Bug#1103863: openstack-meta-packages: Depends on unavailable ntp

Source: openstack-meta-packages Version: 0.37 Severity: serious Control: affects -1 src:ntpsec X-Debbugs-CC: ntp...@packages.debian.org Per tracker.d.o: 5 binary packages have unsatisfiable dependencies: The dependencies of openstack-toaster=0.37 cannot be satisfied in unstable on amd64 because

Bug#1103862: firmware-nvidia-gsp: Can't insall nvidia-kernel-dkms or nvidia-driver due to broken dependendencies

Package: firmware-nvidia-gsp Version: 535.216.01-1~deb12u1 Severity: grave Justification: renders package unusable X-Debbugs-Cc: john01...@gmail.com Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? When I turned my

Bug#1103296: systemd: Caught from our own process

On Wed, 16 Apr 2025, Luca Boccassi wrote: > Control: tags -1 moreinfo > > I see there are 3 threads in the full backtrace. In the version in > bookworm there was still an async cleanup routine that used posix > threads. This is known to mix really badly with glibc's handling of > malloc internals

Bug#1103837: libheif: CVE-2025-29482

Control: reassign -1 src:libde265 Control: forwarded -1 https://github.com/strukturag/libde265/issues/472 Hi, given that the problem happens in code from libde265, assigning to this package and reported upstream. Best regards, Joachim OpenPGP_signature.asc Description: OpenPGP digital sign

Bug#1103615: [Pkg-javascript-devel] Bug#1103615: Bug#1103615: node-dompurify: please update to latest version

On 4/21/25 11:19, Jérémy Lal wrote: Le lun. 21 avr. 2025 à 10:12, Paul Gevers > a écrit : Hi Jérémy, Thanks for the reply. On 20-04-2025 13:21, Jérémy Lal wrote: > Good question ! The answer is that it's not needed: > nodejs 20.19.0 can "requi

Bug#1103609: RFP: python-test2ref -- Testing Against Learned Reference Data

Please remove the old package from mentors to avoid confusion. I m gone for one week so I can't handle this personally now. Greetings Le sam. 19 avr. 2025, 22:14, Mitchell Augustin < mitch...@mitchellaugustin.com> a écrit : > Thanks, I re-titled it: > > Salsa: > > https://salsa.debian.org/Mitch

Bug#1102690: A higher version (...) is still installed, no reflashing required

On 2025-04-22 05:29, Vagrant Cascadian wrote: On 2025-04-12, Vagrant Cascadian wrote: On 2025-04-12, Johannes Schauer Marin Rodrigues wrote: Luckily, running flash-kernel manually fixed the issue. But had I not noticed that /boot/boot.scr still contained a version of a kernel that I had just

Bug#1102690: A higher version (...) is still installed, no reflashing required

On 2025-04-12, Vagrant Cascadian wrote: > On 2025-04-12, Johannes Schauer Marin Rodrigues wrote: >> Luckily, running flash-kernel manually fixed the issue. But had I not noticed >> that /boot/boot.scr still contained a version of a kernel that I had just >> removed, my system would've become unboot

Bug#1103839: gdal: CVE-2025-29480

On 4/21/25 9:35 PM, Salvatore Bonaccorso wrote: If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. [...] [2] https://github.com/OSGeo/gdal/issues/12188 There is nothing I can do as long as there is no fix avail

Bug#1103861: yotta: error: 'str' object has no attribute 'decode' trying to update firmware-microbit-micropython

Package: yotta Version: 0.20.5-5 Severity: important Affects: firmware-microbit-micropython When trying to follow the recipe for updating firmware-microbit-micropython and running 'yotta update' to download the required component files, I get this error: % cd micropython-1.1.1 % yotta updat

Bug#969466: btrfs-progs: strace'ing btrfs instantly and silently breaks operation

Control: tag -1 unreproducible moreinfo Hi, `strace filesystem defragment a-file-that-has-many-extents` doesn't reproduce this bug, and it's likely that this was fixed upstream long ago. If you're able to trigger this bug, please provide a working reproducer. Best, Nicholas signature.asc Desc

Bug#1103856: pam: Consider increasing the default memlock from the current 8MiB to 64MiB

If pam isn’t the correct place to set the default memlock value, feel free to reassign the bug to the correct package. -- Soren Stoutner so...@debian.org signature.asc Description: This is a digitally signed message part.

Bug#1103857: Acknowledgement (remmina-plugin-rdp links against unavailable library versions, cannot use)

Please disregard, it appears I had some rogue version of libfreerdp3-3 and libwinpr3-3 sitting in /usr/local/lib causing a conflict. After removing them and rerunning ldconfig, the issue appears to be resolved. - Brian C. Arnold Senior Software Engineer 256-652-6754 - conn...@brian-arnold.dev __

Bug#1103766: python3-ananta: Ananta mispelled "nanta" in package description

Hi Beatrice, Thanks a lot for pointing that out! You’re absolutely right — the leading “A” in “Ananta” must have been accidentally skipped during copy-paste. I’ve fixed the typo in the package description and will include the correction in the next upload. Really appreciate your carefu

Bug#1103860: ITP: golang-github-adhocore-gronx -- Lightweight cron expression parser, task runner, and job scheduler

Package: wnpp Severity: wishlist Owner: Mathias Gibbens X-Debbugs-CC: debian-de...@lists.debian.org, debian...@lists.debian.org * Package name: golang-github-adhocore-gronx Version : 1.19.5-1 Upstream Author : Jitendra Adhikari * URL : https://github.com/adhocore/gronx

Bug#1103859: ITP: golang-github-linbit-golinstor -- golang bindings for linstor

Package: wnpp Severity: wishlist Owner: Mathias Gibbens X-Debbugs-CC: debian-de...@lists.debian.org, debian...@lists.debian.org * Package name: golang-github-linbit-golinstor Version : 0.55.0-1 Upstream Author : LINBIT * URL : https://github.com/LINBIT/golinstor * Lice

Bug#1103858: ITP: golang-github-flosch-pongo2.v6 -- Django-syntax like template-engine for Go

Package: wnpp Severity: wishlist Owner: Mathias Gibbens X-Debbugs-CC: debian-de...@lists.debian.org, debian...@lists.debian.org * Package name: golang-github-flosch-pongo2.v6 Version : 6.0.0-1 Upstream Author : Florian Schlachter * URL : https://github.com/flosch/pongo

Bug#1103857: remmina-plugin-rdp links against unavailable library versions, cannot use

Package: remmina-plugin-rdp Version: 1.4.39+dfsg-1 Severity: grave Justification: renders package unusable X-Debbugs-Cc: conn...@brian-arnold.dev Dear Maintainer, * Updated to currently available version of remmina-plugin-rdp, 1.4.39+dfsg-1 amd64 * Current version links against: * lib

Bug#1103856: pam: Consider increasing the default memlock from the current 8MiB to 64MiB

Source: pam Version: 1.7.0-3 Severity: normal OTPClient displays an error message to users on start when memlock is lower than 64MiB. The error message includes instructions for increasing the memlock, but, of course, it requires root access. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=10

Bug#1103855: Acknowledgement (thunar: crash on entering folder view when folder has moved)

Sorry should have updated first, still happens on the latest. ii desktop-file-utils 0.28-1 ii exo-utils 4.20.0-1 ii libatk1.0-0t64:amd642.56.1-2 ii libc6:amd64 2.41-7 ii libc6-dbg:amd64 2.41-7 ii libc6-dev:amd

Bug#1103855: thunar: crash on entering folder view when folder has moved

Package: thunar Version: 4.20.2-1 Severity: normal Dear Maintainer, to reproduce the crash start thunar one view create folder Y enter Y create document Y.txt split view click on left view, open parent create folder X in left view move Y to X click on right view crash (thunar:312019): GLib-CRIT

Bug#1103659: vcsh: autopkgtest regression on all archs

Dave Hibberd writes: > > Spent an hour or so trying to do some autotools magic to get compilation to a > stage where it won't compile as `ronn` is required. the previous version did not use autotools, so that is at least part of the mystery solved. The autopkgtests were not updated when the ups

Bug#1103851: Should wine-development be removed from unstable?

Source: wine-development Severity: important User: helm...@debian.org Usertags: sidremove Dear maintainer, I suggest removing wine-development from Debian for the following reasons: * It accumulated one RC-bug: + #1069318: FTBFS: error: unknown type name ‘StdVideoH264LevelIdc’ Last m

Bug#1103852: Should asis be removed from unstable?

Source: asis Severity: important User: helm...@debian.org Usertags: sidremove Dear maintainer, I suggest removing asis from Debian for the following reasons: * It accumulated one RC-bug: + #1008979: asis: depends on gnat-util, almost orphaned upstream Last modified: 1 year, 10 months *

Bug#1100466: Proceeding with removal of wmmatrix

Control: severity 1100466 normal Control: retitle 1100466 RM: wmmatrix -- RoQA; rc-buggy Control: reassign 1100466 ftp.debian.org Control: affects 1100466 + src:wmmatrix Dear wmmatrix maintainer and ftp team, a month has passed since filing a suggestion to remove wmmatrix from Debian. It was sugg

Bug#1100392: Proceeding with removal of tomcatjss

Control: severity 1100392 normal Control: retitle 1100392 RM: tomcatjss -- RoQA; rc-buggy Control: reassign 1100392 ftp.debian.org Control: affects 1100392 + src:tomcatjss Dear tomcatjss maintainer and ftp team, a month has passed since filing a suggestion to remove tomcatjss from Debian. It was

Bug#1103850: Should mlton be removed from unstable?

Source: mlton Severity: important User: helm...@debian.org Usertags: sidremove Dear maintainer, I suggest removing mlton from Debian for the following reasons: * It accumulated 2 RC-bugs: + #917644: FTBFS: segmentation faults in test suite Last modified: 3 years + #998156: contains n

Bug#1103853: Should openjdk-20 be removed from unstable?

Source: openjdk-20 Severity: important User: helm...@debian.org Usertags: sidremove Dear maintainer, I suggest removing openjdk-20 from Debian for the following reasons: * It accumulated one RC-bug: + #1069315: Update Build-Depends for the time64 library renames Last modified: 1 year, 2

Bug#1103849: Should tomogui be removed from unstable?

Source: tomogui Severity: important User: helm...@debian.org Usertags: sidremove Dear maintainer, I suggest removing tomogui from Debian for the following reasons: * It accumulated one RC-bug: + #1069226: tomogui: FTBFS: RuntimeError: Sphinx is required to build or test the documentation

Bug#1103669: RFS: xfce-polkit/0.3-1 [ITP] -- Simple PolicyKit authentication agent for Xfce

Salsa CI now running here https://salsa.debian.org/debian/xfce-polkit/-/pipelines

Bug#1103848: ruby-rails-propshaft: package name should be ruby-propshaft

Package: ruby-rails-propshaft Version: 1.1.0-3 Severity: important X-Debbugs-Cc: prav...@debian.org Dear Maintainer, Usually all rubygems get a ruby-prefixed to the gem name. Any reason to deviate from the standard? I think it'd be better if this package also followed the standard practice of ru

Bug#1103776: adduser: Please mention newgrp in man page

Hi Marc! On Mon, 21 Apr 2025, Marc Haber wrote: I am totally not sure whether this is appropriate. I agree that this behavior is a quick of many operating systems, but I don't think that adduser should begin to document operating system quirks. People might see this as an issue in adduser, wh

Bug#1078924: hostapd: please package new upstream 2.11

Hello, With the trixie release looming, it would be great to ship hostapd 2.11 instead of the 2022-era 2.10. Just a kind request to package the update in the coming weeks. Thanks.

Bug#870836: /usr/bin/imake: imake generated makefile use deprecated -D_BSD_SOURCE and -D_SVID_SOURCE

Control: tags 870836 fixed-upstream Fixed upstream in https://gitlab.freedesktop.org/xorg/util/cf/-/commit/9e7d156bc7f8cb411fccaf06e0d118b245eafad8 -- -Alan Coopersmith- alan.coopersm...@oracle.com Oracle Solaris Engineering - https://blogs.oracle.com/solaris

Bug#1103847: RM: ruby-graphiql-rails -- ROM; unused leaf package

Package: ftp.debian.org Severity: normal X-Debbugs-Cc: prav...@debian.org User: ftp.debian@packages.debian.org Usertags: remove originally packaged for gitlab, but its nodejs build dependencies grew too complicated in new versions, so we could not update it.

Bug#1103846: should recommend debuginfod package to allow debugging symbol fetching

Package: valgrind Severity: normal Hello, Sourceware.org is having issues today so I can't research specifics, but Valgrind has supported the use of debuginfod's protocol to automatically get debug symbols just like how GDB does. Debian's (unofficial?) debuginfod instance is at debuginfod.debi

Bug#1103652: broken by ansible 12

On Apr 21, stefa...@debian.org wrote: Can you provide a minimal trival playbook that triggers this? # ansible.cfg [defaults] inventory = hosts.txt strategy = mitogen_linear # hosts.txt [servers] server1.example.com ansible_user=root # server1.yaml - hosts: server1.example.com gather_facts:

Bug#1101418: Please help confirm: Does #1101418 sound like it will break havoc?

Hi, On Mon, 2025-04-21 at 13:39 -0600, Gunnar Wolf wrote: > I am writing to you to help us decide whether it is pertinent to do a > move right now, or whether we should wait for you to implement > anything. > > Bug #1101418 (for which you have been Cc:d already) requests renaming > the Debian key

Bug#1103845: /usr/share/doc/linux-doc-6.1/html/scheduler/schedutil.html: modernised CPU scheduler linked with I/O Scheduler

Package: debian-kernel-handbook Version: 1.0.21 Severity: wishlist X-Debbugs-Cc: inqu...@babyawacs.com Dear Maintainer, Hello, implementation of a joint CPU scheduler I/O scheduler of the GPU optimised for modern systems has enhancement potential. Mind many systems run risc to gpu while others

Bug#1103844: debian-kernel-handbook: modernise cpu scheduler wiht io scheduler

Package: debian-kernel-handbook Version: 1.0.21 Severity: wishlist X-Debbugs-Cc: inqu...@babyawacs.com Dear Maintainer, Hello, implementation of a joint CPU scheduler I/O scheduler of the GPU optimised for modern systems has enhancement potential. Mind many systems run risc to gpu while others

Bug#1103004: skimage test failures

Hi Rebecca, Yes, we have been trying to resolve this issue, but unfortunately it is related to internal Fortran state inside of SciPy's ARPACK implementation. The problem is annoying: it means that successive normalized cut segmentations do not give results that are bit-for-bit the same. Howeve

Bug#747188: closed by Jeremy Bícha (closing old GNOME Shell bugs)

Thanks. Confirming the bug seems to be fixed in Gnome 48.

Bug#1103843: debian-installer: Installer generates apt sources.list that can be modernized

Package: debian-installer Version: Trixie Alpha 1 Severity: minor Tags: d-i X-Debbugs-Cc: cardboardaardv...@gmail.com, debian-b...@lists.debian.org Dear Maintainer, I noticed that after performing an install of Debian Trixie using the Alpha 1 installer build that on the first "apt update" there i

Bug#1080479: ncbi-blast+: failure to create blastdb v5 on riscv64

Étienne Mollier writes: > BLAST Database creation error: LMDB runtime error: mdb_env_open: > Operation not supported Hi, Étienne. Can you still reproduce this error? I can't on ricci, either directly or as part of Biopython's test suite (with test_NCBI_BLAST_tools reinstated). I'm not

Bug#1064146: Update snakeyaml to v2.2 or later

Control: fixed -1 2.4+ds-1~exp0 Control: tags -1 fixed-in-experimental Hi all, On Wed, 16 Apr 2025 15:29:51 +0200 Pierre Gruet wrote: [...] > > > > I have uploaded version 2.0+ds+really1.33-1 to unstable, and closed the 15 related RC bugs I found. > > Next step, package > - jmh-core > - jmh-g

Bug#1103842: RM: ruby-atlassian-jwt -- ROM; rc buggy

Package: ftp.debian.org Severity: normal X-Debbugs-Cc: ruby-atlassian-...@packages.debian.org, prav...@debian.org Control: affects -1 + src:ruby-atlassian-jwt User: ftp.debian@packages.debian.org Usertags: remove only reverse dependency ruby-jira has already and rm bug

Bug#1103841: RM: ruby-jira -- ROM; rc buggy dependency

Package: ftp.debian.org Severity: normal X-Debbugs-Cc: ruby-j...@packages.debian.org, prav...@debian.org Control: affects -1 + src:ruby-jira User: ftp.debian@packages.debian.org Usertags: remove it has an rc buggy dependency, originally packaged for gitlab, but leaf package now.

Bug#1103140: python-momepy test failures

Those all look like rounding errors (probably due to x87 excess precision, since they only happen on i386). This suggests that the appropriate response is either to ignore these tests on i386, or possibly (the graph object output by gdf_to_nx has (x: float, y: float) node keys, so rounding iss

Bug#1103840: unblock: ruby-puma-worker-killer/0.3.1-4

Package: release.debian.org Severity: normal X-Debbugs-Cc: ruby-puma-worker-kil...@packages.debian.org, prav...@debian.org Control: affects -1 + src:ruby-puma-worker-killer User: release.debian@packages.debian.org Usertags: unblock Please unblock package ruby-puma-worker-killer Fixes ftbfs.

Bug#1103004: skimage test failures

This has failed twice on reproducible-builds, and started failing between 2025-02-23 and 2025-04-20: https://tests.reproducible-builds.org/debian/rb-pkg/unstable/arm64/skimage.html No other architectures have been tried since 2025-03-26, so we don't actually know whether it's arm64-specific. T

Bug#1102590: r-cran-fansi fails to migrate to testing

This passes its tests in unstable but still fails them in testing. I don't know whether this is caused by R 4.5.0 vs 4.4.3 or by some other package. As far as I know, nothing is actually wrong with the old (testing) version other than that it's old, so just accepting that the new version won

Bug#1103786: solarwolf: please consider swapping Maintainer: and Uploaders:

Le lun. 21 avr. 2025 à 19:05, Judit Foglszinger a écrit : > Would you be willing to sponsor the upload? Of course i can do that. Greetings

Bug#1085646: sbuild: Assumes UNSHARE_TMPDIR_TEMPLATE is mode 4777

Johannes Schauer Marin Rodrigues: Control: tag -1 + moreinfo Hi, [...] yes, in the code there is this comment right after the "rm -rf" runs: # we ignore the exit status, because the command will fail to remove the # unpack directory itself because of insufficient permissions It would be nic

Bug#1103758: unblock: debputy/0.1.67.1 (pre-approval)

Sebastian Ramacher: Control: tags -1 confirmed [...] Please go ahead. Cheers Thanks. The package has now been uploaded and built. Best regards, Niels OpenPGP_signature.asc Description: OpenPGP digital signature

Bug#1101418: Please help confirm: Does #1101418 sound like it will break havoc?

Hello DSA, I am writing to you to help us decide whether it is pertinent to do a move right now, or whether we should wait for you to implement anything. Bug #1101418 (for which you have been Cc:d already) requests renaming the Debian keyrings from *.gpg to *.pgp, as we are dealing with OpenPGP

Bug#1103839: gdal: CVE-2025-29480

Source: gdal Version: 3.10.2+dfsg-1 Severity: important Tags: security upstream Forwarded: https://github.com/OSGeo/gdal/issues/12188 X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for gdal. CVE-2025-29480[0]: | Buffer Overflow vulnerability

Bug#1103838: mumble: manpage needs update

Package: mumble Version: 1.5.735-3 Severity: minor Dear Maintainer, The provided manual page needs to be updated for new features. Most notably, there are two new RPC commands: starttalking Start talking stoptalking Stop talking -- System Information: Debian

Bug#1103776: adduser: Please mention newgrp in man page

Hi, I am totally not sure whether this is appropriate. I agree that this behavior is a quick of many operating systems, but I don't think that adduser should begin to document operating system quirks. People might see this as an issue in adduser, which it isn't. Greetings Marc On Mon, Apr

Bug#1103837: libheif: CVE-2025-29482

Source: libheif Version: 1.19.7-1 Severity: important Tags: security upstream X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for libheif. CVE-2025-29482[0]: | Buffer Overflow vulnerability in libheif 1.19.7 allows a local | attacker to execut

Bug#1103706: debian-installer: Allow user to specify label for LUKS devices setup during install

Control: reassign -1 partman-crypto 131 On 20/04/2025 at 23:38, Tyler Riddle wrote: I saw a comment about how the feature request belongs in partman-crypto. I'm happy to re-report this there if that is where it belongs. Done. On Sun, Apr 20, 2025 at 3:29 PM Cyril Brulebois wrote: Pascal Ha

Bug#1102604: debian-installer: Rescue mode can not execute shell when root filesystem is btrfs

Hi, Am 21. April 2025 18:45:36 MESZ schrieb Pascal Hambourg : >On 11/04/2025 at 06:24, Cyril Brulebois wrote: >> >> If we can get fixed before Trixie is released, that's nice. > >What kind of change would you accept before trixie release ? >A minimal change like mine [1] which automatically trie

Bug#1102604: debian-installer: Rescue mode can not execute shell when root filesystem is btrfs

Control: reassign -1 rescue-mode 1.99 Control: tags -1 patch On 21/04/2025 at 19:54, Cyril Brulebois wrote: Pascal Hambourg (2025-04-21): What kind of change would you accept before trixie release ? A minimal change like mine [1] which automatically tries a few known rootfs subvolumes, with no

Bug#1103836: Depends on an EOLed version of libitext

Source: beast-mcmc Version: 1.10.4+dfsg-6 Severity: important beast-mcmc depends on libitext1-java, which is a very old, long EOLed version of libitext (and it's the only remaining rdep). The regular copy in the archive is libitext5-java, could beast-mcmc be fixed to use that one instead, so that

Bug#1103835: unblock: libcap2/1:2.75-7

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-Cc: libc...@packages.debian.org Control: affects -1 + src:libcap2 Hi, I'd like to ask for pre-approval up an upload of libcap2/1:2.75-7. Helmut discovered that recent upload intro

Bug#1100748: Acknowledgement (segfault when using get_text() on arm64)

Hello Josch! El lun, 21 abr 2025 a la(s) 12:15 p.m., Johannes Schauer Marin Rodrigues ( jo...@debian.org) escribió: > Control: reassign -1 mupdf 1.25.1+ds1-5 > Control: tag -1 + patch > > Hello mupdf and pymupdf maintainers, > > my package plakativ is not in testing because of an RC bug in pymupd

Bug#1100958: sopv-gpgv: Does not consider RIPEMD160 and SHA-1 as weak digests

Control: reassign 1100958 gpgv Control: retitle 1100958 gpgv does not consider RIPEMD160 and SHA-1 as weak digests Control: found 1100958 2.4.7-15 Control: found 1100958 2.2.46-6 Control: found 1100958 2.2.40-1.1 Hi Guillem-- On Fri 2025-03-21 01:28:40 +0100, Guillem Jover wrote: > On a minimal

Bug#1103806: akonadi-search FTCBFS: builds rust component for the build architecture

Helmut Grohne: Source: akonadi-search Version: 4:24.12.3-1 Tags: patch User: debian-cr...@lists.debian.org Usertags: ftcbfs X-Debbugs-Cc: debian-cr...@lists.debian.org, debhel...@packages.debian.org, nil...@debian.org akonadi-search fails to cross build from source, because it builds a Rust-bas

Bug#1103834: RFS: glaze/5.1.0-1 -- High-performance C++ JSON serialization library

Package: sponsorship-requests Severity: normal X-Debbugs-CC: j...@debian.org Dear mentors, I am looking for a sponsor for my package "glaze": * Package name : glaze Version : 5.1.0-1 Upstream contact : https://github.com/stephenberry/glaze/issues/new * URL : htt

Bug#1103773: openssh-server: systemd unit to After=network-online.target

Hallo Martin-Éric Racine, 21.04.25 14:38 Martin-Éric Racine: > Package: openssh-server > Version: 1:9.9p2-2 > Severity: normal > X-Debbugs-Cc: martin-eric.rac...@iki.fi > > The systemd unit current launches: > > After=network.target remote-fs.target nss-lookup.target > > This doesn't guarantee

Bug#1103833: rust-protobuf: CVE-2024-7254

Source: rust-protobuf Version: 2.27.1-1 Severity: important Tags: security upstream Forwarded: https://github.com/stepancheg/rust-protobuf/issues/749 X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for rust-protobuf. CVE-2024-7254[0]: | Any pr

Bug#1103832: shadow: CVE-2024-56433

Source: shadow Version: 1:4.13+dfsg1-1 Severity: important Tags: security upstream Forwarded: https://github.com/shadow-maint/shadow/issues/1157 X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for shadow. CVE-2024-56433[0]: | shadow-utils (aka

Bug#1102604: debian-installer: Rescue mode can not execute shell when root filesystem is btrfs

> What kind of change would you accept before trixie release ? > A minimal change like mine [1] which automatically tries a few known rootfs > subvolumes, with no change in the user interface ? > [1] There was a question earlier about wha

Bug#1103831: raspi-firmware: Unable to update kernel

Package: raspi-firmware Version: 1:1.20250326-1 Severity: important Tags: l10n d-i X-Debbugs-Cc: kjell.inge.mei...@gmail.com -- System Information: Debian Release: 12.10 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable') Architecture: a

Bug#1102604: debian-installer: Rescue mode can not execute shell when root filesystem is btrfs

Pascal Hambourg (2025-04-21): > What kind of change would you accept before trixie release ? > A minimal change like mine [1] which automatically tries a few known rootfs > subvolumes, with no change in the user interface ? > [1] Sure.

Bug#1103625: modernize-sources: use .pgp file extension for debian-archive-keyring

Moin, On Sat, Apr 19, 2025 at 09:02:47PM +0200, Julian Andres Klode wrote: > On April 19, 2025 8:30:19 PM GMT+02:00, "Christian T. Steigies" > wrote: > >Package: apt > >Version: 3.0.0 > >Severity: wishlist > > > >Moin, > >an upgrade offered to modernize my sources, so I did. > >Just seconds befor

Bug#1103830: linux-image-6.12.22-amd64: No keyboard or touchpad functionality on a Macbook Pro 14,1

Package: src:linux Version: 6.12.22-1 Severity: normal X-Debbugs-Cc: debian-am...@lists.debian.org, wintry...@theo.to User: debian-am...@lists.debian.org Usertags: amd64 -- Package-specific info: ** Version: Linux version 6.12.22-amd64 (debian-ker...@lists.debian.org) (x86_64-linux-gnu-gcc-14 (

Bug#1103810: RM: xserver-xorg-video-trident [riscv64] -- RoQA; package no longer build on this arch

Package: ftp.debian.org Severity: normal User: ftp.debian@packages.debian.org Usertags: remove X-Debbugs-Cc: xserver-xorg-video-trid...@packages.debian.org Control: affects -1 + src:xserver-xorg-video-trident #1087037 asked for removal from arm64 armel armhf mips64el ppc64el, but riscv64 was m

Bug#1103809: RM: xserver-xorg-video-tdfx [riscv64] -- RoQA; package no longer build on this arch

Package: ftp.debian.org Severity: normal User: ftp.debian@packages.debian.org Usertags: remove X-Debbugs-Cc: xserver-xorg-video-t...@packages.debian.org Control: affects -1 + src:xserver-xorg-video-tdfx #1087036 asked for removal from arm64 armel armhf mips64el ppc64el, but riscv64 was missed

Bug#1102558: jupyterlab: runtime fails with ReferenceError: require is not defined

On Fri, 11 Apr 2025 10:16:33 +0200 Lorenzo Bertini wrote: > is this what causes the page at localhost:port/lab to be blank? so I don't > open another report... I confirm that it's the cause of a blank jupyterlab page on Debian, yes. > Does anyone know of a quick fix? I rely on this package. Thi

Bug#1103804: xserver-xorg-video-trident FTBFS on arm architectures: error: implicit declaration of function 'outw'; did you mean 'putw'? [-Wimplicit-function-declaration]

Control: severity -1 normal * Helmut Grohne [250421 19:12]: Source: xserver-xorg-video-trident xserver-xorg-video-trident fails to build from source on arm architectures. #1087037 removed the binaries from arm64 armel armhf mips64el ppc64el, so this is not r-c on these archs. Chris

Bug#1103773: openssh-server: systemd unit to After=network-online.target

On Mon, Apr 21, 2025 at 07:16:46PM +0200, Chris Hofstaedtler wrote: * Colin Watson [250421 19:09]: I'd be happy to add additional advice about this to README.Debian if somebody else writes it. But ideally it'd be more fine-grained than just whacking in a dependency on network-online.target; p

Bug#1103805: xserver-xorg-video-tdfx FTBFS on arm architectures: error: implicit declaration of function 'outb'; did you mean 'moutb'? [-Wimplicit-function-declaration]

Control: severity -1 normal * Helmut Grohne [250421 19:12]: Source: xserver-xorg-video-tdfx xserver-xorg-video-tdfx fails to build from source on arm architectures. #1087036 removed the previously built binaries from arm64 armel armhf mips64el ppc64el, so this is not r-c on these archs. C

Bug#1103522: openssh-client: ssh-agent socket created in an unpredictable path

On Fri, Apr 18, 2025 at 04:26:36PM +0200, Antoine Le Gonidec wrote: Since the 1:10.0p1-1 → 1:10.0p1-2 upgrade, the user socket for ssh-agent is no longer created in ${XDG_RUNTIME_DIR}/openssh_agent, but at an unpredictable path under /tmp. As an example, here is what it currently uses on my syst

Bug#1103773: openssh-server: systemd unit to After=network-online.target

* Colin Watson [250421 19:09]: Yeah, I think the requested change would be counterproductive for other users: a lot of people want sshd enabled as soon as possible, and most people don't explicitly set ListenAddress. +1 If it helps in your local setup, I'd encourage you to use a local overr

Bug#1100748: Acknowledgement (segfault when using get_text() on arm64)

Control: reassign -1 mupdf 1.25.1+ds1-5 Control: tag -1 + patch Hello mupdf and pymupdf maintainers, my package plakativ is not in testing because of an RC bug in pymupdf. It turns out that to fix #1100748, src:mupdf has to be changed like this: --- a/debian/rules +++ b/debian/rules @@ -36,7

Bug#1103652: broken by ansible 12

Hi Marco (2025.04.20_22:42:38_+) Still broken, now a trivial playbook fails with: I can see why the code is broken, but without reproducing it, I don't know if I've fixed it. Can you provide a minimal trival playbook that triggers this? Stefano -- Stefano Rivera http://tumbleweed.org

Bug#1103808: libcap2 FTCBFS: runs the host's go

Source: libcap2 Version: 1:2.75-6 Severity: important Justification: architecture cross bootstrap regression Tags: patch User: debian-cr...@lists.debian.org Usertags: ftcbfs User: helm...@debian.org Usertags: rebootstrap Hi, libcap2 broke architecture cross bootstrap by adding a dependency on gol

Bug#1103773: openssh-server: systemd unit to After=network-online.target

Control: severity -1 wishlist On Mon, Apr 21, 2025 at 02:49:14PM +0200, Chris Hofstaedtler wrote: * Martin-Éric Racine [250421 14:42]: The systemd unit current launches: After=network.target remote-fs.target nss-lookup.target This doesn't guarantee that we have acquired an IP address (see:

Bug#1103806: akonadi-search FTCBFS: builds rust component for the build architecture

Source: akonadi-search Version: 4:24.12.3-1 Tags: patch User: debian-cr...@lists.debian.org Usertags: ftcbfs X-Debbugs-Cc: debian-cr...@lists.debian.org, debhel...@packages.debian.org, nil...@debian.org akonadi-search fails to cross build from source, because it builds a Rust-based component for

Bug#1103807: fltk1.4 FTCBFS: needs a native fluid

Source: fltk1.4 Version: 1.4.2-7 Tags: patch User: debian-cr...@lists.debian.org Usertags: ftcbfs fltk1.4 fails to cross build from source, because the upstream build system expects a native fluid binary for cross building, but the Debian package does not provide it. I suggest adding an explicit d

Bug#1103804: xserver-xorg-video-trident FTBFS on arm architectures: error: implicit declaration of function 'outw'; did you mean 'putw'? [-Wimplicit-function-declaration]

Source: xserver-xorg-video-trident Version: 1:1.4.0-1 Severity: serious Tags: ftbfs X-Debbugs-Cc: debian-...@lists.debian.org User: debian-...@lists.debian.org Usertags: arm xserver-xorg-video-trident fails to build from source on arm architectures. https://tests.reproducible-builds.org/debian/rb

Bug#1103805: xserver-xorg-video-tdfx FTBFS on arm architectures: error: implicit declaration of function 'outb'; did you mean 'moutb'? [-Wimplicit-function-declaration]

Source: xserver-xorg-video-tdfx Version: 1:1.5.0-5 Severity: serious Tags: ftbfs X-Debbugs-Cc: debian-...@lists.debian.org User: debian-...@lists.debian.org Usertags: arm xserver-xorg-video-tdfx fails to build from source on arm architectures. https://tests.reproducible-builds.org/debian/rbuild/u

Bug#1103803: onednn FTCBFS for arm64 on amd64: build vs host confusion

Source: onednn Version: 3.7.2+ds-1 Tags: patch User: debian-cr...@lists.debian.org Usertags: ftcbfs onednnn fails to cross build from source for arm64 on amd64, because it confuses build and host architecture and thus gets architecture-specific parameters wrong. I'm attaching a patch to fix that.

Bug#1103802: austin: does not work with Python >3.8

Package: austin Version: 1.0.1-2 Severity: serious Tags: fixed-upstream Hi, thanks for maintaining austin. Unfortunately, it doesn't quite just work anymore. It needs code for each specific Python interpreter version and since it wasn't uploaded in a while, the latest supported version in Debian

Bug#1103801: Additional public reference

Although I’ve already requested publication from MITRE, the process may take some time. In the meantime, here is the public reference I shared with them, which includes additional context for both vulnerabilities: 🔗 https://github.com/TaiYou-TW/CVE-2024-40445_CVE-2024-40446 Please feel free to

Bug#1103786: solarwolf: please consider swapping Maintainer: and Uploaders:

Hi, can do that tomorrow. Would you be willing to sponsor the upload?

Bug#1103720: ssh-askpass-gnome prompts for confirmation, but the connection is always allowed

On Mon, Apr 21, 2025 at 12:57:34AM +0200, erebion wrote: Using: - ssh-askpass (GNOME version) - KeePassXC - GNOME Keyring as the SSH Agent - setting /run/user/1000/gcr/ssh as SSH_AUTH_SOCK in the KeepassXC settings Askpass asks to allow using the SSH key. Upon clicking "no", a connection is st

Bug#1075982: Bug#1077345: chromium: video on wayland, each frame emits warning to stderr: "gbm_pixmap_wayland.cc(82)] Cannot create bo with format=YUV_420_BIPLANAR and usage=SCANOUT_CPU_READ_WRITE"

On Sat, 28 Sep 2024 23:12:36 -0400 Andres Salomon wrote: On 9/28/24 22:42, Guillem Jover wrote: > Control: forwarded -1 https://issues.chromium.org/issues/331796411 > Control: tags -1 upstream fixed-upstream > > Hi! > > On Sun, 2024-07-28 at 09:51:09 -0700, Daniel Kahn Gillmor wrote: >> Packa

Bug#1103801: CVE-2024-40446: code injection vulnerability

Package: mimetex Version: 1.76-1 Severity: important Dear Maintainer, A code injection vulnerability has been identified in MimeTeX, affecting version 1.76-1 and above. This issue has been assigned CVE-2024-40446. When operating in command-line or CGI mode, specially crafted input can trigger

Bug#1103800: openvpn3-client: please make the build reproducible

Source: openvpn3-client Version: 24+dfsg-1 Severity: wishlist Tags: patch User: reproducible-bui...@lists.alioth.debian.org Usertags: timestamps buildpath X-Debbugs-Cc: reproducible-b...@lists.alioth.debian.org Hi, Whilst working on the Reproducible Builds effort [0], we noticed that openvpn3-cli

  1   2   3   >