patches/02-tzdata-2023c.patch | 42
++
patches/series|1 +
4 files changed, 55 insertions(+), 2 deletions(-)
Sadly, Yadd changes were already pushed to master, so I will have to do
some git history rewriting. Please update your local clones accordingly.
--
Martina Ferrari (Tina)
Control: tag -1 pending
Hello,
Bug #1036259 in moment-timezone.js reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/js-team/moment-timezone.js/-/commit/f497c97574
Update:
I have just uploaded the package, force-pushed my changes to master, and
submitted the unblock request: #1037049
On 02/06/2023 19:13, Martina Ferrari wrote:
On Sun, 28 May 2023 18:15:14 +0200 gregor herrmann
wrote:
On Sun, 28 May 2023 20:05:09 +0400, Yadd wrote:
> > This
7f0d9ba6d.
In a nutshell: we never released this code :)
--
Martina Ferrari (Tina)
Control: tag -1 pending
Hello,
Bug #953040 in prometheus-mysqld-exporter reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/go-team/packages/prometheus-mysqld-expo
Control: tag -1 pending
Hello,
Bug #952291 in prometheus-mysqld-exporter reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/go-team/packages/prometheus-mysqld-expo
_unstable.log
>
> A list of current common problems and possible solutions is available at
> http://wiki.debian.org/qa.debian.org/FTBFS . You're welcome to contribute!
>
> About the archive rebuild: The rebuild was done on EC2 VM instances from
> Amazon Web Services, using a clean, minimal and up-to-date chroot. Every
> failed build was retried once to eliminate random failures.
>
--
Martina Ferrari (Tina)
really don't know what
are the plans upstream, or whether this did more than changing the
import path, but I think it would be good to upload some fix to the
current situation.. In general, I think we should adopt a team policy
regarding API breakages, similar to SONAME handling.
--
Martina Ferrari (Tina)
n-nemu, are you planning
>> to port it to Python 3 or should it be removed?
>
> Gentle ping
>
> Cheers,
> Moritz
>
>
--
Martina Ferrari (Tina)
his!
--
Martina Ferrari (Tina)
It looks like the tests also failed in testing with chromium v98
(https://ci.debian.net/data/autopkgtest/testing/amd64/n/node-puppeteer/20151806/log.gz),
which did actually allow chromium v99 to migrate to testing, so you can
ignore that part of this bug report.
--
Martina Ferrari (Tina)
Somehow I had missed this bug report. I will prepare a new upload ASAP.
--
Martina Ferrari (Tina)
+dfsg
moment-timezone.js full version (U+dfsg1-D+TZVER): 0.5.32+dfsg-1+2021a
I am now uploading a new revision that fixes this.
--
Martina Ferrari (Tina)
all.deb
Obviously the manpage was moved between the packages.
cheers,
Andreas
--
Martina Ferrari (Tina)
Ah, good point. That man page is generated from the sphinx
documentation. It was originally in the doc package, but I thought it
made more sense in the main package. Will do the rename as you suggest,
I think section 3 is the right place.
Thanks again.
--
Martina Ferrari (Tina)
Control: tag -1 pending
Hello,
Bug #1008400 in golang-github-prometheus-common reported by you has been fixed
in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/go-team/packages/golang-github-p
Control: tag -1 pending
Hello,
Bug #1008410 in golang-github-prometheus-exporter-toolkit reported by you has
been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/go-team/packages/golan
, remove it from
Debian.
Thanks.
--
Martina Ferrari (Tina)
://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/prometheus.html
https://ci.debian.net/data/autopkgtest/unstable/amd64/p/prometheus/15535224/log.gz
--
Martina Ferrari (Tina)
Source: sphinxcontrib-httpdomain
Version: 1.7.0-1
Severity: grave
Justification: renders package unusable
Last year, in commit e0233aea I backported a fix to a bug in the plugin setup()
function. More recently, in commit 61f14798, the patch was refreshed
incorrectly leading to a duplicated call to
Hi,
On 09/11/2021 12:50, Christoph Berg wrote:
Re: Martina Ferrari
The GH issue you linked seems to be fixed upstream already with this patch:
https://github.com/prometheus/prometheus/pull/8538/files
Is anyone working on getting this uploaded? prometheus just got
removed from testing.
Yes
Control: tag -1 pending
Hello,
Bug #947996 in golang-github-mailru-easyjson reported by you has been fixed in
the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/go-team/packages/golang-github-mail
Hi,
Sorry for the silence, I had missed this bug completely. I will work on
fixing this, meanwhile, I hope this email delays the AUTORM for a few
days...
--
Martina Ferrari (Tina, the artist formerly known as Tincho)
Control: tag -1 pending
Hello,
Bug #1022393 in moment-timezone.js reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/js-team/moment-timezone.js/-/commit/ba24bdd833
provide some more
information to reproduce it.
--
Martina Ferrari (Tina)
Control: tag -1 pending
Hello,
Bug #1017293 in moment-timezone.js reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/js-team/moment-timezone.js/-/commit/1681cbc293
Control: tag -1 pending
Hello,
Bug #1017277 in golang-github-thedevsaddam-gojsonq reported by you has been
fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/go-team/packages/golang-githu
clone 1015218 -2
retitle 1015218 consul: CVE-2021-37219 CVE-2021-38698
retitle -2 consul: CVE-2022-29153
thanks
I am splitting this bug in two, as the fixes for these CVEs are in
different release trees (1.8 vs 1.9)
--
Martina Ferrari (Tina)
Control: tag -1 pending
Hello,
Bug #1017291 in mtail reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/go-team/packages/mtail/-/commit/41545649a1b835853ef09e1e7ae
version of consul that fixes all the
outstanding CVEs, or failing that, to remove consul support from prometheus.
--
Martina Ferrari (Tina)
Control: tag -1 pending
Hello,
Bug #1021734 in prometheus-alertmanager reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/go-team/packages/prometheus-alertmanager/
17:41, Martina Ferrari wrote:
On 10/09/2022 16:13, Nilesh Patra wrote:
src:nomad still B-D on consul, although you are right that it is out
of testing, but
IIRC it was in a good shape a while ago(but not now), even made it to
last stable.
So keeping consul _maybe_ useful (dunno for sure)
Also, src:pa
Package: autopostgresqlbackup
Version: 1.1-1
Severity: critical
Tags: upstream
Justification: causes serious data loss
Due to a human error, today I had to resort to backups to recover data from a
PostgreSQL database. In the worst possible moment, I realised that ALL of the
backups we had of this
Source: sphinxcontrib-httpdomain
Version: 1.5.0-1
Severity: grave
Tags: patch
Justification: renders package unusable
I have been unable to use this package for a few months, but could not find
what I was doing wrong, and assumed that such a basic problem would be
affecting other users, but there
Merge request created at
https://salsa.debian.org/openstack-team/third-party/sphinxcontrib-httpdomain/-/merge_requests/1
On 18/04/2020 01:29, Martina Ferrari wrote:
> Source: sphinxcontrib-httpdomain
> Version: 1.5.0-1
> Severity: grave
> Tags: patch
> Justification: renders p
Package: fusiondirectory
Version: 1.3-3
Severity: grave
Tags: security
Justification: user security hole
As reported in
https://github.com/fusiondirectory/fusiondirectory-plugins/issues/25
fusiondirectory stores the passwords for the Dovecot and Cyrus master
accounts in LDAP in cleartext, on custo
It
just needs to be updated as often as tzdata is. But if you have a
suggestion to make this more automatic, I would love to hear it.. I have
been doing this very repetitive maintenance for years!
--
Martina Ferrari
Control: tag -1 pending
Hello,
Bug #1068750 in moment-timezone.js reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/js-team/moment-timezone.js/-/commit/a1ccd03c58
7;t get is that the package fails to build. At most, it would
result
in an improved package, not worse. Or maybe I'm missing anything.
What I described above, but I am really open to suggestions on how to
better handle this.
--
Martina Ferrari
Control: tag -1 pending
Hello,
Bug #1042336 in moment-timezone.js reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/js-team/moment-timezone.js/-/commit/946248d2df
Sorry this took longer than expected. It turns out that the Ubuntu patch
did not work, and it took me a while to find that many of the zone info
symlinks had moved to tzdata-legacy.
I have not just uploaded the fixed package, finally.
On 13/09/2023 18:03, Martina Ferrari wrote:
Hi,
Thanks
packaging version 2 of ginko, but it
would have been nice to have some coordination before taking over the
binary and opening an RC bug against this package. Please, let's work
together in the future instead.
--
Martina Ferrari (Tina)
Control: tag -1 pending
Hello,
Bug #1052080 in golang-ginkgo reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/go-team/packages/golang-ginkgo/-/commit/77dd201c36d
Control: tag -1 pending
Hello,
Bug #1052776 in golang-github-prometheus-exporter-toolkit reported by you has
been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/go-team/packages/golan
inkgo-dev so it doesn't have to go through NEW.
--
Martina Ferrari (Tina)
Package: odoo
Version: 14.0.0+dfsg.2-7+deb11u1
Severity: grave
Tags: security
Justification: user security hole
X-Debbugs-Cc: t...@debian.org, Debian Security Team
Hi,
See details of vulnerability at:
https://codeanlabs.com/blog/research/cve-2024-4367-arbitrary-js-execution-in-pdf-js/
Note tha
Debian package was not.
[1]: https://bugs.launchpad.net/ubuntu/+source/tzdata/+bug/2008076
[2]:
https://git.launchpad.net/ubuntu/+source/moment-timezone.js/commit/debian?h=applied/ubuntu/lunar
--
Martina Ferrari (Tina)
Control: tag -1 pending
Hello,
Bug #1061027 in moment-timezone.js reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/js-team/moment-timezone.js/-/commit/b1b2b0107a
ackage (to avoid this problem altogether I
think, but I'm not 100% sure it'll work) and i was waiting to see if they would
finish the work and upload. Since that has not happened yet, I might revert
those changes and do the usual dance...
--
Martina Ferrari (Tina/mobile)
Hi!
On 05/11/2024 06:20, Jérémy Lal wrote:
Le sam. 2 nov. 2024 à 21:09, Martina Ferrari <mailto:t...@tina.pm>> a écrit :
I was planning to do that, but then I saw that Jérémy Lal from the
js team had made big modifications to the package (to avoid this
problem altogethe
Control: tag -1 pending
Hello,
Bug #1092191 in golang-fsnotify reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/go-team/packages/golang-fsnotify/-/commit/cea91d4
Hi,
On 30/04/2025 14:57, erebion wrote:
I've opened a Merge Request fixing that: https://salsa.debian.org/go-
team/packages/restic-rest-server/-/merge_requests/1
Thank you very much!
I have just reviewed it, it has a small mistake to correct.
--
Martina Ferrari
, and the NEW queue is really big right now. I think it would
make sense to patch this bug meanwhile?
--
Martina Ferrari
Control: tag -1 pending
Hello,
Bug #1098554 in golang-github-gorilla-csrf reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/go-team/packages/golang-github-gorilla
rned exit code 1
make[1]: *** [debian/rules:36: override_dh_auto_test] Error 25
make[1]: Leaving directory '/build/reproducible-path/mtail-3.0.9'
make: *** [debian/rules:25: binary-arch] Error 2
dpkg-buildpackage: error: debian/rules binary-arch subprocess returned
exit status 2
--
Martina Ferrari
Hi Martin,
On 25/05/2025 15:32, Martin Hostettler wrote:
ping to keep the auto-rm at bay.
Testing migration of the fixed upload and current auto-rm time are
quite close, thus bump this to give it enough time to migrate.
Oh, I had not realised that, thanks!!
--
Martina Ferrari
56 matches
Mail list logo
