Bug#560924: CVE-2009-3560 and CVE-2009-3720 denial-of-services
On Sun, Dec 13, 2009 at 9:20 AM, Michael Gilbert michael.s.gilb...@gmail.com wrote: CVE-2009-3560[0]: | The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, | as used in the XML-Twig module for Perl, allows context-dependent | attackers to cause a denial of service (application crash) via an XML | document with malformed UTF-8 sequences that trigger a buffer | over-read, related to the doProlog function in lib/xmlparse.c, a | different vulnerability than CVE-2009-2625 and CVE-2009-3720. The current implementation in ayttm simply abort()s on invalid xml, so it is a DoS, but not a buffer over-read. I'll remove the abort and return an error instead. CVE-2009-3720[1]: | The updatePosition function in lib/xmltok_impl.c in libexpat in Expat | 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, | allows context-dependent attackers to cause a denial of service | (application crash) via an XML document with crafted UTF-8 sequences | that trigger a buffer over-read, a different vulnerability than | CVE-2009-2625. The fix from upstream applies (more or less) directly here. -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#560924: CVE-2009-3560 and CVE-2009-3720 denial-of-services
On Sun, Dec 13, 2009 at 11:06 AM, Siddhesh Poyarekar siddhesh.poyare...@gmail.com wrote: On Sun, Dec 13, 2009 at 9:20 AM, Michael Gilbert michael.s.gilb...@gmail.com wrote: CVE-2009-3560[0]: | The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, | as used in the XML-Twig module for Perl, allows context-dependent | attackers to cause a denial of service (application crash) via an XML | document with malformed UTF-8 sequences that trigger a buffer | over-read, related to the doProlog function in lib/xmlparse.c, a | different vulnerability than CVE-2009-2625 and CVE-2009-3720. The current implementation in ayttm simply abort()s on invalid xml, so it is a DoS, but not a buffer over-read. I'll remove the abort and return an error instead. CVE-2009-3720[1]: | The updatePosition function in lib/xmltok_impl.c in libexpat in Expat | 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, | allows context-dependent attackers to cause a denial of service | (application crash) via an XML document with crafted UTF-8 sequences | that trigger a buffer over-read, a different vulnerability than | CVE-2009-2625. The fix from upstream applies (more or less) directly here. Fix committed upstream: http://ayttm.git.sourceforge.net/git/gitweb.cgi?p=ayttm/ayttm;a=commit;h=ab46edf748b6c5a0f171534f6950929db4939ab3 -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#560924: CVE-2009-3560 and CVE-2009-3720 denial-of-services
On Sun, Dec 13, 2009 at 11:11 AM, Michael Gilbert michael.s.gilb...@gmail.com wrote: The optimal solution is to make use of the system expat in case of future issues. Absolutely. But that is too much of a rewrite for now :) -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#553967: FTBFS with binutils-gold
On Mon, Nov 2, 2009 at 4:47 PM, Peter Fritzsche peter.fritzs...@gmx.de wrote: Package: ayttm Version: 0.6.1-1 Severity: normal Tried to build your package and it fails to build with GNU binutils-gold. The important difference is that --no-add-needed is the default behavior of of GNU binutils-gold. Please provide all needed libraries to the linker when building your executables. Fixed in upstream git, so it should be out in the next release. Thanks for reporting this. -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#546667: [Ayttm-devel] Fwd: Bug#546667: ayttm: gtkut_stock_button_new_with_label implicitly converted to pointer
On Tue, Sep 15, 2009 at 9:03 AM, Kartik Mistry kartik.mis...@gmail.com wrote: forwarded 546667 ayttm-de...@lists.sourceforge.net thanks Hi Siddhesh, Please check and adopt attached patch. I am adding it tonight.. Thanks to Dann for reporting this and patch! Thanks. Committed fix. -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#522498: doesn't allow offline messages/impossible to comunicate with invisible contacts
On Sun, Apr 5, 2009 at 1:30 PM, Andrei Popescuandreimpope...@gmail.com wrote: You could definitely improve that tooltip, and enabling it by default would make more sense, people do indeed message people who are offline (they might be invisible). This is fixed in upstream cvs now, so we can consider it fixed in the next release. -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#527696: ayttm: FTBFS: log_window.C:238: error: 'gtk_toolbar_set_orientation' was not declared in this scope
On Fri, May 8, 2009 at 10:25 PM, Lucas Nussbaum lu...@lucas-nussbaum.net wrote: log_window.C:238: error: 'gtk_toolbar_set_orientation' was not declared in this scope This seems to be one of the recently deprecated functions in gtk2 (2.16). Thanks for pointing this out. I'll try to put out a release with all the small fixes in the next week. Till then you could remove -DGTK_DISABLE_DEPRECATED from configure.ac and get it to build. -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#522498: doesn't allow offline messages/impossible to comunicate with invisible contacts
On Sun, Apr 5, 2009 at 1:30 PM, Andrei Popescu andreimpope...@gmail.com wrote: Do you mean the button with the tooltip Allow? :P (the icon is a pencil writing on a paper) Yes, that's the one :P You could definitely improve that tooltip, and enabling it by default would make more sense, people do indeed message people who are offline (they might be invisible). BTW, I notice that some buttons are too small to show the entire text (ex. Preferences... - Sound - Files: the buttons show only the first 4 letters and half of the fifth, the Cancel button shows only Cance and the text is not centered vertically -- too low). I agree, a lot of work still needs to be done on the UI front. I'm trying to clean up things one at a time. I'll include this as well in my TODO list (which seems to only be growing at the moment). Thanks -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#522607: ayttm: Insert Smiley button does nothing
On Sun, Apr 5, 2009 at 1:42 PM, Andrei Popescu andreimpope...@gmail.com wrote: I have Enable Smileys checked in Chat preferences and the Smiley Themes module is loaded. Anything else I should check? Yes, this is a known issue. Smileys will not load till you start chatting with your buddy. This is because ayttm uses the concept of fallback messaging, which transparently switches protocols to use the most suitable one for chatting between two contacts. This means that the first time you open a window to chat with a friend, ayttm doesn't know which protocol to use till you send your first message. I guess we should be selecting the protocol earlier or at least load a default smiley set. Send one message to your buddy and then click on the smileys button. That should work. -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#522498: doesn't allow offline messages/impossible to comunicate with invisible contacts
On Sun, Apr 5, 2009 at 1:56 PM, Andrei Popescu andreimpope...@gmail.com wrote: How can a non-programmer help? I'm already filing a lot of bugs :P Well for starters, if you can make pretty smiley pixmaps/icons in PNG as opposed to the XPMs we already have, that would be great. We also need some serious UI guys to look at the user interface. Of course, these bug reports help a lot as well, so keep them coming in. For anything else you could post on ayttm-us...@lists.sourceforge.net. -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#522497: does not show in Xfce menu (missing Categories in .desktop file?)
On Sat, Apr 4, 2009 at 4:59 PM, Andrei Popescu andreimpope...@gmail.com wrote: I installed ayttm to try it out and couldn't find it in the Xfce main menu, I had to diff into the Debian menu for that. I compared the ..desktop file with the one from pidgin and the relevant (missing) part seems to be: Categories=Network;InstantMessaging Ok, eventually I did find it in the Other category, but my bug still stands. Andrei, thanks. I'll get this into CVS. -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#522498: doesn't allow offline messages/impossible to comunicate with invisible contacts
On Sat, Apr 4, 2009 at 2:28 PM, Andrei Popescu andreimpope...@gmail.com wrote: Package: ayttm Version: 0.5.0+82-1 Severity: normal Hello, If I try to write a message to an offline contact I get: Cannot send message - user is offline. in the message window. ayttm should not care about this, sending messages to offline contacts is not unusual, especially if some of them are invisible. The most annoying thing about it is that you can't even communicate with a contact who just wrote you something from invisible mode. There is a button on the chat window toolbar called Allow Offline Messaging, which should help you do that. In any case, I guess we either should be enabling that by default or at least detect if someone who is offline (i.e. invisible) has messaged us and then enable the offline chat button accordingly. -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#358245: ayttm: unable to use with ICQ account
Hi, This has been fixed in CVS. Now AIM and ICQ are considered as the same service provider in ayttm. AIM and ICQ now use the same protocol (OSCAR) since AOL bought ICQ some years ago. So we're only a few years late... Thanks for waiting :) Regards, -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#492783: x11-common: Ctrl+Alt+F7 and Ctrl+Alt+F8 signals allowed to propagate to nested applications
Package: x11-common Version: 1:7.3+14 Severity: normal The Ctrl+Alt+F7 and Ctrl+Alt+F8 keystrokes to switch between two X terminals seem to be propagating to the constituent applications as well. For example, if you have Firefox running in our first terminal and you switch from the second terminal to the first using Ctrl+Alt+F7, then Firefox manages to capture that event as F7. Similar effects can be seen with Ctrl+Alt+F8 when you have OpenOffice.org running. OpenOffice responds by opening up its File menu. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.24-1-686 (SMP w/1 CPU core) Locale: LANG=en_IN, LC_CTYPE=en_IN (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages x11-common depends on: ii debconf [debconf-2.0] 1.5.23 Debian configuration management sy ii debianutils 2.30 Miscellaneous utilities specific t ii lsb-base 3.2-15 Linux Standard Base 3.2 init scrip x11-common recommends no packages. x11-common suggests no packages. -- debconf information: * x11-common/xwrapper/allowed_users: Anybody x11-common/experimental_packages: x11-common/xwrapper/actual_allowed_users: anybody x11-common/xwrapper/nice_value/error: x11-common/upgrade_issues: * x11-common/xwrapper/nice_value: 0 x11-common/x11r6_bin_not_empty: -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#230328: [Ayttm-devel] Forwarded: ayttm: IRC plugin cannot login to password secured IRC servers
On Mon, Jun 9, 2008 at 11:59 PM, Siddhesh Poyarekar [EMAIL PROTECTED] wrote: On Sat, Jun 7, 2008 at 7:59 PM, Kartik Mistry [EMAIL PROTECTED] wrote: Dear Siddhesh and Devs, Is this Debian bug (#230328) was taken care with latest ayttm release? UPDATE: I think this has been fixed with updates in the libirc-mod branch in upstream CVS. Can the submitter please check and confirm? CVS commands to download the code: cvs -d:pserver:[EMAIL PROTECTED]:/cvsroot/ayttm login cvs -z3 -d:pserver:[EMAIL PROTECTED]:/cvsroot/ayttm co -r libirc-mod ayttm Regards, Siddhesh Poyarekar -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#230328: [Ayttm-devel] Forwarded: ayttm: IRC plugin cannot login to password secured IRC servers
On Sun, Mar 23, 2008 at 12:07 PM, Kartik Mistry [EMAIL PROTECTED] wrote: Please look at somewhat old bug reported in Debian BTS below. There's a few other issues reported as well, so I'm going to try and rework the IRC login sequence in Ayttm ( soon ;) ). Thanks Siddhesh -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#472109: metacity: Compositing not enabled on panels
Package: metacity Version: 1:2.22.0-1 Severity: normal *** Please type your report below *** On first load of metacity, the panels do not get the drop shadow. I have to load up Configuration editor and disable and enable compositing. Regards, Siddhesh -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.24-1-686 (SMP w/1 CPU core) Locale: LANG=en_IN, LC_CTYPE=en_IN (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages metacity depends on: ii libatk1.0-0 1.22.0-1 The ATK accessibility toolkit ii libc6 2.7-9GNU C Library: Shared libraries ii libcairo2 1.4.14-1 The Cairo 2D vector graphics libra ii libgconf2-4 2.22.0-1 GNOME configuration database syste ii libglib2.0-02.16.1-2 The GLib library of C routines ii libgtk2.0-0 2.12.9-2 The GTK+ graphical user interface ii libice6 2:1.0.4-1X11 Inter-Client Exchange library ii libmetacity01:2.22.0-1 library of lightweight GTK2 based ii libpango1.0-0 1.20.0-1 Layout and rendering of internatio ii libsm6 2:1.0.3-1+b1 X11 Session Management library ii libstartup-notification00.9-1library for program launch feedbac ii libx11-62:1.0.3-7X11 client-side library ii libxcomposite1 1:0.4.0-1X11 Composite extension library ii libxcursor1 1:1.1.9-1X cursor management library ii libxdamage1 1:1.1.1-3X11 damaged region extension libra ii libxext62:1.0.4-1X11 miscellaneous extension librar ii libxfixes3 1:4.0.3-2X11 miscellaneous 'fixes' extensio ii libxinerama12:1.0.3-1X11 Xinerama extension library ii libxrandr2 2:1.2.2-1X11 RandR extension library ii libxrender1 1:0.9.4-1X Rendering Extension client libra ii metacity-common 1:2.22.0-1 Shared files of lightweight GTK2 b Versions of packages metacity recommends: ii gnome-session [x-session-mana 2.22.0-2 The GNOME 2 Session Manager -- no debconf information -- Siddhesh Poyarekar http://siddhesh.in -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#198979: [Ayttm-devel] ayttm: Indescriminately sends HTML
Hi, Confirmed and rectified :) We don't linkify outbound link texts anymore. We only decorate inbound links. The code has been checked into upstream cvs. Siddhesh -- Siddhesh Poyarekar This document validates as Plain Text -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#239002: [Ayttm-devel] Still there with latest ayttm..
On 10/12/07, Kartik Mistry [EMAIL PROTECTED] wrote: I confirm that this bug is still there with latest ayttm 0.5.0+10-4 (in Debian). Upstream bug :P I think this has been addressed with the recent yahoo protocol update since I am not able to reproduce this anymore (I was able to once). Kartik, can you pull it out of upstream and verify? -- Siddhesh Poyarekar This document validates as Plain Text -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#444098: icedove: Crash on composing/forwarding email (invalid pointer)
Hi, Just found another bug (#443455) on the list that resembles my description. I guess this should be marked as duplicate. Regards, Siddhesh -- Siddhesh Poyarekar This document validates as Plain Text -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#443455: Icedove crash - gnome theme related
Hi, Looks like this crash is related to the gnome/gtk update. Some themes seem to be causing this crash. Try changing your desktop theme to Clearlooks (or any of the standard themes) and everything should work fine. Regards, Siddhesh -- Siddhesh Poyarekar This document validates as Plain Text -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#444098: icedove: Crash on composing/forwarding email (invalid pointer)
Package: icedove Version: 2.0.0.4.dfsg1-2 Severity: grave Justification: renders package unusable *** Please type your report below this line *** Hi, Icedove crashes for me too when I try to compose/forward an email. When starting from console, I get the following info on my console when I click on the forward button. I'll try to pitch in more info if possible later in the day. *** glibc detected *** /usr/lib/icedove/icedove-bin: free(): invalid pointer: 0x08c06d70 *** === Backtrace: = /lib/i686/cmov/libc.so.6[0xb7454ce5] /lib/i686/cmov/libc.so.6(cfree+0x90)[0xb7458780] /usr/lib/libglib-2.0.so.0(g_free+0x31)[0xb7684961] /usr/lib/icedove/components/libgfx_gtk.so[0xb54d5618] /usr/lib/icedove/components/libgfx_gtk.so[0xb54f4293] /usr/lib/icedove/components/libgklayout.so[0xb4fc370d] /usr/lib/icedove/components/libgklayout.so[0xb4fc4487] /usr/lib/icedove/components/libgklayout.so[0xb5004772] /usr/lib/icedove/components/libgklayout.so[0xb5116b31] /usr/lib/icedove/components/libgklayout.so[0xb51169a2] /usr/lib/icedove/components/libgklayout.so[0xb5116637] /usr/lib/icedove/components/libgklayout.so[0xb5116a95] /usr/lib/icedove/components/libgklayout.so[0xb51169a2] /usr/lib/icedove/components/libgklayout.so[0xb5116637] /usr/lib/icedove/components/libgklayout.so[0xb5116a95] /usr/lib/icedove/components/libgklayout.so[0xb51169a2] /usr/lib/icedove/components/libgklayout.so[0xb5116637] /usr/lib/icedove/components/libgklayout.so[0xb5116a95] /usr/lib/icedove/components/libgklayout.so[0xb51169a2] /usr/lib/icedove/components/libgklayout.so[0xb5116637] /usr/lib/icedove/components/libgklayout.so[0xb5116a95] /usr/lib/icedove/components/libgklayout.so[0xb51169a2] /usr/lib/icedove/components/libgklayout.so[0xb5116637] /usr/lib/icedove/components/libgklayout.so[0xb5116a95] /usr/lib/icedove/components/libgklayout.so[0xb51169a2] /usr/lib/icedove/components/libgklayout.so[0xb5116637] /usr/lib/icedove/components/libgklayout.so[0xb5116a95] /usr/lib/icedove/components/libgklayout.so[0xb51169a2] /usr/lib/icedove/components/libgklayout.so[0xb5116637] /usr/lib/icedove/components/libgklayout.so[0xb5116a95] /usr/lib/icedove/components/libgklayout.so[0xb51169a2] /usr/lib/icedove/components/libgklayout.so[0xb5116637] /usr/lib/icedove/components/libgklayout.so[0xb5116a95] /usr/lib/icedove/components/libgklayout.so[0xb51169a2] /usr/lib/icedove/components/libgklayout.so[0xb5116637] /usr/lib/icedove/components/libgklayout.so[0xb5116a95] /usr/lib/icedove/components/libgklayout.so[0xb5001059] /usr/lib/icedove/components/libgklayout.so[0xb5000ea4] /usr/lib/icedove/components/libgklayout.so[0xb5000727] /usr/lib/icedove/components/libgklayout.so[0xb4fdc831] /usr/lib/icedove/components/libgklayout.so[0xb52a2fa5] /usr/lib/icedove/components/libgklayout.so[0xb52a5ba0] /usr/lib/icedove/components/libgklayout.so[0xb52abc7c] /usr/lib/icedove/components/libgklayout.so[0xb52ad174] /usr/lib/icedove/components/libgklayout.so[0xb52adb0c] /usr/lib/icedove/components/libgklayout.so[0xb52a2ca6] /usr/lib/icedove/components/libwidget_gtk2.so[0xb5e39cfe] /usr/lib/icedove/components/libwidget_gtk2.so[0xb5e31d62] /usr/lib/icedove/components/libwidget_gtk2.so[0xb5e31de9] /usr/lib/libgtk-x11-2.0.so.0(_gtk_marshal_BOOLEAN__BOXED+0x64)[0xb7b4bca4] /usr/lib/libgobject-2.0.so.0(g_closure_invoke+0x129)[0xb76fd619] /usr/lib/libgobject-2.0.so.0[0xb7711e0f] /usr/lib/libgobject-2.0.so.0(g_signal_emit_valist+0x617)[0xb7713787] /usr/lib/libgobject-2.0.so.0(g_signal_emit+0x29)[0xb7713da9] /usr/lib/libgtk-x11-2.0.so.0[0xb7c69c97] /usr/lib/libgtk-x11-2.0.so.0(gtk_main_do_event+0x326)[0xb7b461d6] /usr/lib/libgdk-x11-2.0.so.0[0xb799cc1b] /usr/lib/libgdk-x11-2.0.so.0(gdk_window_process_all_updates+0xac)[0xb799d25c] /usr/lib/libgdk-x11-2.0.so.0[0xb799d2bb] /usr/lib/libgdk-x11-2.0.so.0[0xb798357b] /usr/lib/libglib-2.0.so.0[0xb767b5d1] /usr/lib/libglib-2.0.so.0(g_main_context_dispatch+0x176)[0xb767d186] /usr/lib/libglib-2.0.so.0[0xb7680512] === Memory map: 08048000-0805a000 r-xp 08:01 896468 /usr/lib/icedove/icedove-bin 0805a000-0805c000 rw-p 00011000 08:01 896468 /usr/lib/icedove/icedove-bin 0805c000-0915c000 rw-p 0805c000 00:00 0 [heap] b0d0-b0d21000 rw-p b0d0 00:00 0 b0d21000-b0e0 ---p b0d21000 00:00 0 b0e1e000-b1021000 rw-p b0e1e000 00:00 0 b1021000-b1022000 ---p b1021000 00:00 0 b1022000-b1822000 rw-p b1022000 00:00 0 b1822000-b1823000 ---p b1822000 00:00 0 b1823000-b2023000 rw-p b1823000 00:00 0 b2023000-b2024000 ---p b2023000 00:00 0 b2024000-b2824000 rw-p b2024000 00:00 0 b2824000-b285a000 r-xp 08:01 472476 /lib/libsepol.so.1 b285a000-b285b000 rw-p 00035000 08:01 472476 /lib/libsepol.so.1 b285b000-b2865000 rw-p b285b000 00:00 0 b2865000-b2879000 r-xp 08:01 472477 /lib/libselinux.so.1 b2879000-b287b000 rw-p 00013000 08:01 472477 /lib/libselinux.so.1 b287b000-b2883000 r-xp 08:01 321295 /usr/lib/libfam.so.0.0.0 b2883000-b2884000 rw-p 7000 08:01 321295
Bug#284090: gnome-session: Splash stays
On 4/8/07, Josselin Mouette [EMAIL PROTECTED] wrote: I suggest that you open a new bug report on beagle, because it should surely not happen. The beagle crash is another issue. What I feel is that in spite of any application crash the splash screen should not look as if it is hung (which is what is happening currently). It could either: 1) ignore the application return status 2) spawn the application and forget about it 3) Spawn the application and cry out loud if it does a boo boo (ala KDE) -- Siddhesh Poyarekar http://siddhesh.tk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#284090: gnome-session: Splash stays
On 4/8/07, Josselin Mouette [EMAIL PROTECTED] wrote: The session manager is not just starting applications. It is managing them with the XSM protocol, which, as it was designed, doesn't allow for handling applications that crash *before* registering to the session manager. My bad for not doing any research before commenting :) So continuing in ignorance (partial this time), isn't it possible at all to cater for application crashes even before they register themselves to the session? Or is that how th splashscreen is expected to behave anyways? -- Siddhesh Poyarekar http://siddhesh.tk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#284090: gnome-session: Splash stays
On 4/6/07, Sven Arvidsson [EMAIL PROTECTED] wrote: Wait a minute, maybe I misunderstood your last mail, removing beagle did the trick? The splash screen disappear as it should now? Yes :) -- Siddhesh Poyarekar http://siddhesh.tk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#284090: gnome-session: Splash stays
On 4/6/07, Sven Arvidsson [EMAIL PROTECTED] wrote: Does this still happen (splash stays) if you add a new user to your system and try logging in? Yes, that was due to beagled. My guess is that any failed process causes the splash to stay. Do you have the loopback interface properly configured (can ping localhost/127.0.0.1)? Can you ping the address 172.17.xx.xx from the log? Yes I can ping lo.And 172.17.xx.xx is my remote X client and it's accessible. That's not the issue though since the splash would stay in a local login as well. -- Siddhesh Poyarekar http://siddhesh.tk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#284090: gnome-session: Splash stays
On 4/1/07, Sven Arvidsson [EMAIL PROTECTED] wrote: From the log above, Gnome-Message: gnome_execute_async_with_env_fds: returning -1 the API tells me This function forks and executes some program in the background. On error, returns -1. Do you have any apps set to auto start in the session preferences (or check ~/.config/autostart/ )? beagled was in autostart. There was nothing in .config/autostart though. Also, I couldn't remove the beagled entry from the gnome-session-properties dialog. Every time I removed it and reopened the dialog, it came back. I had to remove beagle entirely for that (it's ok since I wasn't using it anyways). Also, shouldn't session startup actually notify any failure to the user and then close/advance the splash screen? AFAIK kde startup does that. -- Siddhesh Poyarekar http://siddhesh.tk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#284090: gnome-session: Splash stays
Hi, I too have the same problem on sid (gnome 2.14.3). I have not saved any session (no .gnome2/session). The splash stops at Loading Nautilus. Clicking it makes it go away. Here's the contents of .xsession-errors. Thought probably this could help: === /etc/gdm/PreSession/Default: Registering your session with wtmp and utmp /etc/gdm/PreSession/Default: running: /usr/bin/sessreg -a -w /var/log/wtmp -u /var/run/utmp -x /var/lib/gdm/172.17.xx.xx:0.Xservers -h 172.17.xx.xx -l 172.17.xx.xx:0 siddhesh /etc/gdm/Xsession: Beginning session setup... SESSION_MANAGER=local/zelig:/tmp/.ICE-unix/16747 Window manager warning: Failed to read saved session file /home/siddhesh/.metacity/sessions/default0.ms: Failed to open file '/home/siddhesh/.metacity/sessions/default0.ms': No such file or directory Gnome-Message: gnome_execute_async_with_env_fds: returning -1 Gnome-Message: gnome_execute_async_with_env_fds: returning -1 Unable to open desktop file evolution.desktop for panel launcher Gnome-Message: gnome_execute_async_with_env_fds: returning -1 ** (gnome-terminal:16925): WARNING **: No handler for control sequence `device-control-string' defined. ** (gnome-terminal:16925): WARNING **: No handler for control sequence `device-control-string' defined. ** (gnome-terminal:16925): WARNING **: No handler for control sequence `device-control-string' defined. === -- Siddhesh Poyarekar http://siddhesh.tk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#400947: iceweasel: Rejects certificate issued by https://www.ultimatix.net by throwing error code -8102
On 2/11/07, Mike Hommey [EMAIL PROTECTED] wrote: But does the CA certificate specify a Certificate Sign key usage ? Here's what I get when I run the certificate through Kleopatra: /home/siddhesh/.gnupg/pubring.kbx - Serial number: 00 Issuer: 1.2.840.113549.1.9.1=#63696F406D756D6261692E7463732E636F2E696E,CN=TCS CIO,OU=TCS,O=TCS,L=Mumbai,ST=Maharashtra,C=IN Subject: 1.2.840.113549.1.9.1=#63696F406D756D6261692E7463732E636F2E696E,CN=TCS CIO,OU=TCS,O=TCS,L=Mumbai,ST=Maharashtra,C=IN sha1_fpr: 99:E1:DB:93:E9:EF:1F:3F:72:5E:88:33:0E:F7:7E:00:71:93:43:1A md5_fpr: F2:56:25:3D:47:7E:D5:8F:52:2B:14:56:2F:0E:86:19 certid: BCAC50A72D6B623402ED1EDDC2633C0203DD4B69.00 keygrip: D3E864FFF6ADF47B4E7C56CF5622E538D7278A60 notBefore: 2002-03-26 06:23:58 notAfter: 2012-03-23 06:23:58 hashAlgo: 1.2.840.113549.1.1.4 (md5WithRSAEncryption) keyType: 2048 bit RSA subjKeyId: 708BF42057D2810A654BD22A2D46BE3CCAD7784C authKeyId: 00 1.2.840.113549.1.9.1=#63696F406D756D6261692E7463732E636F2E696E,CN=TCS CIO,OU=TCS,O=TCS,L=Mumbai,ST=Maharashtra,C=IN authKeyId.ki: 708BF42057D2810A654BD22A2D46BE3CCAD7784C keyUsage: digitalSignature certSign crlSign extKeyUsage: [none] policies: [none] chainLength: 0 crlDP: [none] authInfo: [none] subjInfo: [none] ** The 'certSign' is probably what you're looking for. Regards, -- Siddhesh Poyarekar http://siddhesh.tk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#400947: iceweasel: Rejects certificate issued by https://www.ultimatix.net by throwing error code -8102
On 2/11/07, Mike Hommey [EMAIL PROTECTED] wrote: What happens if you add the CA certificate in iceweasel's certificate manager ? It doesn't make any difference. Did you try to add the CA certificate on the server ? (SSLCertificateChainFile directive on apache) I do not have access to the web server. Also, I imported the website certificate into certificate manager and in the Purposes column it only shows the KeyUsage purposes, viz: Client and Sign. It does not show the ExtendedKeyUsage purposes, which includes Server authentication (serverAuth according to Kleopatra). -- Siddhesh Poyarekar http://siddhesh.tk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#400947: iceweasel: Rejects certificate issued by https://www.ultimatix.net by throwing error code -8102
On 2/11/07, Mike Hommey [EMAIL PROTECTED] wrote: What about the other one ? The other site has the following info in that order: == X509v3 Extended Key Usage: TLS Web Client Authentication, TLS Web Server Authentication X509v3 Key Usage: Digital Signature, Key Encipherment == Another difference I noticed right now is the 'Key Encipherment' in key usage here which is not in the earlier certificate. I looked up in the mozilla bugs database and found this: https://bugzilla.mozilla.org/show_bug.cgi?id=341271 -- Siddhesh Poyarekar http://siddhesh.tk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#400947: iceweasel: Rejects certificate issued by https://www.ultimatix.net by throwing error code -8102
On 2/11/07, Mike Hommey [EMAIL PROTECTED] wrote: SEC_ERROR_INADEQUATE_KEY_USAGE -8102 Certificate key usage inadequate for attempted operation. (from http://www.mozilla.org/projects/security/pki/nss/ref/ssl/sslerr.html ) Pretty strange. Would you mind filing a bug at bugzilla.mozilla.org and linking it to this one? There are already plenty of them, and it is useless to add one. See http://gemal.dk/blog/2003/03/03/internet_explorer_just_doesnt_care_about_security/ Doesn't the X509v3 Extended Key Usage section come into play at all? It specifies TLS Server Authentication as one of the usages. There is another certificate in use in one of our internal sites that has an identical certificate layout except that the X509v3 Extended Key Usage field comes before the X509v3 Key Usage field unlike in this certificate. That certificate works just fine in iceweasel. Is it possible that Firefox/iceweasel/mozilla takes only the first of the two fields? I'm relatively clueless about SSL/certificates so this is at best an uninformed deduction. Also, this is not just about IE. Even konqueror is able to validate the certificate. Regards, -- Siddhesh Poyarekar http://siddhesh.tk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#401819: libswt3.2-gtk-jni: Install fails as package attempts to overwrite self
libswt3.2-gtk-jni should conflict with libswt-gtk-3.2-jni Regards, -- Siddhesh Poyarekar http://siddhesh.tk http://siddhesh.phpnet.us -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#400947: iceweasel: Rejects certificate issued by https://www.ultimatix.net by throwing error code -8102
Package: iceweasel Version: 2.0+dfsg-1 Severity: normal Iceweasel fails to load https://www.ultimatix.net saying: Could not establish encrypted connection because certificate presented by www.ultimatix.net is either invalid or corrupted. Error Code: -8102. The above site opens fine in Konqueror as well as in Internet Explorer. Here's a snippet of the certificate to confirm that the certificate supports web server authentication: X509v3 Key Usage: Digital Signature, Non Repudiation X509v3 Extended Key Usage: E-mail Protection, TLS Web Server Authentication, Microsoft Server Gated Crypto, Netscape Server Gated Crypto Netscape Cert Type: SSL Client, SSL Server The only difference between this certificate and another valid certificate is that the Extended Key Usage section comes before the Key Usage section in the valid certificate. Does konqueror validate this certificate erroneously or should firefox be accepting this certificate as well? Regards, Siddhesh -- System Information: Debian Release: 4.0 APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/dash Kernel: Linux 2.6.18-2-486 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages iceweasel depends on: ii debianutils 2.17.3 Miscellaneous utilities specific t ii fontconfig2.4.1-2generic font configuration library ii libatk1.0-0 1.12.3-1 The ATK accessibility toolkit ii libc6 2.3.6.ds1-8GNU C Library: Shared libraries ii libcairo2 1.2.4-4The Cairo 2D vector graphics libra ii libfontconfig12.4.1-2generic font configuration library ii libfreetype6 2.2.1-5FreeType 2 font engine, shared lib ii libgcc1 1:4.1.1-20 GCC support library ii libglib2.0-0 2.12.4-2 The GLib library of C routines ii libgtk2.0-0 2.8.20-3 The GTK+ graphical user interface ii libjpeg62 6b-13 The Independent JPEG Group's JPEG ii libmyspell3c2 1:3.1-17 MySpell spellchecking library ii libpango1.0-0 1.14.8-2 Layout and rendering of internatio ii libpng12-01.2.13-4 PNG library - runtime ii libstdc++64.1.1-20 The GNU Standard C++ Library v3 ii libx11-6 2:1.0.3-4 X11 client-side library ii libxft2 2.1.8.2-8 FreeType-based font drawing librar ii libxinerama1 1:1.0.1-4.1X11 Xinerama extension library ii libxp61:1.0.0.xsf1-1 X Printing Extension (Xprint) clie ii libxrender1 1:0.9.1-3 X Rendering Extension client libra ii libxt61:1.0.2-2 X11 toolkit intrinsics library ii psmisc22.3-1 Utilities that use the proc filesy ii zlib1g1:1.2.3-13 compression library - runtime iceweasel recommends no packages. -- no debconf information -- Siddhesh Poyarekar http://siddhesh.tk http://siddhesh.phpnet.us -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#290902: openoffice.org: Starts on wrong X display when logged in remotely through XdmCP as same user
Package: openoffice.org Version: 2.0.2-2 Followup-For: Bug #290902 Hi, I have two PCs connected on a network and I use one as a remote X server. The following scenario produces the bug mentioned in the subject: 1) Log in as 'user1' (normal user) on computer1 2) Log in as 'user1' through XdmCp on computer2 3) Start openoffice.org on computer2 4) openoffice.org starts on computer1 It always opens on the machine where the first instance was loaded. Also, I am using oooqstart-kde, which pre-loads an instance of OpenOffice in memory on KDE startup. Regards, Siddhesh -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/dash Kernel: Linux 2.6.12-1-386 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages openoffice.org depends on: ii openoffice.org-base 2.0.2-2OpenOffice.org office suite - data ii openoffice.org-calc 2.0.2-2OpenOffice.org office suite - spre ii openoffice.org-core 2.0.2-2OpenOffice.org office suite archit ii openoffice.org-draw 2.0.2-2OpenOffice.org office suite - draw ii openoffice.org-impress2.0.2-2OpenOffice.org office suite - pres ii openoffice.org-java-common2.0.2-2OpenOffice.org office suite Java s ii openoffice.org-math 2.0.2-2OpenOffice.org office suite - equa ii openoffice.org-writer 2.0.2-2OpenOffice.org office suite - word openoffice.org recommends no packages. -- no debconf information -- http://siddhesh.tk
