-1
diff --git a/debian/changelog b/debian/changelog
index e22bd2216..5a343dbe7 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,12 @@
+netatalk (4.2.3~ds-1+deb13u1) trixie; urgency=high
+
+ [ Daniel Markstedt ]
+ * add patch that fixes critical bug in uam module;
+closes: bug
they have defined in afp.conf. While not a disaster if you don't run
this command (the CNID database will gradually be recreated during runtime) I
would like to recommend this steps to users who upgrade.
publickey - daniel@mindani.net - 0x3C47642E.asc
Description: application/pgp-keys
signature
On Sat 2025-09-13 14:40:45 -0400, Daniel Kahn Gillmor wrote:
> I've attached a cherry-picked version of the patch here. I'm testing it
> on my system, and haven't noticed any problems yet.
fwiw, this patch has been stable for me for over a week of regular use
now.
:35.0 +0200
@@ -1,3 +1,11 @@
+libcommons-lang-java (2.6-10+deb13u1) trixie; urgency=medium
+
+ * Team upload.
+ * d/patches/CVE-2025-48924.patch: Add patch to fix CVE-2025-48924.
+- Fix an uncontrolled recursion vulnerability (closes: 1109126).
+
+ -- Daniel Leidert Sun, 31 Aug 2025 19:27
:43.0 +0200
@@ -1,3 +1,11 @@
+libcommons-lang-java (2.6-10+deb12u1) bookworm; urgency=medium
+
+ * Team upload.
+ * d/patches/CVE-2025-48924.patch: Add patch to fix CVE-2025-48924.
+- Fix an uncontrolled recursion vulnerability (closes: 1109126).
+
+ -- Daniel Leidert Sun, 31 Aug 2025 19
98254).
+
+ -- Daniel Leidert Wed, 01 Oct 2025 02:06:28 +0200
+
u-boot (2023.01+dfsg-2+deb12u1) bookworm; urgency=medium
* debian/patches: Apply fix from upstream for orion-timer, affecting
diff -Nru u-boot-2023.01+dfsg/debian/gbp.conf
u-boot-2023.01+dfsg/debian/gbp.conf
--- u-boot-2023.01+dfsg/d
of the users
only (people who will use a backport of a future version after
1.16.0-1~exp1).
Regards,
Daniel
Hello,
mono-complete can not be installed anymore (see #1116304).
keepass2 should depend to mono-devel. Then the plugins are working again.
Also the message box has to be changed to mono-devel
---
The following plugin is incompatible with the current KeePass version:
/us
tag 1113196 pending
thanks
Hi,
this is fixed in rtrlib 0.8.0-5 in NEW
(unfortunately, 0.8.0-4 is waiting in NEW since August 10th).
Regards,
Daniel
On 9/25/25 12:14, Antoine Le Gonidec wrote:
The features that used to be provided by mono-complete are now
provided by mono-devel. This one should be available in the current
version on your system: 6.14.1+ds2-1.
mono-devel has been installed successfully.
As keepass2 pops-up with a message if
Package: mono-complete
Version: 6.14.1+ds-2
Severity: important
File: /usr/share/doc/mono-complete
X-Debbugs-Cc: d.schroe...@gmx.de
Dear Maintainer,
since version 6.14.1+ds-2 monog-complete can not be installed anymore.
# apt install mono-complete
Solving dependencies... Error!
Some packages co
to correct problems, you have held broken packages.
E: The following information from --solver 3.0 may provide additional context:
Broken packages
thanks daniel
-- System Information:
Debian Release: 13.0
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, &#x
tro whose package
scripts use /dev/null as a source rather than a sink.
--Daniel
faces managed by
ifupdown, but in this case it appears to be confused by the alias syntax
in the latter's config. If you replace the config with one that names
the interface explicitly, the tug-of-war never begins.
--Daniel
On Tue, 2025 Sep 23 02:01-04:00, Martin-Éric Racine wrote:
>
> I definitely won't put in a quick workaround.
Well, on the one hand, you don't want to update the package to the known-
good version in testing, and on the other hand, you don't want to apply
a targeted fix. I'm not sure what kind of s
ly to martin-eric.rac...@iki.fi).
Is the package in trixie due to be updated to 10.2.4?
(A package version that's only available in testing/unstable doesn't do
me much good if I'm on the stable release...)
--Daniel
retitle 1115950 new upstream (7.98)
thanks
sorry for the typo, of course I ment 7.98, not 3.98.
Regards,
Daniel
Package: nmap
Severity: wishlist
Hi,
it would be nice if you could update nmap to 3.98, the current upstream
release.
Regards,
Daniel
pe devtmpfs
(rw,nosuid,noexec,size=4096k,nr_inodes=49280327,mode=755,inode64)
devtmpfs on /dev/urandom type devtmpfs
(rw,nosuid,noexec,size=4096k,nr_inodes=49280327,mode=755,inode64)
--Daniel
Package: dhcpcd-base
Version: 1:10.1.0-11
I am seeing a segfault from dhcpcd during the boot process. It is
recorded in syslog with the following:
2025-09-09T23:16:19.340385-04:00 test-debian64 kernel: dhcpcd.real[775]:
segfault at 20 ip 55e44c77ed0f sp 7fff3392fca0 error 4 in
dhcpc
good - let's wait a moment to get a chance of get it
settled upstream and then fix it in sid (and trixie).
Regards,
Daniel
On 9/18/25 15:50, Peter Mann wrote:
https://github.com/md-raid-utilities/mdadm/issues/195
great, thanks.
once it's merged upstream I'll propose this (and a few other fixes) to
be accepted for the next trixie point-release.
Regards,
Daniel
to have fixed the issue or at least
substantially reduced the amount of leaks.
applied and looks good for now, but would you mind reporting it upstream
at https://github.com/md-raid-utilities/mdadm/issues
Regards,
Daniel
Uses Python module instead of external command
* Does not use the "global" statement
* Implementation has 12 fewer lines
* Faster
Untested patch below.
Thank you!
Daniel Lewart
Urbana, Illinois
diff -ru a/unattended-upgrade b/unattended-upgrade
--- a/unattended-upgrade2
=/usr/lib/os-release
[ -f /etc/os-release ] && os_release=/etc/os-release
[ "${LSB_OS_RELEASE-x}" != "x" ] && [ -f "$LSB_OS_RELEASE" ] &&
os_release="$LSB_OS_RELEASE"
[ "${os_release-x}" != "x" ] && . "$os_release"
This bug is fixed in:
#1115376 - 50unattended-upgrades.Debian is outdated
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1115376
Thank you!
Daniel Lewart
Urbana, Illinois
* grammar can be improved
These are all fixed in the attached patch.
Similar fixes might need to be made to the other
data/50unattended-upgrades files.
Thank you!
Daniel Lewart
Urbana, Illinois
diff -ru a/data/50unattended-upgrades.Debian b/data/50unattended-upgrades.Debian
--- a/data/50unattended
Package: wnpp
Severity: wishlist
Owner: Daniel Lange
* Package name: participle
Version : 2.1.4-1
Upstream Author : Alec Thomas
* URL : https://github.com/alecthomas/participle
* License : Expat
Programming Lang: Go
Description : A parser library for
Control: forwarded 1115160
https://gitlab.freedesktop.org/wlroots/wlroots/-/issues/3981
Control: tags 1115160 + patch
On Sat 2025-09-13 14:13:30 -0400, Daniel Kahn Gillmor wrote:
> ```
> sway: render/pass.c:23: wlr_render_pass_add_texture: Assertion `box->x >= 0
> &&
Package: libwlroots-0.19
Version: 0.19.0-2
Severity: important
Control: affects -1 sway
I'm using sway 1.11-2, which links to libwlroots-0.19 0.19.0-2. in the
last several days, i've had a series of crashes of sway. They tend to
happen when using chromium while scrolling some fancy website, but
On 9/12/25 19:48, Chris Lamb wrote:
A patch is attached that removes them after running the tests.
nice, thanks (and uploaded)!
Regards,
Daniel
:
* linux-image-6.12.38+deb13-amd64
* linux-image-6.12.41+deb13-amd64
* linux-image-6.12.43+deb13-amd64
versioned_kernel_pkgs_regexp does not match these, therefore
unattended-upgrade does not remove unused kernel packages in Trixie.
Lightly tested patch below.
Thank you!
Daniel Lewart
Package: ruby-kramdown-rfc2629
Version: 1.7.14-1
Severity: wishlist
Hi there! a new kramdown-rfc version 1.7.29 is available upstream. It
would be great to have it in debian.
thanks,
--dkg
-- System Information:
Debian Release: forky/sid
APT prefers testing-debug
APT policy: (500
id a binary instead of source upload" dcut cancel hell right now.
Ping me if it doesn't show up by the time you read this ;-)
--Daniel
Cyril, et al,
Cyril Brulebois (2025-06-30):
> Daniel Lewart (2025-06-29):
> > The Weekly build of the installer image for amd64 has grown by 4%:
> > * 811597824 Jun 16 00:23 debian-testing-amd64-netinst.is0
> > * 846200832 Jun 22 22:39 debian-testing-amd64-netinst.iso
trixie.
Luca: Given the impact of this and the feedback you got, did you
reconsider and are you going to do it and when are you going to do it,
or should I go forward and do it?
Regards,
Daniel
Control: forwarded -1 https://github.com/htop-dev/htop/issues/1766
Forwarded to upstream as issue #1766. We do not do feature development
in Debian, so upstream is the right place for such requests.
Package: update-info-dir
Version: 6.8-6+b1
After an "apt-get upgrade", I got this output:
```
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
Calculating upgrade... Done
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
1 not fully in
Package: wnpp
Severity: wishlist
Owner: Daniel Markstedt
X-Debbugs-CC: pkg-netatalk-de...@alioth-lists.debian.net
* Package name: libbstring
Version : 1.0.2
Upstream Contact: Michael Steinert
* URL : https://github.com/msteinert/bstring
* License : BDS-3
Package: scribus
Severity: wishlist
Hi,
it would be nice if you could update to the current upstream version
(1.6.4).
Regards,
Daniel
turbs the boot
process)?
Regards,
Daniel
et pointers how to set up a
centralized AD testbed for myself.
It'd be much preferable if we could test this usecase proactively in the future.
All the best,
Daniel
Package: sphinx-intl
Severity: wishlist
Hi,
it would be nice if you could update sphinx-intl to the current version
(2.3.2), as it fixes an anoying bug I've hit:
https://github.com/sphinx-doc/sphinx-intl/issues/116
Regards,
Daniel
Already reported in
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1102505
back to green
in the 4.2 branch.
Sincerely,
Daniel
Package: release.debian.org
Severity: normal
Tags: trixie
X-Debbugs-Cc: libcommons-lang3-j...@packages.debian.org
Control: affects -1 + src:libcommons-lang3-java
User: release.debian@packages.debian.org
Usertags: pu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
[ Reason ]
This upload attem
+0200
@@ -1,3 +1,11 @@
+libcommons-lang-java (2.6-10+deb13u1) trixie; urgency=medium
+
+ * Team upload.
+ * d/patches/CVE-2025-48924.patch: Add patch to fix CVE-2025-48924.
+- Fix an uncontrolled recursion vulnerability (closes: 1109126).
+
+ -- Daniel Leidert Sun, 31 Aug 2025 19:27:35 +0200
@@ -1,3 +1,11 @@
+libcommons-lang3-java (3.17.0-1+deb13u1) trixie; urgency=medium
+
+ * Team upload.
+ * d/patches/CVE-2025-48924.patch: Add patch to fix CVE-2025-48924.
+- Fix an uncontrolled recursion vulnerability (closes: 1109125).
+
+ -- Daniel Leidert Sun, 31 Aug 2025 21:12:11 +0200
missing
Thank you!
Daniel Lewart
Urbana, Illinois
diff -ru a/tools/generate_di_list b/tools/generate_di_list
--- a/tools/generate_di_list 2025-08-20 06:17:52.0 -0500
+++ b/tools/generate_di_list 2025-09-01 22:00:00.0 -0500
@@ -1,7 +1,7 @@
#!/usr/bin/perl
# Generate a list of
: Can only be used with threads started with QThread
Segmentation fault
***
thanks,
Daniel
-- System Information:
Debian Release: 13.0
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable')
Architecture: amd64
://salsa.debian.org/debian/glances/-/blob/master/debian/README.Debian?ref_type=heads
--
Daniel Echeverri
Debian Developer
Linux user: #477840
GPG Fingerprint:
D0D0 85B1 69C3 BFD9 4048 58FA 21FC 2950 4B52 30DB
If you have the ability to build netatalk from source code, can you please
try this patch?
https://github.com/Netatalk/netatalk/pull/2401
The getting started guide for building from source is here:
https://netatalk.io/install
What this patch does, is to treat PAM_IGNORE as a successful return c
Package: release.debian.org
Severity: normal
Tags: trixie
X-Debbugs-Cc: libcommons-lang-j...@packages.debian.org
Control: affects -1 + src:libcommons-lang-java
User: release.debian@packages.debian.org
Usertags: pu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
[ Reason ]
This upload attempt
vulnerability (closes: 1109126).
+
+ -- Daniel Leidert Sun, 31 Aug 2025 19:06:43 +0200
+
libcommons-lang-java (2.6-10) unstable; urgency=medium
* Fixed the build failure with Java 17 (Closes: #1011120)
diff -Nru libcommons-lang-java-2.6/debian/gbp.conf
libcommons-lang-java-2.6/debian/gbp.conf
s wrong or incomplete (/etc/pam.d/netatalk)
- A bug in the libpam version in Trixie
Looking forward to your answer!
Daniel
null
signature.asc
Description: OpenPGP digital signature
- The PAM configuration is wrong or incomplete (/etc/pam.d/netatalk)
- A bug in the libpam version in Trixie
Looking forward to your answer!
Daniel
signature.asc
Description: OpenPGP digital signature
Package: isc-kea
Hi,
I understand that kea 3.x takes more time to prepare, however, in the
meantime it would be nice if you could upload the latest 2.6.x to
unstable (that being 2.6.4 atm).
Regards,
Daniel
dering the package unusable on a default
debian 13 install.
I experience the audio distortion on a framework 13 laptop on both speakers
and headphones (but not on a usb-c audio adapter). After uninstalling
fluidsynth, everything works perfectly.
Thanks,
Daniel
-- System Information:
Debian Rel
ay.
I'll remove it in the next upload and/or the general cleanup with ceph
19 happening soon.
Regards,
Daniel
Package: cinnamon-session
Version: 6.4.10
Severity: normal
X-Debbugs-CC: es...@fastmail.com
Dear Maintainer,
When I click the "Shutdown" button from the Cinnamon menu, the system does
nothing on the first login after boot. If I log out and then log back in again,
the shutdown button works norma
Package: nftables
Version: 1.4.0-1
Severity: wishlist
Hi,
please bump the build-depends on libnftnl to ease backporting:
libnftnl-dev (>= 1.3.0)
Regards,
Daniel
ly) fine.
Kind regards,
Daniel
confirmed that this works correctly. The documentation I had
read on this must have been out of date.
Thank you for setting me straight! I have removed the QEMU copying step
from my container-creation scripts.
--Daniel
Package: virtualbox
Version: 7.2.0-1
Severity: serious
Hi,
thank you for updating virtualbox, however, the 7.2.0-1 upload FTBFS'es
everywhere:
https://buildd.debian.org/status/fetch.php?pkg=virtualbox&arch=amd64&ver=7.2.0-dfsg-1&stamp=1755900220&raw=0
Regards,
Daniel
inserted into the
"What's new in the distribution section"?
https://www.debian.org/releases/trixie/release-notes/whats-new.en.html#what-s-new-in-the-distribution
Thank you!
Daniel Lewart
Urbana, Illinois
pkgconf support.
It would be nice if postfix rules could handle that, so that we neither
need to change it locally nor to backport mongo-c-driver 2.x too.
Regards,
Daniel
ease the middle button, but if I start scrolling
> then it scrolls and doesn't paste.
>
> WARNING: I AM NOT IN ANY WAY INVOLVED IN THE DEVELOPMENT OF ANY OF
> THIS, I AM JUST A THINKPAD OWNER.
>
> Best
>
> Il giorno lun 18 ago 2025 alle ore 13:07 Daniel
> ha scritto
Package: wnpp
Severity: wishlist
Owner: Daniel Lange
* Package name: zfind
Version : 0.4.7-1
Upstream Author : Christian Zangl
* URL : https://github.com/laktak/zfind
* License : MIT
Programming Lang: Go
Description : search for files (even inside tar
Package: nfs-ganesha
Version: 6.5-5
Severity: important
X-Debbugs-Cc: dlake...@street-artists.org
Dear Maintainer,
I have NFS Ganesha installed on a machine that is one of a 2 part
gluster cluster. It has been working fine for years, but recently
upgraded to Trixie, and now there is breakage.
Wh
ource)"
dpkg-dev provides /usr/bin/dpkg-parsechangelog
Please have debcraft depend on dpkg-dev.
Thank you!
Daniel Lewart
Urbana, Illinois
hich script(s) have validation errors
* Fix grammar
Tested patch below.
Thank you!
Daniel Lewart
Urbana, Illinois
diff -ru a/source/src/container/debcraft-validator.sh
b/source/src/container/debcraft-validator.sh
--- a/source/src/container/debcraft-validator.sh2025-05-03
20:16:25.00
Package: general
Severity: normal
X-Debbugs-Cc: anonymous.d...@icloud.com
Dear Maintainer,
*** Reporter, please consider answering these questions, where appropriate ***
* What led up to the situation?
Lenovo Thinkpad's are commonly used for Linux installs due to their modular and
readily-av
Hi,
On 8/17/25 06:37, Utkarsh Raj wrote:
* Package name: ck
thanks for working on this, however, you might not be aware of the other
ck, but this source package name (https://tracker.debian.org/ck) is
already taken.
Regards,
Daniel
Package: samba
Version: 2:4.22.3+dfsg-4~bpo12+1
Severity: important
Dear Maintainer,
After upgrading to Debian 12, the Samba server is reporting 0 bytes
available disk space to all users, but is correctly reporting disk
used space. This prevents Windows Explorer clients from being able to
copy n
Sam, et al,
> control: clone -1 -2
> control: retitle -2 Document pam_umask change in release notes
Should this be reassign-ed to release-notes ?
Thank you!
Danie Lewart
Urbana, Illinois
Package: ftp.debian.org
Hi,
please remove src:libapache2-mod-qos, it has been renamed to its correct
name mod-qos that replaces it.
Regards,
Daniel
it in case they are unsure what to choose.
On Sun, Aug 10, 2025, 10:48 PM Holger Wansing wrote:
> Hi,
>
> Am 10. August 2025 18:40:58 MESZ schrieb Pascal Hambourg <
> pas...@plouf.fr.eu.org>:
> >On 10/08/2025 at 15:33, Daniel Fernandes wrote:
> >
> >> Aug 10
errors!
---snap---
Regards,
Daniel
, just booted into the installer.
I've attached to this email the log file compressed with tar -czvf
On Sun, Aug 10, 2025 at 6:38 PM Pascal Hambourg
wrote:
> On 10/08/2025 at 14:31, Daniel Fernandes wrote:
> >
> > After installation, APT was not able to locate any packages.
&g
Package: installation-reports
Severity: important
X-Debbugs-Cc: dannywritescode+deb...@gmail.com
(Please provide enough information to help the Debian
maintainers evaluate the report efficiently - e.g., by filling
in the sections below.)
Boot method: USB
Image version: 13.0.0 amd64
Date: 10th Aug
Hi Samuel,
On 8/8/25 01:43, Samuel Henrique wrote:
I've moved librtr to the debian namespace:
https://salsa.debian.org/debian/librtr
thanks, I'll prepare an upload later today and move it to frr.
Regards,
Daniel
Package: nodejs
Version: 22.14.0+dfsg-1
Tags: experimental
Hi,
it would be nice if you could upload 22.18 to experimental, it has 'Type
stripping is enabled by default' now and would be convenient to have.
Regards,
Daniel
Hi,
On 8/7/25 15:31, Tris Emmy Wilson wrote:
I am not actively working on it — please feel free to take it over!
sure, will do.. thanks!
Regards,
Daniel
Hi,
what's the status of this ITP, are you still working/interested on it?
Would you mind if I take it over?
Regards,
Daniel
Package: src:linux
Version: 6.16-1~exp1
Severity: normal
As per the subject, CONFIG_OVPN option is not enabled yet with version 6.16
I think it could be useful to be able to enable the kernel offload for openvpn.
--nX
-- Package-specific info:
** Version:
Linux version 6.13-rt-amd64 (debian-ke
> Was there ever a PR on this?
Not that I saw.
> Did it get fixed in 11.8.3?
Sadly not.
o I can't think of
a way to check without iproute2 installed ;P
Do note that kbd (for deallocvt) also pulls in console-setup. Not sure
that's a good idea. It certainly triggers some useless debconf questions in
schroot, but should normally be fine I guess?
--Daniel
signature.asc
Des
upstream lodged: https://github.com/openssl/openssl/issues/28171
.
Regards,
Daniel
tag 1110243 - pending
thanks
sorry - send to the wrong bug.. should have gone to #1110241 not to this
bug.
Regards,
Daniel
tag 1110241 + pending
thanks
Hi,
uploaded to NEW.
Regards,
Daniel
tag 1110243 + pending
thanks
uploaded to NEW.
Regards,
Daniel
Package: mitmproxy
Version: 8.1.1-3
Severity: serious
Hi,
wapiti uses mitmproxy, which then fails importing blinker._saferef
eventough python3-blinker is installed.
Regards,
Daniel
---snip---
Traceback (most recent call last):
File "/usr/bin/wapiti", line 5, in
tag 1108450 + pending
thanks
Hi,
I've uploaded httpx-ntlm to NEW, this should be fixed once it gets NEW
approved.
Regards,
Daniel
Package: wapiti
Version: 3.2.4+dfsg-2
Severity: serious
Hi,
even with httpx_ntlm (#1108450), wapiti fails because it needs
brower_cookie3.
I'm going to upload this too.
Regards,
Daniel
quot;all"
> (Closes: #1109839)
A better patch is in Message #31 of the following:
#943415 - apache2: Disable TLS 1.0 and 1.1 by default:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=943415
Thank you!
Daniel Lewart
Urbana, Illinois
: '/sys/bus/usb/devices/*:*/bInterfaceProtocol': No such file or directory
The original bug was fixed:
#968109 - linux-image-5.7.0-2-arm64: USB unusable on Raspberry Pi 4B 8GB
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968109
The attached keyboard_present.sh patch does th
ult security level is 2:
Increase default security level from 1 to 2.
https://salsa.debian.org/debian/openssl/-/commit/182b9256
Thus TLS 1.0 and TLS 1.1 are unusable.
The attached ssl.conf patch might help.
Thank you!
Daniel Lewart
Urbana, Illinois
diff -ru a/config-dir/mods-available/ssl.
they cannot be found.
Regards, Daniel
- -- System Information:
Debian Release: 13.0
APT prefers testing-security
APT policy: (500, 'testing-security'), (500, 'stable-security'), (500,
'oldstable-security'), (500, 'unstable'), (500, 'testing'
Hello,
please unsubscribe me from all lists.
best,
Daniel
On 7/27/25 15:37, Chris Hofstaedtler wrote:
On Thu, Jul 24, 2025 at 02:43:27AM +0200, Chris Hofstaedtler wrote:
On Sun, Jul 13, 2025 at 10:29:25AM +0200, Helmut Grohne wrote:
Hi Chris,
On Sat, Jul 12, 2025 at 12:36:20AM +0200
1 - 100 of 16524 matches
Mail list logo
