Bug#984810: marked as done (courier-authlib: CVE-2021-28374: /run/courier/authdaemon directory with weak permissions)

Your message dated Wed, 11 Jun 2025 15:40:45 -0700 with message-id <4862509.1oUyQt6lIG@soren-desktop> and subject line courier-authlib: CVE-2021-28374: /run/courier/authdaemon directory with weak permissions has caused the Debian Bug report #984810, regarding courier-authlib: CVE-2021-28374: /run/

Bug#1107195: marked as done (python-signxml: CVE-2025-48994 CVE-2025-48995)

Your message dated Wed, 11 Jun 2025 22:34:36 + with message-id and subject line Bug#1107195: fixed in python-signxml 4.0.5+dfsg-1 has caused the Debian Bug report #1107195, regarding python-signxml: CVE-2025-48994 CVE-2025-48995 to be marked as done. This means that you claim that the problem

Bug#1106786: git ftbfs on s390x (test failures)

On 2025-06-07 11:31:07 [+0200], Jonathan Nieder wrote: > New uploads coming later today. :) I don't want to rush or anything but… If you want me to prepare an unblock request before the upload happens or so, just say so ;) > For the future: in general if you prepare a "git format-patch" format >

Bug#1084293: marked as done (mariadb: FTBFS: Failing test(s): main.timezone)

Your message dated Wed, 11 Jun 2025 18:47:10 + with message-id and subject line Bug#1084293: fixed in mariadb 1:10.11.13-0+deb12u1 has caused the Debian Bug report #1084293, regarding mariadb: FTBFS: Failing test(s): main.timezone to be marked as done. This means that you claim that the probl

Bug#1107651: marked as done (lomiri-mediaplayer-app: FTBFS on s390x)

Your message dated Wed, 11 Jun 2025 21:38:01 + with message-id and subject line Bug#1107651: fixed in lomiri-mediaplayer-app 1.1.1+dfsg-2 has caused the Debian Bug report #1107651, regarding lomiri-mediaplayer-app: FTBFS on s390x to be marked as done. This means that you claim that the proble

Bug#1104076: marked as done (nvidia-open-gpu-kernel-modules: CVE-2025-23244)

Your message dated Wed, 11 Jun 2025 21:07:32 + with message-id and subject line Bug#1104076: fixed in nvidia-open-gpu-kernel-modules 550.163.01-1 has caused the Debian Bug report #1104076, regarding nvidia-open-gpu-kernel-modules: CVE-2025-23244 to be marked as done. This means that you clai

Bug#1104068: marked as done (nvidia-graphics-drivers: CVE-2025-23244)

Your message dated Wed, 11 Jun 2025 21:07:03 + with message-id and subject line Bug#1104068: fixed in nvidia-graphics-drivers 550.163.01-1 has caused the Debian Bug report #1104068, regarding nvidia-graphics-drivers: CVE-2025-23244 to be marked as done. This means that you claim that the prob

Bug#1104178: dh-elpa-helper: upgrade fails: cannot overwrite non-directory ... with directory

David Bremner writes: > Xiyue Deng writes: > >> David Bremner writes: >> >>> Xiyue Deng writes: >>> Friendly ping. Should we merge and prepare for release (AIUI the current proposed fix has reached consensus)? >>> >>> In order to do request a freeze exception, we need vers

Bug#1101831: marked as done (mariadb: autopkgtest regression in testing)

Your message dated Wed, 11 Jun 2025 18:47:10 + with message-id and subject line Bug#1084293: fixed in mariadb 1:10.11.13-0+deb12u1 has caused the Debian Bug report #1084293, regarding mariadb: autopkgtest regression in testing to be marked as done. This means that you claim that the problem h

Processed: konsole: CVE-2025-49091

Processing control commands: > close -1 4:25.04.0-2 Bug #1107672 [src:konsole] konsole: CVE-2025-49091 Marked as fixed in versions konsole/4:25.04.0-2. Bug #1107672 [src:konsole] konsole: CVE-2025-49091 Marked Bug as done > found -1 4:22.12.3-1 Bug #1107672 {Done: Salvatore Bonaccorso } [src:konso

Bug#1107196: marked as done (modsecurity-apache: CVE-2025-48866)

Your message dated Wed, 11 Jun 2025 18:47:11 + with message-id and subject line Bug#1107196: fixed in modsecurity-apache 2.9.7-1+deb12u1 has caused the Debian Bug report #1107196, regarding modsecurity-apache: CVE-2025-48866 to be marked as done. This means that you claim that the problem has

Bug#1107672: konsole: CVE-2025-49091

Source: konsole Version: 4:25.04.0-1 Severity: grave Tags: security upstream Justification: user security hole X-Debbugs-Cc: car...@debian.org, Debian Security Team Control: close -1 4:25.04.0-2 Control: found -1 4:22.12.3-1 Hi, The following vulnerability was published for konsole. CVE-2025-49

Bug#1106286: marked as done (modsecurity-apache: CVE-2025-47947)

Your message dated Wed, 11 Jun 2025 18:47:11 + with message-id and subject line Bug#1106286: fixed in modsecurity-apache 2.9.7-1+deb12u1 has caused the Debian Bug report #1106286, regarding modsecurity-apache: CVE-2025-47947 to be marked as done. This means that you claim that the problem has

Processed: Re: Bug#486914: Default: spamd runs as root (uid/gid 0)

Processing control commands: > severity -1 serious Bug #486914 [spamassassin] Default: spamd runs as root (uid/gid 0) Severity set to 'serious' from 'normal' > tags -1 security Bug #486914 [spamassassin] Default: spamd runs as root (uid/gid 0) Added tag(s) security. -- 486914: https://bugs.debia

Bug#486914: Default: spamd runs as root (uid/gid 0)

Control: severity -1 wishlist On Wed, Jun 11, 2025 at 11:58:10AM +0200, Vincent Lefevre wrote: > > In order for user preferences and Bayesian scoring to work, spamd needs > > to be able to 'su' to the identity of the mail recipient. This is > > something most people expect to work by default, so s

Processed: Re: Bug#486914: Default: spamd runs as root (uid/gid 0)

Processing control commands: > severity -1 wishlist Bug #486914 [spamassassin] Default: spamd runs as root (uid/gid 0) Severity set to 'wishlist' from 'serious' -- 486914: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=486914 Debian Bug Tracking System Contact ow...@bugs.debian.org with probl

Bug#1000047: libsynthesis: depends on obsolete pcre3 library

Control: tags -1 patch I am uploading a NMU to DELAYED/10 to fix this. Please find the debdiff attached. diff -Nru libsynthesis-3.4.0.47.5+syncevolution-1.5.3/debian/changelog libsynthesis-3.4.0.47.5+syncevolution-1.5.3/debian/changelog --- libsynthesis-3.4.0.47.5+syncevolution-1.5.3/debian/chang

Bug#1104929: fixed in slurm-wlm 24.11.5-1

Hi, On Wed, Jun 11, 2025 at 02:24:56PM +0200, Gennaro Oliva wrote: > Hi Ivo, > Thank you for your email. > > Unfortunately, I am short on time at the moment. I attempted to backport > the patch, but it is not as straightforward as simply cherry-picking the > commit. It would be preferable to have

Bug#1107431: marked as done (src:bluetooth-sensor-state-data: fails to migrate to testing for too long)

Your message dated Wed, 11 Jun 2025 12:33:58 + with message-id and subject line Bug#1107431: fixed in bluetooth-sensor-state-data 1.9.0-2 has caused the Debian Bug report #1107431, regarding src:bluetooth-sensor-state-data: fails to migrate to testing for too long to be marked as done. This

Bug#1104929: fixed in slurm-wlm 24.11.5-1

Hi Ivo, Thank you for your email. Unfortunately, I am short on time at the moment. I attempted to backport the patch, but it is not as straightforward as simply cherry-picking the commit. It would be preferable to have the new version included in Trixie, if possible. Should I file a bug to reques

Bug#1104929: fixed in slurm-wlm 24.11.5-1

Hi, On Tue, May 20, 2025 at 09:34:28PM +, Debian FTP Masters wrote: > Changes: > slurm-wlm (24.11.5-1) unstable; urgency=medium > . >* New upstream release fix CVE-2025-4390 (Closes: #1104929) Are you planning to get this fix into testing/trixie? A new upstream release might not be appr

Bug#1107651: lomiri-mediaplayer-app: FTBFS on s390x

Hi Ivo, On Mi 11 Jun 2025 09:55:55 UTC, Ivo De Decker wrote: package: src:lomiri-mediaplayer-app version: 1.1.1+dfsg-1 severity: serious tags: ftbfs Hi, The latest version of lomiri-mediaplayer-app in unstable fails on s390x: https://buildd.debian.org/status/package.php?p=lomiri-mediaplayer

Bug#1104178: dh-elpa-helper: upgrade fails: cannot overwrite non-directory ... with directory

Xiyue Deng writes: > David Bremner writes: > >> Xiyue Deng writes: >> >>> >>> Friendly ping. Should we merge and prepare for release (AIUI the >>> current proposed fix has reached consensus)? >>> >> >> In order to do request a freeze exception, we need version that has the >> minimal set of ch

Bug#486914: Default: spamd runs as root (uid/gid 0)

Control: found -1 4.0.1-1~deb12u1 I forgot: this is on a Debian/stable machine (Debian 12 bookworm). -- Vincent Lefèvre - Web: 100% accessible validated (X)HTML - Blog: Work: CR INRIA - computer arithmetic / Pascaline project (LIP, ENS-Ly

Processed: Re: Bug#486914: Default: spamd runs as root (uid/gid 0)

Processing control commands: > found -1 4.0.1-1~deb12u1 Bug #486914 [spamassassin] Default: spamd runs as root (uid/gid 0) Marked as found in versions spamassassin/4.0.1-1~deb12u1. -- 486914: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=486914 Debian Bug Tracking System Contact ow...@bugs.d

Processed: tagging 1107451

Processing commands for cont...@bugs.debian.org: > tags 1107451 + trixie-ignore Bug #1107451 {Done: Paul Gevers } [src:lomiri-mediaplayer-app] src:lomiri-mediaplayer-app: fails to migrate to testing for too long: FTBFS on s390x Added tag(s) trixie-ignore. > thanks Stopping processing here. Plea

Bug#1107651: lomiri-mediaplayer-app: FTBFS on s390x

package: src:lomiri-mediaplayer-app version: 1.1.1+dfsg-1 severity: serious tags: ftbfs Hi, The latest version of lomiri-mediaplayer-app in unstable fails on s390x: https://buildd.debian.org/status/package.php?p=lomiri-mediaplayer-app Cheers, Ivo

Processed: libsynthesis: depends on obsolete pcre3 library

Processing control commands: > tags -1 patch Bug #147 [src:libsynthesis] libsynthesis: depends on obsolete pcre3 library Ignoring request to alter tags of bug #147 to the same tags previously set -- 147: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=147 Debian Bug Tracking Sy

Processed: Re: pytorch-cuda: FTBFS: ld.lld: error: undefined reference: std::ios_base_library_init()@GLIBCXX_3.4.32

Processing commands for cont...@bugs.debian.org: > severity 1105066 serious Bug #1105066 [src:pytorch-cuda] pytorch-cuda: FTBFS: ld.lld: error: undefined reference: std::ios_base_library_init()@GLIBCXX_3.4.32 Severity set to 'serious' from 'important' > thanks Stopping processing here. Please co

Bug#1102947: munge FTBFS failure

Control: severity -1 important Control: tags -1 trixie-ignore On 11/06/25 2:13 pm, Lucas Nussbaum wrote: > I gave it another try: > - pre-built chroot, unshare mode, build running as user: still fails > - pre-built chroot, unshare mode, build running as root: builds fine > > So its probably fine

Processed: Re: Bug#1102947: munge FTBFS failure

Processing control commands: > severity -1 important Bug #1102947 [src:munge] munge: FTBFS in testing: sed: can't read /tmp/munge-test-16284/trash directory.0110-munged-origin-addr/log-25689/munged.log.25689: No such file or directory Severity set to 'important' from 'serious' > tags -1 trixie-

Bug#1102947: munge FTBFS failure

On 06/06/25 at 09:03 +0200, Jochen Sprickerhof wrote: > Hi Lucas, > > * Nilesh Patra [2025-05-23 01:49]: > > > > > > On 23/05/25 01:01, Lucas Nussbaum wrote: > > > On 21/05/25 at 01:01 +0530, Nilesh Patra wrote: > > > > > Source: munge > > > > > Version: 0.5.16-1 > > > > > Severity: serious > >

Bug#1082053: marked as done (RUSTSEC-2023-0086)

Your message dated Wed, 11 Jun 2025 08:07:24 + with message-id and subject line Bug#1082053: fixed in rust-lexical-core 1.0.5-1 has caused the Debian Bug report #1082053, regarding RUSTSEC-2023-0086 to be marked as done. This means that you claim that the problem has been dealt with. If this

Bug#1107304: pdfarranger: Fails to start: RuntimeError: context has already been set

Colin Watson (2025-06-10): > Thanks for testing. I ended up using a slightly different patch on > advice from upstream, and filed https://bugs.debian.org/1107611 to > unblock it. Thank you Colin :) -- intrigeri

Bug#1103003: marked as done (gcc-mingw-w64-ucrt64: broken on arm64, libgcc.a can't be linked)

Your message dated Wed, 11 Jun 2025 09:27:26 +0200 with message-id and subject line Re: gdb-mingw-w64: FTBFS in testing/arm64: configure: error: in `/build/reproducible-path/gdb-mingw-w64-13.2/build-gdbserver/x86_64-w64-mingw32ucrt/gnulib' has caused the Debian Bug report #1103003, regarding gcc

Bug#1103007: marked as done (gcc-mingw-w64-ucrt64: broken on arm64, libgcc.a can't be linked)

Your message dated Wed, 11 Jun 2025 09:27:26 +0200 with message-id and subject line Re: gdb-mingw-w64: FTBFS in testing/arm64: configure: error: in `/build/reproducible-path/gdb-mingw-w64-13.2/build-gdbserver/x86_64-w64-mingw32ucrt/gnulib' has caused the Debian Bug report #1103003, regarding gcc