Bug#815054: Tables: rowbgcolor creates crappy html

2016-04-17 Thread Norbert Warmuth 
Thomas Renard <cybae...@web.de> writes:
> Am 10.04.2016 um 16:49 schrieb Norbert Warmuth:
>> Workaround: 
>> 
>> Replace wikiutil.escape (the line "escape = werkzeug.escape" in
>> MoinMoin/wikiutil.py) with a copy from MoinMoin/support/werkzeug/utils.py
>> (moin_1.9.8.orig.tar.gz).
> This patch works for me. So now the question is: where to repair? In
> python-moinmoin or in the system wide werkzeug...

python-moinmoin. The change with werkzeug 0.9 was intentional:
def escape(s, quote=None):
[...]
.. versionchanged:: 0.9
`quote` is now implicitly on.

:param s: the string to escape.
:param quote: ignored.

http://werkzeug.pocoo.org/docs/0.11/changes/:
Version 0.9
[...]
The escape function now by default escapes quotes.

- Norbert

Bug#815054: Tables: rowbgcolor creates crappy html

2016-04-10 Thread Norbert Warmuth 
Tags: patch

Hello Thomas,

Thomas Renard  writes:
> after upgrading from squeeze 1.9.3-1 to jessie 1.9.8-1 the rowbgcolor
> and all other color tags of my wikis with "#color" do not work anymore.

> When looking into the the HTML code like the following is created:
>
>

Bug#778779: cyrus-imapd: deleteaclmailbox corrupts ACLs

2015-02-19 Thread Norbert Warmuth 
Package: cyrus-imapd
Version: 2.4.17+caldav~beta10-16
Severity: important
Tags: upstream patch

There is an easily reproduceble ACL corruption with an uptodate 
jessie system:

cyradm --user cyrus-manager localhost
localhost cm test
localhost sam test anonymous lp
localhost sam test anyone lrs
localhost sam test cyrus-manager all
localhost lam test
cyrus-manager lrswipkxtecda
anyone lrs
anonymous lp
localhost dam test anyone
localhost lam test
cyrlr-manager lrswipkxtecda
anonymous lp
localhost 

Note the cyrlr-manager instead of cyrus-manager in the
last cyradm command response.

Please consider applying 22d8e9f4121bf788935a90e458e92568c669f296 from 
upstream git (tested successfully with a rebuild package):
   
http://git.cyrusimap.org/cyrus-imapd/commit/?id=22d8e9f4121bf788935a90e458e92568c669f296

debdiff against latest version in jessie attached (upstream patch 
refreshed because of minor fuzz).

- Norbert

-- System Information:
Debian Release: 8.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages cyrus-imapd depends on:
ii  cyrus-common  2.4.17+caldav~beta10-16
ii  dpkg  1.17.23
ii  libc6 2.19-13
ii  libcomerr21.42.12-1
ii  libdb5.3  5.3.28-7~deb8u1
ii  libical1a 1.0-1.3
ii  libkrb5-3 1.12.1+dfsg-17
ii  libsasl2-22.1.26.dfsg1-12
ii  libsqlite3-0  3.8.7.1-1
ii  libssl1.0.0   1.0.1k-1
ii  libwrap0  7.6.q-25
ii  zlib1g1:1.2.8.dfsg-2+b1

cyrus-imapd recommends no packages.

cyrus-imapd suggests no packages.

-- no debconf information

diff -Nru cyrus-imapd-2.4-2.4.17+caldav~beta10/debian/changelog cyrus-imapd-2.4-2.4.17+caldav~beta10/debian/changelog
--- cyrus-imapd-2.4-2.4.17+caldav~beta10/debian/changelog	2015-01-07 13:30:44.0 +0100
+++ cyrus-imapd-2.4-2.4.17+caldav~beta10/debian/changelog	2015-02-19 12:51:51.0 +0100
@@ -1,3 +1,10 @@
+cyrus-imapd-2.4 (2.4.17+caldav~beta10-16.1TO) jessie; urgency=medium
+
+  * Fix ACL string corruption on removal of an ACL identifier
+(from upstream git http://git.cyrusimap.org/cyrus-imapd/commit/?id=22d8e9f4121bf788935a90e458e92568c669f296)
+
+ -- Norbert Warmuth norbert.warm...@to.com  Thu, 19 Feb 2015 11:03:23 +0100
+
 cyrus-imapd-2.4 (2.4.17+caldav~beta10-16) unstable; urgency=medium
 
   * Manually add dpkg (= 1.17.14) to Pre-Depends to have correctly
diff -Nru cyrus-imapd-2.4-2.4.17+caldav~beta10/debian/patches/acl_corruption.patch cyrus-imapd-2.4-2.4.17+caldav~beta10/debian/patches/acl_corruption.patch
--- cyrus-imapd-2.4-2.4.17+caldav~beta10/debian/patches/acl_corruption.patch	1970-01-01 01:00:00.0 +0100
+++ cyrus-imapd-2.4-2.4.17+caldav~beta10/debian/patches/acl_corruption.patch	2015-02-19 11:00:45.0 +0100
@@ -0,0 +1,37 @@
+commit 22d8e9f4121bf788935a90e458e92568c669f296
+Author: Thomas Jarosch thomas.jaro...@intra2net.com
+Date:   Thu Nov 21 11:50:20 2013 +0100
+
+Fix ACL string corruption on removal of an ACL identifier
+
+It's an invalid operation to call strcpy() on overlapping memory buffers.
+Newer glibc versions use special optimizations and therefore
+compute unexpected results (=trash the ACLs).
+
+Fix it by constructing the modified ACL string in a new buffer.
+
+Index: cyrus-imapd-2.4-2.4.17+caldav~beta10-16/lib/acl_afs.c
+===
+--- cyrus-imapd-2.4-2.4.17+caldav~beta10-16.orig/lib/acl_afs.c
 cyrus-imapd-2.4-2.4.17+caldav~beta10-16/lib/acl_afs.c
+@@ -186,8 +186,18 @@ void *canonrock;
+ }
+ 
+ if (access == 0L) {
+-	/* Remove any existing entry for 'identifier' */
+-	strcpy(thisid, nextid);
++	/* Remove any existing entry for 'identifier'.
++	   Special case: When we try to delete an invalid/non-existent identifier,
++	   both 'thisid' and 'nextid' point to the end of *acl. */
++	newacl = xmalloc(strlen(*acl) + strlen(nextid) - strlen(thisid) + 1);
++	/* Copy existing ACLs without the current identifier.
++	   Note: The buffer will not be zero terminated. */
++	strncpy(newacl, *acl, (thisid - *acl));
++	/* Append the remaining ACL string. Zero-terminates the string. */
++	strcpy(newacl + (thisid - *acl), nextid);
++
++	free(*acl);
++	*acl = newacl;
+ }
+ else {
+ 	/* Replace any existing entry for 'identifier' */
diff -Nru cyrus-imapd-2.4-2.4.17+caldav~beta10/debian/patches/series cyrus-imapd-2.4-2.4.17+caldav~beta10/debian/patches/series
--- cyrus-imapd-2.4-2.4.17+caldav~beta10/debian/patches/series	2015-01-07 13:30:44.0 +0100
+++ cyrus-imapd-2.4-2.4.17+caldav~beta10/debian/patches/series	2015-02-19 11:07:26.0 +0100
@@ -34,3 +34,4 @@
 parse-GUID-for-binary-appends-as-well.patch
 use-system-unicodedata.patch
 TLS-configuration.patch
+acl_corruption.patch

Bug#778781: cyrus-common: init script uses wrong PIDFILE

2015-02-19 Thread Norbert Warmuth 
Package: cyrus-common
Version: 2.4.17+caldav~beta10-16
Severity: normal

debian/rules adds --with-pidfile=/var/run/cyrmaster.pid to configure
but the init script uses PIDFILE=/var/run/cyrus-master.pid.

Thus on systems still using sysvinit the restart and stop actions fail:
  root@localhost:~# invoke-rc.d cyrus-imapd restart
  Restarting Cyrus IMAPd: cyrmaster failed!
  root@localhost:~# 

  root@localhost:~# invoke-rc.d cyrus-imapd stop
  root@localhost:~# 
  root@localhost:~# ps -v -p $(cat /run/cyrmaster.pid)
  PID TTY  STAT   TIME  MAJFL   TRS   DRS   RSS %MEM COMMAND
  3175 ?Ss 0:00  085 51674  5772  0.0 /usr/sbin/cyrmaster -d
  root@localhost:~#

This seems to be a fall-out from fixing #771071.

Workaround: activate the already correct but commented PIDFILE setting in 
/etc/default/cyrus-imapd.

Also successfully tested: manual revert of (attached for convenience):
http://anonscm.debian.org/cgit/pkg-cyrus-imapd/cyrus-imapd-2.4.git/commit/?id=effb04ad40e998ee2de7a0c0989b33a8f4681d7e

As noted in https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=743013#17
this might be considered security related and justify a severity 
ajustment.

- Norbert

-- System Information:
Debian Release: 8.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages cyrus-common depends on:
ii  adduser 3.113+nmu3
ii  db-upgrade-util 5.3.0
ii  db-util 5.3.0
ii  debconf [debconf-2.0]   1.5.55
ii  dpkg1.17.23
ii  gawk1:4.1.1+dfsg-1
ii  libc6   2.19-13
ii  libcomerr2  1.42.12-1
ii  libdb5.35.3.28-7~deb8u1
ii  libical1a   1.0-1.3
ii  libkrb5-3   1.12.1+dfsg-17
ii  libldap-2.4-2   2.4.40-4
ii  libsasl2-2  2.1.26.dfsg1-12
ii  libsasl2-modules2.1.26.dfsg1-12
ii  libsnmp30   5.7.2.1~dfsg-7
ii  libsqlite3-03.8.7.1-1
ii  libssl1.0.0 1.0.1k-1
ii  libwrap07.6.q-25
ii  libzephyr4  3.1.2-1
ii  netbase 5.3
ii  perl5.20.1-5
ii  postfix [mail-transport-agent]  2.11.3-1
ii  zlib1g  1:1.2.8.dfsg-2+b1

Versions of packages cyrus-common recommends:
ii  cyrus-admin  2.4.17+caldav~beta10-16
ii  cyrus-imapd  2.4.17+caldav~beta10-16

Versions of packages cyrus-common suggests:
pn  apt-listchangesnone
ii  cyrus-admin2.4.17+caldav~beta10-16
pn  cyrus-caldav   none
ii  cyrus-clients  2.4.17+caldav~beta10-16
ii  cyrus-doc  2.4.17+caldav~beta10-16
ii  cyrus-imapd2.4.17+caldav~beta10-16
pn  cyrus-murder   none
pn  cyrus-nntpdnone
pn  cyrus-pop3dnone
ii  cyrus-replication  2.4.17+caldav~beta10-16
pn  sasl2-bin  none

-- debconf information excluded



effb04ad40e998ee2de7a0c0989b33a8f4681d7e.diff
Description: effb04ad40e998ee2de7a0c0989b33a8f4681d7e.diff

--

Bug#439219: linux-2.6: Update to forcedeth driver

2007-08-23 Thread Norbert Warmuth 
Package: linux-2.6 
Version: 2.6.18.dfsg.1-13etch1
Severity: wishlist
Tags: patch

Attached find a patch series to update the forcedeth driver in
2.6.18.dfsg.1-13etch1 to the version found in upstream kernel 2.6.22.3.

Although the initial reason for this patch vanised by an bios update
I am still running it on a Supermicro H8DM8-2 without any problem on
the system below (i.e. currently forcedeth as shipped with
2.6.18.dfsg.1-13etch1/amd64 works for me, thus filed with severity
wishlist).

- Norbert

-- System Information:
Debian Release: 4.0
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Shell:  /bin/sh linked to /bin/dash



forcedeth-update-20070824.tar.gz
Description: forcedeth-update-20070824.tar.gz

Bug#386226: linux-image-2.6.16-2-686-smp: Will not set clock and loses interrupts when rtc is used

2006-10-20 Thread Norbert Warmuth 
Joshua Kugler [EMAIL PROTECTED] writes:
 Sep 2 06:25:13 hostname kernel: rtc: lost some interrupts at 512Hz. 
That's an understatement. My tests revealed that the kernel does not
generate any periodic RTC interrupts (btw. Documentation/rtc.txt
contains a short test program). 

Reason: The i386 kernels have been compiled with HPET support but
without RTC emulation support (CONFIG_HPET_EMULATE_RTC; HPET: High
Precision Event Timer, see Documentation/hpet.txt).

And at the moment CONFIG_HPET_EMULATE_RTC requires the rtc driver to
be compiled in:
Quoting arch/i386/Kconfig, arch/x86_64/Kconfig (linux-source-2.6.18):
:   config HPET_EMULATE_RTC
:  depends on HPET_TIMER  RTC=y

Workarounds (both tested successfully): 
1. boot with hpet=disable
2. build the kernel with CONFIG_RTC=y 

Regards,
Norbert



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]