Control: owner -1|!|
Hi John,
Thanks for packaging midiminder.
On 4/01/2025 7:17 am, John Horigan wrote:
Package: sponsorship-requests
Severity: wishlist
Dear mentors,
I am looking for a sponsor for my package "midiminder":
* Package name : midiminder
Version : 1.0.1-1
On 5/04/2025 12:34 am, Felix Salfelder wrote:
On Fri, Apr 04, 2025 at 10:32:37PM +1100, Hugh McMaster wrote:
Previously, packages linking with freetype would check for and linked
against bzip2 manually. That's no longer necessary, with bzip2 finally
adding support for pkg-config.
Fant
Hi Felix,
On 4/04/2025 12:31 am, Felix Salfelder wrote:
Package: libfreetype-dev
Version: 2.13.3+dfsg-1
Severity: normal
X-Debbugs-Cc: fe...@salfelder.org
Dear maintainers
When trying to build some package, I ran into the following, which I
think is a bug in libfreetype-dev.
1. some package u
Control: -1 wontfix
Hi Andreas,
Sorry for the delayed reply. I've just returned from a 2-week vacation.
On 25/03/2025 8:52 am, Andreas Hasenack wrote:
Package: unixodbc
Version: 2.3.12-2
Severity: normal
Dear maintainer,
I got a bug filed[1] in Ubuntu saying that the odbc_config tool is
miss
ecure HTTP (lintian).
+ * Drop debian/README.source.
+
+ -- Hugh McMaster Mon, 06 Jan 2025 21:15:57 +1100
+
kluppe (0.6.20-1.2) unstable; urgency=medium
* Non-maintainer upload.
@@ -18,7 +43,7 @@
kluppe (0.6.20-1.1) unstable; urgency=medium
* Non-maintainer upload.
- * Fix segmentat
e() prototype.
++ fprint-arg-ruby.patch: Remove un-needed fprintf() argument without
+ format specifier.
+
+ -- Hugh McMaster Sat, 04 Jan 2025 23:30:21 +1100
+
dia2code (0.8.3-4.2) unstable; urgency=medium
* Non-maintainer upload.
diff -Nru dia2code-0.8.3/debian/control dia2code-0.8.3/d
Package: wnpp
Severity: wishlist
Owner: Hugh McMaster
X-Debbugs-Cc: debian-de...@lists.debian.org
* Package name: python-samsung-mdc
Version : 1.12.1
Upstream Contact: Victor Gavro
* URL : https://pypi.org/project/python-samsung-mdc
* License : BSD-3-Clause
Hi Laurent,
On Wed, 17 Apr 2024 at 18:45, Laurent Cheylus wrote:
>
> Package: libfreetype-dev
> Version: 2.13.2+dfsg-1+b1
> Severity: normal
>
> Dear Maintainer,
>
> I'm trying to install package libfreetype-dev version 2.13.2+dfsg-1+b1 on my
> Debian/testing but I have errors due to unresolved de
Control: tag -1 -moreinfo
Control: retitle -1 bookworm-pu: package freetype/2.12.1+dfsg-5+deb12u3
Hi Jonathan,
On Sun, 11 Feb 2024 at 01:40, Jonathan Wiltshire wrote:
>
> On Sat, Feb 10, 2024 at 12:23:06AM +1100, Hugh McMaster wrote:
> > When is the next point release scheduled for?
Hi Jonathan,
On Wed, 7 Feb 2024 at 04:47, Jonathan Wiltshire wrote:
> What's your plan at this point? We have skipped this update in two point
> releases now and it needs a resolution.
Thanks for following up. I’d actually forgotten about this.
I’d still like to disable the incomplete and inco
Package: mesa-vdpau-drivers
Version: 23.3.1-4
Severity: important
Dear Maintainer,
Upgrading from 23.2.1-1 to any 23.3.* version breaks video rendering in Python
tkinter-based applications.
I'm embedding a python-vlc media player in tkinter to play videos. Playback is
fine when using 23.2.1-1 or
Hi Janos,
On Wed, 1 Nov 2023 at 00:51, Janos Katein wrote:
>
> I wanted to install the odbcint1debian2 package and I expected it to
> install properly. But instead I got the following error message:
>
> Package failed to install:
> Error while installing package: trying to overwrite
> '/usr/lib/x
Package: wnpp
Severity: wishlist
Owner: Hugh McMaster
X-Debbugs-Cc: debian-de...@lists.debian.org
* Package name: rsgain
Version : 3.4
Upstream Contact: complexlogic
* URL : https://github.com/complexlogic/rsgain
* License : BSD-2-Clause, BSD-3-Clause
Hi Jonathan,
Thanks for your work on this package. Just two more things to do.
On Tue, 3 Oct 2023 at 05:53, Jonathan Rubenstein wrote:
>
> Hey, I've implemented the requested changes, again with some
> questions/exceptions.
>
> > * Not all files in tools*/* are explicitly marked Apache-2.0, but
>
+1000
@@ -1,3 +1,10 @@
+freetype (2.12.1+dfsg-5+deb12u2) bookworm; urgency=high
+
+ * debian/patches: Temporarily revert disable_COLRv1.patch to allow
+Chromium to start (Closes: #1053142).
+
+ -- Hugh McMaster Fri, 29 Sep 2023 22:27:32 +1000
+
freetype (2.12.1+dfsg-5+deb12u1) bookworm
Control: reassign 1053142 libfreetype6 2.12.1+dfsg-5+deb12u1
On Fri, 29 Sep 2023 10:37:22 +0200 Cord Beermann wrote:
> Hi,
>
> just wanted to give you a heads up on
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053142
>
> For me all chromium-Packages on stable die with a Segmentation Fault
On Thu, 28 Sep 2023 at 21:44, Hugh McMaster wrote:
> Hi Andres,
>
> On Thu, 28 Sept 2023 at 18:49, Andres Salomon wrote:
> >
> > Control: affects -1 chromium
> >
> >
> > On Thu, 28 Sep 2023 01:24:00 +0900 SuperCat wrote:
> > > Hi,
> > >
Hi Jonathan,
On Wed, 27 Sept 2023 at 05:48, Jonathan Rubenstein wrote:
>
> Control: tags -1 - moreinfo
>
> Hey, I have completed the requested changes with a few exceptions.
Nice work. We're almost there.
d/copyright:
* Please update your explanatory comment to the following:
Comment: A cursory
Hi Andres,
On Thu, 28 Sept 2023 at 18:49, Andres Salomon wrote:
>
> Control: affects -1 chromium
>
>
> On Thu, 28 Sep 2023 01:24:00 +0900 SuperCat wrote:
> > Hi,
> >
> > In chromium source code, function SkScalerContext::GlyphMetrics
> > SkScalerContext_FreeType::generateMetrics() will call
> > FT
Control: tags -1 -moreinfo
Hi Adam,
On Sun, 24 Sept 2023 at 05:53, Adam D. Barratt wrote:
>
> Control: tags -1 moreinfo
>
> On Fri, 2023-09-22 at 22:16 +1000, Hugh McMaster wrote:
> > FreeType 2.12.1 shipped with experimental COLRv1 support enabled.
> > This was
&
n/patches: Disable COLRv1 support, which was unintentionally enabled
+by upstream in this version of FreeType (Closes: #1051816).
+
+ -- Hugh McMaster Fri, 22 Sep 2023 21:48:19 +1000
+
freetype (2.12.1+dfsg-5) unstable; urgency=medium
* debian/patches: Add a patch to fix CVE-2023-200
Control: tags -1 moreinfo
Hi Jonathan,
On Sun, 3 Sep 2023 17:51:51 +0300 Jonathan Rubenstein wrote:
> Package: sponsorship-requests
> Severity: wishlist
>
> Dear mentors,
>
> I am looking for a sponsor for my package "blender-doc":
>
> * Package name : blender-doc
> Version : 3
Package: wnpp
Severity: wishlist
Owner: Hugh McMaster
X-Debbugs-Cc: debian-de...@lists.debian.org
* Package name: docopt-ng
Version : 0.9.0
Upstream Contact: Nick Crews
* URL : https://jazzband.co/projects/docopt-ng
* License : MIT
Programming Lang: Python
Hi Sandro,
On Fri, 05 Aug 2022 20:06:20 +0200 Carsten Schoenert wrote:
> Package: mkdocs-material
> Version: 8.2.5-1
> Severity: wishlist
>
> Hello Sandro,
>
> could you please consider to package the recent upstream version of
> mkdocs-material?
>
> Could you also please (re)close the issue #1008
On Tue, 22 Aug 2023 at 05:26, Phillip Susi wrote:
>
> I have an upload of 1.5 pending my sorting my gpg key out again. Could
> you submit any changes as a PR on salsa? I think I saw someone had done
> that for some minor issues ( was that you? ) but the CI failed.
The only change in the NMU was
with pkexec (Closes: #1025568).
+
+ -- Hugh McMaster Mon, 21 Aug 2023 21:32:58 +1000
+
gparted (1.3.1-1) unstable; urgency=medium
* New upstream version 1.3.1
diff -Nru gparted-1.3.1/debian/control gparted-1.3.1/debian/control
--- gparted-1.3.1/debian/control 2022-01-13 02:52:18.0
Control: tags -1 - moreinfo
Hi Sebastian,
On Sun, 25 Jun 2023 at 20:01, Sebastian Ramacher wrote:
>
> Control: tags -1 moreinfo
>
> Hi
>
> On 2023-06-25 16:14:39 +1000, Hugh McMaster wrote:
> > Package: release.debian.org
> > Severity: normal
> > User: re
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: binnmu
X-Debbugs-Cc: tclo...@packages.debian.org
Control: affects -1 + src:tclodbc
nmu tclodbc_2.5.1-2+b1 . ANY . unstable . -m "Rebuild against libodbc2 and
libodbcinst2."
Hi Holger,
On Sat, 17 Jun 2023 at 04:00, Holger Levsen wrote:
>
> Package: libfreetype6-dev
> Version: 2.12.1+dfsg-5
> Severity: normal
> user: qa.debian@packages.debian.org
> usertags: transitional
>
> Please drop the transitional package libfreetype6-dev (from the source package
> freetype)
Hi Simon and Alan,
On Fri, 16 Jun 2023 at 09:24, Simon McVittie wrote:
>
> Control: severity -1 serious
> Control: block 1038041 by -1
>
> On Fri, 16 Jun 2023 at 03:49:12 +0930, Arthur Marsh wrote:
> > Attempting to upgrade odbc related packages from 2.3.11-2 to 2.3.11-3
>
> > Setting up unixodbc-
Package: piuparts
Version: 1.1.7
Severity: normal
Dear Maintainer,
I am trying to test package upgrades from lenny to bookworm.
# piuparts --apt --allow-database --arch i386 --do-not-verify-signatures
--dpkg-noforce-unsafe-io --no-eatmydata -m 'http://archive.debian.org/debian/
main' --no-check-
nst: Add Breaks+Replaces against odbcinst1debian1
+ (Closes: #1037172).
+ * unixodbc-common: Remove obsolete conffile (Closes: #1009152).
+
+ -- Hugh McMaster Thu, 15 Jun 2023 21:05:33 +1000
+
unixodbc (2.3.11-2) unstable; urgency=medium
* debian/control: Update Standards-Version to 4.
Hi Andreas,
This is an unexpected bug report.
On Wed, 7 Jun 2023 at 09:39, Andreas Beckmann wrote:
> Package: unixodbc-common,odbcinst
> Version: 2.3.11-2
> Severity: serious
> User: debian...@lists.debian.org
> Usertags: piuparts
> Control: affects -1 + libsqliteodbc
>
> Hi,
>
> during a test w
ebian/patches: Add a patch to fix CVE-2023-2004 (Closes: #1034612).
+- Integer overflow in tt_hvadvance_adjust().
+
+ -- Hugh McMaster Thu, 20 Apr 2023 21:08:03 +1000
+
freetype (2.12.1+dfsg-4) unstable; urgency=medium
[ Debian Janitor ]
diff -Nru freetype-2.12.1+dfsg/debian/patches/CVE
New upstream version.
* debian/copyright: Update for 2023.
* debian/control:
+ Update Standards-Version to 4.6.2 (no changes needed).
+ Update short description.
* debian/source/lintian-overrides: Update tags and syntax.
Regards,
--
Hugh McMaster
Hi Michael,
Thank you for the bug report and for confirming the issue is caused by a
recent change in the Microsoft repository.
On Wed, 15 Feb 2023 at 14:51, Michael Shipper wrote:
> It looks like the bug is in the Microsoft odbc package not the Debian odbc
> package.
>
> Please close this ticke
Package: libvulkan-dev
Version: 1.3.236.0-1
Severity: normal
Dear Maintainer,
While performing a standard package update, dpkg terminated due a multi-arch
conflict in libvulkan-dev. My system has both amd64 and i386 flavours
installed.
Relevant output:
Unpacking libvulkan-dev:i386 (1.3.236.0-1)
Hi Simon,
On Fri, 13 Jan 2023 at 06:20, Simon McVittie wrote:
>
> On Wed, 11 Jan 2023 at 16:55:05 +1100, Hugh McMaster wrote:
> > I've added support for your suggested build profile
> > (pkg.freetype.nodemos), since it's useful (and more efficient) to
> > build
On Mon, 16 May 2022 07:23:23 +0200 Helmut Grohne wrote:
> freetype participates in architecture bootstrap. As such, it must be
> careful about its Build-Depends. It now added librsvg2-dev, which is
> built from librsvg, which Build-Depends on rustc, which pulls llvm. This
> totally breaks architect
Control: tags -1 fixed-upstream
Dear maintainer,
Upstream has recently released ModSecurity 2.9.7, which fixes these bugs.
It would be good to have these fixes in Bookworm.
Please note that you must pass --with-pcre2 to configure via debian/rules to
enable PCRE2 support.
Kind regards,
Hugh
Hi Joe,
On Sat, 9 Jul 2022 at 00:51, Joe Nahmias wrote:
> Package: unixodbc
> Version: 2.3.11-2
> Severity: normal
> File: /usr/bin/iusql
> X-Debbugs-Cc: j...@nahmias.net
>
> Hello,
>
> I was trying to connect to an MSSQL database using unixodbc/iusql with
> the FreeTDS driver. The password for t
Hi Helmut,
On Mon, 28 Nov 2022 at 08:04, Helmut Grohne wrote:
> Source: freetype
> Version: 2.12.1+dfsg-3
> Severity: minor
> Tags: patch
> User: helm...@debian.org
> Usertags: rebootstrap
>
> freetype builds a udeb package. It would be nice to be able to opt out
> of building it via the noudeb b
Hi Sebastian and Arnaud,
I've been working with upstream [1] to fix several issues in cadaver,
particularly its inability to regenerate its build system from source,
which is a major issue.
I'm pleased to report that we have a new upstream version, 0.24.
I believe Arnaud has taken over as mainta
debian/tmp" from installation paths.
* libraptor2-0: Add symbols file.
* libraptor2-doc: Replace .install file with .docs.
* lintian-overrides: Add overrides for very-long-line-length-in-source-file
and source-is-missing messages.
* Add debian/upstream/metadata file.
Regards,
--
Hugh McMaster
ainer upload.
+ * debian/patches: Use pkg-config to find libxml2 (Closes: #949422).
+
+ -- Hugh McMaster Thu, 29 Sep 2022 14:59:38 +1000
+
osmo (0.4.4-1) unstable; urgency=medium
* New upstream version 0.4.4.
diff -Nru osmo-0.4.4/debian/patches/libxml2.patch osmo-0.4.4/debian/patches/li
Control: tags -1 + patch fixed-upstream
Control: forwarded -1 https://redmine.kannel.org/issues/830
Patch applied upstream [1]
Hugh
[1]
https://redmine.kannel.org/projects/kannel/repository/revisions/5326/diff/trunk/configure.in
Package: cfengine3
Version: 3.15.2-3.1
Severity: wishlist
Dear Maintainer,
Upstream support for the current version of CFEngine in Debian, 3.15 LTS, will
end on 31 December 2022.
Shortly after, the next Debian freeze will begin.
To ensure users of Debian Bookworm can install a more recent versi
y due to the RC bug #992662.
Please let me know if you plan to take care of the upload yourself.
Regards,
Hugh McMaster
diff -Nru cfengine3-3.15.2/debian/changelog cfengine3-3.15.2/debian/changelog
--- cfengine3-3.15.2/debian/changelog 2022-05-22 02:25:35.0 +1000
+++ cfengine3-3.15.2/d
th strncpy() in exif/actions.c.
Thanks to Aron Xu for forwarding the upstream patch.
I currently maintain the related packages libexif and libexif-gtk with
DM upload permissions. I would like to take on more responsibility
with exif and upload as a DM as well.
Regards,
--
Hugh McMaster
+ Add hardening flags to DEB_BUILD_MAINT_OPTIONS.
* debian/upstream: Add metadata file.
* debian/watch: Update version, repository URL and archive regex.
* tablix2: Don't install the *.la files (Closes: #810271).
* tablix2.docs: Add doc-base file.
* Override some Lintian warnings.
Regards,
--
Hugh McMaster
Hi Vagrant,
On Wed, 15 Jun 2022 20:41:05 -0700 Vagrant Cascadian wrote:
> Control: found 1010785 0.8.1+debian-8
>
> On 2022-05-09, Vagrant Cascadian wrote:
> > The build path is embedded in /usr/lib/libgdome.so.0.8.1:
> >
> >
> > https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd6
e2.pc in a multi-arch location (Closes: #895991).
* Don't install gdome-config, gdomeConf.sh, gdome2.m4 or libgdome.la.
The two reverse build-dependencies use pkg-config to find gdome2, so
there are no issues with the removal of gdome-config.
Regards,
--
Hugh McMaster
face_index.
+- CVE-2022-27406: segmentation violation via FT_Request_Size() when
+ attempting to read the value of an unguarded face size handle.
+
+ -- Hugh McMaster Thu, 28 Apr 2022 21:11:36 +1000
+
freetype (2.9.1-3+deb10u2) buster-security; urgency=high
* Non-maintainer upload by
violation via ft_open_face_internal() when
+ attempting to read the value of FT_LONG face_index.
+- CVE-2022-27406: segmentation violation via FT_Request_Size() when
+ attempting to read the value of an unguarded face size handle.
+
+ -- Hugh McMaster Thu, 28 Apr 2022 19:54:23 +1000
* debian/control: Build-Depend on pkg-config.
* debian/patches:
- Drop "disable-libxml2-version-check" in favour of pkg-config.
- Refresh some patches due to removal of "disable-libxml2-version-check".
- Use pkg-config to find libxml2 (Closes: #949413).
Regards,
--
Hugh McMaster
he binary package Depends list.
+ * debian/copyright: Use DEP-5 format and update for 2022.
+ * debian/patches: Add descriptions and other metadata.
+ * debian/rules: Add hardening flags to DEB_BUILD_MAINT_OPTIONS.
+ * Use pkg-config to find libxml2 (Closes: #949091).
+ * Update debian/watch f
Remove unneeded dh arguments --parallel --with=autoreconf.
+ * Add debian/upstream/metadata file.
+ * Update debian/watch and point to GitHub.
+
+ -- Hugh McMaster Sun, 27 Mar 2022 22:15:18 +1100
+
cpm (0.32-1.3) unstable; urgency=medium
* Non-maintainer upload.
@@ -17,7 +45,7 @@
* No
e pkg-config to detect libxml2 (Closes: #949051).
+- Don't manually strip the binary (Closes: #436940).
+- Fix install path to work with dh_auto_install.
+- Multiple spelling fixes (Lintian).
+ * debian/rules:
+- Switch to `dh' format.
+- Export hardening flags.
+ * Add
Hallo Jan,
On Tue, 22 Feb 2022 at 07:06, Jan Wielemaker wrote:
>
> Thanks for your answer. I'm not convinced. You are telling that we
> must define macros to make sql.h get the right type for SQLBIGINT.
> Getting the right type (some alias for int64_t or a struct) is IMO
> something that should
Source: psqlodbc
Version: 1:13.02.-1
Severity: important
The recent upload of unixodbc 2.3.9-2 to unstable triggered psqlodbc's
autopkgtests, which fail because odbcinst is not installed.
In previous versions of unixodbc, odbcinst was installed via odbcinst1debian2,
which was a dependency of
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition
Due to various changes, unixodbc's libraries, libodbc, libodbccr and libodbccr
have a new soversion.
Test results after rebuilding all reverse dependencies and reverse-build
dependencies
On Sun, 31 Oct 2021 at 01:36, Paul Wise wrote:
>
> I figured out that this command causes the issue:
>
>$ gsettings set org.gnome.desktop.interface font-antialiasing rgba
>
> and this command fixes the issue:
>
>$ gsettings set org.gnome.desktop.interface font-antialiasing grayscale
'grays
Control: tags -1 pending
Hi Alexander,
Thank you for filing this bug report.
On Tue, 26 Oct 2021 at 23:09, Alexander Traud wrote:
>
> Package: unixodbc-dev
> Version: 2.3.6-0.1build2
>
> In salsa [1], I see that the dependency on libltdl-dev was added to the -dev
> package in the year 2004 alre
0.6.8+ds-2) unstable; urgency=medium
.
[ Debian Janitor ]
* Remove version constraints on build-dependencies unnecessary since Buster.
.
[ Hugh McMaster ]
* debian/gbp.conf: Use DEP-14 branch naming.
* debian/control:
- Build-Depend on zlib1g-dev | libz-dev (Closes: #997233).
Hi Paul,
On Fri, 29 Oct 2021 at 21:21, Paul Wise wrote:
>
> Not sure if this issue is a bug in sm or freetype, please reassign.
>
> Since the upgrade of freetype from 2.10.4+dfsg-1 to 2.11.0+dfsg-1,
> whenever I attempt to display a string in sm containing letter e,
> either via the command-line o
Source: tdbcodbc
Version: 1.1.2-1
Severity: important
Tags: ftbfs
Dear Maintainer,
I will soon be starting a transition with unixODBC that will cause a build
failure with src:tdbcodbc due to its hard-coded build-dependencies of libodbc1
and odbcinst1debian2.
To avoid issues with the transition t
Package: devscripts
Version: 2.21.4
Severity: important
Dear Maintainer,
When using uscan to download the latest version of FreeType and its component
tarballs, uscan fails.
scan: Newest version of ft2docs on remote site is 2.11.0, specified
download version is 2.11.0
gpgv: can't open
'.
Hi Adrian,
On Tue, 17 Nov 2020 at 03:53, Adrian Bunk wrote:
> What is the point of moving libexif-gtk to GTK3 when the only package
> using it does not support it?
>
> This sounds like a mistake that should be reverted.
I already have. When I realised gtkam was an issue, I updated libexif-gtk
t
anitor ]
* debian/copyright: Use spaces rather than tabs to start continuation lines.
* Set upstream metadata fields: Repository.
.
[ Hugh McMaster ]
* New upstream version 2.2.0
- Upstream now ships a pkg-config file (zebra.pc).
- idzebra-config-2.0 is no longer packaged.
Source: gtkam
Version: 1.0-3
Severity: serious
Tags: ftbfs
Justification: Policy 7.7
Dear Maintainer,
libexif-gtk is moving to GTK3 in response to #967573.
gtkman also only supports GTK2, which means it blocks the introduction of
libexif-gtk built on GTK3.
Upstream gtkam has seen no activity si
Package: armagetronad
Version: 0.2.8.3.5-1
Severity: normal
Tags: upstream
Dear Maintainer,
armagetronad is now at version 0.2.9.0.1 upstream. It would be good to have the
latest version in Debian.
In addition, your d/watch file is out of date. Upstream has moved to gitlab:
https://gitlab.com/ar
Hi Andreas,
On Thu, 1 Oct 2020 at 02:49, Andreas Metzler wrote:
> Runtime library are generally installed as a dependency, when the
> depending package is rebuilt against the newer library apt will pull it
> in and the old library can be autoremoved.
Very nice.
> > I’m also targeting experimenta
Control: tags -1 - a11y
Control: tags -1 + wontfix
On Sat, 5 Sep 2020 at 00:48, 欧阳春晖 wrote:
> It is found that the package does not contain freetype config, while
> that of Ubuntu contains freetype config. This may be a packaging error.
> Please fix it
I'm removing the a11y tag, since your bug re
Hi Nelson,
On Sun, 14 Jun 2020 at 11:51, Hugh McMaster wrote:
> On Sun, 14 Jun 2020 at 08:32, Nelson H. F. Beebe wrote:
>> That is not the same version of exiftool that Boyuan reported, but there was
>> no URL for his version. I someone cares to send me a suitable source URL
&g
- Fix a buffer read overflow in exif_entry_get_value() (CVE-2020-0182).
+- Fix an unsigned integer overflow in libexif/exif-data.c (CVE-2020-0198)
+ (Closes: #962345).
+
+ -- Hugh McMaster Wed, 24 Jun 2020 23:31:09 +1000
+
libexif (0.6.21-5.1+deb10u3) buster; urgency=medium
* Add ups
Dear mentors,
On Sat, 13 Jun 2020 at 22:45, Hugh McMaster wrote:
> Package: sponsorship-requests
> Severity: normal
>
> Dear mentors,
>
> I am looking for a sponsor for the package "shotdetect"
>
> * Package name: shotdetect
>Version : 1.
On Sun, 14 Jun 2020 at 08:32, Nelson H. F. Beebe wrote:
> [...]
> That is not the same version of exiftool that Boyuan reported, but there
> was no URL for his version. I someone cares to send me a suitable source
> URL off list, I'll do another build with it on my new S/390 VM.
Thank you. The
Dear mentors,
On Tue, 2 Jun 2020 at 23:16, Hugh McMaster wrote:
> I am looking for a sponsor for my package "xmlstarlet"
>
> * Package name: xmlstarlet
>Version : 1.6.1-2.1
>Upstream Author : Mikhail Grushinskiy
> * URL : ht
in tags
+ (CVE-2020-13114) (Closes: #961410).
+
+ -- Hugh McMaster Mon, 25 May 2020 22:01:18 +1000
+
+libexif (0.6.21-5.1+deb10u2) buster; urgency=medium
+
+ [ Mike Gabriel ]
+ * Sponsored upload.
+ * debian/patches: Trivial rebase of various patches.
+
+ [ Hugh McMaster ]
+ * Team uploa
I've updated the debdiff for this release to include the changelog
entries for the sponsored upload.
libexif_0.6.21-2+deb9u3.debdiff
Description: Binary data
On Mon, 25 May 2020 at 22:18, Hugh McMaster wrote:
>
> I've updated the debdiff for this release to include the changelog
> entries for the sponsored upload.
Apologies. This is the correct debdiff.
libexif_0.6.21-2+deb9u2.debdiff
Description: Binary data
some possible division-by-zero errors
+ in exif_entry_get_value() (CVE-2020-12767) (Closes: #960199).
+- cve-2020-0093.patch: Prevent read buffer overflow (CVE-2020-0093).
+
+ -- Hugh McMaster Tue, 19 May 2020 19:40:10 +1000
+
libexif (0.6.21-2+deb9u1) stretch-security; urgency=high
Control: tags -1 + pending
This is already fixed upstream. I'll push it to Debian shortly.
Hugh
On Fri, 27 Mar 2020 at 04:56, gregor herrmann wrote:
>
> On Thu, 26 Mar 2020 21:05:23 +1100, Hugh McMaster wrote:
> Fixed in git, waits for YAZ 5.29.0 to enter unstable (for the
> yaz-server.pc file).
YAZ 5.29.0-2 is now in unstable, so feel free to upload
libnet-z3950-simpleserver-p
This bug is triggered by Debian's build system. When using upstream
source, libxml2 is detected via pkg-config.
That said, the underlying configure.ac code is overly complex. While
xml2-config (and xslt-config) still exist, pkg-config is far easier to
use for detection.
I'm happy to patch the sou
Control: tags -1 + patch
Dear maintainer,
I have attached a patch to allow the `configure` routine to use
PKG_CHECK_MODULES to detect the libxml2 and libxslt libraries.
Thank you,
Hugh
0001-pkg_check_modules.patch
Description: Binary data
Hi Salvatore,
On Thu, 23 Jan 2020 at 02:18, Salvatore Bonaccorso wrote:
> I've prepared an NMU for libexif (versioned as 0.6.21-5.2) based on
> the upstream commit and uploaded it to DELAYED/5. Please feel free to
> tell me if I should delay it longer.
Thank you for preparing another NMU. I hav
On Tue, 26 Nov 2019 03:33:02 +0100, Alexander Prokoshev wrote:
> I would like to note that pkgdata is now broken because it tries to
> use [nonexistent] icu-config.
Upstream merged a patch [1] I sent to fix the pkgdata breakage earlier today.
László, can you please consider including it in a new
he package with dget using this command:
dget -x https://mentors.debian.net/debian/pool/main/y/yaz/yaz_5.27.2-1.dsc
Changes since the last upload:
* New upstream release.
* debian/control:
- Add Hugh McMaster as an Uploader.
- Use debhelper-compat level 12.
- Raise Standards-
escription: Fix font metrics broken by an upstream FreeType change
The logic for computing the global ascender, descender and height of OpenType
fonts was slightly adjusted in FreeType 2.10. This change causes regression
tests 22, 23 and 24 to fail.
Author: Hugh McMaster
Bug: https://rt.cpan.org/
389-ds-base has been uploaded to unstable.
On Wed, 2 Jan 2019 at 21:11, Hugh McMaster wrote:
>
> Hi László,
>
> All of the packages you listed in message #15 are fixed or pending
> upload. Most are fixed upstream as well.
>
> * 389-ds-base is pending upload.
> *
Control: severity -1 serious
Control: tags -1 + patch
Dear maintainer,
As the removal of icu-config from Debian is imminent, I have prepared a
patch for gnustep-base so its build system uses pkg-config to detect icu.
Please apply it as soon as possible.
I have also forwarded the patch upstream,
Package: libnet-z3950-simpleserver-perl
Version: 1.15-1+b7
Severity: important
Dear Maintainer,
Your package currently build-depends on libyaz4-dev. However, this package
will soon be replaced by libyaz-dev during an upcoming transition.
Testing with libyaz-dev 5.27.1-1 installed results in your
Source: idzebra
Version: 2.0.59-1
Severity: important
Dear Maintainer,
idzebra currently has a build-dependency on libyaz4-dev. However, this package
will soon be replaced by libyaz-dev during an upcoming transition.
Testing with libyaz-dev 5.27.1-1 installed results in idzebra FTBFS, as it
cann
Hi Vincent,
On Monday, 17 December 2018 8:04 PM, Vincent Danjean wrote:
> I started to work on 5.27.0 and just imported 5.27.1 with "gbp import-orig
> --uscan".
> All of this is on salsa. Any help to go further is welcome (with push request
> or even direct commit)
Nice! Thank you for doing this
X-Debbugs-CC: p...@debian.org
I forgot to add in the patch that an will need to build-depend on pkg-config as
well.
Hugh
Package: libfolia6
Version: 1.6-2+b1
Severity: wishlist
Dear Maintainer,
The current version of libfolia is almost two years old and is missing several
bug fixes and enhancements.
It also does not work with icu 63.1.
Please upgrade to the latest upstream version - 1.15.
Thank you
-- System
Source: ucto
Version: 0.9.6-1
Severity: wishlist
Dear Maintainer,
The current version of ucto is nearly two years old and is missing out on many
upstream fixes and enhancements.
This version is also incompatible with icu 63.1, currently in testing.
Please update ucto to the latest upstream vers
Hi László,
What help do you need to resolve this bug?
Hugh
Hi Varun,
I’m preparing an NMU for #887606 and was wondering if you’d like me to convert
the package to debhelper at the same time? dvipng is currently using cdbs.
Regards,
Hugh
1 - 100 of 255 matches
Mail list logo
