Package: hugin
Version: 0.6.1-1
Severity: normal
*** Please type your report below this line ***
Well, hugin does not work anymore. It used to work when I used the
version from debian-multimedia.org. Even with only two images and seven
manually set or 19 autopano-sift control points the
On Mon, Oct 09, 2006 at 12:21:22AM +0200, Moritz Muehlenhoff wrote:
Mikko Rapeli wrote:
This small bug affects sarge too so I'm cc'ing security. Attached patches
restrict the permissions for sarge and etch/sid so that non-root users can
not read the default pin value used in Bluetooth
/changelog
+++ bluez-utils-2.15/debian/changelog
@@ -1,3 +1,9 @@
+bluez-utils (2.15-1.1.0sarge.mcf01) stable-security; urgency=low
+
+ * Try to set tighter /etc/bluetooth/pin permissions
+
+ -- Mikko Rapeli [EMAIL PROTECTED] Fri, 29 Sep 2006 11:26:08 +0300
+
bluez-utils (2.15-1.1) stable-security
and is readable by all. Unless all users really need to know the pins
for incoming connections, it should be readable and writable by root
only instead of:
# ls -l /etc/bluetooth/hcid.conf
-rw-r--r-- 1 root root 1230 Sep 21 10:38 /etc/bluetooth/hcid.conf
-Mikko
--
To UNSUBSCRIBE, email to
Package: bluez-utils
Version: 3.5-1
Severity: wishlist
*** Please type your report below this line ***
Bluetooth authentication is based on static or user given pin codes, as
you know. The actual link keys derived from the initial authentication,
pairing, are owned and readable and writable only
:29.0 +0300
+++ gengetopt-2.17/debian/changelog 2006-08-11 15:47:40.0 +0300
@@ -1,3 +1,9 @@
+gengetopt (2.17-0.mkr01) unstable; urgency=low
+
+ * New upstream
+
+ -- Mikko Rapeli [EMAIL PROTECTED] Fri, 11 Aug 2006 15:42:28 +0300
+
gengetopt (2.10-2) unstable; urgency=low
* QA
On Mon, Aug 14, 2006 at 02:16:09PM +0200, Bart Martens wrote:
I was already adopting this package. See this ITA report:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=266484
Ok, I just provided a patch for my itch.
I have sent this package to my sponsor for review and upload on Wed, 09
On Mon, Mar 20, 2006 at 11:20:57AM +0100, Martin Schulze wrote:
Proposed updates for woody and sarge are here:
http://klecker.debian.org/~joey/security/sudo/
I'd be glad if you could test them.
The patch from 1.6.8p7-1.3 to 1.6.8p7-1.4 is logical
and works well in my use cases. Thanks.
-Mikko
Package: xmlto
Version: 0.0.18-5
Severity: normal
I'm blaiming xmlto but perhaps this belongs to some other docbook related
package, so please forward on.
Long lines without white space are not wrapped, so PDF and PS files are
missing everything thats gone past the width. I ran to this issue
it in the sudoers manual page
+
+ -- Mikko Rapeli [EMAIL PROTECTED] Thu, 9 Feb 2006 15:57:22 +0200
+
sudo (1.6.8p7-1.3) stable-security; urgency=high
* Non-maintainer upload by the Security Team
Package: lokkit
Version: 0.50.22-5.0.1
Tags: wishlist
thanks
Gnome-lokkit package from RedHat seems to have been replaced by
redhat-config-securitylevel which in turn has been replaced by Fedora's
system-config-securitylevel.
.
+
+ -- Mikko Rapeli [EMAIL PROTECTED] Tue, 20 Dec 2005 19:14:12 +0200
+
apt-show-versions (0.09) unstable; urgency=low
* include etch and experimental as releases (closes: #316620)
diff -ru apt-show-versions-0.08/apt-show-versions
apt-show-versions-0.08.mkr0/apt-show-versions
--- apt-show-versions
-utils (0.9.16.mkr1) unstable; urgency=low
+
+ * Also use sysctl to stop discovery since irattach alone
+is not enough.
+
+ -- Mikko Rapeli [EMAIL PROTECTED] Mon, 19 Dec 2005 01:01:00 +0200
+
irda-utils (0.9.16-10) unstable; urgency=low
* debian/preinst: Fixed script to avoid failing when
and irda-tools packages which depend on
+irda-utils.
+
+ -- Mikko Rapeli [EMAIL PROTECTED] Wed, 14 Dec 2005 19:58:37 +0200
+
irda-utils (0.9.16-10) unstable; urgency=low
* debian/preinst: Fixed script to avoid failing when
diff -u irda-utils-0.9.16/debian/control irda-utils-0.9.16.mkr1/debian
On Thu, Dec 08, 2005 at 08:13:25AM +0100, Frank Lichtenheld wrote:
Please note that there is both a bug report and a patch for this
problem already...
Actually --no-same-owner and --no-same-permissions do different things;
one changes file owners and the other sets permissions. IMHO both should
On Thu, Dec 08, 2005 at 10:02:48AM +0200, Mikko Rapeli wrote:
On Thu, Dec 08, 2005 at 08:13:25AM +0100, Frank Lichtenheld wrote:
Please note that there is both a bug report and a patch for this
problem already...
Actually --no-same-owner and --no-same-permissions do different things;
one
:02.244730984 +0200
@@ -1,3 +1,10 @@
+base-files (3.1.9.sarge.mkr1) unstable; urgency=low
+
+ * Added preinst script to remove /var/log/debian-installer/cdebconf
+group and other write permissions.
+
+ -- Mikko Rapeli [EMAIL PROTECTED] Wed, 7 Dec 2005 15:18:42 +0200
+
base-files (3.1.9) unstable
On Thu, Dec 01, 2005 at 03:32:45AM +0200, Mikko Rapeli wrote:
fakeroot combined with dpkg-source uses original source package permissions.
If the original source has insecure permissions on files and/or directories
dpkg-source -x should override them with umask, but:
snip
What I ment to copy
On Thu, Dec 01, 2005 at 11:34:15AM +0100, Martin Schulze wrote:
Thanks for your report, but I'd rather consider this a
if-use-user-wants-to-shoot-in-both-feet-they-should error. Why would
anybody would want to run dpkg-source inside a fakerooted shell?
You can't exploit root or another user,
+group and other write permissions.
+
+ -- Mikko Rapeli [EMAIL PROTECTED] Wed, 30 Nov 2005 17:31:34 +0200
+
base-config (2.53.10) testing; urgency=low
* Christian Perrier
Common subdirectories: base-config-2.53.10/debian/po and base-config-2.53.10.sarge.mkr1/debian/po
diff -Nu base-config
Package: dpkg-dev
Version: 1.13.11
Version: 1.10.28
Tags: security
fakeroot combined with dpkg-source uses original source package permissions.
If the original source has insecure permissions on files and/or directories
dpkg-source -x should override them with umask, but:
$ fakeroot /bin/sh
Joey Hess wrote:
Mikko Rapeli wrote:
Part b) could be fixed by using a stricter umask or plain cp instead of
'cp -a' in Sarge's 93save-install-log and Etch beta 1's 93save-debconf
( URL:
http://svn.debian.org/wsvn/d-i/trunk/packages/prebaseconfig/prebaseconfig.d/93save-debconf?op=filerev
I took the cvs version of genext2fs for a spin:
~/src/genext2fs-cvs_29112005$ mkdir -p foo/bar/xyz
~/src/genext2fs-cvs_29112005$ ls -ld foo/*
drwxr-xr-x 3 mikko mikko 1024 2005-11-29 12:06 foo/bar
~/src/genext2fs-cvs_29112005$ ./genext2fs -d foo -b 1000 -r 0 /tmp/foo.img
A newer version of genext2fs may preserve uid's, gid's and permissions
for files and directories so the ext2 initrd image wouldn't have o=rwx
any more.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=338263
-Mikko
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe.
Package: debian-installer
Version: 20051026
Tags: security,sarge
debian-installer in Sarge leaves the directory
/var/log/debian-installer/cdebconf world writable:
# ls -ld `locate debian-installer | grep cdebconf`
drwxrwxrwx 2 root root4096 Sep 23 17:54
Package: bsdutils
Version: 1:2.12p-4sarge1
Severity: normal
Administrators like root typically use wall to notify users of ongoing
maintenance etc. operations. man wall(1) says:
Wall displays the contents of file or, by default, its standard input,
on the terminals of all currently logged in
How about this version?
-Mikko
--- ../../mozilla-thunderbird-1.0.7/debian/rules2005-10-13
08:22:09.0 +0300
+++ rules 2005-10-12 15:52:59.0 +0300
@@ -16,8 +16,11 @@
MAKE_OPTS=-C build-dir/mozilla
-TBIRD_BZ2_ARCHIVE=thunderbird-1.0.7-source.dfsg.tar.bz2
+# Parse
On Sun, Oct 02, 2005 at 08:46:31PM +0200, Alexander Sack wrote:
You ever found time to do some work on this?
Sorry but no. Apartment move got to my way.
-Mikko
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Package: mutt
Version: 1.5.9-2
Severity: normal
I was deleting attachments from a mail in IMAP inbox while the IMAP
server closed the connection. Here's the backtrace:
$ gdb src/mutt-1.5.9/build-tree/mutt-1.5.9/mutt core
GNU gdb 6.3-debian
Copyright 2004 Free Software Foundation, Inc.
GDB is
Package: mutt
Version: 1.5.9-2
Severity: normal
I skimmed the existing bug reports through, so perhaps this is a
duplicate of http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=292663 or
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=196766 but I'm filing
it anyway.
Is this hang isn't going to
On Fri, Aug 19, 2005 at 02:24:01AM +0200, Alexander Sack - Debian Bugmail wrote:
Mikko,
you want to update your patch to what we found?
I think prepending the changelog is not a good idea. Instead one should be
able to use update-orig target to get the upstream version that is currently
On Tue, Aug 09, 2005 at 02:22:32PM +0200, Alexander Sack - Debian Bugmail wrote:
Thanks for the patch. I will include it, but would suggest some improvements.
Yes, and the patch also needs to not have current working directory in
the package source main, as per get-orig-source suggestion in
Package: mozilla-thunderbird
Version: 1.0.6-3
Severity: wishlist
Tags: patch
This patch automates the downloading and dfsg cleaning of the original upstream
source package. I've verified that it produces an archive with the same
contents than that which ships in unstable now. It seems that the
On Mon, Aug 01, 2005 at 04:20:28PM +0300, Mikko Rapeli wrote:
Having spent hours reading the discussions, hopefully this link to patch
making 1.0.6 compile on Sarge helps -- even if just a small, tiny bit:
http://lists.debian.org/debian-security/2005/07/msg00305.html
Apparently this patch
Having spent hours reading the discussions, hopefully this link to patch
making 1.0.6 compile on Sarge helps -- even if just a small, tiny bit:
http://lists.debian.org/debian-security/2005/07/msg00305.html
And next the same thing for thunderbird and mozilla...
-Mikko
--
To UNSUBSCRIBE, email
My firewall/mail gateway/shell host for 2-3 people is an old P90 with 40
mb of ram. It works well with Debian and I see no reason to upgrade the
hardware. Woody installer worked perfectly back in the days and
dist-upgrade to Sarge did too.
I bet there are tons of home/small office gateways with
Perhaps these patches to Grip 3.2.0 and 3.3.0 could close this bug?
-Mikko
Common subdirectories: grip-3.2.0-debian-orig/src/.deps and grip-3.2.0/src/.deps
Binary files grip-3.2.0-debian-orig/src/grip and grip-3.2.0/src/grip differ
Common subdirectories: grip-3.2.0-debian-orig/src/.libs and
101 - 137 of 137 matches
Mail list logo