Processed: forcibly merging 700501 702502

Processing commands for cont...@bugs.debian.org: > forcemerge 700501 702502 Bug #700501 [tcllib] tcllib: fails to install - trying to overwrite /usr/share/man/man3/string.3tcl.gz and others Bug #704641 [tcllib] tcllib: memchan file conflicts Bug #702502 [tcllib] tcllib: conflict with tcl8.6-doc:

Processed: forcibly merging 700501 704641

Processing commands for cont...@bugs.debian.org: > forcemerge 700501 704641 Bug #700501 [tcllib] tcllib: fails to install - trying to overwrite /usr/share/man/man3/string.3tcl.gz and others Bug #704641 [tcllib] tcllib: memchan file conflicts Severity set to 'serious' from 'normal' Added indicatio

Bug#680484: closed by Andreas Tille (Bug#680484: fixed in scotch 5.1.12b.dfsg-2)

Hi Jonathan, I do not claim responsibility for the very simple patch which was actually done by Christophe Trophime but I could easily do the following: 1. Branch scotch 5.1.12b.dfsg-1.1 and apply Christophe's changes to fix the name clash issue 2. Upload 5.1.12b.dfsg-1.2 to testing-prop

Processed: #697662 krb5: Please update krb5 to new upstream release >=1.10.2

Processing commands for cont...@bugs.debian.org: > clone 697662 -1 Bug #697662 [krb5] krb5: Please update krb5 to new upstream release >=1.10.2 Bug 697662 cloned as bug 704647 > retitle -1 krb5: rdns=false does not work Bug #704647 [krb5] krb5: Please update krb5 to new upstream release >=1.10.2 C

Processed: found 702071 in poppler/0.18.4-5, notfound 702071 in 0.12.4-1

Processing commands for cont...@bugs.debian.org: > found 702071 poppler/0.18.4-5 Bug #702071 {Done: Pino Toscano } [poppler] CVE-2013-1788, CVE-2013-1789 and CVE-2013-1790 Marked as found in versions poppler/0.18.4-5. > notfound 702071 0.12.4-1 Bug #702071 {Done: Pino Toscano } [poppler] CVE-2013

Processed: Re: Bug#704613: cdebootstrap: signature verification bypass with manipulated InRelease file

Processing control commands: > reassign -1 gnupg Bug #704613 [cdebootstrap] cdebootstrap: signature verification bypass with manipulated InRelease file Bug reassigned from package 'cdebootstrap' to 'gnupg'. No longer marked as found in versions cdebootstrap/0.5.9. Ignoring request to alter fixed

Bug#704613: cdebootstrap: signature verification bypass with manipulated InRelease file

Control: reassign -1 gnupg Control: forcemerge -1 704645 Control: severity -1 critical On Thu, Apr 04, 2013 at 12:24:26AM +0200, Bastian Blank wrote: > On Wed, Apr 03, 2013 at 04:58:05PM +0200, Ansgar Burchardt wrote: > > So one can prepend a InRelease file looking like > > > > -BEGIN PGP

Bug#680484: closed by Andreas Tille (Bug#680484: fixed in scotch 5.1.12b.dfsg-2)

Hi Andreas, On Tue, Jul 17, 2012 at 09:21:06AM +, Debian Bug Tracking System wrote: > This is an automatic notification regarding your Bug report > which was filed against the gmap,scotch package: > > #680484: gmap and scotch: error when trying to install together > > It has been closed by A

Processed: Re: Bug#704613: cdebootstrap: signature verification bypass with manipulated InRelease file

Processing control commands: > clone -1 -2 Bug #704613 [cdebootstrap] cdebootstrap: signature verification bypass with manipulated InRelease file Bug 704613 cloned as bug 704645 > reassign -2 gnupg Bug #704645 [cdebootstrap] cdebootstrap: signature verification bypass with manipulated InRelease

Bug#704613: cdebootstrap: signature verification bypass with manipulated InRelease file

Control: clone -1 -2 Control: reassign -2 gnupg On Wed, Apr 03, 2013 at 04:58:05PM +0200, Ansgar Burchardt wrote: > So one can prepend a InRelease file looking like > > -BEGIN PGP SIGNED MESSAGE- NOT > Hash: SHA1 > > > > -BEGIN PGP SIGNATURE- NOT > This is a bug in gn

Bug#704267: libdr-tarantool-perl: FTBFS: test failure: t/050-async-client.t

On Wed, Apr 03, 2013 at 12:38:09AM +0200, Axel Beckert wrote: > Hi again, > > Dominic Hargreaves wrote: > > On Sun, Mar 31, 2013 at 04:00:24PM +0600, Andrey Rahmatullin wrote: > > > On Sat, Mar 30, 2013 at 05:37:27PM +, Dominic Hargreaves wrote: > > > > In a clean wheezy chroot: > > > > > > >

Bug#699852: marked as done (syncevolution-http: sync from nokia e51 to syncevo-http-server not possible "invalid server" "[ERROR] twisted: Unhandled Error")

Your message dated Wed, 03 Apr 2013 19:49:45 + with message-id and subject line Bug#699852: fixed in syncevolution 1.2.99.1-1.1 has caused the Debian Bug report #699852, regarding syncevolution-http: sync from nokia e51 to syncevo-http-server not possible "invalid server" "[ERROR] twisted: Un

Bug#704561: marked as done (libwsutil-dev: fails to upgrade from squeeze - trying to overwrite /usr/include/wireshark/wsutil/file_util.h)

Your message dated Wed, 03 Apr 2013 19:33:12 + with message-id and subject line Bug#704561: fixed in wireshark 1.8.2-5wheezy2 has caused the Debian Bug report #704561, regarding libwsutil-dev: fails to upgrade from squeeze - trying to overwrite /usr/include/wireshark/wsutil/file_util.h to be

Processed: Re: Bug#701884: kfreebsd: unknown method 'inet6 auto'

Processing commands for cont...@bugs.debian.org: > # oops > severity 701884 serious Bug #701884 {Done: Andrew Shadura } [ifupdown,netcfg] kfreebsd: unknown method 'inet6 auto' Severity set to 'serious' from 'important' > End of message, stopping processing here. Please contact me if you need ass

Processed: tagging 704597

Processing commands for cont...@bugs.debian.org: > # oops > tags 704597 - experimental Bug #704597 [calligra-data] calligra-data: fails to upgrade from 'sid' - trying to overwrite /usr/share/kde4/services/kexidb_sqlite3driver.desktop Removed tag(s) experimental. > thanks Stopping processing here.

Processed: tagging 704597

Processing commands for cont...@bugs.debian.org: > tags 704597 + experimental Bug #704597 [calligra-data] calligra-data: fails to upgrade from 'sid' - trying to overwrite /usr/share/kde4/services/kexidb_sqlite3driver.desktop Added tag(s) experimental. > thanks Stopping processing here. Please co

Processed: tagging 704620

Processing commands for cont...@bugs.debian.org: > tags 704620 + experimental Bug #704620 [gliv] gliv fails to start after upgrade libpango1.0-0 Added tag(s) experimental. > thanks Stopping processing here. Please contact me if you need assistance. -- 704620: http://bugs.debian.org/cgi-bin/bugre

Bug#704625: modsecurity-apache: CVE-2013-1915: Vulnerable to XXE attacks

Package: modsecurity-apache Severity: grave Tags: security upstream Hi, the following vulnerability was published for modsecurity-apache. CVE-2013-1915[0]: Vulnerable to XXE attacks Patches where added upstream for 2.7.3[1,2] but might need some adjustments for current versions in Debian. If y

Bug#704558: monobristol: does not start at all

On Wed, Apr 03, 2013 at 11:41:37PM +0600, Andrey Rahmatullin wrote: > On Wed, Apr 03, 2013 at 12:29:56AM +0200, Christian Weikusat wrote: > > after installation monobristol does not start but gives the error > > > > "Cannot open assembly '@expanded_libdir@/monobristol/monoBristol.exe':File > > no

Bug#695224: Locale::Maketext versioning in perl package

On Sun, 31 Mar 2013 17:46:12 +0100, Dominic Hargreaves wrote: > I've attached a diff which implements the change in question. I haven't > carried out extensive testing yet, but the package builds fine. The same > change is in the dom/locale-maketext-version branch of the git repository > at

Bug#368297: About the libgcrypt and OpenLDAP issue

On 03/04/13 10:43 AM, Carlos Alberto Lopez Perez wrote: Furthermore libgcrypt upstream seems to be ok with this change, isn't it? [3] Thanks for finding this upstream thread Carlos! And for your work earlier where you spotted the 2005 upstream commit. [3] http://thread.gmane.org/gmane.comp.

Bug#699795: marked as done (libtasn1-6-dbg and libtasn1-3-dbg: error when trying to install together)

Your message dated Wed, 03 Apr 2013 18:03:07 + with message-id and subject line Bug#699795: fixed in libtasn1-6 3.3-1 has caused the Debian Bug report #699795, regarding libtasn1-6-dbg and libtasn1-3-dbg: error when trying to install together to be marked as done. This means that you claim t

Bug#704558: monobristol: does not start at all

On Wed, Apr 03, 2013 at 12:29:56AM +0200, Christian Weikusat wrote: > after installation monobristol does not start but gives the error > > "Cannot open assembly '@expanded_libdir@/monobristol/monoBristol.exe':File > not found" From the 0.60.3-2 changelog: [56aee4e] Use dh-autoreconf rather than

Bug#368297: About the libgcrypt and OpenLDAP issue

On 03/04/13 16:09, Jack Bates wrote: > Hi, here is a blog post about this issue: > > http://jdbates.blogspot.ca/2013/04/its-crazy-how-much-time-and-effort-one.html > Really very interesting stuff. Thanks for sharing Now I'm convinced that the right fix for this is to revert upstream d769529a71

Bug#704620: gliv fails to start after upgrade libpango1.0-0

Package: gliv Version: 1.9.7-2 Severity: Serious Hello, comrades. After upgrade "libpango1.0-0" to experimental (1.32.5-3) Gliv fails to start. $ gliv gliv: error while loading shared libraries: libpangox-1.0.so.0: cannot open shared object file: No such file or directory Reason: file libpangox

Bug#704562: marked as done (live-config-doc: fails to upgrade from squeeze - trying to overwrite /usr/share/man/de/man7/live-config.7.gz)

Your message dated Wed, 03 Apr 2013 16:02:44 + with message-id and subject line Bug#704562: fixed in live-config 3.0.22-1 has caused the Debian Bug report #704562, regarding live-config-doc: fails to upgrade from squeeze - trying to overwrite /usr/share/man/de/man7/live-config.7.gz to be mark

Bug#674447: Need some help for haproxy 1.4.15

Hi, I attach a patch (adapt from [1]) and build passed. [1] http://haproxy.1wt.eu/git?p=haproxy-1.4.git;a=commit;h=30297cb17147a8d339eb160226bcc08c91d9530b Regrads, -- Prach Pongpanich fix-CVE-2012-2942.patch Description: Binary data

Bug#704257: empathy / LTSP problems?

On 03/04/13 16:50, Sébastien Ducoulombier wrote: > We do not yet have access to an LTSP server running Wheezy. > But I could run a test on a Wheezy server through X2Go > (X2Go is another X thin client solution). > > Bad news : neither Empathy nor Emerillon work on Wheezy through X2Go. Thanks f

Bug#704613: cdebootstrap: signature verification bypass with manipulated InRelease file

Package: cdebootstrap Version: 0.5.9 Severity: grave Tags: security Usertags: gpg-clearsign cdebootstrap can be tricked into unsigned data from an InRelease file. This makes the verification of the gpg signature useless. The particular bug here is in libdebian-installer (0.85)'s parser. It treats

Bug#368297: Blog post about Libgcrypt issue

Hi, here is a blog post about this issue: http://jdbates.blogspot.ca/2013/04/its-crazy-how-much-time-and-effort-one.html -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#704537: marked as done (librole-commons-perl and libauthority-shared-perl: error when trying to install together)

Your message dated Wed, 03 Apr 2013 14:05:52 +0200 with message-id <20130403120552.8261.10...@bastian.jones.dk> and subject line Fixed with librole-commons-perl 0.101-2 has caused the Debian Bug report #704537, regarding librole-commons-perl and libauthority-shared-perl: error when trying to insta

Bug#704486: marked as done (librole-commons-perl: trying to overwrite '/usr/share/perl5/Object/AUTHORITY.pm', which is also in package libobject-authority-perl 0.004-1)

Your message dated Wed, 03 Apr 2013 14:05:52 +0200 with message-id <20130403120552.8261.10...@bastian.jones.dk> and subject line Fixed with librole-commons-perl 0.101-2 has caused the Debian Bug report #704486, regarding librole-commons-perl: trying to overwrite '/usr/share/perl5/Object/AUTHORITY.

Processed: Re: Bug#704517: Fails to build with experimental gobject-introspection

Processing commands for cont...@bugs.debian.org: > severity 704517 important Bug #704517 [liblangtag] Fails to build with experimental gobject-introspection Severity set to 'important' from 'serious' > thanks Stopping processing here. Please contact me if you need assistance. -- 704517: http://b

Bug#704517: Fails to build with experimental gobject-introspection

severity 704517 important thanks On Tue, Apr 02, 2013 at 11:39:45AM +0200, Sjoerd Simons wrote: > Package: liblangtag > Version: 0.4.0-5 > Severity: serious > Tags: patch > Justification: fails to build from source (but built successfully in the past) Sorry, no. Even though the lib only is in exp

Processed: found 704561 in 1.8.6-2

Processing commands for cont...@bugs.debian.org: > found 704561 1.8.6-2 Bug #704561 {Done: Balint Reczey } [libwsutil-dev] libwsutil-dev: fails to upgrade from squeeze - trying to overwrite /usr/include/wireshark/wsutil/file_util.h Marked as found in versions wireshark/1.8.6-2. > thanks Stopping

Bug#704597: calligra-data: fails to upgrade from 'sid' - trying to overwrite /usr/share/kde4/services/kexidb_sqlite3driver.desktop

Package: calligra-data Version: 1:2.6.1-1 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Control: affects -1 + kexi Hi, during a test with piuparts I noticed your package fails to upgrade from 'sid' to 'experimental'. It installed fine in 'sid', then the upgrade to 'experim

Processed: calligra-data: fails to upgrade from 'sid' - trying to overwrite /usr/share/kde4/services/kexidb_sqlite3driver.desktop

Processing control commands: > affects -1 + kexi Bug #704597 [calligra-data] calligra-data: fails to upgrade from 'sid' - trying to overwrite /usr/share/kde4/services/kexidb_sqlite3driver.desktop Added indication that 704597 affects kexi -- 704597: http://bugs.debian.org/cgi-bin/bugreport.cgi?b

Bug#674447: Need some help for haproxy 1.4.15

On Wed, Apr 03, 2013 at 05:08:22PM +0700, Prach Pongpanich wrote: > Hi, > > CC:674...@bugs.debian.org > > Thanks for your quick response. > > > Why would you insist on patching a version as old as 1.4.15 ? > For the next Debain stable release. > > http://bugs.debian.org/cgi-bin/bugreport.cgi?bu

Bug#704596: debian-edu-install: modified and leftover files after upgrade from testing to sid and package purge

Package: debian-edu-install Version: 1.705 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package creates and modifies configuration files: 1m44.7s INFO: Warning: Package purging left files on system: /etc/debian-edu/

Processed: python3-pyinotify: incompatible with python3.3 in experimental

Processing control commands: > affects -1 + shatag Bug #704593 [python3-pyinotify] python3-pyinotify: incompatible with python3.3 in experimental Added indication that 704593 affects shatag -- 704593: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=704593 Debian Bug Tracking System Contact ow.

Bug#704593: python3-pyinotify: incompatible with python3.3 in experimental

Package: python3-pyinotify Version: 0.9.3-1.1 Severity: serious Tags: experimental User: debian...@lists.debian.org Usertags: piuparts Control: affects -1 + shatag Hi, during a test with piuparts I noticed your package failed to install. >From the attached log (scroll to the bottom...): Setti

Bug#674447: Need some help for haproxy 1.4.15

Hi, CC:674...@bugs.debian.org Thanks for your quick response. > Why would you insist on patching a version as old as 1.4.15 ? For the next Debain stable release. http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=674447 On Wed, Apr 3, 2013 at 3:09 PM, Willy Tarreau wrote: > Hi, > > I'm not sur

Bug#674447: CVE-2012-2942

Hi Luk On Wed, Apr 03, 2013 at 08:14:50AM +0200, Luk Claes wrote: > I must have thought that the patch could not be applied as I can see > that I have looked at the path to see if I could NMU. Thanks for the quick reply. I will try to have second look at it too. If this is correct (needs checkin

Bug#704561: marked as done (libwsutil-dev: fails to upgrade from squeeze - trying to overwrite /usr/include/wireshark/wsutil/file_util.h)

Your message dated Wed, 03 Apr 2013 08:49:30 + with message-id and subject line Bug#704561: fixed in wireshark 1.8.6-3 has caused the Debian Bug report #704561, regarding libwsutil-dev: fails to upgrade from squeeze - trying to overwrite /usr/include/wireshark/wsutil/file_util.h to be marked

Bug#704582: gir1.2-socialweb-client-0.25: fails to upgrade from 'testing' - trying to overwrite /usr/lib/girepository-1.0/SocialWebClient-0.25.typelib

Package: gir1.2-socialweb-client-0.25 Version: 0.25.20-3.2 Severity: serious User: debian...@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package fails to upgrade from 'testing'. It installed fine in 'testing', then the upgrade to 'sid' fails because it tries