Bug#986488: Further test issues on s390x

Hi - as an FYI on s390x tests https://ci.debian.net/data/autopkgtest/unstable/s390x/p/pyspread/13200913/log.gz there are further test issues of the new tests added in 1.99.6 I've reported them upstream at https://gitlab.com/pyspread/pyspread/-/issues/93 To fix the test is easy (just drop the spec

Bug#991375: closing 991375

close 991375 5:6.2.5-1 thanks

Processed: closing 991375

Processing commands for cont...@bugs.debian.org: > close 991375 5:6.2.5-1 Bug #991375 {Done: Salvatore Bonaccorso } [redis] redis: CVE-2021-32761 Marked as fixed in versions redis/5:6.2.5-1. Bug #991375 {Done: Salvatore Bonaccorso } [redis] redis: CVE-2021-32761 Bug 991375 is already marked as d

Processed: closing 991375

Processing commands for cont...@bugs.debian.org: > close 991375 5:6.0.15-1 Bug #991375 [redis] redis: CVE-2021-32761 Marked as fixed in versions redis/5:6.0.15-1. Bug #991375 [redis] redis: CVE-2021-32761 Marked Bug as done > thanks Stopping processing here. Please contact me if you need assistan

Bug#991375: closing 991375

close 991375 5:6.0.15-1 thanks

Processed: tagging 991375, found 991375 in 5:6.0.14-1

Processing commands for cont...@bugs.debian.org: > tags 991375 + upstream Bug #991375 [redis] redis: CVE-2021-32761 Added tag(s) upstream. > found 991375 5:6.0.14-1 Bug #991375 [redis] redis: CVE-2021-32761 Marked as found in versions redis/5:6.0.14-1. > thanks Stopping processing here. Please co

Processed: tagging 991375, found 991375 in 5:6.0.14-1, found 991375 in 5:5.0.3-4

Processing commands for cont...@bugs.debian.org: > tags 991375 + upstream Bug #991375 [redis] redis: CVE-2021-32761 Ignoring request to alter tags of bug #991375 to the same tags previously set > found 991375 5:6.0.14-1 Bug #991375 [redis] redis: CVE-2021-32761 Ignoring request to alter found vers

Bug#991320: flameshot crashing on startup

oh - almost forgot. on the tray icon - [General] disabledTrayIcon=true drawColor=#00ff00 drawThickness=9 savePath=/media/internal/temp startupLaunch=false # checkForUpdates=false

Bug#991320: flameshot crashing on startup

> No, it shows exactly what I was looking for: this is why i should listen to developers. i would have been tearing stuff apart already :) flameshot worked properly the last time i used it and for at least a year before, last time i used it was maybe five days before i filed the bug. network

Bug#991375: redis: CVE-2021-32761

Package: redis Version: 5:5.0.3-4+deb10u2 X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerability was published for redis. CVE-2021-32761: Integer overflow issues with BITFIELD command on 32-bit systems If you fix the vulnerability please also make

Processed: no ssh during upgrade isn't great

Processing commands for cont...@bugs.debian.org: > # if connection during upgrade is lost, one should be able to log back > # on again > severity 990069 serious Bug #990069 {Done: Aurelien Jarno } [libc6] openssh-server: Not accepting new connections during Debian 10 -> 11 upgrade Severity set to

Bug#991337: pulseaudio: Can confirm with another DAC/USB sound card

Package: pulseaudio Version: 14.99.2+dfsg1-1 Followup-For: Bug #991337 Dear Maintainer, I can confirm the same segfault behaviour when plugging in Digidesign MBox 2 USB soundcard. Pulseaudio crashes immediately as the soundcard is initialized, as shown in the dmesg loglines: [105992.407921] us

Bug#991320: flameshot crashing on startup

X-Debbugs-CC: allan grossman On Wed, Jul 21, 2021 at 02:20:37PM -0500, allan wrote: > this doesn't look real helpful - looks like I may need to install some > source code but not sure which code other than flameshot - No, it shows exactly what I was looking for: > (gdb) backtrace 5 > #0 QActio

Bug#991320: flameshot crashing on startup

this doesn't look real helpful - looks like I may need to install some source code but not sure which code other than flameshot - Reading symbols from flameshot... Reading symbols from /usr/lib/debug/.build-id/5c/2acff54f5aa466e019691671622f39294b075d.debug... (gdb) start Temporary breakpoint 1 at

Bug#991320: flameshot crashing on startup

X-Debbugs-CC: allan grossman Okay, download the debug symbols from: http://debug.mirrors.debian.org/debian-debug/pool/main/f/flameshot/flameshot-dbgsym_0.9.0+ds1-1_amd64.deb http://debug.mirrors.debian.org/debian-debug/pool/main/q/qtbase-opensource-src/libqt5widgets5-dbgsym_5.15.2+dfsg-9_amd64.de

Bug#991337: pulseaudio: Pulseaudio craches on start with SegFault error

I can also confirm that this bug appears only when my external sound card emu 0202 is connected via usb. If it is disconnected pulseaudio works well Vereshchagin Mikhail

Bug#991337: pulseaudio: Pulseaudio craches on start with SegFault error

On Wed, 21 Jul 2021 11:05:43 -0400 Jim Lerza wrote: > I'm also seeing this issue, though for me it is only when my external DAC > is connected via USB. When I disconnect it, pulseaudio starts normally. Same problem here, segfault only occurs when my PreSonus AudioBox 22VSL is connected via USB.

Bug#991320: flameshot crashing on startup

no joy here either - Reading symbols from flameshot... (No debugging symbols found in flameshot) (gdb) backtrace 5 No stack. (gdb)

Bug#991320: flameshot crashing on startup

X-Debbugs-CC: allan grossman On Wed, Jul 21, 2021 at 12:51:16PM -0500, allan wrote: > couldn't get past "start" - Okay, omit "start" and "continue" and just type the "backtrace 5" command.

Bug#991320: flameshot crashing on startup

couldn't get past "start" - wizard@wizard-laptop:~$ gdb flameshot GNU gdb (Debian 10.1-2) 10.1.90.20210103-git Copyright (C) 2021 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later This is free software: you are free to change and redistrib

Bug#991320: flameshot crashing on startup

X-Debbugs-CC: allan grossman After looking at the code I'm fairly certain the segfault happens in Controller::handleReplyCheckUpdates() in src/core/controller.cpp which gets passed to the connect() call. The culprit is probably line 195: m_appUpdates->setText(newVersion); Since I c

Processed: tagging 991344, found 991344 in 1.4.0+dfsg-1

Processing commands for cont...@bugs.debian.org: > tags 991344 + upstream Bug #991344 [src:umatrix] Security vulnerability: Denial of Service - fixed by new upstream version! Added tag(s) upstream. > found 991344 1.4.0+dfsg-1 Bug #991344 [src:umatrix] Security vulnerability: Denial of Service - f

Bug#991369: [ftpmas...@ftp-master.debian.org: inputplug_0.4.0-1_i386.changes REJECTED]

Source: inputplug Version: 0.4.0-1 Severity: serious From: Debian FTP Masters To: i386 Build Daemon Date: Wed, 21 Jul 2021 16:19:29 + Subject: inputplug_0.4.0-1_i386.changes REJECTED Message-Id: inputplug_0.4.0-1_i386.deb: has 1 file(s) with a timestamp too far in the past: usr/share/

Bug#991353: marked as done (nvidia-graphics-drivers-legacy-390xx: CVE-2021-1093, CVE-2021-1094, CVE-2021-1095)

Your message dated Wed, 21 Jul 2021 16:49:01 + with message-id and subject line Bug#991353: fixed in nvidia-graphics-drivers-legacy-390xx 390.144-1 has caused the Debian Bug report #991353, regarding nvidia-graphics-drivers-legacy-390xx: CVE-2021-1093, CVE-2021-1094, CVE-2021-1095 to be mark

Bug#991365: krb5: CVE-2021-36222

control: severity -1 important Salvatore> The following vulnerability was published for krb5. Salvatore> CVE-2021-36222[0]: | sending a request containing a Salvatore> PA-ENCRYPTED-CHALLENGE padata element | without using Salvatore> FAST could result in null dereference in the KDC

Processed: Re: Bug#991365: krb5: CVE-2021-36222

Processing control commands: > severity -1 important Bug #991365 [src:krb5] krb5: CVE-2021-36222 Severity set to 'important' from 'grave' -- 991365: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991365 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Processed: found 991365 in 1.17-3+deb10u1, found 991365 in 1.17-3

Processing commands for cont...@bugs.debian.org: > found 991365 1.17-3+deb10u1 Bug #991365 [src:krb5] krb5: CVE-2021-36222 Marked as found in versions krb5/1.17-3+deb10u1. > found 991365 1.17-3 Bug #991365 [src:krb5] krb5: CVE-2021-36222 Marked as found in versions krb5/1.17-3. > thanks Stopping p

Bug#991365: krb5: CVE-2021-36222

Source: krb5 Version: 1.18.3-5 Severity: grave Tags: security upstream Justification: user security hole X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for krb5. CVE-2021-36222[0]: | sending a request containing a PA-ENCRYPTED-CHALLENGE padat

Bug#991337: pulseaudio: Pulseaudio craches on start with SegFault error

I'm also seeing this issue, though for me it is only when my external DAC is connected via USB. When I disconnect it, pulseaudio starts normally.

Bug#991361: postfix should not use HELO localhost.localdomain

Package: postfix Version: 3.4.14-0+deb10u1 Severity: grave Justification: causes non-serious data loss My server is blacklisted by Spamhaus, which says: Please correct your HELO localhost.localdomain [...] at https://www.spamhaus.org/query/ip/2001:4b99:1:3:216:3eff:fe20:ac98 I don't know why

Bug#991358: guile-2.2 should not be in bookworm

Package: guile-2.2 Severity: serious Tags: bookworm sid guile-2.2 removal didn't happen in bullseye, but let's have a bug for that in bookworm.

Bug#981824: marked as done (librust-x11rb-dev: Depends: librust-nix-0.16+default-dev but it is not installable)

Your message dated Wed, 21 Jul 2021 12:48:54 + with message-id and subject line Bug#981824: fixed in rust-x11rb 0.8.1-2 has caused the Debian Bug report #981824, regarding librust-x11rb-dev: Depends: librust-nix-0.16+default-dev but it is not installable to be marked as done. This means that

Processed: nvidia-graphics-drivers: CVE-2021-1093, CVE-2021-1094, CVE-2021-1095

Processing control commands: > clone -1 -2 -3 -4 -5 -6 -7 Bug #991351 [src:nvidia-graphics-drivers] nvidia-graphics-drivers: CVE-2021-1093, CVE-2021-1094, CVE-2021-1095 Bug 991351 cloned as bugs 991352-991357 > reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6 Bug #991352 [src:nvidia-

Bug#991351: nvidia-graphics-drivers: CVE-2021-1093, CVE-2021-1094, CVE-2021-1095

Source: nvidia-graphics-drivers Severity: serious Tags: security upstream Control: clone -1 -2 -3 -4 -5 -6 -7 Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6 Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2021-1093, CVE-2021-1094, CVE-2021-1095 Control: tag -2

Bug#986488: Forwarded and Fix proposed

Forwarded: https://gitlab.com/pyspread/pyspread/-/issues/92 Hi, I was looking into this today and eventually reported it upstream [1]. I have found what it IMHO is and provided a fix for it [2]. Let us see what upstream thinks, but if you want to un-break pyspread now feel free to do so already.

Processed: found 991307 aspell/0.60.7~20110707-3

Processing commands for cont...@bugs.debian.org: > found 991307 0.60.7~20110707-3 Bug #991307 {Done: Agustin Martin Domingo } [src:aspell] aspell: CVE-2019-25051 Marked as found in versions aspell/0.60.7~20110707-3. > thanks Stopping processing here. Please contact me if you need assistance. --

Bug#991344: Security vulnerability: Denial of Service - fixed by new upstream version!

Source: umatrix Severity: grave Tags: security X-Debbugs-Cc: Debian Security Team Disclosure: https://github.com/vtriolet/writings/blob/main/posts/2021/ublock_origin_and_umatrix_denial_of_service.adoc Upstream fixed the security vulnerability along with minor improvements by releasing uMatrix v

Bug#913916: grub-efi-amd64: UEFI boot option removed after update to grub2 2.02~beta3-5+deb9u1

Package: grub2-common Version: 2.04-20 Followup-For: Bug #913916 X-Debbugs-Cc: gomb...@digikabel.hu Hi, I can confirm the bug still exists, running grub-install makes my laptop (Dell Latitude E7470) unbootable by removing all (well, the only) boot options, and I have to enter the firmware menu to