Processing commands for cont...@bugs.debian.org:
> close 882372 3.1.0-1
Bug #882372 [ohcount] ohcount: CVE-2017-16926: Command injection through file
names
Marked as fixed in versions ohcount/3.1.0-1.
Bug #882372 [ohcount] ohcount: CVE-2017-16926: Command injection through file
names
Marked Bug
close 882372 3.1.0-1
thanks
Adam Borowski writes:
>> Yeah. Since you mentioned its random can we reduce the severity of the
>> bug?.
>
> Bad idea, as it fails a lot: on my armhf box, 17/20 times, on my amd64, 6/12
> times.
>
> Turn out, the problem is not that sometimes it fails. The wrongness it that
> it doesn't fail whe
Andreas,
I see that you pushed a commit to Build-Depend on libvte-2.91-dev. But
vte2.91 is gtk3 only so this bug is also a request to port rasmol to
gtk3.
Thanks,
Jeremy Bicha
On Sun, Jan 14, 2018 at 06:45:08PM +, Debian Bug Tracking System wrote:
> Processing commands for cont...@bugs.debian.org:
>
> > severity 886768 serious
Could you say a bit more about why you feel that all binary packages
from src:openafs should be subject to autoremoval when only the
functio
clone 885556 -1
reassign -1 src:liburcu 0.10.0-2
retitle -1 please provide a udeb
severity -1 important
block 885556 by -1
thanks
Hi,
Cyril Brulebois (2017-12-28):
> [Please keep debian-boot@ in copy of your replies.]
>
> Hi,
>
> Your udeb package depends on a non-udeb package (liburcu6), mak
Processing commands for cont...@bugs.debian.org:
> clone 885556 -1
Bug #885556 [multipath-udeb] multipath-udeb: depends on a non-udeb package:
liburcu6
Bug 885556 cloned as bug 887339
> reassign -1 src:liburcu 0.10.0-2
Bug #887339 [multipath-udeb] multipath-udeb: depends on a non-udeb package:
l
Package: i2pd
Version: 2.17.0-2
Severity: serious
Tags: upstream
Justification: fails to build from source (but built successfully in the past)
User: debian-h...@lists.debian.org
Usertags: hurd-i386
Thanks for addressing #886377! Builds for hurd-i386 now do somewhat
better, but still fail with er
Your message dated Mon, 15 Jan 2018 01:49:46 +
with message-id
and subject line Bug#856094: fixed in xpuzzles 7.7.1-1.1
has caused the Debian Bug report #856094,
regarding xpuzzles: Please drop the (build-)dependency against esound
to be marked as done.
This means that you claim that the prob
Your message dated Mon, 15 Jan 2018 01:49:31 +
with message-id
and subject line Bug#856098: fixed in gnuboy 1.0.3-7.1
has caused the Debian Bug report #856098,
regarding gnuboy: Please drop the (build-)dependency against esound
to be marked as done.
This means that you claim that the problem
Your message dated Mon, 15 Jan 2018 01:49:27 +
with message-id
and subject line Bug#882733: fixed in freelan 2.0-5.1
has caused the Debian Bug report #882733,
regarding freelan FTBFS with glibc 2.25
to be marked as done.
This means that you claim that the problem has been dealt with.
If this
Your message dated Mon, 15 Jan 2018 01:49:15 +
with message-id
and subject line Bug#856075: fixed in basilisk2 0.9.20120331-4.1
has caused the Debian Bug report #856075,
regarding basilisk2: Please drop the (build-)dependency against esound
to be marked as done.
This means that you claim that
Processing commands for cont...@bugs.debian.org:
> retitle 887330 civicrm: Multiple XSS vulnerabilities were found in CiviCRM
> <4.7.26
Bug #887330 [src:civicrm] civicrm: Multiple XSS vulnerabilities were found in
CiviCRM ≤4.7.26
Changed Bug title to 'civicrm: Multiple XSS vulnerabilities were f
Source: civicrm
Version: 4.7.24+dfsg-1
Severity: serious
Tags: security
Justification: security issues
(Since CiviCRM isn't in Jessie nor in Stretch I guess the Security Team
can ignore this.)
4.7.26, released on Nov. 1, fixes multiple security issues, with risks
upstream classified up to “critic
Hi,
Cyril Brulebois (2018-01-12):
> Your package is no longer installable (along with its rev-dep
> partman-btrfs) because it now depends on libzstd1, which isn't
> a udeb.
It seems zstd is only an option for btrfs-progs, and I've just confirmed
that setting --disable-zstd on the dh_auto_configu
Your message dated Mon, 15 Jan 2018 00:05:44 +
with message-id
and subject line Bug#886474: fixed in linux 4.14.13-1
has caused the Debian Bug report #886474,
regarding virtualbox-dkms now requires package libelf-dev to work
to be marked as done.
This means that you claim that the problem has
Your message dated Mon, 15 Jan 2018 00:05:44 +
with message-id
and subject line Bug#886474: fixed in linux 4.14.13-1
has caused the Debian Bug report #886474,
regarding wireguard-dkms should depend on libelf-dev
to be marked as done.
This means that you claim that the problem has been dealt w
Your message dated Mon, 15 Jan 2018 00:05:44 +
with message-id
and subject line Bug#886474: fixed in linux 4.14.13-1
has caused the Debian Bug report #886474,
regarding linux-headers-4.14.0-3-amd64: missing dependency on libelf-dev
to be marked as done.
This means that you claim that the prob
Your message dated Mon, 15 Jan 2018 00:05:44 +
with message-id
and subject line Bug#886474: fixed in linux 4.14.13-1
has caused the Debian Bug report #886474,
regarding Cannot generate ORC metadata for CONFIG_UNWINDER_ORC=y, please
install libelf-dev, libelf-devel or elfutils-libelf-devel
to
Your message dated Mon, 15 Jan 2018 00:05:44 +
with message-id
and subject line Bug#886474: fixed in linux 4.14.13-1
has caused the Debian Bug report #886474,
regarding virtualbox-dkms: missing dependency libelf-dev
to be marked as done.
This means that you claim that the problem has been dea
> Running testGetLinkInfoDirectory
> Exception in thread "main" java.lang.AssertionError: expected:<2> but was:<1>
This is caused by an assumption that link count of a directory without any
hardlinks is 2 (or more general, 2 plus number of subdirectories). This is
true on 70's sysvfs and descenda
Followup-For: Bug #867452
stretch-pu request: https://bugs.debian.org/887325
Andreas
On Tue, Jan 09, 2018 at 10:42:19PM +0530, Vasudev Kamath wrote:
> Control: tag -1 +moreinfo +unreproducible
>
> Adam Borowski writes:
>
> > Source: ctpp2
> > Version: 2.8.3-23
> > Severity: serious
> > Justification: fails to build from source (but built successfully in the
> > past)
> >
> > Hi
Followup-For: Bug #867429
stretch-pu request: https://bugs.debian.org/887324
Andreas
Source: dewalls
Version: 1.0.0+ds1-4
Severity: serious
https://buildd.debian.org/status/fetch.php?pkg=dewalls&arch=i386&ver=1.0.0%2Bds1-4&stamp=1515130383&raw=0
...
~~~
dewalls-test is a Catch v1.10.0 host application.
Ru
Followup-For: Bug #867455
stretch-pu request: https://bugs.debian.org/887322
Andreas
Followup-For: Bug #867451
stretch-pu request: https://bugs.debian.org/887321
Andreas
Processing commands for cont...@bugs.debian.org:
> tag 886922 pending
Bug #886922 {Done: Mike Gabriel }
[arctica-greeter-theme-debian] arctica-greeter-theme-debian: fails to purge:
arctica-greeter-theme-debian.postrm: glib-compile-schemas: not found
Added tag(s) pending.
> thanks
Stopping proces
tag 886922 pending
thanks
Hello,
Bug #886922 reported by you has been fixed in the Git repository. You can
see the changelog below, and you can check the diff of the fix at:
https://anonscm.debian.org/cgit/pkg-remote/arctica-greeter.git/commit/?id=918c251
---
commit 918c25126a9adbd6f447a8d
Your message dated Sun, 14 Jan 2018 21:49:23 +
with message-id
and subject line Bug#886922: fixed in arctica-greeter 0.99.0.2-2
has caused the Debian Bug report #886922,
regarding arctica-greeter-theme-debian: fails to purge:
arctica-greeter-theme-debian.postrm: glib-compile-schemas: not foun
Your message dated Sun, 14 Jan 2018 21:49:40 +
with message-id
and subject line Bug#876388: fixed in discover 2.1.2-8
has caused the Debian Bug report #876388,
regarding discover: segfaults
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not th
Hi Tobias,
Debian Bug Tracking System (2018-01-14):
> Processing commands for cont...@bugs.debian.org:
>
> > retitle 876388 discover: segfaults
> Bug #876388 [discover] (no subject)
> Set Bug title to 'discover: segfaults'.
> > severity 876388 grave
> Bug #876388 [discover] discover: segfaults
>
Source: ntopng
Version: 3.2+dfsg1-1
Severity: serious
https://buildd.debian.org/status/fetch.php?pkg=ntopng&arch=ppc64el&ver=3.2%2Bdfsg1-1&stamp=1514653837&raw=0
...
Building LuaJIT 2.1.0-beta3
make -C src
make[4]: Entering directory
'/<>/ntopng-3.2+dfsg1/third-party/LuaJIT-2.1.0-beta3
> /<>/libi2pd/Crypto.cpp: In member function 'virtual void
> i2p::crypto::ECBEncryptionAESNI::Encrypt(const i2p::crypto::ChipherBlock*,
> i2p::crypto::ChipherBlock*)':
> /<>/libi2pd/Crypto.cpp:611:4: error: unknown register name
> '%xmm0' in 'asm'
>);
The issue here is helper functions that
Source: aisleriot
Version: 1:3.22.4-2
Severity: serious
https://buildd.debian.org/status/fetch.php?pkg=aisleriot&arch=all&ver=1%3A3.22.4-2&stamp=1513910927&raw=0
...
debian/rules override_dh_missing
make[1]: Entering directory '/<>'
dh_missing --fail-missing
dh_missing: etc/gconf/schemas/aisle
Processing control commands:
> reassign -1 src:fotoxx 18.01.1-1
Bug #886704 [fotoxx] fotoxx: unsatisfiable dep on fotoxx-common
Bug reassigned from package 'fotoxx' to 'src:fotoxx'.
No longer marked as found in versions fotoxx/18.01.1-1.
Ignoring request to alter fixed versions of bug #886704 to t
Control: reassign -1 src:fotoxx 18.01.1-1
Control: affects -1 fotoxx
Control: retitle -1 fotoxx: binary-all FTBFS
On Tue, Jan 09, 2018 at 12:34:00PM +0900, Norbert Preining wrote:
> Package: fotoxx
> Version: 18.01.1-1
> Severity: grave
> Justification: renders package unusable
>
> It seems fotox
Source: haskell-tldr
Version: 0.2.3-2
Severity: serious
https://buildd.debian.org/status/package.php?p=haskell-tldr&suite=sid
...
Running dh_haskell_provides -plibghc-tldr-prof
Running dh_haskell_depends -plibghc-tldr-prof
dh_haskell_blurbs "ghc" -plibghc-tldr-prof
Adding cdbs dependencies to deb
Source: libgc
Version: 1:7.4.2-8.1
Severity: serious
https://buildd.debian.org/status/fetch.php?pkg=libgc&arch=armel&ver=1%3A7.4.2-8.1&stamp=1515764936&raw=0
...
dh_makeshlibs -a
dh_makeshlibs: Compatibility levels before 9 are deprecated (level 7 in use)
dpkg-gensymbols: warning: some symbols
Followup-For: Bug #867444
stretch-pu request: https://bugs.debian.org/887313
Andreas
Your message dated Sun, 14 Jan 2018 20:52:30 +
with message-id
and subject line Bug#887235: fixed in kmymoney 4.8.1.1-2
has caused the Debian Bug report #887235,
regarding kmymoney FTBFS on armhf/armel: error: no match for call to
to be marked as done.
This means that you claim that the probl
Followup-For: Bug #868075
Hi,
stretch-pu request: https://bugs.debian.org/887311
Andreas
Processing control commands:
> severity -1 serious
Bug #865172 [src:basilisk2] basilisk2 FTBFS on s390x: error:
'SIGSEGV_FAULT_HANDLER_ARGLIST' was not declared in this scope
Severity set to 'serious' from 'important'
> retitle -1 FTBFS on armhf, s390x: error: 'SIGSEGV_FAULT_HANDLER_ARGLIST' was
Source: obs-build
Version: 20170201-1
Severity: grave
Tags: security upstream
Forwarded: https://bugzilla.novell.com/show_bug.cgi?id=1069904
Hi,
the following vulnerability was published for obs-build.
I noticed the SUSE entry while checking for another issue for osc, and
note I'm completely unf
Source: ugene
Version: 1.25.0+dfsg-1
Severity: serious
Tags: sid buster
Justification: fails to build from source
Hi,
ugene recently started to FTBFS in sid:
g++ -c -pipe -g -O2 -fdebug-prefix-map=/build/ugene-1.25.0+dfsg=.
-fstack-protector-strong -Wformat -Werror=format-security -g -O2
-fdeb
Processing commands for cont...@bugs.debian.org:
> tags 887235 + pending
Bug #887235 [src:kmymoney] kmymoney FTBFS on armhf/armel: error: no match for
call to
Added tag(s) pending.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
887235: https://bugs.debian.org/cg
Source: i2pd
Version: 2.17.0-2
Severity: serious
https://buildd.debian.org/status/fetch.php?pkg=i2pd&arch=i386&ver=2.17.0-2&stamp=1515675501&raw=0
...
/<>/libi2pd/Crypto.cpp: In member function 'virtual void
i2p::crypto::ECBEncryptionAESNI::Encrypt(const i2p::crypto::ChipherBlock*,
i2p::crypto:
Source: kmymoney
Version: 4.8.1.1-1
Severity: serious
https://buildd.debian.org/status/package.php?p=kmymoney&suite=sid
...
/usr/include/qt4/QtCore/qmap.h:178:16: warning: cast from 'char*' to
'QMap::Node* {aka QMapNode*}' increases required alignment of target type
[-Wcast-align]
/<>/libkdchar
No replies from the maintainer(s). I think, I should go ahead and do a NMU.
Thanks
--
Abhijith
Processing commands for cont...@bugs.debian.org:
> severity 886768 serious
Bug #886768 [src:openafs] meltdown/spectre kernel (old)stable-security kernel
breaks openafs module
Bug #886719 [src:openafs] meltdown/spectre kernel (old)stable-security kernel
breaks openafs module
Bug #886799 [src:open
Processing commands for cont...@bugs.debian.org:
> reassign 885469 python-slip 0.6.5-1
Bug #885469 [src:python-slip-gtk] python-slip-gtk: Depends on unmaintained pygtk
Warning: Unknown package 'src:python-slip-gtk'
Bug reassigned from package 'src:python-slip-gtk' to 'python-slip'.
No longer marke
Hello.
Why isn't this vulnerability have CVE id ?. The security-tracker[1]
shows a temporary id.
--
Abhijith
Your message dated Sun, 14 Jan 2018 17:50:16 +
with message-id
and subject line Bug#844303: fixed in ncrack 0.6-1
has caused the Debian Bug report #844303,
regarding ncrack should switch to OpenSSL >= 1.1 at some point
to be marked as done.
This means that you claim that the problem has been
Processing commands for cont...@bugs.debian.org:
> tags 868190 fixed-upstream
Bug #868190 [gatling] gatling: -u is silently ignored if is a
username rather than a numeric user id
Added tag(s) fixed-upstream.
> thank
Stopping processing here.
Please contact me if you need assistance.
--
868190
tag 844303 pending
thanks
Hello,
Bug #844303 reported by you has been fixed in the Git repository. You can
see the changelog below, and you can check the diff of the fix at:
https://anonscm.debian.org/cgit/pkg-security/ncrack.git/commit/?id=e516817
---
commit e51681778cbee13f7a19f08dcca3373
Processing commands for cont...@bugs.debian.org:
> tag 844303 pending
Bug #844303 [src:ncrack] ncrack should switch to OpenSSL >= 1.1 at some point
Added tag(s) pending.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
844303: https://bugs.debian.org/cgi-bin/bugrep
Source: llvm-toolchain-3.8
Severity: serious
We don't want llvm 3.8 in buster. I'm removing it from testing now,
and this bug should prevent it from re-entering testing.
Emilio
Followup-For: Bug #867403
stretch-pu request: https://bugs.debian.org/887160
Andreas
Hi Adrian,
Вс 14 янв 2018 @ 16:06 Adrian Bunk :
> *** 10 tests failed ***
> Makefile:418: recipe for target 'check' failed
> make[2]: *** [check] Error 1
thanks for your report!
The problem is already known and forwarded upstream. Upstream also faced
the same problem in their Ubuntu's PPAs.
Reg
Followup-For: Bug #867435
stretch-pu request: https://bugs.debian.org/887157
Andreas
Processing commands for cont...@bugs.debian.org:
> tags 887155 + upstream confirmed sid
Bug #887155 [src:swi-prolog] swi-prolog FTBFS on armel/armhf/mipsel: Not enough
resources: no_memory
Added tag(s) sid, confirmed, and upstream.
> thanks
Stopping processing here.
Please contact me if you need
Source: swi-prolog
Version: 7.6.4+dfsg-1
Severity: serious
https://buildd.debian.org/status/package.php?p=swi-prolog&suite=sid
...
Running scripts from thread
Script
/<>/swi-prolog-7.6.4+dfsg/src/Tests/thread/test_gc_thread_startup.pl
failed: Not
Followup-For: Bug #867404
stretch-pu request: https://bugs.debian.org/882815
Andreas
Followup-For: Bug #867396
stretch-pu request: https://bugs.debian.org/882821
Andreas
Followup-For: Bug #867428
> stretch-pu request, confirmed: https://bugs.debian.org/867428
no, this is the stretch-pu request:
https://bugs.debian.org/884452
Andreas
Followup-For: Bug #867428
Control: tag -1 pending
stretch-pu request, confirmed: https://bugs.debian.org/867428
Andreas
Processing control commands:
> tag -1 pending
Bug #867428 {Done: Hilko Bengen } [python3-evtx]
python3-evtx: missing dependencies
Added tag(s) pending.
--
867428: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867428
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
Package: sysstat
Version: 11.6.1-1
Severity: serious
Justification: global environment variable only used by "sar"
Hi,
according to Debian Policy section "Environment variables", programs
"must not depend on custom environment variable settings to get
reasonable defaults".
I believe S_COLORS=aut
Followup-For: Bug #867421
stretch-pu request: https://bugs.debian.org/887148
Andreas
Package: ruby-eventmachine
Severity: serious
Justification: MIA request
Dear Ruby-Extras Team,
During housekeeping work for the MIA team I came accross this package.
It made me wonder whether it still maintained by the team, as there is
an unreplied-to (RC) bug since more than 1/2 year and there
Your message dated Sun, 14 Jan 2018 13:19:53 +
with message-id
and subject line Bug#884305: fixed in rsyslog 8.32.0-1
has caused the Debian Bug report #884305,
regarding valgrind related tests fail on all architectures besides amd64/s390x
to be marked as done.
This means that you claim that t
Followup-For: Bug #867431
I tried fixing this for jessie, too, but ${python3:Depends} contains a
spurious 'flake8' which does not exist on jessie.
(Also note that there is no pyflakes3 on jessie but pyflakes contains
the python3 bits, too.)
Andreas
Source: libjogl2-java
Version: 2.3.2+dfsg-7
Severity: serious
https://buildd.debian.org/status/package.php?p=libjogl2-java&suite=sid
...
[javac] Files to be compiled:
[javac]
/<>/libjogl2-java-2.3.2+dfsg/src/jogl/classes/com/jogamp/audio/windows/waveout/Audio.java
[javac]
/<
lesystem
/dev/sda5 3534600192 3535577087 976896 477M Linux filesystem
/dev/sda6 3535577088 3907028991 371451904 177,1G Linux filesystem
==
Installer lsb-release:
==
DISTRIB_ID=Debian
DISTRIB_DESCRIPTION
Source: manpages-pt
Severity: serious
Justification: MIA-Team request
While doing housekeeping for the MIA team, I came accross this pacakge.
With the last upload in 2009 and several bugs pending, I wonder if this pacakge
is still maintained.
If the package is still maintained, please just close
Processing commands for cont...@bugs.debian.org:
> retitle 876388 discover: segfaults
Bug #876388 [discover] (no subject)
Set Bug title to 'discover: segfaults'.
> severity 876388 grave
Bug #876388 [discover] discover: segfaults
Severity set to 'grave' from 'normal'
> thanks
Stopping processing he
Your message dated Sun, 14 Jan 2018 11:34:28 +
with message-id
and subject line Bug#885821: fixed in cdrdao 1:1.2.3-4
has caused the Debian Bug report #885821,
regarding cdrdao: Depends on gconf
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is n
Your message dated Sun, 14 Jan 2018 11:04:42 +
with message-id
and subject line Bug#887001: fixed in glibc 2.26-4
has caused the Debian Bug report #887001,
regarding glibc: CVE-2018-101: realpath() buffer underflow when getcwd()
returns relative path allows privilege escalation
to be mark
Control: severity -1 normal
thanks
Lets have the package back in testing
--
IRC: gfa
GPG: 0X44BB1BA79F6C6333
Processing control commands:
> severity -1 normal
Bug #867560 [netfilter-persistent] netfilter-persistent fails randomly during
boot; restarting later works
Severity set to 'normal' from 'grave'
--
867560: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867560
Debian Bug Tracking System
Conta
Your message dated Sun, 14 Jan 2018 10:34:50 +
with message-id
and subject line Bug#887068: fixed in psi4 1:1.1-5
has caused the Debian Bug report #887068,
regarding psi4 FTBFS: cp: cannot stat 'builddir/doc/sphinxman/html': No such
file or directory
to be marked as done.
This means that you
Processing control commands:
> severity -1 normal
Bug #589003 [cdrdao] cdrdao deletes cue file
Severity set to 'normal' from 'serious'
--
589003: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=589003
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
Control: severity -1 normal
Hi Axel,
Without giving the "--remote" flag cdrdao doesn't delete the cue file.
I think this flag is only useful when cdrdao is started by another
external program that is supposed to create the "cue" file on the fly,
because cdrdao always unlinks the file after par
83 matches
Mail list logo
