 
--subsystem-match=usb \
--sysname-match='lp[0-9]*' 2>/dev/null || true`; do
/lib/udev/udev-configure-printer add "${printer#/sys}"
done
fi
}
case "$1" in
  start)
log_daemon_msg "Starting $DESC" "$NAME"
mkdir -p `dirname "$PIDFILE"`
start-stop-daemon --start --quiet --oknodo --pidfile "$PIDFILE" --exec 
$DAEMON
status=$?
[ $status = 0 ] && coldplug_usb_printers
log_end_msg $status
;;
  stop)
log_daemon_msg "Stopping $DESC" "$NAME"
start-stop-daemon --stop --quiet --retry 5 --oknodo --pidfile $PIDFILE 
--name $NAME
status=$?
log_end_msg $status
;;
  reload|force-reload)
   log_daemon_msg "Reloading $DESC" "$NAME"
   start-stop-daemon --stop --quiet --pidfile $PIDFILE --name $NAME 
--signal 1
   status=$?
   log_end_msg $status
   ;;
 

Bug#858342: ITP: golang-github-rjeczalik-notify -- file system event notification library on steroids

[Sascha Steinbiss]

Package: wnpp
Severity: wishlist
Owner: Sascha Steinbiss 

* Package name: golang-github-rjeczalik-notify
  Version : 0.0~git20170301.0.41a8645-1
  Upstream Author : Rafal Jeczalik
* URL : https://github.com/rjeczalik/notify
* License : MIT
  Programming Lang: Go
  Description : file system event notification library on steroids

Notify is a Go high-level abstraction over filesystem watchers like inotify,
kqueue, FSEvents, FEN or ReadDirectoryChangesW. On top of filesystem watchers
notify maintains a watchpoint tree, which provides strategy for creating and
closing filesystem watches and dispatching filesystem events to user channels.

Bug#858335: systemd: should usr /run instead of /var/run

[Felipe Sateler]

On Tue, Mar 21, 2017 at 9:41 AM, Russell Coker  wrote:
>
> Package: systemd
> Version: 232-20
> Severity: normal
>
> https://lists.fedoraproject.org/pipermail/devel/2011-March/150031.html
>
> The use of a /run tmpfs started in March 2011.  I think it's time for all
> software to use /run directly not via the /var/run symlink.
>
> Among other things we have special code in the SE Linux policy to deal with
> access through both names for initial labeling and I'd like to just have 1
> canonical name.
>
> # strings /usr/lib/systemd/libsystemd-shared-232.so|grep var.run.dbus
> kernel:path=/sys/fs/kdbus/0-system/bus;unix:path=/var/run/dbus/system_bus_socket

As you already know, this is the canonical address and has not been
changed by the dbus maintainers[1]. I don't think we should change
this until dbus itself has moved over.

I'm not familiar with SELinux, but this string you have reported is
never used to create a file AFAICT. Systemd (sd-bus, actually) only
uses this to attempt connecting to the system dbus daemon. Is it still
a problem in this case?

[1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=783321


-- 

Saludos,
Felipe Sateler

Bug#858341: sorry missed one

[Russell Coker]

--- /tmp/cups.socket2017-03-22 00:58:17.980111961 +1100
+++ /lib/systemd/system/cups.socket 2017-03-22 00:58:24.516507263 +1100
@@ -3,7 +3,7 @@
 PartOf=cups.service
 
 [Socket]
-ListenStream=/var/run/cups/cups.sock
+ListenStream=/run/cups/cups.sock
 
 [Install]
 WantedBy=sockets.target


The above patch is also needed for systemd systems.

-- 
My Main Blog http://etbe.coker.com.au/
My Documents Bloghttp://doc.coker.com.au/

Bug#858343: /sbin/mount.cifs: mount.cifs ask for a password also when "guest ok = yes"

[Christian Buhtz]

Package: cifs-utils
Version: 2:6.7-1
Severity: minor
File: /sbin/mount.cifs

Dear Maintainer,

I know the relevant section of the manpage of mount.cifs where the option
"password" is explaint.

mount.cifs will always ask for a password (if it is not given implicite with
environment variable or credential file) also when guest users are allowed on
the samba share. This makes no sense and I see no good reason for that
behaviour.

Describing that buggy behaviour in the manpage doesn't make it better. It is a
bug.

kind



-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.10.4-towo.1-siduction-amd64 (SMP w/4 CPU cores; PREEMPT)
Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages cifs-utils depends on:
ii  libc6 2.24-9
ii  libcap-ng00.7.7-3+b1
ii  libkeyutils1  1.5.9-9
ii  libkrb5-3 1.15-1
ii  libpam0g  1.1.8-3.5
ii  libtalloc22.1.8-1
ii  libwbclient0  2:4.5.6+dfsg-1
ii  samba-common  2:4.5.6+dfsg-1

cifs-utils recommends no packages.

Versions of packages cifs-utils suggests:
ii  keyutils   1.5.9-9
ii  smbclient  2:4.5.6+dfsg-1
pn  winbind

-- no debconf information

Bug#858344: mdadm: Please allow suppressing initramfs warning about active arrays that are not listed in mdadm.conf

[Benjamin Drung]

Package: mdadm
Version: 3.4-4
Severity: wishlist

Hi,

The initramfs hook (debian/initramfs/hook) contains following check:

# make sure the configuration file knows about all running devices
/sbin/mdadm --detail --scan | while read array device params; do
uuid=${params#*UUID=}; uuid=${uuid%% *}
if ! grep -qi "UUID=$uuid" $DESTMDADMCONF; then
warn "the array $device with UUID $uuid"
warn "is currently active, but it is not listed in 
mdadm.conf. if"
warn "it is needed for boot, then YOUR SYSTEM IS NOW 
UNBOOTABLE!"
warn "please inspect the output of /usr/share/mdadm/mkconf, 
compare"
warn "it to $CONFIG, and make the necessary changes."
fi
done

We have a setup, where we need exactly one mdadm array for booting, but
assemble more arrays dynamically while running. Thus we will get the
warning message above (multiple times) when running 'update-initramfs
-u'.

This warning irretates us and clutters the output (and maybe causes us
to not see important warnings). Thus please add an option to silince
these kind of warnings (as long as there is one existing array specified
in mdadm.conf).

-- 
Benjamin Drung
System Developer
Debian & Ubuntu Developer

ProfitBricks GmbH
Greifswalder Str. 207
D - 10405 Berlin

Email: benjamin.dr...@profitbricks.com
URL:  http://www.profitbricks.com

Sitz der Gesellschaft: Berlin.
Registergericht: Amtsgericht Charlottenburg, HRB 125506B.
Geschäftsführer: Andreas Gauger, Achim Weiss.

Bug#858338: Enforce WPAD system-wide for Chromium browser

[Mike Gabriel]

Hi Holger,

On  Di 21 Mär 2017 14:30:49 CET, Holger Levsen wrote:


control: tags -1 patch

Hi Mike,

thanks for your bug report!

On Tue, Mar 21, 2017 at 01:04:49PM +, Mike Gabriel wrote:

This can be achieved by placing a simple text file into
/etc/chromium/policies/managed/

```
root@disklserver:/# cat
/etc/chromium-browser/policies/managed/chromium-networked-prefs
{
"ProxyMode": "auto_detect",
}
```


this is not a patch, this is a sketch at best. You know how to  
provide patches,
you even can commit them to git, so please do provide proper patches  
which are

easier to consume.


I'd have done if we weren't in freeze. Is the above fix suitable for  
debian-edu-config in Debian 9? If yes, I'd be happy to commit this  
enhancement.


Mike
--

DAS-NETZWERKTEAM
mike gabriel, herweg 7, 24357 fleckeby
mobile: +49 (1520) 1976 148
landline: +49 (4354) 8390 139

GnuPG Fingerprint: 9BFB AEE8 6C0A A5FF BF22  0782 9AF4 6B30 2577 1B31
mail: mike.gabr...@das-netzwerkteam.de, http://das-netzwerkteam.de



pgpLJGG4wty_i.pgp
Description: Digitale PGP-Signatur

Bug#858338: Enforce WPAD system-wide for Chromium browser

[Holger Levsen]

On Tue, Mar 21, 2017 at 02:12:15PM +, Mike Gabriel wrote:
> I'd have done if we weren't in freeze. Is the above fix suitable for
> debian-edu-config in Debian 9? If yes, I'd be happy to commit this
> enhancement.

if in doubt, put it in a branch… eg one named buster.

that said, reasonable+reviewable changes are still possible to get included
into stretch… best if accompanired by rc fixes, but not neccessarily.


-- 
cheers,
Holger


signature.asc
Description: Digital signature

Bug#858345: ITP: tnetstring3 -- python3 library for data serialization using typed netstrings

[Jan Niehusmann]

Package: wnpp
Severity: wishlist
Owner: Jan Niehusmann 

* Package name: tnetstring3
  Version : 0.3.1
  Upstream Author : Carlo Pires 
* URL : https://pypi.python.org/pypi/tnetstring3
* License : MIT
  Programming Lang: Python / C
  Description : python3 library for data serialization using typed 
netstrings

Tnetstring is a lot like JSON but it uses a new syntax called "typed
netstrings" that was proposed for use in the Mongrel2 webserver. It's
designed to be simpler and easier to implement than JSON, with a happy
consequence of also being faster in many cases.

This Python library provided functions to read and write tnetstrings.
It's a port of the python2 tnetstring library.

The python2 version is available in debian as package 'tnetstring'. I was
asked by users of that package if I could package the python3 version,
as well.

Bug#858346: cleanup debian-edu metapackages

[Holger Levsen]

package: src:debian-edu

these are packages suggested by the education* metapackages which don't
exist anymore and which should be cleaned up, possible at the beginning
of the buster cycle.

On Mon, Mar 20, 2017 at 11:59:50AM +0100, Wolfgang Schweer wrote:
> BTW, while at it:
> :
> [@star CD-administrator]$ cat missingpkglist-stretch-usbstick.txt
> alsa-base
> aqualung (gone)
> browser-plugin-libreoffice (gone)
> debian-edu-archive-keyring-udeb (gone)
> education-lang-se-desktop-kde (IIRC removed as it was empty)
> education-lang-zh_TW (typo, should be *_tw)
> education-lang-zh_TW-desktop (ditto)
> education-lang-zh_TW-desktop-kde (ditto)
> freemind (gone)
> gnome-themes (gone)
> graphthing (gone) 
> gstreamer0.10-alsa (gone or replaced w/ v. 1.0, which is pulled 
> in already, useless to replace)
> gstreamer0.10-audiosink (ditto, useless to replace)
> gstreamer0.10-esd  (ditto, useless to replace)
> gstreamer0.10-ffmpeg  (ditto, useless to replace)
> gstreamer0.10-fluendo-mp3  (ditto, useless to replace)
> gstreamer0.10-plugins-base  (ditto, useless to replace)
> gstreamer0.10-plugins-good (ditto, useless to replace)
> gstreamer0.10-plugins-ugly (ditto, useless to replace)
> gstreamer0.10-pulseaudio (ditto, useless to replace)
> gstreamer0.10-x  (ditto, useless to replace)
> gtk-qt-engine (gone)
> linux-image-486 (gone)
> myspell-en-us (gone)
> ssh-askpass (gone)
> update-notifier-kde (gone)
> xresprobe (gone)
> 
> May keep it in mind for buster?


-- 
cheers,
Holger


signature.asc
Description: Digital signature

Bug#858316: rdiff-backup-fs: segmentation fault

[John Paul Adrian Glaubitz]

On 03/21/2017 03:32 PM, Christian Marillat wrote:
>>> I restored a directory today with rdiff-backup without problem.
>>
>> That was on amd64, I asumme?
> 
> No on the i386 machine.

Ah, sorry, I missed the difference between rdiff-backup and
rdiff-backup-fs.

>> Ok, then I definitely have to test it myself because I need to
>> make sure it's not caused by your setup then. The kernel you are
>> using is not officially part of any current Debian release, so it
>> may be a problem on your machine.
> 
> I see the same with the latest Debian kernel 4.9.13-1

OK. I will do my own tests as well, so that I can confirm the bug.

Adrian

-- 
 .''`.  John Paul Adrian Glaubitz
: :' :  Debian Developer - glaub...@debian.org
`. `'   Freie Universitaet Berlin - glaub...@physik.fu-berlin.de
  `-GPG: 62FF 8A75 84E0 2956 9546  0006 7426 3B37 F5B5 F913

Bug#858316: rdiff-backup-fs: segmentation fault

[Christian Marillat]

On 21 mars 2017 08:40, John Paul Adrian Glaubitz  
wrote:

> Hi Christian!
>
> On 03/21/2017 08:37 AM, Christian Marillat wrote:
>> I called rdiff-backup-fs with sudo, same crash.
>> I did a try with two differents backups, same crash.
>
> Ok, thanks. Will try to reproduce it.
>
>> I don't see this bug on an amd64 machine (kernel 4.1.39)
>
> Interesting. So it occurs on in i386 only.

Yes.

>> I restored a directory today with rdiff-backup without problem.
>
> That was on amd64, I asumme?

No on the i386 machine.

>> Also I don't use the Debian kernel, but instead 4.1 (4.1.39 now)
>
> Ok, then I definitely have to test it myself because I need to
> make sure it's not caused by your setup then. The kernel you are
> using is not officially part of any current Debian release, so it
> may be a problem on your machine.

I see the same with the latest Debian kernel 4.9.13-1

Christian

Bug#858347: ITP: golang-github-hillu-go-yara -- Go bindings for YARA

[Sascha Steinbiss]

Package: wnpp
Severity: wishlist
Owner: Sascha Steinbiss 

* Package name: golang-github-hillu-go-yara
  Version : 1.0.0
  Upstream Author : Hilko Bengen
* URL : https://github.com/hillu/go-yara
* License : BSD-2-clause
  Programming Lang: Go
  Description : Go bindings for YARA

 Go bindings for YARA (http://plusvic.github.io/yara/), a description language
 and scanning engine for malware families based on textual or binary patterns.
 The bindings' intention is to stay as close as sensible to the library's C
 API while taking inspiration from the yara-python implementation.

Bug#858332: bug KDE

[Maximiliano Curia]

Control: reassign -1 kwin-common 4:5.8.4-1
Control: tag -1 + unreproducible moreinfo

¡Hola Stefan!

El 2017-03-21 a las 13:15 +0100, Stefan Champailler escribió:
Package: kde-baseapps-bin 
Version: 4:16.08.3-1 
Severity: minor 
File: kde


I open the deskop effects panel of the settings. It shows the list of available effects. 
If I scroll the list with my mouse wheel, then the lists scrolls OK. 
However, if one pays attention, some times (say every 5 scroll steps), the fonts 
get badly rendered, like if some horziontal lines were removed. The rest of the 
list appears to be rendered OK (icons, background)



The panel is still usable but it just doesn't look good...


This may be related : sometimes in the launcher the small fonts gets garbled 
too. Again, no funtionality loss, but small text is unreadable.


Why was this reported against kde-baseapps-bin? That's a collection of kde4 
based apps and configuration modules that's not really needed for the plasma 5 
desktop.


Anyway, the issue sounds to be a problem in the font rendering on your system. 
If you are using a non default font or fontconfig setting please check if this 
is reproducible using Noto Sans, and a simple as possible fontconfig 
configuration.


Do you have a HiDPI display (4k or similar)?

Are you using plasma-workspace or plasma-workspace-wayland?

Happy hacking,
--
"Good judgement comes from experience, and experience comes from bad
judgement."
-- Fred Brooks
Saludos /\/\ /\ >< `/


signature.asc
Description: PGP signature

Bug#858348: pmw-doc: uninstallable in sid after binNMU of pmw

[Andreas Beckmann]

Package: pmw-doc
Version: 1:4.28-2
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts

Hi,

during a test with piuparts I noticed your package is no longer
installable in sid:

The following packages have unmet dependencies:
 pmw-doc : Depends: pmw (= 1:4.28-2) but it is not going to be installed

This is due to dh_installdocs --link-doc generating overly strict
dependencies between arch:all and arch:any packages (#766711).


Cheers,

Andreas

Bug#858349: ntpq: ctrl-D doesn't stop interactive session anymore

[Paul Slootman]

Package: ntp
Version: 1:4.2.8p9+dfsg-2.1
Severity: important
Control: notfound -1 1:4.2.6.p5+dfsg-7+deb8u2

After upgrading from 1:4.2.6.p5+dfsg-7+deb8u2 I noticed that I can't
exit ntpq anymore by sending EOF (ctrl-D). I need to hit ctrl-C twice.

Also, this sends CPU usage to 100%:

echo rl | ntpq

I can't stop this with ctrl-C, I needed to use ctrl-\ .

I can't imagine that this serves any purpose, so it would be great if
EOF worked again.


Thanks,
Paul

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable'), (500, 'oldstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.9-wurtel-ws (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: sysvinit (via /sbin/init)

Versions of packages ntp depends on:
ii  adduser3.115
ii  dpkg   1.18.22
ii  libc6  2.24-9
ii  libcap21:2.25-1
ii  libedit2   3.1-20160903-3
ii  libopts25  1:5.18.12-3
ii  libssl1.1  1.1.0d-2
ii  lsb-base   9.20161125
ii  netbase5.4

Versions of packages ntp recommends:
pn  perl:any  

Versions of packages ntp suggests:
pn  ntp-doc  

-- no debconf information

Bug#858350: ghostscript: CVE-2017-7207

[Salvatore Bonaccorso]

Source: ghostscript
Version: 9.06~dfsg-2
Severity: important
Tags: patch security upstream
Forwarded: https://bugs.ghostscript.com/show_bug.cgi?id=697676

Hi,

the following vulnerability was published for ghostscript.

CVE-2017-7207[0]:
| The mem_get_bits_rectangle function in Artifex Software, Inc.
| Ghostscript 9.20 allows remote attackers to cause a denial of service
| (NULL pointer dereference) via a crafted PostScript document.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2017-7207
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7207

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Bug#839218: nama: FTBFS: Failed 1/7 test programs. 0/91 subtests failed.Bad plan. You planned 126 tests but ran 57.

[Balint Reczey]

Hi Gregor,

On Tue, Mar 21, 2017 at 1:36 PM, gregor herrmann  wrote:
> On Tue, 21 Mar 2017 13:31:32 +0100, gregor herrmann wrote:
>
>> > This looks like a problem in perl itself possibly causing random crashes
>> > elsewhere, too.
>> Does this problem also show up with 5.24.1-1 in testing and/or
>> 5.24.1-2 in unstable?

Yes, in every later version.
I chose the first version BTS knew about.

> Looking at the upstream ticket at
> https://rt.cpan.org/Public/Bug/Display.html?id=109852
> it seems that the segfaults started with perl 5.23.x, that a perl bug
> was fixed in 5.24.0, and that nama still segfaults. -- So not sure
> where the problem lies; my guess would be nama.

As I read the report there have been numerous fixes after the following
commit:

 https://github.com/Perl/perl5/commit/a5f48505593c7e1ca478de383e24d5cc2541f3ca

   re-implement OPpASSIGN_COMMON mechanism

 This commit almost completely replaces the current mechanism
 for detecting and handing common vars in list assignment, e.g.
 ...

It looks like not all regression are fixed after the re-implementation
and the one
affecting nama is one of them.

I think it should be impossible to trigger an internal assertion in
Perl with pure
Perl code like nama.

Cheers,
Balint

>
>
> Cheers,
> gregor
>
> --
>  .''`.  https://info.comodo.priv.at/ - Debian Developer https://www.debian.org
>  : :' : OpenPGP fingerprint D1E1 316E 93A7 60A8 104D  85FA BB3A 6801 8649 AA06
>  `. `'  Member of VIBE!AT & SPI, fellow of the Free Software Foundation Europe
>`-   BOFH excuse #407:  Route flapping at the NAP.



-- 
--
Balint Reczey
Debian & Ubuntu Developer

Bug#858351: ntpq: if connection to IPv6 address fails, retry with IPv4 address

[Paul Slootman]

Package: ntp
Version: 1:4.2.8p9+dfsg-2.1
Severity: wishlist

If ntpq tries to contact localhost via IPv6, and that fails because ntpd
isn't listening there, it doesn't try the IPv4 localhost address. It
would be great if it did try that.

This may also be seen as a documentation bug report, apparently running
ntpd with -4 option (which according to the manpage only affects DNS
name resolution) also prevents ntpd listening to ::1, and ntpq tries to
connect to ::1 port 123 and fails.

The problem is that I don't have IPv6 connectivity with the internet,
so ntpq resolves IPv6 addresses and tries to connect to them. I thought
that passing -4 would solve this, but apparently not just the resolving
is affected, all IPv6 processing is disabled.  Maybe split these two
aspects of IPv6 into separate options?


Thanks,
Paul

-- System Information:
Debian Release: 9.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable'), (500, 'oldstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.9-wurtel-ws (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: sysvinit (via /sbin/init)

Versions of packages ntp depends on:
ii  adduser3.115
ii  dpkg   1.18.22
ii  libc6  2.24-9
ii  libcap21:2.25-1
ii  libedit2   3.1-20160903-3
ii  libopts25  1:5.18.12-3
ii  libssl1.1  1.1.0d-2
ii  lsb-base   9.20161125
ii  netbase5.4

Versions of packages ntp recommends:
pn  perl:any  

Versions of packages ntp suggests:
pn  ntp-doc  

-- no debconf information

Bug#858352: nmu: nurpawiki_1.2.3-10

[Andreas Beckmann]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: binnmu

nmu nurpawiki_1.2.3-10 . ANY . unstable . -m "Rebuild against libjs-of-ocaml 
rebuilt with PIE"

Uninstallable on amd64 (and probably others):

The following packages have unmet dependencies:
 nurpawiki : Depends: libjs-of-ocaml-a3z60 but it is not installable


Andreas

Bug#858354: ITP: golang-github-manyminds-api2go -- JSONAPI.org implementation for Go

[Diego M. Rodriguez]

Package: wnpp
Severity: wishlist
Owner: Diego M. Rodriguez 

* Package name: golang-github-manyminds-api2go
  Version : 1.0-RC2+git20161229.31.dc368bb-1
  Upstream Author : Manyminds
* URL : https://github.com/manyminds/api2go
* License : Expat
  Programming Lang: Go
  Description : JSONAPI.org implementation for Go

 An implementation of the JSON API (http://jsonapi.org) standard for
 the Go programming language.

This library is being packaged as a build dependency of loadimpact/k6
(loadimpact/k6 -> manyminds/api2go).

Bug#858355: ITP: golang-gopkg-guregu-null.v2 -- Reasonable handling of nullable SQL and JSON values

[Diego M. Rodriguez]

Package: wnpp
Severity: wishlist
Owner: Diego M. Rodriguez 

* Package name: golang-gopkg-guregu-null.v2
  Version : 2.2+git20150913.0.4ac4f00-1
  Upstream Author : Greg Roseberry
* URL : http://gopkg.in/guregu/null.v2
* License : BSD-2-clause
  Programming Lang: Go
  Description : Reasonable handling of nullable SQL and JSON values

 This library contains SQL types that consider zero input and null input
 as separate values, with convenient support for JSON and text
 marshaling in Go.

This library is being packaged as a build dependency of loadimpact/k6
(loadimpact/k6 -> manyminds/api2go -> guregu/null.v2).

Bug#858357: ITP: golang-github-dop251-goja -- ECMAScript 5.1(+) implementation written in Go

[Diego M. Rodriguez]

Package: wnpp
Severity: wishlist
Owner: Diego M. Rodriguez 

* Package name: golang-github-dop251-goja
  Version : 0.0~git20170315.0.c99b0db-1
  Upstream Author : Dmitry Panov
* URL : https://github.com/dop251/goja
* License : Expat
  Programming Lang: Go
  Description : ECMAScript 5.1(+) implementation written in Go

 Full ECMAScript 5.1(+) implementation (including regex and strict
 mode) in Go.
 .
 It is not a replacement for V8 or SpiderMonkey or any other
 general-purpose JavaScript engine as it is much slower.  It can be used
 as an embedded scripting language where the cost of making a lot of cgo
 calls may outweigh the benefits of a faster JavaScript engine or as a
 way to avoid having non-Go dependencies.

This library is being packaged as a build dependency of loadimpact/k6
(loadimpact/k6 -> dop251/goja).

Bug#858356: ITP: golang-github-gedex-inflector -- Go library that pluralizes and singularizes English nouns.

[Diego M. Rodriguez]

Package: wnpp
Severity: wishlist
Owner: Diego M. Rodriguez 

* Package name: golang-github-gedex-inflector
  Version : 0.0~git20170307.0.16278e9-1
  Upstream Author : Akeda Bagus
* URL : https://github.com/gedex/inflector
* License : BSD-2-clause
  Programming Lang: Go
  Description : Go library that pluralizes and singularizes English nouns.

 This library provides two functions for pluralizing and singularizing
 English nouns, inspired by CakePHP's inflector.

This library is being packaged as a build dependency of loadimpact/k6
(loadimpact/k6 -> manyminds/api2go -> gedex/inflector).

Bug#858358: ITP: golang-github-dlclark-regexp2 -- A regex engine for Go based on the .NET engine

[Diego M. Rodriguez]

Package: wnpp
Severity: wishlist
Owner: Diego M. Rodriguez 

* Package name: golang-github-dlclark-regexp2
  Version : 1.1.3+git20170219.0.3f97b6a-1
  Upstream Author : Doug Clark
* URL : https://github.com/dlclark/regexp2
* License : Expat
  Programming Lang: Go
  Description : A regex engine for Go based on the .NET engine

 Feature-rich regular expression engine for Go ported from the .NET
 framework's System.Text.RegularExpressions.Regex engine. It does not
 have constant time guarantees like the built-in regexp package, but it
 allows backtracking and is compatible with Perl5 and .NET.

This library is being packaged as a build dependency of loadimpact/k6
(loadimpact/k6 -> dop251/goja -> dlclark/regexp2).

Bug#858360: ITP: golang-github-andybalholm-cascadia -- CSS selector library in Go

[Diego M. Rodriguez]

Package: wnpp
Severity: wishlist
Owner: Diego M. Rodriguez 

* Package name: golang-github-andybalholm-cascadia
  Version : 0.0~git20161224.0.349dd02-1
  Upstream Author : Andy Balholm
* URL : https://github.com/andybalholm/cascadia
* License : BSD-2-clause
  Programming Lang: Go
  Description : CSS selector library in Go

 This package implements CSS selectors for use with the parse trees
 produced by the html package.

This library is being packaged as a build dependency of loadimpact/k6
(loadimpact/k6 -> puerkitobio/goquery -> andybalhom/cascadia).

Bug#858359: ITP: golang-github-puerkitobio-goquery -- jQuery-style HTML manipulation in Go

[Diego M. Rodriguez]

Package: wnpp
Severity: wishlist
Owner: Diego M. Rodriguez 

* Package name: golang-github-puerkitobio-goquery
  Version : 1.1.0+git20170308.2.c641b87-1
  Upstream Author : Martin Angers
* URL : https://github.com/puerkitobio/goquery
* License : BSD-3-clause
  Programming Lang: Go
  Description : jQuery-style HTML manipulation in Go

 goquery brings a syntax and a set of features similar to jQuery
 (http://jquery.com/) to the Go language, based on Go's net/html
 package and the CSS Selector library cascadia.
 .
 Syntax-wise, it is as close as possible to jQuery, with the same
 function names when possible, and a chainable interface.

This library is being packaged as a build dependency of loadimpact/k6
(loadimpact/k6 -> puerkitobio/goquery).

Bug#858361: ITP: golang-gopkg-guregu-null.v3 -- Reasonable handling of nullable SQL and JSON values

[Diego M. Rodriguez]

Package: wnpp
Severity: wishlist
Owner: Diego M. Rodriguez 

* Package name: golang-gopkg-guregu-null.v2
  Version : 3.1+git20160228.0.41961ce-1
  Upstream Author : Greg Roseberry
* URL : http://gopkg.in/guregu/null.v3
* License : BSD-2-clause
  Programming Lang: Go
  Description : Reasonable handling of nullable SQL and JSON values

 This library contains SQL types that consider zero input and null input
 as separate values, with convenient support for JSON and text
 marshaling in Go.

This library is being packaged as a build dependency of loadimpact/k6
(loadimpact/k6 -> guregu/null.v3).

Bug#858353: ITP: k6 -- A modern load testing tool, using Go and JavaScript

[Diego M. Rodriguez]

Package: wnpp
Severity: wishlist
Owner: Diego M. Rodriguez 

* Package name: k6
  Version : 0.12.1+git20170316.24.c8b5234-1
  Upstream Author : Load Impact
* URL : https://github.com/loadimpact/k6
* License : AGPL-3.0
  Programming Lang: Go
  Description : A modern load testing tool, using Go and JavaScript

 k6 is a modern load testing tool built in Go and Javascript. It
 provides a clean, approachable scripting API, distributed and cloud
 execution, and orchestration via a REST API.
 .
 k6 works with the concept of configurable virtual users (VUs,
 essentially parallel loops) which run scripts written using JavaScript,
 as ES6 modules, allowing larger tests to be broken into smaller or
 reusable pieces.

Bug#856599: libktpcommoninternals9: please add Breaks: libktpcommoninternalsprivate7

[Andreas Beckmann]

Followup-For: Bug #856599
Control: tag -1 pending patch

Hi,

I just uploaded the attached patch as a NMU to DELAYED/5.
Please let me know if I should delay it longer.


Andreas
diff -Nru ktp-common-internals-15.08.3/debian/changelog ktp-common-internals-15.08.3/debian/changelog
--- ktp-common-internals-15.08.3/debian/changelog	2015-12-03 06:18:57.0 +0100
+++ ktp-common-internals-15.08.3/debian/changelog	2017-03-21 16:20:51.0 +0100
@@ -1,3 +1,11 @@
+ktp-common-internals (15.08.3-1.1) unstable; urgency=medium
+
+  * Non-maintainer upload.
+  * libktpcommoninternals9: Add Breaks: libktpcommoninternalsprivate7 to
+ensure smooth upgrade paths from jessie.  (Closes: #856599)
+
+ -- Andreas Beckmann   Tue, 21 Mar 2017 16:20:51 +0100
+
 ktp-common-internals (15.08.3-1) unstable; urgency=medium
 
   * New upstream release.
diff -Nru ktp-common-internals-15.08.3/debian/control ktp-common-internals-15.08.3/debian/control
--- ktp-common-internals-15.08.3/debian/control	2015-11-10 18:53:48.0 +0100
+++ ktp-common-internals-15.08.3/debian/control	2017-03-02 19:29:26.0 +0100
@@ -57,7 +57,7 @@
 
 Package: libktpcommoninternals9
 Replaces: libktpcommoninternalsprivate6 (<< 0.7.80)
-Breaks: libktpcommoninternalsprivate6 (<< 0.7.80)
+Breaks: libktpcommoninternalsprivate6 (<< 0.7.80), libktpcommoninternalsprivate7
 Architecture: any
 Depends: ${shlibs:Depends}, ${misc:Depends}, libkf5people5 (>= 0.3.0),
  libtelepathy-logger-qt5 (>= 15.04),

Bug#858334: Dolphin KDE rendering bug

[Maximiliano Curia]

¡Hola Stefan!

El 2017-03-21 a las 13:17 +0100, Stefan Champailler escribió:
Package: dolphin 
Version: 4:16.08.3-3 
Severity: normal



In encounter the following problem...


Start OpenBox session, then start dolphin. All the files appear but without their icons. 
Dolphin seems usable though. 
If I run it from KDE (same system), then it works fine


QT uses a "platformtheme" plugin to obtain the preferred look and feel, this 
is set to gtk3 in gnome, and to kde in plasma, and lxqt in lxqt, you get the 
idea. Openbox doesn't offer this platformtheme plugin, so it's up to you to 
tell qt which platformtheme to use by setting the QT_QPA_PLATFORMTHEME 
environment variable.


Either setting QT_QPA_PLATFORMTHEME=gtk3 or QT_QPA_PLATFORMTHEME=kde will show 
a "sane" ui.


It would be better if qt would fallback to any sane platformtheme when 
QT_QPA_PLATFORMTHEME set, but that's not currently the case. Ccing the qt5 
maintainers, maybe there is a reason, I don't know.


Happy hacking,
--
"La duración de un minuto depende de que lado del baño estés."
-- Ley de la Relatividad (Burke)
Saludos /\/\ /\ >< `/


signature.asc
Description: PGP signature

Bug#856425: package sponsorised

[phil]

Hi all,

The package is now sponsorised by Petter Reinholdtsen, thanks to him.

Waiting for NEW queue integration.

--
P. Thierry

Bug#853224: desktop-base 9.0.3 (was Re: Fwd: Bug#857373: unblock: plasma-workspace/4:5.8.6-2

[Holger Levsen]

Hi,

On Mon, Mar 20, 2017 at 10:23:25PM +0100, Aurélien COUDERC wrote:
> I’ve prepared a 9.0.3 and pushed it to mentors. If you get it there,
> take care to use the last one as there were several tries.
> 
> Feel free to diff and review it and push it to unstable as I don’t know
> if / when I’ll get the upload rights.

the changes look good and sensible to me…

> Also as said earlier I’m not sure this changes by itself deserves a
> freeze exception so I’ll leave it up to you.

…however I also agree with this. (I dont think they deserve a freeze
exception on their own….)

I'll still upload this to unstable now, for several reasons:

- the code *is* cleaner and should IMHO be in stretch, so it's good to give it
  more testing, in case the RT wants it in stretch.
- should a serious issue in desktop-base be found, we can always upload 9.0.4
  containing these changes *or* removing them again, in case the RT doesnt want 
  them in stretch.

So to be clear: I don't plan to file an unblock bug for this.

I'll also upload to DELAYED-2 in case one of you thinks I'm crazy and wants to
prevent this upload.


-- 
cheers,
Holger


signature.asc
Description: Digital signature

Bug#858362: unblock: kde-runtime/4:16.08.3-2

[Maximiliano Curia]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock

Dear release team,

kdesu's CVE (CVE-2016-7787) was fixed in the new version of kdesu (which is 
part of the kde-cli-tools), but the one in kde-runtime (which might still be 
used by some kde4 apps) was still affected by this.

I backported the change and uploaded 4:16.08.3-2 with it. kde-runtime already 
built in all the release arches. This fixes #842498 for kde-runtime.

I'm attaching the corresponding debdiff.

Please unblock package kde-runtime

Happy hacking,

unblock kde-runtime/4:16.08.3-2

-- System Information:
Debian Release: 9.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'testing-debug'), (500, 
'testing'), (500, 'stable'), (50, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386, armhf

Kernel: Linux 4.9.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)
diff -Nru kde-runtime-16.08.3/debian/changelog 
kde-runtime-16.08.3/debian/changelog
--- kde-runtime-16.08.3/debian/changelog2016-11-23 21:07:35.0 
+0100
+++ kde-runtime-16.08.3/debian/changelog2017-03-21 11:25:21.0 
+0100
@@ -1,3 +1,11 @@
+kde-runtime (4:16.08.3-2) unstable; urgency=medium
+
+  * Add new patch: 
Make-sure-people-are-not-trying-to-sneak-invisible-charac.patch.
+Thanks to Moritz Mühlenhoff for the follow ups to the kde-cli-tools' bug
+(Closes: 842498) See: CVE-2016-7787
+
+ -- Maximiliano Curia   Tue, 21 Mar 2017 11:25:21 +0100
+
 kde-runtime (4:16.08.3-1) unstable; urgency=medium
 
   * New upstream release (16.08.3)
diff -Nru kde-runtime-16.08.3/debian/patches/add_glib_for_nm 
kde-runtime-16.08.3/debian/patches/add_glib_for_nm
--- kde-runtime-16.08.3/debian/patches/add_glib_for_nm  2016-11-23 
21:07:35.0 +0100
+++ kde-runtime-16.08.3/debian/patches/add_glib_for_nm  2017-03-21 
11:25:21.0 +0100
@@ -7,7 +7,7 @@
  1 file changed, 6 insertions(+)
 
 diff --git a/solid-networkstatus/kded/CMakeLists.txt 
b/solid-networkstatus/kded/CMakeLists.txt
-index 633c7f1..5dfcbf4 100644
+index 633c7f1394..5dfcbf4f8d 100644
 --- a/solid-networkstatus/kded/CMakeLists.txt
 +++ b/solid-networkstatus/kded/CMakeLists.txt
 @@ -16,6 +16,12 @@ set_package_properties(NetworkManager PROPERTIES 
DESCRIPTION "The NetworkManager
diff -Nru kde-runtime-16.08.3/debian/patches/disable_flacky_tests 
kde-runtime-16.08.3/debian/patches/disable_flacky_tests
--- kde-runtime-16.08.3/debian/patches/disable_flacky_tests 2016-11-23 
21:07:35.0 +0100
+++ kde-runtime-16.08.3/debian/patches/disable_flacky_tests 2017-03-21 
11:25:21.0 +0100
@@ -7,7 +7,7 @@
  1 file changed, 7 insertions(+), 7 deletions(-)
 
 diff --git a/kurifilter-plugins/tests/kurifiltertest.cpp 
b/kurifilter-plugins/tests/kurifiltertest.cpp
-index 32f968c..13c8e36 100644
+index 32f968c278..13c8e3696f 100644
 --- a/kurifilter-plugins/tests/kurifiltertest.cpp
 +++ b/kurifilter-plugins/tests/kurifiltertest.cpp
 @@ -256,7 +256,7 @@ void KUriFilterTest::shortUris()
diff -Nru kde-runtime-16.08.3/debian/patches/disable_kwalletd_autotests 
kde-runtime-16.08.3/debian/patches/disable_kwalletd_autotests
--- kde-runtime-16.08.3/debian/patches/disable_kwalletd_autotests   
2016-11-23 21:07:35.0 +0100
+++ kde-runtime-16.08.3/debian/patches/disable_kwalletd_autotests   
2017-03-21 11:25:21.0 +0100
@@ -7,7 +7,7 @@
  1 file changed, 8 insertions(+), 8 deletions(-)
 
 diff --git a/kwalletd/autotests/CMakeLists.txt 
b/kwalletd/autotests/CMakeLists.txt
-index c9af385..cd5f59e 100644
+index c9af3854e2..cd5f59ebc8 100644
 --- a/kwalletd/autotests/CMakeLists.txt
 +++ b/kwalletd/autotests/CMakeLists.txt
 @@ -1,11 +1,11 @@
diff -Nru kde-runtime-16.08.3/debian/patches/disable_usr_lib_install_rpath.diff 
kde-runtime-16.08.3/debian/patches/disable_usr_lib_install_rpath.diff
--- kde-runtime-16.08.3/debian/patches/disable_usr_lib_install_rpath.diff   
2016-11-23 21:07:35.0 +0100
+++ kde-runtime-16.08.3/debian/patches/disable_usr_lib_install_rpath.diff   
2017-03-21 11:25:21.0 +0100
@@ -12,7 +12,7 @@
  1 file changed, 2 deletions(-)
 
 diff --git a/phonon/platform_kde/CMakeLists.txt 
b/phonon/platform_kde/CMakeLists.txt
-index f41a4dc..3d3df10 100644
+index f41a4dc58b..3d3df10e96 100644
 --- a/phonon/platform_kde/CMakeLists.txt
 +++ b/phonon/platform_kde/CMakeLists.txt
 @@ -19,10 +19,8 @@ endif(ALSA_FOUND)
diff -Nru kde-runtime-16.08.3/debian/patches/hurd.diff 
kde-runtime-16.08.3/debian/patches/hurd.diff
--- kde-runtime-16.08.3/debian/patches/hurd.diff2016-11-23 
21:07:35.0 +0100
+++ kde-runtime-16.08.3/debian/patches/hurd.diff2017-03-21 
11:25:21.0 +0100
@@ -13,7 +13,7 @@
  1 file changed, 3 insertions(+)
 
 diff --git a/kioslave/nfs/nfsv3.cpp b/kioslave/nfs/nfsv3.cpp
-index 0640212..2

Bug#858363: eigen3: sopt FTBFS on mips and mipsel due to alignment issue

[Radovan Birdic]

Package: eigen3
Version: 3.3.2-1
Severity: important
Tags: sid + patch
Justification: FTBFS
User: debian-m...@lists.debian.org
Usertags: mips-patch


Package sopt_2.0.0-2 FTBFS on mips and mipsel with following error:

> The following tests FAILED:
> 7 - test_sdmm (Failed)
> 9 - test_proximal (Failed)
>10 - seeded_proximal (Failed)
>13 - test_reweighted (Failed)
> Errors while running CTest
> Makefile:87: recipe for target 'test' failed
> make[1]: *** [test] Error 8

Full build log:
https://buildd.debian.org/status/fetch.php?pkg=sopt&arch=mipsel&ver=2.0.0-2&stamp=1486632547&raw=0

These 4 tests fails because of alignment issue, and problem could be in eigen3 
package.
Please take a look at this:
https://github.com/basp-group/sopt/issues/18#issuecomment-288106654

I have created and attached a patch which contains the necessary changes.

Regards,
Radovan--- eigen3-3.3.2.orig/Eigen/src/Core/util/Macros.h
+++ eigen3-3.3.2/Eigen/src/Core/util/Macros.h
@@ -701,7 +701,7 @@ namespace Eigen {
   // certain common platform (compiler+architecture combinations) to avoid these problems.
   // Only static alignment is really problematic (relies on nonstandard compiler extensions),
   // try to keep heap alignment even when we have to disable static alignment.
-  #if EIGEN_COMP_GNUC && !(EIGEN_ARCH_i386_OR_x86_64 || EIGEN_ARCH_ARM_OR_ARM64 || EIGEN_ARCH_PPC || EIGEN_ARCH_IA64)
+  #if EIGEN_COMP_GNUC && !(EIGEN_ARCH_i386_OR_x86_64 || EIGEN_ARCH_ARM_OR_ARM64 || EIGEN_ARCH_PPC || EIGEN_ARCH_IA64 || EIGEN_ARCH_MIPS)
   #define EIGEN_GCC_AND_ARCH_DOESNT_WANT_STACK_ALIGNMENT 1
   #elif EIGEN_ARCH_ARM_OR_ARM64 && EIGEN_COMP_GNUC_STRICT && EIGEN_GNUC_AT_MOST(4, 6)
   // Old versions of GCC on ARM, at least 4.4, were once seen to have buggy static alignment support.

Bug#858364: nmu: frama-c_20161101+silicon+dfsg-5

[Andreas Beckmann]

Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: binnmu

nmu frama-c_20161101+silicon+dfsg-5 . ANY . unstable . -m "Rebuild against 
ocaml-zarith 1.4.1-2"

It's uninstallable at least on i386:

The following packages have unmet dependencies:
 frama-c-base : Depends: libzarith-ocaml-fpp32


Andreas