Package: ftp.debian.org
Severity: normal
Hi,
I've read on r-cran-vim excuses[1]:
removing r-cran-vim/6.0.0+dfsg-2/armel from testing makes
r-bioc-destiny/3.4.0-1/armel uninstallable
Since it is important that r-cran-vim migrates to testing and its
sensible to assume that there are no practic
Hi Kevin,
On Wed, Feb 10, 2021 at 11:20:38AM -0800, Kevin Ushey wrote:
> Perhaps I'm misunderstanding, but there is a Debian patch for RcppParallel
> here:
>
> https://sources.debian.org/patches/r-cran-rcppparallel/5.0.2+dfsg-3/use_debian_packaged_libtbb.patch/
>
> and all that does is force Rc
Package: zstd
Version: 1.4.8+dfsg-1
Severity: grave
Tags: security
X-Debbugs-Cc: t...@security.debian.org
The recently applied patch still creates the file with the default
umask[0], before chmod'ing down to 0600, so an attacker could still open
it in the meantime.
Cheers,
--
Seb
[0] https://g
Hi Julian,
Quoting Julian Gilbey (2021-02-11 08:20:45)
> When trying to build amp and spherepack on my Debian testing machine, I get a
> build failure, but I don't if I use pbuilder. Johannes Schauer Marin
> Rodrigues has kindly identified the source of the problem, in
> https://lists.debian.org/
Package: sbuild
Version: 0.81.2
Severity: normal
When trying to build amp and spherepack on my Debian testing machine,
I get a build failure, but I don't if I use pbuilder. Johannes
Schauer Marin Rodrigues has kindly identified the source of the
problem, in
https://lists.debian.org/debian-devel/2
Package: ftp.debian.org
X-Debbugs-Cc: mric...@packages.debian.org
Dear FTP Masters,
Please remove existing mipsel binaries for mricron. The new version
can't be built on mipsel as src:lazarus does not make lcl-qt5 available
on that architecture.
Thanks!
--
Juhani
Source: mricron
Version: 1.0.20190902+dfsg-1
Tags: ftbfs
Severity: serious
Hello,
mricron FTBFS on arm64 and mips64el. The error messages look like this:
(9009) Assembling cutout
/<>/RenderThds.pas(79,44) Error: (3069) Call by var for arg no. 1
has to match exactly: Got "LongWord" expected "TRT
Moin
On Thu, Feb 11, 2021 at 10:15:02AM +0800, YunQiang Su wrote:
> > Could the mips porters comment on this? Given that we're close to the
> > release
> > of bullseye, I'm not convinced it's a good idea to change this now.
This option is also a dependency of several types of CPU support. So it
Package: ftp.debian.org
Severity: normal
X-Debbugs-Cc: kar...@debian.org
Dear FTP Team,
Please remove apertium-swe from Unstable. It is no longer needed by
new apertium language pairs.
Thanks,
Kartik
Package: ftp.debian.org
Severity: normal
X-Debbugs-Cc: kar...@debian.org
Dear FTP Team,
Please remove apertium-srd from Unstable. It is no longer needed by
new apertium language pairs.
Thanks,
Kartik
Package: ftp.debian.org
Severity: normal
X-Debbugs-Cc: kar...@debian.org
Dear FTP Team,
Please remove apertium-rus from Unstable. It is no longer needed by
new apertium language pairs.
Thanks,
Kartik
Package: ftp.debian.org
Severity: normal
X-Debbugs-Cc: kar...@debian.org
Dear FTP Team,
Please remove apertium-pol from Unstable. It is no longer needed by
new apertium language pairs.
Thanks,
Kartik
Package: ftp.debian.org
Severity: normal
X-Debbugs-Cc: kar...@debian.org
Dear FTP Team,
Please remove apertium-oci from Unstable. It is no longer needed by
new apertium language pairs.
Thanks,
Kartik
Package: libfilezilla11
Version: 0.26.0-1+b1
Severity: important
Tags: patch
Hello,
While using
filezilla v3.52.2-3
and
libgnutls30 v3.7.0-5
I was unable to make a PASV connection to a PureFTP server, but after
downgrading to
libgnutls30 v3.6.15-4
everything worked.
-- System Infor
The first patch appears to have been mangled in transit (whitespace),
so disregard that. The attached compressed patch should be integrous.
diagnostics_0.3.3-12-no-ltdl-convenience.patch.gz
Description: application/gzip
On Wed, Feb 10, 2021 at 05:41:29PM +0100, Cyril Brulebois wrote:
> Patches fail to apply locally, and I'd rather avoid having to fix
> them up (possibly breaking things in the process).
Strange: When I download the patches from BTS somehow they have
mangled whitespace whereas my local patches don
Control: tags -1 + fixed-upstream
Hi,
On Wed, Feb 10, 2021 at 11:28:43AM +0100, Salvatore Bonaccorso wrote:
> Source: xterm
> Version: 365-1
> Severity: important
> Tags: security upstream
> X-Debbugs-Cc: car...@debian.org, Debian Security Team
>
>
> Hi
>
> See https://www.openwall.com/lists/
Hi Markus,
On Thu, Feb 11, 2021 at 03:03:19AM +0100, Markus Koschany wrote:
> Hi Salvatore,
>
> Am Mittwoch, den 10.02.2021, 22:03 +0100 schrieb Salvatore Bonaccorso:
> [...]
> >
> > I'm not fully in favor to have all the (build-)rdeps forced out of
> > Debian, that would likely not be a benefit
Hi Simon
You are fast! :)
On Thu, Feb 11, 2021 at 12:38:22AM +, Simon McVittie wrote:
> On Wed, 10 Feb 2021 at 22:47:35 +0100, Salvatore Bonaccorso wrote:
> > game-data-packager uild-Depends on xcftools which ideally should not
> > be released with bullseye. As it looks xcftools is used for c
Hi James,
On Wed, Feb 10, 2021 at 08:49:39PM -0500, James McCoy wrote:
> On Wed, Feb 10, 2021 at 09:21:54PM +0100, Salvatore Bonaccorso wrote:
> > Hi James,
> >
> > On Wed, Feb 10, 2021 at 03:20:22PM -0500, James McCoy wrote:
> > > On Wed, Feb 10, 2021 at 03:36:11PM +0100, Salvatore Bonaccorso wr
Package: wnpp
Severity: wishlist
X-Debbugs-Cc: debian-de...@lists.debian.org
X-Debbugs-Cc: debian-pyt...@lists.debian.org
Owner: Sandro Tosi
* Package name: flask-basicauth
Version : 0.2.0
Upstream Author : Janne Vanhala
* URL : https://github.com/jpvanhal/flask-basic
Hi Taowa,
Thank you! I tested using the last six digits in the UI and that was
accepted by a login provider (Github). Hopefully upstream fixes this issue
quickly.
Let me know if you want me to file a separate bug. I think the severity is
reduced with this workaround.
Best regards,
Jason Hernandez
Package: wnpp
Severity: wishlist
X-Debbugs-Cc: debian-de...@lists.debian.org
X-Debbugs-Cc: debian-pyt...@lists.debian.org
Owner: Sandro Tosi
* Package name: locust
Version : 1.4.3
Upstream Author : Carl Byström, Jonatan Heyman
* URL : https://locust.io/
* License
[ Sorry for not getting back to your earlier ]
Theodore Ts'o wrote...
> What could have happened on your file system? Well, there are two
> scenarios that could explain what had happened:
After some more desastrous experiences (kernel stack traces and
segfaults) I assume serious hardware issues
Package: zfsutils-linux
Version: 2.0.1-3
Severity: normal
Dear Maintainer,
on a host where the ZFS installation is based on harddisks, the
/usr/lib/zfs-linux/trim cronjob triggers e-mails with the body
| cannot trim: no devices in pool support trim operations
The reason for this is fairly obvio
Package: lxc
Version: 1:4.0.6-1
I've been happily using lxc on debian for some time, without dnsmasq-base or lxc-net. The recent addition of
dnsmasq-base and lxc-net as a required dependency is somewhat surprising, given lxc-net edits IP address information for
lxc-attched bridges which were cr
After a couple days of regular Web browsing on two different computers running
Debian Sid, the silent add-on disabling did not happen again.
I marked this bug as fixed in version 85.0.1-1 since no one reported otherwise,
but feel free to chime in if you actually still get this issue with 85.0.1-
Ivo De Decker 于2021年2月9日周二 下午9:45写道:
>
> Hi,
>
> On Mon, Jun 08, 2020 at 08:15:38PM +0300, Adrian Bunk wrote:
> > On Fri, May 29, 2020 at 11:03:14PM +0200, Aurelien Jarno wrote:
> > > On 2020-05-28 09:04, YunQiang Su wrote:
> > > > Adrian Bunk 于2020年5月21日周四 下午3:40写道:
> > > > > On Thu, May 21, 202
Package: ftp.debian.org
Severity: normal
Dear colleagues,
`chaksem' is no longer available from the location mentioned in it's copyright
file. The source only exists now in Debian (archives, salsa) AFAIK.
I personally have no use for a LaTeX slide deck class, and there are many like
it in the
Hi Salvatore,
Am Mittwoch, den 10.02.2021, 22:03 +0100 schrieb Salvatore Bonaccorso:
[...]
>
> I'm not fully in favor to have all the (build-)rdeps forced out of
> Debian, that would likely not be a benefit as seems unfair to the
> castle-game-engine, game-data-packager and neurodebian packages,
On Wed, Feb 10, 2021 at 09:21:54PM +0100, Salvatore Bonaccorso wrote:
> Hi James,
>
> On Wed, Feb 10, 2021 at 03:20:22PM -0500, James McCoy wrote:
> > On Wed, Feb 10, 2021 at 03:36:11PM +0100, Salvatore Bonaccorso wrote:
> > > The following vulnerability was published for subversion.
> > >
> > >
Hi Tavis,
thanks for having a look into this!
Tavis Ormandy wrote:
> On 2021-02-10, Axel Beckert wrote:
> > + else if (i < sizeof combchars / sizeof *combchars) {
>
> This doesn't seem right, I think it should be compared against the
> calloc param at the top of utf8_handle_comb(),
Good point,
Package: ftp.debian.org
Severity: normal
X-Debbugs-Cc: stephanlach...@protonmail.com
Last upload was in 2013. Upstream is dead (website doesn't even exit anymore).
This applies to the entire old cernlib stack:
geant321, cernlib, paw
Regards,
Stephan
On Wed, 2021-02-10 at 18:35 -0500, Sandro Tosi wrote:
> +Steffen explicitly, given the team is not in Maintainer nor
> Uploaders
>
> > How about renaming the current python3-louvain package to
> > python3-community-louvain using a normal transition package.
>
> that's incorrect: src:python-louvai
On Wed, 10 Feb 2021 at 22:47:35 +0100, Salvatore Bonaccorso wrote:
> game-data-packager uild-Depends on xcftools which ideally should not
> be released with bullseye. As it looks xcftools is used for calling
> xcf2png. In the makefile there is already even the casing to fall back
> to convert from
On Wednesday, 10 February 2021 6:47:24 PM AEDT Adrian Bunk wrote:
> Yes, I think this is just a bug in libantlr4-runtime-dev with a simple
> fix to its headers.
Perhaps it is simple for you but I don't understand how to address the
problem...
> Errors regarding MYSQL_TYPE_INVALID being undefined
Sean Whitton, le mer. 10 févr. 2021 16:44:30 -0700, a ecrit:
> On Thu 11 Feb 2021 at 12:21AM +01, Samuel Thibault wrote:
> > Sean Whitton, le lun. 08 févr. 2021 11:10:43 -0700, a ecrit:
> >> On Mon 08 Feb 2021 at 10:19AM +01, Chris Hofstaedtler wrote:
> >> >
> >> > bsdmainutils has become a transit
Hi Nicoo,
> Being an alpha version is not a bug. This was coordinated with upstream,
> who is working to ensure there's a final 4.0 release soon.
You might want to talk with release managers about this, not upstream.
> Yes, there is a UI bug in yubioath-desktop now (extraneous data getting
> di
> "Sean" == Sean Whitton writes:
Sean> Hello,
Sean> So, just to confirm, you're saying that you think that you or
Sean> people you know would end up doing the latter pretty regularly
Sean> if we were to decide to turn off compression?
I know for larger packages I'd be likely
+Steffen explicitly, given the team is not in Maintainer nor Uploaders
> How about renaming the current python3-louvain package to
> python3-community-louvain using a normal transition package.
that's incorrect: src:python-louvain builds a module called
`community` (that includes also a cli tool)
With attached debdiff I was able to build and install:
manpages-de (4.9.2-1.1~dileks)
- Sedat -
manpages-l10n-4_9_2-1_dileks-v2.debdiff
Description: Binary data
On Thu, 2021-02-11 at 00:23 +0100, Guillem Jover wrote:
On Tue, 2008-03-04 at 18:28:45 +0900, Paul Wise wrote:
> > I'd like a script to transfer data to and login to the Debian
> > porting machines that are up and available to me.
>
> This seems quite some requirements, when I think most people te
On Thu, Feb 11, 2021 at 12:23:34AM +0100, Guillem Jover wrote:
> I'm also not sure what license Faidon would like to add to this.
> Personally I'd be fine with permissive or copyleft, or whatever other
> default license is used in devscripts.
I don't think I ever considered my one-liner copyrighta
On Wed, 2021-02-10 at 22:01 +, Dominic Hargreaves wrote:
> On Sun, Feb 07, 2021 at 11:42:43PM +, Dominic Hargreaves wrote:
> > Andrew, was this intentional? Maybe we should just restore that
> > part
> > of the patch?
>
> Ah, I expect the change to /usr/bin/gpg was lost when applying an
>
Control: tag -1 patch
Hi!
On Tue, 2008-03-04 at 18:28:45 +0900, Paul Wise wrote:
> Package: devscripts
> Version: 2.10.18.1
> Severity: wishlist
> I'd like a script to transfer data to and login to the Debian porting
> machines that are up and available to me. The script could:
>
> * con
Sean Whitton, le lun. 08 févr. 2021 11:10:43 -0700, a ecrit:
> On Mon 08 Feb 2021 at 10:19AM +01, Chris Hofstaedtler wrote:
> > Package: ftp.debian.org
> > Severity: normal
> >
> > Hi,
> >
> > bsdmainutils has become a transitional package in bullseye. It would be
> > great if we don't install it b
On Wed, Feb 10, 2021 at 05:51:50PM +0100, Axel Beckert wrote:
>
> It though doesn't crash an unpatched screen.
>
Hey Axel, I tried to reply to your screen-devel post, but it's taking a
while to subscribe!
Here is the message I sent:
On 2021-02-10, Axel Beckert wrote:
> + else if (i < sizeof c
Package: redis-server
Version: 5:6.0.9-4
Severity: severe
Tags: upstream patch
Forwarded: https://github.com/redis/redis/pull/7958
Control: block 982209 with -1
Discoved due to autopkgtest timeouts on the python-limits package
(#982209).
redis-server crashes with a SIGBUS when you start clusterin
On Wed, 10 Feb 2021 20:46:30 +0200, Niko Tyni wrote:
> From what I can see the libdist-zilla-plugin-requiresexternal-perl
> autopkgtest checks didn't get triggered for libtest-output-perl testing
> migration at all. I don't understand why.
Maybe because libtest-output-perl is "only" a build depen
Am 10.02.2021 um 22:36 teilte Ramiro Checa-Garcia mit:
Hi,
Here I am reporting an issue I found to compile a LaTeX document with
pdflatex or latexmk when I use the Copernicus Publications Template.
Here I describe the issue (this is my first bug-report, please don't
hesitate to ask further info
For a little more context, see discussion at
https://github.com/googlefonts/noto-emoji/pull/213. In particular note
that this design upstream (i.e. in Noto) is actually motivated by a
need to be consistent with Apple, which made the change from pistol to
water gun about two years earlier. In this c
On Sun, Feb 07, 2021 at 11:42:43PM +, Dominic Hargreaves wrote:
> [Adding Andrew as the person who has recently worked on the package]
>
> On Sun, Feb 07, 2021 at 03:28:48PM -0500, Aaron M. Ucko wrote:
> > Dominic Hargreaves writes:
> >
> > > As a hunch, I changed the default from 'gpg' to '
Source: neurodebian
Version: 0.40.1
Severity: serious
Justification: Depends on xcftools unfit for bullseye release
X-Debbugs-Cc: car...@debian.org,t...@security.debian.org
Control: block 982499 by -1
neurodebian Build-Depends on xcftools which ideally should not be
released with bullseye. As it l
Source: game-data-packager
Version: 66
Severity: serious
Justification: Depends on xcftools unfit for bullseye release
X-Debbugs-Cc: car...@debian.org,t...@security.debian.org
Control: block 982499 by -1
Hi
game-data-packager uild-Depends on xcftools which ideally should not
be released with bull
Package: texlive-full
Version: 2020.20210202-2
Severity: normal
Tags: upstream
Dear Maintainer,
Here I am reporting an issue I found to compile a LaTeX document with
pdflatex or latexmk when I use the Copernicus Publications Template.
Here I describe the issue (this is my first bug-report, please
On Wed, 10 Feb 2021, Juhani Numminen wrote:
The xorn executable is not too well suited to be in libgeda47 because
its name does not change with SONAME which would make library
transitions difficult.[2] So perhaps put xorn live in geda-utils then?
The xorn executable is called internally, so pac
Source: castle-game-engine
Version: 6.4+dfsg1-5
Severity: serious
Justification: Depends on xcftools unfit for bullseye release
X-Debbugs-Cc: car...@debian.org,t...@security.debian.org
Control: block 982499 by -1
Hi
castle-game-engine Build-Depends on xcftools which ideally should not
be released
Source: xcftools
Version: 1.0.7-6
Severity: serious
Justification: dead upstream, not fit for stable release
X-Debbugs-Cc: car...@debian.org, Debian Security Team
Hi
xcftools is at it looks dead upstream and on the last security issues
reported (CVE-2019-5086 CVE-2019-5087, #945317) there never
On 09/02/2021 06:38, Borden wrote:
> On Sat, 6 Feb 2021 10:34:19 +0100 Roland Clobus wrote:
>> I have a patch in preparation. I'm reviewing it and will send a merge
>> request soon.
>
> That's great. Is it in a repo where I can test it? I'm a bit impatient to get
> my custom live-boot working so
Control: tags - help
On Thu, 21 Jan 2021 16:31:29 +0100 Michel Le Bihan
wrote:
Hello,
I built Chromium with ozone, but I'm not sure if it's ready for Debian
yet. It will need testing. You can test it, if you want:
https://lebihan.pl/chromium/chromium_88.0.4324.96-ozone.tar
Currently, I only b
Control: tags 981969 + patch
Dear maintainer,
I've prepared an NMU for ddd (versioned as 1:3.3.12-5.3). The diff
is attached to this message.
Cheers
--
Sebastian Ramacher
diff -Nru ddd-3.3.12/debian/changelog ddd-3.3.12/debian/changelog
--- ddd-3.3.12/debian/changelog 2019-10-03 14:13:39.00
Hi Markus,
On Wed, Feb 10, 2021 at 03:17:57PM +0100, Markus Koschany wrote:
> Hello Salvatore,
>
> Am Mittwoch, den 10.02.2021, 06:30 +0100 schrieb Salvatore Bonaccorso:
> [...]
> > Question back on this.
> >
> > Is it confirmed that it fixes both CVE-2019-5086 (TALOS-2019-0878,
> > https://gith
Package: wnpp
Severity: wishlist
* Package name: sequeler
Version : 0.8.0
Upstream Author : Alessandro Castellani
* URL : https://github.com/Alecaddd/sequeler
* License : GPL-3.0
Programming Lang: Vala
Description : Sequeler is a SQL client built in Val
Hi Bastian,
On Wed, Feb 10, 2021 at 06:55:57PM +0100, Bastian Blank wrote:
> Control: retitle -2 r-cran-rcppparallel: generates broken load path for
> libtbb and fails on several architectures
Thanks a lot for the bug report including explanation and patch.
> - r-cran-rcppparallel trying to wor
On Wed, Feb 10, 2021 at 9:50 PM Craig Small wrote:
>
>
>
> On Thu, 11 Feb 2021 at 07:39, Sedat Dilek wrote:
>>
>> Small nit:
>> On a quick view on latest manpages-l10n I still see the duplicates in
>> debian/rules e.g. kill.1 (manpages-de).
>
> The criteria for removing a page out of manpages-* i
On 2021-02-01 23:50:03 [+0100], To Kurt Roeckx wrote:
> in case someone wants to test.
> I think the ship for this pu is sailing without me but I'm ready for the
> next cruise :)
OpenSSL upstream announced [0] 1.1.1j for next Tuesday with a security
fix classified as MODERATE [1].
[0] https://mta
On 10 February 2021 at 20:35, Bastian Blank wrote:
| On Wed, Feb 10, 2021 at 01:30:10PM -0600, Dirk Eddelbuettel wrote:
| > Thanks for the CVE. I am happy to discuss this with R Core and one fellow in
| > particular.
| > Before I do so can you clarify what you think the issue is? Loading from
|
On Thu, 11 Feb 2021 at 07:39, Sedat Dilek wrote:
> Small nit:
> On a quick view on latest manpages-l10n I still see the duplicates in
> debian/rules e.g. kill.1 (manpages-de).
>
The criteria for removing a page out of manpages-* is actually more
complicated than that. It's not just "does the proc
Package: debian-cd
Version: 3.1.33
Severity: wishlist
User: de...@kali.org
Usertags: origin-kali
X-Debbugs-Cc: raph...@offensive-security.com
We're working on getting Kali to work as a VM on the Apple M1 and so we
are trying to build arm64 installer images with simple-cdd (and thus
debina-cd). In
On Wed, Feb 10, 2021 at 9:38 PM Sedat Dilek wrote:
>
> On Wed, Feb 10, 2021 at 8:59 PM Craig Small wrote:
> >
> > For testing this I installed Procps and *all*of the generated man pages and
> > that seemed to be fine.
> >
> > That's slightly different to the patch I put in the bug report but I
Control: tags 981846 + patch
Control: tags 981846 + pending
Dear maintainer,
I've prepared an NMU for python-argcomplete (versioned as 1.8.1-1.4) and
uploaded it to DELAYED/2. Please feel free to tell me if I
should delay it longer.
Cheers
--
Sebastian Ramacher
diff -Nru python-argcomplete-1.8.
On Wed, Feb 10, 2021 at 8:59 PM Craig Small wrote:
>
> For testing this I installed Procps and *all*of the generated man pages and
> that seemed to be fine.
>
> That's slightly different to the patch I put in the bug report but I emailed
> Helge the difference.
>
Thanks Craig.
Small nit:
On a
I just tried using cuetag, and got a rapid slew of
> 10: syntax error
We find this on line 10
08 | TITLE "Matka"
09 | PERFORMER "A-Men"
>>10 | SIZE_INFO { 0, 1, 15, 0, 46, 8, 0, 0, 0, 0, 0, 0,
11 | 0, 0, 0, 0, 0, 0, 0, 3, 56, 0, 0, 0,
12 |
On Wed, 10 Feb 2021 at 21:33, Stefano Rivera wrote:
>
> Hi Kostis (2021.01.21_05:52:57_-0800)
>
> I think there are two issues to solve here:
>
> 1: Tighten the dependency on python3-distutils, to avoid this happening.
>
> 2: The thing that prints out the instructions to install python3-venv
>
Source: acpica-unix
Version: 20200925-1
Severity: serious
Tags: ftbfs
Justification: fails to build from source (but built successfully in the past)
X-Debbugs-Cc: sramac...@debian.org
| ++ dpkg-architecture -qDEB_HOST_ARCH_BITS
| + BITS=32
| ++ stat --format=%Y /<>/generate/unix/bin/iasl
| ++ cut
Source: acpica-unix
Version: 20200925-1
Severity: serious
Tags: ftbfs
Justification: fails to build from source (but built successfully in the past)
X-Debbugs-Cc: sramac...@debian.org
| obj/acpiexamples ../../../source/components/namespace/nswalk.c
| /<>/generate/unix/iasl/obj/aslcompiler.y: In fu
>
> In the short term I recommend fixing this by adding a file to the
> Debian python-louvain package named "debian/tests/autopkgtest-pkg-
> python.conf" with the contents "import_name = community"
>
How about renaming the current python3-louvain package to
python3-community-louvain using a nor
Hi James,
On Wed, Feb 10, 2021 at 03:20:22PM -0500, James McCoy wrote:
> On Wed, Feb 10, 2021 at 03:36:11PM +0100, Salvatore Bonaccorso wrote:
> > The following vulnerability was published for subversion.
> >
> > CVE-2020-17525[0]:
> > | Remote unauthenticated denial-of-service in Subversion mod_
On Wed, Feb 10, 2021 at 03:36:11PM +0100, Salvatore Bonaccorso wrote:
> The following vulnerability was published for subversion.
>
> CVE-2020-17525[0]:
> | Remote unauthenticated denial-of-service in Subversion mod_authz_svn
I'll have uploads ready for this tonight to both sid and buster. I'll
Control: tags 979841 + patch
Control: tags 979841 + pending
Dear maintainer,
I've prepared an NMU for rdflib (versioned as 5.0.0-1.1) and
uploaded it to DELAYED/2. Please feel free to tell me if I
should delay it longer.
Cheers
--
Sebastian Ramacher
diff -Nru rdflib-5.0.0/debian/changelog rdfli
Le 10/02/2021 à 15:29, John Scott a écrit :
According to upstream, the fix for this should've been included in the 1.11-1
upload. Can this issue be closed?
Indeed, the original issue reported in this bug was fixed in 1.11-1. However, the general issue of flaky tests is still there:
https://test
For testing this I installed Procps and *all*of the generated man pages and
that seemed to be fine.
That's slightly different to the patch I put in the bug report but I
emailed Helge the difference.
- Craig
Source: openvswitch
Version: 2.15.0~git20210104.def6eb1ea+dfsg1-4
Severity: grave
Tags: security upstream
Justification: user security hole
X-Debbugs-Cc: car...@debian.org, Debian Security Team
Control: found -1 2.10.6+ds1-0+deb10u1
Control: found -1 2.10.0+2018.08.28+git.8ca7c82b7d+ds1-12+deb10u2
On Fri, 08 Nov 2019 at 23:59:48 +0100, Francesco Poli (wintermute) wrote:
> Its man page states:
> | Note that you need to call this as root.
>
> I guess this is because of vmdb2, which requires superuser privileges.
As a stopgap solution for this, the latest version in git will try to use
f
Source: haskell-jwt
Version: 0.10.0-1
Severity: normal
I have see that the project homepage do not respond anymore:
https://bitbucket.org/ssaasen/haskell-jwt
I think that the homepage is now:
https://hackage.haskell.org/package/jwt
Ciao
Davide
Note: this is a simplified bug report that I use t
On Wed, Feb 10, 2021 at 01:30:10PM -0600, Dirk Eddelbuettel wrote:
> Thanks for the CVE. I am happy to discuss this with R Core and one fellow in
> particular.
> Before I do so can you clarify what you think the issue is? Loading from
> user directories as eg ~/R/lib/mypackage/libs/mypack.so ?
No
Source: haskell-incremental-parser
Version: 0.4.0.2-1
Severity: normal
I have see that the project homepage do not respond anymore:
https://patch-tag.com/r/blamario/incremental-parser/wiki/
I think that the homepage is now:
https://github.com/blamario/incremental-parser
https://hackage.haskell.o
Source: haskell-hsh
Version: 2.1.3-4
Severity: normal
I have see that the project homepage do not respond anymore:
https://wiki.github.com/jgoerzen/hsh
I think that the homepage is now:
https://github.com/jgoerzen/hsh
https://hackage.haskell.org/package/HSH
Ciao
Davide
Note: this is a simplifi
Hi Bastian,
On 10 February 2021 at 20:03, Bastian Blank wrote:
| Hi Dirk
|
| On Wed, Feb 10, 2021 at 12:18:04PM -0600, Dirk Eddelbuettel wrote:
| > As for your suggested patch to R's own dynload.c: that is very well tested
| > and robust system code I do not have any real intention of changing
Hi Kostis (2021.01.21_05:52:57_-0800)
I think there are two issues to solve here:
1: Tighten the dependency on python3-distutils, to avoid this happening.
2: The thing that prints out the instructions to install python3-venv
could be more intelligent about when it prints the message. We could
Source: haskell-hashmap
Version: 1.3.3-3
Severity: normal
I have see that the project homepage do not respond anymore:
http://git.auryn.cz/haskell/hashmap/
I think that the homepage is now:
https://hackage.haskell.org/package/hashmap
https://github.com/foxik/hashmap
note that on github it say:
Package: sponsorship-requests
Severity: normal
Dear mentors,
I am looking for a sponsor for my package "python-imgviz":
* Package name: python-imgviz
Version : 1.2.5+ds-1
Upstream Author : Kentaro Wada
* URL : https://github.com/wkentaro/imgviz
* License
Package: sponsorship-requests
Severity: normal
Dear mentors,
I am looking for a sponsor for my package "sasm":
* Package name: sasm
Version : 3.12.0-1
Upstream Author : Dmitriy Manushin
* URL : https://github.com/Dman95/SASM
* License : GPL-3+, BSD-3-cl
Source: haskell-fdo-notify
Version: 0.3.1-11
Severity: normal
I have see that the project homepage do not respond anymore:
https://bitbucket.org/taejo/fdo-notify/
I think that the homepage is now:
https://hackage.haskell.org/package/fdo-notify
Ciao
Davide
Note: this is a simplified bug report
Control: tags -1 + patch
On 2021-02-08 20:46:54 +0100, Andreas Beckmann wrote:
> Package: libcdparanoia-dev
> Version: 3.10.2+debian-13
> Severity: serious
> Tags: sid bullseye
> User: debian...@lists.debian.org
> Usertags: piuparts
>
> Hi,
>
> during a test with piuparts I noticed your package
Perhaps I'm misunderstanding, but there is a Debian patch for RcppParallel here:
https://sources.debian.org/patches/r-cran-rcppparallel/5.0.2+dfsg-3/use_debian_packaged_libtbb.patch/
and all that does is force RcppParallel to use the Debian-provided
copy of TBB as opposed to the version normally
found 958597 1.7.6-1
thanks
It looks like the 1.7.6-1 upload of src:pmacct unintentionally added
the Build-Depends on dh-systemd back in.
--
Daniel Schepler
Hi Dirk
On Wed, Feb 10, 2021 at 12:18:04PM -0600, Dirk Eddelbuettel wrote:
> As for your suggested patch to R's own dynload.c: that is very well tested
> and robust system code I do not have any real intention of changing because
> one package out of 17k at CRAN is having hickups under one (maybe
user$ sudo LC_ALL=C dpkg -i manpages-de_4.9.1-2.1~dileks_all.deb
(Reading database ... 341292 files and directories currently installed.)
Preparing to unpack manpages-de_4.9.1-2.1~dileks_all.deb ...
Unpacking manpages-de (4.9.1-2.1~dileks) ...
Setting up manpages-de (4.9.1-2.1~dileks) ...
Processin
Got the same issue with latest kernel and iwlwifi firmware from sid
> cat /proc/version
Linux version 5.10.0-3-amd64 (debian-ker...@lists.debian.org) (gcc-10
(Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian)
2.35.1) #1 SMP Debian 5.10.12-1 (2021-01-30)
> dpkg -l firmware-iwlwif
1 - 100 of 260 matches
Mail list logo
