Your message dated Sat, 14 Dec 2024 13:19:23 +0000 with message-id <e1tms3h-007xby...@fasolo.debian.org> and subject line Bug#1076516: fixed in libsndfile 1.2.2-2 has caused the Debian Bug report #1076516, regarding libsndfile: Build dependency loop between libsndfile and lame to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1076516: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1076516 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: libsndfile Version: 1.2.2-1 Severity: important Hello, libsndfile build-depends on libmp3lame-dev and lame build-depends on libsndfile1-dev, so we need to break the loop thanks to a build profile. Perhaps it's less problematic to disable mpeg3 support from libsndfile in a pkg.libsndfile.nompeg3 profile? Samuel -- System Information: Debian Release: trixie/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable-debug'), (500, 'unreleased'), (500, 'testing-debug'), (500, 'stable-security'), (500, 'stable-debug'), (500, 'oldstable-proposed-updates-debug'), (500, 'oldstable-proposed-updates'), (500, 'oldoldstable'), (500, 'buildd-unstable'), (500, 'unstable'), (500, 'stable'), (500, 'oldstable'), (1, 'experimental-debug'), (1, 'buildd-experimental'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386, arm64 Kernel: Linux 6.9.8-amd64 (SMP w/8 CPU threads; PREEMPT) Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled -- Samuel void *memmem (const void *meule_de_foin, size_t lg_meule, const void *aiguille, size_t lg_aiguille); (extrait de la page de man de memmem -- Manuel du programmeur Linux)
--- End Message ---
--- Begin Message ---Source: libsndfile Source-Version: 1.2.2-2 Done: Fabian Greffrath <fab...@debian.org> We believe that the bug you reported is fixed in the latest version of libsndfile, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 1076...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Fabian Greffrath <fab...@debian.org> (supplier of updated libsndfile package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sat, 14 Dec 2024 13:50:37 +0100 Source: libsndfile Architecture: source Version: 1.2.2-2 Distribution: unstable Urgency: high Maintainer: Debian Multimedia Maintainers <debian-multime...@lists.debian.org> Changed-By: Fabian Greffrath <fab...@debian.org> Closes: 1051891 1076516 1088692 Changes: libsndfile (1.2.2-2) unstable; urgency=high . [ Fabian Toepfer ] * SECURITY UPDATE: integer overflow vulnerability (Closes: #1051891) - debian/patches/CVE-2022-33065/CVE-2022-33065-*.patch: fix various numeric overflow vulnerabilities. - CVE-2022-33065 . [ Fabian Greffrath ] * Add myself to Uploaders and Debian packaging copyright holders * Update the Homepage field * Apply patch from upstream to improve error checking for Vorbis (Closes: #1088692) CVE-2024-50612 * Fix Build dependency loop between libsndfile and lame (Closes: #1076516) Thanks Samuel Thibault for the patch * Upload with urgency=high for the security fixes Checksums-Sha1: ff1ac472e29afab50608235da1d8ffcd106ad9c7 2481 libsndfile_1.2.2-2.dsc aad73652fc4e5fcafc5cf13f21334e6bd658cd29 29148 libsndfile_1.2.2-2.debian.tar.xz dc8aaa56b8ccbb3f232f1132f8eccd1b1bde5ff0 9048 libsndfile_1.2.2-2_amd64.buildinfo Checksums-Sha256: 00042f9d7e85c3dbf22828141bc181b55ba719ad3550671ed7da9786fdfdd810 2481 libsndfile_1.2.2-2.dsc 03801793ef488c9bc8579e47600386b4be0e6ac4b85c726e90dcb0ce2338729c 29148 libsndfile_1.2.2-2.debian.tar.xz 60cac2d844a98818a2e7e70331ce8c04840cffb7652b0096b2aed44cac9122a0 9048 libsndfile_1.2.2-2_amd64.buildinfo Files: 6bf2f884dec3b7ff9011b3c82504b5f2 2481 devel optional libsndfile_1.2.2-2.dsc 916169f09feeb9259753fde1b7ed7900 29148 devel optional libsndfile_1.2.2-2.debian.tar.xz 8a3ae25a9360b9c756c867397ec3fc09 9048 devel optional libsndfile_1.2.2-2_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQJGBAEBCAAwFiEEIsF2SKlSa4TfGRyWy+qOlwzNWd8FAmddf58SHGZhYmlhbkBk ZWJpYW4ub3JnAAoJEMvqjpcMzVnfKBkQAN2GQSMKHv8yje0OcWcDKvbWwYyfy047 AJ+pYsc2L3LhUj6drZBaaGDfRz3k3HWE0ZdokpM+ywUCz9s0dWFowEsoePpBczQe Rd/VwW21q+H9lhsX/v0JojCHuCfLkodt/34T2VJnRV24PA0rAz5uD+Hqnb9Q/O4p yEjZJnbQRZwbOQaxfLthDFWvUOeICMdwrXx/CP5WoooWVyBZDsH5YmnIhgyQ4kkJ cxqXVPv0gN9EqXxYnpte19bfAySaLpGBR0GQ630QIeUHCgP2S2SbdCP2AFR7+ota LpuUkG/O2/gekQ/uC9QFcWO/uHrl3p60nti8fMoS0tHIWs7H5SLGMLj36o7Zwxok a7azADdV2zH0HHaB9OPRh9Qhg21Iz5K5rGfNvzEcrcgJOb2sS+Bv66v+ttMr8inp A1q0y1fwI3fuXayUDnf6sZkuCzlVzXEKnDvK1V61fJmAffXzN5HLob69iEj31M9q dRteoGOfWNdFDaUVH4ftyCqCMMBURfByRx9ROTck9vs4VJDhvsFEUttrMzW4hfrt +7nth5dsvYOsJoPTInE9Ku2WbCmfzU4YGjOb/Cy4HW6YGVCi7Rf/gOKqYqcFh01K RdsDFl9yrvt2NZSxIf3cDxl9sI8z2yJQVO6HUISQrIJ1l0nxYoPvH3Wdohm76g8h e2T3eH/GPr10 =oAOu -----END PGP SIGNATURE-----
pgpzOBxMC6oZa.pgp
Description: PGP signature
--- End Message ---
