On Thu, Aug 04, 2016 at 03:17:47PM +0200, Santiago Vila wrote:
> owner 831918 sanv...@debian.org
> thanks
>
> I plan to make a QA upload to fix this.
Thank you!
Hi Santiago,
thanks a lot for your activities in this area and the bug reports you
filed. Unfortunately I'm quite inactive currently in Debian, actually
for many months already. Is it possible for you to NMU the packages
with the "FTBFS when built with dpkg-buildpackage -A" bugs where I'm
the
On Tue, Jul 05, 2016 at 10:01:43PM +, Mattia Rizzolo wrote:
> I've prepared an NMU for dash (versioned as 0.5.8-2.3) and
> uploaded it to DELAYED/2. Please feel free to tell me if I
> should delay it longer.
Just fine. Thank you!
Regards, Gerrit.
reassign 796118 djbdns
retitle 796118 Should djbdns be removed?
quit
On Tue, Sep 08, 2015 at 08:29:18PM +0200, Moritz Mühlenhoff wrote:
> On Wed, Aug 19, 2015 at 05:45:30PM +0200, Moritz Muehlenhoff wrote:
> > djbdns is RC-buggy for many years now and was out of testing since 2009.
> > Should we
On Mon, Jun 29, 2015 at 12:44:00PM -0400, Martin Michlmayr wrote:
severity 650426 serious
thanks
* Clint Byrum cl...@ubuntu.com [2011-11-29 09:39]:
In Ubuntu, the attached patch was applied to achieve the following:
* d/control: change to using just plain libmysqlclient-dev to pick
On Fri, Feb 20, 2015 at 11:56:59AM +0100, Andreas Beckmann wrote:
Hi Gerrit,
attached is a patch that moves the default aliases out of
/usr/share/doc. I verified that this fixes the serious problems discovered
by piuparts. There are more issues still (leaving around created files,
package
severity 775052 important
quit
Hi, currently I cannot work on an upload. NMU welcome. In the
meanwhile, change severity to important to prevent autoremoval from
testing.
Regards, Gerrit.
On Sat, Jan 10, 2015 at 08:46:10PM +0100, Andreas Beckmann wrote:
Package: qmail-run
Version: 2.0.2
On Mon, Dec 22, 2014 at 07:18:47PM -0800, Jonathan Nieder wrote:
Daniel Dickinson wrote:
This packages depend on runit which depends on the existence of inittab
which is not longer true with systemd.
That sounds like a runit bug. Do you have a change in git-daemon-run in
mind that
On Tue, Dec 09, 2014 at 11:24:11AM +, Gerrit Pape wrote:
On Mon, Nov 24, 2014 at 10:08:49PM +, Simon McVittie wrote:
On 24/11/14 21:41, Gerrit Pape wrote:
Better than (2) would be to make the existence of /etc/inittab still
essential for jessie, by moving the corresponding code
On Sat, Oct 25, 2014 at 09:34:50AM +, Gerrit Pape wrote:
On Wed, Oct 22, 2014 at 09:20:46AM +, Gerrit Pape wrote:
On Tue, Oct 21, 2014 at 08:29:54AM -0400, Nikolay Hristov wrote:
Setting up runit (2.1.2-1) ...
grep: /etc/inittab: No such file or directory
grep: /etc/inittab
tags 767933 - patch
quit
On Thu, Nov 13, 2014 at 12:20:01AM +0100, Simon Elsbrock wrote:
the patch below fixes the build failure by checking for existence
of /etc/inittab before grepping.
Hi Simon,
thanks for the patch, but that's not the solution, it has other problems
which are not as
On Thu, Oct 23, 2014 at 02:22:45AM +0200, Michael Biebl wrote:
It's unfortunate that Gerrit objected to this proposed change and
derailed the discussion.
Well, there's two sides of the medal. Actually I felt that you (plural)
derailed discussion, even before I had chance to start it. That's
On Sun, Oct 26, 2014 at 09:15:21PM +, Debian Bug Tracking System wrote:
From: Michael Biebl em...@michaelbiebl.de
Am 23.10.2014 um 01:56 schrieb Adam Borowski:
For now, let's not change packages back and forth. Let's close this
non-issue in rsyslog, it's a problem with the policy.
On Mon, Oct 27, 2014 at 09:35:07PM +0100, Holger Levsen wrote:
user debian...@lists.debian.org
usertag 766187 + piuparts
affects 766187 git-daemon-run
thanks
I can see this bug on piuparts.d.o too, eg at
https://piuparts.debian.org/jessie/fail/git-daemon-run_1:2.1.1-1.log or
rather
On Wed, Oct 22, 2014 at 09:20:46AM +, Gerrit Pape wrote:
On Tue, Oct 21, 2014 at 08:29:54AM -0400, Nikolay Hristov wrote:
Setting up runit (2.1.2-1) ...
grep: /etc/inittab: No such file or directory
grep: /etc/inittab: No such file or directory
cp: cannot stat ‘/etc/inittab
Package: dash
Version: 0.5.8-1
Severity: grave
A rebuild of the archive with dash version 0.5.8-1 from experimental
shows several build failures. Thanks to David Suárez for his support,
see here for the rebuild results:
http://aws-logs.debian.net/ftbfs-logs/dash/
Regards, Gerrit.
--
To
Package: nfacct
Version: 1.0.1-1
Severity: serious
Justification: Policy 2.5
Hi, the current nfacct package version in testing is priority important
and depends on packages with priority extra. Policy 2.5 states:
Packages must not depend on packages with lower priority values
(excluding
Package: rsyslog
Version: 8.2.2-3
Severity: serious
Justification: Policy 2.5
Hi, the current rsyslog package version in testing is priority important
and depends on packages with priority extra. Policy 2.5 states:
Packages must not depend on packages with lower priority values
(excluding
Package: cron
Version: 3.0pl1-124.2
Severity: serious
Justification: Policy 2.5
Hi, the current cron package version in testing is priority important
and depends on a package with priority extra. Policy 2.5 states:
Packages must not depend on packages with lower priority values
(excluding
On Fri, Jan 17, 2014 at 04:21:50PM -0600, James Michael DuPont wrote:
OK the problem showed up again with sid I will check now the different
versions.
git review
fatal: Unpack error, check server log)
remote: Resolving deltas: 100% (25/25)
error: unpack failed: error Missing blob
Hi Michael,
On Fri, Jul 18, 2014 at 08:06:11PM +0200, Michael Stapelberg wrote:
Gerrit Pape p...@dbnbgs.smarden.org writes:
I'm really not keen to add a dependency to daemontools-run, esp. not to
the runit package, just for (un)installing and starting/stopping a
service.
I presume you
On Mon, Jul 28, 2014 at 02:36:06PM +0200, Michael Biebl wrote:
Since you are going to do it your way anyway I'm not sure why you ask
for feedback from us?
It's like talking to a brick wall.
Hi, I'm sorry that you feel this way. I also found our communication
far from ideal, and after I
Hi Michael,
On Tue, Jul 22, 2014 at 06:11:24PM +0200, Michael Stapelberg wrote:
I'm not sure how we can state this more clearly:
Use dh-systemd or you _will_ have bugs sooner or later. It is the most
simple implementation that we could come up with.
sorry, we have different points of view,
On Tue, Jul 22, 2014 at 03:03:02PM +0200, Michael Biebl wrote:
Am 22.07.2014 14:34, schrieb Gerrit Pape:
On Fri, Jul 18, 2014 at 12:03:41PM +, Gerrit Pape wrote:
I'm really not keen to add a dependency to daemontools-run, esp. not to
the runit package, just for (un)installing
On Fri, Jul 18, 2014 at 12:03:41PM +, Gerrit Pape wrote:
I'm really not keen to add a dependency to daemontools-run, esp. not to
the runit package, just for (un)installing and starting/stopping a
service.
Hi, I've now prepared this changeset. Do you have any comments on it?
Author
On Tue, Jul 22, 2014 at 03:03:02PM +0200, Michael Biebl wrote:
Am 22.07.2014 14:34, schrieb Gerrit Pape:
Hi, I've now prepared this changeset. Do you have any comments on it?
diff --git a/debian/daemontools-run.postinst
b/debian/daemontools-run.postinst
index d51ac09..1d7aae1 100644
Hi, thanks for all the help I already got.
On Mon, Jul 07, 2014 at 04:56:24PM +0200, Michael Biebl wrote:
Am 07.07.2014 16:36, schrieb Gerrit Pape:
As Ansgar already mentioned, probably the best way to handle that in
Debian is to use the dh-systemd helper.
Unfortuantely the daemontools
Hi Michael, thanks for your help.
On Mon, Jul 07, 2014 at 02:59:05PM +0200, Michael Biebl wrote:
[CCing the bug report]
Am 07.07.2014 14:39, schrieb Jonathan de Boyne Pollard:
I did systemd units for this ages ago. It's better to do this as two
units: a path unit that watches the service
Hi,
I looked into latest policy, but did not find anything about systemd
support. I'm surprised that this is now a release critical bug, and the
package marked for removal. What's the justification?
This package hooks into /etc/inittab, does systemd not automatically
manage services from
Hi Joern, you did nothing wrong. Severity and justification looks quite
right to me.
On Fri, Jul 04, 2014 at 12:42:43PM +0200, Joern Heissler wrote:
On Fri, Jul 04, 2014 at 09:08:21AM +, Gerrit Pape wrote:
I looked into latest policy, but did not find anything about systemd
support
On Fri, Jul 04, 2014 at 03:37:20AM -0700, Russ Allbery wrote:
Gerrit Pape p...@dbnbgs.smarden.org writes:
I looked into latest policy, but did not find anything about systemd
support. I'm surprised that this is now a release critical bug, and the
package marked for removal. What's
upstream git; bcron-exec: Mark all temporary files
+close-on-exec and close selfpipe; this fixes a security bug in
+bcron where cron jobs get access to the temporary output files from
+all other jobs that are still running (CVE-2012-6110, closes:
+#686650).
+
+ -- Gerrit Pape p
-control.git/184644
Hi Gerrit,
Gerrit Pape wrote[1]:
ok 1 - initialize git svn
expecting success: git svn fetch
svn: E235000: In file
'/tmp/buildd/subversion-1.7.5/subversion/libsvn_subr/dirent_uri.c' line
2291: assertion failed (svn_uri_is_canonical(url, pool))
Good catch
On Thu, Aug 02, 2012 at 07:06:19PM +0200, Vincent Lefevre wrote:
Package: dash
Version: 0.5.7-3
Severity: grave
Justification: causes non-serious data loss
When running an interactive command, dash doesn't ignore SIGINT
and SIGQUIT.
For instance, here's what I get with Emacs 24 (not a
?176.74.58.109
Giving up on 92.243.22.117.
--- Below this line is a copy of the message.
Received: (qmail 3983 invoked by uid 1000); 28 Aug 2012 11:05:45 -
Message-ID: 20120828110545.3982.qm...@818822b293fcc9.315fe32.mid.smarden.org
Date: Tue, 28 Aug 2012 11:05:45 +
From: Gerrit Pape p
Hi Team,
do you have any news on this pending security fix? If I can be of any
help, please don't hesitate to ask.
Regards, Gerrit.
On Tue, Feb 28, 2012 at 10:13:07AM +, Gerrit Pape wrote:
On Mon, Feb 27, 2012 at 03:54:11PM +0100, Nico Golde wrote:
* Gerrit Pape p...@smarden.org [2012
On Fri, Feb 24, 2012 at 03:54:34PM +0100, Nico Golde wrote:
Source: dropbear
Severity: grave
Tags: security patch
Hey,
below is a forwarded report describing a vulnerability in dropbear.
Hi Nico, the upload to unstable is on the way.
Accoring to upstream's changelog, this also affects
On Mon, Feb 27, 2012 at 03:54:11PM +0100, Nico Golde wrote:
* Gerrit Pape p...@smarden.org [2012-02-27 15:48]:
Accoring to upstream's changelog, this also affects squeeze. Are you
already working on that, or shall I prepare an upload to stable?
If you have the time to prepare stable
tags 642718 + unreproducible moreinfo
quit
On Sat, Sep 24, 2011 at 08:35:19PM +0200, Mònica Ramírez Arceda wrote:
During a rebuild of all packages in sid, your package failed to build on
amd64.
Relevant part:
make[1]: Entering directory
tags 645005 + patch pending
quit
On Wed, Oct 12, 2011 at 01:30:09AM -0500, Jonathan Nieder wrote:
Hi Simon,
Simon Chopin wrote:
I was also confronted to the problem. I slightly modified the postinst
script to skip the whole thing if the version provided as argument is an
empty string.
On Mon, Sep 26, 2011 at 05:09:54PM -0500, Jonathan Nieder wrote:
Hi Gerrit,
I'd like to propose
git://repo.or.cz/dash/debian/jrn.git proposed-updates
(commit efa06779) for upload to unstable. It does very little new ---
Uploaded.
Thanks to Stéphane Glondu for the hints and prodding.
On Thu, Mar 24, 2011 at 05:36:18PM -0500, Jonathan Nieder wrote:
In this case let's just drop the unnecessary patch ([SHELL] Port to
Solaris, 2011-03-15). The result is at
git://repo.or.cz/dash/debian/jrn.git proposed-updates
(commit e5ee7764, candidate+patches at commit 5ee25045) and
On Wed, Mar 23, 2011 at 03:58:06PM -0500, Jonathan Nieder wrote:
Gerrit, the following changes are available from
git://repo.or.cz/dash/debian/jrn.git proposed-updates
(commit 08ad97a7, patched upstream source in branch candidate+patches,
commit a888a8c). The main change since the last
On Fri, Oct 08, 2010 at 11:02:22PM -0500, Jonathan Nieder wrote:
A somewhat orthogonal task
~~
IV. Introduce a new package to take responsibility for the /bin/sh symlink.
Preinst (not necessarily in this order):
1. Removes all diversions
2. Sets up a
On Thu, Oct 07, 2010 at 08:11:21PM +, Thorsten Glaser wrote:
See my signature. Anyway, I think we should have some common, shared
code across all shells that are eligible as /bin/sh in Debian, and
maybe manage /bin/sh as non-diverted non-packaged file, means symbolic
link. The shells’
On Tue, Sep 07, 2010 at 10:30:03AM +0200, Philipp Kern wrote:
Thanks for the analysis. Do you think it would be worth
cherry-picking
the fix from v1.6.0.3~81^2 (Fix permission bits on sources checked
out
with an overtight umask, 2008-08-21[1]) to lenny to prevent this
from
happening
On Fri, Aug 06, 2010 at 05:07:22PM +0100, Neil McGovern wrote:
On Tue, Jul 27, 2010 at 10:54:12PM -0400, Don Armstrong wrote:
Release team: if you think this bug makes runit-run unreleaseable,
please indicate as such; otherwise I think it's reasonable for the
maintainer to downgrade the
severity 562945 normal
tags 562945 - moreinfo
quit
No response from the submitter.
On Mon, May 24, 2010, Gerrit Pape wrote:
[...]
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
found 582952 0.5.5.1-7~exp0
forcemerge 582952 584096
quit
On Tue, Jun 01, 2010 at 10:35:40AM +0200, Eric Valette wrote:
Suddently xbmc compilation started to fail in the configure phase.
I add a lot of
./configure: 1: INCLUDES+= : not found
Hi Eric, please see
On Tue, May 25, 2010 at 08:28:58AM +0200, Lucas Nussbaum wrote:
On 24/05/10 at 22:27 +0200, Andreas Barth wrote:
Re the long term perspectives, Jakub Wilk has contacted Lucas Nussbaum
about testing all our packages in unstable and see which are affected
by this bug, and then filling bugs as
. And it works
properly in normal systems.
On Thu, Mar 25, 2010 at 07:55:36PM +0100, Gerrit Pape wrote:
Hi, this is by intention, I reverted the NMU. runit-run should only be
installed if actively confirmed again. For non-interactive and
automated installations either debconf should be installed
On Sun, May 23, 2010 at 02:08:23PM +0200, Holger Levsen wrote:
during a test with piuparts I noticed your package modifies files from
another
package in /usr. This is so wrong, I'm not even bothered to look up the part
of policy this violates ;-P
0m18.4s ERROR: FAIL: After purging files
On Tue, May 18, 2010 at 01:39:45PM +0300, Niko Tyni wrote:
Thie mapserver package fails to build on current sid/amd64:
checking for xml2-config... /usr/bin/xml2-config
found libxml2 version 2.7.7
checking if FriBidi support requested... yes
checking for fribidi-config... no
On Fri, May 14, 2010 at 10:57:11AM +, Debian Bug Tracking System wrote:
Processing commands for cont...@bugs.debian.org:
Hi Sven, Ritesh, thanks for handling all these reports.
Regards, Gerrit.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of
tags 581351 + confirmed pending upstream
quit
On Wed, May 12, 2010 at 02:32:18PM +0200, Julien Cristau wrote:
severity 581351 grave
kthxbye
Seems like broken IFS handling in read, postfix's post-install script
does:
test -n $create {
exec $daemon_directory/postfix-files || exit 1
found 581428 0.5.4-12 0.5.5.1-3
severity 581428 important
quit
On Thu, May 13, 2010 at 12:25:44AM +0200, Yves-Alexis Perez wrote:
On jeu., 2010-05-13 at 00:07 +0200, Yves-Alexis Perez wrote:
Package: dash
Version: 0.5.5.1-4
Severity: grave
Justification: breaks unrelated package
On Fri, Apr 23, 2010 at 11:04:11AM +0200, Peter Palfrader wrote:
On Thu, 22 Apr 2010, Gerrit Pape wrote:
debian-admin, can you please install the build dependencies of git
1:1.7.0.5-1 in zelenka.d.o's sid chroot? I'd like to try to reproduce
in an environment that's as close
tags 569594 - unreproducible help
tags 569594 + pending
quit
On Fri, Apr 23, 2010 at 02:14:15PM +0200, Gerrit Pape wrote:
Thanks. Unfortunately I still cannot reproduce the autobuild failures,
dpkg-buildpackage -rfakeroot -B -uc -us runs through just fine. I'll
prepare a package with some
like to try to reproduce
in an environment that's as close to the autobuilder's as possible.
Thanks, Gerrit.
On Tue, Apr 13, 2010 at 01:13:30PM +0200, Gerrit Pape wrote:
tags 569594 + unreproducible
quit
On Sat, Mar 27, 2010 at 04:18:59AM -0500, Jonathan Nieder wrote:
oks390
On Tue, Apr 20, 2010 at 02:53:42AM +0200, Cyril Brulebois wrote:
your package FTBFS on amd64 kfreebsd-* due to testsuite issues:
| 76 tests executed, 5 failures
Full build logs:
https://buildd.debian.org/status/package.php?p=cvm
(Severity is serious since it's a regression on amd64.)
On Mon, Apr 12, 2010 at 11:58:57AM +0200, Gerrit Pape wrote:
On Mon, Apr 12, 2010 at 11:08:15AM +0200, Reinhard Karcher wrote:
After moving the git modules from /usr/lib/git-core to /usr/lib/git
the command 'git svn' is no longer found.
git-svn should move from /usr/lib/git-core to /usr/lib
tags 569594 + unreproducible
quit
On Sat, Mar 27, 2010 at 04:18:59AM -0500, Jonathan Nieder wrote:
ok s390 (lxdebian) 1.6.6.1 2010-01-28
ok s390 (zandonai) 1.6.5-1~bpo50+1 2010-02-01
FAILs390 (zandonai) 1.7.0~rc2 2010-02-13
ok s390 (debian-31) 1.7.0
On Fri, Mar 26, 2010 at 03:10:44PM -0700, John Wenger wrote:
On Fri, Mar 26, 2010 at 1:24 AM, Gerrit Pape p...@smarden.org wrote:
On Thu, Mar 25, 2010 at 10:45:55PM -0700, John Wenger wrote:
I have used djbdns off and on for years (woody, sarge, and before) but
I was never able to get
for services on Debian is
/etc/service/, not /service/.
See http://cr.yp.to/djbdns.html for detailed documentation.
-- Gerrit Pape p...@smarden.org, Wed, 09 Jan 2008 21:14:00 +
---
Apart from these changes, you should be able to configure and run djbdns
using upstream's method.
The man pages
found 562945 1.1.2
severity 562945 important
tags 562945 + wontfix
forcemerge 562945 574223
quit
On Tue, Dec 29, 2009 at 02:12:34PM +0100, Holger Levsen wrote:
during a test with piuparts I noticed your package failed to install.
From the attached log (scroll to the bottom...):
severity 558989 important
tags 558989 + wontfix
quit
On Tue, Dec 01, 2009 at 12:43:44PM +1030, Ron wrote:
Dash should not implement -nt at all if it wants to be strict about
things that aren't POSIX. If it is going to implement non standard
things from other sources, then it absolutely should
severity 561727 normal
tags 561727 + wontfix
quit
On Wed, Jan 06, 2010 at 01:44:13AM -0500, Anders Kaseorg wrote:
Does this really merit a release-critical severity?
No, I don't think so.
On Sat, Jan 09, 2010 at 03:54:41AM -0600, Jonathan Nieder wrote:
It was fixed by v1.6.5.3~34 (help -a: do
Package: ftp.debian.org
See also bug#553263
Please remove the package, upstream and Debian maintainer no longer work
with this software.
Thanks, Gerrit.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact
On Mon, Nov 30, 2009 at 08:02:36PM +0100, Piotr Engelking wrote:
The debian/copyright file claims that dietlibc is licensed under GPL
version 2 or later. According to the README file, it is actually
licensed under GPL version 2.
Please refer to the correct license in debian/copyright.
The
On Thu, Oct 29, 2009 at 01:13:07PM -0500, Manoj Srivastava wrote:
Package: libmatrixssl1.8-dev
Version: 1.8.6-1
Severity: serious
Justification: The listed file appears to be linked against the C library,
User: lintian-ma...@debian.org
Usertags: missing-dependency-on-libc
All shared
On Tue, Oct 27, 2009 at 03:52:52PM -0500, Manoj Srivastava wrote:
Justification: The package contains a special file (e.g., a device file).
This is forbidden by current policy. If your program needs this
device, you should create it by calling makedev from the
On Tue, Sep 22, 2009 at 09:51:21AM +, Gerrit Pape wrote:
On Fri, Aug 07, 2009 at 08:49:22PM +0200, Sven Joachim wrote:
[ Please keep CC'ing me, I'm not subscribed to the bug. ]
On 2009-08-07 18:49 +0200, Luk Claes wrote:
dash's preinst guarantees that there is a diversion so
On Mon, Oct 05, 2009 at 06:12:57AM -0400, Andrew Schulman wrote:
Gerritt, thanks for your answer. Forgive me, but really, this is a mess.
There are a several problems.
First, the documentation of update-service never explains that the contents
of /etc/service must all be symlinks. This
On Thu, Oct 01, 2009 at 10:28:35PM +0200, Luk Claes wrote:
Any reason why there was no upload for this security issue to unstable yet?
Hi, I made my position as the maintainer of the package clear in
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=516394#36
and some private discussions with
On Sun, Sep 13, 2009 at 10:39:40PM +0200, Matthias Klose wrote:
On 13.09.2009 20:34, Sven Joachim wrote:
The dependency of bash on dash needs to be turned into a pre-dependency,
else bash might be unpacked before dash, losing the /bin/sh symlink in
the process. Among other things, this would
On Fri, Aug 07, 2009 at 08:49:22PM +0200, Sven Joachim wrote:
[ Please keep CC'ing me, I'm not subscribed to the bug. ]
On 2009-08-07 18:49 +0200, Luk Claes wrote:
dash's preinst guarantees that there is a diversion so that the unpack
always succeeds...
Only the first part of this
* Gerrit Pape:
Hi, this seems to be a misunderstanding. I'm asking about the bug
http://bugs.debian.org/518169
in djbdns (fix is available since four months), and not the git-core
package.
On Fri, Jul 10, 2009, Florian Weimer wrote:
[something about http://bugs.debian.org/516394
On Thu, Jul 02, 2009 at 08:22:04PM +0200, Nico Golde wrote:
Hi,
* Thijs Kinkhorst th...@debian.org [2009-07-02 20:08]:
On tiisdei 30 Juny 2009, Gerrit Pape wrote:
While we wait for who knows how long, I suggest we get the fix for
#518169 into stable; packages still are available
On Wed, Mar 25, 2009 at 04:52:02PM +, Gerrit Pape wrote:
On Tue, Mar 24, 2009 at 09:18:24PM +0100, Florian Weimer wrote:
* Gerrit Pape:
AFAIK from private discussion, the Debian security team doesn't agree
with my assessment. I don't know what their plans are for stable.
I still
On Sat, Jun 13, 2009 at 01:24:29AM +0200, Giuseppe Iuculano wrote:
The following SA (Secunia Advisory) id was published for git:
SA35437[1]:
Thanks Giuseppe. Hi t...@security, I prepared packages for lenny and
etch, and put them along with a debdiff here
http://niequai.smarden.org/ruGho2e/
Hi,
please see http://bugs.debian.org/524728 and below for a bug report with
severity grave filed against the dropbear package. The bug report is
about the cryptroot remote unlocking on boot feature you contributed to
the dropbear package. Can you please take a look?
Thanks, Gerrit.
-
On Tue, Mar 24, 2009 at 09:18:24PM +0100, Florian Weimer wrote:
* Gerrit Pape:
The attack under discussion is a bruteforce attack.
No, it's not, it's about 100 times faster than brute force.
We're discussing the birthday attack. A birthday attack is a special
type of brute force attack
On Tue, Mar 24, 2009 at 08:04:33AM +0100, Soeren Sonnenburg wrote:
Not sure if any of the previous reporters actually read
http://cr.yp.to/djbdns/forgery.html , but it occurs to me as if this
problem is a problem in the current DNS protocol that cannot be
prevented *at all*. However, it can be
On Mon, Feb 23, 2009 at 04:37:29PM +0100, Thijs Kinkhorst wrote:
Gerrit, it would be great if you could provide updated packages for
stable-security and oldstable-security. Please upload them to
security-master, and make sure you build with full source (-sa) at least
for the stable-security
$ zcat /usr/share/doc/djbdns/NEWS.Debian.gz |head
djbdns (1:1.05-6) unstable; urgency=medium
CVE-2008-4392 reports 'Rapid DNS Poisoning in dnscache', the dnscache
program included in djbdns-1.05. Upstream's comments on this can be
read in http://cr.yp.to/djbdns/forgery.html
The dbndns
tags 516394 - patch
quit
On Sat, Feb 21, 2009 at 04:20:14PM +0900, Hideki Yamane (Debian-JP) wrote:
I've found an article about DNS Cache poisoing for dnscache,
and patch is available at his site, see http://www.your.org/dnscache/
patches are freely distributed, so we can apply those.
On Tue, Feb 24, 2009 at 07:28:51PM +, Stefan Munder wrote:
Gerrit,
I chose cfs because cfs is broken now. But indeed, I've no idea whether cfs
or nfs is the reason.
I'm sorry, Stefan, my response wasn't appropriate.
Shall I submit a new bug report to nfs-{common,kernel-server}?
You can
On Sun, Feb 22, 2009 at 01:04:19PM +0100, Stefan Munder wrote:
Package: cfs
Version: 1.4.1-20
Severity: grave
Justification: renders package unusable
The current version of nfs-common and nfs-kernel-server in testing (squeeze)
breaks cfs.
The cfs daemon is not started by
a
signed package for stable, please let me know.
Regards, Gerrit.
commit 24aaa9dc0b99ebe01b190dc1d97a24d5b4616abd
Author: Gerrit Pape p...@smarden.org
Date: Mon Feb 23 14:00:16 2009 +
* debian/diff/0006-Install-templates-with-the-user-and-group...diff:
new, cherry-picked from 71f4637
On Mon, Feb 23, 2009 at 04:37:29PM +0100, Thijs Kinkhorst wrote:
As I understand it, these files are not usually executed directly, but do
serve as templates for scripts that are executed, so someone could edit their
content and hope that an administrator copies the script without noticing
On Sat, Feb 14, 2009 at 05:01:06PM -0800, Petr Vandrovec wrote:
Hello,
new dash has some serious problems with waiting on spawned
processes, which completely breaks apt-move - at the end apt-move spawns
pipe as shown below:
Hi Petr, can you give me some instructions on how to reproduce?
On Mon, Feb 16, 2009 at 08:33:39AM +, Gerrit Pape wrote:
On Sat, Feb 14, 2009 at 05:01:06PM -0800, Petr Vandrovec wrote:
Hello,
new dash has some serious problems with waiting on spawned
processes, which completely breaks apt-move - at the end apt-move spawns
pipe as shown below
On Wed, Dec 10, 2008 at 04:11:14PM -0500, Micah Anderson wrote:
As it turns out dietlibc-0.31 doesn't properly define the umount2
symbols on two architectures: alpha and ia64. This sadly results in a
build regression for util-vserver, which used to build on these
architectures, but is refusing
On Thu, Aug 14, 2008 at 11:44:57AM +, Gerrit Pape wrote:
On Thu, Aug 14, 2008 at 12:32:38PM +0200, Marc 'HE' Brockschmidt wrote:
Gerrit Pape [EMAIL PROTECTED] writes:
Hi, #494097 should be fixed in lenny. Instead of adding two patches to
the current version 1.5.6.3-1.1, I suggest
reopen 494097
found 494097 1:1.5.6.3-1.1
quit
On Thu, Aug 07, 2008 at 10:46:01AM +0200, Nico Golde wrote:
Hi,
the following CVE (Common Vulnerabilities Exposures) id was
published for git-core.
You can find the upstream patch on:
http://kerneltrap.org/mailarchive/git/2008/7/16/2529284
Hi, #494097 should be fixed in lenny. Instead of adding two patches to
the current version 1.5.6.3-1.1, I suggest to update to the point
release 1.5.6.5, which includes some more fixes. Is that okay with
you?, upstream's point releases usually are of good quality.
Thanks, Gerrit.
--
To
FYI, Regards, Gerrit.
- Forwarded message from Jan Hudec [EMAIL PROTECTED] -
Subject: Bug#488764: Hint
Reply-To: Jan Hudec [EMAIL PROTECTED], [EMAIL PROTECTED]
Date: Mon, 7 Jul 2008 22:25:49 +0200
From: Jan Hudec [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Hello,
I am not seeing this
On Sun, Jul 06, 2008 at 08:39:13PM +0200, Beno??t Dejean wrote:
Le dimanche 06 juillet 2008 ?? 17:34 +, Gerrit Pape a ??crit :
$ wget -q
ftp://ftp.fr.debian.org/debian/pool/main/g/git-core/git-core_1.5.6-1_powerpc.deb
$ ar x git-core_1.5.6-1_powerpc.deb
$ tar xzpf data.tar.gz
On Wed, Jun 04, 2008 at 02:21:20PM +0200, Stefan Hornburg wrote:
Can you supply the corresponding code for preinst/postrm ?
Yes, in preinst on 'install' or 'upgrade' (from a version that did not
yet add the diversion):
add_diversion() {
dpkg-divert --package courier-mta --add --rename \
Hi Stefan, are you around? Thanks, Gerrit.
On Mon, May 05, 2008 at 08:16:12AM +, Gerrit Pape wrote:
On Thu, Apr 17, 2008 at 01:45:38AM +0200, Ralf Treinen wrote:
ucspi-tcp should conflict with courier-mta as it shares a file with
that package:
Unpacking courier-mta (from
1 - 100 of 173 matches
Mail list logo