curl (7.52.1-4) unstable; urgency=medium . * Fix regression in CONNECT response handling (Closes: #857613) * Fix buffer read overrun on --write-out as per CVE-2017-7407 https://curl.haxx.se/docs/adv_20170403.html (Closes: #859500) debian-reference (2.66) unstable; urgency=medium . * Update Italian, Spanish, and Chinese translations. gcc-defaults (1.168) experimental; urgency=medium . * Default to GCC 7, except for gij/gcj. gcc-defaults (1.168) unstable; urgency=medium . * Fix building the cross packages. gcc-defaults (1.167) unstable; urgency=medium . * Fix README.Bugs and gdc docdir symlinks. Closes: #858112. * Install gcov-dump man pages. gdal (2.1.2+dfsg-5) unstable; urgency=medium . * Mark libgdal20 as breaking libgdal1h to fix upgrades. (closes: #859918) gdal (2.1.2+dfsg-4) unstable; urgency=medium . * Enable PIE hardening flags. (closes: #859368) * Drop unused hardening-no-pie lintian override. haproxy (1.7.5-1) unstable; urgency=medium . * New upstream version release (see CHANGELOG): - BUG/MEDIUM: peers: fix buffer overflow control in intdecode. - BUG/MEDIUM: buffers: Fix how input/output data are injected into buffers - BUG/MEDIUM: http: Fix blocked HTTP/1.0 responses when compression is enabled haproxy (1.7.4-1) unstable; urgency=medium . * New upstream release (see CHANGELOG): - BUG/MAJOR: connection: update CO_FL_CONNECTED before calling the data layer - BUG/MAJOR: http: fix typo in http_apply_redirect_rule - BUG/MAJOR: stream-int: do not depend on connection flags to detect connection - BUG/MEDIUM: cli: Prevent double free in CLI ACL lookup - BUG/MEDIUM: connection: ensure to always report the end of handshakes - BUG/MEDIUM: listener: do not try to rebind another process' socket - BUG/MEDIUM: stream: fix client-fin/server-fin handling - BUG/MEDIUM: tcp: don't require privileges to bind to device kio (5.28.0-2) unstable; urgency=medium . * Add new upstream patches, to improve file dialog's list: Never-stretch-the-last-date-column-in-the-file-dialog.patch, Also-change-the-resize-mode-the-other-way.patch and * Add new upstream patch: Allow-uppercase-checksums-matching-in-Checksums-tab.patch * Add new upstream patchs to fix the way the flags are being passed: ForwardingSlaveBase-fix-passing-of-Overwrite-flag-to-kio_.patch, ForwardingSlaveBase-fix-passing-of-Overwrite-flag-to-kio_.patch * Add new upstream patch: kssl-Ensure-user-certificate-directory-has-been-created-b.patch * Add new upstream patch: Fix-memleak-in-KDynamicJobTracker-KWidgetJobTracker-needs.patch * Add new upstream patch: Fix-parsing-of-directories-listing-on-a-specific-ftp-serv.patch * Add new upstream patch for CVE-2017-6410: Sanitize-URLs-before-passing-them-to-FindProxyForURL.patch. Thanks to Salvatore Bonaccorso for reporting (Closes: 856889) * Add new upstream patch: keep-query-encoding-when-HTTP-Proxy-is-used.patch * Add new upstream patch: kioexec-fix-support-for-suggestedfilename.patch * Add new upstream patch, to fix the testsuite: Fix-KDynamicJobTrackerTest-for-linkers-dropping-linked-li.patch kjobwidgets (5.28.0-2) unstable; urgency=medium . * Add new upstream patch: Don-t-focus-progress-windows.patch to improve the use of remote files * Add new upstream patch: don-t-replace-existing-icon-if-QIcon-fromTheme-fails.patch to keep the window icon if the themed one fails kup (0.3.4-3) unstable; urgency=medium . * kup: Backport changes needed to work with kernel.org in future (Closes: #859143): - Add support for subcmd config option - Make sure we use sanitized KUP_SUBCMD lazarus (1.6.2+dfsg-2) unstable; urgency=medium . * Add fix-fpdoc-crashes-on-lazarus-documentation.patch to prevent the lazarus-doc-1.6 package from being nearly empty (Closes: #858553) lgogdownloader (3.1-2) unstable; urgency=medium . [ Simon McVittie ] * Team upload * Backport patch from 3.2 fixing the ability to list games if a game has {'updates': null} (Closes: #857691) libmongo-client (0.1.8-2.1) unstable; urgency=medium . * Non-maintainer upload. * Don't use link-doc between arch:all and arch:any (Closes: #858375). lm-sensors (1:3.4.0-4) unstable; urgency=medium . * Drop the sensord package, it is not really maintained upstream, and the RRD part has some issues (closes: #244037, #469096, #790796). - Stop building it. - Remove corresponding patches. - Remove corresponding debhelper files. - Drop the build-depends on librrd-dev. * Fix udevadm path in sensors-detect (closes: #852558). manpages-zh (1.6.3-1) unstable; urgency=medium . * Upload onto unstable. * Mark manpages-zh package Multi-Arch: foreign. manpages-zh (1.6.3-1~exp1) experimental; urgency=medium . * New upstream release. + Add some translations for systemd man pages. python-numpy (1:1.12.1-2) unstable; urgency=medium . * Team upload * fix linking manpage in arch-indep build (Closes: #859619) python-numpy (1:1.12.1-1) unstable; urgency=medium . * New upstream bugfix release (Closes: #859019) * debian/patches/0007-BUG-fix-wrong-masked-median-for-some-special-cases.patch dropped, applied upstream seabios (1.10.2-1) unstable; urgency=medium . * new upstream stable/bugfix release, required for qemu 2.8.1+ due to ahci changes, plus fixes for guest resume from S3 and ps/2 keyboard/mouse handling sonnet (5.28.0-2) unstable; urgency=medium . * Update the sonnet-plugins package description (Closes: 801728) * Pick "Fix segfault in trigrams generation and expose MAXGRAMS constant in the header" (c7f0b14) Add upstream patch as: Fix-segfault-in-trigrams-generation-and-expose-MAXGRAMS-c.patch yara (3.5.0+dfsg-9) unstable; urgency=medium . * Add patches for CVE-2016-10210, CVE-2016-10211, CVE-2017-5923, CVE-2017-5924 (Closes: #859821)