Bug#914957: additional

Specifically, the current status means that on stretch systems, any accounts relying on the default pam_unix nullok_secure to allow null- password accounts to log in from local terminals only are open to access by anyone who ssh's in and happens to get get pts/0 or pts/1.

Bug#914957: login: removal of pts/* from /etc/securetty wasn't applied in stretch

Package: login Version: 1:4.4-4.1 Severity: grave Tags: security Justification: user security hole The addition of pts/* to /etc/securetty was reverted in 1:4.5-1 but *not* in packages installed to stretch. Please backport this fix to 1:4.4-* -- System Information: Debian Release: 9.6 APT pref

Bug#910001: gnuradio-companion requires python-gtk2 but it is not depended on

Package: gnuradio Version: 3.7.13.4-1 Severity: grave Justification: renders package unusable Dear Maintainer, Without python-gtk2 installed, gnuradio-companion fails to launch: user@debian:~$ gnuradio-companion ImportError Failed to initialize GTK. If you are running over ssh, did you enable

Bug#628119: netatalk installs un-needed and non-FHS /default/ directory

Package: netatalk Version: 2.1.4-1 Severity: serious Justification: Policy 9.1.1 the netatalk package includes a root-level directory named "default" that is un-needed and unused. this directory violates the FHS and should not be installed. -- System Information: Debian Release: wheezy/sid AP