Source: undertow
Version: 2.3.18-2
Severity: serious
X-Debbugs-Cc: a...@debian.org
undertow is a popular Java webserver and servlet engine but also
regularly affected by security relevant issues which makes it
difficult to maintain. As in previous years I recommend to remove
undertow from the test
Control: reassign -1 src:openjfx
Control: affects -1 src:mediathekview
Mediathekview segfaults since openjfx 11.0.11+1-4 was uploaded to unstable in
November 2024. Apparently several g++ compilation changes have been made and I
wonder if that negatively affects applications which depend on openjfx
Control: reassign -1 src:libgettext-commons-java
Control: affects -1 src:pdfsam
The FTBS is apparently caused by the recent update of libgettext-commons-java.
I presume it is related to the new ignore-gettext-maven-plugin.patch. I'm not
sure why it was necessary because we ship the gettext maven p
Hi,
the segmentation fault happened in libfontconfig.so. Maybe this is a bug in
JavaFX or OpenJDK 21 itself. I have no idea how to fix this in mediathekview at
the moment.
Regards,
Markus
signature.asc
Description: This is a digitally signed message part
Control: severity -1 important
Openrefine is not a server application but a single-user app thus typical
openrefine users don't face the same risks. Even network access is not required
to use openrefine in production. As with previous CVE a normal stable update
should be sufficient in my opinion.
Control: tag -1 pending
Hello,
Bug #1066983 in monopd reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/games-team/monopd/-/commit/68244a27a4122d4b4ba68e8c1e1708e
Hello Shriram,
Am Mittwoch, dem 27.03.2024 um 15:10 +0530 schrieb Shriram Ravindranathan:
> Dear Markus,
>
> On 27/03/24 13:01, Markus Koschany wrote:
> > As this bug report proves, normal people tend to have problems with system
> > services. A system administrator would ha
Hi Sylvain,
Am Montag, dem 25.03.2024 um 18:48 +0100 schrieb Sylvain Rochet:
> Hi Markus,
>
> On Mon, Mar 25, 2024 at 02:36:59AM +0100, Markus Koschany wrote:
> > Sylvain Rochet wrote:
> > > Actually, the main problem is /lib/systemd/system/monopd.socket which
> >
Sylvain Rochet wrote:
> Actually, the main problem is /lib/systemd/system/monopd.socket which
> set Accept=yes while monopd needs Accept=no (which is the default value).
I wonder if monopd needs a systemd socket file at all and if we should disable
the service after the installation. We have bee
Hi Francesco,
Am Sonntag, dem 03.12.2023 um 17:42 +0100 schrieb Francesco Ariis:
> Il 03 dicembre 2023 alle 17:14 Markus Koschany ha scritto:
> > I spoke too soon. Tested the wrong Debian release. So it appears the
> > underlying
> > problem is in python3-pygame which
Control: severity -1 normal
On Wed, 01 Nov 2023 09:25:19 +0100 Francesco Ariis wrote:
> Package: seahorse-adventures
> Version: 1.1+dfsg-6
> Severity: grave
> Justification: renders package unusable
> X-Debbugs-Cc: fa...@ariis.it
>
> Dear Maintainer,
>
> to replicate:
>
> 1. Launch `seahor
Source: libitext5-java
Version: 5.5.13.3-2
Severity: serious
Tags: ftbfs sid
User: a...@debian.org
Usertags: bouncycastle-1.77
X-Debbugs-Cc: a...@debian.org
Dear maintainer,
libitext5-java fails to build from source with bouncycastle 1.77. The reason
is the removal of long deprecated methods. The
Source: ssl-utils-clojure
Version: 3.5.0-2
Severity: serious
Tags: ftbfs sid
User: a...@debian.org
Usertags: bouncycastle-1.77
X-Debbugs-Cc: a...@debian.org
Dear maintainer,
ssl-utils-clojure fails to build from source with bouncycastle 1.77. The reason
is the removal of long deprecated methods.
Source: pdftk-java
Version: 3.3.3-1
Severity: serious
Tags: ftbfs sid
User: a...@debian.org
Usertags: bouncycastle-1.77
X-Debbugs-Cc: a...@debian.org
Dear maintainer,
pdftk-java fails to build from source with bouncycastle 1.77. The reason
is the removal of long deprecated methods. The (hopefully
Source: jdeb
Version: 1.9-1
Severity: serious
Tags: ftbfs sid
User: a...@debian.org
Usertags: bouncycastle-1.77
X-Debbugs-Cc: a...@debian.org
Dear maintainer,
jdeb fails to build from source with bouncycastle 1.77. The reason
is the removal of long deprecated methods. The (hopefully) relevant
err
Source: libapache-poi-java
Version: 4.0.1-4
Severity: serious
Tags: ftbfs sid
User: a...@debian.org
Usertags: bouncycastle-1.77
X-Debbugs-Cc: a...@debian.org
Dear maintainer,
libapache-poi-java fails to build from source with bouncycastle 1.77. The
reason is the removal of long deprecated methods
Source: pgpainless
Version: 1.3.16-2
Severity: serious
Tags: ftbfs sid
User: a...@debian.org
Usertags: bouncycastle-1.77
X-Debbugs-Cc: a...@debian.org
Dear maintainer,
pgpainless fails to build from source with bouncycastle 1.77. The reason
is the removal of long deprecated methods. The (hopefull
Source: libitext-java
Version: 2.1.7-14
Severity: serious
Tags: ftbfs sid
User: a...@debian.org
Usertags: bouncycastle-1.77
X-Debbugs-Cc: a...@debian.org
Dear maintainer,
libitext-java fails to build from source with bouncycastle 1.77. The reason
is the removal of long deprecated methods. The (ho
Source: jglobus
Version: 2.1.0-8.1
Severity: serious
Tags: ftbfs sid
User: a...@debian.org
Usertags: bouncycastle-1.77
X-Debbugs-Cc: a...@debian.org
Dear maintainer,
jglobus fails to build from source with bouncycastle 1.77. The reason
is the removal of long deprecated methods. The (hopefully) re
This problem still exists in 1.77 (to be released soon). That sounds like a bnd
problem. I can find a reference to a bnd.sh script but it is not included in
the source distribution. There is also a add_module.sh script. If we can't find
a way to automate this build step, we could use jh_manifest wh
Control: reassign -1 trapperkeeper-webserver-jetty9-clojure
Control: found -1 1.7.0-2+deb10u1
Control: close -1 1.7.0-2+deb10u2
I have just released DLA 3647-1. I believe this problem is fixed in version
1.7.0-2+deb10u2 of trapperkeeper-webserver-jetty9-clojure now.
Regards,
Markus
signature.a
Am Sonntag, dem 05.11.2023 um 20:35 + schrieb Adam D. Barratt:
> [...]
> After a bit of searching, I happened across a discussion of a similar
> change in a different product that mentioned the
> SslContextFactory$Server syntax, so gave that a try. The resulting
> package is now installed on ha
urgency=medium
+
+ * Non-maintainer upload.
+ * Replace deprecated class SslContextFactory with SslContextFactory.Server.
+
+ -- Markus Koschany Sun, 05 Nov 2023 18:06:31 +0100
+
trapperkeeper-webserver-jetty9-clojure (1.7.0-2+deb10u1) buster; urgency=medium
[ Manfred Stock ]
diff -Nru trapper
Hello,
Am Samstag, dem 04.11.2023 um 17:03 + schrieb Adam D. Barratt:
> Source: jetty9
> Version: 9.4.50-4+deb10u1
> Severity: serious
> X-Debbugs-Cc: d...@debian.org
>
> Hi,
>
> Upgrading libjetty9-java and libjetty9-extra-java to the version from
> DLA 3641-1 reliably causes PuppetDB to fa
Package: hoteldruid
X-Debbugs-CC: t...@security.debian.org
Severity: grave
Tags: security
Hi,
The following vulnerabilities were published for hoteldruid.
CVE-2023-43371[0]:
| Hoteldruid v3.0.5 was discovered to contain a SQL injection
| vulnerability via the numcaselle parameter at
| /hoteldrui
I have just rebuilt and uploaded xorgxrdp 0.2.12-1+deb11u1 to bullseye-
security. That should resolve the problem at hand.
However I recommend to keep this bug report open and try to address the
dependency problem between xrdp and xorgxrdp. If you claim that without a
rebuild of xorgxrdp a new ups
Hello,
the new Bullseye version of xrdp is identical to the version in Bookworm. Thus
the underlying problem is probably more complex and I don't suspect that
something is wrong with xrdp itself but more likely with a configuration option
or related software packages which do something different t
Control: reassign -1 src:clanlib
Control: tags -1 pending
This is actually a bug in clanlib which surfaced because of the recent uploads
/ rebuilds against glibc > 2.34. The pthread_mutexattr_setkind_np symbol is
obsolete and has been replaced by pthread_mutexattr_settype.
signature.asc
Descri
Control: tag -1 pending
Hello,
Bug #1037865 in spring reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/games-team/spring/-/commit/1767889af0ac90325f5a4014fe985d4
Control: tag -1 pending
Hello,
Bug #1040475 in apache-directory-server reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/java-team/apache-directory-server/-/commi
I believe the symlink problem is fixed in version 2.0.0~M26-2 but I'd like to
test the apacheds server component more before I'm going to close this bug
report.
Markus
signature.asc
Description: This is a digitally signed message part
Am Samstag, dem 19.08.2023 um 06:13 + schrieb Bastien Roucariès:
> [...]
> No unfortunatly this is transpiled aka compiled by webpack
> see the first line
> export default (function() {
>
> This is make by webpack or rollup that are automated tools. This means that
> this code is transpiled an
Am Montag, dem 31.07.2023 um 11:56 + schrieb Bastien Roucariès:
> Source: ublock-origin
> Severity: serious
> Justification: not prefered form of modification
>
> Dear Maintainer,
>
> src/lib include a few library that are already packaged for debian.
>
> per se it is not a serious bug, but
Am Mittwoch, dem 31.05.2023 um 14:41 +0200 schrieb Andreas Beckmann:
> On 31/05/2023 14.26, Markus Koschany wrote:
> > Hello Andreas,
> >
> > Neither fig2dev or transfig are supported in jessie-elts anymore. I
> > appreciate
> > the report though. Since Stretch i
Hello Andreas,
Neither fig2dev or transfig are supported in jessie-elts anymore. I appreciate
the report though. Since Stretch is no longer supported by Debian I believe
this issue is no longer actionable by the maintainer.
Regards,
Markus
signature.asc
Description: This is a digitally signed
Am Freitag, dem 26.05.2023 um 21:44 +0200 schrieb Emmanuel Bourg:
>
> The changes to jetty9 have to be reverted too, the package is broken
> (#1036798).
>
> Sadly we can't do without tomcat9. The path forward implies packaging
> Jetty 11 or 12 first and migrating all the reverse dependencies, bu
Hi,
I have just rebuilt all reverse-dependencies of closure-compiler again,
ckbuilder and ckeditor also build fine now. Thus the upload of ckbuilder
2.4.3+dfsg-2 was successful.
> Should we clone this bug to ensure we have a proper (tracking) solution
> after the bookworm release. If binaries n
Hi,
> Markus, can you please revert you logback change by tomorrow at the latest?
Sure. I will take care if it.
Do I understand you correctly, that we only ship libtomcat9-java in Bookworm
now? Shall I upload a new revision of tomcat9 too?
Regards,
Markus
signature.asc
Description: This is a
First of all trapperkeeper-webserver-jetty9-clojure should add a build-
dependency on logback to detect such regressions in advance.
#1036250 is mainly a logback problem, not a tomcat problem. I still would like
to hear Emmanuel's opinion. We still could revert to libtomcat9-java, if we
don't find
Sorry, that should have been #1036249.
signature.asc
Description: This is a digitally signed message part
Control: tags -1 patch
Hello,
I have been working on #1036159 and before I go ahead with my solution I would
like to hear your opinion whether this is acceptable.
Apparently closure-compiler embeds rhino classes and thus every time rhino is
updated, closure-compiler must be rebuilt too. I did ju
Control: tag -1 pending
Hello,
Bug #1036249 in closure-compiler reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/java-team/closure-compiler/-/commit/cf3752994a05
Source: ckbuilder
Version: 2.4.3+dfsg-1
Severity: serious
X-Debbugs-Cc: a...@debian.org
ckbuilder must be rebuilt against rhino 1.7.14. This is a no-change
rebuild. Otherwise ckeditor will continue to FTBFS. This was already
reported in #1026639. This issue has also been reported upstream as
htt
I have identified the rhino upstream commit which caused the FTBFS in closure-
compiler. If I revert said commit in rhino, then closure-compiler builds from
source without any additional patches needed.
https://github.com/mozilla/rhino/commit/fb77164ac4889ffa4be26d5d24cb538a8dbd632b
However I st
reopen 1036249
thanks
The missing source files have been included with revision -14. Apparently
closure-compiler embeds rhino classes but renames them to avoid conflicts.
There is still a parsing error when closure-compiler tries to optimize
Javascript files at runtime. E.g. ERROR - Parse error. U
FTBFS with latest Jetty and Logback
+versions in Debian. (Closes: #1036250)
+ * Work around a test failure by disabling request-logging-test.
+(Closes: #1034855)
+
+ -- Markus Koschany Fri, 19 May 2023 15:19:10 +0200
+
trapperkeeper-webserver-jetty9-clojure (4.4.1-5) unstable; urgency
Control: tags -1 patch
Hi,
bazel-bootstrap already build-depends on libgeronimo-annotation-1.3-spec-java.
The fix is trivial. Patch is attached.
Regards,
Markus
signature.asc
Description: This is a digitally signed message part
(4.2.3+ds-8.1) UNRELEASED; urgency=medium
+
+ * Non-maintainer upload.
+ * Remove build-dependency on libtomcat9-java and replace
+tomcat9-annotations-api.jar with geronimo-annotation-1.3-spec.jar.
+(Closes: #1035995)
+
+ -- Markus Koschany Sun, 14 May 2023 15:40:19 +0200
+
bazel-bootstrap
Hi Salvatore,
adding Timo Aaltonen, maintainer of dogtag-pki and tomcatjss, to CC
Am Samstag, dem 13.05.2023 um 20:50 +0200 schrieb Salvatore Bonaccorso:
> Hi Markus,
>
> On Sat, May 13, 2023 at 06:27:49PM +0200, Markus Koschany wrote:
> > I have just pushed the necessary cha
Control: tag -1 pending
Hello,
Bug #1034824 in tomcat9 reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/java-team/tomcat9/-/commit/adbd0b0711de66b67278b10e258c47
I have just pushed the necessary changes to our Git repository.
https://salsa.debian.org/java-team/tomcat9/-/commit/adbd0b0711de66b67278b10e258c47c805e9b993
signature.asc
Description: This is a digitally signed message part
Hello Paul,
Am Donnerstag, dem 11.05.2023 um 21:44 +0200 schrieb Paul Gevers:
> Hi Markus,
>
> On Tue, 25 Apr 2023 16:04:09 +0200 Markus Koschany wrote:
> > We can only support one major Tomcat version per release. Tomcat9 has
> > been part of Buster and Bullseye already
Source: tomcat9
Version: 9.0.70-1
Severity: serious
X-Debbugs-Cc: a...@debian.org
We can only support one major Tomcat version per release. Tomcat9 has
been part of Buster and Bullseye already and is superseded by Tomcat
10 in Bookworm. I wanted to wait with the removal request until the
issues i
Am Freitag, dem 21.04.2023 um 14:50 +0200 schrieb Andreas Tille:
>
> Ahhh, right, the repository went over to source package resteasy. So
> well, the CI log is not helpful for this bug log. What I rather want to
> know is how to proceed with this bug since some Debian Med package
> received a te
Am Freitag, dem 21.04.2023 um 12:23 +0200 schrieb Andreas Tille:
> Hi,
>
> I tried to rebuild this package which does not work as you can
> see in Salsa CI:
>
> https://salsa.debian.org/java-team/resteasy/-/jobs/4105287
>
> Unfortunately I have no idea how to fix this.
Hi Andreas,
it seem
Hi tony,
Am Sonntag, dem 09.04.2023 um 11:19 -0700 schrieb tony mancill:
>
> I wanted to ask you your thoughts on whether the fix should also include
> updating debian/control to strictly depend on the version(s) specified
> in the patched pom. Without some explicit declaration of dependencies,
Control: tag -1 pending
Hello,
Bug #1034059 in zstd-jni-java reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/java-team/zstd-jni-java/-/commit/67b4cbfab56dc775db
Control: tag -1 pending
Hello,
Bug #1034059 in zstd-jni-java reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/java-team/zstd-jni-java/-/commit/67b4cbfab56dc775db
Hello,
Am Donnerstag, dem 06.04.2023 um 12:54 +0200 schrieb Paul Gevers:
> Hi,
>
> On Sun, 26 Mar 2023 16:26:00 +0200 Markus Koschany wrote:
> > 1. There is no transition needed because only shrinksafe is affected by the
> > new
> > rhino version.
>
> I'
Control: tag -1 pending
Hello,
Bug #1022760 in openrefine reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/java-team/openrefine/-/commit/bb324f3b1989a0ec434d95d3
Control: tags -1 pending
Hi Thomas,
Am Donnerstag, dem 30.03.2023 um 17:05 +0200 schrieb Thomas Uhle:
> Dear maintainers,
>
> could someone of you please prepare a new version of fenix-plugins with my
> patch added to save it from being auto-removed.
thanks for your patch! Looks good to me. I'
Hi Graham,
Am Sonntag, dem 26.03.2023 um 19:28 +0200 schrieb Graham Inggs:
> Hi Markus
>
> On Sun, 26 Mar 2023 at 16:34, Markus Koschany wrote:
> > 1. There is no transition needed because only shrinksafe is affected by the
> > new
> > rhino version.
> How
Hello,
On Sun, 26 Mar 2023 09:41:48 +0200 Graham Inggs wrote:
[...]
> To both the rhino and dojo maintainers, please investigate so we can
> have this resolved for bookworm.
Here are my investigations:
1. There is no transition needed because only shrinksafe is affected by the new
rhino version
Am Sonntag, dem 26.03.2023 um 12:15 +0300 schrieb Timo Aaltonen:
> Markus Koschany kirjoitti 24.3.2023 klo 15.35:
> > Am Freitag, dem 24.03.2023 um 09:21 +0200 schrieb Timo Aaltonen:
> > > Markus Koschany kirjoitti 23.3.2023 klo 19.00:
> > > > Control: severity -1 s
Am Freitag, dem 24.03.2023 um 09:21 +0200 schrieb Timo Aaltonen:
> Markus Koschany kirjoitti 23.3.2023 klo 19.00:
> > Control: severity -1 serious
> >
> > On Fri, 24 Feb 2023 11:48:36 +0200 Timo Aaltonen
> > wrote:
> >
> > > Upstream doesn't sup
Source: resteasy3.0
Version: 3.0.26-5
Severity: serious
Tags: help
X-Debbugs-Cc: a...@debian.org
Hello,
currently resteasy3.0 depends on libtomcat9-java but should rather
depend on libtomcat10-java. The reasoning for this is the fact that we
can only support one tomcat package per release for sec
Hi,
Am Donnerstag, dem 23.03.2023 um 15:08 +0100 schrieb Paul Gevers:
> Hi,
>
> On Mon, 13 Feb 2023 14:42:17 + Debian FTP Masters
> wrote:
> > * New upstream version 1.7.14.
> > - Fix FTBFS with OpenJDK 17. (Closes: #1026639)
>
> Is it possible to get a targeted fix? This new upstr
Hi tony,
[...]
> I'm not able to reproduce the autopkgtest failure locally running in
> clean sid chroots. First, I build the dojo source package and ran the
> autopkgtest against those binaries. When that didn't fail, I pulled the
> binary packages from the archive and ran the autopkgtest again
Control: reassign -1 rhino
I have recently updated src:rhino and it seems this is caused by the rhino
script or one of the other scripts in the rhino binary package. Initially I
assumed that the error
java.util.MissingResourceException: Can't find bundle for base name
com.google.javascript.rhino
I believe I have corrected all regressions except of one in closure-compiler
which I will fix later today (renamed class). It turned out that I had to
update the Manifest file and include another META-INF file,
javax.script.ScriptEngineFactory, to solve some FTBFS in reverse-dependencies.
This is t
Am Montag, dem 13.02.2023 um 11:04 +0100 schrieb Markus Koschany:
> preserve-backward-compatibility.patch
To answer my own question. Yes, this is still needed otherwise closure-compiler
starts to FTBFS
signature.asc
Description: This is a digitally signed message part
Am Montag, dem 13.02.2023 um 12:14 +0200 schrieb Adrian Bunk:
> On Mon, Feb 13, 2023 at 11:04:38AM +0100, Markus Koschany wrote:
> > ...
> > I don't really like to use gradle for a key package.
> > ...
>
> FTR, gradle is already a key package:
> libxi -> a
Am Montag, dem 13.02.2023 um 09:33 +0100 schrieb Emmanuel Bourg:
> I don't think this should be assigned to rhino. ckeditor should
> open the internal packages it touches.
I'm currently working on rhino. I have packaged 1.7.14 now. I haven't looked
into ckeditor yet but it seems we have to upgrade
Control: owner -1 !
signature.asc
Description: This is a digitally signed message part
Control: tag -1 pending
Hello,
Bug #1030869 in tomcat10 reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/java-team/tomcat10/-/commit/74d267fa68d39fdcf7f67d5f1003
Control: tags -1 pending
On Wed, 08 Feb 2023 11:38:25 -0500 Jorge Moraleda
wrote:
> Package: tomcat10
> Version: 10.1.5-1
> Severity: grave
> Justification: renders package unusable
> X-Debbugs-Cc: jorge.moral...@gmail.com
>
> Dear Maintainer,
>
> Catalina is unable to deploy any applications (
Hello,
On Wed, 27 Jul 2022 20:36:06 +0200 Thorsten Glaser wrote:
> Package: libapache2-mod-jk
> Version: 1:1.2.48-1
> Severity: critical
> Justification: breaks unrelated software
> X-Debbugs-Cc: t...@mirbsd.de
>
> After upgrading from buster to bullseye, apache2 does not start any more
> if lib
Control: tag -1 pending
Hello,
Bug #1030459 in renpy reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/games-team/renpy/-/commit/61f21802f5816c5548647b387650d4d36
Control: tag -1 pending
Hello,
Bug #1030177 in pygame-sdl2 reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/games-team/pygame-sdl2/-/commit/7d6dd7459876113fa1455
Thanks for your help!
Cheers,
Markus
signature.asc
Description: This is a digitally signed message part
Hi Javier,
Am Freitag, dem 20.01.2023 um 22:23 +0100 schrieb Javier Fernandez-Sanguino:
> Dear Markus,
>
> Thank you for preparing. Could you please share the patch you are working on?
> Snort is available in Salsa. Maybe you could upload / provide there your
> propose changes in a separate bran
Control: tag -1 pending
Hello,
Bug #1004616 in performous reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/games-team/performous/-/commit/ea2d7c1b45bca758a3bb717
Control: tag -1 pending
Hello,
Bug #1010095 in performous reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/games-team/performous/-/commit/9e9a43b1cbd50afdb22bb5a
Control: tags -1 pending
Control: owner -1!
Dear maintainer,
I have prepared a new upstream release of snort, version 2.9.20, which will
address the current release critical bugs in your package. I am currently
testing it and intend to upload it to delayed 5 tomorrow. That should ensure
snort wil
Control: tag -1 pending
Hello,
Bug #1028804 in libpdfbox2-java reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/java-team/libpdfbox2-java/-/commit/95c2d69090ccf3
Control: tag -1 pending
Hello,
Bug #1028669 in easymock reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/java-team/easymock/-/commit/328c5a157a155bce9dddbbc7198f
Control: tag -1 pending
Hello,
Bug #1028709 in objenesis reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/java-team/objenesis/-/commit/d1c40265e476b72869ff341297
Am Freitag, dem 13.01.2023 um 12:47 -0600 schrieb Jorge Moraleda:
> I think getting tomcat 10 into unstable so it is in a path to eventually
> making into testing and then stable has become a higher priority now that
> tomcat 10 is required when using webapps developed using the latest Spring
> fra
This is some kind of incompatibility with jboss-classfilewriter 1.3.0. I will
look into it after the release of Debian 12. Undertow should not be part of a
stable release as long as there is no real demand for another Java web server
anyway.
signature.asc
Description: This is a digitally signed m
Am Donnerstag, dem 01.12.2022 um 14:31 +0100 schrieb Bastian Germann:
> On Tue, 20 Oct 2020 21:19:16 +0200 Markus Koschany wrote:
> > I have started to port childsplay to python3. There are no estimates
> > when it's done but I hope I can finish the work before we freeze.
>
request client certification, that
+is sets the option {verify, verify_peer}. (Closes: #1024632)
+
+ -- Markus Koschany Wed, 30 Nov 2022 12:53:30 +0100
+
erlang (1:23.2.6+dfsg-1) unstable; urgency=medium
* New upstream release.
diff -Nru erlang-23.2.6+dfsg/debian/patches/CVE-2022-37026
Package: erlang
X-Debbugs-CC: t...@security.debian.org
Severity: grave
Tags: security
Hi,
The following vulnerability was published for erlang. Initially the security
team triaged this issue as minor but further investigation showed the impact
might be much more severe. Red Hat and other vendors
Hi tony,
Am Montag, dem 17.10.2022 um 20:09 -0700 schrieb tony mancill:
>
> For any syncany users out there, is there any reason to continue to
> upload to experimental? Is there anything preventing an upload to
> unstable?
Unfortunately the development of syncany has been discontinued a few ye
Control: reassign -1 src:bcel
Control: tags -1 pending
I have notified oss-security about the find. Reassigning to bcel.
signature.asc
Description: This is a digitally signed message part
I have been working on packaging a new upstream release which should address
this problem. I still need to resolve some issues with the build system and the
patches. The current results can be found in Git.
signature.asc
Description: This is a digitally signed message part
Hi,
I just had a go at this issue and I discovered that libxalan2-java in Debian is
not affected but rather bcel.
https://tracker.debian.org/pkg/bcel
The fixing commit in OpenJDK addresses the same code which is nowhere to be
found in libxalan2-java but is present in bcel. The bcel upstream comm
Control: tag -1 pending
Hello,
Bug #1020952 in gradle reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/java-team/gradle/-/commit/e0ae4bd7ac5a65535db5e67823c045ce
> The pcre component should use pcre2.
> I saw this issue on s390x but can't explain why the pcre2 headers are not
> found.
> Do you have a clue?
Unfortunately no. I just stumbled upon this error while rebuilding your package
for the imlib2 transition and this happened on amd64.
signature.asc
De
Package: gambas3
Version: 3.17.3-1
Severity: serious
Tags: ftbfs sid bookworm
X-Debbugs-Cc: a...@debian.org
Dear maintainer,
gambas3 fails to build from source in unstable.
In file included from main.c:32:
regexp.h:30:10: fatal error: pcre.h: No such file or directory
30 | #include "pcre.h"
Package: ukui-greeter
Version: 3.0.3-1
Severity: serious
X-Debbugs-Cc: a...@debian.org
Dear maintainer,
ukui-greeter currently fails to build from source in unstable.
BiometricAuth/giodbus.cpp:22:10: fatal error: gio-unix-2.0/gio/gunixfdlist.h:
No such file or directory
22 | #include
1 - 100 of 1006 matches
Mail list logo
