Please consider preapproving nfs-utils/1:1.1.2-6lenny1 to fix
CVE-2008-4552.
http://bugs.debian.org/502680
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4552
https://bugzilla.redhat.com/show_bug.cgi?id=458676
Changes:
nfs-utils (1:1.1.2-6lenny1) testing-proposed-updates; urgency=high
.
It clears two RC bugs and a few security bugs.Here's the recent changelog.
icedove (2.0.0.17-1) unstable; urgency=low
* New upstream security/stability update (v.2.0.0.17), Closes: #500721
* MFSA 2008-37 aka CVE-2008-0016 - UTF-8 URL stack buffer overflow
* MFSA 2008-38 aka CVE-2008-383
fixed 489473 0.4.9a-1
fixed 491110 0.4.9a-1
fixed 501649 0.4.9a-1
thanks
Le Sat, Oct 18, 2008 at 07:10:38PM +0200, Andreas Tille a écrit :
> Statistics:
> 491110 [rkward] Error parsing rkward_welcome.rkh grave
> 501649 rkward: BROKEN - UNUSABLE grave
> 489473 rkward FTBFS: collect2:
Hello,
Could you please unblock pmount 0.9.18-1 ? This new release fixes a
potentially nasty problem where removable VFAT devices could be mounted
case-sensitively in a quite wide range of conditions, possibly leading
to filesystem corruption (see #443514, and also #500540 that is probably
no
[ Diff: List of accepted packages updated, added list about covered DSAs ]
Preparation of Debian GNU/Linux 4.0r5
=
We are preparing the next revision of the current stable Debian
distribution (etch) and will frequently send reports so people can
actually commen
Dear release managers,
I recently uploaded belocs-locales-bin to fix
some pending l10n bugs.
Could you consider unblocking that version and allow it to enter testing?
The changelog for 2.4-4 is:
Source: belocs-locales-bin
Version: 2.4-4
Distribution: unstable
Urgency: low
Maintainer: Christian
* Holger Levsen [Sat, 18 Oct 2008 19:23:21 +0200]:
> You (plural you, refering to the release team) really do this?
> (In Debian Edu we dont. Those who upload a package neither do new for it nor
> let it migrate.)
We have no policy about this, and AFAIK we let each member use their
best judgeme
Hi,
I uploaded screenlets 0.1.2-3 in unstable and I would like to see it in
Lenny also, as it fix issues on a fresh install of Lenny (no bookmarks
fix).
Changelog :
screenlets (0.1.2-3) unstable; urgency=low
* debian/patches
- 04-install-wallclock-in-home.patch : install WallpaperClock in
On Sat, Oct 18, 2008 at 05:48:24PM +, Sven Eckelmann wrote:
> On Saturday 18 October 2008 18:25:11 Pierre Habouzit wrote:
> > On Fri, Oct 17, 2008 at 11:22:31AM +, Sven Eckelmann wrote:
> > > - Provide symbol file for libg3d0 and fail if it doesn't match with
> > > libg3d0 symbols
On Saturday 18 October 2008 18:25:11 Pierre Habouzit wrote:
> On Fri, Oct 17, 2008 at 11:22:31AM +, Sven Eckelmann wrote:
> > - Provide symbol file for libg3d0 and fail if it doesn't match with
> > libg3d0 symbols
>
> No
Ok
> I've not even read other changes, but _this_ is way too di
On Thu, Oct 16, 2008 at 10:28:40PM +, Roberto C. Sánchez wrote:
> I would like to request pre-approval to upload shorewall-perl/4.0.14-3
> with the patch provided here:
> http://article.gmane.org/gmane.comp.security.shorewall.devel/962
>
> It is relatively important for users of Shorewall who
On Sat, Oct 18, 2008 at 05:23:46PM +, Julien BLACHE wrote:
> Hi,
>
> This version of mt-daapd fixes a bug in the file scanner for MPEG4/AAC
> files which prevented some files from being recognised properly.
unblocked.
--
·O· Pierre Habouzit
··O
On Sat, Oct 18, 2008 at 04:56:40PM +, Osamu Aoki wrote:
> Hi,
>
> Since 1.14 moved to testing, I have uploaded new 1.15 version with
> documentation updates only. Please hint to unblock this.
unblocked
--
·O· Pierre Habouzit
··O[EMAIL PROTECT
On Sat, Oct 18, 2008 at 04:49:57PM +, Ola Lundqvist wrote:
> Hi
>
> I have corrected a few bashisms (see #501374) by simply stating
> that /bin/bash should be used instead of /bin/sh in a few
> scripts. It is the safest way to solve it so close to the release.
unblocked.
--
·O· Pierre Habo
On Sat, Oct 18, 2008 at 05:23:21PM +, Holger Levsen wrote:
> Hi,
>
> On Saturday 18 October 2008 18:28, Pierre Habouzit wrote:
> > I'll sponsor and unblock it.
>
> You (plural you, refering to the release team) really do this?
>
> (In Debian Edu we dont. Those who upload a package neither do
Hi
I have corrected a few bashisms (see #501374) by simply stating
that /bin/bash should be used instead of /bin/sh in a few
scripts. It is the safest way to solve it so close to the release.
So please add vzctl to the list of release exceptions to go into
lenny.
The version uploaded is 3.0.22-1
Hi,
This version of mt-daapd fixes a bug in the file scanner for MPEG4/AAC
files which prevented some files from being recognised properly.
It also adds a manpage and makes the maintainer scripts set -e.
Please unblock, full changelog follows:
mt-daapd (0.9~r1696.dfsg-3) unstable; urgency=low
Hi,
On Saturday 18 October 2008 18:28, Pierre Habouzit wrote:
> I'll sponsor and unblock it.
You (plural you, refering to the release team) really do this?
(In Debian Edu we dont. Those who upload a package neither do new for it nor
let it migrate.)
regards,
Holger
pgpEfrza0H47G.pgp
Hi,
Since 1.14 moved to testing, I have uploaded new 1.15 version with
documentation updates only. Please hint to unblock this.
debian-reference (2.15) unstable; urgency=low
* Added "Proxy server for APT".
* Added Debian mirror status site reference and avoided to use
ftp.us.debian.org
On Sat, Oct 18, 2008 at 02:21:21PM +, Julien Cristau wrote:
> Hi,
>
> I've looked at upstream git for fixes that we probably want in the intel
> X driver for lenny, and pushed what I came up with to [1]. I'd like to
> get the opinion of some release team member on this before I push to the
>
On Thu, Oct 16, 2008 at 06:13:20AM +, Roland Rosenfeld wrote:
> Please unblock xfig 1:3.2.5-rel-3 because it fixes several important
> bugs with a very small patch:
unblocked
--
·O· Pierre Habouzit
··O[EMAIL PROTECTED]
OOO
On Thu, Oct 16, 2008 at 08:07:11PM +, Jan Dittberner wrote:
> Hello release team, hello mentors,
>
> the Ubuntu folks discovered a bug [1] in cracklib-runtime that turned
> out to be caused by a bashism in its update-cracklib script. Steve
> Langasek fixed the issue in the Ubuntu package and f
On Thu, Oct 16, 2008 at 08:17:01PM +, Ludovic Rousseau wrote:
> I just packaged and uploaded a new upstream version of jhead to
> correct a security problem.
>
> Changelog:
>* New upstream release
> - Closes: #502353 "Security issues fixed in 2.84"
> - Fix CVE-2008-4575: "Buffer ov
On Thu, Oct 16, 2008 at 10:39:12PM +, Vincent Fourmond wrote:
>
> Hello,
>
> Could you please allow jta_2.6+dfsg-1.1 to transition to testing ? It
> drops dependencies on outdated libraries (see #502344), and the package
> was also made lintian-clean.
>
> Thanks,
>
> Vincent
Lu
On Fri, Oct 17, 2008 at 02:26:05AM +, Rob Browning wrote:
>
> I've uploaded emacs22 22.2+2-4 unstable, which includes a CVE fix
> along with two other fixes that involved minor changes. Please
> consider this for lenny, and please let me know if I need to do
> anything further.
>
> Below are
On Fri, Oct 17, 2008 at 11:22:31AM +, Sven Eckelmann wrote:
> - Provide symbol file for libg3d0 and fail if it doesn't match with
> libg3d0 symbols
No
I've not even read other changes, but _this_ is way too disruptive at
this point.
--
·O· Pierre Habouzit
··O
On Fri, Oct 17, 2008 at 11:27:09AM +, Luca Falavigna wrote:
> Hello,
>
> qa-assistant 0.4.90.5-2 just entered unstable. Relevant changes are:
>
> - Add python-rpm (bug #501853) and python-urlgrabber to Recommends to
> avoid ImportError exceptions after choosing "review an SRPM according to
>
On Sat, Oct 18, 2008 at 12:43:15AM +, Steve McIntyre wrote:
> Simply two l10n updates, as organised by Christian.
unblocked
--
·O· Pierre Habouzit
··O[EMAIL PROTECTED]
OOOhttp://www.madism.org
On Sat, Oct 18, 2008 at 07:51:06AM +, Shachar Shemesh wrote:
> The main reason for the freeze exception is bug 502585, severity grave:
> sshpass takes 100% CPU while the ssh session is in progress. The patch
> was backported from the latest version (not yet released). The version
> has been
Hi,
I've looked at upstream git for fixes that we probably want in the intel
X driver for lenny, and pushed what I came up with to [1]. I'd like to
get the opinion of some release team member on this before I push to the
main repo and upload (review from debian-x people would be welcome too,
of c
* Otavio Salvador [Sat, 18 Oct 2008 09:20:49 -0300]:
> Christian Perrier <[EMAIL PROTECTED]> writes:
> > Of course, this has to be approved by Otavio as it mimght interfere
> > with D-I release plans.
> No objection
Unblocked.
--
Adeodato Simó dato at net.c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Christian Perrier <[EMAIL PROTECTED]> writes:
> Of course, this has to be approved by Otavio as it mimght interfere
> with D-I release plans.
No objection
- --
O T A V I OS A L V A D O R
- -
On Sun, Oct 12, 2008 at 05:52:14PM +0200, Nicolas François wrote:
>
> 1.2.0~rc1 packages are currently in experimental, and I would like now to
> upload the official 1.2.0, but would like to know if these upload could be
> done to unstable or should remain in experimental.
ping?
Thanks in advanc
After getting approval by the release team (thanks !), the Samba
packaging team just uploaded samba 3.2.4-1 packages with the following
changelog:
samba (2:3.2.4-1) unstable; urgency=low
[ Steve Langasek ]
* New upstream release.
- debian/rules: we don't need to move cifs.upcall around, i
* Stefan Fritsch [Sat, 18 Oct 2008 11:42:49 +0200]:
> Hi,
> please unblock apr 1.2.12-5, it fixes an important bug. Here is the
> changelog:
> apr (1.2.12-5) unstable; urgency=low
> * Actually switch to /dev/urandom instead of only adding a
> non-functional
> patch. Closes: #501497
Unb
Y Giridhar Appaji Nag <[EMAIL PROTECTED]> writes:
>> nant (0.85.dfsg1-5) unstable; urgency=low
Unblocked.
Marc
--
BOFH #428:
Firmware update in the coffee machine
pgpVRoYBtblnK.pgp
Description: PGP signature
Josselin Mouette <[EMAIL PROTECTED]> writes:
> gnome-utils (2.20.0.1-3) unstable; urgency=low
Unblocked.
Marc
--
BOFH #102:
Power company testing new voltage spike (creation) equipment
pgpUPirx1HZ3D.pgp
Description: PGP signature
Hi,
please unblock apr 1.2.12-5, it fixes an important bug. Here is the
changelog:
apr (1.2.12-5) unstable; urgency=low
* Actually switch to /dev/urandom instead of only adding a
non-functional
patch. Closes: #501497
Thanks.
Cheers,
Stefan
signature.asc
Description: This is a digita
The main reason for the freeze exception is bug 502585, severity grave:
sshpass takes 100% CPU while the ssh session is in progress. The patch
was backported from the latest version (not yet released). The version
has been uploaded to Sid already (but has not yet been processed by
buildd and fr
Hi,
On Sat, Oct 18, 2008 at 01:22:52PM +0800, Deng Xiyue wrote:
> Indeed. The really problem resides in libX11, and the libX11 patch in
> the same bug report is the real fix. The one I mentioned is just a
> workaround in scim side. See below.
>
> > As I reread your bug report, massive tab is t
40 matches
Mail list logo
