aioghost (0.4.16-1) unstable; urgency=medium . * New upstream release. aioghost (0.4.14-1) unstable; urgency=medium . * New upstream release. aioghost (0.4.13-1) unstable; urgency=medium . * New upstream release. aioghost (0.4.0-1) unstable; urgency=medium . * Initial release. (Closes: #1135768) bind9 (1:9.20.23-1) unstable; urgency=high . * New upstream version 9.20.23 + [CVE-2026-3592]: Limit resolver server list size. + [CVE-2026-3039]: Fix GSS-API resource leak. + [CVE-2026-5946]: Disable recursion, UPDATE, and NOTIFY for non-IN views. + [CVE-2026-5950]: Avoid unbounded recursion loop. + [CVE-2026-5947]: Fix crash in resolver when SIG(0)-signed responses are received under load. + [CVE-2026-3593]: Fix use-after-free error in DNS-over-HTTPS when processing HTTP/2 SETTINGS frames. bitstruct (8.22.1-1) unstable; urgency=medium . * Team upload. * New upstream release. * Drop "Priority: optional", default as of dpkg-dev 1.22.13. * Use dh-sequence-python3. * Standards-Version: 4.7.4. dcmtk (3.7.0+really3.7.0-2) unstable; urgency=medium . * Team upload. * Use dh-cruft to register obsolete files to purge * Update standards version to 4.7.4, no changes needed. . [ Luca Boccassi ] * Stop deleting system user/group on remove/purge * Install and use sysusers.d/tmpfiles.d config files golang-github-go-openapi-jsonpointer (1:0.23.1-1) unstable; urgency=medium . * New upstream release. * Remove «Rules-Requires-Root: no», which is now the default. * Remove «Priority: optional», which is now the default. * Bump Standards-Version to 4.7.4. * Switch to debian/watch format version 5. * Run wrap-and-sort -ast. * Remove Tim from Uploaders, email bounces. * Remove --buildsystem=golang implicit since dh 13.4. * Update Build-Depends for new upstream release. * Ship NOTICE file for compliance with Apache-2.0 license. golang-github-go-openapi-jsonreference (1:0.21.5-1) unstable; urgency=medium . * New upstream release. * Remove «Rules-Requires-Root: no», which is now the default. * Remove «Priority: optional», which is now the default. * Bump Standards-Version to 4.7.4. * Switch to debian/watch format version 5. * Remove Tim from Uploaders, email bounces. * Remove --buildsystem=golang implicit since dh 13.4. * Update Build-Depends for new upstream release. * Ship new NOTICE file to comply with Apache-2.0 license. * Update copyright information. golang-github-go-openapi-spec (1:0.22.4-1) unstable; urgency=medium . * New upstream release. * Remove «Rules-Requires-Root: no», which is now the default. * Remove «Priority: optional», which is now the default. * Bump Standards-Version to 4.7.4. * Switch to debian/watch format version 5. * Remove Tim from Uploaders, email bounces. * Remove --buildsystem=golang implicit since dh 13.4. * Update Build-Depends for new upstream release. * Update lintian-overrides. golang-github-go-openapi-swag (1:0.26.0-1) unstable; urgency=medium . * New upstream release. * Update Build-Depends for new upstream release. golang-github-go-openapi-swag (1:0.25.1-2) unstable; urgency=medium . * Remove «Priority: optional», which is now the default. * Bump Standards-Version to 4.7.4. * Fix debian/watch file. * Remove Tim from Uploaders, email bounces. * Remove --buildsystem=golang implicit since dh 13.4. * Change wrap-and-sort arguments in salsa-ci to -sat. * Fix DH_GOLANG_INSTALL_EXTRA to only include source pathnames. golang-github-go-openapi-testify (2.5.1-1) unstable; urgency=medium . * New upstream release. golang-github-go-openapi-testify (2.5.0-2) unstable; urgency=medium . * Skip test that requires a git repository and git command. golang-github-go-openapi-testify (2.5.0-1) unstable; urgency=medium . * Initial release (Closes: #1137034) golang-github-shirou-gopsutil (4.26.4-2) unstable; urgency=medium . * Force the symlink creation during build to support running twice. golang-github-shirou-gopsutil (4.26.4-1) unstable; urgency=medium . * New upstream release. * Remove «Rules-Requires-Root: no», which is now the default. * Remove «Priority: optional», which is now the default. * Bump Standards-Version to 4.7.4. * Switch to debian/watch format version 5. * Run wrap-and-sort -ast. * Remove Tim from Uploaders, email bounces. * Remove --buildsystem=golang implicit since dh 13.4. * Update name. * Refresh patches against new upstream release. * Create dangling testdata symlinks not handled by DH_GOLANG_INSTALL_EXTRA. * Update lintian-overrides. golang-pgregory-rapid (1.3.0-3) unstable; urgency=medium . * Add a debian/.editorconfig file to disarm the upstream one. * Fix FTBFS on 32-bit arches due to missing constant type casts. * Make tests on 32-bit arches non-fatal as the test suite is 64-bit only. golang-pgregory-rapid (1.3.0-2) unstable; urgency=medium . * Update debian/copyright with missing authors and a MIT license. * Do not ship indeterministic test data in -dev package. * Update lintian overrides for test data. golang-pgregory-rapid (1.3.0-1) unstable; urgency=medium . * Initial release (Closes: #1137033) libfile-mimeinfo-perl (0.37-1) unstable; urgency=medium . * Team upload. * New upstream version 0.37. * Update upstream copyright. * Declare compliance with Debian Policy 4.7.4. libpicohttpparser (1.2+ds-1) unstable; urgency=medium . * Integrated picotest submodule by removin .gitmodules. * Added +ds to upstream version and Dversion-Mangle to d/watch * d/control: Added explanation of embedded vs. shared to description libtemplate-perl (3.102-3) unstable; urgency=medium . * Team upload. * Add patch from upstream Git to escape single quotes in HTML filter. Fixes CVE-2026-5090: allows HTML and JavaScript to be injected. (Closes: #1137160) luanti (5.15.2+dfsg-2) unstable; urgency=medium . * Team upload. * luanti-server: use dh-cruft to register & purge volatile data in /var * Remove unused license definitions for public-domain. * Trim trailing whitespace. * Update standards version to 4.7.4, no changes needed. * Set upstream metadata fields: Repository, Repository-Browse, Security-Contact. network-manager (1.56.1-1) unstable; urgency=medium . * New upstream version 1.56.1 * Bump Standards-Version to 4.7.4 * Update symbols file for libnm0 node-replace-in-file (8.4.0-2) unstable; urgency=medium . * run wrap-and-sort -asbkt * configure as a dual CJS/ESM module * build and package commonjs files too node-replace-in-file (8.4.0-1) unstable; urgency=medium . * Initial release (Closes: #1136380) openpyxl (3.1.5+dfsg-4) unstable; urgency=medium . * Non-maintainer upload. * debian/control: - Bumped Standards-Version to 4.7.4 - Removed redundant Priority field - Removed redundant Rules-Requires-Root * debian/patches: Added openpyxl-fix-closed-image-fp. (Closes: #1132566) python-google-auth (2.48.0-3) unstable; urgency=medium . * Mark test-only build-depends as (Closes: #1135948). python-propcache (0.5.2-1) unstable; urgency=medium . * New upstream version 0.5.2 * watchfile version 5 * Drop redundant Priority: optional * Drop redundant Rules-Requires-Root: no * Update standards version to 4.7.4, no changes needed. * Update Description text since upstream dropped support for Python 3.9 python-virtualenv (21.3.1+ds-1) unstable; urgency=medium . * New upstream release. * Refresh patches. * Instead of including Debian's hashes in BUNDLE_SHA256, calculate them on the fly. python-zeep (4.3.2-2) unstable; urgency=medium . * Mark test-only Build-Depends (Closes: #1133831). Thanks to Bastian Germann for the patch. python3.14 (3.14.5-1) unstable; urgency=medium . * Python 3.14.5 release. Fixes: - CVE-2026-5713: Validate remote debug offset tables on load. - CVE-2026-4786: Fix webbrowser %action substitution bypass of dash-prefix check. - CVE-2026-1502: Reject CR/LF in HTTP tunnel request headers. . [ Stefano Rivera ] * Refresh patches. * Update build-details path to include abiflags, and move it to libpython3.14-minimal / libpython3.14-dbg. * Patch: Fix test_pyexpat on i386. (Closes: #1135052) * Patch: Generate the correct base_interpreter in build-details on debug builds. . [ Matthias Klose ] * Run the tests with -j 2 instead of running sequentially. python3.14 (3.14.5~rc1-1) unstable; urgency=medium . * Python 3.14.5 release candidate. * Skip pyexpat.test_deeply_nested_content_model on i386. * Refresh patches. qterminal (2.4.0-1) unstable; urgency=medium . [ Macy Lin ] * New upstream version 2.3.0 * debian/upstream/signing-key:update upstream signing key. * New upstream version 2.4.0 * debian/copyright: update. * debian/control: added myself. * debian/control: build-deps on lxqt-build-tools (>= 2.4.0~). * debian/control: build-deps on libqtermwidget-dev (>= 2.4.0~). * debian/control: declare Standards-Version 4.7.3, drop the implied Priority: optional and Rules-Requires-Root: no. * debian/control: bump Standards-Version 4.7.4 (no changes needed). . [ Andrew Lee (李健秋) ] * debian/copyright: make License name consistent. * debian/copyright: update. r-cran-magrittr (2.0.5-1) unstable; urgency=medium . * Team upload. * New upstream version r-cran-sparsevctrs (0.3.6-2) unstable; urgency=medium . * Transiently disable the autopkgtests everywhere except on amd64. * Drop 'Rules-Requires-Root: no' from d/control (routine-update) r-cran-sparsevctrs (0.3.6-1) unstable; urgency=medium . * Build this r-lib.org package everywhere. * New upstream version * Standards-Version: 4.7.4 (routine-update) * Trim trailing whitespace. * Set upstream metadata fields: Archive, Bug-Database, Bug-Submit, Repository, Repository-Browse. r-cran-sparsevctrs (0.2.0-3) unstable; urgency=medium . * Packaging update (routine-update) * Standards-Version: 4.7.3 (routine-update) * Reflow Uploaders field (cme) * Remove Priority field (cme) * Restrict to 64-bits architectures (routine-update) * Restrict to little-endian architectures (routine-update) samba (2:4.24.2+dfsg-1) unstable; urgency=medium . * new upstream point release simplejson (4.1.1-1) unstable; urgency=medium . * New upstream release tightvnc (1:1.3.10-11) unstable; urgency=medium . * Remove use of 'pidof' (Closes: #1136597). - d/p/install-makefile-build-system.patch: Drop old debug code. - d/t/*: Remove use of 'pidof', introduce 'pkill' instead. * d/watch: Update it to version 5 format. * d/control: - Drop 'Rules-Requires-Root: no'. - Drop 'Priority: optional'. - Bump Standards-Version to 4.7.4. * d/copyright: Bump packaging copyright years. tightvnc-java (1.3.10-6) unstable; urgency=medium . * d/gbp.conf: Switch debian-branch to debian/unstable. * d/control: - Update my email address to the d.o one. - Drop 'Priority: optional'. - Drop 'Rules-Requires-Root: no'. - Bump Standards-Version to 4.7.4. * d/watch: Update it to version 5 format. * d/copyright: - Update my email address to the d.o one. - In GPL-2+ license, replace FSF postal address by URL. - Bump packaging copyright years. * d/NEWS: Add entry about package removal to be expected after Debian 14. typer (0.20.0-1) unstable; urgency=medium . * New upstream release 0.20.0. * Bump Standards-Version to 4.7.4. - Drop deprecated Priority field. * Replace @builddeps@ in autopkgtest with explicit dependencies. * d/patches: - Fix typo in description of 0002-Replace-mkdocs-material-remove-mkdocs-extensions. - Refresh 0005-Removing-images-that-causes-privacy-breach-generic for new upstream version.