On Sun, Nov 09, 2008 at 11:20:20AM +0800, LI Daobing (?) wrote:
tag 505039 patch
thanks
a debdiff in attachment.
On cursory glance it looks good to me. Please feel free to NMU.
Regards
Javier
signature.asc
Description: Digital signature
Package: cl-kpax
Version: 20080304-1
Severity: critical
Justification: breaks unrelated software
kpax lisp package depends on ironclad lisp package (see kpax-core.asd),
but debian cl-kpax package do not depends on cl-ironclad, so it is unable to
load kpax into lisp (I try with ecl). Please add
On Mon, Nov 10, 2008 at 07:09:21AM +, Frank Lichtenheld wrote:
Package: tokyocabinet
Version: 1.3.15-1
Severity: serious
Hi,
your package failed to build from source. config.log says:
configure:2319: checking for C compiler default output file name
configure:2346:
Package: trac
Severity: serious
Tags: security
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
The following SA (Secunia Advisory) id was published for trac.
SA32652[1]
Description:
Some vulnerabilities have been reported in Trac, which can be
exploited by malicious people to cause a
Package: jesred
Severity: grave
Justification: renders package unusable
I'm using testing on i386 arch with latest packages for lenny. The squid
setup is almost the default one, being the bigest change that I'm using
transparent proxying by specifying http_port 80 transparent.
While trying to
Hi,
I am the developer of UiGUI and currently I am also taking the ownership
of maintaining the UiGUI package.
The mentioned bug #486577 is already fixed in the version 1.0.2 that was
uploaded by Marcela Tiznado. But concerning bug #504726 I am not sure
whats the problem with a subdir in tmp?
Your message dated Mon, 10 Nov 2008 14:17:07 +
with message-id [EMAIL PROTECTED]
and subject line Bug#502588: fixed in evas 0.9.9.050-2
has caused the Debian Bug report #502588,
regarding evas_0.9.9.050-1(sparc/experimental): FTBFS: missing symbols
to be marked as done.
This means that you
Your message dated Mon, 10 Nov 2008 11:18:33 +
with message-id [EMAIL PROTECTED]
and subject line Bug#504731: fixed in texlive-extra 2007.dfsg.9-1
has caused the Debian Bug report #504731,
regarding texlive-fonts-extra: cirth is nosell/nonfree
to be marked as done.
This means that you claim
Processing commands for [EMAIL PROTECTED]:
found 453123 5.2.3-7etch4
Bug#453123: Upgrade fails if snmpd is running
Bug marked as found in version 5.2.3-7etch4.
severity 453123 serious
Bug#453123: Upgrade fails if snmpd is running
Severity set to `serious' from `important'
tag 453123 + patch
severity 502806 important
thanks
In my opinion, this doesn't qualify as release critical bug as this bug doesn't
case any data loss in a Debian system.
Before applying a path like this, I'd like to have at least some testing and an
audit by an upstream developer.
Thanks,
Jochen
--
To
Processing commands for [EMAIL PROTECTED]:
severity 502806 important
Bug#502806: libsnmp-base: forcing perl headers in net-snmp-config --cflags
breaks perl builds
Severity set to `important' from `critical'
thanks
Stopping processing here.
Please contact me if you need assistance.
Debian
Thank you for your work on security issues.
Please avoid munging that many seperate issues into the same bug.
Steffen Joeris [EMAIL PROTECTED] writes:
Package: ffmpeg-debian
Version: 0.svn20080206-14
Severity: grave
Tags: security, patch
Justification: user security hole
Hi,
the
Processing commands for [EMAIL PROTECTED]:
forcemerge 391203 453123
Bug#391203: Upgrading snmpd from 5.2.2-3 to 5.2.3-1 hangs in snmpd.postinst
Bug#453123: Upgrade fails if snmpd is running
Forcibly Merged 391203 453123.
thanks
Stopping processing here.
Please contact me if you need
Hi Josselin,
It has nothing to do with the daemon, but rather, as Ferenc Wagner
diagnosed, with the postinst script not calling db_stop as expected.
Nope, it was a bug with the daemon (snmpd and snmptrapd behaved
differently here) and has been fixed by upstream in 5.4.2. In Debian,
the bug is
Your message dated Mon, 10 Nov 2008 15:02:04 +
with message-id [EMAIL PROTECTED]
and subject line Bug#504363: fixed in epiphany-browser 2.22.3-7
has caused the Debian Bug report #504363,
regarding epiphany-browser: Python plugins load modules from current directory
to be marked as done.
This
Pierre Habouzit wrote:
On Mon, Nov 10, 2008 at 07:09:21AM +, Frank Lichtenheld wrote:
your package failed to build from source. config.log says:
configure:2293: s390-linux-gnu-gcc -V 5
s390-linux-gnu-gcc: '-V' option must have argument
configure:2296: $? = 1
configure:2319: checking for C
forcemerge 391203 453123
thanks
Hi Ferenc,
Of course not leaking file descriptors is a good practice, but it
isn't the responsibility of all the daemons of the world to close all
possible file descriptors their parent might have leaked to them (see
for example
Processing commands for [EMAIL PROTECTED]:
severity 504323 important
Bug#504323: openoffice.org-core: Segmentation fault at startup
Severity set to `important' from `grave'
thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
Hi,
The attached patch to vorbis.c changes the temporary file naming scheme
to use the name of the Ogg file with .vgain.tmp appended.
I'm not a security crack, but to me this sounds like a bad idea as with
this we have predictable temporary filenames, which could give an attack
vector to
Your message dated Mon, 10 Nov 2008 09:32:06 +
with message-id [EMAIL PROTECTED]
and subject line Accepted tor 0.2.1.7-alpha-1 (source all i386)
has caused the Debian Bug report #505178,
regarding changing user does not clear supplementary group entries
to be marked as done.
This means that
severity 501809 serious
thanks
Change severity because this bug makes libg3d unusable on certain release
archs.
Regards,
Sven
signature.asc
Description: This is a digitally signed message part.
Processing commands for [EMAIL PROTECTED]:
clone 505164 -1
Bug#505164: vorbisgain: Multiple vorbisgain processes may overwrite each
other's temporary files, causing data loss.
Bug 505164 cloned as bug 505186.
retitle -1 Potential temp file vulnerabilities (in shared storage scenarios)
The following message is a courtesy copy of an article
that has been posted to gmane.comp.video.ffmpeg.devel as well.
When generating the .pc files, ffmpeg currently places the following
libs into Requires.private: libraw1394, dirac, theora, vorbisenc.
I think this is wrong. Please let me
Processing commands for [EMAIL PROTECTED]:
tags 501253 + sid
Bug#501253: apt-utils: Please do not link againd libdb4.4
There were no tags set.
Tags added: sid
End of message, stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
Hi,
On Mon, Nov 10, 2008 at 02:14:31AM -0800, Pavel N. Krivitsky wrote:
1) The current version has this exact vulnerability (if it is one) to an
even greater extent, so I would not be adding a new vulnerability --- if
it's a vulnerability, it should be filed as a separate bug, and fixed by
What's the status of this bug report about medit ?
In the bug report, Jason gave a pointer to an upstream patch that
fixes the issue. Shouldn't the package be updated ASAP ?
I can sponsor an upload if neededor just do an NMU.
--
signature.asc
Description: Digital signature
Your message dated Mon, 10 Nov 2008 12:17:07 +
with message-id [EMAIL PROTECTED]
and subject line Bug#505164: fixed in vorbisgain 0.36-3.1
has caused the Debian Bug report #505164,
regarding vorbisgain: Multiple vorbisgain processes may overwrite each other's
temporary files, causing data
Hi,
The attached patch to vorbis.c changes the temporary file naming scheme
to use the name of the Ogg file with .vgain.tmp appended.
I'm not a security crack, but to me this sounds like a bad idea as with
this we have predictable temporary filenames, which could give an attack
vector to an
Package: tor
Version: 0.2.0.31-1
Severity: serious
Tags: security
From the 0.2.1.7-alpha chlog:
| The User and Group config options did not clear the supplementary
| group entries for the Tor process. The User option is now more
| robust, and we now set the groups to the specified user's primary
severity 504323 important
thanks
Christian Perrier wrote:
I couldn't reproduce any crash here either, on a fresh install of
lenny (in French, which is even more likely to fit the bug submitter's
environment) during my tests of D-I.
Here again, I really se no reason for the bug to be release
On Sun, Nov 09, 2008 at 12:39:10AM +0100, Philipp Kern wrote:
On Fri, Nov 07, 2008 at 11:13:57AM +0100, Pierre Chifflier wrote:
Please allow glpi 0.68.2-1etch0.2 (etch) and 0.70.2-2 (testing) updates,
They close a RC bug by updating a file to a version covered by a
DFSG-free license (CC-SA
Le lundi 10 novembre 2008 à 16:59 +0100, Jochen Friedrich a écrit :
Hi Josselin,
It has nothing to do with the daemon, but rather, as Ferenc Wagner
diagnosed, with the postinst script not calling db_stop as expected.
Nope, it was a bug with the daemon (snmpd and snmptrapd behaved
Of course not leaking file descriptors is a good practice, but it
isn't the responsibility of all the daemons of the world to close all
possible file descriptors their parent might have leaked to them (see
for example http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=486826#37).
I don't agree
tags 505170 pending
thanks
* Frank Lichtenheld [081110 08:10 +0100]
Package: alsa-plugins
Version: 1.0.18-1
Severity: serious
--
Excellent day for drinking heavily.
Spike the office water cooler;-)
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe.
On Mon, Nov 10, 2008 at 04:41:43PM +0100, Luk Claes wrote:
Pierre Habouzit wrote:
On Mon, Nov 10, 2008 at 07:09:21AM +, Frank Lichtenheld wrote:
your package failed to build from source. config.log says:
configure:2293: s390-linux-gnu-gcc -V 5
s390-linux-gnu-gcc: '-V' option must
Hi,
I'm interested in maintaining this package. I started to fix and
update somethings in the pacakge, the diff is attached.
ps.: I sent this same email before, but I think bug tracker was down
when I tried, so I resent.
Cheers
--
Lincoln de Sousa - AlfaiaTI/MinasLivre
xmpp:[EMAIL PROTECTED]
Sorry,
In the last try I forgot to add the diff file =/
--
Lincoln de Sousa - AlfaiaTI/MinasLivre
xmpp:[EMAIL PROTECTED]
http://alfaiati.net
http://minaslivre.org
+55 31 9209 4987
freecraft_1.18-2.5.diff.gz
Description: Binary data
signature.asc
Description: Digital signature
Processing commands for [EMAIL PROTECTED]:
tags 505170 pending
Bug#505170: alsa-plugins_1.0.18-1(sparc/experimental): FTBFS: wrong
build-depends
There were no tags set.
Tags added: pending
thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system
To confirm this morning's bug I have just cleanly installed squid and squid3
with the same jesred config for both and just adding the line
url_rewrite_program /usr/lib/squid/jesred to the default Debian config
(Lenny's current versions).
With squid 2.7.STABLE3-1 jesred works ok, but with
After some fiddling it seems that if i disable USB2.0 (a bios option - as a
result the ehci_hcd driver is not loaded) the freezing problem disappears.
This is a 5yr old laptop with 3 usb ports. Usually from lspci -v i see three
instances of USB1.1 controllers using ohci_hcd, and a mysterious 4th
On Tue, 11 Nov 2008 00:20:59 +0100, Santiago Garcia Mantinan writes:
With squid 2.7.STABLE3-1 jesred works ok, but with 3.0.STABLE8-1 it doesn't.
that is because squid 3 changed the rewriter format and
made things more complicated. bah.
patch+fix is in the works, ETA 3 hours.
regards
az
--
Hi,
I'm interested in maintaining this package. I started to fix and
update somethings in the pacakge, the diff is attached.
Cheers
--
Lincoln de Sousa - AlfaiaTI/MinasLivre
xmpp:[EMAIL PROTECTED]
http://alfaiati.net
http://minaslivre.org
+55 31 9209 4987
freecraft_1.18-2.5.diff.gz
Package: snmpd
Version: 5.2.3-7etch4
Severity: serious
Justification: Policy 9.3.2
Hi,
The start action shouldn't fail if the service is already running:
# invoke-rc.d snmpd start
Starting network management services:invoke-rc.d: initscript snmpd, action
start failed.
This happens with
Package: edje
Version: 0.9.9.050-1
Severity: serious
Hi,
your package failed to build from source.
| Automatic build of edje_0.9.9.050-1 on signy by sbuild/mips 98-farm
| Build started at 20081110-2252
| **
| Checking
Package: kdeplasma-addons
Version: 4:4.1.3-1
Severity: serious
Hi,
your package failed to build from source.
| Automatic build of kdeplasma-addons_4:4.1.3-1 on titan by sbuild/sparc 98-farm
| Build started at 20081110-1922
i think this is the changeset
http://trac.edgewall.org/changeset/7658/branches/0.11-stable
i'll get into this to upload a new package.
Em 11/10/2008, Giuseppe Iuculano [EMAIL PROTECTED] escreveu:
Package: trac
Severity: serious
Tags: security
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
Package: opensync-plugin-kdepim
Version: 0.22-3
Severity: serious
--- Please enter the report below this line. ---
When I try to synchronize KDE PIM with my Nokia E61i, I get this when I am
using msynctool :
[EMAIL PROTECTED]:~$ msynctool --sync Nokia E61i
Synchronizing group Nokia E61i
The
Le mardi 11 novembre 2008 à 01:27, Michael Banck a écrit :
On Tue, Nov 11, 2008 at 01:13:59AM +0100, Laurent Léonard wrote:
Package: opensync-plugin-kdepim
Version: 0.22-3
Severity: serious
Member 1 of type kdepim-sync had an error while connecting: Kontact is
running. Please finish
On Tue, Nov 11, 2008 at 01:13:59AM +0100, Laurent Léonard wrote:
Package: opensync-plugin-kdepim
Version: 0.22-3
Severity: serious
Member 1 of type kdepim-sync had an error while connecting: Kontact is
running. Please finish it
Same problem with kitchensync.
And if I try to close
Your message dated Tue, 11 Nov 2008 00:32:03 +
with message-id [EMAIL PROTECTED]
and subject line Bug#505199: fixed in jesred 1.2pl1-16
has caused the Debian Bug report #505199,
regarding jesred: doesn't work with squid3
to be marked as done.
This means that you claim that the problem has
Your message dated Mon, 10 Nov 2008 17:32:05 +
with message-id [EMAIL PROTECTED]
and subject line Bug#505160: fixed in referencer 1.1.3-4
has caused the Debian Bug report #505160,
regarding referencer: Missing Depends on librsvg2-common
to be marked as done.
This means that you claim that
Your message dated Mon, 10 Nov 2008 16:47:03 +
with message-id [EMAIL PROTECTED]
and subject line Bug#504767: fixed in medit 0.9.2-1.1
has caused the Debian Bug report #504767,
regarding Character set conversion bug that can cause files to be truncated;
patch available
to be marked as done.
Eric Pozharski [EMAIL PROTECTED] (08/11/2008):
Package: graphviz
Version: 2.20.2-3
Severity: serious
Justification: Debian Policy, section 4.2; severity suggested in [EMAIL
PROTECTED]
I'm not very sure about that. I've asked RMs, and will act accordingly.
Thank you (both the submitter and
Package: evolution
Version: 2.22.3.1-1
Severity: grave
Justification: causes non-serious data loss
Over the time, I have grown several local calendars in Evo (about a
hundred entries each). Turns out that verious versions of evo failed to
properly sanitize inputs, so some events are (properly)
-1
Severity: serious
Hi,
your package failed to build from source.
| Automatic build of edje_0.9.9.050-1 on signy by sbuild/mips 98-farm
| Build started at 20081110-2252
| **
| Checking available source versions
On Tue, Nov 11, 2008 at 12:40:52AM +, alex wrote:
After some fiddling it seems that if i disable USB2.0 (a bios option - as a
result the ehci_hcd driver is not loaded) the freezing problem disappears.
This is a 5yr old laptop with 3 usb ports. Usually from lspci -v i see three
instances
Quoting José Luis Tallón ([EMAIL PROTECTED]):
José Luis, any plans to prepare an upload? I'd be happy to sponsor it
if needed as fixing two RC bugs during this week-end would continue my
one RC bug per week-end series...
Indeed. If real life allows me, I think I can have the patch
On Mon, Nov 10, 2008 at 10:41:52PM +, Frank Lichtenheld wrote:
On Mon, Nov 10, 2008 at 04:41:43PM +0100, Luk Claes wrote:
Pierre Habouzit wrote:
On Mon, Nov 10, 2008 at 07:09:21AM +, Frank Lichtenheld wrote:
your package failed to build from source. config.log says:
Processing commands for [EMAIL PROTECTED]:
notfound 504347 1.0.rc18-2
Bug#504347: Info: line 4: Unsupported features in require line
Bug no longer marked as found in version 1.0.rc18-2.
fixed 504347 1.0.rc18-2
Bug#504347: Info: line 4: Unsupported features in require line
Bug marked as fixed
On Fri, 7 Nov 2008 23:40:13 +0100 Evgeni Golov wrote:
(I've never worked with cdbs and simple-patchsys.)
Well, simple-patchsys is really simple, find a proper debdiff
attached :)
I've uploaded the NMU to
60 matches
Mail list logo