tag 501818 pending
thanks
Michael Tautschnig wrote:
Package: qa.debian.org
Even though apparently better than a few days ago, where the DEHS pages
only showed Db error, the data still seems to be fairly outdated. My
There were some auth issues which have been fixed (the real fix is to
Package: chm2pdf
Severity: important
Version: 0.9-2
User: [EMAIL PROTECTED]
Usertags: goal-dash
Hello maintainer,
While preparing a patch for #501959 I noticed a bashism in the python script.
affected line:
os.system('extract_chmLib ' + filename + ' ' + CHM2PDF_ORIG_DIR
+ '
useful now
+ * bashisms.diff: fix bashism in chm2pdf (Closes: #502044).
+
+ -- Raphael Geissert [EMAIL PROTECTED] Sun, 12 Oct 2008 17:54:24 -0500
+
chm2pdf (0.9.1-1) unstable; urgency=low
* New upstream release
diff -u chm2pdf-0.9.1/debian/control chm2pdf-0.9.1/debian/control
--- chm2pdf-0.9.1
system (n): System about which nothing general can be said, save
nothing general can be said.
-- Anonymous (430)
___
pkg-php-maint mailing list
[EMAIL PROTECTED]
http://lists.alioth.debian.org/mailman/listinfo/pkg-php-maint
Cheers,
--
Raphael
. (closes: #267720)
Changing it back may allow the setting in php.ini work.
The only change that was done here was to default to 0 in php itself
(i.e. if gc_probability is not defined in php.ini it will default to
0/off).
Cheers,
--
Raphael Geissert - Debian Maintainer
www.debian.org
And
$ for sh in {po,{d,b}a,{m,pd,}k,z,busybox\ }sh; do echo $sh: $($sh $file
moo); done
posh: not moo
dash: not moo
bash: got moo
mksh: not moo
pdksh: not moo
ksh: got moo
zsh: got moo
busybox sh: got moo
Cheers,
--
Raphael Geissert - Debian Maintainer
www.debian.org - get.debian.net
signature.asc
/devel/wnpp/
If you disagree and want to continue to maintain this package, please
close this bug, preferably in an upload also fixing the other issues.
Thank you,
--
Raphael Geissert - Debian Maintainer
www.debian.org - get.debian.net
signature.asc
Description: This is a digitally signed
and want to continue to maintain this package, please
just close this bug, preferably in an upload also fixing the other
issues.
Thank you,
--
Raphael Geissert - Debian Maintainer
www.debian.org - get.debian.net
signature.asc
Description: This is a digitally signed message part.
otherwise be useless the fact that I am a DM
(at least for that specific package as it is *not* going to drop the -via
transitional package before squeeze is released with it).
[1]http://ftp-master.debian.org/dm-uploaders.html
[2]http://www.debian.org/vote/2007/vote_003
Kind regards,
--
Raphael
Package: nvi
Version: 1.79-25
Severity: grave
Tags: security patch
Hi everyone,
Going through the list of packages listed at [1] I noticed the overrides are
completely wrong and it *is* a security issue. I verified versions 1.79-25
and 1.81.6-3 (etch and lenny, respectively) of the package
retitle 466767 useless dependency on php5
severity 466767 important
thanks
I guess the maintainer didn't intend to Depend on both, but to use an ORed
dependency. And since it is a kind of annoying bug I'm raising its severity
(especially because having any of the web SAPIs won't be of any use
Package: popularity-contest
Version: 1.45
Severity: minor
Q) When does popularity-contest run ?
A) popularity-contest is run by the daily cron job
/etc/cron.daily/popularity-contest, but only one day in the week,
whci is specified in the configuration file. This day is chosen randomly
to
Chris Lamb wrote:
tags 489641 + patch
thanks
Patch attached.
print_action()
{
- echo -e netenv: $* ... \c
+ printf netenv: $* ... \c\n
}
?! what did you smoke that day Chris? :D
right version:
print_action()
{
- echo -e netenv: $* ... \c
+ printf netenv:
On Tuesday 04 September 2007, Michal Čihař wrote:
Package: php5-cgi
Version: 5.2.3-1+b2
Severity: normal
Hi
I use gettext for localisation of my PHP application. Whenever I change
templates/translation and then regenerate .mo files, PHP instances start
to crash. Most likely they do not
tag 458081 + moreinfo
thanks
Could you please install the php5-dbg package and provide a useful backtrace?.
Thanks.
Cheers,
--
Atomo64 - Raphael
Please avoid sending me Word, PowerPoint or Excel attachments.
See http://www.gnu.org/philosophy/no-word-attachments.html
--
To UNSUBSCRIBE,
severity 496922 important
tag 496922 moreinfo
thanks
2008/8/28 Paolo Cavallini [EMAIL PROTECTED]:
Package: xserver-xorg-video-openchrome
Version: 1:0.2.902+svn579-1
Severity: grave
Justification: renders package unusable
No, it doesn't.
After the last upgrade, the driver causes the mouse
2008/8/28 Michal Čihař [EMAIL PROTECTED]:
Hi
Dne Tue, 26 Aug 2008 14:02:07 -0500
Raphael Geissert [EMAIL PROTECTED] napsal(a):
Can you still reproduce the problem in 5.2.6-3 (latest version in sid)?
I can reproduce it with 5.2.6-2, I will upgrade and retest with latest
version, but I
Package: ftp.debian.org
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Please remove it.
- -- System Information:
Debian Release: lenny/sid
APT prefers testing
APT policy: (500, 'testing'), (200, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.26-1-686 (SMP w/1
retitle 441351 ITP: kcometen4 -- fireworks animated OpenGL screensaver for KDE
owner 441351 John Stamp [EMAIL PROTECTED]
thanks
2008/8/20 John Stamp [EMAIL PROTECTED]:
Hi Raphael--
I released KCometen4 version 1.0 for KDE4.
...[hiding some info]...
Right now I'm trying to hand over some
Package: wnpp
Severity: wishlist
Homepage: http://dojotoolkit.org/
Language: javascript
Licence: BSD License and the Academic Free License
There are several packages in the archive shipping a copy of the dojo library,
but according to Policy 4.13 they shouldn't.
Cheers,
--
Atomo64 - Raphael
Package: wnpp
Severity: wishlist
Homepage: http://sourceforge.net/projects/jscalendar
Language: javascript
Licence: LGPL
There are several packages in the archive shipping a copy of jscalendar,
but according to Policy 4.13 they shouldn't.
Cheers,
--
Atomo64 - Raphael
Please avoid sending me
Carl Fürstenberg wrote:
Package: lintian
Version: 1.24.4
Severity: important
the check for embedded prototype javacsript library is prone to many
false positives, as prototype is a pretty common word in js-space,
and also that it can be common for JavaScript files, using such library
to
Package: lintian
Version: 1.24.4
Severity: wishlist
Self reminder.
Cheers,
--
Atomo64 - Raphael
Please avoid sending me Word, PowerPoint or Excel attachments.
See http://www.gnu.org/philosophy/no-word-attachments.html
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of
Package: lintian
Version: 1.24.4
Severity: wishlist
The following snippet is pretty common and always, IMHO, wrong:
On Debian systems, the complete text of the GNU General
Public License can be found in `/usr/share/common-licenses/GPL'.
It should either refer to GPL-2 or GPL-3. The same
Package: lintian
Version: 1.24.4
Severity: wishlist
The Debian packaging is (C) 2008, John Doe [EMAIL PROTECTED] and
is licensed under the GPL, see above.
The above example should either say:
...is Copyright (C) 2008...
The '(C)' part being optional, or
...is © 2008...
Cheers,
--
Atomo64 -
Package: lintian
Version: 1.24.4
Severity: wishlist
Example follows.
Source: foo-bar
Section: x11
Priority: optional
Maintainer: foo bar [EMAIL PROTECTED]
Standards-Version: 3.8.0
Build-Depends: debhelper (= 3)
Homepage: http://bar.moo
Package: foo-bar
Architecture: all
Section: x11
Package: lintian
Version: 1.24.4
lintian doesn't emit wrong-bug-number-in-closes on the following case:
$ dpkg-parsechangelog
Source: foo
Version: 0.1-1
Distribution: unstable
Urgency: low
Maintainer: John Doe [EMAIL PROTECTED]
Date: Fri, 18 Jul 2008 19:26:03 +0200
Closes: 0
Changes:
Package: lintian
Version: 1.24.4
my $entry = $entries[0];
if (@entries == 1 and $entry-Version =~ /-1$/) {
tag 'new-package-should-close-itp-bug'
unless @{ $entry-Closes };
}
The above code is fine, but fails to detect cases like this one:
$
clone 497347 -1
reassign -1 dh-make 0.46
severity -1 normal
thanks
2008/8/31 Russ Allbery [EMAIL PROTECTED]:
Raphael Geissert [EMAIL PROTECTED] writes:
The Debian packaging is (C) 2008, John Doe [EMAIL PROTECTED] and
is licensed under the GPL, see above.
The above example should either say
clone 497346 -1
reassign -1 debian-policy
blocks 497346 -1
thanks
2008/8/31 Russ Allbery [EMAIL PROTECTED]:
Raphael Geissert [EMAIL PROTECTED] writes:
The following snippet is pretty common and always, IMHO, wrong:
On Debian systems, the complete text of the GNU General
Public License can
Hi,
2008/9/1 Paolo Cavallini [EMAIL PROTECTED]:
Hi all.
Thanks for taking the issue.
Raphael Geissert ha scritto:
Justification: renders package unusable
No, it doesn't.
At least for me, it does (unless you can guess the mouse posion by
imagination...)
It doesn't for everyone, nor
tag 497347 patch
thanks
2008/9/1 Raphael Geissert [EMAIL PROTECTED]:
Will submit a patch implementing the check in an hour or so, hope you like it.
Attached
Cheers,
Cheers,
--
Atomo64 - Raphael
Please avoid sending me Word, PowerPoint or Excel attachments.
See http://www.gnu.org
Russ Allbery wrote:
Raphael Geissert [EMAIL PROTECTED]
writes:
You said it: at all; in this case I propose to add a check for that
specific bit of the copyright files.
The problem here is that we encourage people to cut and paste *verbatim*
the upstream copyright notice. It's
On Monday 12 May 2008, Joey Hess wrote:
Package: lintian
Version: 1.23.48
Severity: wishlist
It seems that some people may decide that using brace expansion (ie,
docs/{foo,bar}) in a debian/package.docs file is a good idea. Despite it
not being documented anywhere, not being an intended
Package: devscripts
Version: 2.10.35
Severity: wishlist
User: [EMAIL PROTECTED]
Usertags: checkbashisms
$ cat /tmp/t
#!/bin/sh
case moo in
[^f]oo)
echo hey
;;
[!f]oo)
echo moo
;;
esac
$ for sh in {po,{d,b}a,{m,pd,}k,z,busybox\ }sh; do echo $sh: $($sh /tmp/t);
tag 480939 patch
thanks
Hi Joey,
2008/9/2 Joey Hess [EMAIL PROTECTED]:
It doesn't matter if bash or perl is providing this, it's still
completly undocumented and works only in some situations due to a detail
of implementation.
You didn't answer my question, so I assume you still want that
Hi,
On Monday 22 September 2008, Jan Schmidle wrote:
hi once again,
i had bin quite in a hurry, so i didn't recognise that this mail is for
the bugtracking system.
So now once again in english ;)
I rewrote the script from lincoln:
1 ?php
2 echo test iso: ;
3 print idn_to_ascii
2008/9/29 Paolo Cavallini [EMAIL PROTECTED]:
Raphael Geissert ha scritto:
I have uploaded the 570 package, and an unreleased 577 package; could
you please try both of them and tell me if the mouse cursor shows up
again? and with which package version?
http://alioth.debian.org/~atomo64-guest
Hi,
2008/9/29 Y Giridhar Appaji Nag [EMAIL PROTECTED]:
On 08/09/15 10:57 +0200, Khalid Shukri said ...
I had the same problem, resolution only up to 800 x 600, until I
manually put the VertRefresh and HorizSync values of my monitor in
xorg.conf. Now I have the full resolution of 1920 x 1200.
/me is willing to set the severity of this bug to important
On Friday 03 October 2008, Clint Adams wrote:
On Fri, Oct 03, 2008 at 11:24:20AM +0100, Christopher J. Walker wrote:
update manager fails with the error message:
An error occurred
The following details are provided:
E:
Package: nut
Version: 2.2.2-8
Severity: wishlist
Tags: patch
Attached is a patch adding support for tripplite's avr750u UPS.
Issues:
* productid still needs to be specified in ups.conf
* the battery charge information, at least as displayed by knutclient 0.9.4,
is either 0% or 100%, the latter
On Tuesday 30 September 2008, Paolo Cavallini wrote:
Raphael Geissert ha scritto:
Ok, I really believe it is because of 577, so could you please try
with the .deb I just built from 576?
http://alioth.debian.org/~atomo64-guest/xserver-xorg-video-openchrome_0.2
.902+svn576-1_i386.deb
Package: knutclient
Version: 0.9.4-1
Severity: wishlist
It would be great if knutclient could start docked when it was closed while
docked. Right now I have to close the main window at every KDE session
startup.
Thanks in advance.
Cheers,
--
Atomo64 - Raphael
Please avoid sending me Word,
Hi Arnaud,
2008/10/4 Arnaud Quette [EMAIL PROTECTED]:
Hi Raphael,
btw, are you 2 bugs today a simple coincidence with my linkedIn
invitation yesterday? ;-)
Pure coincidence :)
2008/10/4 Raphael Geissert [EMAIL PROTECTED]:
Package: nut
Version: 2.2.2-8
Severity: wishlist
Tags: patch
2008/10/4 Arjen de Korte [EMAIL PROTECTED]:
Citeren Arnaud Quette [EMAIL PROTECTED]:
you missed to add an entry in drivers/tripplite-hid.c
-tripplite_claim() for that ;-)
And beware that you need to put it in the correct place as well. Some Tripp
Lite HID devices (incorrectly) report
2008/10/4 Arnaud Quette [EMAIL PROTECTED]:
I missed that one. thanks for pointing it ;-)
@Raphael: would you be able to test a trunk version for fine tuning?
Sure, why not? :)
[...]
thanks Arjen and Charles,
Arnaud
--
Linux / Unix Expert RD - MGE Office Protection Systems -
2008/10/4 Charles Lepple [EMAIL PROTECTED]:
I don't know much about the Tripp Lite devices covered by the
usbhid-ups driver, but the usual debug suggestions apply. You can run
the driver with -DDD on the command line, and look for messages
related to battery charge.
Attaching the output of
tag 501183 upstream
forwarded 501183 http://www.openchrome.org/trac/ticket/252
thanks
2008/10/5 John Talbut [EMAIL PROTECTED]:
Package: xserver-xorg-video-openchrome
Version: 1:0.2.902+svn579-2
Severity: important
After the screensaver has been running for a while the system freezes and I
2008/10/5 John Talbut [EMAIL PROTECTED]:
Raphael Geissert wrote:
The problem is in the 3d driver (unichrome DRI in Mesa), not with the
2d driver (openchrome).
I'm leaving it assigned to this package (and not libgl1-mesa-dri) as
it might be possible for someone at -openchrome to fix it.
OK
Hi,
When replying please don't forget to CC the bug report.
2008/10/6 Paolo Cavallini [EMAIL PROTECTED]:
Raphael Geissert ha scritto:
http://alioth.debian.org/~atomo64-guest/xserver-xorg-video-openchrome_0.2.902+svn574-1_i386.deb
no cursor
http://alioth.debian.org/~atomo64-guest/xserver
Package: lintian
Version: 2.0.0
Severity: minor
Example:
$ lintian --show-overrides -I
xserver-xorg-video-openchrome_0.2.902+svn579-2_i386.deb | cut '-d ' -f-3
O: xserver-xorg-video-openchrome: non-dev-pkg-with-shlib-symlink
O: xserver-xorg-video-openchrome: non-dev-pkg-with-shlib-symlink
O:
Hi,
2008/7/25 Mathieu Simon [EMAIL PROTECTED]:
Package: xserver-xorg-video-openchrome
Version: 1:0.2.902+svn579-1
Severity: important
Previously used openchrome from openchrome.org SVN, switched back to
vesa and later installed the Debian package. Resolutions are
only available up to
tag 492389 pending
thanks
Hi,
2008/7/25 Cameron Dale [EMAIL PROTECTED]:
Package: kcheckgmail
Version: 0.5.7.4-1
Severity: grave
Might not completely agree with the severity, as it is not completely
broken, but I'm leaving it (a fixed version is ready).
I've tried on a couple of different
clone 491033 -1
reassign -1 wnpp
severity -1 wishlist
retitle -1 RFP: php-fileinfo -- php binding to libmagic (a.k.a. file)
to determine file types
thanks
2008/7/16 Steffen Ille [EMAIL PROTECTED]:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Package: php5
Version: 5.2.5-3
Dear Sir or
Josselin Mouette wrote:
Package: lintian
Version: 1.24.1
The su-wrapper-not-su-to-root is nice for menu files, but for desktop
files it doesn’t make much sense. Since the utility is in the menu
package, it means the command will fail to launch although it has a
dependency on gksu. (Or
Ronan Keryell wrote:
Package: dash
Version: 0.5.4-11
Severity: normal
I've found a problem on machines with dash used as default shell.
In the following toy program:
#! /bin/dash
# OK ls is not found
PATH=/nowhere ls
# The dash superpower: the following should failed but works
Josselin Mouette wrote:
Le samedi 26 juillet 2008 à 14:29 -0500, Raphael Geissert a écrit :
The su-wrapper-not-su-to-root is nice for menu files, but for desktop
files it doesn’t make much sense. Since the utility is in the menu
package, it means the command will fail to launch although
Package: qa.debian.org
Severity: important
User: [EMAIL PROTECTED]
Usertags: ddpo
Example:
http://qa.debian.org/developer.php?package=php4
http://packages.qa.debian.org/p/php4.html
Not even the DDPO report for pkg-php-maint displays php4:
Package: kdebluetooth
Version: 1.0~beta8-5
As the subject says: I have to first close kbluetooth (kblueplugd remains
alive) before unplugging the dongle which is annoying. The backtrace
generated by kcrash is completely useless because of the lack of the debug
symbols.
Regards,
--
Atomo64 -
tag 493045 moreinfo
thanks
On Wednesday 30 July 2008, Timo Kirst wrote:
Package: php5
Version: 5.2.6-2
Hi there,
exactly since we upgraded to this package we get intermittent
Segmentation Faults from two cron jobs each running a php skript every 5
minutes.
During the last 7 days this
Source: ifenslave
Version: 2
Severity: important
This dummy package has been for a long while in Debian and it really doesn't
make any sense to have it around.
ifenslave-2.6 should probably Provides: ifenslave
If you agree, sending the following commands to [EMAIL PROTECTED]
should do it (after
Package: edos-debcheck
Severity: wishlist
Hi,
It would be great if edos could also understand Sources files and be
able to take a Sources and a Packages and check if all the build
dependencies can be satisfied.
This would be a great complement.
Thanks in advance.
Regards,
--
Atomo64 -
reassign 495497 qa.debian.org
severity 495497 minor
thanks
Torsten Werner wrote:
Package: devscripts
The redirector is not managed by devscripts, reassigning.
Version: 2.10.34
Severity: important
Hi,
the URL http://qa.debian.org/watch/sf.php/extcalc-linux lists only old
I'm afraid
Hi Todd,
I'm forwarding you a patch received at Debian fixing the toGDImage issues.
I'm about to test it and upload a new version of the package containing the
patch if it works fine and there's no regression (I doubt there will be
any :).
So, please review it and consider applying it
Package: ksh
Version: 93s+20080202-1
The script at [1] is 'misscompiled' by shcomp making it completely useless as
it fails to 'case' a line.
To reproduce:
$ (echo #! /bin/ksh93 -x shcomp -n ./edos-sourcesdebcheck.sh )
/tmp/test
$ chmod +x /tmp/test
$ /tmp/test --no-edos
Package: wordpress
Version: 2.5.1-5
From apt-cache show:
Package: wordpress
Priority: optional
Section: web
Installed-Size: 5028
Maintainer: Andrea De Iacovo [EMAIL PROTECTED]
Architecture: all
Version: 2.5.1-5
Depends: apache2 | httpd, virtual-mysql-client, WRONG --
libapache2-mod-php5 | php5 |
Package: lintian
Version: 1.24.4
Severity: wishlist
Tags: patch
Since there has been no follow up, I'm now filing it as a bug report to have
a record.
--- Forwarded message
Subject: Re: Some more patches
From: Raphael Geissert
Date: Sat, 28 Jun 2008 22:38:40 -0500
Newsgroup
Raphael Geissert wrote:
Tags: patch
Now actually including the patch.
Cheers,
--
Atomo64 - Raphael
Please avoid sending me Word, PowerPoint or Excel attachments.
See http://www.gnu.org/philosophy/no-word-attachments.html
diff --git a/checks/copyright-file b/checks/copyright-file
index
Package: lintian
Version: 1.24.4
Severity: wishlist
Tags: patch
The discussion is dead, so I'm now recording it as a report.
--- Forwarded message
Subject: yet another patch
From: Raphael Geissert
Date: Sun, 31 Aug 2008 21:05:48 -0500
Newsgroup: gmane.linux.debian.devel.lint.devel
Source: fpc
Version: 2.2.2-3
Examples:
Description: Free Pascal -- Compiler
Although it is not required, could you please use a single dash so it matches
the common format which is common synopsis - specific bit?
The Free Pascal Compiler is a Turbo Pascal 7.0 and Delphi compatible
32/64-bit
Package: lintian
Version: 1.24.4
Severity: wishlist
Tags: patch
The attached patch adds support for overridable tags.
Any value in the .desc files can be overriden if the lowercase name is in its
corresponding Overridable field.
Example:
in .desc:
Tag: test-tag
Type: warning
Severity: normal
forwarded 498914 http://bugs.php.net/46077
tag 498914 upstream
severity 498914 minor
thanks
2008/9/14 Patrik Fimml [EMAIL PROTECTED]:
Package: php5-cli
Version: 5.2.6-3
Severity: normal
When defining a function with the same name as the enclosing class, it
is treated as a constructor for
Russ Allbery wrote:
Having a rule in debian/rules that depends on patch when using the quilt
makefile fragment is almost always wrong, since patch is a phony target
that will force any rule that depends on it to be rebuilt. This often
results in repeated compiles on the buildds, wasting
Package: lintian
Version: 1.24.4
Severity: wishlist
Tags: patch
Forwarding a patch I sent in [EMAIL PROTECTED] to the BTS, so it is
noticed.
Cheers,
--
Atomo64 - Raphael
Please avoid sending me Word, PowerPoint or Excel attachments.
See http://www.gnu.org/philosophy/no-word-attachments.html
2008/9/14 Russ Allbery [EMAIL PROTECTED]:
Raphael Geissert [EMAIL PROTECTED] writes:
The attached patch adds support for overridable tags. Any value in
the .desc files can be overriden if the lowercase name is in its
corresponding Overridable field.
I already explained why I think
2008/9/21 Russ Allbery [EMAIL PROTECTED]:
Raphael Geissert [EMAIL PROTECTED] writes:
2008/9/14 Russ Allbery [EMAIL PROTECTED]:
I already explained why I think this is a bad idea. I don't think
Actually, what I understood from what you said is that you were not sure
how useful it would
Package: kdebluetooth
Version: 1.0~beta8-5
Severity: minor
When kbluetooth displays the 'Connected to device name' notification the
device name is displayed correctly. But the Device selector frame in the
OBEX object push client incorrectly displays the device name.
This of course only happens
severity 500168 wishlist
found 500168 5.2.0-8
thanks
because it's deprecated and is highly discouraged:
The man actually says:
This feature has been DEPRECATED and REMOVED as of PHP 6.0.0. Relying on
this feature is highly discouraged.
Although I agree that magic_quotes_* suck (and IMHO
Package: debtorrent
Version: 0.1.9
Severity: grave
Tags: security
From postinst:
if [ -n $2 ] dpkg --compare-versions $2 lt 0.1.6 ; then
# Upgrade for the new separate_all options
UPGRADE_FILE=/tmp/debtorrent-pre0.1.6-upgrade
Package: chillispot
Version: 1.0-9
Severity: grave
Tags: security
From postinst:
8--8
# config file
CONFIGFILE=/etc/chilli.conf
# upstream config file
TEMPCONFIG=/tmp/chilli.conf
...
# unpack upstream config
zcat /usr/share/doc/chillispot/chilli.conf.gz
2008/9/24 Stefan Fritsch [EMAIL PROTECTED]:
Package: php5
Version: 5.2.6-3
Severity: important
Tags: security
From CVE-2008-4107:
The (1) rand and (2) mt_rand functions in PHP 5.2.6 do not produce
cryptographically strong random numbers, which allows attackers to
leverage exposures in
,
Raphael Geissert
signature.asc
Description: This is a digitally signed message part.
Package: wordpress
Version: 2.5.1-7
Severity: important
Tags: security
The file as found in 2.5.1-7 takes the HTTP_HOST and uses it to find the
config-host.php file to include.
This routine is prone to attacks by a local user via a especially crafted Host
header.
Feel free to increase the
Package: wordpress
Version: 2.5.1-7
Severity: minor
Tags: patch
if (!file_exists($debian_file)) {
header(HTTP/1.0 404 Not Found);
echo 404 Not found;
}
should be
if (!file_exists($debian_file)) {
header(HTTP/1.0 404 Not Found);
echo 404 Not
Thadeu Lima de Souza Cascardo wrote:
Package: debian-goodies
Version: 0.47
Severity: wishlist
Tags: patch
This little wrapper opens a package homepage in a sensible browser.
...
$ checkbashisms dhomepage
possible bashism in dhomepage line 22 ('function' is useless):
function version()
tag 496922 + moreinfo
thanks
Hi,
Sorry for the late reply.
2008/9/2 Paolo Cavallini [EMAIL PROTECTED]:
Raphael Geissert ha scritto:
Btw, can you see the id of your card in
/usr/share/doc/xserver-xorg-video-openchrome/changelog.Debian.gz?
No, I can't. IFACU, it's a CN700/VN800/P4M800CE/Pro
tag 348620 patch
thanks
Hi all,
Attached is the patch implementing that check.
Cheers,
--
Atomo64 - Raphael
Please avoid sending me Word, PowerPoint or Excel attachments.
See http://www.gnu.org/philosophy/no-word-attachments.html
diff --git a/checks/scripts b/checks/scripts
index
tag 348620 - patch
tag 376184 + patch
thanks
Oops, got the bug number wrong.
Cheers,
--
Atomo64 - Raphael
Please avoid sending me Word, PowerPoint or Excel attachments.
See http://www.gnu.org/philosophy/no-word-attachments.html
bug_348620_message_12.mim
Description: application/mbox
Hi,
2008/7/20 A Mennucc [EMAIL PROTECTED]:
Sven Joachim ha scritto:
It means that dash will not wait for the user to hit the return key but
display the error message: read: 1: arg count and continue immediately
(or exit, if you have set -e). You should use read junk_var (or any
other unused
2008/7/20 Santiago Vila [EMAIL PROTECTED]:
Hmm, I didn't realize there was so much occurrences.
Raphael, is there a recommended fix for this type of bashisms?
As stated in several documents, printf should be used when writing
portable scripts; to avoid the implementations mess of echo.
in /bin/sh script
* Raphael Geissert [Sun, 06 Jul 2008 23:14:46 -0500]:
checkbashisms' output:
possible bashism in ./usr/share/doc/wx2.8-examples/examples/wxPython/b line
3 (sourced script with arguments):
. b $*
I'm not patching upstream to fix an example, hence I'm closing this bug.
If you
Package: pbuilder
Version: 0.181
Severity: wishlist
...
- Finished parsing the build-deps
Reading package lists...
Building dependency tree...
Reading state information...
ccache is already the newest version.
fakeroot is already the newest version.
0 upgraded, 0 newly installed, 0 to remove and
Package: aub
Version: 2.2.1
Severity: serious
copyright file states:
Copyright:
This code is offered as-is. Anyone is welcome to make improvements,
provided that my notice of authorship is retained. I accept no
responsibility for loss or damage caused by this program, nor do I
accept
Package: qa.debian.org
User: [EMAIL PROTECTED]
Usertags: pts
A new upstream version is available: 0.9.25, you should consider packaging
it.
http://dehs.alioth.debian.org/no_updated.txt:
php-suhosin: 0.9.27
And I can assure everyone that the new information is available, at least,
since
Source: php-suhosin
Version: 0.9.24-1
Severity: important
Tags: security
Hi,
Please update the package to version 0.9.27 ASAP and try to convince the,
CC'ed, release team to allow this version of the package to be shipped in
lenny.
Since version 0.9.26 there are several enhancements that
Package: lintian
Version: 1.24.4
checks/standards-version:
# udebs aren't required to conform to policy, so they don't need
# Standards-Version. (If they have it, though, it should be valid.)
my $version = $info-field('standards-version');
if (not defined $version) {
tag
Package: lintian
Version: 1.24.4
Tags: patch
The attached mbox contains a patch fixing a bug where source-field-malformed
would never be triggered.
Although I hardly see how could such a situation ever occur, at least now
lintian will emit the tag if appropriate.
Cheers,
--
Atomo64 - Raphael
tag 498490 confirmed
thanks
Hi,
The problem is not really the symlink, as the web apps policy states that
packages *should* do that. The real problem is that reinstallation of the
package should not put the symlinks back in place if they were removed by the
administrator.
Cheers,
--
Atomo64
severity 498388 important
tag 498388 moreinfo
Hi,
On Tuesday 09 September 2008, Micha Lenk wrote:
Hi Francesco,
Francesco Namuri wrote:
Please,
can you post the output of the execution of this piece of code?
Sure:
[EMAIL PROTECTED]:$ ./code_for_bug_498388.py
gtk module not found
Hi,
2008/9/10 Micha Lenk [EMAIL PROTECTED]:
Hi,
Raphael Geissert wrote:
Could you please:
# apt-get check
notebook:~# apt-get check
Reading package lists... Done
Building dependency tree
Reading state information... Done
notebook:~#
$ dpkg --status qemulator
Package: qemulator
1 - 100 of 2308 matches
Mail list logo