NEW changes in stable-new
Processing changes file: apache2_2.4.10-10+deb8u4_mips.changes ACCEPT
NEW changes in stable-new
Processing changes file: ejabberd_14.07-4+deb8u3_mips.changes ACCEPT
Bug#805634: jessie-pu: torbrowser-launcher/0.2.2-2~deb8u1
Hi Adam, On Sonntag, 27. Dezember 2015, Adam D. Barratt wrote: > > Attached is the output > > of debdiff torbrowser-launcher_0.1.9-1+deb8u1.dsc > > torbrowser-launcher_0.2.2-2.dsc>tbl-jessie-sid.diff) > That's obviously not exactly what you're planning to upload. However, > assuming that the only difference between the attached diff and the > actual uploaded source package is a changelog stanza for 0.2.2-2~deb8u1, > please feel free to go ahead. Uhm, that *is* exactly what I plan to upload, the only change I've planned for debian/changelog is to change the "UNRELEASED" to "jessie" and that's it?! What else should I change? $ head -26 debian/changelog torbrowser-launcher (0.1.9-1+deb8u2) UNRELEASED; urgency=medium * Merge the following patches from between debian/0.1.9-1+deb8u1..debian/sid 3d9f4ed Update location of start-tor-browser for TBB 4.5, and remove accept_links feature #176 5f833d7 execute ./start-tor-browser.desktop instead of ./Browser/start-tor-browser (#176) 39901c6 Stop confining start-tor-browser script with AppArmor, and fix profiles to work with TBB 4.5+ (#181) 803f34c AppArmor-allow-Tor-Browser-to-use-shared-libraries-s.patch: new patch, that extends the torbrowser.Browser.firefox AppArmor profile 70c750e Set-torbrowser.start-tor-browser-and-usr.bin.torbrow.patch: new patch, that sets torbrowser.start-tor-browser and usr.bin.torbrowser-lau e07beac Get stable version using torbrowser updater xml ab141ee Stop using sha256sums.txt and sha256sums.txt.asc (fixes #180) 7829f3e Ensure that the version is a string, not unicode (#205) 7371fdc Eek, removed testing code that never should have been committed 3155723 Force download URLs to be strings and not unicode (#205) 513b3a9 Only convert unicode URLs to strings if they are actually unicode (#205) * Version bump to 0.1.9-1+deb8u2. -- Holger Levsen Sat, 05 Dec 2015 17:19:11 +0100 cheers, Holger signature.asc Description: This is a digitally signed message part.
Bug#805634: jessie-pu: torbrowser-launcher/0.2.2-2~deb8u1
On Sun, 2016-01-03 at 13:03 +0100, Holger Levsen wrote: > On Sonntag, 27. Dezember 2015, Adam D. Barratt wrote: > > > > Attached is the output > > > > of debdiff torbrowser-launcher_0.1.9-1+deb8u1.dsc > > > > torbrowser-launcher_0.2.2-2.dsc>tbl-jessie-sid.diff) > > > That's obviously not exactly what you're planning to upload. > However, > > > assuming that the only difference between the attached diff and the > > > actual uploaded source package is a changelog stanza for > 0.2.2-2~deb8u1, > > > please feel free to go ahead. > > > > Uhm, that *is* exactly what I plan to upload, the only change I've > planned for debian/changelog is to change the "UNRELEASED" to "jessie" > and that's it?! What else should I change? The diff attached to the mail I was replying to has diff -Nru torbrowser-launcher-0.1.9/debian/changelog torbrowser-launcher-0.2.2/debian/changelog --- torbrowser-launcher-0.1.9/debian/changelog 2015-05-30 15:53:04.0 +0200 +++ torbrowser-launcher-0.2.2/debian/changelog 2015-11-19 18:41:35.0 +0100 @@ -1,13 +1,55 @@ -torbrowser-launcher (0.1.9-1+deb8u1) jessie; urgency=high +torbrowser-launcher (0.2.2-2) sid; urgency=medium There's no UNRELEASED stanza there. Looking back over the thread, I see that <201512071623.28041.hol...@layer-acht.org> includes the UNRELEASED changelog, but not a diff, and I missed that difference when reviewing. That changelog is also for 0.1.9-1+deb8u2, whereas the subject of this bug report implies you were looking at 0.2.2-2~deb8u1. Would it be possible to have a diff that does represent what you're planning to upload, please? Regards, Adam
Bug#805634: jessie-pu: torbrowser-launcher/0.2.2-2~deb8u1
Hi,
On Sonntag, 3. Januar 2016, Adam D. Barratt wrote:
> The diff attached to the mail I was replying to has
> -torbrowser-launcher (0.1.9-1+deb8u1) jessie; urgency=high
> +torbrowser-launcher (0.2.2-2) sid; urgency=medium
at first I was thinking to get 0.2.2-2 into stable would be preferred but then
I realized that backporting the needed fixes was indeed possible
and probably more reasonable…
> Would it be possible to have a diff that does represent what you're
> planning to upload, please?
sure! (the following still has "UNRELEASED" but thats about it.)
Also, these branches are all tested regularily on
https://jenkins.debian.net/view/torbrowser/
$ git log --oneline debian/0.1.9-1+deb8u1..debian/jessie
0ee180c Document changes in 0.1.9-1+deb8u2 and bump version.
28f68e5 Only convert unicode URLs to strings if they are actually unicode (#205)
aacab8a Force download URLs to be strings and not unicode (#205)
3ab30bc Eek, removed testing code that never should have been committed
2983839 Stop using sha256sums.txt and sha256sums.txt.asc (fixes #180)
fa5d9db Get stable version using torbrowser updater xml
7e1911d Set-torbrowser.start-tor-browser-and-usr.bin.torbrow.patch: new patch,
that sets torbrowser.start-tor-browser and usr.bin.torbrowser-
launcher AppArmor profiles to co
f3d8373 AppArmor-allow-Tor-Browser-to-use-shared-libraries-s.patch: new patch,
that extends the torbrowser.Browser.firefox AppArmor profile so
that Tor Browser 4.5 and 5.0 c
42c3551 Stop confining start-tor-browser script with AppArmor, and fix profiles
to work with TBB 4.5+ (#181)
dd4603c execute ./start-tor-browser.desktop instead of
./Browser/start-tor-browser (#176)
ed905d9 Update location of start-tor-browser for TBB 4.5, and remove
accept_links feature #176
$ git diff debian/0.1.9-1+deb8u1..debian/jessie
diff --git a/apparmor/torbrowser.Browser.firefox
b/apparmor/torbrowser.Browser.firefox
index 0df7ad9..32c9151 100644
--- a/apparmor/torbrowser.Browser.firefox
+++ b/apparmor/torbrowser.Browser.firefox
@@ -43,14 +43,15 @@
owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/Browser/components/*.so
mr,
owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/Browser/browser/components/*.so
mr,
owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/Browser/firefox
rix,
- owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/TorBrowser/,}Data/Browser/profiles.ini
r,
- owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/TorBrowser/,}Data/Browser/profile.default/
r,
- owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/TorBrowser/,}Data/Browser/profile.default/**
rwk,
- owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/TorBrowser/,}Tor/tor
Px,
- owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/,}Desktop/
rw,
- owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/,}Desktop/**
rwk,
- owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/,}Downloads/
rw,
- owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/,}Downloads/**
rwk,
+ owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/Browser/TorBrowser/Data/Browser/profiles.ini
r,
+ owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/Browser/TorBrowser/Data/Browser/profile.default/
r,
+ owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/Browser/TorBrowser/Data/Browser/profile.default/**
rwk,
+ owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/Browser/TorBrowser/Tor/tor
Px,
+ owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/Browser/TorBrowser/Tor/libstdc++.so.6
m,
+ owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/Browser/Desktop/
rw,
+ owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/Browser/Desktop/**
rwk,
+ owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/Browser/Downloads/
rw,
+ owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/Browser/Downloads/**
rwk,
/etc/mailcap r,
/etc/mime.types r,
diff --git a/apparmor/torbrowser.start-tor-browser
b/apparmor/torbrowser.start-tor-browser
deleted file mode 100644
index 3ca6368..000
--- a/apparmor/torbrowser.start-tor-browser
+++ /dev/null
@@ -1,53 +0,0 @@
-#include
-
-/home/*/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/{Browser/,}start-tor-browser
{
- #include
- #include
- #include
- #include
-
- capability sys_ptrace,
-
-
- /bin/cat rix,
- /bin/bash r,
- /bin/dash rix,
- /bin/grep rix,
- /bin/ln rix,
- /bin/mkdir rix,
- /bin/ps rix,
- /bin/readlink ix,
- /bin/sed rix,
- /dev/pts/[0-9]* rw,
- /dev/tty rw,
- /etc/magic r,
- owner
@{HOME}/.local/share/torbrowser/tbb/{i686,x86_64}/tor-browser_*/
Bug#806247: jessie-pu: package dbconfig-common/1.8.47+nmu3
control: tags -1 moreinfo
On 02-01-16 20:07, Paul Gevers wrote:
> Can be done. Let me work on a proposal.
Please find attached my renewed proposal. I must admit that I didn't
know exactly how to express "greater than any version that is after the
largest wheezy point release". I suppose I could also just make that
version 1.8.47+nmu1+deb7u999" (with an arbitrary number of 9's).
Paul
diff -Nru dbconfig-common-1.8.47+nmu3/debian/changelog
dbconfig-common-1.8.47+nmu3+deb8u1/debian/changelog
--- dbconfig-common-1.8.47+nmu3/debian/changelog2014-11-02
21:48:57.0 +0100
+++ dbconfig-common-1.8.47+nmu3+deb8u1/debian/changelog 2016-01-03
11:19:55.0 +0100
@@ -1,3 +1,13 @@
+dbconfig-common (1.8.47+nmu3+deb8u1) jessie; urgency=medium
+
+ * Fix permission of PostgreSQL backup files, thanks Simon Ruderich
+(Closes: #805638)
+ * Repair permissions of already created backups, but only when upgrading
+from versions before this one (but not from versions after wheezy's
+point update).
+
+ -- Paul Gevers Sun, 03 Jan 2016 11:14:55 +0100
+
dbconfig-common (1.8.47+nmu3) unstable; urgency=low
* Non-maintainer upload.
diff -Nru dbconfig-common-1.8.47+nmu3/debian/dbconfig-common.postinst
dbconfig-common-1.8.47+nmu3+deb8u1/debian/dbconfig-common.postinst
--- dbconfig-common-1.8.47+nmu3/debian/dbconfig-common.postinst 2013-07-14
14:19:00.0 +0200
+++ dbconfig-common-1.8.47+nmu3+deb8u1/debian/dbconfig-common.postinst
2016-01-03 11:19:55.0 +0100
@@ -15,4 +15,18 @@
dbc_write_global_config
+# Previously dumped databases in /var/cache/dbconfig-common/backups may
+# (depending on the local umask) be readable by everybody (bts: #805638). Limit
+# the permissions here on all files in that folder, but only if we are for the
+# first time upgrading to a fixed version:
+# jessie: 1.8.47+nmu3+deb8u1
+# wheezy: 1.8.47+nmu1+deb7u1
+# squeeze: 1.8.46+squeeze.0+lts1
+if dpkg --compare-versions "$2" lt "1.8.47+nmu3+deb8u1" && \
+dpkg --compare-versions "$2" gt "1.8.47+nmu1+ZZZ" ; then
+if [ -d /var/cache/dbconfig-common/backups/ ] ; then
+find /var/cache/dbconfig-common/backups/ -type f -exec chmod 600 {} \;
+fi
+fi
+
#DEBHELPER#
diff -Nru dbconfig-common-1.8.47+nmu3/internal/pgsql
dbconfig-common-1.8.47+nmu3+deb8u1/internal/pgsql
--- dbconfig-common-1.8.47+nmu3/internal/pgsql 2013-07-20 10:12:12.0
+0200
+++ dbconfig-common-1.8.47+nmu3+deb8u1/internal/pgsql 2016-01-02
21:24:34.0 +0100
@@ -174,14 +174,14 @@
local extra retval PGSSLMODE localuser _dbc_asuser dumpfile old_umask
dumpfile=$1
localuser=`_dbc_psql_local_username`
- touch $dumpfile
- chown $localuser $dumpfile
PGSSLMODE="prefer"
retval=0
_dbc_psql_cmd_setup
if [ "$dbc_ssl" ]; then PGSSLMODE="require"; fi
old_umask=`umask`
umask 0066
+ touch $dumpfile
+ chown $localuser $dumpfile
extra=`_dbc_psql_cmd_args`
extra="-f \"$dumpfile\" $extra"
_dbc_debug "su -s /bin/sh $localuser -c \"env HOME='$_dbc_pgsql_tmpdir'
PGPASSFILE='$_dbc_pgsql_tmpdir/.pgpass' PGSSLMODE='$PGSSLMODE' pg_dump $extra
$dbc_dbname\" 2>&1"
signature.asc
Description: OpenPGP digital signature
Processed: Re: Bug#806247: jessie-pu: package dbconfig-common/1.8.47+nmu3
Processing control commands: > tags -1 moreinfo Bug #806247 [release.debian.org] jessie-pu: package dbconfig-common/1.8.47+nmu3+deb8u1 Ignoring request to alter tags of bug #806247 to the same tags previously set -- 806247: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=806247 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#805634: jessie-pu: torbrowser-launcher/0.2.2-2~deb8u1
Hi, On Sun, 2016-01-03 at 14:07 +0100, Holger Levsen wrote: > Hi, > > On Sonntag, 3. Januar 2016, Adam D. Barratt wrote: > > Would it be possible to have a diff that does represent what you're > > planning to upload, please? > > sure! (the following still has "UNRELEASED" but thats about it.) Thanks. Please go ahead. Regards, Adam
Bug#808282: wheezy-pu: package dbconfig-common/1.8.47+nmu1
Similar to my latest e-mail to bug 806247, I send a new debdiff.
Paul
diff -Nru dbconfig-common-1.8.47+nmu1/debian/changelog
dbconfig-common-1.8.47+nmu1+deb7u1/debian/changelog
--- dbconfig-common-1.8.47+nmu1/debian/changelog2011-12-24
09:26:16.0 +0100
+++ dbconfig-common-1.8.47+nmu1+deb7u1/debian/changelog 2016-01-03
14:42:39.0 +0100
@@ -1,3 +1,13 @@
+dbconfig-common (1.8.47+nmu1+deb7u1) wheezy; urgency=medium
+
+ * Fix permission of PostgreSQL backup files, thanks Simon Ruderich
+(Closes: #805638)
+ * Repair permissions of already created backups, but only when upgrading
+from versions before this one (but not from versions after squeeze's
+lts update).
+
+ -- Paul Gevers Sun, 03 Jan 2016 11:14:55 +0100
+
dbconfig-common (1.8.47+nmu1) unstable; urgency=low
* Non-maintainer upload.
diff -Nru dbconfig-common-1.8.47+nmu1/debian/dbconfig-common.postinst
dbconfig-common-1.8.47+nmu1+deb7u1/debian/dbconfig-common.postinst
--- dbconfig-common-1.8.47+nmu1/debian/dbconfig-common.postinst 2009-02-17
23:05:34.0 +0100
+++ dbconfig-common-1.8.47+nmu1+deb7u1/debian/dbconfig-common.postinst
2016-01-03 14:42:38.0 +0100
@@ -15,4 +15,18 @@
dbc_write_global_config
+# Previously dumped databases in /var/cache/dbconfig-common/backups may
+# (depending on the local umask) be readable by everybody (bts: #805638). Limit
+# the permissions here on all files in that folder, but only if we are for the
+# first time upgrading to a fixed version:
+# jessie: 1.8.47+nmu3+deb8u1
+# wheezy: 1.8.47+nmu1+deb7u1
+# squeeze: 1.8.46+squeeze.0+lts1
+if dpkg --compare-versions "$2" lt "1.8.47+nmu1+deb7u1" && \
+dpkg --compare-versions "$2" gt "1.8.46+squeeze.0+ZZZ" ; then
+if [ -d /var/cache/dbconfig-common/backups/ ] ; then
+find /var/cache/dbconfig-common/backups/ -type f -exec chmod 600 {} \;
+fi
+fi
+
#DEBHELPER#
diff -Nru dbconfig-common-1.8.47+nmu1/internal/pgsql
dbconfig-common-1.8.47+nmu1+deb7u1/internal/pgsql
--- dbconfig-common-1.8.47+nmu1/internal/pgsql 2010-03-28 12:11:37.0
+0200
+++ dbconfig-common-1.8.47+nmu1+deb7u1/internal/pgsql 2016-01-02
21:24:34.0 +0100
@@ -174,14 +174,14 @@
local extra retval PGSSLMODE localuser _dbc_asuser dumpfile old_umask
dumpfile=$1
localuser=`_dbc_psql_local_username`
- touch $dumpfile
- chown $localuser $dumpfile
PGSSLMODE="prefer"
retval=0
_dbc_psql_cmd_setup
if [ "$dbc_ssl" ]; then PGSSLMODE="require"; fi
old_umask=`umask`
umask 0066
+ touch $dumpfile
+ chown $localuser $dumpfile
extra=`_dbc_psql_cmd_args`
extra="-f \"$dumpfile\" $extra"
_dbc_debug "su -s /bin/sh $localuser -c \"env HOME='$_dbc_pgsql_tmpdir'
PGPASSFILE='$_dbc_pgsql_tmpdir/.pgpass' PGSSLMODE='$PGSSLMODE' pg_dump $extra
$dbc_dbname\" 2>&1"
signature.asc
Description: OpenPGP digital signature
Processed: Re: Bug#804157: jessie-pu: package commons-httpclient/3.1-11
Processing control commands: > tags -1 + pending Bug #804157 [release.debian.org] jessie-pu: package commons-httpclient/3.1-11 Added tag(s) pending. -- 804157: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=804157 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#804157: jessie-pu: package commons-httpclient/3.1-11
Control: tags -1 + pending On Sat, 2016-01-02 at 05:21 +0100, Markus Koschany wrote: > Am 01.01.2016 um 19:11 schrieb Adam D. Barratt: > > Control: tags -1 + confirmed > > > > On Thu, 2015-11-05 at 15:50 +0100, Markus Koschany wrote: > >> the Debian Java Team would like to update commons-httpclient in Jessie > >> to fix CVE-2015-5262. We don't think that this issue warrants a DSA > >> from the security team but nevertheless it is important enough that it > >> should be fixed in an upcoming point release. > > > > Please go ahead. [...] > Uploaded. Flagged for acceptance. Regards, Adam
Processed: Re: Bug#804159: wheezy-pu: package commons-httpclient/3.1-10.2+deb7u2
Processing control commands: > tags -1 + pending Bug #804159 [release.debian.org] wheezy-pu: package commons-httpclient/3.1-10.2+deb7u2 Added tag(s) pending. -- 804159: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=804159 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#804159: wheezy-pu: package commons-httpclient/3.1-10.2+deb7u2
Control: tags -1 + pending On Sat, 2016-01-02 at 05:22 +0100, Markus Koschany wrote: > Am 01.01.2016 um 19:28 schrieb Adam D. Barratt: > > Control: tags -1 + confirmed > > > > On Thu, 2015-11-05 at 16:10 +0100, Markus Koschany wrote: > >> similar to https://bugs.debian.org/804157, the Debian Java Team would > >> like to update commons-httpclient in Wheezy. The same information > >> apply here too. Please find attached the debdiff against the > >> version in Wheezy. > > > > Please go ahead. [...] > Uploaded. Flagged for acceptance. Regards, Adam
Bug#805634: jessie-pu: torbrowser-launcher/0.2.2-2~deb8u1
Hi, (this is maybe more to pkg-privacy-maintainers@ than to -release@, maybe not.) On Sonntag, 3. Januar 2016, Adam D. Barratt wrote: > Thanks. Please go ahead. so far I've only tested binary builds of these changes and when doing a source build now I realized that cherry-picking these patches of course changed the source and thus debuild -S failed like this: dpkg-source: error: aborting due to unexpected upstream changes, see /tmp/torbrowser-launcher_0.1.9-1+deb8u2.diff.1bVtM1 dpkg-source: info: you can integrate the local changes with dpkg-source -- commit I then ran "dpkg-source --commit" which indeed created one big patch with all the changes from the cherry-picked commits and the actual source code modifications reverted. Obviously I could upload this as it is but currently I'm not yet convinced this is the best course of action… as this will make further maintenance a bit more annoyed and this is exactly why I sympathised with the idea of uploading 0.2.2 to stable in the first place. Oh well, I will go afk to think about this. Comments or other ideas welcome. cheers, Holger signature.asc Description: This is a digitally signed message part.
Bug#805634: [Pkg-privacy-maintainers] Bug#805634: jessie-pu: torbrowser-launcher/0.2.2-2~deb8u1
On Sonntag, 3. Januar 2016, Holger Levsen wrote: > so far I've only tested binary builds of these changes… jenkins.d.n from now on also tests source builds on every commit… signature.asc Description: This is a digitally signed message part.
NEW changes in stable-new
Processing changes file: commons-httpclient_3.1-11+deb8u1_amd64.changes ACCEPT Processing changes file: ldb_1.1.17-2+deb8u1_amd64.changes ACCEPT Processing changes file: ldb_1.1.17-2+deb8u1_arm64.changes ACCEPT Processing changes file: ldb_1.1.17-2+deb8u1_armel.changes ACCEPT Processing changes file: ldb_1.1.17-2+deb8u1_armhf.changes ACCEPT Processing changes file: ldb_1.1.17-2+deb8u1_i386.changes ACCEPT Processing changes file: ldb_1.1.17-2+deb8u1_mips.changes ACCEPT Processing changes file: ldb_1.1.17-2+deb8u1_mipsel.changes ACCEPT Processing changes file: ldb_1.1.17-2+deb8u1_powerpc.changes ACCEPT Processing changes file: ldb_1.1.17-2+deb8u1_ppc64el.changes ACCEPT Processing changes file: ldb_1.1.17-2+deb8u1_s390x.changes ACCEPT Processing changes file: samba_4.1.17+dfsg-2+deb8u1_amd64.changes ACCEPT Processing changes file: samba_4.1.17+dfsg-2+deb8u1_arm64.changes ACCEPT Processing changes file: samba_4.1.17+dfsg-2+deb8u1_armel.changes ACCEPT Processing changes file: samba_4.1.17+dfsg-2+deb8u1_armhf.changes ACCEPT Processing changes file: samba_4.1.17+dfsg-2+deb8u1_i386.changes ACCEPT Processing changes file: samba_4.1.17+dfsg-2+deb8u1_mips.changes ACCEPT Processing changes file: samba_4.1.17+dfsg-2+deb8u1_mipsel.changes ACCEPT Processing changes file: samba_4.1.17+dfsg-2+deb8u1_powerpc.changes ACCEPT Processing changes file: samba_4.1.17+dfsg-2+deb8u1_ppc64el.changes ACCEPT Processing changes file: samba_4.1.17+dfsg-2+deb8u1_s390x.changes ACCEPT
NEW changes in oldstable-new
Processing changes file: commons-httpclient_3.1-10.2+deb7u2_amd64.changes ACCEPT Processing changes file: samba_3.6.6-6+deb7u6_amd64.changes ACCEPT Processing changes file: samba_3.6.6-6+deb7u6_armel.changes ACCEPT Processing changes file: samba_3.6.6-6+deb7u6_armhf.changes ACCEPT Processing changes file: samba_3.6.6-6+deb7u6_i386.changes ACCEPT Processing changes file: samba_3.6.6-6+deb7u6_ia64.changes ACCEPT Processing changes file: samba_3.6.6-6+deb7u6_kfreebsd-amd64.changes ACCEPT Processing changes file: samba_3.6.6-6+deb7u6_kfreebsd-i386.changes ACCEPT Processing changes file: samba_3.6.6-6+deb7u6_mips.changes ACCEPT Processing changes file: samba_3.6.6-6+deb7u6_mipsel.changes ACCEPT Processing changes file: samba_3.6.6-6+deb7u6_powerpc.changes ACCEPT Processing changes file: samba_3.6.6-6+deb7u6_s390.changes ACCEPT Processing changes file: samba_3.6.6-6+deb7u6_s390x.changes ACCEPT Processing changes file: samba_3.6.6-6+deb7u6_sparc.changes ACCEPT
Bug#796345: [pkg-mono-group] Bug#796345: Status report on perl 5.22 transition readiness (30th Sept)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 31/12/15 20:33, Jo Shields wrote: > > > On 31/12/15 18:48, Julien Cristau wrote: >> 3 packages from the mono-tools source break due to a dep on >> libmono-cecil-private-cil (<< 3.2.9): gendarme, mono-tools-devel, >> mono-tools-gui. AFAICT that needs a sourceful upload of >> mono-tools. > >> I might go ahead and force this in anyway, and fix up the >> leftover pieces afterwards. > > Break it. > > I need a new upstream tag of mono-tools to fix this (it's not just > a rebuild of what we have, and I don't see the point in > backporting dozens of commits against what's in Sid), and the > upstream release manager for Mono open source stuff is off on > paternity leave. And his cover for the next month appears to be off > celebrating new year. Next week, with any luck. FYI i have just uploaded mono-tools 4.2, which builds fine on Sid. -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQEcBAEBCAAGBQJWiT7CAAoJEMkPnLkOH60MDx0H/ivaWUBjyKWWWMW/q/fO6pen p9bbLGjXXbu+SDN3na503hvtR8hB8UzLRqcpmO32ngz9CqiUotwuhNXIawM3REOX HTSOnBmIeRPiE/mAsHoLDjTMCaTFjvxalNjq31Z6Kmst+dTo+r6k8Bjyt1LLUXZI v/v7NNY6i34BTQr8fIQw6soaDcEEUlFUvjUtR4pNNKqBQmAdB9CQDN0MvA+lCGGp rbVA3f5n/ByoUPlwy7u01v6yTTr0O5GdzXSJOJZHDzuf5vkdLLSY1Ws9Aho9PeQM aHWzyQk/0HizedIc5tWaskmh4oRt3MFYf/aEuwhegpvODbrwZs587PYo5M4qYOI= =F5Ao -END PGP SIGNATURE-
Bug#809757: jessie-pu: package openldap/2.4.40+dfsg-1+deb8u2
Package: release.debian.org Severity: normal Tags: jessie User: release.debian@packages.debian.org Usertags: pu Dear SRM, I would like to fix #806909 in jessie. It has been reported by different people upstream, in Ubuntu, and now in Debian as well, so the impact seems to be at least moderately widespread. The fix originates upstream and has been in testing since July. The patch changes a macro in a public header. I used codesearch.d.n to check the archive for possible users of the macro that would need to be rebuilt. The only packages I found actually using the libldap version of it are 389-ds-base and 389-dsgw, however these appear to not actually be affected, due to internal confusion in the API: they end up allocating enough memory to wrap text at 76 columns (actually 77, because of the bug), while actually wrapping it at 78, and this difference is enough to avoid any overflow according to my testing. -- System Information: Debian Release: 8.2 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'proposed-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores) Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) diff -u openldap-2.4.40+dfsg/debian/changelog openldap-2.4.40+dfsg/debian/changelog --- openldap-2.4.40+dfsg/debian/changelog +++ openldap-2.4.40+dfsg/debian/changelog @@ -1,3 +1,11 @@ +openldap (2.4.40+dfsg-1+deb8u2) jessie; urgency=medium + + * debian/patches/ITS8003-fix-off-by-one-in-LDIF-length.patch: Import +upstream patch to fix a crash when adding a large attribute value with the +auditlog overlay enabled. (Closes: #806909) + + -- Ryan Tandy Sat, 12 Dec 2015 16:11:38 -0800 + openldap (2.4.40+dfsg-1+deb8u1) jessie-security; urgency=high * Non-maintainer upload by the Security Team. diff -u openldap-2.4.40+dfsg/debian/patches/series openldap-2.4.40+dfsg/debian/patches/series --- openldap-2.4.40+dfsg/debian/patches/series +++ openldap-2.4.40+dfsg/debian/patches/series @@ -27,0 +28 @@ +ITS8003-fix-off-by-one-in-LDIF-length.patch only in patch2: unchanged: --- openldap-2.4.40+dfsg.orig/debian/patches/ITS8003-fix-off-by-one-in-LDIF-length.patch +++ openldap-2.4.40+dfsg/debian/patches/ITS8003-fix-off-by-one-in-LDIF-length.patch @@ -0,0 +1,33 @@ +From c8353f7acdec4a42f537b0d475aaae005ba72363 Mon Sep 17 00:00:00 2001 +From: Howard Chu +Date: Mon, 15 Dec 2014 14:36:55 + +Subject: [PATCH] ITS#8003 fix off-by-one in LDIF length + +must account for leading space when counting total number of lines +--- + include/ldif.h | 6 +++--- + 1 file changed, 3 insertions(+), 3 deletions(-) + +diff --git a/include/ldif.h b/include/ldif.h +index f638ef9..69bb0c9 100644 +--- a/include/ldif.h b/include/ldif.h +@@ -52,12 +52,12 @@ LDAP_LDIF_V (int) ldif_debug; + */ + #define LDIF_SIZE_NEEDED(nlen,vlen) \ + ((nlen) + 4 + LDIF_BASE64_LEN(vlen) \ +-+ ((LDIF_BASE64_LEN(vlen) + (nlen) + 3) / LDIF_LINE_WIDTH * 2 )) +++ ((LDIF_BASE64_LEN(vlen) + (nlen) + 3) / (LDIF_LINE_WIDTH-1) * 2 )) + + #define LDIF_SIZE_NEEDED_WRAP(nlen,vlen,wrap) \ + ((nlen) + 4 + LDIF_BASE64_LEN(vlen) \ +-+ ((wrap) == 0 ? ((LDIF_BASE64_LEN(vlen) + (nlen) + 3) / ( LDIF_LINE_WIDTH ) * 2 ) : \ +- ((wrap) == LDIF_LINE_WIDTH_MAX ? 0 : ((LDIF_BASE64_LEN(vlen) + (nlen) + 3) / (wrap) * 2 +++ ((wrap) == 0 ? ((LDIF_BASE64_LEN(vlen) + (nlen) + 3) / ( LDIF_LINE_WIDTH-1 ) * 2 ) : \ ++ ((wrap) == LDIF_LINE_WIDTH_MAX ? 0 : ((LDIF_BASE64_LEN(vlen) + (nlen) + 3) / (wrap-1) * 2 + + LDAP_LDIF_F( int ) + ldif_parse_line LDAP_P(( +-- +2.1.4 +
Bug#806247: wheezy-pu: package dbconfig-common/1.8.47+nmu1
I had the versioning scheme for LTS wrong. I'll update the version in the comment to 1.8.46+squeeze.1 + change the version in the dpkg comparison for wheezy to 1.8.46+squeeze.99. Paul signature.asc Description: OpenPGP digital signature
