Processing of rapidjson_1.1.0+dfsg2-2_amd64.changes
rapidjson_1.1.0+dfsg2-2_amd64.changes uploaded successfully to localhost along with the files: rapidjson_1.1.0+dfsg2-2.dsc rapidjson_1.1.0+dfsg2-2.debian.tar.xz rapidjson-dev_1.1.0+dfsg2-2_all.deb rapidjson-doc_1.1.0+dfsg2-2_all.deb rapidjson_1.1.0+dfsg2-2_amd64.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
rapidjson_1.1.0+dfsg2-2_amd64.changes ACCEPTED into unstable
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Sat, 17 Mar 2018 08:30:29 + Source: rapidjson Binary: rapidjson-dev rapidjson-doc Architecture: source all Version: 1.1.0+dfsg2-2 Distribution: unstable Urgency: medium Maintainer: Debian QA Group Changed-By: Rene Engelhard Description: rapidjson-dev - fast JSON parser/generator for C++ with SAX/DOM style API rapidjson-doc - fast JSON parser/generator for C++ (API documentation) Changes: rapidjson (1.1.0+dfsg2-2) unstable; urgency=medium . * upload to unstable . * move Maintainer: to Debian QA Group * add Vcs-* (salsa) Checksums-Sha1: bd9d4ca08cd7b884fbca26e8d3f44aa376dbc9d3 1998 rapidjson_1.1.0+dfsg2-2.dsc f3a1e6551f4b19f6022ed8f826ed7bd3dfb83cc1 6768 rapidjson_1.1.0+dfsg2-2.debian.tar.xz 5609356efe27ae75564d52a5fb73a09f44a14132 98260 rapidjson-dev_1.1.0+dfsg2-2_all.deb 50f6c5f1a096423b93d0a10621934d10a5084c54 1000296 rapidjson-doc_1.1.0+dfsg2-2_all.deb bc5fc5c15aec61fa039c5729455132d89ecae95c 7418 rapidjson_1.1.0+dfsg2-2_amd64.buildinfo Checksums-Sha256: b34369b600d4e2a6f60cc63f1742d3939d8cb260c209519dd6de660cd4286160 1998 rapidjson_1.1.0+dfsg2-2.dsc c48af0a4a5eae91936db805726a22f590523bc8da0faa417be8b915ef1ddbcb8 6768 rapidjson_1.1.0+dfsg2-2.debian.tar.xz d0d713a4c56ed3ab9be8e00f0ccd8d8bfd0335961599d19435bb8737c7032df8 98260 rapidjson-dev_1.1.0+dfsg2-2_all.deb cfc2f18cc9f674af5e167d5f085f851e26fbf6e3702045eb95d444e71fcc8e53 1000296 rapidjson-doc_1.1.0+dfsg2-2_all.deb caaf381e272214211e6800f125d8c3770eb768bcb4b280a08fe29a0b0fb82086 7418 rapidjson_1.1.0+dfsg2-2_amd64.buildinfo Files: 6bae14159afa49b44f9590236e4a7d32 1998 libs optional rapidjson_1.1.0+dfsg2-2.dsc 15385470c0c8b83416c8a2027aada5b0 6768 libs optional rapidjson_1.1.0+dfsg2-2.debian.tar.xz f391308eff14982588e9a09db22601f9 98260 libdevel optional rapidjson-dev_1.1.0+dfsg2-2_all.deb c857b2440a8b91ecc03165ca7ba3a5f3 1000296 doc optional rapidjson-doc_1.1.0+dfsg2-2_all.deb daec04e4759aef14f8b80d64a16c9ebd 7418 libs optional rapidjson_1.1.0+dfsg2-2_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEE4S3qRnUGcM+pYIAdCqBFcdA+PnAFAlqs1TcACgkQCqBFcdA+ PnD4IRAArLSiWwOgUxYTQeIqYsOpcLEKJOPRm72ElSQapkscnAQ39iqX37VZuM5y yjlRVs2pr4wPBi7ziX+7ZwiBwH0dQJrY3G3WZzNP8U9FttnxTTsNO6o4sRh2VmGV 2h03kr/cVTkXpTtLYo6Yr5Uh3gSJRc4xeaFkYZOab6ZQM0gT+rKt0Dq4g9zEOl4C w4c+RUqZxXZBM3I8woLKMlmr9FNSgplifW/QjotHvFEH+mbVRso02bQ4VKJ8ynuA WWrOmquG92RRD9FUzhR8XeU1HgS0NZSzJ5WztolM1C79w6FaMyBpSTVCuPOuVbyN 90iAfoGhGtVPGvExsEe5yYy0Utrq8fShYBFgDWKX3Z7aeLxgGUD8Tm0iI8qlHmhP GnKEnHs0qZcCRjRuETAgUw3u3PWfn2OHOvjfZ3Y2ytiQr1cw3MhRkmc2/JKU evNouWmHH5ZA7gxQWoLNV/9l2AEQLPrC8hAoT8tPZolNdKb1zyuHHxB9sMpHzWcC stVgpznxSTitfXGBHvVsVYF440eZF+abwVaN2IvYZEsPYHVzwl0b38fp92iOqId+ Ube39iPCWj7trALuyUpYI3xHo1V+ofRJ5N1M2t3HENvsL3Oel2BTLM/c1SBvezoD JvjGcL2n/jU7e6U43UtWhKC0M6M27t2mGM+jEKnCyw3bhXyRTZc= =5VgM -END PGP SIGNATURE- Thank you for your contribution to Debian.
Bug#893293: pytest-tornado: FTBFS and Debci failure
Source: pytest-tornado
Version: 0.4.5-2
Severity: serious
Some recent change in unstable makes pytest-tornado FTBFS and Debci fail:
https://ci.debian.net/packages/p/pytest-tornado/unstable/amd64/
https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/pytest-tornado.html
...
I: pybuild base:215: python2.7 -m pytest -v -x
= test session starts ==
platform linux2 -- Python 2.7.14+, pytest-3.3.2, py-1.5.2, pluggy-0.6.0 --
/usr/bin/python2.7
cachedir: .cache
rootdir: /build/1st/pytest-tornado-0.4.5, inifile:
plugins: tornado-0.4.5
collecting ... collected 40 items
pytest_tornado/test/test_async.py::test_explicit_start_and_stop PASSED [ 2%]
pytest_tornado/test/test_async.py::test_explicit_start_and_stop ERROR[ 5%]
ERRORS
__ ERROR at teardown of test_explicit_start_and_stop ___
def _close():
io_loop.clear_current()
> if (not tornado.ioloop.IOLoop.initialized() or
io_loop is not tornado.ioloop.IOLoop.instance()):
E AttributeError: type object 'IOLoop' has no attribute
'initialized'
pytest_tornado/plugin.py:136: AttributeError
=== warnings summary ===
pytest_tornado/test/test_async.py::test_generators_with_disabled_gen_test_marker
yield tests are deprecated, and scheduled to be removed in pytest 4.0
-- Docs: http://doc.pytest.org/en/latest/warnings.html
1 passed, 1 warnings, 1 error in 1.49 seconds =
E: pybuild pybuild:323: test: plugin custom failed with: exit code=1: python2.7
-m pytest -v -x
dh_auto_test: pybuild --test --test-pytest -i python{version} -p 2.7 returned
exit code 13
make[1]: *** [debian/rules:13: override_dh_auto_install] Error 25
Accepted libvorbisidec 1.0.2+svn18153-1+deb9u1 (source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 16 Mar 2018 21:00:34 +0100 Source: libvorbisidec Binary: libvorbisidec-dev libvorbisidec1 Architecture: source Version: 1.0.2+svn18153-1+deb9u1 Distribution: stretch-security Urgency: high Maintainer: Debian QA Group Changed-By: Salvatore Bonaccorso Closes: 893132 Description: libvorbisidec-dev - Integer-only Ogg Vorbis decoder, AKA "tremor" (Development Files) libvorbisidec1 - Integer-only Ogg Vorbis decoder, AKA "tremor" Changes: libvorbisidec (1.0.2+svn18153-1+deb9u1) stretch-security; urgency=high . * Non-maintainer upload by the Security Team. * Prevent out-of-bounds write in codebook decoding (CVE-2018-5147) (Closes: #893132) Checksums-Sha1: 8a37a9da1b2f3accc1232c4210b97e8350fa8bf1 2178 libvorbisidec_1.0.2+svn18153-1+deb9u1.dsc 4a76cde3464f9489b058e9a33a2030f0d94b5980 6200 libvorbisidec_1.0.2+svn18153-1+deb9u1.diff.gz Checksums-Sha256: cd6aacaa49906b670205b1dd5ead312fd18fe95ace60f7a8037dd8f9538cef38 2178 libvorbisidec_1.0.2+svn18153-1+deb9u1.dsc 9546b0b71df8a07e0680a7d713c5a969e862ee715f61045804ce2b46fd52267e 6200 libvorbisidec_1.0.2+svn18153-1+deb9u1.diff.gz Files: 29657243bfc545c4238d48eca8c5b67c 2178 libs extra libvorbisidec_1.0.2+svn18153-1+deb9u1.dsc 29b2b0cd76669fa75d0cbce3320dad0d 6200 libs extra libvorbisidec_1.0.2+svn18153-1+deb9u1.diff.gz -BEGIN PGP SIGNATURE- iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAlqsIy5fFIAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89E6McP/2tY6RURYvJ7My3XE/ealH80MksFRTTH iPrX6QVK/6r7ALpmkPsLSHt5hVhPVaV6xtlPgtDwzDJdZ2PindBiVVKbz4NpKdVF Z71JxnNqMCJJnLYj8nZ0JH2kP9Q9Gg0f600EqQVzuf5mG1dGqIBhjyJkpAZA4cPa AnXZ5OLbqonhuQ1e54peTwS/tWLLLixQpyiRNzoyEadew0GxVYVHFZ0hMYjUCXI5 YixaE6ql28IgEJTtM6zh0ejIFgfNKx9BBOmez6gebGasOMFF2nI2aSgnn8e1E9c1 rC/uKh8Rexo4DrXrdMu+JXjzpEOYqlEB4Hl3scT3OjESdZjoYI+x5xDOQPfLEuNS fsCp/9GgKJsaezuPrJRWv19b6olPhHJVZlC98bbvGVwA3oH44BGwgwNr7hiwAqvT S73V+bl5ACBakaDheJE8wFUgyJYXPNYHzvW1yvgYlHi+ZZsSdE52IIL9torL4ltH KJXBUOKwJRJQXtMsL/9NtUK0PrJI4xp9WquMrE40KBC/l6BnD1YRPmlHx28AMEHa Kmj2+OPpmXxdtRJP0vMblZ/KXkuoYU1HtJvmvhPRrsbDJHBEZ3FXQSUXd9NlkIZO kBwHdeY4PFh64H5e1A+7NW68Ptjz500Yl0M7wrpgMgK+tsQSqXZsHER+7CnMrWVS h3REqj46SjkA =7gTl -END PGP SIGNATURE-
Bug#893132: marked as done (libvorbisidec: CVE-2018-5147: out-of-bounds memory write)
Your message dated Sat, 17 Mar 2018 21:42:25 + with message-id and subject line Bug#893132: fixed in libvorbisidec 1.0.2+svn18153-1+deb9u1 has caused the Debian Bug report #893132, regarding libvorbisidec: CVE-2018-5147: out-of-bounds memory write to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 893132: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=893132 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Source: libvorbisidec Version: 1.0.2+svn18153-0.2 Severity: grave Tags: patch security upstream Hi, the following vulnerability was published for libvorbisidec. CVE-2018-5147[0]: out-of-bounds memory write If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2018-5147 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5147 [1] https://www.mozilla.org/en-US/security/advisories/mfsa2018-08/ Regards, Salvatore --- End Message --- --- Begin Message --- Source: libvorbisidec Source-Version: 1.0.2+svn18153-1+deb9u1 We believe that the bug you reported is fixed in the latest version of libvorbisidec, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 893...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Salvatore Bonaccorso (supplier of updated libvorbisidec package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 16 Mar 2018 21:00:34 +0100 Source: libvorbisidec Binary: libvorbisidec-dev libvorbisidec1 Architecture: source Version: 1.0.2+svn18153-1+deb9u1 Distribution: stretch-security Urgency: high Maintainer: Debian QA Group Changed-By: Salvatore Bonaccorso Closes: 893132 Description: libvorbisidec-dev - Integer-only Ogg Vorbis decoder, AKA "tremor" (Development Files) libvorbisidec1 - Integer-only Ogg Vorbis decoder, AKA "tremor" Changes: libvorbisidec (1.0.2+svn18153-1+deb9u1) stretch-security; urgency=high . * Non-maintainer upload by the Security Team. * Prevent out-of-bounds write in codebook decoding (CVE-2018-5147) (Closes: #893132) Checksums-Sha1: 8a37a9da1b2f3accc1232c4210b97e8350fa8bf1 2178 libvorbisidec_1.0.2+svn18153-1+deb9u1.dsc 4a76cde3464f9489b058e9a33a2030f0d94b5980 6200 libvorbisidec_1.0.2+svn18153-1+deb9u1.diff.gz Checksums-Sha256: cd6aacaa49906b670205b1dd5ead312fd18fe95ace60f7a8037dd8f9538cef38 2178 libvorbisidec_1.0.2+svn18153-1+deb9u1.dsc 9546b0b71df8a07e0680a7d713c5a969e862ee715f61045804ce2b46fd52267e 6200 libvorbisidec_1.0.2+svn18153-1+deb9u1.diff.gz Files: 29657243bfc545c4238d48eca8c5b67c 2178 libs extra libvorbisidec_1.0.2+svn18153-1+deb9u1.dsc 29b2b0cd76669fa75d0cbce3320dad0d 6200 libs extra libvorbisidec_1.0.2+svn18153-1+deb9u1.diff.gz -BEGIN PGP SIGNATURE- iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAlqsIy5fFIAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89E6McP/2tY6RURYvJ7My3XE/ealH80MksFRTTH iPrX6QVK/6r7ALpmkPsLSHt5hVhPVaV6xtlPgtDwzDJdZ2PindBiVVKbz4NpKdVF Z71JxnNqMCJJnLYj8nZ0JH2kP9Q9Gg0f600EqQVzuf5mG1dGqIBhjyJkpAZA4cPa AnXZ5OLbqonhuQ1e54peTwS/tWLLLixQpyiRNzoyEadew0GxVYVHFZ0hMYjUCXI5 YixaE6ql28IgEJTtM6zh0ejIFgfNKx9BBOmez6gebGasOMFF2nI2aSgnn8e1E9c1 rC/uKh8Rexo4DrXrdMu+JXjzpEOYqlEB4Hl3scT3OjESdZjoYI+x5xDOQPfLEuNS fsCp/9GgKJsaezuPrJRWv19b6olPhHJVZlC98bbvGVwA3oH44BGwgwNr7hiwAqvT S73V+bl5ACBakaDheJE8wFUgyJYXPNYHzvW1yvgYlHi+ZZsSdE52IIL9torL4ltH KJXBUOKwJRJQXtMsL/9NtUK0PrJI4xp9WquMrE40KBC/l6BnD1YRPmlHx28AMEHa Kmj2+OPpmXxdtRJP0vMblZ/KXkuoYU1HtJvmvhPRrsbDJHBEZ3FXQSUXd9NlkIZO kBwHdeY4PFh64H5e1A+7NW68Ptjz500Yl0M7wrpgMgK+tsQSqXZsHER+7CnMrWVS h3REqj46SjkA =7gTl -END PGP SIGNATURE End Message ---
Accepted libvorbisidec 1.0.2+svn18153-1~deb8u2 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 16 Mar 2018 20:53:05 +0100 Source: libvorbisidec Binary: libvorbisidec-dev libvorbisidec1 Architecture: source Version: 1.0.2+svn18153-1~deb8u2 Distribution: jessie-security Urgency: high Maintainer: Debian QA Group Changed-By: Salvatore Bonaccorso Closes: 893132 Description: libvorbisidec-dev - Integer-only Ogg Vorbis decoder, AKA "tremor" (Development Files) libvorbisidec1 - Integer-only Ogg Vorbis decoder, AKA "tremor" Changes: libvorbisidec (1.0.2+svn18153-1~deb8u2) jessie-security; urgency=high . * Non-maintainer upload by the Security Team. * Prevent out-of-bounds write in codebook decoding (CVE-2018-5147) (Closes: #893132) Checksums-Sha1: 0517002428b9ef48478f73e1e08c23171dae332a 2178 libvorbisidec_1.0.2+svn18153-1~deb8u2.dsc e1f8e5281a92029a1bb325ecb247a6d9c8bf7199 149060 libvorbisidec_1.0.2+svn18153.orig.tar.gz 58dc0b581545007184b70dda956efc47d244959c 6235 libvorbisidec_1.0.2+svn18153-1~deb8u2.diff.gz Checksums-Sha256: b451cdf36212ffc08813b6e22e138c64cf8089d862099275c6e72aaee9afc0d1 2178 libvorbisidec_1.0.2+svn18153-1~deb8u2.dsc 4dc8c224289da3479fc10ce4e49ffbb85c790eb2fe55ef480934a265ee0a6782 149060 libvorbisidec_1.0.2+svn18153.orig.tar.gz 1a66861aa4f05b12831cc4a9c629915f69d96eefbbe2dd4279c106f552860cbb 6235 libvorbisidec_1.0.2+svn18153-1~deb8u2.diff.gz Files: 82e065654ecd84b0999270bb98ffbfca 2178 libs extra libvorbisidec_1.0.2+svn18153-1~deb8u2.dsc 4190859414c5d6760e316b5cf00fe7c5 149060 libs extra libvorbisidec_1.0.2+svn18153.orig.tar.gz 6191de785fec795ae39822b597e4eae6 6235 libs extra libvorbisidec_1.0.2+svn18153-1~deb8u2.diff.gz -BEGIN PGP SIGNATURE- iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAlqsIXVfFIAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89Ekf4QAI7j7vthE2R/wmnPJRFK/wxOXLfsJvZS EhJD0AuQWWqd8TWycm9L38uE7Cck4dyfNL7r+zDrfVI0gORVAv0ZBV0LK9T+iBV8 4J+hI09WgNgTCnQlr+zpt88KE+LXWx5TTXsIzC+3G83z0mo6Am1iqWQVbQ4vS5Vg +MfmgREGNOSeppvPAFFq/RtVGdFpJEMIpYQI6nc7NSwjzncJugdHpfCYDZj97UXv TCdmk6R71FqGNL2A3Dzxtoavo51rR5pjSJltaAcbHcpLxRzDBLxC1rAS0OKBkKUa 8B+a6keBcRYCjbS548unSHUloamdK1Rglxz/33kujjqE1jZmrT4z7aFJ31vibmHW 9os2plFNfarfwsUCSaNK80qqJHpQfCljl5V758jSi+NM9NsIdHnQM9euYeqPFGUQ mIflZvX6+SC5ZpYunkf2/B+ZW2ILRl+G7CxgXazn2344ntw1tL5hbP0Ot4KtFMBQ Kuh+ib2raTcSmbJ/Xj3iAck3VoM5syuFUlR4scOFVzPAKuVlAnex1wm/mXCfB2bw hDIWoh1PrRvjBzy6XUhzbP08yS8Wv0eZItlG32FyH6wnVJx0H0AEZLHYdbawnjbo smamGC7IUXvqvHIg/1OTogP//YtlX4fHs+0JvjFbBM1V0eAlrmTIahVTh8PFtCwJ MtQPPljHKnl/ =wM/s -END PGP SIGNATURE-
Bug#893132: marked as done (libvorbisidec: CVE-2018-5147: out-of-bounds memory write)
Your message dated Sat, 17 Mar 2018 21:46:15 + with message-id and subject line Bug#893132: fixed in libvorbisidec 1.0.2+svn18153-1~deb8u2 has caused the Debian Bug report #893132, regarding libvorbisidec: CVE-2018-5147: out-of-bounds memory write to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 893132: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=893132 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Source: libvorbisidec Version: 1.0.2+svn18153-0.2 Severity: grave Tags: patch security upstream Hi, the following vulnerability was published for libvorbisidec. CVE-2018-5147[0]: out-of-bounds memory write If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2018-5147 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5147 [1] https://www.mozilla.org/en-US/security/advisories/mfsa2018-08/ Regards, Salvatore --- End Message --- --- Begin Message --- Source: libvorbisidec Source-Version: 1.0.2+svn18153-1~deb8u2 We believe that the bug you reported is fixed in the latest version of libvorbisidec, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 893...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Salvatore Bonaccorso (supplier of updated libvorbisidec package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 16 Mar 2018 20:53:05 +0100 Source: libvorbisidec Binary: libvorbisidec-dev libvorbisidec1 Architecture: source Version: 1.0.2+svn18153-1~deb8u2 Distribution: jessie-security Urgency: high Maintainer: Debian QA Group Changed-By: Salvatore Bonaccorso Closes: 893132 Description: libvorbisidec-dev - Integer-only Ogg Vorbis decoder, AKA "tremor" (Development Files) libvorbisidec1 - Integer-only Ogg Vorbis decoder, AKA "tremor" Changes: libvorbisidec (1.0.2+svn18153-1~deb8u2) jessie-security; urgency=high . * Non-maintainer upload by the Security Team. * Prevent out-of-bounds write in codebook decoding (CVE-2018-5147) (Closes: #893132) Checksums-Sha1: 0517002428b9ef48478f73e1e08c23171dae332a 2178 libvorbisidec_1.0.2+svn18153-1~deb8u2.dsc e1f8e5281a92029a1bb325ecb247a6d9c8bf7199 149060 libvorbisidec_1.0.2+svn18153.orig.tar.gz 58dc0b581545007184b70dda956efc47d244959c 6235 libvorbisidec_1.0.2+svn18153-1~deb8u2.diff.gz Checksums-Sha256: b451cdf36212ffc08813b6e22e138c64cf8089d862099275c6e72aaee9afc0d1 2178 libvorbisidec_1.0.2+svn18153-1~deb8u2.dsc 4dc8c224289da3479fc10ce4e49ffbb85c790eb2fe55ef480934a265ee0a6782 149060 libvorbisidec_1.0.2+svn18153.orig.tar.gz 1a66861aa4f05b12831cc4a9c629915f69d96eefbbe2dd4279c106f552860cbb 6235 libvorbisidec_1.0.2+svn18153-1~deb8u2.diff.gz Files: 82e065654ecd84b0999270bb98ffbfca 2178 libs extra libvorbisidec_1.0.2+svn18153-1~deb8u2.dsc 4190859414c5d6760e316b5cf00fe7c5 149060 libs extra libvorbisidec_1.0.2+svn18153.orig.tar.gz 6191de785fec795ae39822b597e4eae6 6235 libs extra libvorbisidec_1.0.2+svn18153-1~deb8u2.diff.gz -BEGIN PGP SIGNATURE- iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAlqsIXVfFIAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89Ekf4QAI7j7vthE2R/wmnPJRFK/wxOXLfsJvZS EhJD0AuQWWqd8TWycm9L38uE7Cck4dyfNL7r+zDrfVI0gORVAv0ZBV0LK9T+iBV8 4J+hI09WgNgTCnQlr+zpt88KE+LXWx5TTXsIzC+3G83z0mo6Am1iqWQVbQ4vS5Vg +MfmgREGNOSeppvPAFFq/RtVGdFpJEMIpYQI6nc7NSwjzncJugdHpfCYDZj97UXv TCdmk6R71FqGNL2A3Dzxtoavo51rR5pjSJltaAcbHcpLxRzDBLxC1rAS0OKBkKUa 8B+a6keBcRYCjbS548unSHUloamdK1Rglxz/33kujjqE1jZmrT4z7aFJ31vibmHW 9os2plFNfarfwsUCSaNK80qqJHpQfCljl5V758jSi+NM9NsIdHnQM9euYeqPFGUQ mIflZvX6+SC5ZpYunkf2/B+ZW2ILRl+G7CxgXazn2344ntw1tL5hbP0Ot4KtFMBQ Kuh+ib2raTcSmbJ/Xj3iAck3VoM5syuFUlR4scOFVzPAKuVlAnex1wm/mXCfB2bw hDIWoh1PrRvjBzy6XUhzbP08yS8Wv0eZItlG32FyH6wnVJx0H0AEZLHYdbawnjbo smamGC7IUXvqvHIg/1OTogP//YtlX4fHs+0JvjFbBM1V0eAlrmTIahVTh8PFtCwJ MtQPPljHKnl/ =wM/s -END PGP SIGNATURE End Message ---
libvorbisidec_1.0.2+svn18153-1+deb9u1_multi.changes ACCEPTED into proposed-updates->stable-new, proposed-updates
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 16 Mar 2018 21:00:34 +0100 Source: libvorbisidec Binary: libvorbisidec-dev libvorbisidec1 Architecture: source Version: 1.0.2+svn18153-1+deb9u1 Distribution: stretch-security Urgency: high Maintainer: Debian QA Group Changed-By: Salvatore Bonaccorso Closes: 893132 Description: libvorbisidec-dev - Integer-only Ogg Vorbis decoder, AKA "tremor" (Development Files) libvorbisidec1 - Integer-only Ogg Vorbis decoder, AKA "tremor" Changes: libvorbisidec (1.0.2+svn18153-1+deb9u1) stretch-security; urgency=high . * Non-maintainer upload by the Security Team. * Prevent out-of-bounds write in codebook decoding (CVE-2018-5147) (Closes: #893132) Checksums-Sha1: 8a37a9da1b2f3accc1232c4210b97e8350fa8bf1 2178 libvorbisidec_1.0.2+svn18153-1+deb9u1.dsc 4a76cde3464f9489b058e9a33a2030f0d94b5980 6200 libvorbisidec_1.0.2+svn18153-1+deb9u1.diff.gz Checksums-Sha256: cd6aacaa49906b670205b1dd5ead312fd18fe95ace60f7a8037dd8f9538cef38 2178 libvorbisidec_1.0.2+svn18153-1+deb9u1.dsc 9546b0b71df8a07e0680a7d713c5a969e862ee715f61045804ce2b46fd52267e 6200 libvorbisidec_1.0.2+svn18153-1+deb9u1.diff.gz Files: 29657243bfc545c4238d48eca8c5b67c 2178 libs extra libvorbisidec_1.0.2+svn18153-1+deb9u1.dsc 29b2b0cd76669fa75d0cbce3320dad0d 6200 libs extra libvorbisidec_1.0.2+svn18153-1+deb9u1.diff.gz -BEGIN PGP SIGNATURE- iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAlqsIy5fFIAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89E6McP/2tY6RURYvJ7My3XE/ealH80MksFRTTH iPrX6QVK/6r7ALpmkPsLSHt5hVhPVaV6xtlPgtDwzDJdZ2PindBiVVKbz4NpKdVF Z71JxnNqMCJJnLYj8nZ0JH2kP9Q9Gg0f600EqQVzuf5mG1dGqIBhjyJkpAZA4cPa AnXZ5OLbqonhuQ1e54peTwS/tWLLLixQpyiRNzoyEadew0GxVYVHFZ0hMYjUCXI5 YixaE6ql28IgEJTtM6zh0ejIFgfNKx9BBOmez6gebGasOMFF2nI2aSgnn8e1E9c1 rC/uKh8Rexo4DrXrdMu+JXjzpEOYqlEB4Hl3scT3OjESdZjoYI+x5xDOQPfLEuNS fsCp/9GgKJsaezuPrJRWv19b6olPhHJVZlC98bbvGVwA3oH44BGwgwNr7hiwAqvT S73V+bl5ACBakaDheJE8wFUgyJYXPNYHzvW1yvgYlHi+ZZsSdE52IIL9torL4ltH KJXBUOKwJRJQXtMsL/9NtUK0PrJI4xp9WquMrE40KBC/l6BnD1YRPmlHx28AMEHa Kmj2+OPpmXxdtRJP0vMblZ/KXkuoYU1HtJvmvhPRrsbDJHBEZ3FXQSUXd9NlkIZO kBwHdeY4PFh64H5e1A+7NW68Ptjz500Yl0M7wrpgMgK+tsQSqXZsHER+7CnMrWVS h3REqj46SjkA =7gTl -END PGP SIGNATURE- Thank you for your contribution to Debian.
libvorbisidec_1.0.2+svn18153-1~deb8u2_multi.changes ACCEPTED into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 16 Mar 2018 20:53:05 +0100 Source: libvorbisidec Binary: libvorbisidec-dev libvorbisidec1 Architecture: source Version: 1.0.2+svn18153-1~deb8u2 Distribution: jessie-security Urgency: high Maintainer: Debian QA Group Changed-By: Salvatore Bonaccorso Closes: 893132 Description: libvorbisidec-dev - Integer-only Ogg Vorbis decoder, AKA "tremor" (Development Files) libvorbisidec1 - Integer-only Ogg Vorbis decoder, AKA "tremor" Changes: libvorbisidec (1.0.2+svn18153-1~deb8u2) jessie-security; urgency=high . * Non-maintainer upload by the Security Team. * Prevent out-of-bounds write in codebook decoding (CVE-2018-5147) (Closes: #893132) Checksums-Sha1: 0517002428b9ef48478f73e1e08c23171dae332a 2178 libvorbisidec_1.0.2+svn18153-1~deb8u2.dsc e1f8e5281a92029a1bb325ecb247a6d9c8bf7199 149060 libvorbisidec_1.0.2+svn18153.orig.tar.gz 58dc0b581545007184b70dda956efc47d244959c 6235 libvorbisidec_1.0.2+svn18153-1~deb8u2.diff.gz Checksums-Sha256: b451cdf36212ffc08813b6e22e138c64cf8089d862099275c6e72aaee9afc0d1 2178 libvorbisidec_1.0.2+svn18153-1~deb8u2.dsc 4dc8c224289da3479fc10ce4e49ffbb85c790eb2fe55ef480934a265ee0a6782 149060 libvorbisidec_1.0.2+svn18153.orig.tar.gz 1a66861aa4f05b12831cc4a9c629915f69d96eefbbe2dd4279c106f552860cbb 6235 libvorbisidec_1.0.2+svn18153-1~deb8u2.diff.gz Files: 82e065654ecd84b0999270bb98ffbfca 2178 libs extra libvorbisidec_1.0.2+svn18153-1~deb8u2.dsc 4190859414c5d6760e316b5cf00fe7c5 149060 libs extra libvorbisidec_1.0.2+svn18153.orig.tar.gz 6191de785fec795ae39822b597e4eae6 6235 libs extra libvorbisidec_1.0.2+svn18153-1~deb8u2.diff.gz -BEGIN PGP SIGNATURE- iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAlqsIXVfFIAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89Ekf4QAI7j7vthE2R/wmnPJRFK/wxOXLfsJvZS EhJD0AuQWWqd8TWycm9L38uE7Cck4dyfNL7r+zDrfVI0gORVAv0ZBV0LK9T+iBV8 4J+hI09WgNgTCnQlr+zpt88KE+LXWx5TTXsIzC+3G83z0mo6Am1iqWQVbQ4vS5Vg +MfmgREGNOSeppvPAFFq/RtVGdFpJEMIpYQI6nc7NSwjzncJugdHpfCYDZj97UXv TCdmk6R71FqGNL2A3Dzxtoavo51rR5pjSJltaAcbHcpLxRzDBLxC1rAS0OKBkKUa 8B+a6keBcRYCjbS548unSHUloamdK1Rglxz/33kujjqE1jZmrT4z7aFJ31vibmHW 9os2plFNfarfwsUCSaNK80qqJHpQfCljl5V758jSi+NM9NsIdHnQM9euYeqPFGUQ mIflZvX6+SC5ZpYunkf2/B+ZW2ILRl+G7CxgXazn2344ntw1tL5hbP0Ot4KtFMBQ Kuh+ib2raTcSmbJ/Xj3iAck3VoM5syuFUlR4scOFVzPAKuVlAnex1wm/mXCfB2bw hDIWoh1PrRvjBzy6XUhzbP08yS8Wv0eZItlG32FyH6wnVJx0H0AEZLHYdbawnjbo smamGC7IUXvqvHIg/1OTogP//YtlX4fHs+0JvjFbBM1V0eAlrmTIahVTh8PFtCwJ MtQPPljHKnl/ =wM/s -END PGP SIGNATURE- Thank you for your contribution to Debian.
Processing of isakmpd_20041012-8_source.changes
isakmpd_20041012-8_source.changes uploaded successfully to localhost along with the files: isakmpd_20041012-8.dsc isakmpd_20041012-8.debian.tar.xz isakmpd_20041012-8_source.buildinfo Greetings, Your Debian queue daemon (running on host usper.debian.org)
isakmpd_20041012-8_source.changes ACCEPTED into unstable
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 17 Mar 2018 22:38:39 +0100 Source: isakmpd Binary: isakmpd Architecture: source Version: 20041012-8 Distribution: unstable Urgency: medium Maintainer: Debian QA Group Changed-By: Adam Borowski Description: isakmpd- The Internet Key Exchange protocol openbsd implementation Closes: 678295 858931 Changes: isakmpd (20041012-8) unstable; urgency=medium . * QA upload. * Set maintainer to the QA group. * Port to OpenSSL 1.1, disable 40-bit DES, patch by Chris West. (Closes: #858931). * Newest and greatest compat (11), standards, R³. * Fix FTBFS with -Werror=format-security. * Fix FTBFS with ld --as-needed, by Ilya Barygin. (Closes: #678295) * Fix typos in README.Debian and long desc. Checksums-Sha1: 80fa616e5dd7b377650e0b95c82aeda5079aa83f 1772 isakmpd_20041012-8.dsc 402e7c76d4bc6b6fec67e24d1d7ecf1a4eafdd39 33888 isakmpd_20041012-8.debian.tar.xz ace6df1b91344c817dc86b4f4072e3e3023ce5d9 5515 isakmpd_20041012-8_source.buildinfo Checksums-Sha256: 18965405c6a586d77706ec2a41e710ce957747ce5d62336531db3125db44d7d9 1772 isakmpd_20041012-8.dsc b44327f9d2ba44ad18ed16466220d06b73371126bea5595ded7927daba0463c3 33888 isakmpd_20041012-8.debian.tar.xz 00d3db7536494a77f7c002b86b097a4186f144bb3d926198fb197a32103d439f 5515 isakmpd_20041012-8_source.buildinfo Files: 5356b48e9cab43824c10d2ddf7ed6d37 1772 net optional isakmpd_20041012-8.dsc 277d0a37e98f82a7933995a5295feb7d 33888 net optional isakmpd_20041012-8.debian.tar.xz 0f144bea8b9c27f9a3a79d95e9fdc200 5515 net optional isakmpd_20041012-8_source.buildinfo -BEGIN PGP SIGNATURE- iQJIBAEBCgAyFiEEkjZVexcMh/iCHArDweDZLphvfH4FAlqtivAUHGtpbG9ieXRl QGFuZ2JhbmQucGwACgkQweDZLphvfH5s7xAAkGcg9orUPl+SA5jrapbU59ws/Asf cy9su7gvIYMqKLIkTFp8ZQr/C8ejlXzJloAfi0K/aGvrAzlq4LcHAJKHjiB326o0 6/r5B+QFH6UEPUk+q1ylfU525mEjuMFC70YjnmY/ypy9B5EWVU5ME37ub6dahxhO /jOHoBclZgpfccIhxp6KBggt4JJuhuAb20WKZmKTONQMYVLhi/5SH6AjBo1pRf6/ kN5UftEt3aLdSuq3KS6vwPd3sK4Lc8n3bf57Qfz3B20K01z4T1wTWY+JYOfSk4Xs xTLOvBvIQS8G8ojRy1FVrzkPP7BA5YWhJ8hbjLx+n8OxxBZcDP+P0az6p/3BdBX3 8j7ur+cUzpjhRZI7TQbjsAmvjx2rf65x/6Xrh7Ni0UtwyBOh5dNylaQSEHvJjRge JKJsYi5JXKKYy2rHFsLPFI2DOs+BP+Ppw67HUnFcl3FxVF1HApw9RacsvoCrOQmk BVb3klWnq4Lh3Pw8O/Co2N1JyGwcndOdaDdOMrqjplhPT5z0o7KiXzz1bxepS6/c 3/ZhFf3y5Ial8lGV794Ba9LcMtRugdoSNXG6qOWg8gKKOGI3VQSCetdscpsGS402 h+7OksNdL/icFFPUuXlvl5ZFWjL76/9PJvn3GpaHPBdsjKb8br7RMgKONtza9tst wg/leC65ZyQRuVc= =YyBT -END PGP SIGNATURE- Thank you for your contribution to Debian.
dhelp is marked for autoremoval from testing
dhelp 0.6.24 is marked for autoremoval from testing on 2018-04-08 It is affected by these RC bugs: 892548: dhelp: /usr/sbin/dhelp_parse broken with ruby 2.5
