Processing control commands:
> tags -1 + patch
Bug #696736 [python-keyring] Insecure permissions on database files
Added tag(s) patch.
--
696736: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696736
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To UNSUBSCRIBE, em
Control: tags -1 + patch
Hi Carl
On Wed, Dec 26, 2012 at 04:52:48PM +0100, Moritz Muehlenhoff wrote:
> Package: python-keyring
> Severity: grave
> Tags: security
>
> Please see
>
> http://www.openwall.com/lists/oss-security/2012/11/16/2
> http://people.canonical.com/~ubuntu-security/cve/2012/C
On Sat, 29 Dec 2012, Jonas Smedegaard wrote:
Latest package release changed /etc/dovecot/conf.d/10-mail.conf to
hardcode mail_location to use mbox and /var/mail as mailspool.
Upstream default of leaving that variable undefined is to try both mbox
and Maildir.
But I can't do that. See #69311
On Thu, 27 Dec 2012, Norbert Veber wrote:
So it seems my config had no mail_location set, and worked fine that
way. Then when I installed -6 it decided to set one causing it to stop
working. Once I comment out that line everythign works fine again.
I see README.Debian mentions something about
Processing commands for cont...@bugs.debian.org:
> # I'm pretty sure this bug was *fixed* in this version, unmark if you
> experience something different
> fixed 696496 0.3.17-1
Bug #696496 [pithos] Broken by Pandora changes
Marked as fixed in versions pithos/0.3.17-1.
> thanks
Stopping processin
I still have this same problem using the latest CD image generated
(24th December). This is preventing me from upgrading to Wheezy. How
can I solve this problem?
--
timd
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listma
Hi!
I see there's a patch in this bug report. Do you think this is a
solution for wheezy? If so I'd volunteer to upload a new version of
freebsd-libs
Regards
Christoph
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact l
package: chromium
severity: grave
version: 22.0.1229.94~r161065-3
Chromium segfaults on startup on armhf. I got a backtrace but it isn't a
very informative one :(
Reading symbols from /usr/lib/chromium/chromium...Reading symbols from
/usr/lib/debug/usr/lib/chromium/chromium...done.
done.
(gd
Your message dated Sat, 29 Dec 2012 02:48:41 +
with message-id
and subject line Bug#684758: fixed in libphone-utils 0.1+git20110523-2.1
has caused the Debian Bug report #684758,
regarding libphone-utils0-dbg: /usr/share/doc/libphone-utils0-dbg empty after
squeeze->wheezy upgrade
to be marked
Package: dovecot
Followup-For: Bug #696820
Latest package release changed /etc/dovecot/conf.d/10-mail.conf to
hardcode mail_location to use mbox and /var/mail as mailspool.
Upstream default of leaving that variable undefined is to try both mbox
and Maildir.
Therefore, this change breaks systems
Your message dated Sat, 29 Dec 2012 01:03:28 +
with message-id
and subject line Bug#696485: fixed in inkscape 0.48.3.1-1.2
has caused the Debian Bug report #696485,
regarding inkscape: CVE-2012-5656
to be marked as done.
This means that you claim that the problem has been dealt with.
If this
Your message dated Sat, 29 Dec 2012 01:03:08 +
with message-id
and subject line Bug#661789: fixed in grub2 2.00-8
has caused the Debian Bug report #661789,
regarding grub-efi-amd64 - Does not load EFI console modules
to be marked as done.
This means that you claim that the problem has been de
Your message dated Sat, 29 Dec 2012 01:03:08 +
with message-id
and subject line Bug#661789: fixed in grub2 2.00-8
has caused the Debian Bug report #661789,
regarding grub-efi: cannot find normal; wrong prefix to grub2 (EFI)?
to be marked as done.
This means that you claim that the problem has
Your message dated Sat, 29 Dec 2012 01:03:08 +
with message-id
and subject line Bug#661789: fixed in grub2 2.00-8
has caused the Debian Bug report #661789,
regarding grub-common: load_video required for linux on UEFI
to be marked as done.
This means that you claim that the problem has been de
Processing commands for cont...@bugs.debian.org:
> block 681227 by 696903
Bug #681227 [grub-installer] installation-reports: grub-install tries to
install to a nonsense string
681227 was not blocked by any bugs.
681227 was not blocking any bugs.
Added blocking bug(s) of 681227: 696903
>
End of me
Package: grub-installer
Version: 1.84
Severity: grave
Tags: d-i
User: debian-...@lists.debian.org
Usertags: kfreebsd
X-Debbugs-Cc: debian-...@lists.debian.org
Hi,
Wouter's workaround for bug #681227 now requires that GRUB's target is a
block device (and was amended to allow dummy targets as well)
Processing commands for cont...@bugs.debian.org:
> severity 696530 wishlist
Bug #696530 [menu-xdg] menu-xdg: Populates XDG user directory with system
entries
Severity set to 'wishlist' from 'critical'
> quit
Stopping processing here.
Please contact me if you need assistance.
--
696530: http://b
severity 696530 wishlist
quit
I am resetting the severity to wishlist because this behaviour is compliant
with the menu documentation, the Debian menu subpolicy, and the XDG menu
specification.
If you do not like the result, just do 'update-menus --remove' and move on.
On the other hand, it is n
Package: mosquitto
Version: 0.15-1
Severity: grave
Tags: upstream security
Justification: user security hole
When the acl_file option is in use to specify topic access control, if only
pattern access is used then all clients can obtain access regardless of the ACL
restrictions. This allows MQTT cl
Package: mosquitto
Version: 0.15-1
Severity: grave
Tags: upstream
Justification: causes non-serious data loss
Sending SIGHUP to the broker causes the configuration to be reloaded. If the
persistence_file or persistence_location options are used they are not reloaded
on SIGHUP and set to NULL. This
Package: mosquitto
Version: 0.15-1
Severity: grave
Tags: upstream
Justification: causes non-serious data loss
If a client connects to the broker with an incorrect protocol version (i.e. not
3) then the broker will crash. The cause is a double free(), so there is no
chance of a buffer overrun or si
Hi Martin,
Nope, that doesn't help.
spang@shawangunk:~> calibre
/usr/lib/calibre/calibre/ebooks/metadata/opf2.py:14: RuntimeWarning:
compiletime version 2.6 of module 'lxml.etree' does not match runtime version
2.7
from lxml import etree
Traceback (most recent call last):
File "/usr/bin/cal
Processing commands for cont...@bugs.debian.org:
> found 696878 2.30.3-1
Bug #696878 [empathy] Jitsi fails with Empathy on Debian
Marked as found in versions empathy/2.30.3-1.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
696878: http://bugs.debian.org/cgi-bin/b
Processing commands for cont...@bugs.debian.org:
> notfound 677721 libdcmtk2/3.6.0-11
Bug #677721 {Done: Mathieu Malaterre } [libdcmtk2] dcmtk:
Libraries are underlinked
The source libdcmtk2 and version 3.6.0-11 do not appear to match any binary
packages
No longer marked as found in versions lib
Processing commands for cont...@bugs.debian.org:
> found 696691 2.4.2-1
Bug #696691 {Done: Salvatore Bonaccorso } [src:freetype]
freetype: multiple vulnerabilities in freetype before 2.4.11
Marked as found in versions freetype/2.4.2-1.
> thanks
Stopping processing here.
Please contact me if you
Processing commands for cont...@bugs.debian.org:
> found 696691 2.4.9-1
Bug #696691 {Done: Salvatore Bonaccorso } [src:freetype]
freetype: multiple vulnerabilities in freetype before 2.4.11
Marked as found in versions freetype/2.4.9-1.
> thanks
Stopping processing here.
Please contact me if you
Your message dated Fri, 28 Dec 2012 21:17:31 +
with message-id
and subject line Bug#696691: fixed in freetype 2.4.9-1.1
has caused the Debian Bug report #696691,
regarding freetype: multiple vulnerabilities in freetype before 2.4.11
to be marked as done.
This means that you claim that the pro
Okay. Cameron released TTYtter 2.1.0 as of 27 December 2012 which
complies with Twitter API 1.1.[1] Twitter notes on their calendar that
the "drop dead" date for Twitter API 1.0 is 5 March 2013.[2] Cameron
notes that all previous versions of TTYtter will cease to work with
Twitter as of that dat
Processing commands for cont...@bugs.debian.org:
> tags 696691 + pending
Bug #696691 [src:freetype] freetype: multiple vulnerabilities in freetype
before 2.4.11
Added tag(s) pending.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
696691: http://bugs.debian.org/c
tags 696691 + pending
thanks
Hi Steve
I have uploaded the NMU (without delay) versioned as 2.4.9-1.1, as you
gave me the ACK on IRC. Attached the full debdiff for the upload!
Regards,
Salvatore
diff -u freetype-2.4.9/debian/changelog freetype-2.4.9/debian/changelog
--- freetype-2.4.9/debian/chan
Control: tags -1 pending
I've uploaded a NMU with the patch above to DELAYED/7.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Processing control commands:
> tags -1 pending
Bug #696483 [zendframework] zendframework: CVE-2012-5657
Added tag(s) pending.
--
696483: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696483
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To UNSUBSCRIBE, email to de
Processing control commands:
> tags -1 pending
Bug #696574 [src:owncloud] owncloud: multiple security issues
Added tag(s) pending.
--
696574: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696574
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To UNSUBSCRIBE, email
Control: tags -1 pending
I've uploaded a NMU with the patch above to DELAYED/7.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Processing control commands:
> severity -1 important
Bug #696872 [src:xosview] xosview: FTBFS: sys/io.h: ENOENT
Severity set to 'important' from 'serious'
> tags -1 + moreinfo unreproducible
Bug #696872 [src:xosview] xosview: FTBFS: sys/io.h: ENOENT
Added tag(s) unreproducible and moreinfo.
--
6
Control: severity -1 important
Control: tags -1 + moreinfo unreproducible
On Fri, 2012-12-28 at 15:26 +, Thorsten Glaser wrote:
> Source: xosview
> Version: 1.12-1
> Severity: serious
> Justification: fails to build from source (but built successfully in the past)
[...]
> your package fails to
On Fri, Dec 28, 2012 at 06:40:29PM +0100, Didier 'OdyX' Raboud wrote:
> Le jeudi, 27 décembre 2012 20.43:12, Moritz Mühlenhoff a écrit :
> > AFAICS can there haven't been any regressions, can we should go ahead with
> > the update now.
>
> EPARSE
I meant: No regressions in sid -> We can proceed w
This is what I get when DKMS tries to build the module for Linux v3.7.1 built
from the upstream "linux-stable" repo.
git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git
$ cat /var/lib/dkms/virtualbox/4.1.18/build/make.log
DKMS make.log for virtualbox-4.1.18 for kernel 3.7.1-c2
On Fri, Dec 28, 2012 at 05:03:25PM +0100, Pierre Chifflier wrote:
> >
> > Sorry for the late reply. This seems to have fallen through the cracks
> > and I'm currently catching up with old mail.
> >
> > I think this doesn't warrant a DSA, but could you fix this through
> > a stable point update?
>
Package: empathy
Version: 3.4.2.3-1+build1
Severity: serious
I've made this bug serious and release critical for the following reasons:
a) Empathy is the default chat client on Debian
b) Jitsi is one of the most popular open source chat clients
c) Jabber is the most popular open protocol for multi
Your message dated Fri, 28 Dec 2012 17:47:53 +
with message-id
and subject line Bug#661789: fixed in grub2 1.99-24
has caused the Debian Bug report #661789,
regarding grub-efi-amd64 - Does not load EFI console modules
to be marked as done.
This means that you claim that the problem has been d
Your message dated Fri, 28 Dec 2012 17:47:53 +
with message-id
and subject line Bug#661789: fixed in grub2 1.99-24
has caused the Debian Bug report #661789,
regarding grub-efi: cannot find normal; wrong prefix to grub2 (EFI)?
to be marked as done.
This means that you claim that the problem ha
Your message dated Fri, 28 Dec 2012 17:47:53 +
with message-id
and subject line Bug#661789: fixed in grub2 1.99-24
has caused the Debian Bug report #661789,
regarding grub-common: load_video required for linux on UEFI
to be marked as done.
This means that you claim that the problem has been d
Le jeudi, 27 décembre 2012 20.43:12, Moritz Mühlenhoff a écrit :
> AFAICS can there haven't been any regressions, can we should go ahead with
> the update now.
EPARSE
> Didier, can you upload to security-master, please?
The release targetted to Wheezy has just been reviewed in #695423, I'll uplo
Hello, comrades.
This error no longer appears. Perhaps a coincidence, but the error does not
appear after I installed the firmware-realtek (0.36).
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
>
> Sorry for the late reply. This seems to have fallen through the cracks
> and I'm currently catching up with old mail.
>
> I think this doesn't warrant a DSA, but could you fix this through
> a stable point update?
> http://www.debian.org/doc/manuals/developers-reference/pkgs.html#upload-stabl
Source: xosview
Version: 1.12-1
Severity: serious
Justification: fails to build from source (but built successfully in the past)
Hi,
your package fails to build, see the attached build log.
-- System Information:
Debian Release: 7.0
APT prefers unreleased
APT policy: (500, 'unreleased'), (50
Your message dated Fri, 28 Dec 2012 15:17:40 +
with message-id
and subject line Bug#649068: fixed in redhat-cluster 3.0.12-3.2+deb7u1
has caused the Debian Bug report #649068,
regarding rgmanager and resource-agents: error when trying to install together
to be marked as done.
This means that
Processing commands for cont...@bugs.debian.org:
> retitle 696859 xsmbrowser: Missing dependency on samba-common-bin
Bug #696859 [xsmbrowser] xsmbrowser depend on samba-common-bin
Changed Bug title to 'xsmbrowser: Missing dependency on samba-common-bin' from
'xsmbrowser depend on samba-common-bin
Hi,
$upload_queues = […];
must also be changed into
@upload_queues = (…);
otherwise one gets an error instead of an uploader:
Can't call method "get" on unblessed reference at
/usr/share/perl5/Buildd/Uploader.pm line 69.
bye,
//mirabilos
--
I want one of these. They cost 720 €
On Fri, Dec 28, 2012 at 01:52:29AM +0100, Moritz Muehlenhoff wrote:
> File "/usr/lib/python2.7/dist-packages/deluge/_libtorrent.py", line 59, in
>
> import libtorrent as lt
> ImportError: No module named libtorrent
>
> deluge-gtk needs a Depends on python-libtorrent. Installing it fixes it
Hi
On Fri, Dec 28, 2012 at 01:17:46AM +0900, Nobuhiro Ban wrote:
> Package: jenkins
> Version: 1.447.2+dfsg-2
> Severity: grave
> Tags: security
>
> Dear Maintainer,
>
> The upstream vendor announced a security advisory, that is rated high
> severity.
>
> See:
> https://wiki.jenkins-ci.org/di
Processing commands for cont...@bugs.debian.org:
> severity 696817 grave
Bug #696817 [dovecot-core] dovecot destroys user ssl configuration
Severity set to 'grave' from 'serious'
> kthxbye
Stopping processing here.
Please contact me if you need assistance.
--
696817: http://bugs.debian.org/cgi-b
Package: dovecot-core
Version: 1:2.1.7-6
Followup-For: Bug #696817
Control: tags -1 + patch
The breakage is even worse.
1. The code that causes the problem is intended to set the *new*
path to the certificates. Why the f*** does it print $OLD_SSL_CERT ??
2. NEVER EVER touch user confiuration!
Processing control commands:
> tags -1 + patch
Bug #696817 [dovecot-core] dovecot destroys user ssl configuration
Added tag(s) patch.
--
696817: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696817
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To UNSUBSCRIBE, ema
Package: libldns1
Version: 1.6.13-1~bpo60+1
Severity: grave
Justification: breaks other package(s)
After updating unbound, which is linked with libldns1, from the
version in squeeze-backports to the one in wheezy, the daemon
does not start:
Starting recursive DNS server: unbound
/usr/sbin/unboun
Package: xsmbrowser
Version: 3.4.0-16.1
Severity: grave
Without nmblookup I get follow error message:
couldn't execute "nmblookup": no such file or directory
couldn't execute "nmblookup": no such file or directory
while executing
"spawn nmblookup -d 1 -B [NameSubstitution $ip_num] [NameSubsti
Hello Christine,
Christine Spang [2012-12-27 12:55 -0800]:
> I get the following traceback when I try starting up a fresh install of
> calibre on my laptop running debian sid:
> /usr/lib/calibre/calibre/ebooks/metadata/opf2.py:14: RuntimeWarning:
> compiletime version 2.6 of module 'lxml.etree' d
Processing commands for cont...@bugs.debian.org:
> severity 696320 important
Bug #696320 [libstdc++6-4.4-dbg] Reading symbols from
/usr/lib/libstdc++.so.6...(no debugging symbols found)...done
Severity set to 'important' from 'grave'
> severity 696854 important
Bug #696854 [libstdc++6-4.7-dbg] Re
severity 696320 important
severity 696854 important
thanks
downgrading severity since there are workarounds (using LD_LIBRARY_PATH)
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Here is the output for libstdc++6-4.7-dbg: (debian sid):
$ gdb bla
(gdb) set verbose on
(gdb) r
Starting program: /tmp/bla
Reading symbols from /lib64/ld-linux-x86-64.so.2...(no debugging
symbols found)...done.
Loaded symbols for /lib64/ld-linux-x86-64.so.2
Reading symbols from system-supplied DSO
Processing commands for cont...@bugs.debian.org:
> clone 696320 -1
Bug #696320 [libstdc++6-4.4-dbg] Reading symbols from
/usr/lib/libstdc++.so.6...(no debugging symbols found)...done
Bug 696320 cloned as bug 696854
> reassign -1 libstdc++6-4.7-dbg
Bug #696854 [libstdc++6-4.4-dbg] Reading symbols
On Thu, Dec 20, 2012 at 9:31 PM, Andrey Rahmatullin wrote:
>
> /usr/lib/x86_64-linux-gnu/debug/libstdc++.so.6 instead of
> /usr/lib/debug/usr/lib/x86_64-linux-gnu/libstdc++.so.6 sounds wrong to me.
> Also, if it's indeed wrong then other versions of libstdc++ are affected
> too.
I am not clear wh
Hi
Looks I forgot to CC the original bugreport and Daniel Baumann.
Doing so now. Daniel, please see below.
Regards,
Salvatore
On Wed, Dec 26, 2012 at 04:59:18PM +0100, Salvatore Bonaccorso wrote:
> Package: release.debian.org
> Severity: normal
> User: release.debian@packages.debian.org
> U
64 matches
Mail list logo
