On Tue, Nov 13, 2012 at 3:49 AM, Jonathan Wiltshire wrote:
> I don't understand your version number. Please see devref [1] and consider
> that this does not appear to be a native package.
>
> 1:
> http://www.debian.org/doc/manuals/developers-reference/pkgs.html#nmu-changelog
Devref is not an infl
control: severity -1 important
The 2.8-3+b3 binnmu solved the breakage problem originally reported.
An abi bump is still useful, but since there is no longer breakage,
this is no longer release-critical.
Best wishes,
Mike
___
Python-modules-team mailin
Hi,
I noticed that there are quite a few python modules (pyglew, daap,
pyxine, pycg, dhm, etc.) that are currently under maintenance by this
team on the orphaned package list:
http://qa.debian.org/orphaned.html
I was going to do a QA upload for one of the packages, but it struck
me as wrong to ta
tag 581058 patch
severity 581058 serious
thanks
hi,
attached is a debdiff that fixes this issue (i've just applied the
upstream svn commit). squeeze really should not be released with this
still open, so i've upgraded the severity.
thanks,
mike
numpy.debdiff
Description: Binary data
__
Package: python-cjson
Version: 1.0.5-1
Severity: important
Tags: security
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for python-cjson.
CVE-2009-4924[0]:
| Dan Pascu python-cjson 1.0.5 does not properly handle a ['/'] argument
| to cjson.encode, which makes it easi
Hi all,
In order to guarantee that the system expat is used, the
'--with-expat=sys' configure argument must be used. If you think
your package is already using the system expat, or if you are updating
your package to use the system expat, please check to make sure that
this option is being used.
package: celementtree
severity: serious
tags: security
Hi,
The following CVE (Common Vulnerabilities & Exposures) ids were
published for expat. I have determined that this package embeds a
vulnerable copy of xmlparse.c and xmltok_impl.c. However, since this is
a mass bug filing (due to so many
On Fri, 11 Dec 2009 23:43:30 +0100 Jakub Wilk wrote:
> Package: python-docutils
> Version: 0.5-2
> Severity: grave
> Tags: security help
> Justification: user security hole
>
> Emacs major mode for reStructuredText (rst.el) uses temporary files
> with predictable names in an insecure fashion:
>
the "backend : GTKAgg" solution does indeed work for the stable version.
___
Python-modules-team mailing list
Python-modules-team@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/python-modules-team
i can also confirm that this problem is fixed in the
testing-proposed-updates version (0.98.1-1+lenny3). i had mistakenly
only changed python-matplotlib (not python-matplotlib-data) to the
testing-proposed-updates version. i realized this today and changed
both packages to this version. plotting
found 502976 0.98.3-4
found 502976 0.98.1-1+lenny3
thank you
i just tested the version in testing-proposed-updates. the problem
does exist there as well.
___
Python-modules-team mailing list
Python-modules-team@lists.alioth.debian.org
http://lists.al
severity grave 502976
thank you
the whole point of the matplotlib package is to provide the user a
means to make plots, hence the lack of this ability is a very
significant regression. i have raised the severity to
release-critical since this must be fixed for lenny. i don't want to
wait a year
12 matches
Mail list logo
