base-files (13.8) unstable; urgency=medium . * Changes for trixie as stable: - Use 13 as version in /etc/issue and /etc/issue.net. - Use 13.0 as version in /etc/debian_version. - Update PRETTY_NAME in os-release, now 13 (trixie). - Add VERSION_ID and VERSION. - Add DEBIAN_VERSION_FULL with the same contents as /etc/debian_version. This is only expected to exist on stable releases. Closes: #931197. Note that this does not change the fundamental fact that "all point releases of trixie are Debian 13". This is just a convenience for tools like ansible who already parse both debian_version and os-release so that in the long term they can parse os-release only. - Update README (trixie -> forky and use 13.x for example version). * Refresh some licenses from ftp.gnu.org. Closes: #1103289. * Set Rules-Requires-Root to no. * Drop obsolete debian/2775-dirs. * Add Vcs-Git and Vcs-Browser fields. chromium (136.0.7103.113-1) unstable; urgency=high . * New upstream security release. - CVE-2025-4664: Insufficient policy enforcement in Loader. Source: X post from @slonser_. - CVE-2025-4609: Incorrect handle provided in unspecified circumstances in Mojo. Reported by Micky. chromium (136.0.7103.92-2) unstable; urgency=high . * d/patches/upstream/arm32-crel.patch: add another armhf FTBFS fix; linking with CREL causes segfaults. chromium (136.0.7103.92-1) unstable; urgency=high . [ Andres Salomon ] * New upstream security release. - CVE-2025-4372: Use after free in WebAudio. Reported by Huang Xilin of Ant Group Light-Year Security Lab. * Drop yasm build-dep; upstream switched to nasm about 5 years ago (closes: #1104218). . [ Daniel Richard G. ] * d/patches/fixes/armhf-no-thumb.patch: Fix armhf FTBFS due to use of a Rust target (thumbv7neon) that Debian does not ship. chromium (136.0.7103.59-2) unstable; urgency=high . * Delete third_party/jetstream due to non-free ("do no evil") license. . chromium (136.0.7103.59-1) unstable; urgency=high . [ Andres Salomon ] * New upstream stable release. - CVE-2025-4096: Heap buffer overflow in HTML. Reported by Anonymous. - CVE-2025-4050: Out of bounds memory access in DevTools. Reported by Anonymous. - CVE-2025-4051: Insufficient data validation in DevTools. Reported by Daniel Fröjdendahl. - CVE-2025-4052: Inappropriate implementation in DevTools. Reported by vanillawebdev. * d/rules: disable warning-suppression-mappings; llvm too old. * d/control: drop libevent-dev build-dep, no longer used. * d/scripts/unbundle: - libavif no longer used, no need to specify bundling. - bundle simdutf, which isn't packaged for debian. * d/patches: - fixes/pipewire14.patch: drop, merged upstream. - disable/catapult.patch: refresh. - disable/buildtools-libc.patch: rework patch to be easier to maintain. - bookworm/gn-revert-path-exists.patch: update for a bunch of new path_exists() users. - disable/node-version-ck.patch: add patch to disable upstream's strict nodejs version check. - fixes/media-cstdint.patch: add missing header include. - upstream/media-optional.patch: add missing header include. - fixes/perfetto-nullptr.patch: add nullptr_t std qualification. . [ Timothy Pearson ] * d/patches/ppc64le: - third_party/0001-third_party-lss-Don-t-look-for-mmap2-on-ppc64.patch: drop due to upstream fixes - third_party/0002-third_party-lss-kernel-structs.patch: refresh for upstream changes - breakpad/0001-Implement-support-for-ppc64-on-Linux.patch: refresh for upstream changes - core/cargo-add-ppc64.diff: drop due to upstream fixes chromium (135.0.7049.114-1) unstable; urgency=high . * New upstream security release. * Drop python3-pkg-resources build dep (closes: #1083336). dovecot (1:2.4.1+dfsg1-4) unstable; urgency=medium . * [235de56] managesieved: lintian: suppress library-not-linked-against-libc * [74e7dcd] Ensure we use a 32-bit time_t on i386 * [461bc68] dovecot-core: postinst: fix purge of obsolete ucf conf files (Closes: #1105003) dovecot (1:2.4.1+dfsg1-3) unstable; urgency=medium . * [bdf895a] upstream fix for GSSAPI authentication regression (Closes: #1104549) * [8f15017] d/copyright: Correct canonical reference to GNU licenses * [ad8f661] dovecot-flatcurve: correct missing dependency on ucf * [131567a] Fix miscellaneous groff errors in upstream manpages * [a4a1404] Correct lintian warning debian-news-entry-has-unknown-version dovecot (1:2.4.1+dfsg1-2) unstable; urgency=medium . * [7c1b5b9] dovecot-ldap: postinst: correct conffile list (Closes: #1104047) * [73a254a] config: set mail_home and add mbox deprecation note dovecot (1:2.4.1+dfsg1-1) unstable; urgency=medium . * Release 1:2.4.1+dfsg1-1 to unstable dovecot (1:2.4.1+dfsg1-1~exp2) experimental; urgency=medium . * [e30a611] flatcurve: Set breaks+replaces relationship on dovecot-fts-flatcurve (Closes: #1102937) dovecot (1:2.4.1+dfsg1-1~exp1) experimental; urgency=medium . * [18c4170] d/watch: handle suffixes in upstream release filenames * [340250d] New upstream version 2.4.1+dfsg1 * [2fcd382] Ensure we don't try to download files from the internet during build * [4497016] refresh patches * [af108c1] Remove obsolete patches * [0ed2624] Fix 32-bit integer rollover in tests * [528f075] d/rules: remove autogenerated sources on clean dovecot (1:2.4.0+dfsg1-1~exp6) experimental; urgency=medium . * [827f8b7] fix and re-enable 32-bit builds dovecot (1:2.4.0+dfsg1-1~exp5) experimental; urgency=medium . * [cea2f60] d/rules: remove additional files on clean * [24e625b] ci: extend the timeout for the test-build-twice job * [1df7d66] Fix ABI identification and add safety checking for it dovecot (1:2.4.0+dfsg1-1~exp4) experimental; urgency=medium . * [0806d3b] Move 90-sieve-extprograms back to dovecot-sieve where it belongs (Closes: #1100146) dovecot (1:2.4.0+dfsg1-1~exp3) experimental; urgency=medium . * [4989934] Install a config file for flatcurve * [baeb072] Add default lmtpd configuration * [1d1d874] d/rules: drop some obsolete configure options * [6bc7f0b] pigeonhole: enable ldap pluggin support * [1998623] Enable experimental support for SMTPUTF8 and UTF8=ACCEPT * [22abd27] enable cdb support * [369d4a4] ci: disable i386 builds * [e6ff65b] update autopkgtests * [56dd0d6] debian/dovecot-core.NEWS: Document configuration changes * [3d12c1e] d/rules: Update ABI detection dovecot (1:2.4.0+dfsg1-1~exp2) experimental; urgency=medium . * [ab636e4] Correct ucf handling of /etc/dovecot/dovecot.conf * [ea5102c] Stop building for 32-bit architectures * [88fecb4] fix shell error in dovecot-managesieved.postinst * [68875fa] Fix some groff issues in manpages * [b406a2f] drop stale lintian overrides * [34e4a3b] lintian: ignore circular dependency between -core and -sieve * [ee13475] d/copyright: Update or remove some attributions dovecot (1:2.4.0+dfsg1-1~exp1) experimental; urgency=medium . [ Michael Tokarev ] * Update to 2.4.0 . [ Noah Meyerhans ] * Update default configuration from upstream example config bundle at https://github.com/dovecot/tools/blob/main/dovecot-2.4.0-example-config.tar.gz * Remove obsolete config files on upgrade if unmodified * Update /usr/share/dovecot/protocols.d/* for 2.4 dovecot-fts-xapian (1.9.1-1.1) unstable; urgency=medium . * Non-maintainer upload. * Update autopkgtests to support dovecot 2.4 * lintian: suppress shared-library-lacks-prerequisites warning ga (5.9.2-1) unstable; urgency=medium . * Team upload. * New upstream release * Standards-Version: 4.7.2 ga (5.9.1-2) unstable; urgency=medium . * Team upload. * ensure ga is rebuilt for the version of mpich (really4.2.1) targetted for trixie interimap (0.5.8-1) unstable; urgency=medium . * New upstream release. * Refresh d/patches and drop those applied upstream. * d/control, d/tests: Bump minimum dovecot-* version to 1:2.4~. Dovecot 2.4 uses different configuration settings and that's what is targeted in the testsuite of interimap ≥5.0.8. * Update Standards-Version to 4.7.2. manpages-l10n (4.26.2-1) unstable; urgency=medium . * New upstream version 4.26.2. * Update d/copyright. mdanalysis (2.9.0-8) unstable; urgency=medium . * skip test_distances, since NSGrid is flaky and causes distance tests to often (randomly) fail, see upstream Issue #4906. Closes: #1104387 packmol (1:21.0.2-1) unstable; urgency=medium . * New upstream release