coturn (4.5.1.1-1.1) unstable; urgency=medium . * Non-maintainer upload. * Don't ship the (empty) /var/lib/turn/turndb SQLite database and generate it on-demand in the postinst instead, avoiding overwriting it on upgrade/reinstall. (Closes: #929269) cryptsetup (2:2.1.0-4) unstable; urgency=medium . [Guilhem Moulin] * d/initramfs/hooks/cryptroot: Always add userspace crypto module ('algif_skcipher' kernel module) to the initramfs. This module is required for required for opening LUKS2 devices, and since 2:2.0.2-2 it's added to large initramfs (i.e., when the MODULES variable isn't set to "dep"). It's now added regardless of the value of $MODULES, as 1/ LUKS2 is the default LUKS header format version; and 2/ we can't check at initramfs creation time whether there are LUKS2 devices to be opened at early boot stage (detached headers might not be present then). Closes: #929616. . [Jonathan Dowland] * Update package descriptions to reflect the move of luksformat from cryptsetup-bin to cryptsetup-run. Closes: #928751. elfutils (0.176-1.1) unstable; urgency=medium . * Non-maintainer upload with maintainer permission * Fixes FTBFS on riscv64 (Closes: #928832) jruby (9.1.17.0-3) unstable; urgency=medium . * Team upload. * debian/patches - add 0017-fix-rubygem-vulnerabilities.patch to fix CVEs (Closes: #925987) (CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325) marsshooter (0.7.6-4) unstable; urgency=medium . * Add avoid-crash-because-of-missing-return-statement.patch. Fix potential crash by adding proper return statements. Thanks to Bernhard Übelacker for the patch (Closes: #929513) nautilus (3.30.5-2) unstable; urgency=medium . * debian/control{,.in}, gbp.conf: Update debian branch to debian/buster * Update gnome-desktop code. Nautilus contains a copy of this code, which originated in gnome-desktop3. + Fixes a potential crash during thumbnailing + Fixes thumbnailer on 32-bit systems where /lib64 is not available. + Also improves handling of usrmerged and non-usrmerged systems. + Mounts the fontconfig cache dir, to improve performance if fontconfig is used - Add a corresponding BD on libfontconfig1-dev, to fetch the needed variable from its pcfile. + Fixes seccomp filter bypass. CVE-2019-11461 + Closes: #928054 node-terser (3.14.1-2) unstable; urgency=medium . * Fix have uglifyjs.terser depend on node-terser (not node-uglify-js). Closes: Bug#929815. Thanks to Pirate Praveen. * Update git-buildpackage config: + Switch DEP-14 vendor-namespaced git branch. * Fix support DEB_BUILD_OPTIONS=nocheck. sqlalchemy (1.2.18+ds1-2) unstable; urgency=high . * Team upload. * CVE-2019-7164 CVE-2019-7548: SQL injection. Apply upstream backported patch for this. Note: This potentially impacts applications (Closes: #922669). unattended-upgrades (1.11.1) unstable; urgency=medium . * Skip sending email when no package had to be installed, upgraded or removed (LP: #1821103) (Closes: #924554) unzip (6.0-23) unstable; urgency=medium . * Fix lame code in fileio.c which parsed 64-bit values incorrectly. Thanks to David Fifield for the report. Closes: #929502.