Bug#399188: CVE-2006-5925: ELinks "smb" Protocol File Upload/Download Vulnerability

package elinks forwarded 399188 http://bugzilla.elinks.cz/show_bug.cgi?id=841 quit Stefan Fritsch <[EMAIL PROTECTED]> writes: > A vulnerability has been found in elinks: > Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed > allows remote attackers to execute arbitrary code via

Processed: Re: Bug#399188: CVE-2006-5925: ELinks "smb" Protocol File Upload/Download Vulnerability

Processing commands for [EMAIL PROTECTED]: > package elinks Ignoring bugs not assigned to: elinks > forwarded 399188 http://bugzilla.elinks.cz/show_bug.cgi?id=841 Bug#399188: CVE-2006-5925: ELinks "smb" Protocol File Upload/Download Vulnerability Noted your statement that Bug has been forwarded

Bug#399287: ipw3945 must go to contrib

severity 399287 normal tags 399287 +wontfix thanks Adrian Bunk wrote: > ipw3945-source clearly fails the first point since it's useless without > the non-free ipw3945d package. In some future version, the driver will not require the daemon anymore. This was discussed before when looking for linu

Processed: Re: Bug#399287: ipw3945 must go to contrib

Processing commands for [EMAIL PROTECTED]: > severity 399287 normal Bug#399287: ipw3945 must go to contrib Severity set to `normal' from `serious' > tags 399287 +wontfix Bug#399287: ipw3945 must go to contrib There were no tags set. Tags added: wontfix > thanks Stopping processing here. Please

Bug#398530: uim: Need to depend on libgtk2.0-bin

Package: uim Followup-For: Bug #398530 Since /usr/sbin/update-gtk-immodules is provided by libgtk2.0-bin, uim-gtk2.0 needs to depend on libgtk2.0-bin. Since test was executed removing many package together and the removal order was ... Removing libgtk2.0-bin ... dpkg - warning: while removi

Bug#398125: marked as done (gaim-librvp will not run or build with gaim 2.0.0beta5)

Your message dated Sat, 18 Nov 2006 21:47:11 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#398125: fixed in gaim-librvp 0.9.5-2 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is no

Processed: leptonlib: libpng3 will not be available

Processing commands for [EMAIL PROTECTED]: > retitle 397860 leptonlib: libpng3 will not be available Bug#397860: leptonlib: FTBFS: libpng3-dev and libpng3 are not available any more Changed Bug title. > severity 397860 wishlist Bug#397860: leptonlib: libpng3 will not be available Severity set to

Bug#399174: libphp-adodb cannot be installed on unstable

On Sun, Nov 19, 2006 at 04:13:51AM +, Cameron Dale wrote: > I'm currently in the process of adopting this package, so I'm still a > little unfamiliar with it. Please bear with me. > On 11/18/06, Steve Langasek <[EMAIL PROTECTED]> wrote: > >On Sat, Nov 18, 2006 at 10:14:49AM +, Richard Bur

Bug#399174: libphp-adodb cannot be installed on unstable

Hi Steve, I'm currently in the process of adopting this package, so I'm still a little unfamiliar with it. Please bear with me. On 11/18/06, Steve Langasek <[EMAIL PROTECTED]> wrote: On Sat, Nov 18, 2006 at 10:14:49AM +, Richard Burton wrote: > The following packages have unmet dependencies

Processed: Re: Dependencies problems

Processing commands for [EMAIL PROTECTED]: > severity 334498 serious Bug#334498: Dependencies problems Severity set to `serious' from `minor' > retitle 334498 missing dependency on libx11-6 Bug#334498: Dependencies problems Changed Bug title. > close 334498 6.8.2.dfsg.1-1 Bug#334498: missing dep

Bug#399296: marked as done (libpng: Conflict with the new libpng package)

Your message dated Sat, 18 Nov 2006 19:32:11 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#399296: fixed in libpng 1.2.13-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now yo

Bug#396749: marked as done (FTBFS: no suitably configured kernel include tree found)

Your message dated Sat, 18 Nov 2006 19:32:14 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#396749: fixed in oprofile 0.9.2-3 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now y

Processed: tagging 397860

Processing commands for [EMAIL PROTECTED]: > # Automatically generated email from bts, devscripts version 2.9.22 > tags 397860 sid Bug#397860: leptonlib: FTBFS: libpng3-dev and libpng3 are not available any more There were no tags set. Tags added: sid > End of message, stopping processing here.

Bug#399296: libpng: Conflict with the new libpng package

Package: libpng Version: 1.2.13-0 Severity: serious Owner: "Nelson A. de Oliveira" <[EMAIL PROTECTED]> On Sat, Nov 18, 2006 at 10:39:33PM -0200, Nelson A. de Oliveira wrote: >Hi Anibal! > >Today I saw that you have packed a new version of libpng. Thank you for >that! >Downloading the source from

Bug#393711: libnss-mdns: /etc/nsswitch.conf configuration is broken

On Thu, 16.11.06 17:45, Loïc Minier ([EMAIL PROTECTED]) wrote: > Hi, > > This is a followup for Debian bug

Processed: leptonlib: FTBFS: libpng3-dev and libpng3 are not available any more

Processing commands for [EMAIL PROTECTED]: > retitle 397860 leptonlib: FTBFS: libpng3-dev and libpng3 are not available > any more Bug#397860: leptonlib: please {build-,}depend on libpng12-{dev,0} Changed Bug title. > severity 397860 serious Bug#397860: leptonlib: FTBFS: libpng3-dev and libpng3

Bug#399224: marked as done (xfonts-scalable: doesn't call update-fonts-dir in postinst/postrm)

Your message dated Sat, 18 Nov 2006 17:02:08 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#399224: fixed in xfonts-scalable 1:1.0.0-6 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it

Bug#395080: Network Management SPAM Rejected

Network Management SPAM Rejected ***ALERT**ALERT**ALERT**ALERT**ALERT*** If you have received this message, your email has been marked SPAM by NETMAN.COM. The message has not been forwarded on to the intended user. We do NOT ALLOW unsolicited emailing on this domain. Please r

Bug#399287: ipw3945 must go to contrib

Package: ipw3945-source Version: 1.1.2-2 Severity: serious Quoting your policy: <-- snip --> 2.2.1. The main category Every package in _main_ must comply with the DFSG (Debian Free Software Guidelines). In addition, the packages in _main_ * m

Bug#399238: marked as done (otrs2: Apache::Constants not found during startup of Apache2)

Your message dated Sat, 18 Nov 2006 16:17:16 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#399238: fixed in otrs2 2.0.4p01-17 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now

Bug#395080: CVE-2006-5445: Denial of service in chan_sip

The fix for CVE-2006-5445 in the 1.2 branch appears to be: http://svn.digium.com/view/asterisk/branches/1.2/channels/chan_sip.c?r1=45306&r2=45380 There's no corresponding fix in the 1.0 branch. Here's my attempt at backporting it. This is untested, since I don't run Asterisk myself. The initial

Bug#397892: marked as done (libpng: CVE-2006-3334: specially crafted PNG may crash your browser)

Your message dated Sat, 18 Nov 2006 15:32:25 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#397892: fixed in libpng 1.2.13-0 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now yo

Processed: severity of 399238 is serious

Processing commands for [EMAIL PROTECTED]: > # Automatically generated email from bts, devscripts version 2.9.22 > severity 399238 serious Bug#399238: otrs2: Apache::Constants not found during startup of Apache2 Severity set to `serious' from `grave' > End of message, stopping processing here. P

Bug#398706: marked as done (libpng: CVE-2006-5793: malformed sPLT chunks may blow away your browser)

Your message dated Sat, 18 Nov 2006 15:32:25 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#398706: fixed in libpng 1.2.13-0 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now yo

Bug#394534: pilot-link and kpilot

Hi Ludovic, On Sat, Nov 18, 2006 at 01:44:11PM +0100, Ludovic Rousseau wrote: > > It seems kpilot has already been ported to work with new pilot-link 0.12, > > but it has two problems. > > > > First, kpilot is being maintained outside the KDE SVN, so the code we're > > shipping in kdepim is not l

Bug#399238: otrs2: Apache::Constants not found during startup of Apache2

Hi Steve, On 11/19/06, Steve Langasek <[EMAIL PROTECTED]> wrote: It's the sarge version of the package. If otrs2 isn't compatible with the sarge version of libapache2-mod-perl2, it needs to have a versioned dependency. it does not depend on libapache2-mod-perl2 it just recommends it. IMHO th

Bug#399238: otrs2: Apache::Constants not found during startup of Apache2

On Sun, Nov 19, 2006 at 12:23:45AM +0100, Torsten Werner wrote: > On 11/19/06, Steve Langasek <[EMAIL PROTECTED]> wrote: > >It's the sarge version of the package. If otrs2 isn't compatible with the > >sarge version of libapache2-mod-perl2, it needs to have a versioned > >dependency. > it does not

Processed: tagging bugs that are closed by packages in NEW as pending

Processing commands for [EMAIL PROTECTED]: > # the following bugs are closed by packages in NEW > # > tags 398335 pending Bug#398335: thunderbird-traybiff: Wrong depends for icedove There were no tags set. Tags added: pending > thanks Stopping processing here. Please contact me if you need assis

Bug#393606: marked as done (mail-notification-evolution: Fails to contact evolution)

Your message dated Sun, 19 Nov 2006 00:08:15 +0100 with message-id <[EMAIL PROTECTED]> and subject line Fixed in upload to experimental (rebuild against experimental evo) has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If th

Bug#398626: marked as done (jwchat: postinst fails: chown: cannot access `/etc/jwchat/config.js': No such file or directory)

Your message dated Sat, 18 Nov 2006 15:02:40 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#398626: fixed in jwchat 1.0beta2-12 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now

Processed: tagging 399213

Processing commands for [EMAIL PROTECTED]: > # Automatically generated email from bts, devscripts version 2.9.22 > tags 399213 sid Bug#399213: zope-quotafolder is missing a depend on zope2.9 There were no tags set. Tags added: sid > End of message, stopping processing here. Please contact me if

Bug#399238: otrs2: Apache::Constants not found during startup of Apache2

On Sat, Nov 18, 2006 at 08:44:18PM +, Torsten Werner wrote: > On 11/18/06, Arek <[EMAIL PROTECTED]> wrote: > >ii libapache2-mod-perl2 1.999.21-1 Integration of perl with the > >Apach > This package is very old. May you upgrade it, please? It's the sarge version of the package. If

Processed: Re: Processed (with 2 errors): your mail

Processing commands for [EMAIL PROTECTED]: > severity 399251 normal Bug#399251: error instantiating 'org.apache.juli.ClassLoaderLogManager' Severity set to `normal' from `serious' > tag 399251 - confirmed Bug#399251: error instantiating 'org.apache.juli.ClassLoaderLogManager' Tags were: confirmed

Processed: severity of 367267 is normal

Processing commands for [EMAIL PROTECTED]: > # Automatically generated email from bts, devscripts version 2.9.25 > severity 367267 normal Bug#367267: ftp.debian.org: Missing .orig.tar.gz files for dresden-ocl and libbsf-java Severity set to `normal' from `serious' > End of message, stopping proc

Bug#396735: marked as done (bluefish: Crash trying to save a document)

Your message dated Sat, 18 Nov 2006 14:02:18 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#396735: fixed in bluefish 1.0.7-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now y

Bug#340163: marked as done (3ddesktop: links to libfreetype6, which is going away)

Your message dated Sat, 18 Nov 2006 14:02:14 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#340163: fixed in 3ddesktop 0.2.9-6 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now

Bug#399260: marked as done (debian-installer: [powerpc] Please apply attached patch, adding prep and 2.6.18-2 support.)

Your message dated Sat, 18 Nov 2006 21:18:25 + with message-id <[EMAIL PROTECTED]> and subject line Bug#399260: debian-installer: [powerpc] Please apply attached patch, adding prep and 2.6.18-2 support. has caused the attached Bug report to be marked as done. This means that you claim that th

Bug#395080: Network Management SPAM Rejected

Network Management SPAM Rejected ***ALERT**ALERT**ALERT**ALERT**ALERT*** If you have received this message, your email has been marked SPAM by NETMAN.COM. The message has not been forwarded on to the intended user. We do NOT ALLOW unsolicited emailing on this domain. Please r

Bug#399261: llvm has rpath to insecure location (/home/ahs3/...)

Package: llvm Version: 1.8b-1 Severity: serious Tags: security Hello Al, llvm includes a binary with a rpath pointing to /home/ahs3/debian/llvm/llvm-1.8b/llvm/Release/bin. %chrpath /usr/lib/llvm/llvmc /usr/lib/llvm/llvmc: RPATH=/home/ahs3/debian/llvm/llvm-1.8b/llvm/Release/bin This allows an at

Bug#399260: debian-installer: [powerpc] Please apply attached patch, adding prep and 2.6.18-2 support.

Package: debian-installer Severity: grave Justification: d-i powerpc daily builds need to be upgraded to 2.6.18-2 kernel .udebs Please apply the attached patch. It adds support for the 2.6.18-2 kernel .udebs currently in unstable, as well as the prep support (needs mkvmlinuz 26 though, which wa

Bug#399256: FTBS: missing buil-dep on ruby

Package: qt4-qtruby Version: 1.4.6-1 Severity: serious Build-dep missing on ruby is screwing up the building system. Gosh, I thought I wouldn't let myself be caught again ! Vince -- System Information: Debian Release: 4.0 APT prefers unstable APT policy: (500, 'unstable'), (500, 'tes

Bug#398713: marked as done (collatinus: FTBFS: hyperlatex: cannot find emacs or xemacs)

Your message dated Sat, 18 Nov 2006 21:39:14 +0100 with message-id <[EMAIL PROTECTED]> and subject line Bug#398713: collatinus: FTBFS: hyperlatex: cannot find emacs or xemacs has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. I

Bug#399195: python-cairo: python2.3 import fail

> Confusing? Yes. But this is the route the python people took. Thanks a lot for sharing your experience. It's a lot clearer now. -- +33 1 76 60 72 81 Loic Dachary mailto:[EMAIL PROTECTED] http://dachary.org/loic/gpg.txt sip:[EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PRO

Bug#382906: RM: mozilla-locale-hu -- RoM; mozilla scheduled for removal

reassign 382906 ftp.debian.org retitle 382906 RM: mozilla-locale-hu -- RoM; mozilla scheduled for removal block 382906 with 370436 thanks Hi, As the maintainer of mozilla-locale-hu I request the removal of its removal due to the upcoming mozilla package removal. Regards, Laszlo/GCS signature.a

Processed: RM: mozilla-locale-hu -- RoM; mozilla scheduled for removal

Processing commands for [EMAIL PROTECTED]: > reassign 382906 ftp.debian.org Bug#382906: mozilla-locale-hu: depends on mozilla Bug reassigned from package `mozilla-locale-hu' to `ftp.debian.org'. > retitle 382906 RM: mozilla-locale-hu -- RoM; mozilla scheduled for removal Bug#382906: mozilla-local

Bug#399238: otrs2: Apache::Constants not found during startup of Apache2

On 11/18/06, Arek <[EMAIL PROTECTED]> wrote: ii libapache2-mod-perl2 1.999.21-1 Integration of perl with the Apach This package is very old. May you upgrade it, please? Cheers, Torsten -- blog: http://twerner.blogspot.com/ homepage: http://www.twerner42.de/ -- To UNSUBSCRIBE, ema

Processed: Re: Processed (with 2 errors): your mail

Processing commands for [EMAIL PROTECTED]: > clone 395167 -1 Bug#395167: Tomcat doesn't run with java-gcj-compat-dev Bug 395167 cloned as bug 399251. > reassign -1 libgcj7-0 Bug#399251: Tomcat doesn't run with java-gcj-compat-dev Bug reassigned from package `tomcat5.5' to `libgcj7-0'. > tag -1 -

Processed: merge 365766 395555

Processing commands for [EMAIL PROTECTED]: > package azureus Ignoring bugs not assigned to: azureus > retitle 365766 Azureus requires java-gcj-compat Bug#365766: azureus: Azureus doesn't load without java-gcj-compat, no Changed Bug title. > severity 365766 serious Bug#365766: Azureus requires j

Processed (with 2 errors): your mail

Processing commands for [EMAIL PROTECTED]: > # There are two bugs here. First the logger problem. > clone 395167 libgcj7-0 -1 Unknown command or malformed arguments to command. > reassign -1 libgcj7-0 Bug number -1 not found. (Is it archived?) > retitle -1 LogManager class loading failure with T

Processed: Re: security issues in asterisk

Processing commands for [EMAIL PROTECTED]: > package asterisk Ignoring bugs not assigned to: asterisk > retitle 394025 CVE-2006-5444: Remote compromise in chan_skinny Bug#394025: Remote compromise Changed Bug title. (By the way, that Bug is currently marked as done.) > retitle 395080 CVE-2006-54

Bug#395080: security issues in asterisk

package asterisk retitle 394025 CVE-2006-5444: Remote compromise in chan_skinny retitle 395080 CVE-2006-5445: Denial of service in chan_sip thanks One bug per bug report, please. Ben. -- Ben Hutchings Lowery's Law: If it jams, force it. If it breaks, it needed replacing anyway. s

Bug#399224: xfonts-scalable: doesn't call update-fonts-dir in postinst/postrm

tags 399224 pending kthxbye On Sat, Nov 18, 2006 at 20:23:16 +0100, Roland Rosenfeld wrote: > But also a fresh installation of etch is broken. If only > xfonts-scalable (and no other Type1 font package) is installed, this > means, that no fonts.dir is installed, which results in > xfonts-scalabl

Processed: Re: Bug#399224: xfonts-scalable: doesn't call update-fonts-dir in postinst/postrm

Processing commands for [EMAIL PROTECTED]: > tags 399224 pending Bug#399224: xfonts-scalable: doesn't call update-fonts-dir in postinst/postrm Tags were: patch Tags added: pending > kthxbye Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administra

Bug#399224: xfonts-scalable: doesn't call update-fonts-dir in postinst/postrm

On Sat, 18 Nov 2006, Julien Cristau wrote: > > 1:1.0.0-4 contained fonts.dir as a file in the package. This file > > is removed in 1:1.0.0-5, which results in removal of fonts.dir. > > But after all this the postinst (and also postrm) should run > > update-fonts-scale, update-fonts-alias and upda

Bug#397264: marked as done (ImportError: No module named tunepimp)

Your message dated Sat, 18 Nov 2006 11:07:40 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#397264: fixed in libtunepimp 0.5.2-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is no

Bug#399229: marked as done (gaim: Fails to build)

Your message dated Sat, 18 Nov 2006 13:46:56 -0500 (EST) with message-id <[EMAIL PROTECTED]> and subject line has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen th

Processed: Doesn't affect Debian yet.

Processing commands for [EMAIL PROTECTED]: > tags 399170 +upstream Bug#399170: Firefox Sage Extension Feed Script Insertion Vulnerability Tags were: security Tags added: upstream > tags 399170 +wontfix Bug#399170: Firefox Sage Extension Feed Script Insertion Vulnerability Tags were: upstream secu

Bug#399238: otrs2: Apache::Constants not found during startup of Apache2

Package: otrs2 Version: 2.0.4p01-16 Severity: grave Justification: renders package unusable To finish configuration of the package I commented out the apache2 restart line in postconf. Now, Apache2 does not start. When I try to start it I get following messages in errorlog: [Sat Nov 18 15:03:27

Bug#399170: Doesn't affect Debian yet.

tags 399170 +upstream tags 399170 +wontfix severity 399170 normal thanks Tagging this bug won't fix and reducing the severity - I confirmed the version currently in unstable and testing is not vulnerable. This information is relevant to a future upload (probably post etch now) however, and

Bug#399224: xfonts-scalable: doesn't call update-fonts-dir in postinst/postrm

On Sat, Nov 18, 2006 at 18:08:23 +0100, Roland Rosenfeld wrote: > Package: xfonts-scalable > Version: 1:1.0.0-5 > Severity: serious > Rationale: policy violation paragraph 11.8.5 (13), renders gsfonts-x11 > unusable > Tags: patch > > 1:1.0.0-4 contained fonts.dir as a file in the package. This

Bug#399195: python-cairo: python2.3 import fail

Loic Dachary wrote: > Thanks for the explanation. I'm confused though because > apt-cache show claims support for python2.3. Any idea why this is so ? When I built it, there might have been support for python2.3. Although I haven't changed anything, the python defaults have changed, so th

Bug#399229: gaim: Fails to build

Package: gaim Version: 1:2.0.0+beta5-1 Severity: serious Tags: patch Justification: no longer builds from source The dbus-1 file gets placed in the wrong dir (i.e. /) which makes the install fail, which makes the build fail. I've tried playing with export DBUS_SERVICES_DIR = usr/share/dbus-1 in de

Bug#399227: yacas-proteus has rpath to insecure location (/tmp/buildd/yacas-1.0.57/debian/yacas/usr/lib)

Package: yacas-proteus Version: 1.0.57-2.4 Severity: serious Tags: security Hello Gopal, yacas-proteus includes a binary with a rpath pointing to /tmp/buildd/yacas-1.0.57/debian/yacas/usr/lib. %chrpath /usr/bin/proteusworksheet /usr/bin/proteusworksheet: RPATH=/tmp/buildd/yacas-1.0.57/debian/yaca

Bug#398694: adonthell: diff for NMU version 0.3.4.cvs.20050813-2.4

tags 398694 + patch thanks Hi, Attached is the diff for my adonthell 0.3.4.cvs.20050813-2.4 NMU. -- adn Mohammed Adnène Trojette diff -u adonthell-0.3.4.cvs.20050813/config.sub adonthell-0.3.4.cvs.20050813/config.sub --- adonthell-0.3.4.cvs.20050813/config.sub +++ adonthell-0.3.4.cvs.20050813/c

Processed: adonthell: diff for NMU version 0.3.4.cvs.20050813-2.4

Processing commands for [EMAIL PROTECTED]: > tags 398694 + patch Bug#398694: FTBFS: Unable to find 'SDL/SDL_keysym.h' Tags were: patch Tags added: patch > thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian B

Bug#399226: yacas has rpath to insecure location (/tmp/yacas/usr/bin/yacas)

Package: yacas Version: 1.0.57-2.4 Severity: serious Tags: security Hello Gopal, yacas includes a binary with a rpath pointing to /tmp/yacas/usr/bin/yacas. chrpath /usr/bin/yacas /usr/bin/yacas: RPATH=/tmp/buildd/yacas-1.0.57/debian/yacas/usr/lib This allows an attacker with write access to that

Bug#399224: xfonts-scalable: doesn't call update-fonts-dir in postinst/postrm

Package: xfonts-scalable Version: 1:1.0.0-5 Severity: serious Rationale: policy violation paragraph 11.8.5 (13), renders gsfonts-x11 unusable Tags: patch 1:1.0.0-4 contained fonts.dir as a file in the package. This file is removed in 1:1.0.0-5, which results in removal of fonts.dir. But after al

Bug#398694: FTBFS: Unable to find 'SDL/SDL_keysym.h'

On Fri, Nov 17, 2006, Matthew Johnson wrote: > I have a patch which fixes this (attached) and am preparing an NMU > upload with it. > > Previous patches have left in the %includes rather > than just . I introduced the bug in my NMUs so I've taken responsibility. Thanks for noticing it: I've just

Bug#397628: Patch for bugs

Op za, 18-11-2006 te 17:29 +0100, schreef Mohammed Adnène Trojette: > Please be careful that you've introduced bashisms in your patch. Indeed I have. Naughty me. Thanks for the notice. Greetings Arjan > For example: > > --- haskell98-report-20030706.orig/hierarchical-modules/Makefile > +++ hask

Bug#399195: python-cairo: python2.3 import fail

Thanks for the explanation. I'm confused though because apt-cache show claims support for python2.3. Any idea why this is so ? $ apt-cache show python-cairo Package: python-cairo Priority: optional Section: python Installed-Size: 236 Maintainer: Dave Beckett <[EMAIL PROTECTED]> Architectu

Bug#380758: marked as done (Python transition (#2): you are building a private python module !)

Your message dated Sat, 18 Nov 2006 08:32:11 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#380758: fixed in boa-constructor 0.4.4cvs20050714-3 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not th

Bug#399170: Sage extension feed script insertion vulnerability

If the version in Debian is not affected by this bug, you can of course close or downgrade this bug. Note that I have never used sage and don't know how it works, but from your description it sounds like disabling HTML mode would take care of many potential vulnerabilities. So I don't see any

Bug#399195: marked as done (python-cairo: python2.3 import fail)

Your message dated Sat, 18 Nov 2006 08:35:23 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#399195: python-cairo: python2.3 import fail has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case i

Bug#397628: Patch for bugs

On Sat, Nov 11, 2006, Arjan Oosting wrote: > tag 397628 patch > [snip] > I have attached my diff.gz as I have based my work on a snapshot of the > new upstream darcs archive (I have updated get-orig-source in > debian/rules appropriately) Please be careful that you've introduced bashisms in your p

Bug#399214: solfege: Fails to upgrade (3.0.6-1 -> 3.6.3-1); cannot remove it as well

Package: solfege Version: 3.0.6-1 Severity: serious The package fails to upgrade to the current version in testing: Preparing to replace solfege 3.0.6-1 (using .../solfege_3.6.3-1_i386.deb) ... Document `solfege' is not installed, cannot remove. usage: update-python-modules [-v] [-c] package_dire

Bug#399216: libccaudio2-doc conflicts with libcommoncpp2-doc

Subject: libccaudio2-doc: conflicts with libcommoncpp2-doc Package: libccaudio2-doc Version: 0.9.10-1 Severity: grave Justification: renders package unusable *** Please type your report below this line *** $ LANG=C sudo apt-get install libccaudio2-doc Reading package lists... Done Building depend

Bug#399213: zope-quotafolder is missing a depend on zope2.9

Package: zope-quotafolder Version: 0.1.1-2 Severity: grave Justification: renders package unusable zope-quotafolder depends on "zope2.8 | zope2.7 | zope (>= 2.6.2)". zope2.8 have been removed from unstable. Its removal from testing is currently blocked by zope-quotafolder as it would make it uni

Bug#398776: marked as done (dblatex: postrm fails: /var/lib/dpkg/info/dblatex.postrm: line 44: mktexlsr: command not found)

Your message dated Sat, 18 Nov 2006 07:32:07 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#398776: fixed in dblatex 0.2-2 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your

Bug#389695: up-imapproxy: diff for NMU version 1.2.4-5.1

tags 389695 + patch thanks Hi, Attached is the diff for my up-imapproxy 1.2.4-5.1 NMU. diff -Nru /tmp/ltDENmLScu/up-imapproxy-1.2.4/debian/changelog /tmp/hJRo061wx6/up-imapproxy-1.2.4/debian/changelog --- /tmp/ltDENmLScu/up-imapproxy-1.2.4/debian/changelog 2006-11-18 15:55:38.0 +0100 ++

Processed: up-imapproxy: diff for NMU version 1.2.4-5.1

Processing commands for [EMAIL PROTECTED]: > tags 389695 + patch Bug#389695: upgrade fails due to failing /etc/init.d/imapproxy stop There were no tags set. Tags added: patch > thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (a

Processed: Tag "sid" packages not going to be in etch

Processing commands for [EMAIL PROTECTED]: > tags 392972 + sid Bug#392972: cps-site: Error Value: 'roles' There were no tags set. Tags added: sid > tags 336804 + sid Bug#336804: schoolbell: includes a fr_FR.po translation instead of fr.po Tags were: l10n Tags added: sid > tags 365049 + sid Bug#3

Bug#389695: marked as done (upgrade fails due to failing /etc/init.d/imapproxy stop)

Your message dated Sat, 18 Nov 2006 07:02:14 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#389695: fixed in up-imapproxy 1.2.4-5.1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is

Bug#399205: libsmbios-dev: where is libsmbios.so ?

Package: libsmbios-dev Version: 0.12.1-2 Severity: serious Justification: renders package unusable Hi, libsmbios-dev does not provide libsmbios.so, making it impossible to link against libsmbios. Note that it also lacks a static libsmbios.a. JB. -- System Information: Debian Release: 4.0 APT

Bug#399170: Sage extension feed script insertion vulnerability

I don't have anything available to test this on right now, but I strongly suspect that this will not affect the version of Sage currently in Debian. The version currently in Debian is 1.3.7, plus my somewhat draconian patch to fix the previously reported vulnerabilities. See the bug report

Bug#393392: marked as done (Source package contains non-free IETF RFC/I-D's)

Your message dated Sat, 18 Nov 2006 06:22:27 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#393392: fixed in libunicode-map8-perl-dfsg 0.12-3 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the

Bug#393384: marked as done (Source package contains non-free IETF RFC/I-D's)

Your message dated Sat, 18 Nov 2006 06:22:24 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#393384: fixed in libdigest-md2-perl-dfsg 2.03-3 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the ca

Bug#393383: marked as done (Source package contains non-free IETF RFC/I-D's)

Your message dated Sat, 18 Nov 2006 06:22:20 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#393383: fixed in libdigest-hmac-perl-dfsg 1.01-5 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the c

Processed: Raising severity of 389695

Processing commands for [EMAIL PROTECTED]: > severity 389695 serious Bug#389695: upgrade fails due to failing /etc/init.d/imapproxy stop Severity set to `serious' from `normal' > thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator

Bug#399195: python-cairo: python2.3 import fail

Subject: python-cairo: python2.3 import fail Package: python-cairo Version: 1.2.0-1 Severity: serious $ python2.3 Python 2.3.5 (#2, Oct 18 2006, 23:04:45) [GCC 4.1.2 20061015 (prerelease) (Debian 4.1.1-16.1)] on linux2 Type "help", "copyright", "credits" or "license" for more information. >>> im

Bug#391181: patches included in the CVS

Hello, I finally took the time to include all your contributions in the CVS. Unfortunately, some of them was based on the latest release, not on the CVS, and as result there was a bit of duplicate fixes and some gettext strings that slightly changed that got fuzzy. I think I'll make a new rele

Bug#394534: pilot-link and kpilot

Le 18.11.2006, à 01:12:04, Ana Guerrero a écrit: > Hi, Hello Ana, and all, > It seems kpilot has already been ported to work with new pilot-link 0.12, > but it has two problems. > > First, kpilot is being maintained outside the KDE SVN, so the code we're > shipping in kdepim is not longer mainta

Bug#392566: marked as done (namazu2 - FTBFS: ../libtool: line 4817: rc1/debian/namazu2/usr/lib/libnmz.a: No such file or directory)

Your message dated Sat, 18 Nov 2006 13:09:44 +0100 with message-id <[EMAIL PROTECTED]> and subject line Bug#392566: fixed in namazu2 2.0.17~rc1-2 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is n

Bug#337562: marked as done (qsynaptics: Uninstallable on s390 due to unavailable dep xfree86-driver-synaptics | xorg-driver-synaptics )

Your message dated Sat, 18 Nov 2006 04:02:12 -0800 with message-id <[EMAIL PROTECTED]> and subject line Bug#337562: fixed in qsynaptics 0.22.0-6.1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is

Processed: qsynaptics: diff for NMU version 0.22.0-6.1

Processing commands for [EMAIL PROTECTED]: > tags 337562 + patch Bug#337562: qsynaptics: Uninstallable on s390 due to unavailable dep xfree86-driver-synaptics | xorg-driver-synaptics There were no tags set. Tags added: patch > thanks Stopping processing here. Please contact me if you need assi

Bug#399187: CVE-2006-5925: Links "smb" Protocol File Upload/Download Vulnerability

package: links severity: grave tags: security A vulnerability has been found in links: Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed allows remote attackers to execute arbitrary code via shell metacharacters in an smb:// URI, as demonstrated by using PUT and GET statements.

Bug#337562: qsynaptics: diff for NMU version 0.22.0-6.1

tags 337562 + patch thanks Hi, Attached is the diff for my qsynaptics 0.22.0-6.1 NMU. diff -Nru /tmp/uPsn7lvAZS/qsynaptics-0.22.0/debian/changelog /tmp/SP7YEQSWCs/qsynaptics-0.22.0/debian/changelog --- /tmp/uPsn7lvAZS/qsynaptics-0.22.0/debian/changelog 2006-11-18 12:56:50.0 +0100 +++ /

Bug#399188: CVE-2006-5925: ELinks "smb" Protocol File Upload/Download Vulnerability

package: elinks severity: grave tags: security A vulnerability has been found in elinks: Links web browser 1.00pre12 and Elinks 0.9.2 with smbclient installed allows remote attackers to execute arbitrary code via shell metacharacters in an smb:// URI, as demonstrated by using PUT and GET statement

Bug#394153: twinkle: FTBFS: undefined reference to gsm_decode

On Thursday 16 November 2006 06:03, Steve Langasek wrote: [...] > I don't know yet why this define isn't propagating; it seems to be part of > debian/patches/libgsm.patch though, and there's probably a race condition > in the autotools handling that's preventing it from getting where it needs > to

Bug#392953: [NONFREE-DOC:GFDL] package contains non-free documentation

On Sat, Nov 18, 2006 at 01:54:42PM +1030, Ron wrote: > I don't profess to be an authority on the details of this, which is why > I'm seeking clarification -- but it does seem fairly obvious to me that > any invariant section which inhibits our freedom to modify the source is > clearly not DFSG free

Processed (with 1 errors): setting package to twinkle, tagging 394153, tagging 398697

Processing commands for [EMAIL PROTECTED]: > # Automatically generated email from bts, devscripts version 2.9.26 > package twinkle Ignoring bugs not assigned to: twinkle > tags 394153 + pending Bug#394153: twinkle: FTBFS: undefined reference to gsm_decode Tags were: help Tags added: pending > ta

  1   2   >