armadillo (1:7.600.2+dfsg-2) unstable; urgency=medium . * Add patch for conv_alias from upstream curl (7.52.1-3) unstable; urgency=high . * Make SSL_VERIFYSTATUS work again as per CVE-2017-2629 https://curl.haxx.se/docs/adv_20170222.html debian-edu (1.920) unstable; urgency=medium . [ Wolfgang Schweer ] * tasks/ltsp-server: Replace ltsp-server-standalone with ltsp-server. The additional Depends are unneeded and make mate-session the default one, if 'desktop=kde' is used. In this case mate-desktop-environment is pulled in despite the fact that plasma-workspace provides x-session-manager (via /usr/bin/startkde). This happens because plasma-workspace doesn't list it in 'Provides:'; see #853885. (Closes: #854519). debian-edu (1.919) unstable; urgency=medium . * Add avogadro to tasks/chemistry and drop ghemical from it. * Add education-desktop-mate and education-desktop-xfce with medium priority to tasks.ctl. debian-edu-config (1.923) unstable; urgency=medium . [ Wolfgang Schweer ] * Adjust Debian-custom/001-ltsp-settings to enable LTSP installation in case the usbstick ISO image is used. (Closes: #854203). . [ Holger Levsen ] * Switch to native source format 3.0, to easily avoid including .git into the source package. dot-forward (1:0.71-2.2) unstable; urgency=medium . * Non-maintainer upload. * Fix FTBFS ("cannot read [...] usr/sbin/*"); we don't install anything to sbin, so use Make's $(wildcard ..) over the shell's "*". (Closes: #855275) flatpak (0.8.3-1) unstable; urgency=medium . * New upstream bugfix release - fixes portals' ability to identify confined apps (Closes: #855129) - better support for third-party (proprietary) OpenGL drivers - better handling of errors for extra-data - handle extra-data properly for runtimes (as well as apps) - respect required version for runtimes (as well as apps) - flatpak list: Don't break if some local ref is not deployed - builder: Look for appstream data in /app/share/metadata also - builder: Fix buildsystem=cmake builds - Add progress reporting to extra-data download - Fix uid/gid for directories in document portal * Duplicate the profile.d snippet in /etc/X11/Xsession.d so it applies to X11 sessions, not just login shells. This matches the upstream intention: X11 sessions have traditionally run in a login shell on Red Hat derivatives, but not in Debian derivatives. (Closes: #846338) graphicsmagick (1.3.25-8) unstable; urgency=high . * Backport security fix for out of bounds access when reading CMYKA tiff. inkscape (0.92.1-1) unstable; urgency=medium . * New upstream version 0.92.1. http://wiki.inkscape.org/wiki/index.php/Release_notes/0.92.1 + Fixes a bug involving the line-height CSS property. Closes: #852837 * Remove patches applied upstream. * Backport patch from upstream trunk: + 15848: support for old scour 0.26. Closes: #852290 libebur128 (1.2.0-2) unstable; urgency=medium . * Team upload. * Provide pkg-config file. (Closes: #854340) - debian/patches: Add upstream patch to provide pkgconfig file. - debian/libebur128-dev.install: Install pkg-config file. libytnef (1.9.1-1) unstable; urgency=medium . * QA upload. * New upstream release. - This release contains fixes for many vulnerabilities. See more details at: http://www.openwall.com/lists/oss-security/2017/02/15/4 * Add -Wall -Wextra to CFLAGS via DEB_CFLAGS_MAINT_APPEND. * Add -Wl,--as-needed to LDFLAGS via DEB_LDFLAGS_MAINT_APPEND. * Add Suggests for required Perl modules to run ytnefprocess.pl. network-manager (1.6.2-1) unstable; urgency=medium . * New upstream release - nm-online: return from quit_if_connected after setting retval. This fixes a regression introduced by 1.6.0 where "nm-online -x -q" always exits with status 1 (offline). (Closes: #852815) - dhcp: dhclient: reset the request list if conf file contains 'request'. This fixes DNS resolution problems when using dhclient due to duplicated search domain strings in /etc/resolv.conf. (Closes: #854343) radare2 (1.1.0+dfsg-2) unstable; urgency=high . * Add upstream patch to fix security bug (Closes: #856063) - CVE-2017-6197 The r_read_* functions in libr/include/r_endian.h in radare2 1.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted binary file, as demonstrated by the r_read_le32 function. setools (4.0.1-6) unstable; urgency=medium . * Properly build and install the documentation shotwell (0.25.4+really0.24.5-0.1) unstable; urgency=medium . * Revert to last stable release 0.24.5 (Closes: #850149). (Necessary, since unblock request #854912 for 0.25.4-0.1 was turned down.) shotwell (0.25.4-0.1) unstable; urgency=medium . * New upstream release. - Many UI fixes (Closes: #849688). srst2 (0.2.0-3) unstable; urgency=medium . * Make sure Python scripts are executable if they are called via symlink Closes: #856018 vlc (2.2.4-14) unstable; urgency=medium . [ Mateusz Łukasik ] * Update to ffmpeg 2.8.11. xfce4-weather-plugin (0.8.9-1) unstable; urgency=medium . * New upstream release.