Source: ruby-nokogiri
Version: 1.10.3+dfsg1-2
Severity: grave
Tags: security upstream
Justification: user security hole
Forwarded: https://github.com/sparklemotion/nokogiri/issues/1915
Hi,
The following vulnerability was published for ruby-nokogiri.
CVE-2019-5477[0]:
Command Injection Vulnerabil
Source: kubernetes
Version: 1.7.16+dfsg-1
Severity: grave
Tags: security upstream
Forwarded: https://github.com/kubernetes/kubernetes/issues/81114
Hi,
The following vulnerability was published for kubernetes.
CVE-2019-11250[0]:
Bearer tokens are revealed in logs
If you fix the vulnerability ple
Processing commands for cont...@bugs.debian.org:
> severity 934758 important
Bug #934758 [openafs-modules-dkms] DKMS module fails to build for linux 5.2.0-2
Severity set to 'important' from 'grave'
> tags 934758 + fixed-upstream pending
Bug #934758 [openafs-modules-dkms] DKMS module fails to build
severity 934758 important
tags 934758 + fixed-upstream pending
thanks
On Wed, Aug 14, 2019 at 09:53:40AM -0400, Ryan Kavanagh wrote:
> Package: openafs-modules-dkms
> Version: 1.8.2-1
> Severity: grave
> Justification: renders package unusable
>
> The openafs DKMS module fails to build for Linux
Source: supertuxkart
Version: 1.0-2
Severity: serious
Tags: ftbfs
supertuxkart currently fails to build from source on armel, mips,
mipsel, m68k, powerpc and sh4 with the following error during final
linking:
| /usr/bin/ld: CMakeFiles/supertuxkart.dir/src/graphics/irr_driver.cpp.o:
undefined ref
On Thu, Aug 15, 2019 at 03:16:20AM +0100, peter green wrote:
> So the libvpx transition prompted me to take a look at this, I added some
> code to debian/rules to create a fake homedir, use it for the build and
> remove it in the clean target.
https://salsa.debian.org/mozilla-team/firefox/commit
So the libvpx transition prompted me to take a look at this, I added some code
to debian/rules to create a fake homedir, use it for the build and remove it in
the clean target.
Unfortunately I then ran into another failure.
/firefox-esr/media/webrtc/trunk/webrtc/modules/video_coding/codecs/vp
Your message dated Wed, 14 Aug 2019 19:11:54 -0500
with message-id <2057837.3Le9lR8jrT@riemann>
and subject line Re: gphoto2: autopkgtest failure block readline migration
has caused the Debian Bug report #931970,
regarding gphoto2: autopkgtest failure block readline migration
to be marked as done.
Package: gst-plugins-good1.0
Version: 1.16.0-2
Severity: serious
The release team have decreed that non-buildd binaries can no longer migrate to
testing, please make a source-only upload so your package can migrate.
Dear Niels,
> 1) The current bug metadata suggests it affects sid. Please ensure the
> bug is resolved in sid (by fixing it in sid or correcting bug
> metadata as appropriate).
I cannot reproduce in buster, sid or experimental and have thus
adjusting the metadata of #934034 to match.
>
Processing commands for cont...@bugs.debian.org:
> Severity 929949 serious
Bug #929949 [duplicity] New upstream version 0.8 available, compatible with
python3
Severity set to 'serious' from 'minor'
> Thanks.
Stopping processing here.
Please contact me if you need assistance.
--
929949: https://
Source: mongodb
Version: 1:3.4.18-2
Severity: grave
Tags: security upstream
Forwarded: https://jira.mongodb.org/browse/SERVER-38984
Hi,
The following vulnerability was published for mongodb.
CVE-2019-2386[0]:
| After user deletion in MongoDB Server the improper invalidation of
| authorization se
Your message dated Wed, 14 Aug 2019 18:47:47 +
with message-id
and subject line Bug#934026: fixed in python-django 1:1.10.7-2+deb9u6
has caused the Debian Bug report #934026,
regarding python-django: CVE-2019-14232 CVE-2019-14233 CVE-2019-14234
CVE-2019-14235
to be marked as done.
This means
On Fri, Jul 26, 2019 at 11:24:50PM +0200, Thomas Goirand wrote:
> Package: python-django-mptt
> Version: 0.8.7-1
> Severity: serious
> Tags: patch
>
> Hi,
>
> Please find attached patch to do the Python 2 removal.
> After this patch, your package continues to FTBFS. Please
> get a fix for it.
Th
Control: reassign -1 libcurl4 7.65.1-1
Control: affects -1 + rtorrent
Control: tags -1 + upstream fixed-upstream
Control: fixed -1 7.65.3-1
Dear Maintainer,
I just tried to find some more information from the given backtrace.
That I guess would translate to something like below [1],
if it would
Processing control commands:
> reassign -1 libcurl4 7.65.1-1
Bug #934747 [rtorrent] /usr/bin/rtorrent: rtorrent crashes with error "Could
not create download: Info hash already used by another torrent."
Bug reassigned from package 'rtorrent' to 'libcurl4'.
No longer marked as found in versions rt
Processing commands for cont...@bugs.debian.org:
> notfound 934034 0.43-3
Bug #934034 [src:monkeysphere] monkeysphere: FTBFS in stretch (failing tests)
Ignoring request to alter found versions of bug #934034 to the same values
previously set
> notfound 934034 0.44-1
Bug #934034 [src:monkeysphere]
On Tue, Aug 13, 2019 at 08:29:23PM +, Cooperman, Gene wrote:
> Hi Moritz,
> I'm sorry for the delayed reply. We are about to release DMTCP version
> 2.6.0, and we are including a Debian package. We have verified with Yaroslav
> Halchenko that our proposed Debian package will pass. We s
Source: libexosip2
Version: 4.1.0-2.1
Severity: grave
Tags: security upstream
Hi,
The following vulnerability was published for libexosip2.
CVE-2014-10375[0]:
| handle_messages in eXtl_tls.c in eXosip before 5.0.0 mishandles a
| negative value in a content-length header.
If you fix the vulnera
Processing control commands:
> tag -1 moreinfo
Bug #934482 [prctl] prctl: probably shouldn't be in testing/stable
Added tag(s) moreinfo.
--
934482: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934482
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
Package: openafs-modules-dkms
Version: 1.8.2-1
Severity: grave
Justification: renders package unusable
The openafs DKMS module fails to build for Linux kernel 5.2.0-2.
This renders openafs unusable. I have attached the build log containing
the error messages, in particular, it seems to have someth
Control: tag -1 moreinfo
On Sun, 11 Aug 2019 15:09:15 +0200 Ivo De Decker wrote:
> The buildd 'Packages-arch-specific' configuration has this line for prct:
>
> %prctl: hppa ia64 alpha powerpc #
> ANAIS based on syscall availability
>
> https://build
Your message dated Wed, 14 Aug 2019 12:05:22 +
with message-id
and subject line Bug#934708: fixed in gitlab 11.11.8+dfsg-1
has caused the Debian Bug report #934708,
regarding gitlab: CVE-2019-14942 CVE-2019-14944 (GitLab Critical Security
Release: 12.1.6, 12.0.6, and 11.11.8)
to be marked as
Your message dated Wed, 14 Aug 2019 11:49:41 +
with message-id
and subject line Bug#933742: fixed in slirp4netns 0.3.2-1
has caused the Debian Bug report #933742,
regarding slirp4netns: CVE-2019-14378: heap buffer overflow during packet
reassembly
to be marked as done.
This means that you cl
Package: rtorrent
Version: 0.9.7-1
Severity: grave
File: /usr/bin/rtorrent
Tags: upstream
Justification: renders package unusable
Hi,
for several weeks now, rtorrent crashes when I start it (no changes have
been made to either its configuration nor its torrents list for many
month).
Here is the
Processing commands for cont...@bugs.debian.org:
> reassign 934390 totem 3.30.0-4
Bug #934390 {Done: Simon McVittie } [totem,nautilus] totem,
nautilus: not co-installable in unstable
Bug reassigned from package 'totem,nautilus' to 'totem'.
Ignoring request to alter found versions of bug #934390 t
Your message dated Wed, 14 Aug 2019 08:45:00 +
with message-id
and subject line Bug#891532: fixed in captagent 6.1.0.20-3.1
has caused the Debian Bug report #891532,
regarding captagent FTBFS with shared libfl
to be marked as done.
This means that you claim that the problem has been dealt wit
Processing control commands:
> severity -1 important
Bug #917238 [src:ndpi] ndpi 2.2-1: FTBFS, alignment problem
Severity set to 'important' from 'serious'
--
917238: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917238
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
Source: nftables
Version: 0.9.1-2
Severity: serious
Tags patch
Hello, after trying to understand why firewalld was completely broken on s390x,
and discussing with nftables upstream, they found that a particular commit:
142350f154c7
broke Big Endian machines.
this is the set of patches:
https://
control: severity -1 important
I asked to remove the package on armhf, to avoid this bug being RC.
G.
On Mon, 12 Aug 2019 16:27:47 +0200 Gianfranco Costamagna
wrote:
> control: forwarded -1 https://github.com/ntop/nDPI/issues/763
>
>
> updating forwarded tag.
>
> G.
>
>
control: tags -1 patch pending
On Mon, 26 Feb 2018 15:22:58 +0200 Adrian Bunk wrote:
> Source: captagent
> Version: 6.1.0.20-3
> Severity: serious
> Tags: buster sid
>
> https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/captagent.html
>
> ...
> checking whether make sets $(MAKE)
and attached.
diff -Nru captagent-6.1.0.20/debian/changelog
captagent-6.1.0.20/debian/changelog
--- captagent-6.1.0.20/debian/changelog 2017-01-15 21:09:31.0 +0100
+++ captagent-6.1.0.20/debian/changelog 2019-08-14 09:59:44.0 +0200
@@ -1,3 +1,11 @@
+captagent (6.1.0.20-3.1) unstabl
Processing control commands:
> tags -1 patch pending
Bug #891532 [src:captagent] captagent FTBFS with shared libfl
Added tag(s) pending.
--
891532: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891532
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
Your message dated Wed, 14 Aug 2019 09:02:36 +0200
with message-id <95192aea-4c7a-36a9-fe07-f41639ff5...@debian.org>
and subject line Re: Bug#934674: python-os-win: (build-)depends on cruft
package.
has caused the Debian Bug report #934674,
regarding python-os-win: (build-)depends on cruft package
Processing commands for cont...@bugs.debian.org:
> severity 928129 important
Bug #928129 [src:python-os-win] python-os-win: FTBFS on i386:
ClusterPropertyListParsingError: Parsing a cluster property list failed.
Severity set to 'important' from 'serious'
>
End of message, stopping processing here
35 matches
Mail list logo
