Bug#994954: virtualenv in buster fails with 404 on https://pypi.org/simple/pkg-resources/

Package: python3-virtualenv Version: 15.1.0+ds-2 Severity: grave Justification: renders package unusable virtualenv in Debian 10 buster recently (today, I think) stopped working for both versions of Python. It now fails with “EnvironmentError: 404 Client Error: Not Found for url: https://pypi.or

Bug#894667: beep: CVE-2018-0492

On Thu, 5 Apr 2018, Tony Hoyle wrote: > It's concerning that the holeybeep.ninja site exploited an unrelated > fault for 'fun' without apparently telling anyone. To be fair, they told you exactly what was going to happen: “Apply this [patch] as soon as possible using the following command: patch

Bug#857890: reproducible but weird

On Thu, 16 Mar 2017, Adam Borowski wrote: > The bug does reproduce for me on _some_ setups, all in regular sbuild: > > successful: amd64 > FTBFS: armhf > FTBFS: armhf qemu-user on amd64 > successful: armhf on arm64 > > The timezone is the same, so is schroot/sbuild configuration, all wh

Bug#857890: git: FTBFS: debian/rules:55: recipe for target 'override_dh_auto_test-arch' failed

The actual failures shown in your build log, copied below, are in t0006-date.sh. I can’t reproduce this using the locale and timezone settings listed at https://tests.reproducible-builds.org/debian/index_variations.html, but perhaps you’re trying something new? Could there be something peculi

Bug#847961: gitweb: missing dependency to libcgi-pm-perl

Control: affects -1 1:2.10.2-3 The regression was introduced by Perl, not Git. CGI.pm used to live in Perl core but was dropped in Perl 5.22. I’ve confirmed that testing is also affected (and, based on the Perl changelog, has probably been affected all year). I’ll add the missing dependency

Bug#842586: git: FTBFS on mips64el (fatal: Out of memory, getdelim failed)

Control: notfound -1 git/1:2.10.2-1 Control: close -1 On Mon, 31 Oct 2016, Sebastiaan Couwenberg wrote: > I think we can close this issue as notfound in git/1:2.10.2-1, since the > most reliable mips64el buildd was able to build it successfully. Thanks, doing so. Anders

Bug#842586: git: FTBFS on mips64el (fatal: Out of memory, getdelim failed)

On Mon, 31 Oct 2016, Sebastiaan Couwenberg wrote: > Disabling the tests on mips64el is reasonable. > > You can also do a build on the mips64el porterbox if that succeeds > without changes you can just upload that. Alright. I am still a DM in the process of applying to be a DD, but I’ve now requ

Bug#842586: git: FTBFS on mips64el (fatal: Out of memory, getdelim failed)

Control: tags -1 + help On Sun, 30 Oct 2016, Bas Couwenberg wrote: > The recent git upload FTBFS on mips64el due to OOM, the missing build on > mips64el is preventing the qgis rebuild as part of the ongoing gdal > transition (#842288). > > The build was performed on mipsel-manda-02 which is known

Bug#842477: [PATCH] git-sh-setup: Restore sourcability from outside scripts

On Sun, 30 Oct 2016, Ævar Arnfjörð Bjarmason wrote: > This did break in v2.10.0, and it's taken a couple of months to notice > this, so clearly it's not very widely used, which says something about > the cost-benefit of maintaining this for external users. For the record, in case this affects the

Bug#842477: [PATCH] git-sh-setup: Restore sourcability from outside scripts

On Sun, 30 Oct 2016, Ævar Arnfjörð Bjarmason wrote: > This seems like a reasonable fix for this issue. However as far as I > can tell git-sh-setup was never meant to be used by outside scripts > that didn't ship as part of git itself. > > If that's the case any change in the API which AFAICT is no

Bug#842477: [PATCH] git-sh-setup: Restore sourcability from outside scripts

to-replace-refs.sh and contrib/rerere-train.sh in tree. Fix this by using git --exec-path to find git-sh-i18n. While we’re here, move the sourcing of git-sh-i18n below the shell portability fixes. Signed-off-by: Anders Kaseorg --- Is this a supported use of git-sh-setup? Although the documentatio

Bug#840189: dblatex fails in pdflatex: Use of \@xmultirow doesn't match its definition

Control: clone -1 -2 Control: reassign -2 texlive-latex-extra 2016.20161008-1 Control: retitle -2 texlive-latex-extra should Breaks: dblatex (<< 0.3.8-2~) Control: severity -2 serious Although it is not texlive-latex-extra’s fault that dblatex fails with the new version, I believe it should not e

Bug#839481: openafs: FTBFS: Tests failures

Control: forwarded 839481 https://gerrit.openafs.org/12414 Control: tags 839481 + upstream pending I sent a patch for this failure upstream, but then I ran into the separate problem that dblatex no longer works at all in sid as of yesterday, and filed https://bugs.debian.org/840189 for that. I’

Bug#840189: dblatex fails in pdflatex: Use of \@xmultirow doesn't match its definition

Package: dblatex Version: 0.3.8-1 Severity: grave dblatex in sid fails on every document as follows: $ echo 'Hello, world!' > hello.xml $ dblatex hello.xml Build the book set list... Build the listings... XSLT stylesheets DocBook - LaTeX 2e (0.3.8-1) =

Bug#818787: doxygen: Changes default HAVE_DOT to YES without having graphviz in the Depends line.

Hi, I’m one of the nobodies that looks at my build logs. I noticed five instances of sh: 1: dot: not found error: Problems running dot: exit code=127, command='dot', arguments='"…/graph_legend.dot" -Tpng -o "…/graph_legend.png"' in the openafs build log, and indeed Doxygen is generating

Bug#834087: Bug#832656: runit: breaks users of runit: ln: failed to create symbolic link '/etc/service/bcron-sched': No such file or directory

Control: tags -1 + moreinfo On Thu, 28 Jul 2016, Andreas Beckmann wrote: > during a test with piuparts I noticed your package failed to install. > […] > ln: failed to create symbolic link '/etc/service/bcron-sched': No such file > or directory > […] > Similar problems were seen in different *-r

Bug#833930: gitk: display shot, application usability gone

Control: tags -1 + moreinfo Control: severity -1 normal I tried to reproduce this by installing a fresh jessie VM in virt-manager with debian-live-8.5.0-amd64-xfce-desktop.iso, installing gitk, then upgrading the VM to stretch in two parts (apt upgrade; apt full-upgrade), then rebooting. I did

Bug#778196: No, not fixed

Control: found 778196 1.6.9-2+deb8u1 Control: reopen Commit a6013738 (Linux: Move code to reset the root to afs/LINUX) is a prerequisite of 860764da (Linux: d_alias becomes d_u.d_alias), but the former is missing in 1.6.9-2+deb8u1. Anders -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@li

Bug#737076: libyaml: CVE-2013-6393: heap-based buffer overflow when parsing YAML tags

On Thu, 30 Jan 2014, Salvatore Bonaccorso wrote: > On Wed, Jan 29, 2014 at 08:52:01PM -0500, Anders Kaseorg wrote: > > Thanks. Here’s the new release (currently awaiting upload sponsorship): > > > > http://web.mit.edu/andersk/Public/debian/libyaml_0.1.4-3.dsc > >

Bug#737076: libyaml: CVE-2013-6393: heap-based buffer overflow when parsing YAML tags

Thanks. Here’s the new release (currently awaiting upload sponsorship): http://web.mit.edu/andersk/Public/debian/libyaml_0.1.4-3.dsc http://web.mit.edu/andersk/Public/debian/libyaml_0.1.4-2_3.debdiff Anders -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "

Bug#728508: [PATCH] Re: Bug#728508: Acknowledgement (Dropped #include results in connect.c:380:9: warning: assignment makes pointer from integer without a cast)

tags 728508 + patch thanks --- a/debian/diff/0003-transport-expose-git_tcp_connect-and-friends-in-new-t.diff +++ b/debian/diff/0003-transport-expose-git_tcp_connect-and-friends-in-new-t.diff @@ -13,10 +13,10 @@ library easier to understand before adding to it. Signed-off-by: Jonathan Nieder -

Bug#728508: Dropped #include results in connect.c:380:9: warning: assignment makes pointer from integer without a cast

Package: git Version: 1:1.8.5~rc0-1 Severity: serious A misresolved merge conflict dropped #include "tcp.h" from connect.c between 1.8.4.2-1 and 1.8.5~rc0-1, which results in these build warnings: CC connect.o connect.c: In function 'git_connect': connect.c:379:3: warning: implicit declarati

Bug#727226: [PATCH] cvsserver: Determinize output to combat Perl 5.18 hash randomization

(check [cvswork3] diff, when running test_cmp on two diffs). To fix this, hide the internal order of hashes with sort when sending output or running database queries. (An alternative workaround is PERL_HASH_SEED=0, but this seems nicer.) Signed-off-by: Anders Kaseorg --- git-cvsserver.perl

Bug#666813: Apache 2.4 upload date scheduled for May 30

Although this isn’t important, I believe you can also get rid of AP2_MAKE_DEFS and override_dh_auto_make; the defaults are fine. Anders On Thu, 11 Jul 2013, Colin Watson wrote: > diff -Nru mod-vhost-ldap-2.0.8/debian/rules mod-vhost-ldap-2.0.8/debian/rules > --- mod-vhost-ldap-2.0.8/debian/rules

Bug#683568: git: NO_HARDLINKS broke in 1.7.11 (renamed to NO_INSTALL_HARDLINKS)

Package: git Version: 1:1.7.11-1~exp0 Severity: serious Justification: package uninstallable The btrfs “Too many links” bug (http://bugs.debian.org/642603, http://bugs.debian.org/645009, http://bugs.debian.org/654596) has reappeared in 1:1.7.11-1~exp0 because, when the no-hardlinks patch was me

Bug#654596: git: failure to upgrade from squeeze ("mv: git-add.tmp and git-add are the same file")

On Wed, 4 Jan 2012, Jonathan Nieder wrote: > + # : coreutils mv refuses to > + # replace a file by a symlink to the same inode. > + # Fine, let's give /usr/lib/git-core/git its own inode. Or, inspired by http://debbugs.gnu.org/6960#65 , we could move the sy

Bug#654596: git: failure to upgrade from squeeze (NOT btrfs; symlink errors)

On Wed, 4 Jan 2012, Jon Dowland wrote: > > mv: `/usr/lib/git-core/git-add.tmp' and `/usr/lib/git-core/git-add' are > > the same file This was also reported by a user of the Ubuntu PPA: https://bugs.launchpad.net/911906 It seems mv -f refuses to replace a file with a symlink to the same inode

Bug#635102: tcsh: FTBFS: testsuite failures

-6.17.06/debian/changelog +++ tcsh-6.17.06/debian/changelog @@ -1,3 +1,10 @@ +tcsh (6.17.06-2) unstable; urgency=low + + * debian/patches/disable-test-notty.patch: Disable an additional test +that fails when not running with a TTY. (Closes: #635102) + + -- Anders Kaseorg Tue, 20 Sep 2011 20:00

Bug#635102: tcsh: FTBFS: testsuite failures

I finally figured out how to reproduce this. The test suite only fails when stdin is redirected from /dev/null, because $ tcsh -f -c 'echo #no comment' #no comment $ tcsh -f -c 'echo #no comment' < /dev/null $ This looks like a potentially legitimate upstream bug. Anders -- To UNSUBSCRIBE

Bug#632573: serf/experimental: FTBFS (kfreebsd): testsuite failures

I sent a patch to the upstream bug that seems to fix the test failures for me on Linux, at least (after removing the ip6-localhost kludge). Can someone try it on kFreeBSD? http://code.google.com/p/serf/issues/detail?id=78#c2 Anders -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.de

Bug#626979: haskell-platform requires older libghc-quickcheck2-dev than exists

Package: haskell-platform Version: 2011.2.0.1.1 Severity: serious haskell-platform depends libghc-quickcheck2-dev (>= 2.4.0.1), libghc-quickcheck2-dev (< 2.4.0.1+), but this dependency is unsatisfiable because Debian only has libghc-quickcheck2-dev 2.4.1.1-1. -- To UNSUBSCRIBE, email to debi

Bug#626772: cabal-install: unsatisfied versioned build dep on libghc-http-dev

Package: cabal-install Version: 0.10.2-1 Severity: serious Since the version number of haskell-http from 40001010-1 to 1:4000.1.1-2 (http://bugs.debian.org/601698), the versioned build deps for haskell-cabal-install on libghc-http-dev (>= 4002), libghc-http-dev (<< 4001) are now unsatis

Bug#618872: Wildcard regression in mod_vhost_ldap 2.0.6

;h=a529b3b [3] http://bugs.debian.org/469930 http://git.debian.org/?p=users/ondrej/mod-vhost-ldap.git;a=commitdiff;h=303e7b4 -- 8< -- From 188f008c3b074a8352e814024a13b1710427893a Mon Sep 17 00:00:00 2001 From: Anders Kaseorg Date: Sat, 19 Mar 2011 03:52:56 -0400 Subject: [PATCH] Rev

Bug#590873: openconnect < 2.25 does not verify SSL server certificates

Package: openconnect Version: 2.22-1.1 Severity: grave Tags: security fixed-upstream Versions of OpenConnect before 2.25 do not verify that the server SSL certificate matches the server hostname, which enables an attacker to perform an MITM attack on the connection. This can be fixed by upgradi

Bug#576967: cdbs: Splits CC into multiple env-var words

reassign 576967 cdbs tags 576967 +patch thanks How can you suggest that a multiword CC is “abuse” and okay to break, when by your own logic (bug 523642), CDBS “has a well defined current behaviour that users rely on”? This change also broke one of my packages that does some cross compiling by

Bug#563882: git-core FTBFS on ia64: t1001-read-tree-m-2way.sh test fails

tags 563882 +patch thanks On Sat, 9 Jan 2010, Jonathan Nieder wrote: > To test this hypothesis, it would be nice to use a copy of git built > with DEB_BUILD_OPTIONS=nocheck to compare > […] Thanks for looking at this, Jonathan. Now that Git 1.6.6.1 is out, I propose we build git-core 1.6.6.1-1

Bug#561727: git-core: /etc/bash_completion.d/git sometimes freezes

fixed 561727 1:1.6.0-1 thanks Apparently Git 1.6.0 added a new environment variable GIT_CEILING_DIRECTORIES to work around this problem. From git(1): GIT_CEILING_DIRECTORIES This should be a colon-separated list of absolute paths. If set, it is a list of directories

Bug#561727: git-core: /etc/bash_completion.d/git sometimes freezes

Is this worse than any other tab completion DoSes, such as ‘scp tarpit-host:’? If an attacker can write into a parent of your home directory, than you have way bigger problems than tab completion. Does this really merit a release-critical severity? Anders -- To UNSUBSCRIBE, email to debian-

Bug#563882: git-core FTBFS on ia64: t1001-read-tree-m-2way.sh test fails

I tried to set up an emulated ia64 chroot with which to track down the problem, but apparently ski doesn’t work . :-( Looking at build logs from various versions, it is always the same two tests that fail, and only on ia64. Most users aren’t on ia64, and it see

Bug#563882: git-core FTBFS on ia64: t1001-read-tree-m-2way.sh test fails

Package: git-core Version: 1:1.6.5.2-1 Severity: serious Justification: FTBFS Some time between 1.6.5-1 and 1.6.5.2-1, git-core started failing to build on ia64, because the test t1001-read-tree-m-2way.sh is failing. This has continued in every version up through 1.6.6-1. The same bug was repo

Bug#543015: barnowl: FTBFS: tests failed

; urgency=low + + * Build-depend libclass-accessor-perl. (Closes: #543015) + + -- Anders Kaseorg Tue, 22 Sep 2009 17:08:09 -0400 + barnowl (1.3-1) unstable; urgency=low * New upstream version diff -u barnowl-1.3/debian/control barnowl-1.3/debian/control --- barnowl-1.3/debian/control

Bug#510153: tcl8.6_8.6.0~b1-2(hppa/experimental): FTBFS not fixed

tags 510153 +patch thanks The issue is that debian/rules calls $(MAKE) CFLAGS="$(CFLAGS)" overriding the CFLAGS variable set in pkgs/tdbc1.0b1/Makefile.in, which had been set up to include ${SHLIB_CFLAGS} (-fPIC) by pkgs/tdbc1.0b1/configure (generated from the TEA_MAKE_LIB macro in pkgs/tdb

Bug#510153: tcl8.6_8.6.0~b1-2(hppa/experimental): FTBFS not fixed

FYI, amd64 has the same build failure (at least on Ubuntu karmic). x86_64-linux-gnu-gcc -shared -g -O2 -fno-unit-at-a-time -Wl,-Bsymbolic-functions -Wl,--export-dynamic -o libtdbc1.0b1.so tdbc.o tdbcStubInit.o tdbcTokenize.o -L/build/buildd/tcl8.6-8.6.0~b1/unix -ltclstub8.6 /usr/bin/ld: tdbc.o

Bug#508265: Fixed upstream in 1.0.12

@@ -1,3 +1,10 @@ +sysprof (1.0.12-0.1) unstable; urgency=low + + * New upstream release. ++ Fix compiling on amd64 with kernel >= 2.6.25 (Closes: #508265). + + -- Anders Kaseorg Sat, 13 Dec 2008 16:44:40 -0500 + sysprof (1.0.11-0.1) unstable; urgency=low * Non-maintainer upload. diff -

Bug#494633: openafs modules don’t build with etch kernel 2.6.24-etchnhalf.1-amd64

Package: openafs-modules-source Version: 1.4.2-6etch1 Severity: grave Tags: etch The new release of etch includes a new default kernel 2.6.24-etchnhalf.1-amd64, and the etch openafs-modules-source package doesn’t build against it: CC [M] /usr/src/modules/openafs/src/libafs/MODLOAD-2.6.24-etch

Bug#415398: apt-cacher causes corruption when used with Ubuntu and Debian archives

Package: apt-cacher Version: 1.5.3 Severity: grave In many instances, the Debian and Ubuntu archives have different packages with the same name. In the apt-cacher cache, these pairs of packages collide with each other, resulting in corruption of one of them: $ wget http://archive.ubuntu.com/ubu