On 2021-08-07 23:10:15 -0400, Brian Sammon wrote:
> > This was an ABI break in libdvdnav which was fixed.
>
> I see.
>
> I filed this bug to ask you to update the dependencies to prevent people from
> installing handbrake-cli alongside an incompatible version of libdvdnav4.
>
> Don't you think
> This was an ABI break in libdvdnav which was fixed.
I see.
I filed this bug to ask you to update the dependencies to prevent people from
installing handbrake-cli alongside an incompatible version of libdvdnav4.
Don't you think that would be a good idea?
On Fri, Aug 06, 2021 at 09:07:02AM +0100, Chris Boot wrote:
> On 06/08/2021 02:47, Ross Vandegrift wrote:
> > On Thu, Jul 29, 2021 at 10:24:22AM +0100, Chris Boot wrote:
> > > In the sudoers file there is a duplicate includedir
> > > statement; at the end of the file you will find the following con
Package: scanssh
Severity: wishlist
Dear Maintainer,
Please update the package to new upstream version 2.1.2. [1]
Regards,
Thiago Andrade
[1] https://github.com/ofalk/scanssh/tags
Hi Andreas,
Andreas Metzler wrote:
> > > tags 991971 fixed-upstream
> > Bug #991971 [lynx] lynx: SSL certificate validation fails with URLs
> > containing user name or user name and password, i.e.
> > https://user:password@host/ and https://user@host/; leaks password in clear
> > text via SNI
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
retitle -1 ITA: docbook-xsl -- stylesheets for processing DocBook XML
- --
Best regards,
Brian T.
-BEGIN PGP SIGNATURE-
iQJHBAEBCgAxFiEE9fpVo96/flopdKOfgw2Ncu3Nhn0FAmEPClETHGJyaWFuQGhh
c2h2YXVsdC5pbwAKCRCDDY1y7c2Gfd7RD/9qIBu3K1iq1mjZ5YibRc
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
retitle -1 ITA: docbook-xml -- standard XML documentation system
- --
Best regards,
Brian T.
-BEGIN PGP SIGNATURE-
iQJHBAEBCgAxFiEE9fpVo96/flopdKOfgw2Ncu3Nhn0FAmEPCekTHGJyaWFuQGhh
c2h2YXVsdC5pbwAKCRCDDY1y7c2Gfe8VEACrpLu2smZo7oiQs2uhRyDAzj
On Sat, 7 Aug 2021 at 08:03, Adam Borowski wrote:
> On Thu, Aug 05, 2021 at 12:26:57PM -0700, Tianon Gravi wrote:
> > > On 2021-07-30, Adam Borowski wrote:
> > > > The Unmatched has 16GB memory -- which works fine with the vendor u-boot
> > > > it shipped with. Alas, with Debian u-boot from exper
Maintainer is "less active" but still in good contact with upstream. I was
going to package the latest version several months ago, but there was a
soname bump and transitions were not allowed due to Debian's release cycle.
Happy to work with anyone on updating webp.
On vrijdag 6 augustus 2021 16:07:18 CEST Diederik de Haas wrote:
> > > -CONFIG_CPU_FREQ_DEFAULT_GOV_PERFORMANCE=y
> > > +# CONFIG_CPU_FREQ_DEFAULT_GOV_PERFORMANCE is not set
> > > -# CONFIG_CPU_FREQ_DEFAULT_GOV_ONDEMAND is not set
> > > +CONFIG_CPU_FREQ_DEFAULT_GOV_ONDEMAND=y
> > > -CONFIG_CPU_FREQ
Hi,
On Sat, 7 Aug 2021, Axel Beckert wrote:
Hi Salvatore, Dear Ariadne,
Salvatore Bonaccorso wrote:
This is more severe than it initially looked like: Due to TLS Server
Name Indication (SNI) the hostname as parsed by Lynx (i.e with
"user:pass@" included) is sent in _clear_ text over the wire
Package: libclang-13-dev
Version: 1:13.0.0~+rc1-1~exp1
Severity: important
The shared library symlink at '/usr/lib/llvm-13/lib/libclang-13.so' is
a dead symlink to '../../x86_64-linux-gnu/libclang-13.so.1'.
The existing targets are
- /usr/lib/x86_64-linux-gnu/libclang-13.so
- /usr/lib/x86_64-l
Hi Salvatore, Dear Ariadne,
Salvatore Bonaccorso wrote:
> > This is more severe than it initially looked like: Due to TLS Server
> > Name Indication (SNI) the hostname as parsed by Lynx (i.e with
> > "user:pass@" included) is sent in _clear_ text over the wire even
> > _before_ I can even said "n"
Control: reassign -1 debci
Control: retitle -1 trunkate huge logs at the start instead of the end
Hi,
On Fri, 12 Feb 2021 20:35:11 +0100 Paul Gevers wrote:
> reassign -1 debci
Oops.
> Hi Matthias,
>
> On 12-02-2021 10:54, Matthias Klose wrote:
> > Package: release.debian.org
>
> It's not the
On Sat, Aug 07, 2021 at 08:17:31PM +0200, Salvatore Bonaccorso wrote:
> Hi Axel,
...
> MITRE did assign CVE-2021-38165. MITRE raised the question: Does
> 2.9.0dev.9 (mentioned on the
> https://lynx.invisible-island.net/current/CHANGES.html page) fix the
> entire problem?
> https://www.openwall.com/
Control: retitle -1 enable per-package timeout exceptions
Control: severity -1 wishlist
Control: tags -1 =
Hi debci co-maintainers,
On Mon, 21 Sep 2020 11:43:06 +0200 Matthias Klose wrote:
> On 9/19/20 9:16 PM, Paul Gevers wrote:
> > Source: openjdk-15
> > Version: 15+36-1
> > Severity: serious
Another (untested) way to fix this issue is to craft the format string
using _Generic:
strcpy(p, mtp3_timer2str(x));
p += strlen(p);
-sprintf(p, "(%lis)%c",
ss7->ss7_sched[ss7->links[i]->mtp3_timer[x]].when.tv_sec - time(NULL),
+#define FORMAT _Generic((time_t){0}, long int: "(%lis)%c", long lo
Package: wnpp
Severity: wishlist
Subject: ITP: q2-diversity -- QIIME2 plugin for core diversity analysis
Package: wnpp
Owner: Steffen Moeller
Severity: wishlist
* Package name: q2-diversity
Version : 2020.11.1
Upstream Author : QIIME 2 development team
* URL : https:/
Package: libbluray-bdj
Version: 1:1.2.1-4
Debian/Ubuntu's libbluray includes patches to use system java
libraries instead of the libraries that libbluray ships within it and
this breaks bluray playback
https://code.videolan.org/videolan/libbluray/-/issues/31
I just tried to play a bluray and I g
Ariadne Conill dixit:
> It turns out SNI is only marginally related to this issue. The issue
> itself is far more severe: HTParse() does not understand the authn
> part of the URI at all.
Yes, of course. But without SNI, nothing would have been sent *in
plaintext* at all. The certificate validat
Hi Axel,
On Sat, Aug 07, 2021 at 03:51:07AM +0200, Axel Beckert wrote:
> Hi,
>
> On Fri, Aug 06, 2021 at 05:14:32PM +, Thorsten Glaser
> wrote in
> https://lists.nongnu.org/archive/html/lynx-dev/2021-08/msg0.html:
> > this affects both OpenSSL and Debian’s nonGNUtls builds:
> >
> > lynx
package release.debian.org
tags 991909 = buster pending
thanks
Hi,
The upload referenced by this bug report has been flagged for acceptance into
the proposed-updates queue for Debian buster.
Thanks for your contribution!
Upload details
==
Package: python-uflash
Version: 1.2.4+dfsg
package release.debian.org
tags 986898 = buster pending
thanks
Hi,
The upload referenced by this bug report has been flagged for acceptance into
the proposed-updates queue for Debian buster.
Thanks for your contribution!
Upload details
==
Package: yubikey-manager
Version: 2.1.0-1+
package release.debian.org
tags 991881 = buster pending
thanks
Hi,
The upload referenced by this bug report has been flagged for acceptance into
the proposed-updates queue for Debian buster.
Thanks for your contribution!
Upload details
==
Package: xmlgraphics-commons
Version: 2.3-
package release.debian.org
tags 991886 = buster pending
thanks
Hi,
The upload referenced by this bug report has been flagged for acceptance into
the proposed-updates queue for Debian buster.
Thanks for your contribution!
Upload details
==
Package: libpam-tacplus
Version: 1.3.8-2+d
package release.debian.org
tags 991641 = buster pending
thanks
Hi,
The upload referenced by this bug report has been flagged for acceptance into
the proposed-updates queue for Debian buster.
Thanks for your contribution!
Upload details
==
Package: irssi
Version: 1.2.0-2+deb10u1
E
package release.debian.org
tags 990315 = buster pending
thanks
Hi,
The upload referenced by this bug report has been flagged for acceptance into
the proposed-updates queue for Debian buster.
Thanks for your contribution!
Upload details
==
Package: gcc-mingw-w64
Version: 21.3~deb10
package release.debian.org
tags 986669 = buster pending
thanks
Hi,
The upload referenced by this bug report has been flagged for acceptance into
the proposed-updates queue for Debian buster.
Thanks for your contribution!
Upload details
==
Package: htslib
Version: 1.9-12~deb10u1
E
package release.debian.org
tags 990182 = buster pending
thanks
Hi,
The upload referenced by this bug report has been flagged for acceptance into
the proposed-updates queue for Debian buster.
Thanks for your contribution!
Upload details
==
Package: hg-git
Version: 0.8.12-1+deb10u1
package release.debian.org
tags 986216 = buster pending
thanks
Hi,
The upload referenced by this bug report has been flagged for acceptance into
the proposed-updates queue for Debian buster.
Thanks for your contribution!
Upload details
==
Package: dwarf-fortress
Version: 0.44.12+d
Hi Frédéric,
On Thu, Apr 29, 2021 at 05:24:16PM +0200, Frédéric Bonnard wrote:
> Hi there,
>
> I tried to bisect between 4.17.0 and 4.18.0 (4.19.0
> didn't work either) and found the first offending commit
> 64ceb09e3297259b58a78b5d6486b1724070a4c9 that makes tracecompass fail
> and playing with
On Tue, 13 Jul 2021 10:23:57 +0200 Fabrice Creuzot wrote:
> Hi tobi,
>
> Sorry, I haven't see your reply before today.
>
> You are right, awf-gtk(2|3|4) are using the same source.
> Yes, multiple major GTK versions can be coinstalled.
>
> I have created three packages because if I create only o
Control: tags -1 = wontfix
Hello Michal,
On Sun, 21 Jun 2009 15:31:03 +0200 Michal Suchanek wrote:
[...]
>
> When the vnc server changes to smaller resolution vncviewer just
> displays it in top left corener of the previous larger window.
>
> When the server changes to a larger resolution vncv
Control: tags -1 = wontfix
Hello Thomas,
On Wed, 20 Jun 2007 17:29:00 +0200 Thomas Creutz wrote:
[...]
>
> I testing with my new IPv6 network and see, that ipv6 support is not
> available.
>
> I found on the webside a project that ported the new protocol for tightvnc:
>
> http://www.tightvnc
Package: wnpp
Severity: wishlist
Subject: ITP: q2-emperor -- QIIME2 plugin for display of ordination plots
Package: wnpp
Owner: Steffen Moeller
Severity: wishlist
* Package name: q2-emperor
Version : 2020.11.1
Upstream Author : QIIME 2 development team
* URL : https:/
On Sat, Aug 7, 2021 at 8:29 AM Thorsten Glaser wrote:
>
> >Axel Beckert dixit:
>
> >>IMHO this nevertheless needs a CVE-ID.
>
> I wonder… perhaps the use of SNI, both in the TLSv1.3 standard
> and in some TLSv1.2 implementations, should receive CVEs as well?
As far as I know, the only problem ass
On 2021-08-07 Debian Bug Tracking System wrote:
> Processing commands for cont...@bugs.debian.org:
> > tags 991971 fixed-upstream
> Bug #991971 [lynx] lynx: SSL certificate validation fails with URLs
> containing user name or user name and password, i.e.
> https://user:password@host/ and https:
Control: tags -1 moreinfo
Hi Lin Qigang,
On Wed, 07 Jul 2021 18:24:46 + Lin Qigang wrote:
> Changes since the last upload:
>
> btcheck (2.1-5) experimental; urgency=medium
> .
> * debian/upstream/metadata: Added upstream metadata
>
The title says "ITA", so likely you've forgotten to
Source: cool-retro-term
Severity: important
(Found in review #990722)
- I see in "README.source":
> repackaged to include qmltermwidget
>
> dropped these fonts
> app/qml/fonts/modern-monaco: not distributable (Apple)
> (...)
--
tobi
Source: cool-retro-term
Severity: wishlist
(found in review #990722)
Note: The libary upstream is.
https://github.com/Swordfish90/qmltermwidget
(Same upstream author as cool-retro-term, seems to be used also for
ubuntu-terminal-app (not in Debian))
Note that the library is not included in the (c
Source: cool-retro-term
Version: 1.1.1+git20200723-1
Severity: minor
Found as part of review on #990722.
The watch-file does not work:
tobi@isildor:~/workspace/deb/mentors/GürkanMyczko/cool-retro-term/new/cool-retro-term-1.1.1+git20210605$
uscan --verbose --download-current-version
uscan info:
Source: cool-retro-term
Version:
Severity: serious
Justification: §4.5
(found as part of review for #990722)
qmltermwidget seems to be partly GPL-2+ and LPGL-2+; both not documented. There
is at least one cmake files that seems to be BSD
--
tobi
Hi
On vendredi 30 juillet 2021 12:22:59 CEST you wrote:
> moarvm-dev uses the obsolete version of minilua
> (single-file port of Lua) which has CVE-2014-5461
Exploiting this CVE requires feeding arbitrary lua code to moarvm. I don't
think this is possible. So I won't patch directly moarvm.
Neve
Control: tags -1 moreinfo
Hi Gürkan,
Regarding cool-retro-term:
- I see in "README.source":
> repackaged to include qmltermwidget
>
> dropped these fonts
> app/qml/fonts/modern-monaco: not distributable (Apple)
> (...)
But I do not see a +dfsg nor a Files-Excluded in d/copyright to automatic
Package: sensible-utils
Version: 0.0.14
Followup-For: Bug #987675
Control: block -1 by 991984
This bug is really hard to fix.
Even your proposition to use getent will fail because under env -i $USER is not
set.
So for now, sensible-utils will check if $HOME is set, and if not set use
fallback to
On Thu, Aug 05, 2021 at 12:26:57PM -0700, Tianon Gravi wrote:
> > On 2021-07-30, Adam Borowski wrote:
> > > The Unmatched has 16GB memory -- which works fine with the vendor u-boot
> > > it shipped with. Alas, with Debian u-boot from experimental, only 8GB is
> > > visible (at 0x8000-0
Package: debian-policy
Version: 4.5.1.0
Severity: important
Control: block 991982 by -1
Control: block 987675 by -1
Dear Maintainer,
For now $env -i sensible-utils, fail due to $HOME and $TERM not set.
I am for now working around HOME not set in sensible-utils core, but posix [1]
documentation
Package: wnpp
Severity: wishlist
Subject: ITP: q2-gneiss -- QIIME2 plugin for Compositional Data Analysis and
Visualization
Package: wnpp
Owner: Steffen Moeller
Severity: wishlist
* Package name: q2-gneiss
Version : 2020.11.1
Upstream Author : QIIME 2 development team
* URL
Package: nano
Version: 5.4-2
Severity: grave
Tags: upstream buster-ignore bullseye-ignore
Justification: Policy 11.4
Control: affects -1 sensible-utils
Dear Maintainer,
Feel free to downgrade to important, but this bug affects sensible utils in
case of disaster recovery so mark as grave (nano is
Hi,
On Sat, 7 Aug 2021, Thorsten Glaser wrote:
Axel Beckert dixit:
This is more severe than it initially looked like: Due to TLS Server
Name Indication (SNI) the hostname as parsed by Lynx (i.e with
"user:pass@" included) is sent in _clear_ text over the wire even
I *ALWAYS* SAID SNI IS A S
Control: tags -1 = unreproducible,moreinfo
Hi Matthew,
On Thu, 01 Sep 2016 12:43:16 -0400 Matthew Gabeler-Lee
wrote:
> Package: tightvncserver
> Version: 1.3.9-8
> Severity: important
>
> tightvncserver was working fine for me for a long time until I
> restarted my VNC server session recently.
Package: debian-installer
Followup-For: Bug #991951
Hi Samuel.
> Witold Baryluk, le ven. 06 août 2021 16:29:50 +0200, a ecrit:
>> https://www.debian.org/releases/bullseye//amd64/ch03s04.en.html says this
>> should be supported.
> Yes, that should be working, and does work in my tests.
Thanks fo
Hi,
Am 7. August 2021 09:01:56 MESZ schrieb "McIntyre, Vincent (S&A, Marsfield)"
:
>On Sat, Aug 07, 2021 at 07:40:52AM +0200, Paul Gevers wrote:
>>+
>>+ More and more, peripheral devices require firmware to be loaded as
>>+ part of the hardware initialization. To help deal with this problem,
>>
Package: python3-skbio
Version: 0.5.6-4
Severity: normal
Dear Maintainer,
Unpacking python3-skbio (0.5.6-4) ...
dpkg: error processing archive
/var/cache/apt/archives/python3-skbio_0.5.6-4_amd64.deb (--unpack):
trying to overwrite '/usr/lib/python3/dist-packages/benchmarks/__init__.py',
which
Control: tags -1 = unreproducible,moreinfo
Hello Fritz,
On Thu, 17 Feb 2011 20:24:50 +0100 dl
wrote:
> Package: tightvncserver
> Version: 1.3.9-6.1+b1
> Severity: important
>
> I can't use drag'n drop using the mouse from my client machine, for
> example to move a file from one folder to anoth
Package: libjsap-java
Version: 2.1-3.1
Severity: normal
Dear Maintainer,
libjsap-java depends on libxstream-java and indeed needs its jar
/usr/share/java/xstream.jar, however the latter is not correctly referenced in
the MANIFEST file of /usr/share/java/jsap.jar.
As a consequence, I get
Exceptio
Le mercredi 19 août 2015 à 17:07 +0200, Guido Günther a écrit :
>
> On Wed, Aug 19, 2015 at 10:34:56AM +0200, Bernd Zeimetz wrote:
> >
> > > I get .pc/ but lots of other modifications in the source tree as well
> > > (as it's the point of applying patches). If I then unapply:
> > >
> > > qui
Control: tags -1 = wontfix
On Mon, 05 Jan 2015 14:47:25 +0100 Stefan Weil wrote:
> Package: tightvnc
> Severity: important
>
> TightVNC includes the same bug which was reported for ssvnc
> (see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774622).
>
> As the related source code is also ide
reassign 991853 ftp.debian.org
thanks
the archive.debian.org certificate problem seems to rather concern the
ftp.debian.org pseudo package & DDs, thus I'm reassigning to it.
I think we may have lost David? He doesn't seem to be responding to bug reports
based upon his maintainer page on the BTS. Open bugs going back to 2013 (not
unusual) but the five of the same bug from that date remain unmerged.
Anyone heard from him by chance? Hope he's all right.
Joseph
Package: python3
Version: 3.7.3-1
Severity: normal
Dear Maintainer,
I noticed an issue using aiohttp with Python 3.7.3 in Debian Buster.
When a request fails due to SSL certificate problems there are
asyncio loop exceptions triggered — although my code is wrapped in a
try-except-block, mwe:
Package: zram-tools
Version: 0.3.2.1-1
Severity: normal
Tags: a11y
Dear Maintainer,
*** Reporter, please consider answering these questions, where appropriate ***
* What led up to the situation?
zramswap was running before #1441 without problems
* What exactly did you do (or not do) that w
Package: libclamav-dev
Tags: patch
Hi! I'm doing a shared library transition of libidn, and noticed a
strange dependency on libidn11-dev in the libclamav-dev package, and it
has been there since the beginning of (salsa git) times. As far as I
can tell, nothing in clamav depends on libidn, so the
On 07/08/2021 10.49, Fabio Fantoni wrote:
Il 28/07/2021 21:47, Andreas Beckmann ha scritto:
Once the fix is uploaded my piuparts instance will run the long
upgrade path test on all packages, and I'll tell you if something is
still not right ;-)
Hi, can you run your piuparts test on the long u
Il 28/07/2021 21:47, Andreas Beckmann ha scritto:
Once the fix is uploaded my piuparts instance will run the long
upgrade path test on all packages, and I'll tell you if something is
still not right ;-)
Hi, can you run your piuparts test on the long upgrade for check that
there are no other u
Package: snort
Version: 2.9.15.1-5
Severity: normal
Dear Maintainer,
On my Bullseye SysV system, snort runs the daily report from
/etc/cron.daily/snort-common. But as the /etc/cron.daily/ dir is run in an
alphabetic order, "logrotate" is run before "snort-common" which reduces the
snort log fi
Package: xcompmgr
Version: 1.1.8-1
Followup-For: Bug #991551
X-Debbugs-Cc: pascal.mart...@gmx.fr
Dear Maintainer,
I generally never do that, but as installing xcompmgr calls absolutely no
dependencies (at least in my case), I just tried to install (via dpkg) version
1.1.7-1 instead of 1.1.8-1 (vi
Justin B Rye (2021-08-07):
> (I'm surprised that we can't link to ch06s04.html without the .en and
> have it automatically handle translations. Anyone know a way of doing
> that?)
I'm quite confident this works:
https://www.debian.org/releases/bullseye/amd64/ch06s04#completing-installed-syste
Paul Gevers wrote:
> Before pushing, I hope to see comments from Justin.
>
> Paul
> +Help with installation of firmware
> +
> + More and more, peripheral devices require firmware to be loaded as
> + part of the hardware initialization. To help deal with this problem,
> + the installer has been
On Sat, Aug 07, 2021 at 07:40:52AM +0200, Paul Gevers wrote:
>Hi,
>
>On 06-08-2021 21:52, Holger Wansing wrote:
>> I would like to add a paragraph to the release-notes, describing a bit the
>> new "install-firmware" mechanism via modalias, with a link to the new doc
>> in the installation-guide, fo
Control: retitle -1 buster-pu: package mariadb-10.3 10.3.31-0+deb10u1
New MariaDB 10.3.31 is out and it is also a security update. I'll take
this with the sec team since stable updates are not on the horizon
according to release.debian.org.
71 matches
Mail list logo
