Bug#506398: Tidy has a non-zero exit status when successful
Package: tidy Version: 20051018-1 Severity: whishlist Tidy will throw some warnings, but still produce output. When it throws these warnings it has a non-zero exit status. This makes it difficult to use in a Makefile. A work around is to test the target file size with: - test -s $(@) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506397: /usr/sbin/ammt: Most runs syslog reports task ammt blocked for more than 120 seconds
Package: amanda-server Version: 1:2.5.2p1-4 Severity: normal File: /usr/sbin/ammt Pretty much every run I get messages like the following: Nov 18 12:54:09 brennin kernel: [144990.580212] INFO: task ammt:9839 blocked for more than 120 seconds. Nov 18 12:54:09 brennin kernel: [144990.580226] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. Nov 18 12:54:09 brennin kernel: [144990.580231] ammt D f7c38b08 0 9839 9830 Nov 18 12:54:09 brennin kernel: [144990.580238]f6b8ed20 0082 f7878000 f7c38b08 83bf f6b8eeac c1c0efa0 Nov 18 12:54:09 brennin kernel: [144990.580249]f42bc130 f73e0038 0029dc11 0001 c01d4aa1 0001 f7878000 Nov 18 12:54:09 brennin kernel: [144990.580260]7fff 7fff c6c45e2c 0002 c02b8099 0006 c6c45eb8 f6b306c8 Nov 18 12:54:09 brennin kernel: [144990.580271] Call Trace: Nov 18 12:54:09 brennin kernel: [144990.580360] [] blk_execute_rq_nowait+0x61/0x79 Nov 18 12:54:09 brennin kernel: [144990.580397] [] schedule_timeout+0x13/0x86 Nov 18 12:54:09 brennin kernel: [144990.580455] [] wait_for_common+0xaf/0x10f Nov 18 12:54:09 brennin kernel: [144990.580472] [] default_wake_function+0x0/0x8 Nov 18 12:54:09 brennin kernel: [144990.580506] [] st_do_scsi+0x232/0x258 [st] Nov 18 12:54:09 brennin kernel: [144990.580566] [] st_int_ioctl+0x5ec/0x97d [st] Nov 18 12:54:09 brennin kernel: [144990.580612] [] __do_fault+0x30e/0x34d Nov 18 12:54:09 brennin kernel: [144990.580673] [] st_ioctl+0xa96/0xdcc [st] Nov 18 12:54:09 brennin kernel: [144990.580795] [] st_ioctl+0x0/0xdcc [st] Nov 18 12:54:09 brennin kernel: [144990.580815] [] vfs_ioctl+0x1c/0x5d Nov 18 12:54:09 brennin kernel: [144990.580836] [] do_vfs_ioctl+0x24a/0x261 Nov 18 12:54:09 brennin kernel: [144990.580866] [] sys_ioctl+0x41/0x5a Nov 18 12:54:09 brennin kernel: [144990.580889] [] sysenter_past_esp+0x78/0xb1 Nov 18 12:54:09 brennin kernel: [144990.580928] [] virtcons_probe+0xb6/0xdd Nov 18 12:54:09 brennin kernel: [144990.580962] === It doesn't seem to do any harm, but is disturbing nonetheless. -- System Information: Debian Release: lenny/sid APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.26-1-686 (SMP w/1 CPU core) Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages amanda-server depends on: ii amanda-common 1:2.5.2p1-4 Advanced Maryland Automatic Networ ii bsd-mailx [mailx] 8.1.2-0.20071201cvs-3 A simple mail user agent ii libc6 2.7-16GNU C Library: Shared libraries ii libncurses55.6+20080830-1shared libraries for terminal hand ii libreadline5 5.2-3 GNU readline and history libraries amanda-server recommends no packages. Versions of packages amanda-server suggests: ii amanda-client1:2.5.2p1-4 Advanced Maryland Automatic Networ ii cpio 2.9-13 GNU cpio -- a program to manage ar pn gnuplot(no description available) ii mt-st1.1-2 Linux SCSI tape driver aware magne ii perl [perl5] 5.10.0-17 Larry Wall's Practical Extraction -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#501151: Preparing packaging for ocfs2-tools 1.4.1-1
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Frederik, Joel, I have started putting together the packaging for ocfs2-tools here: https://svn.jerryweb.org/public/packages/ocfs2-tools/ What would you think of applying for some space on alioth so that we can maintain ocfs2-tools collaboratively and finally upload a recent version of ocfs2-tools? Cheers, Jeremy -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkkmZVoACgkQ4mJJZqJp2Se/tACffFdlJQ+gIhVuX1q/ztuLSP0Y /NgAoMpRSXywkX+p7DkOf65e36nQhKcH =KhPU -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506395: isight-firmware-tools: [INTL:it] Italian translation of the debconf templates
Package: isight-firmware-tools Severity: wishlist Tags: l10n patch Enclosed please find the Italian translation of the Debconf template. Best regards vince # ITALIAN TRANSLATION OF ISIGHT-FIRMWARE-TOOL'S.PO-DEBCONF FILE # Copyright (C) 2008 THE ISIGHT-FIRMWARE-TOOL'S COPYRIGHT HOLDER # This file is distributed under the same license as the isight-firmware-tool package. # # Vincenzo Campanella <[EMAIL PROTECTED]>, 2008. msgid "" msgstr "" "Project-Id-Version: isight-firmware-tools 1.2.6\n" "Report-Msgid-Bugs-To: [EMAIL PROTECTED]" "POT-Creation-Date: 2008-11-14 18:34+0100\n" "PO-Revision-Date: 2008-11-15 06:43+0100\n" "Last-Translator: Vincenzo Campanella <[EMAIL PROTECTED]>\n" "Language-Team: Italian <[EMAIL PROTECTED]>\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: KBabel 1.11.4\n" #. Type: boolean #. Description #: ../templates:2001 msgid "Extract firmware from Apple driver?" msgstr "Estrarre il firmware dal driver Apple?" #. Type: boolean #. Description #: ../templates:2001 msgid "" "If you choose this option, please make sure that you have access to the " "AppleUSBVideoSupport driver file." msgstr "" "Se si sceglie questa opzione, assicurarsi di avere accesso al driver " "AppleUSBVideoSupport." #. Type: string #. Description #: ../templates:3001 msgid "Apple driver file location:" msgstr "Posizione del driver Apple:" #. Type: note #. Description #: ../templates:4001 msgid "Apple driver file not found" msgstr "Driver Apple non trovato." #. Type: note #. Description #: ../templates:4001 msgid "" "The file you specified does not exist. The firmware extraction has been " "aborted." msgstr "" "Il file specificato non esiste. L'estrazione del firmware è stata " "interrotta." #. Type: text #. Description #: ../templates:5001 msgid "Firmware extracted successfully" msgstr "Il firmware è stato estratto con successo." #. Type: text #. Description #: ../templates:5001 msgid "The iSight firmware has been extracted successfully." msgstr "Il firmware iSight è stato estratto con successo." #. Type: text #. Description #: ../templates:6001 msgid "Failed to extract firmware" msgstr "Estrazione del firmware fallita." #. Type: text #. Description #: ../templates:6001 msgid "" "The firmware extraction failed. Please check that the file you specified is " "a valid firmware file." msgstr "" "L'estrazione del firmware è fallita. Assicurarsi che il file specificato " "sia un file di firmware valido."
Bug#506396: new version rtorrent available in upstream
Package: rtorrent Version: 0.7.9 Please, package new version rtorrent: http://libtorrent.rakshasa.no/ Stable Release * libtorrent-0.12.2.tar.gz * rtorrent-0.8.2.tar.gz Unstable Release * libtorrent-0.12.4.tar.gz * rtorrent-0.8.4.tar.gz many gui-systems for rtorrent (rtgui, rtwi, etc) have depends to rtorrent 0.8. -- ... mpd is off . ''`. Dmitry E. Oboukhov : :’ : email: [EMAIL PROTECTED] jabber://[EMAIL PROTECTED] `. `~’ GPGKey: 1024D / F8E26537 2006-11-21 `- 1B23 D4F8 8EC0 D902 0555 E438 AB8C 00CF F8E2 6537 signature.asc Description: Digital signature
Bug#506292: [Pkg-samba-maint] Bug#506292: samba: segfault to add user with smbpasswd
Quoting Flamarion Jorge ([EMAIL PROTECTED]): > [EMAIL PROTECTED]:~# testparm > Load smb config files from /etc/samba//lib/smb.conf There is something definitely weird in your setup. testparm is looking for smb.conf in /etc/samba/lib, which is *not* the default location for smb.conf in Debian (for ages): [EMAIL PROTECTED]:~> testparm Load smb config files from /etc/samba/smb.conf .../... signature.asc Description: Digital signature
Bug#248809: system users
OoO En ce doux début de matinée du vendredi 21 novembre 2008, vers 08:18, je disais: > And the ones that uses a prefix: > - exim4: Debian-exim > - lldpd: _lldpd I have missed console-log and Debian-console-log. I suppose that this is because it is arch-indep. -- BOFH excuse #433: error: one bad user found in front of screen pgpYJvHM6pcGa.pgp Description: PGP signature
Bug#480041: confirmation that debian #480041 is a gnutls problem, and steps to reproduce
Daniel Kahn Gillmor wrote: > OK, i'm now sure that debian #480041 is a gnutls problem, and not just > due to something wacky in libneon (though there may be libneon bits as > well). Here's a way to duplicate the problem without using libneon. [...] > - Simple Client Mode: > > *** Non fatal error: Rehandshake was requested by the peer. > *** Fatal error: A TLS fatal alert has been received. > *** Received alert [10]: Unexpected message > *** Server has terminated the connection abnormally. > - Hello, this does not seem to be a gnutls error. The server merely asks for renegotiation, gnutls-cli ignores it (legal behavior) and server does not like it thus sends a fatal alert. However which version of gnutls-cli is that? Can you try with the latest? For neon to solve this, it has to perform a handshake after the rehandshake request has been required. regards, Nikos -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#248809: system users
On 2008-11-21 08:18 +0100, Vincent Bernat wrote: > Here is the list of package that name the user with the name of the > source package: > [...] > - zabbix: zabbix - postfix: postfix - dictd: dictd > And the ones that uses a prefix: > - exim4: Debian-exim > - lldpd: _lldpd - xfs: debian-xfs > The list was built by hand. I hope to have not forgotten anything. At least the three above are missing. Sven -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506325: Does not create /var/cache/logwatch on install resulting in a non-functioning program
On Thu, 20 Nov 2008 16:13:51 +0100 Willi Mann <[EMAIL PROTECTED]> wrote: > Daniel Dickinson schrieb: > > Package: logwatch > > Version: 7.3.6.cvs20080702-1 > > Severity: normal > > > > > > /var/cache/logwatch is not created during the install process and > > thus logwatch fails to do anything useful until it is created. I > > believe this to be a policy violation, but I could be wrong. If > > I'm right this bug should be upgraded to serious and it should be > > fixed for lenny. > > The default folder for Debian is /tmp. Why are you using > /var/cache/logwatch? Have you changed anything in your configuration? > Erm, please excuse the egg on my face. Yes I changed the configuration and when I did a reinstalled I copied the file in /etc/logwatch... but forgot about the tmpdir. Not your problem. Please excuse. Doh! Regards, Daniel -- And that's my crabbing done for the day. Got it out of the way early, now I have the rest of the afternoon to sniff fragrant tea-roses or strangle cute bunnies or something. -- Michael Devore GnuPG Key Fingerprint 86 F5 81 A5 D4 2E 1F 1C http://gnupg.org The C Shore: http://www.wightman.ca/~cshore signature.asc Description: PGP signature
Bug#506394: ISO-8859-15 support with -latin0 is undocumented in man page
Package: tidy Version: 20051018-1 Manual page tidy(1) says: >-ascii use US-ASCII for output, ISO-8859-1 for input > >-latin0 > use US-ASCII for output, ISO-8859-1 for input > >-latin1 > use ISO-8859-1 for both input and output The -latin0 option should say: >-ascii use US-ASCII for output, ISO-8859-1 for input > >-latin0 > use US-ASCII for output, ISO-8859-15 for input > >-latin1 > use ISO-8859-1 for both input and output For example it can be used to convert UTF-8 to 7bit clean US-ASCII with Euro support: > iconv -c -f UTF-8 -t ISO-8859-15 | tidy -b -latin0 - This would not handle Euro, but would handle vulgar fractions: > iconv -c -f UTF-8 -t ISO-8859-1 | tidy -b -ascii - -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#248809: system users
OoO En ce milieu de nuit étoilée du vendredi 21 novembre 2008, vers 03:19, Raphael Geissert <[EMAIL PROTECTED]> disait : >> Is there some way to easily retrieve all postinst scripts to check how >> adduser is called? > Yup, take a look at lintian.debian.org's lab in gluck. > It only contains the maintainer scripts of main/i386, though. Thanks for the tips! Here is the list of package that name the user with the name of the source package: - ajaxterm: ajaxterm - approx: approx - apt-cacher-ng: apt-cacher-ng - asterisk: asterisk - backuppc: backuppc - bip: bip - blootbot: blootbot - citadel: citadel - clamsmtp: clamsmtp - cntlm: cntlm - dansguardian: dansguardian - debarchiver: debarchiver - dnsmasq: dnsmasq - docvert: docvert - dovecot: dovecot - ejabberd: ejabberd - email-reminder: email-reminder - fcron: fcron - fetchmail: fetchmail - freevo: freevo - gdm: gdm - gkrellmd: gkrellmd - gnugk: gnugk - greylistd: greylistd - hobbit: hobbit - hplip: hplip - interchange: interchange - iodine: iodine - jffnms: jffnms - liquidsoap: liquidsoap - maradns: maradns - mldonkey: mldonkey - motion: motion - mpd: mpd - mpdscribble: mpdscribble - mt-daapd: mt-daapd - munin: munin - netmrg: netmrg - netplan: netplan - pdnsd: pdnsd - postgrey: postgrey - prayer: prayer - proftpd: proftpd - pyaimt: pyaimt - rancid: rancid - sbnc: sbnc - slidentd: slidentd - smtpguard: smtpguard - spampd: spampd - spong: spong - stunnel4: stunnel4 - sympa: sympa - varnish: varnish - vdradmin-am: vdradmin-am - zabbix: zabbix The packages that use a different name but with no apparent prefix or suffix (maybe gforge should not be in this category) : - vde2: vde2-net - ez-ipupdate: ez-ipupd - postfwd: postfw - kolabd: kolab - openntpd: ntpd - tinyerp-server: terp - policyd-weight: polw - zope-common: zopeuser - postgresql-common: postgres - pymilter: spf-milter-python - nfs-utils: statd - nss-ldapd: nslcd - net-snmp: snmp - gforge: anonscm-gforge scm-gforge www-gforge - hylafax: faxmaster - hal: haldaemon - dbus: messagebud - boxbackup: bbstored - calendarserver: caldavd - dtc-xen: dtc-xen-user - tomcat5.5: tomcat55 - ident2: identd - batv-milter: batv-filter - nagios3: nagios - lastfmsubmitd: lastfm - gsmlib: gsmsms - mumble: mumble-server - openssh: sshd - fsp: ftp - vsftpd: ftp - bind9: bind - amavisd-new: amavis And the ones that uses a prefix: - exim4: Debian-exim - lldpd: _lldpd The list was built by hand. I hope to have not forgotten anything. Some random remarks: - nobody uses prefixes - there are collisions (fsp, vsftpd) - some names collides with real user names that I have met (iodine, spong, prayer), this may vary from systems to systems but there is no way to override a username BTW, the problem is similar with groups, especially since the default is now to create a group for each user. -- I AM NOT THE NEW DALAI LAMA I AM NOT THE NEW DALAI LAMA I AM NOT THE NEW DALAI LAMA -+- Bart Simpson on chalkboard in episode 5F17 pgpSXzYi6AoBX.pgp Description: PGP signature
Bug#506373: [Evolution] Bug#506373: evolution email crashes when receiving a specific invitation from Google Calendar
On ven, 2008-11-21 at 00:08 +0100, Cyrille Chépélov wrote: > It then crashes again at boot, when trying > again to display the last received (same) message. NOt arguing about the other stuff, but when evo crash here, at restart it asks if it can display the offending message. Cheers, -- Yves-Alexis signature.asc Description: This is a digitally signed message part
Bug#506391: kover_1:3-1(hppa/experimental): FTBFS: qmultilinedit.h: No such file or directory
Package: kover Version: 1:3-1 Severity: serious Hi, your package failed to build from source. | Automatic build of kover_1:3-1 on lofn by sbuild/hppa 98-farm | Build started at 20081121-0336 | ** | Checking available source versions... | Fetching source files... | Reading package lists... | Building dependency tree... | Need to get 688kB of source archives. | Get:1 http://sinclair.farm.ftbfs.de experimental/main kover 1:3-1 (dsc) [995B] | Get:2 http://sinclair.farm.ftbfs.de experimental/main kover 1:3-1 (tar) [681kB] | Get:3 http://sinclair.farm.ftbfs.de experimental/main kover 1:3-1 (diff) [5928B] | Fetched 688kB in 0s (994kB/s) | Download complete and in download only mode | ** Using build dependencies supplied by package: | Build-Depends: autotools-dev, kdelibs4-dev (>= 3.4.2), debhelper (>= 5.0.51~), dbs, imagemagick, libcdio-cdda-dev, libcddb2-dev, chrpath | Checking for already installed source dependencies... [...] | g++ -DHAVE_CONFIG_H -I. -I.. -I/usr/include/kde -I/usr/include/kde -I/usr/include/qt3 -I.-DQT_THREAD_SUPPORT -D_REENTRANT -Wnon-virtual-dtor -Wno-long-long -Wundef -ansi -D_XOPEN_SOURCE=500 -D_BSD_SOURCE -Wcast-align -Wconversion -Wchar-subscripts -Wall -W -Wpointer-arith -Wwrite-strings -O2 -Wnon-virtual-dtor -Wno-long-long -Wundef -ansi -D_XOPEN_SOURCE=500 -D_BSD_SOURCE -Wcast-align -Wconversion -Wchar-subscripts -Wall -W -Wpointer-arith -Wwrite-strings -O2 -g -O2 -std=gnu++98 -Wformat-security -Wmissing-format-attribute -fno-exceptions -fno-check-new -fno-common -Wformat-security -Wmissing-format-attribute -fno-exceptions -fno-check-new -fno-common -MT kover.all_cc.o -MD -MP -MF .deps/kover.all_cc.Tpo -c -o kover.all_cc.o kover.all_cc.cc | In file included from kovertop.moc:11, | from kovertop.cc:22, | from kover.all_cc.cc:5: | kovertop.h:41:27: error: qmultilinedit.h: No such file or directory | In file included from /usr/include/qt3/qwindowdefs.h:47, | from /usr/include/qt3/qwidget.h:45, | from imagedlg.h:35, | from imagedlg.moc:11, | from imagedlg.cc:32, | from kover.all_cc.cc:2: | /usr/include/qt3/qstring.h: In member function 'char QChar::latin1() const': | /usr/include/qt3/qstring.h:197: warning: conversion to 'char' from 'int' may alter its value | /usr/include/qt3/qstring.h: In member function 'void QChar::setCell(uchar)': | /usr/include/qt3/qstring.h:222: warning: conversion to 'ushort' from 'int' may alter its value | /usr/include/qt3/qstring.h: In member function 'void QChar::setRow(uchar)': | /usr/include/qt3/qstring.h:223: warning: conversion to 'ushort' from 'int' may alter its value | /usr/include/qt3/qstring.h: In constructor 'QChar::QChar(uchar, uchar)': | /usr/include/qt3/qstring.h:267: warning: conversion to 'ushort' from 'int' may alter its value | /usr/include/qt3/qstring.h: In constructor 'QStringData::QStringData(QChar*, uint, uint)': | /usr/include/qt3/qstring.h:365: warning: conversion to 'unsigned int:30' from 'uint' may alter its value | /usr/include/qt3/qstring.h:365: warning: conversion to 'unsigned int:30' from 'uint' may alter its value | In file included from /usr/include/qt3/qobject.h:48, | from /usr/include/qt3/qwidget.h:46, | from imagedlg.h:35, | from imagedlg.moc:11, | from imagedlg.cc:32, | from kover.all_cc.cc:2: | /usr/include/qt3/qevent.h: In member function 'void QDropEvent::setAction(QDropEvent::Action)': | /usr/include/qt3/qevent.h:523: warning: conversion to 'unsigned char' from 'uint' may alter its value | In file included from /usr/include/qt3/qwidget.h:52, | from imagedlg.h:35, | from imagedlg.moc:11, | from imagedlg.cc:32, | from kover.all_cc.cc:2: | /usr/include/qt3/qsizepolicy.h: In member function 'void QSizePolicy::transpose()': | /usr/include/qt3/qsizepolicy.h:125: warning: conversion to 'uchar' from 'uint' may alter its value | /usr/include/qt3/qsizepolicy.h:125: warning: conversion to 'uchar' from 'uint' may alter its value | In file included from imagedlg.h:39, | from imagedlg.moc:11, | from imagedlg.cc:32, | from kover.all_cc.cc:2: | /usr/include/qt3/qpushbutton.h: In member function 'virtual void QPushButton::setIsMenuButton(bool)': | /usr/include/qt3/qpushbutton.h:94: warning: conversion to 'unsigned char:1' from 'int' may alter its value | In file included from kover.all_cc.cc:3: | cddb_fill.cc: In member function 'bool cddb_fill::read_cdtext()': | cddb_fill.cc:84: warning: conversion to 'track_t' from 'int' may alter its value | cddb_fill.cc:86: warning: conversion to 'short unsigned int' from 'int' may alter its value | In file included from kover.all_cc.cc:4: | koverfile.cc: In member functi
Bug#506393: xcb-util_0.3.1-1(hppa/experimental): FTBFS: ./autogen.sh: Permission denied
Package: xcb-util Version: 0.3.1-1 Severity: serious Hi, your package failed to build from source. | Automatic build of xcb-util_0.3.1-1 on lofn by sbuild/hppa 98-farm | Build started at 20081121-0249 | ** | Checking available source versions... | Fetching source files... | Reading package lists... | Building dependency tree... | Need to get 825kB of source archives. | Get:1 http://sinclair.farm.ftbfs.de experimental/main xcb-util 0.3.1-1 (dsc) [1654B] | Get:2 http://sinclair.farm.ftbfs.de experimental/main xcb-util 0.3.1-1 (tar) [417kB] | Get:3 http://sinclair.farm.ftbfs.de experimental/main xcb-util 0.3.1-1 (diff) [406kB] | Fetched 825kB in 0s (1063kB/s) | Download complete and in download only mode | ** Using build dependencies supplied by package: | Build-Depends: cdbs, debhelper (>= 5), autotools-dev, libxcb-render0-dev, libxcb1-dev, gperf, pkg-config, libxcb-shm0-dev, m4, autoconf, automake, libtool, x11proto-core-dev (>= 7.0.12) | Checking for already installed source dependencies... [...] | ./autogen.sh --build=hppa-linux-gnu --prefix=/usr --includedir="\${prefix}/include" --mandir="\${prefix}/share/man" --infodir="\${prefix}/share/info" --sysconfdir=/etc --localstatedir=/var --libexecdir="\${prefix}/lib/xcb-util" --disable-maintainer-mode --disable-dependency-tracking --srcdir=. | /bin/sh: ./autogen.sh: Permission denied | make: *** [configure-stamp] Error 126 | dpkg-buildpackage: failure: debian/rules build gave error exit status 2 | ** | Build finished at 20081121-0252 | FAILED [dpkg-buildpackage died] Full build log(s): http://experimental.ftbfs.de/build.php?&ver=0.3.1-1&pkg=xcb-util&arch=hppa Gruesse, -- Frank Lichtenheld <[EMAIL PROTECTED]> www: http://www.djpig.de/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#501536: open-vm-toolbox: vmware-user does not work correctly, mouse trapped in vmware window
tags 506222 +moreinfo tags 501536 +moreinfo thanks Please try again with 2008.11.18-130226-1. -- Address:Daniel Baumann, Burgunderstrasse 3, CH-4562 Biberist Email: [EMAIL PROTECTED] Internet: http://people.panthera-systems.net/~daniel-baumann/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506392: libgettext-ruby1.8: fails to parse charset from my locale
Package: libgettext-ruby1.8 Version: 1.91.0-2.1 Severity: normal apt-listbugs HTML output has the wrong Content-type charset. This seems to be because the following ruby program outputs 'UTF' on my system instead of 'UTF-8'. -- require 'locale' print Locale.codeset -- Problem seems to be in the parse() method of the follwing file (around line 100): /usr/lib/ruby/1.8/locale/object.rb Thanks, Alex -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.27.4-vgn-b1vp (PREEMPT) Locale: LANG=fr_FR.UTF.8, LC_CTYPE=fr_FR.UTF.8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages libgettext-ruby1.8 depends on: ii irb1.81.8.7.72-1 Interactive Ruby (for Ruby 1.8) libgettext-ruby1.8 recommends no packages. Versions of packages libgettext-ruby1.8 suggests: pn libgettext-ruby-data (no description available) pn libgettext-ruby-util (no description available) -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#505789: E: Couldn't find package usb-storage-modules-2.6.26-1-sparc64-di
Op 20081119 om 22:47 schreef Otavio Salvador: > Geert Stappers <[EMAIL PROTECTED]> writes: > > > Bugreport #505789 blocks the daily build of Sparc > It should be solved now. Could you retry it? The build log shows: Unpacking usb-storage-modules-2.6.26-1-sparc64-di (from .../usb-storage-modules-2.6.26-1-sparc64-di.udeb) ... So the udeb is now available. >From my concern can #505789 be closed. (That the daily d-i build of Sparc failed on 20 november due gzip: ./tmp/netboot/vmlinuz-2.6.26-1-sparc64: not in gzip format is something else ( next automatic build is at 12:00 UTC )) Cheers Geert Stappers -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506384: [Pkg-xfce-devel] Bug#506384: dpkg - warning: while removing shared-mime-info, directory `/usr/share/mime' not empty so not removed
On ven, 2008-11-21 at 10:23 +0800, [EMAIL PROTECTED] wrote: > lrwxrwxrwx 1 root root 11 Nov 17 22:30 thunar-data -> thunar-data Wooh, that's a good one. Thanks -- Yves-Alexis signature.asc Description: This is a digitally signed message part
Bug#506390: libmailtools-perl: Mail::Internet Doesn't check for empty fullname in GECOS
Package: libmailtools-perl Version: 2.04-1 Severity: normal When run by a user without a fullname in the GECOS, such as: user:x:1000:1000:,,,:/home/user:/bin/bash Mail::Internet throws these errors: Use of uninitialized value $name in pattern match (m//) at /usr/share/perl5/Mail/Internet.pm line 536. Use of uninitialized value $name in sprintf at /usr/share/perl5/Mail/Internet.pm line 541. The problem is these lines: my $name = eval {local $SIG{__DIE__}; (getpwuid($>))[6]} || $ENV{NAME} ||""; while($name =~ s/\([^\(\)]*\)//) { 1; } # Strip extra fields: adduser-generated usernames have multiple comma # seperated fields, only the first of which should be used to prevent # accidental exposure of system-local information like phone numbers/ # room numbers. $name = (split /,/, $name)[0]; if($name =~ /[^\w\s]/) { $name =~ s/"/\"/g; $name = '"' . $name . '"'; } my $from = sprintf "%s <%s>", $name, mailaddress(); $name is set equal to the first field of the GECOS, which is assumed to be non-null; when it is not defined, the errors are thrown. I suppose there should be tests for non-null values, and the code should only be executed for defined fullnames. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.27-lizzie Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages libmailtools-perl depends on: ii libtimedate-perl 1.1600-9 Time and date functions for Perl ii perl 5.10.0-17 Larry Wall's Practical Extraction ii perl-modules [libnet-perl]5.10.0-17 Core Perl modules libmailtools-perl recommends no packages. libmailtools-perl suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#504894: [Pkg-nagios-devel] Bug#504894: SA32610: Nagios "cmd.cgi" Cross-Site Request Forgery
Raphael Geissert schrieb am Thursday, den 20. November 2008: > retitle 504894 CVE-2008-5028: Nagios "cmd.cgi" cross-site request forgery > thanks > > 2008/11/7 Raphael Geissert <[EMAIL PROTECTED]>: > [...] > > > > A proposed patch is available at [2]. > > > > If you fix the vulnerability please also make sure to include the SA id (or > > the CVE id when one is assigned) in the changelog entry. > > This issue has been assigned the following id: CVE-2008-5028, please > use it instead of the Secunia Advisory when fixing/referring to this > bug. > > Btw, what's the ETA? If I don't find any new bugs in my patch: Today :). Alex -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#494936: firmware-bnx2: latest lenny requires manual reload of bnx2 driver
Sorry!!! I just realized /boot was mapped wrong! Problem solved. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506371: release-notes: Document screensaver issues during PAM upgrade
Moritz, thanks for the text. There is still some discussion about how to handle #502140. Do you think, we should add your text anyway? (And we should add a link to that bug, right?) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506387: New version no-ip 2.1.8 available
Source: no-ip Severity: wishlist Just want to report that a new version of no-ip is available (2.1.8). http://www.no-ip.com/client/linux/noip-duc-linux.tar.gz -- Regards, Andres signature.asc Description: This is a digitally signed message part.
Bug#506388: /etc/init.d/ntp start should say 'already started, bailing out'
Package: ntp Version: 1:4.2.4p4+dfsg-7 Severity: wishlist Lies. It should say 'already started, bailing out', or 'not starting because already started': # /etc/init.d/ntp start; pidof ntpd Starting NTP server: ntpd. 4958 # /etc/init.d/ntp start; pidof ntpd Starting NTP server: ntpd. 4958 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506222: Bug report was lost
> > Could you please check what happened to my email message, with > > > > Message-Id: <[EMAIL PROTECTED]> > > Date: Tue, 18 Nov 2008 21:29:34 -0500 > > From: Tong Sun <[EMAIL PROTECTED]> > > To: Debian Bug Tracking System <[EMAIL PROTECTED]> > > I don't see it hitting bugs.debian.org at all, unfortunatly. Can you > check your mail logs and see if it actually ended up at > rietz.debian.org? [This is only a test. Sorry if it actually delivers to bts.] The above email message has the exact content and header as bug 506222: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506222 just that the former is sent from my home PC and the latter is what I forwarded from the previous CC. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#495542: Fixing the /tmp usage and a bug in validate PGT()
Hi, On Tuesday 18 November 2008, Olivier Berger wrote: > FYI, I have prepared another package (available at > http://mentors.debian.net/debian/pool/main/l/libcas-php/libcas-php_1.0.1-2. >dsc) > Ok, let's see. > > In order to address the following issues : > > On Tue, Nov 18, 2008 at 09:42:29AM +0100, Olivier Berger wrote: >> >> Le lundi 17 novembre 2008 à 15:20 -0600, Raphael Geissert a écrit :>> >> > debian/rules: >> > What about cleaning it up? >> > >> Sure. >> > done I still see many commented-out lines, why? >dh_installman >dh_link >dh_strip I don't see neither a manpage around nor a debian/links nor an ELF object. If they are not used then don't call them. > >> > debian/copyright: >> > > Upstream Author: >> > > >> > > Pascal Aubry >> > >> > What about also displaying his email address? >> Sure. > done > The Debian packaging is (C) 2008, Olivier Berger <[EMAIL PROTECTED]> and > is licensed under the GPL, see `/usr/share/common-licenses/GPL'. You should better be more specific and say exactly what version of the licence you want. >> > >> > CAS.php: >> > > define("CAS_PGT_STORAGE_FILE_DEFAULT_PATH",'/tmp'); >> > .. >> > > define("CAS_PGT_STORAGE_FILE_FORMAT_PLAIN",'plain'); >> > >> > Doesn't look good at all. >> >> Hmmm... I guess that needs to be fixed indeed. Thanks for spotting that. > > I have applied a patch in order to use /var/lib/libcas-php/pgtstorage/ and not /tmp for storage. I'm not quite convinced that it is a good solution. But let's hold on for a moment on that problem (read below). > > Hope I did it in a safe way. > > > In addition, I have tested more the proxy mode and fixed a nasty crash that occurred in validatePGT with the new domxml-php4-to-php5. > Good > > Any comments welcome $ lintian -I -E libcas-php_1.0.1-2.dsc I: libcas-php source: debian-watch-file-is-missing And what about the api docs? From CAS/client.php: > function setPGTStorageDB($user, ... > trigger_error('PGT storage into database is an experim... If it is not supported then it should be documented and the dependency on php-db dropped or downgraded to suggests if you insist/think there are chances for it to be used. I have not fully reviewed/audited the code, but the code has several vulnerabilities (symlink attacks, directory traversal, and XSS are those I have identified). The symlinks attack can be launched because of predictable file names used and the default storage directory. To make things worst, the user's input is not sanitized, so it is possible to predict the file name where data is going to be written to by passing an arbitrary pgtIou GET argument. The same lack of sanitization allows an attacker to either perform XSS or directory traversal attacks by abusing the callback function in CAS/client.php). Additionally the functions calling getCallbackURL when proxy mode is enabled can lead to XSS attacks if the validation request fails. A similar situation also applies to functions calling getURL. Tomorrow I'll send this information to bugtraq and will file the corresponding bug reports against packages shipping phpCAS. I strongly recommend you and upstream to audit the code. > > Best regards, Cheers, -- Raphael Geissert - Debian Maintainer www.debian.org - get.debian.net signature.asc Description: This is a digitally signed message part.
Bug#498676: nec2c 0.6-3 works on 32bit, fails on 64bit, but works from from debian 0.6-3 source on 64bit
Hello, This is strange. I updated to nec2c 0.6-3 on both my 32bit and 64bit machines. It works fine on 32bit and fails on 64bit. As part of the debugging process I recompiled the 64bit version. The newly recompiled version works just fine. I did an "apt-get --purge remove nec2c"; then "an apt-get install nec2c" to make sure my binary was updated and still it failed. I used "dpkg -i (my compiled package nec2c 0.6-3)" and then it worked fine. I'm using gcc 4:4.3.2-2. I don't know where to start to try to debug this one. -- Jeffrey Hundstad -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506244: mplayer: Can't keep up with 64kbit/s Vorbis on 400MHz CPU
>> mplayer struggles to keep up with a 64kbit/s Vorbis stream on my >> OpenMoko Freerunner, apparently because it uses the floating-point >> version of the Vorbis decoder rather than using the integer version >> (aka Tremor, aka libvorbisidec.so). > Just instruct MPlayer to use Tremor for decoding: > mplayer -afm libvorbis > mplayer -ac vorbis > and/or put something lik > ac=vorbis, > afm=libvorbis, > in your configuration file. This doesn't seem to tell it to use Tremor (i.e. libvorbisidec.so), but to use Xiph's libvorbis.so. So AFAICT it's the same problem (the default codec is ffmpeg which also uses libvorbis.so for Vorbis files). Stefan -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#502761: I suggest removing the call to emacspeakconfig and add a mention in README.Debian
On Thu, Nov 20, 2008 at 09:48:55PM -0500, James R. Van Zandt wrote: > However, I do have a problem with this one: > > > * Use Christian Perrier's patch for stopping the call to > >emacspeakconfig. (Closes: #502761) > > The purpose of the emacspeak package is to make emacs accessible to a > blind user. I think configuration during installation is particularly > important for this package. Without configuration, the user is left > with a broken package. Ordinarily that would not be a serious problem > - he only has to read the emacspeak.info documentation and edit > /etc/emacspeak.conf, or else read the comments in README.Debian and > run emacspeakconfig. However, in this case we may have broken the > tool he would use for those tasks. With 26.0-3, he may be annoyed at > answering configuration questions while packages are being unpacked, > but he finishes with a working program. > > The emacspeak-28.0-4 package: > - has all the above mentioned bugs fixed > - is configured using debconf > - has an extra year's worth of upstream development. > > I would like to have emacspeak-28.0-4 and emacspeak-ss-1.12-2 unblocked. > Failing that, I'll try to backport the debconf changes to the 26.0 > package. Thanks for the explanation, James. I guess it's up to the release team to decide the next course of action. Kumar -- Kumar Appaiah -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506386: meld: "Version control" filter needs updating for current version control systems
Package: meld Version: 1.1.5.1-2 Severity: normal Meld's "Version control" filter needs updating for current version control systems. For instance, it doesn't have .git or .bzr . - Josh Triplett -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.27-1-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages meld depends on: ii python2.5.2-3An interactive high-level object-o ii python-glade2 2.12.1-6 GTK+ bindings: Glade support ii python-gnome2 2.22.0-1 Python bindings for the GNOME desk ii python-gtk2 2.12.1-6 Python bindings for the GTK+ widge ii python-support0.8.7 automated rebuilding support for P Versions of packages meld recommends: ii python-gnome2-desktop 2.22.0-2 Python bindings for the GNOME desk ii yelp 2.22.1-8 Help browser for GNOME 2 meld suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506292: samba: segfault to add user with smbpasswd
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Could you send out the output of "testparm" (better than your entire smb.conf file as this will drop settings that use the default values and enhance what's specific to your system) ? Christian, The result of testpar, basic setings, only to test the server. Linux arvore 2.6.24-etchnhalf.1-686 #1 SMP Mon Oct 13 07:27:05 UTC 2008 i686 GNU/Linux [EMAIL PROTECTED]:/etc/samba/lib# cat /etc/apt/sources.list # deb cdrom:[Debian GNU/Linux LennyBeta2 _Lenny_ - Official Beta i386 DVD Binary-1 20080607-17:21]/ lenny contrib main # deb cdrom:[Debian GNU/Linux LennyBeta2 _Lenny_ - Official Beta i386 DVD Binary-1 20080607-17:21]/ lenny contrib main deb http://ftp.br.debian.org/debian/ lenny main contrib non-free deb-src http://ftp.br.debian.org/debian/ lenny main contrib non-free deb http://security.debian.org/ lenny/updates main contrib non-free deb-src http://security.debian.org/ lenny/updates main contrib non-free [EMAIL PROTECTED]:/etc/samba/lib# ps aux | grep smb root 4672 0.0 0.2 13880 2592 ?Ss 00:38 0:00 /usr/sbin/smbd -D root 4678 0.0 0.1 13880 1040 ?S00:38 0:00 /usr/sbin/smbd -D root 4776 0.0 0.0 3360 692 pts/0R+ 00:44 0:00 grep --color=auto smb [EMAIL PROTECTED]:/etc/samba/lib# ps aux | grep nmb root 4670 0.0 0.1 8292 1420 ?Ss 00:38 0:00 /usr/sbin/nmbd -D root 4778 0.0 0.0 3360 688 pts/0R+ 00:44 0:00 grep --color=auto nmb [EMAIL PROTECTED]:/etc/samba/lib# [EMAIL PROTECTED]:~# testparm Load smb config files from /etc/samba//lib/smb.conf Processing section "[homes]" Processing section "[printers]" Processing section "[print$]" Loaded services file OK. ERROR: lock directory /etc/samba//var/locks does not exist ERROR: pid directory /etc/samba//var/locks does not exist Server role: ROLE_STANDALONE Press enter to see a dump of your service definitions [global] workgroup = CASA server string = %h server obey pam restrictions = Yes passdb backend = tdbsam pam password change = Yes passwd program = /usr/bin/passwd %u passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* . unix password sync = Yes syslog = 0 log file = /var/log/samba/log.%m max log size = 1000 dns proxy = No panic action = /usr/share/samba/panic-action %d [homes] comment = Home Directories valid users = %S create mask = 0700 directory mask = 0700 browseable = No [printers] comment = All Printers path = /var/spool/samba create mask = 0700 printable = Yes browseable = No [print$] comment = Printer Drivers path = /var/lib/samba/printers Does that file exist? Could you look around (particularly in /var for occurrences of secrets.tdb?) [EMAIL PROTECTED]:/var/lib/samba# ls account_policy.tdb group_mapping.ldb ntdrivers.tdb ntforms.tdb ntprinters.tdb passdb.tdb perfmon printers registry.tdb secrets.tdb usershares Even if they do not exist, would not have to be created at the facility, or when I restart the server? Steve Langasek escreveu: > On Thu, Nov 20, 2008 at 08:09:42AM -0200, Flamarion Jorge wrote: > >> After the last upgrade in many packages, samba does not work correctly. >> When i try add a user into samba with command smbpasswd i receive this >> message: > >> [EMAIL PROTECTED]:/etc/samba# smbpasswd -a flamarion >> Failed to open /etc/samba//private/secrets.tdb >> Failed to open /etc/samba//private/secrets.tdb > > This is not where secrets.tdb is supposed to be located on Debian. Either > we have a misapplied patch in 3.2.4, or this is not the Debian version of > smbpasswd. > It's Debian version friend. Thank's Flamarion Jorge -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkkmIA8ACgkQ0SDRnmynUOF91QCdF55oIijGt84GgVxvLlt1b1kv 64QAn2SMw81/W7SnhQyiN/e6jCDETyx/ =1u6g -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#502761: I suggest removing the call to emacspeakconfig and add a mention in README.Debian
Kumar - Fixes for the symlink attacks (#496431) and the info file syntax problem (#500638) are fine. However, I do have a problem with this one: > * Use Christian Perrier's patch for stopping the call to >emacspeakconfig. (Closes: #502761) The purpose of the emacspeak package is to make emacs accessible to a blind user. I think configuration during installation is particularly important for this package. Without configuration, the user is left with a broken package. Ordinarily that would not be a serious problem - he only has to read the emacspeak.info documentation and edit /etc/emacspeak.conf, or else read the comments in README.Debian and run emacspeakconfig. However, in this case we may have broken the tool he would use for those tasks. With 26.0-3, he may be annoyed at answering configuration questions while packages are being unpacked, but he finishes with a working program. The emacspeak-28.0-4 package: - has all the above mentioned bugs fixed - is configured using debconf - has an extra year's worth of upstream development. I would like to have emacspeak-28.0-4 and emacspeak-ss-1.12-2 unblocked. Failing that, I'll try to backport the debconf changes to the 26.0 package. - Jim Van Zandt > Date: Wed, 19 Nov 2008 21:33:28 -0600 > From: Kumar Appaiah <[EMAIL PROTECTED]> > Cc: Christian Perrier <[EMAIL PROTECTED]> > > On Wed, Nov 19, 2008 at 10:09:15PM -0500, James R. Van Zandt wrote: > > Yes, I realize that my first package of version 28.0 missed the > > deadline for Lenny by a few days. The functional difference from > > version 26.0 is not great. (Dr. Raman just increments the version > > number every six months.) However, that does make it a year newer > > than the version currently in testing. > > Thanks James. While you are at it, I hope you didn't mind my upload to > testing to fix a few bugs: > > http://packages.qa.debian.org/e/emacspeak/news/20081112T004707Z.html > > Do voice your concerns if you have any, but I did check with some > emacspeak users before actually going ahead with the uploads for the > RC bug fixes. > > Thanks! > > Kumar > --=20 > Kumar Appaiah -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#443412: Still around?
On Thu, 2008-11-20 at 20:52 +0100, Christoph Egger wrote: > You submitted an bug against supertuxkart about showing up in > fdo/Gonme menu 3 times. Talking to kibi on IRC we could not find this > any more. Can you confirm the bug has gone? This still happens in sid, but it is now shown twice, once in the Games menu and once in the Games/Action menu. Perhaps this is a bug in the GNOME menu system? Reproducing it requires you to install lots of games so that the Games menu has several sub-menus. -- bye, pabs http://wiki.debian.org/PaulWise signature.asc Description: This is a digitally signed message part
Bug#506273: apt-cacher-ng: Expiration takes an ungodly long time (>1 day)
> There is also a recent version in the Unstable archive. Please test > as well, because the one in Lenny is "old" and buggy, even if the > Release Managers seem to have no problem with that. The recent version works. I'm tempted (but only tempted) to mark the bug serious so that a newer version can migrate because the old version hadn't completed after more than a day and a half of having full CPU most of the time. That pretty much makes it unusable and IMNSHO makes it RC, but since the RM's seem to disagree there doesn't seem to be much to be done about it. In any event, thank you for pointing me to the newer version. Regards, Daniel -- And that's my crabbing done for the day. Got it out of the way early, now I have the rest of the afternoon to sniff fragrant tea-roses or strangle cute bunnies or something. -- Michael Devore GnuPG Key Fingerprint 86 F5 81 A5 D4 2E 1F 1C http://gnupg.org The C Shore: http://www.wightman.ca/~cshore signature.asc Description: PGP signature
Bug#506385: dpkg - warning: while removing shared-mime-info, directory `/usr/share/mime' not empty so not removed.
Package: shared-mime-info Purging configuration files for shared-mime-info ... dpkg - warning: while removing shared-mime-info, directory `/usr/share/mime' not empty so not removed. # grep Sy /usr/share/mime/x-epoc/x-sisx-app.xml Symbian Installation File All I know is installing xfce4 and dependencies put this file there. Please reassign the bug to the real culprit. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#502140: restarting xscreensaver
On Thu, Nov 20, 2008 at 11:47:49PM +0100, Moritz Muehlenhoff wrote: > On Sat, Nov 15, 2008 at 11:55:55PM -0800, Steve Langasek wrote: > > On Wed, Oct 22, 2008 at 08:49:27AM +0200, Thomas Viehmann wrote: > > Well, that sounds better than the current state, but a) the code for it > > isn't written and I'm not familiar enough with xscreensaver to be confident > > of getting it right on the first try myself, b) we have to cover more than > > just xscreensaver (xlockmore is also affected AIUI), c) I'm not sure if > > peeking in /proc is going to work if the user has SELinux turned on. > > It also seems to introduce a race condition where the display is unlocked > > and vulnerable to attack during the upgrade, which I'd prefer not to have > > pam itself be responsible for. I think advising the user to disable the > > screensaver for the duration of the upgrade is a choice I'd be more > > comfortable with, rather than forcibly restarting the screensaver. > I've filed a bug against release-notes which such an advise (bug number > not yet available). > | During the upgrade of the Pluggable Authentication Modules system, the > | authentication modes need to be restarted. Some services used for locking > | a user session cannot be restarted, e.g. xscreensaver, gnome-screensaver > | or xlockmore. It is recommended to stop them before starting the update. > So we can downgrade this to something not-RC. The release managers can override of course, but I disagree. I think it's important that this be documented in-line when you perform the upgrade itself; I'm working on updating libpam0g to do that. I've mostly been delayed because libpam0g is the wrong place for this question - it belongs to libpam-modules, but libpam-modules would need to ask in the package preinst and is a transitively-essential package, so I'm trying to make sure I get the semantics right here before uploading anything. -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. Ubuntu Developerhttp://www.debian.org/ [EMAIL PROTECTED] [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506384: dpkg - warning: while removing shared-mime-info, directory `/usr/share/mime' not empty so not removed
Package: thunar-data dpkg - warning: while removing shared-mime-info, directory `/usr/share/mime' not empty so not removed. Removing thunar-data ... Purging configuration files for thunar-data ... dpkg - warning: while removing thunar-data, directory `/usr/share/doc/thunar-data' not empty so not removed. # ll /usr/share/doc/thunar-data total 0 lrwxrwxrwx 1 root root 11 Nov 17 22:30 thunar-data -> thunar-data -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506383: debdelta-upgrade: crash when /proc is not mounted
Package: debdelta Version: 0.27 Severity: normal File: debdelta-upgrade In my i386 chroot where I sometimes don't have /proc mounted, debdelta-upgrade crashes when it is started. I think it should be able to work without /proc. It should be robust enough to exit with a human-readable error if it absolutely cannot start without /proc though. # debdelta-upgrade grep: /proc/cpuinfo: No such file or directory Traceback (most recent call last): File "/usr/bin/debdelta-upgrade", line 122, in BOGOMIPS=float(f.read().split(':')[-1]) ValueError: empty string for float() -- System Information: Debian Release: lenny/sid APT prefers testing APT policy: (700, 'testing'), (600, 'unstable'), (550, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.26-1-amd64 (SMP w/2 CPU cores) Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages debdelta depends on: ii bsdiff 4.3-6 generate/apply a patch between two ii libbz2-1.0 1.0.5-1 high-quality block-sorting file co ii libc6 2.7-16GNU C Library: Shared libraries ii python 2.5.2-3 An interactive high-level object-o ii xdelta 1.1.3-8 A diff utility which works with bi ii zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime Versions of packages debdelta recommends: ii python-apt 0.7.7.1+nmu1 Python interface to libapt-pkg ii xdelta3 0s.dfsg-1A diff utility which works with bi -- bye, pabs http://wiki.debian.org/PaulWise signature.asc Description: This is a digitally signed message part
Bug#506382: twiki: webmaster email not set
Package: twiki Version: 1:4.1.2-5 Severity: normal After running through a standard install, including accepting the default webmaster email address, the twiki configuration reports an empty email address for {WebMasterEmail}. Here's a snippet from the terminal where the install ran: Please enter the email address that will receive new user registration mail. This address will also be displayed in the "oops" page when errors occur. Email address of the webmaster for this TWiki: [EMAIL PROTECTED] -- System Information: Debian Release: lenny/sid APT prefers testing APT policy: (500, 'testing'), (500, 'stable'), (50, 'unstable'), (40, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.26-1-686 (SMP w/2 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/bash Versions of packages twiki depends on: ii apache2-mpm-worker [apache 2.2.9-10 Apache HTTP Server - high speed th ii debconf [debconf-2.0] 1.5.24Debian configuration management sy ii libalgorithm-diff-perl 1.19.02-1 a perl library for finding Longest ii libcgi-session-perl4.35-1Persistent session data in CGI app ii libdigest-sha1-perl2.11-2+b1 NIST SHA-1 message digest algorith ii liberror-perl 0.17-1Perl module for error/exception ha ii libhtml-parser-perl3.56-1+b1 A collection of modules that parse ii liblocale-maketext-lexicon 0.66-1Lexicon-handling backends for "Loc ii libtext-diff-perl 0.35-3Perform diffs on files and record ii liburi-perl1.35.dfsg.1-1 Manipulates and accesses URI strin ii perl [libmime-base64-perl] 5.10.0-17 Larry Wall's Practical Extraction ii perl-modules [libnet-perl] 5.10.0-17 Core Perl modules ii rcs5.7-23The GNU Revision Control System twiki recommends no packages. Versions of packages twiki suggests: ii libunicode-maputf8-perl 1.11-2 Perl module for conversing between -- debconf information: * twiki/samplefiles: true * twiki/wikiwebmaster: [EMAIL PROTECTED] * twiki/defaultUrlHost: http://localhost/ * twiki/apacheUserCreationNote: * twiki/adminuser: admin twiki/password_mismatch: -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506179: Fwd: Bug#506179: no-ip: remote code execution vulnerability
I'll upload to unstable. Will someone be handling the upload to stable? -- Regards, Andres signature.asc Description: This is a digitally signed message part.
Bug#506381: dpkg-reconfigure shouldn't fail if we aren't running wwwoffle
Package: wwwoffle Version: 2.9d-3 Severity: wishlist dpkg-reconfigure shouldn't fail if we aren't running wwwoffle. E.g., on this system I have used rcconf to disable wwwoffle at boot, but still wish to dpkg-reconfigure it. # dpkg-reconfigure wwwoffle Stopping HTTP cache proxy server: wwwoffled...can't connect to control socket. Trying to signal daemon process...failed, daemon was not running. invoke-rc.d: initscript wwwoffle, action "stop" failed. # /etc/init.d/wwwoffle start Starting HTTP cache proxy server: wwwoffled wwwoffled[1434] Timestamp: Fri Nov 21 09:27:32 2008 (offline mode) done. # dpkg-reconfigure wwwoffle Stopping HTTP cache proxy server: wwwoffled ok. Checking for htdig package... Fixing ownership of spooldirs in the background. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#253838: [Pkg-openldap-devel] Bug#253838: Bug#253838: Security risk in libldap
--On Thursday, November 20, 2008 2:49 PM -0800 Quanah Gibson-Mount <[EMAIL PROTECTED]> wrote: --On Thursday, November 20, 2008 11:37 PM +0100 Moritz Muehlenhoff <[EMAIL PROTECTED]> wrote: I suggest you talk to the OpenLDAP folks before applying this. ITS#4750 has been fixed in RE24, and will be part of 2.4.13. --Quanah -- Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc Zimbra :: the leader in open source messaging and collaboration -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506380: need linux-image-openmoko-gta02 parent package
Package: linux-image-2.6.24-openmoko-gta02 Severity: wishlist Sooner or later you will need to also make linux-image-2.6-openmoko-gta02 and/or linux-image-openmoko-gta02 packages. There needs to be a "linux-image-686 linux-image-2.6-686 linux-image-2.6.26-1-686" type string of packages created, instead of just e.g., hardwiring "linux-image-2.6.24-openmoko-gta02" into http://pkg-fso.alioth.debian.org/freerunner/install.sh . Also apt-get dist-upgrade won't ever get past 2.6.24 otherwise. Copied from http://lists.linuxtogo.org/pipermail/smartphones-userland/2008-November/000494.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506379: wmcalclock -30 has a daylight savings bug for one hour each year
Package: wmcalclock Version: 1.25-14 The wmcalclock 30-hour time patch has a daylight savings time bug that causes the wrong date to be displayed for exactly one hour each year. Reproduce by running datefudge "2006-04-02 23:59:55" wmcalclock -30 and watching the date roll over from Apr. 2 to Apr. 1. Here is a fix. (This algorithm has been tested against a 72-hour period surrounding both DST changes.) --- wmcalclock-1.25.orig/debian/patches/02_30hr_patch.dpatch2008-11-20 19:49:36.0 -0500 +++ wmcalclock-1.25/debian/patches/02_30hr_patch.dpatch 2008-11-20 19:55:37.0 -0500 @@ -30,7 +30,7 @@ +/* Careful. Need to handle daylight savings time changes correctly. */ +if (Time->tm_hour < 6){ +int old_hour = Time->tm_hour; -+time_t new_time = CurrentLocalTime - 24 * 60 * 60; ++time_t new_time = CurrentLocalTime - 12 * 60 * 60; +Time = localtime(&new_time); +Time->tm_hour = old_hour + 24; +} -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506210: lynx-cur: reduce need for build-dependencies just to detect paths in configure
On Wed, 19 Nov 2008 11:58:14 +, Colin Watson wrote: > In Ubuntu, we try to keep the size of our "main" component under > control, and packages in main are only allowed to build-depend or depend > on other packages in main; this lets us use main as a set of packages on > which we offer better-quality support and so on. As a result I found > myself looking at the long build-dependency list of lynx-cur; Great! Thanks for your efforts. > It seems that a build-dependency isn't actually necessary for this; you > can get configure to detect the path you want by means of an environment > variable. I've attached the patch I applied in Ubuntu to remove the need > for the build-dependency on ncompress, but perhaps you'd like to extend > this to other build-dependencies that aren't truly needed at build time? At present, I only removed ncompress but as you suggested there are some more which can be handled with environment variables. I'll check further and reduce number of packages of Build-Depends later. Thanks for your advice. Regards,2008-11-21(Fri) -- Debian Developer - much more I18N of Debian Atsuhito Kohda Department of Math., Univ. of Tokushima -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506278: lynx-cur: lynx should have info. in the homepage field
On Thu, 20 Nov 2008 09:28:38 +0530, shirish wrote: > Using apt-get or aptitude and seeing either lynx or lynx-cur info. I > don't see the browser's homepage . > Homepage:http://lynx.isc.org/ should be attached to the same. Thanks, I added the above line in the new package. Regards, 2008-11-21(Fri) -- Debian Developer - much more I18N of Debian Atsuhito Kohda Department of Math., Univ. of Tokushima -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#504894: SA32610: Nagios "cmd.cgi" Cross-Site Request Forgery
retitle 504894 CVE-2008-5028: Nagios "cmd.cgi" cross-site request forgery thanks 2008/11/7 Raphael Geissert <[EMAIL PROTECTED]>: [...] > > A proposed patch is available at [2]. > > If you fix the vulnerability please also make sure to include the SA id (or > the CVE id when one is assigned) in the changelog entry. This issue has been assigned the following id: CVE-2008-5028, please use it instead of the Secunia Advisory when fixing/referring to this bug. Btw, what's the ETA? > > [1]http://secunia.com/Advisories/32610/ > [2]http://git.op5.org/git/?p=nagios.git;a=commit;h=814d8d4d1a73f7151eeed187c0667585d79fea18 > > Cheers, Cheers, -- Raphael Geissert - Debian Maintainer www.debian.org - get.debian.net Alfred Hitchcock - "Television has brought back murder into the home - where it belongs." -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506258: dpkg doesn't handle symlinks to directories as directory
Hi, On Thu, 2008-11-20 at 13:02:54 +0100, Carl Fürstenberg wrote: > Thanks for the information Guillem, though I'm wonder if this fix is > going to be applied to etch as well, or will I need to apply the fix > my self locally? As discussed on IRC, I'll be contacting the stable release team and ask if an update for etch for this would be fine with them. regards, guillem -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506378: RFP: videoporama -- turn a series of images into a video/DVD slideshow
Package: wnpp Severity: wishlist * Package name: videoporama Version : 0.6.2 Upstream Author : Ponchaut Olivier <[EMAIL PROTECTED]> * URL : http://users.edpnet.be/opvg/images2dv/index_en.html * License : GPL Programming Lang: Python Description : turn a series of images into a video/DVD slideshow Videoporama is a tool which turns a series of images or photos into a video slideshow. The following options are available: . - transitions between images - support for 4:3 or 16:9 image geometry - display time and transition type can be set for each image - sound support (wav, ogg or MP3) - output in PAL, NTSC or SECAM - support output file formats : Raw dv, AVI type 1 & 2, MPEG (VCD, SVCD, XVCD & DVD) - background image or color Here is a sample (downsampled) video: http://users.edpnet.be/opvg/images2dv/demo_horse.avi -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#504328: current patch
Hi, 2008/11/4 Steffen Joeris <[EMAIL PROTECTED]>: > Hi > > This is what upstream uses at the moment: > http://code.google.com/p/smarty-php/source/detail?r=2797&path=/trunk/libs/Smarty_Compiler.class.php > > Also this issue has been given CVE-2008-4811 and CVE-2008-4810. I am trying to > clarify the situation with other vendors. In the meanwhile, please have a > look at the patch. I am not sure, whether it fixes all attack vectors, maybe > you can state your opinion as well? As already clarified via IRC and in another email in the ML, CVE-2008-4810 is this bug report, and -4811 documents another attack vector. The address to the patch I provided on my original email fixes -4810 but doesn't fix -4811. Should I clone the bug? or should we handle both CVEs in the same bug report? There hasn't been any news about a fix for -4811. > > Cheers > Steffen > Cheers, -- Raphael Geissert - Debian Maintainer www.debian.org - get.debian.net P. J. O'Rourke - "Never wear anything that panics the cat." -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506377: CVE-2008-4829: Streamripper multiple buffer overflow vulnerabilities
Package: streamripper Version: 1.63.5-1 Severity: grave Tags: security patch Hi, The following CVE (Common Vulnerabilities & Exposures) id was published for streamripper. CVE-2008-4829/SA32562[1]: > Secunia Research has discovered some vulnerabilities in Streamripper, which > can be exploited by malicious people to compromise a user's system. > > 1) A boundary error exists within the function "http_parse_sc_header()" in > lib/http.c when parsing an overly long HTTP header starting with > "Zwitterion v". > > 2) A boundary error exists within the function "http_get_pls()" in > lib/http.c when parsing a specially crafted pls playlist containing an > overly long entry. > > 3) A boundary error exists within the function "http_get_m3u()" in > lib/http.c when parsing a specially crafted m3u playlist containing an > overly long "File" entry. > > Successful exploitation allows the execution of arbitrary code, but > requires that a user is tricked into connecting to a malicious server. > > The vulnerabilities are confirmed in version 1.63.5. Other versions may > also be affected. The patch by upstream to fix the vulnerabilities can be found at [2]. It would be great if you could verify whether the version in etch is also affected. If you fix the vulnerability please also make sure to include the CVE id in the changelog entry. [1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4829 http://security-tracker.debian.net/tracker/CVE-2008-4829 http://secunia.com/Advisories/32562/ [2]http://streamripper.cvs.sourceforge.net/viewvc/streamripper/sripper_1x/lib/http.c?view=patch&r1=1.50&r2=1.51&pathrev=sripper-1_64_0 Cheers, -- Raphael Geissert - Debian Maintainer www.debian.org - get.debian.net signature.asc Description: This is a digitally signed message part.
Bug#506376: does not honour changes to /etc/default/watchdog
Package: watchdog Version: 5.4-9 Severity: serious On upgrades, the package overwrites /etc/default/watchdog with values from debconf without initialising them in postinst. The effect is that changes to /etc/default/watchdog get overwritten. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.26-1-amd64 (SMP w/1 CPU core) Locale: LANG=en_GB, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages watchdog depends on: ii debconf [debconf-2.0] 1.5.24 Debian configuration management sy ii libc6 2.7-16 GNU C Library: Shared libraries ii makedev 2.3.1-88 creates device files in /dev ii udev 0.125-7/dev/ and hotplug management daemo watchdog recommends no packages. watchdog suggests no packages. -- debconf-show failed -- .''`. martin f. krafft <[EMAIL PROTECTED]> : :' : proud Debian developer, author, administrator, and user `. `'` http://people.debian.org/~madduck - http://debiansystem.info `- Debian - when you have better things to do than fixing systems digital_signature_gpg.asc Description: Digital signature (see http://martin-krafft.net/gpg/)
Bug#506374: twiki: No obvious way to configure
Once I got to the configure page, there was an error or warning that the {ScriptUrlPath} was not as expected; in fact it was blank. -- Ross Boylan wk: (415) 514-8146 185 Berry St #5700 [EMAIL PROTECTED] Dept of Epidemiology and Biostatistics fax: (415) 514-8150 University of California, San Francisco San Francisco, CA 94107-1739 hm: (415) 550-1062 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#483781: FAT: utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
tags 483781 -wontfix thanks How is a mount helper supposed to address this? Having anything other than utf8 exposed on the vfs is broken, so it needs to be mounted as utf8; the fact that mounting as utf8 breaks vfat case-insensitivity is a bug in the vfat kernel driver. -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. Ubuntu Developerhttp://www.debian.org/ [EMAIL PROTECTED] [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#480041: confirmation that debian #480041 is a gnutls problem, and steps to reproduce
OK, i'm now sure that debian #480041 is a gnutls problem, and not just due to something wacky in libneon (though there may be libneon bits as well). Here's a way to duplicate the problem without using libneon. Add the following line to /etc/hosts: 127.0.0.1 fubar.example.org Generate an X.509 self-signed key/cert pair (or use an existing key/cert pair -- it doesn't have to be self-signed): mkdir /tmp/testing && cd /tmp/testing openssl req -newkey rsa:1024 -keyout key.pem -nodes -subj '/CN=fubar.example.org' -x509 > cert.pem Configure an apache2 virtualhost like this: ServerName fubar.example.org DocumentRoot /var/www/ SSLEngine on SSLCertificateFile /tmp/testing/cert.pem SSLCertificateKeyFile /tmp/testing/key.pem SSLCACertificateFile /tmp/testing/cert.pem SSLVerifyClient optional Then run the following command to simulate a web connection: HTTP_QUERY='GET / http/1.1\r\nHost: fubar.example.org\r\n\r\n' (sleep 3 && echo -e "$HTTP_QUERY" && sleep 3) | gnutls-cli fubar.example.org The tail of the output looks like this for me: - ... - Peer's certificate issuer is unknown - Peer's certificate is NOT trusted - Version: TLS1.0 - Key Exchange: DHE-RSA - Cipher: AES-128-CBC - MAC: SHA1 - Compression: NULL - Handshake was completed - Simple Client Mode: *** Non fatal error: Rehandshake was requested by the peer. *** Fatal error: A TLS fatal alert has been received. *** Received alert [10]: Unexpected message *** Server has terminated the connection abnormally. - The apache2 error log looks like: [Thu Nov 20 18:55:30 2008] [error] Re-negotiation handshake failed: Not accepted by client!? Interestingly, if i don't wrap the "SSLVerifyClient optional" line in the tag, the connection goes through cleanly. I think this means that the problem appears when the handshake is re-negotiated after some traffic has already been sent. Hope this is helpful in debugging the problem. --dkg pgp12fWYSt9O2.pgp Description: PGP signature
Bug#506375: [update-manager] There is NO version number or Help on Update-Manager
Package: update-manager Version: 0.68.debian-7 Severity: normal --- Please enter the report below this line. --- I fell like I am flying in the dark. No Help, NO version number. Does U-M use the APT conf files? I see the version number is here in the bug report! But no help. --- System information. --- Architecture: amd64 Kernel: Linux 2.6.26-01jmc64 Debian Release: lenny/sid 990 testing www.debian-multimedia.org 990 testing security.debian.org 990 testing ftp.us.debian.org 500 unstableftp.us.debian.org 500 testing-proposed-updates ftp.us.debian.org 500 stable security.debian.org 500 stable http.us.debian.org 500 stable ftp.us.debian.org 500 proposed-updates http.us.debian.org --- Package information. --- Depends (Version) | Installed =-+-== python (>= 2.4) | 2.5.2-3 python-support (>= 0.7.1) | 0.8.7 gconf2 (>= 2.10.1-2) | 2.22.0-1 libgnome2-perl| 1.042-1+b1 python-gnome2 (>= 2.12.4-1) | 2.22.0-1 python-glade2(>= 2.8.2-4) | 2.12.1-6 python-vte| 1:0.16.14-4 python-dbus | 0.83.0-1 synaptic | 0.62.3 update-manager-core | 0.68.debian-7 software-properties-gtk | 0.60.debian-1.1 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506374: twiki: No obvious way to configure
Package: twiki Version: 1:4.1.2-5 Severity: normal I may be missing something obvious, but having just installed twiki I am unable to start the configuration process. The README.Debian suggests following the installation instructions from http://localhost/cgi-bin/twiki/view/TWiki/TWikiInstallationGuide#Next_Steps and that recommends (under "Enable Authentication of Users") accessing the configure panel. Looking earlier in the instructions, it says "Run the configure script from your browser (i.e. enter http://yourdomain/twiki/bin/configure...) ". I accepted all the defaults on installation and am logged in as the admin user. Using localhost where the instructions say yourdomain, I get a 404 error. I tried several variants, with the same results. I notice this line is commented out in /etc/twiki/apache.conf: #ScriptAlias /twiki/bin "/var/lib/twiki/bin" Should that be enabled? Is this a security precaution? When I uncomment the ScriptAlias I am able to access the configuration using http://localhost/twiki/bin/configure. -- System Information: Debian Release: lenny/sid APT prefers testing APT policy: (500, 'testing'), (500, 'stable'), (50, 'unstable'), (40, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.26-1-686 (SMP w/2 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/bash Versions of packages twiki depends on: ii apache2-mpm-worker [apache 2.2.9-10 Apache HTTP Server - high speed th ii debconf [debconf-2.0] 1.5.24Debian configuration management sy ii libalgorithm-diff-perl 1.19.02-1 a perl library for finding Longest ii libcgi-session-perl4.35-1Persistent session data in CGI app ii libdigest-sha1-perl2.11-2+b1 NIST SHA-1 message digest algorith ii liberror-perl 0.17-1Perl module for error/exception ha ii libhtml-parser-perl3.56-1+b1 A collection of modules that parse ii liblocale-maketext-lexicon 0.66-1Lexicon-handling backends for "Loc ii libtext-diff-perl 0.35-3Perform diffs on files and record ii liburi-perl1.35.dfsg.1-1 Manipulates and accesses URI strin ii perl [libmime-base64-perl] 5.10.0-17 Larry Wall's Practical Extraction ii perl-modules [libnet-perl] 5.10.0-17 Core Perl modules ii rcs5.7-23The GNU Revision Control System twiki recommends no packages. Versions of packages twiki suggests: ii libunicode-maputf8-perl 1.11-2 Perl module for conversing between -- debconf information: * twiki/samplefiles: true * twiki/wikiwebmaster: [EMAIL PROTECTED] * twiki/defaultUrlHost: http://localhost/ * twiki/apacheUserCreationNote: * twiki/adminuser: admin twiki/password_mismatch: -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506354: lvm2: system fails to boot after upgrade
21 листопада 2008 о 00:45 +0100 Bastian Blank написав(-ла): > On Fri, Nov 21, 2008 at 12:21:43AM +0100, Eugeniy Meshcheryakov wrote: > > 21 листопада 2008 о 00:09 +0100 Bastian Blank написав(-ла): > > > You have /var/lock on a different filesystem than /? > > Yes, /var is on an LV. > > > Seems that it needs to use /lib/init/rw. > > Can you please change the locking_dir setting in /etc/lvm/lvm.conf to > /lib/init/rw? I did. It fixed the problem. Thanks, Eugeniy Meshcheryakov signature.asc Description: Digital signature
Bug#504931: reportbug gives errors when looking up bugs on openoffice.org-writer from experimental
Hello Jake, On Fri, Nov 7, 2008 at 16:49, Jake-Todd <[EMAIL PROTECTED]> wrote: > Package: reportbug > Version: 3.46 > Severity: important > > When trying to fill out a bug report for openoffice-writer from experimental, > I recieved tese errors: > ... > UnicodeDecodeError: 'utf8' codec can't decode bytes in position 125-126: > invalid data > > All I was doing was trying to fill out a bug report for oo.o-writer. May you please try to replicate it with the latest version, 3.47? I think I fixed it in that version, and the test here confirms this, but your check is appreciated. Thanks, -- Sandro Tosi (aka morph, Morpheus, matrixhasu) My website: http://matrixhasu.altervista.org/ Me at Debian: http://wiki.debian.org/SandroTosi -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506354: lvm2: system fails to boot after upgrade
On Fri, Nov 21, 2008 at 12:21:43AM +0100, Eugeniy Meshcheryakov wrote: > 21 листопада 2008 о 00:09 +0100 Bastian Blank написав(-ла): > > You have /var/lock on a different filesystem than /? > Yes, /var is on an LV. > > Seems that it needs to use /lib/init/rw. Can you please change the locking_dir setting in /etc/lvm/lvm.conf to /lib/init/rw? Bastian -- The man on tops walks a lonely street; the "chain" of command is often a noose. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#505847: How to remove package?
On Thu, 20 Nov 2008 12:28:51 -0500, Peter Jay Salzman <[EMAIL PROTECTED]> wrote: > How can this package be removed? Dpkg won't let me uninstall it due to > unregistered fonts. Hi Peter, I just uploaded the new version and I believe you can remove the new package. Please update first and remove it. Regards,2008-11-21(Fri) -- Debian Developer - much more I18N of Debian Atsuhito Kohda Department of Math., Univ. of Tokushima -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506373: complement on the subject line & body
retitle 506373 Evolution recklessy ignores the charset on text/html email fragments and causes glib's death by ana-utf8-phylactic shock thanks Although the subject line is (correclty) encoded in windows-1252 and appears to contain the offending string, it does not appear to be the cause of trouble. The offending string can be found in the scrap of html sent by Google as the first MIME part of the message body; quoting the bit: [EMAIL PROTECTED], vous êtes invité(e) à participer à Concert Paris-Novembre (Réxx Vé) (here, gedit did automatically convert that from ISO-8859-15 to UTF-8, hence none of the diacritics appear mutilated. hexdumping the MIME bit does confirm the ISO-8859-15 encoding: 01c0 20 73 74 79 6c 65 3d 22 6d 61 72 67 69 6e 3a 30 | style="margin:0| 01d0 3b 63 6f 6c 6f 72 3a 23 30 22 3e 63 79 72 69 6c |;color:#0">cyril| 01e0 6c 65 40 63 68 65 70 65 6c 6f 76 2e 6f 72 67 2c | [EMAIL PROTECTED],| 01f0 0a 76 6f 75 73 20 ea 74 65 73 20 69 6e 76 69 74 |.vous .tes invit| 0200 e9 28 65 29 20 e0 20 70 61 72 74 69 63 69 70 65 |.(e) . participe| 0210 72 20 e0 3c 2f 70 3e 0a 3c 68 32 20 73 74 79 6c |r ..Conce| 0260 72 74 20 50 61 72 69 73 2d 4e 6f 76 65 6d 62 72 |rt Paris-Novembr| 0270 65 20 28 52 e9 78 78 20 56 79 79 79 79 e9 29 3c |e (R.xx V.)<| Inspecting the raw RFC-2822 message, it appears that the bit of HTML does have content-type Content-Type: text/html; charset=windows-1252. While I regret that Google did not include redundant metadata within the text/html bit, there not only there was proper warning that utf-8 this was not, but also the default encoding was set to be 8859-15. Therefore, what happened is that Evolution failed to properly convert this fragment into proper UTF-8 before handing it over to glib (and in any case, it definitely should have bleached it to not provide an invalid UTF-8 fragment down the HTML renderer). Assigning the blame on Evolution for sure. I will gladly provide the raw RFC-2822 offending message, but on a non-disclosure basis. Thanks in advance. -- Cyrille
Bug#506244: mplayer: Can't keep up with 64kbit/s Vorbis on 400MHz CPU
On Wed, Nov 19, 2008 at 01:52:41PM -0500, Stefan Monnier wrote: > > mplayer struggles to keep up with a 64kbit/s Vorbis stream on my > OpenMoko Freerunner, apparently because it uses the floating-point > version of the Vorbis decoder rather than using the integer version > (aka Tremor, aka libvorbisidec.so). Just instruct MPlayer to use Tremor for decoding: mplayer -afm libvorbis mplayer -ac vorbis and/or put something lik ac=vorbis, afm=libvorbis, in your configuration file. Diego -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506264: closed by Daniel Baumann <[EMAIL PROTECTED]> (Bug#506264: fixed in gnunet 0.8.0b-4)
Just FYI, After the most recent attempt to run gnunet-update, I resorted to killing the controlling shell (su'd) reverting to another shell. I have come back to this tty some 24 hrs later to find 'Starting datastore conversion (this may take a while).' followed by 'Completed datastore conversion.' The freeze being temporary but -at-least- 30 minutes in duration before even the first message being displayed (ie. starting message). I will try the update now. Regards, On Thu, Nov 20, 2008 at 09:38:38PM +, Debian Bug Tracking System wrote: > > This is an automatic notification regarding your Bug report > which was filed against the gnunet-server package: > > #506264: gnunet-server: freeze in gnunet-update > > It has been closed by Daniel Baumann <[EMAIL PROTECTED]>. > > Their explanation is attached below along with your original report. > If this explanation is unsatisfactory and you have not received a > better one in a separate message then please contact Daniel Baumann <[EMAIL > PROTECTED]> by > replying to this email. > > > -- > 506264: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506264 > Debian Bug Tracking System > Contact [EMAIL PROTECTED] with problems > X-Spam-Checker-Version: SpamAssassin 3.2.3-bugs.debian.org_2005_01_02 > (2007-08-08) on rietz.debian.org > X-Spam-Level: > X-Spam-Bayes: score:0. Tokens: new, 86; hammy, 151; neutral, 131; spammy, > 0. spammytokens: hammytokens:0.000-+--HX-Debian:DAK, > [EMAIL PROTECTED], 0.000-+--H*RU:128.148.34.103, > 0.000-+--UD:diff.gz, 0.000-+--H*rp:D*ries.debian.org > X-Spam-Status: No, score=-13.9 required=4.0 tests=AWL,BAYES_00,FROMDEVELOPER, > FVGT_m_MULTI_ODD,HAS_BUG_NUMBER,HEADER_X_KATIE,IMPRONONCABLE_1, > IMPRONONCABLE_2,MURPHY_WRONG_WORD1,MURPHY_WRONG_WORD2,PGPSIGNATURE > autolearn=ham version=3.2.3-bugs.debian.org_2005_01_02 > From: Daniel Baumann <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED] > X-DAK: dak process-unchecked > X-Katie: $Revision: 1.65 $ > X-Debian: DAK > X-Debian-Package: gnunet > Subject: Bug#506264: fixed in gnunet 0.8.0b-4 > Date: Thu, 20 Nov 2008 21:02:09 + > > Source: gnunet > Source-Version: 0.8.0b-4 > > We believe that the bug you reported is fixed in the latest version of > gnunet, which is due to be installed in the Debian FTP archive: > > gnunet-client_0.8.0b-4_i386.deb > to pool/main/g/gnunet/gnunet-client_0.8.0b-4_i386.deb > gnunet-common_0.8.0b-4_i386.deb > to pool/main/g/gnunet/gnunet-common_0.8.0b-4_i386.deb > gnunet-dbg_0.8.0b-4_i386.deb > to pool/main/g/gnunet/gnunet-dbg_0.8.0b-4_i386.deb > gnunet-dev_0.8.0b-4_i386.deb > to pool/main/g/gnunet/gnunet-dev_0.8.0b-4_i386.deb > gnunet-server_0.8.0b-4_i386.deb > to pool/main/g/gnunet/gnunet-server_0.8.0b-4_i386.deb > gnunet-tools_0.8.0b-4_i386.deb > to pool/main/g/gnunet/gnunet-tools_0.8.0b-4_i386.deb > gnunet_0.8.0b-4.diff.gz > to pool/main/g/gnunet/gnunet_0.8.0b-4.diff.gz > gnunet_0.8.0b-4.dsc > to pool/main/g/gnunet/gnunet_0.8.0b-4.dsc > gnunet_0.8.0b-4_all.deb > to pool/main/g/gnunet/gnunet_0.8.0b-4_all.deb > > > > A summary of the changes between this version and the previous one is > attached. > > Thank you for reporting the bug, which will now be closed. If you > have further comments please address them to [EMAIL PROTECTED], > and the maintainer will reopen the bug report if appropriate. > > Debian distribution maintenance software > pp. > Daniel Baumann <[EMAIL PROTECTED]> (supplier of updated gnunet package) > > (This message was generated automatically at their request; if you > believe that there is a problem with it please contact the archive > administrators by mailing [EMAIL PROTECTED]) > > > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Format: 1.8 > Date: Thu, 20 Nov 2008 07:16:00 +0100 > Source: gnunet > Binary: gnunet gnunet-client gnunet-common gnunet-dbg gnunet-server > gnunet-dev gnunet-tools > Architecture: source all i386 > Version: 0.8.0b-4 > Distribution: unstable > Urgency: low > Maintainer: Daniel Baumann <[EMAIL PROTECTED]> > Changed-By: Daniel Baumann <[EMAIL PROTECTED]> > Description: > gnunet - secure, trust-based peer-to-peer framework (meta) > gnunet-client - secure, trust-based peer-to-peer framework (client) > gnunet-common - secure, trust-based peer-to-peer framework (common) > gnunet-dbg - secure, trust-based peer-to-peer framework (debug) > gnunet-dev - secure, trust-based peer-to-peer framework (development) > gnunet-server - secure, trust-based peer-to-peer framework (server) > gnunet-tools - secure, trust-based peer-to-peer framework (tools) > Closes: 506264 > Changes: > gnunet (0.8.0b-4) unstable; urgency=low > . >* Removing config.guess and config.sub in clean target of rules. >* Adding db_stop call in gnunet-server.postinst to properly stop > debconf interactions. >* Replacing obsolete dh_clean -k with dh_prep. >* Adding '|| true' to gnunet-update call, this way a hanging gnunet- >
Bug#506354: lvm2: system fails to boot after upgrade
21 листопада 2008 о 00:09 +0100 Bastian Blank написав(-ла): > You have /var/lock on a different filesystem than /? > Yes, /var is on an LV. > Seems that it needs to use /lib/init/rw. signature.asc Description: Digital signature
Bug#506368: newer upstream version of org-mode is available
tag 506368 + confirmed pending thanks Will do soon; I am unsure this will solve anything regarding emacs-snapshot, as this is not officially in Debian. If some upstream change recently made org-mode compatible, then awesome ! Cheers, --Seb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506261: enscript: Buffer overflows
On Wed, 2008-11-19 at 23:29 +0100, Moritz Muehlenhoff wrote: > Package: enscript > Version: 1.6.4-12 > Severity: grave > Tags: security > Justification: user security hole > > Hi, > buffer overflows have been discovered in enscript: > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3863 > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4306 > > I'm attaching a patch by Werner Fink of SuSE covering these > issues. Right, lamby is sponsoring this for me. I added the CVE numbers to the changelog entry and the patch header. Would you like a package for stable-security? -- Tim Retout <[EMAIL PROTECTED]> -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#488693: mirror submission for mirror.hmc.edu
"SP" == Simon Paillard <[EMAIL PROTECTED]> SP> Although your mirror seems ok, we didn't receive a reply SP> to the message below (see the history at SP> http://bugs.debian.org/488693 ) Yup. Sick, busy, sick, busy, Thanks for poking me. I had addressed some of the issues, but hadn't been able to get to all of them. SP> By the way, we recommand you to use the last script SP> recommended at: SP> http://lists.debian.org/debian-mirrors-announce/2008/11/msg1.html Got that. There's still an active discussion going on on debian-mirrors, so I was holding off on implementing it until the changes were finalized. >> By the way, it seems you don't use anonftpsync, since some >> files specific to arch you don't provide are present. SP> It seems you adopted anonftpsync, the list of archs SP> available on your mirror is consistent with the one you SP> submitted. I think I was using a modified local version, as we weren't doing push updates at the time. >> > Archive-http: /debian/ > IPv6: no > Archive-upstream: >> ftp.us.debian.org >> >> ftp.us.debian.org is a round robin, and round robin and >> rsync may generate bad surprises. So it's a better idea to >> explicitely select one mirror out of ftp.us.debian.org >> rotation as explained on >> http://www.debian.org/mirrors/ftpmirror#wherefrom >> (ftp.egr.msu.edu, mirrors.kernel.org, debian.osuosl.org, >> debian.lcs.mit.edu) SP> Did you explicitely selected one of these mirrors ? No, not yet. The instructions on how to do that are a bit vague. I gather I have to contact someone at some site to get them to send me an SSH key, but who and where isn't specified, which makes it more work, which stops me from just dealing with it. If you have a contact at any of these sites, I'd be happy to take that information. SP> [...] >> We like to know and to tell our users how much bandwidth is >> available. Can you provide us this info ? SP> That would be great if you can answer us on this (and by SP> the way check your responsiveness :-) I'll see if I can get that. Should be pretty fast, and we're also on Internet 2. Claire *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* Claire Connelly [EMAIL PROTECTED] Systems Administrator (909) 621-8754 Department of Mathematics Harvey Mudd College *-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-* pgpvG0rfc7DAc.pgp Description: PGP signature
Bug#506373: evolution email crashes when receiving a specific invitation from Google Calendar
Package: evolution Version: 2.22.3.1-1 Severity: grave Justification: security; strangers might DoS evolution causing a crash upon startup until other mail piles up. When receiving a specific e-mail message containing a Google Calendar invitation, Evolution crashes. It then crashes again at boot, when trying again to display the last received (same) message. The default character set might be set to either UTF-8 or ISO-8859-15; it is unknown at this point whether the Google Calendar invite is exactly well-formatted with respect to character encoding. What is known is that the second-to-last character of the subject is a "lowercase eacute" (U+00E9) and that there is also another such character in the middle of the subject string. From looking at the way the stack trace from gdb ends up into an UTF-8 aware gnome-terminal, it seems some mojibake issue might be at play. libglib2.0-0 is the place of crash, for sure, but evolution (camel) proper might as well be charged with insufficient disinfection of incoming remote data (a definitive security risk) I'll attach the stack trace here, very slightly edited to remove private data (overstriking only ASCII characters with other ASCII characters) -- Cyrille -- stack dump #0 0x7f0c55b6ae30 in IA__g_markup_escape_text ( text=0x4887000 , length=76050432) at /build/buildd/glib2.0-2.16.6/glib/gmarkup.c:1952 #1 0x7f0c55b6c198 in IA__g_markup_vprintf_escaped ( format=, args=) at /build/buildd/glib2.0-2.16.6/glib/gmarkup.c:2272 #2 0x7f0c55b6c2fd in IA__g_markup_printf_escaped ( format=0x4564aa0 "\020p9C\f\177") at /build/buildd/glib2.0-2.16.6/glib/gmarkup.c:2329 #3 0x7f0c4af7aa39 in itip_view_set_summary (view=, summary=0x4557d80 "Concert Paris-Novembre (R�xx V�)") ^^^ ^^^ ^ ^ ^^ (note the "unknown character" boxes here, should be U+00E9 instead.) at itip-view.c:597 #4 0x7f0c4af73cdb in format_itip_object (efh=0x1dfe1c0, eb=0x7f0c3d4ba6e0, pobject=) at #itip-formatter.c:2017 #5 0x7f0c4fa4218f in efh_object_requested (html=, eb=0x7f0c3d4ba6e0, efh=0x1dfe1c0) at em-format-html.c:625 #6 0x7f0c5bcca058 in html_g_cclosure_marshal_BOOLEAN__OBJECT ( closure=0x3d72780, return_value=0x7fff68ee8910, n_param_values=, param_values=0x7fff68ee8710, invocation_hint=, marshal_data=0x7f0c4fa42140) at htmlmarshal.c:83 #7 0x7f0c56001e9d in IA__g_closure_invoke (closure=0x3d72780, return_value=0x7fff68ee8910, n_param_values=2, param_values=0x7fff68ee8710, invocation_hint=0x7fff68ee8610) at /build/buildd/glib2.0-2.16.6/gobject/gclosure.c:490 #8 0x7f0c56014bfd in signal_emit_unlocked_R (node=0x3cb3040, detail=0, instance=0x3cd87e0, emission_return=0x7fff68ee8910, instance_and_params=0x7fff68ee8710) at /build/buildd/glib2.0-2.16.6/gobject/gsignal.c:2440 #9 0x7f0c56015f71 in IA__g_signal_emit_valist (instance=0x3cd87e0, signal_id=, detail=0, var_args=0x7fff68ee8970) at /build/buildd/glib2.0-2.16.6/gobject/gsignal.c:2209 #10 0x7f0c560165f3 in IA__g_signal_emit (instance=0x4564aa0, #signal_id=1, detail=3351806) at /build/buildd/glib2.0-2.16.6/gobject/gsignal.c:2243 #11 0x7f0c5bc8ab1e in html_engine_object_requested_cb ( engine=, eb=0x7f0c3d4ba6e0, data=0x3cd87e0) at gtkhtml.c:542 #12 0x7f0c5bcca058 in html_g_cclosure_marshal_BOOLEAN__OBJECT ( closure=0x3d74e40, return_value=0x7fff68ee8ef0, n_param_values=, param_values=0x7fff68ee8cf0, invocation_hint=, marshal_data=0x7f0c5bc8aad0) at htmlmarshal.c:83 #13 0x7f0c56001e9d in IA__g_closure_invoke (closure=0x3d74e40, return_value=0x7fff68ee8ef0, n_param_values=2, param_values=0x7fff68ee8cf0, invocation_hint=0x7fff68ee8bf0) at /build/buildd/glib2.0-2.16.6/gobject/gclosure.c:490 #14 0x7f0c56014bfd in signal_emit_unlocked_R (node=0x3d67470, detail=0, instance=0x3d8c080, emission_return=0x7fff68ee8ef0, instance_and_params=0x7fff68ee8cf0) at /build/buildd/glib2.0-2.16.6/gobject/gsignal.c:2440 #15 0x7f0c56015f71 in IA__g_signal_emit_valist (instance=0x3d8c080, signal_id=, detail=0, var_args=0x7fff68ee8f50) at /build/buildd/glib2.0-2.16.6/gobject/gsignal.c:2209 #16 0x7f0c560165f3 in IA__g_signal_emit (instance=0x4564aa0, #signal_id=1, detail=3351806) at /build/buildd/glib2.0-2.16.6/gobject/gsignal.c:2243 #17 0x7f0c5bcbabdf in element_parse_object (e=0x3d8c080, clue=0x454e070, attr=) at htmlengine.c:1531 #18 0x7f0c5bcb8f50 in parse_one_token (e=0x3d8c080, clue=0x454e070, str=0x45462b7 "object #classid=\"itip:///.0x201f450.91052.mixed.0.alternative.2\">") at htmlengine.c:3749 #19 0x7f0c5bcc08ee in html_engine_timer_event (e=0x3d8c080) at htmlengine.c:1347 #20 0x7f0c5bcc0978 in html_engine_flush (e=0x3d8c080) at htmlengine.c:6521 #21 0x7f0c4fa493b9 in emhs_sync_flus
Bug#480041: confirming debian #480041: subversion with libneon-gnutls fails if apache's SSLVerifyClient optional is set
I just wanted to confirm this problem: I'm using the current debian testing (on both client and server), subversion against an https repository hosted by apache with mod_ssl and mod_svn. The client in these scenarios *does not* have an X.509 certificate at all, but uses username/password authentication instead. If i set up the apache mod_svn authentication like this: AuthType Basic AuthName "foo" AuthUserFile /srv/etc/htpasswd Require valid-user Then a simple svn co works (i get prompted for a username/password if none is cached, or it just connects if the authentication credentials are already cached). However, if i switch the authentication to: AuthType Basic AuthName "foo" AuthUserFile /srv/etc/htpasswd SSLVerifyClient optional SSLVerifyDepth 1 SSLUserName SSL_CLIENT_S_DN_CN Require valid-user Then a checkout fails with: [0 [EMAIL PROTECTED] ~]$ svn co https://foo.example.org/svn/monkey/trunk/gorilla svn: OPTIONS of 'https://foo.example.org/svn/monkey/trunk/gorilla': Could not read status line: SSL error: Rehandshake was requested by the peer. (https://foo.example.org) [1 [EMAIL PROTECTED] ~]$ On the client side: [0 [EMAIL PROTECTED] ~]$ dpkg -l libsvn1 libneon27-gnutls libgnutls26 subversion libtasn1-3 Desired=Unknown/Install/Remove/Purge/Hold | Status=Not/Inst/Cfg-files/Unpacked/Failed-cfg/Half-inst/trig-aWait/Trig-pend |/ Err?=(none)/Hold/Reinst-required/X=both-problems (Status,Err: uppercase=bad) ||/ Name VersionDescription +++-==-==- ii libgnutls262.6.2-1the GNU TLS library - runtime library ii libneon27-gnut 0.28.2-5 An HTTP and WebDAV client library (GnuTLS en ii libsvn11.5.1dfsg1-1 Shared libraries used by Subversion ii libtasn1-3 1.4-1 Manage ASN.1 structures (runtime) ii subversion 1.5.1dfsg1-1 Advanced version control system [0 [EMAIL PROTECTED] ~]$ on the server side: foo:/# dpkg -l apache2-mpm-worker libapache2-svn libssl0.9.8 Desired=Unknown/Install/Remove/Purge/Hold | Status=Not/Inst/Cfg-files/Unpacked/Failed-cfg/Half-inst/trig-aWait/Trig-pend |/ Err?=(none)/Hold/Reinst-required/X=both-problems (Status,Err: uppercase=bad) ||/ Name VersionDescription +++-==-==- ii apache2-mpm-wo 2.2.9-10 Apache HTTP Server - high speed threaded mod ii libapache2-svn 1.5.1dfsg1-1 Subversion server modules for Apache ii libssl0.9.80.9.8g-14 SSL shared libraries foo:/# If i leave the server configured with SSLVerifyClient optional, i can make svn work by doing the following as the superuser (thanks to Krystian Bacławski for the suggestion): cd /usr/lib rm libneon-gnutls.so.27 ln -s libneon.so.27 libneon-gnutls.so.27 In that case, svn (indirectly hooked via libneon into OpenSSL instead of gnutls) prompts me for a choice of certificate about 6 times, and then goes ahead and authenticates me via username/password. So this is clearly either a problem with libneon-gnutls, or with gnutls itself. I see the same problem whether i'm using libgnutls26 2.4.2-3 (from lenny) or 2.6.2-1 (from experimental). --dkg pgp96phKWkoJX.pgp Description: PGP signature
Bug#506354: lvm2: system fails to boot after upgrade
On Thu, Nov 20, 2008 at 10:20:11PM +0100, Євгеній Мещеряков wrote: > My system fails to boot after upgrade to 2.02.39-3. During boot > there is error message from lvm2: > Locking type 1 initialisation failed You have /var/lock on a different filesystem than /? Seems that it needs to use /lib/init/rw. Bastian -- Immortality consists largely of boredom. -- Zefrem Cochrane, "Metamorphosis", stardate 3219.8 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506372: installation-reports: successful install on Dell PowerEdge 2950
Package: installation-reports Severity: wishlist -- Package-specific info: Boot method: CD Image version: Lenny RC1 amd64 Date: 2008-11-21 Machine: Dell PowerEdge 2950 Partitions: Device BootStart End #sectors Id System /dev/sda1 * 128262143 262016 83 Linux /dev/sda2262144 584843263 584581120 8e Linux LVM /dev/sda3 0 - 0 0 Empty /dev/sda4 0 - 0 0 Empty Base System Installation Checklist: [O] = OK, [E] = Error (please elaborate below), [ ] = didn't try it Initial boot: [O] Detect network card:[O] Configure network: [O] Detect CD: [O] Load installer modules: [O] Detect hard drives: [O] Partition hard drives: [O] Install base system:[O] Clock/timezone setup: [O] User/password setup:[O] Install tasks: [O] Install boot loader:[O] Overall install:[O] Comments/Problems: The partitioner created a partion table with the first partition starting at sector 63. I had to create a new one manually with sfdisk on the alt console to make one the alignment match the RAID. I always put /var/tmp on a separate LV, it would be nice if the recipe created /var/tmp as well as a /tmp. It would be handy if non-free firmware install step could automatically look in firmware.tar.gz on removeable media. Nice work. -- Please make sure that the hardware-summary log file, and any other installation logs that you think would be useful are attached to this report. Please compress large files using gzip. Once you have filled out this report, mail it to [EMAIL PROTECTED] == Installer lsb-release: == DISTRIB_ID=Debian DISTRIB_DESCRIPTION="Debian GNU/Linux installer" DISTRIB_RELEASE="5.0 (lenny) - installer build 20081029" X_INSTALLATION_MEDIUM=cdrom == Installer hardware-summary: == umame -a: Linux rb 2.6.26-1-amd64 #1 SMP Thu Oct 9 14:16:53 UTC 2008 x86_64 unknown lspci -knn: 00:00.0 Host bridge [0600]: Intel Corporation 5000X Chipset Memory Controller Hub [8086:25c0] (rev 12) lspci -knn: 00:02.0 PCI bridge [0604]: Intel Corporation 5000 Series Chipset PCI Express x4 Port 2 [8086:25e2] (rev 12) lspci -knn: Kernel driver in use: pcieport-driver lspci -knn: 00:03.0 PCI bridge [0604]: Intel Corporation 5000 Series Chipset PCI Express x4 Port 3 [8086:25e3] (rev 12) lspci -knn: Kernel driver in use: pcieport-driver lspci -knn: 00:04.0 PCI bridge [0604]: Intel Corporation 5000 Series Chipset PCI Express x8 Port 4-5 [8086:25f8] (rev 12) lspci -knn: Kernel driver in use: pcieport-driver lspci -knn: 00:05.0 PCI bridge [0604]: Intel Corporation 5000 Series Chipset PCI Express x4 Port 5 [8086:25e5] (rev 12) lspci -knn: Kernel driver in use: pcieport-driver lspci -knn: 00:06.0 PCI bridge [0604]: Intel Corporation 5000 Series Chipset PCI Express x8 Port 6-7 [8086:25f9] (rev 12) lspci -knn: Kernel driver in use: pcieport-driver lspci -knn: 00:07.0 PCI bridge [0604]: Intel Corporation 5000 Series Chipset PCI Express x4 Port 7 [8086:25e7] (rev 12) lspci -knn: Kernel driver in use: pcieport-driver lspci -knn: 00:10.0 Host bridge [0600]: Intel Corporation 5000 Series Chipset FSB Registers [8086:25f0] (rev 12) lspci -knn: 00:10.1 Host bridge [0600]: Intel Corporation 5000 Series Chipset FSB Registers [8086:25f0] (rev 12) lspci -knn: 00:10.2 Host bridge [0600]: Intel Corporation 5000 Series Chipset FSB Registers [8086:25f0] (rev 12) lspci -knn: 00:11.0 Host bridge [0600]: Intel Corporation 5000 Series Chipset Reserved Registers [8086:25f1] (rev 12) lspci -knn: 00:13.0 Host bridge [0600]: Intel Corporation 5000 Series Chipset Reserved Registers [8086:25f3] (rev 12) lspci -knn: 00:15.0 Host bridge [0600]: Intel Corporation 5000 Series Chipset FBD Registers [8086:25f5] (rev 12) lspci -knn: 00:16.0 Host bridge [0600]: Intel Corporation 5000 Series Chipset FBD Registers [8086:25f6] (rev 12) lspci -knn: 00:1c.0 PCI bridge [0604]: Intel Corporation 631xESB/632xESB/3100 Chipset PCI Express Root Port 1 [8086:2690] (rev 09) lspci -knn: Kernel driver in use: pcieport-driver lspci -knn: 00:1d.0 USB Controller [0c03]: Intel Corporation 631xESB/632xESB/3100 Chipset UHCI USB Controller #1 [8086:2688] (rev 09) lspci -knn: Kernel driver in use: uhci_hcd lspci -knn: Kernel modules: uhci-hcd lspci -knn: 00:1d.1 USB Controller [0c03]: Intel Corporation 631xESB/632xESB/3100 Chipset UHCI USB Controller #2 [8086:2689] (rev 09) lspci -knn: Kernel driver in use: uhci_hcd lspci -knn: Kernel modules: uhci-hcd lspci -knn: 00:1d.2 USB Controller [0c03]: Intel Corporation 631xESB/632xESB/3100 Chipset UHCI USB Controller #3 [8086:268a] (rev 09) lspci -knn: Kernel driver in use: uhci_hcd lspci -knn: Kernel modules: uhci-hcd lspci -knn: 00:1d.7 USB Controlle
Bug#506114: [Pkg-clamav-devel] Bug#506114: clamav-daemon: Fix for #486076 (in 0.94.dfsg.1-1~volatile1) fails on etch: status_of_proc: command not found
This one time, at band camp, Gregor Hoffleit said: > This patch only works with lsb-base >= 3.2-13, since status_of_proc() > has been added only then. etch still has lsb-base 3.1-23.2etch1, which > doesn't yet include status_of_proc(). > > Attached is a quick fix for the etch volatile package, by copy and paste > of the status_of_proc() code from /lib/lsb/init-functions. Seems quite reasonable on the face of it. Cheers for that, -- - | ,''`.Stephen Gran | | : :' :[EMAIL PROTECTED] | | `. `'Debian user, admin, and developer | |`- http://www.debian.org | - signature.asc Description: Digital signature
Bug#506338: gnome-terminal: Fixed-10 font is borken
On Thu, 20 Nov 2008, Josselin Mouette wrote: > Are you sure you restarted gnome-terminal? If you reconfigured I even rebootet before reporting the bug ... > the resulting configuration is *exactly* the same, so I really cannot > imagine what is wrong. Me neither, but it is really a pain, I am glad to help as much as I can... Best wishes Norbert --- Dr. Norbert Preining <[EMAIL PROTECTED]>Vienna University of Technology Debian Developer <[EMAIL PROTECTED]> Debian TeX Group gpg DSA: 0x09C5B094 fp: 14DF 2E6C 0307 BE6D AD76 A9C0 D2BF 4AA3 09C5 B094 --- GLENTAGGART (n.) A particular kind of tartan hold-all, made exclusive under licence for British Airways. When waiting to collect your luggage from an airport conveyor belt, you will notice that on the next conveyor belt a solitary bag is going round and round uncollected. This is a glentaggart, which has been placed there by the baggage-handling staff to take your mind off the fact that your own luggage will shortly be landing in Murmansk. --- Douglas Adams, The Meaning of Liff -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#505565: Mozilla SeaMonkey Multiple Vulnerabilities
On Thu, Nov 13, 2008 at 04:13:46PM +0100, Giuseppe Iuculano wrote: > Package: iceape > Severity: critical > Tags: security Iceape still badly needs someone who's willing to care of security updates for iceape during Lenny life time and has the time to do so, as described in my mail to debian-devel from the 4th October: | From: Moritz Muehlenhoff <[EMAIL PROTECTED]> | Newsgroups: gmane.linux.debian.devel.general | Subject: Volunteer needed for Iceape security updates in Lenny | | A volunteer is needed to build and test the Iceape security updates | in Lenny. Patches are provided through a patch set for each update | round, but the Security Team and the Mozilla maintainers lack the | ressources for the proper integration work. So if you use Iceape | and want to continue to use it in Lenny please step forward and | mail [EMAIL PROTECTED] and keep | [EMAIL PROTECTED] CCed. The other option (throwing it out) will be difficult, since 17 packages build-depend on iceape-dev nowadays. Cheers, Moritz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#248809: system users
This one time, at band camp, Vincent Bernat said: > Is there some way to easily retrieve all postinst scripts to check how > adduser is called? adduser largely exists to be a policy compliant framework for maintainer script user manipulation. If policy changes, adduser will too. The major pain will be migrating existing user setups to a new username (I personally don't think it would be worth the pain, but YMMV). -- - | ,''`.Stephen Gran | | : :' :[EMAIL PROTECTED] | | `. `'Debian user, admin, and developer | |`- http://www.debian.org | - signature.asc Description: Digital signature
Bug#502140: restarting xscreensaver
On Sat, Nov 15, 2008 at 11:55:55PM -0800, Steve Langasek wrote: > On Wed, Oct 22, 2008 at 08:49:27AM +0200, Thomas Viehmann wrote: > > > probably I'm just dense, but why would (the admittedly gross hack) of > > looking at /proc/$XSCREENSAVER-PID/environ (for DISPLAY and XAUTHORITY), > > getting uid for that process, trying xscreensaver-command -exit, if the > > screensaver exited, start xscreensaver again with that uid and environ, > > otherwise (it will have been locked) killing the xscreensaver, starting > > xscreensaver, doing xscreensaver-command -lock not do the trick better > > than the current state? > > Well, that sounds better than the current state, but a) the code for it > isn't written and I'm not familiar enough with xscreensaver to be confident > of getting it right on the first try myself, b) we have to cover more than > just xscreensaver (xlockmore is also affected AIUI), c) I'm not sure if > peeking in /proc is going to work if the user has SELinux turned on. > > It also seems to introduce a race condition where the display is unlocked > and vulnerable to attack during the upgrade, which I'd prefer not to have > pam itself be responsible for. I think advising the user to disable the > screensaver for the duration of the upgrade is a choice I'd be more > comfortable with, rather than forcibly restarting the screensaver. I've filed a bug against release-notes which such an advise (bug number not yet available). | During the upgrade of the Pluggable Authentication Modules system, the | authentication modes need to be restarted. Some services used for locking | a user session cannot be restarted, e.g. xscreensaver, gnome-screensaver | or xlockmore. It is recommended to stop them before starting the update. So we can downgrade this to something not-RC. Cheers, Moritz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506371: release-notes: Document screensaver issues during PAM upgrade
Package: release-notes Severity: normal See 502140, proposed text: During the upgrade of the Pluggable Authentication Modules system, the authentication modes need to be restarted. Some services used for locking a user session cannot be restarted, e.g. xscreensaver, gnome-screensaver or xlockmore. It is recommended to stop them before starting the update. Cheers, Moritz -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.26-1-686 (SMP w/1 CPU core) Locale: LANG=C, [EMAIL PROTECTED] (charmap=ISO-8859-15) Shell: /bin/sh linked to /bin/bash -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#253838: [Pkg-openldap-devel] Bug#253838: Security risk in libldap
--On Thursday, November 20, 2008 11:37 PM +0100 Moritz Muehlenhoff <[EMAIL PROTECTED]> wrote: I suggest you talk to the OpenLDAP folks before applying this. --Quanah -- Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc Zimbra :: the leader in open source messaging and collaboration -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506219: please use java-wrappers for the jabref wrapper script
Hello, gregor herrmann wrote: > On Wed, 19 Nov 2008 14:59:26 +0100, Vincent Fourmond wrote: > >> Would you be interested to use java-wrappers for the jabref wrapper >> script ? It is an attempt to unify wrapper scripts, providing easier >> writing for developers and also much more functionality for users (including >> potential functionalities that won't exists at the time you choose to use it >> !). > > Sure, I think that's a good idea in general. > > (Just that the last time I looked, java-wrappers and me didn't become > friends for a reason I can't remember.) > >> I'd be happy to write the script and adapt the manual page accordingly, >> of course. > > That would be nice, thanks! There you go, in the attached diff. Cheers, Vincent -- Vincent Fourmond, Debian Developer http://vince-debian.blogspot.com/ find(1): A `%' at the end of the format argument causes undefined behaviour since there is no following character. In some locales, it may hide your door keys, while in others it may remove the final page from the novel you are reading. Vincent, listening to The Importance Of Being Idle (Oasis) diff -u jabref-2.3.1/debian/control jabref-2.3.1/debian/control --- jabref-2.3.1/debian/control +++ jabref-2.3.1/debian/control @@ -17,7 +17,7 @@ Depends: openjdk-6-jre | sun-java6-jre | sun-java5-jre, antlr, antlr3, libjgoodies-looks-java, libjgoodies-forms-java, libspin-java, libglazedlists-java, libmicroba-java, libpdfbox-java, - libjempbox-java (>= 0.2.0) + libjempbox-java (>= 0.2.0), java-wrappers (>= 0.1.6) Suggests: gv | postscript-viewer, xpdf | pdf-viewer Description: graphical frontend to manage BibTeX databases JabRef is a GUI to manage BibTeX databases, the standard LaTeX bibliography diff -u jabref-2.3.1/debian/jabref-wrapper jabref-2.3.1/debian/jabref-wrapper --- jabref-2.3.1/debian/jabref-wrapper +++ jabref-2.3.1/debian/jabref-wrapper @@ -3,13 +3,10 @@ -# jabref wrapper script -# code for java detection borrowed from tuxguitar +# Include the wrappers utility script +. /usr/lib/java-wrappers/java-wrappers.sh -if [ -z "$JAVA_HOME" ] ; then - t=/usr/lib/jvm/java-1.5.0-sun && test -d $t && JAVA_HOME=$t - t=/usr/lib/jvm/java-6-sun && test -d $t && JAVA_HOME=$t - t=/usr/lib/jvm/java-6-openjdk && test -d $t && JAVA_HOME=$t - test -n "$JAVA_HOME" && JAVA=${JAVA_HOME}/jre/bin/java -fi +# We need sun runtime. +find_java_runtime openjdk || find_java_runtime sun -export JAVA=${JAVA:=java} +find_jars jabref antlr antlr3 looks forms spin glazedlists +find_jars microba pdfbox jempbox -exec $JAVA -cp /usr/share/java/jabref.jar:/usr/share/java/antlr.jar:/usr/share/java/antlr3.jar:/usr/share/java/looks.jar:/usr/share/java/forms.jar:/usr/share/java/spin.jar:/usr/share/java/glazedlists.jar:/usr/share/java/microba.jar:/usr/share/java/pdfbox.jar:/usr/share/java/jempbox.jar net.sf.jabref.JabRefMain "$@" +run_java net.sf.jabref.JabRefMain "$@" diff -u jabref-2.3.1/debian/jabref.1 jabref-2.3.1/debian/jabref.1 --- jabref-2.3.1/debian/jabref.1 +++ jabref-2.3.1/debian/jabref.1 @@ -65,10 +65,25 @@ .TP \fB\-s\fR, \fB\-\-nosplash\fR= Do not show splash window at startup + +.SH JAVA-WRAPPERS NOTE + +This program is a shell script wrapper based on +.BR java-wrappers (7). +You therefore benefit from several features; please see the +.BR java-wrappers (7) +manual page for more information about them. + + + .SH SEE ALSO the included help .br http://jabref.sourceforge.net/ + +.BR java-wrappers (7) + + .SH AUTHOR jabref was written by Morten O. Alver and Nizar Batada. .PP
Bug#496411: Closing
On Thu, Nov 06, 2008 at 09:33:54AM +0100, Jiří Paleček wrote: > Version: 20081031+dfsg-1 > > Hello, > > I've attempted to close the bug, but have written malformed closing > statement in the changelog. Therefore, I'm closing it manually. Jiri, I saw that you've adopted LTP and prepared new packages for experimental after it was orphaned. Thanks for that. I'm wondering if the current LTP in Lenny is really useful, since it's totally outdated. Shouldn't we just drop it from Lenny and start fresh with your new packages in Squeeze, the next Debian release? Cheers, Moritz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506370: Allow user control over lcd4linux args
Package: lcd4linux Version: 0.10.0+cvs20060825-1 Severity: wishlist Tags: patch Hello. Attached is a patch to /etc/init.d/lcd4linux which allows the administrator to put lcd4linux arguments into /etc/default/lcd4linux. (I found the splash screen annoying, this allows it to be turned off.) Apply patch with: cd /etc/init.d patch < lcd4linux.patch Also attached is a sample /etc/default/lcd4linux file. (Patch is actually against svn version 899 of lcd4linux, but will apply to etch.) Thank you. -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-6-686 Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Versions of packages lcd4linux depends on: ii libc6 2.3.6.ds1-13etch7 GNU C Library: Shared libraries ii libgd2-noxpm 2.0.33-5.2etch1 GD Graphics Library version 2 (wit ii libmpd00.12.0-2 High-level client library for acce ii libmysqlclient15off5.0.32-7etch8 mysql database client library ii libncurses55.5-5 Shared libraries for terminal hand ii libusb-0.1-4 2:0.1.12-5userspace USB programming library ii libx11-6 2:1.0.3-7 X11 client-side library ii python2.4 2.4.4-3+etch1 An interactive high-level object-o lcd4linux recommends no packages. -- no debconf information --- /tmp/lcd4linux 2008-11-20 16:28:49.0 -0600 +++ lcd4linux 2008-11-20 16:23:59.0 -0600 @@ -20,6 +20,9 @@ test -x $DAEMON || exit 0 test -f /etc/lcd4linux.conf || exit 0 +test -f /etc/default/lcd4linux && . /etc/default/lcd4linux +DAEMON_OPTS="$ARGS" + set -e case "$1" in # Aguments passed to lcd4linux. # No splash screens on startup or shutdown. ARGS='-q'
Bug#506303: procps: ps should have an option to display the supplementary groups
On Friday 21 November 2008 09:10, Craig Small <[EMAIL PROTECTED]> wrote: > On Thu, Nov 20, 2008 at 10:01:53PM +1100, Russell Coker wrote: > > The supplementary groups (see setgroups(2) and getgroups(2)) for a > > process can be accessed by "grep ^Groups /proc/PID/status", but it seems > > impossible to display this from ps. > > I don't think it is ps's place to do so. ps doesn't usually do much of > "find me a process that in its list has..", it is generally a 1:1 > relationship "find me a process with UID x". It's the place of PS to report all the relevant information about a process. > ps also doesn't really have a way of displaying multiple values for > a process in any sensible fashion. The command-line of a process has multiple values. > I really don't think it fits well > within ps. At a stretch it might be a select option but it doesn't work > well with a display option. What program do you think it fits better? > > Currently if you have a process with a supplementary GID of 0 then > > grepping /proc seems to be the only way to discover this fact. > > So, its more you are looking for something that finds any process that > has a supplementary GID of, say, 0? No, I want to know what the supplementary groups of a process are. > To me that would me more like what pgrep/pkill should be doing. Would > that make more sense? Except when I don't want to kill it. > ie pgrep --some-flag would should all pids of > processes that have that supplementary gid. Except for the case where I don't know what supplementary GID the process in question might have. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506338: gnome-terminal: Fixed-10 font is borken
Le jeudi 20 novembre 2008 à 19:19 +0100, Norbert Preining a écrit : > after upgrading all the fontconfig packages to 2.6.0-2 (or -3) suddenly > the Fixed-10 font in the gnome terminal is completely broken. > > I thought that might be an error of fontconfig, and I reported this > problem there. There was another bug report concerning this, and in the > other a solution was suggested. Please see bug reports 506124 and 505994 > for details. (Cc-ing these bug reports) > > The interesting thing is that when I open gedit and select the Fixed-10 > font I get the correct one, while in gnome terminal I get something > really bad. Are you sure you restarted gnome-terminal? If you reconfigured fontconfig-config to enable bitmap fonts and regenerated the font cache, the resulting configuration is *exactly* the same, so I really cannot imagine what is wrong. Cheers, -- .''`. : :' : We are debian.org. Lower your prices, surrender your code. `. `' We will add your hardware and software distinctiveness to `-our own. Resistance is futile. signature.asc Description: Ceci est une partie de message numériquement signée
Bug#253838: Security risk in libldap
On Thu, Nov 06, 2008 at 10:59:47PM +0100, Moritz Muehlenhoff wrote: > On Mon, Oct 13, 2008 at 10:18:19PM +0200, Torsten Landschoff wrote: > > On Monday 13 October 2008 21:03:36 you wrote: > > > From: Rafal Kupka <[EMAIL PROTECTED]> > > > To: Debian Bug Tracking System <[EMAIL PROTECTED]> > > > Subject: libldap2 reads from ~/.ldaprc and $PWD/ldaprc while running > > > privileged programs > > > Date: Fri, 11 Jun 2004 14:21:48 +0200 > > > Package: libldap2 > > > Version: 2.1.30-1 > > > Severity: normal > > > Tags: security > > > > > > This bug is visible in systems with libnss-ldap and libpam-ldap. > > > Even privileged programs (like su) read configuration file from users > > > home and current directory (follows symlinks too). > > > > Ouch, I can't understand that I let this slip back then. I just checked the > > sources to OpenLDAP 2.4.11-1 and basically this report still applies. > > > > That is, libldap will gladly read $HOME/.ldaprc. The ldaprc in the current > > directory is not read for quite some time now, that misfeature was removed > > in > > 1998: > > http://www.openldap.org/devel/cvsweb.cgi/libraries/libldap/init.c.diff?r1=1.8&r2=1.9&hideattic=1&sortbydate=0&f=h > > Now, a ldaprc can be defined using the "LDAPRC" environment variable > > instead, > > which is not that much better. LDAPCONF will work as well. > > > > The RedHat fix can be found here, BTW: > > http://cvs.fedoraproject.org/viewvc/rpms/openldap/F-9/openldap-2.0.11-ldaprc.patch?revision=1.1&view=markup > > > > This completely disables the .ldaprc file, but LDAPRC and LDAPCONF > > environment > > variables would still work. > > > > I would like to apply a patch to disable LDAPRC, LDAPCONF and .ldaprc when > > the > > effective uid does not match the real uid. > > Sounds like a good plan. What's the status of this fix for Lenny? *poke* Cheers, Moritz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506268: CVE-2008-5160: allows remote attackers to cause a denial of service (daemon crash) via multiple invalid requests
On Thu, Nov 20, 2008 at 01:57:54PM -0600, Raphael Geissert wrote: > Hi, > > 2008/11/20 Nico Golde <[EMAIL PROTECTED]>: > > Hi, > > * Raphael Geissert <[EMAIL PROTECTED]> [2008-11-20 09:32]: > >> The following CVE (Common Vulnerabilities & Exposures) id was published for > >> msp-webserver. > >> > >> CVE-2008-5160[1]: > > [...] > > > > Did you manage to reproduce that? Not reproducible for me > > with the unstable version. > > No, I didn't have time to setup the server and attempt to reproduce it. > But I did check the changelog and the patches being applied and found > nothing relevant that could "fix" or prevent the issue. > > I have just tried to reproduce it and I succeeded. > > I made four fruitful attempts: > 1. original exploit: nothing. > 2. 200 requests: server segfaulted > 3. 2000 requests: too many childs are spawned and they start eating > the memory almost by 100MBs per sec. > 4. 3000 requests: same as with the 2000 requests. > > Note that I had to run the exploit a couple of times to reproduce the > issue triggered at 3, and when I tried to reproduce the segfault under > gdb to get a backtrace I didn't succeed to reproduce it. So let's just drop it from Lenny. We don't need the 40th minimal web server in the archive, especially not if it crashes under load. Such errors in fringe servers are not DoS vulnerabilities, but regular bugs. We're not talking about Apache here. Cheers, Moritz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506273: apt-cacher-ng: Expiration takes an ungodly long time (>1 day)
#include * Daniel Dickinson [Wed, Nov 19 2008, 09:08:48PM]: > I've just changed my expiration from cron.daily to cron.weekly because > it takes more than a day for expiration to complete, with three major > ubuntu repositories (but I'm running on debian; this is for other > computers too); dapper, gutsy and heron. I also have > security.ubuntu.com for those three and some small amounts of data for > lenny (main and security). (I thought the problem might have been my > old symlinked etch archive, for which the symlink targets were > removed, and in the process removed all of etch; then I ran out of > /var and decided to delete debian from the cacher enitrely because I > want to run a mirror on another host with more disk space). This data is not something I can start with. Please post output of: du -a /var/cache/apt-cacher-ng find /var/cache/apt-cacher-ng/ -type d -name *dists* | xargs du And if execution of those commands needs more than one minute then you have a major problem with the filesystem. There is also a recent version in the Unstable archive. Please test as well, because the one in Lenny is "old" and buggy, even if the Release Managers seem to have no problem with that. Regards, Eduard. -- Wie anders ist die Bewunderung im 20. und die im 40. Jahre! Jene nimmt man oft zurück, und sogar bei dem höchsten Grade hat man noch eine geheime Hoffnung, den Gegenstand zu erreichen. Wen ich aber jetzt bewundere, hoff ich nie zu erreichen und bewundere ihn desto mehr. -- Jean Paul -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#418462: mailman: Fails to upgrade from Sarge to Etch
Sorry, but I can't test this currently. It should be possible for you to check if the python-symlink is upgraded properly or not. Thanks, Christian -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506368: newer upstream version of org-mode is available
Package: org-mode Version: 6.10-1 Severity: wishlist It would be great if the latest and greatest (6.12b) org-mode could be packaged. The current packages are not compatible with Romain Francoise's emacs-snapshot packages as far as I can tell. Thanks for your packaging efforts, David -- System Information: Debian Release: lenny/sid APT prefers testing APT policy: (900, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 2.6.26-1-amd64 (SMP w/2 CPU cores) Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages org-mode depends on: ii emacs-snapshot 1:20081113-1 The GNU Emacs editor (development ii emacs22 22.2+2-5 The GNU Emacs editor org-mode recommends no packages. Versions of packages org-mode suggests: ii remember-el 1.9-1 remember text within Emacs -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506369: Automatical initiation stopped working
Package: pidgin-otr Version: 3.2.0-2 Severity: normal -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, for quite a while now, automatic initiation of OTR session stopped working in a lot of cases where it used to work, but not all: Jabber, pidgin on the other side: No automatic intiation any more. ICQ, pidgin on the other side: No automatic intiation any more. ICQ, Miranda (I think) on the other side: Automatic initiation still works. I’m not sure where to look for more useful hints. Do others observe the same problems? Thanks, Joachim - -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.25-2-486 Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages pidgin-otr depends on: ii libc6 2.7-16 GNU C Library: Shared libraries ii libgcrypt11 1.4.1-2LGPL Crypto library - runtime libr ii libotr2 3.2.0-1Off-the-Record Messaging library ii pidgin2.4.3-4graphical multi-protocol instant m pidgin-otr recommends no packages. pidgin-otr suggests no packages. - -- no debconf information -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkkl49MACgkQ9ijrk0dDIGxfAwCeIeI6haBzX92gQuLblFXWsTYA 0XcAnRTUDU/tBUihJUfYmXhJc94D1nat =H7Bd -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#502120: xserver-xorg: allows different /etc/X11/X symlinks as well as /usr/bin/X
Hi there! On Mon, 13 Oct 2008 23:20:02 +0200, Luca Capello wrote: > On Mon, 13 Oct 2008 20:45:26 +0200, Julien Cristau wrote: >> There used to be some logic to change the /etc/X11/X symlink via debconf >> until about a year ago (it used to be needed when we had hardware >> specific X servers, which means before XFree86 4.0 iirc), so it might be >> possible to reintroduce that if you feel that Xglamo need it. > > I think that it could be helpful not only for Xglamo, but for the > other KDrive servers as well (the first coming to my mind is > xserver-xfbdev). A small update, which completely changes the importance of this bug: according to [1], Openmoko seems to consider Xglamo completely dead now in favor of a pure X.Org module. If the above will become official, my request will become a very minor one, since I will stop working on the Xglamo kdriver server ASAP. Thx, bye, Gismo / Luca Footnotes: [1] http://lists.openmoko.org/pipermail/community/2008-November/035903.html pgpD1UeHbfb3a.pgp Description: PGP signature
Bug#506271: lintian: weirdness when checking manpages with nroff ignore commands
Mark, Thanks for looking into this! | allAll warnings except di, mac, and reg. It is intended | that this covers all warnings that are useful with | traditional macro packages. Admittedly, I overlooked this ... unusual that "all" means "all, but not..." :-) But good to get it clarified. defining ZZ before attempting to use it; inserting the following anywhere before the first use of .ig would suffice: .de ZZ .. A very useful trick indeed! It's probably too much to make of this minor issue, but if several tests were being performed, using the different --warnings=*, it may be possible to work out different kinds of errors and also be able to give that ".de" recommendation to the user. I disagree. lintian is checking a manpage; the fact that doing so invokes nroff is an implementation detail. Fair enough. I guess this bug can be closed, then. Cheers, Morten -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506292: samba: segfault to add user with smbpasswd
On Thu, Nov 20, 2008 at 08:09:42AM -0200, Flamarion Jorge wrote: > After the last upgrade in many packages, samba does not work correctly. > When i try add a user into samba with command smbpasswd i receive this > message: > [EMAIL PROTECTED]:/etc/samba# smbpasswd -a flamarion > Failed to open /etc/samba//private/secrets.tdb > Failed to open /etc/samba//private/secrets.tdb This is not where secrets.tdb is supposed to be located on Debian. Either we have a misapplied patch in 3.2.4, or this is not the Debian version of smbpasswd. -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. Ubuntu Developerhttp://www.debian.org/ [EMAIL PROTECTED] [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506367: module-init-tools: Invalid debian/watch file
Package: module-init-tools Version: 3.4-1 Severity: normal Tags: patch Hi, debian/watch has two errors: * www\.kernel\.org is not a valid hostname * The URL has changed Here's a watchline that works: http://www.kernel.org/pub/linux/utils/kernel/module-init-tools/module-init-tools-([\d\.]+)\.tar\.gz Thanks for your attention, dam -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.26-1-686 (SMP w/2 CPU cores) Locale: LANG=bg_BG.UTF-8, LC_CTYPE=bg_BG.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages module-init-tools depends on: ii libc6 2.7-16 GNU C Library: Shared libraries ii lsb-base 3.2-20 Linux Standard Base 3.2 init scrip module-init-tools recommends no packages. module-init-tools suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506303: procps: ps should have an option to display the supplementary groups
On Thu, Nov 20, 2008 at 10:01:53PM +1100, Russell Coker wrote: > The supplementary groups (see setgroups(2) and getgroups(2)) for a > process can be accessed by "grep ^Groups /proc/PID/status", but it seems > impossible to display this from ps. I don't think it is ps's place to do so. ps doesn't usually do much of "find me a process that in its list has..", it is generally a 1:1 relationship "find me a process with UID x". ps also doesn't really have a way of displaying multiple values for a process in any sensible fashion. I really don't think it fits well within ps. At a stretch it might be a select option but it doesn't work well with a display option. > Currently if you have a process with a supplementary GID of 0 then > grepping /proc seems to be the only way to discover this fact. So, its more you are looking for something that finds any process that has a supplementary GID of, say, 0? To me that would me more like what pgrep/pkill should be doing. Would that make more sense? ie pgrep --some-flag would should all pids of processes that have that supplementary gid. - Craig -- Craig Small GnuPG:1C1B D893 1418 2AF4 45EE 95CB C76C E5AC 12CA DFA5 http://www.enc.com.au/ csmall at : enc.com.au http://www.debian.org/ Debian GNU/Linux, software should be Free -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#491015: Is anyone intends to work on this?
On Mon, 3 Nov 2008, [EMAIL PROTECTED] wrote: Hi, > > I uploaded 0.10.0-1 to mentors.debian.net some time ago. I am not a developer, > so the upload needs to be sponsored. I've just built and checked the package, and it looks OK, except for liblog4cxx10's Conflicts/Replaces (should be moved to the -dev package) and liblog4cxx10-dev's Depends (mising dependancy on libaprutil1-dev and possibly zlib1g-dev, unnecessary dependancy on libxml2-dev - which could be also removed from Build-Depends). I can sponsor the upload if you fix the issues. Regards, robert signature.asc Description: Digital signature
Bug#506363: uses gnu features during the build
Package: gtksourceview Version: 1.8.5-1 seen when building with glibc-2.8; _GNU_SOURCE needs to be defined for the build. see https://launchpad.net/ubuntu/+source/gtksourceview/1.8.5-1/+build/778621/+files/buildlog_ubuntu-jaunty-armel.gtksourceview_1.8.5-1_FAILEDTOBUILD.txt.gz -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506364: split out api docs into a separate package
package: libcommons-logging-java version: 1.1.1-1 severity: minor Developers are the only ones interested in api documentation; a production install does not need this documentation to be included in the deb. Please move the api docs into a separate package. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#506365: move api docs to a separate package
package: libcommons-net-java version: 1.4.1-1 severity: minor It would be much friendlier to servers to have the api documentation moved to a separate package. Only developers are interested in this; other packages that require this one don't need to have the api docs installed. Please move the api docs to a separate package. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]