Bug#988214: Bug#989037: Bug#988214: fixed in rails 2:6.0.3.7+dfsg-1

Hi Utkarsh, On 04-06-2021 11:26, Utkarsh Gupta wrote: > On Fri, Jun 4, 2021 at 1:38 AM Paul Gevers wrote: >>> You haven't answered my question: "does rails still work with the old >>> version of ruby-marcel and can the version bump be reverted" >> >> Ping. Without a proper answer, I can't decide.

Bug#988089: MariaDB upgrade issues from Debian 10 to Debian 11

> Hello! > > There is an updated Galera-4 in Debian unstable now. If you want to > contribute to the effort, you could now do testing and verify that the > fix delivered works. I filed now http://bugs.debian.org/989513 but would still welcome help. There needs to be more testing that the current u

Bug#979599: marked as done (trscripts: Incorrect build xfonts-bolkhov-misc)

Your message dated Sat, 05 Jun 2021 22:03:30 + with message-id and subject line Bug#979599: fixed in trscripts 1.18+nmu2 has caused the Debian Bug report #979599, regarding trscripts: Incorrect build xfonts-bolkhov-misc to be marked as done. This means that you claim that the problem has been

Processed: 939497 has a workaround

Processing commands for cont...@bugs.debian.org: > severity 939497 important Bug #939497 [python3-django-stronghold] AttributeError: 'method' object has no attribute 'STRONGHOLD_IS_PUBLIC' Severity set to 'important' from 'serious' > thanks Stopping processing here. Please contact me if you need

Bug#975270: rdiff-backup: Can't talk to the version from buster

Hello, Samuel Thibault, le dim. 16 mai 2021 19:03:11 +0200, a ecrit: > Gregor Zattler, le dim. 16 mai 2021 18:50:42 +0200, a ecrit: > > * Samuel Thibault [13. Mai. 2021]: > > > Kurt Roeckx, le jeu. 19 nov. 2020 20:40:05 +0100, a ecrit: > > >> I recently found out that my backup has broken for mon

Processed: closing 988986

Processing commands for cont...@bugs.debian.org: > close 988986 8.1.0+really8.0.0+dfsg-1 Bug #988986 [tinyxml2] ABI change in tinyxml2 8.1.0+dfsg-1 There is no source info for the package 'tinyxml2' at version '8.1.0+really8.0.0+dfsg-1' with architecture '' Unable to make a source version for ver

Processed: fixed 988986 in 8.1.0+really8.0.0+dfsg-1

Processing commands for cont...@bugs.debian.org: > fixed 988986 8.1.0+really8.0.0+dfsg-1 Bug #988986 [tinyxml2] ABI change in tinyxml2 8.1.0+dfsg-1 There is no source info for the package 'tinyxml2' at version '8.1.0+really8.0.0+dfsg-1' with architecture '' Unable to make a source version for ver

Processed: severity of 989010 is important

Processing commands for cont...@bugs.debian.org: > severity 989010 important Bug #989010 [src:linux] linux-image-5.10.0-7-amd64: No display (post, grub, boot messages and desktop) after the upgrade to 5.10.38 Severity set to 'important' from 'critical' > thanks Stopping processing here. Please c

Bug#987545: pam-u2f: diff for NMU version 1.1.0-1.1

Control: tags 987545 + pending Dear maintainer, I've prepared an NMU for pam-u2f (versioned as 1.1.0-1.1) and uploaded it to DELAYED/2. Please feel free to tell me if I should delay it longer. Regards, Salvatore diff -Nru pam-u2f-1.1.0/debian/changelog pam-u2f-1.1.0/debian/changelog --- pam-u2f

Processed: pam-u2f: diff for NMU version 1.1.0-1.1

Processing control commands: > tags 987545 + pending Bug #987545 [libpam-u2f] libpam-u2f: CVE-2021-31924: libpam_u2f does not require pin regardless of key definition Added tag(s) pending. -- 987545: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987545 Debian Bug Tracking System Contact ow.

Bug#987149: xscreensaver: allows starting external programs with cap_net_raw

Hi Tormod, On Thu, May 06, 2021 at 07:38:34PM +0200, Moritz Mühlenhoff wrote: > Am Mon, Apr 19, 2021 at 11:42:54AM +0200 schrieb Moritz Muehlenhoff: > > On Sun, Apr 18, 2021 at 07:21:31PM +0200, Tormod Volden wrote: > > > Yes, I think dropping the set_cap is the easy way out of here. sonar > > > w

Bug#989492: golang-1.16: CVE-2021-33196: archive/zip: malformed archive may cause panic or memory exhaustion

Hi, On Sat, Jun 05, 2021 at 07:17:44PM +0800, Shengjing Zhu wrote: > Hi Salvatore, > > On Sat, Jun 5, 2021 at 4:12 PM Salvatore Bonaccorso wrote: > > Hi, > > > > The following vulnerability was published for golang-1.16. > > > > CVE-2021-33196[0]: > > How does security-tracker pull the cve data

Bug#989492: marked as done (golang-1.16: CVE-2021-33196: archive/zip: malformed archive may cause panic or memory exhaustion)

Your message dated Sat, 05 Jun 2021 11:33:34 + with message-id and subject line Bug#989492: fixed in golang-1.16 1.16.5-1 has caused the Debian Bug report #989492, regarding golang-1.16: CVE-2021-33196: archive/zip: malformed archive may cause panic or memory exhaustion to be marked as done.

Bug#989492: golang-1.16: CVE-2021-33196: archive/zip: malformed archive may cause panic or memory exhaustion

Hi Salvatore, On Sat, Jun 5, 2021 at 4:12 PM Salvatore Bonaccorso wrote: > Hi, > > The following vulnerability was published for golang-1.16. > > CVE-2021-33196[0]: How does security-tracker pull the cve data? The point release from golang appears addressing 4 cve, which are CVE-2021-3319{5,6,7,

Bug#989069: nvidia-driver: Crash when displayport is plugged.

On 05 juin 2021 10:59, Julien AUBIN wrote: > ow did you install Cuda stuff ? >> >> Isn't directly cuda but libnvidia-*-encode1 package is required. >> >> Here ffmpeg complaint about an API mismatch 11.0 vs 10.0 >> > Does ffmpeg work with version 460.73 ? I forgot ffmpeg come from the deb-mult

Bug#989069: nvidia-driver: Crash when displayport is plugged.

On 05 juin 2021 10:59, Julien AUBIN wrote: > ow did you install Cuda stuff ? >> >> Isn't directly cuda but libnvidia-*-encode1 package is required. >> >> Here ffmpeg complaint about an API mismatch 11.0 vs 10.0 >> > Does ffmpeg work with version 460.73 ? Yes of course. Christian

Processed: severity of 978416 is grave

Processing commands for cont...@bugs.debian.org: > # should be fixed in bullseye before the release ideally > severity 978416 grave Bug #978416 [src:python-autobahn] python-autobahn: CVE-2020-35678 Severity set to 'grave' from 'important' > thanks Stopping processing here. Please contact me if yo

Bug#985574: pygments: diff for NMU version 2.7.1+dfsg-2.1

Control: tags 985574 + patch Control: tags 985574 + pending Dear maintainer, I've prepared an NMU for pygments (versioned as 2.7.1+dfsg-2.1) and uploaded it to DELAYED/2. Please feel free to tell me if I should delay it longer. Regards, Salvatore diff -Nru pygments-2.7.1+dfsg/debian/changelog p

Processed: pygments: diff for NMU version 2.7.1+dfsg-2.1

Processing control commands: > tags 985574 + patch Bug #985574 {Done: Moritz Mühlenhoff } [src:pygments] pygments: CVE-2021-27291 Added tag(s) patch. > tags 985574 + pending Bug #985574 {Done: Moritz Mühlenhoff } [src:pygments] pygments: CVE-2021-27291 Added tag(s) pending. -- 985574: https://

Bug#989069: nvidia-driver: Crash when displayport is plugged.

ow did you install Cuda stuff ? > > Isn't directly cuda but libnvidia-*-encode1 package is required. > > Here ffmpeg complaint about an API mismatch 11.0 vs 10.0 > Does ffmpeg work with version 460.73 ?

Bug#984668: python-markdown2: diff for NMU version 2.3.10-1.1

Control: tags 984668 + patch Control: tags 984668 + pending Dear maintainer, I've prepared an NMU for python-markdown2 (versioned as 2.3.10-1.1) and uploaded it to DELAYED/2. Please feel free to tell me if I should delay it longer. Regards, Salvatore diff -Nru python-markdown2-2.3.10/debian/cha

Processed: python-markdown2: diff for NMU version 2.3.10-1.1

Processing control commands: > tags 984668 + patch Bug #984668 [src:python-markdown2] python-markdown2: CVE-2021-26813 Added tag(s) patch. > tags 984668 + pending Bug #984668 [src:python-markdown2] python-markdown2: CVE-2021-26813 Added tag(s) pending. -- 984668: https://bugs.debian.org/cgi-bin/

Processed: severity of 984668 is serious

Processing commands for cont...@bugs.debian.org: > # fix should make it into bullseye > severity 984668 serious Bug #984668 [src:python-markdown2] python-markdown2: CVE-2021-26813 Severity set to 'serious' from 'important' > thanks Stopping processing here. Please contact me if you need assistanc

Bug#989492: golang-1.16: CVE-2021-33196: archive/zip: malformed archive may cause panic or memory exhaustion

Source: golang-1.16 Version: 1.16.4-1 Severity: grave Tags: security upstream Justification: user security hole Forwarded: https://github.com/golang/go/issues/46397 X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for golang-1.16. CVE-2021-3319

Bug#989069: nvidia-driver: Crash when displayport is plugged.

On 05 juin 2021 09:50, Julien AUBIN wrote: > Le samedi 5 juin 2021, 09:14:59 CEST Christian Marillat a écrit : [...] >> Display driver is working but I lost nvenc support as ffmpeg is build >> for 460 driver version. >> > Hi, > > So first thing is that you can expect the driver to support your

Bug#989069: nvidia-driver: Crash when displayport is plugged.

Le samedi 5 juin 2021, 09:14:59 CEST Christian Marillat a écrit : > On 05 juin 2021 00:41, Andreas Beckmann wrote: > > On 05/06/2021 00.22, Christian Marillat wrote: > >> Where I can find a list of supported GPU ? > >> Mine is 1050 Ti > > > > That should be supported since 375.xx, you could check

Bug#989491: libxstream-java: CVE-2021-29505

Source: libxstream-java Version: 1.4.15-2 Severity: grave Tags: security upstream Justification: user security hole X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for libxstream-java. CVE-2021-29505[0]: | ### Impact The vulnerability may allo

Bug#989069: nvidia-driver: Crash when displayport is plugged.

On 05 juin 2021 00:41, Andreas Beckmann wrote: > On 05/06/2021 00.22, Christian Marillat wrote: >> Where I can find a list of supported GPU ? >> Mine is 1050 Ti > > That should be supported since 375.xx, you could check the PCI ID with > nvidia-detect or manually in > /usr/share/doc/nvidia*-drive