NEW changes in stable-new

Processing changes file: openvswitch_2.10.0+2018.08.28+git.8ca7c82b7d+ds1-12+deb10u2_mips.changes ACCEPT

Bug#954023: stretch-pu: package amd64-microcode/3.20181128.1~deb9u1

Hi Henrique, On Sun, 2020-03-15 at 21:37 +0100, Anton Gladky wrote: > I have prepared an update for amd64-microcode for Debian Stretch, > which fixes CVE-2017-5715. Please see an attached debdiff. > > This is the newer upstream version, which fixes CVE-2017-5715. > Security team marked this CVE f

Bug#954449: nmu: proftpd-dfsg_1.3.6c-2

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu Hello, in libc6 (>= 2.30) the libc6 stopped declaring there would be a stream feature. Hence the include file stropts.h was dropped. The proftpd-dev package must get aware of that change,

Bug#953325: transition: kodi and kodiplatform

Hi Emilio, Emilio Pozuelo Monfort ezt írta (időpont: 2020. márc. 21., Szo, 12:23): > > Control: tags -1 = confirmed > > On 07/03/2020 20:51, Emilio Pozuelo Monfort wrote: > > On 07/03/2020 20:40, Bálint Réczey wrote: > >> Package: release.debian.org > >> Severity: normal > >> User: release.debian

Bug#954391: transition: protobuf

Control: tags -1 confirmed On 21/03/2020 14:08, László Böszörményi (GCS) wrote: > On Sat, Mar 21, 2020 at 12:20 PM Emilio Pozuelo Monfort > wrote: >> On 21/03/2020 06:33, László Böszörményi (GCS) wrote: >>> Multilevel transition needed for a while including for the grpc >>> package. Rebuilt rever

Processed: Re: Bug#954391: transition: protobuf

Processing control commands: > tags -1 confirmed Bug #954391 [release.debian.org] transition: protobuf Added tag(s) confirmed. -- 954391: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=954391 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#954391: transition: protobuf

On Sat, Mar 21, 2020 at 12:20 PM Emilio Pozuelo Monfort wrote: > On 21/03/2020 06:33, László Böszörményi (GCS) wrote: > > Multilevel transition needed for a while including for the grpc > > package. Rebuilt reverse dependencies on amd64 and got the following > > results. > > This conflicts with th

Bug#954422: transition: GNOME 3.36

On 21/03/2020 13:17, Simon McVittie wrote: > Package: release.debian.org > Severity: normal > Tags: moreinfo > User: release.debian@packages.debian.org > Usertags: transition > X-Debbugs-Cc: debian-gtk-gn...@lists.debian.org > > You've probably seen that parts of GNOME 3.36 (libraries with sta

Bug#954422: transition: GNOME 3.36

Package: release.debian.org Severity: normal Tags: moreinfo User: release.debian@packages.debian.org Usertags: transition X-Debbugs-Cc: debian-gtk-gn...@lists.debian.org You've probably seen that parts of GNOME 3.36 (libraries with stable API/ABI, and leaf applications) are starting to make th

Processed: Re: Bug#953325: transition: kodi and kodiplatform

Processing control commands: > tags -1 = confirmed Bug #953325 [release.debian.org] transition: kodi and kodiplatform Added tag(s) confirmed. -- 953325: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=953325 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#953325: transition: kodi and kodiplatform

Control: tags -1 = confirmed On 07/03/2020 20:51, Emilio Pozuelo Monfort wrote: > On 07/03/2020 20:40, Bálint Réczey wrote: >> Package: release.debian.org >> Severity: normal >> User: release.debian@packages.debian.org >> Usertags: transition >> >> Dear Release Team, >> >> I would like to upda

Bug#954391: transition: protobuf

On 21/03/2020 06:33, László Böszörményi (GCS) wrote: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: transition > > Hi RMs, > > Multilevel transition needed for a while including for the grpc > package. Rebuilt reverse dependencies on am

Bug#953881: transition: ruby2.7 only

On 19/03/2020 10:38, Emilio Pozuelo Monfort wrote: > On 18/03/2020 22:54, Lucas Kanashiro wrote: >> Hi, >> >> On 17/03/2020 20:44, Emilio Pozuelo Monfort wrote: >>> Let's go ahead with this. Let me know when things are ready and I'll start >>> with >>> the binNMUs. >> >> ruby-defaults/1:2.7 with r

Bug#954404: buster-pu: package lwip/2.0.3-3

Subject: buster-pu: package lwip/2.0.3-3 Package: release.debian.org User: release.debian@packages.debian.org Usertags: pu Tags: buster Severity: normal Hi, I fixed the CVE-2020-8597 in unstable and testing, and would like to upload the fix to buster. Attached is the debdiff. [1] https://se

Bug#954399: buster-pu: packages tbsync/1.7-1 dav4tbsync/0.15-1 and eas4tbsync/0.12-1

On Sat, 2020-03-21 at 09:58 +0100, Mechtilde Stehmann wrote: > I want to upload a fix for bug #954080. Version 1.7-1 doesn't work > correctly with thunderbird 68.x which came after the buster release. > > It is necessary to upload new version of tbsync, dav4tbsync and > eas4tbsync. these are add-o

Bug#954399: buster-pu: packages tbsync/1.7-1 dav4tbsync/0.15-1 and eas4tbsync/0.12-1

Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu Hello, I want to upload a fix for bug #954080. Version 1.7-1 doesn't work correctly with thunderbird 68.x which came after the buster release. It is necessary to upload new version

Bug#954398: buster-pu: package node-dot/1.1.1-1+deb10u1

Package: release.debian.org Severity: normal Tags: buster User: release.debian@packages.debian.org Usertags: pu Hi, node-dot ≤ 1.1.2 is vulnerable to code execution after prototype pollution. I imported upstream fix and wrote a basic test to verify that CVE is really fixed. Cheers, Xavier di