Your message dated Mon, 05 Aug 2019 23:13:43 +0000 with message-id <e1humah-000bot...@fasolo.debian.org> and subject line Bug#933920: fixed in python-markdown 3.1.1-2 has caused the Debian Bug report #933920, regarding src:python-markdown: Unsafe use of yaml.load() to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 933920: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933920 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: src:python-markdown Version: 3.0.1-3 Severity: grave Tags: security Justification: user security hole The new version of pyyaml no longer allows use of yaml.load() without a loader being specifed. This raises a deprecation warning which has caused and autopkgtest failure on this package. These are generally trivial to fix, see the upstream guidance [1]. Scott K [1] https://github.com/yaml/pyyaml/wiki/PyYAML-yaml.load(input)-Deprecation
--- End Message ---
--- Begin Message ---Source: python-markdown Source-Version: 3.1.1-2 We believe that the bug you reported is fixed in the latest version of python-markdown, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 933...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Dmitry Shachnev <mity...@debian.org> (supplier of updated python-markdown package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 05 Aug 2019 22:03:47 +0300 Source: python-markdown Architecture: source Version: 3.1.1-2 Distribution: unstable Urgency: medium Maintainer: Debian Python Modules Team <python-modules-t...@lists.alioth.debian.org> Changed-By: Dmitry Shachnev <mity...@debian.org> Closes: 933920 Changes: python-markdown (3.1.1-2) unstable; urgency=medium . * Upload to unstable. - The 3.1 release is compatible with PyYaml 5.1 (closes: #933920). . [ Ondřej Nový ] * Bump Standards-Version to 4.4.0. Checksums-Sha1: 0c3939e523f5d3630a1f029b8cc3cfbd860bf816 2673 python-markdown_3.1.1-2.dsc 38db3be0366fdcd952abca9d2b88ae68f49f2622 8628 python-markdown_3.1.1-2.debian.tar.xz c577e6e1995c160562c2aec5c7ebee4e091bb136 7936 python-markdown_3.1.1-2_source.buildinfo Checksums-Sha256: c630757c569a32e9a97124453f4d610276d0a642b140e52f0ec4cc37cb09d44b 2673 python-markdown_3.1.1-2.dsc 6fcc715a967f5e9c437648a54f3e167805539749f56f0b9423f847d73bb0e572 8628 python-markdown_3.1.1-2.debian.tar.xz a6b9c59bbd6ed9a96e446abca0a606c50790846861fee6f0a7054d3720ada7e3 7936 python-markdown_3.1.1-2_source.buildinfo Files: 21725a953e0764920227a7a0f9884f8f 2673 python optional python-markdown_3.1.1-2.dsc c805dc9eec47ad4aba940a28a57b5cfc 8628 python optional python-markdown_3.1.1-2.debian.tar.xz a4f85126236abd1e87195fa0a6ff66d5 7936 python optional python-markdown_3.1.1-2_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJHBAEBCgAxFiEE8kKZ/xu8kBi5BqTLYCaTbS8ciuAFAl1IgD4THG1pdHlhNTdA ZGViaWFuLm9yZwAKCRBgJpNtLxyK4GNyD/9jlvtJPDdW748oe68v7W8fi5PwNIc/ XuCFAbTUyqMRURjhMKg30PShjC5O+M2lxfVIGNyNVbmtQ5/HApw1F1oNs4wfeMWz EmEwjp8s3UQvCY0iajKZeB2/MJ2ysx0LMp4x+CiTS+nlYng/R9TL4vcksDNUUYLs /Icf0PKAXdQnzrYirIKD9Q5blQk7zsGzWI88nhTiQolSQSDdTY/f/Yd5r1VAVNpp 7hYcV8oYl2yA1vrg5sB4Pp8v3R2xBVmDZOQRw2/IwzCt92mEkXHhdZ82eHtQXfeF yXYZKWBNP8LvVk5bjlKkFs+eVl7HXhfEQ4ntsDvL1uQWyes/dl9+K8OlpwsG5xt8 /ojRWtW8ocaZz9v91IWM/B0U75Ky78sCANxBkPZmkcuwwkQC3+2OILsBe1IvGJfw a2m8KBo8et2YLfR0CGVpkX/hI8DupsrPD9Mn3lXvzoSKxnQdnBi7Gh3n/YtIpZhj a3d3dLVdvJ+fWbOQ+zEJgQ2N9WWXLNqEyHIFT7LNicpMZK75Pi0ZUYYNbEhVbn53 TzjeW+NL91qR6X5Q9PKf1mvPRKtrtFRVN3sNJn+vd1QKYu00tYJFWpZcMdD8xhwa KQJbqiPxjlVDeP0585y+74EGvT5Wd5CF7Cw+NEi51HxoPTwJerXNvzGXOFI6jqy4 F35+UNV1+LjPWA== =Hbfa -----END PGP SIGNATURE-----
--- End Message ---
