Bug#1034674: mm3d can not load OBJ files, corrupts IQE & SMD & D3D files on save, depending on locale

Package: mm3d Version: 1.3.12-1+b1 Severity: grave Tags: l10n X-Debbugs-Cc: nils+debian-p...@dieweltistgarnichtso.net Dear Maintainer, I tried to open some OBJ files with mm3d, but no 3D model was shown. I figured out that it seems to have something to do with my locale. I think file loading code

Bug#1004223: closing 1004223

Salvatore Bonaccorso writes: > close 1004223 5.4.1+repack-1 > thanks Yes, the problem is fixed in later Minetest versions – as I said … However, the current version in Debian stable (bullseye) is 5.3.0. This means that the patch needs to be backported to protect users! signature.asc Descript

Bug#1004223: minetest-server: ItemStack meta injection vulnerability in Minetest 5.3

Package: minetest-server Version: 5.3.0+repack-2.1 Severity: grave Tags: patch security Justification: user security hole X-Debbugs-Cc: nils+debian-report...@dieweltistgarnichtso.net, Debian Security Team Dear Maintainer, Minetest 5.3 contains a serious security issue by default. The ItemStack

Bug#961853: micro crashes at startup

Package: micro Version: 2.0.3-1~bpo10+1 Severity: grave Justification: renders package unusable Dear Maintainer, a friend just suggested that I try the “micro” text editor. I installed the software using “sudo apt-get install micro”. I executed the command “micro” from a terminal. Instead of sta

Bug#868705: gnome-exe-thumbnailer: Thumbnail generation for MSI files executes arbitrary VBScript

: retitle -1 gnome-exe-thumbnailer: CVE-2017-11421: Thumbnail > generation for MSI files executes arbitrary VBScript > > Hi > > CVE-2017-11421 has been assigned for this issue. > > Regards, > Salvatore -- Nils Dagsson Moskopp // erlehmann <http://dieweltistgarnichtso.net> signature.asc Description: PGP signature

Bug#868705: [pkg-wine-party] Bug#868705: gnome-exe-thumbnailer: Thumbnail generation for MSI files executes arbitrary VBScript

't think are on the Debian > Wine list) > > Best, > James > > On 18/07/17 05:01 AM, Nils Dagsson Moskopp wrote: >> Package: gnome-exe-thumbnailer >> Version: 0.9.4-2 >> Severity: grave >> Tags: security >> Justification: user secu

Bug#868705: gnome-exe-thumbnailer: Thumbnail generation for MSI files executes arbitrary VBScript

Package: gnome-exe-thumbnailer Version: 0.9.4-2 Severity: grave Tags: security Justification: user security hole Dear Maintainer, the following PoC is copied verbatim from my post about the parsing issue: http://news.dieweltistgarnichtso.net/posts/gnome-thumbnailer-msi-fail.html Proof of Concept

Bug#832125: chromium: Chromium immediately crashes

Package: chromium Version: 51.0.2704.79-1 Severity: grave Justification: renders package unusable Dear Maintainer, I started chromium. It crashed immediately with SIGSEGV. dmesg(1) tells me: --- snib --- [153066.919129] chromium[15304]: segfault at 10 ip aa110788 sp bfb16160 error 4 in libnettl

Bug#828159: firefox-esr: session tabs lost after upgrade from iceweasel to firefox-esr

Package: firefox-esr Version: 45.2.0esr-1 Severity: grave Justification: causes non-serious data loss Dear Maintainer, I updated from Iceweasel to Firefox ESR and after restarting, my old tabs were lost. The session tabs appear to be still saved in sessionstore.bak in the profile folder. Howev

Bug#784135: out-of-order: starting out-of-order produces black window and high system load

Package: out-of-order Version: 1.0-2 Severity: grave Justification: renders package unusable Dear Maintainer, I started out-of-order and it produces a black window and high system load. I killed it using killall and xkill. I did expect to see some kind of game. Here is the output of “out-of-orde

Bug#771561: closed by Ben Hutchings (Re: systemd package is missing dependency on Linux kernel (linux-image?))

What course of action would do propose to ensure that systemd is always upgraded in lockstep with the kernel version? Maybe have a versioned ”Breaks” entry for systemd regarding older Linux kernel versions? -- Nils Dagsson Moskopp // erlehmann <http://dieweltistgarnichtso.

Bug#771561: systemd: please remove /etc/fstab from bug report

Package: systemd Version: 204-8 Followup-For: Bug #771561 Dear Maintainer, This bug contains the contents of my /etc/fstab. I was never asked for this. I already found bug #743158. “We don't know, so assume yes.” is not consent. Please remove the /etc/fstab from the bug report. I will never ag

Bug#771561: systemd package is missing dependency on Linux kernel (linux-image?)

Package: systemd Version: 204-8 Severity: serious Dear Maintainer, according to upstream, systemd depends on the Linux kernel being in use. Quote : > Linux kernel >= 3.0 > Linux kernel >= 3.3 for loop device partition support featu

Bug#770499: conkeror: WebM loading crashes conkeror

Package: conkeror Version: 1.0~~pre-1+git141025-1 Severity: grave Tags: upstream security Justification: user security hole Dear Maintainer, a video crashed conkeror with the following message: > out of memory: 0x bytes requested > Segmentation fault See bug #770490 for similar b

Bug#770490: iceweasel: WebM loading crashes iceweasel

Package: iceweasel Version: 31.2.0esr-3 Followup-For: Bug #770490 Related Mozilla bug: -- Package-specific info: -- Addons package information -- System Information: Debian Release: jessie/sid APT prefers testing APT policy: (500, 'tes

Bug#770490: iceweasel: WebM loading crashes iceweasel

Package: iceweasel Version: 31.2.0esr-3 Followup-For: Bug #770490 Dear Maintainer, the bug has ｄｏｎｅ ｇｏｏｆｅｄ. Because Ｉ ｂａｃｋｔｒａｃｅｄ ｉｔ. And it's been reported to ｃｙｂｅｒ ｐｏｌｉｃｅ. --- 𝐬𝐧𝐢𝐛 --- (gdb) continue Continuing. [New Thread 0x932fcb40 (LWP 13657)] [New Thread 0x92afbb40 (LWP 13658)] [Thread 0x9

Bug#770490: iceweasel: WebM loading crashes iceweasel

Package: iceweasel Version: 31.2.0esr-3 Followup-For: Bug #770490 Dear Maintainer, the mozilla bug for this is . I used gdb to debug iceweasel, with iceweasel-dbg installed. Not much came from it: --- snib --- (gdb) continue Continuing. [Th

Bug#770490: iceweasel: WebM loading crashes iceweasel

Package: iceweasel Version: 31.2.0esr-3 Severity: grave Tags: security Justification: user security hole Dear Maintainer, I loaded the attached video. This crashed iceweasel with the following message: > out of memory: 0x bytes requested > Segmentation fault I am concerned this c

Bug#767302: gwrite: GWrite crashes when pressing save button

Package: gwrite Version: 0.5.1-2 Severity: grave Justification: causes non-serious data loss Dear Maintainer, when clicking the „Save“ button, I expected GWrite to save my content. What I did not expect was GWrite crashing immediately, sigabrt style. ---snib--- /usr/lib/pymodules/python2.7/gwr

Bug#753756: renpy should depend on same version of python-renpy

Package: renpy Version: 6.17.6-1 Severity: serious Justification: Policy 3.5 Dear Maintainer, the package renpy should depend on the corresponding version of python-renpy. If renpy just depends on any version of python-renpy, renpy may crash, like: --- snibedi --- ; renpy Traceback (most recent

Bug#739476: ImportError: cannot import name ScopedSession

Package: python-elixir Version: 0.7.1-1 Followup-For: Bug #739476 Please do not remove python-elixir, I am using it in real-world code! I have not discovered this bug earlier because it is triggered by python-sqlalchemy 0.8+, which changed the name of “ScopedSession” to “scoped_session”. The vers

Bug#725196: workaround for bug #725196

Downgrade to Gajim 0.15.1-4 avoids segmentation fault. -- Nils Dagsson Moskopp // erlehmann <http://dieweltistgarnichtso.net> signature.asc Description: PGP signature

Bug#725196: gajim: segmentation fault when double clicking contact in unified chat window

Package: gajim Version: 0.15.4-1 Severity: grave Justification: renders package unusable Dear Maintainer, recently I upgraded Gajim. When I start it and double click on an entry in the contact list, it crashes. I did not expect that. Instead, I did expect Gajim to open a chat for the contact in

Bug#702272: pinta: crash on program start

Package: pinta Version: 1.4-1 Severity: grave Justification: renders package unusable Dear Maintainer, I started pinta. It crashed immediately. I expected it would not crash. -- System Information: Debian Release: 7.0 APT prefers testing APT policy: (500, 'testing'), (500, 'stable'), (1, 'ex