Your message dated Sun, 08 Aug 2021 01:21:30 +
with message-id
and subject line Bug#991971: fixed in lynx 2.9.0dev.6-3
has caused the Debian Bug report #991971,
regarding lynx: [CVE-2021-38165] SSL certificate validation fails with URLs
containing user name or user name and password, i.e.
ht
Hi Andreas,
Andreas Metzler wrote:
> > > tags 991971 fixed-upstream
> > Bug #991971 [lynx] lynx: SSL certificate validation fails with URLs
> > containing user name or user name and password, i.e.
> > https://user:password@host/ and https://user@host/; leaks password in clear
> > text via SNI
>
Processing commands for cont...@bugs.debian.org:
> # Has security impact, see
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991971#24 — working on an
> update for Bullseye
> severity 991971 serious
Bug #991971 {Done: Andreas Metzler } [lynx] lynx:
[CVE-2021-38165] SSL certificate validati
Processing commands for cont...@bugs.debian.org:
> found 983793 1.13-1
Bug #983793 [src:grc] grc needs a source-only upload for testing migration
Marked as found in versions grc/1.13-1.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
983793: https://bugs.debian.or
Processing commands for cont...@bugs.debian.org:
> # security issues that can be fixed via DSAs later
> tags 991706 + bullseye-ignore
Bug #991706 [src:exiv2] exiv2: CVE-2021-31292
Added tag(s) bullseye-ignore.
> tags 991705 + bullseye-ignore
Bug #991705 [src:exiv2] exiv2: CVE-2021-29457
Added tag(
Control: retitle -1 enable per-package timeout exceptions
Control: severity -1 wishlist
Control: tags -1 =
Hi debci co-maintainers,
On Mon, 21 Sep 2020 11:43:06 +0200 Matthias Klose wrote:
> On 9/19/20 9:16 PM, Paul Gevers wrote:
> > Source: openjdk-15
> > Version: 15+36-1
> > Severity: serious
Processing control commands:
> retitle -1 enable per-package timeout exceptions
Bug #970675 [release.debian.org] src:openjdk-*: autopkgtest times out on
Debian/Ubuntu infrastructure
Changed Bug title to 'enable per-package timeout exceptions' from
'src:openjdk-*: autopkgtest times out on Debian/
Processing commands for cont...@bugs.debian.org:
> found 989614 5.50-1.2
Bug #989614 {Done: Salvatore Bonaccorso } [src:bluez] bluez:
CVE-2021-0129 CVE-2020-26558
Marked as found in versions bluez/5.50-1.2.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
989614:
Processing commands for cont...@bugs.debian.org:
> found 989614 5.50-1.2
Bug #989614 {Done: Salvatore Bonaccorso } [src:bluez] bluez:
CVE-2021-0129 CVE-2020-26558
Ignoring request to alter found versions of bug #989614 to the same values
previously set
> found 989614 5.50-1.2~deb10u1
Bug #989614
Your message dated Sat, 07 Aug 2021 18:17:08 +
with message-id
and subject line Bug#986865: fixed in yubikey-manager 2.1.0-1+deb10u1
has caused the Debian Bug report #986865,
regarding yubikey-manager should depend on python3-pkg-resources
to be marked as done.
This means that you claim that
Your message dated Sat, 07 Aug 2021 18:17:07 +
with message-id
and subject line Bug#991280: fixed in python-uflash 1.2.4+dfsg-1+deb10u1
has caused the Debian Bug report #991280,
regarding firmware-microbit-micropython-dl: fails to install: checksum of
downloaded file does not match
to be mark
Your message dated Sat, 07 Aug 2021 18:02:08 +
with message-id
and subject line Bug#986119: fixed in dwarf-fortress 0.44.12+dfsg1-0+deb10u1
has caused the Debian Bug report #986119,
regarding Source package includes shared libraries with GPL violations
to be marked as done.
This means that yo
Your message dated Sat, 07 Aug 2021 18:02:08 +
with message-id
and subject line Bug#962332: fixed in ansible 2.7.7+dfsg-1+deb10u1
has caused the Debian Bug report #962332,
regarding ansible: needs python3-distutils, at least for the chroot connection
module
to be marked as done.
This means t
Your message dated Sat, 07 Aug 2021 18:02:09 +
with message-id
and subject line Bug#933100: fixed in hg-git 0.8.12-1+deb10u1
has caused the Debian Bug report #933100,
regarding hg-git: autopkgtest needs update for new version of git
to be marked as done.
This means that you claim that the pro
Hi Frédéric,
On Thu, Apr 29, 2021 at 05:24:16PM +0200, Frédéric Bonnard wrote:
> Hi there,
>
> I tried to bisect between 4.17.0 and 4.18.0 (4.19.0
> didn't work either) and found the first offending commit
> 64ceb09e3297259b58a78b5d6486b1724070a4c9 that makes tracecompass fail
> and playing with
Your message dated Sat, 07 Aug 2021 15:18:28 +
with message-id
and subject line Bug#991046: fixed in tomcat9 9.0.43-2
has caused the Debian Bug report #991046,
regarding tomcat9: CVE-2021-33037 CVE-2021-30640 CVE-2021-30639
to be marked as done.
This means that you claim that the problem has
Processing control commands:
> block 991982 by -1
Bug #991982 [nano] nano does not work with TERM unsetted
991982 was not blocked by any bugs.
991982 was not blocking any bugs.
Added blocking bug(s) of 991982: 991984
> block 987675 by -1
Bug #987675 [sensible-utils] sensible-utils: select-editor m
Processing control commands:
> affects -1 sensible-utils
Bug #991982 [nano] nano does not work with TERM unsetted
Added indication that 991982 affects sensible-utils
--
991982: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991982
Debian Bug Tracking System
Contact ow...@bugs.debian.org with
Package: nano
Version: 5.4-2
Severity: grave
Tags: upstream buster-ignore bullseye-ignore
Justification: Policy 11.4
Control: affects -1 sensible-utils
Dear Maintainer,
Feel free to downgrade to important, but this bug affects sensible utils in
case of disaster recovery so mark as grave (nano is
I think we may have lost David? He doesn't seem to be responding to bug reports
based upon his maintainer page on the BTS. Open bugs going back to 2013 (not
unusual) but the five of the same bug from that date remain unmerged.
Anyone heard from him by chance? Hope he's all right.
Joseph
On 07/08/2021 10.49, Fabio Fantoni wrote:
Il 28/07/2021 21:47, Andreas Beckmann ha scritto:
Once the fix is uploaded my piuparts instance will run the long
upgrade path test on all packages, and I'll tell you if something is
still not right ;-)
Hi, can you run your piuparts test on the long u
Il 28/07/2021 21:47, Andreas Beckmann ha scritto:
Once the fix is uploaded my piuparts instance will run the long
upgrade path test on all packages, and I'll tell you if something is
still not right ;-)
Hi, can you run your piuparts test on the long upgrade for check that
there are no other u
22 matches
Mail list logo
