Bug#1035978: CVE-2023-2088: Unauthorized volume access through deleted volume attachments

Package: python3-glance-store Version: 4.3.0-1 Severity: grave Tags: patch OSSA-2023-003: Unauthorized volume access through deleted volume attachments =

Bug#1035977: unblock: maven-debian-helper/2.6.3

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-Cc: maven-debian-hel...@packages.debian.org Control: affects -1 + src:maven-debian-helper Please unblock package maven-debian-helper This update is required to fix the build failu

Bug#1035976: aptitude dies with SEGV

Package: aptitude Version: 0.8.13-5 Running aptitude without arguments in a ssh session to a remote host I see the "loading cache" message as usual, but then it dies with Ouch! Got SIGSEGV, dying.. Segmentation fault aptitude update, upgrade etc work without problems, AFAICT.

Bug#1035975: [pre-approval] unblock: mmdebstrap/1.3.5-X

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-Cc: mmdebst...@packages.debian.org Control: affects -1 + src:mmdebstrap Control: block -1 by #1035654 #1035745 #1035710 Hi, some of the packages uploaded to unstable or experiment

Bug#1035904: dpkg currently warning about merged-usr systems (revisited)

On Wed, 2023-05-10 at 19:01 -0700, Sean Whitton wrote: > On Wed 10 May 2023 at 11:47PM +02, Ansgar wrote: > > Cool, then let's ask tech-ctte. > > > > Dear ctte, please consider overruling the dpkg maintainer to > > include > > the patch from #994388[1]. > > > > Thanks, > > Ansgar > > > >   [1]:

Bug#1035974: unblock: dkimpy/1.1.3-1

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please age days package dkimpy [ Reason ] Upstream (me) just released a new bugfix update that fixes a regression from bullseye, so I would like to get that update in before release. At th

Bug#1035841: fixed in amavisd-new 1:2.13.0-3

Hi, On Thu, 11 May 2023 23:52:00 + Debian FTP Masters wrote: > Changes: > amavisd-new (1:2.13.0-3) unstable; urgency=medium > . >* Fix failure to purge without adduser. Closes: #1035841. thank you! Would you like me to take care of filing the unblock request with release.debian.org or

Bug#1035913: fixed in doc-debian 11.2

Hi, Quoting Joost van Baal-Ilić (2023-05-12 07:01:45) > A! That explains! Thanks a lot. I now have a plan again; will get to it > within a week. can we finish this a bit quicker than that? The full freeze is at 2023-05-24 and my package is also broken by dash in experimental, so the upload of

Bug#1029962: check-missing-firmware fails to find firmware file or package on partitioned removable media

And before I forget… Pascal Hambourg (2023-04-01): > The current algorithm mounts only the first "suitable" disk or partition > when searching for loose firmware files or packages. > If it mounts the wrong devices, firmware files are not found. > > This patch adds the following subcommands to mo

Bug#1035913: fixed in doc-debian 11.2

Hi, On Fri, May 12, 2023 at 06:50:55AM +0200, Johannes Schauer Marin Rodrigues wrote: > Quoting Joost van Baal-Ilić (2023-05-11 15:35:24) > > On Thu, May 11, 2023 at 01:55:48PM +0200, Joost van Baal-Ilić wrote: > > > On Thu, May 11, 2023 at 12:38:17PM +0200, Johannes Schauer Marin > > > Rodrigue

Bug#1035745: unblock: dash/0.5.12-4 (preapproval)

Hi, On Mon, 08 May 2023 16:54:32 +0100 Luca Boccassi wrote: > This cleanup has been uploaded last week to experimental with dash/0.5.12-3. > We have tested it and cannot see any issues with it. dash in experimental breaks the autopkgtest of mmdebstrap. I've fixed these problems already and uploa

Bug#1035913: fixed in doc-debian 11.2

Hi, Quoting Joost van Baal-Ilić (2023-05-11 15:35:24) > On Thu, May 11, 2023 at 01:55:48PM +0200, Joost van Baal-Ilić wrote: > > On Thu, May 11, 2023 at 12:38:17PM +0200, Johannes Schauer Marin Rodrigues > > wrote: > > > On Thu, 11 May 2023 09:49:47 + Debian FTP Masters > > > wrote: > > > >

Bug#1035973: unblock: linux/6.1.27-1

Hi everyone, Salvatore Bonaccorso (2023-05-12): > The upload was announced in > https://lists.debian.org/debian-release/2023/05/msg00287.html and > summarizing consists of importing new stable series. But in particular > addressing recent CVEs, covering CVE-2023-31436 and CVE-2023-2002. > Additio

Bug#1034586: always reports inactive/expired certificate on armhf

Macro, please review my previous messages and try to help provide additional information. Thank you. Glenn

Bug#1035926: lighttpd conf-enabled files cannot override IPV6 port number

On Thu, May 11, 2023 at 11:49:21AM +0200, Michael Moore wrote: ... > Issue and suggested fix: > === > In lighttpd.conf the includes for conf-enabled/*.conf happens after passing > server.port to the use-ipv6.pl script. Re-ordering these lines so that the > conf files are included fi

Bug#1035973: unblock: linux/6.1.27-1

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-Cc: li...@packages.debian.org, k...@debian.org, debian-b...@lists.debian.org, b...@debian.org, car...@debian.org Control: affects -1 + src:linux Hi Release team, hi Cyril for debi

Bug#1029962: check-missing-firmware fails to find firmware file or package on partitioned removable media

Hi Pascal, Pascal Hambourg (2023-04-01): > Please find attached a patch for mountmedia 0.27 and two patches for > hw-detect 1.155 implementing a possible solution. Thanks for your work on this. As for the other bug report, that's been on my todo list since you submitted those patches, but time i

Bug#1033679: hw-detect/check-missing-firmware: add fallback module lookup by modalias and firmware

Hi Pascal, Pascal Hambourg (2023-03-30): > Please find attached 3 patches adding fallback module detection when > dmesg does not provide the actual module name and device driver > symlink is missing. I tried to keep them as clear, short and little > invasive as possible in order to ease review an

Bug#1035972: isc-dhcp EOL'ed

Source: debian-security-support Version: 1:12+2023.05.04 Severity: normal X-Debbugs-Cc: secur...@debian.org, debian-...@lists.debian.org Dear security and LTS teams, ISC is not longer maintaing any of the components of isc-dhcp (client, relay or server): https://lists.isc.org/pipermail/dhcp-users

Bug#1001440: /usr/bin/foo2zjs: fails to load firmware into printer

I'm not sure if it's the same issue, but I'm also seeing firmware failing to load on my LaserJet 1020 using foo2zjs. My guess is that there's a conflict between the firmware loading script and udev-configure-printer trying to access the printer at the same time. Here is a snippet from journalctl w

Bug#1035056: (no subject)

Hi, we've uploaded Plasma 5.27.5 to experimental and this is the version that we would prefer to have in bookworm instead of 5.27.2. I can only iterate what hefee said before: This is merely a bugfix release and does not add new (build) dependencies or functionality. Plasma 5.27.5 fixes over 10

Bug#1018730: More info

To add to the previous briefly, as I didn't explicitly mention this. Early initramfs should: * Activate the resume device (one of the swap) for resume handling. * Activate the rootfs. Once rootfs is there, remaining PVs etc will cascade activate through the setup from late-stage boot process on

Bug#1035810: closed by Sebastian Ramacher (unblock btrfsmaintenance)

"Debian Bug Tracking System" writes: > 1035810: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1035810 > Debian Bug Tracking System > Contact ow...@bugs.debian.org with problems > From: Sebastian Ramacher > Subject: unblock btrfsmaintenance > To: 1035810-d...@bugs.debian.org > Date: Thu, 11 M

Bug#1034824: tomcat9 should not be released with Bookworm

Hi Paul, Le 2023-05-11 21:44, Paul Gevers a écrit : From a quick look at the key packages: It seems you didn't follow up (86 days) on libcommons-dbcp-java which can't migrate to bookworm because it would make libbiojava-java-doc uninstallable (no fix there, no bug report filed). I have to ap

Bug#1030284: nodejs: [arm64] RangeError: Maximum call stack size exceeded

James Addison dixit: >On Thu, 11 May 2023 at 02:43, Andres Salomon wrote: >> For ARM64, he says that raising the stack limit is not safe for v8 >> *embedded inside WebView*, and therefore not appropriate for upstream >> v8. But then he says it could/should be safe for v8 *embedded inside >> Node

Bug#1018730: closed by Bastian Blank (Re: Bug#1018730: lvm2: Initramfs does not activate root LVs if VG is incomplete since 2.03.15 or 2.03.16, boot failure)

Hi, My wording might be a bit over the top, apologies in advance. I do really mean the best, just a bit baffled at the wontfix reply and lack of acknowledgement of the problem. I'm not really understanding the "Half VG was never a real thing" approach and general dismissal of this bug, I think

Bug#1035289: merecat: diff for NMU version 2.31+git20220513+ds-4.1

On Thu, 11 May 2023 21:28:17 +0200, Joost van Baal-Ilić wrote: > Awesome, thanks a lot! (And no need to delay longer.) Thanks, rescheduled to 0-day. Cheers, gregor -- .''`. https://info.comodo.priv.at -- Debian Developer https://www.debian.org : :' : OpenPGP fingerprint D1E1 316E 93A7 60A

Bug#1035970: unblock: qt6-datavis3d/6.4.2-3

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-Cc: delta...@debian.org Please unblock package qt6-datavis3d [ Reason ] A cmake-file in qt6-datavisualization-dev references a plugin in a package that is not a dependency of qt6-

Bug#1035969: unblock: qt6-charts/6.4.2-3

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-Cc: delta...@debian.org Please unblock package qt6-charts [ Reason ] A cmake-file in qt6-charts-dev references a plugin in a package that is not a dependency of qt6-charts-dev, he

Bug#1010469: [pkg-lxc-devel] Bug#1010469: Bug#1010469: Bug#1010437: autopkgtest: autopkgtest-build-lxc fails to build working lxc environment

Julian Gilbey wrote on 11/05/2023 at 16:41:46+0200: > On Mon, Feb 06, 2023 at 11:56:51PM +0100, Pierre-Elliott Bécue wrote: >> >> Julian Gilbey wrote on 08/08/2022 at 15:47:08+0100: >> >> > On Mon, Aug 01, 2022 at 10:44:16PM +0200, Pierre-Elliott Bécue wrote: >> >> Julian Gilbey wrote on 08/

Bug#1035857: texlive-fonts-extra: broken font symlinks for junicode

On 10.05.2023 11:18, Andreas Beckmann wrote: Hi again, during a test with piuparts I noticed your package ships (or creates) broken symlinks: OK, had a closer look: the "Debian Fonts Task Force" replaced the "Junicode 1" by "Junicode 2" although they may behave differently "Users of the vari

Bug#1035917: chromium: libva error: /usr/lib/x86_64-linux-gnu/dri/iHD_drv_video.so init failed

* Andres Salomon: " Re: Bug#1035917: chromium: libva error: /usr/lib/x86_64-linux-gnu/dri/iHD_drv_video.so init failed" (Thu, 11 May 2023 14:03:51 -0400): > Okay, so an older CPU that the newer intel vaapi driver is broken on. > If you just uninstall intel-media-va-driver and > intel-media-v

Bug#1034824: tomcat9 should not be released with Bookworm

Hello Paul, Am Donnerstag, dem 11.05.2023 um 21:44 +0200 schrieb Paul Gevers: > Hi Markus, > > On Tue, 25 Apr 2023 16:04:09 +0200 Markus Koschany wrote: > > We can only support one major Tomcat version per release. Tomcat9 has > > been part of Buster and Bullseye already and is superseded by Tom

Bug#1035717: closed by Sebastian Ramacher (unblock binoculars)

thanks a lot

Bug#1030284: nodejs: [arm64] RangeError: Maximum call stack size exceeded

On Thu, 11 May 2023 at 02:43, Andres Salomon wrote: > > On Sat, 11 Mar 2023 11:04:15 + James Addison > wrote: > > Package: nodejs > > Followup-For: Bug #1030284 > > X-Debbugs-Cc: t...@debian.org > > > > Guidance received from the V8 project (a vendored dependency in the > upstream > > N

Bug#1034424: buildd.debian.org: Please use predictible build paths

Hi, On 2023-05-11 22:10, Philipp Kern wrote: > On 2023-05-11 07:11, Johannes Schauer Marin Rodrigues wrote: > > I think the main purpose for the log filtering is to make log files > > easily > > grep-able despite the build path having random components. > > I'd say it's also to allow diffing. Tha

Bug#1035968: fonts-junicode: Wrong package description

Package: fonts-junicode Version: 2+git20230104+ds-1 Severity: normal Dear Maintainer, the package description reads: "This is a TrueType Unicode font targeted at medievalists..." However the package just contains OpenType fonts since one of the latest uploads. Not sure if this is intended. Hi

Bug#1034424: buildd.debian.org: Please use predictible build paths

On 2023-05-11 07:11, Johannes Schauer Marin Rodrigues wrote: I think the main purpose for the log filtering is to make log files easily grep-able despite the build path having random components. I'd say it's also to allow diffing. That might be a lost cause when parallelism is involved, thoug

Bug#1034248: release-notes: Document that GTK4 apps are not accessible with screen reader

Control: tags -1 pending Hi, For final review: https://salsa.debian.org/ddp-team/release-notes/-/merge_requests/167 Paul OpenPGP_signature Description: OpenPGP digital signature

Bug#1035947: fresh build from git fails with cannot access local variable 'new_file'

severity 1035947 normal thanks This would be serious if it failed to build with the sources in the Debian archive, which is what counts. Note that using uscan doesn't get you all the sources. On Thu, May 11, 2023 at 10:32:40AM -0400, Antoine Beaupre wrote: > Source: firefox > Severity: serious >

Bug#1035913: reopen / Re: Bug#1035913: fixed in doc-debian 11.2

reopen 1035913 thanks On Thu, May 11, 2023 at 01:55:48PM +0200, Joost van Baal-Ilić wrote: > > This bug should get reopened. Doing so. Bye, Joost

Bug#1035967: ypserv: yphelper, yppush fail to run with segmentation fault

Package: ypserv Version: 4.1-2 Severity: important Dear Maintainer, Recently upgraded our NIS master from buster to bullseye. when I run cd /var/yp; make several apps fail to run and seg fault, for example /usr/lib/yp/yphelper --hostname Segmentation fault yppush -d example.com ypservers Se

Bug#1035710: closing / Re: unblock: doc-debian/11.1

Closing this request. 11.2 which is in experimental [11.2] is better suited for bookworm: it has a smaller diff with what's in stable now. However, since 11.2 has some other problems ( #1035913 ), I'll do more work in the coming days and hope to come up with an ever better candidate for bookworm.

Bug#1035966: unblock: google-android-installers/1675172738

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package google-android-installers At the time of writing this, I'm waiting for my sponsor to upload the latest version to unstable. It is also tagged in the VCS if you want

Bug#1035965: python-ansible-pygments: Autopkgtest fails against pygments 2.15

Package: python-ansible-pygments Severity: normal Tags: patch User: ubuntu-de...@lists.ubuntu.com Usertags: origin-ubuntu mantic ubuntu-patch Dear Maintainer, Since the move to pygments 2.15, the autopkgtest testsuite fails with the following error: Traceback (most recent call last): File "/ho

Bug#1034824: tomcat9 should not be released with Bookworm

Hi Markus, On Tue, 25 Apr 2023 16:04:09 +0200 Markus Koschany wrote: We can only support one major Tomcat version per release. Tomcat9 has been part of Buster and Bullseye already and is superseded by Tomcat 10 in Bookworm. I wanted to wait with the removal request until the issues in [resteasy

Bug#1035289: merecat: diff for NMU version 2.31+git20220513+ds-4.1

Hi gregor, Awesome, thanks a lot! (And no need to delay longer.) Bye, Joost On Thu, May 11, 2023 at 08:54:27PM +0200, gregor herrmann wrote: > Control: tags 1035289 + patch > Control: tags 1035289 + pending > > > Dear maintainer, > > I've prepared an NMU for merecat (versioned as 2.31+git2

Bug#1035615: xz-utils: Fix hurd-amd64 build

On 2023-05-09 22:58:43 [+0200], Samuel Thibault wrote: > My patch is not a nop. Previously to Lasse's commit, the > --enable-assembler=x86_64 option would make no difference from > --enable-assembler=no. With Lasse's commit, --enable-assembler=x86_64 > is now *refused* by ./configure. And thus amd6

Bug#1035289: merecat: diff for NMU version 2.31+git20220513+ds-4.1

[2nd try, I forgot to adjust the postinst, sorry for the blunder.] Dear maintainer, I've prepared an NMU for merecat (versioned as 2.31+git20220513+ds-4.1) and uploaded it to DELAYED/5. Please feel free to tell me if I should delay it longer. Regards. -- .''`. https://info.comodo.priv.at --

Bug#1035964: emacs-common: Is dependency to emacs-el necessary?

Package: emacs-common Version: 1:28.2+1-14 Severity: normal Dear Maintainer, since some months emacs-common is depending on emacs-el. I am weak remembering that this dependency should be just temporarily. On my side it is not important, but the Lisp-compiling during runtime feels stressful. I

Bug#1035289: merecat: diff for NMU version 2.31+git20220513+ds-4.1

Control: tags 1035289 + patch Control: tags 1035289 + pending Dear maintainer, I've prepared an NMU for merecat (versioned as 2.31+git20220513+ds-4.1) and uploaded it to DELAYED/5. Please feel free to tell me if I should delay it longer. Regards. -- .''`. https://info.comodo.priv.at -- Deb

Bug#1035639: git-imerge: FTBFS with tox 4

Hi Paul (2023.05.07_18:28:34_-0400) > For the dh-python side, to allow tox 4 to work with packages that have > install_requires set, I've had to change the way we drive tox a little. > https://salsa.debian.org/python-team/tools/dh-python/-/commit/d86475ab1097fa91d2332eb1bc65e123192ea14d > > This w

Bug#1029201: openbox-menu: do not release with bookworm

On 9.05.2023 at 14:47 +0200, Bastian Germann wrote: On Thu, 19 Jan 2023 15:17:26 +0100 mat...@linuxmint.pl wrote: openbox-menu should not be shipped in bookworm. Will you also file a RM bug or are you going to update the package for later releases? I found new place of source https://github.

Bug#1033065: release-notes: i386 notes should specify minimum CPU requirements

Control: tags -1 patch pending Hi, Please review my proposal here: https://salsa.debian.org/ddp-team/release-notes/-/merge_requests/166 Paul OpenPGP_signature Description: OpenPGP digital signature

Bug#1035916: unblock: node-source-map/0.7.0++dfsg2+really.0.6.1-14

On 2023-05-11 19:22:36 +0200, Paul Gevers wrote: > Hi Sebastian, > > On 11-05-2023 19:06, Sebastian Ramacher wrote: > > So you're going back to a directory. That would require a symlink_to_dir > > in the maintscript. Do you want to have symlinks or not? > > See https://bugs.debian.org/cgi-bin/bug

Bug#1035917: chromium: libva error: /usr/lib/x86_64-linux-gnu/dri/iHD_drv_video.so init failed

Okay, so an older CPU that the newer intel vaapi driver is broken on. If you just uninstall intel-media-va-driver and intel-media-va-driver-non-free, does chromium work? You'd be relying on the older driver from i965-va-driver at that point. On Thu, May 11 2023 at 07:50:22 PM +02:00:00, Mathi

Bug#1035904: dpkg currently warning about merged-usr systems (revisited)

On Thu, 11 May 2023 21:16:34 +0900 Simon Richter wrote: > Hi, > > On 5/11/23 10:59, Sean Whitton wrote: > > >> Dear ctte, please consider overruling the dpkg maintainer to include > >> the patch from #994388[1]. > > > Currently dpkg contains code to emit the merged-/usr warning, that's > > dead

Bug#1035917: chromium: libva error: /usr/lib/x86_64-linux-gnu/dri/iHD_drv_video.so init failed

* Andres Salomon: " Re: Bug#1035917: chromium: libva error: /usr/lib/x86_64-linux-gnu/dri/iHD_drv_video.so init failed" (Thu, 11 May 2023 11:48:48 -0400): Hi Andres, thanks for your feedback. > I'm guessing that the following is also broken for you: > > vainfo Not really broken, but libva

Bug#1035286: dnssec-trigger: diff for NMU version 0.17+repack-5.1

Control: tags 1035286 + patch Control: tags 1035286 + pending Dear maintainer, I've prepared an NMU for dnssec-trigger (versioned as 0.17+repack-5.1) and uploaded it to DELAYED/5. Please feel free to tell me if I should delay it longer. Regards. -- .''`. https://info.comodo.priv.at -- Debi

Bug#1011475: mirror submission for mirror.xtx.cloud #1035928

Hello, mirror.xtx.cloud has been fully rebuild and has now become mirror.vinehost.net Supported protocols are HTTP, HTTPS and RSYNC Please refer to new request #1035928 Latest version of ftpsync is in use too Thank you, Callum :) > On 17 Sep 2022, at 15:14, Juli

Bug#1035916: unblock: node-source-map/0.7.0++dfsg2+really.0.6.1-14

Hi Sebastian, On 11-05-2023 19:06, Sebastian Ramacher wrote: So you're going back to a directory. That would require a symlink_to_dir in the maintscript. Do you want to have symlinks or not? See https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1035916#12 Paul OpenPGP_signature Description:

Bug#1035916: unblock: node-source-map/0.7.0++dfsg2+really.0.6.1-14

Control: tags -1 moreinfo On 2023-05-11 10:57:27 +0400, Yadd wrote: > Package: release.debian.org > Severity: normal > User: release.debian@packages.debian.org > Usertags: unblock > X-Debbugs-Cc: node-source-...@packages.debian.org > Control: affects -1 + src:node-source-map > > Please unbloc

Bug#1035960: www.debian.org: Language trackinng broken or gone

Package: www.debian.org Severity: important Tags: l10n The translation robot feeds the langauge tracking on Debians web pages. This is very important to monitor for new or outdated translations (or for long running review rounds). When I just refreshed the web pages to see todays status, many sta

Bug#1035938: Workaround to the problem

Installing the 6.1.X kernel from the bullseye-backports apparently solves the problem, so this might be a temporary solution to affected systems (if applicable). Kind regards, -- Kamil Wilczek [https://keys.openpgp.org/] [6C4BE20A90A1DBFB3CBE2947A832BF5A491F9F2A] OpenPGP_signature Description:

Bug#1018730: lvm2: Initramfs does not activate root LVs if VG is incomplete since 2.03.15 or 2.03.16, boot failure

On Thu, May 11, 2023 at 06:25:00PM +0200, Guilhem Moulin wrote: > On Thu, 11 May 2023 at 18:12:52 +0200, Bastian Blank wrote: > > Nope, not really. Half VG was never a real thing. It might work in > > some cases. > And these use-cases are unbootable since 2.03.15… Those still have access to an o

Bug#1015915: pipewire-pulse leaking memory

Can you reproduce with current pipewire? I am running 0.3.70 from experimental but have pipewire rss at 30.0M and pipewire-pulse at 116.9M after 16 hours. You meant pipewire or pipewire-pulse was leaking? Cheers, Alban On Sat, 23 Jul 2022 19:52:44 + Witold Barylulk wrote: > Package: pipewi

Bug#1018730: lvm2: Initramfs does not activate root LVs if VG is incomplete since 2.03.15 or 2.03.16, boot failure

On Thu, 11 May 2023 at 18:12:52 +0200, Bastian Blank wrote: > Nope, not really. Half VG was never a real thing. It might work in > some cases. And these use-cases are unbootable since 2.03.15… > Then, degraded is the default activation mode, so overriding that would > not be appropriate. But f

Bug#1035959: unblock: jmol/14.32.83+dfsg-1

Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock X-Debbugs-Cc: j...@packages.debian.org Control: affects -1 + src:jmol Dear Release Team, I would like to ask for an unblock of package jmol. [ Reason ] I fixed RC bug #1035484 which was j

Bug#1018730: lvm2: Initramfs does not activate root LVs if VG is incomplete since 2.03.15 or 2.03.16, boot failure

On Wed, May 10, 2023 at 03:09:04AM +0200, Guilhem Moulin wrote: > There might be a better way to detect an initramfs-tools environment > than checking whether ‘/run/initramfs’ exists (and ‘/run/systemd/system’ > doesn't). The only acceptable way would be a different udev rules file for the initram

Bug#1035958: ITP: node-types-chrome -- Typescript definitions for Chrome extension development

Package: wnpp Severity: wishlist Owner: Yadd X-Debbugs-Cc: debian-de...@lists.debian.org * Package name: node-types-chrome Version : 0.0.235 Upstream Contact: https://github.com/DefinitelyTyped/DefinitelyTyped/issues * URL : https://github.com/DefinitelyTyped/Definitel

Bug#1034816: aide aborts with error "realloc: failed to allocate memory", exit code 22

tags 1034816 - moreinfo unreproducible thanks Hi Thomas, On Thu, May 11, 2023 at 05:52:01PM +0200, Thomas Dorner wrote: > I narrowed it further down with some more fprintfs. The problem is not > in do_md.c but the call in hsymlnk in gen_list.c. Yes, yesterday I was able to reproduce your issue.

Bug#1034816: aide aborts with error "realloc: failed to allocate memory", exit code 22

Dear maintainers, I narrowed it further down with some more fprintfs. The problem is not in do_md.c but the call in hsymlnk in gen_list.c. Here the critical part of the output: gen_list.c: hsymlnk: '/var/opt/lxc/no-network/lib64', '' gen_list.c: hsymlnk: len+1 == 0 checked_realloc(0x7fe4f111729

Bug#1035917: chromium: libva error: /usr/lib/x86_64-linux-gnu/dri/iHD_drv_video.so init failed

Control: severity -1 normal On Thu, May 11 2023 at 09:29:55 AM +02:00:00, Mathias Behrle wrote: Package: chromium Version: 113.0.5672.63-2 Severity: important Dear Maintainer, I am currently out of luck to guess the correct addressee for this problem, so please advise. chromium doesn't st

Bug#1035957: openjdk-17: CVE-2023-21930 CVE-2023-21937 CVE-2023-21938 CVE-2023-21939 CVE-2023-21954 CVE-2023-21967 CVE-2023-21968

Source: openjdk-17 X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerabilities were published for openjdk-17. CVE-2023-21930[0]: | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition | product of Oracle Java SE (component: JSSE). Sup

Bug#1035956: docker-registry: CVE-2023-2253

Source: docker-registry X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for docker-registry. CVE-2023-2253[0]: https://www.openwall.com/lists/oss-security/2023/05/09/1 https://github.com/distribution/distribution/commit/521e

Bug#1035955: vim: CVE-2023-2610

Source: vim X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for vim. CVE-2023-2610[0]: | Integer Overflow or Wraparound in GitHub repository vim/vim prior to | 9.0.1532. https://huntr.dev/bounties/31e67340-935b-4f6c-a923-f7

Bug#1035954: opencv: CVE-2023-2617 CVE-2023-2618

Source: opencv X-Debbugs-CC: t...@security.debian.org Severity: normal Tags: security Hi, The following vulnerabilities were published for opencv. CVE-2023-2617[0]: | A vulnerability classified as problematic was found in OpenCV | wechat_qrcode Module up to 4.7.0. Affected by this vulnerability

Bug#1035951: yasm: CVE-2023-29579

Source: yasm X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for yasm. CVE-2023-29579[0]: | yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via | the component yasm/yasm+0x43b466 in vsprintf. https://github.

Bug#1035953: odoo: CVE-2021-23166 CVE-2021-23176 CVE-2021-23178 CVE-2021-23186 CVE-2021-23203 CVE-2021-26263 CVE-2021-26947 CVE-2021-44476 CVE-2021-44775 CVE-2021-45071 CVE-2021-45111

Source: odoo X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerabilities were published for odoo. CVE-2021-23166[0]: | A sandboxing issue in Odoo Community 15.0 and earlier and Odoo | Enterprise 15.0 and earlier allows authenticated administrators

Bug#1035952: apache-jena: CVE-2023-22665

Source: apache-jena X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for apache-jena. CVE-2023-22665[0]: | There is insufficient checking of user queries in Apache Jena versions | 4.7.0 and earlier, when invoking custom scrip

Bug#1035674: pre-approval: unblock: puppetserver/7.9.5-2

Le 2023-05-11 à 04 h 23, Paul Gevers a écrit : Control: tags -1 confirmed moreinfo Hi Jérôme, On 07-05-2023 17:47, Jérôme Charaoui wrote: I would like to request an unblock to upload puppetserver/7.9.5-2 which fixes two bugs using targeted fixes. - #1032241  puppetserver - service unit fails

Bug#1035950: dav1d: CVE-2023-32570

Source: dav1d X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security Hi, The following vulnerability was published for dav1d. CVE-2023-32570[0]: | VideoLAN dav1d before 1.2.0 has a thread_task.c race condition that | can lead to an application crash, related to dav1d_decode_fr

Bug#1035946: RFS: justbuild/1.1.0-1 [ITP] -- Justbuild generic build system

Dear Hilmer, If you look at that page you see a few points, which needs to be > addressed. Please fix at least the lintian errors and warnings. > > The initial upload should not go to testing, either use unstable or > experimental. > I updated the package to fix the lintian issues and moved it to

Bug#1035872: tuxmath-data: broken symlink: /usr/share/tuxmath/fonts/AndikaDesRevG.ttf -> ../../fonts/truetype/andika/Andika-R.ttf

On 11/05/2023 15.53, Holger Levsen wrote: why are those suddenly serious? My guess is that fonts-sil-andika renamed that file, thus breaking some users of the font. Otherwise they should have shown up in the past There is a depends on the font and a symlink (that no longer works), I have no

Bug#1035949: mariadb: upgrade issue: mariadb-server-10.5 fails to stop after all other -10.5 packages were removed

Source: mariadb Version: 1:10.11.2-1 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Control: affects -1 + zoph Hi, during a test with piuparts I noticed your package fails to upgrade from 'bullseye'. It installed fine in 'bullseye', then the upgrade to 'bookworm' fails. Th

Bug#1010469: [pkg-lxc-devel] Bug#1010469: Bug#1010437: autopkgtest: autopkgtest-build-lxc fails to build working lxc environment

On Mon, Feb 06, 2023 at 11:56:51PM +0100, Pierre-Elliott Bécue wrote: > > Julian Gilbey wrote on 08/08/2022 at 15:47:08+0100: > > > On Mon, Aug 01, 2022 at 10:44:16PM +0200, Pierre-Elliott Bécue wrote: > >> Julian Gilbey wrote on 08/06/2022 at 10:50:18+0200: > > Hrmpf, this one slipped out of

Bug#1035948: veyon-service: fullscreen demo mode and fullscreen switching for lock widget don't work

Package: veyon-service Version: 4.7.5+repack1-1 Severity: normal X-Debbugs-Cc: rdannec...@gmx.de Dear Maintainer, - Demo-Mode with Linux-to-Linux don't work¬ - Screen-Locking don't work.¬ ¬ in Upstream Version 4.8.0 this bug seems to be fixed¬ See: https://github.com/veyon/veyon/releases¬ Please

Bug#1035947: fresh build from git fails with cannot access local variable 'new_file'

Source: firefox Severity: serious Tags: patch ftbfs Justification: fails to build from source (but built successfully in the past) I'm trying to build Firefox 113 from the git repository. I have pulled the package with: debcheckout firefox Then tried to download the latest tarballs with:

Bug#1034566: unblock: isc-dhcp/4.4.3-P1-1.1

El 07/05/23 a las 10:53, Paul Gevers escribió: > Hi, > > On 18-04-2023 14:11, Santiago R.R. wrote: > > unblock isc-dhcp/4.4.3-P1-1.1 > > done and aged. Thanks. Thanks to you! -- Santiago signature.asc Description: PGP signature

Bug#1035872: tuxmath-data: broken symlink: /usr/share/tuxmath/fonts/AndikaDesRevG.ttf -> ../../fonts/truetype/andika/Andika-R.ttf

control: tags -1 + moreinfo control: severity -1 important thanks Hi Andreas, as usual: thanks for this bug report and all the other piuparts bug reports you are filing! \o/ On Wed, May 10, 2023 at 02:03:17PM +0200, Andreas Beckmann wrote: > Package: tuxmath-data > Severity: serious > during a

Bug#1035913: fixed in doc-debian 11.2

Hi again, On Thu, May 11, 2023 at 01:55:48PM +0200, Joost van Baal-Ilić wrote: > On Thu, May 11, 2023 at 12:38:17PM +0200, Johannes Schauer Marin Rodrigues > wrote: > > On Thu, 11 May 2023 09:49:47 + Debian FTP Masters > > wrote: > > > Changes: > > > doc-debian (11.2) experimental; urgency

Bug#1035946: RFS: justbuild/1.1.0-1 [ITP] -- Justbuild generic build system

On 5/11/23 15:11, Oliver Reiche wrote: Hi, The source builds the following binary packages: justbuild - Justbuild generic build system To access further information about this package, please visit the following URL: https://mentors.debian.net/package/justbuild/ If you look at that

Bug#1035941: linux-image-amd64: too much space needed to build

Control: reassign -1 debian-kernel-handbook 1.0.21 Control: severity -1 wishlist Control: retitle -1 debian-kernel-handbook: Paragraph 4.5.1.1. Disk space requirements needs an update (from 2018 numbers)? On Thursday, 11 May 2023 14:33:40 CEST Claude Heiland-Allen wrote: > I freed up more space,

Bug#1035944: mariadb: upgrade issue: mariadb-server-10.5 fails to restart after upgrading mariadb-common

On 11/05/2023 14.58, Otto Kekäläinen wrote: Thanks for reporting! Is this sporadic or does it reproduce every time? Just reran it with the same result, so seems deterministic. If you tell me what information to collect, I can easily enter the chroot and test things after the failure occurred

Bug#1035946: RFS: justbuild/1.1.0-1 [ITP] -- Justbuild generic build system

Package: sponsorship-requests Severity: wishlist Dear mentors, I am looking for a sponsor for my package "justbuild": * Package name : justbuild Version : 1.1.0-1 Upstream contact : Oliver Reiche * URL : https://github.com/just-buildsystem/justbuild * License

Bug#1035659: jami fails to start on a wayland session if qt6-wayland is not installed

Package: jami Version: 20230206.0~ds2-1.1 Followup-For: Bug #1035659 X-Debbugs-Cc: nore...@spam4.me Dear Maintainer, > Since the bugreporter didn't mention which window manager is in play, > this bugreport cannot sensibly be reassigned. The failure was found using a "gnome-session --session=phos

Bug#1035944: mariadb: upgrade issue: mariadb-server-10.5 fails to restart after upgrading mariadb-common

Thanks for reporting! Is this sporadic or does it reproduce every time? We have this upgrade scenario in CI without issues, thus asking about reproducibility.

Bug#1034633: binutils: add the binutils-loongarch64 package to the control file

Control: tags 1034633 patch Hi binutils maintainers,     Thanks for Helmut's reply. I have added patch for the generator. 在 2023/5/8 下午3:57, Helmut Grohne 写道: Control: tags -1 - patch On Thu, Apr 20, 2023 at 06:06:20PM +0800, zhangdandan wrote: Refer to the method provided by debian/README.c

Bug#1035945: unblock: cyrus-sasl2/2.1.28+dfsg-11

Package: release.debian.org Control: affects -1 + src:cyrus-sasl2 X-Debbugs-Cc: cyrus-sa...@packages.debian.org User: release.debian@packages.debian.org Usertags: unblock Severity: normal Please unblock package cyrus-sasl2. [ Reason ] Missing systemd service: #981438. There are some other mi

Bug#1035944: mariadb: upgrade issue: mariadb-server-10.5 fails to restart after upgrading mariadb-common

Source: mariadb Version: 1:10.11.2-1 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Control: affects -1 + mariadb-plugin-gssapi-server Hi, during a test with piuparts I noticed your package fails to upgrade from 'bullseye'. It installed fine in 'bullseye', then the upgrade

  1   2   >