On Sun, May 19, 2019 at 11:48:15AM +0200, Olaf van der Spek wrote:
> Package: lighttpd
> Version: 1.4.53-4
> Severity: wishlist
>
> Dear Maintainer,
>
> -h includes the option but the man page doesn't.
I cannot reproduce the issue with version 1.4.53-4. The manual page
clearly documents the -tt
Package: ftp.debian.org
Severity: normal
Hi,
please remove the package "why" (not to be confused with why3!)
from unstable. Reasons:
- this software would need porting to recent version of why3. In the
current state it is useless [1]
- Upstream declares that they do not want to continue maintai
Op di 21 mei 2019 om 09:03 schreef Helmut Grohne :
> I cannot reproduce the issue with version 1.4.53-4. The manual page
> clearly documents the -tt option. This was fixed upstream in commit
> c4edd356.
You're right, I'm sorry, I looked at an out-of-date version of the man page.
--
Olaf
Hi,
Thanks for your report. I've forwarded it at
https://bugzilla.samba.org/show_bug.cgi?id=13685#c45
It looks like you don't have all debug symbols installed.
Unfortunately there are probably not available (as
https://wiki.debian.org/AutomaticDebugPackages#Status does not have
stretch-security).
For information, I just updated evolvotron package in my debian sid with
the fixing patch and it's working very well!
Many thanks to all of you for the attention and support, the Debian
Community is great!
Hello,
>I don't know how to handle this in the package build... Maybe I should
>just disable the test suite?
maybe ask upstream for a test switch to disable a subset of tests might be good?
>Is there a knob (like an environment variable) that I can use to disable
>the test suite selectively when
Hi,
On Mon, 20 May 2019 at 23:11, Moritz Mühlenhoff wrote:
> What's considered needed is that someone should actually look through
> https://security-tracker.debian.org/tracker/source-package/libsass and
> triage/fix.
>
> The only visible action done in five weeks was to lower the severity, so
>
La taille de votre boîte aux lettres a atteint 471,29 Mo, soit plus de 90% de
votre quota de 500,00 Mo. Veuillez supprimer certains messages pour éviter de
dépasser votre quota. Vous devez valider votre compte dans les 24 heures. Si
vous ne validez pas votre compte dans les 24 heures, vous ne
Hi Paul,
Paul Gevers ezt írta (időpont: 2019. máj. 20., H, 20:38):
>
> Hi Jan, Bálint,
>
> On 20-05-2019 09:02, Jan Wagner wrote:
> > Am 12.05.19 um 12:41 schrieb Jan Wagner:
> >>>* Skip sending email when no package had to be installed, upgraded
> >> or removed
> >>> (LP: #1821103) (Clo
Package: dolphin
Version: 4:18.08.0-1
Severity: normal
Dear Maintainer,
I'm trying to navigate to an nfs share that is automounted via autofs using
the location bar.
I keep trying to type in the path "/home/me/shares/server/...". However,
the location bar seems to reset when I reach the "server"
Source: libgc
Version: 7.6.4-0.4
Severity: wishlist
Tags: patch upstream
I have updated the debian libgc package to upstream version 8.0.4 (which is the
latest stable upstream release as of now).
The necessary patch is attached. Upstream tarball download link:
https://www.hboehm.info/gc/gc_sour
Package: samba
https://bugzilla.samba.org/show_bug.cgi?id=13454 has a patch which
appears to apply to 4.5. It will give poor but better than nothing
backtraces in the AD DC's 'samba' binary.
Please include in Debian to make bug reports that come here or upstream
more practical to triage.
Thank
Hi all,
I'll try to clarify a bit on ModSecurity vs CRS, since I think it may be
a bit confusing.
On Mon, May 20, 2019 at 11:03:46PM +0200, Moritz Mühlenhoff wrote:
> On Sat, May 11, 2019 at 06:45:13AM +0200, Christian Folini wrote:
>
> Hi Christian,
>
> Thanks for chiming in, much appreciated!
Control: retitle -1 92 RFA: eject -- ejects CDs and operates CD-Changers
under Linux
Control: owner -1 92 Vangelis Mouhtsis
Thanks
--
GPG Fingerprint: 868D EF24 37CC E9F5 C5DC 63B7 5E57 25A1 FB41 2219
signature.asc
Description: OpenPGP digital signature
Hello Moritz,
Thank you for your feedback.
On Mon, May 20, 2019 at 11:03:46PM +0200, Moritz Mühlenhoff wrote:
> Thanks for chiming in, much appreciated! But I need some further
> clarification.
Sure.
> CVEs are not assigned for regular expressions by itself.
The CVEs are assigned based on the
Thanks for the clarification Alberto. Saw it only after I had sent my message.
:)
Have a good day!
Christian
On Tue, May 21, 2019 at 10:15:20AM +0200, Alberto Gonzalez Iniesta wrote:
> Hi all,
>
> I'll try to clarify a bit on ModSecurity vs CRS, since I think it may be
> a bit confusing.
>
> O
Hai,
The server type, is a : standalone/member/AD-DC server ?
Are charset's defined in smb.conf?
Package: acl is not installed and based on "we dont know the server type".
I cant tell if its really needed here because you must have this installed
on a AD-DC setup.
So what i mean is this can
HI Kathryn,
On So 19 Mai 2019 23:29:29 CEST, Kathryn Tolsen wrote:
Package: caja
Version 1.20.3+b1
Upon changing displays, such as plugging in a VGA or miniDP->HDMI display
to my laptop, depending on the layout, some portion of one of my screens
will become glitched in that when a window is m
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package gmt
It includes the upstream patch to fix the segfault with NetCDF 4.6.3 reported
in #929264.
unblock gmt/5.4.5+dfsg-2
Kind Regards,
Bas
diff -Nru gmt-5.4.5+dfsg/
Salvatore Bonaccorso writes:
> Alright, I will mark it no-dsa for stretch then at least. For buster,
> might be still good to have the fix go in?
First attempt, looks like version in buster/sid doesn't build :-(
=== cut ===
=
Heimdal 7.5.0: lib/hx
Hi Thorsten et al.,
Thorsten Glaser wrote:
> Iâd be happy to add an /usr/share/sounds/sf2/default.sf2 alternative
> to musescore-general-soundfont-lossless (which is about half a GiB
> already and expected to grow). Please note the changed location, as
> /usr/share/sounds/ is where soundfonts in
Thorsten Glaser wrote:
> This (#929185) may also affect timidity, which has its own format,
> but with a trivial config file can support any SF2 (at least, did
> not try SF3) soundfont:
I didn't even know this! I believed timidity was still bound to the pats
format.
> Iâve opened #920373 agains
On 5/21/19 8:06 AM, Chris Lamb wrote:
> Package: minissdpd
> Version: 1.2.20130907-3+deb8u1
> X-Debbugs-CC: t...@security.debian.org
> Severity: grave
> Tags: security
>
> Hi,
>
> The following vulnerability was published for minissdpd.
>
> CVE-2019-12106[0]:
> | The updateDevice function in min
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Upon fighting off bad bullshit tellers, the way to success is probably free.
Really, seriously, what should even stop me now, I am going to give Hugin
another try, but although it might be well workable again, I will keep this
open until Buster rel
On Tue, May 21, 2019 at 10:01:55AM +0200, Aljoscha Lautenbach wrote:
> Hi,
>
> On Mon, 20 May 2019 at 23:11, Moritz Mühlenhoff wrote:
> > What's considered needed is that someone should actually look through
> > https://security-tracker.debian.org/tracker/source-package/libsass and
> > triage/fix
On 2019-05-21 14:41, Mo Zhou wrote:
Hi Drew,
I didn't closely investigate into the scipy bug, but I can answer
some of your questions. BTW, does anything break in a clean chroot?
I mean, making sure a thing works fine in an unclean environment
is difficult.
It seems fine in a clean chroot. In
On 2019-05-20 23:38, Francesco Poli wrote:
> Control: tags -1 + moreinfo
>
>
> On Mon, 20 May 2019 03:23:24 -0400 Boruch Baum wrote:
>
> [...]
> > For several upgrade procedures in the course of the recent few weeks,
> > apt-listbugs has repeatedly been prompting me for the same bug (#915689
> > rn
Package: perl-doc
Version: 5.28.1-6
Severity: wishlist
File: /usr/share/man/man1/perldata.1.gz
Change:
< ($him, $her) = @folks[0,-1]; # array slice
< @them = @folks[0 .. 3];# array slice
To:
> ($him, $her) = @folks[0,-1];
Package: dpkg
Version: 1.18.25
AFAICS a line
start-stop-daemon -x /usr/sbin/sshd -T
returns 0 (success), if it finds the sshd running in a container,
even if the local service has been stopped. Sample session (running
2 LXCs with their own private sshd each):
root@srvl011a:~# ps -ef |
On Fri, Sep 28, 2018 at 11:48:53AM +0200, Andreas Henriksson wrote:
CCing people who showed interest on the bug report. Help with
(additional) testing would be welcome.
I've performed a preliminary test here: applied and build both
packages, patches apply clean, builds are fine; installed both
Apparently its already documented, so please excuse the noise.
Harri
AFAICS its documented in start-stop-daemon(8) for "start-stop-daemon -x":
"Take into account processes running from inside a chroot will also be
matched, so other match restrictions might be needed."
Regards
Harri
Package: firmware-atheros
Version: 20190502-1
Severity: important
Dear Maintainer,
Despite installing the firmware-atheros package through the firmware-linux-
nonfree package, wifi still doesn't work.
When booting, I am presented with the following messages:
ath10k_pci :07:00.0: firmware: fa
hello...
what realtionship between your travel plan with me, so that this
email its sended to me?
- This mail is in HTML. Some elements may be ommited in plain text. -
Lieber
90...@bugs.debian.org
,
Ihr Postfach hat die Speichergrenze von 1 GB überschritten, die vom
Administrator definiert wird. Sie können keine neuen Nachrichten senden oder
empfangen, bis Sie Ihr Postfach erneut überprüfen
I wonder why this bug is there till now.
I have almost no experience with debian, and absolutely no idea of
citadel, but I suspect what is the cuase why it hangs.
I did manage to install the package with the following steps:
(1) I have to xterms with ssh to the server
(2) run in one of them:
On 2019-05-21 09:13, Drew Parsons wrote:
>
> This seems to be the problem. libopenblas.so.0 is used to resolve
> symbols instead of liblapack.so.3. The symbol in question in
> Bug#914655 is ilaver_ which is part of lapack, not specific to
> libopenblas.
ilaver_ is indeed a standard fortran routi
Hi!
I'm looking on this and I find my self needing more information to
understand.
On Sat, 18 May 2019 18:50:32 +0900 Kenta Ishii wrote:
> Package: binutils-arm-none-eabi
> Version: 2.28-5+9+b3
>
> Executing GNU assembler, "arm-none-eabi-as", in this package,
>
>
On 2019-05-21 19:55, Mo Zhou wrote:
On 2019-05-21 09:13, Drew Parsons wrote:
Perhaps our scipy build should explicitly avoid libopenblas.so by
setting
export BLAS=/path/to/libblas.so
export LAPACK=/path/to/liblapack.so
as suggested at
http://scipy.github.io/devdocs/building/linux.html#specific
Control: severity -1 serious
Hi,
I have tested the testsuite with the upstream binary (FastQC 0.11.8)
and there is no error, so the testsuite is fine. This bug was probably
hidden before we added the test of bam and sam files. Currently,
fastqc from our package is unable to process bam and sam fil
Package: postgresql-common
Version: 200
Severity: important
pg_createcluster supports importing a pre-existing PGDATA directory.
If pg_ident.conf is missing, it will abort and wipe the whole
directory.
Christoph
Control: tags 915270 + patch
Control: tags 915270 + pending
Dear maintainer,
I've prepared an NMU for libgovirt (versioned as 0.3.4-3.1) and
uploaded it to DELAYED/02. Please feel free to tell me if I
should delay it longer.
Regards, Giovanni.
--
Giovanni Mascellani
Postdoc researcher - Univer
Package: monitoring-plugins-basic
Version: 2.2-3
Severity: normal
Dear Maintainer,
the help text for the "-H" option states:
-H, --hostname=ADDRESS
Host name, IP Address, or unix socket (must be an absolute path)
but it uses "is_host()" to test for a valid ip address or dns-hostname.
This
Hi Dylan,
On Tue, May 21, 2019 at 02:32:48PM +0200, Dylan Aïssi wrote:
> Control: severity -1 serious
>
> Hi,
> I have tested the testsuite with the upstream binary (FastQC 0.11.8)
> and there is no error, so the testsuite is fine. This bug was probably
> hidden before we added the test of bam an
Got it. Thanks a million! I learned a lot from your responses :)
Jorge
On Tue, 21 May 2019 at 05:46, Theodore Ts'o wrote:
> On Mon, May 20, 2019 at 08:17:09PM -0700, Noah Meyerhans wrote:
> > At this point, I think it'd be worth revisiting, at the project level,
> > the historical tradition of
Package: gcc-9
Version: 9-20190428-1
Severity: normal
User: debian-i...@lists.debian.org
Usertags: ia64
Dear Maintainer,
Please include the fix for pr87338 that was previously included in
gcc-8. This patch is required for gcc-9 to build under ia64.
Thank you.
-- System Information:
Debian Rele
Control: tags -1 pending
(sort of; changelog won't close this bug)
On 21 May 2019, at 14:24, Jason Duerstock wrote:
>
> Package: gcc-9
> Version: 9-20190428-1
> Severity: normal
> User: debian-i...@lists.debian.org
> Usertags: ia64
>
> Dear Maintainer,
>
> Please include the fix for pr87338 th
Source: wxpython4.0
Version: 4.0.4+dfsg-2
Severity: normal
Hi,
while backporting to Devuan ascii, which has sip-dev 4.18.1+dfsg-2, I got a
build error:
Running command: sip
/usr/bin/sip -w -o -g -I /tmp/wxpython4.0-4.0.4+dfsg/src -I
/tmp/wxpython4.0-4.0.4+dfsg/sip/gen -c /tmp/tmpxXqdbK -b sip/c
Hello,
I've updated gcc-doc/gcc-doc-defaults packages to support new gcc-8
documentation generation. NMU Packages are uploaded to
mentors.debian.net
for review, git trees are put on salsa.debian.org/gcc-doc (-defaults).
--
With best wishes
Dmitry
Package: wnpp
Severity: wishlist
Owner: Ralf Treinen
* Package name: ocaml-cairo2
Version : 0.6.1
Upstream Author : Christophe Troestler
* URL : https://github.com/Chris00/ocaml-cairo
* License : LGPL3
Programming Lang: OCaml
Description : OCaml librar
Package: lxqt-openssh-askpass
Version: 0.14.1-1
Severity: minor
Dear Maintainer,
the package description says "will perform security tast over scale access
privilegies".
I don't know what that is supposed to mean, but it seems fairly far from an
English sentence.
Kind regards,
Ralf
-- System
Hi,
Here's, attached to this message, the debdiff to fix this CVE. Note that
the patch was backported to 1.2 by upstream himself, so it's kind of
safe to apply, however, it may potentially impact SQLAlchemy reverse
dependencies. It should be safe for OpenStack applications though.
Please, either
Package: wnnp
Severity: wishlist
Owner: Vangelis Mouhtsis
* Package name : aspell-el
Version : 0.50-3-6.2
Upstream Author : Evripidis Papakostas
* URL : http://ispell.source.gr
* Licence : GPL3
Description : Greek dictionary for GNU Aspell
Thi
Hi
I've uploaded a MR for bug 868898 here [1].
It'd be great if someone could have a look at it.
Cheers
Rohan Garg
[1] https://salsa.debian.org/xorg-team/lib/libdrm/merge_requests/3
On Tue, May 21, 2019 at 07:25:38AM +0300, sergio wrote:
> On 26/04/2019 22:19, Ross Vandegrift wrote:
>
> > 1) Application Theme -> Icons, choose Adwaita icon theme.
> > 2) rm ~/.cache/efreet/icons_Adwaita_*
> > 3) log out and back in
> > 4) check pavucontrol icon in everything & menus
>
> I can
Package: docker.io
Version: 18.09.1+dfsg1-7~deb10u1
Severity: important
Dear Maintainer,
as it is, docker.io will automatically start and create a docker0 network
interface with some hard-coded IP address, and there is no file in /etc that
can be edited to change said IP address.
One must look i
Package: acpi-call
Version: 1.1.0-4
Static analysis with Coverity has picked up a memory leak in the
acpi-call dkms driver.
In function acpi_proc_write() the call to parse_acpi_args() can return
allocated buffers as pointed to by args even when the function returns
null. Hence the kfree of args
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package dmarc-cat
Test suite communicates with network, RC bug #928990
Fixed package uploaded to unstable, debdiff:
diff -Nru dmarc-cat-0.9.2/debian/changelog dmarc-cat-0.9
Control: reassign 924132 init-system-helpers
Dear init-system-helpers Maintainers,
here are a series of 5 commits that add support for runit-init into
'update-rc.d', 'invoke-rc.d' and 'service' scripts.
https://salsa.debian.org/Lorenzo.ru.g-guest/init-system-helpers/commits/runit
This ha
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Control: block -1 with 928368
Please unblock package papi
Hi,
there are two things that need to be fixed in PAPI for buster.
* transition libpapi5 -> libpapi5.7, (one package needs a binNM
Package: src:mkvtoolnix
Severity: minor
Tags: patch
Hi,
The manpage of mkvtoolnix-gui is not provided by the package which
provides the binary of mkvtoolnix-gui. Currently, manpage of
mkvtoolnix-gui is provided by mkvtoolnix. I guess is should be better
to move the manpage to the package which pr
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package libpfm4
This is a new upstream snapshot updating the event definitions for some
CPU models.
unblock libpfm4/4.10.1+git10-gd2a5b56-1
Andreas
diff --git a/Makefile b/
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package sqlalchemy,
My last (team-)upload for version 1.2.18+ds1-2 adds a patch from upstream
for CVE-2019-7164 CVE-2019-7548, which is an SQL vulnerability problem.
Note th
Package: partman-auto
Version: 148
Severity: wishlist
Tags: patch
User: de...@kali.org
Usertags: origin-kali
The size of the root partition has not been reevaluated since 2014 but the
size of typical installations has grown in the mean time. When you install
a Debian system with many packages (suc
Package: cacti-spine
Version: 1.1.37-2~bpo9+1
Severity: normal
Dear Maintainer,
*** Reporter, please consider answering these questions, where appropriate ***
* What led up to the situation?
We have several services being checked that return more than 1024 bytes
(with_resluts_buffer
Roland, i track back all the history and get not lost.. BUT IN ANY CASE
THAT BEHAVIOUR ARE NOT VIABLE, lest see:
about the commits history: seems the migration was not as espected
(migrations was done good but the results are not same as xpected)
the commits are :
https://salsa.debian.org/live-te
Package: php-curl
Version: 1:7.0+49
Hello there!
I noticed using guzzle that we are unable to send a blank accept header, so
I had tested the same thing using the PHP-Curl extension.
The behavior seems to be the same; a '*/*, ' value is being sent using the
underlying 'Accept;' CURLOPT header.
hi,
Debian#821096: filenames of generated by parse-advisory.pl and
parse-dls.pl files should include the revision number -
https://bugs.debian.org/821096
--
tschau,
Holger
---
holger@(debian|repr
Package: libmseed2
Version: 2.19.6-1
Severity: normal
Upstream is going to release a new major version of the library: libmseed3.
For the moment the 3.x tags are marked as pre-releases on GitHub.
Once released as stable and once Debian is out of the freeze I'll package the
new version and request
On Tue, May 21, 2019 at 09:59:21AM +0200, Diederik de Haas wrote:
> Got a new MB BIOS and after installing that, I made a new attempt with
> firmware-amd-graphics version 20190502-1.
> It failed again, but it got slightly further this time.
> I saw a remount message, then a blinking cursor and the
Dear maintainer,
With the latest upload of MariaDB 10.3, --libmysqld-libs is now supported by
mysql_config/mariadb_config:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=928230#46
Can you please trigger a rebuild of amarok once mariadb-10.3_1:10.3.15-1 has
hit unstable?
Please also consider u
On 21/05/2019 18:06, Ross Vandegrift wrote:
> Where do you see the icon missing?
In the menu. Favorite and Applications.
> Does this only occur if ~/.cache is on /tmp?
Yes. In fact I have the following scheme:
~/.cache is a symlink to /tmp/sergio_cache/
~/.cache_persistent contains cache tha
Hi Shengjing,
I have decided that I'll let golang-golang-x-net-dev migrate to testing
do the binNMUs in buster. I'll leave the bug open until the rebuilds
have succeeded to keep track of the issue.
Let's hope for the best.
Paul
signature.asc
Description: OpenPGP digital signature
Source: subversion
Severity: normal
Tags: patch
User: debian-i...@lists.debian.org
Usertags: ia64
Dear Maintainer,
Subversion currently depends on KDE in order to build, which creates an
excessive build dependency chain. Please accept the following patch
which adds a pkg.subversion.nokde build p
Source: plume-creator
Version: 0.66+dfsg1-3.1
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap
plume-creator fails to cross build from source, because it runs the
build architecture qmake. Using dh_auto_configure is the easiest way to
fix that. After fixing that, the cross build fails du
Source: netmate
Version: 0.2.0-10
Tags: patch upstream
User: helm...@debian.org
Usertags: rebootstrap
netmate fails to cross build from source, because the upstream Makefile
hard codes build tools such as gcc or pkg-config. The attached patch
makes them substitutable and netmate cross buildable. P
Source: keylaunch
Version: 1.3.9
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap
keylaunch fails to cross build from source, because it does not pass
--host to ./configure. The easiest way of doing so - using
dh_auto_configure - makes keylaunch cross buildable. Please consider
applying
Control: tags -1 confirmed moreinfo
Hi Bálint,
On 21-05-2019 09:58, Bálint Réczey wrote:
> OK, I understand. I hoped Release Team could take a look at the
> referenced bugs and list the ones they would see important enough to
> include in Buster. IMO letting 1.12 in would come with the least
> am
Source: uc-echo
Version: 1.12-10
Tags: patch
User: debian-cr...@lists.debian.org
Usertags: cross-satisfiability
uc-echo fails to cross build from source, because its Build-Depends are
not satisfiable. python-all-dev should be replaced with
python-all-dev:any, libpython-all-dev. The python modules
Jessie security support ended June 17 2018. Asking the live project to
support a dist that is no longer security supported adds work to an
already huge workload.
On 22/05/2019, PICCORO McKAY Lenz wrote:
> Roland, i track back all the history and get not lost.. BUT IN ANY CASE
> THAT BEHAVIOUR ARE
On dinsdag 21 mei 2019 19:24:07 CEST Romain Perier wrote:
> Hi,
Hi,
> firmware-amd-graphics 20190502-1 is based onto upstream commit
> 92e17d0dd2437140fab044ae62baf69b35d7d1fa, that is commit "amdgpu: update
> vega20 to the latest 19.10 firmware" . Two commits behind there is commit
> "amdgpu: up
Package: release.debian.org
User: release.debian@packages.debian.org
Usertags: unblock
Severity: normal
Hey,
Please unblock package ruby-devise.
The latest upload contains a CVE-2019-5421 (and #926348) fix.
Thus requesting you to:
unblock ruby-devise/4.5.0-3
Best,
Utkarsh
---
-- System In
Hi Xavier,
# Load session data into object
if ($data) {
+if ( $self->kind ) {
+unless ( $data->{_session_kind} eq $self->kind ) {
+$self->error("Session kind mistmatch");
+return undef;
+}
+}
Doesn't that break CDA
Source: ironic-inspector
Version: 8.0.0-2
Severity: grave
Tags: security upstream
Hi,
The following vulnerability was published for ironic-inspector.
CVE-2019-10141[0]:
SQL Injection vulnerability when receiving introspection data
If you fix the vulnerability please also make sure to include th
On Mon, May 20, 2019 at 07:03:04PM +0200, Daniel Baumann wrote:
> Hi Moritz,
>
> sorry for the late response, your mail slipped through the cracks on my
> end.. :(
>
> re adoption: removal request sounds fine, I currently have not enough
> time to take on more packages in Debian.
Ack, I just fil
Package: ftp.debian.org
Severity: normal
Please remove colorediffs-extension. It's broken with Thunderbird
and the last upload was in 2014.
Cheers,
Moritz
On dinsdag 21 mei 2019 21:20:18 CEST Diederik de Haas wrote:
> Checking 'git log' for that specific file before I did the test made me
> conclude it wouldn't make a difference with packaged version 20190114-1
> (but did the test anyway as requested).
To verify whether that single file wasn't an an
Source: libvirt
Version: 5.0.0-2
Severity: grave
Tags: security upstream
Control: found -1 5.0.0-2.1
Control: found -1 5.2.0-2
Hi,
The following vulnerability was published for libvirt.
CVE-2019-10132[0]:
Insecure permissions for systemd socket for virtlockd/virtlogd
If you fix the vulnerabilit
Hi Alberto,
On Tue, May 21, 2019 at 10:15:20AM +0200, Alberto Gonzalez Iniesta wrote:
> Hi all,
>
> I'll try to clarify a bit on ModSecurity vs CRS, since I think it may be
> a bit confusing.
Indeed, it's much clearer now with your explanation.
I'll update the CVE entries in the Debian security
Quoting Mathieu Mirmont :
If you need an immediate solution:
- "ods-enforcer key list -v" does list the IDs of all keys.
- "ods-enforcer key export --ds" does list the key ID of the DS record.
- grep your key from your signed zone, the comment field is there.
This does indeed work, so thank
obviously you Maichael do not paid attention, i repeat:
1. the bug was reported agains strecht.. i cannot build strecht image using
different mirrors for each case!
2. -for low performance networks it's a good practice have differents
mirrors so download task will be separatelly,
3. docummentation
Source: nagios-plugins-contrib
Version: 24.20190301
Tags: patch
User: helm...@debian.org
Usertags: rebootstrap
nagios-plugins-contrib fails to build from source. The first failure is
installing Build-Depends as python and python-debian are not cross
satisfiable. Since these are only used for scrip
I have followed this discussion, since we provide an image based debian con
nuestro producto, and we have realized that in part is right... the program
gives options to alter all sources of packages except the "backports"...
because you can alter all and not that?
I don't think that the excuse of
On dinsdag 21 mei 2019 21:20:18 CEST Diederik de Haas wrote:
> What was the reason for the test?
FTR: before I did the test I had already downgraded firmware-amd-graphics and
consequently also firmware-linux-nonfree and firmware-misc-nonfree back to
version 20190114-1
signature.asc
Description:
Here's an update of the proposed patch (with the correct
debian/libgc1c2.symbols).
Tested on Debian 9.9 amd64
The proposed patch closes: #493784 and #911729
--
Ivan Maidanski
libgc-update-8.0.4-v2.diff
Description: Binary data
On Tue, May 21, 2019 at 10:23:22AM +0200, Christian Folini wrote:
> > And the CVE description
> > explicitly refers to ModSecurity, so if those reports are not correct, the
> > CVE IDs should be rejected as MITRE.
>
> Yes. Our plan is to bring out a fix and then get in touch and have 4 of the 5
>
Hi Brian,
On Tue, May 21, 2019 at 07:00:52PM +1000, Brian May wrote:
> Salvatore Bonaccorso writes:
>
> > Alright, I will mark it no-dsa for stretch then at least. For buster,
> > might be still good to have the fix go in?
>
> First attempt, looks like version in buster/sid doesn't build :-(
A
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock evolvotron/0.7.1-3. It fixes frequent segfaults at
startup, namely #929034.
Full source debdiff:
diff -Nru evolvotron-0.7.1/debian/changelog evolvotron-0.7.1/debian/changelo
On Tue, May 21, 2019 at 10:39:03PM +0200, Moritz Mühlenhoff wrote:
> > Yes. Our plan is to bring out a fix and then get in touch and have 4 of the
> > 5
> > CVEs rejected. Unfortunately, the fix is far more complicated than we had
> > hoped for. But we have a pull request now, so this is getting c
Package: src:rust-string-cache-shared
Version: 0.3.0-1
Control: tags -1 + patch
https://tracker.debian.org/media/packages/r/rust-string-cache-shared/copyright-0.3.0-1
shows that it does not have the appropriate header stanza.
I think this particular patch to debcargo-conf is what you want:
---
1 - 100 of 130 matches
Mail list logo
