Bug#836553: [Debian-med-packaging] Bug#836553: poretools: short gpg key used in script

2016-09-03 Thread Afif Elghraoui
Hello, على السبت 3 أيلول 2016 ‫15:34، كتب D Haley: > Package: poretools > Version: 0.5.1-1 > Severity: important > > Dear Maintainer, > > Your package appears to contain commands which use a short gpg-key > ID. These have recently been identified as potential security concerns, > due to a chanc

Bug#836572: hidden options in the menu bar

2016-09-03 Thread Harald Dunkel
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Package: firefox Version: 48.0-1+b1 If I click on [File] in the menu bar, then firefox hides some options ([Close] and [Close Window]). Using "Alt-F" on the keyboard they are all shown. There are hidden menus options for [Edit] and [Bookmarks] as we

Bug#836571: jessie-pu: package rabbitvcs/0.16-1

2016-09-03 Thread Christopher Hoskin
Package: release.debian.org Severity: critical Tags: patch User: release.debian@packages.debian.org Usertags: pu The attached patch fixes bug #817231 in the rabbitvcs package. This is classified as a critical bug on the grounds that it can cause serious data loss (e.g. loss of entire home fo

Bug#836570: CVE-2016-3990: tiff: out-of-bounds write in horizontalDifference8() in tiffcp tool

2016-09-03 Thread Henri Salo
Package: tiff Version: 4.0.6-2 Severity: important Tags: security, fixed-upstream, upstream Original report: http://www.openwall.com/lists/oss-security/2016/04/12/2 Upstream bug report: http://bugzilla.maptools.org/show_bug.cgi?id=2544 Fixed per: http://bugzilla.maptools.org/show_bug

Bug#836569: RFS: node-js-yaml/3.6.1+dfsg-1 [RFP]

2016-09-03 Thread Ross Gammon
Package: sponsorship-requests Severity: wishlist Dear mentors, I am looking for a sponsor for my package "node-js-yaml" * Package name: node-js-yaml Version : 3.6.1+dfsg-1 Upstream Author : Dervus Grim * URL : https://github.com/nodeca/js-yaml * License : Exp

Bug#830568: python-asyncssh: accesses the internet during build

2016-09-03 Thread Vincent Bernat
❦ 3 septembre 2016 23:37 CEST, Chris Lamb  : >> If your bug was wishlist, I would just ignore it. It is severity serious >> and I have to handle it. Maybe it is legitimate. Maybe not. > > Oh! I thought we were discussing whether it was a bug at all — hence the > time you spent addressing whether

Bug#836409: RFP: libjs-emojione -- Open source emoji set

2016-09-03 Thread Sergio Durigan Junior
On Sunday, September 04 2016, Ben Finney wrote: > On 02-Sep-2016, Sergio Durigan Junior wrote: >> Probably just a part of the upstream tarball needs to be packaged >> (the JS part). > > What about the artwork, which seems to be the main point of the > package? Or are you saying that this Debian pa

Bug#830568: python-asyncssh: accesses the internet during build

2016-09-03 Thread Vincent Bernat
❦ 4 septembre 2016 01:03 CEST, Santiago Vila  : >> [...] information leak [...] > > This is not just a privacy issue but also a reproducibility issue. > > It is bad that a package leaks information to the external world, > but it is even worse, I would say, that information from the outside > wo

Bug#836559: not FIXED: Timestamp(s) on inode ... beyond 2310-04-04 are likely pre-1970.

2016-09-03 Thread Theodore Ts'o
Yes, sorry, this is a regression that was accidentally introduced in 1.43.2 on 32-bit systems. The fix is in git; I'll push out a new release shortly. - Ted

Bug#835542: flex: comparison between signed and unsigned integer expressions

2016-09-03 Thread Salvatore Bonaccorso
Hi, On Sat, Sep 03, 2016 at 10:57:13PM +0200, Frank Heckenbach wrote: > Hi, > > > On 02/09/16 06:31, Salvatore Bonaccorso wrote: > > > On Thu, Sep 01, 2016 at 12:14:02PM +0100, Robert Shearman wrote: > > >> Alternatively, I'm pretty sure that adding the resulting changes to > > >> skel.c > > >>

Bug#836409: RFP: libjs-emojione -- Open source emoji set

2016-09-03 Thread Ben Finney
On 02-Sep-2016, Sergio Durigan Junior wrote: > Probably just a part of the upstream tarball needs to be packaged > (the JS part). What about the artwork, which seems to be the main point of the package? Or are you saying that this Debian package would include none of the artwork? I have raised ht

Bug#836568: vlc: short drop-out at start when playing audio file

2016-09-03 Thread David Christensen
Package: vlc Version: 2.1.5-1~bpo70+1 Severity: normal Dear Maintainer, Whenever I play an audio file, there is a short drop-out at the start: 1. I hear a short burst of audio (~100 milliseconds?) 2. I hear silence (~1 second) 3. I hear the rest of the audio. A console session follows. T

Bug#811432: Krita no longer part of Calligra

2016-09-03 Thread juichenieder-debbie
Just found out about Krita, and thinking about giving it a try... Does the fact that the latest stable version of Krita upstream (3.x) has now split from Calligra have any bearing on this bug? I.e. instead of trying to fix these issues, we should just start from a clean slate with Calligra? B

Bug#836408: ITP: jquery-caret.js -- library to query input caret position

2016-09-03 Thread Ben Finney
Control: owner -1 ! Control: retitle -1 ITP: jquery-caret.js -- library to query input caret position Howdy, I have a complete package for this, and am interested to know whether it meets the need of dependent packages Before releasing this, it should be trialled to see whether it satisfies the

Bug#836567: aptitude: [PATCH] aborts on encountering new DepCompareOp flags

2016-09-03 Thread Aaron M. Ucko
Package: aptitude Version: 0.8.3-1 Severity: important Tags: patch Aptitude recently started aborting under some circumstances, notably when asked to calculate safe upgrades on my multiarch-enabled system. The aborts turned out to occur on line 1182 of src/generic/apt/apt.cc, with t1 values that d

Bug#836566: Unhandled exception in previously working program

2016-09-03 Thread Erik de Castro Lopo
Package: wine64 Version: 1.8.4-1 Severity: normal My main usage of Wine is for running the test suite for software when I cross compile from Linux to Windows. I've been doing this successfully for many years which the occassional problem like the one today. I recently upgraded to wine64 1.8.3 (an

Bug#832704: RFS: nixnote2/2.0~beta8+20160727+ds-1 [ITP] -- Open Source Evernote client

2016-09-03 Thread Paul Wise
On Sun, Sep 4, 2016 at 10:54 AM, Sean Whitton wrote: > I should be clear that what I had in mind was the question of *actually > regenerating* the files during the build process, not just the question > of including them in the source package with a promise that the > regeneration will actually wo

Bug#832704: RFS: nixnote2/2.0~beta8+20160727+ds-1 [ITP] -- Open Source Evernote client

2016-09-03 Thread Sean Whitton
Hello, On Sun, Sep 04, 2016 at 09:41:06AM +0800, Paul Wise wrote: > > From the links you've provided, it seems that the Evernote *.thrift > > files ought to be packaged as a build-dependency which are then used to > > generate the *.cpp files when the package is build. > > > > If it's impossible t

Bug#836565: ITP: dewalls -- Parser for Walls cave survey data

2016-09-03 Thread Wookey
Package: wnpp Severity: wishlist Owner: Wookey Package name: dewalls Version : 1.0.0 Upstream Author : Andy Edwards URL : https://github.com/jedwards1211/dewalls License : MIT Programming Lang: C++ Description : Parser for Walls cave survey data

Bug#832704: RFS: nixnote2/2.0~beta8+20160727+ds-1 [ITP] -- Open Source Evernote client

2016-09-03 Thread Paul Wise
On Sun, Sep 4, 2016 at 1:53 AM, Sean Whitton wrote: >> > ... generated cpp source files in qevercloud ... >> >> That is generated from Evernote Cloud API Thrift IDL files [1], an abstract >> description of Evernote Cloud API, and generated files should be considered >> as part of the source code.

Bug#831827: linux: arm64 support for securelevel and Secure Boot

2016-09-03 Thread Ben Hutchings
On Tue, 2016-08-30 at 11:15 -0700, Linn Crosetto wrote: > On Mon, Aug 29, 2016 at 01:30:44PM -0700, Linn Crosetto wrote: > > > > On Sat, Aug 27, 2016 at 10:22:52PM +0100, Ben Hutchings wrote: > > > > > > Control: tag -1 pending > > > > > > Applied, but: > > > > > > > > > > > > > > > --- a/dri

Bug#836564: Missing OnlyShowIn=KDE; in klipper autostart file

2016-09-03 Thread Michael Biebl
Am 04.09.2016 um 02:44 schrieb Lisandro Damián Nicanor Pérez Meyer: > I have friends that used to use klipper in gnome, although i don't know > if that's still possible. > They can easily remove the key from the desktop file, but this shouldn't be the default. It's irritating that this is started

Bug#835149: dpkg: please adapt setting the default pie hardening flag to gcc's new defaults

2016-09-03 Thread Balint Reczey
Hi Guillem, Many packages fail to build due to gcc ... -shared -no-pie ... failing. I have reported the issue to GCC but they don't seem to fix that: https://gcc.gnu.org/bugzilla/show_bug.cgi?id=77464 The proposed workarounds don't seem to be viable in Debian thus I propose making the -pie dpkg h

Bug#836564: Missing OnlyShowIn=KDE; in klipper autostart file

2016-09-03 Thread Lisandro Damián Nicanor Pérez Meyer
I have friends that used to use klipper in gnome, although i don't know if that's still possible. If it is i don't see why it should be marked as kde-only. -- Lisandro Damián Nicanor Pérez Meyer http://perezmeyer.com.ar/ http://perezmeyer.blogspot.com/ El sep 3, 2016 8:54 PM, "Michael Biebl" e

Bug#836170: evince: annoying Gtk-WARNING messages

2016-09-03 Thread Vincent Lefevre
On 2016-09-03 21:02:02 +0200, Michael Biebl wrote: > Those are warning messages. So no, there is no bug. But shrug, do > whatever you like There are two cases: either the D-Bus services should be there but they are not there, so there is a bug, or the warnings are pointless because the D-Bus servi

Bug#832637: More info

2016-09-03 Thread Till Kamppeter
On 09/03/2016 07:42 PM, Brian Potkin wrote: # DomainSocket /var/run/cups/cups.sock Thank you. As this line is commented out cups-browsed connects by the socket out-of-the-box on your machine. Till

Bug#835838: pulseaudio: Do not intercept ALSA if environment variable is set

2016-09-03 Thread Javier Serrano Polo
El dv 02 de 09 de 2016 a les 22:40 -0300, Felipe Sateler va escriure: > what this really does is load > the file described in PULSE_ALSA_HOOK_CONF, and default to the known > location? Correct. smime.p7s Description: S/MIME cryptographic signature

Bug#836564: Missing OnlyShowIn=KDE; in klipper autostart file

2016-09-03 Thread Michael Biebl
Package: plasma-workspace Version: 4:5.7.4-1 Severity: important File: /etc/xdg/autostart/org.kde.klipper.desktop The klipper tool is KDE specific and should not be started in other desktop environments. Please add a OnlyShowIn=KDE; key to /etc/xdg/autostart/org.kde.klipper.desktop -- System Inf

Bug#836563: acbuild: example script contains too-short gpg id

2016-09-03 Thread D Haley
Package: acbuild Version: 0.4.0+dfsg-1 Severity: important Dear Maintainer, Your package appears to contain commands which use a short gpg-key ID. These have recently been identified as potential security concerns, due to a chance that the wrong key can be imported in the case of a forced key-ID

Bug#836562: python-tosca-parser: gpg key too short in test script

2016-09-03 Thread D Haley
Source: python-tosca-parser Version: 0.1.0-3 Severity: important Dear Maintainer, Your package appears to contain commands which use a short gpg-key ID. These have recently been identified as potential security concerns, due to a chance that the wrong key can be imported in the case of a forced

Bug#833625: Request for fixing

2016-09-03 Thread Garrett Kajmowicz
Can we get some traction on this issue. I'm having the exact same problem. However, I don't want to delete my SQLITE databases because they contain any additional annotations and tags that I've added. I would expect a software version upgrade to handle this transparently. - Garrett

Bug#834419: jessie-pu: package glibc/2.19-18+deb8u6

2016-09-03 Thread Aurelien Jarno
On 2016-09-03 19:18, Adam D. Barratt wrote: > Control: tags -1 + confirmed > > On Thu, 2016-09-01 at 09:26 +0200, Aurelien Jarno wrote: > > On 2016-08-28 16:54, Aurelien Jarno wrote: > > > On 2016-08-28 14:59, Adam D. Barratt wrote: > > > > On Fri, 2016-08-19 at 11:23 +0200, Aurelien Jarno wrote:

Bug#835420: bridge-utils: enabling rp_filter causes network to hang

2016-09-03 Thread Santiago Garcia Mantinan
> So what if I want two separate "devices" with two separate IP addresses? I > don't want all addresses on that bridge. Sorry, I don't understand, what do you mean by separate? Typically if you are using a bridge it is because you want to link together several network segments on different cards

Bug#836561: cairo-dock: gpg key in scripts too short

2016-09-03 Thread D Haley
Source: cairo-dock Version: 3.4.0-2 Severity: important Dear Maintainer, Your package appears to contain commands which use a short gpg-key ID. These have recently been identified as potential security concerns, due to a chance that the wrong key can be imported in the case of a forced key-ID col

Bug#836560: softhsm2: short gpg ids listed in documentation

2016-09-03 Thread D Haley
Source: softhsm2 Version: 2.1.0-3 Severity: normal Dear Maintainer, Your package appears to contain commands which use a short gpg-key ID. These have recently been identified as potential security concerns, due to a chance that the wrong key can be imported in the case of a forced key-ID collisio

Bug#836559: not FIXED: Timestamp(s) on inode ... beyond 2310-04-04 are likely pre-1970.

2016-09-03 Thread 積丹尼 Dan Jacobson
Package: e2fsprogs Version: 1.43.2-2 File: /sbin/e2fsck No matter how many times one does this: # fsck.ext4 -f -y /dev/sdd2 ... Timestamp(s) on inode 185115 beyond 2310-04-04 are likely pre-1970. Fix? yes Timestamp(s) on inode 185118 beyond 2310-04-04 are likely pre-1970. Fix? yes Timestamp(s

Bug#830568: python-asyncssh: accesses the internet during build

2016-09-03 Thread Santiago Vila
On Sat, 3 Sep 2016, Vincent Bernat wrote: > [...] information leak [...] This is not just a privacy issue but also a reproducibility issue. It is bad that a package leaks information to the external world, but it is even worse, I would say, that information from the outside world is being used i

Bug#836558: sqlkit: gpg key too short in tutorial file

2016-09-03 Thread D Haley
Source: sqlkit Version: 0.9.6.1-2 Severity: normal Dear Maintainer, Your package appears to contain commands which use a short gpg-key ID. These have recently been identified as potential security concerns, due to a chance that the wrong key can be imported in the case of a forced key-ID collisio

Bug#836557: php-mongodb: gpg short id used in script

2016-09-03 Thread D Haley
Package: php-mongodb Version: 1.1.7-2 Severity: important Dear Maintainer, Your package appears to contain commands which use a short gpg-key ID. These have recently been identified as potential security concerns, due to a chance that the wrong key can be imported in the case of a forced key-ID c

Bug#835612: ikiwiki: FTBFS in testing (broken by new git)

2016-09-03 Thread Simon McVittie
Control: tags 835612 + fixed-upstream pending On Sat, 27 Aug 2016 at 15:34:30 +, Santiago Vila wrote: > This used to build ok, so this failure seems related to git 2.9.3, > which is in testing since a few days. This is reproducible in an upstream build on current unstable, and should now be f

Bug#836556: [kwalletmanager] systray icon for kwalletmanager is missing under XFCE

2016-09-03 Thread Enrique Garcia
Package: kwalletmanager Version: 4:16.04.2-1 Severity: important The current version of kwalletmanager in testing shows an empty icon in the system tray of XFCE. Additionally, the list of wallets in the main application window also doesn't have any icons, so it is not possible to know whether t

Bug#836555: kivy: docs describe short gpg key usage

2016-09-03 Thread D Haley
Source: kivy Version: 1.9.1-1 Severity: normal Dear Maintainer, Your package appears to contain commands which use a short gpg-key ID. These have recently been identified as potential security concerns, due to a chance that the wrong key can be imported in the case of a forced key-ID collision [1

Bug#835046: just modify /etc/apt/apt.conf.d/20listchanges

2016-09-03 Thread Luis Mochan
On Wed, 31 Aug 2016 12:13:52 +0200 Emmanuel =?iso-8859-1?Q?Thom=E9?= wrote: > I have hit this bug too. > > I have been able to solve it as follows: > > mv /etc/apt/apt.conf.d/20listchanges.dpkg-new > /etc/apt/apt.conf.d/20listchanges > apt-get -f install > > E. > >

Bug#836554: gnupg - file verification leaves agent running

2016-09-03 Thread Bastian Blank
Package: gnupg Version: 2.1.15-2 Severity: grave A simple verification of a inlined signed file leaves the agent running. This makes it impossible to clean up the system properly. This is for example used by cdebootstrap. As it is inline signed, it is not possible to use gpgv, which can't decode

Bug#832637: More info

2016-09-03 Thread Brian Potkin
On Sat 03 Sep 2016 at 19:17:48 -0300, Till Kamppeter wrote: > Brian, thank you very much for the testing. I will do the next (bug fix) > release containing also other fixes (version 1.11.3) most probably on > Monday. > > One question: Did cups-browsed use the socket out-of-the-box or did you need

Bug#836553: poretools: short gpg key used in script

2016-09-03 Thread D Haley
Package: poretools Version: 0.5.1-1 Severity: important Dear Maintainer, Your package appears to contain commands which use a short gpg-key ID. These have recently been identified as potential security concerns, due to a chance that the wrong key can be imported in the case of a forced key-ID col

Bug#836552: redis-server: redis-cli shutdown tries default port instead of reading port/socket from config

2016-09-03 Thread Chris Lamb
forcemerge 794437 836552 thanks Hi Olav, > This is because /usr/bin/redis-cli shutdown does not honor the socket config. > Instead it tries to connect to the default port: > > # /usr/bin/redis-cli shutdown > Could not connect to Redis at 127.0.0.1:6379: Connection refused Indeed. This was fixed

Bug#826300: [Pkg-pascal-devel] Bug#826300: Share knowledge on fpc and powerpc issue

2016-09-03 Thread peter green
On 03/09/16 14:15, Graham Inggs wrote: A wild stab in the dark: don't we need to binNMU lazarus before we can build packages with it? I'd say yes, in that build log it looks like it's lazbuild which is crashing. So yes a binnmu of lazarus seems the next step. Then, don't we need to binNMU e

Bug#836539: ripit: Musicbrainz lookup messed up for Male by Foetos (broken CD 2 handling?)

2016-09-03 Thread Elimar Riesebieter
Hi Petter, * Petter Reinholdtsen [2016-09-03 22:11 +0200]: > > Package: ripit > Version: 4.0.0~beta20140508-1 > > Hi. I noticed something strange when trying to rip the second CD in the > two CD pack Male by Foetus in Excelsis Corruptus Deluxe[1]. The first > CD is ripped and tagged correctl

Bug#836552: redis-server: redis-cli shutdown tries default port instead of reading port/socket from config

2016-09-03 Thread Olav Seyfarth
Package: redis-server Version: 2:2.8.17-1+deb8u5 Severity: normal Dear Maintainer, I use redis-server for a small nextcloud installation and set it to use a local socket. I modified only these lines in /etc/redis/redis.conf, left all other as they were: port 0 unixsocket /var/run/redis

Bug#832637: More info

2016-09-03 Thread Till Kamppeter
Brian, thank you very much for the testing. I will do the next (bug fix) release containing also other fixes (version 1.11.3) most probably on Monday. One question: Did cups-browsed use the socket out-of-the-box or did you need to set it in cups-browsed.conf? Till

Bug#836533: firefox segfault in 48.0-1+b1 but not 48.0-1

2016-09-03 Thread Ben Caradoc-Davies
I am also seeing a similar firefox segfault in 48.0-1+b1 that does not occur in 48.0-1. How do I tell what changed in +b1? The segfault occurs with a variety of web pages, including Twitter and a Google Docs sheet. Segfault does not occur in safe mode, but manually disabling extensions and h

Bug#836551: gitlab: short gpg key used in script

2016-09-03 Thread D Haley
Package: gitlab Version: 8.10.5+dfsg-2 Severity: important Dear Maintainer, Your package appears to contain commands which use a short gpg-key ID. These have recently been identified as potential security concerns, due to a chance that the wrong key can be imported in the case of a forced key-ID

Bug#836550: ITP: haskell-type-level-numbers -- library representing integers using Haskell type families

2016-09-03 Thread Sean Whitton
Package: wnpp Severity: wishlist Owner: Sean Whitton Control: block 836547 by -1 * Package name: haskell-type-level-numbers Version : 0.1.1.1 Upstream Author : Alexey Khudyakov * URL : http://hackage.haskell.org/package/type-level-numbers * License : BSD-3-cla

Bug#836533: Firefox crashes in js::jit::SnapshotIterator::numAllocations(). Possibly GCC 6-related?

2016-09-03 Thread Ben Caradoc-Davies
On Sat, 3 Sep 2016 23:02:03 +0200 Adrien CLERC wrote: Hi, As a temporary workaround, I've set "javascript.options.baselinejit" to false. It seems to work. Some pages are now really slow, but at least, I can read them. Adrien Thanks Adrien, this also works for me. Kind regards, -- Ben Caradoc

Bug#830568: python-asyncssh: accesses the internet during build

2016-09-03 Thread Chris Lamb
> If your bug was wishlist, I would just ignore it. It is severity serious > and I have to handle it. Maybe it is legitimate. Maybe not. Oh! I thought we were discussing whether it was a bug at all — hence the time you spent addressing whether privacy leaking is valuable — not the severity of the

Bug#836549: mythes FTCBFS: fails to passs --host to configure

2016-09-03 Thread Helmut Grohne
Source: mythes Version: 2:1.2.4-1 Tags: patch User: helm...@debian.org Usertags: rebootstrap mythes fails to cross build from source, because it does not pass a suitable --host to ./configure and thus fails finding required dependencies. The attached patch solves that by using dh_auto_configure, w

Bug#827296: #827296 - connman: Connman slow down the boot when no network available

2016-09-03 Thread oz
On Fri, 2 Sep 2016 10:53:45 +0200 Alexander Sack wrote: tags 827296 + moreinfo severity 827296 normal thanks Hi, this seems to be a feature. Seems you were able to resolve this issue? Anything you think that should be done here? Network Manager also has a similar wait job. timeout there is 30

Bug#836547: ITP: haskell-finite-field -- implementation of finite fields for Haskell

2016-09-03 Thread Sean Whitton
Package: wnpp Severity: wishlist Owner: Sean Whitton Control: block 834869 by -1 * Package name: haskell-finite-field Version : 0.8.0 Upstream Author : Masahiro Sakai (masahiro.sa...@gmail.com) * URL : https://github.com/msakai/finite-field/ * License : BSD-3-c

Bug#836324: tightvncserver: Typing gives wrong keys in some apps

2016-09-03 Thread Ola Lundqvist
Hi Matthew Interesting. I'm quite sure there are several key mapping functions and different applications use different ones. They all have to be in sync to make it work. But I have not seen any report with the un-shifted keyboard parts. That is really strange. Also interesting that the problem

Bug#607775: vnc4server: can not start vncserver, even with running xserver on graphic card

2016-09-03 Thread Ola Lundqvist
Hi Juergen This was the old font path. Has it changed? What is the new path to use? // Ola On Thu, Sep 1, 2016 at 6:49 PM, Juergen Kosel wrote: > Package: vnc4server > Version: 4.1.1+X4.3.0-37.6 > Followup-For: Bug #607775 > > Dear Maintainer, > > the bug still exist in Debian Jessie: > > LANG=

Bug#607775: vnc4server: can not start vncserver, even with running xserver on graphic card

2016-09-03 Thread Ola Lundqvist
Hi again I see that I have the answer in the report. Sorry. You should be able to change /etc/vnc.conf to make it start. If you do, please let me know what you changed it to, to make it work. // Ola On Sat, Sep 3, 2016 at 11:22 PM, Ola Lundqvist wrote: > Hi Juergen > > This was the old font p

Bug#836546: enchant FTCBFS: uses build architecture pkg-config

2016-09-03 Thread Helmut Grohne
Source: enchant Version: 1.6.0-11 Tags: patch User: helm...@debian.org Usertags: rebootstrap enchant fails to cross build from source, because it uses the build architecture pkg-config. It has two checks for pkg-config (one implicit and and explicit) where the explicit has a bad default and the im

Bug#836533: Firefox crashes in js::jit::SnapshotIterator::numAllocations(). Possibly GCC 6-related?

2016-09-03 Thread Adrien CLERC
Hi, As a temporary workaround, I've set "javascript.options.baselinejit" to false. It seems to work. Some pages are now really slow, but at least, I can read them. Adrien

Bug#835542: flex: comparison between signed and unsigned integer expressions

2016-09-03 Thread Frank Heckenbach
Hi, > On 02/09/16 06:31, Salvatore Bonaccorso wrote: > > On Thu, Sep 01, 2016 at 12:14:02PM +0100, Robert Shearman wrote: > >> Alternatively, I'm pretty sure that adding the resulting changes to skel.c > >> in 0006-CVE-2016-6354.patch would work too. > > > > I uploaded new varaiants of the builds

Bug#836544: libutempter FTCBFS: uses build architecture compiler

2016-09-03 Thread Helmut Grohne
Source: libutempter Version: 1.1.6-3 Tags: patch User: helm...@debian.org Usertags: rebootstrap libutempter fails to cross build from source, because it uses the build architecture compiler. The later dh_strip (which uses host architecture tools) fails operating on the generated ELF objects. The a

Bug#836543: ruby-rack: FTBFS with unhelpful error if machine has low memory

2016-09-03 Thread Santiago Vila
Package: src:ruby-rack Version: 1.6.4-4 Dear maintainer: I tried to build this package in stretch with "dpkg-buildpackage -A" (which is what the "Arch: all" autobuilder would do to build it) but it failed: [...] de

Bug#830568: python-asyncssh: accesses the internet during build

2016-09-03 Thread Vincent Bernat
❦ 3 septembre 2016 21:22 CEST, Chris Lamb  : >> The policy says "may not". I am not a native speaker, but for me, this >> is not like "must not". Since you are a native speaker, I think you know >> better: is it optional or not? > > May I suggest an alternative approach…? We have two cases here:

Bug#836542: nfs-utils FTCBFS: uses build architecture compiler, uses pre-built ELF object files

2016-09-03 Thread Helmut Grohne
Source: nfs-utils Version: 1:1.2.8-9.2 Severity: important Tags: patch User: helm...@debian.org Usertags: rebootstrap nfs-utils fails to cross build from source, because it doesn't pass --host to ./configure and thus uses the build architecture compiler. The attached patch uses dh_auto_configure,

Bug#830377: Reduce bug`s severity?

2016-09-03 Thread Anton Gladky
Hi all, it looks like this test failure is the random case. I was not able to reproduce it building it 2 times on barriere.debian.org. I propose to reduce the bug severity to "normal". Thanks Anton

Bug#836538: nipy: FTBFS in testing (failing tests)

2016-09-03 Thread Yaroslav Halchenko
On September 3, 2016 4:01:16 PM EDT, Santiago Vila wrote: >Package: src:nipy >Version: 0.4.0+git26-gf8d3149-1 >Severity: serious > >Dear maintainer: > >I tried to build this package in stretch with "dpkg-buildpackage -A" >(which is what the "Arch: all" autobuilder would do to build it) >but it fai

Bug#836416: libreoffice: Depends on both fonts-sil-gentium-basic and fonts-dejavu

2016-09-03 Thread Rene Engelhard
Hi, On Sat, Sep 03, 2016 at 08:51:06PM +0200, Fabian Greffrath wrote: > Am Samstag, den 03.09.2016, 10:35 +0200 schrieb Rene Engelhard: > > This is a metapackage and is supposed to install (mostly) > > everything an upstream install would also install. > > Ah, thanks, this explains a lot! Maybe

Bug#836459: Please close "bogohttpd" bug.

2016-09-03 Thread Kelly Price
Wrong name (meant bozohttpd), please close. I've opened bug 836540 instead. -- Kelly "STrRedWolf" Price http://redwolf.ws

Bug#836539: ripit: Musicbrainz lookup messed up for Male by Foetos (broken CD 2 handling?)

2016-09-03 Thread Petter Reinholdtsen
[Petter Reinholdtsen] > The first CD is ripped and tagged correctly, but the second is tagged > with the titles from the first CD. I just noticed, I see the same problem when ripping The Best of by Nick Cave & The Bad Seeds[1], consisting of two CDs where the first is handled correctly while the s

Bug#836540: Revbump requested for bozohttpd (security update)

2016-09-03 Thread Kelly Price
Package: bozohttpd Version: 2018-1 A new version of bogohttpd has been released on 2016-04-15 that fixes two vulnerabilities (from website): *snip* please note that bozohttpd versions prior to 20160415 have a flaw in the handling of CGI in some cases, if the -C option has been used to setup a

Bug#836533: Firefox crashes in js::jit::SnapshotIterator::numAllocations(). Possibly GCC 6-related?

2016-09-03 Thread Torbjörn Andersson
Watching a YouTube video seems to be a quick way of triggering the crash for me. Torbjörn Andersson

Bug#836528: libreoffice-java-common: missing files: agenda.jar and web.jar

2016-09-03 Thread Rene Engelhard
To feed it with some more data: On Sat, Sep 03, 2016 at 09:11:19PM +0200, Rene Engelhard wrote: > Those wizards have becoome python. since LO 4.1: https://wiki.documentfoundation.org/ReleaseNotes/4.1 (Letter and Fax wince 4.0) LibreOffice 4.1 was released in July 2013. If you use agenda.jar a

Bug#836539: ripit: Musicbrainz lookup messed up for Male by Foetos (broken CD 2 handling?)

2016-09-03 Thread Petter Reinholdtsen
Package: ripit Version: 4.0.0~beta20140508-1 Hi. I noticed something strange when trying to rip the second CD in the two CD pack Male by Foetus in Excelsis Corruptus Deluxe[1]. The first CD is ripped and tagged correctly, but the second is tagged with the titles from the first CD. This is rath

Bug#836538: nipy: FTBFS in testing (failing tests)

2016-09-03 Thread Santiago Vila
Package: src:nipy Version: 0.4.0+git26-gf8d3149-1 Severity: serious Dear maintainer: I tried to build this package in stretch with "dpkg-buildpackage -A" (which is what the "Arch: all" autobuilder would do to build it) but it failed: --

Bug#836535: coordinate a way to use librevenge.pc from cross-pkg-config

2016-09-03 Thread Rene Engelhard
# not tagging wontfix given it's assigned to both packages but reassigning reassign 836535 cross-pkg-config thanks Hi, On Sat, Sep 03, 2016 at 09:41:41PM +0200, Helmut Grohne wrote: > Please restate[1] your reasons for rejecting the proposed solutions in > this bug. Failure to do so will result i

Bug#833507: [pkg-wpa-devel] Bug#833507: wpasupplicant: Unable to connect WLAN (wlan0: CTRL-EVENT-SCAN-FAILED ret=-22)

2016-09-03 Thread Eduard Bloch
On Tue, 9 Aug 2016 17:27:58 +1000 Barry Kitson wrote: > Just confirming version 2.5-2+v2.4-1 currently in the debian repository > works for me. Sorry, for me that does NOT work, at least not fully. I have a Lenovo laptop with a similar Broadcom chip, i.e. only non-free driver supports it. Still g

Bug#836537: snd: FTBFS: snd-main.c:2162:24: error: macro "g_abort" passed 1 arguments, but takes just 0

2016-09-03 Thread Chris Lamb
Source: snd Version: 16.7-1 Severity: serious Justification: fails to build from source User: reproducible-bui...@lists.alioth.debian.org Usertags: ftbfs X-Debbugs-Cc: reproducible-bui...@lists.alioth.debian.org Dear Maintainer, snd fails to build from source in unstable/amd64: [..] make: [

Bug#832637: More info

2016-09-03 Thread Brian Potkin
On Sat 03 Sep 2016 at 14:12:52 -0300, Till Kamppeter wrote: > The problem is most probably caused by inconsistency in how cups-browsed > accesses the local CUPS daemon, for some accesses it uses the domain socket > (which made it mostly well working in your case) and at other places, > especially

Bug#836536: ruby-concurrent: FTBFS too much often (failed examples)

2016-09-03 Thread Santiago Vila
Package: src:ruby-concurrent Version: 1.0.0-1 Severity: serious Dear maintainer: I tried to build this package in stretch with "dpkg-buildpackage -A" (which is what the "Arch: all" autobuilder would do to build it) but it failed: --

Bug#684174: spectrwm: Some key bindings (M-j, M-k) don't work.

2016-09-03 Thread Andrea Bolognani
Hi Anthony, I tried to reproduce this issue with spectrwm 3.0.2, which has been available in testing for a couple of weeks now. I configured spectrwm with modkey = Mod4 to match your setup and started unclutter -idle 1 from a terminal window. The mouse cursor disappears after one second

Bug#836531: libreoffice-gtk3: LibreOffice is unusable slow with XFCE4

2016-09-03 Thread Rene Engelhard
On Sat, Sep 03, 2016 at 09:20:01PM +0200, Andreas Brogle wrote: > this problem only occurs with libreoffice-gtk3 installed and XFCE4. > The speed is normal when using KDE, it is normal too with XFCE4 and > libreoffice-gtk3 deinstalled. So? And what do you suggest? There's a easy workaround: use

Bug#836447: transition: proj

2016-09-03 Thread Sebastiaan Couwenberg
On 09/03/2016 12:14 PM, Sebastiaan Couwenberg wrote: > On 09/03/2016 11:49 AM, Emilio Pozuelo Monfort wrote: >> On 03/09/16 11:29, Bas Couwenberg wrote: >>> Package: release.debian.org >>> Severity: normal >>> User: release.debian@packages.debian.org >>> Usertags: transition >>> Control: forwar

Bug#836535: coordinate a way to use librevenge.pc from cross-pkg-config

2016-09-03 Thread Helmut Grohne
Package: librevenge-dev,pkg-config Severity: normal Hi Rene and Tollef, I've asked Tollef to add /usr/lib/pkgconfig to the default search path of -pkg-config and I've asked Rene to move librevenge.pc from /usr/lib/pkgconfig to /usr/lib//pkgconfig. Both of you declined. Now we are in a situation w

Bug#836534: ITP: adwaita-qt -- A style to bend Qt applications to look like they belong into GNOME

2016-09-03 Thread Dmitry Shachnev
Package: wnpp Severity: wishlist Owner: Dmitry Shachnev * Package name: adwaita-qt Version : 0.5 Upstream Author : Martin Bříza * URL : https://github.com/MartinBriza/adwaita-qt * License : LGPL-2.1+ Programming Lang: C++ Description : A style to bend Q

Bug#836533: Firefox crashes in js::jit::SnapshotIterator::numAllocations(). Possibly GCC 6-related?

2016-09-03 Thread Torbjörn Andersson
Package: firefox Version: 48.0-1+b1 Ever since the most recent update, Firefox has crashed, sometimes just a few seconds after restoring my previous session. The backtrace typically looks something like this: (gdb) bt #0 0x021d in ?? () #1 0x74cc3397 in js::jit::Snapshot

Bug#836531: libreoffice-gtk3: LibreOffice is unusable slow with XFCE4

2016-09-03 Thread Andreas Brogle
Package: libreoffice-gtk3 Version: 1:5.2.0-2 Severity: normal Dear Maintainer, this problem only occurs with libreoffice-gtk3 installed and XFCE4. The speed is normal when using KDE, it is normal too with XFCE4 and libreoffice-gtk3 deinstalled. It is reproducible. Install libreoffice-gtk3, star

Bug#830568: python-asyncssh: accesses the internet during build

2016-09-03 Thread Chris Lamb
Hi Vincent, > The policy says "may not". I am not a native speaker, but for me, this > is not like "must not". Since you are a native speaker, I think you know > better: is it optional or not? May I suggest an alternative approach…? We have two cases here: a) Debian Policy states it is a bug i

Bug#836530: nmu: lazarus_1.6+dfsg-4

2016-09-03 Thread Paul Gevers
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 See bug 826300 for background. glibc 2.23 broke the FreePascal stack on powerpc. The issue is now fixed in fpc, but AFAICT every package in th

Bug#836529: hurd: won't boot if /etc/hurd/runsystem is runsystem.gnu, because runsystem.hurd does not exist

2016-09-03 Thread Kalle Olavi Niemitalo
Package: hurd Version: 1:0.8.git20160826-1 Severity: normal The hurd package makes /etc/hurd/runsystem a symlink that is managed with the alternatives system. The default is runsystem.sysv, and runsystem.gnu is also available. However, if I use 'update-alternatives --config runsystem' to select

Bug#803503: libfile-stripnondeterminism-perl: substr outside of string at /usr/share/perl5/File/StripNondeterminism/handlers/zip.pm

2016-09-03 Thread Chris Lamb
tags 803503 + moreinfo thanks Hi Daniel, > libfile-stripnondeterminism-perl: substr outside of string at > /usr/share/perl5/File/StripNondeterminism/handlers/zip.pm Do you still see this? I can't reproduce myself, but you mention that package is unreleased so I can't really get started… Ideall

Bug#836446: libc6-dev: depends on linux-libc-dev:$arch, breaking debootstrap

2016-09-03 Thread Aurelien Jarno
On 2016-09-03 20:54, Cyril Brulebois wrote: > Aurelien Jarno (2016-09-03): > > clone 836446 -1 > > reassign -1 debootstrap > > retitle -1 debootstrap: doesn't support arch-qualified dependencies > > affects -1 libc6-dev > > thanks > > Thanks for this. > > > On 2016-09-03 11:28, Sven Joachim wrot

Bug#836528: libreoffice-java-common: missing files: agenda.jar and web.jar

2016-09-03 Thread Jim Rhyne
Package: libreoffice-java-common Version: 1:4.3.3-2+deb8u5 Severity: normal Wheezy packages include these files. -- System Information: Debian Release: 8.3 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 4.4.0-rc8 (SMP w

Bug#836170: evince: annoying Gtk-WARNING messages

2016-09-03 Thread Michael Biebl
Am 03.09.2016 um 20:33 schrieb Vincent Lefevre: > Control: reopen -1 > Control: reassign -1 fvwm 1:2.6.5.ds-4.1 > > On 2016-09-03 19:44:15 +0200, Michael Biebl wrote: >> On Wed, 31 Aug 2016 10:12:46 +0200 Vincent Lefevre >> wrote: >>> Package: evince >>> Version: 3.20.1-1 >>> Severity: normal >>>

Bug#833905: dimbl: FTBFS: include/dimbl/DimProcs.h:37:29: error: expected ')' before '&' token

2016-09-03 Thread Adrian Bunk
tags 833905 +fixed-upstream thanks On Wed, Aug 10, 2016 at 08:45:57AM +0100, Chris Lamb wrote: >... > make[3]: Entering directory > '/home/lamby/temp/cdt.20160810084053.cX2EXg73ka.dimbl/dimbl-0.12/src' > g++ -DHAVE_CONFIG_H -I. -I.. -I../include -Wdate-time -D_FORTIFY_SOURCE=2 > -g -O2 >

Bug#836446: libc6-dev: depends on linux-libc-dev:$arch, breaking debootstrap

2016-09-03 Thread Cyril Brulebois
Aurelien Jarno (2016-09-03): > clone 836446 -1 > reassign -1 debootstrap > retitle -1 debootstrap: doesn't support arch-qualified dependencies > affects -1 libc6-dev > thanks Thanks for this. > On 2016-09-03 11:28, Sven Joachim wrote: > > Package: libc6-dev > > Version: 2.24-1 > > Severity: impo

  1   2   3   >