Delta generated at: 2023-03-21 11:37 UTC

amavisd-new 1:2.12.2-1.1ubuntu1 -> 1:2.13.0-2

* Last Uploader: Sergio Durigan Junior

Debian changes newer than ubuntu version:

amavisd-new (1:2.13.0-2) unstable; urgency=medium

  * Remove amavisd-new-libs for bookworm requirements.

 -- Brian May   Fri, 24 Feb 2023 10:14:27 +1100

amavisd-new (1:2.13.0-1) unstable; urgency=medium

  [ Debian Janitor ]
  * Remove constraints unnecessary since buster:
    + amavisd-new: Drop versioned constraint on adduser, libarchive-zip-perl,
      libcompress-raw-zlib-perl, libconvert-tnef-perl, libconvert-uulib-perl,
      libmailtools-perl, lsb-base and perl in Depends.
    + amavisd-new: Drop versioned constraint on apt-listchanges, libdbi-perl,
      libmail-dkim-perl, libnet-ldap-perl and spamassassin in Suggests.
    + amavisd-new: Drop versioned constraint on logcheck in Conflicts.

  [ Damian Lukowski ]
  * Update to upstream 2.13.0

 -- Brian May   Thu, 23 Feb 2023 16:00:54 +1100

apache2 2.4.55-1ubuntu2 -> 2.4.56-1

* Last Uploader: Marc Deslauriers

Debian changes newer than ubuntu version:

Error creating changes log. Please look manually

apr 1.7.2-2 -> 1.7.2-3

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

apr (1.7.2-3) unstable; urgency=medium

  * Add more fixes for atomics from upstream, in particular for
    32 bit archs with weak memory ordering.

 -- Stefan Fritsch   Sun, 26 Feb 2023 21:51:24 +0100

aspell-en 2018.04.16-0-1 -> 2020.12.07-0-1

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

aspell-en (2020.12.07-0-1) unstable; urgency=medium

  * New upstream version 2020.12.07-0

  [ Debian Janitor ]
  * Remove constraints unnecessary since buster (oldstable):
    + Build-Depends: Drop versioned constraint on cdbs and
      dictionaries-common-dev.
    + aspell-en: Drop versioned constraint on aspell and
      dictionaries-common in Depends.

  [ Dr. Tobias Quathamer ]
  * Remove Brian Nelson as maintainer, request from MIA team.
    Thanks for your work, Brian! (Closes: #915449)
  * Add gbp.conf for new branch layout
  * Add Rules-Requires-Root: no
  * Update Standards-Version to 4.6.2, no changes needed

 -- Dr. Tobias Quathamer   Tue, 28 Feb 2023 14:21:51 +0100

bind9 1:9.18.12-1ubuntu1 -> 1:9.18.13-1

* Last Uploader: Lena Voytek (sponsored by Sergio Durigan Junior)

Debian changes newer than ubuntu version:

bind9 (1:9.18.13-1) unstable; urgency=medium

  * New upstream version 9.18.13

 -- Ondřej Surý   Wed, 15 Mar 2023 18:11:29 +0100

bind9-libs n/a -> 1:9.11.19+dfsg-2.1

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

bind9-libs (1:9.11.19+dfsg-2.1) unstable; urgency=medium

  * Non-maintainer upload.
  * Add patch from Jorge Niedbalski to stop redundant DHCP servers
    from crashing. (Closes: #968298)

 -- Adrian Bunk   Sun, 25 Jul 2021 23:22:48 +0300

bind9-libs (1:9.11.19+dfsg-2) unstable; urgency=high

  * Although none of these CVEs affect the ISC DHCP, it's better to have
    them all fixed just for the same the assumption proves false in the
    future:
   + [CVE-2020-8625]: Fix off-by-one bug in ISC SPNEGO implementation.
   + [CVE-2020-8624]: "update-policy" rules of type "subdomain" were
     incorrectly treated as "zonesub" rules, which allowed keys used in
     "subdomain" rules to update names outside of the specified
     subdomains. The problem was fixed by making sure "subdomain" rules
     are again processed as described in the ARM.
   + [CVE-2020-8622]: It was possible to trigger an assertion failure
     when verifying the response to a TSIG-signed request.

 -- Ondřej Surý   Tue, 16 Feb 2021 09:35:53 +0100

bind9-libs (1:9.11.19+dfsg-1) unstable; urgency=medium

  * New upstream version 9.11.19+dfsg

 -- Ondřej Surý   Tue, 19 May 2020 22:19:50 +0200

bind9-libs (1:9.11.18+dfsg-1) unstable; urgency=medium

  * New upstream version 9.11.18+dfsg

 -- Ondřej Surý   Thu, 16 Apr 2020 08:44:01 +0200

bind9-libs (1:9.11.17+dfsg-4) unstable; urgency=medium

  * Revert the SONAME back to 1110, to accomodate to the binNMUs
    that has been issued meanwhile.  I'll poke myself to be more
    careful about the ABI bumps.

 -- Ondřej Surý   Mon, 23 Mar 2020 10:16:17 +0100

bind9-libs (1:9.11.17+dfsg-3) unstable; urgency=medium

  * Revert "Bump the SONAME of libdns to 1110"

 -- Ondřej Surý   Mon, 23 Mar 2020 09:44:25 +0100

bind9-libs (1:9.11.17+dfsg-2) unstable; urgency=medium

  * Upload to unstable and misc changes to d/control

 -- Ondřej Surý   Sun, 22 Mar 2020 09:02:08 +0100

bind9-libs (1:9.11.17+dfsg-1) experimental; urgency=medium

  * New upstream version 9.11.17+dfsg
  * Bump the SONAME of libdns to 1110

 -- Ondřej Surý   Fri, 20 Mar 2020 14:31:18 +0100

bind9-libs (1:9.11.16+dfsg-3) experimental; urgency=medium

  * Cleanup dnsutils package and don't install manpages
  * Add lintian override for isc-config.sh

 -- Ondřej Surý   Thu, 20 Feb 2020 16:54:48 +0100

bind9-libs (1:9.11.16+dfsg-2) experimental; urgency=medium

  * Change the package to library only

 -- Ondřej Surý   Thu, 20 Feb 2020 15:28:42 +0100

brltty 6.5-5ubuntu3 -> 6.5-6

* Last Uploader: Jeremy Bícha

Debian changes newer than ubuntu version:

brltty (6.5-6) unstable; urgency=medium

  * initramfs/hooks/brltty.in: Copy over brltty preferences into initramfs.
  * po/it.po: Add Italian debconf translation (Closes: Bug#1024689).
  * po/pt_BR.po: Add Brazilian Portuguese translation (Closes: Bug#1025207).
  * control: Add polkitd as alternative to policykit-1 package
    (Closes: Bug#1025547).

 -- Samuel Thibault   Tue, 06 Dec 2022 22:25:48 +0100

chrony 4.3-1ubuntu4 -> 4.3-2

* Last Uploader: Benjamin Drung

Debian changes newer than ubuntu version:

chrony (4.3-2) unstable; urgency=medium

  * debian/control:
    - Bump Standards-Version to 4.6.2 (no changes needed).

  * debian/copyright:
    - Update copyright year for debian/*.

  * debian/.gitlab-ci.yml:
    - Use the recommended syntax to skip a job.

  * debian/install:
    - Install the chrony-wait.service systemd unit.

  * debian/postinst:
    - Ensure that chronyd can read the /etc/chrony/chrony.keys file after
    dropping root privileges.

  * debian/postrm:
    - Remove the override for /etc/chrony/chrony.keys when purging chrony.

  * debian/rules:
    - Do not enable nor start chrony-wait.service for the time being.

  * debian/tests/upstream-simulation-test-suite:
    - Run each test only once. Running several iterations is no longer
    relevant since we use a hard coded seed.

  [ Taylor Stearns ]
  * debian/chrony.conf:
    - Replace U+2019 with ASCII quote. (MR: !10)

 -- Vincent Blut   Fri, 27 Jan 2023 22:51:17 +0100

clamav 0.103.8+dfsg-0ubuntu1 -> 1.0.1+dfsg-2

* Last Uploader: David Fernandez Gonzalez (sponsored by Marc Deslauriers)

Debian changes newer than ubuntu version:

clamav (1.0.1+dfsg-2) unstable; urgency=medium

  * Depend on latest libtfm1 (Closes: #1031896, #1027010).

 -- Sebastian Andrzej Siewior   Sun, 26 Feb 2023 17:39:06 +0100

clamav (1.0.1+dfsg-1) unstable; urgency=medium

  * Import 1.0.1 (Closes: #1031509)
    - CVE-2023-20032 (Possible RCE in the HFS+ file parser).
    - CVE-2023-20052 (Possible information leak in the DMG file parser).

 -- Sebastian Andrzej Siewior   Fri, 17 Feb 2023 20:29:05 +0100

clamav (1.0.0+dfsg-6) unstable; urgency=medium

  [ Sebastian Andrzej Siewior ]
  * Add d/p/Add-an-option-to-avoid-setting-RPATH-on-unix-systems.patch to fix
    rpath issues

  [ Scott Kitterman ]
  * Remove obsolete usr/share/doc/*/NEWS.gz links from debian/*.links, no
    longer provided in the package (Thanks to Paul Wise for reporting)
    (Closes: #1029173)
  * Complete update of d/copyright for upstream file removal/reorganization
  * Restore and update clamav-freshclam and libclamav lintian-overrides for
    current lintian
  * Drop depends on obsolete package lsb-base

 -- Scott Kitterman   Sat, 21 Jan 2023 18:02:12 -0500

clamav (1.0.0+dfsg-5) unstable; urgency=medium

  [ Scott Kitterman ]
  * Update paths in d/tests/clamd for new source layout
  * Add misc:Pre-Depends to clamav-daemon and clamav-milter for
    init-system-helpers
  * Remove obsolete debian/NEWS file
  * More lintian override corrections
  * Start of removing obsolete d/copyright entries

  [ Sebastian Andrzej Siewior ]
  * Fix testsuite on big endian architectures.

 -- Scott Kitterman   Fri, 06 Jan 2023 12:33:39 -0500

clamav (1.0.0+dfsg-4) unstable; urgency=medium

  * Drop unneeded build-depends on rust-lldb (Closes: #1027948).

 -- Scott Kitterman   Wed, 04 Jan 2023 18:32:47 -0500

clamav (1.0.0+dfsg-3) unstable; urgency=medium

  * Upload to unstable
  * Directly trigger html docs build to fix lack of html docs and update
    clamav-docs.install
  * Fixup duplicate globs in d/copyright
  * Update paths for new source layout in lintian overrides
  * Update clean rule for new tests
  * Add debian/source/options to ignore changes in Cargo.lock when regenerated
    during build
  * Remove obsolete overrides from d/rules

 -- Scott Kitterman   Wed, 04 Jan 2023 15:06:03 -0500

clamav (1.0.0+dfsg-2) experimental; urgency=medium

  [ Scott Kitterman ]
  * Add libclamav11 replaces libclamav9 since the libfreshclam so name did not
    change (Closes: #1027698).

  [ Sebastian Andrzej Siewior ]
  * Use a version-script and limit the exported symbols of libclamav and
    libfreshclam.

 -- Sebastian Andrzej Siewior   Mon, 02 Jan 2023 18:38:42 +0100

clamav (1.0.0+dfsg-1) experimental; urgency=medium

  * Update to 1.0.0 (Closes: #1006179).

 -- Sebastian Andrzej Siewior   Sat, 31 Dec 2022 13:44:59 +0100

containerd 1.6.12-0ubuntu2 -> 1.6.18~ds1-1

* Last Uploader: Benjamin Drung

Sync or Merge bug: Bug #1971269 in containerd (Ubuntu): "Merge containerd from Debian unstable for kinetic" (New)

Debian changes newer than ubuntu version:

containerd (1.6.18~ds1-1) unstable; urgency=medium

  * New upstream version 1.6.18~ds1
    + CVE-2023-25153: OCI image importer memory exhaustion
    + CVE-2023-25173: Supplementary groups are not set up properly
  * Install cni-bridge-fp to /usr/lib/cni in autopkgtest

 -- Shengjing Zhu   Thu, 16 Feb 2023 07:16:20 +0800

containerd (1.6.17~ds1-1) unstable; urgency=medium

  * New upstream version 1.6.17~ds1
  * Add missing failpoint binaries in cri-integration autopkgtest

 -- Shengjing Zhu   Sat, 11 Feb 2023 02:01:05 +0800

containerd (1.6.16~ds1-1) unstable; urgency=medium

  * New upstream version 1.6.16~ds1
  * Only track 1.6 LTS version in uscan watch file
  * Drop "Skip failed TestUpdateOCILinuxResource" patch, fixed by
    https://github.com/containerd/containerd/commit/91a68edd

 -- Shengjing Zhu   Sun, 29 Jan 2023 03:07:20 +0800

containerd (1.6.14~ds1-1) unstable; urgency=medium

  * New upstream version 1.6.14~ds1
  * Update Standards-Version to 4.6.2 (no changes)
  * Skip failed TestUpdateOCILinuxResource since schroot doesn't have cgroup

 -- Shengjing Zhu   Tue, 20 Dec 2022 10:30:50 +0800

containerd (1.6.13~ds1-1) unstable; urgency=medium

  [ Benjamin Drung ]
  * Bump golang-google-grpc-dev to >= 1.30.
  * Let the dev package depend on golang-github-gotestyourself-gotest.tools-dev
    `pkg/testutil/helpers_unix.go` uses `gotest.tools/v3/assert` and
    therefore golang-github-containerd-containerd-dev needs to depend on
    golang-github-gotestyourself-gotest.tools-dev.

  [ Shengjing Zhu ]
  * New upstream version 1.6.13~ds1

 -- Shengjing Zhu   Fri, 16 Dec 2022 02:42:08 +0800

crmsh 4.4.0-4ubuntu1 -> 4.4.1-1

* Last Uploader: Simon Chopin (sponsored by Lucas Kanashiro)

Debian changes newer than ubuntu version:

crmsh (4.4.1-1) unstable; urgency=medium

  [ Bas Couwenberg ]
  * Mark spelling-errors.patch as Applied-Upstream.
  * Mark getargspec.patch as Applied-Upstream.

  [ Valentin Vidic ]
  * New upstream version 4.4.1
  * d/patches: refresh for new version

 -- Valentin Vidic   Fri, 03 Mar 2023 22:48:41 +0100

crmsh (4.4.0-5) unstable; urgency=medium

  [ Lucas Kanashiro ]
  * d/tests: use fence-virt in utils.sh test

  [ Valentin Vidic ]
  * d/control: update Standards-Version to 4.6.2
  * d/copyright: update year

 -- Valentin Vidic   Sat, 14 Jan 2023 01:45:45 +0100

cyrus-sasl2 2.1.28+dfsg-10 -> 2.1.28+dfsg-11

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

cyrus-sasl2 (2.1.28+dfsg-11) unstable; urgency=medium

  [ Debian Janitor ]
  * Apply multi-arch hints. + cyrus-sasl2-doc: Add Multi-Arch: foreign.

  [ Bastian Germann ]
  * Add Romanian translation (Closes: #1031499)
  * Fix lintian depends-on-obsolete-package (lsb-base)
  * Add saslauthd.service (Closes: #981438)
  * Remove dh_installinit params
  * Install saslauthd.service similar to saslauthd.init
  * Drop old NEWS
  * Fix systemd-service-file-missing-documentation-key

 -- Bastian Germann   Wed, 01 Mar 2023 00:52:04 +0100

dictionaries-common 1.29.4 -> 1.29.5

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

dictionaries-common (1.29.5) unstable; urgency=medium

  [ Soren Stoutner ]
  * debian/copyright:  Update copyright dates to include 2023.
  * policy/dsdt-policy.xml.in:  Update to reflect changes in the Qt
    packaging.

  [ Agustin Martin Domingo ]
  * installdeb-myspell: Add /usr/bin/convert-bdic as first option.

 -- Agustin Martin Domingo   Tue, 14 Mar 2023 22:17:31 +0100

dovecot 1:2.3.19.1+dfsg1-2ubuntu4 -> 1:2.3.19.1+dfsg1-2.1

* Last Uploader: Jeremy Bícha

Sync or Merge bug: Bug #1993397 in dovecot (Ubuntu): "Merge dovecot from Debian unstable for lunar" (Incomplete)

Debian changes newer than ubuntu version:

dovecot (1:2.3.19.1+dfsg1-2.1) unstable; urgency=medium

  * Non-maintainer upload.
  * [b02ebc9] Don't use deprecated crypt module.
    (closes: #1028513)

 -- Bas Couwenberg   Fri, 20 Jan 2023 07:01:26 +0100

fetchmail 6.4.36-1 -> 6.4.37-1

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

fetchmail (6.4.37-1) unstable; urgency=medium

  * New upstream release.

 -- Laszlo Boszormenyi (GCS)   Mon, 27 Feb 2023 18:42:46 +0100

freeradius 3.2.1+dfsg-1 -> 3.2.1+dfsg-3

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

freeradius (3.2.1+dfsg-3) unstable; urgency=medium

  * Cherry-pick upstream patch to fix partical CA support (Closes: #1032590)

 -- Bernhard Schmidt   Fri, 10 Mar 2023 08:53:27 +0100

freeradius (3.2.1+dfsg-2) unstable; urgency=medium

  * Cherry-pick upstream fix for EAP-TTLS-MSCHAPv2 with TLSv1.3
    (Closes: #919234)

 -- Bernhard Schmidt   Tue, 07 Mar 2023 22:51:06 +0100

gst-plugins-good1.0 1.22.0-4ubuntu1 -> 1.22.0-5

* Last Uploader: Jeremy Bícha

Debian changes newer than ubuntu version:

gst-plugins-good1.0 (1.22.0-5) unstable; urgency=medium

  * Team upload
  * Disable the qt5/qt6 elements on architectures where Qt5/Qt6 are not
    building

 -- Laurent Bigonville   Mon, 27 Feb 2023 20:01:19 +0100

haproxy 2.6.9-1ubuntu1 -> 2.6.11-1

* Last Uploader: Marc Deslauriers

Debian changes newer than ubuntu version:

haproxy (2.6.11-1) unstable; urgency=medium

  * New upstream version.

 -- Vincent Bernat   Sat, 18 Mar 2023 14:37:13 +0100

haproxy (2.6.10-1) unstable; urgency=medium

  * New upstream version.

 -- Vincent Bernat   Sat, 11 Mar 2023 12:59:22 +0100

heimdal 7.8.git20221117.28daf24+dfsg-1ubuntu1 -> 7.8.git20221117.28daf24+dfsg-1.1

* Last Uploader: Steve Langasek

Debian changes newer than ubuntu version:

heimdal (7.8.git20221117.28daf24+dfsg-1.1) unstable; urgency=high

  * Non-maintainer upload.
  * gsskrb5: fix accidental logic inversions (CVE-2022-45142)
    (Closes: #1030849)

 -- Salvatore Bonaccorso   Sun, 12 Feb 2023 10:35:50 +0100

hplip 3.22.10+dfsg0-1 -> 3.22.10+dfsg0-2

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

hplip (3.22.10+dfsg0-2) unstable; urgency=medium

  * rework patch that uses distro module (0075 at the moment)
    Thanks to Mark Hindley and others for detecting and fixing this!
    (Closes: #1010805, #1029459, #1030043, #1031233, #1031784)

 -- Thorsten Alteholz   Sat, 05 Mar 2023 00:39:02 +0100

htop 3.2.2-1 -> 3.2.2-2

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

htop (3.2.2-2) unstable; urgency=medium

  * Remove LXC special handling for CPUs

 -- Daniel Lange   Sun, 26 Feb 2023 12:50:00 +0100

ipmitool 1.8.19-1ubuntu1 -> 1.8.19-4

* Last Uploader: Lena Voytek (sponsored by Lucas Kanashiro)

Debian changes newer than ubuntu version:

ipmitool (1.8.19-4) unstable; urgency=medium

  * debian/patches/0110-unpdate_IANA_URL.patch:
    - Fix file name on man page (Closes: #1023312).
  * New debian/NEWS about the changed download link.

 -- Jörg Frings-Fürst   Fri, 30 Dec 2022 10:07:51 +0100

ipmitool (1.8.19-3) unstable; urgency=medium

  * debian/patches/0110-unpdate_IANA_URL.patch:
    - Fix file name for local IANA PEN database (Closes: #1023312).
      Thanks to Elimar Riesebieter .
  * New debian/patches/0115-hurd_PATH_MAX.patch:
    - Add missing PATH_MAX for hurd-i386.

 -- Jörg Frings-Fürst   Mon, 26 Dec 2022 10:44:29 +0100

ipmitool (1.8.19-2) unstable; urgency=medium

  * New debian/patches/0110-unpdate_IANA_URL.patch (Closes: #1023312):
    - Fix IANA url.

 -- Jörg Frings-Fürst   Sun, 25 Dec 2022 14:32:31 +0100

ldb n/a -> 2:2.2.3-2

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

ldb (2:2.2.3-2) unstable; urgency=high

  * Skip failing tests (on 32-bit architectures)

 -- Mathieu Parent   Thu, 04 Nov 2021 23:06:24 +0100

ldb (2:2.2.3-1) unstable; urgency=high

  * New upstream version 2.2.3

 -- Mathieu Parent   Thu, 04 Nov 2021 19:28:54 +0100

ldb (2:2.2.2-2) unstable; urgency=high

  * Upload to unstable

 -- Mathieu Parent   Mon, 01 Nov 2021 08:58:11 +0100

ldb (2:2.2.2-1) experimental; urgency=medium

  [ Mathieu Parent ]
  * Acknowledge NMU
  * New upstream version 2.2.2, includes:
    - CVE-2020-27840: Heap corruption via crafted DN strings.
    - CVE-2021-20277: Out of bounds read in AD DC LDAP server.

  [ Debian Janitor ]
  * Update standards version to 4.5.1, no changes needed.
  * Avoid explicitly specifying -Wl,--as-needed linker flag.

 -- Mathieu Parent   Sat, 30 Oct 2021 15:57:53 +0200

ldb (2:2.2.0-3.1) unstable; urgency=medium

  * Non-maintainer upload.
  * ldb_dn: avoid head corruption in ldb_dn_explode (CVE-2020-27840)
    (Closes: #985936)
  * pytests: move Dn.validate test to ldb
  * ldb/attrib_handlers casefold: stay in bounds (CVE-2021-20277)
    (Closes: #985935)
  * ldb: add tests for ldb_wildcard_compare
  * ldb tests: ldb_match tests with extra spaces
  * ldb: Remove tests from ldb_match_test that do not pass

 -- Salvatore Bonaccorso   Fri, 26 Mar 2021 19:52:18 +0100

ldb (2:2.2.0-3) unstable; urgency=medium

  * Upload to unstable

 -- Mathieu Parent   Wed, 18 Nov 2020 20:33:02 +0100

ldb (2:2.2.0-2) experimental; urgency=medium

  * ldb_lmdb_free_list_test also fails on mips64el

 -- Mathieu Parent   Wed, 11 Nov 2020 12:39:31 +0100

ldb (2:2.2.0-1) experimental; urgency=medium

  * New upstream version 2.2.0
    - d/watch: Bump to ldb 2.2.x, for samba 4.13.x
    - Update patches
    - Update symbols
  * Generate python3-ldb.symbols to build on all python3 versions
    (Closes: #972912)
  * Update watch file format version to 4.
  * d/copyright: Fix duplicate-globbing-patterns
  * Move to debhelper-compat 13

 -- Mathieu Parent   Tue, 10 Nov 2020 17:35:57 +0100

ldb (2:2.1.4-2) unstable; urgency=high

  * Also skip test_guid_indexed_v1_db on mipsel
  * Also skip ldb_lmdb_free_list_test on ia64

 -- Mathieu Parent   Thu, 02 Jul 2020 14:25:48 +0200

ldb (2:2.1.4-1) unstable; urgency=high

  * New upstream version 2.1.4
    - CVE-2020-10730: NULL pointer de-reference and use-after-free in Samba AD
      DC LDAP Server with ASQ, VLV and paged_results.
    - Updade symbols, no change

 -- Mathieu Parent   Thu, 02 Jul 2020 12:28:49 +0200

ldb (2:2.1.3-4) unstable; urgency=medium

  * Upload to unstable
  * Also skip ldb_lmdb_free_list_test on alpha

 -- Mathieu Parent   Sun, 28 Jun 2020 11:28:16 +0200

ldb (2:2.1.3-3) experimental; urgency=medium

  * FTBFS: Also skip test_guid_indexed_v1_db on powerpc
  * FTBFS: Skip ldb_lmdb_free_list_test on ppc64el, ppc64 and sparc64

 -- Mathieu Parent   Thu, 25 Jun 2020 15:16:24 +0200

ldb (2:2.1.3-2) experimental; urgency=medium

  * Fix FTBFS / Increase the over-estimation for sparse files

 -- Mathieu Parent   Thu, 25 Jun 2020 09:48:54 +0200

ldb (2:2.1.3-1) experimental; urgency=medium

  * New upstream version 2.1.3
    - d/watch: Move to 2.1.x for samba 4.12.x
    - Update symbols
    - d/control: Bump build-deps: talloc 2.3.1, tdb 1.4.3, tevent 0.10.2

 -- Mathieu Parent   Tue, 23 Jun 2020 17:58:39 +0200

ldb (2:2.0.8-2) unstable; urgency=medium

  [ Andreas Hasenack ]
  * d/python3-ldb.symbols*: update symbols for python 3.8 (Closes: #953331)

 -- Mathieu Parent   Mon, 09 Mar 2020 11:05:52 +0100

ldb (2:2.0.8-1) unstable; urgency=medium

  [ Debian Janitor ]
  * Use dh $@ sequencer.

  [ Mathieu Parent ]
  * d/watch: Remove outdated dversionmangle
  * d/watch: Pin to ldb 2.0.x (for samba 4.11)
  * New upstream version 2.0.8
    - Update symbols
  * Standards-Version: 4.5.0, no change
  * d/control: libldb-dev Depends libtevent-dev

 -- Mathieu Parent   Mon, 27 Jan 2020 10:45:29 +0100

ldb (2:2.0.7-4) unstable; urgency=medium

  [ Debian Janitor ]
  * Update standards version to 4.4.1, no changes needed.

  [ Mathieu Parent ]
  * Only build on default python3 (Closes: #942669)

 -- Mathieu Parent   Sun, 17 Nov 2019 14:42:51 +0100

ldb (2:2.0.7-3) unstable; urgency=medium

  * Fix FTBFS on some arches:
    - Skip test_guid_indexed_v1_db on mips64el, ppc64el, ia64, ppc64

 -- Mathieu Parent   Wed, 02 Oct 2019 21:26:49 +0200

ldb (2:2.0.7-2) unstable; urgency=medium

  [ Jelmer Vernooij ]
  * Remove obsolete fields Name, Contact from debian/upstream/metadata.
  * Rely on pre-initialized dpkg-architecture variables.

  [ Mathieu Parent ]
  * Upload to unstable

 -- Mathieu Parent   Wed, 02 Oct 2019 07:07:59 +0200

ldb (2:2.0.7-1) experimental; urgency=medium

  * Upload to experimental
  * New upstream version 2.0.7
    - d/watch: Unpin ldb to 1.4.x
    - d/control: Bump build-deps: talloc 2.2.0, tdb 1.4.2, tevent 0.10.0
    - Drop 00_Enable-make-test-even-without-lmdb.patch, merged
    - Replace libldb1 by libldb2 (ABI Bump)
    - Update symbols

 -- Mathieu Parent   Mon, 16 Sep 2019 13:59:24 +0200

ldb (2:1.5.5-2) unstable; urgency=medium

  * Upload to unstable
  * d/copyright:
    - Move common/qsort.c as if it was lib/ldb/common/qsort.c
    - Move tools/* as if it was lib/ldb/tools/*
    - Sort lib/{talloc,tdb,tevent}

 -- Mathieu Parent   Tue, 10 Sep 2019 18:21:30 +0200

ldb (2:1.5.5-1) experimental; urgency=medium

  [ Mathieu Parent ]
  * New upstream version 1.5.5
  * Update salsa-ci.yml

  [ Timo Aaltonen ]
  * d/p/00_Enable-make-test-even-without-lmdb.patch: Refreshed.
  * d/p/03_EBADE: Dropped, upstream.
  * d/control: Bump build-deps: talloc 2.1.16, tdb 1.3.18, tevent 0.9.39.
  * d/libldb1.install: added libldb-tdb-{err-map,int}.so
  * d/rules: use Makefile targets instead of direct WAF calls
  * Add python3 packages.
  * d/control, d/python3-ldb-dev.install, d/rules: use dh-exec and install the
    python header file in a version-dependent include dir.
  * d/python3-ldb.symbols.*: add per-architecture symbols files
  * d/libldb1.symbols: update for this version
  * d/rules: clean extra paths in the clean target
  * d/rules: fix tevent globbing used in its removal
  * d/control, d/python-ldb*, d/rules: drop python2 packages and support

  [ Debian Janitor ]
  * Use secure URI in Homepage field.
  * Bump debhelper from old 11 to 12.
  * Set upstream metadata fields: Contact, Name.

  [ Mathieu Parent ]
  * Fix file-contains-trailing-whitespace in d/control and d/rules
  * Standards-Version: 4.4.0
  * Override wrong-section-according-to-package-name python3-ldb-dev => python
  * Mark debian/python3-ldb-dev.install executable
  * Override package-name-doesnt-match-sonames libpyldb-util.cpython-*
  * d/copyright: Add waf copyright
  * d/copyright: Update lib/replace/*
  * d/copyright: Add missing lib/talloc/*
  * Add dh-exec-subst-unknown-variable override (for DEB_PY3_INCDIR)

 -- Mathieu Parent   Sat, 24 Aug 2019 06:37:58 +0200

ldb (2:1.5.1+really1.4.7-1) unstable; urgency=medium

  [ Salsa Pipeline ]
  * Update salsa CI pipeline

  [ Mathieu Parent ]
  * New upstream version 1.4.7
    - Update symbols (no change)

 -- Mathieu Parent   Sun, 07 Jul 2019 10:06:38 +0200

ldb (2:1.5.1+really1.4.6-3) unstable; urgency=medium

  * Upload to unstable

 -- Mathieu Parent   Sat, 30 Mar 2019 18:09:28 +0100

ldb (2:1.5.1+really1.4.6-2) experimental; urgency=medium

  * Fix 00_Enable-make-test-even-without-lmdb.patch to prevent FTBFS on 32-bit
    systems

 -- Mathieu Parent   Wed, 20 Mar 2019 20:54:20 +0100

ldb (2:1.5.1+really1.4.6-1) experimental; urgency=medium

  * New upstream version 1.4.6
    - d/watch: Pin ldb version to 1.4.x
    - d/watch: Mangle 1.5.1+really from debian version
    - Update 00_Enable-make-test-even-without-lmdb.patch as merged upstream
    - Drop CVE-2019-3824-v4-9.patch, merged
    - Update symbols

 -- Mathieu Parent   Wed, 20 Mar 2019 07:26:57 +0100

ldb (2:1.5.1+really1.4.3-2) unstable; urgency=high

  * Fixes CVE-2019-3824: "Out of bound read in ldb_wildcard_compare"
    - Add CVE-2019-3824-v4-9.patch
    - Update path, and remove version bump in CVE-2019-3824-v4-9.patch

 -- Mathieu Parent   Tue, 26 Feb 2019 23:50:07 +0100

ldb (2:1.5.1+really1.4.3-1) unstable; urgency=high

  * Rollback to version 1.4.3 (for Samba 4.9)
    - Revert "Refresh symbols files."
    - Revert "Install libldb-tdb-{err-map,int}.so"
    - Revert "Drop patch 03_EBADE: applied upstream."

 -- Mathieu Parent   Sat, 24 Nov 2018 22:50:47 +0100

ldb (2:1.5.1-1) unstable; urgency=medium

  * New upstream release.
  * Drop patch 03_EBADE: applied upstream.
  * Install libldb-tdb-{err-map,int}.so
  * Unicodify my surname.

 -- Jelmer Vernooij   Fri, 23 Nov 2018 13:35:28 +0000

ldb (2:1.4.3-2) unstable; urgency=medium

  * Upload to unstable

 -- Mathieu Parent   Sat, 17 Nov 2018 17:26:26 +0100

ldb (2:1.4.3-1) experimental; urgency=medium

  * Upload to experimental
  * New upstream version 1.4.3
    - Update symbols: no change
  * Add Debian pipeline (debian/gitlab-ci.yml
  * Lintian:
    - debian/python-ldb.lintian-overrides: Override false-positive
      library-not-linked-against-libc
    - Fix public-upstream-key-not-minimal
    - Add Build-Depends-Package field in d/*.symbols

 -- Mathieu Parent   Mon, 12 Nov 2018 09:07:14 +0100

ldb (2:1.4.2-4) unstable; urgency=medium

  [ James Clarke ]
  * 03_EBADE: Add patch from upstream to fix FTBFS on architectures with no
    EBADE error code, such as GNU/kFreeBSD.

  [ Mathieu Parent ]
  * Upload to unstable

 -- Mathieu Parent   Thu, 01 Nov 2018 21:10:06 +0100

ldb (2:1.4.2-3) experimental; urgency=medium

  * Fix FTBFS on 32-bit architectures (Samba #13630):
    - Revert "d/rules: Append -D_FILE_OFFSET_BITS=64 to CFLAGS to fix FTBFS on
      32-bit platforms"
    - Enable make test even without lmdb
    - 02_hurd patch fixup
    - d/libldb1.install: Do not ship libldb-mdb-int.so on 32-bit architectures

 -- Mathieu Parent   Mon, 08 Oct 2018 14:31:20 +0200

ldb (2:1.4.2-2) experimental; urgency=medium

  * d/rules: Append -D_FILE_OFFSET_BITS=64 to CFLAGS to fix FTBFS on 32-bit
    platforms
  * d/rules: More verbose build log with waf -v

 -- Mathieu Parent   Wed, 19 Sep 2018 06:44:59 +0200

ldb (2:1.4.2-1) experimental; urgency=medium

  * Upload to experimental
  * New upstream version 1.4.2
    - Bump build-dependencies to talloc 2.1.4, tdb 1.3.16 and tevent 0.9.37
    - Update symbols
    - Update patch 02_hurd
  * d/rules: Remove dbgsym-migration in override_dh_strip
  * d/libldb1.install: Install libldb-mdb-int.so and libldb-key-value.so
  * d/rules: dh_missing --fail-missing
  * d/control: Revert "Mark python-ldb Multi-Arch: same" to fix Lintian's
    multi-arch-same-package-calls-pycompile

 -- Mathieu Parent   Tue, 18 Sep 2018 21:21:53 +0200

ldb (2:1.4.0+really1.3.6-1) unstable; urgency=medium

  * New upstream version 1.3.6
    - Update symbols, no change
    - Remove 03_ldb-Fix-missing-NULL-terminator-in-ldb_mod_op_test-t.patch,
      merged
  * Standards-Version: 4.2.1

 -- Mathieu Parent   Mon, 27 Aug 2018 15:11:58 +0200

ldb (2:1.4.0+really1.3.5-2) unstable; urgency=high

  * Add patch from upstream to fix FTBFS on some arches (arm64, armhf, mips,
    mipsel, s390x, ...)
  * Urgency kept to high

 -- Mathieu Parent   Thu, 16 Aug 2018 15:46:12 +0200

ldb (2:1.4.0+really1.3.5-1) unstable; urgency=high

  * Upload to unstable
  * Urgency high for 4.8.4 security release
  * New upstream version 1.3.5 (for samba 4.8.4)
    - samba 4.8 is not compatible with ldb 1.4
    - Update symbols, no change
    - Update patches
  * Revert python3 support until it is back in talloc (Reopen: #815139)
  * Standards-Version: 4.1.5
    - d/control: Add Rules-Requires-Root: no

 -- Mathieu Parent   Wed, 15 Aug 2018 05:13:16 +0200

ldb (2:1.4.0-1) experimental; urgency=medium

  [ Timo Aaltonen ]
  * Add py3 support (Closes: #815139)

  [ Louis van Belle ]
  * Relax debhelper Build-Depends to allow backport

  [ Mathieu Parent ]
  * New upstream version 1.4.0
    - Bump build-dependencies to talloc 2.1.13
    - Update symbols, no change
    - Add liblmdb-dev (>= 0.9.16) to Build-Depends
    - Update patches

 -- Mathieu Parent   Sun, 01 Jul 2018 21:52:39 +0200

ldb (2:1.3.3-1) unstable; urgency=medium

  * New upstream version 1.3.3
    - Update symbols, no change
  * Standards-Version: 4.1.4, no change

 -- Mathieu Parent   Wed, 16 May 2018 23:46:56 +0200

ldb (2:1.3.2-2) unstable; urgency=low

  * Upload to unstable

 -- Mathieu Parent   Tue, 15 May 2018 15:43:04 +0200

ldb (2:1.3.2-1) experimental; urgency=medium

  * New upstream version 1.3.2
    - Bump build-dependencies to talloc 2.1.11 and tevent 0.9.36
    - Update symbols
  * Upload to experimental

 -- Mathieu Parent   Sun, 11 Mar 2018 21:36:00 +0100

ldb (2:1.2.3-1) unstable; urgency=medium

  * New upstream version 1.2.3
    - Update symbols (no change)
  * Standards-Version: 4.1.3, no change
  * Repository moved to salsa: Update Vcs-* fields
  * Bumping debhelper compat from 9 to 11

 -- Mathieu Parent   Thu, 11 Jan 2018 07:36:33 +0100

ldb (2:1.2.2-2) unstable; urgency=medium

  * Upload to sid

 -- Mathieu Parent   Thu, 26 Oct 2017 10:28:05 +0200

ldb (2:1.2.2-1) experimental; urgency=medium

  * New upstream version 1.2.2
    - Update symbols
    - Bump build-dependencies to talloc 2.1.10, tdb 1.3.15 and tevent 0.9.33
    - Add Breaks to incompatible packages
    - Add Build-Depends: libcmocka-dev (>= 1.1.1~)
  * Use https form of the copyright-format URL (Debian Policy 4.0.0)
  * Standards-Version: 4.0.0

 -- Mathieu Parent   Tue, 03 Oct 2017 21:44:15 +0200

ldb (2:1.1.29-2) unstable; urgency=medium

  * Upload to unstable

 -- Mathieu Parent   Mon, 19 Jun 2017 17:25:13 +0200

ldb (2:1.1.29-1) experimental; urgency=medium

  [ Jelmer Vernooij ]
  * New upstream release.
    - Update symbols
    - Bump tdb and tevent Build-depends (resp. 1.3.12 and 0.9.31)

  [ Mathieu Parent ]
  * gbp.conf: pristine-tar = True
  * New upstream version 1.1.29
  * Thanks lintian:
    - Debhelper compat 9
    - Fix missing-build-dependency-for-dh_-command dh_python2 => dh-python
      + Update symbols, again
    - Remove unused overrides: ldb-tools/python-ldb:
      binary-or-shlib-defines-rpath * /usr/lib/ldb
    - Remove empty libldb1.postinst
    - Hardening: Add DEB_BUILD_MAINT_OPTIONS = hardening=+all and
      DEB_LDFLAGS_MAINT_APPEND = -Wl,--as-needed
    - Add override for python-ldb-dev: wrong-section-according-to-package-name
    - Add missing header and fix d/copyright
    - Mark python-ldb Multi-Arch: same

 -- Mathieu Parent   Sat, 10 Jun 2017 23:03:32 +0200

ldb (2:1.1.27-1) unstable; urgency=medium

  * New upstream version.
    - Bump Buid-Depends: talloc 2.1.8, tdb 1.3.10 and tevent 0.9.29
    - Update symbols
  * Use secure Vcs-* uris (Closes: #805719)
  * Add me to uploaders
  * Bump standards version to 3.9.8 (no changes)
  * Use automatic debug packages (-dbgsym)
  * Mark libldb-dev and python-ldb-dev "Multi-Arch: same"

 -- Mathieu Parent   Mon, 10 Oct 2016 10:02:53 +0200

ldb (2:1.1.26-1) unstable; urgency=medium

  * New upstream version.
   + Fixes compatiblity with s390. Closes: #808769
   + Depend on tevent 0.9.27.

 -- Jelmer Vernooij   Fri, 26 Feb 2016 03:18:59 +0000

ldb (2:1.1.24-1) unstable; urgency=high

  * Drop '-b unstable' flag to Vcs-Git.
  * New upstream release. Fixes:
  - CVE-2015-3223: Denial of Service.
  - CVE-2015-5330: Remote memory read.

 -- Jelmer Vernooij   Sun, 13 Dec 2015 16:11:45 +0000

ldb (2:1.1.23-1) unstable; urgency=medium

  * New upstream version.

 -- Jelmer Vernooij   Sun, 08 Nov 2015 21:17:41 +0000

ldb (2:1.1.21-1) unstable; urgency=medium

  * New upstream release.
  * Drop patch 03_revert_ldflags_atend: applied upstream.

 -- Jelmer Vernooij   Sat, 19 Sep 2015 03:01:43 +0000

ldb (2:1.1.20-2) unstable; urgency=medium

  * Add patch 01_manpage_dates: add fixed manpage dates, making the
    build reproducible.

 -- Jelmer Vernooij   Mon, 27 Apr 2015 23:35:02 +0000

ldb (2:1.1.20-1) unstable; urgency=medium

  * New upstream release.
  * Bump standards version to 3.9.6 (no changes).
  * Add patch 03_revert_ldflags_atend: revert upstream change preventing
    use of -Wl,--as-needed.
  * Make libldb1-dbg Multi-Arch: same.
  * python-ldb-dev: Fix capitalization of 'python'.

 -- Jelmer Vernooij   Sat, 25 Apr 2015 14:13:06 +0000

ldb (2:1.1.17-2) unstable; urgency=high

  * No changes from 1:1.1.17-1 (currently in jessie)
  * Increment epoch to revert upload of 1:1.1.18-1 to unstable
  * Urgency high to allow samba security upload to migrate to jessie

 -- Ivo De Decker   Mon, 23 Feb 2015 19:03:36 +0100

ldb (1:1.1.18-1) unstable; urgency=medium

  * New upstream release.
   + Depend on tdb >= 1.3.2.
   + Fixes __attribute__((visibility)) check to not use nested functions.
     Closes: #749987
  * Use canonical URL in Vcs-Git field.
  * Specify branch in Vcs-Git field.
  * Add 02_hurd: link against pthread on the Hurd, to fix ldb module
    loading. Closes: #749095

 -- Jelmer Vernooij   Sat, 05 Jul 2014 23:32:23 +0200

ldb (1:1.1.17-1) unstable; urgency=medium

  * Change maintainer to Debian Samba maintainers, move myself to
    uploaders.
  * Bump standards version to 3.9.5 (no changes).
  * New upstream release.

 -- Jelmer Vernooij   Sat, 12 Apr 2014 16:10:56 +0200

ldb (1:1.1.16-1) unstable; urgency=low

  [ Andrew Bartlett ]
  * New upstream release.
    + Fixes FTBFS. Closes: #713096

  [ Jelmer Vernooij ]
  * Bump standards version to 3.9.4 (no changes).

 -- Jelmer Vernooij   Fri, 19 Jul 2013 22:37:05 +1000

ldb (1:1.1.15-1.1) experimental; urgency=low

  * Non-maintainer upload.
  * New upstream release.
  * Drop 01_exclude_symbols, now upstream.

 -- Andrew Bartlett   Tue, 12 Feb 2013 19:02:05 +1100

ldb (1:1.1.13-1) experimental; urgency=low

  * New upstream release.
  * Change Vcs-Git after migration to Git.
  * Add 01_exclude_symbols, fixing a bug in wafsamba which causes
    private symbols to be exported.

 -- Jelmer Vernooij   Sat, 03 Nov 2012 15:51:49 +0100

ldb (1:1.1.12-1) experimental; urgency=low

  * New upstream release.
   + Depend on tevent 0.9.17.

 -- Jelmer Vernooij   Sat, 08 Sep 2012 17:40:55 +0200

ldb (1:1.1.6-1) unstable; urgency=low

  * New upstream release.

 -- Jelmer Vernooij   Thu, 19 Apr 2012 15:00:14 +0200

ldb (1:1.1.5-2) unstable; urgency=low

  * Add explicit dependency on tdb 1.2.10. Closes: #668576

 -- Jelmer Vernooij   Fri, 13 Apr 2012 11:14:29 +0200

ldb (1:1.1.5-1) unstable; urgency=low

  * Bump standards version to 3.9.3 (no changes).
  * Drop unnecessary lintian overrides (upstream no longer uses private
    libraries with rpath).
  * Properly clean up after build.
  * New upstream release.

 -- Jelmer Vernooij   Thu, 12 Apr 2012 01:46:01 +0200

ldb (1:1.1.4+git20120206-1) unstable; urgency=low

  * New upstream snapshot.
   + Extracts waf source code. Closes: #654482
   + Disable tdb2 support.

 -- Jelmer Vernooij   Tue, 07 Feb 2012 16:04:26 +0100

ldb (1:1.1.4-1) unstable; urgency=low

  * New upstream release.

 -- Jelmer Vernooij   Sat, 03 Dec 2011 00:15:12 +0100

ldb (1:1.1.3-1) unstable; urgency=low

  * New upstream release.

 -- Jelmer Vernooij   Wed, 09 Nov 2011 14:17:14 +0100

ldb (1:1.1.2~git20110807-2) unstable; urgency=low

  * Explicitly build with dh_python2.
  * Build against system Python rather than specifically 2.7. Closes: #642436

 -- Jelmer Vernooij   Tue, 27 Sep 2011 19:49:00 +0200

ldb (1:1.1.2~git20110807-1) unstable; urgency=low

  * New upstream snapshot.
   + Adds proper symbol versioning to libpyldb-util. LP: #777517

 -- Jelmer Vernooij   Sun, 07 Aug 2011 16:06:59 +0200

ldb (1:1.1.1~git20110728-1) unstable; urgency=low

  * Upload to unstable.
  * Switch to new style debhelper.
  * New upstream snapshot.

 -- Jelmer Vernooij   Thu, 28 Jul 2011 16:51:49 +0200

ldb (1:1.1.1~git20110719-4) experimental; urgency=low

  * Add multi-arch support to libldb1.
  * Add debug packages python-ldb-dbg and libldb1-dbg.

 -- Jelmer Vernooij   Tue, 26 Jul 2011 22:08:11 +0200

ldb (1:1.1.1~git20110719-3) unstable; urgency=low

  * Switch to python2.7.

 -- Jelmer Vernooij   Mon, 25 Jul 2011 17:41:20 +0200

ldb (1:1.1.1~git20110719-2) unstable; urgency=low

  * Fix build dependency to be on tevent 0.9.13 rather than 0.9.11. Thanks
    Nobuhiro Iwamatsu.

 -- Jelmer Vernooij   Thu, 21 Jul 2011 16:24:08 +0200

ldb (1:1.1.1~git20110719-1) unstable; urgency=low

  * New upstream snapshot.
  * Bump standards version to 3.9.2 (no changes).

 -- Jelmer Vernooij   Tue, 19 Jul 2011 21:45:21 +0200

ldb (1:1.1.0-1) unstable; urgency=low

  * New upstream release.

 -- Jelmer Vernooij   Fri, 22 Apr 2011 02:58:49 +0200

ldb (1:1.0.2+git20110403-1) experimental; urgency=low

  * New upstream snapshot.
  * Switch to dh_python2. Closes: #616857

 -- Jelmer Vernooij   Sun, 03 Apr 2011 21:51:32 +0200

ldb (1:1.0.2-2) unstable; urgency=low

  * Add symbols file for libpyldb-util.

 -- Jelmer Vernooij   Mon, 28 Feb 2011 04:02:31 +0100

ldb (1:1.0.2-1) unstable; urgency=low

  * New upstream release.

 -- Jelmer Vernooij   Sun, 27 Feb 2011 14:29:46 +0100

ldb (1:1.0.1~git20120220-1) experimental; urgency=low

  * New upstream snapshot.

 -- Jelmer Vernooij   Sun, 20 Feb 2011 14:42:57 +0100

ldb (1:1.0.0-2) unstable; urgency=low

  * Add breaks/conflicts for libldb0.

 -- Jelmer Vernooij   Sat, 12 Feb 2011 18:23:07 +0100

ldb (1:1.0.0-1) unstable; urgency=low

  * Run test suite during package build.
  * Add references to common license files in copyright file.
  * New upstream release.
   + Rename libldb0 to libldb1 after upstream soname bump.

 -- Jelmer Vernooij   Sat, 12 Feb 2011 03:45:51 +0100

ldb (1:0.9.24-1) experimental; urgency=low

  * New upstream release.
   + Add python-ldb-dev package.
  * Add watch file.

 -- Jelmer Vernooij   Sat, 23 Oct 2010 20:00:40 +0200

ldb (1:0.9.22-2) experimental; urgency=low

  * New upstream release.
   + Add python-ldb-dev package.
   + Uses version symbols.
  * Switch to python-support.
  * Link with --as-needed.
  * Run test suite during build.

 -- Jelmer Vernooij   Wed, 22 Dec 2010 00:05:26 +0100

ldb (1:0.9.22-1) unstable; urgency=low

  * New upstream release.
   + Add python-ldb-dev package.
   + Uses version symbols.
  * Switch to python-support.
  * Link with --as-needed.
  * Run test suite during build.

 -- Jelmer Vernooij   Wed, 22 Dec 2010 00:05:26 +0100

ldb (1:0.9.16~git20101019-1) unstable; urgency=low

  * New upstream snapshot.
   + Use alternatives to manage new /usr/lib/ldap.so link.
  * OpenLDAP support is now always built.
  * Fixes references to ldb(3) in manpages. Closes: #584227
  * Override modules directory to be /usr/lib/ldb, rather
    than /usr/modules/ldb as is now the upstream default. Closes: #600824

 -- Jelmer Vernooij   Wed, 13 Oct 2010 16:45:29 +0200

ldb (1:0.9.14~git20100928-1) unstable; urgency=low

  * Support talloc 2.0.1.
  * New upstream snapshot.

 -- Jelmer Vernooij   Mon, 13 Sep 2010 15:11:46 +0200

ldb (1:0.9.13~git20100908-2) experimental; urgency=low

  * Support tdb 1.2.1.

 -- Jelmer Vernooij   Fri, 10 Sep 2010 17:17:40 +0200

ldb (1:0.9.13~git20100908-1) experimental; urgency=low

  * New upstream snapshot.
  * Support older versions of tdb.

 -- Jelmer Vernooij   Wed, 08 Sep 2010 03:53:47 +0200

ldb (1:0.9.13~git20100820-1) experimental; urgency=low

  * New upstream snapshot.
    + Builds against system default Python rather than most recent supported
      python. Closes: #577436.
  * Bump standards version to 3.9.1.
  * Switch to Bazaar.

 -- Jelmer Vernooij   Sun, 22 Aug 2010 15:18:28 +0200

ldb (1:0.9.13~git20100730-1) maverick; urgency=low

  * New upstream snapshot.

 -- Jelmer Vernooij   Fri, 30 Jul 2010 15:40:04 +0200

ldb (1:0.9.12~git20100615-1) experimental; urgency=low

  * New upstream snapshot.

 -- Jelmer Vernooij   Tue, 15 Jun 2010 20:25:26 +0200

ldb (1:0.9.11~git20100531-1) experimental; urgency=low

  * New upstream snapshot.

 -- Jelmer Vernooij   Mon, 31 May 2010 14:03:40 +0200

ldb (1:0.9.10~git20100531-1) experimental; urgency=low

  * New upstream snapshot, switch back to waf.

 -- Jelmer Vernooij   Mon, 24 May 2010 16:54:59 +0200

ldb (1:0.9.10~git20100522-1) experimental; urgency=low

  * New upstream snapshot.

 -- Jelmer Vernooij   Sun, 23 May 2010 15:50:20 +0200

ldb (1:0.9.10~git20100203-1) unstable; urgency=low

  * New upstream snapshot.
  * Bump standards version to 3.8.4.
  * Switch to dpkg-source 3.0 (quilt) format

 -- Jelmer Vernooij   Wed, 03 Feb 2010 16:16:48 +0100

ldb (1:0.9.10~git20091212-1) unstable; urgency=low

  * New upstream version.
  * Depend on libtdb-dev rather than tdb-dev.

 -- Jelmer Vernooij   Sat, 12 Dec 2009 22:04:36 +0100

ldb (1:0.9.6~git20090912-1) unstable; urgency=low

  * New upstream snapshot.

 -- Jelmer Vernooij   Fri, 11 Sep 2009 23:34:22 +0200

ldb (1:0.9.6~git20090718-2) unstable; urgency=low

  * Remove unused patch.
  * Bump standards version to 3.8.3.

 -- Jelmer Vernooij   Fri, 11 Sep 2009 22:49:46 +0200

ldb (1:0.9.6~git20090718-1) unstable; urgency=low

  * New upstream snapshot.
  * Bump standards version to 3.8.2.
  * Link Python modules only against necessary libraries.

 -- Jelmer Vernooij   Sat, 18 Jul 2009 10:55:47 +0200

ldb (1:0.9.6~git20090617-1) unstable; urgency=low

  * New upstream snapshot.
  * Bump standards version to 3.8.1.

 -- Jelmer Vernooij   Fri, 17 Jul 2009 20:37:51 +0200

ldb (1:0.9.3~git20090221-1) unstable; urgency=low

  * New upstream snapshot.
  * Switch to python-central.
  * Add dummy watch file explaining how to obtain an upstream tarball.
  * Build against tevent.
  * Compile with -Wl,--as-needed.

 -- Jelmer Vernooij   Thu, 01 Jan 2009 06:47:33 +0100

ldb (1:0.9.2~git20080616-1) unstable; urgency=low

  * Fix version number accidently messed up by typo earlier.
  * Fix copyright listing.
  * Fix dependency of python-ldb on libc.

 -- Jelmer Vernooij   Sun, 27 Jul 2008 15:58:54 +0200

libpaper 1.1.28build2 -> 1.1.29

* Last Uploader: Julian Andres Klode

Debian changes newer than ubuntu version:

libpaper (1.1.29) unstable; urgency=medium

  * Fix for parallel build. See #857058
  * Added romanian translation. See #1032333
  * Updated standards-version to 4.6.0 (no changes)
  * Update papersize manual page. See #959403
  * Update paperconf manual page. See #959404
  * Update paperconfig manual page. See #959405

 -- Giuseppe Sacco   Fri, 17 Mar 2023 14:44:15 +0100

libsdl2 2.26.3+dfsg-1 -> 2.26.4+dfsg-1

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

libsdl2 (2.26.4+dfsg-1) unstable; urgency=medium

  * New upstream stable release 2.26.4
    - Game controller mappings no longer overwrite existing mappings with
      the same vendor/product but a different hardware version, fixing
      axis/button mapping for some game controllers with older drivers
      or firmware (SDL#7421)
    - A Windows-specific fix not relevant to Debian
    - Reformatting in test/testime.c is not relevant to Debian
  * d/p/Fixed-Steam-Runtime-sandbox-detection.patch:
    Drop patch, applied upstream
  * d/p/Fixed-handling-simple-mode-PS4-reports.patch:
    Fix some Playstation 4 controllers not providing input in raw HID mode
    (regression in 2.25.1, SDL#7270)

 -- Simon McVittie   Thu, 09 Mar 2023 10:49:35 +0000

libutempter 1.2.1-2build2 -> 1.2.1-3

* Last Uploader: Julian Andres Klode

Debian changes newer than ubuntu version:

libutempter (1.2.1-3) unstable; urgency=medium

  * d/control:
    - use https link in homepage
    - bump to std version 4.6.2 (no further changes)
  * d/rules: make use of execute_after_
  * d/libutempter0.lintian-overrides: update format
  * d/copyright: correct license of utempter.3 and update years
  * d/patches: cherry-pick commit logging PPID on error
  * d/upstream: add minimal metadata

 -- Christian Göttsche   Sun, 26 Feb 2023 16:21:54 +0100

lm-sensors 1:3.6.0-7ubuntu1 -> 1:3.6.0-7.1

* Last Uploader: Andreas Hasenack

Sync or Merge bug: Bug #1993414 in lm-sensors (Ubuntu): "Merge lm-sensors from Debian unstable for lunar" (Incomplete)

Debian changes newer than ubuntu version:

lm-sensors (1:3.6.0-7.1) unstable; urgency=medium

  * Non-maintainer upload.
  * No source change upload to rebuild with debhelper 13.10.

 -- Michael Biebl   Sat, 15 Oct 2022 12:16:36 +0200

logcheck 1.4.1 -> 1.4.2

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

logcheck (1.4.2) unstable; urgency=medium

  * More explicitly mention the default checking of the systemd journal
    (Closes: #1031786)
  * Apply multiarch hint for logtail package

 -- Mathias Gibbens   Wed, 01 Mar 2023 22:49:39 +0000

lxc 1:5.0.1-0ubuntu6 -> 1:5.0.2-1

* Last Uploader: Serge Hallyn

Debian changes newer than ubuntu version:

lxc (1:5.0.2-1) unstable; urgency=medium

  * New upstream release
    - Fixes CVE-2022-47952
    - Drop glibc 2.36 patch applied upstream
  * Bump Standards-Version in d/control (no changes needed)
  * Refresh d/copyright

 -- Mathias Gibbens   Tue, 17 Jan 2023 02:53:00 +0000

lxc (1:5.0.1-2) unstable; urgency=medium

  * d/control:
    - Add myself to Uploaders
    - Bump Standards-Version (no changes needed)
    - Set minimum required meson version in Build-Depends (Closes: #1016523)
    - Update list of architectures missing libseccomp-dev
    - Add Rules-Requires-Root: binary-targets
  * Add myself to d/copyright
  * d/liblxc1.symbols:
    - Avoid build failure due to missing symbols on architectures without
      libseccomp-dev (Closes: #922545)
  * Drop d/patches/0006-adjust-pam-dir.patch and modify d/libpam-cgfs.install
    to directly install pam_cgfs.so
  * Cherry-pick upstream fixes for building with glibc 2.36 (Closes: #1023437)
  * Add d/upstream/metadata
  * Remove asterisk from NEWS file to silence lintian tag

 -- Mathias Gibbens   Fri, 04 Nov 2022 19:54:47 +0000

lxc (1:5.0.1-1) unstable; urgency=medium

  * Team upload

  [ Mathias Gibbens ]
  * New upstream release 5.0.1 (Closes: #1005099, #1010843, #1006353)
    - Switch to meson build system and update d/rules as needed
    - Update Build-Depends and Depends in d/control
    - Drop patches no longer needed / applied upstream
    - Add patch to fix installed location of libpam_cgfs.so
    - Update d/liblxc-common.lintian-overrides
    - Update d/liblxc1.symbols

  [ Antonio Terceiro ]
  * debian/rules: drop handling of bash completion links

  [ Pierre-Elliott Bécue ]
  * Apply Janitor's changes on d/control constraints.
  * Fix debian/liblxc1.symbols
  * d/p/0004: Add a patch to make systemd security features working in nesting
    apparmor profile.
    This can cause security risks in privileged containers, so it's only in
    nesting profile. (Closes: #995350)

 -- Mathias Gibbens   Mon, 01 Aug 2022 22:46:52 +0200

lxcfs 5.0.0-0ubuntu2 -> 5.0.3-1

* Last Uploader: Stéphane Graber

Debian changes newer than ubuntu version:

lxcfs (5.0.3-1) unstable; urgency=medium

  [ Mathias Gibbens ]
  * New upstream release
  * d/control:
    - Update my email address
    - Bump Standards-Version (no changes needed)
  * Adjust systemd .service file install location in d/rules
  * Refresh d/copyright

  [ Debian Janitor ]
  * Remove constraints unnecessary since buster (oldstable):
    + lxcfs: Drop versioned constraint on lsb-base in Depends.
    + Remove 1 maintscript entries from 1 files.

 -- Mathias Gibbens   Tue, 17 Jan 2023 01:21:28 +0000

lxcfs (5.0.2-1) unstable; urgency=medium

  [ Mathias Gibbens ]
  * New upstream release 5.0.2
  * d/control:
    - Add myself to Uploaders
    - Bump Standards-Version to 4.6.1 (no changes needed)
  * d/copyright: Add myself
  * Add d/salsa-ci.yml

  [ Debian Janitor ]
  * Set upstream metadata fields: Bug-Database, Bug-Submit, Repository,
    Repository-Browse.
  * Avoid explicitly specifying -Wl,--as-needed linker flag.

  [ Pierre-Elliott Bécue ]
  * d/control: add systemd as a Build-Dependency

 -- Mathias Gibbens   Thu, 29 Sep 2022 21:01:38 +0200

lxcfs (5.0.0-1) unstable; urgency=medium

  * New upstream release 5.0.0
    - Drop d/p/0001
  * d/copyright: Upstream shifted to LGPL-2.1+ I do so for debian/
  * d/rules: update rules for init as the build system changed
    (Closes: #1008667)
  * d/control: Bump Standards-Version to 4.6.0

 -- Pierre-Elliott Bécue   Mon, 04 Apr 2022 23:15:49 +0200

mailman n/a -> 1:2.1.29-1

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

mailman (1:2.1.29-1) unstable; urgency=medium

  * New upstream release.
    - Fixes CVE-2018-13796

 -- Thijs Kinkhorst   Wed, 05 Sep 2018 05:03:24 +0000

mailman (1:2.1.27-1.1) unstable; urgency=medium

  * Non-maintainer upload.
  * Arbitrary text injection vulnerability in Mailman CGIs (CVE-2018-13796)
    (Closes: #903674)

 -- Salvatore Bonaccorso   Sun, 02 Sep 2018 22:23:45 +0200

mailman (1:2.1.27-1) unstable; urgency=medium

  * New upstream release.
    - Fixes CVE-2018-0618
  * Run dh_autoreconf to make build reproducble (closes: 889637).
    Thanks Chris Lamb for the patch.
  * Drop Debian patches mangling translations, upstream is in
    a much better shape nowadays (closes: 901810).
  * Checked for policy 4.1.4, no changes.
  * Set a SUBSCRIBE_FORM_SECRET in mm_cfg.py on new installs,
    to add protection against subscription spam in the default
    installation. Existing installs will not be changed because
    it might break external subscribe forms (closes: 900648).

 -- Thijs Kinkhorst   Sat, 23 Jun 2018 13:23:17 +0000

mailman (1:2.1.26-1) unstable; urgency=medium

  * New upstream release.
    - Fixes XSS in user options CGI (CVE-2018-5950, closes: #888201)
  * Document that this is the legacy branch of Mailman and that all
    major development is focused on Mailman 3 (package mailman3).

 -- Thijs Kinkhorst   Sun, 04 Feb 2018 18:23:18 +0000

mailman (1:2.1.25-1) unstable; urgency=medium

  * New upstream release.
  * Checked for policy 4.1.3: removed init.d invocation from
    prerm and also from user instructions.
  * Upgraded to debhelper compat level 11.
  * Replace init script with systemd service file.
    Thanks a lot to Stefan Bühler for the helpful suggestion!
    This also should improve robustness against log rotation.
    (Closes: #881329, #733475, #505638)
  * Packaging cleanups.

 -- Thijs Kinkhorst   Sun, 07 Jan 2018 18:22:51 +0000

mailman (1:2.1.24-1) unstable; urgency=medium

  * New upstream release.
  * Fixed broken dependencies in SpamAssassin.py (Closes: #838288).
    Thanks Stephen Rothwell for the patch.

 -- Thijs Kinkhorst   Tue, 05 Sep 2017 14:31:54 +0000

mailman (1:2.1.23-1) unstable; urgency=medium

  * New upstream release.
    - Fixes CSRF in user options (CVE-2016-6893, closes: #835970).

 -- Thijs Kinkhorst   Tue, 13 Sep 2016 16:01:59 +0000

mailman (1:2.1.22-1) unstable; urgency=medium

  * New upstream release. (Closes: #821367)
  * Checked for policy 3.9.8, no changes.

 -- Thijs Kinkhorst   Mon, 25 Apr 2016 16:39:06 +0000

mailman (1:2.1.20-1) unstable; urgency=medium

  * New upstream release. (Closes: #779911)
    - Drop obsolete patches:
      92_CVE-2015-2775.patch
  * Checked for policy 3.9.6, no changes.
  * Update to debhelper compat level 9.
  * Make postfix-to-mailman.py work with the full recipient email
    address, solving an issue when recipient_delimiter = "-".
    To take advantage of this, change "${user}" to "${recipient}"
    in Postfix' master.cf. Patch by Brian O'Connor. (Closes: #578986)
  * Make package build reproducibly by using install instead of cp
    for installing qmail-to-mailman.py. Patch by Jérémy Bobbio.
    (Closes: #783151)
  * Update example apache.conf for Apache 2.4.
  * Add cron-daemon as dependency alternative to cron. (Closes: #785193)

 -- Thijs Kinkhorst   Thu, 14 May 2015 14:09:42 +0000

mailman (1:2.1.18-2) unstable; urgency=high

  * Fix security issue: path traversal through local_part.
    Affects installations which use an Exim or Postfix transport
    instead of fixed aliases; attacker needs to be able to place
    files on the local filesystem.
    (CVE-2015-2775, Closes: 781626)

 -- Thijs Kinkhorst   Mon, 06 Apr 2015 15:36:15 +0000

mailman (1:2.1.18-1) unstable; urgency=medium

  * New upstream release.
    - Adds DMARC support. (Closes: #746592)
    - Drop obsolete patches:
      20_qmail_to_mailman.debian.patch
      80_sync_members_unicode.patch
  * Add lsb-release to debian/tests/control. (Closes: #734180)
  * Fix ownership on /var/lib/mailman/archives/private as upstream
    suggests, also reflecting group ownership for public archives.
    Thanks Luca Capello! (closes: #603904)
  * Checked for policy 3.6.5, no changes.

 -- Thijs Kinkhorst   Thu, 10 Jul 2014 19:27:46 +0200

mailman (1:2.1.16-2) unstable; urgency=medium

  * Upload to unstable, as requested by Thijs; we did not encounter
    any unexpected trouble with the version in experimental, and it
    does fix an RC bug as well as a release goal.

 -- Thorsten Glaser   Mon, 03 Feb 2014 14:00:37 +0100

mailman (1:2.1.16-1exp2) experimental; urgency=low

  * Try harder to use UTF-8

 -- Thorsten Glaser   Sun, 29 Dec 2013 14:40:17 +0000

mailman (1:2.1.16-1exp1) experimental; urgency=low

  * Convert to UTF-8. (Closes: #398777, #535296, #732929)
  * Apply upstream bugfix for sync_members. (Closes: #732741)

 -- Thorsten Glaser   Sun, 29 Dec 2013 02:08:38 +0000

mailman (1:2.1.16-1) unstable; urgency=low

  * New upstream release.

 -- Thijs Kinkhorst   Wed, 06 Nov 2013 19:57:54 +0100

mailman (1:2.1.16~rc2-1) unstable; urgency=low

  [ Thijs Kinkhorst ]
  * New upstream release candidate.
    - Exposes message-id to templates (closes: #614340).
  * Remove obsolete patches, applied upstream:
    21_newlist_help.patch
  * Updates to Russian debconf templates, thanks Ivan Krylov!
    (closes: #710268).
  * Needs at least version 3.8.0 of logrotate (closes: #687215).
  * Add autopkgtests, thanks Yolanda Robla! (closes: #710095)
  * Packaging cleanup: checked for policy 3.9.4, update Vcs URL,
    recommend default-mta instead of exim4.

  [ Thorsten Glaser ]
  * Prevent losing stderr in the init script when there are many lists.
    (closes: #702002)
  * debian/watch: mangle the epoch away so DDPO is green again.

 -- Thijs Kinkhorst   Sun, 04 Aug 2013 12:00:05 +0200

mailman (1:2.1.15-1) unstable; urgency=low

  * New upstream release.
  * Improve Exim4 instructions, thanks Andrew Hodgson.
  * Remove obsolete PRIVATE_ARCHIVE_URL variable, thanks Matthew Hall
    (closes: #676481).
  * Correct mmarch man page, thanks Francesco Potortì (closes: #583369).
  * Specify need for MTA=None in postfix-to-mailman.py (closes: #648976).

 -- Thijs Kinkhorst   Sat, 16 Jun 2012 12:04:40 +0200

mailman (1:2.1.15~rc1-1) unstable; urgency=low

  [ Thijs Kinkhorst ]
  * New upstream release candidate.
  * Remove obsolete patches, applied upstream:
    02_use_dpkg_buildflags.patch
    07_snooze.patch
    59_fix_missing_language_crash.patch
    70_invalid_utf8_dos.patch
    71_date_overflows.patch
    74_admin_non-ascii_emails.patch
    80_CVE-2011-0707_confirm_xss.patch
    99_js_templates.patch

  [ Thorsten Glaser ]
  * Update the watch file for Launchpad

 -- Thijs Kinkhorst   Sun, 20 May 2012 14:01:42 +0200

mailman (1:2.1.14-4) unstable; urgency=low

  * Ensure CPPFLAGS and LDFLAGS are actually used during build,
    thanks Simon Ruderich for the patch! (closes: #663590)
    Additionally, enable all available hardening features.
  * Checked for policy 3.9.3, add DEP3 patch headers.
  * Add Danish debconf translation, thanks Joe Dalton (closes: #659467).
  * Add 'su root list' statements to logrotate config, to cope
    with logrotate >= 3.8; thanks Joël Bertrand (closes: #653766).
  * Avoid config file prompt for mailman crontab entry if this
    file was unmodified (closes: #655837).

 -- Thijs Kinkhorst   Sun, 18 Mar 2012 14:12:49 +0100

mailman (1:2.1.14-3) unstable; urgency=low

  * Make man page descruptions match more keywords (closes: #597112).
  * Add cull_bad_shunt command to default cron job (closes: #615204)
    and improve cron job handling in the package.
  * Import dpkg buildflags, also enabling hardening features.
  * Remove gate_news debconf question.

 -- Thijs Kinkhorst   Sat, 08 Oct 2011 17:27:51 +0200

mailman (1:2.1.14-2) unstable; urgency=low

  [ Thijs Kinkhorst ]
  * Move mail-transport-agent to Recommends, since Mailman can be
    configured to run with a remote MTA (closes: #616292).
  * Update to policy 3.9.2, add build-{arch,indep} targets.

  [ Thorsten Glaser ]
  * Add myself to Uploaders, as suggested by Thijs.
  * Apply patch from Barry Warsaw to switch from python-support
    to dh_python2. (LP: #788514) (Closes: #637398)

 -- Thijs Kinkhorst   Wed, 17 Aug 2011 12:00:50 +0000

mailman (1:2.1.14-1) unstable; urgency=medium

  * New upstream release. Patches incorporated:
    - 15_mailmanctl_daemonize.patch
    - 83-CVE-2010-3089--bug599833.patch
  * Add upstream patch for CVE-2011-0707: XSS in confirmations.

 -- Thijs Kinkhorst   Sat, 19 Feb 2011 08:26:43 +0100

mailman (1:2.1.13-4.1) unstable; urgency=high

  * Non-maintainer upload.
  * debian/patches
    - (83): New. CVE-2010-3089 security fix from mailman 2.14. Patch
      thanks to  (grave, security; Closes: #599833).

 -- Jari Aalto   Sat, 16 Oct 2010 08:46:55 +0300

mailman (1:2.1.13-4) unstable; urgency=medium

  * Fix permissions on /var/lib/mailman/archives/private, so
    archiving works again. Problem introduced in 1:2.1.12-3.
  * Fix invocation of update-rc.d which yields an error when
    not using dependency-based boot (closes: #590249).
  * Checked for policy 3.9.1, no changes needed.

 -- Thijs Kinkhorst   Tue, 27 Jul 2010 22:56:03 +0200

mailman (1:2.1.13-3) unstable; urgency=low

  * Drop unneeded Indexes option from shipped apache.conf.
  * Eliminate update_rc.d warning by not passing runlevel 1 at stop.
  * Add 25_site_logo patch by Paul Wise (closes: #267243).
  * Do not compress PDF's under /u/s/d/mailman (closes: #582259).
  * Back up ./configure before running autoconf, so it can be restored
    in clean as not to generate irrelevant diff.gz content.
  * Switch to dpkg-source 3.0 (quilt) format.
  * Checked for policy 3.9.0, no changes needed.

 -- Thijs Kinkhorst   Tue, 13 Jul 2010 21:35:40 +0200

mailman (1:2.1.13-2) unstable; urgency=low

  * postfix-to-mailman.py: check for list existence before stripping off
    administrative suffixes, making it also work for mailing list names
    ending in e.g. -admin. Thanks Axel Beckert for the patch!
    (Closes: #570548)
  * Checked for policy 3.8.4, no changes.
  * Minor fixes pointed out by Lintian.

 -- Thijs Kinkhorst   Sat, 20 Mar 2010 21:57:55 +0100

mailman (1:2.1.13-1) unstable; urgency=low

  * New upstream release. Patches incorporated:
    - 16_update_debian (partially)
    - 30_pipermail_threads
    - 65_handle_templates_directories
    - 77_header_folding_in_attachments
  * Remove msgfmt.py, only used at build-time (closes: #555416).
  * Remove adduser calls for 'list' user. Base-passwd guarantees it
    to be available, and trying to add it if it were not present may
    lead to inconsistencies regarding expectations for that user.
  * Document second parameter of postfix-to-mailman.py to be
    ${mailbox}, effectively reverting inappropriate fix for #305762
    (closes: #549224).

 -- Thijs Kinkhorst   Thu, 31 Dec 2009 15:50:29 +0100

mailman (1:2.1.12-3) unstable; urgency=low

  * Remove potentially long running 'find' command in postinst, as
    permissions are already set correctly in the deb. Thanks Paul
    Slootman (closes: #544046).
  * Add Slovak debconf translation, thanks Ivan Masár (closes: #531576).
  * Update 30_pipermail_threads patch to use sequence ID instead of
    message ID, avoids thread breakage in archives. Thanks
    Mark Sapiro.
  * Checked for policy 3.8.3, no changes necessary.

 -- Thijs Kinkhorst   Sun, 27 Sep 2009 17:36:01 +0200

mailman (1:2.1.12-2) unstable; urgency=low

  [ Lionel Elie Mamane ]
  * README.Exim4.Debian: add debug_print statements
  * apply fix from upstream to 77_header_folding_in_attachments
    to fix bug it introduces: messages with lines starting with
    "From" are split into several messages in the archive.
  * Use autoconf >= 2.50, not 2.13
  * Ensure Mailman locks directory exists before calling update
    (Closes: #513988).

  [ Thijs Kinkhorst ]
  * Apply patch from Tanguy Ortolo updating postfix-to-mailman
    instructions to avoid backscatter mail (Closes: #520040).
  * Remove obsolete unicodify_archives for upgrading sarge->etch.

 -- Lionel Elie Mamane   Fri, 22 May 2009 11:09:49 +0200

mailman (1:2.1.12-1) unstable; urgency=low

  * New upstream release.
    + Minimum Python version is now 2.4.
    + Patches obsoleted (incorporated or not useful anymore):
      00_stolen_from_HEAD,
      11_handle_propfind.patch,
      32_MIME_fixup,
      62_new_list_bad_pending_requests,
      67_update_handle_old_versions,
      68_update_catalan,
      78_DeprecationWarning,
      80_fix_string_search.
      Refresh all others. Many thanks to Mark Sapiro and
      Paul Wise for the help in cleaning this up.
    + Fixes bounce handling NotAMemberError (closes: #517997).
  * Various packaging cleanups, upgrade debhelper to level 7.
  * Removes embedded copy of pythonlib/email module.
  * Checked for policy 3.8.1, remove shipped var/{run,lock}
    dirs, they are already created correctly by the init script.

 -- Thijs Kinkhorst   Sat, 14 Mar 2009 14:18:16 +0100

mailman (1:2.1.11-11) unstable; urgency=high

  [ Debconf Translations ]
  * Updated Vietnamese, thanks Clytie Siddall (closes: #513097).

 -- Thijs Kinkhorst   Mon, 26 Jan 2009 13:42:33 +0100

mailman (1:2.1.11-10) unstable; urgency=low

  [ Debconf Translations ]
  * Updated Catalan, thanks David Planella.

 -- Thijs Kinkhorst   Wed, 07 Jan 2009 23:09:56 +0100

mailman (1:2.1.11-9) unstable; urgency=high

  [ Debconf Translations ]
  * Updated Spanish, thanks Javier Fernández-Sanguino (closes: #510023).
  * Updated Japanese, thanks Kenshi Muto (closes: #509996).
  * Updated Galician, thanks Marce Villarino (closes: #510002).
  * Updated French, thanks Christian Perrier (closes: #510016).
  * Updated Italian, thanks Luca Monducci (closes: #510107).
  * Updated Swedish, thanks Martin Bagge and Daniel Nylander
    (closes: #510206).
  * Updated Czech, thanks Miroslav Kure (closes: #510230).
  * Updated German, thanks Holger Wansing (closes: #510361).
  * Updated Portuguese, thanks Miguel Figueiredo (closes: 510556).
  * Updated Russian, thanks Sergey Alyoshin (closes: #510614).

 -- Thijs Kinkhorst   Sun, 04 Jan 2009 12:30:58 +0100

mailman (1:2.1.11-8) unstable; urgency=low

  * Do not stop installation when queue files are present, and this is
    an upgrade from the same version that was already installed. Based
    on a patch by Marcin Owsiany (closes: #468569).
  * When queue files present, offer the administrator the option to
    continue regardless at their own risk. This unfortunately requires
    some extra strings to be translated.
  * Update Dutch translation.
  * Remove mail-transport-agent from init script deps (closes: #508800).

 -- Thijs Kinkhorst   Sat, 27 Dec 2008 15:18:55 +0100

mailman (1:2.1.11-7) unstable; urgency=low

  [ Thijs Kinkhorst ]
  * Clarify POSTFIX_STYLE_VIRTUAL_DOMAINS syntax, thanks Tomas Pospisek
    (closes: #507519).

  [ Lionel Elie Mamane ]
  * README.Exim4.Debian: Do lookup whole email (with domain, not only
    localpart) in virtual_mailman data file
    (bug introduced in 1:2.1.11-4)
  * README.Exim4.Debian: explain how to regenerate the aliases list
    manually (for people switching their existing configuration to the
    recommended one, or switching MTAs, as opposed to setting up a fresh
    system).

 -- Thijs Kinkhorst   Sat, 13 Dec 2008 18:40:34 +0100

mailman (1:2.1.11-6) unstable; urgency=high

  * Further site list detection improvements, thanks Adeodato Simó
    for his suggestions.

 -- Thijs Kinkhorst   Sun, 16 Nov 2008 13:17:10 +0100

mailman (1:2.1.11-5) unstable; urgency=high

  * Make init script also cope with non-specified site list.

 -- Thijs Kinkhorst   Sun, 09 Nov 2008 11:26:46 +0100

mailman (1:2.1.11-4) unstable; urgency=medium

  [ Lionel Elie Mamane ]
  * Add -loop to list of accepted suffixes for routers in
    README.Exim4.Debian

  [ Thijs Kinkhorst ]
  * Add mischief to logrotate configuration (closes: #504700).
  * Update Mailman group and aliases path in README.Exim4.Debian,
    thanks Kris Popendorf (closes: #504695).
  * Detect a nonstandard site list name, thanks Moritz Naumann
    (closes: #418062).

 -- Thijs Kinkhorst   Fri, 07 Nov 2008 09:48:10 +0100

mailman (1:2.1.11-3) unstable; urgency=low

  * Updated Catalan debconf translation, thanks David Planella Molas
    (Closes: #494110).
  * Added patch 68_update_catalan to update Catalan program translation,
    thanks Jordi Mallach (Closes: #492297).
  * Add a README.source file referring to quilt.

 -- Thijs Kinkhorst   Mon, 11 Aug 2008 16:06:19 +0200

mailman (1:2.1.11-2) unstable; urgency=low

  * Fix SpamAssassin handler to cope with changed behaviour
    of matches_p() (Closes: #488584).
  * Remove *.pyc from /usr/lb/mailman, and any stale locks on
    package remove (Closes: #458414).

 -- Thijs Kinkhorst   Tue,  8 Jul 2008 09:43:15 +0200

mailman (1:2.1.11-1) unstable; urgency=low

  * New upstream release.
    Incorporates the following Debian patches:
    - 81_fix_subscribe_2.1.10.patch
    - 61_fix_ru_siteowner.patch
    - 72_fblast_add_shebang.patch
    - 58_fix_es_translation.patch
    Fixes the following Debian bugs:
    - Use html entities when needed in Danish (Closes: #487491).

  * Update Galician debconf translation, thanks Jacobo Tarrio
    (Closes: #482137).
  * Some tweaks to newlist.8 (Closes: #485382).
  * Make quilt usage more dpkg source format 3.0 compatible and
    refresh all patches (Closes: #485253).
  * Checked for policy 3.8.0, no changes necessary.
  * Fix a number of buglets in 99_js_templates.patch.
  * Don't install stop symlinks in runlevels 0 and 6; the default
    sigterm functions very well to stop qrunner.
  * Clarify that MTA="None" is right when using postfix-to-mailman.py
    (Closes: #488644).
  * Remove pidfile after successful qrunner shutdown (Closes: #482880).

 -- Thijs Kinkhorst   Mon, 07 Jul 2008 23:58:33 +0200

mailman (1:2.1.10-2) unstable; urgency=low

  * Apply upstream patch to fix regression in cmd_subscribe
    so that email subscribe to the -subscribe or -join address or the
    -request address with a bare 'subscribe' command results in the message
    being shunted.

 -- Thijs Kinkhorst   Thu, 24 Apr 2008 19:30:49 +0200

mailman (1:2.1.10-1) unstable; urgency=low

  * New upstream release.

 -- Thijs Kinkhorst   Mon, 21 Apr 2008 22:43:08 +0200

mailman (1:2.1.10~b4-1) unstable; urgency=low

  * New upstream beta release.

 -- Thijs Kinkhorst   Fri, 14 Mar 2008 17:54:52 +0100

mailman (1:2.1.10~b3-1) unstable; urgency=low

  * New upstream beta release.
    + Restricts XSS by list admins, CVE-2008-0564.
    + Obsoletes 56_fix_de_broken_links.patch.
    + Obsoletes 81_backport_export.dpatch.
    + Makes list handling case sensitivity consistent (closes: #446257).
    + Archives do not drop headerless mime parts (Closes: #450399).
    + check_perms checks more perms (Closes: #260224).

 -- Thijs Kinkhorst   Fri, 22 Feb 2008 00:09:11 +0100

mailman (1:2.1.9-10) unstable; urgency=low

  * Be quiet when logrotation succeeds, prevents Cron spam (closes: #456954).
  * Fix typo in postinst message (closes: #458981).
  * Switch to debhelper level 6.

 -- Thijs Kinkhorst   Mon, 14 Jan 2008 12:10:05 +0100

mailman (1:2.1.9-9) unstable; urgency=low

  * Drop suggests for obsolete python-*-codecs and drop versioned
    dependencies for pre-oldstable versions.
  * Fix formatting of man pages (Closes: #432848).
  * Fix some bashisms in Debian packaging scripts.
  * Do not make /var/log/mailman world-readable, because it can contain
    a bit of semi-private information. Thanks Alexander Gerasiov.
    (Closes: #450927)
  * After logrotate, call 'mailmanctl reopen' instead of sending SIGHUP
    since that is the supported way of rotating logs (Closes: #424620).
  * Fix pidfile location in mailman.init, thanks Peter Rabbitson
    (Closes: #439325).
  * Make symlinks to /var/lo{g,ck}/mailman absolute, because the relative
    ones cause trouble on systems where people move these things around
    (Closes: #408855, #413604). Override lintian since this is allowed by
    policy.
  * Checked for policy 3.7.3, no changes required. Additional packaging
    cleanups.

 -- Thijs Kinkhorst   Tue, 04 Dec 2007 09:12:39 +0100

mailman (1:2.1.9-8) unstable; urgency=low

  [ Thijs Kinkhorst ]
  * Added Portuguese debconf translation by Miguel Figueiredo
    (Closes: #414365).
  * Make sure Mailman can be properly purged (Closes: #421676).
  * Remove obsolete upgrading code.
  * Do not break upgrades in case python is temporarily unavailable
    (Closes: #419563).

  [ Lionel Elie Mamane ]
  * Avoid implicit-sort-on-load of indexes being converted to Unicode
    (hopefully really closes: #412142 now)

 -- Thijs Kinkhorst   Mon, 11 Jun 2007 20:48:11 +0200

mailman (1:2.1.9-7) unstable; urgency=low

  * Upgrade subject and author indexes of _all_ archiving volumes to
    Unicode strings. (completely closes: #412142)

 -- Lionel Elie Mamane   Wed, 28 Feb 2007 21:59:36 +0100

mailman (1:2.1.9-6) unstable; urgency=medium

  [ Lionel Elie Mamane ]
  * Allow people that have list as a supplementary group to create new
    mailing lists.  (see bug#309339)
  * Upgrade subject and author indexes of current archiving volume to
    Unicode strings; possible slight data loss (non-ASCII characters
    transcoded wrongly) (closes: #412142)
  * Correct path to Mailman private modules dir in dh_pysupport invocation
    (the absolute symlinks won't work in the building area), and add
    private pythonlib dir.

  [ Thijs Kinkhorst ]
  * Fix path-typo in apache.conf dedicated virtual host example,
    thanks Alberto Furia (Closes: #409180).

 -- Lionel Elie Mamane   Tue, 27 Feb 2007 22:38:07 +0100

mailman (1:2.1.9-5) unstable; urgency=medium

  * Ship bin/export.py from upstream SVN to make automatic upgrades to
    lenny possible. (closes: #407260)

 -- Lionel Elie Mamane   Sat, 20 Jan 2007 05:04:11 +0100

mailman (1:2.1.9-4) unstable; urgency=medium

  [ Lionel Elie Mamane ]
  * Manually replace empty /var/lib/mailman/pythonlib/ by symlink to
    /usr/lib/mailman/pythonlib/ (closes: #403312)

 -- Lionel Elie Mamane   Sat, 16 Dec 2006 09:55:21 +0100

mailman (1:2.1.9-3) unstable; urgency=medium

  [ Lionel Elie Mamane ]
  * Follow requirements/requests of upgrade to new python policy more
    narrowly: build-depend on newer version of python-support, add
    XS-Python-Version/XB-Python-Version fields to control, give path to
    private python modules to dh_pysupport (Closes: #394181).
  * Move python-lib directory to /usr/lib/mailman/, like Mailman code;
    /var/lib/mailman is grossly wrong (Closes: #400005).

  [ Thijs Kinkhorst ]
  * Add subscribe/unsubscribe aliases to second half of example, and a
    note about chgrp when creating a new list through the web interface.
    Both in README.Exim4.Debian, thanks Ian Wienand (Closes: 387457).
  * Remove lintian overrides that are not needed with recent Lintians.

  [ Translations ]
  * Updated Vietnamese by Clytie Siddall (Closes: 395851).
  * Updated German by Holger Wansing (Closes: 400963).

 -- Thijs Kinkhorst   Thu, 14 Dec 2006 15:18:12 +0100

mailman (1:2.1.9-2) unstable; urgency=medium

  [ Thijs Kinkhorst ]
  * Medium urgency upload for RC upgrading bug.
  * Fix buggy sedding in postinst (Closes: #392995).
  * Drop disabled 73_list-id_strict_rfc patch; integrated upstream.
  * Clarify README.Debian about where to insert SpamAssassin integration
    (Closes: #369171).
  * Add 72_fblast_add_shebang patch; this script is set as executable
    thus needs an interpreter on the first line.

  [ Hector Garcia ]
  * Removed 12_savannah_wrapper.patch. Doesn't work and is not supported
    upstream any longer (Closes: #287554).

  [ Translations ]
  * Updated French by Florentin Duneau (Closes: #393096).
  * Updated Brazilian Portuguese by Felipe Augusto van de Wiel.

 -- Thijs Kinkhorst   Tue, 17 Oct 2006 10:14:57 +0200

mailman (1:2.1.9-1) unstable; urgency=medium

  [ Hector Garcia ]
  * New upstream bugfix release
    - Deleting included patches:
      24_CVE-2006-2941, 23_CVE-2006-3636, 25_CVE-2006-4624
    - Fixes German translation (Closes: #273469) and comment typo
      (Closes: #378509).
  * Updated patches.
  * Deleting 03_documentation_source.patch. Integrated upstream.
  * Deleting 68_translation_update_nl.patch. Too many upstream changes,
    doesn't apply any longer. Wrote to patch author in case it wants to
    update it.
  * Renamed 58_fix_translations to 58_fix_es_translations

  [ Thijs Kinkhorst ]
  * Tweak debconf templates according to best practices.
  * Update debconf templates, eliminates two, changes some, introduces
    new line numbering from debconf-updatepo.
  * Name languages together with their ISO code in the debconf question
    (Closes: #276505).
  * Add new languages Turkish, Interlingua, Arabic, Vietnamese
    to debconf choice, change Chinese from big5 to zh_CN and zh_TW.
  * Add subscribe/unsubscribe to example in README.Exim4.Debian,
    thanks Brian Foley (Closes: #387457).

  [ Riccardo Setti ]
  * Switched to the new python policy (Closes: #380876).

  [ Lionel Elie Mamane ]
  * Don't ship C sources with documentation; there is no reason for it.

  [ Translations ]
  * Updated vi.po. Translated by Clytie Siddall. (Closes: #388202)
  * Updated ja.po. Translated by Kenshi Muto. (Closes: #388206, #391532)
  * Updated nl.po. Translated by Kurt De Bree. (Closes: #388100)
  * Updated ru.po. Translated by Yuri Kozlov. (Closes: #388111, #391597)
  * Updated sv.po. Translated by Daniel Nylander. (Closes: #388090)
  * Updated hu.po. Translated by Laszlo Boszormenyi.
  * Updated it.po: Translated by Luca Monducci. (Closes: #388657, #391568)
  * Updated cs.po: Translated by Miroslav Kure. (Closes: #388663)
  * Updated pt_BR.po: Translated by Andre Luis Lopes.
  * Updated es.po: Translated by Javier Fernández-Sanguino Peña.
  * Updated fr.po: Translated by Philippe Batailler. (Closes: #388651)

 -- Thijs Kinkhorst   Mon,  9 Oct 2006 16:59:10 +0200

mailman (1:2.1.8-4) unstable; urgency=high

  * High-urgency upload to fix release-critical bug.
  * Add versioned depends on lsb-base (>= 3.0-6) to make sure a system
    has the lsb output functions (Closes: #390138).
  * Remove python2.2-korean-codecs from Suggests, replace with
    python-korean-codecs.

 -- Thijs Kinkhorst   Fri, 29 Sep 2006 17:33:09 +0200

mailman (1:2.1.8-3) unstable; urgency=medium

  [ Paul Wise ]
  * Switch from dpatch to quilt and regenerate all patches

  [ Thijs Kinkhorst ]
  * Use LSB output functions in init script.
  * Use chown root:list instead of deprecated root.list.
  * Remove pre-sarge upgrading code; this eliminates a lot of cruft,
    non-debconf prompting and two debconf templates.
  * Only use ucf on purge when it's available.

  [ Matej Vela ]
  * Rearrange find options in debian/postinst to prevent warnings.

  [ Lionel Elie Mamane ]
  * Use Mailman's fork of the Python email package instead of the one from
    Python; Mailman is incompatible with the one in Python 2.4
    (closes: #384016)

  [ Hector Garcia ]
  * Added 24_CVE-2006-2941 taken from Lionel's port to sarge
  * Added 23_CVE-2006-3636 taken from Lionel's port to sarge
  * Added 25_CVE-2006-4624 taken from Lionel's port to sarge

 -- Hector Garcia   Wed, 20 Sep 2006 20:22:17 +0200

mailman (1:2.1.8-2) unstable; urgency=low

  [ Thijs Kinkhorst ]
  * Add default apache.conf under /etc/mailman
    (Closes: #282460, #135148, #178543, #179253).
  * Update all man pages to be in line with current mailman functionality
    (Closes: #286607, #276952).
  * Add suggests on lynx (Closes: #296781).
  * Checked for policy 3.7.2, no changes necessary.
  * Add watch file.
  * Add LSB dependency info to init script.
  * Fix example in postfix-to-mailman.py to pass ${mailbox}, not ${user}
    (Closes: #305762).
  * Add Lintian overrides for those things that are legitimate.
  * Drop recommends on essential base-passwd >= a version from 1997.
  * Use apache2 instead of apache as the first alternative for httpd.
  * Move options to `find` in debian/rules to start of commandline to
    prevent warnings.

  [ Hector Garcia ]
  * Putting permision on archive/private to 770 www-data:list to prevent
    regular users from reading private lists. (Closes: #356877)
  * Changed '| xarg' for '-exec' on find to prevent problems when there are
    too many files (Closes: #366102)
  * Added a slash to the end of DEFAULT_URL_PATTERN on mm_cfg.py
    (Closes: #365881)
  * Documented on README.Debian the apache + suexec case. (Closes: #360905)
  * Updated Uploaders
  * Removed the find which deleted ../$(package)*dsc.asc. It is not needed.

  [ Riccardo Setti ]
  * epoch 1. Now people should upgrade mailman without problems. (closes: #366438)
  * Applied patch which fixes string search in admin.py. (closes: #359721)
  * Updated German debconf translation (closes: #353713)
  * Updated French debconf translation (closes: #355674)
  * Updated Italian debconf translation (closes: #352523)
  * Updated Russian debconf translation (closes: #361656)
  * Updated Dutch debconf translation (closes: #377254)
  * Applied patch of Martin Pitt which will create /var/run and
    /var/lock directory if missing. (closes: #376542)
  * Bumped debhelper compatibily to 5.
    - modified debian/control to reflect this change.

  [ Paul Wise ]
  * Add spamassassin example to the mm_cfg.py


 -- Thijs Kinkhorst   Mon, 14 Aug 2006 18:49:29 +0200

memcached 1.6.18-1 -> 1.6.19-1

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

memcached (1.6.19-1) unstable; urgency=medium

  * New upstream release.
    - Refresh patches.
  * memcached.conf: Also listen on IPv6 by default.

 -- Chris Lamb   Wed, 15 Mar 2023 09:33:00 +0000

multipath-tools 0.8.8-1ubuntu2 -> 0.9.4-3

* Last Uploader: Marc Deslauriers

Sync or Merge bug: Bug #1993376 in multipath-tools (Ubuntu): "Merge multipath-tools from Debian unstable for 23.10" (Confirmed)

Debian changes newer than ubuntu version:

multipath-tools (0.9.4-3) unstable; urgency=medium

  [ Chris Lamb ]
  * [f6f7ab0] Avoid race condition in man page build.
    Leads to unreproducible contents. (Closes: #1030727)

 -- Chris Hofstaedtler   Tue, 07 Feb 2023 10:16:57 +0000

multipath-tools (0.9.4-2) unstable; urgency=medium

  * [1517c01] Install tmpfiles.d snippet into non-usr-merged compatible location

 -- Chris Hofstaedtler   Thu, 02 Feb 2023 07:52:50 +0000

multipath-tools (0.9.4-1) unstable; urgency=medium

  * [369b812] New upstream version 0.9.4 (Closes: #1022742)
  * [ee2206e] Refresh patches
  * [bcb0b07] Rework build steps to follow upstream changes.
    And install libmpathutil.so.
  * [f8ef90a] Use upstream-supported way of disabling systemd (for udeb)
  * [8785eef] Update lintian-overrides

 -- Chris Hofstaedtler   Sun, 25 Dec 2022 23:19:21 +0000

multipath-tools (0.9.0-4) unstable; urgency=medium

  [ Chris Lamb ]
  * [3a71447] Make the build reproducible (Closes: #1016583)

  [ Chris Hofstaedtler ]
  * [d815e6b] Use libedit instead of libreadline.
    Using patches from openSUSE, expected to go upstream in the next
    release.
    Thanks to Martin Wilck , Bastian Germann 
    (Closes: #979095)
  * [f0e62a1] Add more patches from openSUSE to fix small bugs

 -- Chris Hofstaedtler   Sat, 13 Aug 2022 13:08:06 +0000

multipath-tools (0.9.0-3) unstable; urgency=medium

  * [baa940a] Install reportbug helper using dh_bugfiles (Closes: #1016512)

 -- Chris Hofstaedtler   Tue, 02 Aug 2022 08:21:25 +0000

multipath-tools (0.9.0-2) unstable; urgency=medium

  [ Athos Ribeiro ]
  * [e3e7c47] d/t/kpartx-file-loopback: silence kpartx messages to stderr

  [ Chris Hofstaedtler ]
  * [057ee38] Apply wrap-and-sort -a
  * [8c9d6fe] Use debhelper compat level 13
  * [99f87ed] Use dh_missing
  * [f7cde4c] Use dh_installsystemd
  * [6797e0c] d/control: fix Depends/Pre-Depends mixup
  * [c1cb1ba] Use debhelper sequencer (Closes: #801884)
  * [eeb7a95] Remove upgrade code from versions before oldoldoldstable.
    Specifically remove the debconf warning if scsi_id is still used (old
    udev), and the init script bug fix. Rids us of all custom postinst/prerm
    scripts.
  * [8491532] Use only one way of installing manpages
  * [32fb1aa] Fix typo in README.Debian
  * [5be350e] Possibly fix multipath in d-i
  * [c46f47a] Make initramfs scripts +x again

 -- Chris Hofstaedtler   Sat, 30 Jul 2022 14:31:16 +0000

multipath-tools (0.9.0-1) unstable; urgency=medium

  * [6f546d1] New upstream version 0.9.0
  * [8ff5696] Refresh patches
  * [11da4e0] Follow manpages filename changes
  * [bde7d75] Install new modules-load.d dropin file
  * [1ac2df6] Avoid setting EXTRAVERSION

 -- Chris Hofstaedtler   Fri, 29 Jul 2022 22:02:31 +0000

mysql-8.0 8.0.32-0ubuntu4 -> 8.0.32-1

* Last Uploader: Jeremy Bícha

Debian changes newer than ubuntu version:

mysql-8.0 (8.0.32-1) unstable; urgency=medium

  [ Lars Tangvald ]
  * Imported upstream version 8.0.32 to fix security issues
    - https://www.oracle.com/security-alerts/cpujan2023.html#AppendixMSQL
    - CVE-2022-32221 CVE-2023-21836 CVE-2023-21868 CVE-2023-21869
    - CVE-2023-21871 CVE-2023-21875 CVE-2023-21877 CVE-2023-21863
    - CVE-2023-21867 CVE-2023-21870 CVE-2023-21873 CVE-2023-21876
    - CVE-2023-21878 CVE-2023-21879 CVE-2023-21880 CVE-2023-21881
    - CVE-2023-21883 CVE-2023-21882 CVE-2023-21887
    Upstream release notes:
    - https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-32.html
    (Closes: #1029151)
  * debian/rules: Exclude mysql.info from package install
  * debian/mysql-router-8.0.install: Added new files

  [ Marc Deslauriers ]
  * debian/patches/disable_timestamping_test.path: disable test that fails
    to build on certain archs because of the presence of sizeof in macros.

  [ Lena Voytek ]
  * debian/rules: Remove changelog install override containing empty file
    Docs/Changelog

 -- Lena Voytek   Tue, 24 Jan 2023 07:55:07 -0700

ndctl 76-1 -> 76.1-1

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

ndctl (76.1-1) unstable; urgency=medium

  * Freshest upstream fixes...

 -- Adam Borowski   Fri, 24 Feb 2023 22:35:47 +0100

netcf n/a -> 1:0.2.8-1.1

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

netcf (1:0.2.8-1.1) unstable; urgency=medium

  * Non-maintainer upload.
  * Set package priority back to optional.
  * debian/control: Use current homepage. (Closes: #859848)
  * Multi-Archify packages. (Closes: #812920)
  * debian/rules: Do not install .pc file into /usr/share/pkgconfig/ since
    it violates multi-arch requirement. Using /usr/lib/*/pkgconfig/ is
    already good enough.
  * debian/watch: Monitor pagure.io upstream.
  * debian/copyright: Fix lintian warnings.

 -- Boyuan Yang   Mon, 28 Dec 2020 14:11:10 -0500

netcf (1:0.2.8-1) unstable; urgency=medium

  * Import new upstream 2.8.0
  * Drop existing patches which are applied upstream
  * debian/control: remove Vcs_Git and Vcs-Browser which were for upstream,
    not packaging trees.
  * Apply upstream patch fix-misplaced-tag
  * debian/libnetcf1.install: remove obsolete iptables-forward-bridged file

 -- Serge Hallyn   Tue, 22 Sep 2015 16:04:04 -0500

netcf (1:0.2.3-5) unstable; urgency=medium

  * cherrypick debian/patches/fix-if-h-problems-with-newer-libnl3 from
    upstream (Closes: #795328)
  * debian/patches/fix-uninitialized-variable: initialize 'r' for error
    path in two fns

 -- Serge Hallyn   Wed, 16 Sep 2015 13:59:07 -0500

netcf (1:0.2.3-4.1) unstable; urgency=medium

  * Non-maintainer upload.
  * Use dh-autoreconf to fix FTBFS on ppc64el (Closes: #755777)

 -- Hilko Bengen   Thu, 28 Aug 2014 22:21:48 +0200

netcf (1:0.2.3-4) unstable; urgency=low

  * netcf-debian-memleak.patch: prevent a memory leak when listing
    interfaces

 -- Serge Hallyn   Tue, 13 Aug 2013 23:58:20 +0000

netcf (1:0.2.3-3) unstable; urgency=low

  * Set architecture to linux-any to preclude build failures in
    unsupported environments

 -- Serge Hallyn   Thu, 30 May 2013 11:45:47 -0400

netcf (1:0.2.3-2) unstable; urgency=low

  * Promote to unstable
  * Closes: #708563 -- promote to unstable from experimental
  * Closes: #697609 -- adds a symbol file
  * Closes: #697610 -- link with --as-needed flag

 -- Al Stone   Tue, 28 May 2013 14:21:39 -0600

netcf (1:0.2.3-1) experimental; urgency=low

  * Merge upstream 0.2.3
    - keep add-tests-debian patch, which is in upstream git tree but not
      in the release tarball.

 -- Serge Hallyn   Thu, 24 Jan 2013 14:43:43 -0600

netcf (1:0.2.2-3) experimental; urgency=low

  * Rebuild and upload to experimental, with consistent epoch numbers
    due to reverting version for sid

 -- Al Stone   Tue, 18 Dec 2012 14:14:47 -0700

netcf (1:0.2.0-5) unstable; urgency=low

  * Closes: #693744 -- revert to a version compatible with sid's
    libvirt0 instead of breaking libvirt installation; this forces
    the change to the epoch number
  * Closes: #694362 -- same issue as above, but reported from the
    standpoint of libvirt0 instead

 -- Al Stone   Tue, 18 Dec 2012 13:37:11 -0700

nginx 1.22.0-1ubuntu3 -> 1.22.1-9

* Last Uploader: Nishit Majithia (sponsored by Marc Deslauriers)

Sync or Merge bug: Bug #1993421 in nginx (Ubuntu): "Merge nginx from Debian unstable for lunar" (New)

Debian changes newer than ubuntu version:

nginx (1.22.1-9) unstable; urgency=medium

  * d/control: nginx-common Breaks+Replaces: nginx (<< 1.22.1-8)
    (Closes: 1032929)

 -- Jan Mojžíš   Tue, 14 Mar 2023 16:19:32 +0100

nginx (1.22.1-8) unstable; urgency=medium

  * Main change:
    Configuration files returned to nginx-common package. This fixes
    the serious problem of losing configuration files during upgrade.
    This is a rollback of a change made in 1.22.1-6 (Closes: 1032517)
  * d/control: fix nginx-full dependencies
  * d/libnginx-mod.abisubstvars: update libnginx-mod-http-lua version

 -- Jan Mojžíš   Tue, 14 Mar 2023 06:53:32 +0100

nginx (1.22.1-7) unstable; urgency=medium

  * nginx ABI release: nginx-abi-1.22.1-7
  * nginx ABI: Nginx now provides nginx-abi- to better manage
    dependencies between nginx and 3rd party modules. Credit to Jérémy Lal.
  * switched to libpcre2 (Closes: 1000013)
  * d/p/bug-973861: added, lingering close for connections with pipelined
    requests. The patch is backported from the upstream. (Closes: 973861)
  * d/gbb.conf: switched to debian branch main (debian-branch = main)
  * d/copyright: updated to be compatible with 'cme update dpkg-copyright'

 -- Jan Mojžíš   Mon, 13 Feb 2023 13:04:16 +0100

nginx (1.22.1-6) unstable; urgency=medium

  * Main change:
    Nginx binary moved to package nginx, also moved basic
    configuration files from nginx-common to package nginx.
    The packages nginx-{light,core,extras,common} are replaced
    by a metapackage. (Closes: 1025763)
    Users should simply install 'nginx' and 'libnginx-mod-...'
    instead of these packages.
  * Additional changes:
    * d/nginx-{light,core,extras,full,common}.NEWS: added warning that
      nginx-{light,core,extras,full,common} are deprecated
    * d/control: fixed dependencies for safe binNMU
    * d/copyright: updated debian/* copyright
    * d/copyright: added missing copyright for d/apport/*
    * d/copyright: added missing GPL-2+ copyright for d/debhelper/dh_nginx
    * d/copyright: added missing copyright for d/help/examples/nginx_modsite
    * d/po/it.po: added Italian debconf translation. (Closes: 1019160)
    * d/control: removed dependency on obsolete package lsb-base
    * d/control: bump Standards-Version: 4.6.2, no changes

 -- Jan Mojžíš   Wed, 08 Feb 2023 17:20:27 +0100

nginx (1.22.1-5) unstable; urgency=medium

  [ Jan Mojžíš ]
  * Since version 1.22.1-5 all third party modules are removed from Debian NGINX
    package and all these modules are maintained in separate external packages.
    Removed namely these remaining modules:
      - libnginx-mod-http-geoip2
      - libnginx-mod-stream-geoip2
      - libnginx-mod-http-auth-pam
      - libnginx-mod-http-echo
      - libnginx-mod-http-upstream-fair
      - libnginx-mod-http-headers-more-filter
      - libnginx-mod-http-cache-purge
      - libnginx-mod-http-fancyindex
      - libnginx-mod-http-uploadprogress
      - libnginx-mod-http-subs-filter
      - libnginx-mod-http-dav-ext
  * d/tests: all *-simple and *-deps tests updated to check if nginx works
    after installation/reload/restart for all flavours
  * d/control: updated nginx-common dependency, fixes lintian warning
    maybe-not-arch-all-binnmuable

  [ Jérémy Lal ]
  * d/rules: default error-log-path is stderr (--error-log-path=stderr)
    instead of hardcoded /var/log/nginx/error.log (Closes: 1025858)
  * dh nginx: auto-detect build-dependency on ndk-dev
  * dh nginx: absolute /usr/sbin/nginx path for nginx tests
  * d/p/nginx-ssl_cert_cb_yield.patch SSL_CTX_set_cert_cb() callback yielding
    patch update
  * d/conf/nginx.conf: Set global error_log to /var/log/error.log
    Now that error_log default value is stderr, it is possible
    to override that config using nginx -g 'error_log stderr;'

  [ Miao Wang ]
  * d/control: removed unnecessary dependencies after removing 3rd party modules
  * d/rules: enabled stream_realip_module (--with-stream_realip_module)
  * d/rules: explicitly disabled pcre2 (--without-pcre2)

 -- Jan Mojžíš   Tue, 20 Dec 2022 10:36:19 +0100

nginx (1.22.1-4) unstable; urgency=medium

  * d/t/*-module-deps: updated, added curl timeout 300 seconds and
    added nginx restart before calling curl
  * d/t/*-module-deps: update:
    - added tests for new ext. module libnginx-mod-http-set-misc
    - added tests for new ext. module libnginx-mod-http-brotli-filter
    - added tests for new ext. module libnginx-mod-http-brotli-static
    - added tests for new ext. module libnginx-mod-http-memc
    - added tests for new ext. module libnginx-mod-http-srcache-filter
  * removed 3th party modules and moved to separate packages:
    - libnginx-mod-nchan module
    - libnginx-mod-rtmp module
    - libnginx-mod-http-ndk module

 -- Jan Mojžíš   Thu, 08 Dec 2022 14:15:15 +0100

nginx (1.22.1-3) unstable; urgency=medium

  * d/control: added Multi-Arch: foreign for package nginx-dev
  * d/rules: enabled NDK upstream list module NDK_UPSTREAM_LIST
  * d/p/bug-1024605.patch: added header Forwarded: not-needed

 -- Jan Mojžíš   Mon, 05 Dec 2022 18:25:16 +0100

nginx (1.22.1-2) unstable; urgency=medium

  [ Jan Mojžíš ]
  * d/control: fixed spelling-error-in-description
  * d/nginx-*.postinst: fixed postinst script, used invoke-rc.d instead of
    pidof and ad-hoc tests, tnx Gioele Barabucci
  * d/tests/ssi-module-test added, simple ngx_http_ssi_filter_module test
  * d/p/bug-1024605.patch added: fixes problem when a subrequest has SSI
    enabled but its main request does not, the SSI module may crash the worker
    due to NULL-pointer dereference. The patch is backported from the upstream
    (Closes: 1024605)
  * d/control: updated implicit dependencies of third-party modules
    for easier transition to third-party modules in separate packages.

  [ Jérémy Lal ]
  * d/debhelper: set nginx_mod buildsystem by default
  * d/control: nginx-dev provides dh-sequence-nginx (Closes: #1024879)
  * d/control: remove Uploaders that are part of nginx-team,
    keep only the most recent active one, per policy 5.6.3.

  [ Debian Janitor ]
  * Remove constraints unnecessary since buster (oldstable):
    + nginx-dev: Drop versioned constraint on dpkg-dev in Depends.

 -- Jan Mojžíš   Wed, 30 Nov 2022 17:39:42 +0100

nginx (1.22.1-1) unstable; urgency=medium

  [ Jan Mojžíš ]
  * New upstream version 1.22.1
  * d/control: added implicit version of dependency libnginx-mod-http-lua
    (>=1:0.10.22-3~), it is a rebuilt version with nginx 1.22.1.
  * Added libnginx-mod-http-lua powerpc architecture

  [ Debian Janitor ]
  * Fix day-of-week for changelog entry 0.5.11-1.

 -- Jan Mojžíš   Thu, 10 Nov 2022 18:21:43 +0100

nginx (1.22.0-3.1) unstable; urgency=medium

  * Non-maintainer upload.
  * No source change upload to rebuild with debhelper 13.10.

 -- Michael Biebl   Sat, 15 Oct 2022 12:28:07 +0200

nginx (1.22.0-3) unstable; urgency=medium

  * d/changelog: fixed typo in bug number 61261 -> 861261 (Closes: 861261)
  * d/p/nginx-ssl_cert_cb_yield.patch added (Closes: 884434)
  * http-lua: removed the http-lua module and moved it to a separate package

 -- Jan Mojžíš   Wed, 17 Aug 2022 18:38:15 +0200

nginx (1.22.0-2) unstable; urgency=medium

  [ Miao Wang ]
  * adding a new libnginx-mod-http-ndk-dev package including necessary
    headers to build a 3rd party module depending on ndk.

  [ Jan Mojžíš ]
  * d/nginx-common.nginx.service: added Systemd dependency
    Wants=network-online.target and updated Systemd "After" dependency to
    recommended NGINX values, namely:
    - network-online.target (Closes: 861261) (Closes: 1000406)
    - remote-fs.target (Closes: 898896)
    - nss-lookup.target
  * d/p/0003-define_gnu_source-on-other-glibc-based-platforms.patch: forwarded
    to upstream (Closes: 859082)
  * d/t/reboot: added, tests if nginx works after reboot
  * d/m/p/http-subs-filter/pcre2.patch: added PCRE2 support
  * d/p/nginx-fix-pidfile.patch: Fix NGINX PIDfile handling to avoid
    SystemD race condition, this fix is backported from Ubuntu (Closes: 876365)
  * d/apport/source_nginx.py: Add apport hooks for additional bug
    information gathering, the script is backported from Ubuntu (Closes: 963668)
  * d/nginx-common.install: Add install rule for apport hooks.

  [ Debian Janitor ]
  * Remove constraints unnecessary since buster:
    + Build-Depends: Drop versioned constraint on dpkg-dev.
    + nginx-common: Drop versioned constraint on lsb-base in Depends.
    + nginx-core: Drop versioned constraint on nginx in Breaks.
    + nginx-full: Drop versioned constraint on nginx in Breaks.
    + nginx-light: Drop versioned constraint on nginx in Breaks.
    + nginx-extras: Drop versioned constraint on nginx in Breaks.
    + libnginx-mod-http-perl: Drop versioned constraint on nginx-extras in
      Replaces.
    + Remove 5 maintscript entries from 1 files.

 -- Jan Mojžíš   Sun, 07 Aug 2022 16:14:59 +0200

nspr 2:4.35-1 -> 2:4.35-1.1

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

nspr (2:4.35-1.1) unstable; urgency=medium

  * Non-maintainer upload
  * Avoid libreswan build failures on mipsel (Closes: #854472)

 -- Daniel Kahn Gillmor   Wed, 22 Feb 2023 15:00:34 -0500

nss 2:3.87.1-1 -> 2:3.89-2

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

nss (2:3.89-2) unstable; urgency=medium

  * nss/lib/ssl/sslinfo.c, nss/lib/ssl/sslt.h,
    nss/gtests/nss_bogo_shim/nss_bogo_shim.cc: Make
    SSL_GetPreliminaryChannelInfo ABI compatible with older versions by
    default. Nothing else than NSS itself currently uses the new field.

 -- Mike Hommey   Fri, 17 Mar 2023 08:46:46 +0900

nss (2:3.89-1) unstable; urgency=medium

  * New upstream release.
  * debian/libnss3.symbols: Add NSS_3.89 symbol version.

 -- Mike Hommey   Wed, 15 Mar 2023 07:59:49 +0900

open-vm-tools 2:12.1.5-3 -> 2:12.2.0-1

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

open-vm-tools (2:12.2.0-1) unstable; urgency=medium

  * [bebda7c] New upstream version 12.2.0
    (Closes: #1032607)
  * [d266aa7] Add libabsl-dev as explicit build-dependency.
    Not needed in Debian, but let's support the Deepin package maintainer.
    (Closes: #1032305)

 -- Bernd Zeimetz   Tue, 14 Mar 2023 19:12:00 +0100

openssh 1:9.0p1-1ubuntu8 -> 1:9.2p1-2

* Last Uploader: Nick Rosbrook (sponsored by Brian Murray)

Sync or Merge bug: Bug #1993427 in openssh (Ubuntu): "Merge openssh from Debian unstable for l-series" (New)

Debian changes newer than ubuntu version:

openssh (1:9.2p1-2) unstable; urgency=medium

  * Fix mistakenly-unreleased entry for 1:9.2p1-1 in debian/NEWS.

 -- Colin Watson   Wed, 08 Feb 2023 10:43:07 +0000

openssh (1:9.2p1-1) unstable; urgency=medium

  * Set "UsePAM yes" when running regression tests, to match our default
    sshd configuration.
  * Ignore Lintian error about depending on lsb-base for now, to avoid
    problems with partial upgrades on non-default init systems.
  * New upstream release (https://www.openssh.com/releasenotes.html#9.2p1):
    - [SECURITY] sshd(8): fix a pre-authentication double-free memory fault
      introduced in OpenSSH 9.1. This is not believed to be exploitable, and
      it occurs in the unprivileged pre-auth process that is subject to
      chroot(2) and is further sandboxed on most major platforms.
    - [SECURITY] ssh(8): in OpenSSH releases after 8.7, the PermitRemoteOpen
      option would ignore its first argument unless it was one of the
      special keywords "any" or "none", causing the permission list to fail
      open if only one permission was specified.
    - [SECURITY] ssh(1): if the CanonicalizeHostname and
      CanonicalizePermittedCNAMEs options were enabled, and the system/libc
      resolver did not check that names in DNS responses were valid, then
      use of these options could allow an attacker with control of DNS to
      include invalid characters (possibly including wildcards) in names
      added to known_hosts files when they were updated. These names would
      still have to match the CanonicalizePermittedCNAMEs allow-list, so
      practical exploitation appears unlikely.
    - ssh(1): add a new EnableEscapeCommandline ssh_config(5) option that
      controls whether the client-side ~C escape sequence that provides a
      command-line is available. Among other things, the ~C command-line
      could be used to add additional port-forwards at runtime. This option
      defaults to "no", disabling the ~C command-line that was previously
      enabled by default.
    - sshd(8): add support for channel inactivity timeouts via a new
      sshd_config(5) ChannelTimeout directive. This allows channels that
      have not seen traffic in a configurable interval to be automatically
      closed. Different timeouts may be applied to session, X11, agent and
      TCP forwarding channels.
    - sshd(8): add a sshd_config UnusedConnectionTimeout option to terminate
      client connections that have no open channels for a length of time.
      This complements the ChannelTimeout option above.
    - sshd(8): add a -V (version) option to sshd like the ssh client has.
    - ssh(1): add a "Host" line to the output of ssh -G showing the original
      hostname argument. bz3343
    - scp(1), sftp(1): add a -X option to both scp(1) and sftp(1) to allow
      control over some SFTP protocol parameters: the copy buffer length and
      the number of in-flight requests, both of which are used during
      upload/download. Previously these could be controlled in sftp(1) only.
      This makes them available in both SFTP protocol clients using the same
      option character sequence.
    - ssh-keyscan(1): allow scanning of complete CIDR address ranges, e.g.
      "ssh-keyscan 192.168.0.0/24". If a CIDR range is passed, then it will
      be expanded to all possible addresses in the range including the
      all-0s and all-1s addresses.
    - ssh(1): support dynamic remote port forwarding in escape
      command-line's -R processing.
    - ssh(1): when restoring non-blocking mode to stdio fds, restore exactly
      the flags that ssh started with and don't just clobber them with zero,
      as this could also remove the append flag from the set.
    - ssh(1): avoid printf("%s", NULL) if using UserKnownHostsFile=none and
      a hostkey in one of the system known hosts file changes.
    - scp(1): switch scp from using pipes to a socket-pair for communication
      with its ssh sub-processes, matching how sftp(1) operates.
    - sshd(8): clear signal mask early in main(); sshd may have been started
      with one or more signals masked (sigprocmask(2) is not cleared on
      fork/exec) and this could interfere with various things, e.g. the
      login grace timer. Execution environments that fail to clear the
      signal mask before running sshd are clearly broken, but apparently
      they do exist.
    - ssh(1): warn if no host keys for hostbased auth can be loaded.
    - sshd(8): Add server debugging for hostbased auth that is queued and
      sent to the client after successful authentication, but also logged to
      assist in diagnosis of HostbasedAuthentication problems.
    - ssh(1): document use of the IdentityFile option as being usable to
      list public keys as well as private keys.
    - sshd(8): check for and disallow MaxStartups values less than or equal
      to zero during config parsing, rather than failing later at runtime.
    - ssh-keygen(1): fix parsing of hex cert expiry times specified on the
      command-line when acting as a CA.
    - scp(1): when scp(1) is using the SFTP protocol for transport (the
      default), better match scp/rcp's handling of globs that don't match
      the globbed characters but do match literally (e.g. trying to transfer
      a file named "foo.[1]"). Previously scp(1) in SFTP mode would not
      match these pathnames but legacy scp/rcp mode would.
    - ssh-agent(1): document the "-O no-restrict-websafe" command-line
      option.
    - ssh(1): honour user's umask(2) if it is more restrictive then the ssh
      default (022).
    - sshd(8): allow writev(2) in the Linux seccomp sandbox. This seems to
      be used by recent glibcs at least in some configurations during error
      conditions.
    - sshd(8): simplify handling of SSH_CONNECTION PAM env var, removing
      global variable and checking the return value from pam_putenv.
    - sshd(8): disable SANDBOX_SECCOMP_FILTER_DEBUG that was mistakenly
      enabled during the OpenSSH 9.1 release cycle.
    - sshd(8): defer PRNG seeding until after the initial closefrom(2) call.
      PRNG seeding will initialize OpenSSL, and some engine providers (e.g.
      Intel's QAT) will open descriptors for their own use that closefrom(2)
      could clobber.
  * debian/run-tests: Add a little more flexibility for debugging.

 -- Colin Watson   Wed, 08 Feb 2023 10:36:06 +0000

openssh (1:9.1p1-2) unstable; urgency=medium

  [ Christian Göttsche ]
  * Do not copy SELinux security context in postinst.

  [ Colin Watson ]
  * Add missing ${misc:Depends} to Depends for openssh-client-udeb,
    openssh-server-udeb.
  * Use secure URI in Homepage field.
  * Remove 2 obsolete maintscript entries in 2 files.
  * Fix day-of-week for changelog entries 1:3.0.2p1-9, 1:3.0.2p1-2,
    1:3.0.1p1-1.
  * Remove deprecated Encoding key from desktop file
    debian/ssh-askpass-gnome.desktop.
  * Update standards version to 4.6.2, no changes needed.
  * debian/tests/regress: Adjust to cope with changes in adduser 3.130 (see
    #625758).

 -- Colin Watson   Tue, 03 Jan 2023 11:57:19 +0000

openssh (1:9.1p1-1) unstable; urgency=medium

  [ Markus Teich ]
  * Delete obsolete upstart configuration override.

  [ Colin Watson ]
  * Work around apparent dh-exec regressions (closes: #1016340).
  * Don't install unnecessary *.lo files in openssh-tests.
  * Update Lintian overrides to current syntax.
  * Pass on compiler/linker flags when building debian/keygen-test.
  * Remove obsolete and misleading rcp/rlogin/rsh alternatives, and stop
    providing rsh-client (closes: #197037).
  * Add sshd_config checksums for 1:8.2p1-1 and 1:8.7p1-1 to ucf reference
    file.
  * New upstream release (https://www.openssh.com/releasenotes.html#9.1p1,
    closes: #1021585):
    - ssh-keyscan(1): fix a one-byte overflow in SSH- banner processing.
    - ssh-keygen(1): double free() in error path of file hashing step in
      signing/verify code.
    - ssh-keysign(8): double-free in error path introduced in openssh-8.9.
    - ssh(1), sshd(8): SetEnv directives in ssh_config and sshd_config are
      now first-match-wins to match other directives. Previously if an
      environment variable was multiply specified the last set value would
      have been used.
    - ssh-keygen(8): ssh-keygen -A (generate all default host key types)
      will no longer generate DSA keys, as these are insecure and have not
      been used by default for some years.
    - ssh(1), sshd(8): add a RequiredRSASize directive to set a minimum RSA
      key length. Keys below this length will be ignored for user
      authentication and for host authentication in sshd(8). ssh(1) will
      terminate a connection if the server offers an RSA key that falls
      below this limit, as the SSH protocol does not include the ability to
      retry a failed key exchange.
    - sftp-server(8): add a "users-groups-by-id@openssh.com" extension
      request that allows the client to obtain user/group names that
      correspond to a set of uids/gids.
    - sftp(1): use "users-groups-by-id@openssh.com" sftp-server extension
      (when available) to fill in user/group names for directory listings.
    - sftp-server(8): support the "home-directory" extension request defined
      in draft-ietf-secsh-filexfer-extensions-00. This overlaps a bit with
      the existing "expand-path@openssh.com", but some other clients support
      it.
    - ssh-keygen(1), sshd(8): allow certificate validity intervals, sshsig
      verification times and authorized_keys expiry-time options to accept
      dates in the UTC time zone in addition to the default of interpreting
      them in the system time zone. YYYYMMDD and YYMMDDHHMM[SS] dates/times
      will be interpreted as UTC if suffixed with a 'Z' character. Also
      allow certificate validity intervals to be specified in raw
      seconds-since-epoch as hex value, e.g. -V 0x1234:0x4567890. This is
      intended for use by regress tests and other tools that call ssh-keygen
      as part of a CA workflow.
    - sftp(1): allow arguments to the sftp -D option, e.g. sftp -D
      "/usr/libexec/sftp-server -el debug3".
    - ssh-keygen(1): allow the existing -U (use agent) flag to work with "-Y
      sign" operations, where it will be interpreted to require that the
      private keys is hosted in an agent.
    - ssh-keygen(1): implement the "verify-required" certificate option.
      This was already documented when support for user-verified FIDO keys
      was added, but the ssh-keygen(1) code was missing.
    - ssh-agent(1): hook up the restrict_websafe command-line flag;
      previously the flag was accepted but never actually used.
    - sftp(1): improve filename tab completions: never try to complete names
      to non-existent commands, and better match the completion type (local
      or remote filename) against the argument position being completed.
    - ssh-keygen(1), ssh(1), ssh-agent(1): several fixes to FIDO key
      handling, especially relating to keys that request user-verification.
      These should reduce the number of unnecessary PIN prompts for keys
      that support intrinsic user verification.
    - ssh-keygen(1): when enrolling a FIDO resident key, check if a
      credential with matching application and user ID strings already
      exists and, if so, prompt the user for confirmation before overwriting
      the credential.
    - sshd(8): improve logging of errors when opening authorized_keys files.
    - ssh(1): avoid multiplexing operations that could cause SIGPIPE from
      causing the client to exit early.
    - ssh_config(5), sshd_config(5): clarify that the RekeyLimit directive
      applies to both transmitted and received data.
    - ssh-keygen(1): avoid double fclose() in error path.
    - sshd(8): log an error if pipe() fails while accepting a connection.
    - ssh-keyscan(1): add missing *-sk types to ssh-keyscan manpage.
    - sshd(8): ensure that authentication passwords are cleared from memory
      in error paths.
    - ssh(1), ssh-agent(1): avoid possibility of notifier code executing
      kill(-1).
    - ssh_config(5): note that the ProxyJump directive also accepts the same
      tokens as ProxyCommand.
    - scp(1): do not ftruncate(3) files early when in sftp mode. The
      previous behaviour of unconditionally truncating the destination file
      would cause "scp ~/foo localhost:foo" and the reverse "scp
      localhost:foo ~/foo" to delete all the contents of their destination.
    - ssh-keygen(1): improve error message when 'ssh-keygen -Y sign' is
      unable to load a private key.
    - sftp(1), scp(1): when performing operations that glob(3) a remote
      path, ensure that the implicit working directory used to construct
      that path escapes glob(3) characters. This prevents glob characters
      from being processed in places they shouldn't, e.g. "cd /tmp/a*/",
      "get *.txt" should have the get operation treat the path "/tmp/a*"
      literally and not attempt to expand it (LP: #1483751).
    - ssh(1), sshd(8): be stricter in which characters will be accepted in
      specifying a mask length; allow only 0-9.
    - ssh-keygen(1): avoid printing hash algorithm twice when dumping a KRL.
    - ssh(1), sshd(8): continue running local I/O for open channels during
      SSH transport rekeying. This should make ~-escapes work in the client
      (e.g. to exit) if the connection happened to have stalled during a
      rekey event.
    - ssh(1), sshd(8): avoid potential poll() spin during rekeying.
    - Further hardening for sshbuf internals: disallow "reparenting" a
      hierarchical sshbuf and zero the entire buffer if reallocation fails.
    - sshd(8): add AUDIT_ARCH_PPC to supported seccomp sandbox
      architectures.
  * Drop patch to work around https://twistedmatrix.com/trac/ticket/9765,
    since the fix for that is in Debian testing.
  * Rewrite gnome-ssh-askpass(1) manual page using mdoc macros, and flesh it
    out a bit more.

  [ Steve Langasek ]
  * Support systemd socket activation.  Migrate any existing inetd-style
    socket activation to systemd socket activation.

  [ Gioele Barabucci ]
  * Remove ancient version constraints.
  * d/openssh-server.{postinst,config}: get_config_option: Replace perl with
    sed.

 -- Colin Watson   Mon, 14 Nov 2022 16:25:45 +0000

pacemaker 2.1.4-2ubuntu2 -> 2.1.5-1

* Last Uploader: Lucas Kanashiro

Sync or Merge bug: Bug #1993429 in pacemaker (Ubuntu): "Merge pacemaker from Debian unstable for l-series" (Incomplete)

Debian changes newer than ubuntu version:

pacemaker (2.1.5-1) unstable; urgency=medium

  * [5792d59] Work around lazy loading of GitHub release pages in watch file
  * [52462d8] New upstream release (2.1.5)
  * [06b5497] Delete upstreamed patch, refresh the rest
  * [9829fc0] Update Standards-Version to 4.6.2 (no changes required)
  * [7768ecb] Add debian/upstream/metadata
  * [629aab5] Update debian/copyright.
    Update the years, indicate LGPL of *.po files and give up on
    enumerating all contributors.
  * [9b7d008] The SystemHealth resource agent was dropped upstream.
    See commit 8e0512e: it was non-functional anyway.
  * [c905af5] Update symbols files (all removed symbols were internal)
  * [b0a5c7b] pacemaker-cli-utils.NEWS was six years old, nothing new
  * [a255a3e] Reduce Lintian noise
  * [7a70bd7] Drop the obsolete lsb-base dependency
    sysvinit-utils_3.05-1 took over /lib/lsb/init-functions from lsb-base,
    which became an empty transitional package.  Sysvinit-utils is
    essential now, so we needn't depend on it explicitly, but if that ever
    changes (see #851747) the sysvinit-core package will still depend on
    it, providing the function library to our init scripts if they have a
    real chance to execute.  (The compatibility layer of systemd won't try
    to use the init scripts, because we provide native systemd units.)
    This change is unsuitable for bullseye backports.

 -- Ferenc Wágner   Sun, 22 Jan 2023 16:38:34 +0100

pam-p11 0.3.1-1.1ubuntu1 -> 0.3.1-1.2

* Last Uploader: Andreas Hasenack

Sync or Merge bug: Bug #1993430 in pam-p11 (Ubuntu): "Merge pam-p11 from Debian unstable for lunar" (Incomplete)

Debian changes newer than ubuntu version:

pam-p11 (0.3.1-1.2) unstable; urgency=medium

  * Non-maintainer upload.
  * Build with --disable-strict. (Closes: #1020527)

 -- Adrian Bunk   Fri, 18 Nov 2022 18:02:03 +0200

pcs 0.11.4-1ubuntu3 -> 0.11.5-1

* Last Uploader: Lucas Kanashiro

Debian changes newer than ubuntu version:

pcs (0.11.5-1) unstable; urgency=medium

  * New upstream version 0.11.5
  * d/control: drop lsb-base dependency
  * d/control: update dependencies for new version
  * d/control: update Standards-Version to 4.6.2

 -- Valentin Vidic   Fri, 03 Mar 2023 08:57:59 +0100

pep8 1.7.1-9ubuntu1 -> 1.7.1-11

* Last Uploader: Julian Andres Klode

Sync or Merge bug: Bug #1993431 in pep8 (Ubuntu): "Merge pep8 from Debian unstable for lunar" (New)

Debian changes newer than ubuntu version:

pep8 (1.7.1-11) unstable; urgency=medium

  [ Emmanuel Arias ]
  * Team Upload.
  * d/tests/control: Remove pep8 package from Depends, there is not a
    package pep8.
  * d/control: Clarify in Description that the pep8 program was renamed to
    pycodestyle to avoid confussions (Closes: #985883).
    - Add as Recommends pycodestyle package.
  * d/rules: Stop using 'python3 setup.py test' to run test suite. Now it use
    unittest.

  [ Louis-Philippe Véronneau ]
  * d/tests: /usr/bin/pep8 doesn't exist anymore.

 -- Emmanuel Arias   Sat, 03 Dec 2022 20:26:31 -0500

pep8 (1.7.1-10) unstable; urgency=medium

  [ Ondřej Nový ]
  * d/control: Update Maintainer field with new Debian Python Team
    contact address.
  * d/control: Update Vcs-* fields with new Debian Python Team Salsa
    layout.

 -- Sandro Tosi   Wed, 04 May 2022 17:44:53 -0400

php-defaults 92ubuntu1 -> 93

* Last Uploader: Bryce Harrington

Sync or Merge bug: Bug #1993432 in php-defaults (Ubuntu): "Merge php-defaults from Debian unstable for l-series" (Incomplete)

Debian changes newer than ubuntu version:

php-defaults (93) unstable; urgency=medium

  * Bump the default and supported version to PHP 8.2

 -- Ondřej Surý   Wed, 13 Jul 2022 10:19:37 +0200

pollinate 4.33-3ubuntu2 -> 4.33-3.1

* Last Uploader: Christian Ehrhardt 

Debian changes newer than ubuntu version:

pollinate (4.33-3.1) unstable; urgency=medium

  * Non-maintainer upload.
  * No source change upload to rebuild with debhelper 13.10.

 -- Michael Biebl   Sat, 15 Oct 2022 12:37:39 +0200

postgresql-15 15.2-1 -> 15.2-2

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

postgresql-15 (15.2-2) unstable; urgency=medium

  * Add Romanian debconf translation, mulțumesc Remus-Gabriel Chelu!
  * Fix update-alternatives when doc package is installed stand-alone.

 -- Christoph Berg   Mon, 27 Feb 2023 10:30:23 +0100

python-dateutil 2.8.2-1 -> 2.8.2-2

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

python-dateutil (2.8.2-2) unstable; urgency=medium

  * Team upload.

  [ Arnout Vandecappelle ]
  * Don't fall back on bundled zoneinfo database (Closes: #1003044)

 -- Felix Geyer   Fri, 17 Mar 2023 17:05:45 +0100

resource-agents 1:4.11.0-3ubuntu1 -> 1:4.12.0-1

* Last Uploader: Lucas Kanashiro

Debian changes newer than ubuntu version:

resource-agents (1:4.12.0-1) unstable; urgency=medium

  * New upstream version 4.12.0
  * debian/control: drop lsb-base dependency
  * debian/patches: refresh for new version

 -- Valentin Vidic   Thu, 26 Jan 2023 00:44:32 +0100

ruby-nio4r 2.5.8-2build2 -> 2.5.8-3

* Last Uploader: Lucas Kanashiro

Debian changes newer than ubuntu version:

ruby-nio4r (2.5.8-3) unstable; urgency=medium

  * Team upload.

  [ Debian Janitor ]
  * Set upstream metadata fields: Bug-Database, Bug-Submit, Repository-Browse.
  * Update standards version to 4.6.2, no changes needed.

  [ Lucas Kanashiro ]
  * d/control: runtime depends on ${ruby:Depends} instead of ruby interpreted
    directly.
  * d/copyright: update years of libev upstream copyright.
  * d/control: do not require root to build.

 -- Lucas Kanashiro   Thu, 23 Feb 2023 12:05:17 -0300

runc 1.1.4-0ubuntu1 -> 1.1.4+ds1-1

* Last Uploader: Lucas Kanashiro

Sync or Merge bug: Bug #1971320 in runc (Ubuntu): "Merge runc from Debian unstable for kinetic" (New)

Debian changes newer than ubuntu version:

runc (1.1.4+ds1-1) unstable; urgency=medium

  * Team upload.
  * New upstream version 1.1.4+ds1

 -- Shengjing Zhu   Sat, 27 Aug 2022 18:27:50 +0800

samba 2:4.17.5+dfsg-2ubuntu3 -> 2:4.17.6+dfsg-1

* Last Uploader: Andreas Hasenack

Debian changes newer than ubuntu version:

samba (2:4.17.6+dfsg-1) unstable; urgency=medium

  * new upstream stable/bugfix release 4.17.6:
   * https://bugzilla.samba.org/show_bug.cgi?id=15314
     streams_xattr is creating unexpected locks on folders.
   * https://bugzilla.samba.org/show_bug.cgi?id=10635
     Use of the Azure AD Connect cloud sync tool is now supported for password
     hash synchronisation, allowing Samba AD Domains to synchronise passwords
     with this popular cloud environment.
   * https://bugzilla.samba.org/show_bug.cgi?id=15299
     Spotlight doesn't work with latest macOS Ventura.
   * https://bugzilla.samba.org/show_bug.cgi?id=15310
     New samba-dcerpc architecture does not scale gracefully.
   * https://bugzilla.samba.org/show_bug.cgi?id=15307
     vfs_ceph incorrectly uses fsp_get_io_fd() instead of fsp_get_pathref_fd()
     in close and fstat.
   * https://bugzilla.samba.org/show_bug.cgi?id=15293
     With clustering enabled samba-bgqd can core dump due to use after free.
   * https://bugzilla.samba.org/show_bug.cgi?id=15311
     fd_load() function implicitly closes the fd where it should not.
  * debian/po/ro.po update from Remus-Gabriel Chelu
  * s3-smbd-open.c-smbd_calculate_access_mask_fsp-lower-.patch
     makes smbd a bit less spammy in logs
  * d/control: clarify some package descriptions (Closes: #1031922)

 -- Michael Tokarev   Thu, 09 Mar 2023 12:52:14 +0300

sg3-utils 1.46-1build1 -> 1.46-3

* Last Uploader: Julian Andres Klode

Debian changes newer than ubuntu version:

sg3-utils (1.46-3) unstable; urgency=medium

  * Upload to unstable
  * Switch to Breaks instead of Conflicts for library package

 -- Jonathan McDowell   Thu, 02 Mar 2023 18:58:32 +0000

sg3-utils (1.46-2) experimental; urgency=medium

  [ Debian Janitor ]
  * Use secure URI in Homepage field.

  [ Jonathan McDowell ]
  * Rename libsgutils2-2 package to include package version (Closes: #994758)

 -- Jonathan McDowell   Wed, 01 Mar 2023 09:24:47 +0000

snapd-glib 1.63-4ubuntu1 -> 1.63-5

* Last Uploader: Jeremy Bícha

Debian changes newer than ubuntu version:

snapd-glib (1.63-5) unstable; urgency=medium

  [ Jeremy Bicha ]
  * Build-Depend on dh-sequence-gir & dh-sequence-pkgkde-symbolshelper
  * Simplify debian/rules a bit

  [ Mike Gabriel ]
  * debian/tests/control:
    + Mark (only) autopkgtest 'unit' as flaky for now as suggested by
      Paul Gevery. (Closes: #1019707, #1018083).

 -- Mike Gabriel   Fri, 27 Jan 2023 20:50:10 +0100

sssd 2.8.1-1ubuntu1 -> 2.8.2-3

* Last Uploader: Sergio Durigan Junior

Debian changes newer than ubuntu version:

sssd (2.8.2-3) unstable; urgency=medium

  [ Gioele Barabucci ]
  * d/libnss-sss.nss: Update to `database-add`
  * d/libsss-sudo.nss: Install `sss` service for sudoers via dh-nss (Closes: #783889)
  * d/libsss-sudo.post{inst,rm}: Remove now that the services are installed via dh-nss
  * d/sssd-common.nss: Use new directive name `database-add`
  * Install dbus policy in /usr instead of /etc (Closes: #1031547)

  [ Sam Morris ]
  * sssd-common: add lintian overrides for libsubid_sss.so

 -- Timo Aaltonen   Sun, 26 Feb 2023 16:35:48 +0200

sssd (2.8.2-2) unstable; urgency=medium

  [ Sam Morris ]
  * Ship libsubid_sss.so in sssd-common package

 -- Timo Aaltonen   Tue, 14 Feb 2023 17:48:19 +0200

sssd (2.8.2-1) unstable; urgency=medium

  * New upstream release.

 -- Timo Aaltonen   Tue, 14 Feb 2023 17:40:37 +0200

sssd (2.8.1-2) unstable; urgency=medium

  * d/rules: Fix 'find' syntax to remove '*.egg-info' files/directories.
    (Closes: #1026490)

 -- Sergio Durigan Junior   Tue, 03 Jan 2023 16:36:00 -0500

strongswan 5.9.8-3ubuntu4 -> 5.9.8-5

* Last Uploader: Andreas Hasenack

Debian changes newer than ubuntu version:

strongswan (5.9.8-5) unstable; urgency=medium

  * No-change upload for source-only upload.

 -- Yves-Alexis Perez   Fri, 03 Mar 2023 18:56:58 +0100

strongswan (5.9.8-4) unstable; urgency=medium

  * d/patches: libtls-Fix-authentication-bypass-and-expired-pointer added.
    Fix authentication bypass and use-after-free in libtls (CVE-2023-26463)
  * d/control: replace lsb-base dependency by sysvinit-utils
  * d/control: update standards version to 4.6.2

 -- Yves-Alexis Perez   Sun, 26 Feb 2023 09:40:09 +0100

taglib 1.11.1+dfsg.1-3ubuntu5 -> 1.13-2

* Last Uploader: Jeremy Bícha

Debian changes newer than ubuntu version:

taglib (1.13-2) unstable; urgency=high

  * Bump Standards-Version to 4.6.2.
  * debian/: Apply wrap-and-sort -abst.
  * debian/control: libtag1-dev: Add missing dep zlib1g-dev.
    (Closes: #997217)

 -- Boyuan Yang   Sat, 11 Feb 2023 12:25:27 -0500

taglib (1.13-1) unstable; urgency=medium

  [ Debian Janitor ]
  * Update renamed lintian tag names in lintian overrides.
  * Update standards version to 4.6.1, no changes needed.

  [ Boyuan Yang ]
  * New upstream release.
  * debian/patches: Drop all patches except using OS libutf8cpp and
    arch-indep /usr/bin/taglib-config, old patches are no longer needed.
  * debian/control:
    + Mark documentation-related build-dependencies with .
    + Mark the doc package with Build-Profiles: .
  * debian/rules:
    + Enable BUILD_TESTING flag.
    + Explicitly enable LTO build.
  * debian/libtag1v5-vanilla.symbols: Add new symbols and drop
    non-LTO symbols.

 -- Boyuan Yang   Tue, 01 Nov 2022 15:19:22 -0400

taglib (1.12-1) unstable; urgency=medium

  * Upload to unstable.
  * debian/libtag1v5-vanilla.symbols: Refresh symbols using buildd logs.
  * debian/patches/0003-Make-taglib-config-arch-independent.patch:
    Correct implementation.

 -- Boyuan Yang   Sun, 03 Oct 2021 10:05:07 -0400

taglib (1.12-1~exp1) experimental; urgency=low

  * New upstream release.
  * debian/libtag1v5-vanilla.symbols: Refresh symbols.
  * debian/patches: Refresh patches.

  [ Helmut Grohne ]
  * Drop unused gsfonts-x11 build dependency. (Closes: #981737)

  [ Debian Janitor ]
  * Trim trailing whitespace.
  * Use secure URI in Homepage field.
  * Set upstream metadata fields: Bug-Database, Bug-Submit, Repository,
    Repository-Browse.
  * Remove constraints unnecessary since buster:
    + Build-Depends: Drop versioned constraint on cmake.

 -- Boyuan Yang   Sun, 03 Oct 2021 02:33:34 -0400

taglib (1.12~beta~1-1~exp1) experimental; urgency=medium

  * New upstream beta release.
    + Fix slow processing of Shoutcast data. (Closes: #854664)
  * debian/symbols: Add new symbols.
  * debian/control: Let libtag1-dev depends on dpkg-dev since the
    old-style config script is calling dpkg-architecture tool.

 -- Boyuan Yang   Fri, 24 Jul 2020 13:41:08 -0400

targetcli-fb 1:2.1.53-1ubuntu3 -> 1:2.1.53-1.1

* Last Uploader: Dave Jones (sponsored by Graham Inggs)

Sync or Merge bug: Bug #1993450 in targetcli-fb (Ubuntu): "Merge targetcli-fb from Debian unstable for lunar" (Incomplete)

Debian changes newer than ubuntu version:

targetcli-fb (1:2.1.53-1.1) unstable; urgency=medium

  * Non-maintainer upload.
  * No source change upload to rebuild with debhelper 13.10.

 -- Michael Biebl   Sat, 15 Oct 2022 12:51:47 +0200

update-inetd 4.52 -> 4.53

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

update-inetd (4.53) unstable; urgency=medium

  * Packaging:
    - Do not trim debian/changelog.
    - Update copyright years.

 -- Guillem Jover   Sun, 26 Feb 2023 23:37:54 +0100

xen 4.17.0+24-g2f8851c37f-2 -> 4.17.0+46-gaaf74a532c-1

Unknown (Probably auto sync.)

Debian changes newer than ubuntu version:

xen (4.17.0+46-gaaf74a532c-1) unstable; urgency=medium

  * Update to new upstream version 4.17.0+46-gaaf74a532c, which also contains
    security fixes for the following issues:
     - x86: Cross-Thread Return Address Predictions
       XSA-426 CVE-2022-27672
       (Closes: #1031567)
  * debian/shuffle-boot-files: fix typo
  * debian/changelog: Fix bug number typo.
  * debian/changelog: Remove duplicate 'Note that'

 -- Hans van Kranenburg   Fri, 24 Feb 2023 18:06:42 +0100