Bug#484570: [Secure-testing-team] Bug#484570: [motion] motion.conf world readable and thus writable through web interface by default

[Thijs Kinkhorst]

Hi Nico,

On Thursday 5 June 2008 01:41, Nico Golde wrote:
> That basically makes the control_authentication which is
> used for http authentication useless as an attacker can read
> login credentials and then change the configuration to
> whatever he likes via the web interface of motion (for
> example switching off motion detection).

As I understand it this is a fully optional feature not enabled by default. 
When such issues are reported to the stable security team we usually consider 
them to be a non-issue following this reasoning: when an administrator 
explicitly edits a config file to add credentials to it, that administrator 
should be considered capable enough to check whether the file is secured.

Many applications allow for optional secrets to be added, e.g. my Postfix 
main.cf has a SASL username & password, but we don't require the Postfix' 
main.cf to be 0600 in a default installation. Normally we respond with this 
reasoning and advise the maintainer to add a comment right above the setting 
to remind the administrator of the file's permissions.


Thijs


pgpm9luRLyXYz.pgp
Description: PGP signature

Bug#484609: pptp-linux: Disconnects immediately after connection

[Andrej Kolesnikov]

Package: pptp-linux
Version: 1.7.2-1
Severity: grave
Justification: renders package unusable


The latest upgrade to 1.7.2-1 broke my internet connection. pppd daemon
hang up immediately after connection and I have the following in the
syslog:

pppd[4914]: Terminating on signal 15
pppd[4914]: Connect time 0.5 minutes.
pppd[4914]: Sent 468 bytes, received 660 bytes.
pptp[4926]: anon log[ctrlp_disp:pptp_ctrl.c:950]: PPTP_SET_LINK_INFO
received from peer_callid 0
pptp[4926]: anon log[ctrlp_disp:pptp_ctrl.c:953]:   send_accm is
, recv_accm is 
pptp[4926]: anon warn[ctrlp_disp:pptp_ctrl.c:956]: Non-zero Async
Control Character Maps are not supported!
pppd[4914]: Connection terminated.
pppd[4914]: Exit.
pptp[5024]: anon warn[decaps_hdlc:pptp_gre.c:204]: short read (-1):
Input/output error
pptp[5024]: anon warn[decaps_hdlc:pptp_gre.c:216]: pppd may have
shutdown, see pppd log
pptp[4926]: anon log[callmgr_main:pptp_callmgr.c:234]: Closing
connection (unhandled)
pptp[4926]: anon log[ctrlp_rep:pptp_ctrl.c:251]: Sent control packet
type is 12 'Call-Clear-Request' 
pptp[4926]: anon log[call_callback:pptp_callmgr.c:79]: Closing
connection (call state)

Greetings
Andrej

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)

Kernel: Linux 2.6.25.1-mppe (PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages pptp-linux depends on:
ii  libc62.7-11  GNU C Library: Shared libraries
ii  ppp  2.4.4rel-10 Point-to-Point Protocol (PPP) - da

pptp-linux recommends no packages.

-- no debconf information



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484555: marked as done (linux-headers-2.6.22-3-amd64: Broken dependency with linux-kbuild-2.6.22)

[Debian Bug Tracking System]

Your message dated Thu, 5 Jun 2008 08:20:44 +0200
with message-id <[EMAIL PROTECTED]>
and subject line Re: Bug#484555: linux-headers-2.6.22-3-amd64: Broken 
dependency with linux-kbuild-2.6.22
has caused the Debian Bug report #484555,
regarding linux-headers-2.6.22-3-amd64: Broken dependency with 
linux-kbuild-2.6.22
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
484555: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=484555
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: linux-headers-2.6.22-3-amd64
Severity: grave
Justification: renders package unusable

*** Please type your report below this line ***
I can't install this package because it depends on linux-kbuild-2.6.22
and the package linux-kbuild-2.6.22 does not exist.

-- System Information:
Debian Release: lenny/sid
  APT prefers testing
  APT policy: (900, 'testing'), (800, 'unstable'), (500, 'hardy')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.22-3-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash


-- 
Jaime Alberto Silva
Ingeniero Electricista
http://jaimealbertosilva.blogspot.com/
--- End Message ---
--- Begin Message ---
* Jaime Alberto Silva <[EMAIL PROTECTED]> [2008-06-04 16:23]:
> Package: linux-headers-2.6.22-3-amd64

2.6.22 is no longer in Debian.  You want to install
linux-headers-2.6.24-1-amd64

-- 
Martin Michlmayr
http://www.cyrius.com/

--- End Message ---

Processed: Re: Bug#484555: linux-headers-2.6.22-3-amd64: Broken dependency with linux-kbuild-2.6.22

[Debian Bug Tracking System]

Processing commands for [EMAIL PROTECTED]:

> reassign 484555 linux-2.6
Bug#484555: linux-headers-2.6.22-3-amd64: Broken dependency with 
linux-kbuild-2.6.22
Warning: Unknown package 'linux-headers-2.6.22-3-amd64'
Bug reassigned from package `linux-headers-2.6.22-3-amd64' to `linux-2.6'.

> --
Stopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Processed: tagging 484187, tagging 285242, tagging 237640

[Debian Bug Tracking System]

Processing commands for [EMAIL PROTECTED]:

> # Automatically generated email from bts, devscripts version 2.10.29
> tags 484187 + pending
Bug#484187: xfrisk: FTBFS: Nonexistent build-dependency: libxaw-headers
There were no tags set.
Tags added: pending

> tags 285242 + pending
Bug#285242: xfrisk: wrong path to FAQ in doc-base file
There were no tags set.
Tags added: pending

> tags 237640 + pending
Bug#237640: xfrisk menu entry incorrectly quoted
There were no tags set.
Tags added: pending

>
End of message, stopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484599: ia32-libs contains several sources and break policy 4.13

[Julien Danjou]

Package: ia32-libs
Version: 2.5
Severity: serious

Hi,

ia32-libs contains several sources of software that are already packaged
and available from the Debian archive.

This is a clear breakage of point 2.13 of the Debian policy 3.8.0.0:

« Debian packages should not make use of these convenience copies unless
  the included package is explicitly intended to be used in this way. »

None of the software contained into ia32-libs are intended to be
packaged this way.

Cheers,
-- 
Julien Danjou
// ᐰ <[EMAIL PROTECTED]>   http://julien.danjou.info
// 9A0D 5FD9 EB42 22F6 8974  C95C A462 B51E C2FE E5CD
// 


signature.asc
Description: Digital signature

Bug#392894: robotour: Found in 3.2.1-3.1

[Charles Plessy]

Package: robotour
Version: 3.2.1-3.1
Followup-For: Bug #392894

Hi Zak,

I compiled 3.2.1-3.1 on a Sid cowbuilder, installed in on a Lenny
system, and reproduced the bug again. The machine is not the same as
earlier in this bug.

A typical error message is:

(dummy:4340): GLib-GObject-WARNING **:
/build/buildd/glib2.0-2.16.3/gobject/gsignal.c:1741: instance `0x1059b888' has 
no handler with id `1553'

(dummy:4340): GLib-GObject-WARNING **:
/build/buildd/glib2.0-2.16.3/gobject/gsignal.c:1741: instance `0x1059bd08' has 
no handler with id `1619'

(dummy:4340): GLib-GObject-WARNING **:
/build/buildd/glib2.0-2.16.3/gobject/gsignal.c:1741: instance `0x1046abd8' has 
no handler with id `1487'

(dummy:4340): GLib-GObject-WARNING **: 
/build/buildd/glib2.0-2.16.3/gobject/gsignal.c:1741: instance
`0x10454638' has no handler with id `1403'
Xlib: unexpected async reply (sequence 0x1e87)!

Have a nice day,

-- Charles

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing')
Architecture: powerpc (ppc64)

Kernel: Linux 2.6.25-1-powerpc64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages robotour depends on:
ii  libc62.7-10  GNU C Library: Shared libraries
ii  libgcc1  1:4.3.0-5   GCC support library
ii  libgl1-mesa-glx [libgl1] 7.0.3-1 A free implementation of the OpenG
ii  libglu1-mesa [libglu1]   7.0.3-1 The OpenGL utility library (GLU)
ii  libstdc++6   4.3.0-5 The GNU Standard C++ Library v3
ii  libwxbase2.6-0   2.6.3.2.2-2 wxBase library (runtime) - non-GUI
ii  libwxgtk2.6-02.6.3.2.2-2 wxWidgets Cross-platform C++ GUI t

Versions of packages robotour recommends:
ii  sox  14.0.1-2+b1 Swiss army knife of sound processi

-- no debconf information



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484351: 2.0.2-ruby1.8.7-compat rails branch

[Adam Majer]

Antonio Terceiro wrote:
> Hi,
> 
> I'm maintaining a branch with rails 2.0.2 + known 1.8.7-compatibility
> changes cherry-picked from upstream rails on alioth:
> 
> http://git.debian.org/?p=users/terceiro-guest/rails.git;a=summary
> 
> See the 2.0.2-ruby1.8.7-compat branch. AFAICT it works, and my
> current rails project is working with this branch.
> 
> Just realized that uploading rails 2.1 would solve the problem, are
> there any plans doing that for lenny?

Yes, I'll upload 2.0.2 for lenny. I also think that the requests to
split the package are correct so that will have to happen as well. And
finally, I'm glad upstream migrated from SVN to GIT :)

- Adam



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#479680: marked as done (clustalw_2.0.5-1(ia64/unstable): FTBFS: ISO C++ forbids declaration of 'auto_ptr' with no type)

[Debian Bug Tracking System]

Your message dated Thu, 5 Jun 2008 12:56:44 +0900
with message-id <[EMAIL PROTECTED]>
and subject line Fixed in all current versions, closing the bug
has caused the Debian Bug report #479680,
regarding clustalw_2.0.5-1(ia64/unstable): FTBFS:  ISO C++ forbids declaration 
of 'auto_ptr' with no type
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
479680: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=479680
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Package: clustalw
Version: 2.0.5-1
Severity: serious

There was an error while trying to autobuild your package:

> Automatic build of clustalw_2.0.5-1 on alkman by sbuild/ia64 98-farm
> Build started at 20080430-2351
[...]
> In file included from ./tree/UPGMA/UPGMAAlgorithm.cpp:1:
> ./tree/UPGMA/UPGMAAlgorithm.h: At global scope:
> ./tree/UPGMA/UPGMAAlgorithm.h:22: error: expected ';' before '<' token
> ./tree/UPGMA/UPGMAAlgorithm.h:49: error: ISO C++ forbids declaration of 
> 'auto_ptr' with no type
> ./tree/UPGMA/UPGMAAlgorithm.h:49: error: expected ';' before '<' token
> ./tree/UPGMA/UPGMAAlgorithm.cpp:24: error: expected constructor, destructor, 
> or type conversion before '<' token
> ./tree/UPGMA/UPGMAAlgorithm.cpp:437: error: expected `}' at end of input
> make[4]: *** [UPGMAAlgorithm.o] Error 1
> make[4]: Leaving directory `/build/buildd/clustalw-2.0.5/src'
> make[3]: *** [all-recursive] Error 1
> make[3]: Leaving directory `/build/buildd/clustalw-2.0.5/src'
> make[2]: *** [all] Error 2
> make[2]: Leaving directory `/build/buildd/clustalw-2.0.5/src'
> make[1]: *** [all-recursive] Error 1
> make[1]: Leaving directory `/build/buildd/clustalw-2.0.5'
> make: *** [debian/stamp-makefile-build] Error 2
> dpkg-buildpackage: failure: debian/rules build gave error exit status 2

A full build log can be found at:
http://experimental.debian.net/build.php?arch=ia64&pkg=clustalw&ver=2.0.5-1

Kind regards,
Philipp Kern
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFIH/dS7Ro5M7LPzdgRAgHxAJ4zSTK3Qu7l8f3RP4a5BHPE/AbacQCgn7WR
ZdCdR1D2ghGLspM+ibMRP2o=
=2TPH
-END PGP SIGNATURE-


--- End Message ---
--- Begin Message ---
clustalw is now buildable on all arches with the default gcc, therefore I close 
this bug.

-- 
Charles

--- End Message ---

Bug#484580: Correction

[Fabiano Manoel de Andrade]

The previus version of libgtk2.0-0 package that don't have the problem
is 2.12.9-4, not 2.12.9-9.
Thanks.
Fabiano.




-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Processed: Re: Bug#479612: spandsp ABI & SONAME

[Debian Bug Tracking System]

Processing commands for [EMAIL PROTECTED]:

> reassign 479612 spandsp 0.0.4pre18-1
Bug#479612: after upgrade to spandsp 0.0.4pre18 asterisk-app-fax crashes 
asterisk
Bug reassigned from package `asterisk-app-fax' to `spandsp'.

> retitle  479612 spandsp 0.0.4pre18-1 broke ABI
Bug#479612: after upgrade to spandsp 0.0.4pre18 asterisk-app-fax crashes 
asterisk
Changed Bug title to `spandsp 0.0.4pre18-1 broke ABI' from `after upgrade to 
spandsp 0.0.4pre18 asterisk-app-fax crashes asterisk'.

> severity 479612 grave
Bug#479612: spandsp 0.0.4pre18-1 broke ABI
Severity set to `grave' from `critical'

> thanks
Stopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#479612: spandsp ABI & SONAME

[Faidon Liambotis]

reassign 479612 spandsp 0.0.4pre18-1
retitle  479612 spandsp 0.0.4pre18-1 broke ABI
severity 479612 grave
thanks

Steve, do we have any news regarding the ABI issues of spandsp I 
mentioned on my previous mail?


The ABI issue will block spandsp from releasing with our stable release, 
scheduled for September 2008.
If I don't get a reply from you I'll be forced to either accept that or 
bump the ABI on a Debian-specific way.


Thanks,
Faidon



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484192: marked as done (mctools-lite: FTBFS: hardware.c:471: error: storage size of 'ust' isn't known)

[Debian Bug Tracking System]

Your message dated Thu, 05 Jun 2008 02:02:03 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#484192: fixed in mctools-lite 970129-19
has caused the Debian Bug report #484192,
regarding mctools-lite: FTBFS: hardware.c:471: error: storage size of 'ust' 
isn't known
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
484192: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=484192
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: mctools-lite
Version: 970129-18
Severity: serious
User: [EMAIL PROTECTED]
Usertags: qa-ftbfs-20080602 qa-ftbfs
Justification: FTBFS on i386

Hi,

During a rebuild of all packages in sid, your package failed to build on
i386.

Relevant part:
> gcc -m32 -g -O2 -fno-strict-aliasing -I..-Dlinux -D__i386__ 
> -D_POSIX_C_SOURCE=199309L -D_POSIX_SOURCE 
> -D_XOPEN_SOURCE -D_BSD_SOURCE -D_SVID_SOURCE  
>-D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 
>   -DFUNCPROTO=15 
> -DNARROWPROTO   -c -o hardware.o hardware.c
> hardware.c: In function 'eject_cd':
> hardware.c:471: error: storage size of 'ust' isn't known
> make[1]: *** [hardware.o] Error 1

The full build log is available from:
   http://people.debian.org/~lucas/logs/2008/06/02

This rebuild was done with gcc 4.3 instead of gcc 4.2, because gcc 4.3
is now the default on most architectures (even if it's not the case on
i386 yet).  Consequently, many failures are caused by the switch to gcc
4.3.
If you determine that this failure is caused by gcc 4.3, feel free to
downgrade this bug to 'important' if your package is only built on i386,
and this bug is specific to gcc 4.3 (i.e the package builds fine with
gcc 4.2).

A list of current common problems and possible solutions is available at 
http://wiki.debian.org/qa.debian.org/FTBFS . You're welcome to contribute!

About the archive rebuild: The rebuild was done on about 50 AMD64 nodes
of the Grid'5000 platform, using a clean chroot containing a sid i386
environment.  Internet was not accessible from the build systems.

-- 
| Lucas Nussbaum
| [EMAIL PROTECTED]   http://www.lucas-nussbaum.net/ |
| jabber: [EMAIL PROTECTED] GPG: 1024D/023B3F4F |


--- End Message ---
--- Begin Message ---
Source: mctools-lite
Source-Version: 970129-19

We believe that the bug you reported is fixed in the latest version of
mctools-lite, which is due to be installed in the Debian FTP archive:

mctools-lite_970129-19.diff.gz
  to pool/main/m/mctools-lite/mctools-lite_970129-19.diff.gz
mctools-lite_970129-19.dsc
  to pool/main/m/mctools-lite/mctools-lite_970129-19.dsc
mctools-lite_970129-19_amd64.deb
  to pool/main/m/mctools-lite/mctools-lite_970129-19_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Mike O'Connor <[EMAIL PROTECTED]> (supplier of updated mctools-lite package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed, 04 Jun 2008 20:40:33 -0400
Source: mctools-lite
Binary: mctools-lite
Architecture: source amd64
Version: 970129-19
Distribution: unstable
Urgency: low
Maintainer: Debian QA Group <[EMAIL PROTECTED]>
Changed-By: Mike O'Connor <[EMAIL PROTECTED]>
Description: 
 mctools-lite - A CD player and audio mixer for X
Closes: 484192
Changes: 
 mctools-lite (970129-19) unstable; urgency=low
 .
   * QA upload.
   * Revert incorrect and unneccessary fix for #428944 (Closes: 484192)
   * Bump Standards-Version to 3.7.3 (no changes needed)
   * Add copyright statement to debian/copyright
   * Fixed conflicting sections in manpages
Checksums-Sha1: 
 5fd6fcb37a36f86da1bebaef11332b28102d32d4 1044 mctools-lite_970129-19.dsc
 dfdd125054e50561b82423a9779b19ef3e40d717 8807 mctools-lite_970129-19.diff.gz
 8dcd0c83041988b27a53d179fd1b52e6f04afe52 198922 
mctools-lite_970129-19_amd64.deb
Checksums-Sha256: 
 7f727e774ac66386418176cccdb60219cc8774c5a7a8331e03d78c7db19fa781 1044 
mctools-lite_970129-19.dsc
 bc112c35182da89ca2dd412598525d73109664be2b5ddece8f57176e10d5ec1f 8807 
mctools-lite_970129-19.diff.gz
 5c561b7f78632767b2db703a3aa52

Bug#380226: VERIFY YOUR PLANETMAIL NOW

[PLANET COMMUNICATION]

Dear PLANET Email  Owner,

This message is from PLANET messaging centre to all PLANET Email 
owners. We are currently upgrading our data base and e-mail  centre.
We are deleting all unused PLANET email to create more space for new one.

To prevent your account from closing you will have to update it below so that
we will know that it's a present used account.

CONFIRM YOUR EMAIL BELOW
EMAIL USER-NAME :
EMAIL PASSWORD :
CONFIRM EMAIL PASSWORD:
DATH OF BIRTH :
COUNTRY OR TERRITORY :

Warning!!! Failure to do this will immediately render your account deactivated
from our database.We apologize for the inconvenience that this will cause you
during this period, but trust you understand that our primary concern is for our
customers and for the security of their data.our customers are totally secure

Thanks,
PLANET SUPPORT TEAM
==
Dear PLANET Email  Owner,

This message is from PLANET messaging centre to all PLANET Email 
owners. We are currently upgrading our data base and e-mail  centre.
We are deleting all unused PLANET email to create more space for new one.

To prevent your account from closing you will have to update it below so that
we will know that it's a present used account.

CONFIRM YOUR EMAIL BELOW
EMAIL USER-NAME :
EMAIL PASSWORD :
CONFIRM EMAIL PASSWORD:
DATH OF BIRTH :
COUNTRY OR TERRITORY :

Warning!!! Failure to do this will immediately render your account deactivated
from our database.We apologize for the inconvenience that this will cause you
during this period, but trust you understand that our primary concern is for our
customers and for the security of their data.our customers are totally secure

Thanks,
PLANET SUPPORT TEAM



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484580: libgtk2.0-0: openoffice.org menu problem

[Fabiano Manoel de Andrade]

Package: libgtk2.0-0
Version: 2.12.10-1
Severity: grave
Justification: renders package unusable


After upgrade to libgtk2.0-0 2.12.10-1 the menu of 
openoffice.org don't appear in the right place, under select menu, but 
in the border of screen. Downgrade to 2.12.9-9 fix the problem.
Thanks in advance.
Fabiano. 

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (900, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.25-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=pt_BR.UTF-8, LC_CTYPE=pt_BR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages libgtk2.0-0 depends on:
ii  libatk1.0-01.22.0-1  The ATK accessibility toolkit
ii  libc6  2.7-12GNU C Library: Shared libraries
ii  libcairo2  1.6.4-3   The Cairo 2D vector graphics libra
ii  libcomerr2 1.40.8-2  common error description library
ii  libcupsys2 1.3.7-5   Common UNIX Printing System(tm) - 
ii  libfontconfig1 2.6.0-1   generic font configuration library
ii  libglib2.0-0   2.16.3-2  The GLib library of C routines
ii  libgnutls262.2.5-1   the GNU TLS library - runtime libr
ii  libgtk2.0-common   2.12.9-4  Common files for the GTK+ graphica
ii  libjpeg62  6b-14 The Independent JPEG Group's JPEG 
ii  libkrb53   1.6.dfsg.3-2  MIT Kerberos runtime libraries
ii  libpango1.0-0  1.20.2-2  Layout and rendering of internatio
ii  libpng12-0 1.2.27-1  PNG library - runtime
ii  libtiff4   3.8.2-8   Tag Image File Format (TIFF) libra
ii  libx11-6   2:1.0.3-7 X11 client-side library
ii  libxcomposite1 1:0.4.0-3 X11 Composite extension library
ii  libxcursor11:1.1.9-1 X cursor management library
ii  libxdamage11:1.1.1-4 X11 damaged region extension libra
ii  libxext6   2:1.0.4-1 X11 miscellaneous extension librar
ii  libxfixes3 1:4.0.3-2 X11 miscellaneous 'fixes' extensio
ii  libxi6 2:1.1.3-1 X11 Input extension library
ii  libxinerama1   2:1.0.3-2 X11 Xinerama extension library
ii  libxrandr2 2:1.2.2-2 X11 RandR extension library
ii  libxrender11:0.9.4-1 X Rendering Extension client libra
ii  zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime

Versions of packages libgtk2.0-0 recommends:
ii  hicolor-icon-theme0.10-1 default fallback theme for FreeDes
pn  libgtk2.0-bin  (no description available)

-- no debconf information



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#483982: marked as done (workbone: FTBFS: storage size of 'ust' isn't known)

[Debian Bug Tracking System]

Your message dated Thu, 05 Jun 2008 00:32:17 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#483982: fixed in workbone 2.40-9
has caused the Debian Bug report #483982,
regarding workbone: FTBFS: storage size of 'ust' isn't known
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
483982: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=483982
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: workbone
Version: 2.40-8
Severity: serious

From my pbuilder build log (on amd64, haven't tested it on i386 or any other
arch):

...
 debian/rules build
dh_testdir
/usr/bin/make CFLAGS='-Wall -g -O2' LDFLAGS=""
make[1]: Entering directory `/tmp/buildd/workbone-2.40'
gcc -Wall -Wmissing-prototypes  -Wall -g -O2 -c workbone.c
gcc -Wall -Wmissing-prototypes  -Wall -g -O2 -c hardware.c
hardware.c: In function 'cd_status':
hardware.c:187: warning: implicit declaration of function 'strcpy'
hardware.c:187: warning: incompatible implicit declaration of built-in function 
'strcpy'
hardware.c: In function 'eject_cd':
hardware.c:566: error: storage size of 'ust' isn't known
hardware.c:578: warning: implicit declaration of function 'ustat'
hardware.c:566: warning: unused variable 'ust'
make[1]: *** [hardware.o] Error 1
make[1]: Leaving directory `/tmp/buildd/workbone-2.40'
make: *** [build] Error 2
dpkg-buildpackage: failure: debian/rules build gave error exit status 2
-- 
Daniel Schepler


--- End Message ---
--- Begin Message ---
Source: workbone
Source-Version: 2.40-9

We believe that the bug you reported is fixed in the latest version of
workbone, which is due to be installed in the Debian FTP archive:

workbone_2.40-9.diff.gz
  to pool/main/w/workbone/workbone_2.40-9.diff.gz
workbone_2.40-9.dsc
  to pool/main/w/workbone/workbone_2.40-9.dsc
workbone_2.40-9_amd64.deb
  to pool/main/w/workbone/workbone_2.40-9_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Mike O'Connor <[EMAIL PROTECTED]> (supplier of updated workbone package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed, 04 Jun 2008 19:59:34 -0400
Source: workbone
Binary: workbone
Architecture: source amd64
Version: 2.40-9
Distribution: unstable
Urgency: low
Maintainer: Debian QA Group <[EMAIL PROTECTED]>
Changed-By: Mike O'Connor <[EMAIL PROTECTED]>
Description: 
 workbone   - A simple text-based CD player
Closes: 483982
Changes: 
 workbone (2.40-9) unstable; urgency=low
 .
   * QA upload.
   * Reverting incorrect and unnecessary fix for #427592 (Closes: #483982)
Checksums-Sha1: 
 a1d0b8df9ff31ea1a9b60e2afc0a591ef4f2daa0 942 workbone_2.40-9.dsc
 e30cd5c66d5865898d990ea5a7a13420f9e15d00 4997 workbone_2.40-9.diff.gz
 5d84aec2605315485e1f2e9dd076db5520dadf31 16974 workbone_2.40-9_amd64.deb
Checksums-Sha256: 
 3c09b5e78c579ee107dd3b1c3b398dcd7368fd6818be71efda1f51d83e71d3df 942 
workbone_2.40-9.dsc
 54f8dcfbe4599cee449decd404c4e6970730700c71189b6ecd214094d00838bf 4997 
workbone_2.40-9.diff.gz
 d8ae3769dfdea194c43b62b928cac2458692844727af72c2d26ba442cda2bd34 16974 
workbone_2.40-9_amd64.deb
Files: 
 ceaaacd0143cb337af644ed60cfaf238 942 sound optional workbone_2.40-9.dsc
 96e73d3943923aa1fcb960abccee6cc5 4997 sound optional workbone_2.40-9.diff.gz
 c70e10184376d8d0ec4d95315c5e3010 16974 sound optional workbone_2.40-9_amd64.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFIRy1t9Cbhsr6b+NoRAszmAKCqN0yiEtzG4FV6dqmiLkniHIFY+ACcCAnE
masoqKwXurVS4WMgkQ3luGo=
=V5xS
-END PGP SIGNATURE-


--- End Message ---

Processed: your mail

[Debian Bug Tracking System]

Processing commands for [EMAIL PROTECTED]:

> tags 484192 pending
Bug#484192: mctools-lite: FTBFS: hardware.c:471: error: storage size of 'ust' 
isn't known
There were no tags set.
Tags added: pending

>
End of message, stopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484351: 2.0.2-ruby1.8.7-compat rails branch

[Antonio Terceiro]

Hi,

I'm maintaining a branch with rails 2.0.2 + known 1.8.7-compatibility
changes cherry-picked from upstream rails on alioth:

http://git.debian.org/?p=users/terceiro-guest/rails.git;a=summary

See the 2.0.2-ruby1.8.7-compat branch. AFAICT it works, and my
current rails project is working with this branch.

Just realized that uploading rails 2.1 would solve the problem, are
there any plans doing that for lenny?

-- 
Antonio Terceiro <[EMAIL PROTECTED]>
http://people.softwarelivre.org/~terceiro/
GnuPG ID: 0F9CB28F





-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#473400: xlockmore: xlock shouldn't unlock the screen if screensaver fails

[Nico Golde]

Hi Timo,
* Timo Sirainen <[EMAIL PROTECTED]> [2008-06-05 01:57]:
> On Thu, 2008-06-05 at 01:48 +0200, Nico Golde wrote:
> > Hi Timo,
> > I agree this needs to be fixed. Can you provide any help in 
> > debugging this? For example which screensaver did you use?
> 
> I just typed "xlock", which used random screensavers. It takes about
> 20-60 minutes to crash, but I guess I could try leaving xlock running in
> gdb and see if backtrace shows the screensaver.

This would be nice.

> But anyway I don't think fixing this specific crash is enough. The
> screensavers are complex and there are probably a lot of potential
> crashes.

Sorry I was not clear enough about this. Of course I agree 
that fixing the screensaver is not the right solution but 
fixing xlock to not die if the underlying screensaver dies.

Kind regards
Nico
-- 
Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.


pgpIPJ0uzUVa5.pgp
Description: PGP signature

Bug#473400: xlockmore: xlock shouldn't unlock the screen if screensaver fails

[Timo Sirainen]

On Thu, 2008-06-05 at 01:48 +0200, Nico Golde wrote:
> Hi Timo,
> I agree this needs to be fixed. Can you provide any help in 
> debugging this? For example which screensaver did you use?

I just typed "xlock", which used random screensavers. It takes about
20-60 minutes to crash, but I guess I could try leaving xlock running in
gdb and see if backtrace shows the screensaver.

But anyway I don't think fixing this specific crash is enough. The
screensavers are complex and there are probably a lot of potential
crashes.



signature.asc
Description: This is a digitally signed message part

Bug#483123: iceweasel: Iceweasel does not work

[Jacek Sowiński]

Same issue with iceweasel-l10n-pl.

Regards.
-- 
Jacek Sowiński aka "mruwek"




-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484573: patch

[Junichi Uekawa]

Hi, 

a patch like the following should fix the symptom.

I'm a bit worried that this error did not get caught before; do you do
install testing?



diff -ru c-ares-1.5.2-orig/debian/control c-ares-1.5.2/debian/control
--- c-ares-1.5.2-orig/debian/control2008-06-05 08:46:11.0 +0900
+++ c-ares-1.5.2/debian/control 2008-06-05 08:46:48.185888578 +0900
@@ -27,6 +27,7 @@
 Conflicts: libcares2
 Architecture: any
 Depends: ${shlibs:Depends}, ${misc:Depends}
+Replaces: libc-ares1
 Description: library for asyncronous name resolves
  c-ares is a C library that performs DNS requests 
  and name resolves asynchronously. 



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#473400: xlockmore: xlock shouldn't unlock the screen if screensaver fails

[Nico Golde]

Hi Timo,
I agree this needs to be fixed. Can you provide any help in 
debugging this? For example which screensaver did you use?

Kind regards
Nico

-- 
Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.


pgprzfQzT5nzX.pgp
Description: PGP signature

Bug#484463: marked as done (.pc files indirectly adds --export-dynamic to the linker flags)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 23:47:03 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#484463: fixed in enchant 1.3.0-5.1
has caused the Debian Bug report #484463,
regarding .pc files indirectly adds --export-dynamic to the linker flags
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
484463: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=484463
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: libenchant-dev
Version: 1.3.0-5+b1
Severity: serious

enchant.pc requires gmodule-2.0. Which adds --export-dynamic, which breaks
libraries that use version scripts for linking (as in it forces all symbols to
be exported not only the one in defined as global in the version scripts). For
exactly this reason the gmodule-no-export-2.0 file exists.

So the fix is to simply require gmodule-no-export-2.0 instead of gmodule-2.0

Marking this as serious, because imho it's RC as it lets libraries more ABI
then they want to.

  Sjoerd

-- System Information:
Debian Release: lenny/sid
  APT prefers oldstable
  APT policy: (500, 'oldstable'), (500, 'unstable'), (500, 'testing'), (101, 
'experimental')
Architecture: powerpc (ppc)

Kernel: Linux 2.6.25-2-powerpc
Locale: LANG=C, LC_CTYPE=nl_NL (charmap=ISO-8859-1)
Shell: /bin/sh linked to /bin/dash

Versions of packages libenchant-dev depends on:
ii  libenchant1c2a1.3.0-5+b1 a wrapper library for various spel

libenchant-dev recommends no packages.

-- no debconf information


--- End Message ---
--- Begin Message ---
Source: enchant
Source-Version: 1.3.0-5.1

We believe that the bug you reported is fixed in the latest version of
enchant, which is due to be installed in the Debian FTP archive:

enchant_1.3.0-5.1.diff.gz
  to pool/main/e/enchant/enchant_1.3.0-5.1.diff.gz
enchant_1.3.0-5.1.dsc
  to pool/main/e/enchant/enchant_1.3.0-5.1.dsc
libenchant-dev_1.3.0-5.1_powerpc.deb
  to pool/main/e/enchant/libenchant-dev_1.3.0-5.1_powerpc.deb
libenchant1c2a_1.3.0-5.1_powerpc.deb
  to pool/main/e/enchant/libenchant1c2a_1.3.0-5.1_powerpc.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Sjoerd Simons <[EMAIL PROTECTED]> (supplier of updated enchant package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed, 04 Jun 2008 22:42:56 +0100
Source: enchant
Binary: libenchant-dev libenchant1c2a
Architecture: source powerpc
Version: 1.3.0-5.1
Distribution: unstable
Urgency: medium
Maintainer: Masayuki Hatta (mhatta) <[EMAIL PROTECTED]>
Changed-By: Sjoerd Simons <[EMAIL PROTECTED]>
Description: 
 libenchant-dev - a wrapper library for various spell checker engines 
(development)
 libenchant1c2a - a wrapper library for various spell checker engines
Closes: 484463
Changes: 
 enchant (1.3.0-5.1) unstable; urgency=medium
 .
   * NMU
   * debian/patches/04_enchant.pc.dpatch
 - Added. Require gmodule-no-export-2.0 instead of gmodule-2.0 so
   --export-dynamic isn't added to the linker flags, which breaks libraries
   using linker script building against libenchant (Closes: #484463)
Checksums-Sha1: 
 45517724041c208b1ac6e3241283d617eb8c1439 1096 enchant_1.3.0-5.1.dsc
 bfd0462de8f39efec01c4a92d4b20b812b0bf456 317652 enchant_1.3.0-5.1.diff.gz
 0b6c9138f78d18233d7f435944a184ad4363e916 59530 
libenchant-dev_1.3.0-5.1_powerpc.deb
 a72516caac16c6cf3d06af11f411640dbaa3eaa2 95732 
libenchant1c2a_1.3.0-5.1_powerpc.deb
Checksums-Sha256: 
 afae9c811252b745bd67f3a87b417e2f591d06f89014f43a8303b55789c78a22 1096 
enchant_1.3.0-5.1.dsc
 cd834deba43047fe1761f378d96bb7a4bfb44f92de6a3b9ad5ea96ab70ea92aa 317652 
enchant_1.3.0-5.1.diff.gz
 571152b6e9c0fbf5fc7fb1eabc445eb738c18245bda7170aef14f8f66bb03f27 59530 
libenchant-dev_1.3.0-5.1_powerpc.deb
 d2e20737bd0a0acf6c4c4c3fcb41b75aaa2577c53a8db145f45ca95b5790dd6f 95732 
libenchant1c2a_1.3.0-5.1_powerpc.deb
Files: 
 f647143b5c1d463a3914490ba33221ef 1096 devel optional enchant_1.3.0-5.1.dsc
 81b15a84925b2703aff2907370025039 317652 devel optional 
enchant_1.3.0-5.1.diff.gz
 7728de033d5975ff94822013b567ad88 59530 libdevel optional 
libenchant-dev_1.3.0-5.1_powerpc.deb
 ee4a912cf732920a02cfeceb890dd937 95732 libs optional 
libenchant1c2a_1.3.0-5.1

Bug#484574: libc-ares2: file conflicts

[Junichi Uekawa]

Package: libc-ares2
Version: 1.5.2-1
Severity: serious

libc-ares1 1.5.1-0 and libc-ares2 1.5.2-1 share
/usr/lib/libcares.so.2.0.0


dpkg: /var/cache/apt/archives/libc-ares2_1.5.2-1_amd64.deb の処理中にエラーが発生しました 
(--unpack):
 `/usr/lib/libcares.so.2.0.0' を上書きしようとしています。これはパッケージ libc-ares1 にも含まれています


regards,
junichi
-- 
[EMAIL PROTECTED],netfort.gr.jp}   Debian Project



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484573: libc-ares-dev: file conflicts

[Junichi Uekawa]

Package: libc-ares-dev
Version: 1.5.2-1
Severity: serious

libc-ares1 1.5.1-0 and libc-ares2 1.5.2-1 share
/usr/lib/libcares.so.2.0.0


dpkg: /var/cache/apt/archives/libc-ares2_1.5.2-1_amd64.deb の処理中にエラーが発生しました 
(--unpack):
 `/usr/lib/libcares.so.2.0.0' を上書きしようとしています。これはパッケージ libc-ares1 にも含まれています


regards,
junichi
-- 
[EMAIL PROTECTED],netfort.gr.jp}   Debian Project



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484570: [motion] motion.conf world readable and thus writable through web interface by default

[Nico Golde]

Package: motion
Version: 3.2.3-2.1
Severity: grave
Tags: security
X-Debbugs-CC: [EMAIL PROTECTED]

Hi,
the default configuration file of motion is world-readable 
in default installations on Debian:
ls -l /etc/motion/motion.conf
-rw-r--r-- 1 root root 22085  5. Jun 00:49 /etc/motion/motion.conf

That basically makes the control_authentication which is 
used for http authentication useless as an attacker can read 
login credentials and then change the configuration to 
whatever he likes via the web interface of motion (for 
example switching off motion detection).

Kind regards
Nico

--- System information. ---
Architecture: amd64
Kernel:   Linux 2.6.24-1-amd64

Debian Release: lenny/sid
  500 unstabledebian.netcologne.de 

--- Package information. ---
Depends  (Version) | Installed
==-+-===
libavcodec51(>= 0.svn20080206) | 0.svn20080206-7
libavformat52   (>= 0.svn20080206) | 0.svn20080206-7
libavutil49 (>= 0.svn20080206) | 0.svn20080206-7
libc6   (>= 2.7-1) | 2.7-12
libjpeg62  | 6b-14
libmysqlclient15off  (>= 5.0.27-1) | 5.0.51a-6
libpq5  (>= 8.3~beta1) | 8.3.1-2+b1
debconf  (>= 0.5)  | 1.5.22
 OR debconf-2.0| 
adduser| 3.107
debconf| 1.5.22


-- 
Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.


pgpQgQ8lkLo7j.pgp
Description: PGP signature

Bug#482053: marked as done (xfsprogs: xfs_growfs will create unmountable filesystem on 32bit OS)

[Debian Bug Tracking System]

Your message dated Thu, 05 Jun 2008 09:04:20 +1000
with message-id <[EMAIL PROTECTED]>
and subject line 
has caused the Debian Bug report #482053,
regarding xfsprogs: xfs_growfs will create unmountable filesystem on 32bit OS
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
482053: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=482053
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: xfsprogs
Version: 2.8.11-1
Severity: critical
Justification: breaks the whole system

XFS on 32bit Linux cannot mount filesystems >16T see:
http://oss.sgi.com/archives/xfs/2008-01/msg00124.html

xfs_grow will grow a filsystem larger than this which will function
untill the system is rebooted, at which point the filsystem becomes
inaccessable.  The resultant filesystem is readable on 64bit
architectures. 

xfs_growfs should at least warn of this condition, possibly it should
refuse to to grow filesystems over 16T on 32bit architectures.



-- System Information:
Debian Release: 4.0
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: i386 (i386)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18.8-csail
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)

Versions of packages xfsprogs depends on:
ii  lib 2.3.6.ds1-13etch5GNU C Library: Shared libraries
ii  lib 5.2-2GNU readline and history libraries
ii  lib 1.39+1.40-WIP-2006.11.14+dfsg-2etch1 universally unique id library

xfsprogs recommends no packages.

-- no debconf information


--- End Message ---
--- Begin Message ---
This problem was resolved in the XFS growfs code in the kernel,
so closing out this bug now.

cheers.

-- 
Nathan


--- End Message ---

Bug#480309: marked as done (Crash at startup)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 22:02:09 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#480309: fixed in freevo 1.8.1-0
has caused the Debian Bug report #480309,
regarding Crash at startup
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
480309: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=480309
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: freevo
Version: 1.8.0-2
Severity: serious

Hi,

I don't know why but here it just crashes:

Error: VIDEO_SHOW_DATA_DIR not found
ROM_DRIVES: Auto-detected and added "('/media/cdrom0', '/dev/hda',
'CD-1')"

running as freevo user:

Error: can't find /home/freevo/static/TV.xml
Use xmltv to create this file or when you don't want to use the tv
module at all, add TV_CHANNELS = [] and plugin.remove('tv') to your
local_conf.py. TVguide is deactivated now.

PyLirc not found, lirc remote control disabled!

Please run 'freevo cache'

PyLirc not found, lirc remote control disabled!
error opening file /home/freevo/cache/vfs/home/freevo/cache/skin-111
Crash!: Buffer length does not equal format and resolution size
Traceback (most recent call last):
  File "/usr/lib/python2.5/site-packages/freevo/main.py", line 459, in

plugin.init(splash.progress)
  File "/usr/share/pyshared/freevo/plugin.py", line 312, in init
callback(int((float(current) / len(__all_plugins__)) * 100))
  File "/usr/lib/python2.5/site-packages/freevo/main.py", line 239, in
progress
skin.draw('splashscreen', None)
  File "/usr/share/pyshared/freevo/skins/main/main.py", line 529, in
draw
a.draw(settings, object, menu, style, type, self.force_redraw)
  File "/usr/share/pyshared/freevo/skins/main/area.py", line 187, in
draw
self.__draw_background__()
  File "/usr/share/pyshared/freevo/skins/main/area.py", line 585, in
__draw_background__
image = pygamesurface_imlib2_scale(image, (bg.width,bg.height))
  File "/usr/share/pyshared/freevo/skins/main/skin_utils.py", line 55,
in pygamesurface_imlib2_scale
return pygame.image.frombuffer(buf, newsize, 'RGBA')
ValueError: Buffer length does not equal format and resolution size
Traceback (most recent call last):
  File "/usr/bin/freevo.real", line 410, in 
if not stop(name, python + proc):
  File "/usr/bin/freevo.real", line 223, in stop
time.sleep(0.1)
KeyboardInterrupt


Running as me:

[...]
PyLirc not found, lirc remote control disabled!
Crash!: Buffer length does not equal format and resolution size
Traceback (most recent call last):
  File "/usr/lib/python2.5/site-packages/freevo/main.py", line 459, in

plugin.init(splash.progress)
  File "/usr/share/pyshared/freevo/plugin.py", line 312, in init
callback(int((float(current) / len(__all_plugins__)) * 100))
  File "/usr/lib/python2.5/site-packages/freevo/main.py", line 239, in
progress
skin.draw('splashscreen', None)
  File "/usr/share/pyshared/freevo/skins/main/main.py", line 529, in
draw
a.draw(settings, object, menu, style, type, self.force_redraw)
  File "/usr/share/pyshared/freevo/skins/main/area.py", line 187, in
draw
self.__draw_background__()
  File "/usr/share/pyshared/freevo/skins/main/area.py", line 585, in
__draw_background__
image = pygamesurface_imlib2_scale(image, (bg.width,bg.height))
  File "/usr/share/pyshared/freevo/skins/main/skin_utils.py", line 55,
in pygamesurface_imlib2_scale
return pygame.image.frombuffer(buf, newsize, 'RGBA')
ValueError: Buffer length does not equal format and resolution size


-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.24-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages freevo depends on:
ii  adduser 3.107add and remove users and groups
ii  console-tools   1:0.2.3dbs-65.1  Linux console and font utilities
ii  debconf 1.5.21   Debian configuration management sy
ii  freevo-data 1.8.0-2  Themes and non-application data fo
ii  lsdvd   0.16-3   read the content info of a DVD
ii  mplayer 1:1.0.rc2svn20080417-0.0 The Ultimate Movie Player For Linu
ii  python  2.5.2-1  An interactive high-level object-o
ii  python-central  0.6.6register and build utility for Pyt
ii  python-freevo   1.8.0-2  Python modules for Freevo

Versions of packages freevo recommends:
ii  cdparanoia  3.10+debian~pr

Processed: tagging 484351

[Debian Bug Tracking System]

Processing commands for [EMAIL PROTECTED]:

> # Automatically generated email from bts, devscripts version 2.10.28
> tags 484351 - patch
Bug#484351: rails: breaks with ruby 1.8.7
Tags were: patch
Tags removed: patch

>
End of message, stopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#395252: software embedding ffmpeg

[A Mennucc]

hi,

I have been trying to address this bug from time to time , but with no
success so far ; up to some time ago, the version of ffmpeg-free in
unstable was 0.cvs20070307 , and that had an difference in a fundamental
C structure in a header, wrt mplayer.

Joey Hess ha scritto:
> So is there any reason why
> mplayer should not statically link to the packaged version, as kino,
> vlc, etc do?

By looking at the code 0.svn20080206 (that was in experimental , and is
in unstable since 19 may), it would seem that static linking would be
possible; but when I try to link , I get these errors

libavformat/libavformat.a(aviobuf.o): In function `ff_crc04C11DB7_update':
/home/debian/mplayer/ffmpeg-merge/ffmpeg-itself/ffmpeg-free-0.svn20080206/libavformat/aviobuf.c:321:
undefined reference to `av_crc_get_table'
libavformat/libavformat.a(asfcrypt.o): In function `ff_asfcrypt_dec':
/home/debian/mplayer/ffmpeg-merge/ffmpeg-itself/ffmpeg-free-0.svn20080206/libavformat/asfcrypt.c:152:
undefined reference to `ff_rc4_enc'
/home/debian/mplayer/ffmpeg-merge/ffmpeg-itself/ffmpeg-free-0.svn20080206/libavformat/asfcrypt.c:158:
undefined reference to `ff_des_encdec'
/home/debian/mplayer/ffmpeg-merge/ffmpeg-itself/ffmpeg-free-0.svn20080206/libavformat/asfcrypt.c:162:
undefined reference to `ff_rc4_enc'
libavformat/libavformat.a(mpegts.o): In function `write_section_data':
/home/debian/mplayer/ffmpeg-merge/ffmpeg-itself/ffmpeg-free-0.svn20080206/libavformat/mpegts.c:264:
undefined reference to `av_crc_get_table'
libavformat/libavformat.a(mpegtsenc.o): In function `mpegts_write_section':
/home/debian/mplayer/ffmpeg-merge/ffmpeg-itself/ffmpeg-free-0.svn20080206/libavformat/mpegtsenc.c:46:
undefined reference to `av_crc_get_table'
libavformat/libavformat.a(nut.o): In function `ff_nut_add_sp':
/home/debian/mplayer/ffmpeg-merge/ffmpeg-itself/ffmpeg-free-0.svn20080206/libavformat/nut.c:52:
undefined reference to `av_tree_node_size'
collect2: ld returned 1 exit status

Unfortunately, I do not yet understand why.

a.




-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484479: marked as done (Fails to start vservers (capget(): Invalid argument))

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 21:47:05 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#484479: fixed in util-vserver 0.30.215-4
has caused the Debian Bug report #484479,
regarding Fails to start vservers (capget(): Invalid argument)
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
484479: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=484479
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: util-vserver
Version: 0.30.215-3
Severity: grave

Hi

some upgrade of util-vserver made all attempts to start vserver fail
with:

# vserver pmademo start
capget(): Invalid argument
capabilities are not enabled in kernel-setup


Failed to start vserver 'pmademo'

Downgrading backt to 0.30.214-6 the problem is gone (this is latest
amd64 binary I found on snapshots.debian.net), but if I rebuild this
version from source, I get exacly same error, so the problem might be
actually caused by some statically linked code.

-- 
Michal Čihař | http://cihar.com | http://blog.cihar.com


-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.22-4-vserver-amd64 (SMP w/1 CPU core)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages util-vserver depends on:
ii  debconf   1.5.22 Debian configuration management sy
ii  iproute   20080417-1 networking and traffic control too
ii  libbeecrypt6  4.1.2-7open source C library of cryptogra
ii  libc6 2.7-12 GNU C Library: Shared libraries
ii  make  3.81-5 The GNU version of the "make" util
ii  net-tools 1.60-19The NET-3 networking toolkit

Versions of packages util-vserver recommends:
ii  binutils2.18.1~cvs20080103-6 The GNU assembler, linker and bina
ii  debootstrap 1.0.9Bootstrap a basic Debian system

-- debconf information:
  util-vserver/postrm_remove_vserver_configs: false
  util-vserver/prerm_stop_running_vservers: true


--- End Message ---
--- Begin Message ---
Source: util-vserver
Source-Version: 0.30.215-4

We believe that the bug you reported is fixed in the latest version of
util-vserver, which is due to be installed in the Debian FTP archive:

util-vserver_0.30.215-4.diff.gz
  to pool/main/u/util-vserver/util-vserver_0.30.215-4.diff.gz
util-vserver_0.30.215-4.dsc
  to pool/main/u/util-vserver/util-vserver_0.30.215-4.dsc
util-vserver_0.30.215-4_i386.deb
  to pool/main/u/util-vserver/util-vserver_0.30.215-4_i386.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Micah Anderson <[EMAIL PROTECTED]> (supplier of updated util-vserver package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Sun, 01 Jun 2008 23:43:01 -0400
Source: util-vserver
Binary: util-vserver
Architecture: source i386
Version: 0.30.215-4
Distribution: unstable
Urgency: low
Maintainer: Micah Anderson <[EMAIL PROTECTED]>
Changed-By: Micah Anderson <[EMAIL PROTECTED]>
Description: 
 util-vserver - user-space tools for Linux-VServer virtual private servers
Closes: 484479
Changes: 
 util-vserver (0.30.215-4) unstable; urgency=low
 .
   * add patch 20newapi.dpatch which supports new kernel
 API headers this is needed because debian's
 linux-libc-dev is at 2.6.25 (Closes: #484479)
Checksums-Sha1: 
 559e6f08512b1e393694e98aa6ad317bd4af46b6 1461 util-vserver_0.30.215-4.dsc
 8502d82f3474ebe7ad2bff5c255a153aa4df9b30 34962 util-vserver_0.30.215-4.diff.gz
 90f33406c650642dce59be7fbc45232594a52741 566250 
util-vserver_0.30.215-4_i386.deb
Checksums-Sha256: 
 ae1c438f3a555e60e0af3ed7f0575fa0bcd2c0b7c5e1072f75b206a7d7adff36 1461 
util-vserver_0.30.215-4.dsc
 6d7f62eb608f432667e5a1e0d4eda457d4606cec1c0fefe51c7cf590d096a6ec 34962 
util-vserver_0.30.215-4.diff.gz
 9dabe271309d8b1f806b97b6c3704fb15185d13243f956210c11fcabe0abf9f4 566250 
util-vserver_0.30.215-4_i386.deb
Files: 
 9fea57cae8312601e09a23977439d8fe 1461 net optional util-vserver_0

Processed: ardour - FTBFS: Built-in libsigc++, broken

[Debian Bug Tracking System]

Processing commands for [EMAIL PROTECTED]:

> tag 474422 patch
Bug#474422: ardour - FTBFS: Built-in libsigc++, broken
There were no tags set.
Tags added: patch

> thanks
Stopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#474422: ardour - FTBFS: Built-in libsigc++, broken

[Roland Stigge]

tag 474422 patch
thanks

Hi,

I'm attaching a patch that makes ardour 2.4.1-1 build with gcc/stdlibc++
4.3.

Yes, I know that upstream already fixed it in SVN and the next upstream
release will contain the fixes. However, I just want to make the fix
visible in the BTS to prevent duplicated effort and to make the state of
the issue clear. (I just made ardour 2.4.1-1 build/work on my mac.)

bye,
  Roland
only in patch2:
unchanged:
--- ardour-2.4.1.orig/gtk2_ardour/editing.h
+++ ardour-2.4.1/gtk2_ardour/editing.h
@@ -21,6 +21,7 @@
 #define __gtk_ardour_editing_h__
 
 #include 
+#include 
 #include 
 #include 
 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/gtk2_ardour/fft_result.cc
+++ ardour-2.4.1/gtk2_ardour/fft_result.cc
@@ -22,6 +22,7 @@
 #include 
 #include 
 #include 
+#include 
 #include 
 
 #include 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/gtk2_ardour/actions.cc
+++ ardour-2.4.1/gtk2_ardour/actions.cc
@@ -20,6 +20,7 @@
 #include 
 #include 
 #include 
+#include 
 
 #include 
 #include 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/gtkmm2/gtk/gtkmm/targetentry.cc
+++ ardour-2.4.1/libs/gtkmm2/gtk/gtkmm/targetentry.cc
@@ -22,6 +22,7 @@
 
 #include 
 
+#include 
 
 namespace Gtk
 {
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/gtkmm2/gtk/gtkmm/scale.cc
+++ ardour-2.4.1/libs/gtkmm2/gtk/gtkmm/scale.cc
@@ -31,6 +31,7 @@
 #include 
 #include 
 #include 
+#include 
 
 namespace Gtk
 {
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/midi++2/midichannel.cc
+++ ardour-2.4.1/libs/midi++2/midichannel.cc
@@ -18,6 +18,8 @@
 $Id: midichannel.cc 4 2005-05-13 20:47:18Z taybin $
 */
 
+#include 
+
 #include 
 #include 
 #include 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/midi++2/mtc.cc
+++ ardour-2.4.1/libs/midi++2/mtc.cc
@@ -21,6 +21,7 @@
 #include 
 #include 
 #include 
+#include 
 #include 
 
 #include 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/midi++2/midiparser.cc
+++ ardour-2.4.1/libs/midi++2/midiparser.cc
@@ -24,6 +24,7 @@
 #include 
 #include 
 #include 
+#include 
 #include 
 #include 
 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/midi++2/fd_midiport.cc
+++ ardour-2.4.1/libs/midi++2/fd_midiport.cc
@@ -20,6 +20,7 @@
 
 #include 
 #include 
+#include 
 
 #include 
 #include 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/midi++2/midi.cc
+++ ardour-2.4.1/libs/midi++2/midi.cc
@@ -19,6 +19,7 @@
 */
 
 #include 
+#include 
 #include 
 #include 
 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/ardour/utils.cc
+++ ardour-2.4.1/libs/ardour/utils.cc
@@ -21,6 +21,7 @@
 #include 
 #include 
 #include 
+#include 
 #include 
 #include 
 #include 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/ardour/sndfilesource.cc
+++ ardour-2.4.1/libs/ardour/sndfilesource.cc
@@ -19,6 +19,7 @@
 
 #include 
 #include 
+#include 
 
 #include 
 #include 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/ardour/audioanalyser.cc
+++ ardour-2.4.1/libs/ardour/audioanalyser.cc
@@ -1,3 +1,5 @@
+#include 
+
 #include 
 #include 
 #include 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/ardour/recent_sessions.cc
+++ ardour-2.4.1/libs/ardour/recent_sessions.cc
@@ -18,6 +18,7 @@
 */
 
 #include 
+#include 
 #include 
 #include 
 #include 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/ardour/ardour/silentfilesource.h
+++ ardour-2.4.1/libs/ardour/ardour/silentfilesource.h
@@ -20,6 +20,8 @@
 #ifndef __ardour_silentfilesource_h__ 
 #define __ardour_silentfilesource_h__
 
+#include 
+
 #include 
 
 namespace ARDOUR {
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/ardour/ardour/buffer.h
+++ ardour-2.4.1/libs/ardour/ardour/buffer.h
@@ -21,6 +21,7 @@
 
 #define _XOPEN_SOURCE 600
 #include  // for posix_memalign
+#include 
 #include 
 #include 
 #include 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/ardour/ardour/port.h
+++ ardour-2.4.1/libs/ardour/ardour/port.h
@@ -20,6 +20,7 @@
 #ifndef __ardour_port_h__
 #define __ardour_port_h__
 
+#include 
 #include 
 #include 
 #include 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/pbd/pool.cc
+++ ardour-2.4.1/libs/pbd/pool.cc
@@ -20,6 +20,7 @@
 
 #include 
 #include 
+#include 
 
 #include 
 #include 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/pbd/pathscanner.cc
+++ ardour-2.4.1/libs/pbd/pathscanner.cc
@@ -20,6 +20,7 @@
 
 #include 
 #include 
+#include 
 #include 
 #include 
 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/pbd/base_ui.cc
+++ ardour-2.4.1/libs/pbd/base_ui.cc
@@ -22,6 +22,8 @@
 #include 
 #include 
 
+#include 
+
 #include 
 #include 
 #include 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/pbd/mountpoint.cc
+++ ardour-2.4.1/libs/pbd/mountpoint.cc
@@ -19,6 +19,7 @@
 */
 
 #include 
+#include 
 #include 
 #include 
 
only in patch2:
unchanged:
--- ardour-2.4.1.orig/libs/pbd/pbd/ringbuffer.h
+++ ardour-2.4.1/libs/pbd/pbd/ringbuffer.h
@@ -20,6 +20,8 @@
 #ifndef ringbuffer_h
 #define ringbuffer_h
 
+#include 
+
 #include 
 
 template
only in patch2:

Bug#484492: marked as done (unsatisfiable versioned dep)

[Debian Bug Tracking System]

Your message dated Wed, 4 Jun 2008 23:27:19 +0200
with message-id <[EMAIL PROTECTED]>
and subject line Re: unsatisfiable versioned dep 
has caused the Debian Bug report #484492,
regarding unsatisfiable versioned dep
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
484492: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=484492
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: gcj, gij, libgcj-bc
Version: 4:4.3.0-7
Severity: serious

$ apt-cache show gcj | grep Depends
Depends: cpp (>= 4:4.3.0-8), gij (>= 4:4.3.0-8), gcj-4.3 (>= 4.3.0-5)


   gcj-4.3 |4.3.0-3 |   testing | source, amd64, armel, i386, ia64, 
mips, mipsel, powerpc, s390, sparc
   gcj-4.3 |4.3.0-3 |  unstable | source, amd64, armel, i386, ia64, 
m68k, mips, mipsel, powerpc, s390, sparc

And neither is a newer gcj-4.3 uploaded.

Sme for gij and libgcj-bc with libgcj9-0 (>= 4.3.0-5).

Regards,

Rene

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.25-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages gcj depends on:
ii  cpp   4:4.3.0-8  The GNU C preprocessor (cpp)
ii  gcj-4.3   4.3.0-3The GNU compiler for Java(TM)
ii  gij   4:4.3.0-7  The GNU Java bytecode interpreter

gcj recommends no packages.

-- debconf-show failed


--- End Message ---
--- Begin Message ---
gcj-4.3.0-5 is uploaded.

--- End Message ---

Bug#484555: linux-headers-2.6.22-3-amd64: Broken dependency with linux-kbuild-2.6.22

[Jaime Alberto Silva]

Package: linux-headers-2.6.22-3-amd64
Severity: grave
Justification: renders package unusable

*** Please type your report below this line ***
I can't install this package because it depends on linux-kbuild-2.6.22
and the package linux-kbuild-2.6.22 does not exist.

-- System Information:
Debian Release: lenny/sid
  APT prefers testing
  APT policy: (900, 'testing'), (800, 'unstable'), (500, 'hardy')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.22-3-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash


-- 
Jaime Alberto Silva
Ingeniero Electricista
http://jaimealbertosilva.blogspot.com/

Processed: ardour: FTBFS: build times out

[Debian Bug Tracking System]

Processing commands for [EMAIL PROTECTED]:

> tag 458660 unreproducible
Bug#458660: ardour: FTBFS: build times out
There were no tags set.
Tags added: unreproducible

> severity 458660 normal
Bug#458660: ardour: FTBFS: build times out
Severity set to `normal' from `serious'

> thanks
Stopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#481071: marked as done (python-pygame: pygame.image.fromstring does not work)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 21:17:19 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#481071: fixed in pygame 1.8.0release-0
has caused the Debian Bug report #481071,
regarding python-pygame: pygame.image.fromstring does not work
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
481071: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=481071
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: python-pygame
Version: 1.7.1release-4.1+b1sam1
Severity: important

The attached python code does not seem to work. If I patch pygame with
the attached patch, it is revealed that the call to
PyString_AsStringAndSize in image_fromstring is corrupting the value of
h, causing the image size sanity check later in the code to fail!

$ ./pyg1.py 
h = 192
h = 0
Traceback (most recent call last):
  File "./pyg1.py", line 7, in 
i = pygame.image.fromstring (str (s.get_data ()), (256, 192), 'RGBA')
ValueError: String length does not equal format and resolution size

-- System Information:
Debian Release: lenny/sid
  APT prefers testing
  APT policy: (530, 'testing'), (520, 'unstable'), (510, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.25-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages python-pygame depends on:
ii  libc62.7-10  GNU C Library: Shared libraries
ii  libsdl-image1.2  1.2.6-3 image loading library for Simple D
ii  libsdl-mixer1.2  1.2.8-3 mixer library for Simple DirectMed
ii  libsdl-ttf2.0-0  2.0.9-1 ttf library for Simple DirectMedia
ii  libsdl1.2debian  1.2.13-2Simple DirectMedia Layer
ii  libsmpeg00.4.5+cvs20030824-2 SDL MPEG Player Library - shared l
ii  python   2.5.2-1 An interactive high-level object-o
ii  python-central   0.6.6   register and build utility for Pyt
ii  python-numeric   24.2-8.2Numerical (matrix-oriented) Mathem

python-pygame recommends no packages.

-- no debconf information
#!/usr/bin/python

import cairo
import pygame

s = cairo.ImageSurface (cairo.FORMAT_ARGB32, 256, 192)
i = pygame.image.fromstring (str (s.get_data ()), (256, 192), 'RGBA')
diff --git a/src/image.c b/src/image.c
index 3deb089..40cba47 100644
--- a/src/image.c
+++ b/src/image.c
@@ -20,6 +20,8 @@
 [EMAIL PROTECTED]
 */
 
+#include 
+
 /*
  *  image module for pygame
  */
@@ -614,7 +616,9 @@ PyObject* image_fromstring(PyObject* self, PyObject* arg)
 	if(w < 1 || h < 1)
 		return RAISE(PyExc_ValueError, "Resolution must be positive values");
 
+	fprintf (stderr, "h = %i\n", h);
 	PyString_AsStringAndSize(string, &data, &len);
+	fprintf (stderr, "h = %i\n", h);
 
 	if(!strcmp(format, "P"))
 	{
--- End Message ---
--- Begin Message ---
Source: pygame
Source-Version: 1.8.0release-0

We believe that the bug you reported is fixed in the latest version of
pygame, which is due to be installed in the Debian FTP archive:

pygame_1.8.0release-0.diff.gz
  to pool/main/p/pygame/pygame_1.8.0release-0.diff.gz
pygame_1.8.0release-0.dsc
  to pool/main/p/pygame/pygame_1.8.0release-0.dsc
pygame_1.8.0release.orig.tar.gz
  to pool/main/p/pygame/pygame_1.8.0release.orig.tar.gz
python-pygame_1.8.0release-0_i386.deb
  to pool/main/p/pygame/python-pygame_1.8.0release-0_i386.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
A Mennucc1 <[EMAIL PROTECTED]> (supplier of updated pygame package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed, 04 Jun 2008 20:36:19 +0200
Source: pygame
Binary: python-pygame
Architecture: source i386
Version: 1.8.0release-0
Distribution: experimental
Urgency: low
Maintainer: Ed Boraas <[EMAIL PROTECTED]>
Changed-By: A Mennucc1 <[EMAIL PROTECTED]>
Description: 
 python-pygame - SDL bindings for games development in Python
Closes: 473672 481071
Changes: 
 pygame (1.8.0release-0) experimental; urgency=low
 .
   * Non-maintainer upload.
   * New upstream release
 thanks to René Dudfield (Closes: #473672).
   * Bug fix: "python-pygam

Bug#473721: marked as done (directory conflict with libc6-i386)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 21:02:03 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#473721: fixed in gnu-efi 3.0e-2
has caused the Debian Bug report #473721,
regarding directory conflict with libc6-i386
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
473721: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=473721
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: gnu-efi
Version: 3.0d-1
Severity: serious

Hi,

Preparing to replace gnu-efi 3.0d-1 (using .../gnu-efi_3.0e-1_amd64.deb) ...
Unpacking replacement gnu-efi ...
dpkg: error processing /var/cache/apt/archives/gnu-efi_3.0e-1_amd64.deb 
(--unpack):
 trying to overwrite `/usr/lib32', which is also in package libc6-i386
dpkg-deb: subprocess paste killed by signal (Broken pipe)
Errors were encountered while processing:
 /var/cache/apt/archives/gnu-efi_3.0e-1_amd64.deb
E: Sub-process /usr/bin/dpkg returned an error code (1)

Regards,

Rene

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.24-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

-- no debconf information


--- End Message ---
--- Begin Message ---
Source: gnu-efi
Source-Version: 3.0e-2

We believe that the bug you reported is fixed in the latest version of
gnu-efi, which is due to be installed in the Debian FTP archive:

gnu-efi_3.0e-2.diff.gz
  to pool/main/g/gnu-efi/gnu-efi_3.0e-2.diff.gz
gnu-efi_3.0e-2.dsc
  to pool/main/g/gnu-efi/gnu-efi_3.0e-2.dsc
gnu-efi_3.0e-2_amd64.deb
  to pool/main/g/gnu-efi/gnu-efi_3.0e-2_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Nigel Croxon <[EMAIL PROTECTED]> (supplier of updated gnu-efi package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed, 04 Jun 2008 15:11:12 -0600
Source: gnu-efi
Binary: gnu-efi
Architecture: source amd64
Version: 3.0e-2
Distribution: unstable
Urgency: low
Maintainer: Nigel Croxon <[EMAIL PROTECTED]>
Changed-By: Nigel Croxon <[EMAIL PROTECTED]>
Description: 
 gnu-efi- Library for developing EFI applications
Closes: 473721 482077 482078
Changes: 
 gnu-efi (3.0e-2) unstable; urgency=low
 .
   * Fixes wrong lib when cross-building, Closes: #482077
   * Fixes x86_64 builds on i386, Closes: #482078
   * Acknowledge NMU, Closes: #473721
Checksums-Sha1: 
 130125e5726f1fa03df418ec88cf22c9f9b3bcec 1034 gnu-efi_3.0e-2.dsc
 4a58f54f81e057aff1aae625660c9939103dd72b 5170 gnu-efi_3.0e-2.diff.gz
 f4a07ca04e1997c10b7bb57c835c43f36a018c14 143626 gnu-efi_3.0e-2_amd64.deb
Checksums-Sha256: 
 b3838d7de1754e4512ff9719434ca867092440f6e838746f1dc1619eaab430e2 1034 
gnu-efi_3.0e-2.dsc
 7bd77ce331895a181bf5cc166a17a793d0d43cbeb82ee2a1b33d125f78821fc2 5170 
gnu-efi_3.0e-2.diff.gz
 253fd9ad123dd9c655373f8e59998ed8e3adeb152b70c8a5746dd2f8523c2425 143626 
gnu-efi_3.0e-2_amd64.deb
Files: 
 6f596877ee08348510e0e4c5c0c4aaca 1034 devel optional gnu-efi_3.0e-2.dsc
 fbb6bae53f15f75800c58460fe5998b8 5170 devel optional gnu-efi_3.0e-2.diff.gz
 7ff0490deae6d60e86d32789872e0a96 143626 devel optional gnu-efi_3.0e-2_amd64.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)

iD8DBQFIRwBczWFP1/XWUWkRAjXxAJwJK69lhSUzDXJHQ20YFbOvXn2OGgCgv9hE
Cm7IWc/9TXSKZ9KEedEn4ww=
=Bmai
-END PGP SIGNATURE-


--- End Message ---

Bug#484351: there is more stuff breaking with ruby 1.8.7

[Antonio Terceiro]

tags - patch
thanks

Hi,

I just found that there are more issues between rails and ruby 1.8.7, so
it's not that simple as the patch I sent before. For the record, looking
in upstream's git repository it seems that several things were done to
add compatibility with ruby 1.8.7:

-8<8<---
commit 7391f7728d96c2ec0113de57f3316c191043ad2c
Author: Jeremy Kemper <[EMAIL PROTECTED]>
Date:   Sat May 31 15:31:04 2008 -0700

Ruby 1.8.7 compat: work around broken DelegateClass#respond_to?

commit 4e4bcb4c6b08ed392cd5576dcfc252ef574a1b88
Author: Jeremy Kemper <[EMAIL PROTECTED]>
Date:   Sat May 31 14:54:17 2008 -0700

Ruby 1.8.7 compat: TimeWithZone# and Chars#respond_to? pass along the 
include_private argument

commit 1d18651ea36e2ba274b6c2e0fd4edd425e028589
Author: Jeremy Kemper <[EMAIL PROTECTED]>
Date:   Sun Apr 20 19:26:46 2008 -0700

Ruby 1.8.7 compat: detect and alias non-superclass DateTime#to_s

commit 0b21ac5118c293b43e5370d7a3da980514f089a2
Author: Jeremy Kemper <[EMAIL PROTECTED]>
Date:   Sun Apr 20 19:16:48 2008 -0700

Ruby 1.8.7 compat: override unordered Enumerable#group_by

commit 549c81db4a9ca941ea65ae2edafb0f34784f12f2
Author: Jeremy Kemper <[EMAIL PROTECTED]>
Date:   Sun Apr 20 17:52:21 2008 -0700

Ruby 1.8.7 compat: String#start_with? and #end_with?

commit f67b070facef6574df3c4386e3975242273fe456
Author: Jeremy Kemper <[EMAIL PROTECTED]>
Date:   Sat Apr 19 17:16:19 2008 -0700

Override incompatible 1.8.7p1 String#chars

commit db11ef9546b1ad16cf539395b75450c1c8e9714c
Author: Jeremy Kemper <[EMAIL PROTECTED]>
Date:   Fri Apr 18 14:50:10 2008 -0700

Override Ruby 1.8.7's incompatible Symbol#to_proc.
-8<8<---

-- 
Antonio Terceiro <[EMAIL PROTECTED]>
http://people.softwarelivre.org/~terceiro/
GnuPG ID: 0F9CB28F





-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#481071: marked as done (python-pygame: pygame.image.fromstring does not work)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 20:47:16 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#481071: fixed in pygame 1.7.1release-4.2
has caused the Debian Bug report #481071,
regarding python-pygame: pygame.image.fromstring does not work
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
481071: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=481071
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: python-pygame
Version: 1.7.1release-4.1+b1sam1
Severity: important

The attached python code does not seem to work. If I patch pygame with
the attached patch, it is revealed that the call to
PyString_AsStringAndSize in image_fromstring is corrupting the value of
h, causing the image size sanity check later in the code to fail!

$ ./pyg1.py 
h = 192
h = 0
Traceback (most recent call last):
  File "./pyg1.py", line 7, in 
i = pygame.image.fromstring (str (s.get_data ()), (256, 192), 'RGBA')
ValueError: String length does not equal format and resolution size

-- System Information:
Debian Release: lenny/sid
  APT prefers testing
  APT policy: (530, 'testing'), (520, 'unstable'), (510, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.25-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages python-pygame depends on:
ii  libc62.7-10  GNU C Library: Shared libraries
ii  libsdl-image1.2  1.2.6-3 image loading library for Simple D
ii  libsdl-mixer1.2  1.2.8-3 mixer library for Simple DirectMed
ii  libsdl-ttf2.0-0  2.0.9-1 ttf library for Simple DirectMedia
ii  libsdl1.2debian  1.2.13-2Simple DirectMedia Layer
ii  libsmpeg00.4.5+cvs20030824-2 SDL MPEG Player Library - shared l
ii  python   2.5.2-1 An interactive high-level object-o
ii  python-central   0.6.6   register and build utility for Pyt
ii  python-numeric   24.2-8.2Numerical (matrix-oriented) Mathem

python-pygame recommends no packages.

-- no debconf information
#!/usr/bin/python

import cairo
import pygame

s = cairo.ImageSurface (cairo.FORMAT_ARGB32, 256, 192)
i = pygame.image.fromstring (str (s.get_data ()), (256, 192), 'RGBA')
diff --git a/src/image.c b/src/image.c
index 3deb089..40cba47 100644
--- a/src/image.c
+++ b/src/image.c
@@ -20,6 +20,8 @@
 [EMAIL PROTECTED]
 */
 
+#include 
+
 /*
  *  image module for pygame
  */
@@ -614,7 +616,9 @@ PyObject* image_fromstring(PyObject* self, PyObject* arg)
 	if(w < 1 || h < 1)
 		return RAISE(PyExc_ValueError, "Resolution must be positive values");
 
+	fprintf (stderr, "h = %i\n", h);
 	PyString_AsStringAndSize(string, &data, &len);
+	fprintf (stderr, "h = %i\n", h);
 
 	if(!strcmp(format, "P"))
 	{
--- End Message ---
--- Begin Message ---
Source: pygame
Source-Version: 1.7.1release-4.2

We believe that the bug you reported is fixed in the latest version of
pygame, which is due to be installed in the Debian FTP archive:

pygame_1.7.1release-4.2.diff.gz
  to pool/main/p/pygame/pygame_1.7.1release-4.2.diff.gz
pygame_1.7.1release-4.2.dsc
  to pool/main/p/pygame/pygame_1.7.1release-4.2.dsc
python-pygame_1.7.1release-4.2_i386.deb
  to pool/main/p/pygame/python-pygame_1.7.1release-4.2_i386.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
A Mennucc1 <[EMAIL PROTECTED]> (supplier of updated pygame package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed, 04 Jun 2008 21:15:00 +0200
Source: pygame
Binary: python-pygame
Architecture: source i386
Version: 1.7.1release-4.2
Distribution: unstable
Urgency: high
Maintainer: Ed Boraas <[EMAIL PROTECTED]>
Changed-By: A Mennucc1 <[EMAIL PROTECTED]>
Description: 
 python-pygame - SDL bindings for games development in Python
Closes: 481071
Changes: 
 pygame (1.7.1release-4.2) unstable; urgency=high
 .
   * Non-maintainer upload.
   * Bug fix: "python-pygame: pygame.image.fromstring does not work",
 thanks to Sam Morris (Closes: #481071), by applying
 http://patches.ubuntu.com/p/pygame/extracted/01_st

Bug#484474: marked as done ([reportbug-ng] code execution by preparing module files in os.curdir)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 20:47:17 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#484474: fixed in reportbug-ng 0.2008.06.04
has caused the Debian Bug report #484474,
regarding [reportbug-ng] code execution by preparing module files in os.curdir
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
484474: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=484474
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: reportbug-ng
Version: 0.2008.03.28
Severity: grave
Tags: security

Hiho,
reportbug-ng is vulnerable of arbitrary code execution 
because it adds os.curdir to sys.path before checking for 
modules files in the shared directory:

 24 sys.path = sys.path + [os.curdir, '/usr/share/reportbug-ng']

This gives potential attackers the possibility to write 
malicious reportbug-ng modules and spread them through some 
directories. For example:
[EMAIL PROTECTED]:/tmp$] cat > ui.py
print 'doing some malicious stuff here'
raise 'foobar'
[EMAIL PROTECTED]:/tmp$] reportbug-ng somepackage
doing some malicious stuff here
./ui.py:2: DeprecationWarning: raising a string exception is deprecated
  raise 'foobar'
Traceback (most recent call last):
  File "/usr/bin/reportbug-ng", line 26, in 
from ui.MyMainWindow import MyMainWindow
  File "./ui.py", line 2, in 
raise 'foobar'
foobar

I suggest removing os.curdir from sys.path or changing the order of 
/usr/share/reportbug-ng
and os.curdir as I doubt you are loading modules that are not installed :)

Cheers
Nico

-- 
Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.


pgpX5mOHMqomB.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---
Source: reportbug-ng
Source-Version: 0.2008.06.04

We believe that the bug you reported is fixed in the latest version of
reportbug-ng, which is due to be installed in the Debian FTP archive:

reportbug-ng_0.2008.06.04.dsc
  to pool/main/r/reportbug-ng/reportbug-ng_0.2008.06.04.dsc
reportbug-ng_0.2008.06.04.tar.gz
  to pool/main/r/reportbug-ng/reportbug-ng_0.2008.06.04.tar.gz
reportbug-ng_0.2008.06.04_all.deb
  to pool/main/r/reportbug-ng/reportbug-ng_0.2008.06.04_all.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Bastian Venthur <[EMAIL PROTECTED]> (supplier of updated reportbug-ng package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed,  4 Jun 2008 20:23:13 +0200
Source: reportbug-ng
Binary: reportbug-ng
Architecture: source all
Version: 0.2008.06.04
Distribution: unstable
Urgency: high
Maintainer: Bastian Venthur <[EMAIL PROTECTED]>
Changed-By: Bastian Venthur <[EMAIL PROTECTED]>
Description: 
 reportbug-ng - An easy to use alternative to Debian's classic reportbug
Closes: 484474
Changes: 
 reportbug-ng (0.2008.06.04) unstable; urgency=high
 .
   * Fixed possible code execution by preparing module files in os.curdir
 (Closes: #484474)
Checksums-Sha1: 
 5ce869618053d719bd568bc4d3d052f6816f8b2b 907 reportbug-ng_0.2008.06.04.dsc
 ee0551ba3d0e1b3be4de95316bf88d51f7505118 83283 reportbug-ng_0.2008.06.04.tar.gz
 50445cab429f1cdd97b8bc9611d98247e42fdced 80810 
reportbug-ng_0.2008.06.04_all.deb
Checksums-Sha256: 
 9de1b25270976fe30be496289c2ebe908364cbc1e53231aa8d268de897e5d1d5 907 
reportbug-ng_0.2008.06.04.dsc
 9f856ab05cad7820b1d73e820210ad07fb1f0a9d32513ab684996e1dc78e5e05 83283 
reportbug-ng_0.2008.06.04.tar.gz
 d9a490abb3748a8a8b8ebc77fdaa344f79dc3f77c791231b6cb015567dbe4b7d 80810 
reportbug-ng_0.2008.06.04_all.deb
Files: 
 8a680fd41d206da9367fd3eb6ed9eee8 907 utils optional 
reportbug-ng_0.2008.06.04.dsc
 56e257f0e87f20844c6414b827042413 83283 utils optional 
reportbug-ng_0.2008.06.04.tar.gz
 4629587ae8a7a75ea93936737c2dc0d1 80810 utils optional 
reportbug-ng_0.2008.06.04_all.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkhG/T0ACgkQmj66P/Yfc/g9kgCeOVDHjanAYXnm/i9pIJGBZB4O
SycAoIKQfFJYpFeapdPS85STX7J6EpOG
=Z5dT
-END PGP SIGNATURE-


--- End Message ---

Bug#484479: Fails to start vservers (capget(): Invalid argument)

[Micah Anderson]

* Michal Čihař <[EMAIL PROTECTED]> [2008-06-04 11:09-0400]:
> Hi
> 
> Dne Wed, 4 Jun 2008 13:39:25 -0400
> Micah Anderson <[EMAIL PROTECTED]> napsal(a):
> 
> > I've applied a patch from upstream that I hope will solve this. Can
> > you try this on your machine and let me know the results?
> > 
> > You can pull the deb from:
> > 
> > http://people.debian.org/~micah/util-vserver
> > 
> > or if you would prefer to build it, you can get everything there, or
> > pull it from svn and build it:
> > 
> > svn co svn+ssh://svn.debian.org/svn/pkg-vserver/util-vserver/trunk
> > 
> > I do not have an amd64 machine to test this, so your help would be
> > appreciated!
> 
> Sorry, but nothing has changed, still same error and behavior. ...
> After quick look at source package ... Because added patch is not being
> applied ;-). After fixing debian/patches/00list package works fine.
> Thanks for finding the patch.

Haha, oops. 

Thanks for testing and finding that. I'll add it to 00list and upload
now.

Micah




signature.asc
Description: Digital signature

Bug#431676: marked as done (piuparts test: fails to remove: line 4: killall: command not found)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 19:52:20 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#431676: fixed in dns-flood-detector 1.12-1etch1
has caused the Debian Bug report #431676,
regarding piuparts test: fails to remove: line 4: killall: command not found
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
431676: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=431676
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: dns-flood-detector
Version: 1.12-1
Severity: serious

hi,

while running archive wide piuparts tests your package failed on remove with
the following error: 

  Removing dns-flood-detector ...
  /var/lib/dpkg/info/dns-flood-detector.prerm: line 4: killall: command not 
found
  dpkg: error processing dns-flood-detector (--purge):
   subprocess pre-removal script returned error exit status 127
  dpkg: dependency problems prevent removal of libpcap0.8:
   dns-flood-detector depends on libpcap0.8 (>= 0.9.3-1).
  dpkg: error processing libpcap0.8 (--purge):
   dependency problems - not removing
  Errors were encountered while processing:
   dns-flood-detector
   libpcap0.8

the full log can be found here:

 http://people.debian.org/~lucas/logs/2007/07/01/

bye,
- michael

--- End Message ---
--- Begin Message ---
Source: dns-flood-detector
Source-Version: 1.12-1etch1

We believe that the bug you reported is fixed in the latest version of
dns-flood-detector, which is due to be installed in the Debian FTP archive:

dns-flood-detector_1.12-1etch1.diff.gz
  to pool/main/d/dns-flood-detector/dns-flood-detector_1.12-1etch1.diff.gz
dns-flood-detector_1.12-1etch1.dsc
  to pool/main/d/dns-flood-detector/dns-flood-detector_1.12-1etch1.dsc
dns-flood-detector_1.12-1etch1_i386.deb
  to pool/main/d/dns-flood-detector/dns-flood-detector_1.12-1etch1_i386.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Jan Wagner <[EMAIL PROTECTED]> (supplier of updated dns-flood-detector package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.7
Date: Fri, 21 Mar 2008 17:21:51 +0100
Source: dns-flood-detector
Binary: dns-flood-detector
Architecture: source i386
Version: 1.12-1etch1
Distribution: stable
Urgency: low
Maintainer: Jan Wagner <[EMAIL PROTECTED]>
Changed-By: Jan Wagner <[EMAIL PROTECTED]>
Description: 
 dns-flood-detector - detect abusive usage levels on high traffic nameservers
Closes: 431676
Changes: 
 dns-flood-detector (1.12-1etch1) stable; urgency=low
 .
   * make start-stop-daemon working instead of using kill (Closes: #431676).
Files: 
 dd971e5b3ad14547963c4df5c803c13f 627 net optional 
dns-flood-detector_1.12-1etch1.dsc
 e505d3929677dfe61b2ddd48d1d90947 3886 net optional 
dns-flood-detector_1.12-1etch1.diff.gz
 8f755740d97f7d1c199837d20d303380 13646 net optional 
dns-flood-detector_1.12-1etch1_i386.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFH9AjgQUuEI2/szeARAiGbAJ9co/ldc0beh+SEV2SSrSvkmyJqlgCfdiTE
oYqdpDTPnMfpzH+XafBeDx8=
=Bc6a
-END PGP SIGNATURE-


--- End Message ---

Bug#484469: reassign 484469 to dpkg

[Raphael Hertzog]

On Wed, 04 Jun 2008, Giovanni Lovato wrote:
> # perl -e 'print "hello\n"'
> Segmentation fault

Ouch. Something is very messed on your system. Try manually unpacking the
various perl packages with "dpkg --unpack <.deb file>"
or maybe try "apt-get reinstall perl perl-base perl-modules"

But we can't do anything with the bug report if you're not able to explain
how you brought your system into this state.

> It's definitely a perl bug... Am I the only one affected? It's a fresh

AFAIK, yes. We have had issues, but never one where perl systematically
segfaulted.

Cheers,
-- 
Raphaël Hertzog

Le best-seller français mis à jour pour Debian Etch :
http://www.ouaza.com/livre/admin-debian/



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484469: reassign 484469 to dpkg

[Giovanni Lovato]

Raphael Hertzog wrote:
> reassign 484469 perl
> thanks
> 
> Hi,
> 
> Neither is this dpkg that's faulty:
> /bin/sh: line 1: 10805 Segmentation fault  /usr/sbin/dpkg-preconfigure 
> --apt
> 
> It simply looks like that perl segfaults whenever it has something to do.
> 
> 
> Giovanni, you simply show the final problem but I suppose it didn't appear
> suddenly that way... you did a dist-upgrade or something just before,
> isn't it?  Do you have a log of it?

You're right, I did a dist-upgrade that messed all up. The error
messages were the same, I'm pretty sure.

> Please give the output of the following commands in the situation where you
> have the problem: 
> dpkg -l 'perl*'
> dpkg -l liblocale-gettext-perl
> perl -MLocale::gettext -e 'print gettext("hello\n")'
> perl -e 'print "hello\n"'

# dpkg -l 'perl*'
[snip]
iF  perl5.10.0-10

ii  perl-base   5.10.0-10

un  perl-doc

ii  perl-modules5.10.0-10

un  perl5   

un  perl5-base  

un  perlapi-5.10.0  


# dpkg -l liblocale-gettext-perl
[snip]
ii  liblocale-gettext-perl  1.05-4


# perl -MLocale::gettext -e 'print gettext("hello\n")'
Segmentation fault

# perl -e 'print "hello\n"'
Segmentation fault

> For future reference, the full log from the paste URL is:
> # apt-get -f install
> Reading package lists... Done
> Building dependency tree   
> Reading state information... Done
> 0 upgraded, 0 newly installed, 0 to remove and 79 not upgraded.
> 3 not fully installed or removed.
> After this operation, 0B of additional disk space will be used.
> /bin/sh: line 1: 10805 Segmentation fault  /usr/sbin/dpkg-preconfigure 
> --apt
> Setting up debconf (1.5.21) ...
> dpkg: error processing debconf (--configure):
>  subprocess post-installation script killed by signal (Segmentation fault)
> Setting up perl (5.10.0-10) ...
> /var/lib/dpkg/info/perl.postinst: line 19: 10810 Segmentation fault  
> update-alternatives --install /usr/bin/rename rename /usr/bin/prename 60 
> --slave /usr/share/man/man1/rename.1.gz rename.1.gz 
> /usr/share/man/man1/prename.1.gz
> dpkg: error processing perl (--configure):
>  subprocess post-installation script returned error exit status 139
> dpkg: dependency problems prevent configuration of libnet-ssleay-perl:
>  libnet-ssleay-perl depends on perl (>= 5.10.0-9); however:
>   Package perl is not configured yet.
> dpkg: error processing libnet-ssleay-perl (--configure):
>  dependency problems - leaving unconfigured
> Errors were encountered while processing:
>  debconf
>  perl
>  libnet-ssleay-perl
> E: Sub-process /usr/bin/dpkg returned an error code (1)
> 
> Cheers,

It's definitely a perl bug... Am I the only one affected? It's a fresh
install of Lenny, I've only done some upgrades. Maybe a RAM issue caused
this? Can I restore a previous version of perl copying manually
package's files from a working installation of Lenny?

Giovanni


smime.p7s
Description: S/MIME Cryptographic Signature

Bug#42158: Lose weight by suppressing your appetite

[Terri Elmore]

Your appetite may be the cause for your weight
http://scourink.com




-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484517: marked as done (missing copyright information in debian/copyright)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 18:47:02 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#484517: fixed in c-ares 1.5.2-1
has caused the Debian Bug report #484517,
regarding missing copyright information in debian/copyright
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
484517: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=484517
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---

Package: c-ares
Severity: serious
Version: 1.5.1-0

Hi,

the debian/copyright fails to list copyright notices, e.g. those for 
copyrights owned by the Massachusetts Institute of Technology.


Kind regards

T.
--
Thomas Viehmann, http://thomas.viehmann.net/


--- End Message ---
--- Begin Message ---
Source: c-ares
Source-Version: 1.5.2-1

We believe that the bug you reported is fixed in the latest version of
c-ares, which is due to be installed in the Debian FTP archive:

c-ares_1.5.2-1.diff.gz
  to pool/main/c/c-ares/c-ares_1.5.2-1.diff.gz
c-ares_1.5.2-1.dsc
  to pool/main/c/c-ares/c-ares_1.5.2-1.dsc
libc-ares-dev_1.5.2-1_amd64.deb
  to pool/main/c/c-ares/libc-ares-dev_1.5.2-1_amd64.deb
libc-ares2_1.5.2-1_amd64.deb
  to pool/main/c/c-ares/libc-ares2_1.5.2-1_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Andreas Schuldei <[EMAIL PROTECTED]> (supplier of updated c-ares package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed, 04 Jun 2008 20:22:59 +0200
Source: c-ares
Binary: libc-ares-dev libc-ares2
Architecture: source amd64
Version: 1.5.2-1
Distribution: unstable
Urgency: low
Maintainer: [EMAIL PROTECTED]
Changed-By: Andreas Schuldei <[EMAIL PROTECTED]>
Description: 
 libc-ares-dev - library for asyncronous name resolves
 libc-ares2 - library for asyncronous name resolves
Closes: 484517
Changes: 
 c-ares (1.5.2-1) unstable; urgency=low
 .
   * missing copyright information in debian/copyright (Closes: #484517)
Checksums-Sha1: 
 cca7bbe877608d6da0603188323a71f97830fcb9 1011 c-ares_1.5.2-1.dsc
 d0674afaa55cd4457476cd994a0772ba936f3066 3576 c-ares_1.5.2-1.diff.gz
 24cc6c61e1aa7109a13458dc59a60f42a458c80e 52520 libc-ares-dev_1.5.2-1_amd64.deb
 b4415ecffb079d65c463df0806f01f489f353aed 40702 libc-ares2_1.5.2-1_amd64.deb
Checksums-Sha256: 
 ee5014a9cbf2db21eb08482f1c248d6476ec8ee39c804f9b5fa0f4d5735af04f 1011 
c-ares_1.5.2-1.dsc
 552d34102b43281ec7d04e56fecda4464ec46df3c0c90b510f793e563e3b70c2 3576 
c-ares_1.5.2-1.diff.gz
 9fd33a2851bab59d57124b69da6193908102c876036187782203aa0e030eca1b 52520 
libc-ares-dev_1.5.2-1_amd64.deb
 1a2f2d48e6818b8ff863de14809f6cee846e514a8be0125308af2195d3ac8849 40702 
libc-ares2_1.5.2-1_amd64.deb
Files: 
 914e06edb5411e439def959609e1bd7d 1011 libs extra c-ares_1.5.2-1.dsc
 3ede11ca15557962f5d4f6a9c5f463bc 3576 libs extra c-ares_1.5.2-1.diff.gz
 c6db68a0ddd81dd52693d8dbd7956893 52520 libdevel extra 
libc-ares-dev_1.5.2-1_amd64.deb
 7899b11bbf0080c57ee5cef3ee62c792 40702 libs extra libc-ares2_1.5.2-1_amd64.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFIRt9K8g+sC3uDV+URAqHCAJ0XQ7lyeRdhsxuPjqC4LthrwO+E0ACeL+NE
gRCujnSEAcG3WWnM1qhXRXM=
=lmEx
-END PGP SIGNATURE-


--- End Message ---

Bug#479300: marked as done (as31_2.3.1-1(sparc/unstable): FTBFS, ./configure: Permission denied)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 18:32:03 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#479300: fixed in as31 2.3.1-1.1
has caused the Debian Bug report #479300,
regarding as31_2.3.1-1(sparc/unstable): FTBFS, ./configure: Permission denied
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
479300: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=479300
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: as31
Version: 2.3.1-1
Severity: serious

Hi Bdale,

there was an error while trying to autobuild your package:

> Automatic build of as31_2.3.1-1 on spontini by sbuild/sparc 99.99
> Build started at 20080504-0353

[...]

> ** Using build dependencies supplied by package:
> Build-Depends: debhelper (>= 5)

[...]

> dpkg-buildpackage: source package as31
> dpkg-buildpackage: source version 2.3.1-1
> dpkg-buildpackage: host architecture sparc
>  /usr/bin/fakeroot debian/rules clean
> dh_testdir
> dh_testroot
> rm -f build-stamp configure-stamp
> [ ! -f Makefile ] || /usr/bin/make clean
> dh_clean 
>  debian/rules build
> dh_testdir
> ./configure --prefix=/usr --mandir=/usr/share/man
> make: execvp: ./configure: Permission denied
> make: *** [configure-stamp] Error 127
> dpkg-buildpackage: failure: debian/rules build gave error exit status 2

A full build log can be found at:
http://buildd.debian.org/build.php?arch=sparc&pkg=as31&ver=2.3.1-1



--- End Message ---
--- Begin Message ---
Source: as31
Source-Version: 2.3.1-1.1

We believe that the bug you reported is fixed in the latest version of
as31, which is due to be installed in the Debian FTP archive:

as31_2.3.1-1.1.diff.gz
  to pool/main/a/as31/as31_2.3.1-1.1.diff.gz
as31_2.3.1-1.1.dsc
  to pool/main/a/as31/as31_2.3.1-1.1.dsc
as31_2.3.1-1.1_i386.deb
  to pool/main/a/as31/as31_2.3.1-1.1_i386.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Riku Voipio <[EMAIL PROTECTED]> (supplier of updated as31 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed, 04 Jun 2008 12:08:56 +0300
Source: as31
Binary: as31
Architecture: source i386
Version: 2.3.1-1.1
Distribution: unstable
Urgency: low
Maintainer: Bdale Garbee <[EMAIL PROTECTED]>
Changed-By: Riku Voipio <[EMAIL PROTECTED]>
Description: 
 as31   - Intel 8031/8051 assembler
Closes: 479300
Changes: 
 as31 (2.3.1-1.1) unstable; urgency=low
 .
   * Non-maintainer upload.
   * Force ./configure  executable, closes: #479300
Checksums-Sha1: 
 2f57864c455322193505a6844d1357902ade8287 912 as31_2.3.1-1.1.dsc
 4991ca16a31ccdebfccc7b1b7ee286c9ea513a1d 1892 as31_2.3.1-1.1.diff.gz
 0f471519cc20a016fed38f3255e634b717b3dc56 24180 as31_2.3.1-1.1_i386.deb
Checksums-Sha256: 
 cd8cc6fa7cb80415415c41f6044b6a2702cbb88d56a19a855746b9ca400820b3 912 
as31_2.3.1-1.1.dsc
 0f57a25ef42a999c99172050154433a29bf4049620c378c0904f704fa94f7f0f 1892 
as31_2.3.1-1.1.diff.gz
 037b62722c35e850fdf4b17f11ff432cce581a78ee9878cb046a9d213800d1c2 24180 
as31_2.3.1-1.1_i386.deb
Files: 
 d167c8920cce03aa79a65b69a8a4afca 912 devel optional as31_2.3.1-1.1.dsc
 ea5f666eb4c79f50e9f729b97ac39c3a 1892 devel optional as31_2.3.1-1.1.diff.gz
 89c7268254c1fb83bbe5e8788db4bb78 24180 devel optional as31_2.3.1-1.1_i386.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFIRt7nibPvMsrqrwMRAsERAKCtsmWgwv+HfghMjFFZEgxQraEMHQCeIRnZ
tIO46tR1izLW/yLfTpJ8lSo=
=JXXI
-END PGP SIGNATURE-


--- End Message ---

Bug#484221: marked as done (haproxy: FTBFS: field 'in' has incomplete type)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 18:17:02 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#484221: fixed in haproxy 1.3.14.5-1
has caused the Debian Bug report #484221,
regarding haproxy: FTBFS: field 'in' has incomplete type
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
484221: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=484221
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: haproxy
Version: 1.3.14.3-1
Severity: serious

From my pbuilder build log (on amd64):

...
gcc -Iinclude -Wall -O2 -g   -DTPROXY -DENABLE_POLL -DENABLE_EPOLL 
-DENABLE_SEPOLL -DNETFILTER -DUSE_GETSOCKNAME -DUSE_PCRE -I/usr/include  
-DCONFIG_HAPROXY_VERSION=\"1.3.14.3\" -DCONFIG_HAPROXY_DATE=\"2008/03/08\" -c 
-o 
src/fd.o src/fd.c
In file included from /usr/include/linux/netfilter_ipv4.h:8,
 from include/common/compat.h:66,
 from src/fd.c:18:
/usr/include/linux/netfilter.h:44: error: field 'in' has incomplete type
/usr/include/linux/netfilter.h:45: error: field 'in6' has incomplete type
make[1]: *** [src/fd.o] Error 1
make[1]: Leaving directory `/tmp/buildd/haproxy-1.3.14.3'
make: *** [debian/stamp-makefile-build] Error 2
dpkg-buildpackage: failure: debian/rules build gave error exit status 2
-- 
Daniel Schepler


--- End Message ---
--- Begin Message ---
Source: haproxy
Source-Version: 1.3.14.5-1

We believe that the bug you reported is fixed in the latest version of
haproxy, which is due to be installed in the Debian FTP archive:

haproxy_1.3.14.5-1.diff.gz
  to pool/main/h/haproxy/haproxy_1.3.14.5-1.diff.gz
haproxy_1.3.14.5-1.dsc
  to pool/main/h/haproxy/haproxy_1.3.14.5-1.dsc
haproxy_1.3.14.5-1_amd64.deb
  to pool/main/h/haproxy/haproxy_1.3.14.5-1_amd64.deb
haproxy_1.3.14.5.orig.tar.gz
  to pool/main/h/haproxy/haproxy_1.3.14.5.orig.tar.gz



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Arnaud Cornet <[EMAIL PROTECTED]> (supplier of updated haproxy package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed, 04 Jun 2008 19:21:56 +0200
Source: haproxy
Binary: haproxy
Architecture: source amd64
Version: 1.3.14.5-1
Distribution: unstable
Urgency: low
Maintainer: Arnaud Cornet <[EMAIL PROTECTED]>
Changed-By: Arnaud Cornet <[EMAIL PROTECTED]>
Description: 
 haproxy- fast and reliable load balancing reverse proxy
Closes: 484221
Changes: 
 haproxy (1.3.14.5-1) unstable; urgency=low
 .
   * New Upstream Version (Closes: #484221)
   * Use debhelper 7, drop CDBS.
Checksums-Sha1: 
 75d320479dcb465f386d84428b16caa18af945ef 1010 haproxy_1.3.14.5-1.dsc
 283e7ea99a05c038a9811211ff66d4185ae9be1e 479801 haproxy_1.3.14.5.orig.tar.gz
 b32adaa74293ace2df1849e3b1b5509b361a8268 4528 haproxy_1.3.14.5-1.diff.gz
 da5d6f903652fe8bedff01310e24c232e58fd471 322928 haproxy_1.3.14.5-1_amd64.deb
Checksums-Sha256: 
 5c22edd3596dbdde738648f78bc6fa09946f8dcd901b238ef598312a64f23563 1010 
haproxy_1.3.14.5-1.dsc
 08d5fcec03508202b1670646654768bdcdd8b6cdd135ea41972c658ebc58a669 479801 
haproxy_1.3.14.5.orig.tar.gz
 159e93f205355294b27c6ed43ea2850e6518d6725e0f391c0b698d22f66f47ce 4528 
haproxy_1.3.14.5-1.diff.gz
 f7e1b3ec8d9f7a7ebfda51cff1c69df6f4a5372120afea6e55760ce6c9be4dc6 322928 
haproxy_1.3.14.5-1_amd64.deb
Files: 
 44a198cd3723be22f2f6fe546cbec198 1010 net optional haproxy_1.3.14.5-1.dsc
 8604b29abdb2239744a698ae47553398 479801 net optional 
haproxy_1.3.14.5.orig.tar.gz
 ae9c3522447570433622730a779cbc8d 4528 net optional haproxy_1.3.14.5-1.diff.gz
 9503111fa6425d361c5053e99f5b9e19 322928 net optional 
haproxy_1.3.14.5-1_amd64.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkhG1/QACgkQsk+dgCIlhI4KiQCgw3NmB1kB/JUPNiXy9Q5LQGEJ
tqQAoK7192DTlz7CUeVkaZysDACNxOes
=GAPj
-END PGP SIGNATURE-


--- End Message ---

Bug#484535: piespy crashes with a gtk error

[Noah Slater]

Package: piespy
Version: 0.4.0-2
Severity: grave
Justification: renders package unusable

When running piespy I get the following error shortly before a crash:

  (.:14152): Gtk-WARNING **: cannot open display:

This happens each time.

FWIW, I am running this on a remote server with no X.

>From http://www.jibble.org/piespy/

  If you run PieSpy in a non-graphical environment (e.g. a Unix console that 
does
  not have access to an X server) you will need to pass the following command 
line
  parameter to java: -Djava.awt.headless=true.

I looked in /usr/bin/piespy and I can see that this is being used, but it still 
fails.

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (990, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: i386 (i686)

Kernel: Linux 2.6.20.3-bytemark-uml-2
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages piespy depends on:
ii  default-jre [java-runtime]1.5-30 Standard Java or Java compatible R
ii  gij   4:4.3.0-7  The GNU Java bytecode interpreter
ii  java-gcj-compat [java-runtime 1.0.78-1   Java runtime environment using GIJ

piespy recommends no packages.

-- no debconf information

-- 
Noah Slater - Bytesexual 



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484533: vym corrupts files when saving.

[Benjamin Redelings]

Package: vym
Version: 1.10.0-1.1
Severity: grave
Justification: causes non-serious data loss

Hi, 

I tried loading a *.vym file, and I got this error:

Fatal parsing error: error occurred while parsing content in line 37, column 3
File is: /tmp/vym-s8rrUj/new_research.xml
DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0//EN" 
"http://www.w3.org/TR/REC-html40/strict.dtd";>

The problem seems to be that there are now DOCTYPE lines at the 
beginning of each HTML note.  VYM is writing these lines, but cannot 
read them.  Therefore, any elements in a file after the first HTML note 
are not read.


-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.24-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash

Versions of packages vym depends on:
ii  libaudio2  1.9.1-2   Network Audio System - shared libr
ii  libc6  2.7-12GNU C Library: Shared libraries
ii  libfontconfig1 2.6.0-1   generic font configuration library
ii  libfreetype6   2.3.5-1+b1FreeType 2 font engine, shared lib
ii  libgcc11:4.3.0-5 GCC support library
ii  libglib2.0-0   2.17.0-1  The GLib library of C routines
ii  libice62:1.0.4-1 X11 Inter-Client Exchange library
ii  libmysqlclient15off5.0.51a-6 MySQL database client library
ii  libpng12-0 1.2.27-1  PNG library - runtime
ii  libpq5 8.3.1-2+b1PostgreSQL C client library
ii  libqt4-core4.4.0-2   transitional package for Qt 4 core
ii  libqt4-gui 4.4.0-2   transitional package for Qt 4 GUI 
ii  libqt4-qt3support  4.4.0-2   Qt 3 compatibility library for Qt 
ii  libqt4-sql 4.4.0-2   Qt 4 SQL module
ii  libsm6 2:1.0.3-1+b1  X11 Session Management library
ii  libsqlite0 2.8.17-4  SQLite shared library
ii  libsqlite3-0   3.5.9-2   SQLite 3 shared library
ii  libstdc++6 4.3.0-5   The GNU Standard C++ Library v3
ii  libx11-6   2:1.1.4-1 X11 client-side library
ii  libxcursor11:1.1.9-1 X cursor management library
ii  libxext6   2:1.0.4-1 X11 miscellaneous extension librar
ii  libxfixes3 1:4.0.3-2 X11 miscellaneous 'fixes' extensio
ii  libxi6 2:1.1.3-1 X11 Input extension library
ii  libxinerama1   2:1.0.3-2 X11 Xinerama extension library
ii  libxrandr2 2:1.2.2-2 X11 RandR extension library
ii  libxrender11:0.9.4-1 X Rendering Extension client libra
ii  libxt6 1:1.0.5-3 X11 toolkit intrinsics library
ii  unzip  5.52-11   De-archiver for .zip files
ii  xsltproc   1.1.24-1  XSLT command line processor
ii  zip2.32-1Archiver for .zip files
ii  zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime

vym recommends no packages.

-- no debconf information



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484479: Fails to start vservers (capget(): Invalid argument)

[Michal Čihař]

Hi

Dne Wed, 4 Jun 2008 13:39:25 -0400
Micah Anderson <[EMAIL PROTECTED]> napsal(a):

> I've applied a patch from upstream that I hope will solve this. Can
> you try this on your machine and let me know the results?
> 
> You can pull the deb from:
> 
> http://people.debian.org/~micah/util-vserver
> 
> or if you would prefer to build it, you can get everything there, or
> pull it from svn and build it:
> 
> svn co svn+ssh://svn.debian.org/svn/pkg-vserver/util-vserver/trunk
> 
> I do not have an amd64 machine to test this, so your help would be
> appreciated!

Sorry, but nothing has changed, still same error and behavior. ...
After quick look at source package ... Because added patch is not being
applied ;-). After fixing debian/patches/00list package works fine.
Thanks for finding the patch.

-- 
Michal Čihař | http://cihar.com | http://blog.cihar.com


signature.asc
Description: PGP signature

Bug#484479: Fails to start vservers (capget(): Invalid argument)

[Micah Anderson]

* Micah Anderson <[EMAIL PROTECTED]> [2008-06-04 13:08-0400]:

> The util-vserver trunk can build against the newer headers, so maybe we
> can pull from there to resolve this.

Hi,

I've applied a patch from upstream that I hope will solve this. Can
you try this on your machine and let me know the results?

You can pull the deb from:

http://people.debian.org/~micah/util-vserver

or if you would prefer to build it, you can get everything there, or
pull it from svn and build it:

svn co svn+ssh://svn.debian.org/svn/pkg-vserver/util-vserver/trunk

I do not have an amd64 machine to test this, so your help would be
appreciated!

Thanks,
Micah



signature.asc
Description: Digital signature

Bug#483828: gtk-qt-engine-kde4: evolution crash backtrace

[Cassiano Leal]

Package: gtk-qt-engine-kde4
Version: 1.1-1
Followup-For: Bug #483828


I can confirm this happening in evolution and GIMP. Iceweasel works fine, 
though.

Follows the moment of the crash from within gdb:

$ gdb evolution  
GNU gdb 6.7.1-debian
Copyright (C) 2007 Free Software Foundation, Inc.   
License GPLv3+: GNU GPL version 3 or later
   
This is free software: you are free to change and redistribute it.  
There is NO WARRANTY, to the extent permitted by law.  Type "show
copying"  
and "show warranty" for details.
This GDB was configured as "i486-linux-gnu"...  
Using host libthread_db library "/lib/i686/cmov/libthread_db.so.1". 
(gdb) run
Starting program: /usr/bin/evolution
[Thread debugging using libthread_db enabled]
[New Thread 0xb678a740 (LWP 11950)]
[New Thread 0xb4bf6b90 (LWP 11956)]
[Thread 0xb4bf6b90 (LWP 11956) exited]

** (evolution:11950): WARNING **: Unexpected kerberos error -1765328164

** (evolution:11950): WARNING **: Unexpected kerberos error -1765328164
** (evolution:11950): DEBUG: mailto URL command: evolution
--component=mail %s
** (evolution:11950): DEBUG: mailto URL program: evolution
[New Thread 0xb4bf6b90 (LWP 11968)]
[New Thread 0xb28c3b90 (LWP 11969)]
[New Thread 0xb20c2b90 (LWP 11970)]
[New Thread 0xb10c0b90 (LWP 11972)]
[New Thread 0xb18c1b90 (LWP 11971)]
[Thread 0xb10c0b90 (LWP 11972) exited]
[Thread 0xb18c1b90 (LWP 11971) exited]
[New Thread 0xb10c0b90 (LWP 11973)]
[New Thread 0xb18c1b90 (LWP 11974)]
[New Thread 0xb08bfb90 (LWP 11975)]
[New Thread 0xb00beb90 (LWP 11976)]
[New Thread 0xaf844b90 (LWP 11977)]
[New Thread 0xaf043b90 (LWP 11978)]
[Thread 0xb00beb90 (LWP 11976) exited]
[New Thread 0xb00beb90 (LWP 11979)]
[New Thread 0xae64cb90 (LWP 11980)]
[Thread 0xaf043b90 (LWP 11978) exited]
[Thread 0xb00beb90 (LWP 11979) exited]
[Thread 0xae64cb90 (LWP 11980) exited]

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0xb678a740 (LWP 11950)]
0xb58910f8 in ?? () from /usr/lib/kde4/plugins/styles/oxygen.so
(gdb) continue
Continuing.

Program terminated with signal SIGSEGV, Segmentation fault.
The program no longer exists.
(gdb)

-- System Information:
Debian Release: lenny/sid
  APT prefers testing
  APT policy: (900, 'testing'), (500, 'unstable'), (100, 'experimental')
Architecture: i386 (i686)

Kernel: Linux 2.6.24-1-686 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages gtk-qt-engine-kde4 depends on:
ii  kdebase-runtime   4:4.0.80-2 runtime components from the offici
ii  kdelibs5  4:4.0.80-1 core libraries for all KDE 4 appli
ii  libbonoboui2-02.22.0-1   The Bonobo UI library
ii  libc6 2.7-10 GNU C Library: Shared libraries
ii  libglib2.0-0  2.16.3-2   The GLib library of C routines
ii  libgtk2.0-0   2.12.9-3   The GTK+ graphical user interface 
ii  libpango1.0-0 1.20.2-2   Layout and rendering of internatio
ii  libqt4-gui4.4.0-2transitional package for Qt 4 GUI 
ii  libqtcore44.4.0-2Qt 4 core module
ii  libstdc++64.3.0-5The GNU Standard C++ Library v3
ii  libx11-6  2:1.0.3-7  X11 client-side library

gtk-qt-engine-kde4 recommends no packages.

-- no debconf information



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484311: marked as done (reportbug adds os.curdir to sys.path)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 16:32:06 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#484311: fixed in reportbug 3.41
has caused the Debian Bug report #484311,
regarding reportbug adds os.curdir to sys.path
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
484311: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=484311
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: reportbug
Version: 3.31
Severity: grave
Tags: security
Justification: user security hole

sys.path = [os.curdir, '/usr/share/reportbug'] + sys.path

To "exploit":

$ echo 'raise "FOO"' > token.py
$ reportbug
Traceback (most recent call last):
  File "/usr/bin/reportbug", line 39, in ?
import optparse, re, os, pwd, time, locale, commands, checkversions
  File "/usr/lib/python2.4/optparse.py", line 73, in ?
from gettext import gettext as _
  File "/usr/lib/python2.4/gettext.py", line 49, in ?
import locale, copy, os, re, struct, sys
  File "/usr/lib/python2.4/copy.py", line 65, in ?
import inspect
  File "/usr/lib/python2.4/inspect.py", line 31, in ?
import sys, os, types, string, re, dis, imp, tokenize, linecache
  File "/usr/lib/python2.4/tokenize.py", line 30, in ?
from token import *
  File "./token.py", line 1, in ?
raise "FOO"
FOO

-- Package-specific info:
** Environment settings:
EDITOR="vim"
EMAIL="Thomas Arendsen Hein <[EMAIL PROTECTED]>"

** /home/thomas/.reportbugrc:
mutt
email "[EMAIL PROTECTED]"
realname "Thomas Arendsen Hein"

-- System Information:
Debian Release: 4.0
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.24.3-id1-k8-2
Locale: LANG=en_US, [EMAIL PROTECTED] (charmap=ISO-8859-15)

Versions of packages reportbug depends on:
ii  python2.4.4-2An interactive high-level object-o
ii  python-central0.5.12 register and build utility for Pyt

Versions of packages reportbug recommends:
pn  python-cjkcodecs | python-ico  (no description available)

-- no debconf information

-- 
[EMAIL PROTECTED] - http://intevation.de/~thomas/ - OpenPGP key: 0x5816791A
Intevation GmbH, Osnabrueck - Register: Amtsgericht Osnabrueck, HR B 18998
Geschaeftsfuehrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner


--- End Message ---
--- Begin Message ---
Source: reportbug
Source-Version: 3.41

We believe that the bug you reported is fixed in the latest version of
reportbug, which is due to be installed in the Debian FTP archive:

reportbug_3.41.dsc
  to pool/main/r/reportbug/reportbug_3.41.dsc
reportbug_3.41.tar.gz
  to pool/main/r/reportbug/reportbug_3.41.tar.gz
reportbug_3.41_all.deb
  to pool/main/r/reportbug/reportbug_3.41_all.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Sandro Tosi <[EMAIL PROTECTED]> (supplier of updated reportbug package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed, 04 Jun 2008 18:07:23 +0200
Source: reportbug
Binary: reportbug
Architecture: source all
Version: 3.41
Distribution: unstable
Urgency: high
Maintainer: Reportbug Maintainers <[EMAIL PROTECTED]>
Changed-By: Sandro Tosi <[EMAIL PROTECTED]>
Description: 
 reportbug  - reports bugs in the Debian distribution
Closes: 484245 484311
Changes: 
 reportbug (3.41) unstable; urgency=high
 .
   [ Sandro Tosi ]
   * Security bugfix release, hence urgency is set to high
   * querybts, reportbug_submit.py
 - os.curdir is not added to sys.path anymore, thanks to Thomas Arendsen
   Hein <[EMAIL PROTECTED]> for the report; Fixes: CVE-2008-2230;
   Closes: #484311
 .
   [ Chris Lawrence ]
   * debian/control
 - Added self to Uploaders
 - Set Maintainer to new list on alioth.
 .
   [ Y Giridhar Appaji Nag ]
   * debianbts.py
 - Remove kde, ximian (and helixcode) and mandriva, they use bugzilla
 - Remove grml, they use roundup
   * --body-file doesn't allow preview of report, don't suggest using it with
 saved files.  Thanks Shai Berger <[EMAIL PROTECTED]> for the bug report
 (Closes: #484245)
   * remove calls to sys.path.append('/usr/share/reportbug') from reportb

Bug#484499: slash: possible SQL injection vulnerability

[Steffen Joeris]

Hi

Please use CVE-2008-2231 as a reference for this issue.
It should be included in every changelog entry that deals with this issue.
Thanks in advance.

Cheers
Steffen


signature.asc
Description: This is a digitally signed message part.

Bug#42158: Is your stomach a "bottom-less" pit?

[Dianne Hinton]

We carry many different Wohtelgsis ptudocrs aballiave ...

You will lose the whegit you've always wanted whoiutt furiale!

http://withequa.com




-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484311: reportbug adds os.curdir to sys.path

[Sandro Tosi]

> please also fix:
>
> diff -Nru reportbug-3.40/checks/compare_pseudo-pkgs_lists.py 
> reportbug-3.40+nmu1/checks/compare_pseudo-pkgs_lists.py
> --- reportbug-3.40/checks/compare_pseudo-pkgs_lists.py  2008-05-22 
> 03:21:42.0 +0200
> +++ reportbug-3.40+nmu1/checks/compare_pseudo-pkgs_lists.py 2008-06-04 
> 17:53:30.0 +0200
> @@ -8,7 +8,6 @@
>  # agaists the official list on ftp-master
>
>  import sys, os
> -sys.path = ['.'] + sys.path
>
>  import debianbts

As discussed with Nico on [EMAIL PROTECTED], I don't change that
file: we need to use the 'debianbts.py' file stored in the current
directory, since we need to diff the local version (possibly changed)
of pseudo-packages list with the one on ftp-master.

I've just uploaded reportbug version 3.41, that fix the CVE and this bug.

I'd like to thank everyone for the prompt reply: Giridhar for the
first commit, Nico for the fast reply from sec team, Thomas for
reporting this bug, and the director because believed in me, my
mother... :D

Cheers,
Sandro

-- 
Sandro Tosi (aka morph, Morpheus, matrixhasu)
My website: http://matrixhasu.altervista.org/
Me at Debian: http://wiki.debian.org/SandroTosi



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#481737: [php-maint] Bug#481737: FTBFS on arm

[Stefan Fritsch]

I did another test build, this time without the suhosin patch (and no 
other changes). This build succeeded.

BTW, for both builds I had gcc-4.3 4.3.0-4 installed, which is not 
current anymore but it's the same version that was used by the arm 
buildd.

Cheers,
Stefan



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Processed: found 461219 in 4.2-1

[Debian Bug Tracking System]

Processing commands for [EMAIL PROTECTED]:

> # Automatically generated email from bts, devscripts version 2.10.28
> found 461219 4.2-1
Bug#461219: spamassassin should not expire database by default, timeouts on 
very low load
Bug marked as found in version 4.2-1.

>
End of message, stopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484479: Fails to start vservers (capget(): Invalid argument)

[Micah Anderson]

Hi,

Thanks for your bug report.

> some upgrade of util-vserver made all attempts to start vserver fail
> with:
> 
> # vserver pmademo start
> capget(): Invalid argument
> capabilities are not enabled in kernel-setup
> 
> Downgrading backt to 0.30.214-6 the problem is gone (this is latest
> amd64 binary I found on snapshots.debian.net), but if I rebuild this
> version from source, I get exacly same error, so the problem might be
> actually caused by some statically linked code.

It seems like the buildds created the binaries against too new kernel
headers that have the newest API and util-vserver doesn't support
those. This is any kernel headers newer than 2.6.25.

These typically are in /usr/include/linux and are from the package
linux-libc-dev which currently is shipping at version 2.6.25-4.

This is a problem because we don't have alternative headers available
for previous kernels so that I can do a build-dep, and util-vserver is
happily building against headers that it can't support. 

The util-vserver trunk can build against the newer headers, so maybe we
can pull from there to resolve this.

micah



signature.asc
Description: Digital signature

Bug#484311: reportbug adds os.curdir to sys.path

[Nico Golde]

Hi,
please also fix:

diff -Nru reportbug-3.40/checks/compare_pseudo-pkgs_lists.py 
reportbug-3.40+nmu1/checks/compare_pseudo-pkgs_lists.py
--- reportbug-3.40/checks/compare_pseudo-pkgs_lists.py  2008-05-22 
03:21:42.0 +0200
+++ reportbug-3.40+nmu1/checks/compare_pseudo-pkgs_lists.py 2008-06-04 
17:53:30.0 +0200
@@ -8,7 +8,6 @@
 # agaists the official list on ftp-master
 
 import sys, os
-sys.path = ['.'] + sys.path
 
 import debianbts
 

Cheers
Nico

-- 
Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.


pgplX0blRJbua.pgp
Description: PGP signature

Bug#480589: marked as done (libc-ares1 contains libcares.2.so)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 15:50:22 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#480589: fixed in c-ares 1.5.2-0
has caused the Debian Bug report #480589,
regarding libc-ares1 contains libcares.2.so
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
480589: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=480589
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: libc-ares1
Version: 1.5.1-0
Severity: minor

The 1.5.1 release of c-ares upstream bumped the major soversion from 1
to 2. However, the packaging was not updated to reflect this, leading to
the anomalous situation that libc-ares1 contains /usr/lib/libcares.so.2.
This is a violation of a "should" from the Library Packaging Guide, and
Lintian picks this up as a warning.

This means that any package built against the 1.4.1 version of
libc-ares-dev will in fact mysteriously start failing when the installed
version of libc-ares1 is upgraded to 1.5.1, and the file disappears.

I've filed this as minor because presumably no packages are suffering
from the above problem, which is lucky. There was a fortnight where it
was possible to fall over this, according to [1]. If there was such a
package suffering this, then I assume there would be such a bug against
c-ares already.

[1] http://packages.qa.debian.org/c/c-ares.html

This issue also affects users looking for the library for third-party
apps. If a program is looking for libcares.so.2 according to ldd, then
usually one would try to install package libcares2 to resolve this. Of
course, this assumption is already broken by the soname libcares
differing from the package name libc-ares, but I'm assuming that a good
reason for this difference already exists. (Although I don't see a
README.Debian or similar in the installed packages documenting this.)

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)

Kernel: Linux 2.6.24-1-686 (SMP w/1 CPU core)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages libc-ares1 depends on:
ii  libc6 2.7-10 GNU C Library: Shared libraries

libc-ares1 recommends no packages.

-- no debconf information

-- 
Paul "TBBle" Hampson, [EMAIL PROTECTED]

Shorter .sig for a more eco-friendly paperless office.


pgphYs8HDc07g.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---
Source: c-ares
Source-Version: 1.5.2-0

We believe that the bug you reported is fixed in the latest version of
c-ares, which is due to be installed in the Debian FTP archive:

c-ares_1.5.2-0.diff.gz
  to pool/main/c/c-ares/c-ares_1.5.2-0.diff.gz
c-ares_1.5.2-0.dsc
  to pool/main/c/c-ares/c-ares_1.5.2-0.dsc
c-ares_1.5.2.orig.tar.gz
  to pool/main/c/c-ares/c-ares_1.5.2.orig.tar.gz
libc-ares-dev_1.5.2-0_amd64.deb
  to pool/main/c/c-ares/libc-ares-dev_1.5.2-0_amd64.deb
libc-ares2_1.5.2-0_amd64.deb
  to pool/main/c/c-ares/libc-ares2_1.5.2-0_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Andreas Schuldei <[EMAIL PROTECTED]> (supplier of updated c-ares package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Sat, 31 May 2008 01:08:35 +0200
Source: c-ares
Binary: libc-ares-dev libc-ares2
Architecture: source amd64
Version: 1.5.2-0
Distribution: unstable
Urgency: low
Maintainer: [EMAIL PROTECTED]
Changed-By: Andreas Schuldei <[EMAIL PROTECTED]>
Description: 
 libc-ares-dev - library for asyncronous name resolves
 libc-ares2 - library for asyncronous name resolves
Closes: 478588 480589
Changes: 
 c-ares (1.5.2-0) unstable; urgency=low
 .
   * new upstream release: 1.5.2
   * Conflict with libcares2 (Closes: #478588)
   * libc-ares1 contains libcares.2.so (Closes: #480589)
Checksums-Sha1: 
 4bec0584c84220b3ae93485a8e0bff01c86c9491 1011 c-ares_1.5.2-0.dsc
 67a64ca1eab60dabfd462b833216ada3a0de7ffa 472603 c-ares_1.5.2.orig.tar.gz
 c37b022d798c847923ed0391872e2a62f1c937e1 3455 c-ares_1.5.2-0.diff.gz
 abd3ab0edc5df5be695c9b91580838628a315b7e 52418 libc-ares-dev_1.5.2-0_amd64.deb
 a92df85f28fbcdd29f6f1c

Bug#484517: missing copyright information in debian/copyright

[Thomas Viehmann]

Package: c-ares
Severity: serious
Version: 1.5.1-0

Hi,

the debian/copyright fails to list copyright notices, e.g. those for 
copyrights owned by the Massachusetts Institute of Technology.


Kind regards

T.
--
Thomas Viehmann, http://thomas.viehmann.net/



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484474: this is a no-dsa

[Thijs Kinkhorst]

Hi,

Just to let you know that we won't be treating this as an issue for which
we'll issue a stable DSA. See for reasoning the similar issue in
reportbug, which is here even stronger because as a GUI application, it is
often ran from the menu rather than the commandline.

However, you can provide an update for stable proposed updates in
coordination with the stable release managers to fix this bug.


cheers,
Thijs




--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484311: reportbug adds os.curdir to sys.path

[Nico Golde]

Hi Thijs,
* Thijs Kinkhorst <[EMAIL PROTECTED]> [2008-06-04 14:14]:
> On Wed, June 4, 2008 13:14, Nico Golde wrote:
> > I agree that it is of a low impact but I disagree that this
> > is not a security issue, people are using reportbug in /tmp and I don't see
> > a reason to assume people are not doing that.
> 
> The chance of succesful exploitation still seems very small, and indeed
> even then the problem is limited to just a regular user account. It's good
> that Sandro is fixing the bug directly so I'm not going to argue over bug
> severity, but I'm marking it as no-dsa for stable.

Ok I thought you were also arguing about the severity in the 
tracker. No-dsa seems fine to me.

Cheers
Nico
-- 
Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.


pgpDRbC08vWjF.pgp
Description: PGP signature

Bug#484491: CVE-2008-2098: buffer overflow allows arbitrary code execution

[Robert Edmonds]

severity 484491 normal
thanks

Steffen Joeris wrote:
> Package: vmware-package
> Severity: grave
> Tags: security
> Justification: user security hole
> 
> Hi
> 
> The following CVE[0] has been issued against vmware products.

hi,

vmware-package is a script which builds .debs from vmware tarballs; even
if vmware-package is updated in the debian archive, it is incumbent upon
individual sysadmins to download new tarballs from vmware.com and update
their installations, since the vmware-package package does not do any
automatic downloading/installation (indeed, one can install the
generated debs on systems which don't even have vmware-package
installed).

I will upload a vmware-package with updated hashes for these new point
releases shortly; in the mean time, the '-s' option to make-vmpkg will
(probably, I haven't tested; but all vmware point releases so far have
not introduced changes requiring more advanced updates than updating the
hashes at the beginning of the make-vmpkg script) build .debs from the
new vmware tarballs.

-- 
Robert Edmonds
[EMAIL PROTECTED]


signature.asc
Description: Digital signature

Processed: Re: Bug#484491: CVE-2008-2098: buffer overflow allows arbitrary code execution

[Debian Bug Tracking System]

Processing commands for [EMAIL PROTECTED]:

> severity 484491 normal
Bug#484491: CVE-2008-2098: buffer overflow allows arbitrary code execution
Severity set to `normal' from `grave'

> thanks
Stopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484469: reassign 484469 to dpkg

[Raphael Hertzog]

reassign 484469 perl
thanks

Hi,

Neither is this dpkg that's faulty:
/bin/sh: line 1: 10805 Segmentation fault  /usr/sbin/dpkg-preconfigure --apt

It simply looks like that perl segfaults whenever it has something to do.


Giovanni, you simply show the final problem but I suppose it didn't appear
suddenly that way... you did a dist-upgrade or something just before,
isn't it?  Do you have a log of it?

Please give the output of the following commands in the situation where you
have the problem: 
dpkg -l 'perl*'
dpkg -l liblocale-gettext-perl
perl -MLocale::gettext -e 'print gettext("hello\n")'
perl -e 'print "hello\n"'


For future reference, the full log from the paste URL is:
# apt-get -f install
Reading package lists... Done
Building dependency tree   
Reading state information... Done
0 upgraded, 0 newly installed, 0 to remove and 79 not upgraded.
3 not fully installed or removed.
After this operation, 0B of additional disk space will be used.
/bin/sh: line 1: 10805 Segmentation fault  /usr/sbin/dpkg-preconfigure --apt
Setting up debconf (1.5.21) ...
dpkg: error processing debconf (--configure):
 subprocess post-installation script killed by signal (Segmentation fault)
Setting up perl (5.10.0-10) ...
/var/lib/dpkg/info/perl.postinst: line 19: 10810 Segmentation fault  
update-alternatives --install /usr/bin/rename rename /usr/bin/prename 60 
--slave /usr/share/man/man1/rename.1.gz rename.1.gz 
/usr/share/man/man1/prename.1.gz
dpkg: error processing perl (--configure):
 subprocess post-installation script returned error exit status 139
dpkg: dependency problems prevent configuration of libnet-ssleay-perl:
 libnet-ssleay-perl depends on perl (>= 5.10.0-9); however:
  Package perl is not configured yet.
dpkg: error processing libnet-ssleay-perl (--configure):
 dependency problems - leaving unconfigured
Errors were encountered while processing:
 debconf
 perl
 libnet-ssleay-perl
E: Sub-process /usr/bin/dpkg returned an error code (1)

Cheers,
-- 
Raphaël Hertzog

Le best-seller français mis à jour pour Debian Etch :
http://www.ouaza.com/livre/admin-debian/



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Processed: Re: reassign 484469 to dpkg

[Debian Bug Tracking System]

Processing commands for [EMAIL PROTECTED]:

> reassign 484469 perl
Bug#484469: debconf: it seems to segfaults configuring every package
Bug reassigned from package `dpkg' to `perl'.

> thanks
Stopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#481860: openssh-server upgrade didn't remove all compromised keys from /etc/ssh

[Raphael Hertzog]

On Mon, 19 May 2008, Vincent Lefevre wrote:
> On another Debian machihe, I can see that ssh-vulnkey outputs
> "Unknown (no blacklist information)" for the RSA key, probably
> because openssh-blacklist-extra isn't installed on this machine.
> 
> The description field of openssh-blacklist-extra says:
> "list of non-default blacklisted OpenSSH RSA and DSA keys"
> 
> I wonder why "non-default", because all these keys were generated
> automatically when Debian was installed.

non-default because ssh-keygen does generate 2048 bits keys for
RSA by default since quite some time and the postinst doesn't
give an explicit size when it creates the keys.

openssh (1:4.2p1-1) unstable; urgency=low
[...]
- Increase the default size of new RSA/DSA keys generated by ssh-keygen
  from 1024 to 2048 bits (closes: #181162).
[...]
 -- Colin Watson <[EMAIL PROTECTED]>  Wed, 14 Sep 2005 15:16:14 +0100

So either this key got installed/generated manually, or it was
generated with an old SSH version running with a bad libssl,
or (unlikely) the key was generated normally and you simply
happen to have generated one of the bad ones.

I don't think this bug warrants its "grave" status.

Cheers,
-- 
Raphaël Hertzog

Le best-seller français mis à jour pour Debian Etch :
http://www.ouaza.com/livre/admin-debian/



--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484311: reportbug adds os.curdir to sys.path

[Chris Lawrence]

Per my vac message if you guys can put together a quick release in the
next day or so that would be great. It will otherwise be Tuesday at
the earliest. Chris.

On 6/4/08, Thijs Kinkhorst <[EMAIL PROTECTED]> wrote:
> On Wed, June 4, 2008 14:27, Thomas Arendsen Hein wrote:
>> I encountered this bug in the real world: I extracted a tarball
>> which contained a file named token.py, then I wanted to report a problem
>> and therefore started reportbug.
>>
>> This tarball did not contain harmful code, but as I did not verify
>> it before (because I did not intend to execute parts of it), it could have
>> been harmful.
>>
>> And of course there is /tmp as mentioned by Nico Golde.
>
> That it can happen by accident does not mean that it is easy to explicitly
> exploit. I still believe that those chances are small enough to not
> consider an update to stable (needs local malicious user, needs victim
> user to run reportbug in exactly the right dir, and only then provides
> access to "just" the user account).
>
> If the maintainer wants to provide an update through a stable point update
> that is of course fine.
>
>
> Thijs
>
>
>
>

-- 
Sent from Gmail for mobile | mobile.google.com

Christopher N. Lawrence, Ph.D. <[EMAIL PROTECTED]>
Visiting Assistant Professor of Political Science
Tulane University
309 Norman Mayer Building
New Orleans, Louisiana 70118-5698

Website: http://www.cnlawrence.com/



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#483400: python-mapscript module crashes when importing

[Dolf Andringa]

I am experiencing the same problem with Debian Unstable. The following
thread seems to discuss this problem:
http://www.mail-archive.com/[EMAIL PROTECTED]/msg14117.html

Some of my installed packages are the following (all standard debian
packages):

ii  libagg-dev2.5+dfsg1-1   The
AntiGrain Geometry graphical toolkit (development files)
ii  python-mapscript 5.0.2-2+b1 Python
library for MapServer
ii  libgdal1-1.5.0   1.5.1-4
Geospatial Data Abstraction Library
ii  libgdal1-dev 1.5.1-4
Geospatial Data Abstraction Library - Development files
ii  libgdal1-1.5.0-grass  1.5.1-1  GRASS
extension for the Geospatial Data Abstraction Library
ii  libgdal1-1.4.0-grass  1.4.4-1+b1 GRASS
extension for the Geospatial Data Abstraction Library
ii  libgeos-3.0.03.0.0-5
Geometry engine for Geographic Information Systems - C++ Library
ii  libgeos-c13.0.0-5
Geometry engine for Geographic Information Systems - C Library
ii  proj 4.6.0-1
  Cartographic projection filter and library

Cheers,

Dolf.

Bug#475705: marked as done (linux-modules-extra-2.6: FTBFS: scripts/Makefile.build:46: *** CFLAGS was changed)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 14:32:08 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#476359: fixed in r6040 0.17-3
has caused the Debian Bug report #476359,
regarding linux-modules-extra-2.6: FTBFS: scripts/Makefile.build:46: *** CFLAGS 
was changed
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
476359: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=476359
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: linux-modules-extra-2.6
Version: 2.6.24-7
Severity: serious

Hi,

Your package is failing to build with the following error:
make[3]: Entering directory `/usr/src/linux-headers-2.6.24-1-amd64'
scripts/Makefile.build:46: *** CFLAGS was changed in 
"/build/buildd/linux-modules-extra-2.6-2.6.24/debian/build/build_amd64_none_amd64_r6040/Makefile".
Fix it to use EXTRA_CFLAGS.  Stop.
make[3]: *** 
[_module_/build/buildd/linux-modules-extra-2.6-2.6.24/debian/build/build_amd64_none_amd64_r6040]
 Error 2



Kurt



--- End Message ---
--- Begin Message ---
Source: r6040
Source-Version: 0.17-3

We believe that the bug you reported is fixed in the latest version of
r6040, which is due to be installed in the Debian FTP archive:

r6040-source_0.17-3_all.deb
  to pool/main/r/r6040/r6040-source_0.17-3_all.deb
r6040_0.17-3.diff.gz
  to pool/main/r/r6040/r6040_0.17-3.diff.gz
r6040_0.17-3.dsc
  to pool/main/r/r6040/r6040_0.17-3.dsc



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Piotr Roszatycki <[EMAIL PROTECTED]> (supplier of updated r6040 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed, 04 Jun 2008 14:47:37 +0200
Source: r6040
Binary: r6040-source
Architecture: source all
Version: 0.17-3
Distribution: unstable
Urgency: medium
Maintainer: Piotr Roszatycki <[EMAIL PROTECTED]>
Changed-By: Piotr Roszatycki <[EMAIL PROTECTED]>
Description: 
 r6040-source - RDC R6040 PCI FastEthernet Linux Driver - kernel module sources
Closes: 475705 476359
Changes: 
 r6040 (0.17-3) unstable; urgency=medium
 .
   * Compatibility with the latest kernel 2.6.25-2. Closes: #475705, #476359.
Checksums-Sha1: 
 799f5c61d40d232c98e4baf97945e77468fc0a35 1063 r6040_0.17-3.dsc
 f824413d083b31a479fa9f8e6d52c978bca548f1 5062 r6040_0.17-3.diff.gz
 cca6b010dc0a1aa92c382c31d1789b261ab9c70e 15136 r6040-source_0.17-3_all.deb
Checksums-Sha256: 
 e56f49e42789c8d71418fe409ac71940c3606264630cb16bc92ff7ea9cc32873 1063 
r6040_0.17-3.dsc
 cc989de61810b5cac9b11bd693df5149e9993e9d4308a8bb8fb17da45d9efa72 5062 
r6040_0.17-3.diff.gz
 18477541438f974c2dc40ed1c0c1869549c29f09e1747efcb51e6eb8a67be416 15136 
r6040-source_0.17-3_all.deb
Files: 
 c405c263d8da7355fc80b1394ac334c6 1063 net extra r6040_0.17-3.dsc
 6bc9fa36d253d404641974c413725f54 5062 net extra r6040_0.17-3.diff.gz
 5f1d591dd535176dae2c57b8d8c0e51d 15136 net extra r6040-source_0.17-3_all.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFIRqSChMHHe8CxClsRAgDNAKDriJEp0ykHHgrqxKoKQ/XywfB5kwCcDrQT
bRvaE1JN4qkBG6tTAOPrXUI=
=m+N8
-END PGP SIGNATURE-


--- End Message ---

Bug#476359: marked as done (Regression FTBFS with 2.6.25)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 14:32:08 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#476359: fixed in r6040 0.17-3
has caused the Debian Bug report #476359,
regarding Regression FTBFS with 2.6.25
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
476359: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=476359
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: r6040
Severity: serious
Version: 0.17-2

Hi,

r6040 0.17.1 has been sucessfully been build with
linux-modules-extra-2.6, however, for some reason it doesn't do anymore
as of 0.17-2.

Here is the build log:

/usr/bin/make -f debian/rules.real build MAJOR='2.6'
MODULESOURCE='r6040-source' FLAVOUR='486' KERNEL_ARCH='x86'
UPSTREAMVERSION='2.6.24' MODULE='r6040' FEATURESET='none'
VERSION_SOURCE='2.6.24' VERSION='2.6.24' ABINAME='-1'
LOCALVERSION='-486' ARCH='i386' VERSION_DEBIAN='8'
make[2]: Entering directory `/home/user/linux-modules-extra-2.6'
/usr/bin/make -C /usr/src/linux-headers-2.6.24-1-486
M=/home/user/linux-modules-extra-2.6/debian/build/build_i386_none_486_r6040
make[3]: Entering directory `/usr/src/linux-headers-2.6.24-1-486'
scripts/Makefile.build:46: *** CFLAGS was changed in
"/home/user/linux-modules-extra-2.6/debian/build/build_i386_none_486_r6040/Makefile".
Fix it to use EXTRA_CFLAGS.  Stop.
make[3]: ***
[_module_/home/user/linux-modules-extra-2.6/debian/build/build_i386_none_486_r6040]
Error 2
make[3]: Leaving directory `/usr/src/linux-headers-2.6.24-1-486'
make[2]: *** [debian/stamps/build_i386_none_486_r6040] Error 2
make[2]: Leaving directory `/home/user/linux-modules-extra-2.6'
make[1]: *** [build_i386_none_486_r6040] Error 2
make[1]: Leaving directory `/home/user/linux-modules-extra-2.6'
make: *** [debian/stamps/build-base] Error 2
dpkg-buildpackage: failure: debian/rules build gave error exit status 2
(unstable_i386)[EMAIL PROTECTED]:~/linux-modules-extra-2.6$

-- 
Address:Daniel Baumann, Burgunderstrasse 3, CH-4562 Biberist
Email:  [EMAIL PROTECTED]
Internet:   http://people.panthera-systems.net/~daniel-baumann/


--- End Message ---
--- Begin Message ---
Source: r6040
Source-Version: 0.17-3

We believe that the bug you reported is fixed in the latest version of
r6040, which is due to be installed in the Debian FTP archive:

r6040-source_0.17-3_all.deb
  to pool/main/r/r6040/r6040-source_0.17-3_all.deb
r6040_0.17-3.diff.gz
  to pool/main/r/r6040/r6040_0.17-3.diff.gz
r6040_0.17-3.dsc
  to pool/main/r/r6040/r6040_0.17-3.dsc



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Piotr Roszatycki <[EMAIL PROTECTED]> (supplier of updated r6040 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed, 04 Jun 2008 14:47:37 +0200
Source: r6040
Binary: r6040-source
Architecture: source all
Version: 0.17-3
Distribution: unstable
Urgency: medium
Maintainer: Piotr Roszatycki <[EMAIL PROTECTED]>
Changed-By: Piotr Roszatycki <[EMAIL PROTECTED]>
Description: 
 r6040-source - RDC R6040 PCI FastEthernet Linux Driver - kernel module sources
Closes: 475705 476359
Changes: 
 r6040 (0.17-3) unstable; urgency=medium
 .
   * Compatibility with the latest kernel 2.6.25-2. Closes: #475705, #476359.
Checksums-Sha1: 
 799f5c61d40d232c98e4baf97945e77468fc0a35 1063 r6040_0.17-3.dsc
 f824413d083b31a479fa9f8e6d52c978bca548f1 5062 r6040_0.17-3.diff.gz
 cca6b010dc0a1aa92c382c31d1789b261ab9c70e 15136 r6040-source_0.17-3_all.deb
Checksums-Sha256: 
 e56f49e42789c8d71418fe409ac71940c3606264630cb16bc92ff7ea9cc32873 1063 
r6040_0.17-3.dsc
 cc989de61810b5cac9b11bd693df5149e9993e9d4308a8bb8fb17da45d9efa72 5062 
r6040_0.17-3.diff.gz
 18477541438f974c2dc40ed1c0c1869549c29f09e1747efcb51e6eb8a67be416 15136 
r6040-source_0.17-3_all.deb
Files: 
 c405c263d8da7355fc80b1394ac334c6 1063 net extra r6040_0.17-3.dsc
 6bc9fa36d253d404641974c413725f54 5062 net extra r6040_0.17-3.diff.gz
 5f1d591dd535176dae2c57b8d8c0e51d 15136 net extra r6040-source_0.17-3_all.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFIRqSChMHHe8CxClsRAgDNAKDriJEp0ykHHgrqxKoKQ/XywfB5kwCcDrQT
bRvaE1JN4qkBG6tTAOPrXUI=
=m+N8
-END PGP SIGNATURE-


--- End Messag

Bug#475705: marked as done (linux-modules-extra-2.6: FTBFS: scripts/Makefile.build:46: *** CFLAGS was changed)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 14:32:08 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#475705: fixed in r6040 0.17-3
has caused the Debian Bug report #475705,
regarding linux-modules-extra-2.6: FTBFS: scripts/Makefile.build:46: *** CFLAGS 
was changed
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
475705: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=475705
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: linux-modules-extra-2.6
Version: 2.6.24-7
Severity: serious

Hi,

Your package is failing to build with the following error:
make[3]: Entering directory `/usr/src/linux-headers-2.6.24-1-amd64'
scripts/Makefile.build:46: *** CFLAGS was changed in 
"/build/buildd/linux-modules-extra-2.6-2.6.24/debian/build/build_amd64_none_amd64_r6040/Makefile".
Fix it to use EXTRA_CFLAGS.  Stop.
make[3]: *** 
[_module_/build/buildd/linux-modules-extra-2.6-2.6.24/debian/build/build_amd64_none_amd64_r6040]
 Error 2



Kurt



--- End Message ---
--- Begin Message ---
Source: r6040
Source-Version: 0.17-3

We believe that the bug you reported is fixed in the latest version of
r6040, which is due to be installed in the Debian FTP archive:

r6040-source_0.17-3_all.deb
  to pool/main/r/r6040/r6040-source_0.17-3_all.deb
r6040_0.17-3.diff.gz
  to pool/main/r/r6040/r6040_0.17-3.diff.gz
r6040_0.17-3.dsc
  to pool/main/r/r6040/r6040_0.17-3.dsc



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Piotr Roszatycki <[EMAIL PROTECTED]> (supplier of updated r6040 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed, 04 Jun 2008 14:47:37 +0200
Source: r6040
Binary: r6040-source
Architecture: source all
Version: 0.17-3
Distribution: unstable
Urgency: medium
Maintainer: Piotr Roszatycki <[EMAIL PROTECTED]>
Changed-By: Piotr Roszatycki <[EMAIL PROTECTED]>
Description: 
 r6040-source - RDC R6040 PCI FastEthernet Linux Driver - kernel module sources
Closes: 475705 476359
Changes: 
 r6040 (0.17-3) unstable; urgency=medium
 .
   * Compatibility with the latest kernel 2.6.25-2. Closes: #475705, #476359.
Checksums-Sha1: 
 799f5c61d40d232c98e4baf97945e77468fc0a35 1063 r6040_0.17-3.dsc
 f824413d083b31a479fa9f8e6d52c978bca548f1 5062 r6040_0.17-3.diff.gz
 cca6b010dc0a1aa92c382c31d1789b261ab9c70e 15136 r6040-source_0.17-3_all.deb
Checksums-Sha256: 
 e56f49e42789c8d71418fe409ac71940c3606264630cb16bc92ff7ea9cc32873 1063 
r6040_0.17-3.dsc
 cc989de61810b5cac9b11bd693df5149e9993e9d4308a8bb8fb17da45d9efa72 5062 
r6040_0.17-3.diff.gz
 18477541438f974c2dc40ed1c0c1869549c29f09e1747efcb51e6eb8a67be416 15136 
r6040-source_0.17-3_all.deb
Files: 
 c405c263d8da7355fc80b1394ac334c6 1063 net extra r6040_0.17-3.dsc
 6bc9fa36d253d404641974c413725f54 5062 net extra r6040_0.17-3.diff.gz
 5f1d591dd535176dae2c57b8d8c0e51d 15136 net extra r6040-source_0.17-3_all.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFIRqSChMHHe8CxClsRAgDNAKDriJEp0ykHHgrqxKoKQ/XywfB5kwCcDrQT
bRvaE1JN4qkBG6tTAOPrXUI=
=m+N8
-END PGP SIGNATURE-


--- End Message ---

Bug#476359: marked as done (Regression FTBFS with 2.6.25)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 14:32:08 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#475705: fixed in r6040 0.17-3
has caused the Debian Bug report #475705,
regarding Regression FTBFS with 2.6.25
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
475705: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=475705
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: r6040
Severity: serious
Version: 0.17-2

Hi,

r6040 0.17.1 has been sucessfully been build with
linux-modules-extra-2.6, however, for some reason it doesn't do anymore
as of 0.17-2.

Here is the build log:

/usr/bin/make -f debian/rules.real build MAJOR='2.6'
MODULESOURCE='r6040-source' FLAVOUR='486' KERNEL_ARCH='x86'
UPSTREAMVERSION='2.6.24' MODULE='r6040' FEATURESET='none'
VERSION_SOURCE='2.6.24' VERSION='2.6.24' ABINAME='-1'
LOCALVERSION='-486' ARCH='i386' VERSION_DEBIAN='8'
make[2]: Entering directory `/home/user/linux-modules-extra-2.6'
/usr/bin/make -C /usr/src/linux-headers-2.6.24-1-486
M=/home/user/linux-modules-extra-2.6/debian/build/build_i386_none_486_r6040
make[3]: Entering directory `/usr/src/linux-headers-2.6.24-1-486'
scripts/Makefile.build:46: *** CFLAGS was changed in
"/home/user/linux-modules-extra-2.6/debian/build/build_i386_none_486_r6040/Makefile".
Fix it to use EXTRA_CFLAGS.  Stop.
make[3]: ***
[_module_/home/user/linux-modules-extra-2.6/debian/build/build_i386_none_486_r6040]
Error 2
make[3]: Leaving directory `/usr/src/linux-headers-2.6.24-1-486'
make[2]: *** [debian/stamps/build_i386_none_486_r6040] Error 2
make[2]: Leaving directory `/home/user/linux-modules-extra-2.6'
make[1]: *** [build_i386_none_486_r6040] Error 2
make[1]: Leaving directory `/home/user/linux-modules-extra-2.6'
make: *** [debian/stamps/build-base] Error 2
dpkg-buildpackage: failure: debian/rules build gave error exit status 2
(unstable_i386)[EMAIL PROTECTED]:~/linux-modules-extra-2.6$

-- 
Address:Daniel Baumann, Burgunderstrasse 3, CH-4562 Biberist
Email:  [EMAIL PROTECTED]
Internet:   http://people.panthera-systems.net/~daniel-baumann/


--- End Message ---
--- Begin Message ---
Source: r6040
Source-Version: 0.17-3

We believe that the bug you reported is fixed in the latest version of
r6040, which is due to be installed in the Debian FTP archive:

r6040-source_0.17-3_all.deb
  to pool/main/r/r6040/r6040-source_0.17-3_all.deb
r6040_0.17-3.diff.gz
  to pool/main/r/r6040/r6040_0.17-3.diff.gz
r6040_0.17-3.dsc
  to pool/main/r/r6040/r6040_0.17-3.dsc



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Piotr Roszatycki <[EMAIL PROTECTED]> (supplier of updated r6040 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Wed, 04 Jun 2008 14:47:37 +0200
Source: r6040
Binary: r6040-source
Architecture: source all
Version: 0.17-3
Distribution: unstable
Urgency: medium
Maintainer: Piotr Roszatycki <[EMAIL PROTECTED]>
Changed-By: Piotr Roszatycki <[EMAIL PROTECTED]>
Description: 
 r6040-source - RDC R6040 PCI FastEthernet Linux Driver - kernel module sources
Closes: 475705 476359
Changes: 
 r6040 (0.17-3) unstable; urgency=medium
 .
   * Compatibility with the latest kernel 2.6.25-2. Closes: #475705, #476359.
Checksums-Sha1: 
 799f5c61d40d232c98e4baf97945e77468fc0a35 1063 r6040_0.17-3.dsc
 f824413d083b31a479fa9f8e6d52c978bca548f1 5062 r6040_0.17-3.diff.gz
 cca6b010dc0a1aa92c382c31d1789b261ab9c70e 15136 r6040-source_0.17-3_all.deb
Checksums-Sha256: 
 e56f49e42789c8d71418fe409ac71940c3606264630cb16bc92ff7ea9cc32873 1063 
r6040_0.17-3.dsc
 cc989de61810b5cac9b11bd693df5149e9993e9d4308a8bb8fb17da45d9efa72 5062 
r6040_0.17-3.diff.gz
 18477541438f974c2dc40ed1c0c1869549c29f09e1747efcb51e6eb8a67be416 15136 
r6040-source_0.17-3_all.deb
Files: 
 c405c263d8da7355fc80b1394ac334c6 1063 net extra r6040_0.17-3.dsc
 6bc9fa36d253d404641974c413725f54 5062 net extra r6040_0.17-3.diff.gz
 5f1d591dd535176dae2c57b8d8c0e51d 15136 net extra r6040-source_0.17-3_all.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFIRqSChMHHe8CxClsRAgDNAKDriJEp0ykHHgrqxKoKQ/XywfB5kwCcDrQT
bRvaE1JN4qkBG6tTAOPrXUI=
=m+N8
-END PGP SIGNATURE-


--- End Messag

Bug#484499: slash: possible SQL injection vulnerability

[Axel Beckert]

Hi,

Steffen Joeris schrieb am Wed, Jun 04, 2008 at 11:24:06PM +1000:
> Yes, I am aware that the stable team knows about it.

Oh, ok.

> The issue, however, is unembargoed (and thus public and known)

Of course it is.

> and nothing stops you from uploading fixed packages to unstable.

That's not right. slash is currently uninstallable in Sid (due to the
dependency on Apache 1.3, see #429071) and I asked in my reply to the
last mail from the Security Team how to deal with this issue in in
unstable, but never got an answer. (If there are any misunderstandings
in regards of this, I'm happy if I can clear them.)

But fixing #429071 is quite a lot of work through which I'm currently
not completely through (and maybe I won't be for lenny).

> I had a look at the etch packages you provided for the security
> update and saw that there are some other changes to all the
> Makefiles. Also there is some code added into the postinst to
> restart apache. Are these changes really necessary for the security
> update?

IIRC they were other changes necessary because otherwise the upgrade
would fail (what's not the idea of a security update IMHO).

I initially took over the package in a quite bad shape, fixed nearly
all of the at that time open bugs for Etch. But I seem to have
overseen that there were also some bugs when upgrading the package. At
least my upgrade tests resulted in the package wanting to create new
databases, etc. I at least remember that I had to change some more
things than just the bug to make the upgrade work smooth.

I'm still not sure how to deal with this in unstable, but the next
upload for this package will surely go to experimental, so the package
shouldn't be that long in unstable anymore. Maybe this can be seen as
fix for the issue.

Regards, Axel
-- 
/~\| Axel Beckert
\ /  Plain Text Ribbon Campaign| [EMAIL PROTECTED] (Mail)
 X   Say No to HTML in E-Mail and News | [EMAIL PROTECTED](Mail+Jabber)
/ \| http://noone.org/abe/(Web)



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Processed: reassign 484469 to dpkg

[Debian Bug Tracking System]

Processing commands for [EMAIL PROTECTED]:

> # Automatically generated email from bts, devscripts version 2.10.28
> reassign 484469 dpkg
Bug#484469: debconf: it seems to segfaults configuring every package
Bug reassigned from package `debconf' to `dpkg'.

>
End of message, stopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484469: [Debconf-devel] Bug#484469: debconf: it seems to segfaults configuring every package

[Joey Hess]

Giovanni Lovato wrote:
> Package: debconf
> Version: 1.5.22
> Severity: grave
> Justification: renders package unusable
> 
> apt-get segfaults on every action using debconf, aptitute too.
> Look at  for an example.

/var/lib/dpkg/info/perl.postinst: line 19: 10810 Segmentation fault
update-alternatives --install /usr/bin/rename rename /usr/bin/prename 60
--slave /usr/share/man/man1/rename.1.gz rename.1.gz
/usr/share/man/man1/prename.1.gz

That's not debconf segfaulting.

-- 
see shy jo


signature.asc
Description: Digital signature

Bug#484503: tightvncserver: could not open default font 'fixed'

[Ola Lundqvist]

severity 484503 important
thanks

Lowering this one as well. For comments see the other bug you just
submitted.

Best regards,

// Ola

On Wed, Jun 04, 2008 at 02:52:31PM +0200, Georg Hoermann wrote:
> Package: tightvncserver
> Version: 1.3.9-4
> Severity: grave
> Justification: renders package unusable
> 
> 
> The system does not start up, this bug exists for months now and I 
> did *not* find a solution. I am no X guru, my other machine has
> exactly the same problem. I did not change x configuration etc.,
> XWindows on the PC is o.k., I just cannot use vncserver. This
> also concerns other vnc packages (vnc4server)
> 
> 
> -- System Information:
> Debian Release: lenny/sid
>   APT prefers unstable
>   APT policy: (990, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
> 'experimental')
> Architecture: i386 (i686)
> 
> Kernel: Linux 2.6.22-3-686 (SMP w/1 CPU core)
> Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15)
> Shell: /bin/sh linked to /bin/bash
> 
> Versions of packages tightvncserver depends on:
> ii  libc6  2.7-12GNU C Library: Shared libraries
> ii  libjpeg62  6b-14 The Independent JPEG Group's 
> JPEG 
> ii  libx11-6   2:1.0.3-7 X11 client-side library
> ii  libxext6   2:1.0.4-1 X11 miscellaneous extension 
> librar
> ii  perl   5.10.0-10 Larry Wall's Practical 
> Extraction 
> ii  x11-common 1:7.3+11  X Window System (X.Org) 
> infrastruc
> ii  xbase-clients  1:7.3+11  miscellaneous X clients - 
> metapack
> ii  zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime
> 
> Versions of packages tightvncserver recommends:
> ii  xfonts-base   1:1.0.0-5  standard fonts for X
> 
> -- no debconf information
> 
> 
> 

-- 
 - Ola Lundqvist ---
/  [EMAIL PROTECTED] Annebergsslingan 37  \
|  [EMAIL PROTECTED]  654 65 KARLSTAD  |
|  http://inguza.com/  +46 (0)70-332 1551   |
\  gpg/f.p.: 7090 A92B 18FE 7994 0C36  4FE4 18A1 B1CF 0FE5 3DD9 /
 ---



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Processed: Re: Bug#484503: tightvncserver: could not open default font 'fixed'

[Debian Bug Tracking System]

Processing commands for [EMAIL PROTECTED]:

> severity 484503 important
Bug#484503: tightvncserver: could not open default font 'fixed'
Severity set to `important' from `grave'

> thanks
Stopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484313: marked as done (compizconfig-backend-gconf: FTBFS without libxslt1-dev installed)

[Debian Bug Tracking System]

Your message dated Wed, 4 Jun 2008 15:36:58 +0200
with message-id <[EMAIL PROTECTED]>
and subject line Re: Bug#484313: compizconfig-backend-gconf: FTBFS without 
libxslt1-dev installed
has caused the Debian Bug report #484313,
regarding compizconfig-backend-gconf: FTBFS without libxslt1-dev installed
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
484313: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=484313
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: compizconfig-backend-gconf
Version: 0.7.4-2
Severity: serious

I just tried compiling it on my testing machine, and it died as it
couldn't find libxslt.pc, so I needed to install libxslt1-dev to build
the package.

   Julian


--- End Message ---
--- Begin Message ---
On Tue, Jun  3, 2008 at 17:38:10 +0100, Julian Gilbey wrote:

> Package: compizconfig-backend-gconf
> Version: 0.7.4-2
> Severity: serious
> 
> I just tried compiling it on my testing machine, and it died as it
> couldn't find libxslt.pc, so I needed to install libxslt1-dev to build
> the package.
> 
Fixed in compiz-dev 0.7.6-1.

Cheers,
Julien

--- End Message ---

Processed: Re: Bug#484504: vnc4server: could not open default font "fixed"

[Debian Bug Tracking System]

Processing commands for [EMAIL PROTECTED]:

> severity 484504 important
Bug#484504: vnc4server: could not open default font "fixed"
Severity set to `important' from `grave'

> thanks
Stopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484504: vnc4server: could not open default font "fixed"

[Ola Lundqvist]

severity 484504 important
thanks

Hi Georg

I'm lowering the severity because I know that it works for many users.
It works perfectly for me for example. It must be something related
to the configuration.

On Wed, Jun 04, 2008 at 03:01:01PM +0200, Georg Hoermann wrote:
> Package: vnc4server
> Version: 4.1.1+X4.3.0-26
> Severity: grave
> Justification: renders package unusable
> 
> 
> The system does not start up, this bug exists for months now and I
> did *not* find a solution. I am no X guru, my other machine has
> exactly the same problem. I did not change x configuration etc.,
> XWindows on the PC is o.k., I just cannot use vncserver. This
> also concerns other vnc packages (vnc4server)

A couple of things for you to check:
* Have you any font server in the X configuration file? If so remove it please.
* The list of font paths seems a bit short, can you send me the config
  file for X so I can take a look at it.

Best regards,

// Ola


> 
> 
> Xvnc Free Edition 4.1.1 - built Apr 22 2008 08:22:52
> Copyright (C) 2002-2005 RealVNC Ltd.
> See http://www.realvnc.com for information on VNC.
> Underlying X server release 4030, The XFree86 Project, Inc
> 
> 
> Wed Jun  4 14:52:59 2008
>  vncext:  VNC extension running!
>   vncext:  Listening for VNC connections on port 5901
>vncext:  Listening for HTTP connections on port 5801
> vncext:  created VNC server for screen 0
> Could not init font path element /usr/X11R6/lib/X11/fonts/Speedo/,
> removing from list!
> Could not init font path element /usr/X11R6/lib/X11/fonts/misc/,
> removing from list!
> Could not init font path element /usr/share/fonts/X11/misc/,
> removing from list!
> 
> Fatal server error:
> could not open default font 'fixed'
> xsetroot:  unable to open display 'voltaire:1'
> vncconfig: unable to open display "voltaire:1"
> x-window-manager: cannot connect to X server voltaire:1
> x-terminal-emulator: cannot connect to X server voltaire:1
> 
> 
> 
> 
> -- System Information:
> Debian Release: lenny/sid
>   APT prefers unstable
>   APT policy: (990, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
> 'experimental')
> Architecture: i386 (i686)
> 
> Kernel: Linux 2.6.22-3-686 (SMP w/1 CPU core)
> Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15)
> Shell: /bin/sh linked to /bin/bash
> 
> Versions of packages vnc4server depends on:
> ii  libc6  2.7-12GNU C Library: Shared libraries
> ii  libgcc11:4.3.0-2 GCC support library
> ii  libice62:1.0.4-1 X11 Inter-Client Exchange library
> ii  libsm6 2:1.0.3-1+b1  X11 Session Management library
> ii  libstdc++6 4.3.0-2   The GNU Standard C++ Library v3
> ii  libx11-6   2:1.0.3-7 X11 client-side library
> ii  libxext6   2:1.0.4-1 X11 miscellaneous extension 
> librar
> ii  libxtst6   2:1.0.3-1 X11 Testing -- Resource 
> extension 
> ii  x11-common 1:7.3+11  X Window System (X.Org) 
> infrastruc
> ii  xbase-clients  1:7.3+11  miscellaneous X clients - 
> metapack
> ii  zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime
> 
> Versions of packages vnc4server recommends:
> ii  xfonts-base   1:1.0.0-5  standard fonts for X
> 
> -- no debconf information
> 
> 
> 

-- 
 - Ola Lundqvist ---
/  [EMAIL PROTECTED] Annebergsslingan 37  \
|  [EMAIL PROTECTED]  654 65 KARLSTAD  |
|  http://inguza.com/  +46 (0)70-332 1551   |
\  gpg/f.p.: 7090 A92B 18FE 7994 0C36  4FE4 18A1 B1CF 0FE5 3DD9 /
 ---



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484507: grub-pc postinst fails silently

[Pierre Habouzit]

Package: grub-pc
Version: 1.96+20080601-2
Severity: serious

Excerpt from today's update:

Setting up grub-pc (1.96+20080601-2) ...
Installing new version of config file /etc/grub.d/10_linux ...
*** glibc detected *** /usr/sbin/grub-probe: realloc(): invalid next size: 
0x01bf83d0 ***
=== Backtrace: =
/lib/libc.so.6[0x7fea45626978]
/lib/libc.so.6[0x7fea4562a571]
/lib/libc.so.6(realloc+0x12f)[0x7fea4562afef]
/usr/sbin/grub-probe[0x402ff9]
/usr/sbin/grub-probe[0x411cb9]
/usr/sbin/grub-probe[0x411d80]
/usr/sbin/grub-probe[0x4130ac]
/usr/sbin/grub-probe[0x4182da]
/usr/sbin/grub-probe[0x4016f2]
/usr/sbin/grub-probe[0x401b68]
/lib/libc.so.6(__libc_start_main+0xe6)[0x7fea455d11a6]
/usr/sbin/grub-probe[0x4014a9]
=== Memory map: 
0040-00422000 r-xp  08:03 22141  
/usr/sbin/grub-probe
00622000-00623000 rwxp 00022000 08:03 22141  
/usr/sbin/grub-probe
00623000-0062f000 rwxp 00623000 00:00 0 
01be2000-0213 rwxp 01be2000 00:00 0  
[heap]
7fea4000-7fea40021000 rwxp 7fea4000 00:00 0 
7fea40021000-7fea4400 ---p 7fea40021000 00:00 0 
7fea4539c000-7fea453b2000 r-xp  08:03 4625183
/lib/libgcc_s.so.1
7fea453b2000-7fea455b2000 ---p 00016000 08:03 4625183
/lib/libgcc_s.so.1
7fea455b2000-7fea455b3000 rwxp 00016000 08:03 4625183
/lib/libgcc_s.so.1
7fea455b3000-7fea456fd000 r-xp  08:03 4822269
/lib/libc-2.7.so
7fea456fd000-7fea458fd000 ---p 0014a000 08:03 4822269
/lib/libc-2.7.so
7fea458fd000-7fea4590 r-xp 0014a000 08:03 4822269
/lib/libc-2.7.so
7fea4590-7fea45902000 rwxp 0014d000 08:03 4822269
/lib/libc-2.7.so
7fea45902000-7fea45907000 rwxp 7fea45902000 00:00 0 
7fea45907000-7fea45923000 r-xp  08:03 4822265
/lib/ld-2.7.so
7fea45b02000-7fea45b04000 rwxp 7fea45b02000 00:00 0 
7fea45b1f000-7fea45b22000 rwxp 7fea45b1f000 00:00 0 
7fea45b22000-7fea45b24000 rwxp 0001b000 08:03 4822265
/lib/ld-2.7.so
7fff4db0f000-7fff4db24000 rwxp 7ffea000 00:00 0  
[stack]
7fff4dbfe000-7fff4dc0 r-xp 7fff4dbfe000 00:00 0  
[vdso]
ff60-ff601000 r-xp  00:00 0  
[vsyscall]
Aborted
Updating /boot/grub/grub.cfg ...

And it continued to upgrade without a glitch. The update should have failed.
Moreover, memory corruption isn't nice, which is another bug.



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484499: slash: possible SQL injection vulnerability

[Steffen Joeris]

Hi Alex

> the bug is well known to me, there are fixed packages available for
> Etch and Sarge (since at that time Sarge still had security support).
>
> Security Team has been informed about the bug on the day of the
> initial disclosure, but I'm still waiting for them to publish an DSA
> and publish a DSA and updated packages. I exchange a few mails
> with them, but I haven't heard anything since end of January. (Last
> mail from Moritz Muehlenhoff at Tue Jan 29 20:20:08 2008, last mail
> from me to Moritz Tue Jan 29 20:36:55 2008.)
Yes, I am aware that the stable team knows about it. The issue, however, is 
unembargoed (and thus public and known) and nothing stops you from uploading 
fixed packages to unstable.

I had a look at the etch packages you provided for the security update and saw 
that there are some other changes to all the Makefiles.
Also there is some code added into the postinst to restart apache. Are these 
changes really necessary for the security update?

Cheers
Steffen


signature.asc
Description: This is a digitally signed message part.

Bug#484504: vnc4server: could not open default font "fixed"

[Georg Hoermann]

Package: vnc4server
Version: 4.1.1+X4.3.0-26
Severity: grave
Justification: renders package unusable


The system does not start up, this bug exists for months now and I
did *not* find a solution. I am no X guru, my other machine has
exactly the same problem. I did not change x configuration etc.,
XWindows on the PC is o.k., I just cannot use vncserver. This
also concerns other vnc packages (vnc4server)



Xvnc Free Edition 4.1.1 - built Apr 22 2008 08:22:52
Copyright (C) 2002-2005 RealVNC Ltd.
See http://www.realvnc.com for information on VNC.
Underlying X server release 4030, The XFree86 Project, Inc


Wed Jun  4 14:52:59 2008
 vncext:  VNC extension running!
  vncext:  Listening for VNC connections on port 5901
   vncext:  Listening for HTTP connections on port 5801
vncext:  created VNC server for screen 0
Could not init font path element /usr/X11R6/lib/X11/fonts/Speedo/,
removing from list!
Could not init font path element /usr/X11R6/lib/X11/fonts/misc/,
removing from list!
Could not init font path element /usr/share/fonts/X11/misc/,
removing from list!

Fatal server error:
could not open default font 'fixed'
xsetroot:  unable to open display 'voltaire:1'
vncconfig: unable to open display "voltaire:1"
x-window-manager: cannot connect to X server voltaire:1
x-terminal-emulator: cannot connect to X server voltaire:1




-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (990, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
Architecture: i386 (i686)

Kernel: Linux 2.6.22-3-686 (SMP w/1 CPU core)
Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15)
Shell: /bin/sh linked to /bin/bash

Versions of packages vnc4server depends on:
ii  libc6  2.7-12GNU C Library: Shared libraries
ii  libgcc11:4.3.0-2 GCC support library
ii  libice62:1.0.4-1 X11 Inter-Client Exchange library
ii  libsm6 2:1.0.3-1+b1  X11 Session Management library
ii  libstdc++6 4.3.0-2   The GNU Standard C++ Library v3
ii  libx11-6   2:1.0.3-7 X11 client-side library
ii  libxext6   2:1.0.4-1 X11 miscellaneous extension librar
ii  libxtst6   2:1.0.3-1 X11 Testing -- Resource extension 
ii  x11-common 1:7.3+11  X Window System (X.Org) infrastruc
ii  xbase-clients  1:7.3+11  miscellaneous X clients - metapack
ii  zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime

Versions of packages vnc4server recommends:
ii  xfonts-base   1:1.0.0-5  standard fonts for X

-- no debconf information



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Processed: Re: Bug#484499: slash: possible SQL injection vulnerability

[Debian Bug Tracking System]

Processing commands for [EMAIL PROTECTED]:

> tag 484499 + confirmed pending patch etch
Bug#484499: slash: possible SQL injection vulnerability
Tags were: security
Tags added: confirmed, pending, patch, etch

> thanks
Stopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484499: slash: possible SQL injection vulnerability

[Axel Beckert]

tag 484499 + confirmed pending patch etch
thanks

Hi,

the bug is well known to me, there are fixed packages available for
Etch and Sarge (since at that time Sarge still had security support).

Security Team has been informed about the bug on the day of the
initial disclosure, but I'm still waiting for them to publish an DSA
and publish a DSA and updated packages. I exchange a few mails
with them, but I haven't heard anything since end of January. (Last
mail from Moritz Muehlenhoff at Tue Jan 29 20:20:08 2008, last mail
from me to Moritz Tue Jan 29 20:36:55 2008.)

Kind regards, Axel
-- 
/~\| Axel Beckert
\ /  Plain Text Ribbon Campaign| [EMAIL PROTECTED] (Mail)
 X   Say No to HTML in E-Mail and News | [EMAIL PROTECTED](Mail+Jabber)
/ \| http://noone.org/abe/(Web)



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484503: tightvncserver: could not open default font 'fixed'

[Georg Hoermann]

Package: tightvncserver
Version: 1.3.9-4
Severity: grave
Justification: renders package unusable


The system does not start up, this bug exists for months now and I 
did *not* find a solution. I am no X guru, my other machine has
exactly the same problem. I did not change x configuration etc.,
XWindows on the PC is o.k., I just cannot use vncserver. This
also concerns other vnc packages (vnc4server)


-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (990, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
Architecture: i386 (i686)

Kernel: Linux 2.6.22-3-686 (SMP w/1 CPU core)
Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15)
Shell: /bin/sh linked to /bin/bash

Versions of packages tightvncserver depends on:
ii  libc6  2.7-12GNU C Library: Shared libraries
ii  libjpeg62  6b-14 The Independent JPEG Group's JPEG 
ii  libx11-6   2:1.0.3-7 X11 client-side library
ii  libxext6   2:1.0.4-1 X11 miscellaneous extension librar
ii  perl   5.10.0-10 Larry Wall's Practical Extraction 
ii  x11-common 1:7.3+11  X Window System (X.Org) infrastruc
ii  xbase-clients  1:7.3+11  miscellaneous X clients - metapack
ii  zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime

Versions of packages tightvncserver recommends:
ii  xfonts-base   1:1.0.0-5  standard fonts for X

-- no debconf information



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#476606: marked as done (python-crack fails to install together with python-codespeak-lib)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 12:47:04 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#476606: fixed in codespeak-lib 0.9.1-2
has caused the Debian Bug report #476606,
regarding python-crack fails to install together with python-codespeak-lib
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
476606: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=476606
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: python-crack
Version: 0.5.1-2+b1
Severity: serious

Hi,

automatic installation tests of packages that share a file and at the
same time do not conflict by their package dependency relationships has
detected the following problem:

dpkg: error processing
/var/cache/apt/archives/python-crack_0.5.1-2+b1_amd64.deb (--unpack):
 trying to overwrite `/usr/share/pyshared/UNKNOWN-0.0.0.egg-info', which
 is also in package python-codespeak-lib

A full log of the installation attempt can be found here:

http://edos.debian.net/missing-conflicts/logs/python-codespeak-lib_python-crack

This is a serious bug as it makes installation fail. Possible
solutions are to have the two packages conflict, to rename the common
file in one of the two packages, or to remove the file from one
package and have this package depend on the other package. File
diversions are another possibility.

This bug could in principle be filed against any of the two packages.
I might have made the wrong choice in filing the bug against your
package, in this case please feel free to reassign to the other
package.

-Ralf.

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.24-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8) (ignored: LC_ALL 
set to en_US.utf8)
Shell: /bin/sh linked to /bin/bash


--- End Message ---
--- Begin Message ---
Source: codespeak-lib
Source-Version: 0.9.1-2

We believe that the bug you reported is fixed in the latest version of
codespeak-lib, which is due to be installed in the Debian FTP archive:

codespeak-lib_0.9.1-2.diff.gz
  to pool/main/c/codespeak-lib/codespeak-lib_0.9.1-2.diff.gz
codespeak-lib_0.9.1-2.dsc
  to pool/main/c/codespeak-lib/codespeak-lib_0.9.1-2.dsc
python-codespeak-lib_0.9.1-2_i386.deb
  to pool/main/c/codespeak-lib/python-codespeak-lib_0.9.1-2_i386.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Chris Lamb <[EMAIL PROTECTED]> (supplier of updated codespeak-lib package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Format: 1.8
Date: Sat, 31 May 2008 15:11:06 +0100
Source: codespeak-lib
Binary: python-codespeak-lib
Architecture: source i386
Version: 0.9.1-2
Distribution: unstable
Urgency: low
Maintainer: Chris Lamb <[EMAIL PROTECTED]>
Changed-By: Chris Lamb <[EMAIL PROTECTED]>
Description: 
 python-codespeak-lib - The pylib library containing py.test, greenlets and 
other nicetie
Closes: 476606
Changes: 
 codespeak-lib (0.9.1-2) unstable; urgency=low
 .
   * Tidy debian/rules.
   * Don't install /usr/share/pyshared/UNKNOWN-0.0.0.egg-info (Closes: #476606)
Checksums-Sha1: 
 7f80256778d45c7b5381ba1170044fba80c2e756 1212 codespeak-lib_0.9.1-2.dsc
 566fc07ca7e411b2ea5a95c8d5121a3ec829bf3a 9813 codespeak-lib_0.9.1-2.diff.gz
 7c707c15cbf6d3451ea60233f83b3646b646ecf9 3463440 
python-codespeak-lib_0.9.1-2_i386.deb
Checksums-Sha256: 
 0f1ac276be54325670150ff61c435a43e35163753eec481062e55e73c973c43c 1212 
codespeak-lib_0.9.1-2.dsc
 617db27601ea4de66769c3bfd2bc9b81413828db2488fe7c6c5eec49e8d76b35 9813 
codespeak-lib_0.9.1-2.diff.gz
 fb31fa38b045eee143934ab6cb5f25673706744dac3b0b17a6df121f5e868fee 3463440 
python-codespeak-lib_0.9.1-2_i386.deb
Files: 
 57696423bf6535000cb6fedbc54706a0 1212 python optional codespeak-lib_0.9.1-2.dsc
 d431dac9648af45b30fa3b3a89932d78 9813 python optional 
codespeak-lib_0.9.1-2.diff.gz
 005f3d88c955a35f2c135125fa09490b 3463440 python optional 
python-codespeak-lib_0.9.1-2_i386.deb

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkhGjIEACgkQ+C5cwEsrK55V0gCg3pkPRdTzST4Csc1ECi6hsLp6
jQcAn31udOtHp9rxaziSEUiBYvmTt

Bug#476489: ucspi: should conflict with courier-mta

[Gerrit Pape]

On Wed, Jun 04, 2008 at 02:21:20PM +0200, Stefan Hornburg wrote:
> Can you supply the corresponding code for preinst/postrm ?

Yes, in preinst on 'install' or 'upgrade' (from a version that did not
yet add the diversion):

add_diversion() {
  dpkg-divert --package courier-mta --add --rename \
--divert /usr/bin/addcr.ucspi-tcp /usr/bin/addcr
  dpkg-divert --package courier-mta --add --rename \
--divert /usr/share/man/man1/addcr.ucspi-tcp.1.gz 
/usr/share/man/man1/addcr.1.g
}

in postrm on 'remove':

remove_diversion() {
  dpkg-divert --package courier-mta --remove --rename \
--divert /usr/bin/addcr.ucspi-tcp /usr/bin/addcr
  dpkg-divert --package courier-mta --remove --rename \
--divert /usr/share/man/man1/addcr.ucspi-tcp.1.gz 
/usr/share/man/man1/addcr.1.g
}

HTH, Gerrit.



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#477454: a few of the many occurences of "fuck" in Debian changelogs (and more)

[Jeremy Cantrell]

why are we policing profanity? can we all just take a deep breath and
lighten the hell up?

On Tue, Jun 3, 2008 at 6:22 PM, Joey Hess <[EMAIL PROTECTED]> wrote:
> Now that this bug has been brought to my attention, I cannot help
> myself. I have to grep Debian changelogs for profanity, filter for
> profanity that includes personal insults, and wonder why these packages
> reached the archive w/o RC bug reports being filed:
>
>  * The fucked up system release. (Fuck off Long, it is justified.)
>
>  -- Zephaniah E. Hull <[EMAIL PROTECTED]>  Mon, 18 Mar 2002 19:10:17 -0500
>
> (IIRC the Long mentioned is a user who adopted the name of the Heinlein
> character.)
>
>  * Changed debian/watch to match with the new fucking Sourceforge
>Interface. Sourceforge sucks!
>
>  -- Joerg Jaspert <[EMAIL PROTECTED]>  Sun,  5 May 2002 15:24:17 +0200
>
> (I guess this was before he bacame a ftp-master and started drinking milk.)
>
>  * The "Fuck Me Harder" release.
>
>  -- Joel Klecker <[EMAIL PROTECTED]>  Fri, 29 Oct 1999 09:06:27 -0700
>
> (Not a personal insult, but my all time favorite occurance of "fuck"
> in a changelog, evar. Honorable mention to gpm 1.19.6-10.)
>
>  * allow hunspell-dictionary-de in hunspells Depends:, thanks
>Gerfried Fucks (closes: #359628)
>
>  -- Rene Engelhard <[EMAIL PROTECTED]>  Tue, 28 Mar 2006 20:08:34 +0200
>
> (Er, ITYM "Fuchs". HTH.)
>
>  * Use [:lower:] in rules fule because fucking LC_COLLATE blows me.
>
>  -- Joey Hess <[EMAIL PROTECTED]>  Thu, 26 Apr 2001 22:59:58 -0400
>
> (Just to be clear, I *do* intend that as a personal insult to the inventors
> of that monstrosity.)
>
>* The "I fucking hate libtool" release. Prevent libtool from checking 
> things
>  we do not need at all, such as a C++ or an F77 compiler. Sigh.
>
>  -- Julien BLACHE <[EMAIL PROTECTED]>  Tue,  3 Jun 2003 22:34:48 +0200
>
> (Surely not this can't be the ONLY "I fucking hate libtool" release?)
>
>- Avoid recursive brainfuck with type-handling.  This actualy fixes
>  #297269, but we leave it for t-h to close.
>
>  -- Robert Millan <[EMAIL PROTECTED]>  Thu, 14 Apr 2005 18:36:04 +0200
>
> (Honourable mention for the mental imagery.)
>
>  * 'wearing my "fuck redhat" shirt and loving it' release
>
>  -- Sean 'Shaleh' Perry <[EMAIL PROTECTED]>  Wed,  7 Mar 2001 10:42:03 -0800
>
> (A shirt I remember well, though actually not fondly.)
>
>The upstream author is kind of a lazy bastard
>
>  -- Colin Walters <[EMAIL PROTECTED]>  Fri, 15 Aug 2003 21:31:23 -0400
>
> (Does profanely insulting oneself count though?)
>
>
> PS, don't even get me started on the (literally) 490 occurances of the term
> "shit" in dpkg's source. Which are split (localized?) between a ohshite()
> and a ohshit() function.
>
> --
> see shy jo
>
> -BEGIN PGP SIGNATURE-
> Version: GnuPG v1.4.6 (GNU/Linux)
>
> iD8DBQFIRcQzd8HHehbQuO8RAqiOAJ9PSIBUR29f3WO0nEWUxBspj5US2wCfbedF
> loZ4/2mqQHtiBVAwC/19VFY=
> =wxrh
> -END PGP SIGNATURE-
>
>



-- 
:wq



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484499: slash: possible SQL injection vulnerability

[Steffen Joeris]

Package: slash
Severity: grave
Tags: security
Justification: user security hole

Hi

A possible SQL injection vulnerability was discovered in slash.
The vulnerability was an SQL injection. Its effect was to allow a user
with no special authorization to read any information from any table the
Slash site's mysql user was authorized to read (which may include other
databases, including information_schema).

More information can be found here[0].

The upstream patch can be found here[1].

Cheers
Steffen

[0]: http://www.slashcode.com/article.pl?sid=08/01/07/2314232

[1]: 
http://slashcode.cvs.sourceforge.net/slashcode/slash/Slash/Utility/Environment/Environment.pm?r1=1.223&r2=1.225



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484311: reportbug adds os.curdir to sys.path

[Thijs Kinkhorst]

On Wed, June 4, 2008 14:27, Thomas Arendsen Hein wrote:
> I encountered this bug in the real world: I extracted a tarball
> which contained a file named token.py, then I wanted to report a problem
> and therefore started reportbug.
>
> This tarball did not contain harmful code, but as I did not verify
> it before (because I did not intend to execute parts of it), it could have
> been harmful.
>
> And of course there is /tmp as mentioned by Nico Golde.

That it can happen by accident does not mean that it is easy to explicitly
exploit. I still believe that those chances are small enough to not
consider an update to stable (needs local malicious user, needs victim
user to run reportbug in exactly the right dir, and only then provides
access to "just" the user account).

If the maintainer wants to provide an update through a stable point update
that is of course fine.


Thijs




--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#484311: reportbug adds os.curdir to sys.path

[Thomas Arendsen Hein]

* Thijs Kinkhorst <[EMAIL PROTECTED]> [20080604 14:13]:
> On Wed, June 4, 2008 13:14, Nico Golde wrote:
> > I agree that it is of a low impact but I disagree that this
> > is not a security issue, people are using reportbug in /tmp and I don't see
> > a reason to assume people are not doing that.
> 
> The chance of succesful exploitation still seems very small, and indeed
> even then the problem is limited to just a regular user account. It's good
> that Sandro is fixing the bug directly so I'm not going to argue over bug
> severity, but I'm marking it as no-dsa for stable.

I encountered this bug in the real world: I extracted a tarball
which contained a file named token.py, then I wanted to report a
problem and therefore started reportbug.

This tarball did not contain harmful code, but as I did not verify
it before (because I did not intend to execute parts of it), it
could have been harmful.

And of course there is /tmp as mentioned by Nico Golde.

Regards,
Thomas

-- 
[EMAIL PROTECTED] - http://intevation.de/~thomas/ - OpenPGP key: 0x5816791A
Intevation GmbH, Osnabrueck - Register: Amtsgericht Osnabrueck, HR B 18998
Geschaeftsfuehrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner



-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#482048: marked as done (Source package contains non-free IETF RFC/I-D)

[Debian Bug Tracking System]

Your message dated Wed, 04 Jun 2008 12:17:07 +
with message-id <[EMAIL PROTECTED]>
and subject line Bug#482048: fixed in courier 0.59.0-3
has caused the Debian Bug report #482048,
regarding Source package contains non-free IETF RFC/I-D
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
482048: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=482048
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Severity: serious
Package: courier
Version: 0.59.0-1
User: [EMAIL PROTECTED]
Usertags: nonfree-doc rfc

Hi!

This source package contains the following files that claim to be
released under the non-free IETF license in RFC 2026:

  courier-0.59.0.orig/courier/doc/draft-varshavchik-exdata-smtpext.txt
  courier-0.59.0.orig/courier/doc/draft-varshavchik-verp-smtpext.txt
  courier-0.59.0.orig/courier/doc/draft-varshavchik-security-smtpext.txt

The top of these drafts says:

   This document is an Internet-Draft and is in full conformance with
   all provisions of Section 10 of RFC2026.

Section 10 contains the (old) IETF license.

Arguable, since these documents were written by the same author as the
software, the intention may have been to release the documents under the
same license as courier itself (or some other free license).  But there
is nothing in debian/copyright to clarify the situation, leaving this
ambiguous.  Hopefully the simplest solution will be to confirm with the
authors which license they actually intend: RFC 2026 or courier license.

The license on RFC/I-Ds is not DFSG-free, see:
 * http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=199810
 * http://release.debian.org/removing-non-free-documentation
 * http://wiki.debian.org/NonFreeIETFDocuments

The lenny release policy says binary and source packages must each be free:
 * http://release.debian.org/lenny/rc_policy.txt

The severity is serious, because this violates the Debian policy:
 * http://www.debian.org/doc/debian-policy/ch-archive.html#s-dfsg

There are (at least) three ways to fix this problem.  In order of
preference:

1. Ask the author of the RFC to re-license the RFC under a free
   license.  A template for this e-mail request can be found at
   http://wiki.debian.org/NonFreeIETFDocuments

2. Remove the non-free material from the source, e.g., by re-packaging
   the upstream archive and adding 'dfsg' to the Debian package
   version name.

3. Move the package to non-free.

General discussions are kindly requested to take place on debian-legal
or debian-devel in the thread with Subject: "Non-free IETF RFC/I-Ds in
source packages".

Thanks,
Simon


--- End Message ---
--- Begin Message ---
Source: courier
Source-Version: 0.59.0-3

We believe that the bug you reported is fixed in the latest version of
courier, which is due to be installed in the Debian FTP archive:

courier-base_0.59.0-3_amd64.deb
  to pool/main/c/courier/courier-base_0.59.0-3_amd64.deb
courier-doc_0.59.0-3_all.deb
  to pool/main/c/courier/courier-doc_0.59.0-3_all.deb
courier-faxmail_0.59.0-3_amd64.deb
  to pool/main/c/courier/courier-faxmail_0.59.0-3_amd64.deb
courier-imap-ssl_4.3.1-3_amd64.deb
  to pool/main/c/courier/courier-imap-ssl_4.3.1-3_amd64.deb
courier-imap_4.3.1-3_amd64.deb
  to pool/main/c/courier/courier-imap_4.3.1-3_amd64.deb
courier-ldap_0.59.0-3_amd64.deb
  to pool/main/c/courier/courier-ldap_0.59.0-3_amd64.deb
courier-maildrop_0.59.0-3_amd64.deb
  to pool/main/c/courier/courier-maildrop_0.59.0-3_amd64.deb
courier-mlm_0.59.0-3_amd64.deb
  to pool/main/c/courier/courier-mlm_0.59.0-3_amd64.deb
courier-mta-ssl_0.59.0-3_amd64.deb
  to pool/main/c/courier/courier-mta-ssl_0.59.0-3_amd64.deb
courier-mta_0.59.0-3_amd64.deb
  to pool/main/c/courier/courier-mta_0.59.0-3_amd64.deb
courier-pcp_0.59.0-3_amd64.deb
  to pool/main/c/courier/courier-pcp_0.59.0-3_amd64.deb
courier-pop-ssl_0.59.0-3_amd64.deb
  to pool/main/c/courier/courier-pop-ssl_0.59.0-3_amd64.deb
courier-pop_0.59.0-3_amd64.deb
  to pool/main/c/courier/courier-pop_0.59.0-3_amd64.deb
courier-ssl_0.59.0-3_amd64.deb
  to pool/main/c/courier/courier-ssl_0.59.0-3_amd64.deb
courier-webadmin_0.59.0-3_amd64.deb
  to pool/main/c/courier/courier-webadmin_0.59.0-3_amd64.deb
courier_0.59.0-3.diff.gz
  to pool/main/c/courier/courier_0.59.0-3.diff.gz
courier_0.59.0-3.dsc
  to pool/main/c/courier/courier_0.59.0-3.dsc
sqwebmail_0.59.0-3_amd64.deb
  to pool/main/c/courier/sqwebmail_0.59.0-3_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],

Bug#476489: ucspi: should conflict with courier-mta

[Stefan Hornburg]

Gerrit Pape wrote:

Hi Stefan, are you around?  Thanks, Gerrit.


On Mon, May 05, 2008 at 08:16:12AM +, Gerrit Pape wrote:

On Thu, Apr 17, 2008 at 01:45:38AM +0200, Ralf Treinen wrote:

ucspi-tcp should conflict with courier-mta as it shares a file with
that package:

Unpacking courier-mta (from .../courier-mta_0.59.0-1_amd64.deb) ...
dpkg: error processing
/var/cache/apt/archives/courier-mta_0.59.0-1_amd64.deb (--unpack):
 trying to overwrite `/usr/bin/addcr', which is also in package ucspi-tcp
Errors were encountered while processing:
 /var/cache/apt/archives/courier-mta_0.59.0-1_amd64.deb
E: Sub-process /usr/bin/dpkg returned an error code (1)

Hi Stefan,

the addcr programs from courier-mta and ucspi-tcp have nearly the same
functionality, it's just that courier's addcr doesn't add a \c if it's
already there.

Possible solutions to the conflict:
 (1) ucspi-tcp diverts courier's addcr
 (2) courier-mta diverts ucpsi-tcp's addcr
 (3) both packages use alternatives to manage /usr/bin/addcr
 (4) ucspi-tcp renames the addcr program (upstream or Debian)
 (5) courier-mta renames the add cr program (upstream or Debian)

I'm not that much in favor of (4), and personally suggest (2), as
courier's addcr includes 'more' functionality.


Can you supply the corresponding code for preinst/postrm ?

Regards
 Racke



--
LinuXia Systems => http://www.linuxia.de/
Expert Interchange Consulting and System Administration
ICDEVGROUP => http://www.icdevgroup.org/
Interchange Development Team




--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]