Bug#669278: Reopen
On 2013-01-02 04:16, Lisandro Damián Nicanor Pérez Meyer wrote: Saddly the last upload did not fix this issue. When I tried this solution the [...] installation and continued with the update, and I've got the same error again, just appearing later. I see the same in piuparts :-( Are there any other solutions left than adding a transitional phonon-backend-xine package? Anyway, it's good to get rid of circular dependencies :-) Andreas -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#693263: qcontrol: wheezy version of qcontrol does not support --direct
* Hanno Hecker hah+deb...@uu-x.de [2013-01-01 10:37]: Martin: This is a new TS-419P II, the filename in the DHCP config must begin with F_TS-419P2+. strings mtd4 file did not show anything useful, but this name was requested via DHCP, visible in tcpdump -vv. Fixed, thanks! -- Martin Michlmayr http://www.cyrius.com/ -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#693263: qcontrol: wheezy version of qcontrol does not support --direct
I just installed the test package on my TS-219 (which doesn't have the watchdog problem). The device booted fine but I saw the following error: | Error opening /dev/input/by-path/platform-gpio-keys-event: No such file or directory which makes me wonder whether qcontrol was really executed properly. Hanno: can you make a serial adapter and connect it to your QNAP? -- Martin Michlmayr http://www.cyrius.com/ -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: Re: dotlrn: modifies conffiles (policy 10.7.3): /etc/dotlrn/config.tcl
Processing control commands: found -1 2.5.0+dfsg-6+wheezy3 Bug #688435 {Done: Adam D. Barratt a...@adam-barratt.org.uk} [dotlrn] dotlrn: modifies conffiles (policy 10.7.3): /etc/dotlrn/config.tcl Marked as found in versions dotlrn/2.5.0+dfsg-6+wheezy3; no longer marked as fixed in versions dotlrn/2.5.0+dfsg-6+wheezy3 and reopened. -- 688435: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688435 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#694870: Ping?
El jue, 03-01-2013 a las 08:07 +0100, Christian PERRIER escribió: Quoting Mario Izquierdo (mariodeb...@gmail.com): Sorry for late response... I uploaded to mentors: https://mentors.debian.net/package/tcos Could you sign and upload to Debian??? Well, there are more changes than only the one needed to fix #694870. Unless you have *very very* good reasons and probably a pre-approval by the release team, I'd recommend adding only what's needed to fix the release critical bug. All the changes are needed to build TCOS boot images for Debian unstable (and Wheezy) http://tcosproject.org/cgit/tcos.git/commit/?id=df9ee84ce07fbcf1a9dcbb720632918e0662f170 This detect versions 1.x of pulseaudio (Debian have now 2.0-6) http://tcosproject.org/cgit/tcos.git/commit/?id=8231574b03f85f5fd38c66cc7b5f52a0db3cda11 This remove a incorrect divert that cause to not upgrade chroot if udev is updated. http://tcosproject.org/cgit/tcos.git/commit/?id=bd77023afadfe96a0c6ab86343b02b695567439f This is a mix of 3 fixes: * Replace modprobe -l with a bash function to search module * Fix Multiarch paths for alsa pulseaudio * Use mesa libGL instead of downloading deb package and use it If you don't use any of this patches, TCOS images will not boot, or not have sound or use nVidia/ATI libGL when other driver is needed (bad performance) I can prepare a package with only modprobe fix, but I think I must fix all problems for wheezy, we can create 2 another RC bugs to indicate this 2 newer changes... Thanks for your help -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#696947: marked as done (biojava3-live: FTBFS without Internet access)
Your message dated Thu, 03 Jan 2013 10:32:40 + with message-id e1tqi6k-0006km...@franck.debian.org and subject line Bug#696947: fixed in biojava3-live 3.0.5-2 has caused the Debian Bug report #696947, regarding biojava3-live: FTBFS without Internet access to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 696947: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696947 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: biojava3-live Version: 3.0.5-1 Severity: serious Tags: upstream Justification: fails to build from source (but built successfully in the past) biojava3-live fails to build without Internet access. One of the tests fails: test: [junit] Running org.biojava3.ronn.JronnTest [junit] Testsuite: org.biojava3.ronn.JronnTest [junit] Tests run: 1, Failures: 0, Errors: 0, Time elapsed: 2.203 sec [junit] Tests run: 1, Failures: 0, Errors: 0, Time elapsed: 2.203 sec [junit] [junit] Testcase: verifyRanges took 2.192 sec [junit] Running org.biojava3.ronn.NonstandardProteinCompoundTest [junit] Testsuite: org.biojava3.ronn.NonstandardProteinCompoundTest [junit] Tests run: 1, Failures: 1, Errors: 0, Time elapsed: 0.042 sec [junit] Tests run: 1, Failures: 1, Errors: 0, Time elapsed: 0.042 sec [junit] - Standard Error - [junit] Dec 06, 2012 5:15:54 PM org.biojava3.core.sequence.loader.UniprotProxySequenceReader getUniprotXML [junit] INFO: Loading http://www.uniprot.org/uniprot/?query=O30642format=xml [junit] java.net.UnknownHostException: www.uniprot.org [junit] at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:178) [...] Build logs can be found at https://launchpad.net/ubuntu/+source/biojava3-live/3.0.5-1 -- System Information: Debian Release: wheezy/sid APT prefers quantal-updates APT policy: (500, 'quantal-updates'), (500, 'quantal-security'), (500, 'quantal-proposed'), (500, 'quantal'), (100, 'quantal-backports') Architecture: i386 (i686) Kernel: Linux 3.5.0-21-generic (SMP w/2 CPU cores) Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- Source: biojava3-live Source-Version: 3.0.5-2 We believe that the bug you reported is fixed in the latest version of biojava3-live, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 696...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Olivier Sallou osal...@debian.org (supplier of updated biojava3-live package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Thu, 03 Jan 2013 11:08:51 +0100 Source: biojava3-live Binary: libbiojava3.0-java libbiojava3-java libbiojava3-java-doc Architecture: source all Version: 3.0.5-2 Distribution: unstable Urgency: low Maintainer: Debian Med Packaging Team debian-med-packag...@lists.alioth.debian.org Changed-By: Olivier Sallou osal...@debian.org Description: libbiojava3-java - Java API to biological data and applications (default version) libbiojava3-java-doc - [Biology] Documentation for BioJava libbiojava3.0-java - Java API to biological data and applications (version 3) Closes: 696947 Changes: biojava3-live (3.0.5-2) unstable; urgency=low . * Remove tests needing network access (Closes: #696947) Checksums-Sha1: 91cab4fd5d1c01e79b86903b5b137cd18fbeb570 2497 biojava3-live_3.0.5-2.dsc 8d79ef0976359a3e8f58e20cdd011d28f28062d6 8484 biojava3-live_3.0.5-2.debian.tar.gz 614dec48dd872197ce1a537fa6a0d3c0769489c7 3492058 libbiojava3.0-java_3.0.5-2_all.deb 78232f54db220c34d1d1d8a8096ca15f74de07db 3094 libbiojava3-java_3.0.5-2_all.deb 2a31fe4b5e7b11dbd30947b9521254a3b207f9bb 2081052 libbiojava3-java-doc_3.0.5-2_all.deb Checksums-Sha256: bd240fd2de26e04b4973016ec598ed0fc6a2f8311c45cde21c5133b2178d64ad 2497 biojava3-live_3.0.5-2.dsc 405ce76c82ecc5f9db1fdc4585c6df6c6decbbd89cac48d06db4e333ab2de532 8484 biojava3-live_3.0.5-2.debian.tar.gz 3a2be0a0bac0c85203b2d97e099c127a49f9be900a559187c764bc3e5947e2cd 3492058 libbiojava3.0-java_3.0.5-2_all.deb d7f2cebd4d7f2ad9fcd1791a6e434a9192b0a4192637c3bb9750f3992301d4a6 3094
Bug#697268: bus error on sparc arch
Package: ninja-build Version: 1.0.0-2 Severity: serious Tags: upstream ninja-build fails to build on sparc (FTBFS). There is an issue with alignment. gdb reveals: Starting program: /home/malat/ninja-build-1.0.0/ninja Program received signal SIGBUS, Bus error. MurmurHash2 (len=12, key=0x4144b) at src/hash_map.h:29 29 unsigned int k = *(unsigned int *)data; (gdb) bt #0 MurmurHash2 (len=12, key=0x4144b) at src/hash_map.h:29 #1 operator() (key=..., this=optimized out) at src/hash_map.h:89 #2 _M_bkt_num_key (__n=193, __key=..., this=0x40020) at /usr/include/c++/4.6/backward/hashtable.h:592 #3 _M_bkt_num_key (this=0x40020, __key=...) at /usr/include/c++/4.6/backward/hashtable.h:584 #4 find (__key=..., this=0x40020) at /usr/include/c++/4.6/backward/hashtable.h:507 #5 find (__key=..., this=0x40020) at /usr/include/c++/4.6/ext/hash_map:214 #6 State::LookupNode (this=0x40020, path=...) at src/state.cc:62 #7 0x00024fe4 in State::GetNode (this=0x40020, path=...) at src/state.cc:52 #8 0x0001ebcc in DependencyScan::LoadDepFile (this=0xd5a4, edge=0x47490, err=0xd68c) at src/graph.cc:312 #9 0x0001f1f4 in DependencyScan::RecomputeDirty (this=0xd5a4, edge=optimized out, err=0xd68c) at src/graph.cc:40 #10 0x0001f380 in DependencyScan::RecomputeDirty (this=0xd5a4, edge=0x470e8, err=0xd68c) at src/graph.cc:55 #11 0x00017d90 in Builder::AddTarget (this=0xd558, node=0x46c18, err=0xd68c) at src/build.cc:612 #12 0x000136f4 in RunBuild (argv=0xd788, argc=0, builder=0xd558) at src/ninja.cc:667 #13 (anonymous namespace)::NinjaMain (argc=0, argv=0xd788) at src/ninja.cc:859 #14 0xf7c24e54 in __libc_start_main (main=0x11aa0 main(int, char**), argc=1, ubp_av=0xd784, init=optimized out, fini=0x2a260 __libc_csu_fini, rtld_fini=0xf7fd9660, stack_end=0xd87c) at libc-start.c:228 #15 0x00011b94 in _start () ref: http://docs.oracle.com/cd/E19963-01/html/819-3196/hwovr-1.html#hwovr-2 Thanks -- System Information: Debian Release: 6.0.6 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable'), (200, 'testing'), (100, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-0.bpo.3-amd64 (SMP w/8 CPU cores) Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages ninja-build depends on: ii libc6 2.11.3-4 Embedded GNU C Library: Shared lib ii libgcc1 1:4.4.5-8 GCC support library ii libstdc++64.4.5-8The GNU Standard C++ Library v3 ninja-build recommends no packages. ninja-build suggests no packages. -- debconf-show failed -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#693263: qcontrol: wheezy version of qcontrol does not support --direct
On Thu, 2013-01-03 at 10:17 +, Martin Michlmayr wrote: I just installed the test package on my TS-219 (which doesn't have the watchdog problem). The device booted fine but I saw the following error: | Error opening /dev/input/by-path/platform-gpio-keys-event: No such file or directory which makes me wonder whether qcontrol was really executed properly. Yes, this is interesting. What's odd is that the box apparently doesn't reboot when this happens. If qcontrol wasn't executing then I would expect that it would (eventually). Did the boot complete for you though? Hanno -- do you have the evdev.ko in your initrd? I bet not since I can't see any way it would get put there. Even with this failure there are enough exit 0 and || trues in the initramfs script that it shouldn't cause an eventual failure to boot. Adding a file_exists function (e.g. based on http://stackoverflow.com/questions/4990990/lua-check-if-a-file-exists) to /etc/qcontrol.conf and using it to conditionalise the: register(evdev, /dev/input/by-path/platform-gpio-keys-event ought to make this particular issue go away. However if Hanno isn't seeing a watchdog initiated reboot then there must also be something else going on. Hanno: can you make a serial adapter and connect it to your QNAP? I've got the bits for one but I've been procrastinating pretty spectacularly because I always end up burning myself when I try to solder... Ian. -- Ian Campbell Current Noise: High On Fire - Master Of Fists panic: kernel trap (ignored) -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: Re: Bug#697268: bus error on sparc arch
Processing control commands: severity -1 important Bug #697268 [ninja-build] bus error on sparc arch Severity set to 'important' from 'serious' -- 697268: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697268 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697268: bus error on sparc arch
Control: severity -1 important On 03.01.2013 10:41, Mathieu Malaterre wrote: ninja-build fails to build on sparc (FTBFS). There is an issue with alignment. gdb reveals: The package has never built on sparc, so this isn't a regression; downgrading. Regards, Adam -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
Package: kernel-image Version: 3.2.0 severity: serious (kernel-image-3.2.0-4-amd64-di) Dear developers, 32-bit programs, such as FireFox refuse to work on Debian 7.0 64-bit (amd64). This is new fresh stock install from di-BETA4 Wheezy DVD. (KDE) The same works great on Debian 6.0 64-bit ! user@deb7vm:~/Downloads$ uname -a Linux deb7vm 3.2.0-4-amd64 #1 SMP Debian 3.2.35-2 x86_64 GNU/Linux user@deb7vm:~/Downloads$ arch x86_64 32-bit user-space app -- execution FAILURE !!! user@deb7vm:~/Downloads$ file 32bit/firefox/firefox-bin 32bit/firefox/firefox-bin: ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.9, stripped user@deb7vm:~/Downloads$ 32bit/firefox/firefox-bin bash: 32bit/firefox/firefox-bin: No such file or directory 64-bit user-space app - WORKS ! user@deb7vm:~/Downloads$ file 64bit/firefox/firefox-bin 64bit/firefox/firefox-bin: ELF 64-bit LSB executable, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.9, stripped user@deb7vm:~/Downloads$ 64bit/firefox/firefox-bin [programs WORKS] Firefox 64-bit taken from: http://mozilla.mirrors.tds.net/pub/mozilla.org/firefox/releases/latest/linux-x86_64/en-US/firefox-17.0.1.tar.bz2 The 32-bit comes from mozilla.org home page. (it is the default) Please enable 32-bit user-space apps to work on 64-bit O.S. *by default*. There are tons of desktop 32-bit apps for Linux, that should *just work*. I have no clue if the problem is kernel or someplace else, so please forward this issue to the appropriate package team. The CLI output (saying file not found) is of no help either, and is very misleading. I am using amd64 Debian GNU/Linux 7.0, kernel 3.2. -- -Alexey Eromenko Technologov -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697221: motion: No longer has support for mysql
Hi Dick, On Wed, Jan 02, 2013 at 08:34:42PM +, Dick Middleton wrote: upgrade from squeeze to wheezy * What exactly did you do (or not do) that was effective (or ineffective)? no longer connects to mysql reports unknown config option mysql_* The issue here seems to be a broken multiarch-build of 3.2.12-3.2. Can you please try the package at [1] and report if that fixes the issue for you? The diff is attached and at least the build-log seems proper now. Regards Evgeni [1] http://dorei.kerker.die-welt.net/~evgeni/tmp/motion_3.2.12-3.3_amd64.deb -- Bruce Schneier can read and understand Perl programs. diff -Nru motion-3.2.12/debian/changelog motion-3.2.12/debian/changelog --- motion-3.2.12/debian/changelog 2012-06-06 12:25:16.0 +0200 +++ motion-3.2.12/debian/changelog 2013-01-03 12:08:00.0 +0100 @@ -1,3 +1,14 @@ +motion (3.2.12-3.3) UNRELEASED; urgency=low + + * Non-maintainer upload. + * Properly find MySQL in /usr/lib/$(DEB_HOST_MULTIARCH). ++ Build-Depend on dpkg-dev = 1.16 ++ Get DEB_HOST_MULTIARCH from dpkg-architecture. ++ Pass --with-mysql-dir=/usr/lib/$(DEB_HOST_MULTIARCH) to configure. +Closes: #697221 + + -- Evgeni Golov evg...@debian.org Thu, 03 Jan 2013 12:00:38 +0100 + motion (3.2.12-3.2) unstable; urgency=medium * Non-maintainer upload. diff -Nru motion-3.2.12/debian/control motion-3.2.12/debian/control --- motion-3.2.12/debian/control 2012-06-06 11:36:07.0 +0200 +++ motion-3.2.12/debian/control 2013-01-03 12:06:42.0 +0100 @@ -3,7 +3,7 @@ Priority: optional Maintainer: Juan Angulo Moreno j...@apuntale.com HomePage: http://motion.sf.net -Build-Depends: debhelper (= 6), dh-autoreconf, libjpeg-dev, zlib1g-dev, libavcodec-dev, libavformat-dev, libpq-dev, libmysqlclient-dev, libv4l-dev +Build-Depends: debhelper (= 6), dpkg-dev (= 1.16), dh-autoreconf, libjpeg-dev, zlib1g-dev, libavcodec-dev, libavformat-dev, libpq-dev, libmysqlclient-dev, libv4l-dev Standards-Version: 3.9.2 Package: motion diff -Nru motion-3.2.12/debian/rules motion-3.2.12/debian/rules --- motion-3.2.12/debian/rules 2012-06-06 12:24:30.0 +0200 +++ motion-3.2.12/debian/rules 2013-01-03 12:00:35.0 +0100 @@ -3,7 +3,7 @@ DEB_HOST_GNU_TYPE ?= $(shell dpkg-architecture -qDEB_HOST_GNU_TYPE) DEB_BUILD_GNU_TYPE ?= $(shell dpkg-architecture -qDEB_BUILD_GNU_TYPE) - +DEB_HOST_MULTIARCH ?= $(shell dpkg-architecture -qDEB_HOST_MULTIARCH) CFLAGS = -Wall -g LDFLAGS = -Wl,--as-needed @@ -32,6 +32,7 @@ --sysconfdir=/etc/motion \ --with-ffmpeg \ --with-mysql \ + --with-mysql-lib=/usr/lib/$(DEB_HOST_MULTIARCH) \ --with-pgsql \ --without-optimizecpu \ --without-jpeg-mmx
Processed: user debian...@lists.debian.org, usertagging 690172, affects 690172, tagging 696360, tagging 676723
Processing commands for cont...@bugs.debian.org: user debian...@lists.debian.org Setting user to debian...@lists.debian.org (was deb...@abeckmann.de). usertags 690172 piuparts There were no usertags set. Usertags are now: piuparts. affects 690172 + libobjc2 gnustep-back0.18 gobjc++-4.3-multilib gnustep-back0.18-art gnustep-back0.18-cairo libgnustep-base1.20-dbg Bug #690172 {Done: Matthias Klose d...@debian.org} [gcc-4.7-base] gcc-4.7-base: adding Breaks: gcc-4.4-base ( 4.4.7) ? Added indication that 690172 affects libobjc2, gnustep-back0.18, gobjc++-4.3-multilib, gnustep-back0.18-art, gnustep-back0.18-cairo, and libgnustep-base1.20-dbg tags 696360 + upstream Bug #696360 [nvidia-glx] nvidia-glx: Sporadic X freezes Added tag(s) upstream. tags 676723 - wontfix Bug #676723 {Done: Andreas Beckmann deb...@abeckmann.de} [libgl1-nvidia-glx] libgl1-nvidia-glx:i386: Please downgrad libxvmc dependency to Recommends Removed tag(s) wontfix. thanks Stopping processing here. Please contact me if you need assistance. -- 676723: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=676723 690172: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=690172 696360: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696360 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697221: motion: No longer has support for mysql
Control: tag -1 patch Hi Dick, On Thu, Jan 03, 2013 at 11:51:20AM +, Dick Middleton wrote: Evgeni, On Wed, Jan 02, 2013 at 08:34:42PM +, Dick Middleton wrote: upgrade from squeeze to wheezy * What exactly did you do (or not do) that was effective (or ineffective)? no longer connects to mysql reports unknown config option mysql_* The issue here seems to be a broken multiarch-build of 3.2.12-3.2. Can you please try the package at [1] and report if that fixes the issue for you? The diff is attached and at least the build-log seems proper now. A quick try - it seems to work no errors. Thank you very much. Good of you to respond so quickly. Thanks for the confirmation, I tagged the bug patch, as it includes a working patch for the issue. Btw, please CC the bug when you reply, that way others can follow our communication :) Regards Evgeni -- Bruce Schneier can read and understand Perl programs. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: Re: Bug#697221: motion: No longer has support for mysql
Processing control commands: tag -1 patch Bug #697221 [motion] motion: No longer has support for mysql Added tag(s) patch. -- 697221: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697221 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#696909: chromium segfaults on startup on armhf
I searched for the bug on google an according to a chromium engineer is a problem related to the linker. I hope it helps. snip the problem is cause by a gold bug - you need to use gold from binutils 2.22 or later We already have binutils 2.22 in wheezy/sid. Still i'm tempted to try a build with bfd to see if it makes any difference (it will mean a lot more swap grinding but meh) -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
Control: reassign -1 general Alexey Eromenko al4...@gmail.com writes: Package: kernel-image Version: 3.2.0 severity: serious (kernel-image-3.2.0-4-amd64-di) Dear developers, 32-bit programs, such as FireFox refuse to work on Debian 7.0 64-bit (amd64). This is new fresh stock install from di-BETA4 Wheezy DVD. (KDE) The same works great on Debian 6.0 64-bit ! This is because you do not have 32 bit libraries installed, you have to enable multi-arch: http://wiki.debian.org/Multiarch/HOWTO Meanwhile, I'm reassigning the issue to general, as it is not kernel related. -- |8] -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: Re: Bug#697270: PC 32-bit programs fails to work on amd64
Processing control commands: reassign -1 general Bug #697270 [kernel-image] PC 32-bit programs fails to work on amd64 Warning: Unknown package 'kernel-image' Bug reassigned from package 'kernel-image' to 'general'. No longer marked as found in versions 3.2.0. Ignoring request to alter fixed versions of bug #697270 to the same values previously set -- 697270: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697270 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#696075: lcl-utils: directory vs. symlink mess after squeeze = wheezy upgrade: /etc/lazarus
On Mon, 2012-12-31 at 18:40 +0100, gregor herrmann wrote: On Sun, 16 Dec 2012 15:35:37 +0100, Andreas Beckmann wrote: during an upgrade test with piuparts I noticed your package installs files over an existing symlink, overwriting files from another package in a way that is not detected by dpkg: 0m44.0s INFO: dirname part contains a symlink: /etc/lazarus/environmentoptions.xml != /etc/lazarus-0.9.30.4/environmentoptions.xml (lcl-utils) /etc/lazarus/helpoptions.xml != /etc/lazarus-0.9.30.4/helpoptions.xml (lcl-utils) Looks like /etc/lazarus was a symlink in squeeze and is a directory in wheezy. Note that dpkg intentionally does not replace directories with symlinks and vice versa. I don't think it was a symlink in squezze after comparing the packages; my suspect at the moment is update-alternatives in debian/lcl-utils.postinst.in. /etc/lazarus is a now an alternative of /etc/lazarus-${version}. The user is asked to confirm whether post installation script should do the migration or not. However, this choice is ignored somehow after. I've prepared a patch for this. This creates a serious mess with the conffiles in /etc ... There are also some obsolete conffiles (could be false positives due to this symlinkmess), look at dpkg-maintscript-helper for easy cleanup: OBSOLETE CONFFILE /etc/lazarus/helpoptions.xml REGISTERED BY lcl-utils (MODIFIED) OBSOLETE CONFFILE /etc/lazarus/environmentoptions.xml REGISTERED BY lcl-utils (MODIFIED) They're modified in debian/rules (fpcsubst ...) in etc/lazarus-0.9.30.4. So i guess the obsolete part comes from the symlink problem, but the modification might remain in any case. When the user choose to not migrate, he should handle his conf files manually. The script, with my new patch, will no more touch them. Of course user can always diff with /etc/lazarus-${version} to update his configuration. But he should really now what he is doing as the conf files changed radically and the xml is not easy to handle by mans and there are files left on the system after purge: 0m46.6s INFO: Warning: Package purging left files on system: /etc/lazarus.bak/ not owned /etc/lazarus.bak/environmentoptions.xmlnot owned /etc/lazarus.bak/helpoptions.xml not owned Yup, debian/lcl-utils.postinst.in + debian/lcl-utils.templates.in. These will be removed upon purge (patch already applied to fpc, but not to Lazarus) I didn't look at the maintainer scripts or the package to analyze what's going on (or what was intended to happen). I only came up with these rough ideas. Thanks for your analysis, (Building the package is Not Really Funny™.) :) Cheers, signature.asc Description: This is a digitally signed message part
Processed: tagging 697093
Processing commands for cont...@bugs.debian.org: tags 697093 + pending Bug #697093 [ircd-ratbox] ircd-ratbox: CVE-2012-6084: remote denial of service Added tag(s) pending. thanks Stopping processing here. Please contact me if you need assistance. -- 697093: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697093 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697182: [Pkg-postgresql-public] Bug#697182: postgresql-common - Fails to install: DISTRO: parameter not set
Hello Bastian, Bastian Blank [2013-01-02 11:47 +0100]: Package: postgresql-common Version: 138 Severity: grave File: /usr/share/postgresql-common/supported-versions Install postgresql-common fails with the following message: | Setting up postgresql-common (138) ... | /usr/share/postgresql-common/supported-versions: 46: /usr/share/postgresql-common/supported-versions: DISTRO: parameter not set [...] pn lsb-release none Ah, that would be due to the changes in version 137, which now seem to require lsb-release. So the quick fix would be to bump the recommends to a Depends:. However, as we have /etc/os-release in Wheezy now, I think it would be better to prefer parsing that, fall back to lsb_release, and if neither is present fail with a more appropriate error message. I'll work on this now. Thanks, Martin -- Martin Pitt| http://www.piware.de Ubuntu Developer (www.ubuntu.com) | Debian Developer (www.debian.org) signature.asc Description: Digital signature
Bug#697279: libqtdbus4: tries to replace file owned by libqt4-dbus
Package: libqtdbus4 Version: 4:4.8.2+dfsg-7 Severity: serious Justification: Policy 7.6.1 Unpacking libqtdbus4:amd64 (from .../libqtdbus4_4%3a4.8.2+dfsg-7_amd64.deb) ... dpkg: error processing /var/cache/apt/archives/libqtdbus4_4%3a4.8.2+dfsg-7_amd64.deb (--unpack): trying to overwrite '/usr/lib/x86_64-linux-gnu/libQtDBus.so.4.8.2', which is also in package libqt4-dbus:amd64 4:4.8.2+dfsg-6 configured to not write apport reports dpkg-deb: error: subprocess paste was killed by signal (Broken pipe) -- System Information: Debian Release: 7.0 APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.6-trunk-amd64 (SMP w/2 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/mksh -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#696075: lcl-utils: directory vs. symlink mess after squeeze = wheezy upgrade: /etc/lazarus
On 2013-01-03 14:00, Abou Al Montacir wrote: On Mon, 2012-12-31 at 18:40 +0100, gregor herrmann wrote: I don't think it was a symlink in squezze after comparing the packages; my suspect at the moment is update-alternatives in debian/lcl-utils.postinst.in. /etc/lazarus is a now an alternative of /etc/lazarus-${version}. The user is asked to confirm whether post installation script should do the migration or not. What is the default? (I.e. what happens with DEBIAN_FRONTEND=noninteractive?) However, this choice is ignored somehow after. I've prepared a patch for this. OK, I'll wait for a fixed package before doing further tests ... Why can't you use dpkg-maintscript-helper to rename the conffiles without even asking the user (at least as long as the conffiles are unmodified)? Andreas -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: Re: Bug#697279: libqtdbus4: tries to replace file owned by libqt4-dbus
Processing control commands: forcemerge 697147 -1 Bug #697147 [libqtdbus4] libqt4-dbus: Fails to upgrade from 4:4.8.2+dfsg-6 Bug #697159 [libqtdbus4] Cannot install package due to duplicate file Bug #697279 [libqtdbus4] libqtdbus4: tries to replace file owned by libqt4-dbus Added tag(s) pending. Bug #697159 [libqtdbus4] Cannot install package due to duplicate file Merged 697147 697159 697279 -- 697147: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697147 697159: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697159 697279: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697279 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697279: Workaround
Here is a workaround for users that are stuck in the upgrade: # print libqt4-dbus hold | dpkg --set-selections # apt-get -f install # print libqt4-dbus install | dpkg --set-selections # apt-get dist-upgrade -nik -- * mirabilos is handling my post-1990 smartphone * mirabilos Aaah, it vibrates! Wherefor art thou, daemonic device?? PGP fingerprint: 2086 9A4B E67D 1DCD FFF6 F6C1 59FC 8E1D 6F2A 8001 -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697279: libqtdbus4: tries to replace file owned by libqt4-dbus
There's #697147 already. reportbug didn't list any report for the package :(. -- * mirabilos is handling my post-1990 smartphone * mirabilos Aaah, it vibrates! Wherefor art thou, daemonic device?? PGP fingerprint: 2086 9A4B E67D 1DCD FFF6 F6C1 59FC 8E1D 6F2A 8001 -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697279: libqtdbus4: tries to replace file owned by libqt4-dbus
Control: forcemerge 697147 -1 On 2013-01-03 15:28:55, Dominik George wrote: Unpacking libqtdbus4:amd64 (from .../libqtdbus4_4%3a4.8.2+dfsg-7_amd64.deb) ... dpkg: error processing /var/cache/apt/archives/libqtdbus4_4%3a4.8.2+dfsg-7_amd64.deb (--unpack): trying to overwrite '/usr/lib/x86_64-linux-gnu/libQtDBus.so.4.8.2', which is also in package libqt4-dbus:amd64 4:4.8.2+dfsg-6 configured to not write apport reports dpkg-deb: error: subprocess paste was killed by signal (Broken pipe) There's #697147 already. Regards -- Sebastian Ramacher signature.asc Description: Digital signature
Processed: Forcemerge
Processing commands for cont...@bugs.debian.org: forcemerge 697147 697279 Bug #697147 [libqtdbus4] libqt4-dbus: Fails to upgrade from 4:4.8.2+dfsg-6 Bug #697159 [libqtdbus4] Cannot install package due to duplicate file Bug #697279 [libqtdbus4] libqtdbus4: tries to replace file owned by libqt4-dbus Bug #697159 [libqtdbus4] Cannot install package due to duplicate file Bug #697279 [libqtdbus4] libqtdbus4: tries to replace file owned by libqt4-dbus Merged 697147 697159 697279 thanks Stopping processing here. Please contact me if you need assistance. -- 697147: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697147 697159: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697159 697279: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697279 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: affects 697147
Processing commands for cont...@bugs.debian.org: affects 697147 libqt4-dbus Bug #697147 [libqtdbus4] libqt4-dbus: Fails to upgrade from 4:4.8.2+dfsg-6 Bug #697159 [libqtdbus4] Cannot install package due to duplicate file Bug #697279 [libqtdbus4] libqtdbus4: tries to replace file owned by libqt4-dbus Added indication that 697147 affects libqt4-dbus Added indication that 697159 affects libqt4-dbus Added indication that 697279 affects libqt4-dbus thanks Stopping processing here. Please contact me if you need assistance. -- 697147: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697147 697159: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697159 697279: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697279 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: marked as done (PC 32-bit programs fails to work on amd64)
Your message dated Thu, 3 Jan 2013 16:32:54 +0100 with message-id 201301031632.56423.hol...@layer-acht.org and subject line Re: Processed: Re: Bug#697270: PC 32-bit programs fails to work on amd64 has caused the Debian Bug report #697270, regarding PC 32-bit programs fails to work on amd64 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 697270: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697270 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: kernel-image Version: 3.2.0 severity: serious (kernel-image-3.2.0-4-amd64-di) Dear developers, 32-bit programs, such as FireFox refuse to work on Debian 7.0 64-bit (amd64). This is new fresh stock install from di-BETA4 Wheezy DVD. (KDE) The same works great on Debian 6.0 64-bit ! user@deb7vm:~/Downloads$ uname -a Linux deb7vm 3.2.0-4-amd64 #1 SMP Debian 3.2.35-2 x86_64 GNU/Linux user@deb7vm:~/Downloads$ arch x86_64 32-bit user-space app -- execution FAILURE !!! user@deb7vm:~/Downloads$ file 32bit/firefox/firefox-bin 32bit/firefox/firefox-bin: ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.9, stripped user@deb7vm:~/Downloads$ 32bit/firefox/firefox-bin bash: 32bit/firefox/firefox-bin: No such file or directory 64-bit user-space app - WORKS ! user@deb7vm:~/Downloads$ file 64bit/firefox/firefox-bin 64bit/firefox/firefox-bin: ELF 64-bit LSB executable, x86-64, version 1 (SYSV), dynamically linked (uses shared libs), for GNU/Linux 2.6.9, stripped user@deb7vm:~/Downloads$ 64bit/firefox/firefox-bin [programs WORKS] Firefox 64-bit taken from: http://mozilla.mirrors.tds.net/pub/mozilla.org/firefox/releases/latest/linux-x86_64/en-US/firefox-17.0.1.tar.bz2 The 32-bit comes from mozilla.org home page. (it is the default) Please enable 32-bit user-space apps to work on 64-bit O.S. *by default*. There are tons of desktop 32-bit apps for Linux, that should *just work*. I have no clue if the problem is kernel or someplace else, so please forward this issue to the appropriate package team. The CLI output (saying file not found) is of no help either, and is very misleading. I am using amd64 Debian GNU/Linux 7.0, kernel 3.2. -- -Alexey Eromenko Technologov ---End Message--- ---BeginMessage--- Hi Gergely, if you take the effort to reassign to general, why dont you lower the severity as well? And, if you explain how this is a user error, why dont you close it straight away? cheers, Holger---End Message---
Bug#697108: [Pkg-gnupg-maint] Bug#697108: gnupg key import memory corruption
On Wed, 2 Jan 2013 21:33, glaub...@physik.fu-berlin.de said: Yeah, you were 6 minutes faster than me :). I am happy anyways the issue has been addressed. Thanks a lot for your quick response! Please note that the problem also exists in 2.0 - a quite similar patch is in the GIT (or try the one from 1.4) Salam-Shalom, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: tagging 697182
Processing commands for cont...@bugs.debian.org: tags 697182 + pending Bug #697182 [postgresql-common] postgresql-common - Fails to install: DISTRO: parameter not set Added tag(s) pending. thanks Stopping processing here. Please contact me if you need assistance. -- 697182: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697182 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697291: postgresql-common: PGCLUSTER env var conflicts with PGHOST and select wrong database version
Package: postgresql-common Version: 138 Severity: critical Tags: upstream Justification: causes serious data loss * What led up to the situation? Set both PGHOST and PGCLUSTER. * What exactly did you do (or not do) that was effective (or ineffective)? psql -l should use the cluster set on PGCLUSTER to list the databases for that cluster. Instead it ignores the value of PGCLUSTER. If I unset PGHOST and use psql -h localhost -l instead, then it works. Also, if I use psql --cluster 9.1/main than it also works. Otherwise psql -l will list the databases from 9.2/main even though PGCLUSTER is set to 9.1/main. This is a big problem if you do something like dropdb dbname_from_old_cluster and the same name happens to exist in the new cluster, so that you'll drop the wrong database. -- System Information: Debian Release: 7.0 APT prefers unstable APT policy: (700, 'unstable'), (650, 'experimental'), (500, 'stable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.5-trunk-amd64 (SMP w/6 CPU cores) Locale: LANG=pt_BR.UTF-8, LC_CTYPE=pt_BR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages postgresql-common depends on: ii adduser 3.113+nmu3 ii debconf [debconf-2.0] 1.5.49 ii logrotate 3.8.3-3 ii lsb-base 4.1+Debian9 ii postgresql-client-common 138 ii procps1:3.3.4-2 ii ssl-cert 1.0.32 postgresql-common recommends no packages. postgresql-common suggests no packages. -- Configuration Files: /etc/sysctl.d/30-postgresql-shm.conf changed: kernel.shmmax = 147841024 kernel.shmall = 2097152 -- debconf information: postgresql-common/obsolete-major: -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#694808: libv8: CVE-2012-5120 CVE-2012-5128
On 02/01/2013 19:00, Moritz Muehlenhoff wrote: On Sun, Dec 16, 2012 at 11:08:34PM +0100, Jérémy Lal wrote: On 16/12/2012 23:00, Allison Randal wrote: The details on these two CVE's are 403 for me: CVE-2012-5120 https://code.google.com/p/chromium/issues/detail?id=150729 CVE-2012-5128 https://code.google.com/p/chromium/issues/detail?id=157124 So presumably they're still embargoed and only accessible to certain members of pkg-javascript. Yes, they are. I asked Chris (cc-ed to Giuseppe) access to those. Did you get a reply? No reply. I've just retried. Jérémy. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
User error? Huh ? No ! This is a Debian Bug ! Debian clearly says: File does not exist, while in fact it DOES EXIST. This is a 100% proof of Debian bug. -- -Alexey Eromenko Technologov -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
Please keep in mind, that I have wasted 4 hours of my personal time on this Debian bug, and do you think this is reasonable ? -- -Alexey Eromenko Technologov -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
On 01/04/2013 01:02 AM, Alexey Eromenko wrote: Please keep in mind, that I have wasted 4 hours of my personal time on this Debian bug, and do you think this is reasonable ? It all depends. How did you even install Firefox 32 bits? We don't have such a package in Debian. It's rebranded as iceweasel, because the mozilla foundation wanted it this way (it's complicated, so I will not go into details about why, though you can search on your favorite web search engine about it). And to reply to your question: Yes, it's reasonable to spend 4 hours of your personal time on a Debian bug. Hundreds of people are spending even more time than this on a daily basis in order to improve Debian. No, it's not reasonable to report you can't run Firefox 32 bits on a 64 bits arch Debian, when really, you'd better just do: apt-get install iceweasel and use your newly installed browser in 64 bits mode... Thomas -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#694483: CVEs: CVE-2012-2882 CVE-2012-5359 CVE-2012-5360 CVE-2012-5361
tags 694483 moreinfo stop Hi Arne, Thanks for caring about security in libav. Sorry for the delay. I tried hard to gather additional information about these issues, but was not successful. On Mon, Nov 26, 2012 at 8:30 PM, Arne Wichmann a...@linux.de wrote: I have here another series of CVEs for ffmpeg/libav: CVE-2012-2882 Libav's ogg decoder is a bit different to the one in FFmpeg. Can you please provide a testfile so that we can test if this issue affects Libav at all? CVE-2012-5359 CVE-2012-5360 CVE-2012-5361 For the last 3 http://technet.microsoft.com/en-us/security/msvr/msvr12-017 claims that they are fixed in ffmpeg 0.11, but the available information on all of them is a bit thin. Sorry, without proper information what's going on here, there is nothing that we can do about this. Again, please provide a sample that demonstrates the issue. -- regards, Reinhard -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: Re: Bug#694483: CVEs: CVE-2012-2882 CVE-2012-5359 CVE-2012-5360 CVE-2012-5361
Processing commands for cont...@bugs.debian.org: tags 694483 moreinfo Bug #694483 [src:libav] CVEs: CVE-2012-2882 CVE-2012-5359 CVE-2012-5360 CVE-2012-5361 Added tag(s) moreinfo. stop Stopping processing here. Please contact me if you need assistance. -- 694483: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=694483 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
On Thu, Jan 3, 2013 at 7:25 PM, Thomas Goirand z...@debian.org wrote: on a 64 bits arch Debian, when really, you'd better just do: apt-get install iceweasel and use your newly installed browser in 64 bits mode... Not, because my job requires the latest FireFox (latest-and-greatest). And the standard FireFox, which is 32-bits, should work. Debian should ship with at least basic 32-bit packages, for LSB dependency. (3rd party vendors code for 32-bit LSB) -- -Alexey Eromenko Technologov -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
Alexey Eromenko al4...@gmail.com writes: User error? Huh ? No ! This is a Debian Bug ! Debian clearly says: File does not exist, while in fact it DOES EXIST. This is a 100% proof of Debian bug. That's the error message that you get when the dynamic loader for a binary doesn't exist. I think that's been the case for as long as Linux has existed. It is really confusing the first time you run into it, and indeed I had to debug a problem due to that error just the other day. But it's how some rather low-level components of the system work. One could argue that it's a wishlist bug against the kernel, where I think one would have to add a new errno value just for this error so that it can be distinguished from the general ENOENT case. But, even in that case, this would have to be something changed upstream; it's not the sort of thing that Debian can carry a local patch for. Fiddling around with the error return codes of system calls in a single distribution is not a good idea. That sort of thing tends to have unforseen compatibility issues. So the short version is that, regardless, this is not a bug that Debian is going to fix specifically in Debian. If it changes upstream, obviously we and all the other distributions will pick up that change. -- Russ Allbery (r...@debian.org) http://www.eyrie.org/~eagle/ -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
But having 32-bit LSB compliance will help people a _LOT_. -- -Alexey Eromenko Technologov -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
On Fri, Jan 4, 2013 at 1:31 AM, Alexey Eromenko al4...@gmail.com wrote: On Thu, Jan 3, 2013 at 7:25 PM, Thomas Goirand z...@debian.org wrote: on a 64 bits arch Debian, when really, you'd better just do: apt-get install iceweasel and use your newly installed browser in 64 bits mode... Not, because my job requires the latest FireFox (latest-and-greatest). And the standard FireFox, which is 32-bits, should work. Debian should ship with at least basic 32-bit packages, for LSB dependency. (3rd party vendors code for 32-bit LSB) Btw, if you want the latest Nightly, try http://ftp.mozilla.org/pub/mozilla.org/firefox/nightly/latest-trunk/ or latest Firefox, try http://ftp.mozilla.org/pub/mozilla.org/firefox/releases/latest/ All of them are available under both 32bit and 64bit x86 architectures. -- Regards, Aron Xu -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
On 01/04/2013 01:31 AM, Alexey Eromenko wrote: On Thu, Jan 3, 2013 at 7:25 PM, Thomas Goirand z...@debian.org wrote: on a 64 bits arch Debian, when really, you'd better just do: apt-get install iceweasel and use your newly installed browser in 64 bits mode... Not, because my job requires the latest FireFox (latest-and-greatest). What you are looking for is: http://mozilla.debian.net/ It has the latest. (or if doesn't, it will in a week or so, Debian Developers behind this are very efficient) And the standard FireFox, which is 32-bits, should work. You still didn't answer my question as to how you installed it, so I can't tell. Thomas -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
Alexey Eromenko al4...@gmail.com writes: User error? Huh ? It is, I'm afraid. No ! This is a Debian Bug ! No, it is not. Debian clearly says: File does not exist, while in fact it DOES EXIST. It does not. However, the file the message is referring to is not the file you think it refers to: it is missing the 32-bit dynamic linker, /lib32/ld-linux.so.2 (available in the package libc6-i386), not the firefox binary itself. The message is a bit confusing, indeed, but without a dynamic linker present, it's hard to do any better. This is a 100% proof of Debian bug. You installed a 32-bit application on a 64-bit system. That will only work if you also install the 32-bit supporting libraries, including the dynamic linker. This is not a bug in Debian. And no, installing 32-bit libraries by default would be a bad idea, for a multitude of reasons. -- |8] -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
On Fri, Jan 4, 2013 at 1:44 AM, Alexey Eromenko al4...@gmail.com wrote: But having 32-bit LSB compliance will help people a _LOT_. This does not mean you can't run 32bit application under a 64bit Debian installation, it's because the support is not added into default installation as the feature isn't considered stable in the Debian way. You can search for Multi-Arch for more details on this topic. You will be able to run most of the 32bit applications by installing the required 32bit libraries, and the error of File does not exist means some/all of the required 32bit libraries do not exist. I agree it is not a user-friendly error message which can cause misunderstanding, but that message should not be fixed by Debian as Russ has given the details. -- Regards, Aron Xu -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
Alexey Eromenko al4...@gmail.com writes: But having 32-bit LSB compliance will help people a _LOT_. Debian provides LSB compliance via the lsb set of packages. Not everyone wants to have all LSB packages installed or particularly cares about LSB compliance. If you do: aptitude install lsb will install it for you. This should also pull in 32-bit support on an amd64 architecture. -- Russ Allbery (r...@debian.org) http://www.eyrie.org/~eagle/ -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
Le jeudi, 3 janvier 2013 18.44:59, Alexey Eromenko a écrit : But having 32-bit LSB compliance will help people a _LOT_. By the way: * Debian is not LSB-certified * ... but the lsb-* packages try to provide a working implementation. No work has been attempted to provide Multi-Arch lsb packages (besides lsb- release and lsb-base being Architecture: foreign). Patches are welcome to make Wheezy+1 more suitable to your needs. Cheers, OdyX -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697251: gnupg2: gnupg key import memory corruption
Thanks for the heads up. Will get to it later today. * Christoph Anton Mitterer (cales...@scientia.net) wrote: btw: The corresponding redhat bug[0] seems to already contain some backported patches till 2.0.20 comes out. [0] https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-6085 -- Eric Dorland e...@kuroneko.ca ICQ: #61138586, Jabber: ho...@jabber.com signature.asc Description: Digital signature
Bug#697270: PC 32-bit programs fails to work on amd64
On Thu, Jan 3, 2013 at 8:05 PM, Didier 'OdyX' Raboud o...@debian.org wrote: release and lsb-base being Architecture: foreign). Patches are welcome to make Wheezy+1 more suitable to your needs. How about changing it from a kernel bug to tasksel feature ? I recommend: tasksel to install 32-bit libraries by default, if user chooses stock Desktop (KDE/GNOME/XFCE/...). This should solve the problem for most users. -- -Alexey Eromenko Technologov -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697270: PC 32-bit programs fails to work on amd64
clone 697270 -1 retitle -1 misleading error message when ELF interpreter does not exist reassign -1 bash severity -1 normal merge -1 609882 retitle 697270 i386 multiarch not enabled and ia32-libs not installed by default on amd64 severity 697270 minor tags 697270 +wontfix thanks Hi Alexey, 2013-01-03 um 18:32:28 schrieb Russ Allbery: Alexey Eromenko al4...@gmail.com writes: User error? Huh ? No ! This is a Debian Bug ! Debian clearly says: File does not exist, while in fact it DOES EXIST. This is a 100% proof of Debian bug. I guess it is bash telling you that. That's the error message that you get when the dynamic loader for a binary doesn't exist. I think that's been the case for as long as Linux has existed. That's already reported as bug #609882. For the second part: most people won't need i386 libs on a amd64 system, so this is obviously a wontfix. You can still install ia32-libs if you need them and follow the instructions for enabling multiarch for i386. Greetings Timo signature.asc Description: This is a digitally signed message part.
Processed (with 1 errors): Re: Bug#697270: PC 32-bit programs fails to work on amd64
Processing commands for cont...@bugs.debian.org: clone 697270 -1 Bug #697270 {Done: Holger Levsen hol...@layer-acht.org} [general] PC 32-bit programs fails to work on amd64 Bug 697270 cloned as bug 697299 retitle -1 misleading error message when ELF interpreter does not exist Bug #697299 {Done: Holger Levsen hol...@layer-acht.org} [general] PC 32-bit programs fails to work on amd64 Changed Bug title to 'misleading error message when ELF interpreter does not exist' from 'PC 32-bit programs fails to work on amd64' reassign -1 bash Bug #697299 {Done: Holger Levsen hol...@layer-acht.org} [general] misleading error message when ELF interpreter does not exist Bug reassigned from package 'general' to 'bash'. Ignoring request to alter found versions of bug #697299 to the same values previously set Ignoring request to alter fixed versions of bug #697299 to the same values previously set severity -1 normal Bug #697299 {Done: Holger Levsen hol...@layer-acht.org} [bash] misleading error message when ELF interpreter does not exist Severity set to 'normal' from 'serious' merge -1 609882 Bug #697299 {Done: Holger Levsen hol...@layer-acht.org} [bash] misleading error message when ELF interpreter does not exist Unable to merge bugs because: done of #609882 is '' not 'Holger Levsen hol...@layer-acht.org' Failed to merge 697299: Did not alter merged bugs Debbugs::Control::set_merged('transcript', 'GLOB(0x24aac70)', 'requester', 'Timo Weingärtner t...@tiwe.de', 'request_addr', 'cont...@bugs.debian.org', 'request_msgid', '201301031919.39522.t...@tiwe.de', 'request_subject', ...) called at /usr/local/lib/site_perl/Debbugs/Control/Service.pm line 538 eval {...} called at /usr/local/lib/site_perl/Debbugs/Control/Service.pm line 537 Debbugs::Control::Service::control_line('line', 'merge -1 609882', 'clonebugs', 'HASH(0x241c160)', 'limit', 'HASH(0x241bb48)', 'common_control_options', 'ARRAY(0x241bb90)', 'errors', ...) called at /usr/lib/debbugs/service line 474 retitle 697270 i386 multiarch not enabled and ia32-libs not installed by default on amd64 Bug #697270 {Done: Holger Levsen hol...@layer-acht.org} [general] PC 32-bit programs fails to work on amd64 Changed Bug title to 'i386 multiarch not enabled and ia32-libs not installed by default on amd64' from 'PC 32-bit programs fails to work on amd64' severity 697270 minor Bug #697270 {Done: Holger Levsen hol...@layer-acht.org} [general] i386 multiarch not enabled and ia32-libs not installed by default on amd64 Severity set to 'minor' from 'serious' tags 697270 +wontfix Bug #697270 {Done: Holger Levsen hol...@layer-acht.org} [general] i386 multiarch not enabled and ia32-libs not installed by default on amd64 Added tag(s) wontfix. thanks Stopping processing here. Please contact me if you need assistance. -- 609882: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=609882 697270: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697270 697299: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697299 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697300: src:user-mode-linux: missing Built-Using on linux (for linux-source-*)
Package: src:user-mode-linux Version: 3.2-1um-1 Severity: serious Justification: Policy 7.8 Usertags: built-using user-mode-linux uses the Linux kernel source from linux-source-*, but does not indicate so with a Built-Using field (Policy 7.8). This means the archive might not contain the full source for this package as the specific version of linux used to build the package could be replaced with a newer version. See #696423 for a patch adding the Built-Using field to another package. It should be easy to apply to user-mode-linux as well. Ansgar -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697093: marked as done (ircd-ratbox: CVE-2012-6084: remote denial of service)
Your message dated Thu, 03 Jan 2013 18:47:31 + with message-id e1tqppd-0006ym...@franck.debian.org and subject line Bug#697093: fixed in ircd-ratbox 3.0.7.dfsg-3 has caused the Debian Bug report #697093, regarding ircd-ratbox: CVE-2012-6084: remote denial of service to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 697093: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697093 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: ircd-ratbox Version: 3.0.7.dfsg-2 Severity: important Tags: security Advisory: http://rabbit.dereferenced.org/~nenolod/ASA-2012-12-31.txt CVE-requests http://www.openwall.com/lists/oss-security/2013/01/01/1 http://www.openwall.com/lists/oss-security/2013/01/01/2 Patch: https://github.com/atheme/charybdis/commit/ac0707aa61d9c20e9b09062294701567c9f41595.patch - Henri Salo ---End Message--- ---BeginMessage--- Source: ircd-ratbox Source-Version: 3.0.7.dfsg-3 We believe that the bug you reported is fixed in the latest version of ircd-ratbox, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 697...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Marc Dequènes (Duck) d...@duckcorp.org (supplier of updated ircd-ratbox package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Thu, 03 Jan 2013 14:12:05 +0100 Source: ircd-ratbox Binary: ircd-ratbox ircd-ratbox-dbg Architecture: source amd64 Version: 3.0.7.dfsg-3 Distribution: unstable Urgency: high Maintainer: Marc Dequènes (Duck) d...@duckcorp.org Changed-By: Marc Dequènes (Duck) d...@duckcorp.org Description: ircd-ratbox - advanced, stable and fast ircd ircd-ratbox-dbg - debugging symbols for ircd-ratbox Closes: 697093 Changes: ircd-ratbox (3.0.7.dfsg-3) unstable; urgency=high . * Applied security fix for CVE-2012-6084 using r27411 in upstream SVN (Closes: #697093). Checksums-Sha1: 671b4bc2a536de7ca2edbf38275574845781f9ad 1518 ircd-ratbox_3.0.7.dfsg-3.dsc e2668c302d4e6a9465db35130db326acec970932 25322 ircd-ratbox_3.0.7.dfsg-3.debian.tar.gz 1a1c0f79f5f8abe7bc925e09250e503013c8075f 671536 ircd-ratbox_3.0.7.dfsg-3_amd64.deb 8ea80d3e350786cac63fa63b92d36f55bad1aaeb 1302334 ircd-ratbox-dbg_3.0.7.dfsg-3_amd64.deb Checksums-Sha256: b34ef865d0c42080970bdb9d0549f82e0f889e95185cccd8710f2f4df2127b21 1518 ircd-ratbox_3.0.7.dfsg-3.dsc df84809fa41316d759fb6e074fac1cf706be545dfee2cb6e45ed5da8b1881f67 25322 ircd-ratbox_3.0.7.dfsg-3.debian.tar.gz c858174aad8b04cab6645e2f3fff59af0822c410b528804522d19c54db22af1c 671536 ircd-ratbox_3.0.7.dfsg-3_amd64.deb db0046b97bd7f10b38be6c0341b3b8db64445f1a8654fde025fb4c01c4343717 1302334 ircd-ratbox-dbg_3.0.7.dfsg-3_amd64.deb Files: 09a4619518304a7aba23c46da2eff3fb 1518 net optional ircd-ratbox_3.0.7.dfsg-3.dsc 5e65f13dba61c98da0dcc33a0be5beb7 25322 net optional ircd-ratbox_3.0.7.dfsg-3.debian.tar.gz e412aec57efe41dc97f050a41304a2a7 671536 net optional ircd-ratbox_3.0.7.dfsg-3_amd64.deb 4e1bd88fbc258b16ea34aa30eb856459 1302334 debug extra ircd-ratbox-dbg_3.0.7.dfsg-3_amd64.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlDl0JMACgkQsczZcpAmcIbAkwCdF4nV2OwpRNetGT9dB9TNN0rp UpAAn3ytg3Vj1fsU/Mke6kXIG/MUk9Cx =vA+8 -END PGP SIGNATUREEnd Message---
Bug#697303: libvirt: FTBFS in experimental: libnl-devel = 1.1 is required for macvtap support
Source: libvirt Version: 1.0.1-1 Severity: serious Justification: fails to build from source (but built successfully in the past) Hi, 1.0.1-1 FTBFS in experimental with the following error: checking for LIBNL... no configure: error: libnl-devel = 1.1 is required for macvtap support Cheers Laurent Bigonville -- System Information: Debian Release: 7.0 APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.6-trunk-amd64 (SMP w/8 CPU cores) Locale: LANG=fr_BE.utf8, LC_CTYPE=fr_BE.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#658732: marked as done (gnucash: does not properly handle XML parse errors, leading to possible data loss)
Your message dated Thu, 03 Jan 2013 19:47:42 + with message-id e1tqqls-0002jn...@franck.debian.org and subject line Bug#696282: fixed in gnucash 1:2.4.10-6 has caused the Debian Bug report #696282, regarding gnucash: does not properly handle XML parse errors, leading to possible data loss to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 696282: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696282 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: gnucash Version: 2.2.9-10 Severity: normal When one has older file database (XML), for example one created by freecoinsExport (http://freecoins.sourceforge.net/), the GNUcash recognizes that and upgrades the database. However, it some field is to contain character, GNUcash will SILENTLY drop all transactions after that one. For example, transaction containing: trn:descriptionaerodrom marksspencer/trn:description will make GNUcash stop importing all transactions after it, without giving any notice to the user that anything went wrong. It should report an error with offending GUID (or handle it correctly, of course!) As workaround, one may manually edit XML and replace all occurances of with for example and - and import will work just fine after that. (The bug is also present in squeeze-backports version 1:2.4.4-1~bpo60+1) -- System Information: Debian Release: 6.0.4 APT prefers stable APT policy: (700, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-0.bpo.1-amd64 (SMP w/2 CPU cores) Locale: LANG=hr_HR.UTF-8, LC_CTYPE=hr_HR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages gnucash depends on: ii gconf2 2.28.1-6 GNOME configuration database syste ii gnucash-common 2.2.9-10 A personal finance and money track ii guile-1.6-libs 1.6.8-10 Main Guile libraries ii guile-1.6-slib 1.6.8-10 Guile SLIB support ii libaqbanking29 4.2.4-2 library for online banking applica ii libart-2.0-2 2.3.21-1 Library of functions for 2D graphi ii libatk1.0-01.30.0-1 The ATK accessibility toolkit ii libbonobo2-0 2.24.3-1 Bonobo CORBA interfaces library ii libbonoboui2-0 2.24.3-1 The Bonobo UI library ii libc6 2.11.3-2 Embedded GNU C Library: Shared lib ii libcairo2 1.8.10-6 The Cairo 2D vector graphics libra ii libcrypt-ssleay-pe 0.57-2Support for https protocol in LWP ii libdate-manip-perl 6.11-1module for manipulating dates ii libenchant1c2a 1.6.0-1 a wrapper library for various spel ii libfinance-quote-p 1.17-1Perl module for retrieving stock q ii libfontconfig1 2.8.0-2.1 generic font configuration library ii libfreetype6 2.4.2-2.1+squeeze3FreeType 2 font engine, shared lib ii libgconf2-42.28.1-6 GNOME configuration database syste ii libglade2-01:2.6.4-1 library to load .glade files at ru ii libglib2.0-0 2.24.2-1 The GLib library of C routines ii libgnome2-02.30.0-1 The GNOME library - runtime files ii libgnomecanvas2-0 2.30.1-1 A powerful object-oriented display ii libgnomeui-0 2.24.3-1 The GNOME libraries (User Interfac ii libgnomevfs2-0 1:2.24.3-1GNOME Virtual File System (runtime ii libgoffice-0.8-8 0.8.8-1 Document centric objects library - ii libgtk2.0-02.20.1-2 The GTK+ graphical user interface ii libgtkhtml3.14-19 3.30.3-1 HTML rendering/editing library - r ii libguile-ltdl-11.6.8-10 Guile's patched version of libtool ii libgwenhywfar473.11.3-1 OS abstraction layer ii libice62:1.0.6-2 X11 Inter-Client Exchange library ii libktoblzcheck1c2a 1.28-1library for verification of accoun ii libltdl7 2.2.6b-2 A system independent dlopen wrappe ii libofx41:0.9.0-3 library to support Open Financial ii liborbit2 1:2.14.18-0.1 libraries for ORBit2 - a CORBA ORB ii libpango1.0-0 1.28.3-1+squeeze2 Layout and rendering of internatio ii libpopt0 1.16-1lib for parsing cmdline parameters ii libsm6 2:1.1.1-1 X11 Session Management library ii libx11-6 2:1.3.3-4 X11 client-side
Bug#696282: marked as done (gnucash: does not properly handle XML parse errors, leading to possible data loss)
Your message dated Thu, 03 Jan 2013 19:47:42 + with message-id e1tqqls-0002jn...@franck.debian.org and subject line Bug#696282: fixed in gnucash 1:2.4.10-6 has caused the Debian Bug report #696282, regarding gnucash: does not properly handle XML parse errors, leading to possible data loss to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 696282: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696282 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: gnucash Version: 1:2.4.10-5 Severity: grave Justification: causes non-serious data loss Gnucash silently removed the scheduled transactions. I noticed this with a diff of the XML file while checking a backup (I usually check like that whether applications corrupt my data), and could find when this occurred in the automatic backups. I've attached the compressed diff, where I've changed some characters to 'x' for privacy reasons. I could see nothing in the .log files about removed scheduled transactions. If I try to revert to the last version with these scheduled transactions (comptes-vl.gnc.20121216193600.gnucash), do some change, save and quit, then the scheduled transactions are removed again. Ditto from other previous ones: comptes-vl.gnc.20121216011739.gnucash comptes-vl.gnc.20121216011628.gnucash but not from: comptes-vl.gnc.20121216011605.gnucash Now, what's the difference between comptes-vl.gnc.20121216011605.gnucash and comptes-vl.gnc.20121216011628.gnucash? There are 3 additional transactions (I don't think they matter), but also I added a note to some account. The diff looks like that: --- comptes-vl.gnc.20121216011605.gnucash 2012-12-18 22:54:08.0 +0100 +++ comptes-vl.gnc.20121216011628.gnucash 2012-12-18 22:54:20.0 +0100 @@ -67,7 +67,7 @@ /book:slots gnc:count-data cd:type=commodity1/gnc:count-data gnc:count-data cd:type=account94/gnc:count-data -gnc:count-data cd:type=transaction6021/gnc:count-data +gnc:count-data cd:type=transaction6024/gnc:count-data gnc:count-data cd:type=schedxaction2/gnc:count-data gnc:commodity version=2.0.0 cmdty:spaceISO4217/cmdty:space @@ -250,6 +250,16 @@ /act:commodity act:commodity-scu100/act:commodity-scu act:description/act:description + act:slots +slot + slot:keycolor/slot:key + slot:value type=stringNot Set/slot:value +/slot +slot + slot:keynotes/slot:key + slot:value type=stringxx/slot:value +/slot + /act:slots act:parent type=guid4afc07bdd9c6ed5c3bf3558bcce4cffb/act:parent /gnc:account gnc:account version=2.0.0 @@ -120455,6 +120465,80 @@ [... additional transactions ...] -- System Information: Debian Release: 7.0 APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.5-trunk-amd64 (SMP w/2 CPU cores) Locale: LANG=POSIX, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages gnucash depends on: ii gconf-service 3.2.5-1+build1 ii gnucash-common 1:2.4.10-5 ii guile-1.8 1.8.8+1-8 ii guile-1.8-libs 1.8.8+1-8 ii libaqbanking34 5.0.24-3 ii libc6 2.13-37 ii libcairo2 1.12.2-2 ii libcrypt-ssleay-perl 0.58-1 ii libdate-manip-perl 6.37-1 ii libdbi10.8.4-6 ii libfinance-quote-perl 1.17+git20120506-1 ii libgconf-2-4 3.2.5-1+build1 ii libgdk-pixbuf2.0-0 2.26.1-1 ii libglade2-01:2.6.4-1 ii libglib2.0-0 2.33.12+really2.32.4-3 ii libgnome-keyring0 3.4.1-1 ii libgnome2-02.32.1-2 ii libgnomecanvas2-0 2.30.3-1.2 ii libgnomeui-0 2.24.5-2 ii libgoffice-0.8-8 0.8.17-1.2 ii libgtk2.0-02.24.10-2 ii libgwengui-gtk2-0 4.3.3-1 ii libgwenhywfar604.3.3-1 ii libhtml-tableextract-perl 2.11-1 ii libhtml-tree-perl 5.02-1 ii libktoblzcheck1c2a 1.39-1 ii libofx41:0.9.4-2.1 ii libpango1.0-0 1.30.0-1 ii libwebkitgtk-1.0-0 1.8.1-3.3 ii libwww-perl6.04-1 ii libx11-6 2:1.5.0-1 ii libxml22.8.0+dfsg1-7 ii perl 5.14.2-16 ii slib 3b1-3.1 ii zlib1g 1:1.2.7.dfsg-13 Versions of
Bug#697303: [Pkg-libvirt-maintainers] Bug#697303: libvirt: FTBFS in experimental: libnl-devel = 1.1 is required for macvtap support
On Thu, Jan 03, 2013 at 08:27:55PM +0100, Laurent Bigonville wrote: Source: libvirt Version: 1.0.1-1 Severity: serious Justification: fails to build from source (but built successfully in the past) Hi, 1.0.1-1 FTBFS in experimental with the following error: checking for LIBNL... no configure: error: libnl-devel = 1.1 is required for macvtap support The issue here is that both netcf versions - the one in sid linked against libnl1 and the one in experimental linked against libnl3 satisfy the current build-deps line now that they both got an epoch. So the build-dep needs to be bumped. New version forthcoming but it might be a couple of days. -- Guido Cheers Laurent Bigonville -- System Information: Debian Release: 7.0 APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.6-trunk-amd64 (SMP w/8 CPU cores) Locale: LANG=fr_BE.utf8, LC_CTYPE=fr_BE.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ___ Pkg-libvirt-maintainers mailing list pkg-libvirt-maintain...@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-libvirt-maintainers -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#658732: marked as done (gnucash: does not properly handle XML parse errors, leading to possible data loss)
Your message dated Thu, 03 Jan 2013 20:48:08 + with message-id e1tqrhw-0002im...@franck.debian.org and subject line Bug#696282: fixed in gnucash 1:2.4.11-2 has caused the Debian Bug report #696282, regarding gnucash: does not properly handle XML parse errors, leading to possible data loss to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 696282: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696282 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: gnucash Version: 2.2.9-10 Severity: normal When one has older file database (XML), for example one created by freecoinsExport (http://freecoins.sourceforge.net/), the GNUcash recognizes that and upgrades the database. However, it some field is to contain character, GNUcash will SILENTLY drop all transactions after that one. For example, transaction containing: trn:descriptionaerodrom marksspencer/trn:description will make GNUcash stop importing all transactions after it, without giving any notice to the user that anything went wrong. It should report an error with offending GUID (or handle it correctly, of course!) As workaround, one may manually edit XML and replace all occurances of with for example and - and import will work just fine after that. (The bug is also present in squeeze-backports version 1:2.4.4-1~bpo60+1) -- System Information: Debian Release: 6.0.4 APT prefers stable APT policy: (700, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-0.bpo.1-amd64 (SMP w/2 CPU cores) Locale: LANG=hr_HR.UTF-8, LC_CTYPE=hr_HR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages gnucash depends on: ii gconf2 2.28.1-6 GNOME configuration database syste ii gnucash-common 2.2.9-10 A personal finance and money track ii guile-1.6-libs 1.6.8-10 Main Guile libraries ii guile-1.6-slib 1.6.8-10 Guile SLIB support ii libaqbanking29 4.2.4-2 library for online banking applica ii libart-2.0-2 2.3.21-1 Library of functions for 2D graphi ii libatk1.0-01.30.0-1 The ATK accessibility toolkit ii libbonobo2-0 2.24.3-1 Bonobo CORBA interfaces library ii libbonoboui2-0 2.24.3-1 The Bonobo UI library ii libc6 2.11.3-2 Embedded GNU C Library: Shared lib ii libcairo2 1.8.10-6 The Cairo 2D vector graphics libra ii libcrypt-ssleay-pe 0.57-2Support for https protocol in LWP ii libdate-manip-perl 6.11-1module for manipulating dates ii libenchant1c2a 1.6.0-1 a wrapper library for various spel ii libfinance-quote-p 1.17-1Perl module for retrieving stock q ii libfontconfig1 2.8.0-2.1 generic font configuration library ii libfreetype6 2.4.2-2.1+squeeze3FreeType 2 font engine, shared lib ii libgconf2-42.28.1-6 GNOME configuration database syste ii libglade2-01:2.6.4-1 library to load .glade files at ru ii libglib2.0-0 2.24.2-1 The GLib library of C routines ii libgnome2-02.30.0-1 The GNOME library - runtime files ii libgnomecanvas2-0 2.30.1-1 A powerful object-oriented display ii libgnomeui-0 2.24.3-1 The GNOME libraries (User Interfac ii libgnomevfs2-0 1:2.24.3-1GNOME Virtual File System (runtime ii libgoffice-0.8-8 0.8.8-1 Document centric objects library - ii libgtk2.0-02.20.1-2 The GTK+ graphical user interface ii libgtkhtml3.14-19 3.30.3-1 HTML rendering/editing library - r ii libguile-ltdl-11.6.8-10 Guile's patched version of libtool ii libgwenhywfar473.11.3-1 OS abstraction layer ii libice62:1.0.6-2 X11 Inter-Client Exchange library ii libktoblzcheck1c2a 1.28-1library for verification of accoun ii libltdl7 2.2.6b-2 A system independent dlopen wrappe ii libofx41:0.9.0-3 library to support Open Financial ii liborbit2 1:2.14.18-0.1 libraries for ORBit2 - a CORBA ORB ii libpango1.0-0 1.28.3-1+squeeze2 Layout and rendering of internatio ii libpopt0 1.16-1lib for parsing cmdline parameters ii libsm6 2:1.1.1-1 X11 Session Management library ii libx11-6 2:1.3.3-4 X11 client-side
Bug#696282: marked as done (gnucash: does not properly handle XML parse errors, leading to possible data loss)
Your message dated Thu, 03 Jan 2013 20:48:08 + with message-id e1tqrhw-0002im...@franck.debian.org and subject line Bug#696282: fixed in gnucash 1:2.4.11-2 has caused the Debian Bug report #696282, regarding gnucash: does not properly handle XML parse errors, leading to possible data loss to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 696282: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696282 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: gnucash Version: 1:2.4.10-5 Severity: grave Justification: causes non-serious data loss Gnucash silently removed the scheduled transactions. I noticed this with a diff of the XML file while checking a backup (I usually check like that whether applications corrupt my data), and could find when this occurred in the automatic backups. I've attached the compressed diff, where I've changed some characters to 'x' for privacy reasons. I could see nothing in the .log files about removed scheduled transactions. If I try to revert to the last version with these scheduled transactions (comptes-vl.gnc.20121216193600.gnucash), do some change, save and quit, then the scheduled transactions are removed again. Ditto from other previous ones: comptes-vl.gnc.20121216011739.gnucash comptes-vl.gnc.20121216011628.gnucash but not from: comptes-vl.gnc.20121216011605.gnucash Now, what's the difference between comptes-vl.gnc.20121216011605.gnucash and comptes-vl.gnc.20121216011628.gnucash? There are 3 additional transactions (I don't think they matter), but also I added a note to some account. The diff looks like that: --- comptes-vl.gnc.20121216011605.gnucash 2012-12-18 22:54:08.0 +0100 +++ comptes-vl.gnc.20121216011628.gnucash 2012-12-18 22:54:20.0 +0100 @@ -67,7 +67,7 @@ /book:slots gnc:count-data cd:type=commodity1/gnc:count-data gnc:count-data cd:type=account94/gnc:count-data -gnc:count-data cd:type=transaction6021/gnc:count-data +gnc:count-data cd:type=transaction6024/gnc:count-data gnc:count-data cd:type=schedxaction2/gnc:count-data gnc:commodity version=2.0.0 cmdty:spaceISO4217/cmdty:space @@ -250,6 +250,16 @@ /act:commodity act:commodity-scu100/act:commodity-scu act:description/act:description + act:slots +slot + slot:keycolor/slot:key + slot:value type=stringNot Set/slot:value +/slot +slot + slot:keynotes/slot:key + slot:value type=stringxx/slot:value +/slot + /act:slots act:parent type=guid4afc07bdd9c6ed5c3bf3558bcce4cffb/act:parent /gnc:account gnc:account version=2.0.0 @@ -120455,6 +120465,80 @@ [... additional transactions ...] -- System Information: Debian Release: 7.0 APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.5-trunk-amd64 (SMP w/2 CPU cores) Locale: LANG=POSIX, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages gnucash depends on: ii gconf-service 3.2.5-1+build1 ii gnucash-common 1:2.4.10-5 ii guile-1.8 1.8.8+1-8 ii guile-1.8-libs 1.8.8+1-8 ii libaqbanking34 5.0.24-3 ii libc6 2.13-37 ii libcairo2 1.12.2-2 ii libcrypt-ssleay-perl 0.58-1 ii libdate-manip-perl 6.37-1 ii libdbi10.8.4-6 ii libfinance-quote-perl 1.17+git20120506-1 ii libgconf-2-4 3.2.5-1+build1 ii libgdk-pixbuf2.0-0 2.26.1-1 ii libglade2-01:2.6.4-1 ii libglib2.0-0 2.33.12+really2.32.4-3 ii libgnome-keyring0 3.4.1-1 ii libgnome2-02.32.1-2 ii libgnomecanvas2-0 2.30.3-1.2 ii libgnomeui-0 2.24.5-2 ii libgoffice-0.8-8 0.8.17-1.2 ii libgtk2.0-02.24.10-2 ii libgwengui-gtk2-0 4.3.3-1 ii libgwenhywfar604.3.3-1 ii libhtml-tableextract-perl 2.11-1 ii libhtml-tree-perl 5.02-1 ii libktoblzcheck1c2a 1.39-1 ii libofx41:0.9.4-2.1 ii libpango1.0-0 1.30.0-1 ii libwebkitgtk-1.0-0 1.8.1-3.3 ii libwww-perl6.04-1 ii libx11-6 2:1.5.0-1 ii libxml22.8.0+dfsg1-7 ii perl 5.14.2-16 ii slib 3b1-3.1 ii zlib1g 1:1.2.7.dfsg-13 Versions of
Bug#696446: marked as done (nmap: Errors out at startup if running as root and there is a network interface in monitor mode)
Your message dated Thu, 03 Jan 2013 21:32:52 + with message-id e1tqspe-0005vh...@franck.debian.org and subject line Bug#696446: fixed in nmap 6.00-0.3 has caused the Debian Bug report #696446, regarding nmap: Errors out at startup if running as root and there is a network interface in monitor mode to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 696446: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696446 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: nmap Version: 6.00-0.2 Severity: important nmap errors out at startup if it is run as root and the system has any network interface which is in monitor mode: root@cascade:~# nmap scanme.nmap.org Starting Nmap 6.00 ( http://nmap.org ) at 2012-12-20 16:26 EST route_dst_netlink: can't find interface eth0 root@cascade:~# ifconfig mon.wlan0 mon.wlan0 Link encap:UNSPEC HWaddr F8-D1-11-19-DD-F6-B0-1E-00-00-00-00-00-00-00-00 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:266716 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:63082415 (60.1 MiB) TX bytes:0 (0.0 B) This bug is fixed upstream in nmap-6.01. Here is the relevant changelog entry: o Fixed a bug that caused Nmap to fail to find any network interface when at least one of them is in the monitor mode. The fix was to define the ARP_HRD_IEEE80211_RADIOTAP 802.11 radiotap header identifier in the libdnet-stripped code. Network interfaces that are in this mode are used by radiotap for 802.11 frame injection and reception. The bug was reported by Tom Eichstaedt and Henri Doreau. http://seclists.org/nmap-dev/2012/q2/449 http://seclists.org/nmap-dev/2012/q2/478 [Djalal Harouni, Henri Doreau] -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages nmap depends on: ii libc62.13-37 ii libgcc1 1:4.7.2-4 ii liblinear1 1.8+dfsg-1 ii liblua5.1-0 5.1.5-4 ii libpcap0.8 1.3.0-1 ii libpcre3 1:8.30-5 ii libssl1.0.0 1.0.1c-4 ii libstdc++6 4.7.2-4 ii python 2.7.3~rc2-1 nmap recommends no packages. nmap suggests no packages. ---End Message--- ---BeginMessage--- Source: nmap Source-Version: 6.00-0.3 We believe that the bug you reported is fixed in the latest version of nmap, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 696...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Hilko Bengen ben...@debian.org (supplier of updated nmap package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Sat, 29 Dec 2012 18:43:12 +0100 Source: nmap Binary: nmap zenmap Architecture: source amd64 Version: 6.00-0.3 Distribution: unstable Urgency: low Maintainer: Hilko Bengen ben...@debian.org Changed-By: Hilko Bengen ben...@debian.org Description: nmap - The Network Mapper zenmap - The Network Mapper Front End Closes: 696446 Changes: nmap (6.00-0.3) unstable; urgency=low . * Non-maintainer upload. * Apply upstream fix for interfaces in monitor mode (Closes: #696446). Checksums-Sha1: 1490f650970d2b4102909e4a62e39f21a8feb477 1282 nmap_6.00-0.3.dsc ff0ab73af635838f99f902715fed8808a0073e44 25873 nmap_6.00-0.3.diff.gz 2846cd8d3c1cfd190735542d48f554d446ef4f91 3717838 nmap_6.00-0.3_amd64.deb 0670894001e8ed82fbb22c122ea8c24ccfac429a 548458 zenmap_6.00-0.3_amd64.deb Checksums-Sha256: 857e29f89ef381d898dd8fd1f0e3e6caa0aed4ead041a7e16d8def6e3ee54ede 1282 nmap_6.00-0.3.dsc b1967104677fcae726d956c806fe9db421bc0843461c484d7878dff51ea20d25 25873 nmap_6.00-0.3.diff.gz 0b2a3f3650983a3ed5db6965dbf85ff076534d3c7595a8680d791866549f05c5 3717838 nmap_6.00-0.3_amd64.deb 4a25a92532d6875ccb156c0495d33bbfcc39f74bd665e856248b41c9952174ee 548458 zenmap_6.00-0.3_amd64.deb Files: a8b2c34b0dcfaddb46a7aa0e7f8c418f 1282 net extra nmap_6.00-0.3.dsc 0ce5c0ea2ed19f9faad5f4b2f7a79457 25873 net
Bug#696424: Possible patch
Hi On Mon, Dec 24, 2012 at 10:29:24PM +0100, Martin Quinson wrote: attached is a possible patch for that issue. This is just a starting point, as I was not able to test the patch myself. Also, I used 660 as permissions to the file, I'm not sure of whether it's sensible or not. Please review and test before applying. I had too a look at this vulnerability during looking open RC bugs for wheezy. I had a look at the upstream git repository and there are at least [1], [2] and [3]. [1]: http://git.fedorahosted.org/cgit/sanlock.git/commit/?id=3a2ba2d0fbe78f4eacd438b708ceff6e96903d37 [2]: http://git.fedorahosted.org/cgit/sanlock.git/commit/?id=1339694c3bad23055f896e90353c81fd65bd4a7e [3]: http://git.fedorahosted.org/cgit/sanlock.git/commit/?id=9b13cb12973fac422423eec1c6a91f21b5257c92 Attached is the debdiff contianing these three refreshed for the version in unstable and testing. But I'm not yet ready to propose a NMU. Testing of the resulting package is welcome! David, are you working too on it? Regards Salvatore diff -Nru sanlock-2.2/debian/changelog sanlock-2.2/debian/changelog --- sanlock-2.2/debian/changelog2012-06-04 15:33:14.0 +0200 +++ sanlock-2.2/debian/changelog2013-01-03 22:12:48.0 +0100 @@ -1,3 +1,14 @@ +sanlock (2.2-1.1) unstable; urgency=low + + * Non-maintainer upload. + * Fix CVE-2012-5638 sanlock world writable /var/log/sanlock.log. +Add patches cherry-picked from git repository: + - 0001-sanlock-remove-umask-0.patch + - 0001-sanlock-use-lockfile-mode-644.patch + - 0001-wdmd-use-lockfile-mode-644.patch (Closes: #696424) + + -- Salvatore Bonaccorso car...@debian.org Thu, 03 Jan 2013 22:12:33 +0100 + sanlock (2.2-1) unstable; urgency=low * Initial release. (Closes: #669102) diff -Nru sanlock-2.2/debian/patches/0001-sanlock-remove-umask-0.patch sanlock-2.2/debian/patches/0001-sanlock-remove-umask-0.patch --- sanlock-2.2/debian/patches/0001-sanlock-remove-umask-0.patch 1970-01-01 01:00:00.0 +0100 +++ sanlock-2.2/debian/patches/0001-sanlock-remove-umask-0.patch 2013-01-03 22:12:48.0 +0100 @@ -0,0 +1,23 @@ +From 9b13cb12973fac422423eec1c6a91f21b5257c92 Mon Sep 17 00:00:00 2001 +From: David Teigland teigl...@redhat.com +Date: Fri, 3 Aug 2012 14:24:07 -0500 +Subject: [PATCH] sanlock: remove umask 0 + +Remove umask(0) which causes sanlock.log to have mode 666. +It's 644 without the umask. + +Signed-off-by: David Teigland teigl...@redhat.com +--- + src/main.c |1 - + 1 file changed, 1 deletion(-) + +--- a/src/main.c b/src/main.c +@@ -1198,7 +1198,6 @@ + log_tool(cannot fork daemon\n); + exit(EXIT_FAILURE); + } +- umask(0); + } + + /* main task never does disk io, so we don't really need to set diff -Nru sanlock-2.2/debian/patches/0001-sanlock-use-lockfile-mode-644.patch sanlock-2.2/debian/patches/0001-sanlock-use-lockfile-mode-644.patch --- sanlock-2.2/debian/patches/0001-sanlock-use-lockfile-mode-644.patch 1970-01-01 01:00:00.0 +0100 +++ sanlock-2.2/debian/patches/0001-sanlock-use-lockfile-mode-644.patch 2013-01-03 22:12:48.0 +0100 @@ -0,0 +1,21 @@ +From 1339694c3bad23055f896e90353c81fd65bd4a7e Mon Sep 17 00:00:00 2001 +From: David Teigland teigl...@redhat.com +Date: Thu, 2 Aug 2012 11:27:54 -0500 +Subject: [PATCH] sanlock: use lockfile mode 644 + +Signed-off-by: David Teigland teigl...@redhat.com +--- + src/lockfile.c |2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +--- a/src/lockfile.c b/src/lockfile.c +@@ -47,7 +47,7 @@ + + snprintf(path, PATH_MAX, %s/%s, dir, name); + +- fd = open(path, O_CREAT|O_WRONLY|O_CLOEXEC, 0666); ++ fd = open(path, O_CREAT|O_WRONLY|O_CLOEXEC, 0644); + if (fd 0) { + log_error(lockfile open error %s: %s, + path, strerror(errno)); diff -Nru sanlock-2.2/debian/patches/0001-wdmd-use-lockfile-mode-644.patch sanlock-2.2/debian/patches/0001-wdmd-use-lockfile-mode-644.patch --- sanlock-2.2/debian/patches/0001-wdmd-use-lockfile-mode-644.patch 1970-01-01 01:00:00.0 +0100 +++ sanlock-2.2/debian/patches/0001-wdmd-use-lockfile-mode-644.patch 2013-01-03 22:12:48.0 +0100 @@ -0,0 +1,21 @@ +From 3a2ba2d0fbe78f4eacd438b708ceff6e96903d37 Mon Sep 17 00:00:00 2001 +From: David Teigland teigl...@redhat.com +Date: Wed, 1 Aug 2012 17:00:53 -0500 +Subject: [PATCH] wdmd: use lockfile mode 644 + +Signed-off-by: David Teigland teigl...@redhat.com +--- + wdmd/main.c |2 +- + 1 file changed, 1 insertion(+), 1 deletion(-) + +--- a/wdmd/main.c b/wdmd/main.c +@@ -819,7 +819,7 @@ + + sprintf(lockfile_path, %s/wdmd.pid, WDMD_RUN_DIR); + +- fd = open(lockfile_path, O_CREAT|O_WRONLY|O_CLOEXEC, 0666); ++ fd = open(lockfile_path, O_CREAT|O_WRONLY|O_CLOEXEC, 0644); + if (fd 0) { + log_error(lockfile open error %s: %s, +
Processed: severity of 693282 is important
Processing commands for cont...@bugs.debian.org: severity 693282 important Bug #693282 [gajim] gajim: CVE-2012-5524 Bug #693048 [gajim] Gajim fails to handle invalid certificates Severity set to 'important' from 'grave' Severity set to 'important' from 'grave' thanks Stopping processing here. Please contact me if you need assistance. -- 693048: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=693048 693282: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=693282 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697303: marked as done (libvirt: FTBFS in experimental: libnl-devel = 1.1 is required for macvtap support)
Your message dated Thu, 03 Jan 2013 23:02:46 + with message-id e1tqtoe-0003zo...@franck.debian.org and subject line Bug#697303: fixed in libvirt 1.0.1-2 has caused the Debian Bug report #697303, regarding libvirt: FTBFS in experimental: libnl-devel = 1.1 is required for macvtap support to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 697303: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697303 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Source: libvirt Version: 1.0.1-1 Severity: serious Justification: fails to build from source (but built successfully in the past) Hi, 1.0.1-1 FTBFS in experimental with the following error: checking for LIBNL... no configure: error: libnl-devel = 1.1 is required for macvtap support Cheers Laurent Bigonville -- System Information: Debian Release: 7.0 APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.6-trunk-amd64 (SMP w/8 CPU cores) Locale: LANG=fr_BE.utf8, LC_CTYPE=fr_BE.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- Source: libvirt Source-Version: 1.0.1-2 We believe that the bug you reported is fixed in the latest version of libvirt, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 697...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Guido Günther a...@sigxcpu.org (supplier of updated libvirt package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Thu, 03 Jan 2013 22:36:56 +0100 Source: libvirt Binary: libvirt-bin libvirt0 libvirt0-dbg libvirt-doc libvirt-dev python-libvirt libvirt-sanlock Architecture: source all i386 Version: 1.0.1-2 Distribution: experimental Urgency: low Maintainer: Debian Libvirt Maintainers pkg-libvirt-maintain...@lists.alioth.debian.org Changed-By: Guido Günther a...@sigxcpu.org Description: libvirt-bin - programs for the libvirt library libvirt-dev - development files for the libvirt library libvirt-doc - documentation for the libvirt library libvirt-sanlock - library for interfacing with different virtualization systems libvirt0 - library for interfacing with different virtualization systems libvirt0-dbg - library for interfacing with different virtualization systems python-libvirt - libvirt Python bindings Closes: 688177 697303 Changes: libvirt (1.0.1-2) experimental; urgency=low . * [0019ff9] Pass WITH_AUDIT to configure (Closes: #688177) * [faf7972] Add epoch to libnetcf build dependency since both the usuable and unusable verion carry an epoch now (Closes: #697303) Checksums-Sha1: da79fa88d47e3b08f858d466b38743ea659f3f43 2502 libvirt_1.0.1-2.dsc c5dd77f5e1c6254593a70d39a0deae2a6e17555d 37772 libvirt_1.0.1-2.debian.tar.gz 620d2922aee345e814f1d7497d2cc04e77a2bd07 2422738 libvirt-doc_1.0.1-2_all.deb 0122e64a06b8a23f65d944c143bcaac8a6a4fdd2 4453022 libvirt-bin_1.0.1-2_i386.deb 6724a8ec33f1d6f7e68e9cfa3a53705e6b646452 2279562 libvirt0_1.0.1-2_i386.deb ca402c7ebda879a6753da8e725cba260166818c7 10008862 libvirt0-dbg_1.0.1-2_i386.deb 29c549146d51d1e5b28d501ca9aed9c62331c66f 2657678 libvirt-dev_1.0.1-2_i386.deb ed068359a9ee4b7d7e31850a87c1fee947b07dea 1591850 python-libvirt_1.0.1-2_i386.deb a41d912e04cf5e9e1c869ff05e9dacdb7254d40c 1281610 libvirt-sanlock_1.0.1-2_i386.deb Checksums-Sha256: 9647895bf86eba0562c54eb838696cf5954acfab2e676f5dd1eaf98c497766b4 2502 libvirt_1.0.1-2.dsc 0d59b62c32ca2dfdac298dc712766188a825e2d389e23ed8deb853bcf06bbc62 37772 libvirt_1.0.1-2.debian.tar.gz 4b2819e66e3dc10acb32ed3f9f67023f3c0bb774ef2cb1e2c16b46ac2ad596a8 2422738 libvirt-doc_1.0.1-2_all.deb c21d0b4357371716462738990a00277c40dec73f5cc247cccd24d1f535195091 4453022 libvirt-bin_1.0.1-2_i386.deb 3f123a59a12d5dbd1599b17cc28a56783294f61de9f5b90c0f3c4139f29ac706 2279562 libvirt0_1.0.1-2_i386.deb c0969b5a850f3e6743c3c5674fee76207a9864084fa0a7ec16645673ca13b3cc 10008862 libvirt0-dbg_1.0.1-2_i386.deb 4457c0f9235c2a201fac20b5eba522da4e23b941dd5db9450911bb5e189df9b5 2657678 libvirt-dev_1.0.1-2_i386.deb c5035d41abec40338ea60cf725ebb64900ea2a3cf7fca5dba8c6376939310e8c 1591850
Bug#697300: src:user-mode-linux: missing Built-Using on linux (for linux-source-*)
tags 697300 + pending thanks On Thu, Jan 03, 2013 at 07:21:19PM +0100, Ansgar Burchardt wrote: Package: src:user-mode-linux Version: 3.2-1um-1 Severity: serious Thanks, I made the necessary changes to the package, I will upload a fixed version later today. -- mattia :wq! -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: Re: Bug#697300: src:user-mode-linux: missing Built-Using on linux (for linux-source-*)
Processing commands for cont...@bugs.debian.org: tags 697300 + pending Bug #697300 [src:user-mode-linux] src:user-mode-linux: missing Built-Using on linux (for linux-source-*) Added tag(s) pending. thanks Stopping processing here. Please contact me if you need assistance. -- 697300: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697300 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697332: mbr: FTBFS on ia64 (release arch) and m68k
Source: mbr Version: 1.1.11-5 Severity: serious Justification: FTBFS on release arch Hi, the mbr package seems to be using the system ld(1) utility to operate on object files created by as86, I think that’s wrong and – as we see in the build logs – cannot work: https://buildd.debian.org/status/fetch.php?pkg=mbrarch=ia64ver=1.1.11-5stamp=1336899823 http://buildd.debian-ports.org/status/fetch.php?pkg=mbrarch=m68kver=1.1.11-5stamp=1357260271 Since IA64 is a release architecture, I’m filing this as RC. For some reason I do not fully understand, mbr builds as arch:any, including an udeb… so it might actually be used… You might be better off with bin86’s own ld, I think, or at least binutils-multiarch (might need to explicitly export the GNUTARGET environment variable to select the BFD target used). bye, //mirabilos -- ☎ Natureshadow Ich glaub ich hab mir grad mit dem [Ham]Burger die Nase abge‐ putzt… mirabilos Ich glaub ich hab ne neue eMail-Signatur Natureshadow Scheiße, warum passiert mir sowas immer, wenn ich mit dir spre‐ che? *hust* Das war Schnodderburger… *hust* -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697334: scribus: Crash on startup if not opening a document
Package: scribus Version: 1.4.0.dfsg+r17300-1.1 Severity: grave Justification: renders package unusable Dear Maintainer, When I launch scribus via the GNOME menu or the command line, it starts then crash with a popup indicating: “crashes due to Signal #6”. The terminal output is: terminate called after throwing an instance of 'std::bad_alloc' what(): std::bad_alloc Scribus Crash - Scribus crashes due to Signal #6 Calling Emergency Save I tried removing the ~/.scribus file, and had the crash anyway. I also tried renaming the ~/.fonts in case it was a font problem, with the same result. I tried opening an old document (saved with version 1.3.3) and it did not crash. Starting from there I can use this document, close it, and create a new document. If I close scribus, and start it again, without opening this document, it show the same error and popup then closes. It seems I can do the same thing with other old documents (1.3.3) and also with more recent documents. -- System Information: Debian Release: 7.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores) Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages scribus depends on: ii ghostscript 9.05~dfsg-6.3 ii libc6 2.13-37 ii libcairo2 1.12.2-2 ii libcups21.5.3-2.4 ii libfontconfig1 2.9.0-7.1 ii libfreetype62.4.9-1 ii libgcc1 1:4.7.2-4 ii libjpeg88d-1 ii liblcms11.19.dfsg-1.2 ii libpodofo0.9.0 0.9.0-1.1+b1 ii libpython2.72.7.3~rc2-2.1 ii libqt4-network 4:4.8.2+dfsg-2 ii libqt4-xml 4:4.8.2+dfsg-2 ii libqtcore4 4:4.8.2+dfsg-2 ii libqtgui4 4:4.8.2+dfsg-2 ii libstdc++6 4.7.2-4 ii libtiff43.9.6-10 ii libxml2 2.8.0+dfsg1-7 ii python 2.7.3~rc2-1 ii python-tk 2.7.3-1 ii zlib1g 1:1.2.7.dfsg-13 Versions of packages scribus recommends: ii cups-bsd 1.5.3-2.4 ii gsfonts-x11 0.22 ii xfonts-scalable 1:1.0.3-1 Versions of packages scribus suggests: ii icc-profiles 2.0.1-1 ii scribus-template 1.2.4.1-2 -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: Re: Bug#697197: mha4mysql-manager: masterha_master_switch aborts during failover with 'Use of uninitialized value'
Processing control commands: tags -1 + confirmed Bug #697197 [mha4mysql-manager] mha4mysql-manager: masterha_master_switch aborts during failover with 'Use of uninitialized value' Added tag(s) confirmed. -- 697197: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697197 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697197: mha4mysql-manager: masterha_master_switch aborts during failover with 'Use of uninitialized value'
Control: tags -1 + confirmed hi, On Thu, Jan 3, 2013 at 12:03 AM, Apollon Oikonomopoulos apoi...@gmail.comwrote: masterha_master_switch aborts with the following error upon attempting a master failover/switch, rendering it virtually unusable: Use of uninitialized value in scalar chomp at /usr/lib/perl5/site_perl/5.8.8/MHA/ManagerConst.pm line 90 This is a known bug[1], due to a change in the behaviour of Log::Dispatch. The upstream fix[2] is trivial to apply. I will update package with backporting upstream fix. Thanks. regards, -- KURASHIKI Satoru wrote : [Global] write の過去形.
Bug#696468: marked as done (phpunit-story: depends on php5-spl which does not appear to exist)
Your message dated Fri, 04 Jan 2013 04:47:27 + with message-id e1tqzbn-0006aj...@franck.debian.org and subject line Bug#696468: fixed in phpunit-story 1.0.0-3 has caused the Debian Bug report #696468, regarding phpunit-story: depends on php5-spl which does not appear to exist to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 696468: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696468 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: phpunit-story Version: 1.0.0-2 Severity: serious Hi, phpunit-story depends on php5-spl, but the latter does not appear to be available. This makes phpunit-story uninstallable. Please do a minimal fix for this problem[1], so the fix for #694361 can migrate to testing. Thank you in advance, ~Niels [1] As defined by http://release.debian.org/wheezy/freeze_policy.html ---End Message--- ---BeginMessage--- Source: phpunit-story Source-Version: 1.0.0-3 We believe that the bug you reported is fixed in the latest version of phpunit-story, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 696...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Luis Uribe a...@eviled.org (supplier of updated phpunit-story package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 02 Jan 2013 10:37:01 -0500 Source: phpunit-story Binary: phpunit-story Architecture: source all Version: 1.0.0-3 Distribution: unstable Urgency: low Maintainer: Debian PHP PEAR Maintainers pkg-php-p...@lists.alioth.debian.org Changed-By: Luis Uribe a...@eviled.org Description: phpunit-story - extension to facilitate Behaviour-Driven Development Closes: 696468 Changes: phpunit-story (1.0.0-3) unstable; urgency=low . * debian/control - Remove ${phppear:Debian-Depends} form depends, because it generates broken dependencies (Closes: #696468) Thanks to Ivo De Decker ivo.dedec...@ugent.be Checksums-Sha1: 07a039d2951f198941505c56b8bee464dadca05c 1421 phpunit-story_1.0.0-3.dsc 4b291cff1741bb156466864f4df55bb0cf1dfe94 2888 phpunit-story_1.0.0-3.debian.tar.gz 943f083b02d642f4fded4b123612f33afb5adf03 11718 phpunit-story_1.0.0-3_all.deb Checksums-Sha256: 1aa4d9b958ae92c7ef76aa418e5691d4d64c8af2ae0fabc71c4713ed82394849 1421 phpunit-story_1.0.0-3.dsc 7f352d727a59c28e67682bd5655210205577a46caa6178baf049ae7876a072ab 2888 phpunit-story_1.0.0-3.debian.tar.gz b32689181987c00a419d26d976f304851dbd3dc4ab8dd44fb472fd8ae76a4706 11718 phpunit-story_1.0.0-3_all.deb Files: 525d87d406683c14efdb67e730a8ce7e 1421 php optional phpunit-story_1.0.0-3.dsc adc2983401bdece3c73adb2916f927bf 2888 php optional phpunit-story_1.0.0-3.debian.tar.gz c0393ca8d844413ce72ab04cbe28342d 11718 php optional phpunit-story_1.0.0-3_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlDmXacACgkQl4M9yZjvmkleYQCeJocjcqWzAgQtwaup/hRpKOJj kyQAoNlzgn4qSvF8gvGDQUTKw5LfCKBm =ZDWy -END PGP SIGNATUREEnd Message---
Processed: Re: Bug#697332: mbr: FTBFS on ia64 (release arch) and m68k
Processing control commands: severity -1 important Bug #697332 [src:mbr] mbr: FTBFS on ia64 (release arch) and m68k Severity set to 'important' from 'serious' -- 697332: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697332 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697332: mbr: FTBFS on ia64 (release arch) and m68k
Control: severity -1 important On Fri, 2013-01-04 at 01:16 +, Thorsten Glaser wrote: the mbr package seems to be using the system ld(1) utility to operate on object files created by as86, I think that’s wrong and – as we see in the build logs – cannot work: https://buildd.debian.org/status/fetch.php?pkg=mbrarch=ia64ver=1.1.11-5stamp=1336899823 http://buildd.debian-ports.org/status/fetch.php?pkg=mbrarch=m68kver=1.1.11-5stamp=1357260271 Since IA64 is a release architecture, I’m filing this as RC. It is, but the package has never built on ia64 so as a non-regression it's still not RC. :) Regards, Adam -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#697251: marked as done (gnupg2: gnupg key import memory corruption)
Your message dated Fri, 04 Jan 2013 06:32:36 + with message-id e1tr0py-0005vq...@franck.debian.org and subject line Bug#697251: fixed in gnupg2 2.0.19-2 has caused the Debian Bug report #697251, regarding gnupg2: gnupg key import memory corruption to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 697251: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697251 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: gnupg2 Version: 2.0.19-1 Severity: critical Tags: security Justification: root security hole Hi. This is a follow up for #697108 and CVE-2012-6085. While it seems that all world fixes this only for gpg 1.4.x Werner's bug entry[0,1] implies that 2.x is also affected. Could you please have a look? btw: Marking as root security hole, because people may use gpg2 to e.g. manually verify packages before installing them. Yeah I know,... apt would use gpg1 where it is already fixed. But better too high severity, than sorry ;) Cheers, Chris. [0] https://bugs.g10code.com/gnupg/issue1455 [1] https://bugs.g10code.com/gnupg/msg4493 ---End Message--- ---BeginMessage--- Source: gnupg2 Source-Version: 2.0.19-2 We believe that the bug you reported is fixed in the latest version of gnupg2, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 697...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Eric Dorland e...@debian.org (supplier of updated gnupg2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Fri, 04 Jan 2013 00:56:52 -0500 Source: gnupg2 Binary: gnupg-agent scdaemon gpgsm gnupg2 Architecture: source amd64 Version: 2.0.19-2 Distribution: unstable Urgency: high Maintainer: Eric Dorland e...@debian.org Changed-By: Eric Dorland e...@debian.org Description: gnupg-agent - GNU privacy guard - password agent gnupg2 - GNU privacy guard - a free PGP replacement (new v2.x) gpgsm - GNU privacy guard - S/MIME version scdaemon - GNU privacy guard - smart card support Closes: 697251 Changes: gnupg2 (2.0.19-2) unstable; urgency=high . * debian/patches/02-cve-2012-6085.diff: Patch from upstream to fix CVE-2012-6085, gnupg key import memory corruption. (Closes: #697251) * debian/control: Use canonical addresses for VCS. * debian/control: Fix scdaemon short description. Checksums-Sha1: c4350fdae252a72de990f17ffed0343b2b8245f4 1595 gnupg2_2.0.19-2.dsc 80812ec94e6edf0c0695ec97c01a7f06d3842c5c 16034 gnupg2_2.0.19-2.debian.tar.bz2 aa8398d1268e0a054d5f95d48c1e37e8fa0929e0 464876 gnupg-agent_2.0.19-2_amd64.deb 372a509e74d6e1093397b06ca12267f981ede106 217540 scdaemon_2.0.19-2_amd64.deb 8f282a3acde493fa6f74493346581c7be63e5041 255960 gpgsm_2.0.19-2_amd64.deb 32b9abde748c4eb23535e3961e2bebc3d172a7ca 2283718 gnupg2_2.0.19-2_amd64.deb Checksums-Sha256: fa215f2ad0922b254e70c02bcf1026ba8a30ddac11f5b115a48c3ea7c9499af8 1595 gnupg2_2.0.19-2.dsc 9270596930bedbbe8a8d69152793c315e5188c28765f0ffcb21789ecd6b29aee 16034 gnupg2_2.0.19-2.debian.tar.bz2 ebbd151c24dfeeca511711fdaddb58fd0c27b718c4430b7cb7b04de7bcdc52eb 464876 gnupg-agent_2.0.19-2_amd64.deb d5d81630867b7f4da2699eee6606cdc5f446d703a9a9861f33c0549bb8e0 217540 scdaemon_2.0.19-2_amd64.deb 2db6b3bd9164385cfc2730b4e22c37c59ace1cced9c748dcffc5102fea014265 255960 gpgsm_2.0.19-2_amd64.deb ba13b33b0921ac0451956d5df213ff9e0981b34b7307201dfd93b4777ea011e4 2283718 gnupg2_2.0.19-2_amd64.deb Files: 4dff28834bec7f4701999df6e646fba7 1595 utils optional gnupg2_2.0.19-2.dsc d6080123c70f90947485723b175da541 16034 utils optional gnupg2_2.0.19-2.debian.tar.bz2 d6b741c37dca5acf12511eba4cd6730e 464876 utils optional gnupg-agent_2.0.19-2_amd64.deb 6b94af9ea60a84cea0f0eff77411355b 217540 utils optional scdaemon_2.0.19-2_amd64.deb 1cd1abd11ab1e2ef70db2447d6e2037c 255960 utils optional gpgsm_2.0.19-2_amd64.deb 200cde741c0d711a2291ab850962028d 2283718 utils optional gnupg2_2.0.19-2_amd64.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlDmdO4ACgkQYemOzxbZcMazlACgpudqWwnpj63j7upoGUi1K10u seoAniNvNBQmJfMJPyTvRo8q58uoErd/ =FwmR -END PGP SIGNATUREEnd Message---