Processing control commands:
> severity -1 serious
Bug #989193 [apparmor-profiles-extra] breaks apt-cacher-ng by blocking link
operation
Severity set to 'serious' from 'important'
--
989193: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989193
Debian Bug Tracking System
Contact ow...@bugs.d
Source: nettle
Version: 3.7.2-3
Severity: grave
Tags: security upstream
X-Debbugs-Cc: car...@debian.org, Debian Security Team
Hi,
The following vulnerability was published for nettle.
CVE-2021-3580[0]:
| Remote crash in RSA decryption via manipulated ciphertext
If you fix the vulnerability ple
On Tue, 08 Jun 2021 17:15:44 +0200 Julien Puydt wrote:
> I've been convinced that getting a fragile sagemath in next stable
> wouldn't be a good thing.
You've put much more effort than I have into maintaining scientific
software in Debian, so I respect your opinion, but is it really
accurate to say
On Tue, 2021-06-08 at 16:24 +0200, Ondřej Tůma wrote:
> I'm waiting for Ondrej N. now.
For future reference, if your usual sponsor doesn't have time, you can
file a request for sponsoring, details are available here:
https://mentors.debian.net/intro-maintainers
> I was prepare new Debian 1.3
Your message dated Tue, 08 Jun 2021 23:52:21 +0200
with message-id <5db79f99a99bef572eeb980d4e55aeda363e6570.ca...@debian.org>
and subject line Re: Bug#989616: netbeans: Package exists (as source only?) but
not installable
has caused the Debian Bug report #989616,
regarding netbeans: Package exist
Processing commands for cont...@bugs.debian.org:
> tags 914315 + sid bookworm
Bug #914315 [libwebp-dev] libwebp-dev: New versions fix disclosed heap
use-after-free
Added tag(s) bookworm and sid.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
914315: https://bugs
ping to keep the autoremoval away.
Paul
OpenPGP_signature
Description: OpenPGP digital signature
Your message dated Tue, 08 Jun 2021 20:17:26 +
with message-id
and subject line Bug#989157: fixed in isc-dhcp 4.4.1-2+deb10u1
has caused the Debian Bug report #989157,
regarding isc-dhcp: CVE-2021-25217: A buffer overrun in lease file parsing code
can be used to exploit a common vulnerability
Your message dated Tue, 08 Jun 2021 20:17:27 +
with message-id
and subject line Bug#988109: fixed in mqtt-client 1.14-1+deb10u1
has caused the Debian Bug report #988109,
regarding mqtt-client: CVE-2019-0222
to be marked as done.
This means that you claim that the problem has been dealt with.
Your message dated Tue, 08 Jun 2021 20:17:28 +
with message-id
and subject line Bug#988025: fixed in rust-rustyline 3.0.0-2+deb10u1
has caused the Debian Bug report #988025,
regarding rust-rustyline FTBFS in buster: error[E0283]: type annotations needed
to be marked as done.
This means that y
Your message dated Tue, 08 Jun 2021 20:17:28 +
with message-id
and subject line Bug#987218: fixed in nvidia-graphics-drivers-legacy-390xx
390.143-1~deb10u1
has caused the Debian Bug report #987218,
regarding nvidia-graphics-drivers-legacy-390xx: CVE-2021-1076
to be marked as done.
This means
Your message dated Tue, 08 Jun 2021 20:17:27 +
with message-id
and subject line Bug#987216: fixed in nvidia-graphics-drivers 418.197.02-1
has caused the Debian Bug report #987216,
regarding nvidia-graphics-drivers: CVE-2021-1076, CVE-2021-1077
to be marked as done.
This means that you claim t
Your message dated Tue, 08 Jun 2021 20:17:26 +
with message-id
and subject line Bug#943425: fixed in klibc 2.0.6-1+deb10u1
has caused the Debian Bug report #943425,
regarding klibc: [s390x] setjmp/longjmp do not save/restore all registers in use
to be marked as done.
This means that you claim
Your message dated Tue, 08 Jun 2021 20:17:29 +
with message-id
and subject line Bug#986215: fixed in scrollz 2.2.3-1+deb10u1
has caused the Debian Bug report #986215,
regarding scrollz: CVE-2021-29376
to be marked as done.
This means that you claim that the problem has been dealt with.
If thi
Processing commands for cont...@bugs.debian.org:
> tags 989616 - d-i ftbfs
Bug #989616 [src:netbeans] netbeans: Package exists (as source only?) but not
installable
Removed tag(s) d-i and ftbfs.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
989616: https://bugs
Control: tags 989495 + patch
Control: tags 989495 + pending
Control: tags 989614 + patch
Control: tags 989614 + pending
Dear maintainer,
I've prepared an NMU for bluez (versioned as 5.55-3.1) and
uploaded it to DELAYED/5. Please feel free to tell me if I
should delay it longer.
Regards,
Salvator
Processing control commands:
> tags 989495 + patch
Bug #989495 [src:bluez] Journal reports multiple Key file does not have key
"..." in group “Controller” for bluetooth
Ignoring request to alter tags of bug #989495 to the same tags previously set
> tags 989495 + pending
Bug #989495 [src:bluez] Jo
Processing control commands:
> tags 989495 + patch
Bug #989495 [src:bluez] Journal reports multiple Key file does not have key
"..." in group “Controller” for bluetooth
Added tag(s) patch.
> tags 989495 + pending
Bug #989495 [src:bluez] Journal reports multiple Key file does not have key
"..." i
[Big disclaimer: I'm not the maintainer but spotted the RC bug filled]
Hi,
On Tue, Jun 08, 2021 at 03:32:18PM -0400, benjamin melançon wrote:
> Source: netbeans
> Version: 12.1-3
> Severity: serious
> Tags: d-i ftbfs
> Justification: fails to build from source
> X-Debbugs-Cc: ben+deb...@agaric.co
Source: netbeans
Version: 12.1-3
Severity: serious
Tags: d-i ftbfs
Justification: fails to build from source
X-Debbugs-Cc: ben+deb...@agaric.coop
Dear Maintainer,
Trying to install Netbeans i thought i found it in testing (bullseye) -
https://packages.debian.org/source/stretch/netbeans
I know re
Processing commands for cont...@bugs.debian.org:
> fixed 989562 2.4.48-1
Bug #989562 [src:apache2] apache2: CVE-2021-31618: NULL pointer dereference on
specially crafted HTTP/2 request
Marked as fixed in versions apache2/2.4.48-1.
> thanks
Stopping processing here.
Please contact me if you need
Source: bluez
Version: 5.55-3
Severity: grave
Tags: security upstream
X-Debbugs-Cc: car...@debian.org, Debian Security Team
Hi,
The following vulnerabilities were published for bluez.
CVE-2021-0129[0], and
CVE-2020-26558[1]:
| Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specificat
Hi,
Le mardi 08 juin 2021 à 14:58 +0200, Jochen Sprickerhof a écrit :
>
> friendly ping on the sagemath issue as it will be dropped from
> testing
> on the 18., otherwise.
> As far as I read there are a number of proposals (downgrade, ignore
> test
> results..) besides fixing the tests. I'm hap
Hi,
finally copy/paste the same file from the Buster version seems to solve
the problem.
/usr/share/perl5/Apache/Ocsinventory/Plugins/Apache.pm
Tnx
E.
--
GPG key: 4096R/5E0195FAF2133176 2010-10-19 Enrico Rossi
Hi,
looks like the:
/usr/share/perl5/Apache/Ocsinventory/Plugins/Apache.pm
file is missing. It was present in the old (buster) version.
E.
--
GPG key: 4096R/5E0195FAF2133176 2010-10-19 Enrico Rossi
Package: ocsinventory-server
Version: 2.8+dfsg1-1
Severity: grave
Justification: renders package unusable
X-Debbugs-Cc: e.ro...@tecnobrain.com
Dear Maintainer,
after installing the package on a clean and dedicated server, following
the README.Debian file provided on:
Post-installation notes
Hi,
friendly ping on the sagemath issue as it will be dropped from testing
on the 18., otherwise.
As far as I read there are a number of proposals (downgrade, ignore test
results..) besides fixing the tests. I'm happy to help with this but
leave it to the maintainers how to approach this.
Ch
Your message dated Tue, 8 Jun 2021 08:53:53 -0400
with message-id
and subject line Re: Bug#989253: qbittorrent refuses to start after qt5 upgrade
has caused the Debian Bug report #989253,
regarding qbittorrent refuses to start after qt5 upgrade
to be marked as done.
This means that you claim tha
On 2021-06-08 11:57:13, Andreas Beckmann wrote:
> On 08/06/2021 08.27, Andreas Beckmann wrote:
> > Or, wait, easier: we can reintroduce metapackages libhdf5*-103 depending
> > on libhdf5*-103-1 and all the other packages containing libraries that
> > were in the merged package in buster.
>
> > I a
On 6/8/21 12:42 PM, Gilles Filippini wrote:
> But the actual bug will still need to be addressed: postgis requires
> previous runtime to be able to migrate data.
That's an upstream issue, which they don't take very seriously. Some
upstream developers don't like the status quo either, hence the cha
Andreas Beckmann a écrit le 08/06/2021 à 11:57 :
On 08/06/2021 08.27, Andreas Beckmann wrote:
Or, wait, easier: we can reintroduce metapackages libhdf5*-103
depending on libhdf5*-103-1 and all the other packages containing
libraries that were in the merged package in buster.
I actually like
Processing commands for cont...@bugs.debian.org:
> tags 989562 - pending
Bug #989562 [src:apache2] apache2: CVE-2021-31618: NULL pointer dereference on
specially crafted HTTP/2 request
Removed tag(s) pending.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
989562
Processing control commands:
> tag -1 pending
Bug #989562 [src:apache2] apache2: CVE-2021-31618: NULL pointer dereference on
specially crafted HTTP/2 request
Ignoring request to alter tags of bug #989562 to the same tags previously set
--
989562: https://bugs.debian.org/cgi-bin/bugreport.cgi?bu
Control: tag -1 pending
Hello,
Bug #989562 in apache2 reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/apache-team/apache2/-/commit/6a41612e278bcedd0b1be1bb4bfe5
Control: tag -1 pending
Hello,
Bug #989562 in apache2 reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/apache-team/apache2/-/commit/822d703bc5a74b79367f8b0b6ecf2
Processing control commands:
> tag -1 pending
Bug #989562 [src:apache2] apache2: CVE-2021-31618: NULL pointer dereference on
specially crafted HTTP/2 request
Ignoring request to alter tags of bug #989562 to the same tags previously set
--
989562: https://bugs.debian.org/cgi-bin/bugreport.cgi?bu
Le 08/06/2021 à 10:51, Yadd a écrit :
> Le 08/06/2021 à 08:25, Yadd a écrit :
>> Le 08/06/2021 à 07:58, Yadd a écrit :
>>> Le 07/06/2021 à 17:34, Salvatore Bonaccorso a écrit :
Source: apache2
Version: 2.4.47-1
Severity: grave
Tags: security upstream
Justification: user sec
Processing commands for cont...@bugs.debian.org:
> clone 987062 -1
Bug #987062 [apt] apt: fails to upgrade guile-2.2-libs from buster to bullseye
Bug 987062 cloned as bug 989599
> reassign -1 release.debian.org
Bug #989599 [apt] apt: fails to upgrade guile-2.2-libs from buster to bullseye
Bug reas
On 08/06/2021 08.27, Andreas Beckmann wrote:
Or, wait, easier: we can reintroduce metapackages libhdf5*-103 depending
on libhdf5*-103-1 and all the other packages containing libraries that
were in the merged package in buster.
I actually like that solution and will try to come up with a patch
Hi,
I wanted to ping on this bug to let you know that 0.9.16 was tagged on
30th of April and among other things it contains the fixes for this on
s390x and ppc64el:
https://github.com/neutrinolabs/xrdp/commit/1d1ec9614f84243e4a08256f82994278d082b592
https://github.com/neutrinolabs/xrdp/commit/3b81d
Le 08/06/2021 à 08:25, Yadd a écrit :
> Le 08/06/2021 à 07:58, Yadd a écrit :
>> Le 07/06/2021 à 17:34, Salvatore Bonaccorso a écrit :
>>> Source: apache2
>>> Version: 2.4.47-1
>>> Severity: grave
>>> Tags: security upstream
>>> Justification: user security hole
>>> X-Debbugs-Cc: car...@debian.org,
Control: tag -1 pending
Hello,
Bug #989562 in apache2 reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/apache-team/apache2/-/commit/c5a0d72e842f8d2763a2e12ff48a9
Processing control commands:
> tag -1 pending
Bug #989562 [src:apache2] apache2: CVE-2021-31618: NULL pointer dereference on
specially crafted HTTP/2 request
Ignoring request to alter tags of bug #989562 to the same tags previously set
--
989562: https://bugs.debian.org/cgi-bin/bugreport.cgi?bu
Control: tag -1 pending
Hello,
Bug #989562 in apache2 reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/apache-team/apache2/-/commit/77aadf7b7d4f28684d9ddf97f4477
Processing control commands:
> tag -1 pending
Bug #989562 [src:apache2] apache2: CVE-2021-31618: NULL pointer dereference on
specially crafted HTTP/2 request
Ignoring request to alter tags of bug #989562 to the same tags previously set
--
989562: https://bugs.debian.org/cgi-bin/bugreport.cgi?bu
Your message dated Tue, 8 Jun 2021 10:31:36 +0200
with message-id
and subject line Re: Bug#988722: postgresql-common: Upgrading cluster with
postgis does not migrate tables using postgis
has caused the Debian Bug report #988722,
regarding postgresql-common: Upgrading cluster with postgis does not
Processing commands for cont...@bugs.debian.org:
> tags 988722 wontfix
Bug #988722 [postgresql-13-postgis-3] postgresql-common: Upgrading cluster with
postgis does not migrate tables using postgis
Added tag(s) wontfix.
> thanks
Stopping processing here.
Please contact me if you need assistance.
Control: reassign -1 postgresql-13-postgis-3
Andreas Beckmann a écrit le 08/06/2021 à 08:27 :
An alternative solution would be to rename libhdf5*-103-1 back to
libhdf5*-103 and add dependencies on the split out libraries (s.t. e.g.
dependencies of a buster package depending on libhdf5-103 for a
Processing control commands:
> reassign -1 postgresql-13-postgis-3
Bug #988722 [hdf5] postgresql-common: Upgrading cluster with postgis does not
migrate tables using postgis
Bug reassigned from package 'hdf5' to 'postgresql-13-postgis-3'.
No longer marked as found in versions 1.10.5+repack-1~exp6
49 matches
Mail list logo
