Bug#742768: Regarding your cacti security report CVE-2014-2326 - 2328
Hi, As the maintainer of Cacti in Debian, I received [1] your security report [2] on Cacti yesterday. I have several questions. I didn't see any public communication with the upstream maintainers, so I assume it was done in private. After releasing your CVE numbers, wouldn't it been nice to report the issues also in the bug tracker of cacti, so that contributors could maybe help? I find your report rather vague, for one because it talks about an old version of cacti (current version is 0.8.8b). How is e.g. CVE-2014-2326 different than (the already fixed) CVE-2013-5588, CVE-2010-2545, CVE-2010-2544 and CVE-2010-2543? Could you please explain if you found new issues? Maybe just explicitly stating the issues you found? Furthermore, with the current description I hardly see a difference between CVE-2014-2328 and the (unresolved) CVE-2009-4112? To me it seems you have a new point with CVE-2014-2327 though. Paul Gevers. Debian Cacti maintainer. [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742768 [2] http://www.securityfocus.com/archive/1/531588 signature.asc Description: OpenPGP digital signature
Bug#742861: Please add python-pkg-resources
Package: speedtest-cli Version: 0.2.4-1 Severity: grave Dear Maintainer, please add python-pkg-resources packages depends, without it package crash at run: Traceback (most recent call last): File /usr/bin/speedtest-cli, line 5, in module from pkg_resources import load_entry_point ImportError: No module named pkg_resources -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (500, 'testing'), (300, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.13-1-amd64 (SMP w/4 CPU cores) Locale: LANG=pl_PL.UTF-8, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages speedtest-cli depends on: ii python 2.7.5-5 speedtest-cli recommends no packages. speedtest-cli suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#710024: marked as done (src:aster: all binary packages are empty)
Your message dated Fri, 28 Mar 2014 09:23:15 +0100 with message-id 53353173.6030...@logilab.fr and subject line Re: Bug#710024: src:aster: all binary packages are empty has caused the Debian Bug report #710024, regarding src:aster: all binary packages are empty to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 710024: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=710024 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: src:aster Version: 11.3.0-2-2 Severity: grave Justification: renders package unusable All the binary packages built on the buildd from the aster source are empty. It looks like your build-arch or binary-arch rule is broken. Doubly so because it doesn't even notice the breakage. Cheers, Julien signature.asc Description: Digital signature ---End Message--- ---BeginMessage--- Source: aster Version: 11.5.0+dfsg2-1 Source-Version: 11.5.0+dfsg2-1 The repackaging effort of aster appears to have solved this issue. Binaries resulting from buildd builds are no longer empty.---End Message---
Bug#723050: can't log in
¡Hola Mathieu! El 2013-11-21 a las 22:04 +0100, Mathieu MD escribió: I was trying to follow the code, and it looks like /usr/lib/kde4/libexec/kcheckpass uses the kdm pam service, which imports the common services and adds some normal pam stuff. :: Ups, sorry, that was wrong, it uses the /etc/pam.d/other pam service. I tried to run xscreensaver as you told, but it did not change anything: I still cannot login back. @include common-auth @include common-account I don't know if the problem is still reproduceable for you, it was never reproduceable for me. But if you do, could you check the permissions of the /sbin/unix_chkpwd command? -- Don't let what you cannot do interfere with what you can do. -- Wooden's Rule Saludos /\/\ /\ `/ signature.asc Description: Digital signature
Bug#742862: upgrade to 2.4.39-1 breaks slapd
Package: slapd
Version: 2.4.31-1+nmu2+b1
Severity: critical
slapd does not start after upgrade to 2.4.39-1, going back to
2.4.21-1+nmu2+b1 does not help either, I had to switch back to restore
previous /var/lib/ldap and /etc/ldap
In the logs I get :
- For 2.4.39
Mar 28 07:56:39 tee slapd[25189]: @(#) $OpenLDAP: slapd (Mar 17 2014 22:34:49)
$#012#011@borges:/home/devel/openldap/build-area/openldap-2.4.39/debian/build/servers/slapd
Mar 28 07:56:39 tee slapd[25190]: hdb_db_open: database dc=rail,dc=eu,dc=org:
alock package is unstable.
Mar 28 07:56:39 tee slapd[25190]: backend_startup_one (type=hdb,
suffix=dc=rail,dc=eu,dc=org): bi_db_open failed! (-1)
Mar 28 07:56:39 tee slapd[25190]: slapd stopped.
- Then for 2.4.31
Mar 28 08:59:40 tee slapd[5312]: @(#) $OpenLDAP: slapd (Aug 29 2013 23:49:08)
$#012#011buildd@barber:/build/openldap-SCZVxy/openldap-2.4.31/debian/build/servers/slapd
Mar 28 08:59:40 tee slapd[5312]: olcDbDirectory: value #0: invalid path: No
such file or directory
Mar 28 08:59:40 tee slapd[5312]: config error processing
olcDatabase={1}hdb,cn=config: olcDbDirectory: value #0: invalid path: No such
file or directory
Mar 28 08:59:40 tee slapd[5312]: slapd stopped.
Mar 28 08:59:40 tee slapd[5312]: connections_destroy: nothing to destroy.
-- System Information:
Debian Release: jessie/sid
APT prefers testing-proposed-updates
APT policy: (900, 'testing-proposed-updates'), (900, 'testing'), (800,
'stable'), (500, 'proposed-updates'), (400, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.13-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages slapd depends on:
ii adduser 3.113+nmu3
ii coreutils 8.21-1.1
ii debconf [debconf-2.0] 1.5.52
ii libc6 2.18-4
ii libdb5.15.1.29-6
ii libgcrypt11 1.5.3-4
ii libgnutls26 2.12.23-13
ii libldap-2.4-2 2.4.31-1+nmu2+b1
ii libltdl72.4.2-1.7
ii libodbc12.3.1-1
ii libperl5.18 5.18.2-2+b1
ii libsasl2-2 2.1.26.dfsg1-9
ii libslp1 1.2.1-9
ii libwrap07.6.q-25
ii lsb-base4.1+Debian12
ii multiarch-support 2.18-4
ii perl [libmime-base64-perl] 5.18.2-2+b1
ii psmisc 22.21-1
ii unixodbc2.3.1-1
Versions of packages slapd recommends:
ii libsasl2-modules 2.1.26.dfsg1-9
Versions of packages slapd suggests:
ii ldap-utils 2.4.31-1+nmu2+b1
-- debconf information:
slapd/allow_ldap_v2: false
slapd/no_configuration: false
slapd/move_old_database: true
slapd/domain: dedibox.fr
slapd/invalid_config: true
slapd/dump_database: when needed
slapd/backend: HDB
slapd/password_mismatch:
slapd/dump_database_destdir: /var/backups/slapd-VERSION
shared/organization: dedibox.fr
slapd/upgrade_slapcat_failure:
slapd/purge_database: false
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742273: marked as done (osgearth: unsatisfiable libv8-dev build-dep)
Your message dated Fri, 28 Mar 2014 10:26:45 +0100 with message-id 675a88a4cfb4f202251167e7649d776c.squir...@webmail.xs4all.nl and subject line libv8 build dependency dropped has caused the Debian Bug report #742273, regarding osgearth: unsatisfiable libv8-dev build-dep to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 742273: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742273 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Source: osgearth Version: 2.5.0+dfsg-0~exp1 Severity: serious Justification: fails to build from source (but built successfully in the past) Hi, osgearth added an unconditional build-dep on libv8-dev, however that package is only built on little endian archs by the looks of it (it's missing on mips, powerpc, s390x and sparc). Cheers, Julien signature.asc Description: Digital signature ---End Message--- ---BeginMessage--- The build dependency on libv8-dev has been dropped, and osgEarth 2.5 and QGIS 2.2 have built successfully on the ports. Only hurd-i386 builds are missing due to the previously mentioned openscenegraph FTBFS. Kind Regards, Bas---End Message---
Bug#742585: marked as done (ruby-prawn and ruby-pdf-core: error when trying to install together)
Your message dated Fri, 28 Mar 2014 10:03:46 + with message-id e1wttda-0007uh...@franck.debian.org and subject line Bug#742585: fixed in ruby-pdf-core 0.2.5-2 has caused the Debian Bug report #742585, regarding ruby-prawn and ruby-pdf-core: error when trying to install together to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 742585: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742585 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: ruby-pdf-core,ruby-prawn Version: ruby-pdf-core/0.2.5-1 Version: ruby-prawn/1.0.0~rc2+really0.14.0+dfsg-1 Severity: serious User: trei...@debian.org Usertags: edos-file-overwrite Date: 2014-03-25 Architecture: amd64 Distribution: sid Hi, automatic installation tests of packages that share a file and at the same time do not conflict by their package dependency relationships has detected the following problem: Selecting previously unselected package libffi6:amd64. (Reading database ... 10940 files and directories currently installed.) Preparing to unpack .../libffi6_3.0.13-12_amd64.deb ... Unpacking libffi6:amd64 (3.0.13-12) ... Selecting previously unselected package libyaml-0-2:amd64. Preparing to unpack .../libyaml-0-2_0.1.4-3.1_amd64.deb ... Unpacking libyaml-0-2:amd64 (0.1.4-3.1) ... Selecting previously unselected package ruby. Preparing to unpack .../ruby_1%3a1.9.3.4_all.deb ... Unpacking ruby (1:1.9.3.4) ... Selecting previously unselected package ruby1.9.1. Preparing to unpack .../ruby1.9.1_1.9.3.484-2_amd64.deb ... Unpacking ruby1.9.1 (1.9.3.484-2) ... Selecting previously unselected package libruby1.9.1. Preparing to unpack .../libruby1.9.1_1.9.3.484-2_amd64.deb ... Unpacking libruby1.9.1 (1.9.3.484-2) ... Selecting previously unselected package ruby-afm. Preparing to unpack .../ruby-afm_0.2.0-1_all.deb ... Unpacking ruby-afm (0.2.0-1) ... Selecting previously unselected package ruby-ascii85. Preparing to unpack .../ruby-ascii85_1.0.2-2_all.deb ... Unpacking ruby-ascii85 (1.0.2-2) ... Selecting previously unselected package ruby-hashery. Preparing to unpack .../ruby-hashery_2.1.1-1_all.deb ... Unpacking ruby-hashery (2.1.1-1) ... Selecting previously unselected package ruby-rc4. Preparing to unpack .../ruby-rc4_0.1.5-2_all.deb ... Unpacking ruby-rc4 (0.1.5-2) ... Selecting previously unselected package ruby-ttfunk. Preparing to unpack .../ruby-ttfunk_1.1.0+dfsg-1_all.deb ... Unpacking ruby-ttfunk (1.1.0+dfsg-1) ... Selecting previously unselected package ruby-pdf-reader. Preparing to unpack .../ruby-pdf-reader_1.3.3-1_all.deb ... Unpacking ruby-pdf-reader (1.3.3-1) ... Selecting previously unselected package ruby-pdf-core. Preparing to unpack .../ruby-pdf-core_0.2.5-1_all.deb ... Unpacking ruby-pdf-core (0.2.5-1) ... Selecting previously unselected package ruby-prawn. Preparing to unpack .../ruby-prawn_1.0.0~rc2+really0.14.0+dfsg-1_all.deb ... Unpacking ruby-prawn (1.0.0~rc2+really0.14.0+dfsg-1) ... dpkg: error processing archive /var/cache/apt/archives/ruby-prawn_1.0.0~rc2+really0.14.0+dfsg-1_all.deb (--unpack): trying to overwrite '/usr/lib/ruby/vendor_ruby/pdf/core.rb', which is also in package ruby-pdf-core 0.2.5-1 dpkg-deb: error: subprocess paste was killed by signal (Broken pipe) Processing triggers for man-db (2.6.6-1) ... Errors were encountered while processing: /var/cache/apt/archives/ruby-prawn_1.0.0~rc2+really0.14.0+dfsg-1_all.deb E: Sub-process /usr/bin/dpkg returned an error code (1) This is a serious bug as it makes installation fail, and violates sections 7.6.1 and 10.1 of the policy. An optimal solution would consist in only one of the packages installing that file, and renaming or removing the file in the other package. Depending on the circumstances you might also consider Replace relations or file diversions. If the conflicting situation cannot be resolved then, as a last resort, the two packages have to declare a mutual Conflict. Please take into account that Replaces, Conflicts and diversions should only be used when packages provide different implementations for the same functionality. Here is a list of files that are known to be shared by both packages (according to the Contents file for sid/amd64, which may be slightly out of sync): /usr/lib/ruby/vendor_ruby/pdf/core.rb /usr/lib/ruby/vendor_ruby/pdf/core/annotations.rb /usr/lib/ruby/vendor_ruby/pdf/core/byte_string.rb /usr/lib/ruby/vendor_ruby/pdf/core/destinations.rb /usr/lib/ruby/vendor_ruby/pdf/core/document_state.rb /usr/lib/ruby/vendor_ruby/pdf/core/filter_list.rb /usr/lib/ruby/vendor_ruby/pdf/core/filters.rb
Bug#742869: lua-posix: fails to build with LDoc 1.4
Package: lua-posix
Version: 29-7
Severity: serious
Tags: patch
User: ubuntu-de...@lists.ubuntu.com
Usertags: origin-ubuntu ubuntu-patch trusty
lua-posix fails to build with LDoc 1.4:
ldoc .
/«PKGBUILDDIR»/lposix.c:2787: internal LDoc error
/usr/share/lua/5.1/ldoc/tools.lua:184: attempt to call method 'match' (a nil
value)
stack traceback:
/usr/share/lua/5.1/ldoc/tools.lua:184: in function
'extract_identifier'
/usr/share/lua/5.1/ldoc/parse.lua:376: in function
/usr/share/lua/5.1/ldoc/parse.lua:246
[C]: in function 'xpcall'
/usr/share/lua/5.1/ldoc/parse.lua:246: in function 'parse_file'
/usr/share/lua/5.1/ldoc/parse.lua:402: in function 'file'
/usr/bin/ldoc:403: in function 'process_file'
/usr/bin/ldoc:489: in main chunk
[C]: ?
reading configuration from config.ld
make[1]: *** [override_dh_auto_build] Error 255
Here's the upstream discussion:
https://github.com/stevedonovan/LDoc/issues/125
Looking through the git history at around the relevant time, two patches
seem clearly relevant. I backported these and lua-posix now builds
fine. Here you go:
* Backport a couple of ldoc fixes from upstream.
diff -Nru lua-posix-29/debian/patches/add-missing-ldoc-function-tag.patch
lua-posix-29/debian/patches/add-missing-ldoc-function-tag.patch
--- lua-posix-29/debian/patches/add-missing-ldoc-function-tag.patch
1970-01-01 01:00:00.0 +0100
+++ lua-posix-29/debian/patches/add-missing-ldoc-function-tag.patch
2014-03-28 11:06:37.0 +
@@ -0,0 +1,21 @@
+From: Gary V. Vaughan g...@gnu.org
+Date: Thu, 12 Dec 2013 09:17:09 +1300
+Subject: [PATCH] doc: add missing LDoc function tag.
+
+* ext/posix/posix.c (strptime): Add missing @function tag.
+
+Signed-off-by: Gary V. Vaughan g...@gnu.org
+Origin: backport,
https://github.com/luaposix/luaposix/commit/6640275b2e860521b8ae458b8f1c4ebaf53d7f27
+
+Index: b/lposix.c
+===
+--- a/lposix.c
b/lposix.c
+@@ -2901,6 +2901,7 @@
+
+ /***
+ Parse a date string.
++@function strptime
+ @see strptime(3)
+ @string s
+ @string format same as for `strftime`
diff -Nru lua-posix-29/debian/patches/fix-ldoc-custom-see-handler.patch
lua-posix-29/debian/patches/fix-ldoc-custom-see-handler.patch
--- lua-posix-29/debian/patches/fix-ldoc-custom-see-handler.patch
1970-01-01 01:00:00.0 +0100
+++ lua-posix-29/debian/patches/fix-ldoc-custom-see-handler.patch
2014-03-28 11:05:08.0 +
@@ -0,0 +1,29 @@
+From: Gary V. Vaughan g...@gnu.org
+Date: Thu, 12 Dec 2013 09:15:12 +1300
+Subject: [PATCH] doc: fix LDoc manual page custom_see_handler pattern.
+
+* ext/posix/config.ld (custom_see_handler): Add a missing closing
+`%)`.
+(upat): Pull the format string up per LDoc documentation.
+
+Signed-off-by: Gary V. Vaughan g...@gnu.org
+Origin: backport,
https://github.com/luaposix/luaposix/commit/1bcb12c59dcfb830ffb9b8db7305720c83cb17ac
+
+Index: b/config.ld
+===
+--- a/config.ld
b/config.ld
+@@ -7,9 +7,10 @@
+ tparam_alias 'int'
+ tparam_alias 'bool'
+
+-custom_see_handler('^([%w_]+)%((%d)$',function(name,section)
+-local url =
(http://www.kernel.org/doc/man-pages/online/pages/man%s/%s.%s.html;):format(section,name,section)
+-local name = name .. '(' ..section..')'
++local upat =
http://www.kernel.org/doc/man-pages/online/pages/man%s/%s.%s.html;
++custom_see_handler('^([%w_]+)%((%d)%)$',function(name,section)
++local url = upat:format(section,name,section)
++local name = name .. '(' .. section .. ')'
+ return name, url
+ end)
+
diff -Nru lua-posix-29/debian/patches/series lua-posix-29/debian/patches/series
--- lua-posix-29/debian/patches/series 2014-01-21 19:58:48.0 +
+++ lua-posix-29/debian/patches/series 2014-03-28 11:05:40.0 +
@@ -1,2 +1,4 @@
0001-Fix-build-on-hurd-i386.patch
0002-Fix-compilation-on-kfreebsd.patch
+fix-ldoc-custom-see-handler.patch
+add-missing-ldoc-function-tag.patch
Thanks,
--
Colin Watson [cjwat...@ubuntu.com]
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#741845: graphite2: FTBFS: a2x: ERROR: missing resource: /«PKGBUILDDIR»/doc/images/icons/callouts/1.png
tag 741845 - patch thanks Hi, On Wed, Mar 26, 2014 at 08:07:16PM +0900, Hideki Yamane wrote: Control: tags -1 +patch Hi, cd /«PKGBUILDDIR»/build/doc /usr/bin/a2x -f xhtml --icons -D /«PKGBUILDDIR»/build/doc /«PKGBUILDDIR»/doc/manual.txt a2x: ERROR: missing resource: /«PKGBUILDDIR»/doc/images/icons/callouts/1.png make[5]: *** [doc/manual.html] Error 1 removing --icons can avoid this FTBFS as attached. Which is a hackaround - not a fix. The root question is why a2x starts behaving like this when it did work before At least there wasn't a asciidoc update, neither a update of the stuff asciidoc recommends... Regards, Rene -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: Re: Bug#741845: graphite2: FTBFS: a2x: ERROR: missing resource: /«PKGBUILDDIR»/doc/images/icons/callouts/1.png
Processing commands for cont...@bugs.debian.org: tag 741845 - patch Bug #741845 [src:graphite2] graphite2: FTBFS: a2x: ERROR: missing resource: /«PKGBUILDDIR»/doc/images/icons/callouts/1.png Removed tag(s) patch. thanks Stopping processing here. Please contact me if you need assistance. -- 741845: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741845 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742113: marked as done (rsyslog: logs many rsyslogd-2007: action 'action 17' suspended messages)
Your message dated Fri, 28 Mar 2014 12:03:53 + with message-id e1wtvvp-000750...@franck.debian.org and subject line Bug#742113: fixed in rsyslog 7.6.3-1 has caused the Debian Bug report #742113, regarding rsyslog: logs many rsyslogd-2007: action 'action 17' suspended messages to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 742113: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742113 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: rsyslog Version: 7.6.2-1 Since the latest upgrade rsyslog logs hundreds of messages like: rsyslogd-2007: action 'action 17' suspended, next retry is Wed Mar 19 08:40:48 2014 [try http://www.rsyslog.com/e/2007 ] and an occasional resume: rsyslogd-2359: action 'action 17' resumed (module 'builtin:ompipe') [try http://www.rsyslog.com/e/2359 ] Seems related to the default rsyslog.conf rule for logging to /dev/xconsole -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (500, 'oldstable'), (450, 'experimental') Architecture: i386 (x86_64) Kernel: Linux 3.13-1-amd64 (SMP w/2 CPU cores) Locale: LANG=pl_PL.UTF-8, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages rsyslog depends on: ii init-system-helpers 1.18 ii initscripts 2.88dsf-51 ii libc62.18-4 ii libee0 0.4.1-1 ii libestr0 0.1.9-1 ii libjson-c2 0.11-3 ii liblogging-stdlog0 1.0.3-1 ii liblognorm0 0.3.7-1 ii libuuid1 2.20.1-5.6 ii lsb-base 4.1+Debian12 ii zlib1g 1:1.2.8.dfsg-1 Versions of packages rsyslog recommends: ii logrotate 3.8.7-1 Versions of packages rsyslog suggests: ii rsyslog-doc7.6.2-1 pn rsyslog-gnutls none pn rsyslog-gssapi none pn rsyslog-mongodbnone pn rsyslog-mysql | rsyslog-pgsql none pn rsyslog-relp none -- Configuration Files: /etc/logcheck/ignore.d.server/rsyslog [Errno 13] Brak dostępu: u'/etc/logcheck/ignore.d.server/rsyslog' -- no debconf information -- Michał Politowski Talking has been known to lead to communication if practiced carelessly. ---End Message--- ---BeginMessage--- Source: rsyslog Source-Version: 7.6.3-1 We believe that the bug you reported is fixed in the latest version of rsyslog, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 742...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Michael Biebl bi...@debian.org (supplier of updated rsyslog package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Fri, 28 Mar 2014 12:36:45 +0100 Source: rsyslog Binary: rsyslog rsyslog-doc rsyslog-mysql rsyslog-pgsql rsyslog-mongodb rsyslog-gssapi rsyslog-gnutls rsyslog-relp Architecture: source amd64 all Version: 7.6.3-1 Distribution: unstable Urgency: medium Maintainer: Michael Biebl bi...@debian.org Changed-By: Michael Biebl bi...@debian.org Description: rsyslog- reliable system and kernel logging daemon rsyslog-doc - documentation for rsyslog rsyslog-gnutls - TLS protocol support for rsyslog rsyslog-gssapi - GSSAPI authentication and encryption support for rsyslog rsyslog-mongodb - MongoDB output plugin for rsyslog rsyslog-mysql - MySQL output plugin for rsyslog rsyslog-pgsql - PostgreSQL output plugin for rsyslog rsyslog-relp - RELP protocol support for rsyslog Closes: 742113 Changes: rsyslog (7.6.3-1) unstable; urgency=medium . * New upstream release. - Fixes ompipe to properly handle retries and not cause unnecessary suspension messages. (Closes: #742113) * Update watch file, track v7 stable branch. Checksums-Sha1: b8e884be35d6d0bf6268b71eb2bdab9543c84aac 2495 rsyslog_7.6.3-1.dsc 1f6ab5eec635adff84361a376663ca7bd7473f5b 3052448 rsyslog_7.6.3.orig.tar.gz ac45a408d224f600740ebdb47acb8c62ee3034c2 21564 rsyslog_7.6.3-1.debian.tar.xz ce2541b14db6d09ed713c131d75e8d8f5742ea1d 519592 rsyslog_7.6.3-1_amd64.deb 0203eda8cc8c18108c2f21899b70a497d54dd02e 1088224 rsyslog-doc_7.6.3-1_all.deb
Bug#742143: marked as done (rsyslogd-2007: action 'action 17' suspended, next retry is ...)
Your message dated Fri, 28 Mar 2014 12:03:53 + with message-id e1wtvvp-000750...@franck.debian.org and subject line Bug#742113: fixed in rsyslog 7.6.3-1 has caused the Debian Bug report #742113, regarding rsyslogd-2007: action 'action 17' suspended, next retry is ... to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 742113: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742113 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: rsyslog Version: 7.6.2-1 Severity: normal After the daily upgrade of Sid yesterday the new syslog 7.6.2-1 now logs zillions of these messages. ... Mar 19 11:35:27 misery rsyslogd-2007: action 'action 17' suspended, next retry is Wed Mar 19 11:35:57 2014 [try http://www.rsyslog.com/e/2007 ] Mar 19 11:36:40 misery rsyslogd-2007: action 'action 17' suspended, next retry is Wed Mar 19 11:37:10 2014 [try http://www.rsyslog.com/e/2007 ] Mar 19 11:37:45 misery rsyslogd-2007: action 'action 17' suspended, next retry is Wed Mar 19 11:38:15 2014 [try http://www.rsyslog.com/e/2007 ] Mar 19 11:38:49 misery rsyslogd-2007: action 'action 17' suspended, next retry is Wed Mar 19 11:39:19 2014 [try http://www.rsyslog.com/e/2007 ] Mar 19 11:40:01 misery rsyslogd-2007: action 'action 17' suspended, next retry is Wed Mar 19 11:40:31 2014 [try http://www.rsyslog.com/e/2007 ] Mar 19 11:40:40 misery rsyslogd-2007: action 'action 17' suspended, next retry is Wed Mar 19 11:41:10 2014 [try http://www.rsyslog.com/e/2007 ] Mar 19 11:41:53 misery rsyslogd-2007: action 'action 17' suspended, next retry is Wed Mar 19 11:42:23 2014 [try http://www.rsyslog.com/e/2007 ] Mar 19 11:43:30 misery rsyslogd-2007: action 'action 17' suspended, next retry is Wed Mar 19 11:44:00 2014 [try http://www.rsyslog.com/e/2007 ] Mar 19 11:44:19 misery rsyslogd-2007: action 'action 17' suspended, next retry is Wed Mar 19 11:44:49 2014 [try http://www.rsyslog.com/e/2007 ] Mar 19 11:45:01 misery rsyslogd-2007: action 'action 17' suspended, next retry is Wed Mar 19 11:45:31 2014 [try http://www.rsyslog.com/e/2007 ] Mar 19 11:46:03 misery rsyslogd-2007: action 'action 17' suspended, next retry is Wed Mar 19 11:46:33 2014 [try http://www.rsyslog.com/e/2007 ] ... Searching the wisdom of the web I have been unable to find any information on this problem. What is going on here? Downgrading to the immediately previous 7.4.8-1 in Testing resolves the problem. apt-get install rsyslog=7.4.8-1 apt-mark hold rsyslog Bob -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.12-1-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages rsyslog depends on: ii init-system-helpers 1.18 ii initscripts 2.88dsf-51 ii libc62.18-4 ii libee0 0.4.1-1 ii libestr0 0.1.9-1 ii libjson-c2 0.11-3 ii liblogging-stdlog0 1.0.3-1 ii liblognorm0 0.3.7-1 ii libuuid1 2.20.1-5.6 ii lsb-base 4.1+Debian12 ii zlib1g 1:1.2.8.dfsg-1 Versions of packages rsyslog recommends: ii logrotate 3.8.7-1 Versions of packages rsyslog suggests: pn rsyslog-docnone pn rsyslog-gnutls none pn rsyslog-gssapi none pn rsyslog-mongodbnone pn rsyslog-mysql | rsyslog-pgsql none pn rsyslog-relp none -- no debconf information ---End Message--- ---BeginMessage--- Source: rsyslog Source-Version: 7.6.3-1 We believe that the bug you reported is fixed in the latest version of rsyslog, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 742...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Michael Biebl bi...@debian.org (supplier of updated rsyslog package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Fri, 28 Mar 2014 12:36:45 +0100 Source: rsyslog Binary: rsyslog rsyslog-doc rsyslog-mysql rsyslog-pgsql rsyslog-mongodb
Bug#739139: marked as done (python-fixtures: FTBFS: python3.4: not found)
Your message dated Fri, 28 Mar 2014 12:19:39 + with message-id e1wtvl5-zg...@franck.debian.org and subject line Bug#739139: fixed in python-fixtures 0.3.14-1.1 has caused the Debian Bug report #739139, regarding python-fixtures: FTBFS: python3.4: not found to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 739139: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=739139 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Source: python-fixtures Version: 0.3.14-1 Severity: serious From my pbuilder build log: ... byte-compiling /tmp/buildd/python-fixtures-0.3.14/debian/python3-fixtures/usr/lb/python3/dist-packages/fixtures/tests/__init__.py to __init__.cpython-33.pyc byte-compiling /tmp/buildd/python-fixtures-0.3.14/debian/python3-fixtures/usr/lb/python3/dist-packages/fixtures/callmany.py to callmany.cpython-33.pyc running install_egg_info Writing /tmp/buildd/python-fixtures-0.3.14/debian/python3-fixtures/usr/lib/pythn3/dist-packages/fixtures-0.3.14.egg-info /bin/sh: 2: python3.4: not found make[1]: *** [override_dh_auto_install] Error 127 make[1]: Leaving directory `/tmp/buildd/python-fixtures-0.3.14' make: *** [binary] Error 2 dpkg-buildpackage: error: fakeroot debian/rules binary gave error exit status 2 -- Daniel Schepler ---End Message--- ---BeginMessage--- Source: python-fixtures Source-Version: 0.3.14-1.1 We believe that the bug you reported is fixed in the latest version of python-fixtures, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 739...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Jonathan Wiltshire j...@debian.org (supplier of updated python-fixtures package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Sun, 23 Mar 2014 11:21:14 + Source: python-fixtures Binary: python-fixtures python3-fixtures Architecture: source all Version: 0.3.14-1.1 Distribution: unstable Urgency: high Maintainer: Robert Collins robe...@robertcollins.net Changed-By: Jonathan Wiltshire j...@debian.org Description: python-fixtures - PyUnit extension for defining test fixtures outside of test cases python3-fixtures - PyUnit extension for defining test fixtures outside of test cases Closes: 735577 739139 Changes: python-fixtures (0.3.14-1.1) unstable; urgency=high . * Non-maintainer upload. * Depend on python-all and python3-all so that all supported versions are available (Closes: #739139, #735577) * Properly enable tests for all supported versions, and stop ignoring the results Checksums-Sha1: e3fd40d09ae90c0ba1130c52ccbdb872e366f490 2226 python-fixtures_0.3.14-1.1.dsc 77bc325bcff213773e43411f7143937bad62dc88 3516 python-fixtures_0.3.14-1.1.debian.tar.xz 390214a33fd131e95798bb81e992fd7cbf8ccc00 26402 python-fixtures_0.3.14-1.1_all.deb 8b94f18e95e767940366da4eb754f3190570ea9a 25994 python3-fixtures_0.3.14-1.1_all.deb Checksums-Sha256: a43a5ca9423974ffbe70db01e186d18cdc310effd496f3bb0b94828fd96b446a 2226 python-fixtures_0.3.14-1.1.dsc 18b119353b5e38a4d0d95e4349d78bb67439685c81ea0de1c863d0d28efc5632 3516 python-fixtures_0.3.14-1.1.debian.tar.xz cb11b5cb663a87085c2be934991ddee646dee3bc1e2f8ed57e43ace171454f8e 26402 python-fixtures_0.3.14-1.1_all.deb c8120eff2648a1e2eef9107c4f062d98db09ae74d0783a1523e890b5f6771860 25994 python3-fixtures_0.3.14-1.1_all.deb Files: b86513372257c0d4a01be17ceaa852ce 2226 python optional python-fixtures_0.3.14-1.1.dsc 5c337daa92d44e5c5e559aaee6a50525 3516 python optional python-fixtures_0.3.14-1.1.debian.tar.xz 1ff56177320981798c6c8525204a0148 26402 python optional python-fixtures_0.3.14-1.1_all.deb 5b0ebacf2476f5d9c4032bb391f562f4 25994 python optional python3-fixtures_0.3.14-1.1_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v2.0.22 (GNU/Linux) iQIcBAEBAgAGBQJTLsoIAAoJEFC7AtTIpr9hQmIP/1taml6KWCkCNSOV5qqODk2c Wo4T0I7oGNRvUSX3sx4uq+reMgc6+mxtCoEFZpvJdfjuTFLmeSSC2NV4jhZn8OXD pj+fYQR1UqtHhX4xGG+H1LO0GEpnZLE5n2IQzWfZhfcfl06xCbN1KbJWDO8NwVwK DWcGJXAZsRU5mwxApsqTBwrVI9fFfNgYXyQkO04prict4v3b8n9a//JPDoZEd5Wq 4+vQ4j1VmmW3jvC1NV1WjyTfYAB2QmUgMGKNwzFWIQT6aACkUdHdXtGmbYwHbIC7
Bug#742873: autotrace: CVE-2013-1953
Package: autotrace Severity: grave Tags: security Justification: user security hole Please see https://bugzilla.redhat.com/show_bug.cgi?id=951257 Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#741928: marked as done (/usr/lib/cmake/vtk-6.0/vtkMakeInstantiator.cmake)
Your message dated Fri, 28 Mar 2014 13:01:01 + with message-id e1wtwp7-00062f...@franck.debian.org and subject line Bug#741928: fixed in vtk6 6.0.0-6 has caused the Debian Bug report #741928, regarding /usr/lib/cmake/vtk-6.0/vtkMakeInstantiator.cmake to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 741928: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741928 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: vtk6 Severity: grave Tag: fixed-upstream Package is broken: CMake Error at Utilities/VTK/CMakeLists.txt:22 (include): include could not find load file: /usr/lib/cmake/vtk-6.0/vtkMakeInstantiator.cmake -- Performing Test VTK_HAS_SMARTVOLUMEMAPPER -- Performing Test VTK_HAS_SMARTVOLUMEMAPPER - Success -- Performing Test VTK_HAS_IMAGERESLICEMAPPER -- Performing Test VTK_HAS_IMAGERESLICEMAPPER - Success CMake Error at Utilities/VTK/CMakeLists.txt:113 (VTK_MAKE_INSTANTIATOR3): Unknown CMake command VTK_MAKE_INSTANTIATOR3. See upstream report: http://vtk.org/Bug/view.php?id=14082 ---End Message--- ---BeginMessage--- Source: vtk6 Source-Version: 6.0.0-6 We believe that the bug you reported is fixed in the latest version of vtk6, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 741...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Anton Gladky gl...@debian.org (supplier of updated vtk6 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Thu, 27 Mar 2014 21:54:22 +0100 Source: vtk6 Binary: libvtk6 libvtk6-dev libvtk6-java python-vtk6 tcl-vtk6 vtk6 vtk6-doc vtk6-examples Architecture: source amd64 all Version: 6.0.0-6 Distribution: unstable Urgency: medium Maintainer: Debian Science Team debian-science-maintain...@lists.alioth.debian.org Changed-By: Anton Gladky gl...@debian.org Description: libvtk6- Visualization Toolkit - A high level 3D visualization library - r libvtk6-dev - VTK header files for building C++ code libvtk6-java - Visualization Toolkit - A high level 3D visualization library - j python-vtk6 - Python bindings for VTK tcl-vtk6 - Tcl bindings for VTK vtk6 - Binaries for VTK6 vtk6-doc - VTK class reference documentation vtk6-examples - C++, Tcl and Python example programs/scripts for VTK Closes: 741927 741928 742629 Changes: vtk6 (6.0.0-6) unstable; urgency=medium . * [932d19c] Add some more entries in Depends section of libvtk6-dev. (Closes: #742629) * [efbf5d1] Fix VTKTargets.cmake. (Closes: #741927) * [7ee8293] Build instantiator. (Closes: #741928) Checksums-Sha1: 8329dea095713764bcbdb25024f2879de84d3edc 3135 vtk6_6.0.0-6.dsc 55b02db3be75b958427b520a0bfc06e0ef9d168e 20360 vtk6_6.0.0-6.debian.tar.xz 6b73c4b454e7f2706467b39deb0feaf9fe7de4fa 21991704 libvtk6_6.0.0-6_amd64.deb c79c6faabcf1bebd660aa8408fcf5e7efeb1e550 15712144 libvtk6-dev_6.0.0-6_amd64.deb 97b63fc75b91274980aa5778740452d83465ee3b 3170984 libvtk6-java_6.0.0-6_amd64.deb 5db33b9587e18b17e69ec8dae4185aa77378f277 187946 python-vtk6_6.0.0-6_amd64.deb bb272b32eccc29431533c40e67545322e6b7c69b 118464 tcl-vtk6_6.0.0-6_amd64.deb d6fc2636493404b9859a944ab1fb6a9ed6c22393 160948 vtk6_6.0.0-6_amd64.deb b5bd8f35d8286b04994f7154004c9a8e866aee11 65450 vtk6-doc_6.0.0-6_all.deb fba59c466e1a69905ff64cc68360895a330bfa4f 577986 vtk6-examples_6.0.0-6_all.deb Checksums-Sha256: b62073c4c2be2b578e11476ca17f51b02f01cd274cc48420a55d107c66b13f97 3135 vtk6_6.0.0-6.dsc 4b9c7ed3c41e9c299e6af7704592ad877f9d2177f1c6f0982997530f516421df 20360 vtk6_6.0.0-6.debian.tar.xz 14ab24896f0dfd5b37fbc88a54cd706d30e1806380b8b76639fe85c8a3a5f320 21991704 libvtk6_6.0.0-6_amd64.deb bfc6194742112782de9a80071eb66edc949fa571cd153f3a3df7d510ea0c3856 15712144 libvtk6-dev_6.0.0-6_amd64.deb c25962c6332048b7cb735c9533de91bef2a72bb356b5ed7e2e7c48558d03411f 3170984 libvtk6-java_6.0.0-6_amd64.deb 7004d7b3aec3f8f81f9cd06b1214c8607218a82f19db42d6f4cb14f37c7be29d 187946 python-vtk6_6.0.0-6_amd64.deb 9622edd2979ee88e68fbfa93c5b148f714731f9af9a7d4c30e8ab5685825eafc 118464 tcl-vtk6_6.0.0-6_amd64.deb abdf95d233388e6dab969e795dfeaac5f51aeeb74dbf474faa80e356e74cda41 160948
Bug#740097: nvidia-legacy-304xx-kernel-source: Module can not be loaded for Linux 3.13
Hi! This issue is resolved by importing the latest upstream version of the proprietary driver obtained from [1] and [2]. I did that for the Wheezy clients at work by simply obtaining the source package for the current version from wheezy-backports, replacing the two driver packages with the new ones, adding a Debian changelog entry and rebuilding the package. I would refrain from using any hacks trying to resolve the issue since might have negative impacts on the performance or stability of the driver package. I would suggest rising package urgency to high for the upload. Cheers, Adrian [1] http://www.nvidia.com/Download/driverResults.aspx/73965/en-us [2] http://www.nvidia.com/Download/driverResults.aspx/73966/en-us -- .''`. John Paul Adrian Glaubitz : :' : Debian Developer - glaub...@debian.org `. `' Freie Universitaet Berlin - glaub...@physik.fu-berlin.de `-GPG: 62FF 8A75 84E0 2956 9546 0006 7426 3B37 F5B5 F913 -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742881: missing license in debian/copyright
Package: camlpdf Version: 1.7.2+1-1 Severity: serious User: alteh...@debian.org Usertags: ftp X-Debbugs-CC: ftpmas...@ftp-master.debian.org thanks Dear Maintainer, please add the missing license of miniz.c to debian/copyright. Thanks! Thorsten -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#711787: falconpl: FTBFS on mipsen
Hi,
Falcon has it own basic memory manager functions.
In these functions, during memory allocation,
the size of allocated memory is expanded by sizeof(size_t)
[4 bytes, on 32-bit MIPS],
which is used for saving an amount of allocated memory.
The first 4 bytes are used to store the amount.
Because of that,
the pointer is offset by these 4 bytes and
address of the actual data is not aligned by 8.
Bus Error happens for data with an amount of 8 bytes
or larger, due to usage of 32-bit MIPS
instructions ldc1 and sdc1,
for double type access on address not aligned by 8.
To avoid this behavior I add one more
block of 4 bytes (sizeof(size_t)) during allocation,
to realign the data address.
With these changes I was able to built the falconpl successfully
on my local MIPS board.
Besides that,
I run tests from tests/core/testsuite/.
There were no fails with a Bus Error.
The patch that contains these changes is attached.
Could you consider including this patch?
Thanks,
Dejan
--- a/engine/memory.cpp
+++ b/engine/memory.cpp
@@ -70,7 +70,11 @@
void * DflAccountMemAlloc( size_t amount )
{
+#if defined (__mips__ ) !defined(__mips64)
+ size_t *ret = (size_t*) malloc( amount + 2 * sizeof(size_t) );
+#else
size_t *ret = (size_t*) malloc( amount + sizeof(size_t) );
+#endif
if ( ret == 0 ) {
printf( Falcon: fatal allocation error when allocating %d bytes\n, (int) amount );
exit(1);
@@ -78,7 +82,11 @@
gcMemAccount( amount );
*ret = amount;
+#if defined (__mips__ ) !defined(__mips64)
+ return ret+2;
+#else
return ret+1;
+#endif
}
@@ -87,8 +95,13 @@
if ( mem != 0 )
{
size_t *smem = (size_t*) mem;
+#if defined (__mips__ ) !defined(__mips64)
+ gcMemUnaccount( smem[-2] );
+ free( smem-2 );
+#else
gcMemUnaccount( smem[-1] );
free( smem-1 );
+#endif
}
}
@@ -105,10 +118,18 @@
size_t *smem = (size_t*) mem;
+#if defined (__mips__ ) !defined(__mips64)
+ smem-=2;
+#else
smem--;
+#endif
size_t oldalloc = *smem;
+#if defined (__mips__ ) !defined(__mips64)
+ size_t *nsmem = (size_t*) realloc( smem, amount + 2 * sizeof( size_t ) );
+#else
size_t *nsmem = (size_t*) realloc( smem, amount + sizeof( size_t ) );
+#endif
if ( nsmem == 0 ) {
printf( Falcon: fatal reallocation error when allocating %d bytes\n, (int) amount );
@@ -121,7 +142,11 @@
else
gcMemUnaccount( oldalloc - amount );
+#if defined (__mips__ ) !defined(__mips64)
+ return nsmem+2;
+#else
return nsmem+1;
+#endif
}
Processed: gnome-calculator crash forwarded upstream
Processing control commands: forwarded -1 https://bugzilla.gnome.org/show_bug.cgi?id=727250 Bug #742840 [gnome-calculator] Crashes when typing numbers using a . Set Bug forwarded-to-address to 'https://bugzilla.gnome.org/show_bug.cgi?id=727250'. -- 742840: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742840 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742522: liblasso-perl: Not a CODE reference when using perl binding for Lasso
On Mon, Mar 24, 2014 at 07:25:42PM +0100, David Coutadeur wrote:
Package: liblasso-perl
Version: 2.3.6-2
Severity: grave
Justification: renders package unusable
When using perl Lasso binding on Debian wheezy 32bits,
I get this error message:
PERL_DL_NONLAZY=1 /usr/bin/perl -MExtUtils::Command::MM -e
test_harness(0, 'blib/lib', 'blib/arch') t/*.t
t/Lasso.t .. Not a CODE reference at /usr/lib/perl/5.14/DynaLoader.pm line
207.
END failed--call queue aborted at
/root/lasso-2.4.0-install/bindings/perl/blib/lib/Lasso.pm line 207.
Compilation failed in require at t/Lasso.t line 9.
important fact: the bug is only present in debian wheezy 32bits!
The code is working perfectly on debian squeeze 32 and 64 bits, and on
debian wheezy 64 bits.
Hi,
this is usually a result of compiling perl XS extensions without
$Config{ccflags}, currently resulting in binary incompatibility on 32-bit
architectures. See #628522.
I see bindings/perl/Makefile.am explicitly overrides CCFLAGS with
something that includes $(PERL_CFLAGS), but I can't see any place where
that's initialized. Possibly it would be enough to set PERL_CFLAGS to
the contents of perl -V::ccflags: or something like that.
Hope this helps,
--
Niko Tyni nt...@debian.org
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742522: liblasso-perl: Not a CODE reference when using perl binding for Lasso
Niko Tyni wrote:
this is usually a result of compiling perl XS extensions without
$Config{ccflags}, currently resulting in binary incompatibility on 32-bit
architectures. See #628522.
I see bindings/perl/Makefile.am explicitly overrides CCFLAGS with
something that includes $(PERL_CFLAGS), but I can't see any place where
that's initialized. Possibly it would be enough to set PERL_CFLAGS to
the contents of perl -V::ccflags: or something like that.
Thanks Niko!
David, could you try the attached patch? (I just checked it gets its
PERL_CFLAGS set from perl -V::ccflags:, didn't try building)
It's against the configure.ac of 2.4.0 but it should also apply just
fine on top of 2.3.6.
Fred
From b032ab5d664520933ed174da90e845063a8544f6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Fr=C3=A9d=C3=A9ric=20P=C3=A9ters?= fpet...@entrouvert.com
Date: Fri, 28 Mar 2014 16:45:00 +0100
Subject: [PATCH] perl: get required CFLAGS from $(perl -V::ccflags:)
---
configure.ac | 3 +++
1 file changed, 3 insertions(+)
diff --git a/configure.ac b/configure.ac
index 674a615..0f32ad3 100644
--- a/configure.ac
+++ b/configure.ac
@@ -531,12 +531,15 @@ AC_ARG_ENABLE(perl, [ --disable-perl disable the Perl binding],,
if test X$PERL != X; then
PERLINSTALLSITEARCH=`$PERL -MConfig -e 'print $Config{installsitearch};'`
PERLMAN3DIR=`$PERL -MConfig -e 'print $Config{man3dir};'`
+ PERL_CFLAGS=$($PERL -V::ccflags:)
else
PERLINSTALLSITEARCH=none
PERLMAN3DIR=none
+ PERL_CFLAGS=
fi
AC_SUBST(PERLINSTALLSITEARCH)
AC_SUBST(PERLMAN3DIR)
+AC_SUBST(PERL_CFLAGS)
AC_MSG_CHECKING(for Perl API)
if test X$enable_perl != Xno ; then
--
1.9.1
Processed: Re: [Pkg-utopia-maintainers] Bug#730437: network-manager: fails to start
Processing commands for cont...@bugs.debian.org: tags 730437 + moreinfo unreproducible Bug #730437 [network-manager] network-manager: fails to start Added tag(s) unreproducible and moreinfo. severity 730437 important Bug #730437 [network-manager] network-manager: fails to start Severity set to 'important' from 'serious' thanks Stopping processing here. Please contact me if you need assistance. -- 730437: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=730437 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742894: Incomplete debian/copyright [was: Uploading package(s)]
Package: jabberd2 Version: 2.2.17-1 Severity: serious Justification: Policy 12.5 X-Debbugs-Cc: debian-ment...@lists.debian.org Hi, Is someone willing to upload the new version of the package? It close a bug. The package is here: git://anonscm.debian.org/pkg-xmpp/jabberd2.git At first you should fix lintian error tag: E: jabberd2 source: source-is-missing docs/code/jquery.js In other case this package will be rejected by buildd bot after upload. Next you should update debian/copyright: it is not full now. For example, there are no such copyright holders in it: Tomasz Sterna Adam Strzelecki Free Software Foundation Internet Software Consortium Aladdin Enterprises BBN Technologies Corp. Kungliga Tekniska Hgskolan X Consortium Christof Meerwald Lucas Nussbaum Ubiquecom Inc Harald Braumann Cryptography Research, Inc. Daniel Willmann Kevlin Henney Nicholas J Humfrey SKC, Inc The Apache Group. Also there are files under different licenses and they should be described properly. Best regards, Boris -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742881: camlpdf_1.7.2+1-1_amd64.changes REJECTED
Le 28/03/2014 17:00, Debian FTP Masters a écrit : An exception was raised while processing the package: Traceback (most recent call last): File /srv/ftp-master.debian.org/dak/dak/process_policy.py, line 98, in wrapper function(upload, srcqueue, comments, transaction) File /srv/ftp-master.debian.org/dak/dak/process_policy.py, line 150, in comment_accept transaction.copy_source(upload.source, suite, source_component_func(upload.source), allow_tainted=allow_tainted) File /srv/ftp-master.debian.org/dak/dak/process_policy.py, line 142, in source_component_func .join(Component).one() File /usr/lib/python2.7/dist-packages/sqlalchemy/orm/query.py, line 2193, in one Multiple rows were found for one()) MultipleResultsFound: Multiple rows were found for one() Original comments: [nothing] Is that normal? I've seen #742881, but I wonder what's the point of reporting a bug against a package that is not in the archive whereas there is a natural channel (the REJECTED message) for this kind of thing... Cheers, -- Stéphane -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: tagging 741842
Processing commands for cont...@bugs.debian.org: tags 741842 + pending Bug #741842 [src:parted] parted: FTBFS: ../../parted/ui.c:1444:41: error: 'CPPFunction' undeclared (first use in this function) Added tag(s) pending. thanks Stopping processing here. Please contact me if you need assistance. -- 741842: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741842 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742890: grace: FTBFS due to libxmhtml-dev dependency
Package: grace Version: 1:5.1.23-4 Severity: serious Justification: FTBFS grace currently FTBFS on buildds because it depends on the non-existent libxmhtml-dev package. Samuel -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.13.0 (SMP w/8 CPU cores) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash -- Samuel Client: This program has been successfully installed. Vendeur (surpris): Et où voyez-vous une erreur ? Client: C'est HAS BEEN ! -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742897: [libffi6] 3.1 update makes icedove crash
Package: libffi6
Version: 3.1~rc1-2
Severity: serious
--- Please enter the report below this line. ---
Hi,
libffi broke icedove 24.4.0-1. Gdm3 / gnome shell are broken for me too
but i don't know if it is the same issue. Downgrading to 3.0.13-12 fixed
the issue for me.
Here's a snippet of the stack trace, sorry i didn't have symbols at the
time.
Program received signal SIGSEGV, Segmentation fault.
js::ctypes::CClosure::ClosureStub (cif=0xe04a34c0, result=0xc3f0,
args=0xc390, userData=0x23)
at
/build/icedove-n9H_k3/icedove-24.4.0/mozilla/js/src/ctypes/CTypes.cpp:6114
6114
/build/icedove-n9H_k3/icedove-24.4.0/mozilla/js/src/ctypes/CTypes.cpp:
File o directory non esistente.
(gdb) bt full
#0 js::ctypes::CClosure::ClosureStub (cif=0xe04a34c0,
result=0xc3f0, args=0xc390, userData=0x23)
at
/build/icedove-n9H_k3/icedove-24.4.0/mozilla/js/src/ctypes/CTypes.cpp:6114
cx = optimized out
autoCallback = {cx = 0x0, callback = 0xe1952780, endType =
3784648576}
thisObj = optimized out
rvSize = optimized out
ar = optimized out
ac = {cx_ = 0xe1952780, oldCompartment_ = 0x10010}
cinfo = 0x23
typeObj = optimized out
jsfnObj = optimized out
argv = {JS::AutoVectorRooterJS::Value = {JS::AutoGCRooter
= {down = 0xc03d42e0, tag_ = -436977664, stackTop = 0x0},
vector = {js::TempAllocPolicy = {cx_ = 0xe1952780},
static sElemIsPod = false, static sMaxInlineBytes = 1024, static
sInlineCapacity = 8,
static sInlineBytes = 64, mBegin = 0xf627c813
ReleaseData(void*, unsigned int)+13, mLength = 3857989632, mCapacity =
3784648576,
storage = {u = {
bytes =
\000\000\000\000Mm\002\365\220\303\377\377\200\022)\367p\336\264c\017\000\000\000\250+I\365\300'\225\341\037\000\000\000Mm\002\365\214\276\365\345\300'\225\341x\303\377\377\v\347\\366\214\276\365\345\300'\225,
incomplete sequence \341, _ = 17654793666725675008}},
static sMaxInlineStorage = optimized out}, vectorRoot =
{No data fields}}, No data fields}
#1 0xf7fd55ef in ?? () from /usr/lib/i386-linux-gnu/libffi.so.6
No symbol table info available.
#2 0xf7fd5b26 in ?? () from /usr/lib/i386-linux-gnu/libffi.so.6
No symbol table info available.
#3 0xf3aeb85e in gdk_event_apply_filters (filters=optimized out,
event=0xee7e3060, xevent=0xc520)
at /build/gtk+2.0-FpgWcq/gtk+2.0-2.24.22/gdk/x11/gdkevents-x11.c:356
filter = optimized out
tmp_list = 0xee64a1c0
result = optimized out
--- System information. ---
Architecture: i386
Kernel: Linux 3.12.12
Debian Release: jessie/sid
500 unstableftp.de.debian.org
500 testing ftp.de.debian.org
500 stable dl.google.com
1 experimentalftp.de.debian.org
--- Package information. ---
Depends (Version) | Installed
==-+-===
libc6 (= 2.4) | 2.18-4
Package's Recommends field is empty.
Package's Suggests field is empty.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#741818: tkgate: FTBFS: block.c:1103:20: error: 'Tcl_Interp' has no member named 'result'
Package: tkgate Version: 2.0~b10-3 Followup-For: Bug #741818 User: debian-de...@lists.debian.org Usertags: origin-ubuntu trusty ubuntu-patch Dear Maintainer, In Ubuntu 14.04, the attached patch was applied to achieve the following: * Resolve FTBFS: - Use Tcl/Tk 8.5 as build-dependencies; - Use autotools-dev helper for newer arches. This debdiff may contain extraneous metadata. If so, kindly please ignore them. Thanks for considering the patch! -- System Information: Debian Release: wheezy/sid APT prefers precise-updates APT policy: (500, 'precise-updates'), (500, 'precise-security'), (500, 'precise-proposed'), (500, 'precise'), (100, 'precise-backports') Architecture: amd64 (x86_64) Kernel: Linux 3.11.0-19-generic (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash diff -u tkgate-2.0~b10/debian/changelog tkgate-2.0~b10/debian/changelog diff -u tkgate-2.0~b10/debian/control tkgate-2.0~b10/debian/control --- tkgate-2.0~b10/debian/control +++ tkgate-2.0~b10/debian/control @@ -1,11 +1,12 @@ Source: tkgate Section: electronics Priority: optional -Maintainer: Debian Science Maintainers debian-science-maintain...@lists.alioth.debian.org +Maintainer: Ubuntu Developers ubuntu-devel-disc...@lists.ubuntu.com +XSBC-Original-Maintainer: Debian Science Maintainers debian-science-maintain...@lists.alioth.debian.org Uploaders: أحمد المحمودي (Ahmed El-Mahmoudy) aelmahmo...@users.sourceforge.net, Georges Khaznadar georg...@debian.org Standards-Version: 3.9.5 -Build-Depends: debhelper (=7.0.50~), tcl-dev, tk-dev, bison|byacc, flex, +Build-Depends: debhelper (=7.0.50~), tcl8.5-dev, tk8.5-dev, bison|byacc, flex, xutils-dev, libx11-dev, quilt (= 0.46-7~), autotools-dev, hardening-wrapper Homepage: http://www.tkgate.org/ diff -u tkgate-2.0~b10/debian/rules tkgate-2.0~b10/debian/rules --- tkgate-2.0~b10/debian/rules +++ tkgate-2.0~b10/debian/rules @@ -5,7 +5,7 @@ export DEB_BUILD_HARDENING=1 %: - dh $@ --with quilt + dh $@ --with quilt,autotools_dev override_dh_auto_configure: dh_auto_configure -- LDFLAGS=$(LDFLAGS) -Wl,--as-needed -lm @@ -21 +21 @@ - rm -f libexec/* \ No newline at end of file + rm -f libexec/*
Bug#723050: can't log in
Hello Maximiliano, Thanks for still being around my bug report :-) I don't know if the problem is still reproduceable for you, it was never reproduceable for me. I am still using the same machine, and though up-to-date, this bug is still here. :( But if you do, could you check the permissions of the /sbin/unix_chkpwd command? Permissions on unix_chkpwd seems to be correct with setgid shadow: -rwxr-sr-x 1 root shadow 35K 02-14 00:27 /sbin/unix_chkpwd* it uses the /etc/pam.d/other pam service. And here is my /etc/pam.d/other: # # # /etc/pam.d/other - specify the PAM fallback behaviour # # Note that this file is used for any unspecified service; for example #if /etc/pam.d/cron specifies no session modules but cron calls #pam_open_session, the session module out of /etc/pam.d/other is #used. If you really want nothing to happen then use pam_permit.so or #pam_deny.so as appropriate. # We fall back to the system default in /etc/pam.d/common-* # @include common-auth @include common-account @include common-password @include common-session # Thank you. -- Mathieu -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742840: gnome-calculator crash forwarded upstream
Control: forwarded -1 https://bugzilla.gnome.org/show_bug.cgi?id=727250 I forwarded the bug upstream. Regards, Andreas Henriksson -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#735921: marked as done (implicit declaration of function 'strcasestr' on 64bit targets)
Your message dated Fri, 28 Mar 2014 15:36:20 + with message-id e1wtypq-0001bd...@franck.debian.org and subject line Bug#735921: fixed in radare2 0.9.6-3.1 has caused the Debian Bug report #735921, regarding implicit declaration of function 'strcasestr' on 64bit targets to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 735921: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=735921 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: radare2 Version: 0.9.6-2 Severity: serious Tags: sid jessie gcc -c -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -MD -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -MD -D_FORTIFY_SOURCE=2 -fPIC -g -Wall -D__UNIX__=1 -I/build/buildd/radare2-0.9.6/libr/include -DGIT_TAP=\0.9.6\ -o str.o str.c str.c: In function 'r_str_casestr': str.c:977:2: warning: implicit declaration of function 'strcasestr' [-Wimplicit-function-declaration] return strcasestr (a, b); ^ str.c:977:2: warning: return makes pointer from integer without a cast [enabled by default] Function `strcasestr' implicitly converted to pointer at str.c:977 Like an include missing. ---End Message--- ---BeginMessage--- Source: radare2 Source-Version: 0.9.6-3.1 We believe that the bug you reported is fixed in the latest version of radare2, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 735...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Steve McIntyre 93...@debian.org (supplier of updated radare2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Sun, 23 Mar 2014 14:38:44 + Source: radare2 Binary: radare2 radare2-plugins libradare2-0.9.6 libradare2-dev libradare2-0.9.6-dbg libradare2-common Architecture: source amd64 all Version: 0.9.6-3.1 Distribution: unstable Urgency: medium Maintainer: David Martínez Moreno en...@debian.org Changed-By: Steve McIntyre 93...@debian.org Description: libradare2-0.9.6 - libraries from the radare2 suite libradare2-0.9.6-dbg - debug symbols for libraries from radare suite libradare2-common - arch independent files from the radare2 suite libradare2-dev - devel files from the radare2 suite radare2- free and advanced command line hexadecimal editor radare2-plugins - plugins for radare2 Closes: 735921 Changes: radare2 (0.9.6-3.1) unstable; urgency=medium . * debian/patches/12_fix_strcasestr_declaration: Add #define _GNU_SOURCE as well, to get the definition of strcasestr (closes: #735921). Checksums-Sha1: 89bbf96b87cbe5d9cd194dbec4305bb3aaf0d8c4 2292 radare2_0.9.6-3.1.dsc 949b738f5b08de45eddb69e86c6750c30bc0d4bf 15472 radare2_0.9.6-3.1.debian.tar.xz af9dfbb16ec5eb8d0357aa111e6c30d05c5acb70 132070 radare2_0.9.6-3.1_amd64.deb 47e42a578e8f5136515ea79e8d58a73d0d9596ab 60618 radare2-plugins_0.9.6-3.1_amd64.deb 1b3d3eb67b273815b6de8bb56b101ceeff5dce26 1399648 libradare2-0.9.6_0.9.6-3.1_amd64.deb 23d589f4ef3883ab08ba758b8920943875d77392 143240 libradare2-dev_0.9.6-3.1_amd64.deb f8dd30e38dd3c8c9e383d45c8f8f1e24b1dbf959 4446598 libradare2-0.9.6-dbg_0.9.6-3.1_amd64.deb 112a27eb293339744c45eb08f0ec9d5fa8ecc71a 173202 libradare2-common_0.9.6-3.1_all.deb Checksums-Sha256: 0dd3c8ed171951e1409a68d78d6d22cf671b9c862609166fd257b0ed2aec4f7a 2292 radare2_0.9.6-3.1.dsc 38f3d498a54dc80ec3007ea4a06c55229a968fef467c2cf0e8e0c262322da1d0 15472 radare2_0.9.6-3.1.debian.tar.xz afc37ac8c7dc508d7ab4969e6f129c54f87053e392bd96364478bcd5ad249fc2 132070 radare2_0.9.6-3.1_amd64.deb ed556ab93aa23f53667fc29a58786486cc843fc6984467d32f96827b80355a4e 60618 radare2-plugins_0.9.6-3.1_amd64.deb 7a6924fc7cf0eb02f2cbc3d259aef94950634a3b0acbfee5ef490f0178f6e97f 1399648 libradare2-0.9.6_0.9.6-3.1_amd64.deb 88530a146c9e629c558632f255a2a91895c25a06f7caf7e99dff300d93cd315e 143240 libradare2-dev_0.9.6-3.1_amd64.deb 971f6a50676725b0a7d503397211e9b16a7f7fcfd1b9e06867562ef55d7e5223 4446598 libradare2-0.9.6-dbg_0.9.6-3.1_amd64.deb
Bug#734789: [CVE-2013-7284] Remote pre-authentication code execution in PlRPC
On Thu, Jan 09, 2014 at 09:01:53PM +0100, Florian Weimer wrote: Package: libplrpc-perl Severity: grave Version: 0.2020-2 Tags: security upstream The PlRPC module uses Storable in an unsafe way, leading to a remote code execution vulnerability (in both the client and the server). Upstream bug report: https://rt.cpan.org/Public/Bug/Display.html?id=90474 A fix (which is not yet available) requires a protocol change. I think we should remove the package from the distribution instead. Anibal, what's the status? Do you agree with the removal? Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742897: downgrade fixed gdm3 too
Hi, downgrading libffi version fixed being able to login from gdm too. thanks, riccardo -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#741842: marked as done (parted: FTBFS: ../../parted/ui.c:1444:41: error: 'CPPFunction' undeclared (first use in this function))
Your message dated Fri, 28 Mar 2014 18:18:55 + with message-id e1wtbml-00058l...@franck.debian.org and subject line Bug#741842: fixed in parted 2.3-17 has caused the Debian Bug report #741842, regarding parted: FTBFS: ../../parted/ui.c:1444:41: error: 'CPPFunction' undeclared (first use in this function) to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 741842: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741842 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Source: parted Version: 2.3-16 Severity: serious Tags: jessie sid User: debian...@lists.debian.org Usertags: qa-ftbfs-20140315 qa-ftbfs Justification: FTBFS on amd64 Hi, During a rebuild of all packages in sid, your package failed to build on amd64. On new readline versions old-style function typedefs have been deprecated. Relevant part (hopefully): x86_64-linux-gnu-gcc -std=gnu99 -I. -I../../parted -I../lib -I../../lib -I../../include -D_FORTIFY_SOURCE=2 -DBUILDINFO= -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -Werror -MT parted-ui.o -MD -MP -MF .deps/parted-ui.Tpo -c -o parted-ui.o `test -f 'ui.c' || echo '../../parted/'`ui.c ../../parted/ui.c: In function 'init_readline': ../../parted/ui.c:1444:41: error: 'CPPFunction' undeclared (first use in this function) rl_attempted_completion_function = (CPPFunction*) complete_function; ^ ../../parted/ui.c:1444:41: note: each undeclared identifier is reported only once for each function it appears in ../../parted/ui.c:1444:53: error: expected expression before ')' token rl_attempted_completion_function = (CPPFunction*) complete_function; ^ make[4]: *** [parted-ui.o] Error 1 The full build log is available from: http://aws-logs.debian.net/ftbfs-logs/2014/03/15/parted_2.3-16_unstable.log A list of current common problems and possible solutions is available at http://wiki.debian.org/qa.debian.org/FTBFS . You're welcome to contribute! About the archive rebuild: The rebuild was done on EC2 VM instances from Amazon Web Services, using a clean, minimal and up-to-date chroot. Every failed build was retried once to eliminate random failures. ---End Message--- ---BeginMessage--- Source: parted Source-Version: 2.3-17 We believe that the bug you reported is fixed in the latest version of parted, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 741...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Colin Watson cjwat...@debian.org (supplier of updated parted package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Fri, 28 Mar 2014 17:49:47 + Source: parted Binary: parted parted-udeb libparted0 libparted0debian1 libparted0-udeb libparted0-i18n libparted0-dev libparted0debian1-dbg parted-doc Architecture: source i386 all Version: 2.3-17 Distribution: unstable Urgency: low Maintainer: Parted Maintainer Team parted-maintain...@lists.alioth.debian.org Changed-By: Colin Watson cjwat...@debian.org Description: libparted0 - disk partition manipulator - dummy package libparted0-dev - disk partition manipulator - development files libparted0-i18n - disk partition manipulator - i18n support libparted0-udeb - disk partition manipulator - library udeb (udeb) libparted0debian1 - disk partition manipulator - shared library libparted0debian1-dbg - disk partition manipulator - debugging symbols parted - disk partition manipulator parted-doc - disk partition manipulator - documentation parted-udeb - Manually partition a hard drive (parted) (udeb) Closes: 741842 742847 Changes: parted (2.3-17) unstable; urgency=low . [ Phillip Susi ] * avoid-disturbing-partitions.patch: remove all old partitions (that are not unchanged) first, then add new ones. This avoids an EBUSY trying to add new partitions that overlap with old ones that have a higher number (closes: #742847, LP: #1220165). * fix-loop-labels.patch: Fix loop labels (filesystem on whole disk device). . [ Colin Watson ] * Slight tweak to
Processed: tagging 734342
Processing commands for cont...@bugs.debian.org: tags 734342 + pending Bug #734342 [ruby-luabridge] ruby-luabridge: Please migrate to Ruby 1.9/2.0 Added tag(s) pending. thanks Stopping processing here. Please contact me if you need assistance. -- 734342: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=734342 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742840: Some more info on gnome-calculator crash with , separator
Hello! I can confirm the crash when using , in gnome-calculator 3.12. It seems to have been introduced with this upstream commit: https://git.gnome.org/browse/gnome-calculator/commit?id=4d64dc9180fd8c54368e26b2da08fcc95f232c10https://git.gnome.org/browse/gnome-calculator/ See: https://git.gnome.org/browse/gnome-calculator/tree/src/math-display.vala#n453 Gtk.TextBuffer text_buffer = context.get_iter ().get_buffer (); get_iter() here seems to return a pointer to an iter-struct with all fields set to 0x0. When this (invalid?) iter is passed to get_buffer () it crashes. Note that several critical warnings has been issued before reaching this crash. Also note that reverting the change doesn't make ',' usable. See upstream bug- reports about introducing support for using ',' as a decimal separator. Regards, Andreas Henriksson -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742706: ruby-net-ldap: CVE-2014-0083
Hello Moritz, thanks for your report. I have checked the version in Debian, and I think they are not affected by this SSHA salt problem: http://anonscm.debian.org/gitweb/?p=pkg-ruby-extras/ruby-net-ldap.git;a=blob;f=lib/net/ldap/password.rb;h=503c7fe6b30870a7a33890f74b1da060cff40399;hb=HEAD Upstream (newer version) with SSHA: https://github.com/ruby-ldap/ruby-net-ldap/blob/master/lib/net/ldap/password.rb I think we can close the bug? Greets, Jonas signature.asc Description: PGP signature
Bug#742862: [Pkg-openldap-devel] Bug#742862: upgrade to 2.4.39-1 breaks slapd
Hi Erwan, Can you attach the configuration (slapcat of cn=config, remove passwords/sensitive info) that reproduces this? Are /var/lib/ldap and all the files in it actually owned by openldap:openldap? -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#730437: [Pkg-utopia-maintainers] Bug#730437: network-manager: fails to start
tags 730437 + moreinfo unreproducible severity 730437 important thanks Hi Lucas, Am 15.12.2013 20:32, schrieb Lucas Nussbaum: On 11/12/13 at 11:44 +0100, Laurent Bigonville wrote: Hi, Well, the problem here is the missing NetworkManager-dispatcher.service service file, I've fix this in the git repository[0]. Could you please try to remove the symlink you have created and install this file instead? Thanks, Laurent Bigonville [0]http://anonscm.debian.org/gitweb/?p=pkg-utopia/network-manager.git;a=commitdiff;h=4f5bce36fa1480b213c770fd4cdcbb35bb954b22 Hi Laurent, I'm sorry, the machine where I encountered that problem is now running in an environment where I can't mess with network-manager :( So, the NetworkManager-dispatcher issue has been solved by bigon's upload. The /run/network/ifstate related crash I cannot reproduce. I tested with unmanaged devices, manually removing /run/network/ifstate and this all was handled properly. Thus I'm downgrading the severity and marking the bug accordingly. Lucas, did you enable connectivity check support in your NetworkManager.conf? If you still have the /etc/NetworkManager/NetworkManager.conf from the system where the crash occurs, could you please attach it? Thanks, Michael -- Why is it that all of the instruments seeking intelligent life in the universe are pointed away from Earth? signature.asc Description: OpenPGP digital signature
Bug#723050: can't log in
¡Hola Mathieu! El 2014-03-28 a las 19:12 +0100, Mathieu MD escribió: But if you do, could you check the permissions of the /sbin/unix_chkpwd command? Permissions on unix_chkpwd seems to be correct with setgid shadow: -rwxr-sr-x 1 root shadow 35K 02-14 00:27 /sbin/unix_chkpwd* And the password of your user is in /etc/shadow which is readable by the shadow group? It might be interesting to know if /sbin/unix_chkpwd is being called at all, using second session and strace you can check this, so you lock your screen and from another session, you'll need to find the pid of your screensaver, it can be kscreensaver, xscreensaver, or in my case plasma_overlay, then: $ strace -vfp $pid_of_screensaver -e execve Try to unlock the screensaver and check the logged output. The output shouldn't be more than 30 lines, if it's more, redirect it into a file and attach the file here. -- La duración de un minuto depende de que lado del baño estés. -- Ley de la Relatividad (Burke) Saludos /\/\ /\ `/ signature.asc Description: Digital signature
Bug#742706: ruby-net-ldap: CVE-2014-0083
Hi Jonas, hi Moritz, On Fri, Mar 28, 2014 at 07:49:18PM +0100, Jonas Genannt wrote: Hello Moritz, thanks for your report. I have checked the version in Debian, and I think they are not affected by this SSHA salt problem: http://anonscm.debian.org/gitweb/?p=pkg-ruby-extras/ruby-net-ldap.git;a=blob;f=lib/net/ldap/password.rb;h=503c7fe6b30870a7a33890f74b1da060cff40399;hb=HEAD Upstream (newer version) with SSHA: https://github.com/ruby-ldap/ruby-net-ldap/blob/master/lib/net/ldap/password.rb I think we can close the bug? I think you are right. The SSHA support was included upstream in v0.5.0 according to git blame. So as long in Debian we do not have an upload of current version of ruby-net-ldap we could close this bug. I have marked the entry as not-affected but added the above note about version introducing the support. AFAICS (only from a very quick look) upstream has not yet fixed this issue. Regards, Salvatore -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742902: a2ps: CVE-2014-0466: does not invoke gs with -dSAFER
Package: a2ps Version: 1:4.14-1.2 Severity: grave Tags: security fixps does not invoke gs with -dSAFER. As a consequence, a malicious PostScript file could delete files with the privileges of the invoking user. I have provided a test script that can be invoked as such: ./test-wrapper-fixps fixps This was reported to the Debian Security Team, who assigned this CVE-2014-0466. It was also reported to upstream, who has not provided an update or issued a fixed version. This is being reported publicly as over 45 days has elapsed and neither upstream nor the security team has requested a delay or issued an advisory. -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.14-rc7-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages a2ps depends on: ii file 1:5.17-1 ii libc6 2.18-4 ii libpaper1 1.1.24+nmu2 ii psutils1.17.dfsg-1 Versions of packages a2ps recommends: ii bzip2 1.0.6-5 ii cups-bsd [lpr] 1.7.1-10 ii wdiff 1.2.1-2 Versions of packages a2ps suggests: pn emacsen-common none ii ghostscript 9.05~dfsg-8+b1 ii groff1.22.2-5 pn gv none pn html2ps none ii imagemagick 8:6.7.7.10+dfsg-1 pn t1-cyrillic none ii texlive-binaries [texlive-base-bin] 2013.20130729.30972-2+b2 -- no debconf information -- brian m. carlson / brian with sandals: Houston, Texas, US +1 832 623 2791 | http://www.crustytoothpaste.net/~bmc | My opinion only OpenPGP: RSA v4 4096b: 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187 #!/bin/sh # test-wrapper: test if a program is running gs without -dSAFER # # Usage: test-wrapper program --option --option2 TEMPDIR=`mktemp -d` [ -n $TEMPDIR ] || exit 1 touch $TEMPDIR/remove-me groff -Tps EOM | sed -e '/%%Pages/d' $TEMPDIR/exploit.ps Text \X'ps: exec ($TEMPDIR/remove-me) deletefile' More text. EOM $@ $TEMPDIR/exploit.ps /dev/null if [ -e $TEMPDIR/remove-me ] then printf Program is not vulnerable.\n else printf Program is VULNERABLE!\n fi rm -r -- $TEMPDIR signature.asc Description: Digital signature
Bug#736708: marked as done (/usr/share/pulseaudio/alsa-mixer/profiles belongs in /etc)
Your message dated Fri, 28 Mar 2014 21:01:48 +0100
with message-id 20140328200148.ga15...@dusk.luon.net
and subject line Re: Bug#736708: /usr/share/pulseaudio/alsa-mixer/profiles
belongs in /etc
has caused the Debian Bug report #736708,
regarding /usr/share/pulseaudio/alsa-mixer/profiles belongs in /etc
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
736708: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=736708
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
---BeginMessage---
Package: pulseaudio
Version: 4.0-6+b1
Severity: serious
In order to get 7.1 sound working over HDMI, you must edit files in
/usr/share/pulseaudio/alsa-mixer/profile-sets.
You can edit udev rules to get the extra-hdmi profile set to be used,
but that doesn't have anything above 5.1.
From what I was able to disocver by STFW, upstream doesn't ship a 7.1
profile because the channel mapping is system-specific, and needs to be
set up by the administrator. Having used multiple HDMI cards, I agree.
I've even seen it change from one driver version to the next...
There are apparently three ways to do this:
1. Edit default.conf. By far the easiest!
2. Write udev rules to set ENV{PULSE_PROFILE_SET} to something, and then
edit that profile set. You have to put your custom file in
/usr/share/pulseaudio/alsa-mixer/profile-sets/ at least as far as I
can see in the docs.
3. Disable module-udev-detect, and load all your modules by hand. Then
you can pass a profile set to module-alsa-card, which is documented
to allow a absolute path, so you can actually put it in /etc. Not
really acceptable, since you have to disable udev-detect first.
The configuration files really need to be moved to /etc and treated as
configuration files (e.g., not overwritten on upgrade).
-- System Information:
Debian Release: jessie/sid
APT prefers testing
APT policy: (500, 'testing'), (150, 'unstable'), (125, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.12-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
---End Message---
---BeginMessage---
On Sun, Jan 26, 2014 at 03:40:35AM -0500, Anthony DeRobertis wrote:
1. Edit default.conf. By far the easiest!
2. Write udev rules to set ENV{PULSE_PROFILE_SET} to something, and then
edit that profile set. You have to put your custom file in
/usr/share/pulseaudio/alsa-mixer/profile-sets/ at least as far as I
can see in the docs.
3. Disable module-udev-detect, and load all your modules by hand. Then
you can pass a profile set to module-alsa-card, which is documented
to allow a absolute path, so you can actually put it in /etc. Not
really acceptable, since you have to disable udev-detect first.
The configuration files really need to be moved to /etc and treated as
configuration files (e.g., not overwritten on upgrade).
I don't regard this files as use-editable configuration, so no they shouldn't
be in /etc.. the udev rule does allow you to use an absolute path, although a
nicer way overriding in edge cases might indeed be useful
--
Certainly the game is rigged.
Don't let that stop you; if you don't bet, you can't win.
-- Robert Heinlein, Time Enough For Love---End Message---
Bug#741927: marked as done (The imported target vtkWrapTcl references the file)
Your message dated Fri, 28 Mar 2014 13:01:01 + with message-id e1wtwp7-000628...@franck.debian.org and subject line Bug#741927: fixed in vtk6 6.0.0-6 has caused the Debian Bug report #741927, regarding The imported target vtkWrapTcl references the file to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 741927: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741927 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: vtk6 Severity: grave I cannot use libvtk6-dev, it always request for stuff I do not need/do not use. Technically this will breaks gdcm compilation (maybe other?) when we move to vtk6, marking as grave. [*] CMake Error at /usr/lib/cmake/vtk-6.0/VTKTargets.cmake:1519 (message): The imported target vtkWrapTcl references the file /usr/bin/vtkWrapTcl-6.0 but this file does not exist. Possible reasons include: * The file was deleted, renamed, or moved to another location. * An install or uninstall procedure did not complete successfully. * The installation package was faulty and contained /usr/lib/cmake/vtk-6.0/VTKTargets.cmake but not all the files it references. Call Stack (most recent call first): /usr/lib/cmake/vtk-6.0/VTKConfig.cmake:49 (include) /usr/share/cmake-2.8/Modules/FindVTK.cmake:73 (find_package) CMakeLists.txt:639 (find_package) ---End Message--- ---BeginMessage--- Source: vtk6 Source-Version: 6.0.0-6 We believe that the bug you reported is fixed in the latest version of vtk6, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 741...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Anton Gladky gl...@debian.org (supplier of updated vtk6 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Thu, 27 Mar 2014 21:54:22 +0100 Source: vtk6 Binary: libvtk6 libvtk6-dev libvtk6-java python-vtk6 tcl-vtk6 vtk6 vtk6-doc vtk6-examples Architecture: source amd64 all Version: 6.0.0-6 Distribution: unstable Urgency: medium Maintainer: Debian Science Team debian-science-maintain...@lists.alioth.debian.org Changed-By: Anton Gladky gl...@debian.org Description: libvtk6- Visualization Toolkit - A high level 3D visualization library - r libvtk6-dev - VTK header files for building C++ code libvtk6-java - Visualization Toolkit - A high level 3D visualization library - j python-vtk6 - Python bindings for VTK tcl-vtk6 - Tcl bindings for VTK vtk6 - Binaries for VTK6 vtk6-doc - VTK class reference documentation vtk6-examples - C++, Tcl and Python example programs/scripts for VTK Closes: 741927 741928 742629 Changes: vtk6 (6.0.0-6) unstable; urgency=medium . * [932d19c] Add some more entries in Depends section of libvtk6-dev. (Closes: #742629) * [efbf5d1] Fix VTKTargets.cmake. (Closes: #741927) * [7ee8293] Build instantiator. (Closes: #741928) Checksums-Sha1: 8329dea095713764bcbdb25024f2879de84d3edc 3135 vtk6_6.0.0-6.dsc 55b02db3be75b958427b520a0bfc06e0ef9d168e 20360 vtk6_6.0.0-6.debian.tar.xz 6b73c4b454e7f2706467b39deb0feaf9fe7de4fa 21991704 libvtk6_6.0.0-6_amd64.deb c79c6faabcf1bebd660aa8408fcf5e7efeb1e550 15712144 libvtk6-dev_6.0.0-6_amd64.deb 97b63fc75b91274980aa5778740452d83465ee3b 3170984 libvtk6-java_6.0.0-6_amd64.deb 5db33b9587e18b17e69ec8dae4185aa77378f277 187946 python-vtk6_6.0.0-6_amd64.deb bb272b32eccc29431533c40e67545322e6b7c69b 118464 tcl-vtk6_6.0.0-6_amd64.deb d6fc2636493404b9859a944ab1fb6a9ed6c22393 160948 vtk6_6.0.0-6_amd64.deb b5bd8f35d8286b04994f7154004c9a8e866aee11 65450 vtk6-doc_6.0.0-6_all.deb fba59c466e1a69905ff64cc68360895a330bfa4f 577986 vtk6-examples_6.0.0-6_all.deb Checksums-Sha256: b62073c4c2be2b578e11476ca17f51b02f01cd274cc48420a55d107c66b13f97 3135 vtk6_6.0.0-6.dsc 4b9c7ed3c41e9c299e6af7704592ad877f9d2177f1c6f0982997530f516421df 20360 vtk6_6.0.0-6.debian.tar.xz 14ab24896f0dfd5b37fbc88a54cd706d30e1806380b8b76639fe85c8a3a5f320 21991704 libvtk6_6.0.0-6_amd64.deb bfc6194742112782de9a80071eb66edc949fa571cd153f3a3df7d510ea0c3856 15712144 libvtk6-dev_6.0.0-6_amd64.deb c25962c6332048b7cb735c9533de91bef2a72bb356b5ed7e2e7c48558d03411f 3170984 libvtk6-java_6.0.0-6_amd64.deb
Bug#742405: zookeeper ftbfs without openjdk
Hi, On 24/03/14 22:42, Tim Retout wrote: In the absence of any other suggestions, I've filed http://bugs.debian.org/742544 to request removal of the binaries from the architectures where zookeeper fails to build. Once that's done, I'll drop the severity of this bug. This doesn't seem right to me. zookeeper ftbfs without openjdk sounds like a build dependency should be more specific - instead of depending on default-jdk (which may or may not be suitable). Regards, -- Steven Chamberlain ste...@pyro.eu.org -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: user debian-secur...@lists.debian.org, usertagging 742902, found 742902 in 1:4.14-1
Processing commands for cont...@bugs.debian.org: user debian-secur...@lists.debian.org Setting user to debian-secur...@lists.debian.org (was car...@debian.org). usertags 742902 + tracked There were no usertags set. Usertags are now: tracked. found 742902 1:4.14-1 Bug #742902 [a2ps] a2ps: CVE-2014-0466: does not invoke gs with -dSAFER Marked as found in versions a2ps/1:4.14-1. thanks Stopping processing here. Please contact me if you need assistance. -- 742902: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742902 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: python-naturalsort: diff for NMU version 1.0.3-1.1
Processing commands for cont...@bugs.debian.org: tags 725563 + patch Bug #725563 [src:python-naturalsort] python-naturalsort: FTBFS: ImportError: No module named setuptools Added tag(s) patch. tags 725563 + pending Bug #725563 [src:python-naturalsort] python-naturalsort: FTBFS: ImportError: No module named setuptools Added tag(s) pending. thanks Stopping processing here. Please contact me if you need assistance. -- 725563: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=725563 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#725563: python-naturalsort: diff for NMU version 1.0.3-1.1
tags 725563 + patch tags 725563 + pending thanks Dear maintainer, I've prepared an NMU for python-naturalsort (versioned as 1.0.3-1.1) and uploaded it to DELAYED/2. Please feel free to tell me if I should delay it longer. Regards. diff -Nru python-naturalsort-1.0.3/debian/changelog python-naturalsort-1.0.3/debian/changelog --- python-naturalsort-1.0.3/debian/changelog 2013-09-19 14:47:15.0 +0200 +++ python-naturalsort-1.0.3/debian/changelog 2014-03-28 20:43:12.0 +0100 @@ -1,3 +1,10 @@ +python-naturalsort (1.0.3-1.1) unstable; urgency=medium + + * Non-maintainer upload. + * Add python-setuptools to Build-Depends. (Closes: #725563) + + -- Evgeni Golov evg...@debian.org Fri, 28 Mar 2014 20:42:21 +0100 + python-naturalsort (1.0.3-1) unstable; urgency=low * Initial release (closes: #723742). diff -Nru python-naturalsort-1.0.3/debian/control python-naturalsort-1.0.3/debian/control --- python-naturalsort-1.0.3/debian/control 2013-09-19 14:33:50.0 +0200 +++ python-naturalsort-1.0.3/debian/control 2014-03-28 20:42:18.0 +0100 @@ -4,6 +4,7 @@ Section: python Priority: optional Build-Depends: python-all (= 2.6.6-3), +python-setuptools, debhelper (= 7) Standards-Version: 3.9.4
Bug#638761: gtkmathview: please remove t1lib dependency
control: tag -1 patch
Hi,
Here is a simple patch that finalizes the removal of t1lib.
Best wishes,
Mike
diff -Nru gtkmathview-0.8.0/debian/changelog gtkmathview-0.8.0/debian/changelog
--- gtkmathview-0.8.0/debian/changelog 2014-03-05 17:33:25.0 +
+++ gtkmathview-0.8.0/debian/changelog 2014-03-28 21:52:10.0 +
@@ -1,3 +1,10 @@
+gtkmathview (0.8.0-10+nmu1) unstable; urgency=medium
+
+ * Non-maintainer upload.
+ * Remove libt1-dev dependency from libgtkmathview-dev (closes: #638761).
+
+ -- Michael Gilbert mgilb...@debian.org Fri, 28 Mar 2014 21:41:51 +
+
gtkmathview (0.8.0-10) unstable; urgency=medium
* Remove t1lib dependency (Closes: #638761)
diff -Nru gtkmathview-0.8.0/debian/control gtkmathview-0.8.0/debian/control
--- gtkmathview-0.8.0/debian/control 2014-03-05 17:43:03.0 +
+++ gtkmathview-0.8.0/debian/control 2014-03-28 21:42:41.0 +
@@ -67,7 +67,6 @@
libglib2.0-dev (= 2.2.3),
libgtk2.0-dev (= 2.2.1),
libgdome2-dev (= 0.8.1),
- libt1-dev (= 5.0.0),
${misc:Depends}
Description: rendering engine for MathML documents
GtkMathView is a C++ rendering engine for MathML documents. It
Processed: Re: Bug#638761: gtkmathview: please remove t1lib dependency
Processing control commands: tag -1 patch Bug #638761 [gtkmathview] gtkmathview: please remove t1lib dependency Added tag(s) patch. -- 638761: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=638761 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742915: xserver-xorg-video-vmware FTBFS and existing binary is uninstallable.
Package: xserver-xorg-video-vmware
Version: 1:13.0.1-3
Severity: grave
xserver-xorg-video-vmware can no longer be installed in sid because of a
missing dependency.
root@debian:/xserver-xorg-video-vmware-13.0.1# apt-get install
xserver-xorg-video-vmware
Reading package lists... Done
Building dependency tree
Reading state information... Done
Some packages could not be installed. This may mean that you have
requested an impossible situation or if you are using the unstable
distribution that some required packages have not yet been created
or been moved out of Incoming.
The following information may help to resolve the situation:
The following packages have unmet dependencies:
xserver-xorg-video-vmware : Depends: libxatracker1 but it is not
installable
E: Unable to correct problems, you have held broken packages.
root@debian:/xserver-xorg-video-vmware-13.0.1#
Attempting to recompile it results in.
libtool: compile: gcc -std=gnu99 -DHAVE_CONFIG_H -I. -I../../vmwgfx
-I.. -Wall -Wpointer-arith -Wmissing-declarations -Wformat=2
-Wstrict-prototypes -Wmissing-prototypes -Wnested-externs
-Wbad-function-cast -Wold-style-definition -Wdeclaration-after-statement
-Wunused -Wuninitialized -Wshadow -Wmissing-noreturn
-Wmissing-format-attribute -Wredundant-decls -Werror=implicit
-Werror=nonnull -Werror=init-self -Werror=main -Werror=missing-braces
-Werror=sequence-point -Werror=return-type -Werror=trigraphs
-Werror=array-bounds -Werror=write-strings -Werror=address
-Werror=int-to-pointer-cast -Werror=pointer-to-int-cast
-fno-strict-aliasing -fvisibility=hidden -I/usr/include/pixman-1
-I/usr/include/libdrm -I/usr/include/xorg -I/usr/include/X11/dri
-I/usr/include/libdrm -I../../src -I../../saa -g -O2 -c
../../vmwgfx/vmwgfx_driver.c -fPIC -DPIC -o
.libs/libvmwgfx_la-vmwgfx_driver.o
../../vmwgfx/vmwgfx_driver.c: In function 'vmwgfx_scanout_present':
../../vmwgfx/vmwgfx_driver.c:620:5: error: incompatible type for
argument 2 of 'xa_surface_handle'
if (xa_surface_handle(vpix-hw, handle, dummy) != 0) {
^
In file included from ../../vmwgfx/vmwgfx_driver.h:46:0,
from ../../vmwgfx/vmwgfx_driver.c:57:
/usr/include/xa_tracker.h:195:12: note: expected 'enum xa_handle_type'
but argument is of type 'uint32_t *'
extern int xa_surface_handle(struct xa_surface *srf,
^
../../vmwgfx/vmwgfx_driver.c:620:5: error: too few arguments to function
'xa_surface_handle'
if (xa_surface_handle(vpix-hw, handle, dummy) != 0) {
^
In file included from ../../vmwgfx/vmwgfx_driver.h:46:0,
from ../../vmwgfx/vmwgfx_driver.c:57:
/usr/include/xa_tracker.h:195:12: note: declared here
extern int xa_surface_handle(struct xa_surface *srf,
^
../../vmwgfx/vmwgfx_driver.c: In function 'xorg_flush':
../../vmwgfx/vmwgfx_driver.c:660:16: warning: declaration of 'j' shadows
a previous local [-Wshadow]
unsigned int j;
^
../../vmwgfx/vmwgfx_driver.c:644:18: warning: shadowed declaration is
here [-Wshadow]
unsigned int j;
^
make[3]: *** [libvmwgfx_la-vmwgfx_driver.lo] Error 1
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#734789: [CVE-2013-7284] Remote pre-authentication code execution in PlRPC
On Fri, 2014-03-28 16:22:14 +0100, Moritz Muehlenhoff wrote: On Thu, Jan 09, 2014 at 09:01:53PM +0100, Florian Weimer wrote: Package: libplrpc-perl Severity: grave Version: 0.2020-2 Tags: security upstream The PlRPC module uses Storable in an unsafe way, leading to a remote code execution vulnerability (in both the client and the server). Upstream bug report: https://rt.cpan.org/Public/Bug/Display.html?id=90474 A fix (which is not yet available) requires a protocol change. I think we should remove the package from the distribution instead. Anibal, what's the status? Do you agree with the removal? Yes, I agree. I was waiting to get it fixed upstream. Cheers, Moritz signature.asc Description: Digital signature
Bug#736481: nettoe: FTBFS due to test suite failures
On Wed, 2014-03-26 23:26:26 +0100, Ansgar Burchardt wrote: Aníbal Monsalve Salazar ani...@debian.org writes: On Wed, 2014-03-26 14:51:08 +0100, Ansgar Burchardt wrote: Changing options passed to ./configure depending on the build environment looks fairly wrong to me. The objective of ./configure is to change the build/compile settings dependending on the environment. However source packages in Debian should *not* change depending on the environment they are built in. Passing different options to ./configure depending on the environment does the exact opposite... If you object Dejan's patch, there is another approach. To set TERM to to some value like linux, xterm, unknow, etc, to pass `make check-TESTS`. But that could be wrong. Mats Erik Andersson, upstream author of Nettoe said the FTBFS is caused by a build environment lacking a defined TERM. The way to tell ./configure that TERM is not defined is to pass --without-terminfo to it. We decided that it was better to pass --without-terminfo to ./configure than to set TERM to something that could be incorrect. Well, then just always pass --without-terminfo to it? Okay, I'll do that. I'll prepare another NMU. Cheers. signature.asc Description: Digital signature
Bug#723050: can't log in
Muchas gracias Maximiliano! It was the permissions on /etc/shadow which were root:root 600. Fixing them to root:shadow 640 made both xscreensaver and kscreensaver able to log me back in! I have no idea what may have changed permissions on shadow file, though. Anyway, thank you very much for your help! :-) -- Mathieu Le 28/03/2014 20:25, Maximiliano Curia a écrit : ¡Hola Mathieu! El 2014-03-28 a las 19:12 +0100, Mathieu MD escribió: But if you do, could you check the permissions of the /sbin/unix_chkpwd command? Permissions on unix_chkpwd seems to be correct with setgid shadow: -rwxr-sr-x 1 root shadow 35K 02-14 00:27 /sbin/unix_chkpwd* And the password of your user is in /etc/shadow which is readable by the shadow group? It might be interesting to know if /sbin/unix_chkpwd is being called at all, using second session and strace you can check this, so you lock your screen and from another session, you'll need to find the pid of your screensaver, it can be kscreensaver, xscreensaver, or in my case plasma_overlay, then: $ strace -vfp $pid_of_screensaver -e execve Try to unlock the screensaver and check the logged output. The output shouldn't be more than 30 lines, if it's more, redirect it into a file and attach the file here. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#733556: [pkg-wine-party] Bug#733556: wine: binfmt-support got lost
control: severity -1 wishlist On Sun, Dec 29, 2013 at 5:03 PM, Tobias Schlemmer wrote: the binfmt support for wine has been dropped (at least /usr/share/binfmts/wine and winelauncher). I consider this a wishlist request. Best wishes, Mike -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Processed: Re: [pkg-wine-party] Bug#733556: wine: binfmt-support got lost
Processing control commands: severity -1 wishlist Bug #733556 [wine] wine: binfmt-support got lost Severity set to 'wishlist' from 'grave' -- 733556: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=733556 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#736481: nettoe: FTBFS due to test suite failures
Hello there, Mats Erik Andersson, upstream author of Nettoe said the FTBFS is caused by a build environment lacking a defined TERM. The way to tell ./configure that TERM is not defined is to pass --without-terminfo to it. We decided that it was better to pass --without-terminfo to ./configure than to set TERM to something that could be incorrect. Well, then just always pass --without-terminfo to it? Okay, I'll do that. I'll prepare another NMU. Let me point out that I have published a new version in my capacity as the upstream author, and that I am also in this very moment beginning to prepare a new Debian package for 1.5.1-1. The upstream code has seen a change in test/terminfo.c to always succeed, even if TERM is unset in the environment. Furthermore, configure.ac has been modified to pass an explicit linking flag, which manages the inteded linking against libtinfo on GNU/Linux, FreeBSD, and OpenIndiana. The first issue takes care of the architecture discrepancies, and the second issue covers the work-around implemented by Ubuntu's package maintainer. Best regards, M E Andersson, DM -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#742862: [Pkg-openldap-devel] Bug#742862: upgrade to 2.4.39-1 breaks slapd
Le 28/03/2014 19:57, Ryan Tandy a écrit :
Hi Erwan,
Can you attach the configuration (slapcat of cn=config, remove
passwords/sensitive info) that reproduces this? Are /var/lib/ldap and
all the files in it actually owned by openldap:openldap?
Hi, find attached the configuration (with passwords removed).
The /var/lib/ldap which did not wok is indeed owned by root, not by
openldap (I just did a mv ldap ldap-broken before restoring from backups).
dn: cn=config
objectClass: olcGlobal
cn: config
olcArgsFile: /var/run/slapd/slapd.args
olcLogLevel: none
olcPidFile: /var/run/slapd/slapd.pid
olcToolThreads: 1
structuralObjectClass: olcGlobal
entryUUID: 30f4ded8-4d6e-1030-9b31-4b697b098424
creatorsName: cn=config
createTimestamp: 20110728140402Z
entryCSN: 20110728140402.020631Z#00#000#00
modifiersName: cn=config
modifyTimestamp: 20110728140402Z
dn: cn=module{0},cn=config
objectClass: olcModuleList
cn: module{0}
olcModulePath: /usr/lib/ldap
olcModuleLoad: {0}back_hdb
structuralObjectClass: olcModuleList
entryUUID: 30f54cba-4d6e-1030-9b39-4b697b098424
creatorsName: cn=admin,cn=config
createTimestamp: 20110728140402Z
entryCSN: 20110728140402.023509Z#00#000#00
modifiersName: cn=admin,cn=config
modifyTimestamp: 20110728140402Z
dn: cn=schema,cn=config
objectClass: olcSchemaConfig
cn: schema
structuralObjectClass: olcSchemaConfig
entryUUID: 30f4ee3c-4d6e-1030-9b34-4b697b098424
creatorsName: cn=admin,cn=config
createTimestamp: 20110728140402Z
entryCSN: 20110728140402.021091Z#00#000#00
modifiersName: cn=admin,cn=config
modifyTimestamp: 20110728140402Z
dn: cn={0}core,cn=schema,cn=config
objectClass: olcSchemaConfig
cn: {0}core
olcAttributeTypes: {0}( 2.5.4.2 NAME 'knowledgeInformation' DESC 'RFC2256: kno
wledge information' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.
1.15{32768} )
olcAttributeTypes: {1}( 2.5.4.4 NAME ( 'sn' 'surname' ) DESC 'RFC2256: last (f
amily) name(s) for which the entity is known by' SUP name )
olcAttributeTypes: {2}( 2.5.4.5 NAME 'serialNumber' DESC 'RFC2256: serial numb
er of the entity' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch S
YNTAX 1.3.6.1.4.1.1466.115.121.1.44{64} )
olcAttributeTypes: {3}( 2.5.4.6 NAME ( 'c' 'countryName' ) DESC 'RFC2256: ISO-
3166 country 2-letter code' SUP name SINGLE-VALUE )
olcAttributeTypes: {4}( 2.5.4.7 NAME ( 'l' 'localityName' ) DESC 'RFC2256: loc
ality which this object resides in' SUP name )
olcAttributeTypes: {5}( 2.5.4.8 NAME ( 'st' 'stateOrProvinceName' ) DESC 'RFC2
256: state or province which this object resides in' SUP name )
olcAttributeTypes: {6}( 2.5.4.9 NAME ( 'street' 'streetAddress' ) DESC 'RFC225
6: street address of this object' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreS
ubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )
olcAttributeTypes: {7}( 2.5.4.10 NAME ( 'o' 'organizationName' ) DESC 'RFC2256
: organization this object belongs to' SUP name )
olcAttributeTypes: {8}( 2.5.4.11 NAME ( 'ou' 'organizationalUnitName' ) DESC '
RFC2256: organizational unit this object belongs to' SUP name )
olcAttributeTypes: {9}( 2.5.4.12 NAME 'title' DESC 'RFC2256: title associated
with the entity' SUP name )
olcAttributeTypes: {10}( 2.5.4.14 NAME 'searchGuide' DESC 'RFC2256: search gui
de, deprecated by enhancedSearchGuide' SYNTAX 1.3.6.1.4.1.1466.115.121.1.25 )
olcAttributeTypes: {11}( 2.5.4.15 NAME 'businessCategory' DESC 'RFC2256: busin
ess category' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTA
X 1.3.6.1.4.1.1466.115.121.1.15{128} )
olcAttributeTypes: {12}( 2.5.4.16 NAME 'postalAddress' DESC 'RFC2256: postal a
ddress' EQUALITY caseIgnoreListMatch SUBSTR caseIgnoreListSubstringsMatch SYN
TAX 1.3.6.1.4.1.1466.115.121.1.41 )
olcAttributeTypes: {13}( 2.5.4.17 NAME 'postalCode' DESC 'RFC2256: postal code
' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.
1.1466.115.121.1.15{40} )
olcAttributeTypes: {14}( 2.5.4.18 NAME 'postOfficeBox' DESC 'RFC2256: Post Off
ice Box' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3
.6.1.4.1.1466.115.121.1.15{40} )
olcAttributeTypes: {15}( 2.5.4.19 NAME 'physicalDeliveryOfficeName' DESC 'RFC2
256: Physical Delivery Office Name' EQUALITY caseIgnoreMatch SUBSTR caseIgnor
eSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )
olcAttributeTypes: {16}( 2.5.4.20 NAME 'telephoneNumber' DESC 'RFC2256: Teleph
one Number' EQUALITY telephoneNumberMatch SUBSTR telephoneNumberSubstringsMat
ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.50{32} )
olcAttributeTypes: {17}( 2.5.4.21 NAME 'telexNumber' DESC 'RFC2256: Telex Numb
er' SYNTAX 1.3.6.1.4.1.1466.115.121.1.52 )
olcAttributeTypes: {18}( 2.5.4.22 NAME 'teletexTerminalIdentifier' DESC 'RFC22
56: Teletex Terminal Identifier' SYNTAX 1.3.6.1.4.1.1466.115.121.1.51 )
olcAttributeTypes: {19}( 2.5.4.23 NAME ( 'facsimileTelephoneNumber' 'fax' ) DE
SC 'RFC2256: Facsimile (Fax) Telephone Number' SYNTAX 1.3.6.1.4.1.1466.115.12
1.1.22 )
Bug#742930: nouveau: Nouveau + mesa10.1 freeze all system
Package: xserver-xorg-video-nouveau Version: 1:1.0.10-1+b1 Severity: critical File: nouveau Tags: upstream Justification: breaks the whole system Hi Maintainer, * What led up to the situation? The nouveau driver + mesa10.1 freeze all system, not magic keys, no logs, only show a screen with glitches and ramdom trash. Use applications is impossible, I'm only enter the system and this freeze and not respond. Button reset is the only form for reboot the system. This situation repeat with nouveau + mesa9. * What was the outcome of this action? System is unusable. * What outcome did you expect instead? System usable and working without problems. -- Package-specific info: X server symlink status: lrwxrwxrwx 1 root root 13 Mar 4 17:47 /etc/X11/X - /usr/bin/Xorg -rwxr-xr-x 1 root root 2310576 Feb 7 07:50 /usr/bin/Xorg VGA-compatible devices on PCI bus: -- 00:0d.0 VGA compatible controller [0300]: NVIDIA Corporation C61 [GeForce 6150SE nForce 430] [10de:03d0] (rev a2) /etc/X11/xorg.conf does not exist. /etc/X11/xorg.conf.d does not exist. /etc/modprobe.d contains no KMS configuration files. Kernel version (/proc/version): --- Linux version 3.13-1-686-pae (debian-ker...@lists.debian.org) (gcc version 4.8.2 (Debian 4.8.2-14) ) #1 SMP Debian 3.13.5-1 (2014-03-04) Xorg X server log files on system: -- -rw-r--r-- 1 root root 26356 Mar 28 21:35 /var/log/Xorg.0.log Contents of most recent Xorg X server log file (/var/log/Xorg.0.log): - [19.002] X.Org X Server 1.15.0 Release Date: 2013-12-27 [19.002] X Protocol Version 11, Revision 0 [19.002] Build Operating System: Linux 3.2.0-4-amd64 i686 Debian [19.002] Current Operating System: Linux canalvolfread 3.13-1-686-pae #1 SMP Debian 3.13.5-1 (2014-03-04) i686 [19.002] Kernel command line: BOOT_IMAGE=/vmlinuz-3.13-1-686-pae root=UUID=d32ad1df-1d43-424a-a5a9-73f1c5850e56 ro quiet [19.002] Build Date: 07 February 2014 12:14:17PM [19.002] xorg-server 2:1.15.0-2 (http://www.debian.org/support) [19.002] Current version of pixman: 0.32.4 [19.002]Before reporting problems, check http://wiki.x.org to make sure that you have the latest version. [19.002] Markers: (--) probed, (**) from config file, (==) default setting, (++) from command line, (!!) notice, (II) informational, (WW) warning, (EE) error, (NI) not implemented, (??) unknown. [19.003] (==) Log file: /var/log/Xorg.0.log, Time: Fri Mar 28 21:34:29 2014 [19.120] (==) Using system config directory /usr/share/X11/xorg.conf.d [19.232] (==) No Layout section. Using the first Screen section. [19.233] (==) No screen section available. Using defaults. [19.233] (**) |--Screen Default Screen Section (0) [19.233] (**) | |--Monitor default monitor [19.255] (==) No monitor specified for screen Default Screen Section. Using a default monitor configuration. [19.255] (==) Automatically adding devices [19.256] (==) Automatically enabling devices [19.256] (==) Automatically adding GPU devices [19.413] (WW) The directory /usr/share/fonts/X11/cyrillic does not exist. [19.413]Entry deleted from font path. [19.413] (WW) The directory /usr/share/fonts/X11/100dpi/ does not exist. [19.413]Entry deleted from font path. [19.413] (WW) The directory /usr/share/fonts/X11/75dpi/ does not exist. [19.413]Entry deleted from font path. [19.483] (WW) The directory /usr/share/fonts/X11/100dpi does not exist. [19.483]Entry deleted from font path. [19.483] (WW) The directory /usr/share/fonts/X11/75dpi does not exist. [19.483]Entry deleted from font path. [19.483] (==) FontPath set to: /usr/share/fonts/X11/misc, /usr/share/fonts/X11/Type1, built-ins [19.483] (==) ModulePath set to /usr/lib/xorg/modules [19.483] (II) The server relies on udev to provide the list of input devices. If no devices become available, reconfigure udev or disable AutoAddDevices. [19.483] (II) Loader magic: 0xb773d6c0 [19.483] (II) Module ABI versions: [19.483]X.Org ANSI C Emulation: 0.4 [19.483]X.Org Video Driver: 15.0 [19.483]X.Org XInput driver : 20.0 [19.483]X.Org Server Extension : 8.0 [19.483] (II) xfree86: Adding drm device (/dev/dri/card0) [19.485] (--) PCI:*(0:0:13:0) 10de:03d0:1019:2602 rev 162, Mem @ 0xfd00/16777216, 0xd000/268435456, 0xfc00/16777216, BIOS @ 0x/131072 [19.504] Initializing built-in extension Generic Event Extension [19.504] Initializing built-in extension SHAPE [19.504] Initializing built-in extension MIT-SHM [19.504] Initializing built-in extension XInputExtension [19.504] Initializing built-in extension XTEST [19.504] Initializing
Bug#742732: marked as done (libyaml: CVE-2014-2525: input sanitization errors)
Your message dated Sat, 29 Mar 2014 05:48:29 + with message-id e1wtm85-0003wb...@franck.debian.org and subject line Bug#742732: fixed in libyaml 0.1.4-3.2 has caused the Debian Bug report #742732, regarding libyaml: CVE-2014-2525: input sanitization errors to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 742732: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742732 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: libyaml Version: 0.1.3-1 Severity: grave Tags: security upstream fixed-upstream Hi, the following vulnerability was published for libyaml. CVE-2014-2525[0]: LibYAML input sanitization errors If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2014-2525 [1] http://www.ocert.org/advisories/ocert-2014-003.html Regards, Salvatore ---End Message--- ---BeginMessage--- Source: libyaml Source-Version: 0.1.4-3.2 We believe that the bug you reported is fixed in the latest version of libyaml, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 742...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Salvatore Bonaccorso car...@debian.org (supplier of updated libyaml package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 27 Mar 2014 06:22:25 +0100 Source: libyaml Binary: libyaml-0-2 libyaml-0-2-dbg libyaml-dev Architecture: source amd64 Version: 0.1.4-3.2 Distribution: unstable Urgency: high Maintainer: Anders Kaseorg ande...@mit.edu Changed-By: Salvatore Bonaccorso car...@debian.org Description: libyaml-0-2 - Fast YAML 1.1 parser and emitter library libyaml-0-2-dbg - Fast YAML 1.1 parser and emitter library (debugging symbols) libyaml-dev - Fast YAML 1.1 parser and emitter library (development) Closes: 742732 Changes: libyaml (0.1.4-3.2) unstable; urgency=high . * Non-maintainer upload by the Security Team. * Add CVE-2014-2525.patch patch. CVE-2014-2525: Fixes heap overflow in yaml_parser_scan_uri_escapes. The heap overflow is caused by not properly expanding a string before writing to it in function yaml_parser_scan_uri_escapes in scanner.c. (Closes: #742732) Checksums-Sha1: e064c577e3943e1a8df91506b1c2bc62b763a82a 1924 libyaml_0.1.4-3.2.dsc 20b1bcdfdce31d6db935f09a61f84880cfc0c39a 6248 libyaml_0.1.4-3.2.debian.tar.xz 959bde12204fa821f07063cba5fc822c41c7e14d 47994 libyaml-0-2_0.1.4-3.2_amd64.deb a53a3713a32f0bb0fe6f03a0749971255b816645 97164 libyaml-0-2-dbg_0.1.4-3.2_amd64.deb 34df10937ef765b5dbbc63e76b24239bbba42fab 57532 libyaml-dev_0.1.4-3.2_amd64.deb Checksums-Sha256: 5746fa3ac13a5d89cdab0990863de4a1bfb3e57dfce8b05379974934db11fe9f 1924 libyaml_0.1.4-3.2.dsc 1e190a62bfb19e491d05f3ee17c7ca8461d0f78ad9e8b0ee22f70f4542e85210 6248 libyaml_0.1.4-3.2.debian.tar.xz 85b8684be5371474b6b462babf07303edcb4736ee16ceb9b20f44817c598f210 47994 libyaml-0-2_0.1.4-3.2_amd64.deb ee931974b278172f6391516582d3a5da9a824157dfbab4fc8c3a6b7cf6ac5dc5 97164 libyaml-0-2-dbg_0.1.4-3.2_amd64.deb 6643beb1f83b59c0392f5558bac873740479257c1727c0fd8d4c7a06f105b5cc 57532 libyaml-dev_0.1.4-3.2_amd64.deb Files: e9584481a784401d40408ff422fe61ef 1924 libs optional libyaml_0.1.4-3.2.dsc c59c3b86d32bb0ac1f1bf7f6f5c55330 6248 libs optional libyaml_0.1.4-3.2.debian.tar.xz 58640c378473c9d61890154f017b6623 47994 libs optional libyaml-0-2_0.1.4-3.2_amd64.deb bb16e4505ae8215842ff5d870b762f0d 97164 debug extra libyaml-0-2-dbg_0.1.4-3.2_amd64.deb ecd9522bd9759d70257b0bd30d0e8667 57532 libdevel optional libyaml-dev_0.1.4-3.2_amd64.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJTM7YDAAoJEAVMuPMTQ89EeeMP/2bEWZDOj99VnyGRbinRpQOm tLeHo7ubQtSE6bJUTSKAsgkYYPU49xbBPe8V+HWABLLsLTsHZaE0TXBI3BTiejOB Q86wM/HknLC2ZGx2tR1KmXQm8i6hMfqqzIZ+7vr45/TWUA89wZ6FXB4WzKNyvM6G 29m4WEFVDFEo0iK3IJKoZENj2X4wvKE64bcavZiFCAqqh9MDPgK1XdiGVj69qFHb QPn6Nt4fd21udt8+GmAa2bIdsgm3ZLvyGOrRPeaw/9vp5RlSjODbKoC1Ae5cHGrB /HrMEdGo1rnmthAYD8XEL/tlpD+/cs3DhvN7ar5L3DOHiz0HymnTxa0HoHwUP2ms
