Bug#774192: CVE-2014-9057

Control: tags -1 + patch Control: found -1 5.1.4+dfsg-4 Hi Dominic, On Tue, Dec 30, 2014 at 02:56:31AM +0100, Moritz Muehlenhoff wrote: > Source: movabletype-opensource > Severity: grave > Tags: security > > Hi, > please see https://movabletype.org/news/2014/12/6.0.6.html Attaches is the extra

Bug#774202: [pre-approval request] unblock: libsys-virt-perl/1.2.9-2

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi Release Team Since I'm quite late in the freeze timeline I rather want to ask for a pre-approval on this unblock request. libsys-virt-perl contains a rather emberassing wrong dependency,

Bug#773890: flash-kernel: No entry for BeagleBone Black when running 3.18 kernel

On Tue, 2014-12-30 at 00:37 +0100, Geert Stappers wrote: > > > > Support for alternative machine name for BeagleBone Black. > > > > The old name was ambiguous with the original BeagleBone (often called > > "White"), > > detect if booting on a BeagleBone white and print an error s

Bug#767261: xen-netback changes in #767261 break Mini-OS netfront

Hi Ian! Thank you so much for building this kernel! I just had this problem with a Windows 2012 R2 domu with GPLPV drivers from http://www.ejbdigital.com.au/1-0-1105/. dom0 has the message: [ 324.272925] vif vif-5-0: 22 feature-rx-notify is mandatory domu obviously has nothing helpful to say

Bug#774201: update-ca-certificates: allow setting the certs in a dir to the default set

On Tue, 2014-12-30 at 00:29 -0600, Michael Shuler wrote: > Will do as as soon as possible. Great, we'll also need the other patch I submitted: https://bugs.debian.org/774059 I expect neither patch will be accepted into jessie by the release team so we will have to carry a copy of the script for

Bug#773742: ITP: iortcw -- Return to Castle Wolfenstein

> You can install Win32 Steam in Wine, install RTCW and fish the data > files out, though :-) I must have did... in 2002, don't remember; then they have been rsynced many times. Finding the files automaticaly in ~/.wine/drive_c/ ... could still be a plus. For RTCW package: - the *.sp.*.so in rt

Bug#774201: update-ca-certificates: allow setting the certs in a dir to the default set

Will do as as soon as possible. Thanks, Michael.

Bug#772687: [Pkg-fonts-devel] Bug#772687: Bug#772687: Bug#772687: Bug#772687: Bug#772687: Bug#772687: fonts-droid: fallback font is installed too early to fontconfig

Norbert Preining writes: > On Tue, 30 Dec 2014, Vasudev Kamath wrote: >> I guess this clarifies the doubt regarding prior-version in maintscript. > > Indeed, sorry for not checking it myself ... No problem :-). -- Vasudev Kamath http://copyninja.info Connect on ~friendica: copyni...@samsargik

Bug#774201: update-ca-certificates: allow setting the certs in a dir to the default set

Package: ca-certificates Severity: wishlist Tags: patch X-Debbugs-CC: debian-ad...@lists.debian.org User: debian-ad...@lists.debian.org Usertags: needed-by-DSA-Team Please apply the attached patch to allow setting the certs in a dir to the default set. DSA will be using this patch to implement thi

Bug#774200: Disparity between trace file downloads

Package: live-build Version: 4.0.4-1 Lines 82-86 of the binary_disk script download a simply archive trace file from the parent bootstrap mirror. The source_disk script on the other hand has more complex logic that takes into account derivatives (lines 82-98). Surely they should both be using t

Bug#774199: linux-image-3.16.0-0.bpo.4-amd64: most cpufreq governors newly unavailable

Package: src:linux Version: 3.16.0-0.bpo.4 On my other system, which is a laptop, with linux-image-3.2.0-4-amd64 cpufrequtils starts correctly out of the box, and the contents of /sys/devices/system/cpu/cpu0/cpufreq/scaling_available_governors is: powersave userspace conservative ondemand perform

Bug#774190: unblock: libverto/0.2.4-2

Control: tags -1 + confimred moreinfo On Mon, 2014-12-29 at 20:25 -0500, Sam Hartman wrote: > Hi. It turns out that verto_setflags is broken against the > libverto-libev module, which is the one Debian uses basically all the > time. As a result, krb5-kdc cannot act as an OTP preauth server. The

Bug#772687: [Pkg-fonts-devel] Bug#772687: Bug#772687: Bug#772687: Bug#772687: Bug#772687: fonts-droid: fallback font is installed too early to fontconfig

On Tue, 30 Dec 2014, Vasudev Kamath wrote: > I guess this clarifies the doubt regarding prior-version in maintscript. Indeed, sorry for not checking it myself ... Norbert PREINING, Norbert http

Bug#772687: [Pkg-fonts-devel] Bug#772687: fonts-droid: fallback font is installed too early to fontconfig

Jonas Smedegaard writes: > Quoting Vasudev Kamath (2014-12-29 17:44:54) >> Jonas Smedegaard writes: >>> But (judging only from above comments) there might be another issue >>> with that loop not handling errors correctly. Perhaps as simple as a >>> "set -e" (although I seem to recall that mai

Bug#772687: [Pkg-fonts-devel] Bug#772687: Bug#772687: Bug#772687: Bug#772687: Bug#772687: fonts-droid: fallback font is installed too early to fontconfig

Norbert Preining writes: > Hi again > > not recommended but didn't wanted to > create multiple commits of related changes. > > > ok, not my favorite but probably ok for debian-fonts policy. Well there isn't any policy, I do this because I generate changelog from git dch command and

Bug#774185: libsys-virt-perl: Relax dependency on libvirt-bin to recommends

Hi Daniel, Thanks for your report. On Tue, Dec 30, 2014 at 01:03:46AM +0100, Daniel Gröber wrote: > right now libsys-virt-perl declares a hard dependency on libvirt-bin > which is rather silly since libvirt supports accessing remote daemons > via the network so why should this library depend on t

Bug#774198: ITP: ruby-rails-assets-jquery-fullscreen -- provide jquery-fullscreen via asset pipeline for rails apps

Package: wnpp Severity: wishlist Owner: Pirate Praveen * Package name: ruby-rails-assets-jquery-fullscreen Version : 1.14 Upstream Author : Klaus Reimer * URL : https://github.com/kayahr/jquery-fullscreen-plugin * License : Expat Programming Lang: ruby Des

Bug#774153: wheezy->jessie: systemd-tty-ask-password-agent hung

Le Mon, Dec 29, 2014 at 11:43:11PM +0100, Michael Biebl a écrit : > > I think I can reproduce the problem in a VM, having wheezy installed and > systemd v44 as PID 1. ... > If I manually run "systemctl daemon-reexec" at this point, the upgrade > continues successfully. Hello Michael and everybod

Bug#774196: Acknowledgement (Sparc netboot building broken)

Issue #4 - Location of files within mini.iso --- In addition to issue #1, upon examining the contents of a mini.iso file, I can see that lines 295 and 296 are looking in the wrong location for files from within it. They are looking for boot/vmlin

Bug#774164: libocrad-dev: libocrad.a contains non-reallocatable code

On Mon, Dec 29, 2014 at 08:24:52PM +0100, Dmitry Katsubo wrote: > Hi, Hei Dmitry, > > It turned out that the -dev package contains the code in libocrad.a > which is not compiled with -fPIC. These object files can be used when > linking the executable, but not when linking the dynamic library (my

Bug#774196: Sparc netboot building broken

Package: live-build Version: 4.0.4-1 There are one or more issues with the code in the installer_debian-installer script where it obtains vmlinuz and initrd files for sparc netboot builds. Issue #1 - Wrong path -- On line 290, it uses the path ${URL}/mini.iso, where ${

Bug#774197: Sparc netboot building broken

Package: live-build Version: 4.0.4-1 There are one or more issues with the code in the installer_debian-installer script where it obtains vmlinuz and initrd files for sparc netboot builds. Issue #1 - Wrong path -- On line 290, it uses the path ${URL}/mini.iso, where ${

Bug#774193: Minor followup

I realize I made one minor mistake in my report. The "recommended" versions div actually does enclose all the other status divs for some reason, and I think this is the crux of the problem. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Tr

Bug#774191: Please sponsor dbab, the dnsmasq-based ad-blocker

Hi Wookey, Thanks for your help, the dbab package is now officially included in Debian repo, and we have a bug report opened already. Due to the fact that dbab was removed from mentors, including the upgraded version 1.2.2-1, I've re-uploaded it to mentors again, closing bug #774191 as well this

Bug#774195: libnss3: libpkix incorrect prefers older, weaker certs over stronger, newer certs

Package: libnss3 Version: 2:3.17.2-1.1 Severity: normal Tags: upstream Upstream has this patch: https://bugzilla.mozilla.org/show_bug.cgi?id=1112461 The version in Debian does not have it (reasonable, its not released yet). Right now it causes Chrome/Chromium 40+ to show some sites as using "i

Bug#688789: /sbin/lvcreate: lvcreate/lvremove --quiet are not quiet

Package: lvm2 Version: 2.02.111-2 Followup-For: Bug #688789 I recently had the same problem with lvcreate / lvremove. I assumed a bug in the source and went looking to fix it. I learned from a source comment (lib/commands/toolcontext.c:183) that there is the -qq option for extra quietness disable

Bug#774191: [dbab] wrong path

On Mon, Dec 29, 2014 at 8:34 PM, Dimitris wrote: > just installed this package, (thanks for packaging it, looks > interesting... :-) ) > > but it is unusable, dbab service doesnt start and standalone commands > fail on a fresh install. Hi dimitris, Thanks for your interest and sorry for the pro

Bug#774194: CVE-2014-9218 CVE-2014-9219

Package: phpmyadmin Severity: grave Tags: security Please see: http://www.phpmyadmin.net/home_page/security/PMASA-2014-17.php http://www.phpmyadmin.net/home_page/security/PMASA-2014-18.php Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subje

Bug#774193: dh-make-drupal: Version table parsing broken

Package: dh-make-drupal Version: 1.8-1 Severity: important When fetching available versions, dh-make-drupal mysteriously is seeing versions listed repeatedly which are not, and is failing to filter on the status correctly, resulting in it almost always picking a development version thinking that i

Bug#774192: CVE-2014-9057

Source: movabletype-opensource Severity: grave Tags: security Hi, please see https://movabletype.org/news/2014/12/6.0.6.html Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.o

Bug#773742: ITP: iortcw -- Return to Castle Wolfenstein

Control: retitle 773742 ITP: iortcw -- Return to Castle Wolfenstein On 29/12/14 11:57, Alexandre Detiste wrote: > The SP & MP game are in the same repository, but kept separate. > Upstream allways do doubble-work when a change applies to both SP & MP > & it's possible to only builld SP. Vcs-Git:

Bug#774191: [dbab] wrong path

Package: dbab Version: 1.1.2-1 Severity: grave --- Please enter the report below this line. --- hey, just installed this package, (thanks for packaging it, looks interesting... :-) ) but it is unusable, dbab service doesnt start and standalone commands fail on a fresh install. problem is in the

Bug#774190: unblock: libverto/0.2.4-2

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package libverto Hi. It turns out that verto_setflags is broken against the libverto-libev module, which is the one Debian uses basically all the time. As a result, krb5-kd

Bug#774189: base: HDMI to TV will randomly not able to recive any signal when you turn on the PC.

Package: base Severity: important Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? When I trun off my PC and start it again. * What exactly did you do (or not do) that was effective (or ineffective)? I have

Bug#774188: O: po-debconf -- tool for managing templates file translations with gettext

Package: wnpp Severity: normal X-Debbugs-CC: debian-de...@lists.debian.org, debian-i...@lists.debian.org As I'm retiring from Debian, I intend to orphan the po-debconf package. I did not succeed in giving this package enough love in the past years and bugs are starting to pile up, but overall, th

Bug#774187: O: intltool-debian -- Help i18n of RFC822 compliant config files

Package: wnpp Severity: normal As I'm retiring from Debian, I intend to orphan the intltool-debian package. The package is important for the infrastructure which support the translation of the Debconf templates. It's maintenance should not take too much effort, but it might be worth investing mo

Bug#774186: O: sudoku -- console based sudoku

Package: wnpp Severity: normal As I'm retiring from Debian, I intend to orphan the sudoku package. I still consider the package useful, and it did not require lots of maintenance effort in the past. The package description is: This sudoku puzzle generator/solver features: * character based (c

Bug#772008: CVE request: mpfr: buffer overflow in mpfr_strtofr

On Mon, Dec 08, 2014 at 01:45:12PM +0100, Vasyl Kaigorodov wrote: > Hello, > > A buffer overflow was reported [1] in mpfr. > This is due to incorrect GMP documentation for mpn_set_str about the > size of a buffer (discussion is at [1]; first fix in the GMP > documentation is at [2]). This bug is p

Bug#774185: libsys-virt-perl: Relax dependency on libvirt-bin to recommends

Package: libsys-virt-perl Severity: normal Dear Maintainer, right now libsys-virt-perl declares a hard dependency on libvirt-bin which is rather silly since libvirt supports accessing remote daemons via the network so why should this library depend on the deamon anyways? This is not only an inco

Bug#719845: Will be easier to fix after patching findutils

I've just submitted a patch to GNU findutils that adds a -sort option doing the obvious thing. As noted in the earlier comments, this would be preferable to piping to sort. It's also a much smaller change than adding that into the pipeline. Hopefully, that will have reached upstream and been packa

Bug#774029: unblock: screen-message/0.23-1

Hi, Am Montag, den 29.12.2014, 23:42 + schrieb Jonathan Wiltshire: > Strictly speaking this upload is blocked by 0.22.2-1 which didn't migrate > before the freeze began. I'm fine with both uploads though, so unblocked. actually, 0.22.2-1 was never uploaded to unstable successfully, presumably

Bug#774029: unblock: screen-message/0.23-1

Hi, Am Montag, den 29.12.2014, 23:42 + schrieb Jonathan Wiltshire: > Strictly speaking this upload is blocked by 0.22.2-1 which didn't migrate > before the freeze began. I'm fine with both uploads though, so unblocked. thanks! Joachim -- Joachim "nomeata" Breitner Debian Developer nome..

Bug#773561: Installing "xen-linux-system-amd64" on jessie fails

Hello Ian, i´ve tried to install "xen-linux-system-amd64" on a VMware host again and everything went fine. The Installation completes and i can boot into Xen und boot up the Dom0. So, you were right. It seems to be a problem with the initscript, but as far as i can tell, only when running xen

Bug#769186: More about this issue

So , mountnfs sctipt is the script that use NetworkManager Dispatcher to mount curlftpfs system. After disabling that script, we can see at dmesg that mnt-usb.mount tries to be executed before than wpa_supplicant.service: [4.532920] systemd[1]: Installed new job mnt-usb.mount/start as 101 [

Bug#773890: flash-kernel: No entry for BeagleBone Black when running 3.18 kernel

> > Support for alternative machine name for BeagleBone Black. > > The old name was ambiguous with the original BeagleBone (often called > "White"), > detect if booting on a BeagleBone white and print an error since the DTB > will > be wrong. We don't currently support the W

Bug#772468: unblock: (pre-approval) libspring-java/3.2.12-1

On Fri, Dec 19, 2014 at 02:12:31AM +0100, Emmanuel Bourg wrote: > Le 19/12/2014 01:00, Jonathan Wiltshire a écrit : > > > Ok, I did some digging. CVE-2014-3578 seems to be unknown to some sources > > including NVD. Considering they are both meant to be directory traversal, > > I would guess it was

Bug#773890: flash-kernel: No entry for BeagleBone Black when running 3.18 kernel

On Mon, 2014-12-29 at 12:56 -0800, Vagrant Cascadian wrote: > On 2014-12-29, Ian Campbell wrote: > > On Mon, 2014-12-29 at 08:48 -0800, Vagrant Cascadian wrote: > >> On 2014-12-29, Ian Campbell wrote: > >> > could we add a check to bootscr.beaglebone which refuses to boot on a > >> > white? (looks

Bug#774183: lockfile prevents deja-dup from creating new backups

Package: deja-dup Version: 20.2-2.1 Backup consistently fails with the following error: Another instance is already running with this archive directory If you are sure that this is the only instance running you may delete the following lockfile and run the command again : /home/user/.cache/d

Bug#774184: ftp-ssl: Failed SSL context during second connection.

Package: ftp-ssl Version: 0.17.23+0.2-1+b1 Severity: important I have discovered that the client is unable to initiate an SSL context for a new connection in the same session, when a first connection has been closed properly: $ ftp -d -v -n ftp> open localhost ... ---> AUTH SSL 234 AUTH SSL OK. [

Bug#774182: Please make mate-terminal "Multi-Arch: foreign"

Package: mate-terminal Version: 1.8.1+dfsg1-3 Severity: minor Hi, Please consider adding "Multi-Arch: foreign" to debian/control, as its absence prevents apt to consider mate-terminal a valid dependency for a package built for some other architecture. For example, mate-terminal provides x-termin

Bug#773212: unblock: 0xffff/0.6.1-1

On Fri, Dec 19, 2014 at 05:03:04PM +0100, Sebastian Reichel wrote: > Hi, > > On Fri, Dec 19, 2014 at 02:18:28PM +0100, Pali Rohár wrote: > > On Wednesday 17 December 2014 20:52:00 Jonathan Wiltshire wrote: > > > On Wed, Dec 17, 2014 at 02:04:57PM +0100, Pali Rohár wrote: > > > > > We're really loo

Bug#773561: Installing "xen-linux-system-amd64" on jessie fails

> On 23 Dec 2014, at 12:59, Ian Campbell wrote: > > Control: reassign -1 xen-utils-common 4.4.1-6 > Control: retitle -1 /etc/init.d/xen fails when run in a guest, causing > postinst to fail. > > Seems like this issue is in the Xen packages not in the xen-linux-system > metapackage, so reassign

Bug#774136: Freeze exception request for gcompris 14.12

On Mon, Dec 29, 2014 at 10:08:27PM +0100, Yann Dirson wrote: > The following upstream update to gcompris has been suggested, and > after checking it seems to be to be good material, with extremely > limited-scope code-level bugfixes (which could be filtered-out if we > really want that, although I'

Bug#774036: Re: Bug#774036: linux-image-3.16.0-4-amd64: Untainted Kernel shows similar issue

Hi Emil, Am Montag 29 Dezember 2014, 14:02:55 schrieb Emil Goode: > Hello Rainer, > > The below procedure would give more information: > > Add the following line to the top of the file > /usr/lib/pm-utils/pm-functions. > > export PM_DEBUG=true > > Then suspend with: > > echo 1 > /sys/power/pm

Bug#774181: audacity: Always appends the .aiff extension when exporting to WAV

Package: audacity Version: 2.0.6-2 Severity: normal For some time now I've been having issues with the Export feature. Every time I want to export a project to a WAV file, it appends .aiff as extension to whatever filename Audacity constructed. This gets especially annoying when I forget to remove

Bug#757119: mutt: Documentation claims %a is possible in the pgp_encrypt_only_command but it's not

This is committed upstream at daf61444d454. -Kevin -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#774180: [morituri] Suggests python-pycdio, which is not available in Debian

Package: morituri Version: 0.2.3-1 Severity: normal As in subject. Best regards, -- Manolo Díaz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#774179: sysvinit: wrap-and-sort debian/control

Package: sysvinit Severity: wishlist Tags: patch Hi, these patchs are only cosmetics changes, but make control file ordered. Feel free to adjust whatever thing to improve the patches. For the second patch i've used: wrap-and-sort --verbose -f debian/control --max-line-length=5 Thanks for consider

Bug#759013: mutt: Incorrect fix in fix-configure-test-operator.patch

Just a note that this patch has been committed upstream at 80186ee6eb57. -Kevin -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#774153: wheezy->jessie: systemd-tty-ask-password-agent hung

control: reassign -1 udev control: found -1 215-8 Am 29.12.2014 um 23:43 schrieb Michael Biebl: > During the dist-upgrade, systemd 215-8 is unpacked, udev 215-8 is > unpacked, then udev hangs in the configure/postinst step trying to > "systemctl stop udev.service udev-kernel.socket udev-control.s

Bug#774153: wheezy->jessie: systemd-tty-ask-password-agent hung

Am 29.12.2014 um 16:30 schrieb Christian Brunotte: > Am Mon, 29 Dec 2014 16:13:37 +0100 > schrieb Michael Biebl : > >> control: tags -1 moreinfo >> Am 29.12.2014 um 15:57 schrieb Christian Brunotte: >>> Package: systemd >>> Version: 215-8 >>> >>> Hallo >>> >>> I tried to upgrade from wheezy to jes

Bug#774178: bind9: No SOA nor NS in samba_dlz zones

Package: bind9 Version: 1:9.9.5.dfsg-7 Severity: normal Dear Maintainer, following the upgrade to 1:9.9.5.dfsg-7 on Dec. 22nd named fails to load the DLZ zones from Samba: Dec 29 10:43:07 verdandi named[2763]: Loading 'AD Zones' using driver dlopen Dec 29 10:43:07 verdandi named[2763]: samba_d

Bug#774174: sqlite should note in description that it's v2, not v3

Oops, I attached the wrong file. Here's the patch. - Aaron -- Aaron HallLITTLE GIRL: Which one of these cookies nilsimplex.orgare you going to eat first? COOKIE MONSTER: Me think you have misconception of cookie-eat

Bug#773402: ITP: libgaminggear -- Provides functionality for gaming input devices

On Wed, Dec 17, 2014 at 06:46:56PM -0500, Tristan Schmelcher wrote: > Package: wnpp > Severity: wishlist > Owner: Tristan Schmelcher > > * Package name: libgaminggear > Version : 0.5.0 > Upstream Author : Stefan Achatz > * URL : https://sourceforge.net/projects/libgam

Bug#774177: gdm3: dual monitor configuration not restored on reboot

Package: gdm3 Version: 3.14.1-3 Severity: normal Tags: upstream Dear Maintainer, On my dual monitor system, the two screens come up in an awkward orientation (left-right and primary-secondary). This can be fixed by usin Gnome settings for display, and the result is stored correctly in .config/mo

Bug#774176: installation-reports: A20-Olinuxino Micro successful installation from USB stick to SD Card

ON="Debian GNU/Linux installer" DISTRIB_RELEASE="8 (jessie) - installer build 20141229-05:14" X_INSTALLATION_MEDIUM=hd-media == Installer hardware-summary: == uname -a: Linux manilla 3.16.

Bug#759737: debian-installer: Need preseed entry to select default grub device

Cyril Brulebois (2014-11-18): > Chris Kuehl (2014-11-17): > > Andrew's patch looks very reasonable to me, as it would allow sysadmins > > to fully automate installs without further complicating the issues > > raised in #712907 (which mostly affect interactive installs). > > > > I've spent a few

Bug#774104: failed installation of Debian 7.7.0

Yes, please close the ticket. I completely removed Debian from the computer. Sorry, I've been stuck on various problems with the ThinkPad for several weeks now, and need to move forward, even if the solutions are not ideal. In hindsight I think I should have purchased a ThinkPad with Linux alre

Bug#774175: RFS: libgaminggear/0.5.0-1 [ITP]

Package: sponsorship-requests Severity: wishlist Dear mentors, I am looking for a sponsor for my package "libgaminggear". Packaging this library is a prerequisite for packaging "roccat-tools", which I intend to do too. * Package name: libgaminggear Version : 0.5.0-1 Upstre

Bug#774174: sqlite should note in description that it's v2, not v3

Package: sqlite Severity: minor Tags: patch The "sqlite" packages should explicitly note in their descriptions that they're for SQLite 2, not SQLite 3. It's a small thing, but it may save users from confusion and frustration, especially if they've never installed the sqlite3 package on Debian befo

Bug#764630: RFS: javatools 0.48 [RC]

On Sun, 21. Dec 09:57 tony mancill wrote: > On 12/15/2014 12:06 AM, Mathieu Malaterre wrote: > > On Sun, Dec 14, 2014 at 6:50 PM, Markus Koschany wrote: > > [...] > >> Actually what was the reasoning behind the choice to use a custom shell > >> script like jarwrapper instead of jexec to register

Bug#774134: pre-approval: unblock: wader/0.5.12-1.1

Hi Alex Thanks for the prompt response. Please file Request for Adoption (RFA) or Orphan (O) bugs [1] for the packages you no longer have time to maintain and cc me on the wader one so I can close it with my next upload. Regards Graham [1] https://www.debian.org/doc/manuals/developers-referen

Bug#765682: script to yield a pot-file for internationalization of w3m's documentation

Dear Tatsuya, Mario, a member of the German translation team recommended to write and use a bash script that creates a common pot-file from the diverse files that contain strings that should be extracted. Find an example of such a file attached. Marios' mail http://lists.alioth.debian.org/piper

Bug#773971: Update: Danish hunspell dictionary version 2.2 - 2014-12-22

On Sat, Dec 27, 2014 at 10:58:58AM +0100, Rene Engelhard wrote: > On Fri, Dec 26, 2014 at 11:42:25AM +, Esben Aaberg wrote: > > We have just released version 2.2 of the danish hunspell dictionary, you > > are currently shipping version 1.6. in hunspell-da (1:3.3.0-4) > > And this won't change

Bug#772687: [Pkg-fonts-devel] Bug#772687: Bug#772687: Bug#772687: Bug#772687: fonts-droid: fallback font is installed too early to fontconfig

Hi again > not recommended but didn't wanted to > create multiple commits of related changes. ok, not my favorite but probably ok for debian-fonts policy. > But actually, we are renaming conffile in -6 so this should be -6~ > right?. I re-read that paragraph > > "For example, for a conffile re

Bug#770009: Fwd: Bug#773865: unblock: imagemagick/8:6.8.9.9-4 [security]

control: severity -1 serious Justification below. Security team: -- Forwarded message -- From: Ivo De Decker Date: Fri, Dec 26, 2014 at 11:23 PM Subject: Re: Bug#773865: unblock: imagemagick/8:6.8.9.9-4 [security] To: Bastien ROUCARIES , 773...@bugs.debian.org Control: tags -1

Bug#774173: [RC] RFS: imagemagick/8:6.8.9.9-5

Package: sponsorship-requests Severity: important Dear mentors, I am looking for a sponsor for my package "imagemagick" * Package name: imagemagick Version : 8:6.8.9.9-5 Section : graphics It builds those binary packages: imagemagick - image manipulation prog

Bug#767261: xen-netback changes in #767261 break Mini-OS netfront

On Mon, 2014-12-29 at 16:56 +0100, Martin Lucina wrote: > i...@debian.org said: > > On Mon, 2014-12-29 at 12:56 +, Ian Campbell wrote: > > > > > > Should I reopen #767261 or file a new bug for this? > > > > > > A new bug would be best please. > > > > Actually, no need for this, I've applied

Bug#774171: unrar: symlink directory traversal

Package: unrar Version: 1:5.0.10-1 Tags: security UNRAR follows symlinks when unpacking stuff, even the symlinks that were created during the same unpack process. It is therefore possible to create a malicious RAR archive that will be unpacked into arbitrary directory outside cwd. Proof of co

Bug#774172: rar: symlink directory traversal

Package: rar Version: 2:4.2.0-1 Tags: security RAR follows symlinks when unpacking stuff, even the symlinks that were created during the same unpack process. It is therefore possible to create a malicious RAR archive that will be unpacked into arbitrary directory outside cwd. Proof of concept

Bug#774170: reportbug-ng corrupts non-ACSII characters in summary

Package: reportbug-ng Version: 1.31 Severity: normal --- Please enter the report below this line. --- Reportbug-NG requests to enter a ‘Summary’ for a new bug that will be used as a subject for e-mail message. The problem is that it somehow corrupts multibyte (UTF-8) characters, so that MUA re

Bug#774134: pre-approval: unblock: wader/0.5.12-1.1

Hi, I no longer have time to maintain wader and would be happy to turn over maintenance of the package. Sorry for any inconvenience I've caused. On Mon, Dec 29, 2014 at 1:03 PM, Graham Inggs wrote: > On 29 December 2014 at 23:01, Graham Inggs wrote: > > Hi Jonathan > > > > On 29 December 2014

Bug#758086: CVE-2012-6153: Apache HttpComponents client: Hostname verification susceptible to MITM attack

On Mon, Sep 22, 2014 at 03:56:00PM +0200, Raphael Hertzog wrote: > Hi, > > On Mon, 18 Aug 2014, Salvatore Bonaccorso wrote: > > On Thu, Aug 14, 2014 at 11:43:32PM +0200, Emmanuel Bourg wrote: > > > Is there an example available somewhere of a subject improperly parsed > > > by commons-httpclient/3

Bug#774169: live-tools gives error code 2 when trying to upgrade to ver. 4.0.2-1

Package: live-tools Version: 3.0.20-1 Severity: important Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? trying to upgrade to version 4.0.2-1 (jessie) * What exactly did you do (or not do) that was eff

Bug#774136: Freeze exception request for gcompris 14.12

Hi Release Team, The following upstream update to gcompris has been suggested, and after checking it seems to be to be good material, with extremely limited-scope code-level bugfixes (which could be filtered-out if we really want that, although I'd think it would be better to have them in as well)

Bug#774168: RFS: jmapviewer/1.05+dfsg-1~exp1

Package: sponsorship-requests Severity: normal Dear mentors, I am looking for a sponsor for my package "jmapviewer" Package name: jmapviewer Version : 1.05+dfsg-1~exp1 Upstream Author : Jan Peter Stotz and others URL : https://wiki.openstreetmap.org/wiki/JMapViewer L

Bug#773671: [Pkg-javascript-devel] Bug#773671: libv8-3.14: multiple security issues

On Mon, Dec 29, 2014 at 12:28:30PM +0100, Bálint Réczey wrote: > Hi Moritz, > > 2014-12-29 3:01 GMT+01:00 Moritz Mühlenhoff : > > On Sun, Dec 21, 2014 at 03:19:42PM -0500, Michael Gilbert wrote: > >> package: src:libv8-3.14 > >> severity: grave > >> tags: security > >> > >> Hi, > >> > >> the follo

Bug#774167: owncloud: HTTP access works, HTTPS just returns empty document

Package: owncloud Version: 7.0.2+dfsg-1~bpo70+2 Severity: important Dear Maintainer, After installing the package and completing the installation wizard steps, I can now create users &c. − but only using HTTP (http://localhost/owncloud). Although HTTPS works fine in general (https://localhost),

Bug#774134: pre-approval: unblock: wader/0.5.12-1.1

On 29 December 2014 at 23:01, Graham Inggs wrote: > Hi Jonathan > > On 29 December 2014 at 20:12, Jonathan Wiltshire wrote: >> Control: tag -1 moreinfo >> >> On Mon, Dec 29, 2014 at 12:08:57PM +0200, Graham Inggs wrote: >>> Please consider the attached debdiff to fix a FTBFS in wader (bug #768756

Bug#774134: pre-approval: unblock: wader/0.5.12-1.1

Hi Jonathan On 29 December 2014 at 20:12, Jonathan Wiltshire wrote: > Control: tag -1 moreinfo > > On Mon, Dec 29, 2014 at 12:08:57PM +0200, Graham Inggs wrote: >> Please consider the attached debdiff to fix a FTBFS in wader (bug #768756). >> Wader was removed from Jessie on 2014-12-08, however I

Bug#774166: unrar: missing newline after error message

Package: unrar Version: 1:5.0.10-1 Severity: minor If I pass invalid option to unrar, there's no newline after the error message: $ unrar -b || echo '<-- missing newline' ERROR: Unknown option: b<-- missing newline -- System Information: Debian Release: 8.0 APT prefers unstable APT policy

Bug#773890: flash-kernel: No entry for BeagleBone Black when running 3.18 kernel

On 2014-12-29, Ian Campbell wrote: > On Mon, 2014-12-29 at 08:48 -0800, Vagrant Cascadian wrote: >> On 2014-12-29, Ian Campbell wrote: >> > could we add a check to bootscr.beaglebone which refuses to boot on a >> > white? (looks like we can look at $board_name directly). >> >> Yes, that should wo

Bug#774104: failed installation of Debian 7.7.0

Hi, g...@garymlewis.com wrote: > Hi Holger - Good idea; seemed hopeful. But I cannot get to the command > line to add /etc/modprobe.d/disable-nouveau.conf with the recommended > option for nouveau modeset. > > I appreciate your help, but will return to Ubuntu 14.04. It gives me an > acceptable

Bug#773916: libical: Ship different constant values accross builds

On Thu, 25 Dec 2014 16:46:14 +0100 =?iso-8859-1?B?Suly6W15?= Bobbio wrote: > Package: libical-dev > Version: 1.0-1.1 > Severity: critical > User: reproducible-bui...@lists.alioth.debian.org > Usertags: randomness > > Hi! > > While working on the “reproducible builds” effort [1], we have notic

Bug#773502: Update

Were these ever handled? Thanks, -- -- Joshua Rogers signature.asc Description: OpenPGP digital signature

Bug#737305: libvte9: please include scroll_region_updates.patch from vte3 package

The precise patch that should be applied is available at: https://bug542087.bugzilla-attachments.gnome.org/attachment.cgi?id=176035 This was applied upstream at: https://git.gnome.org/browse/vte/commit/?id=88e8e89560a62d0981ce2b18974a230d0a07dbdd I was able to apply the bugzilla patch to the so

Bug#767261: xen-netback changes in #767261 break Mini-OS netfront

i...@debian.org said: > On Mon, 2014-12-29 at 12:56 +, Ian Campbell wrote: > > > > Should I reopen #767261 or file a new bug for this? > > > > A new bug would be best please. > > Actually, no need for this, I've applied the fixes locally and am just > building them before pushing. Note that

Bug#582567: wicd forces a wifi disconnection after a temporary deauthentication

Control: tags -1 638591 patch upstream On 2014-12-29 02:31:40 +0100, Vincent Lefevre wrote: [...] > part. But since when the GUI is open, I do not get the > "Autoconnecting..." log message, this means that all this > code was not executed in this particular case, and that > the above change cannot

Bug#774057: [racket-dev] support for arm64 / aarch64

It looks like this patch was submitted for v6.1. Version 6.1.1 (the current release), uses SGC instead of Boehm's GC during the build process by default. So, it at least avoids this immediate problem. I can't think of any other problem that would turn up in v6.1.1, but I'm not sure it will work. W

Bug#773742: ITP: rtcw-sp -- military/occult WWII first-person shooter game - single player version

On 29/12/14 11:57, Alexandre Detiste wrote: >> Steam > This game is on Steam but Windons only ?! > It's the same for ROTT, I guess some generic support for reading > Steam data would make sense. Unfortunately, the only way to get RTCW data seems to be to install it under Windows or Wine (from the

  1   2   3   >