Bug#1092188: bookworm-pu: package systemd/252.33-1~deb12u2

elog index 6deaa306729c42c98d9c281530c45cc8918da535..f3da58877e3391f4692cb6fcf53d3b517fcb0791 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +systemd (252.33-1~deb12u1.1) UNRELEASED; urgency=medium + + * Non-maintainer upload. + * Backport PR#32194. (closes: #1081633) + +

Re: Coordinate response to xz-utils (DSA 5649-1)

On Sat, Mar 30, 2024 at 10:28:04AM +0100, Bastian Blank wrote: > We have a suite with some project management capabilities: salsa. Let's > just use it instead of ad-hoc tools. I don't think we have something > better right now? This is now https://salsa.debian.org/ftp-te

Re: Coordinate response to xz-utils (DSA 5649-1)

On Fri, Mar 29, 2024 at 11:59:38PM +0100, Ansgar 🙀 wrote: > Should we also reset the archive to some prior state and rebuilt > packages like Ubuntu? Do we need to revert to an earlier date as > vulnerable versions have been uploaded to experimental on 2024-02-01 > (but the earlier version might onl

Re: What to do with d-i on armel?

On Fri, Jan 19, 2024 at 05:33:23PM +0100, Arnd Bergmann wrote: > Right, though changing the kernel package to support this > sounds easier than changing the installer to use a > foreign architecture kernel package. Well. It is a "dpkg --add-architecture" in the right spot of base-installer/debian

Re: Ability to further support 32bit architectures

On Thu, Jan 11, 2024 at 10:50:31AM +0100, John Paul Adrian Glaubitz wrote: > > As it is now, we will not be able to provide a kernel for maybe all > > 32bit architectures for Trixie. > I don't think that this would be a reasonable decision. We're preparing to > switch > 32-bit architectures over t

Re: Ability to further support 32bit architectures

Hi On Thu, Jan 11, 2024 at 09:48:34AM +, Dimitri John Ledkov wrote: > Disabling debug symbols, enabling debug symbol zstd compression, using > split debug symbols (disabled BTF usage) should help here. Okay, maybe more workarounds exist. But none of them look really promising. > Separately,

Ability to further support 32bit architectures

Hi Linux 6.7 fails to build on at least i386 and armhf. Even it now manages to make the compiler fail to allocate memory: | cc1: out of memory allocating 135266296 bytes after a total of 235675648 bytes Right now both fail on the same driver, so a short team workaround would be to disable it. B

What to do with d-i on armel?

Hi With Linux 6.6 we dropped the Marvell specific kernel image, as it was not known to work on any of the available devices. We still have another armel kernel left, the one of the Raspberry Pi 0 and 1, which uses an ARMv6 CPU. This also removed all the udebs from armel, which makes many d-i com

Re: Uploading linux (6.6.10-1)

On Sun, Jan 07, 2024 at 02:03:32PM +0100, Salvatore Bonaccorso wrote: > I would like to upload linux version 6.6.10-1 later today to unstable. I would like to have 6.6.9 in testing first, but we can also ignore that. Bastian -- Those who hate and fight must stop themselves -- otherwise it is no

Re: Bug#1040901: Upcoming changes to Debian Linux kernel packages

On Fri, Oct 27, 2023 at 08:43:46AM +0200, Julian Andres Klode wrote: > > > ## Image packages contains more version info > > > > > > Example: linux-image-6.5.3-cloud-arm64 > > > > > It will not longer be possible to reliably derive the package name from > > > kernel release (see above), as both va

Re: Upcoming changes to Debian Linux kernel packages

On Thu, Oct 05, 2023 at 07:59:54AM -0600, Sam Hartman wrote: > I think that's what you mean by the first-level error. > If not, I'm still confused. > In the second level error case you are talking about is: No, the first level is always: but the new kernel does not work. The second is: I need to u

Re: Bug#1040901: Upcoming changes to Debian Linux kernel packages

Moin On Sun, Sep 24, 2023 at 03:01:51PM +0200, Bastian Blank wrote: > ## Kernel modules will be signed with an ephemeral key This is now https://salsa.debian.org/kernel-team/linux/-/merge_requests/607. > ## Image packages contains more version info > > Example: linux-image-6.5.3

Re: Bug#1040901: Upcoming changes to Debian Linux kernel packages

Hi On Sun, Sep 24, 2023 at 06:05:09PM +0200, Ben Hutchings wrote: > > Multiple uploads of the same upstream version will have > > the same package name, but those rarely happens. > Those happen fairly often for urgent security updates. We could encode that in the upstream version. Aka to have co

Re: Upcoming changes to Debian Linux kernel packages

On Tue, Oct 03, 2023 at 03:00:53PM -0500, Robert Nelson wrote: > On Tue, Oct 3, 2023 at 2:54 PM Adrian Bunk wrote: > > How will the user get the headers matching this previously-used kernel > > that are required until we provide a kernel with the regression fixed? The same as now: nowhere, becaus

Re: Upcoming changes to Debian Linux kernel packages

Hi Andreas On Tue, Oct 03, 2023 at 11:58:29PM +0200, Andreas Beckmann wrote: > That should solve the problem where several source packages need to be > updated together. The problem does not come from multiple source packages that need to be updated together. Instead it comes from the way Debian

Re: Upcoming changes to Debian Linux kernel packages

Hi Sam On Tue, Oct 03, 2023 at 08:31:57AM -0600, Sam Hartman wrote: > I still think it would help if you would work more on articulating what > problem you are trying to solve with the linux-headers versioning > change. I have read multiple versions of this proposal, and your > follow-ups, and I

Re: Upcoming changes to Debian Linux kernel packages

On Mon, Sep 25, 2023 at 04:35:08AM +0200, Andreas Beckmann wrote: > On 25/09/2023 00.50, Bastian Blank wrote: > > Already built modules remain until someone deletes it. So you can also > > switch back to the still installed older kernel version and it will have > > the

Re: Bug#1040901: Upcoming changes to Debian Linux kernel packages

Hi Ben On Sun, Sep 24, 2023 at 06:05:09PM +0200, Ben Hutchings wrote: > On Sun, 2023-09-24 at 15:01 +0200, Bastian Blank wrote: > > The same upstream version in testing and backports will have the same > > package name. > This is not OK, because they will be incompatibl

Re: Upcoming changes to Debian Linux kernel packages

Hi Andreas On Sun, Sep 24, 2023 at 11:10:36PM +0200, Andreas Beckmann wrote: > On 24/09/2023 15.01, Bastian Blank wrote: > > ## Kernel modules will be signed with an ephemeral key > > > > The modules will not longer be signed using the Secure Boot CA like the > &

Upcoming changes to Debian Linux kernel packages

Hi folks Debian currently does Secure Boot signing using a shim chained to the Microsoft key. This use requires that we follow certain rules. And one of the recent changes to those rules state that our method of signing kernel modules also with the same key will not be allowed anymore. Some inf

Re: Releasing linux/6.1.52-1 bookworm-security update without armel build, Image size problems

Hi On Sat, Sep 09, 2023 at 11:13:56AM +0200, Paul Gevers wrote: > If we're now reaching the final limit and if it was foreseeable that we > would reach that limit, then yes it would have made sense to drop armel > *before* the bookworm release, but alas. If the kernel team can't support > the kern

Re: Debian Kernel version and ABI in respect of #1040901

On Fri, Jul 14, 2023 at 04:17:34PM +0200, Ben Hutchings wrote: > On Thu, 2023-07-13 at 21:16 +0200, Bastian Blank wrote: > [...] > > ## Proposed behaviour > > > > This tries to make sure everything apart from experimental gets new > > names and ABI on every u

Re: Debian Kernel version and ABI in respect of #1040901

Hi On Thu, Jul 13, 2023 at 11:28:31PM +0300, Adrian Bunk wrote: > On Thu, Jul 13, 2023 at 09:16:15PM +0200, Bastian Blank wrote: > > ### NMU > > Can be easily added back by adding "bX" or so to the ABI. > That would be confusing, bX is naming convention for binNMUs in

Debian Kernel version and ABI in respect of #1040901

Hi folks You might have heard that the masters of Linux Secure Boot, aka shim reviewers, have spoken. They have told us that our way of handling kernel modules is not longer acceptable. For some context see #1040901. This means for us that we have to make sure that kernel and modules can't be m

Bug#1028313: bullseye-pu: package isc-dhcp/4.4.1-2.3+deb11u2

minimal backport of the lifetime setup code. commit b13dea6dba9bd095840f8d3e12370f140ade8201 Author: Bastian Blank Date: Mon Jan 9 09:15:10 2023 + Backport missing IPv6 address lifetime handling See merge request debian/isc-dhcp!7 diff --git a/debian/changelog b/debian/changelog

Re: SONAME bumps (transitions) always via experimental

On Thu, Jan 05, 2023 at 12:26:09PM +0100, Paul Gevers wrote: > Once accepted, > the proposed workflow should also become documented in Debian policy. As this is no technical policy, this belongs into the developers reference. However,

Uploading linux (5.17.6-1)

Hi I will upload linux version 5.17.6-1 to unstable later today. It includes an ABI bump. Bastian -- Extreme feminine beauty is always disturbing. -- Spock, "The Cloud Minders", stardate 5818.4

Bug#995636: transition: openssl

Hi release team On Sun, Oct 03, 2021 at 02:59:31PM +0200, Kurt Roeckx wrote: > We would like to transition to OpenSSL 3.0.0. It's currently in > experimental. It has an soname change, so the binary packages got > renamed and binNMUs will be required. Could you please update this transition reques

Re: Bug#1000239: Rescue system won't find root partition, but insists on /usr

Control: severity -1 normal On Fri, Dec 03, 2021 at 04:08:24PM -0500, Nicholas D Steeves wrote: > Steps I used to try to reproduce: > > 1. Downloaded debian-testing-amd64-netinst.iso2021-12-03 16:21 408M > 2. Installed to EFI-enabled qemu eg: >kvm -bios /usr/share/ovmf/bios.bin -m 2G

Bug#998676: RM: chromium/93.0.4577.82-1

Control: clone -1 -2 Control: reassign -2 ftp.debian.org Control: reopen -2 Control: retitle -2 RM: chromium -- RoQA; unmaintained On Sat, Nov 06, 2021 at 08:03:49AM +0100, Salvatore Bonaccorso wrote: > Chromium with his recurring stream of security issues is currently as > well for bookworm/unsta

Re: debianutils still blocked from migration

On Mon, Oct 04, 2021 at 10:38:39PM +0200, Helmut Grohne wrote: > I was looking into why debianutils doesn't migrate and saw the block > hint from Sebastian Ramacher: > | # 20210818 > | # #992399: removes interface from an essential package without finishing > that transition in a stable release fi

Bug#987013: Release goal proposal: Remove Berkeley DB

Hi Marco On Fri, Apr 16, 2021 at 05:04:03PM +0200, Marco d'Itri wrote: > On Apr 15, Bastian Blank wrote: > > After this time we really should try to get rid of this package, which > > even is NMU maintained since three years. > I am not persuaded. I maintain libberkeleydb

Bug#987013: Release goal proposal: Remove Berkeley DB

Hi Gerardo On Fri, Apr 16, 2021 at 10:30:08AM +0200, Gerardo Ballabio wrote: > Bastian Blank wrote: > > Berkeley DB was relicensed to AGPLv3 almost eight years ago. > Sorry but I don't understand, why is that a problem? > I believe the AGPL (you mean the GNU Affero General Pub

Bug#987013: Release goal proposal: Remove Berkeley DB

Package: release.debian.org Severity: wishlist Hi I would like to propose a release goal: Remove Berkeley DB (finally) Berkeley DB was relicensed to AGPLv3 almost eight years ago. Since then, Debian stayed with the last version before the license change. The license change means, we can't take

Bug#986311: marked as done (unblock: debian-cloud-images/0.0.4)

Hi Ivo On Sun, Apr 11, 2021 at 12:39:05PM +, Debian Bug Tracking System wrote: > On Sat, Apr 03, 2021 at 09:29:03PM +0200, Paul Gevers wrote: > > What do you mean with "it's too late for that"? We *could* (not saying > > we should) drop the package. > I added a hint to remove the package. No

Bug#986311: unblock: debian-cloud-images/0.0.4

On Sat, Apr 03, 2021 at 08:00:20AM +0200, Paul Gevers wrote: > So, I'm very uncomfortable with the union of this key packages tracking > package Then please drop the UUD entry that forces it to be a key package and drop the package from testing. After that we'll stop updating packages in stable a

Bug#929214: release.debian.org - Add package constraint for cloud images

Hi Ivo On Sat, Mar 13, 2021 at 03:30:39PM +0100, Ivo De Decker wrote: > > The binary package is in testing since some time. Please add it to the > > key packages list. > Added. Thanks. Regards, Bastian -- Our way is peace. -- Septimus, the Son Worshiper, "Bread and Circuses",

Bug#929214: release.debian.org - Add package constraint for cloud images

Hi Sorry that I missed to follow up on that task for some time. On Wed, Jun 12, 2019 at 05:57:00PM +0200, Ivo De Decker wrote: > > | Package: debian-cloud-images-packages > > | Architecture: amd64 > > | Depends: apparmor, awscli, chrony, cloud-init, cloud-initramfs-growroot, > > google-compute-e

Bug#955547: buster-pu: package waagent/2.2.45-4~deb10u1

On Sat, Apr 25, 2020 at 07:23:11PM +0100, Adam D. Barratt wrote: > Please go ahead. Uploaded. Bastian -- A father doesn't destroy his children. -- Lt. Carolyn Palamas, "Who Mourns for Adonais?", stardate 3468.1.

Re: vacation 3.3.2 MIGRATED to testing

On Sun, Aug 25, 2019 at 11:49:31AM +0100, Ian Jackson wrote: > Hi. I think something went wrong with testing migration here. > 3.3.2, which is now in testing, was *not* built on the buildds. > Yesterday's excuses gave that as the reason for vacation not > migrating. So I did a source-only re-uplo

Bug#930905: unblock: lvm2/2.03.02-3

+++ b/debian/changelog @@ -1,3 +1,9 @@ +lvm2 (2.03.02-3) unstable; urgency=medium + + * Stop lvm2-lvmetad on upgrade. (closes: #929080) + + -- Bastian Blank Fri, 21 Jun 2019 12:29:17 +0200 + lvm2 (2.03.02-2) unstable; urgency=medium * Remove lvm2-lvmetad init script as well. (closes

Bug#929214: release.debian.org - Add package constraint for cloud images

Hi On Wed, Jun 12, 2019 at 08:01:08PM +0200, Bastian Blank wrote: > On Wed, Jun 12, 2019 at 05:57:00PM +0200, Ivo De Decker wrote: > > If you create such a package, having a binary per architecture as you > > describe, should do what you want. It can be added to the list as soon

Bug#929214: release.debian.org - Add package constraint for cloud images

Hi Paul On Wed, Jun 12, 2019 at 08:42:27PM +0200, Paul Gevers wrote: > On 12-06-2019 20:01, Bastian Blank wrote: > > I'm also not sure if the Debian autopkgtest infrastructure would be able > > to do that and build images. The actual testing runs via the Gitlab > &g

Bug#929214: release.debian.org - Add package constraint for cloud images

Hi On Wed, Jun 12, 2019 at 05:57:00PM +0200, Ivo De Decker wrote: > If you create such a package, having a binary per architecture as you > describe, should do what you want. It can be added to the list as soon as it > is in testing. Okay, thank you. > Also, just as a suggestion: if it is feasib

Bug#929214: release.debian.org - Add package constraint for cloud images

Package: release.debian.org Severity: normal Hi release team To make your and our work easier, we would like to ask you to add a package constraint for all the packages included into the official Debianm cloud images. >From what I read, the easiest way for you would be to specify a single packag

Bug#928382: unblock: waagent/2.2.34-4

@@ -1,3 +1,9 @@ +waagent (2.2.34-4) unstable; urgency=medium + + * Fix stray backup file due to incorrect sed call. (closes: #928179) + + -- Bastian Blank Mon, 29 Apr 2019 16:45:57 +0200 + waagent (2.2.34-3) unstable; urgency=medium * Set proper access rights on swap file. diff --git a

Bug#924463: stretch-pu: package waagent/2.2.34-3~deb9u1

Hi Adam On Sat, Apr 13, 2019 at 10:09:23PM +0100, Adam D. Barratt wrote: > [Note that the size of the original e-mail meant that it never reached > debian-release] Yeah, sorry about that. I saw it but then forgot to send another mail. Thanks for finding it again. Regards, Bastian -- Madness h

Bug#924461: unblock: waagent/2.2.34-3

@@ -1,3 +1,10 @@ +waagent (2.2.34-3) unstable; urgency=medium + + * Set proper access rights on swap file. +CVE-2019-0804 + + -- Bastian Blank Tue, 12 Mar 2019 09:34:51 +0100 + waagent (2.2.34-2) unstable; urgency=medium * Disable all tests, they need a real system. (closes: #918943

Bug#921319: stretch-pu: package iptables-persistent/1.0.4+nmu2

On Mon, Feb 04, 2019 at 10:55:26PM +0800, gustavo panizzo wrote: > On Mon, Feb 04, 2019 at 09:59:06AM +, Adam D. Barratt wrote: > > Control: tags -1 + moreinfo > > > > On 2019-02-04 08:11, gustavo panizzo wrote: > > > I'd like to fix the bug #921186 in stable, only adding a dependency to > > >

Re: Bug#912038: closed by Bastian Blank (Re: Bug#912038: grub-cloud-amd64: fails to install)

Dear release team On Sat, Oct 27, 2018 at 03:42:48PM +, Holger Levsen wrote: > 5. General > (a) Supportable > Packages in the archive must not be so buggy or out of date that > we refuse to support them. > This package is too buggy. We expect all packages to install fine under >

Uploading linux (4.16.16-1)

I intend to upload linux 4.16.16-1 to unstable. It enables some hardening options and updates the RT patch. Regards, Bastian -- Time is fluid ... like a river with currents, eddies, backwash. -- Spock, "The City on the Edge of Forever", stardate 3134.0

Re: blktrace_1.1.0-2+deb9u1_amd64.changes REJECTED

On Thu, Jun 14, 2018 at 09:24:30AM +0200, Bas Zoetekouw wrote: > On Wed, 2018-06-13 at 23:06 +0200, Aurelien Jarno wrote: > > Your package blktrace_1.1.0-2+deb9u1 has been successfully built on > > amd64, however it has been rejected by dak, as you already used the > > _amd64.changes extension for

Re: ignore the piuparts failures for gcc-7-cross, gcc-8-cross

On Wed, Jun 13, 2018 at 12:27:23PM +, Holger Levsen wrote: > > The failures are in cruft packages. There is a manual decruft requested: > > #899045, but the cruft packages shouldn't block migration anyway. > > piuparts does not know about cruft, it just takes everything from the > > Packages fi

Re: wanna-build access to schedule binNMUs for Go packages

On Wed, Jan 31, 2018 at 03:01:18PM +0100, Michael Stapelberg wrote: > Hector Oron pointed out in the Debian RT that the release-team should give > their okay before the PostgreSQL account can be created. This should be > done by way of the release team filing the Debian RT ticket on my behalf, > pr

Bug#883066: stretch-pu: package waagent/2.2.18-3~deb9u1

elog +++ b/debian/changelog @@ -1,8 +1,21 @@ -waagent (2.2.14-1~deb9u1) stretch; urgency=medium +waagent (2.2.18-3) unstable; urgency=medium - * Upload to stretch. + * Move udev rules to /lib/udev. (closes: #856065) + * Set priority to optional. - -- Bastian Blank Wed, 27 Sep 2017 09:3

Bug#874580: stretch-pu: package waagent/2.2.14-1~deb9u1

On Tue, Sep 26, 2017 at 08:41:32PM +0100, Adam D. Barratt wrote: > OK. Please feel free to upload a package built and tested on stretch > that matches the provided diff plus a changelog stanza for 2.2.14- > 1~deb9u1 with a changelog distribution of "stretch". Uploaded but not yet accepted. Bastia

Bug#874580: stretch-pu: package waagent/2.2.14-1~deb9u1

On Sat, Sep 09, 2017 at 05:23:24PM +0200, Julien Cristau wrote: > On Thu, Sep 7, 2017 at 16:10:48 +0200, Bastian Blank wrote: > > The Azure agent provides the provisioning part of the Microsoft Azure > > platform. > > It is necessary to tell the platform about the

Bug#874580: stretch-pu: package waagent/2.2.14-1~deb9u1

ge into stretch. diff --git a/debian/changelog b/debian/changelog index 2954cfd..1cf1816 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,30 @@ +waagent (2.2.14-1) unstable; urgency=medium + + * New upstream version. + + -- Bastian Blank Fri, 18 Aug 2017 13:38:17 +0200 + +waagent (2.2

Bug#860020: unblock: waagent/2.2.2-2

log b/debian/changelog index cfd3976..2954cfd 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +waagent (2.2.2-2) unstable; urgency=medium + + * Make sure tests packages is not included. + * Fix deprovision. (closes: #860019) + + -- Bastian Blank Mon, 10 Apr 2017 13:14:40

Bug#858481: unblock: bind9/1:9.10.3.dfsg.P4-12.1

+ + * Non-maintainer upload. + * Use /dev/urandom to avoid blocking in the server process. +(closes: #854243) + + -- Bastian Blank Fri, 17 Mar 2017 19:07:16 +0100 + bind9 (1:9.10.3.dfsg.P4-12) unstable; urgency=high * Merge and accept the non-maintainer upload. diff -Nru bind9-9.10.3.dfsg.P4

Bug#858478: unblock: lvm2/2.02.168-2

/changelog @@ -1,3 +1,11 @@ +lvm2 (2.02.168-2) unstable; urgency=medium + + * Don't try to disable cluster locking on clvm purge. (closes: #856696) + * Drop symlinks for private libs. (closes: #857954) + * Deny writemostly/writebehind during raid1 resync. (closes: #855895) + + -- Bastian

Bug#856405: unblock: libdebian-installer/0.109 and others

On Tue, Mar 07, 2017 at 07:27:00AM +, Niels Thykier wrote: > Notes about cdebootstrap: > * The unblock commented out as it does not have a udeb counterpart. Because it does not include any udeb. > * it appears the patch for the issue was accidentally included in >the upload as well. Fr

Bug#856405: unblock: libdebian-installer/0.109 and others

On Fri, Mar 03, 2017 at 08:25:11AM +0100, Bastian Blank wrote: > I'm taking over this matter as maintainer of this code and discrepances > on what needs to be changed exactly. Uploaded, please unblock. unblock libdebian-installer/0.109 unblock anna/1.58 unblock main-menu/1

Bug#856405: unblock: libdebian-installer/0.109 and others

Control: submitter ! Moin I'm taking over this matter as maintainer of this code and discrepances on what needs to be changed exactly. On Wed, Mar 01, 2017 at 07:00:00AM +, Niels Thykier wrote: > Strictly speaking, the ".deb" variants of libdebian-installer would need > a "Breaks" and the rd

Bug#820995: jessie-pu: package lvm2/2.02.111-2.2

/changelog --- lvm2-2.02.111/debian/changelog 2015-04-10 00:43:40.0 + +++ lvm2-2.02.111/debian/changelog 2016-04-14 11:36:07.0 + @@ -1,3 +1,9 @@ +lvm2 (2.02.111-3) UNRELEASED; urgency=medium + + * Set default pid directory to /run. (closes: #783120) + + -- Bastian Blank

Bug#796345: redhat-cluster/libdlm + lvm + perl transition

Hi Ferenc On Wed, Dec 16, 2015 at 12:12:18AM +0100, Ferenc Wagner wrote: > No: the new DLM package depends on the new Pacemaker package. I'm > already testing them, there's only some cleanup remaining before they > can be uploaded. Can you give an ETA? Otherwise I'm inclined to remove cluster s

Bug#805383: jessie-pu: package shadow/1:4.2-3+deb8u1

busy user detection. (Closes: #778287) + + -- Bastian Blank Thu, 12 Nov 2015 14:33:33 + + shadow (1:4.2-3) unstable; urgency=low * Enforce hardened builds to workaround cdbs sometimes not building diff -Nru shadow-4.2/debian/patches/1020_fix_user_busy_errors shadow-4.2/debian/patches

Bug#800006: Tested patches for Jessie and Wheezy

Hi Attached are tested diffs for Jessie and Wheezy. Regards, Bastian -- Bastian Blank Berater Telefon: +49 2161 / 4643-194 E-Mail: bastian.bl...@credativ.de credativ GmbH, HRB Mönchengladbach 12080, USt-ID-Nummer: DE204566209 Hohenzollernstr. 133, 41061 Mönchengladbach Geschäftsführung: Dr

Bug#782158: unblock: xen/4.4.1-9

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock xen/4.4.1-9. It fixes four security bugs. xen (4.4.1-9) unstable; urgency=high * Explicitly disable graphics for qemu. (closes: #780975) CVE-2015-2152 * Update fix

Bug#780335: unblock: xen/4.4.1-8

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock xen/4.4.1-8. It fixes one high and two low profile security bugs. xen (4.4.1-8) unstable; urgency=high * Fix uninitialized return from wrong-sized reads from system devic

Bug#779512: unblock: xen/4.4.1-7

. [ Bastian Blank ] * Fix use after free on guest shutdown. CVE-2015-0361 * Fix rate limits of guest triggered locking. CVE-2015-1563 . [ Ian Campbell ] * Use xen-init-dom0 from initscript when it is available. unblock xen/4.4.1-7 -- System Information: Debian Release

Bug#772834: unblock: xen/4.4.1-6

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock xen/4.4.1-6. It fixes a security problem. xen (4.4.1-6) unstable; urgency=medium . * Fix starvation of writers in locks. CVE-2014-9065 unblock xen/4.4.1-6 -- System

Bug#771575: unblock: xen/4.4.1-5

arguments. CVE-2014-8866 * Fix boundary checks of emulated MMIO access. CVE-2014-8867 * Fix additional memory leaks in xl. (closes: #767295) -- Bastian Blank Sun, 30 Nov 2014 20:13:32 +0100 xen (4.4.1-4) unstable; urgency=medium [ Bastian Blank ] * Make operations pre-emptible

Bug#771344: unblock: xen/4.4.1-4

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock xen/4.4.1-4. It fixes a first batch of security problems and some smaller bugs. xen (4.4.1-4) unstable; urgency=medium [ Bastian Blank ] * Make operations pre-emptible

Bug#769786: unblock: cdebootstrap/0.6.4

releases before Squeeze. (closes: #768540) * Add proper Built-Using to binary packages. (closes: #769352) -- Bastian Blank Sat, 15 Nov 2014 20:31:27 +0100 unblock cdebootstrap/0.6.4 -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (990, 'testing&#x

Bug#758819: nmu: libvirt_1.2.7-10

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu Please bin-nmu libvirt. It have been built in an unclean environment on the developers machine, it depends on libxen-4.3 instead of libxen-4.4. nmu libvirt_1.2.7-10 . amd64 . -m "Rebuild in

Re: Preparing (lib)gnome-keyring for the freeze.

On Sat, Aug 02, 2014 at 08:47:54AM +0200, Andreas Henriksson wrote: > There has been discussions about the use of mlock(all) and we have > over the past year not been able to reach a consensus. I don't > feel comfortable making the descision to rip out security features > on my own as proposed by p

Re: ppc64el and Jessie

On Wed, Apr 30, 2014 at 03:58:25PM -0300, Breno Leitao wrote: > I have been working to enable ppc64el architecture in Debian, and I would > like to > have it as part of the Jessie release. What about ppc64? For now it is more impoortant as there is actually hardware available. Bastian -- Ther

Bug#734446: pu: package apache2/2.2.16-6+squeeze11a - CVE-2013-1862

f this? Bastian -- Bastian Blank Durchwahl: +49 2161 / 4643-194 credativ GmbH, HRB Mönchengladbach 12080 Zentrale: +49 2161 / 4643-0 Hohenzollernstr. 133 Fax: +49 2161 / 4643-100 D-41061 Mönchengladbach www: http://www.creda

Bug#734447: opu: package apache2/2.2.16-6+squeeze11 - CVE-2013-1862

/debian/changelog --- apache2-2.2.16/debian/changelog +++ apache2-2.2.16/debian/changelog @@ -1,3 +1,11 @@ +apache2 (2.2.16-6+squeeze11.1) UNRELEASED; urgency=low + + * Non-maintainer upload. + * Properly escape data written to rewrite log. +CVE-2013-1862 + + -- Bastian Blank Tue, 07 Jan

Bug#734446: pu: package apache2/2.2.16-6+squeeze11a - CVE-2013-1862

rewrite log. +CVE-2013-1862 + + -- Bastian Blank Tue, 07 Jan 2014 09:57:36 + + apache2 (2.2.22-13) unstable; urgency=medium [ Stefan Fritsch ] diff -Nru apache2-2.2.22/debian/patches/CVE-2013-1862.patch apache2-2.2.22/debian/patches/CVE-2013-1862.patch --- apache2-2.2.22/debian

Re: Bug#731261: transition: Qt5 switching qreal == double for all platforms

On Tue, Dec 03, 2013 at 03:09:18PM -0300, Lisandro Damián Nicanor Pérez Meyer wrote: > So I would like what the RT and arm* porters thinks. Would Qt5 really work with two versions linked into one process? This would happen with a changed SONAME. Qt works with a lot of plugins and other stuff.

Bug#723641: pu: package xen/4.1.4-5

On Tue, Oct 01, 2013 at 04:58:43PM +0200, Thijs Kinkhorst wrote: > On Mon, September 30, 2013 18:52, Bastian Blank wrote: > > I don't think this will work. The current security process ignores > > any communitation that is otherwise part of the NMU process. As long as > &

Bug#723641: pu: package xen/4.1.4-5

On Mon, Sep 30, 2013 at 04:38:24PM +0200, Thijs Kinkhorst wrote: > Thanks. I've read them. My conclusion is that there are two problems: > 1/ On a previous upload, someone from the security team added extra > changes without coordination or reporting them back. > 2/ It took long to process the uplo

Bug#723641: pu: package xen/4.1.4-5

On Mon, Sep 23, 2013 at 09:47:32AM +0200, Thijs Kinkhorst wrote: > Do you have a message ID for me? I'd rather try to see what the problems > with the wheezy-security route are and how we can resolve them, rather > than try to work around them via pu. <20130512113628.GA16136@elende> <2013051220094

Re: [Pkg-systemd-maintainers] Proposed Release Goal: Add native systemd support to every packaging shipping a sysvinit script

On Sat, Sep 21, 2013 at 07:50:22PM +0200, Michael Stapelberg wrote: > Bastian Blank writes: > > On Sat, Sep 21, 2013 at 06:45:41PM +0200, Michael Stapelberg wrote: > >> sysvinit scripts that many of our current packages provide. However, > >> when a package ships a nat

Re: Proposed Release Goal: Add native systemd support to every packaging shipping a sysvinit script

On Sat, Sep 21, 2013 at 06:45:41PM +0200, Michael Stapelberg wrote: > sysvinit scripts that many of our current packages provide. However, > when a package ships a native systemd service file in addition to the > sysvinit script, users enjoy a couple of advantages: they can now easily > enable/disa

Bug#723641: pu: package xen/4.1.4-5

with disabled IOMMU. CVE-2013-4329 -- Bastian Blank Sun, 05 May 2013 20:51:35 +0200 Bastian -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (500, 'stable'), (1, 'experimental

Bug#721625: pu: package lvm2/2.02.95-8

=== --- debian/changelog(revision 952) +++ debian/changelog(revision 953) @@ -1,3 +1,11 @@ +lvm2 (2.02.95-8) UNRELEASED; urgency=low + + * Fix udev rules. +- Properly exclude special devices, this part got lost. (closes: #718582) +- Always call udev sync. + + -- Bastian Blank Wed, 07

Re: Current and upcoming toolchain changes for jessie

On Sat, Jun 22, 2013 at 11:48:39PM +0200, Bastian Blank wrote: > On Thu, Jun 13, 2013 at 02:51:43PM +0200, Matthias Klose wrote: > > GCC 4.8 is now the default on all x86 architectures, and on all ARM > > architectures (the latter confirmed by the Debian ARM porters). Please cha

Re: status of s390 toolchain maintenance

On Mon, Jul 01, 2013 at 11:42:44AM +0200, Matthias Klose wrote: > Is this change coordinated with Bastian? I have not been contacted by Aurelian. I've not seen anything on this matter from him. Bastian -- A Vulcan can no sooner be disloyal than he can exist without breathing.

Re: Current and upcoming toolchain changes for jessie

On Thu, Jun 13, 2013 at 02:51:43PM +0200, Matthias Klose wrote: > GCC 4.8 is now the default on all x86 architectures, and on all ARM > architectures (the latter confirmed by the Debian ARM porters). GCC 4.8 seems fine on s390x, it can build a running Linux kernel. On s390 something weird happened

Bug#706615: unblock: xen/4.1.4-4

validation for VT-d interrupt remapping. CVE-2013-1952 -- Bastian Blank Thu, 02 May 2013 14:30:29 +0200 unblock xen/4.1.4-4 -- System Information: Debian Release: 7.0 APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental'

Bug#705933: unblock: xen/4.1.4-3

handling. CVE-2013-1919 * Only save pointer after access checks. CVE-2013-1920 * Fix domain locking for transitive grants. CVE-2013-1964 -- Bastian Blank Fri, 19 Apr 2013 13:01:57 +0200 Bastian unblock xen/4.1.4-3 -- System Information: Debian Release: 7.0 APT prefers

Re: Processed: user release.debian....@packages.debian.org, tagging 704613, usertagging 704613

On Tue, Apr 16, 2013 at 12:06:05PM +, Debian Bug Tracking System wrote: > > # Apparently too late for rc2 Not relevant for rc2. The udeb was never used. Bastian -- "... freedom ... is a worship word..." "It is our worship word too." -- Cloud William and Kirk,

Bug#702167: unblock: lvm2/2.02.95-7

On Tue, Mar 05, 2013 at 09:20:43PM +, Adam D. Barratt wrote: > On Sun, 2013-03-03 at 12:56 +0100, Bastian Blank wrote: > > + * Re-enable cluster support. (closes: #697676) > > + * Disable thin support. We lack the thin_check binary and it does not > > work > > +

Bug#702167: unblock: lvm2/2.02.95-7

usable nor save. --- debian/control (revision 929) +++ debian/control (revision 931) @@ -3,7 +3,7 @@ Priority: optional Maintainer: Debian LVM Team Uploaders: Bastian Blank -Build-Depends: dpkg-dev (>= 1.16.1~), debhelper (>= 8.1.3~), automake, libreadline-gplv2-dev, libselinu

Bug#698831: unblock: xen/4.1.4-2

loses: #698651) - Remove special-case for first IO-APIC. - Fix MSI handling for HVM domains. (closes: #695123) - Revert cache value of disks in HVM domains. -- Bastian Blank Thu, 31 Jan 2013 15:44:50 +0100 Bastian -- Sometimes a man will tell his bartender things he'll neve

Bug#698831: pre-approval: xen/4.1.4-1

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi I'd like to update xen to 4.1.4. It contains mostly fixes on the hypervisor and some smaller ones on the tools. The hypervisor gets a lot of fixes. This includes fixes for - ignored (li

Bug#695692: unblock: xen/4.1.3-7

newer then Wheezy. (closes: #695056) -- Bastian Blank Tue, 11 Dec 2012 18:54:59 +0100 -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_6

  1   2   3   4   >