Bug#772707: squeeze update of sudo?
On Mon, 23 Feb 2015 11:48:35 +0100 Raphael Hertzog hert...@debian.org wrote: Hello dear maintainer(s), the Debian LTS team would like to fix the security issues which are currently open in the Squeeze version of your package: https://security-tracker.debian.org/tracker/CVE-2014-9680 https://security-tracker.debian.org/tracker/CVE-2014-0106 (the latter has been ignored up-to-now but since we have to prepare an update, we might as well include the fix in this update) Fix for CVE-2014-9680. marko@debian:~$ echo moo tz marko@debian:~$ chmod 0 tz marko@debian:~$ cat tz cat: tz: Permission denied marko@debian:~$ TZ=$PWD/tz sudo -u root strace -e read date sudo: strace: command not found marko@debian:~$ TZ=$PWD/tz sudo -u root strace -e read date read(3, \177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0\0\1\0\0\0\220!\0\0\0\0\0\0..., 832) = 832 read(3, \177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0\0\1\0\0\0\300\357\1\0\0\0\0\0..., 832) = 832 read(3, \177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0\0\1\0\0\0@\\\0\0\0\0\0\0..., 832) = 832 read(3, TZif2\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\6\0\0\0\6\0\0\0\0..., 4096) = 1931 read(3, TZif2\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\7\0\0\0\7\0\0\0\0..., 4096) = 1230 Thu Feb 26 15:25:44 CET 2015 Best regards -- http://markorandjelovic.hopto.org One should not be afraid of humans. Well, I am not afraid of humans, but of what is inhuman in them. Ivo Andric, Signs near the travel-road sudo_1.7.4p4-2.squeeze.5.debian.tar.gz Description: GNU Zip compressed data sudo_1.7.4p4-2.squeeze.5.dsc Description: Binary data
Bug#727708: Init should be simple, secure, and get out of the way. It should not take over the system. We should not be forced to use one that does.
On Sat, 1 Feb 2014 19:11:52 -0500 (EST) Thilos Rich thilos.r...@aol.com wrote: Init should be simple, secure, and get out of the way. It should not take over the system. We should not be forced to use an init that does. This man said it best: wizardofbits.tumblr.com/post/45232318557/systemd-more-like-shit-stemd Init has one other job, which is to keep the process tables clean. See, any process can create a copy of itself (called “forking” (don’t laugh) in Unix terminology); this is usually a precursor to loading some other program. Any process that runs to completion can deliver a status code to the process that created it; the creating (or parent) process is said to “wait” on the status code of the created (or child) process. But what happens if the parent process dies before the child does? What happens is that init is designated to be the adoptive parent of the “orphaned” process, and it waits for, and discards, any status code that may be returned by the orphan on exit. This is to prevent “zombie processes” – process table slots that are filled with status codes but have no running programs attached to them. They are undesirable because they take up process table space that could be used by actual, running programs. So it is important that init run well and not crash. Now, in Unix system design, it is a generally understood principle that a big task not be handled by a big program, but rather a collection of small programs, each tackling one specific, well-defined component of the larger task. You often hear the phrase “do one thing, and do it well” as a guiding principle for writing a Unix program. One major reason for this is that a small program has fewer places for bugs to hide than a big program does. Real power is in communicability, not in monolithic software, not even in modular software. It's like 2^N. 2 is a small number, but if you have enough bits, you can represent enormous number of numbers: 0,1,2,...,2^N-1. Another example, in theory of approximation, a function f is represented by function g. And if you tend to approximate f with g on interval (a,b), then you your function g will start to diverge very rapidly as soon x gets out of (a,b). When one software wants to cover all cases, they can never achieve this goal. They can make it work perfectly for 99% of users, but then the remaining 1% will have big problems. Such an application not only do not provide infrastructure for satisfying remaining cases, it can even become useless, and the typical solution is replacing it with another software which is incomparably less powerful, but yet much more usable for a particular purpose. Moreover, they are bad psychologically, because the user is frustrated, he has all that power in his hands, but in spite of that he cannot achieve something he has in mind. -- https://en.wikipedia.org/wiki/Machiavellianism http://markorandjelovic.hopto.org -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#727708: Abstract Init Scripts
I made an example script that could serve as a starting point for controlling all services. User/Admin can override functions from this script to make custom behavior and configure it in a config file. It probably doesn't work, but for now it's enough to read it because it's self-explaining and illustrate the thesis that features that are missing from sysvinit/initscripts can be implemented in a relatively simple way. example.conf Description: Binary data service Description: Binary data
Bug#727708: init system question before the technical committee
On Wed, 27 Nov 2013 19:50:54 + Steven Chamberlain ste...@pyro.eu.org wrote: The sysvinit page doesn't have a specific maintainer/advocate. It is a collection of opinions from discussion on debian-devel@ and elsewhere. Other camps have already responded to parts they don't agree with. Unless any volunteers want to make last-minute small changes, it can probably be taken as 'complete' as soon the tech-ctte is ready to move forward with this. I think maintainers of all the other proposals have said they are ready now. Thanks, Regards, There were elements in form of conversation, and I have made some changes, but didn't want to erase what other people wrote, so now there more elements in form of conversation. Should they be merged (calculate resultant)? signature.asc Description: PGP signature
Bug#727708: sysvinit: moving the contents out of the Essential: yes package?
On Tue, 26 Nov 2013 18:42:43 +0800 Thomas Goirand z...@debian.org wrote: With the above, it's easy to switch from one to the other. Well, that is before the mess with the version-depends on sysv-rc introduced by the debhelper thing for upstart, which messed-up a few things... I hope many packages have been rebuilt with the new debhelper version since that has been corrected, especially the essential ones (like ifupdown and the others (I can't remember)). Then I don't understand why on 'multiple' page they say sysvinit+openrc is infeasible. -- https://en.wikipedia.org/wiki/Little_Red_Riding_Hood my homepage: http://mr.flossdaily.org -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#684396: openrc packaging status (Re: Survey answers part 3: systemd is not portable and what this means for our ports)
Hi OpenRC people, What's going on with this project? Is OpenRC working on Debian? Why is it not in Unstable yet? If you need any help with this project, please let me know. I'd like to see Debian working on OpenRC. Regards -- https://en.wikipedia.org/wiki/Little_Red_Riding_Hood Marko Ranđelović, B.Sc. Software Developer Niš, Serbia marko...@eunet.rs http://mr.flossdaily.org signature.asc Description: PGP signature
Bug#727708: Arguments for tech-ctte (Was: Proposal: let’s have a GR about the init system)
Additional arguments in favor of sysvinit: * systemd and upstart lead to vendor lock-in; it will be complicated later to return back or change to third option, as well to change from first to second option * I don't have a feeling that configuration can be very simpler than shell scripts; there are things such as 'events' and such things have to be properly defined) * If OpenRC's development continues in good direction, Debian could switch to OpenRC * If our shell scripts are a mess, then we should clean up the mess, not trying to escape it by changing whole init system; more precisely, we should correct mistakes we made in past, such as not enough abstraction * existing software (sysvinit+initscripts) can be enhanced: (1) add new features to sysvinit; e.g. start-stop-daemon could be extended, to return only when service is ready, or if timeout exceeds to return with error status (2) add new software in addition to sysvinit (3) make init scripts more correct (abstraction) (4) extend configurability (more options in /etc/default/*) (3) makes (4) easily possible If sysvinit is in accord with UNIX philosophy, and as they say it is, than I don't see why (1) and (2) would not be possible, too, and with not to much effort. * What is alleged to be disadvantages of sysvinit (lack of features), is not really to blame sysvinit, because it does one thing and do it right. Other features could be implemented as additional software. On the other hand, what actually was done was writing new software that make old software obsolete and that do *many* things, which is not in accord with UNIX philosophy. * More complex software has more bugs, old software is cleaned out of original bugs, and new software is not. * Software that is not well commented is hard to understand and find bugs For more details: http://lists.debian.org/20131108125545.1b43f...@eunet.rs http://lists.debian.org/20131108134841.71563...@eunet.rs http://lists.debian.org/20131105234316.4407f...@eunet.rs http://lists.debian.org/20131106135535.7d091...@eunet.rs http://lists.debian.org/20131103102302.42493...@eunet.rs -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#727708: Arguments for tech-ctte (Was: Proposal: let’s have a GR about the init system)
On Fri, 08 Nov 2013 16:30:28 +0100 John Paul Adrian Glaubitz glaub...@physik.fu-berlin.de wrote: On 11/08/2013 02:54 PM, Marko Randjelovic wrote: Additional arguments in favor of sysvinit: * systemd and upstart lead to vendor lock-in; it will be complicated later to return back or change to third option, as well to change from first to second option Exactly what vendor would we be locked into with systemd? I don't want to accuse anyone, but obviously there is a possibility for a situation similar to lock-in, merely because of what I said: it will be complicated later to return back or change to third option. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#711164: Info received (lftp splits input script file after byte 4096 - patch)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 The upstream author said the patch I provided looks fine, though only this change is really necessary: - -- diff -uNpr lftp-4.3.6/src/CmdExec.cc lftp-4.3.7/src/CmdExec.cc - --- lftp-4.3.6/src/CmdExec.cc 2012-01-24 10:38:25.0 +0100 +++ lftp-4.3.7/src/CmdExec.cc 2012-05-30 08:18:54.0 +0200 @@ -351,7 +351,7 @@ void CmdExec::AtFinish() { if(queue_feeder queue_feeder-JobCount()) return; - - if(!fed_at_finish NumAwaitedJobs()==0) { + if(!fed_at_finish NumAwaitedJobs()==0 cmd_buf.Size()==0) { FeedCmd(ResMgr::Query(queue_feeder?cmd:at-queue-finish:cmd:at-finish,0)); FeedCmd(\n); fed_at_finish=true; - -- I hope this bug will be corrected in Debian stable. Regards - -- Marko Ranđelović, B.Sc. Software Developer Niš, Serbia marko...@eunet.rs -BEGIN PGP SIGNATURE- iQIcBAEBAgAGBQJR28keAAoJEA8eAh199oQ8fgwP+gMCIkDan4CZY0mQVIpH/7vN EovArZrKN/MW3w7d/234R8xe1aYdD+dbsaA2LUdx3CzRAG3JHoKJv+hGcanLz+li clGn7QJK5cT2IM6Adzk1t8SIMJxrDCIhRTKA0Av0f7mtqE3ffpISSNRzi62y7c7Y sLRMOeuNp1CETPWW1ioOxXe3ggmy7vl+IjsNyr/JQu0rNr3xlGf5VfdCd0Pu9ezW AD4hD8Eumo67nKM/5JOeAb2FS+9rJUIzHhvm/kayeAcjC2noeakEvnlxS0wsbaQD 0BdSdzCDptuPRrFWgtu2LpZ4wTkn4yh0OgxvXUmGItryzttMMYiaiuQYamW8VeIz m0tBnG3LltE5412uAMshMyODPTdj7lxVbbA5K9Bn19MeUQDDhTSdrl7HtE/DjSOr YvxEynorXdhJ+01MADywLciYFv9KS2J3KcyyA+CCPpqZol4jR+BzG8N8wYtZNvkt hmbQqA71esjcXqXneypVQi20Mvervyp3ftrqDvBIT5y9sYdYQcNoCb6m6V4sFpZ6 xjEFWlNor5ElCexeExmNPuIMx23DkAIL6J82gtvvNAOffBODhSokH7HjtRtyM5VT nnZraMBtoqOcevi1An266D2C2W/ANukaypr4aqE4XqIGnV0iA/lsr5hnPMu3VFRZ /1D9KgU3mJeZIJBfYh/Y =5D8j -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#711164: lftp splits input script file after byte 4096 - patch
Besides the upstream author didn't yet answer my email, it's probably better anyway I submit my patch for this bug, and the author, as well as anyone else interested, may comment on it afterwards. == diff -uNpr lftp-4.3.6/src/CmdExec.cc lftp-4.3.7/src/CmdExec.cc --- lftp-4.3.6/src/CmdExec.cc2012-01-24 10:38:25.0 +0100 +++ lftp-4.3.7/src/CmdExec.cc2012-05-30 08:18:54.0 +0200 @@ -351,7 +351,7 @@ void CmdExec::AtFinish() { if(queue_feeder queue_feeder-JobCount()) return; - if(!fed_at_finish NumAwaitedJobs()==0) { + if(!fed_at_finish NumAwaitedJobs()==0 cmd_buf.Size()==0) { FeedCmd(ResMgr::Query(queue_feeder?cmd:at-queue-finish:cmd:at-finish,0)); FeedCmd(\n); fed_at_finish=true; diff -uNpr lftp-4.3.6/src/FileFeeder.cc lftp-4.3.7/src/FileFeeder.cc --- lftp-4.3.6/src/FileFeeder.cc2012-01-24 10:38:25.0 +0100 +++ lftp-4.3.7/src/FileFeeder.cc2012-05-30 07:49:12.0 +0200 @@ -36,7 +36,7 @@ const char *FileFeeder::NextCmd(CmdExec } if(fg_data==0) fg_data=new FgData(in-GetProcGroup(),true); - int res=read(fd,buffer,buffer_size-1); + int res=read(fd,buffer,sizeof(buffer)-1); if(res==0) { return 0; diff -uNpr lftp-4.3.6/src/FileFeeder.h lftp-4.3.7/src/FileFeeder.h --- lftp-4.3.6/src/FileFeeder.h2012-01-24 10:38:26.0 +0100 +++ lftp-4.3.7/src/FileFeeder.h2012-05-30 07:48:46.0 +0200 @@ -25,9 +25,8 @@ class FileFeeder : public CmdFeeder { RefFDStream in; - enum { buffer_size=0x1000 }; - char buffer[buffer_size]; RefFgData fg_data; + char buffer[0x1001]; public: const char *NextCmd(CmdExec *exec,const char *prompt); FileFeeder(FDStream *in); == -- Marko Ranđelović, B.Sc. Software Developer Niš, Serbia marko...@eunet.rs -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#711164: lftp splits input script file after byte 4096
Package: lftp Version: 4.3.6-1+deb7u3 Severity: normal I was testing Wheezy and I ran lftp with this script: open http://server get /test/001.txt /test/002.txt ... /test/999.txt I get this output: get: Access failed: 404 Not Found (/test/2) Unknown command `91.txt'. It is because the file is split after byte 4096 and it's in the middle of word /test/291.txt. To reproduce this bug, run lftp with any script file which size in more than 4096 bytes. I will provide a patch for this bug after consultations with the upstream author. -- System Information: Debian Release: 7.0 APT prefers stable-updates APT policy: (910, 'stable-updates'), (910, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-4-amd64 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages lftp depends on: ii libc6 2.13-38 ii libgcc1 1:4.7.2-5 ii libgnutls26 2.12.20-7 ii libreadline6 6.2+dfsg-0.1 ii libtinfo5 5.9-10 ii netbase 5.0 lftp recommends no packages. lftp suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#609537: Is this normal behavior of init script?
I could have made a patch to simply kill remaining process, but I assumed it is wiser to leave that part to sysadmin. But I wanted to help system admins easier to see that somthing is wrong. Normal exit in such situations is misleading. People expect to be notified in such situations. Severity is probably not such as it looks from the tag, but as I looked at the policy manual it looked to me this bug gets in the category I tagged it with. Probably output a warning message in addition to failed exit status indicator? Best regards -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#623631: linux-image-2.6.38-2-686 - aesni_intel module build for i386
I have enabled CONFIG_CRYPTO_AES_NI_INTEL=m in debian/config/kernelarch-x86/config-arch-32 and this module was built without errors. Source: linux-2.6 Version: 2.6.38-5 (linux-image-2.6.38-2-686) Best regards -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#609678: After start server, stop server is incomplete
Package: mysql-admin Version: 5.0r14+openSUSE-2.1 Severity: important Tags: squeeze 1. Start mysql-admin GUI 2. Log in 3. Click Service Control 4. If the server is running, click Stop the Server 5. Click Start the Server 6. Click Stop the Server Dialgo box appears: Invalid password Could not execute the requested command. After that: r...@squeeze:~# ps -Af | grep mysqld root 9447 1 55 16:54 ?00:00:14 /bin/sh /usr/bin/mysqld_safe root 9643 9129 0 16:54 pts/200:00:00 grep mysqld So one MySQL process is not stopped. I suppose it is an upstream bug, regarding procedure of executing su root -c '/etc/init.d/mysql start'. The logger process (logger -t mysqld -p daemon.error) is missing in this case. Best regards -- System Information: Debian Release: 6.0 APT prefers testing APT policy: (745, 'testing'), (740, 'maverick'), (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages mysql-admin depends on: ii libatk1.0-0 1.30.0-1The ATK accessibility toolkit ii libc62.11.2-7Embedded GNU C Library: Shared lib ii libcairo21.8.10-6The Cairo 2D vector graphics libra ii libcairomm-1.0-1 1.8.4-3 C++ wrappers for Cairo (shared lib ii libfontconfig1 2.8.0-2.1 generic font configuration library ii libfreetype6 2.4.2-2.1 FreeType 2 font engine, shared lib ii libgcc1 1:4.4.5-8 GCC support library ii libglade2-0 1:2.6.4-1 library to load .glade files at ru ii libglib2.0-0 2.26.0-0ubuntu1 The GLib library of C routines ii libglibmm-2.4-1c2a 2.24.2-1C++ wrapper for the GLib toolkit ( ii libgtk2.0-0 2.20.1-2The GTK+ graphical user interface ii libgtkmm-2.4-1c2a1:2.20.3-1 C++ wrappers for GTK+ (shared libr ii libmysqlclient16 5.1.49-3MySQL database client library ii libpango1.0-01.28.3-1Layout and rendering of internatio ii libpangomm-1.4-1 2.26.2-1C++ Wrapper for pango (shared libr ii libpcre3 8.02-1.1Perl 5 Compatible Regular Expressi ii libsigc++-2.0-0c2a 2.2.4.2-1 type-safe Signal Framework for C++ ii libstdc++6 4.4.5-8 The GNU Standard C++ Library v3 ii libxml2 2.7.8.dfsg-2GNOME XML library ii mysql-gui-tools-comm 5.0r14+openSUSE-2.1 Architecture independent files for Versions of packages mysql-admin recommends: ii mysql-query-browser 5.0r14+openSUSE-2.1 Official GUI tool to query MySQL d mysql-admin suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#609537: /etc/init.d/mysql stop leaves a process but exits with 0 status
Package: mysql-server-5.1 Version: 5.1.49-3 Severity: serious Tags: squeeze From Debian Policy Manual: http://www.debian.org/doc/debian-policy/ch-opersys.html#s-writing-init The init.d scripts must ensure that they will behave sensibly (i.e., returning success and not starting multiple copies of a service) if invoked with start when the service is already running, or with stop when it isn't, and that they don't kill unfortunately-named user processes. The best way to achieve this is usually to use start-stop-daemon with the --oknodo option. It is possible to get into state when there is mysqld_safe process remained, though main mysqld process is stopped and pid file deleted. In such cases, /etc/init.d/mysql procedure mysqld_status check_dead warn will return true and script will do nothing, returning with success. But as cited from policy manual, it should fail, since there are remaining mysqld processes. One way to get into this situation is to start, then stop server from mysqld-admin, which I intend to report as a separate bug on mysqld-admin. Best regards -- System Information: Debian Release: 6.0 APT prefers testing APT policy: (745, 'testing'), (740, 'maverick'), (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages mysql-server-5.1 depends on: ii adduser 3.112+nmu2 add and remove users and groups ii debconf [debconf-2.0 1.5.36 Debian configuration management sy ii libc62.11.2-7Embedded GNU C Library: Shared lib ii libdbi-perl 1.612-1 Perl Database Interface (DBI) ii libgcc1 1:4.4.5-8 GCC support library ii libmysqlclient16 5.1.49-3MySQL database client library ii libstdc++6 4.4.5-8 The GNU Standard C++ Library v3 ii lsb-base 3.2-23.1Linux Standard Base 3.2 init scrip ii mysql-client-5.1 5.1.49-3MySQL database client binaries ii mysql-common 5.1.49-3MySQL database common files, e.g. ii mysql-server-core-5. 5.1.49-3MySQL database server binaries ii passwd 1:4.1.4.2+svn3283-2 change and administer password and ii perl 5.10.1-16 Larry Wall's Practical Extraction ii psmisc 22.11-1 utilities that use the proc file s ii zlib1g 1:1.2.3.4.dfsg-3compression library - runtime Versions of packages mysql-server-5.1 recommends: ii bsd-mailx [mailx] 8.1.2-0.20100314cvs-1 simple mail user agent ii libhtml-template-p 2.9-2 module for using HTML Templates wi Versions of packages mysql-server-5.1 suggests: pn tinycanone (no description available) -- Configuration Files: /etc/init.d/mysql changed [not included] -- debconf information: mysql-server/error_setting_password: mysql-server-5.1/nis_warning: mysql-server-5.1/really_downgrade: false mysql-server-5.1/start_on_boot: true mysql-server-5.1/postrm_remove_databases: false mysql-server/password_mismatch: mysql-server/no_upgrade_when_using_ndb: --- mysql.orig 2010-11-30 18:55:00.0 +0100 +++ mysql 2011-01-10 13:56:56.792943257 +0100 @@ -149,8 +149,10 @@ case ${1:-''} in if test -z $server_down; then killall -9 mysqld; fi fi fi - -if ! mysqld_status check_dead warn; then + failure= + mysqld_status check_dead warn || failure=true + ps -A -o args | grep -E (^/bin/sh /usr/bin/mysqld_safe($| )|^/usr/sbin/mysqld($| )) /dev/null failure=true +if [ $failure ]; then log_end_msg 1 log_failure_msg Please stop MySQL manually and read /usr/share/doc/mysql-server-5.1/README.Debian.gz! exit -1
Bug#529870: This is security issue
I think this bug should be treated as security because for people that use SELinux it is makes bigger security impact then ordinary security bug. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#490249: sun-java6: removes manually selected alternatives - still on amd64
As I can see, this is still happening on amd64: main:/sto/d/downloads/dld20/packages/Java# dpkg -i sun-java6-bin_6-06-1_amd64.deb sun-java6-doc_6-06-1_all.deb sun-java6-jdk_6-06-1_amd64.deb sun-java6-jre_6-06-1_all.deb Selecting previously deselected package sun-java6-bin. (Reading database ... 198381 files and directories currently installed.) Unpacking sun-java6-bin (from sun-java6-bin_6-06-1_amd64.deb) ... sun-dlj-v1-1 license has already been accepted Selecting previously deselected package sun-java6-doc. Unpacking sun-java6-doc (from sun-java6-doc_6-06-1_all.deb) ... Selecting previously deselected package sun-java6-jdk. Unpacking sun-java6-jdk (from sun-java6-jdk_6-06-1_amd64.deb) ... sun-dlj-v1-1 license has already been accepted Selecting previously deselected package sun-java6-jre. Unpacking sun-java6-jre (from sun-java6-jre_6-06-1_all.deb) ... sun-dlj-v1-1 license has already been accepted Setting up sun-java6-doc (6-06-1) ... /tmp/jdk-6-doc.zip has been unpacked and installed. You can now delete it, if you wish. Setting up sun-java6-jre (6-06-1) ... Setting up sun-java6-bin (6-06-1) ... Installing new version of config file /etc/java-6-sun/security/java.policy ... Installing new version of config file /etc/java-6-sun/security/cacerts ... Installing new version of config file /etc/java-6-sun/management/management.properties ... Setting up sun-java6-jdk (6-06-1) ... main:/sto/d/downloads/dld20/packages/Java# update-java-alternatives -s java-6-sun Using `/usr/lib/jvm/java-6-sun/bin/appletviewer' to provide `appletviewer'. Using `/usr/lib/jvm/java-6-sun/bin/apt' to provide `apt'. Using `/usr/lib/jvm/java-6-sun/bin/extcheck' to provide `extcheck'. Using `/usr/lib/jvm/java-6-sun/bin/idlj' to provide `idlj'. Using `/usr/lib/jvm/java-6-sun/bin/jar' to provide `jar'. Using `/usr/lib/jvm/java-6-sun/bin/jarsigner' to provide `jarsigner'. Using `/usr/lib/jvm/java-6-sun/bin/javac' to provide `javac'. Using `/usr/lib/jvm/java-6-sun/bin/javadoc' to provide `javadoc'. Using `/usr/lib/jvm/java-6-sun/bin/javah' to provide `javah'. Using `/usr/lib/jvm/java-6-sun/bin/javap' to provide `javap'. Using `/usr/lib/jvm/java-6-sun/bin/jconsole' to provide `jconsole'. Using `/usr/lib/jvm/java-6-sun/bin/jdb' to provide `jdb'. Using `/usr/lib/jvm/java-6-sun/bin/jhat' to provide `jhat'. Using `/usr/lib/jvm/java-6-sun/bin/jinfo' to provide `jinfo'. Using `/usr/lib/jvm/java-6-sun/bin/jmap' to provide `jmap'. Using `/usr/lib/jvm/java-6-sun/bin/jps' to provide `jps'. Using `/usr/lib/jvm/java-6-sun/bin/jrunscript' to provide `jrunscript'. Using `/usr/lib/jvm/java-6-sun/bin/jsadebugd' to provide `jsadebugd'. Using `/usr/lib/jvm/java-6-sun/bin/jstack' to provide `jstack'. Using `/usr/lib/jvm/java-6-sun/bin/jstat' to provide `jstat'. Using `/usr/lib/jvm/java-6-sun/bin/jstatd' to provide `jstatd'. Using `/usr/lib/jvm/java-6-sun/bin/native2ascii' to provide `native2ascii'. Using `/usr/lib/jvm/java-6-sun/bin/rmic' to provide `rmic'. Using `/usr/lib/jvm/java-6-sun/bin/schemagen' to provide `schemagen'. Using `/usr/lib/jvm/java-6-sun/bin/serialver' to provide `serialver'. Using `/usr/lib/jvm/java-6-sun/bin/wsgen' to provide `wsgen'. Using `/usr/lib/jvm/java-6-sun/bin/wsimport' to provide `wsimport'. Using `/usr/lib/jvm/java-6-sun/bin/xjc' to provide `xjc'. Using `/usr/lib/jvm/java-6-sun/jre/bin/java' to provide `java'. Using `/usr/lib/jvm/java-6-sun/jre/bin/keytool' to provide `keytool'. Using `/usr/lib/jvm/java-6-sun/jre/bin/orbd' to provide `orbd'. Using `/usr/lib/jvm/java-6-sun/jre/bin/pack200' to provide `pack200'. Using `/usr/lib/jvm/java-6-sun/jre/bin/policytool' to provide `policytool'. Using `/usr/lib/jvm/java-6-sun/jre/bin/rmid' to provide `rmid'. Using `/usr/lib/jvm/java-6-sun/jre/bin/rmiregistry' to provide `rmiregistry'. Using `/usr/lib/jvm/java-6-sun/jre/bin/servertool' to provide `servertool'. Using `/usr/lib/jvm/java-6-sun/jre/bin/tnameserv' to provide `tnameserv'. Using `/usr/lib/jvm/java-6-sun/jre/bin/unpack200' to provide `unpack200'. update-java-alternatives: plugin alternative does not exist: /usr/lib/jvm/java-6-sun/jre/plugin/amd64/ns7/libjavaplugin_oji.so update-java-alternatives: plugin alternative does not exist: /usr/lib/jvm/java-6-sun/jre/plugin/amd64/ns7/libjavaplugin_oji.so update-java-alternatives: plugin alternative does not exist: /usr/lib/jvm/java-6-sun/jre/plugin/amd64/ns7/libjavaplugin_oji.so update-java-alternatives: plugin alternative does not exist: /usr/lib/jvm/java-6-sun/jre/plugin/amd64/ns7/libjavaplugin_oji.so update-java-alternatives: plugin alternative does not exist: /usr/lib/jvm/java-6-sun/jre/plugin/amd64/ns7/libjavaplugin_oji.so update-java-alternatives: plugin alternative does not exist: /usr/lib/jvm/java-6-sun/jre/plugin/amd64/ns7/libjavaplugin_oji.so main:/sto/d/downloads/dld20/packages/Java# l /etc/alternatives/java lrwxrwxrwx 1 root root 36 2008-07-23 17:53 /etc/alternatives/java - /usr/lib/jvm/java-6-sun/jre/bin/java main:/sto/d/downloads/dld20/packages/Java# apt-get -t
Bug#430687: aespipe: Trailing byte(s)
Package: aespipe Version: 2.3b-4 Severity: important When you decrypt a file, it is not same as original, because it has additional bytes at the end. If you know the length of original file, than you can reconstruct it with program dd. For example, make some tar archive a.tgz, encrypt it with aespipe into a.tgz.aespipe, than decrypt it into a2.tgz. When you type tar ztf a2.tgz, you get an error gzip: stdin: unexpected end of file tar: Child returned status 1 tar: Error exit delayed from previous errors All files are listed, but still you get an error, which can sometimes make confusion. -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-4-amd64 Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Versions of packages aespipe depends on: ii libc6 2.3.6.ds1-13 GNU C Library: Shared libraries aespipe recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#428571: bash: Expansion of range expressions not working correctly
Package: bash Version: 3.1dfsg-8 Severity: normal This is what happens when I try some bash commands on two different systems, Etch and Slackware 10.1. --- Etch machine --- [EMAIL PROTECTED]:~$ bash --version GNU bash, version 3.1.17(1)-release (x86_64-pc-linux-gnu) Copyright (C) 2005 Free Software Foundation, Inc. [EMAIL PROTECTED]:~$ fn=debian [EMAIL PROTECTED]:~$ echo ${fn##[A-Z]*} [EMAIL PROTECTED]:~$ --- End Etch machine --- --- Slackware machine --- [EMAIL PROTECTED]:~$ bash --version GNU bash, version 3.00.15(2)-release (i486-slackware-linux-gnu) Copyright (C) 2004 Free Software Foundation, Inc. [EMAIL PROTECTED]:~$ fn=debian [EMAIL PROTECTED]:~$ echo ${fn##[A-Z]*} debian [EMAIL PROTECTED]:~$ --- End Slackware machine --- According to manual, Slackware does it correctly, and Etch not. I also tried on Sarge i386 system and it behaves same as Etch, so the problem is obviously due to some Debian specific patch, and is not architecture related. -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-4-amd64 Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Versions of packages bash depends on: ii base-files 4Debian base system miscellaneous f ii debianutils 2.17 Miscellaneous utilities specific t ii libc6 2.3.6.ds1-13 GNU C Library: Shared libraries ii libncurses5 5.5-5Shared libraries for terminal hand bash recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#416989: sox: Segmentation fault when playing from stdin
I am running, now stable, Etch, sox version 13.0.0-1. This sox version does not segfault, but doesn't work anyway. The error message is sox stio: Failed reading `-': Could not determine file type. I don't understand why it say Could not determine file type since I used -t ossdsp argument. Everything I said applies to using stdin. When I specify filename as input, sox plays the file with no problems. Pascal Giard wrote: Hi Marko, thanks for your bugreport. Which section or version are you running? (stable distribution Etch?) I've tested with a mp3 and this doesn't seem to apply to latest version in unstable 13.0.0. Is there a reason for piping instead of specifying the filename? Or does that more generally mean that you can't use open() in an application? If so, it's bad and deserves more attention. Regards, -Pascal -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#417964: python-mysqldb: Copyright file refers to non-existing GPL 2.1
Package: python-mysqldb Version: 1.2.1-p2-4 Severity: minor File /usr/share/doc/python-mysqldb/copyright says the program can be redistributed and/or modified under the terms of GPL version 2.1, which does not exist. You should change it to version 2. -- System Information: Debian Release: 4.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-4-amd64 Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Versions of packages python-mysqldb depends on: ii libc6 2.3.6.ds1-13 GNU C Library: Shared libraries ii libmysqlclient15off5.0.32-7etch1 mysql database client library ii python 2.4.4-2 An interactive high-level object-o ii python-central 0.5.12register and build utility for Pyt ii zlib1g 1:1.2.3-13compression library - runtime python-mysqldb recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#417059: xmms: Freezes on stop playing midi file with alsa output
Package: xmms Version: 1:1.2.10+20061101-1 Severity: normal Install timidity, xmms-midi, freepats, start XMMS, open Preferences, set output plugin to ALSA and add some midi files to playlist. Play some file. When you click stop button, or next, XMMS freezes and does not respond to eny event. It can be stopped with SIGTERM. Same happens with versions from unstable and incoming. -- System Information: Debian Release: 4.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-4-amd64 Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Versions of packages xmms depends on: ii libasound21.0.13-2 ALSA library ii libaudiofile0 0.2.6-6Open-source version of SGI's audio ii libc6 2.3.6.ds1-13 GNU C Library: Shared libraries ii libesd-alsa0 [libesd0]0.2.36-3 Enlightened Sound Daemon (ALSA) - ii libgl1-mesa-glx [libgl1] 6.5.1-0.6 A free implementation of the OpenG ii libglib1.21.2.10-17 The GLib library of C routines ii libgtk1.2 1.2.10-18 The GIMP Toolkit set of widgets fo ii libice6 1:1.0.1-2 X11 Inter-Client Exchange library ii libmikmod23.1.11-a-6 A portable sound library ii libogg0 1.1.3-2Ogg Bitstream Library ii libsm61:1.0.1-3 X11 Session Management library ii libvorbis0a 1.1.2.dfsg-1.2 The Vorbis General Audio Compressi ii libvorbisfile31.1.2.dfsg-1.2 The Vorbis General Audio Compressi ii libx11-6 2:1.0.3-6 X11 client-side library ii libxext6 1:1.0.1-2 X11 miscellaneous extension librar ii libxi61:1.0.1-4 X11 Input extension library ii libxxf86vm1 1:1.0.1-2 X11 XFree86 video mode extension l ii zlib1g1:1.2.3-13 compression library - runtime Versions of packages xmms recommends: ii unzip 5.52-9 De-archiver for .zip files -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#416989: sox: Segmentation fault when playing from stdin
Package: sox Version: 12.17.9-1 Severity: normal Here is what happens when I try to play some wav file through pipe. [EMAIL PROTECTED]:~/tmp$ cat test.wav | sox - -t ossdsp /dev/dsp Segmentation fault When called directly (sox test.wav -t ossdsp /dev/dsp), the same file plays perfectly. Version from unstable does not segfault, but anyway does not play the file. [EMAIL PROTECTED]:~/tmp$ cat test.wav | sox - -t ossdsp /dev/dsp sox stio: Failed reading `-': Could not determine file type. -- System Information: Debian Release: 4.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-4-amd64 Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Versions of packages sox depends on: ii libasound21.0.13-2 ALSA library ii libc6 2.3.6.ds1-13 GNU C Library: Shared libraries ii libmad0 0.15.1b-2.1MPEG audio decoder library ii libogg0 1.1.3-2Ogg Bitstream Library ii libvorbis0a 1.1.2.dfsg-1.2 The Vorbis General Audio Compressi ii libvorbisenc2 1.1.2.dfsg-1.2 The Vorbis General Audio Compressi ii libvorbisfile31.1.2.dfsg-1.2 The Vorbis General Audio Compressi sox recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#406780: tomcat5: NullPointerException on loading FacesServlet (JSF)
I have found out that tomcat5 throws that exception only if web application is called Jsf_Ex01. If I only rename the directory, application works and no exceptions. Is it how I called my first JSF app. It is possible tomcat remembered that name somewhere. If you wish, I can send you relevant files, just tell me which one(s). I repeated the same example, just with different name and it works with no errors. Also, I can purge tomcat5 and reinstall, but I am afraid we would lose trail of cause. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#406780: tomcat5: NullPointerException on loading FacesServlet (JSF)
Marcus Better wrote: Can you reproduce it without a security manager? Can you check if it works with tomcat5.5? Marcus I toggled TOMCAT5_SECURITY to no in /etc/default/tomcat5 and restarted tomcat5. Now I get similar error. === 2007-01-14 12:46:19 StandardContext[/balancer]org.apache.webapp.balancer.BalancerFilter: init(): ruleChain: [org.apache.webapp.balancer.RuleChain: [org.apache.webapp.balancer.rules.URLStringMatchRule: Target string: News / Redirect URL: http://www.cnn.com], [org.apache.webapp.balancer.rules.RequestParameterRule: Target param name: paramName / Target param value: paramValue / Redirect URL: http://www.yahoo.com], [org.apache.webapp.balancer.rules.AcceptEverythingRule: Redirect URL: http://jakarta.apache.org]] 2007-01-14 12:46:20 StandardContext[/servlets-examples]ContextListener: contextInitialized() 2007-01-14 12:46:20 StandardContext[/servlets-examples]SessionListener: contextInitialized() 2007-01-14 12:46:20 StandardContext[/jsp-examples]ContextListener: contextInitialized() 2007-01-14 12:46:20 StandardContext[/jsp-examples]SessionListener: contextInitialized() 2007-01-14 12:46:20 StandardContext[/Jsf_Ex01]StandardWrapper.Throwable java.lang.NullPointerException at javax.faces.webapp.FacesServlet.init(FacesServlet.java:144) at org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:1044) at org.apache.catalina.core.StandardWrapper.load(StandardWrapper.java:876) at org.apache.catalina.core.StandardContext.loadOnStartup(StandardContext.java:4017) at org.apache.catalina.core.StandardContext.start(StandardContext.java:4337) at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:823) at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:807) at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:595) at org.apache.catalina.core.StandardHostDeployer.install(StandardHostDeployer.java:277) at org.apache.catalina.core.StandardHost.install(StandardHost.java:832) at org.apache.catalina.startup.HostConfig.deployDirectories(HostConfig.java:701) at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:432) at org.apache.catalina.startup.HostConfig.start(HostConfig.java:983) at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:349) at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119) at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1091) at org.apache.catalina.core.StandardHost.start(StandardHost.java:789) at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1083) at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:478) at org.apache.catalina.core.StandardService.start(StandardService.java:480) at org.apache.catalina.core.StandardServer.start(StandardServer.java:2313) at org.apache.catalina.startup.Catalina.start(Catalina.java:556) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:597) at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:287) at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:425) 2007-01-14 12:46:20 StandardContext[/Jsf_Ex01]Servlet /Jsf_Ex01 threw load() exception javax.servlet.ServletException: Servlet.init() for servlet Faces Servlet threw exception at org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:1085) at org.apache.catalina.core.StandardWrapper.load(StandardWrapper.java:876) at org.apache.catalina.core.StandardContext.loadOnStartup(StandardContext.java:4017) at org.apache.catalina.core.StandardContext.start(StandardContext.java:4337) at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:823) at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:807) at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:595) at org.apache.catalina.core.StandardHostDeployer.install(StandardHostDeployer.java:277) at org.apache.catalina.core.StandardHost.install(StandardHost.java:832) at org.apache.catalina.startup.HostConfig.deployDirectories(HostConfig.java:701) at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:432) at org.apache.catalina.startup.HostConfig.start(HostConfig.java:983) at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:349) at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119) at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1091) at org.apache.catalina.core.StandardHost.start(StandardHost.java:789) at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1083) at
Bug#406780: - Similar bug report on issues.apache.org
Maybe following link could help. It is about tomcat 5.5.20, the same version as Debian tomcat5.5. http://issues.apache.org/bugzilla/show_bug.cgi?id=41112 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#406780: - Similar bug report on issues.apache.org
Marcus Better wrote: Do you think you could try it with an upstream distribution of Tomcat? Marcus I tried version from unstable, but it doesn't work at all. It doesn't even leave anything in log files. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#406780: tomcat5.5 working
I didn't have tomcat5.5-webapps and tomcat5.5-admin installed. I don't know why, but after I installed them and turned off security, the application is working. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#406780: tomcat5: NullPointerException on loading FacesServlet (JSF)
Package: tomcat5 Version: 5.0.30-12 Severity: important -- System Information: Debian Release: 4.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-3-amd64 Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Versions of packages tomcat5 depends on: ii adduser3.101 Add and remove users and groups ii apache2-utils 2.2.3-3.2 utility programs for webservers ii gij [java2-runtime]4:4.1.1-15The GNU Java bytecode interpreter ii gij-4.1 [java2-runtime]4.1.1-17 The GNU Java bytecode interpreter ii libtomcat5-java5.0.30-12 Java Servlet engine -- core librar ii sun-java5-jre [java2-runti 1.5.0-08-1.1 Sun Java(TM) Runtime Environment ( ii sun-java6-jre [java2-runti 6-00-0ubuntu1 Sun Java(TM) Runtime Environment ( tomcat5 recommends no packages. -- no debconf information I copied .jar files from lib directories of jakarta-taglibs-standard-1.1.2.zip and jsf-1_1_01.zip to /usr/share/tomcat5/common/lib. When starting tomcat5, NullPointerException occurs and the application does not work. Here is localhost log file. === 2007-01-14 01:08:24 StandardContext[/balancer]org.apache.webapp.balancer.BalancerFilter: init(): ruleChain: [org.apache.webapp.balancer.RuleChain: [org.apache.webapp.balancer.rules.URLStringMatchRule: Target string: News / Redirect URL: http://www.cnn.com], [org.apache.webapp.balancer.rules.RequestParameterRule: Target param name: paramName / Target param value: paramValue / Redirect URL: http://www.yahoo.com], [org.apache.webapp.balancer.rules.AcceptEverythingRule: Redirect URL: http://jakarta.apache.org]] 2007-01-14 01:08:25 StandardContext[/servlets-examples]ContextListener: contextInitialized() 2007-01-14 01:08:25 StandardContext[/servlets-examples]SessionListener: contextInitialized() 2007-01-14 01:08:25 StandardContext[/jsp-examples]ContextListener: contextInitialized() 2007-01-14 01:08:25 StandardContext[/jsp-examples]SessionListener: contextInitialized() 2007-01-14 01:08:25 StandardContext[/Jsf_Ex01]StandardWrapper.Throwable java.lang.NullPointerException at javax.faces.webapp.FacesServlet.init(FacesServlet.java:144) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:597) at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:243) at java.security.AccessController.doPrivileged(Native Method) at javax.security.auth.Subject.doAsPrivileged(Subject.java:517) at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:272) at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:161) at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:114) at org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:1038) at org.apache.catalina.core.StandardWrapper.load(StandardWrapper.java:876) at org.apache.catalina.core.StandardContext.loadOnStartup(StandardContext.java:4017) at org.apache.catalina.core.StandardContext.start(StandardContext.java:4337) at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:823) at org.apache.catalina.core.ContainerBase.access$0(ContainerBase.java:811) at org.apache.catalina.core.ContainerBase$PrivilegedAddChild.run(ContainerBase.java:143) at java.security.AccessController.doPrivileged(Native Method) at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:805) at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:595) at org.apache.catalina.core.StandardHostDeployer.install(StandardHostDeployer.java:277) at org.apache.catalina.core.StandardHost.install(StandardHost.java:832) at org.apache.catalina.startup.HostConfig.deployDirectories(HostConfig.java:701) at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:432) at org.apache.catalina.startup.HostConfig.start(HostConfig.java:983) at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:349) at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119) at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1091) at org.apache.catalina.core.StandardHost.start(StandardHost.java:789) at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1083) at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:478) at org.apache.catalina.core.StandardService.start(StandardService.java:480) at