Processed: severity of 506486 is important
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.9.26 severity 506486 important Bug#506486: gnome-power-manager: fails to execute action on low battery condition Severity set to `important' from `critical' End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#501207: destar: The same Problem is still in 0.2.2-5.2 in testing
Extra information on my system where the bug is found (see traces in previous message) $ reportbug --template destar ... Package: destar Version: 0.2.2-5.2 ... -- System Information: Debian Release: lenny/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 2.6.26-1-amd64 (SMP w/2 CPU cores) Locale: LANG=he_IL.UTF-8, LC_CTYPE=he_IL.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages destar depends on: ii asterisk 1:1.6.0.1~dfsg-0.6416 Open Source Private Branch Exchang ii debconf1.5.24Debian configuration management sy ii python 2.5.2-3 An interactive high-level object-o ii python-medusa 0.5.4+clean-2 Framework for implementing asynchr ii python-pychart 1.39-6Python library for creating high q ii python-pysqlite2 2.4.1-1 Python interface to SQLite 3 ii python-quixote11.2-4+b1 A highly Pythonic Web application ii sqlite33.5.9-5 A command line interface for SQLit Versions of packages destar recommends: pn op-panel none (no description available) destar suggests no packages. -- debconf information: destar/port: 8080 -- Tzafrir Cohen icq#16849755 jabber:[EMAIL PROTECTED] +972-50-7952406 mailto:[EMAIL PROTECTED] http://www.xorcom.com iax:[EMAIL PROTECTED]/tzafrir -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#507021: Fails to work on amd64
Package: helpdeco Version: 2.1.3-3 Severity: grave -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi I installed helpdeco to decompress some help files, but all I get from it on amd64 is: $ helpdeco bcb5tool.hlp ./bcb5tool.hlp isn't a valid WinHelp file ! Running helpdeco of same version on i386 chroot works fine: $ helpdeco bcb5tool.hlp Decompiling C++Builder Tools... 252 topic offsets and hash values loaded 2770 phrases loaded Creating bm0.bmp... Creating bm1.bmp... Pass 1... Topic 249... Creating bcb5tool.hpj... Creating [ALIAS] section... Creating bcb5tool.ph... Creating bcb5tool.rtf... 4 font names, 38 font descriptors loaded Pass 2... Topic 249... Help Compiler will issue Note HC1002: Using existing phrase table Use HCRTF /a bcb5tool.hpj to recompile helpfile. I guess used help files do not matter, but just in case it matters, my help files come from free Borland C++ Compiler available at http://www.codegear.com/downloads/free/cppbuilder. - -- Michal Čihař | http://cihar.com | http://blog.cihar.com - -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.25.18-0.1-default (SMP w/2 CPU cores) Locale: LANG=cs_CZ.UTF-8, LC_CTYPE=cs_CZ.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages helpdeco depends on: ii libc6 2.7-16 GNU C Library: Shared libraries helpdeco recommends no packages. helpdeco suggests no packages. - -- no debconf information -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkkuW9IACgkQ3DVS6DbnVgT0AACfSyeLmDSA7JzEQvH27vn918OU 3d4AnRfOq7YBJlNzJCtymyh/qfcopWSV =HvUf -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: found 501207 in 0.2.2-5.2
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.35 found 501207 0.2.2-5.2 Bug#501207: destar doesn't start, backtrace shown Bug marked as found in version 0.2.2-5.2 and reopened. End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#506977: FPC: copyright infringement in pre 2.2.2 sources
Hi, Le mercredi 26 novembre 2008 à 10:42 -0600, Paul Gevers a écrit : Package: fpc Version: 2.2.0-dfsg1-9 Version: 2.0.0-4 Severity: serious Thanks As can be read in the changelog of the latest version the old source of fpc has a copyright infringment: - Possible CodeGear Copyright infringements in the source were reworked using cleanroom approach. Following the full discussion for the same issue in Ubuntu (discussed in LP bug 275688 [1]) it looks like upstream is now positive of the infringement. Upstream removed all old releases from their servers. Debian should probably seek for a similar solution or relicense (although the latter solution is said in [1] that it should probably never be mentioned) I know it is late for Lenny, but I think we should look into this ASAP. I will point debian-legal to this bug as well. Paul [1] https://bugs.launchpad.net/ubuntu/+source/fpc/+bug/275688 A request was sent to deban-relase list http://www.mail-archive.com/[EMAIL PROTECTED]/msg27208.html but got negative answer. Cheers, Mazen, -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#506977: bug 506977 ( ubuntu 275688)
Hi, Le mercredi 26 novembre 2008 à 15:09 -0600, Paul Gevers a écrit : Dear FTP-masters, Please have a look at bug 506977 (of which the last and most explaining comment is below this email). The issue involved is a copyright infringement in the source of fpc before version 2.2.2 (i.e. everything version except for the one in unstable). I fear that we should either update or remove the sources of fpc on all but unstable releases. In Ubuntu I checked that the following packages builddepend on FPC: lazarus imapcopy hedgewars libhdate gearhead m-tx python-soappy poker-network I assume, but have not check yet, that the same goes for Debian. With kind regards, Paul Marco van de Voort wrote: Hello, Note: I'm the FPC core developer that also features in the Ubuntu correspondence. Carlos (the maintainer of this port) can confirm that, or have a look here: http://www.freepascal.org/aboutus.var The probable infringement was brought to our attention in early 2007. The infringement was made amenable mostly due to trivial means (variable names, fairly small procedures that were the same). The other side was really cooperative, and gave us time to clean up massively, without having to immediately pull all sources, and we employed at tool to identify potential problem sources, and found a lot more. So we cut real wide, and reengineered all potentially infringing code. (all in all a nontrivial amount). However because the infringement was so trivial, and relicensing counterproductive and confusion, it was decided to pull all releases. So in august, after 2.2.2 came out, we removed all older releases from our site, and assumed the mentioning of the copyright problems in our release manifest would be enough to warrant a swift upgrade. I hope it need no explanation that that was a pretty painful step, removing 10 years of history of our project. However, here we are now, 3-4 months after the release and the heads up, and the infringing code is still served from Debian servers. We are not happy with this. Note that it is also not fair to the other party who has been patient, and now could see the code still floating around. In short: please remove the old versions as soon as possible, or upgrade. Marco. Please note that removing FPC 2.2.0 from Lenny should also lead to removing Lazarus 0.9.24. Beond the package dependency, Lazarus statically links to the infringed code. The Lazarus IDE is not an issue as it is GPL, but the LCL not, and thus have the same issue as RTL. In clear, either FPC + Lazarus should get out of Lenny or should be updated. Please not that in answer to http://www.mail-archive.com/[EMAIL PROTECTED]/msg27208.html the backports.org was proposed as an alternative http://www.mail-archive.com/[EMAIL PROTECTED]/msg27826.html but I feels it can confuse users producing non GPL code. Cheers, Mazen, -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#506949: SYS_CHROOT
hello, i have the same problem. i'm running kernel 2.6.26-1-vserver-686. possible workarounds that work for me (i've only tested openssh sshd in the vserver) are : * downgrade to -3 version * rebuild the -4 version without the 60securecaps.dpatch * adding SYS_CHROOT bcapability hope this helps.
Bug#505271: closed ... fixed in shadow 1:4.1.1-6
Dear Nicolas and Moritz, How long do you expect it will take to in fact fix this bug (which is closed, pretend-fixed, still set to just serious severity)? Would it cause problems if I posted the exploit on Monday 1 Dec? Thanks, Paul Paul Szabo [EMAIL PROTECTED] http://www.maths.usyd.edu.au/u/psz/ School of Mathematics and Statistics University of SydneyAustralia -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#482075: Remove cdfs-src from testing [SOLVED]
* Eduard Bloch [Wed, 26 Nov 2008 16:23:38 +0100]: Version: 2.6.23-4 #include hallo.h * mariodebian [Wed, Nov 26 2008, 03:45:19PM]: I'm very newie patching kernel stuff and he explain me some code bugs like a excelent teacher. David Howells is my personal hero for today. Many thanks David. Guys, you both are my personal heroes of today. Your patch needed a little fix to compile on 2.6.27 but I had an idea from the previous attempt to make it compile. Now it's really working! 2.6.23-4 uploaded. Would RMs consider to readd it now? I am almost ashamed to request that. Ok, unblocked. Thanks all involved indeed. -- Adeodato Simó dato at net.com.org.es Debian Developer adeodato at debian.org When all is summed up, a man never speaks of himself without loss; his accusations of himself are always believed; his praises never. -- Michel de Montaigne -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#506883: [debian] tuxguitar: hard-coded dependencies on libraries
* Philippe Coval [Wed, 26 Nov 2008 19:40:58 +0100]: Hi, Thank you for reporting this, I've fixed this among other things : http://mentors.debian.net/debian/pool/main/t/tuxguitar/ I reviewed this because I wanted to sponsor it. However, I found a problem with it: you cannot move the package from contrib to main without bumping the upstream version (it's a limitation of dak). If you want to move the package to main, you will need to upload it as 1.0.dak-1 or equivalent. Cheers, -- Adeodato Simó dato at net.com.org.es Debian Developer adeodato at debian.org Will you just stand still? -- Luke Danes -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#499336: Really uploaded?
On Thu, Nov 27, 2008 at 11:33:00AM +0100, Frank Lichtenheld wrote: You claimed in your last mail that this package was uploaded to the delayed queue. But I see it neither there nor in the archive. Please check with your sponsor whether he really uploaded it successfully. Never mind. I just saw that it is in the NEW queue because of the -dbg package. Gruesse, -- Frank Lichtenheld [EMAIL PROTECTED] www: http://www.djpig.de/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#506977: Bug #506977 FPC: copyright infringement in pre 2.2.2 sources
On Wed, Nov 26, 2008 at 10:56:07PM +0100, Torsten Werner wrote: my suggestion is to remove fpc from oldstable and stable but unblock the unstable version 2.2.2-4 for lenny and trigger binNMUs for lazarus. What do you think? What is the correct way to remove packages from (old)stable? Should I file a bug report against ftp.debian.org or is it done by the SRM? That's SRM stuff, so you need to file the bug against release.debian.org instead of ftp.debian.org. Gruesse, -- Frank Lichtenheld [EMAIL PROTECTED] www: http://www.djpig.de/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed (with 1 errors): Orphan before Removal
Processing commands for [EMAIL PROTECTED]: clone 500646 -1 Bug#500646: directory-administrator: should this package be removed? Bug 500646 cloned as bug 507037. reassign -1 wnpp Bug#507037: directory-administrator: should this package be removed? Bug reassigned from package `directory-administrator' to `wnpp'. severity -1 normal Bug#507037: directory-administrator: should this package be removed? Severity set to `normal' from `serious' retitle -1 Unknown command or malformed arguments to command. thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed (with 1 errors): Orphan before removal
Processing commands for [EMAIL PROTECTED]: clone 499244 -1 Bug#499244: sfs: should this package be removed? Bug 499244 cloned as bug 507036. reassign -1 wnpp Bug#507036: sfs: should this package be removed? Bug reassigned from package `sfs' to `wnpp'. severity -1 normal Bug#507036: sfs: should this package be removed? Severity set to `normal' from `serious' retitle -1 Unknown command or malformed arguments to command. thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#506428: data files not bing downloaded
tags 506428 unreproducible thanks I can't model the situation no matter how I try. My installation always goes correctly. All the downloaded archives are unpacked and work. So I mark the tag 'unreprodicible'. On 11:48 Fri 21 Nov , Rafał Członka wrote: RC Package: rocksndiamonds RC Version: 3.2.6.0+dfsg-1 RC Severity: grave RC Hi, RC I've installed the game some time ago and never actually played it. RC The update reminded me of it. RC When I try to run it however, the script claims that I don't need the level file. RC They do exist in /usr/share/games/rocksndiamonds/downloads/. RC Looking at the script I've noticed that it's looking for the levels directory RC which has never been created. RC After upgrading to the newest version, a new Legend Of Zelda II level apeared. RC Being asked by the postinst script whether I'd like it to be downloaded I ticked RC it in the menu, but it hasn't been downloaded - although it does appear in RC the menu as such. RC dpkg-reconfigure didn't help, neither did reinstalling the package. RC BTW when trying to to run rocksndiamonds-bin directly it made the init process to RC restart or switch to another level, killing everything under X in the process. RC P.S. Theres a typo in /usr/share/games/rocksndiamonds/README.dir RC Is RC usage: 'dpkg-reconfigure rocksndiamonds' for downloading fies RC Should be RC usage: 'dpkg-reconfigure rocksndiamonds' for downloading files RC Cheers, RC rjc RC -- System Information: RC Debian Release: lenny/sid RC APT prefers unstable RC APT policy: (500, 'unstable'), (1, 'experimental') RC Architecture: powerpc (ppc) RC Kernel: Linux 2.6.26-1-powerpc RC Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) RC Shell: /bin/sh linked to /bin/dash RC Versions of packages rocksndiamonds depends on: RC ii cdebconf [debconf- 0.137 Debian Configuration Management Sy RC ii debconf [debconf-2 1.5.24Debian configuration management sy RC ii libc6 2.7-16GNU C Library: Shared libraries RC ii libmikmod2 3.1.11-a-6A portable sound library RC ii libsdl-image1.21.2.6-3 image loading library for Simple D RC ii libsdl-mixer1.21.2.8-5 mixer library for Simple DirectMed RC ii libsdl-net1.2 1.2.7-2 network library for Simple DirectM RC ii libsdl1.2debian1.2.13-4 Simple DirectMedia Layer RC ii libsmpeg0 0.4.5+cvs20030824-2.2 SDL MPEG Player Library - shared l RC ii p7zip 4.58~dfsg.1-1 7zr file archiver with high compre RC ii perl-modules 5.10.0-17 Core Perl modules RC ii unzip 5.52-12 De-archiver for .zip files RC ii wget 1.11.4-2 retrieves files from the web RC rocksndiamonds recommends no packages. RC rocksndiamonds suggests no packages. RC -- debconf information: RC * rocksndiamonds/begin: false RC rocksndiamonds/util_notfound: RC * rocksndiamonds/select_games: Legend Of Zelda, Legend Of Zelda II, Emerald Mine Club, Contributions 1995 - 2006, Juergen Bonhagen game pack, Snake Bite, BD2K3, BD Dream, Supaplex, DX-Boulderdash -- ... mpd is off . ''`. Dmitry E. Oboukhov : :’ : email: [EMAIL PROTECTED] jabber://[EMAIL PROTECTED] `. `~’ GPGKey: 1024D / F8E26537 2006-11-21 `- 1B23 D4F8 8EC0 D902 0555 E438 AB8C 00CF F8E2 6537 signature.asc Description: Digital signature
Processed: Re: Bug#506428: data files not bing downloaded
Processing commands for [EMAIL PROTECTED]: tags 506428 unreproducible Bug#506428: Data files are not downloaded Tags were: moreinfo Tags added: unreproducible thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#499336: Really uploaded?
On Thu, Nov 27, 2008 at 11:37:46AM +0100, Frank Lichtenheld wrote: On Thu, Nov 27, 2008 at 11:33:00AM +0100, Frank Lichtenheld wrote: You claimed in your last mail that this package was uploaded to the delayed queue. But I see it neither there nor in the archive. Please check with your sponsor whether he really uploaded it successfully. Never mind. I just saw that it is in the NEW queue because of the -dbg package. Yes, and I've already received an email from the [EMAIL PROTECTED] confirming the upload. And another email from [EMAIL PROTECTED] about the -dbg package in the NEW queue =) Gruesse, -- Frank Lichtenheld [EMAIL PROTECTED] www: http://www.djpig.de/ Atenciosamente, -- Lincoln de Sousa - AlfaiaTI/MinasLivre xmpp:[EMAIL PROTECTED] http://alfaiati.net http://minaslivre.org +55 31 9209 4987 signature.asc Description: Digital signature
Processed: forwarded gcc report
Processing commands for [EMAIL PROTECTED]: forwarded 506713 http://gcc.gnu.org/PR38287 Bug#506713: g++-4.3: Incorrect code in SPARC shared libraries Noted your statement that Bug has been forwarded to http://gcc.gnu.org/PR38287. tag 506713 + upstream fixed-upstream Bug#506713: g++-4.3: Incorrect code in SPARC shared libraries There were no tags set. Tags added: upstream, fixed-upstream retitle 506713 [PR38287, fixed in 4.4] Incorrect code in SPARC shared libraries Bug#506713: g++-4.3: Incorrect code in SPARC shared libraries Changed Bug title to `[PR38287, fixed in 4.4] Incorrect code in SPARC shared libraries' from `g++-4.3: Incorrect code in SPARC shared libraries'. thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: reassign 361346 to ftp.debian.org ...
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.35 reassign 361346 ftp.debian.org Bug#361346: O: astrolog -- Customizable astrology chart calculation program Bug reassigned from package `wnpp' to `ftp.debian.org'. retitle 361346 RM: astrolog -- RoQA; orphaned long time, non-free, contains potentially undistributable code Bug#361346: O: astrolog -- Customizable astrology chart calculation program Changed Bug title to `RM: astrolog -- RoQA; orphaned long time, non-free, contains potentially undistributable code' from `O: astrolog -- Customizable astrology chart calculation program'. End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#499244: Orphan before removal
clone 499244 -1 reassign -1 wnpp severity -1 normal retitle -1 thanks Hi, Since the status of this package has not evolved, I am now orphaning it. I still plan to request its removal in the near future, but this orphaning could allow someone to adopt the package if appropriate. Please reply to this bug report either if you feel that this package should not be removed or you think it _should_ be removed, as this will allow to make the process quicker. Thank you, -- Frank Lichtenheld [EMAIL PROTECTED] http://www.debian.org/ http://blog.djpig.de/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#499336: Really uploaded?
You claimed in your last mail that this package was uploaded to the delayed queue. But I see it neither there nor in the archive. Please check with your sponsor whether he really uploaded it successfully. Gruesse, -- Frank Lichtenheld [EMAIL PROTECTED] www: http://www.djpig.de/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#496660: Patch not applied in the current unstable version and not present in lenny
* Vincent Danjean [Sat, 15 Nov 2008 18:50:39 +0100]: reopen 500183 found 500183 2.8.6.b-3 forcemerge 500183 496660 severity 500183 serious thanks Hi, I'm sorry to tell you that the patch proposed in 500183 in not applied in hplip 2.8.6.b-3 (whereas the changelog says it has been applied in 2.8.6.b-2) Manually patching /usr/bin/hp-makeuri (ie modifying the 3 lines with vi) with the patch provided in 500183 solves 500183 and 496660. I do not check at all why this patch has not been applied during the package building. Best regards Vincent PS: I've been hit again by these bugs during a etch-lenny upgrade today (ie the hplip 2.8.6.b-1 in lenny does not have this 3 lines patch). I think you should really consider asking for a freeze exception for this bug for lenny. The patch is simple and the bug is really annoying and difficult to find and workaround for someone not experimented (so my CC to debian-release). I mark this bug as serious to be sure it will be fixed for lenny (feel free to downgrade the severity if you really disagree) Hello, Vincent. Seeing almost two weeks passed by, could you perhaps prepare a NMU adding that patch to -3? Thanks, -- Adeodato Simó dato at net.com.org.es Debian Developer adeodato at debian.org When all is summed up, a man never speaks of himself without loss; his accusations of himself are always believed; his praises never. -- Michel de Montaigne -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#500646: Orphan before Removal
clone 500646 -1 reassign -1 wnpp severity -1 normal retitle -1 thanks Hi, Since the status of this package has not evolved, I am now orphaning it. I still plan to request its removal in the near future, but this orphaning could allow someone to adopt the package if appropriate. Please reply to this bug report either if you feel that this package should not be removed or you think it _should_ be removed, as this will allow to make the process quicker. Thank you, -- Frank Lichtenheld [EMAIL PROTECTED] http://www.debian.org/ http://blog.djpig.de/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#507041: libvcp-perl: should this package be removed?
Package: libvcp-perl Version: 0.9-20050110-1 Severity: serious User: [EMAIL PROTECTED] Usertags: proposed-removal Dear Maintainer, While reviewing some packages, your package came up as a possible candidate for removal from Debian, because: * RC buggy (doesn't work with current Perl) without maintainer reaction * No maintainer activity since 2005, no upstream activity either * Very low popcon numbers If you think that it should be orphaned instead of being removed from Debian, please reply to this bug and tell so. If you disagree and want to continue to maintain this package, please just close this bug and do an upload also fixing the other issues. If you agree that it should be removed, send the following commands to [EMAIL PROTECTED] (replace nn with this bug's number): severity nn normal reassign nn ftp.debian.org retitle nn RM: packagename -- RoM; reasons thanks For more information, see http://wiki.debian.org/ftpmaster_Removals http://ftp-master.debian.org/removals.txt Thank you, -- Frank Lichtenheld [EMAIL PROTECTED] http://www.debian.org/ http://blog.djpig.de/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#496411: #496411: nothing was fixed at all
On Sat, Nov 22, 2008 at 07:59:28PM -0600, Raphael Geissert wrote: On Sun, Nov 23, 2008 at 02:23:13AM +0100, Jiri Palecek wrote: Hello, On Thursday 20 November 2008 03:25:41 Raphael Geissert wrote: I have found all of the reported issues in BOTH versions marked as fixed. Please stop blindly closing this report and *do verify* everything is fixed. I believe you have read the reason why this bug was closed. If you disagree, please reply to this message by Thijs Kinkhorst: http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=17;mbox=yes;bug=496411 I confirm the README.Debian is present. But not in the affected binary package. Indeed, is there an ETA for this bug? At least for the unstable (i.e. with maintainer QA) version. FWIW as the fix looks trivial I think it is worth keeping the package. filippo -- Filippo Giunchedi - http://esaurito.net PGP key: 0x6B79D401 random quote follows: Recursion is the root of computation since it trades description for time. -- Alan Perlis signature.asc Description: Digital signature
Bug#501959: chm2pdf: Major security (temporary dirs) problems
Chris Karakas dijo [Tue, Nov 25, 2008 at 10:39:23AM +0100]: Hello all, I definitely oppose the proposed patch and will NOT accept it in chm2pdf (I am one of the two authors)! Reasons: 1) There are easier ways to avoid the security risks. 2) It destroys the --dontextract option which is a *very* useful one! Let me propose an alternative: It all has to do with using tmp in these 2 lines, right? CHM2PDF_TEMP_WORK_DIR='/tmp/chm2pdf/work' CHM2PDF_TEMP_ORIG_DIR='/tmp/chm2pdf/orig' So, what would you say if I changed tmp to $HOME in the above two lines? Any security concerns here? This way, we keep sane names for the directories, we don't touch tmp, the user and only the user has full control of the directories created - and we can keep the --dontextract option! Any objections - or suggestions :-) - before I start coding? Umh... I don't think that will do in many scenarios. I am not familiar with your code (I only stumbled upon this bug report), but please keep in mind that programs such as this one might often be called by a user with no writable home directory - Say, web-based processes. Most authors agree to use secure, unpredictable tempdir functions, available basically on every language, such as the one suggested by Raphael. I would recommend you to: - Default to Raphael's suggestion - Include a command line switch, so that the user can specify the tempdir (or PDF build dir, or whatever nomenclature you find suitable). PS.: Before you kill me about the use of tmp, bear in mind that this tool was created with the normal user in mind (me! :-, i.e. for a system where 99% of the time only one user is using it. That user was assumed to (be able to) change the value of the CHM2PDF_TEMP_* variables to whatever fits him - that's why the variables were actually created. Now people start complaining about malicious users. Oh well...you are all so right - but notice what: we have already stopped talking about how to make the program do its actual job better - we are talking about cross-cutting concerns! That is, we now concentrate our energy *not* on the problem we originally had to solve (CHM to PDF conversion), but on things like where to put the working dir, in /tmp, in $HOME or elsewhere :roll: Well... That's the role of a distribution's QA, isn't it? ;-) We trust you to be the best person to implement the hard logic and little details behind it all, but please trust us when advicing on how most users install their software, at least in Debian settings. Why so much insistence? First, because if the software is shipped as part of Debian, a user cannot modify the variables (i.e. the program will be installed in /usr/bin, owned by root, and not writable by any system user). Second, most users (and the proportion is growing!) are not proficient in Python, nor interested in learning how to program, and, even if I don't like the idea, will just be scared at the idea of opening a program source in a text editor. Yes, I know many of those users will have a single-user system. But still, Linux distributions _still_ have (and will continue to) large numbers of multi-user settings (i.e. school/university labs, or company-wide managed terminals, and a very large etcetera - Even a household with several different users!) As a distribution, it is our task to ensure all the user cases are satisfiable the best way possible... even if that's not what you originally intended. Of course, you are free not to incorporate a patch in your sources - but that will only mean we will keep it as a patch (and behaviour difference) in our packaging. -- Gunnar Wolf - [EMAIL PROTECTED] - (+52-55)5623-0154 / 1451-2244 PGP key 1024D/8BB527AF 2001-10-23 Fingerprint: 0C79 D2D1 2C4E 9CE4 5973 F800 D80E F35A 8BB5 27AF -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#507058: b43-fwcutter fails to install: input file is wrong
Package: b43-fwcutter Version: 1:011-5 Severity: grave Justification: renders package unusable Install of b43-fwcutter fails with these messages: Sorry, the input file is either wrong or not supported by b43-fwcutter. This file has an unknown MD5sum cb8d70972b885b1f8883b943c0261a3c. This is the file it complained about: http://mirror2.openwrt.org/sources/broadcom-wl-4.150.10.5.tar.bz2 Please let me know how I can help further debug this problem. Regards, Paulo -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.26-1-686 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages b43-fwcutter depends on: ii debconf [debconf-2.0] 1.5.24 Debian configuration management sy ii libc6 2.7-16 GNU C Library: Shared libraries ii wget 1.11.4-2 retrieves files from the web Versions of packages b43-fwcutter recommends: ii bzip2 1.0.5-1high-quality block-sorting file co b43-fwcutter suggests no packages. -- debconf information: * b43-fwcutter/cut_firmware: true -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#507059: initramfs-tools: Wrong check for udevadm in functions
Package: initramfs-tools
Version: 0.92l
Severity: grave
Tags: patch
Justification: renders package unusable
scripts/functions:
303 # Wait for queued kernel/udev events
304 wait_for_udev()
305 {
306 [ -x $(command -v udevadm) ] return 0
307 udevadm settle ${1:+--timeout=$1}
308 }
That should be || return 0
Patch attached.
-- Package-specific info:
-- /proc/cmdline
root=UUID=a7350e73-c98d-497a-a49c-ff29c19eeb30 vga=791 ro quiet
-- /proc/filesystems
ext3
-- lsmod
Module Size Used by
binfmt_misc13580 1
nvidia 8105072 34
ipv6 288328 34
nfs 251696 1
lockd 68560 1 nfs
nfs_acl 7552 1 nfs
sunrpc197480 10 nfs,lockd,nfs_acl
acpi_cpufreq 11792 1
cpufreq_conservative11784 0
cpufreq_userspace 8452 0
cpufreq_powersave 6400 0
cpufreq_ondemand 11792 1
cpufreq_stats 9120 0
freq_table 9344 3 acpi_cpufreq,cpufreq_ondemand,cpufreq_stats
loop 19468 0
snd_hda_intel 434776 0
snd_pcm_oss41760 0
snd_pcm81672 2 snd_hda_intel,snd_pcm_oss
snd_mixer_oss 18816 1 snd_pcm_oss
snd_seq_dummy 7428 0
snd_seq_oss33152 0
snd_seq_midi_event 11904 1 snd_seq_oss
snd_seq54304 5 snd_seq_dummy,snd_seq_oss,snd_seq_midi_event
snd_timer 25744 2 snd_pcm,snd_seq
snd_seq_device 11668 3 snd_seq_dummy,snd_seq_oss,snd_seq
snd63688 8
snd_hda_intel,snd_pcm_oss,snd_pcm,snd_mixer_oss,snd_seq_oss,snd_seq,snd_timer,snd_seq_device
psmouse42268 0
soundcore 12064 1 snd
i2c_i801 13596 0
pcspkr 7040 0
serio_raw 9860 0
i2c_core 27936 2 nvidia,i2c_i801
atl1e 36116 0
snd_page_alloc 13072 2 snd_hda_intel,snd_pcm
intel_agp 31728 0
button 11680 0
evdev 14208 4
ext3 124944 5
jbd51240 1 ext3
mbcache12804 1 ext3
dm_mirror 20608 0
dm_log 13956 1 dm_mirror
dm_snapshot19400 0
dm_mod 58864 15 dm_mirror,dm_log,dm_snapshot
raid10 23680 0
raid456 125984 0
async_xor 8448 1 raid456
async_memcpy6912 1 raid456
async_tx 11764 3 raid456,async_xor,async_memcpy
xor 9744 2 raid456,async_xor
raid1 24192 0
raid0 10624 0
multipath 11392 0
linear 8960 0
md_mod 80164 6 raid10,raid456,raid1,raid0,multipath,linear
sd_mod 29376 3
ata_generic10116 0
usbhid 45792 0
hid41792 1 usbhid
ff_memless 9224 1 usbhid
ata_piix 22660 2
libata165472 2 ata_generic,ata_piix
scsi_mod 160760 2 sd_mod,libata
dock 14112 1 libata
ohci1394 32564 0
ide_pci_generic 9220 0 [permanent]
ieee1394 93816 1 ohci1394
ide_core 128284 1 ide_pci_generic
ehci_hcd 36108 0
uhci_hcd 25760 0
thermal22688 0
processor 42304 4 acpi_cpufreq,thermal
fan 9352 0
thermal_sys17728 3 thermal,processor,fan
-- /etc/kernel-img.conf
# Kernel image management overrides
# See kernel-img.conf(5) for details
do_symlinks = yes
relative_links = yes
do_bootloader = no
do_bootfloppy = no
do_initrd = yes
link_in_boot = no
postinst_hook = update-grub
postrm_hook = update-grub
-- /etc/initramfs-tools/initramfs.conf
MODULES=most
BUSYBOX=y
KEYMAP=n
BOOT=local
DEVICE=eth0
NFSROOT=auto
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.26-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages initramfs-tools depends on:
ii cpio 2.9-14 GNU cpio -- a program to manage ar
ii findutils 4.4.0-2utilities for finding files--find,
ii klibc-utils 1.5.12-2 small utilities built with klibc f
ii module-init-tools 3.4-1 tools for managing Linux kernel mo
ii udev 0.125-7/dev/ and hotplug management daemo
Versions of packages initramfs-tools recommends:
ii busybox 1:1.10.2-2 Tiny utilities for small and embed
initramfs-tools suggests no packages.
-- no debconf information
--
Julien Danjou
// ᐰ [EMAIL PROTECTED] http://julien.danjou.info
// 9A0D 5FD9
Bug#507058: b43-fwcutter fails to install: input file is wrong
tag 507058 + unreproducible severity 507058 important thanks Hi, Paulo Marcel Coelho Aragão wrote: Package: b43-fwcutter Version: 1:011-5 Severity: grave Justification: renders package unusable Nonsense. Install of b43-fwcutter fails with these messages: Sorry, the input file is either wrong or not supported by b43-fwcutter. This file has an unknown MD5sum cb8d70972b885b1f8883b943c0261a3c. This is the file it complained about: http://mirror2.openwrt.org/sources/broadcom-wl-4.150.10.5.tar.bz2 Please let me know how I can help further debug this problem. I'd debug your network connection. Or the file was at some time corrupted on the mirror. Nothing this package can influence. I just tried it: [...] Setting up b43-fwcutter (1:011-5) ... --2008-11-27 16:06:31-- http://downloads.openwrt.org/sources/wl_apsta-3.130.20.0.o Resolving downloads.openwrt.org... 195.56.146.238 Connecting to downloads.openwrt.org|195.56.146.238|:80... connected. HTTP request sent, awaiting response... 200 OK Length: 652866 (638K) [application/x-object] Saving to: `wl_apsta-3.130.20.0.o' 100%[==] 652,866 3.12M/s in 0.2s 2008-11-27 16:06:32 (3.12 MB/s) - `wl_apsta-3.130.20.0.o' saved [652866/652866] --2008-11-27 16:06:32-- http://mirror2.openwrt.org/sources/broadcom-wl-4.150.10.5.tar.bz2 Resolving mirror2.openwrt.org... 88.198.39.176 Connecting to mirror2.openwrt.org|88.198.39.176|:80... connected. HTTP request sent, awaiting response... 200 OK Length: 3888794 (3.7M) [application/x-tar] Saving to: `broadcom-wl-4.150.10.5.tar.bz2' 100%[==] 3,888,794 4.12M/s in 0.9s 2008-11-27 16:06:33 (4.12 MB/s) - `broadcom-wl-4.150.10.5.tar.bz2' saved [3888794/3888794] This file is recognised as: ID : FW10 filename : wl_apsta.o version: 295.14 MD5: e08665c5c5b66beb9c3b2dd54aa80cb3 Extracting b43legacy/ucode2.fw Extracting b43legacy/ucode4.fw Extracting b43legacy/ucode5.fw Extracting b43legacy/ucode11.fw Extracting b43legacy/pcm4.fw Extracting b43legacy/pcm5.fw Extracting b43legacy/a0g0bsinitvals2.fw Extracting b43legacy/b0g0bsinitvals5.fw Extracting b43legacy/a0g0initvals5.fw Extracting b43legacy/a0g1bsinitvals5.fw Extracting b43legacy/a0g0initvals2.fw Extracting b43legacy/a0g1initvals5.fw Extracting b43legacy/b0g0bsinitvals2.fw Extracting b43legacy/b0g0initvals5.fw Extracting b43legacy/b0g0initvals2.fw Extracting b43legacy/a0g0bsinitvals5.fw broadcom-wl-4.150.10.5/ broadcom-wl-4.150.10.5/driver/ broadcom-wl-4.150.10.5/driver/config/ broadcom-wl-4.150.10.5/driver/config/wlconfig_apdef broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_ap broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_ap_1chipG broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_ap_micro broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_ap_mimo broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_apsta broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_apsta_1chipG broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_apsta_micro broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_apsta_mimo broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_sta broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_sta_1chipG broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_sta_micro broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_sta_mimo broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_shared broadcom-wl-4.150.10.5/driver/config/wlconfig_micro broadcom-wl-4.150.10.5/driver/config/wlconfig_nomimo broadcom-wl-4.150.10.5/driver/config/wl_default broadcom-wl-4.150.10.5/driver/config/wl_hnd broadcom-wl-4.150.10.5/driver/wl_ap_micro.o broadcom-wl-4.150.10.5/driver/wl_ap_mimo.o broadcom-wl-4.150.10.5/driver/wl_ap.o broadcom-wl-4.150.10.5/driver/wl_apsta_micro.o broadcom-wl-4.150.10.5/driver/wl_apsta_mimo.o broadcom-wl-4.150.10.5/driver/wl_apsta.o broadcom-wl-4.150.10.5/driver/wl_sta_micro.o broadcom-wl-4.150.10.5/driver/wl_sta_mimo.o broadcom-wl-4.150.10.5/driver/wl_sta.o broadcom-wl-4.150.10.5/nas_exe.o broadcom-wl-4.150.10.5/wl_exe.o broadcom-wl-4.150.10.5/include/ broadcom-wl-4.150.10.5/include/UdpLib.h broadcom-wl-4.150.10.5/include/bcm4710.h broadcom-wl-4.150.10.5/include/bcm947xx.h broadcom-wl-4.150.10.5/include/bcmcrypto/ broadcom-wl-4.150.10.5/include/bcmcrypto/aes.h broadcom-wl-4.150.10.5/include/bcmcrypto/aeskeywrap.h broadcom-wl-4.150.10.5/include/bcmcrypto/bcmccx.h broadcom-wl-4.150.10.5/include/bcmcrypto/bn.h broadcom-wl-4.150.10.5/include/bcmcrypto/ccx.h broadcom-wl-4.150.10.5/include/bcmcrypto/des.h broadcom-wl-4.150.10.5/include/bcmcrypto/dh.h broadcom-wl-4.150.10.5/include/bcmcrypto/hmac_sha256.h broadcom-wl-4.150.10.5/include/bcmcrypto/md4.h broadcom-wl-4.150.10.5/include/bcmcrypto/md5.h broadcom-wl-4.150.10.5/include/bcmcrypto/passhash.h broadcom-wl-4.150.10.5/include/bcmcrypto/prf.h broadcom-wl-4.150.10.5/include/bcmcrypto/rc4.h
Processed: found 507059 in 0.92j
Processing commands for [EMAIL PROTECTED]: found 507059 0.92j Bug#507059: initramfs-tools: Wrong check for udevadm in functions Bug marked as found in version 0.92j. End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#507061: openchange_1.0~svn894-1(hppa/experimental): FTBFS: error: too many arguments to function 'dcerpc_init'
Package: openchange Version: 1.0~svn894-1 Severity: serious Hi, your package failed to build from source. | Automatic build of openchange_1.0~svn894-1 on lofn by sbuild/hppa 98-farm | Build started at 20081127-1337 | ** | Checking available source versions... | Fetching source files... | Reading package lists... | Building dependency tree... | Need to get 1094kB of source archives. | Get:1 http://sinclair.farm.ftbfs.de experimental/main openchange 1.0~svn894-1 (dsc) [1741B] | Get:2 http://sinclair.farm.ftbfs.de experimental/main openchange 1.0~svn894-1 (tar) [1088kB] | Get:3 http://sinclair.farm.ftbfs.de experimental/main openchange 1.0~svn894-1 (diff) [4227B] | Fetched 1094kB in 3s (361kB/s) | Download complete and in download only mode | ** Using build dependencies supplied by package: | Build-Depends: debhelper ( 5.0.0), libparse-pidl-perl, libmagic-dev, libdcerpc-dev, libtalloc-dev, libldb-samba4-dev (= 4.0.0~alpha5+20080930), samba4-dev, libsamba-hostconfig-dev, flex, bison, libpopt-dev, libtorture-dev, doxygen, pkg-config | Checking for already installed source dependencies... [...] | Compiling libmapi/cdo_mapi.c with -fPIC | libmapi/cdo_mapi.c: In function 'MAPIInitialize': | libmapi/cdo_mapi.c:239: error: too many arguments to function 'dcerpc_init' | make[1]: *** [libmapi/cdo_mapi.po] Error 1 | make[1]: Leaving directory `/build/buildd/openchange-1.0~svn894' | make: *** [build-stamp] Error 2 | dpkg-buildpackage: failure: debian/rules build gave error exit status 2 | ** | Build finished at 20081127-1345 | FAILED [dpkg-buildpackage died] Full build log(s): http://experimental.ftbfs.de/build.php?ver=1.0~svn894-1pkg=openchangearch=hppa Gruesse, -- Frank Lichtenheld [EMAIL PROTECTED] www: http://www.djpig.de/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#507058: b43-fwcutter fails to install: input file is wrong
On Thu, Nov 27, 2008 at 04:09:00PM +0100, Rene Engelhard wrote: I'd debug your network connection. Or the file was at some time corrupted on the mirror. Nothing this package can influence. Hey Rene, thank you so much for your speed-lightning reply ! If b43-fwcutter managed to download the files, I assume there's no problem with my network connection, right ? If your install was OK, I assume the files were not corrupted on the mirror. I confess I'm stumped. Not sure if this is relevant, but I checked b43-fwcutter's version with: b43-fwcutter -v and here's the result: b43-fwcutter version 009 Shouldn't it be 011 ? I tried to go through the install manually: 1) Install b43-fwcutter but don't download and extract the firmware 2) Download the file manually: wget http://mirror2.openwrt.org/sources/broadcom-wl-4.150.10.5.tar.bz2 3) Extract it: tar xjvf broadcom-wl-4.150.10.5.tar.bz2 4) Extract the firmware: cd broadcom-wl-4.150.10.5/driver/ b43-fwcutter -w /lib/firmware wl_apsta_mimo.o And the result was exactly the same: Sorry, the input file is either wrong or not supported by b43-fwcutter. This file has an unknown MD5sum cb8d70972b885b1f8883b943c0261a3c. Running b43-fwcutter -l: b43-fwcutter version 009 Extracting firmware is possible from these binary driver files: driverfilename microcode MD5 checksum b43legacy wl_apsta.o 295.14 e08665c5c5b66beb9c3b2dd54aa80cb3 b43 wl_apsta.o 351.126 9207bc565c2fc9fa1591f6c7911d3fc0 b43 wl_apsta_mimo.o 351.126 722e2e0d8cc04b8f118bb5afe6829ff9 And md5sum wl_apsta_mimo.o: cb8d70972b885b1f8883b943c0261a3c wl_apsta_mimo.o I'm really stumped. Would you have any suggestion on how to continue debugging this ? Regards, Paulo I just tried it: [...] Setting up b43-fwcutter (1:011-5) ... --2008-11-27 16:06:31-- http://downloads.openwrt.org/sources/wl_apsta-3.130.20.0.o Resolving downloads.openwrt.org... 195.56.146.238 Connecting to downloads.openwrt.org|195.56.146.238|:80... connected. HTTP request sent, awaiting response... 200 OK Length: 652866 (638K) [application/x-object] Saving to: `wl_apsta-3.130.20.0.o' 100%[==] 652,866 3.12M/s in 0.2s 2008-11-27 16:06:32 (3.12 MB/s) - `wl_apsta-3.130.20.0.o' saved [652866/652866] --2008-11-27 16:06:32-- http://mirror2.openwrt.org/sources/broadcom-wl-4.150.10.5.tar.bz2 Resolving mirror2.openwrt.org... 88.198.39.176 Connecting to mirror2.openwrt.org|88.198.39.176|:80... connected. HTTP request sent, awaiting response... 200 OK Length: 3888794 (3.7M) [application/x-tar] Saving to: `broadcom-wl-4.150.10.5.tar.bz2' 100%[==] 3,888,794 4.12M/s in 0.9s 2008-11-27 16:06:33 (4.12 MB/s) - `broadcom-wl-4.150.10.5.tar.bz2' saved [3888794/3888794] This file is recognised as: ID : FW10 filename : wl_apsta.o version: 295.14 MD5: e08665c5c5b66beb9c3b2dd54aa80cb3 Extracting b43legacy/ucode2.fw Extracting b43legacy/ucode4.fw Extracting b43legacy/ucode5.fw Extracting b43legacy/ucode11.fw Extracting b43legacy/pcm4.fw Extracting b43legacy/pcm5.fw Extracting b43legacy/a0g0bsinitvals2.fw Extracting b43legacy/b0g0bsinitvals5.fw Extracting b43legacy/a0g0initvals5.fw Extracting b43legacy/a0g1bsinitvals5.fw Extracting b43legacy/a0g0initvals2.fw Extracting b43legacy/a0g1initvals5.fw Extracting b43legacy/b0g0bsinitvals2.fw Extracting b43legacy/b0g0initvals5.fw Extracting b43legacy/b0g0initvals2.fw Extracting b43legacy/a0g0bsinitvals5.fw broadcom-wl-4.150.10.5/ broadcom-wl-4.150.10.5/driver/ broadcom-wl-4.150.10.5/driver/config/ broadcom-wl-4.150.10.5/driver/config/wlconfig_apdef broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_ap broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_ap_1chipG broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_ap_micro broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_ap_mimo broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_apsta broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_apsta_1chipG broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_apsta_micro broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_apsta_mimo broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_sta broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_sta_1chipG broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_sta_micro broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_router_sta_mimo broadcom-wl-4.150.10.5/driver/config/wlconfig_lx_shared broadcom-wl-4.150.10.5/driver/config/wlconfig_micro broadcom-wl-4.150.10.5/driver/config/wlconfig_nomimo broadcom-wl-4.150.10.5/driver/config/wl_default broadcom-wl-4.150.10.5/driver/config/wl_hnd broadcom-wl-4.150.10.5/driver/wl_ap_micro.o broadcom-wl-4.150.10.5/driver/wl_ap_mimo.o broadcom-wl-4.150.10.5/driver/wl_ap.o
Bug#506977: GPL relicensing
I see a lot of echoing about relicensing to GPL, and I regret naming that option in the Ubuntu bugreport, since it should NOT be taken as gospel. In case Debian/Ubuntu is serious about this, this is roughly the situation of GPL licensing option: - The whole possibility of relicensing to GPL is based on just a remark on a mailing list that all offending code is in some sf.net project. But there are two problems with the option of relicensing: - These claims were not verified. - Due to the moment the disputed code appeared in the FPC tree (pre 2000), it can't have Kylix (including the GPL sf.net project) origin. This might put the whole GPL option on shaky ground. The FPC project has NOT researched this to the fullest (since we decided to retract all releases with potentially infringing code), and won't do this either. All talk of GPL relicensing is based on a few loose remarks on FPC core when the release planning for 2.2.2 was done, which were not followed up. So if you want to try the relicensing option, one must verify the facts themselves and/or arrange for legal council and/or contact Codegear yourselves. - -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#507058: marked as done (b43-fwcutter fails to install: input file is wrong)
Your message dated Thu, 27 Nov 2008 16:56:16 +0100 with message-id [EMAIL PROTECTED] and subject line Re: Bug#507058: b43-fwcutter fails to install: input file is wrong has caused the Debian Bug report #507058, regarding b43-fwcutter fails to install: input file is wrong to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 507058: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507058 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: b43-fwcutter Version: 1:011-5 Severity: grave Justification: renders package unusable Install of b43-fwcutter fails with these messages: Sorry, the input file is either wrong or not supported by b43-fwcutter. This file has an unknown MD5sum cb8d70972b885b1f8883b943c0261a3c. This is the file it complained about: http://mirror2.openwrt.org/sources/broadcom-wl-4.150.10.5.tar.bz2 Please let me know how I can help further debug this problem. Regards, Paulo -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.26-1-686 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages b43-fwcutter depends on: ii debconf [debconf-2.0] 1.5.24 Debian configuration management sy ii libc6 2.7-16 GNU C Library: Shared libraries ii wget 1.11.4-2 retrieves files from the web Versions of packages b43-fwcutter recommends: ii bzip2 1.0.5-1high-quality block-sorting file co b43-fwcutter suggests no packages. -- debconf information: * b43-fwcutter/cut_firmware: true ---End Message--- ---BeginMessage--- Hi, Paulo Marcel Coelho Aragao wrote: If b43-fwcutter managed to download the files, I assume there's no problem with my network connection, right ? If your install was OK, I They might get corrupted on transfer. Not sure if this is relevant, but I checked b43-fwcutter's version with: It is. b43-fwcutter -v and here's the result: b43-fwcutter version 009 Shouldn't it be 011 ? Then you probably someowhen insxtalled it locally and it takes precendence? In any case, the package is 11. But that's an other data point that you just fucked up something ;-) I tried to go through the install manually: 1) Install b43-fwcutter but don't download and extract the firmware 2) Download the file manually: wget http://mirror2.openwrt.org/sources/broadcom-wl-4.150.10.5.tar.bz2 3) Extract it: tar xjvf broadcom-wl-4.150.10.5.tar.bz2 4) Extract the firmware: cd broadcom-wl-4.150.10.5/driver/ b43-fwcutter -w /lib/firmware wl_apsta_mimo.o And the result was exactly the same: Sorry, the input file is either wrong or not supported by b43-fwcutter. This file has an unknown MD5sum cb8d70972b885b1f8883b943c0261a3c. Running b43-fwcutter -l: b43-fwcutter version 009 You *NEED* 011. I'm really stumped. Would you have any suggestion on how to continue debugging this ? See above. I am closing this bug since what you used was not the package. Grüße/Regards, René -- .''`. René Engelhard -- Debian GNU/Linux Developer : :' : http://www.debian.org | http://people.debian.org/~rene/ `. `' [EMAIL PROTECTED] | GnuPG-Key ID: 248AEB73 `- Fingerprint: 41FA F208 28D4 7CA5 19BB 7AD9 F859 90B0 248A EB73 ---End Message---
Bug#507058: b43-fwcutter fails to install: input file is wrong
On Thu, Nov 27, 2008 at 03:57:12PM +, Debian Bug Tracking System wrote: Then you probably someowhen insxtalled it locally and it takes precendence? In any case, the package is 11. But that's an other data point that you just fucked up something ;-) Running b43-fwcutter -l: b43-fwcutter version 009 You *NEED* 011. You were right ! I did have a copy of b43-fwcutter in /usr/local/bin from old unsuccessful work on b43. Now I managed to install the package as expected. I heartily thank you for your patience in following this bug which wasn't a bug after all but solely my mistake ! Regards, Paulo -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#506165: Request for clarification
On Wed, 26 Nov 2008 08:39:31 +0100 Reinhard Karcher [EMAIL PROTECTED] wrote: Severity: wishlist In NEWS.Debian.gz in /usr/share/doc/ttf-kochi-gothic the replacement of the kochi fonts by the sazinami fonts ist suggested, as these fonts are kochi-based. Is this suggestion still true? Yes, true. Some applications are not prepared to migrate for this, and as Junichi pointed out that ttf-sazanami does not contain kochi-gothic/mincho file. -- Regards, Hideki Yamane henrich @ debian.or.jp/iijmio-mail.jp http://wiki.debian.org/HidekiYamane -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#505237: Fixed in Lenny
On Sun, Nov 16, 2008 at 11:40:23PM +0100, Patrick Matthäi wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 fixed #505237 5.4.1~dfsg-11 thanks Hello, this bug does not affect the Lenny release. I tried to reproduce it on three machines (two Lenny, one sid) - also with different settings in /etc/default/snmpd. I had no time yet to test it on a etch box, so on I added a fixed tag for the lenny version. On today's lenny I can seem to reproduce it: lenny:~# invoke-rc.d snmpd stop Stopping network management services: snmpd snmptrapd. lenny:~# invoke-rc.d snmpd start Starting network management services: snmpd. lenny:~# echo $? 0 lenny:~# invoke-rc.d snmpd start Starting network management services:invoke-rc.d: initscript snmpd, action start failed. lenny:~# echo $? 1 lenny:~# I agree that --oknodo on start seems like the right thing to do, though filippo -- Filippo Giunchedi - http://esaurito.net PGP key: 0x6B79D401 random quote follows: A mathematician is a device for turning coffee into theorems. -- Paul Erdos signature.asc Description: Digital signature
Bug#505635: marked as done ([xserver-xorg-input-evdev] keyboard acts as if I had pressed every key multiple times.)
Your message dated Thu, 27 Nov 2008 16:47:04 + with message-id [EMAIL PROTECTED] and subject line Bug#505635: fixed in xserver-xorg-input-evdev 1:2.1.0-1 has caused the Debian Bug report #505635, regarding [xserver-xorg-input-evdev] keyboard acts as if I had pressed every key multiple times. to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 505635: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=505635 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: xserver-xorg-input-evdev Version: 1:2.0.99.3-1 Severity: grave --- Please enter the report below this line. --- Since I upgraded xserver-xorg-input-evdev from 1:2.0.3-2 to 1:2.0.99.3-1, the driver is completely broken for me. I used it for my USB keyboard, but since the upgrade, every time I press a key, X acts as if I had pressed that key twice. This makes it impossible to work or even log in. --- System information. --- Architecture: i386 Kernel: Linux 2.6.26-1-686 Debian Release: lenny/sid 500 unstablewww.debian-multimedia.org 500 unstableftp2.de.debian.org 101 experimentalftp.tu-chemnitz.de --- Package information. --- Depends (Version) | Installed ==-+-= libc6 (= 2.7-1) | 2.7-16 xserver-xorg-core (= 2:1.5.3) | 2:1.5.3-1 --- Output from package bug script --- ---End Message--- ---BeginMessage--- Source: xserver-xorg-input-evdev Source-Version: 1:2.1.0-1 We believe that the bug you reported is fixed in the latest version of xserver-xorg-input-evdev, which is due to be installed in the Debian FTP archive: xserver-xorg-input-evdev_2.1.0-1.diff.gz to pool/main/x/xserver-xorg-input-evdev/xserver-xorg-input-evdev_2.1.0-1.diff.gz xserver-xorg-input-evdev_2.1.0-1.dsc to pool/main/x/xserver-xorg-input-evdev/xserver-xorg-input-evdev_2.1.0-1.dsc xserver-xorg-input-evdev_2.1.0-1_i386.deb to pool/main/x/xserver-xorg-input-evdev/xserver-xorg-input-evdev_2.1.0-1_i386.deb xserver-xorg-input-evdev_2.1.0.orig.tar.gz to pool/main/x/xserver-xorg-input-evdev/xserver-xorg-input-evdev_2.1.0.orig.tar.gz A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Julien Cristau [EMAIL PROTECTED] (supplier of updated xserver-xorg-input-evdev package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 26 Nov 2008 19:27:26 +0100 Source: xserver-xorg-input-evdev Binary: xserver-xorg-input-evdev Architecture: source i386 Version: 1:2.1.0-1 Distribution: experimental Urgency: low Maintainer: Debian X Strike Force [EMAIL PROTECTED] Changed-By: Julien Cristau [EMAIL PROTECTED] Description: xserver-xorg-input-evdev - X.Org X server -- evdev input driver Closes: 505635 Changes: xserver-xorg-input-evdev (1:2.1.0-1) experimental; urgency=low . [ Timo Aaltonen ] * New upstream release. + Store device file's minor/major to avoid duplicate devices (closes: #505635) . [ Julien Cristau ] * debian/control: update the long description. We don't do clever device matching anymore, that's hal/udev's job. Also drop the mention of 'Protocol evdev', which unexists since quite a while. Checksums-Sha1: 4bf24a526054c1126e8b7f594c5ce9907a5a9d5e 1582 xserver-xorg-input-evdev_2.1.0-1.dsc 9599f6219a278a189d830cda374455f585ce294d 388877 xserver-xorg-input-evdev_2.1.0.orig.tar.gz 92a5d70e0e74741f92ae244a8ee09b2e438257a9 17520 xserver-xorg-input-evdev_2.1.0-1.diff.gz a145ada542bd4981ebad4723619efe1e4a46b893 51648 xserver-xorg-input-evdev_2.1.0-1_i386.deb Checksums-Sha256: 0fbf2408859c971283905cfc363a2393ba22a3d684fd83a48e4bfec1db927860 1582 xserver-xorg-input-evdev_2.1.0-1.dsc 1a4181394aa1514a37df6839aa0f26a7df4bd18227d0bc02fd53267e921dcb2f 388877 xserver-xorg-input-evdev_2.1.0.orig.tar.gz e872dfe1d8017a1254451cbdbaeb0ee347e768d14b37ffb59dc42f6eedf1273c 17520 xserver-xorg-input-evdev_2.1.0-1.diff.gz 0d4ee70ca53b2b0e874504c9d03a10a6d078a17af81d4d63381a8ec3769a4d03 51648 xserver-xorg-input-evdev_2.1.0-1_i386.deb Files: f813c99866c5d090369aae4651c97db0 1582 x11 optional xserver-xorg-input-evdev_2.1.0-1.dsc
Processed: closing 506846
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.35 close 506846 Bug#506846: openssl: MD5 calculations often segfault 'close' is deprecated; see http://www.debian.org/Bugs/Developer#closing. Bug closed, send any further explanations to Nach [EMAIL PROTECTED] End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: Re: Bug #506977 FPC: copyright infringement in pre 2.2.2 sources
Processing commands for [EMAIL PROTECTED]: reassign 506977 release.debian.org Bug#506977: FPC: copyright infringement in pre 2.2.2 sources Bug reassigned from package `fpc' to `release.debian.org'. thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#506883: 506883 tuxguitar: hard-codes dependencies on libraries
* Evgeni Golov [Wed, 26 Nov 2008 23:11:21 +0100]: Hey Philippe, I doubt your changes are too big to be accepted into Lenny. Can you post a -2 fixing only #506883, let it migrate to Lenny and then upload -3 with all the other changes into experimental? I'm okay with them... -- Adeodato Simó dato at net.com.org.es Debian Developer adeodato at debian.org The surest way to corrupt a youth is to instruct him to hold in higher esteem those who think alike than those who think differently. -- F. Nietzsche -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#506883: [debian] tuxguitar: hard-coded dependencies on libraries
* Adeodato Simó [Thu, 27 Nov 2008 10:30:36 +0100]: * Philippe Coval [Wed, 26 Nov 2008 19:40:58 +0100]: Hi, Thank you for reporting this, I've fixed this among other things : http://mentors.debian.net/debian/pool/main/t/tuxguitar/ I reviewed this because I wanted to sponsor it. However, I found a problem with it: you cannot move the package from contrib to main without bumping the upstream version (it's a limitation of dak). If you want to move the package to main, you will need to upload it as 1.0.dak-1 or equivalent. For the record Philippe uploaded a new version addressing this to mentors, and Tony Mancill will be sponsoring it soon. -- Adeodato Simó dato at net.com.org.es Debian Developer adeodato at debian.org Testing can show the presence of bugs, but not their absence. -- Dijkstra -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#506977: Bug #506977 FPC: copyright infringement in pre 2.2.2 sources
reassign 506977 release.debian.org thanks On Thursday 27 November 2008 12:05, Frank Lichtenheld wrote: What is the correct way to remove packages from (old)stable? Should I file a bug report against ftp.debian.org or is it done by the SRM? That's SRM stuff, so you need to file the bug against release.debian.org instead of ftp.debian.org. From: Paul Gevers [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] In Ubuntu I checked that the following packages builddepend on FPC: lazarus imapcopy hedgewars libhdate gearhead m-tx python-soappy poker-network I assume, but have not check yet, that the same goes for Debian. Looks like quite a lot of packages seem to have go. The removal request looks reasonable to me :( regards, Holger pgpuz2aiHJ6KH.pgp Description: PGP signature
Bug#506977: Bug #506977 FPC: copyright infringement in pre 2.2.2 sources
In Ubuntu I checked that the following packages builddepend on FPC: lazarus imapcopy hedgewars libhdate gearhead m-tx python-soappy poker-network I assume, but have not check yet, that the same goes for Debian. Looks like quite a lot of packages seem to have go. The removal request looks reasonable to me :( Yesterday I found out that python-soappy and poker-network do NOT build depend on fpc. That was a mistake because reverse-build-depends fpc gives more output than only fpc (i.e. it reverse build depend on python-fpconst) Paul signature.asc Description: OpenPGP digital signature
Bug#462189: wxwindows2.4 is scheduled to be removed
Hi, Has there been any progress on this, now that wxwidgets2.8 is in unstable? Cheers, Emilio -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#507071: racoon - Fails after upgrade: symbol lookup error: /usr/sbin/racoon: undefined symbol: libipsec_opt
Package: racoon Version: 0.7.1-1.2 Severity: grave racoon fails to start after an upgrade: | Setting up racoon (0.7.1-1.2) ... | Installing new version of config file /etc/init.d/racoon ... | Starting IKE (ISAKMP/Oakley) server: racoon/usr/sbin/racoon: symbol lookup error: /usr/sbin/racoon: undefined symbol: libipsec_opt | invoke-rc.d: initscript racoon, action start failed. Bastian -- No one may kill a man. Not for any purpose. It cannot be condoned. -- Kirk, Spock's Brain, stardate 5431.6 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: unarchiving 286905
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.35 # will explain soon unarchive 286905 Bug 286905 [perl] perl-modules: File::Path::rmtree makes setuid Bug 286922 [perl] perl-modules: File::Path::rmtree removes arbitrary Unarchived Bug 286905 Unarchived Bug 286922 End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#507072: ipsec-tools - Private lib without proper SONAME in /usr/lib
Package: ipsec-tools Version: 1:0.7.1-1.2 Severity: serious The ipsec-tools package ships a private lib without proper SONAME nor headers in /usr/lib. Bastian -- Ahead warp factor one, Mr. Sulu. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#286905: CVE-2005-0448 resurfaced
unmerge 286922
found 286905 5.8.8-1
found 286922 5.8.8-1
fixed 286922 5.10.0-1
thanks
As discussed around
http://www.gossamer-threads.com/lists/perl/porters/233695#233695
CVE-2005-0448 (File::Path::rmtree races) has resurfaced and is present
in all of etch, lenny, and sid.
To be precise, CVE-2005-0448 was about two bugs (#286922 and #286905).
Both of those apply to the etch package, while only #286905 applies to
the lenny/sid package.
I'm unsure if this needs a new CVE id.
For etch, I see no option but to reintroduce the File::Path::rmtree()
implementation by Brendan O'Dea originally introduced in 5.8.4-7. I'm
attaching the diff (debian/patches/03_fix_file_path from 5.8.7-x).
I have informed the security team and they will look at this.
For lenny/sid, #286922 is fixed and the attached patch combined from
File-Path-2.07 and
http://www.gossamer-threads.com/lists/perl/porters/233699#233699
should fix #286905. Please note that the above message seems to have
the CVE ids confused; I think CVE-2004-0452 is really fixed for good.
I'll upload 5.10.0-18 with the patch at urgency=high soon, hope it can
make it into lenny without a separate testing-security package.
I'd love more eyeballs on this. I've been able to exploit the issues
with breakpoints in the perl debugger and the patches seem to work.
--
Niko Tyni [EMAIL PROTECTED]
SECURITY [CAN-2005-0448]:
Rewrite File::Path::rmtree to avoid race condition which allows an
attacker with write permission on directories in the tree being
removed to make files setuid or to remove arbitrary files (see
http://bugs.debian.org/286905 and http://bugs.debian.org/286922).
diff -Naur --exclude=debian perl-5.8.7.orig/lib/File/Path.pm
perl-5.8.7/lib/File/Path.pm
--- perl-5.8.7.orig/lib/File/Path.pm2005-05-06 02:00:32.0 +1000
+++ perl-5.8.7/lib/File/Path.pm 2005-06-02 23:49:34.0 +1000
@@ -72,33 +72,17 @@
=item *
-a boolean value, which if TRUE will cause Crmtree to
-skip any files to which you do not have delete access
-(if running under VMS) or write access (if running
-under another OS). This will change in the future when
-a criterion for 'delete permission' under OSs other
-than VMS is settled. (defaults to FALSE)
+a boolean value, which if FALSE (the default for non-root users) will
+cause Crmtree to adjust the mode of directories (if required) prior
+to attempting to remove the contents. Note that on interruption or
+failure of Crmtree, directories may be left with more permissive
+modes for the owner.
=back
It returns the number of files successfully deleted. Symlinks are
simply deleted and not followed.
-BNOTE: There are race conditions internal to the implementation of
-Crmtree making it unsafe to use on directory trees which may be
-altered or moved while Crmtree is running, and in particular on any
-directory trees with any path components or subdirectories potentially
-writable by untrusted users.
-
-Additionally, if the third parameter is not TRUE and Crmtree is
-interrupted, it may leave files and directories with permissions altered
-to allow deletion (and older versions of this module would even set
-files and directories to world-read/writable!)
-
-Note also that the occurrence of errors in Crmtree can be determined Ionly
-by trapping diagnostic messages using C$SIG{__WARN__}; it is not apparent
-from the return value.
-
=head1 DIAGNOSTICS
=over 4
@@ -124,6 +108,7 @@
use Exporter ();
use strict;
use warnings;
+use Cwd 'getcwd';
our $VERSION = 1.07;
our @ISA = qw( Exporter );
@@ -172,111 +157,129 @@
@created;
}
-sub rmtree {
-my($roots, $verbose, $safe) = @_;
-my(@files);
-my($count) = 0;
-$verbose ||= 0;
-$safe ||= 0;
-
-if ( defined($roots) length($roots) ) {
- $roots = [$roots] unless ref $roots;
-}
-else {
- carp No root path(s) specified\n;
- return 0;
-}
-
-my($root);
-foreach $root (@{$roots}) {
- if ($Is_MacOS) {
- $root = :$root if $root !~ /:/;
- $root =~ s#([^:])\z#$1:#;
- } else {
- $root =~ s#/\z##;
+sub _rmtree;
+sub _rmtree
+{
+my ($path, $prefix, $up, $up_dev, $up_ino, $verbose, $safe) = @_;
+
+my ($dev, $ino) = lstat $path or return 0;
+unless (-d _)
+{
+ print unlink $prefix$path\n if $verbose;
+ unless (unlink $path)
+ {
+ carp Can't remove file $prefix$path ($!);
+ return 0;
}
- (undef, undef, my $rp) = lstat $root or next;
- $rp = 0; # don't forget setuid, setgid, sticky bits
- if ( -d _ ) {
- # notabene: 0700 is for making readable in the first place,
- # it's also intended to change it to writable in case we have
- # to recurse in which case we are better than rm -rf for
- # subtrees with strange permissions
- chmod($rp | 0700, ($Is_VMS ? VMS::Filespec::fileify($root) : $root))
- or carp Can't make directory $root
Processed: CVE-2005-0448 resurfaced
Processing commands for [EMAIL PROTECTED]: unmerge 286922 Bug#286922: perl-modules: File::Path::rmtree removes arbitrary Bug#286905: perl-modules: File::Path::rmtree makes setuid Disconnected #286922 from all other report(s). found 286905 5.8.8-1 Bug#286905: perl-modules: File::Path::rmtree makes setuid Bug marked as found in version 5.8.8-1 and reopened. found 286922 5.8.8-1 Bug#286922: perl-modules: File::Path::rmtree removes arbitrary Bug marked as found in version 5.8.8-1 and reopened. fixed 286922 5.10.0-1 Bug#286922: perl-modules: File::Path::rmtree removes arbitrary Bug marked as fixed in version 5.10.0-1. thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: tagging 286905, tagging 286922
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.35 tags 286905 = security etch lenny sid Bug#286905: perl-modules: File::Path::rmtree makes setuid Tags were: fixed woody security Tags set to: security, etch, lenny, sid tags 286922 = security etch Bug#286922: perl-modules: File::Path::rmtree removes arbitrary Tags were: fixed woody security Tags set to: security, etch End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#507080: amaya: should this package be removed?
Source: amaya Version: 10.1~pre4+dfsg.0-2 Severity: serious User: [EMAIL PROTECTED] Usertags: proposed-removal Hi, While reviewing some packages, your package came up as a possible candidate for removal from Debian, because: * It has a long-standing RC bug * Not in etch, and won't be in lenny * Depends on libwww which is to be removed * It is almost unusable If you agree, sending the following commands to [EMAIL PROTECTED] should do it (after replacing nn with this bug's number): severity nn normal reassign nn ftp.debian.org retitle nn RM: packagename -- RoM; reasons thanks For more information, see http://wiki.debian.org/ftpmaster_Removals http://ftp-master.debian.org/removals.txt If you disagree and want to continue to maintain this package, please just close this bug, preferably in an upload also fixing the other issues. Thank you, -- Raphael Geissert - Debian Maintainer www.debian.org - get.debian.net signature.asc Description: This is a digitally signed message part.
Bug#506666: Update
After some days of recompiling with debug symbols and stepping endlessly through programs, I have become fairly sure that this problem has nothing at all to do with DirectFb. Sorry for the noise. It just happened that I was inside DirectFB mostly when the crash occurred, but after recompiling SDL the default driver changed from DirectFB to X11 and still the crashes happened, in fairly random locations. SDL Init seems to trigger some process or thread that eventually causes the complete crash of X sometime thereafter. As an experiment I set my video device to fbdev in xorg.conf and suddenly everything started working, though obviously slowly. So it seems the problem must be in xserver-xorg-video-radeon.
Bug#286905: marked as done (perl-modules: File::Path::rmtree makes setuid)
Your message dated Thu, 27 Nov 2008 21:18:05 +
with message-id [EMAIL PROTECTED]
and subject line Bug#286905: fixed in perl 5.10.0-18
has caused the Debian Bug report #286905,
regarding perl-modules: File::Path::rmtree makes setuid
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)
--
286905: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=286905
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
---BeginMessage---
Package: perl-modules
Version: 5.6.1-8.7
Severity: critical
File: /usr/share/perl/5.6.1/File/Path.pm
Tags: security
Justification: root security hole
Noting USN-44-1 e.g. in
http://archives.neohapsis.com/archives/fulldisclosure/2004-12/0385.html
I looked in perl-N.N.N/lib/File/Path.pm and noticed that rmtree contains
a race condition, allowing creation of setuid files:
170 (undef, undef, my $rp) = lstat $root or next;
171 $rp = 0; # don't forget setuid, setgid, sticky bits
172 if ( -d _ ) {
...
209 if (rmdir $root) {
210 ++$count;
211 }
212 else {
213 carp Can't remove directory $root: $!;
214 chmod($rp, ($Is_VMS ? VMS::Filespec::fileify($root) :
$root))
215 or carp(and can't restore permissions to
216 . sprintf(0%o,$rp) . \n);
217 }
218 }
...
Example of attack: suppose we know that root uses rmtree to clean up
/tmp directories. Attacker prepares things:
mkdir -p /tmp/psz/sh
perl -e 'open F, /tmp/psz/sh/$_ foreach (1..1000)'
chmod 4777 /tmp/psz/sh
While root is busy working on /tmp/psz/sh (and this can be made as slow
as we like), attacker does:
mv /tmp/psz/sh /tmp/psz/dummy
ln -s /bin/sh /tmp/psz/sh
Root would have recorded the permissions of /tmp/psz/sh, but would
restore it to /bin/sh.
I am not sure if things can almost be fixed (for those architectures
without $force_writeable) by enclosing the chmod($rp,...) line within
if(!safe|$force_writeable){...}. Maybe it should be documented that
rmtree must only be used if you can be sure to have exclusive access to
the tree.
(A few minutes ago I emailed the File::Path authors [EMAIL PROTECTED]
and [EMAIL PROTECTED]; Tim.Bunce bounced.)
Cheers,
Paul Szabo - [EMAIL PROTECTED] http://www.maths.usyd.edu.au:8000/u/psz/
School of Mathematics and Statistics University of Sydney 2006 Australia
-- System Information
Debian Release: 3.0
Architecture: i386
Kernel: Linux pisa.maths.usyd.edu.au 2.4.22-smssvr1.5.3 #1 SMP Wed Jun 23
13:01:39 EST 2004 i686
Locale: LANG=C, LC_CTYPE=C
Versions of packages perl-modules depends on:
ii perl 5.6.1-8.7 Larry Wall's Practical Extraction
---End Message---
---BeginMessage---
Source: perl
Source-Version: 5.10.0-18
We believe that the bug you reported is fixed in the latest version of
perl, which is due to be installed in the Debian FTP archive:
libcgi-fast-perl_5.10.0-18_all.deb
to pool/main/p/perl/libcgi-fast-perl_5.10.0-18_all.deb
libperl-dev_5.10.0-18_i386.deb
to pool/main/p/perl/libperl-dev_5.10.0-18_i386.deb
libperl5.10_5.10.0-18_i386.deb
to pool/main/p/perl/libperl5.10_5.10.0-18_i386.deb
perl-base_5.10.0-18_i386.deb
to pool/main/p/perl/perl-base_5.10.0-18_i386.deb
perl-debug_5.10.0-18_i386.deb
to pool/main/p/perl/perl-debug_5.10.0-18_i386.deb
perl-doc_5.10.0-18_all.deb
to pool/main/p/perl/perl-doc_5.10.0-18_all.deb
perl-modules_5.10.0-18_all.deb
to pool/main/p/perl/perl-modules_5.10.0-18_all.deb
perl-suid_5.10.0-18_i386.deb
to pool/main/p/perl/perl-suid_5.10.0-18_i386.deb
perl_5.10.0-18.diff.gz
to pool/main/p/perl/perl_5.10.0-18.diff.gz
perl_5.10.0-18.dsc
to pool/main/p/perl/perl_5.10.0-18.dsc
perl_5.10.0-18_i386.deb
to pool/main/p/perl/perl_5.10.0-18_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Niko Tyni [EMAIL PROTECTED] (supplier of updated perl package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Format: 1.8
Date: Fri, 21 Nov 2008 00:49:57 +0200
Source: perl
Binary: perl-base libcgi-fast-perl perl-doc perl-modules perl-debug perl-suid
Bug#507090: newlib_1.16.0-2.1(sparc/unstable): FTBFS on buildds: Nothing to be done for `binary-arch'.
Package: newlib Version: 1.16.0-2.1 Severity: serious There was an error while trying to autobuild your package: Automatic build of newlib_1.16.0-2.1 on schroeder by sbuild/sparc 99.99 Build started at 20081127-2157 [...] ** Using build dependencies supplied by package: Build-Depends: debhelper (= 6), binutils-spu [powerpc ppc64], gcc-spu [powerpc ppc64], texinfo [...] dpkg-buildpackage: host architecture sparc /usr/bin/fakeroot debian/rules clean dh_testdir dh_testroot rm -rf src build* *-stamp* rm -rf debian/newlib-source dh_clean debian/rules build make: Nothing to be done for `build'. /usr/bin/fakeroot debian/rules binary-arch make: Nothing to be done for `binary-arch'. dpkg-genchanges -B -mDebian Build Daemon buildd_sparc-schroeder ../newlib_1.16.0-2.1_sparc.changes dpkg-genchanges: arch-specific upload - not including arch-independent packages dpkg-genchanges: failure: cannot read files list file: No such file or directory dpkg-buildpackage: failure: dpkg-genchanges gave error exit status 2 That means you are trying to build arch-independ stuff only on buildds, which will not work. A full build log can be found at: http://buildd.debian.org/build.php?arch=sparcpkg=newlibver=1.16.0-2.1 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#496395: marked as done (The possibility of attack with the help of symlinks in some Debian packages)
Your message dated Thu, 27 Nov 2008 22:02:08 + with message-id [EMAIL PROTECTED] and subject line Bug#496395: fixed in apertium 3.0.7+1-3 has caused the Debian Bug report #496395, regarding The possibility of attack with the help of symlinks in some Debian packages to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 496395: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496395 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apertium Severity: grave Hi, maintainer! This message about the error concerns a few packages at once. I've tested all the packages (for Lenny) on my Debian mirror. All scripts of packages (marked as executable) were tested. In some packages I've discovered scripts with errors which may be used by a user for damaging important system files or user's files. For example if a script uses in its work a temp file which is created in /tmp directory, then every user can create symlink with the same name in this directory in order to destroy or rewrite some system or user file. Symlink attack may also lead not only to the data desctruction but to denial of service as well. Even if you create files or directories with help of function 'RANDOM' or pid(), then your system is not protected. Attacker can create many symlinks in order to destroy your data or create 'denial of service' for your package scripts. Even if you make rm(dir) for files/directories, then your system is not protected. Attacker can permanently create symlinks. This list is created with the help of script. This list is sorted by hand. Howewer in some cases mistake is possible. Please, Be understanding to possible mistakes. :) I set Severity into grave for this bug. The table of discovered problems is below. Discussion of this bug you can see in debian-devel@: http://lists.debian.org/debian-devel/2008/08/msg00271.html Binary-package: r-base-core-ra (1.1.1-1) file: /usr/lib/Ra/lib/R/bin/javareconf Binary-package: rccp (0.9-2) file: /usr/lib/rccp/delqueueask Binary-package: mafft (6.240-1) file: /usr/bin/mafft-homologs Binary-package: openoffice.org-common (1:2.4.1-6) file: /usr/lib/openoffice/program/senddoc Binary-package: crossfire-maps (1.11.0-1) file: /usr/share/games/crossfire/maps/Info/combine.pl Binary-package: sgml2x (1.0.0-11.1) file: /usr/bin/rlatex Binary-package: liguidsoap (0.3.6-4) file: /var/lib/liguidsoap/liguidsoap.py Binary-package: citadel-server (7.37-1) file: /usr/lib/citadel-server/migrate_aliases.sh Binary-package: ampache (3.4.1-1) file: /usr/share/ampache/www/locale/base/gather-messages.sh Binary-package: xen-utils-3.2-1 (3.2.1-2) file: /usr/lib/xen-3.2-1/bin/qemu-dm.debug Binary-package: dtc-common (0.29.6-1) file: /usr/share/dtc/admin/accesslog.php file: /usr/share/dtc/admin/sa-wrapper Binary-package: honeyd-common (1.5c-3) file: /usr/share/honeyd/scripts/test.sh Binary-package: lustre-tests (1.6.5-1) file: /usr/lib/lustre/tests/runiozone Binary-package: linuxtrade (3.65-8+b4) file: /usr/share/linuxtrade/bin/linuxtrade.bwkvol file: /usr/share/linuxtrade/bin/linuxtrade.wn file: /usr/share/linuxtrade/bin/moneyam.helper Binary-package: freevo (1.8.1-0) file: /usr/bin/freevo.real Binary-package: fml (4.0.3.dfsg-2) file: /usr/share/fml/libexec/mead.pl Binary-package: rkhunter (1.3.2-3) file: /usr/bin/rkhunter Binary-package: openswan (1:2.4.12+dfsg-1.1) file: /usr/lib/ipsec/livetest Binary-package: linux-patch-openswan (1:2.4.12+dfsg-1.1) file: /usr/src/kernel-patches/all/openswan/packaging/utils/maysnap file: /usr/src/kernel-patches/all/openswan/packaging/utils/maytest Binary-package: aptoncd (0.1-1.1) file: /usr/share/aptoncd/xmlfile.py Binary-package: cdcontrol (1.90-1.1) file: /usr/lib/cdcontrol/writtercontrol Binary-package: newsgate (1.6-23) file: /usr/bin/mkmailpost Binary-package: gpsdrive-scripts (2.10~pre4-3) file: /usr/bin/geo-code Binary-package: impose+ (0.2-11) file: /usr/bin/impose Binary-package: mgt (2.31-5) file: /usr/games/mailgo Binary-package: audiolink (0.05-1) file: /usr/bin/audiolink Binary-package: ibackup (2.27-4.1) file: /usr/bin/ibackup Binary-package: emacspeak (26.0-3) file: /usr/share/emacs/site-lisp/emacspeak/etc/extract-table.pl Binary-package: bk2site (1:1.1.9-3.1) file: /usr/lib/cgi-bin/bk2site/redirect.pl Binary-package: datafreedom-perl (0.1.7-1) file: /usr/bin/dfxml-invoice Binary-package: emacs-jabber (0.7.91-1) file:
Bug#507093: GHC6 uninstallable
Package: ghc6 Version: 6.8.2-7 Severity: grave Currently, I can't install ghc6: Setting up ghc6 (6.8.2-7) ... haskell-utils: timer_create: Invalid argument dpkg: error processing ghc6 (--configure): subprocess post-installation script returned error exit status 1 This is with haskell-utils 1.11. Perhaps a versioned dependency would be appropriate. Regards, Michael -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: severity of 506950 is important
Processing commands for [EMAIL PROTECTED]: severity 506950 important Bug#506950: ocfs2: ocfs2 issue: kernel BUG at fs/ocfs2/dlmglue.c:1977 Severity set to `important' from `critical' End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#506977: bug 506977 ( ubuntu 275688)
Please have a look at bug 506977 (of which the last and most explaining comment is below this email). The issue involved is a copyright infringement in the source of fpc before version 2.2.2 (i.e. everything version except for the one in unstable). I fear that we should either update or remove the sources of fpc on all but unstable releases. Well. Looked. In clear, either FPC + Lazarus should get out of Lenny or should be updated. You miss etch, which has an even older 2.0.0, so that needs to be fixed too. Now, having talked to the RMs for the various releases: etch - will get done within two weeks. We need time to prepare and coordinate a new stable release. lenny - it will, together with its reverse dependencies, get removed within a day (well, next britney + archive sync run) Its unfortunately way too large a code change to sync the new version from unstable to lenny. -- bye, Joerg elmo [..] trying to avoid extra dependencies on gnumeric is like trying to plug one hole in the titantic with a bit of tissue paper -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#505058: This bug is not RC
severity 505058 normal thanks I see absolutely no reason for this bug to be realease critical. Not being able to view two files is certainly not something that breaks unrelated software... -- signature.asc Description: Digital signature
Processed: This bug is not RC
Processing commands for [EMAIL PROTECTED]: severity 505058 normal Bug#505058: ghostscript: gv can't view the pages Severity set to `normal' from `critical' thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#507093: GHC6 uninstallable
Sounds like a duplicate of #479209. On Thu, Nov 27, 2008 at 11:59:23PM +0100, Michael Goetze wrote: This is with haskell-utils 1.11. Perhaps a versioned dependency would be appropriate. What's your kernel version and architecture? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#471121: marked as done (xli: resource leaks leads to denial of service of X)
Your message dated Fri, 28 Nov 2008 07:47:12 +
with message-id [EMAIL PROTECTED]
and subject line Bug#471121: fixed in xli 1.17.0+20061110-3
has caused the Debian Bug report #471121,
regarding xli: resource leaks leads to denial of service of X
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)
--
471121: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=471121
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
---BeginMessage---
Package: xli
Version: 1.17.0+20061110-2
Severity: important
Invoking xli multiple times eventually leads to a denial of service of
X, and the only way to overcome this is to kill X and restart:
xli -geometry ${HORSIZE}x${VERTSIZE}+0+0 -onroot -zoom auto -center
AV/Tas/IMG0001.JPG
Comment, length 29:
LEAD Technologies Inc. V1.01
AV/Tas/IMG0001.JPG is a 1536x1024 JPEG image, color space YCbCr, 3 comps.,
Huffman coding
Zooming image by 92%...done
Clipping image...(Adding border)...done
Building XImage...done
xli -geometry ${HORSIZE}x${VERTSIZE}+0+0 -onroot -zoom auto -center
AV/Tas/IMG0001.JPG
Xlib: connection to :0.0 refused by server
Xlib: Maximum number of clients reached
xli: Cannot open display ':0.0'
This is presumably the same as bug 387030 and 325689 against xloadimage.
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1,
'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.24 (SMP w/2 CPU cores)
Locale: LANG=en_AU, LC_CTYPE=en_AU (charmap=ISO-8859-1)
Shell: /bin/sh linked to /bin/bash
Versions of packages xli depends on:
ii libc6 2.7-9 GNU C Library: Shared libraries
ii libjpeg62 6b-14 The Independent JPEG Group's JPEG
ii libpng12-0 1.2.15~beta5-3PNG library - runtime
ii libx11-6 2:1.0.3-7 X11 client-side library
ii libxext6 2:1.0.4-1 X11 miscellaneous extension librar
ii zlib1g 1:1.2.3.3.dfsg-11 compression library - runtime
xli recommends no packages.
-- no debconf information
---End Message---
---BeginMessage---
Source: xli
Source-Version: 1.17.0+20061110-3
We believe that the bug you reported is fixed in the latest version of
xli, which is due to be installed in the Debian FTP archive:
xli_1.17.0+20061110-3.diff.gz
to pool/main/x/xli/xli_1.17.0+20061110-3.diff.gz
xli_1.17.0+20061110-3.dsc
to pool/main/x/xli/xli_1.17.0+20061110-3.dsc
xli_1.17.0+20061110-3_amd64.deb
to pool/main/x/xli/xli_1.17.0+20061110-3_amd64.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Ryan Niebur [EMAIL PROTECTED] (supplier of updated xli package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Format: 1.8
Date: Mon, 24 Nov 2008 01:27:55 -0800
Source: xli
Binary: xli
Architecture: source amd64
Version: 1.17.0+20061110-3
Distribution: unstable
Urgency: low
Maintainer: Ryan Niebur [EMAIL PROTECTED]
Changed-By: Ryan Niebur [EMAIL PROTECTED]
Description:
xli- command line tool for viewing images in X11
Closes: 431760 471121
Changes:
xli (1.17.0+20061110-3) unstable; urgency=low
.
* New maintainer (Closes: 431760)
* Fix X resources leak (Closes: 471121)
Thanks to Alex Perry, who made the patch for xloadimage that fixes
this. All I did was ported his changes over to xli. Thanks to Tim
Connors for testing.
Checksums-Sha1:
c9cb7cbabddeb55a206380818bd78e9537cb0967 1125 xli_1.17.0+20061110-3.dsc
eb896d4c2e2c509233bfa94d27aa80d92bdda4fc 30012 xli_1.17.0+20061110-3.diff.gz
92ae27e6893951e5b6280f91ffc4f5472a9fdb37 160226 xli_1.17.0+20061110-3_amd64.deb
Checksums-Sha256:
7b5d270ae1de0317c6b140008c50b2f4b398545d58e0126c71731be73b708c54 1125
xli_1.17.0+20061110-3.dsc
b280e5570387fab3fa31d3223ac2fef6b6dd7c2acf5a2c24665b2341052dc333 30012
xli_1.17.0+20061110-3.diff.gz
8b0d95c3cae71fbdef46d848819c376c29f1e6793427d56cc2c78879690d9657 160226
xli_1.17.0+20061110-3_amd64.deb
Files:
f5c326303ceae1830d5c93fd308ed841 1125 graphics optional
xli_1.17.0+20061110-3.dsc
744ebc7f5d240d25cff795cfe44e28f5 30012 graphics optional
xli_1.17.0+20061110-3.diff.gz
