for you:
>
> https://github.com/NetworkConfiguration/dhcpcd/commit/dabdf5728e5b419c3a23f8e2bf21e344f29cbf43
Seems like that did it. Tested by copying upstream git 20-resolv.conf over
the one from 9.4.1-24~deb12u4 and then checking what ends up in
/var/run/resolvconf/interface/$IFACE.ra. Note: I'm using resolvconf not
openresolv.
Thanks!
--Daniel ;3
signature.asc
Description: PGP signature
I'm happy to do some testing with debvm if we agree on this being a
concern.
--Daniel
Correction;
The original patch on the bug report seems quite sufficient for the branch
targeted. A PR with MDEV-35904 would be much appreciated.
On Tue, 10 Jun 2025 at 17:51, Daniel Black wrote:
>
>
> On Mon, 9 Jun 2025 at 16:48, Otto Kekäläinen via discuss <
> disc...@lists.mar
On Mon, 9 Jun 2025 at 16:48, Otto Kekäläinen via discuss <
disc...@lists.mariadb.org> wrote:
> > Patching one of our spare servers this morning and ran into a couple of
> issues. The first was a complaint in the service status:
> >
> > mariadb.service: Referenced but unset environment variable ev
Hi Simon--
Thanks for the extensive and thoughtful reasoning about the longer-term
strategy here.
Regarding the immediate question:
On Sat 2025-06-07 14:52:33 +0100, Simon McVittie wrote:
> OK, in that case:
>
> sqopv | sopv-gpgv | sopv
As i understand it, the point of this recommendation
On Mon 2025-06-02 19:15:01 +0100, Simon McVittie wrote:
> Sure, but unfortunately we don't live in an ideal world, and we're
> unlikely to arrive in one before the trixie release!
agreed, hence the patch ;) I'd love to hear suggestions for what next
steps you think we need to get closer to the id
msg0.html
(see linked pad).
Do you think you'd have some time for a call to discuss the details here so
I can get a better handle on all dimensions of the problem? Please reply to
me directly if so.
Thanks,
--Daniel
signature.asc
Description: PGP signature
On Wed, 2025-06-04 at 16:38 +0200, Salvatore Bonaccorso wrote:
[python-tornado DSA]
> The changes look good to me, yes please go ahead with the upload to
> security-master.
Uploaded.
Regards, Daniel
signature.asc
Description: This is a digitally signed message part
Package: release.debian.org
Severity: normal
X-Debbugs-Cc: pidgin-...@packages.debian.org
Control: affects -1 + src:pidgin-otr
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package pidgin-otr
[ Reason ]
pidgin-otr is an OTR secure messaging plugin for the XMPP clie
25bfd 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+gui-ufw (24.04.0-3) unstable; urgency=medium
+
+ * Add patch to addd AppStream metadata. Closes: #1095187
+
+ -- Daniel Rusek Sat, 17 May 2025 00:32:24 +0200
+
gui-ufw (24.04.0-2) unstable; urgency=medium
* Team up
Hi,
On Tue, 2025-06-03 at 20:54 +, Moritz Mühlenhoff wrote:
> On Tue, Jun 03, 2025 at 01:33:44PM +0200, Daniel Leidert wrote:
[Bookworm PU for CVE-2025-47287.patch]
> > Thanks for catching that. Attached the debdiff after fixing the name.
>
> We should rather fix this via a D
rs cannot be build successfully.
Regards,
Daniel
debdiff.gz
Description: application/gzip
he updated version contains all keyring updates for the
progress-linux repo for trixie and onwards, plus a typo in
debian/copyright - no other changes.
* debdiff is attached.
Regards,
Daniel
debdiff.gz
Description: application/gzip
On Tue, 2025-06-03 at 08:42 +0200, Salvatore Bonaccorso wrote:
> On Fri, May 30, 2025 at 05:38:30AM +0200, Daniel Leidert wrote:
[Bookworm PU for CVE-2025-47287.patch]
> Technically we had the package already in mind for a DSA, so this
> could as well go via a DSA (cc'ing my teammat
Package: generate-ninja
Version: 0.0~git20250430.487f835-1
X-Debbugs-Cc: debian-cr...@lists.debian.org
The chromium package currently has generate-ninja in its Build-Depends:
list. I recently added cross build support to the package, and the lack
of a Multi-Arch: field on generate-ninja resulted i
e either "sqv" or "gpgv-sq".
Ideally, devscripts wouldn't be the package to make this decision, but
for the sake of predictability the patch below might be useful.
--dkg
From 9a726f7914ac4952be38d9909e4adbe5c56727e2 Mon Sep 17 00:00:00 2001
From: Daniel Kahn Gillmor
D
Should things change fundamentally how Netdata Inc. runs things, or
someone wanting to re-introduce it in contrib, they can always do it via
going through NEW (they would need to repackage the whole thing from
scratch anyway).
Regards,
Daniel
/flask-cors/pull/392
I have adjusted the information in the security tracker.
Regards, Daniel
signature.asc
Description: This is a digitally signed message part
olume
+ of logs, constituting a DoS attack. This DoS is compounded by the fact
+ that the logging subsystem is synchronous (closes: #1105886).
+
+ -- Daniel Leidert Fri, 30 May 2025 05:19:15 +0200
+
python-tornado (6.2.0-3+deb12u1) bookworm; urgency=medium
* Non-maintainer upload by
retitle 1092671 ITP: golang-golang-x-mobile -- Mobile devices Go library
owner 1092671 Daniel Baumann
tag 1092671 + pending
thanks
Hi,
I've uploaded this to NEW in behalf of packaging nerdlog.
Regards,
Daniel
On Tue 2025-05-27 20:34:40 +0200, Sune Stolborg Vuorela wrote:
> On Tuesday, May 27, 2025 6:14:53 PM CEST Daniel Kahn Gillmor wrote:
>> I can take a look and see whether it's possible to get both kinds of
>> benefits -- standards compliance and reduced attack surface --
On 5/27/25 15:48, Michael Prokop wrote:
[Resending to 1082...@bugs.debian.org instead of -quiet to ensure it
reaches the package maintainer :)]
indeed, I haven't seen it :(
I'll have a look at it on Monday after the holidays and aim for an
unblock :)
Regards,
Daniel
On Tue 2025-05-27 10:40:29 +0200, Sune Stolborg Vuorela wrote:
> Now that sequoia also thinks that having non-critical packets anywhere, can
> we
> also let GnuPG do it, right ?
>
> https://gitlab.com/sequoia-pgp/sequoia/-/issues/1193#note_2522532582
An argument from a close read of the specific
Hi,
Will this issue also be fixed for the MariaDB server 10.5 version from the
Debian repos?
Until now only some security fixes were released.
Regards
Daniel Czadek
System Administrator Linux/DevOPs
[cid:image001.png@01DBCF1D.A75FB470]
picturemaxx AG | Stefan-George-Ring 2 | 81929 München
s for
spotting it.
Regards,
Daniel
Control: tags 1106336 + patch
Hi Marc--
On Sat 2025-05-24 10:48:09 +0200, Marc Haber wrote:
> Try this patch:
>
> --- original2025-05-24 10:45:01.169219431 +0200
> +++ /usr/share/bash-completion/completions/debfoster2025-05-24
> 10:45:35.865115014 +0200
> @@ -3,7 +3,7 @@
> # Provided b
able to offer any VM to reproduce it as I promised,
sorry.
there are two bugs open for the same thing - let's close your report and
keep the other one (still at severity serious).
Regards,
Daniel
crash and remain defunct, resulting in a
+ denial of service. Initializing function pointers in transport.c after
+ resource allocation fixes this [CVE-2025-4478] (Closes: #1105917).
+
+ -- Daniel Baumann Mon, 26 May 2025 14:38:19 +0200
+
freerdp3 (3.15.0+dfsg-2) unstable; urgency=medium
ger a segmentation
+ fault. This causes FreeRDP to crash and remain defunct, resulting in a
+ denial of service. Initializing function pointers in transport.c after
+ resource allocation fixes this [CVE-2025-4478] (Closes: #1105917).
+
+ -- Daniel Baumann Mon, 26 May 2025 14:38:19 +0200
+
fre
is
that each of these health checks can be paired with alerting via Slack,
Teams, PagerDuty, Discord, Twilio and many more.
Packaging is tracked here:
https://forgejo.debian.net/daniel/wiki/wiki/debian-packaging-gatus
Regards,
Daniel
Hi,
On 5/24/25 15:36, Paul Gevers wrote:
Can you please provide this as a debdiff in this bug report?
sure - debdiff is attached.
Regards,
Daniel
debdiff.diff.gz
Description: application/gzip
Hi Marc--
Thanks for the quick feedback here.
On Fri 2025-05-23 07:14:10 +0200, Marc Haber wrote:
> have used to be defined for bash_completion snippets and got deprecated
> some time one year ago. Sadly without any warning or obvious informaion,
> and now it's gone.
That seems unfortunate :(
Package: debfoster
Version: 2.8-1
Severity: normal
In bash, if i type /usr/sbin/debfoster and then hit TAB, i see the
following error on stderr (four times):
bash: have: command not found
The bash tab completion rules do indeed try to call something named
"have" -- but maybe they're ancient?
`
owner 1069794 Daniel Baumann
thanks
Hi Nikos,
On 5/22/25 09:51, Nikos Tsipinakis wrote:
I was in the process but I got stuck in a Go dependency hell with some of the
hashicorp dependencies.
yes, it's awful :(
I have not taken a look in quite a few months. I'd be happy to pa
Package: golang-github-dop251-goja
Hi,
could you please update golang-github-dop251-goja the the current
upstream snapshot in experimental?
It's needed for golang-github-dop251-goja_nodejs which in turn is needed
to package beszel.
Regards,
Daniel
close 951836
close 1087017
thanks
I gave up on netdata (for reasons see #1106233).
Regards,
Daniel
ead (https://github.com/henrygd/beszel/;
https://bugs.debian.org/1093255).
Regards,
Daniel
retitle 1093255 ITP: beszel -- lightweight server monitoring
owner 1093255 Daniel Baumann
thanks
Hi,
I'll take care about.
Regards,
Daniel
close 1088473 2.0.3+dfsg-1
thanks
Hi,
this doesn't affect netdata 2.x (which has no web-ui anymore).
Regards,
Daniel
tions is: either the package itselfs
carries it, or, it's included in src:bash-completion.
Regards,
Daniel
(Apologies, didn't see your second message before my previous reply)
On Wed, 2025 May 21 05:13-04:00, Jérémy Lal wrote:
>
> https://launchpad.net/ubuntu/plucky/+package/node-corepack
> doesn't mention any Arch: all version of the package.
> I suppose Ubuntu did things differently ?
I filed a simi
On Wed, 2025 May 21 05:10-04:00, Jérémy Lal wrote:
>
> I don't understand - at all - how those Arch: all packages
> (node-minimatch, node-corepack) became Arch: amd64 on your system.
> For example, node-corepack:amd64 never existed.
> It is probably an issue with Multiarch flags, but I need help o
Package: nodejs
Version: 20.19.2+dfsg-1
The nodejs and libnode115 packages have dependencies on node-corepack
and node-minimatch, respectively. The latter two are "Architecture:
all". However, the dependency appears to be implicitly on native-arch
versions of the packages, rather than the "all" on
On Sun 2025-05-18 20:02:28 +0200, Sune Stolborg Vuorela wrote:
> This work in poppler has been done in full cooperation with GnuPG upstream,
> it
> is in the GnuPG backend of poppler and these signatures is created in
> g10code's namespace in the pdf files. (g10c.pgp.signature.detached)
What i'
On Tue 2025-05-20 20:03:47 +0200, Jakub Wilk wrote:
> * Daniel Kahn Gillmor , 2025-05-20 13:20:
>>0 dkg@bob:~$ posh -c "printf '\xd5'" | hd
>
> FWIW, printf is not a builtin in posh:
>
> $ posh -c 'printf --version | head -1'
> printf (GNU core
Source: emacs
Version: 1:30.1+1-5
Severity: normal
i tried to build the emacs package from git. It failed during its
internal testing (i was able to build with DEB_BUILD_OPTIONS=nocheck),
but i don't understand the failure. I'm including a transcript here,
but am happy to provide other informati
Package: dash
Version: 0.5.12-12
Severity: wishlist
printf appears to typically accept escaped hexadecimal octets of the
form \nXX, where XX are two hexdigits.
out of several printf implementations (including /usr/bin/printf and the
builtins on many other shells), dash alone simply passes those
c
Hi Gui-Yue,
On 5/20/25 13:19, Yue Gui wrote:
The debdiff patch is in the attachment.
thanks for working on these issues - patch is applied and uploaded.
Regards,
Daniel
Hi Nikos,
are you still working on packaging openbao? if not, would you mind if I
take over?
Regards,
Daniel
continue to work packaging things.
Regards,
Daniel
ion to the extend, that I don't think jinjax 0.56+dfsg-1
should be shipped in trixie.
Regards,
Daniel
For those who care about forgejo, I'm tracking my status of the
packaging here:
https://forgejo.debian.net/daniel/wiki/wiki/debian-packaging-forgejo
Regards,
Daniel
* instead of golang-github-go-redis-redis*.
Regards,
Daniel
Package: golang-github-urfave-cli
Hi,
forgejo needs version 3.x of golang-github-urfave-cli, it would be nice
if you could upload 3.x to experimental so I can continue packaging forgejo.
Regards,
Daniel
Package: golang-github-santhosh-tekuri-jsonschema
Hi,
forgejo needs version 6.x of golang-github-santhosh-tekuri-jsonschema,
it would be nice if you could upload 6.x to experimental so I can
continue packaging forgejo.
Regards,
Daniel
1.14-5:
https://forgejo.debian.net/lzip/zutils/commit/4fa3918d9f5dbe81cfa863202a433f23974d4166
zutils has been built on all architectures and passed all piuparts
tests, please unblock it.
Regards,
Daniel
Hi Sune--
On Sat 2025-05-17 20:01:48 +0200, Sune Stolborg Vuorela wrote:
> What is - to you - the purpose of the reserved packet space around
> 61-63 in any of the pgp related standards?
It's not really up to me, for what it's worth. I'm basing my answers
on:
https://www.rfc-editor.org/rfc/rfc
Hi Sune--
Thanks for following up here.
On Fri 2025-05-16 19:41:54 +0200, Sune Stolborg Vuorela wrote:
> I'm not sure why all of this matters; there are others that expects gnupg in
> Debian to validate and fail things in a similar way to gnupg-from-upstream
> and
> gnupg-in-other distribution
Hi Sune--
On Fri 2025-05-16 10:33:28 -0400, Daniel Kahn Gillmor wrote:
> Looking at your sample PDF (thanks for the link!) it appears that it is
> a comment packet of length 0x24d4 containing all zeros. What is the
> purpose of this packet? Why is it being included?
>
> Rather
Hi Sune--
Thanks for this report. Do you know what tooling is generating these
packets for poppler?
In GnuPG right now (even without the patch you identified), those
packets are generally ignored.
On Fri 2025-05-16 12:01:38 +0200, Sune Stolborg Vuorela wrote:
> On Thursday, May 15, 2025 2:04:43
On 5/12/25 17:30, Helmut Grohne wrote:
I'm attaching updated test cases as well as another patch.
thanks - much appreciated, and uploaded.
Regards,
Daniel
zip/zutils/commit/aeb3e10b753b487a747230cf26c92c13fb7e3ed1
It would normally would migrate, but the piupart test seems to choke up
on this edge-case with a false positive.
Regards,
Daniel
destroy data uncorrectably when doing so.
(more on this in the links within
https://github.com/ceph/ceph/pull/61653 and on ceph-us...@lists.ceph.io
[which apparently is currently down :/]).
Regards,
Daniel
em in our DNS ecosystem IMO.
In any case. I hope you're going to join our DebConf session where we'll
(hopefully) get around to working on solutions in this area:
https://debconf25.debconf.org/talks/124-networking-bof/
--Daniel
signature.asc
Description: PGP signature
Package: cmark-gfm
Version: 0.29.0.gfm.13-4
Severity: important
When transcoding commonmark / markdown to roff man pages with cmark-gfm, it
will apply the "\f[C] \f[]" font style syntax to code blocks. This affects both
four space indented code blocks, as well as backtick fenced code blocks.
patch below.
Thank you!
Daniel Lewart
Urbana, Illinois
---
diff -ru a/support-files/mariadb.service.in b/support-files/mariadb.service.in
--- a/support-files/mariadb.service.in 2025-04-23 18:50:43.0 -0500
+++ b/support-files/mariadb.service.in 2025-05-10 00:00:00.0 -0500
@@ -69,6
.
nice catch!
The debdiff patch is in the attachment.
looks good, uploading now, thanks!
Regards,
Daniel
On Thu 2025-05-08 22:32:11 +0100, Colin Watson wrote:
> I think After= is unnecessary. systemd.socket(5) says (bearing in mind
> that Before= and After= are inverses, as one might expect from their
> names):
>
>Socket units automatically gain a Before= dependency on the service
>units t
to 'Note'
- Only print startup Notes if log_warnings >= 4"
Thank you!
Daniel Lewart
Urbana, Illinois
Control: tags 1103522 + patch
Ah, thanks, i think i understand what is going on now! I was able to
replicate the problem.
> Here is what I did to disable my non-systemd-managed agent and run it again
> through systemd:
> killall ssh-agent
> systemctl --enable ssh-agent.service ssh-agent.socket
>
Package: netatalk
Version: 4.2.1~ds-1
Severity: important
X-Debbugs-Cc: pkg-netatalk-de...@lists.alioth.debian.org
A long-standing bug with option indexing in afpd has been discovered and fixed
upstream.
This bug causes unreliable behavior of the config file parser when specifying a
custom afp.c
Hi Antoine--
On Thu 2025-05-08 00:50:44 +0200, Antoine Le Gonidec wrote:
>> Can you share the output of the following command (run as your normal
>> user):
>>
>>systemctl --user cat ssh-agent.socket ssh-agent.service
>
> I get the exact same output as yours, no local overrides here.
great, t
-image-amd64;
specifically, in the overlay filesystem.
Thank you!
Daniel Lewart
Urbana, Illinois
Hi Antoine--
On Fri 2025-04-18 16:26:36 +0200, Antoine Le Gonidec wrote:
> Since the 1:10.0p1-1 → 1:10.0p1-2 upgrade, the user socket for ssh-agent
> is no longer created in ${XDG_RUNTIME_DIR}/openssh_agent, but at an
> unpredictable path under /tmp.
Can you share the output of the following comm
I just tried to make a local certification of Werner's own certificate
with my cert (D477040C70C2156A5C298549BB7E9101495E6BF7) , and GnuPG
refused to confirm the validity of Werner's user ID despite my own
having ultimate ownertrust.
I traced it back to the fact that my cert has a certification-on
ith newer tools. Both
pytest /tests
and
tox
work for me. Tests need SciPy, so you might want to specify this as a
dependency.
Bottom line: I recommend revisiting the testing part of the build files
and making sure that unit tests are still executed.
Best,
Daniel
the Debian package python3-fastcluster to the PyPi
source. (GitHub has the same code if you prefer it:
https://github.com/fastcluster/fastcluster/releases/tag/v1.3.0.) The R
package could stay at version 1.2.6 since the C++ code and R wrapper
didn't change, only the Python wrapper.
Best,
Daniel
Package: rust-rand
Hi,
can you please upload rust-rand 0.9 to experimental? The new version of
forgejo-cli needs that.
Regards,
Daniel
d upstream
since 2.4.
Thanks,
--Daniel
signature.asc
Description: PGP signature
retitle 1091728 ITP: posting -- TUI client for HTTP requests
owner 1091728 Daniel Baumann
thanks
uploaded to NEW.
Regards,
Daniel
retitle 1104445 please build bootstrap.esm.js versions
thanks
On 5/1/25 19:46, Daniel Baumann wrote:
from a quick glance I didn't see how to generate it, do you have
any hints?
never mind, I think I've figured it out.
Regards,
Daniel
Hi Nick,
I just saw your ITP after I've started packaging icann-rdap.
Are you still interested in packaging it?
Regards,
Daniel
landed in yosys_0.52-2. I'll do another upload
for the lintian no-relro fix as soon as this builds because I'm not
confident in my distracted self not messing up the patch rn.
--Daniel
with <3 MiniDebConf Hamburg
signature.asc
Description: PGP signature
We can sort this out next week or we miss the upcoming point release.
Package: nextcloud-desktop
Version: 3.16.2-1
Severity: wishlist
Tags: upstream
Dear Maintainer,
please update nextcloud-desktop to 3.16.4, which was released on April 28th.
Judging by the available milestones on GitHub this may be the last release from
the 3.16 branch and brings only bugfixes co
Control: severity -1 normal
On Fri, May 02, 2025 at 02:48:15PM +0200, Daniel Gröber wrote:
> On Fri, May 02, 2025 at 11:47:24AM +0200, Thomas Liske wrote:
> > I wonder why needrestart selects this service at all. Could you provide the
> > output of `needrestart -v` for this?
>
rtainly because of
unattended-upgrades.
Why do you think it should be ignored already?
On Fri, May 02, 2025 at 11:50:20AM +0200, Chris Hofstaedtler wrote:
> On Fri, May 02, 2025 at 11:37:04AM +0200, Daniel Gröber wrote:
> > Justification: Breaks unrelated software
> (IMO needrestart is
this problem since there doesn't seem to be any point in restarting
it for security purposes.
Thanks,
--Daniel
signature.asc
Description: PGP signature
Hi Enrico,
On 4/30/25 13:48, Enrico Zini wrote:
Unfortunately, bootstrap as packaged in Debian does not ship the ESM
version. It would be lovely to have it
sure - from a quick glance I didn't see how to generate it, do you have
any hints?
Regards,
Daniel
r/lib/dhcpcd/dhcpcd-hooks/ there's also eg. /usr/share/dhcpcd/hooks/
wich has more numbered scripts:
/usr/share/dhcpcd/hooks/10-wpa_supplicant
/usr/share/dhcpcd/hooks/15-timezone
/usr/share/dhcpcd/hooks/29-lookup-hostname
What's the difference?
--Daniel
signature.asc
Description: PGP signature
emove before the next upstream release)
Best,
Daniel
On Sun, 4 May 2014 19:06:50 +0200 Michael Tautschnig wrote:
Package: cairo-dock-plug-ins
Version: 3.3.2-3.1
Usertags: goto-cc
During a rebuild of all packages in a clean sid chroot (and cowbuilder+pbuilder)
the build failed with the foll
Package: gosop
Version: 1.1.0-2+b3
Severity: normal
Tags: patch
X-Debbugs-Cc: Guillem Jover
I know that in #1093055 Guillem asked for an update to sopv alternatives
system to link to the manpage for "man sopv".
A better approach today is to Recommends: sopv-doc, which includes an
implementation-
On 4/28/25 14:58, Helmut Grohne wrote:
I am sorry to tell you that the brittle /usr-move mitigations broke
again.
no worries, I'm honestly so lucky that you're able and willing to help,
I'll gladly wait for your patch.
Regards,
Daniel
uggestion bug was neither closed nor tagged in a month, silent
> consent to proceed with removal is assumed.
I'm still planning to bring this package back into shape before the release
but it's blocking on work in ghdl, how do I express this to your
automation?
Thanks,
--Daniel
signature.asc
Description: PGP signature
On Wed 2025-04-23 12:32:45 -0700, Soren Stoutner wrote:
> For the sake of completeness, this value is set by the Linux kernel,
> can be reset by systemd, and can also be overwritten by pam for
> particular groups using /etc/security/limits.conf, which is shipped in
> libpam-modules. In the past
ve used an older version of the pot file, there's one more
thing to update for you at the bottom of the file.
Regards,
Daniel
On Wed, 23 Apr 2025, Helmut Grohne wrote:
curl intentionally broke cross compilation in its last upstream release.
This is a ridiculous and incorrect statement.
Before curl 8.13.0, the completion scripts would not be produced for
cross-compiles because they required *executing* the curl exec
t the
authoritative git repo for dokuwiki anymore, so I'd be glad if you could
just send the file to this bug.
additionally, having looked at the po file, could you also please remove
the unneeded commented "fuzzy" entries (apache2/lighttp) at the bottom?
Regards,
Daniel
close 1103769 2.3.0-2
thanks
Hi,
the patch upstream provided to test did indeed fix it, hence closing
this bug. thanks for reporting!
Regards,
Daniel
> said that since pymupdf is in Bookworm, this would be eligible for an
> exception. Bastian, do you want to file the pre-approval bug or would
> you like me to take care of it?
>
> Thanks!
>
> cheers, josch
>
> P.S.: currently on vacation and hence sending without PGP s
1 - 100 of 16378 matches
Mail list logo
