dhelp (0.6.27) unstable; urgency=medium
 .
   * QA upload.
   * d/cron.monthly: Update xargs command. Closes: #990048

firefox-esr (78.12.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2021-29, also known as:
     CVE-2021-29970, CVE-2021-30547, CVE-2021-29976.

foxtrotgps (1.2.2+bzr330-1) unstable; urgency=medium
 .
   * New upstream snapshot.
     - Fixes FTBFS with new imagemagick (Closes: #991056)
     - Fixes use of deprecated gpsd API (see LP#1917998)

gtk-layer-shell (0.5.2-2) unstable; urgency=medium
 .
   * debian/rules:
     + Add '--with gir' to dh command. (Closes: #991086).

libaperture-0 (0.1.0+git20200908-2) unstable; urgency=medium
 .
   * d/rules: ensure dh uses --with gir (Closes: #991078)

python-nosehtmloutput (0.0.5-3) unstable; urgency=medium
 .
   * Added upstream "Python 3 support" patch (Closes: #990816).

qutebrowser (2.0.2-2) unstable; urgency=medium
 .
   * Apply patch to update documentation with regards to the #qutebrowser
     IRC channel having moved from Freenode to Libera.Chat.

trafficserver (8.1.1+ds-1.1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Address CVE-2021-27577, CVE-2021-32565, CVE-2021-32566, CVE-2021-32567 and
     CVE-2021-35474.
     - CVE-2021-27577: Incorrect handling of url fragment leads to cache
       poisoning
     - CVE-2021-32565: HTTP Request Smuggling, content length with invalid
       charters
     - CVE-2021-32566: Specific sequence of HTTP/2 frames can cause ATS to
       crash
     - CVE-2021-32567: Reading HTTP/2 frames too many times
     - CVE-2021-35474: Dynamic stack buffer overflow in cachekey plugin
     (Closes: #990303)