duc (1.4.3-6) unstable; urgency=medium . * Fix FTBFS (dh_installman: Cannot find "debian/build-nox/doc/duc.1"). (Closes: #924473) gnulib (20140202+stable-4) unstable; urgency=medium . * QA upload. * Orphan package to match 20180621~6979c25-2 in experimental. * Fix compat issue with glibc 2.28 (closes: #915151). guile-2.0 (2.0.13+1-5.1) unstable; urgency=medium . * Non-maintainer upload. * 0005-fix-french-locale-test.patch: new patch by Frédéric Bonnard. Fixes FTBFS when locale fr_FR.ISO-8859-1 is installed. (Closes: #919481) jupyter-notebook (5.7.4-2.1) unstable; urgency=medium . * Non-maintainer upload. * Fix unhandled symlink to directory conversion for bootstrap, through python{,3}-notebook.maintscript. (Closes: #924232) kronosnet (1.8-2) unstable; urgency=medium . * [b6a2cdc] New patch: send test: skip the SCTP test if SCTP is not supported by the kernel kronosnet (1.8-1) unstable; urgency=medium . * [ff7beff] New upstream release (1.8) * [21d7565] Update copyright years ldb (2:1.5.1+really1.4.6-3) unstable; urgency=medium . * Upload to unstable ldb (2:1.5.1+really1.4.6-2) experimental; urgency=medium . * Fix 00_Enable-make-test-even-without-lmdb.patch to prevent FTBFS on 32-bit systems ldb (2:1.5.1+really1.4.6-1) experimental; urgency=medium . * New upstream version 1.4.6 - d/watch: Pin ldb version to 1.4.x - d/watch: Mangle 1.5.1+really from debian version - Update 00_Enable-make-test-even-without-lmdb.patch as merged upstream - Drop CVE-2019-3824-v4-9.patch, merged - Update symbols libssh2 (1.8.0-2.1) unstable; urgency=high . * Non-maintainer upload. * Possible integer overflow in transport read allows out-of-bounds write (CVE-2019-3855) (Closes: #924965) * Possible integer overflow in keyboard interactive handling allows out-of-bounds write (CVE-2019-3856) (Closes: #924965) * Possible integer overflow leading to zero-byte allocation and out-of-bounds write (CVE-2019-3857) (Closes: #924965) * Possible zero-byte allocation leading to an out-of-bounds read (CVE-2019-3858) (Closes: #924965) * Out-of-bounds reads with specially crafted payloads due to unchecked use of _libssh2_packet_require and _libssh2_packet_requirev (CVE-2019-3859) (Closes: #924965) * Out-of-bounds reads with specially crafted SFTP packets (CVE-2019-3860) (Closes: #924965) * Out-of-bounds reads with specially crafted SSH packets (CVE-2019-3861) (Closes: #924965) * Out-of-bounds memory comparison (CVE-2019-3862) (Closes: #924965) * Integer overflow in user authenicate keyboard interactive allows out-of-bounds writes (CVE-2019-3863) (Closes: #924965) * Fixed misapplied patch for user auth. * moved MAX size declarations nvidia-graphics-drivers (410.104-3) unstable; urgency=medium . * [i386 armhf]: Reinstate nvidia-smi as a transitional package depending on nvidia-legcy-390xx-smi. * Add a notice to the description of the transitional packages. nvidia-graphics-drivers (410.104-2) unstable; urgency=medium . * libcuda1: Add Provides: libcuda-10.0-1{,-i386}. * [i386 armhf]: Drop nvidia-legacy-check. * [i386 armhf]: Reinstate nvidia-driver, xserver-xorg-video-nvidia as transitional packages depending on the 390.xx legacy driver. nvidia-persistenced (410.104-1) unstable; urgency=medium . * New upstream release. * Adjust libnvidia-cfg1 dependencies to automatically switch to the legacy package on upgrades from stretch to buster on [!amd64]. nvidia-settings (410.104-2) unstable; urgency=medium . * [i386 armhf]: Reinstate nvidia-settings as a transitional package depending on nvidia-settings-legacy-390xx. open-infrastructure-compute-tools (20190301-lts1-2) unstable; urgency=medium . * Uploading to sid. * Adding removal of previously forgotten mmdebstrap alternative to not leave cruft behind after package removal, thanks to Andreas Beckmann (Closes: #924092). perl (5.28.1-6) unstable; urgency=medium . * Fix NDBM autopkgtests by recreating necessary hardlinks at test time (Closes: #925179) * Update patch metadata for the POSIX::mblen() fix. postfix (3.4.5-1) unstable; urgency=medium . [Wietse Venema] . * 3.4.5 - With message_size_limit=0 (which is NOT DOCUMENTED), BDAT chunks were always rejected as too large. File: smtpd/smtpd.c - Bugfix (introduced: Postfix 3.0): LMTP connections over UNIX-domain sockets were cached but not reused, due to a cache lookup key mismatch. Therefore, idle cached connections could exhaust LMTP server resources, resulting in two-second pauses between email deliveries. This problem was investigated by Juliana Rodrigueiro. File: smtp/smtp_connect.c. python-defaults (2.7.16-1) unstable; urgency=medium . * Bump version to 2.7.16. python-stdlib-extensions (2.7.16-2) unstable; urgency=medium . * Re-pack the orig tarball without the VCS repo. python-stdlib-extensions (2.7.16-1) unstable; urgency=medium . * Python 2.7.16 release. python-stdlib-extensions (2.7.16~rc1-1) unstable; urgency=medium . * Python 2.7.16 release candidate. * Bump standards version. * Fix FTCBFS (Helmut Grohne). Closes: #913417. + Multiarchify Build-Depends. + Set up PYTHONPATH for cross compilation. + cross.patch: Don't import built modules. python2.7 (2.7.16-1) unstable; urgency=medium . * Python 2.7.16 release. - Now has a version without a trailing '+'. Closes: #914072. qreator (16.06.1-3.1) unstable; urgency=medium . * Non-maintainer upload. * Add Fix-python-pil-imports.patch, fixes a program crash due to incorrect PIL imports (Closes: #900573). rustc (1.32.0+dfsg1-3) unstable; urgency=medium . * Conditionally-apply u-compiletest.patch based on stage0 compiler. * Fix syntax error in d/rules compiletest check. rustc (1.32.0+dfsg1-2) unstable; urgency=medium . * More verbose logging during builds. * Fix compiletest compile error, and check log has at least 1 pass. samba (2:4.9.5+dfsg-2) unstable; urgency=medium . * Upload to unstable samba (2:4.9.5+dfsg-1) experimental; urgency=medium . * New upstream release - Bump ldb Build-Depends to 2:1.5.1+really1.4.6 - Drop s3-auth-ignore-create_builtin_guests-failing-without.patch, merged - Drop and python-gpg.patch, merged * Add Recommends: samba-dsdb-modules for samba-common-bin (Closes: #862467) sbuild (0.78.1-2) unstable; urgency=medium . [ Mike Gabriel ] * debian/patches: Add support-gzip-in-wheezy.patch. The gzip command in Debian wheezy lacks support for the --keep cmdline option, so avoid using it. (closes: #926161) . [ Aurelien Jarno ] * debian/patches: Add fix-disk-space-directory-check.patch. The right directory has to be checked inside the chroot. (closes: #923484) shorewall (5.2.3.2-1) unstable; urgency=medium . * New Upstream Version shorewall-core (5.2.3.2-1) unstable; urgency=medium . * New Upstream Version shorewall-init (5.2.3.2-1) unstable; urgency=medium . * New Upstream Version shorewall-lite (5.2.3.2-1) unstable; urgency=medium . * New Upstream Version shorewall6 (5.2.3.2-1) unstable; urgency=medium . * New Upstream Version shorewall6-lite (5.2.3.2-1) unstable; urgency=medium . * New Upstream Version software-properties (0.96.20.2-2) unstable; urgency=medium . * softwareproperties/AptAuth.py: Use apt-key (Closes: #867681) * debian/gbp.conf: Point to debian/buster squashfs-tools (1:4.3-12) unstable; urgency=medium . [ Alexander Couzens ] * Fix compressor initialization in frag_deflator() (closes: #923711). thin-provisioning-tools (0.7.6-2.1) unstable; urgency=medium . * Non-maintainer upload. * 0002-fix-FTBFS-against-libaio-0.3.112.patch: new patch, renames static raise() function in ft-lib/bcache.c to avoid symbol conflict with raise() from signal.h (Closes: #924844) thunderbird (1:60.6.1-1) unstable; urgency=medium . [ intrigeri ] * [2013645] d/rules: drop useless usage of dpkg-parsechangelog . [ Carsten Schoenert ] * [daf1252] New upstream version 60.6.1 Fixed CVE issues in upstream version 60.6.0 (MFSA 2019-11) CVE-2019-9790: Use-after-free when removing in-use DOM elements CVE-2019-9791: Type inference is incorrect for constructors entered through on-stack replacement with IonMonkey CVE-2019-9792: IonMonkey leaks JS_OPTIMIZED_OUT magic value to script CVE-2019-9793: Improper bounds checks when Spectre mitigations are disabled CVE-2019-9794: Command line arguments not discarded during execution CVE-2019-9795: Type-confusion in IonMonkey JIT compiler CVE-2019-9796: Use-after-free with SMIL animation controller CVE-2018-18506: Proxy Auto-Configuration file can define localhost access to be proxied CVE-2019-9788: Memory safety bugs fixed in Firefox 66, Firefox ESR 60.6, and Thunderbird 60.6 Fixed CVE issues in upstream version 60.6.1 (MFSA 2019-12) CVE-2019-9810: IonMonkey MArraySlice has incorrect alias information CVE-2019-9813: Ionmonkey type confusion with __proto__ mutations * [f88a505] rebuild patch queue from patch-queue branch added patch: fixes/Bug-1526744-find-dupes.py-Calculate-md5-by-chunk.patch webkit2gtk (2.22.7-1) unstable; urgency=high . * New upstream release (Closes: #921869). xserver-xorg-input-libinput (0.28.2-2) unstable; urgency=medium . * Ship configuration snippet in the udeb as well.