Your message dated Mon, 18 Mar 2013 06:03:00 +
with message-id e1uht9w-ix...@franck.debian.org
and subject line Bug#701926: fixed in qemu-kvm 1.1.2+dfsg-6
has caused the Debian Bug report #701926,
regarding asertion failure when assigning certain USB devices to guest
to be marked as done.
Also worth noting that there is a (non-default) configuration setting
that restricts the availability of setup.php to only administrators.
I guess I'm listed as 'upstream' for DAViCal as well as being the DD
responsible for the package. Unfortunately I have no time to do either
job for the
On 18.03.2013 03:57, Antoine Beaupré wrote:
Why did this upload have to bump the epoch number up?
It seems to me a 5.11-2.1, or -2.2 upload would have been fine here.
Unstable already had 5.12-2, so a new upload as 5.11 would have been
rejected.
Regards,
Adam
--
To UNSUBSCRIBE, email to
tags 702769 + patch
tags 702769 + pending
thanks
Hello,
After comparing the changes in bup between the current version in
unstable and the one in experimental, I found that the FTBFS is due to a
change in Git and has been fixed upstream by this commit:
Processing commands for cont...@bugs.debian.org:
tags 702769 + patch
Bug #702769 [bup] FTBFS: bup.git.GitError: no such commit
'75cd2b98c52d29ba5d510b37d7c9adb01553bd1f'
Added tag(s) patch.
tags 702769 + pending
Bug #702769 [bup] FTBFS: bup.git.GitError: no such commit
Processing commands for cont...@bugs.debian.org:
# please remember to tag your delayed NMUs as pending, so other people don't
waste time on them
tags 702775 + pending
Bug #702775 [ganglia] ganglia: limiting security support
Added tag(s) pending.
thanks
Stopping processing here.
Please
Package: nvidia-kernel-dkms
Version: 304.84-1
Severity: grave
Upgrading the nvidia packages from 304.64-4 to 304.84-1 breaks text
consoles for me. If I switch VT with ctrl-alt-Fx, the display switches
itself off (switching back to the X session works, though). The same
happens after the xserver
tag 702071 - moreinfo
tag 702071 + confirmed
found 702071 poppler/0.18.4-5
thanks
Hi,
thanks for the tests cases, Salvatore.
I've verified the issues, and the situation that I found for current
wheezy+sid (= 0.18.4-5) is the following:
Alle sabato 2 marzo 2013, Salvatore Bonaccorso ha
Processing commands for cont...@bugs.debian.org:
tag 702071 - moreinfo
Bug #702071 [poppler] CVE-2013-1788, CVE-2013-1789 and CVE-2013-1790
Removed tag(s) moreinfo.
tag 702071 + confirmed
Bug #702071 [poppler] CVE-2013-1788, CVE-2013-1789 and CVE-2013-1790
Added tag(s) confirmed.
found 702071
Hi.
On Mon, 2013-03-18 at 19:43 +1300, Andrew McMillan wrote:
Also worth noting that there is a (non-default) configuration setting
that restricts the availability of setup.php to only administrators.
Ok.. perhaps changing this to be the default is the solution...
I guess I'm listed as
On 2013-03-18, Adam D. Barratt wrote:
On 18.03.2013 03:57, Antoine Beaupré wrote:
Why did this upload have to bump the epoch number up?
It seems to me a 5.11-2.1, or -2.2 upload would have been fine here.
Unstable already had 5.12-2, so a new upload as 5.11 would have been
rejected.
Such
On 18.03.2013 13:55, Antoine Beaupré wrote:
On 2013-03-18, Adam D. Barratt wrote:
On 18.03.2013 03:57, Antoine Beaupré wrote:
Why did this upload have to bump the epoch number up?
It seems to me a 5.11-2.1, or -2.2 upload would have been fine
here.
Unstable already had 5.12-2, so a new
Hi,
This bug report is a little strange...
On 18/03/13 07:45, Aapo Rantalainen wrote:
Version: 1:1.11.3-1ubuntu2
That's not even a Debian package?
Debian Squeeze has only version 1:1.11.1-1+squeeze1
Debian Wheezy has a newer version 1:1.11.6-1 where these problems may be
fixed already.
Control: notfound -1 1.9-1
Version: 1:1.11.3-1ubuntu2
Wait - this is an Ubuntu version of the package - can you test this
again in Debian? I would be very surprised if automake fails to build in
Debian as this point, as we are in a freeze and automake hasn't been
changed since july 2012.
So if
Processing control commands:
notfound -1 1.9-1
Bug #703298 [automake] automake: tests fail: undefined reference to `yywrap'
There is no source info for the package 'automake' at version '1.9-1' with
architecture ''
Unable to make a source version for version '1.9-1'
Ignoring request to alter
Processing commands for cont...@bugs.debian.org:
fixed 703298 1.11.6-1
Bug #703298 [automake] automake: tests fail: undefined reference to `yywrap'
There is no source info for the package 'automake' at version '1.11.6-1' with
architecture ''
Unable to make a source version for version
This bug is blocking release, is it still happening?
This has been opened more than 6 months ago...
A.
--
Si Dieu existe, j'espère qu'Il a une excuse valable
- Daniel Pennac
signature.asc
Description: Digital signature
On 18.03.2013 14:11, anarcat wrote:
This bug is blocking release, is it still happening?
This has been opened more than 6 months ago...
Were you intending to ask the original submitter? If so you need to
actually CC them (or know they're subscribed, but CCing seems safer).
Regards,
Adam
Processing commands for cont...@bugs.debian.org:
# Package is unusable when running as non-root
severity 690500 grave
Bug #690500 {Done: Chris Lamb la...@debian.org} [gunicorn] gunicorn:
setgroups - Operation not permitted
Severity set to 'grave' from 'normal'
thanks
Stopping processing here.
Hi!
On 17/03/13 19:35, Adam Borowski wrote:
On systems that don't have OSS installed and configured, pressing any
button that has an attached sound, causes a crash.
Another option might be to disable sound on Linux, then at least we'd
keep something that works.
There is a configure test which
Processing commands for cont...@bugs.debian.org:
# oops
notfixed 703298 1.11.6-1
Bug #703298 [automake] automake: tests fail: undefined reference to `yywrap'
There is no source info for the package 'automake' at version '1.11.6-1' with
architecture ''
Unable to make a source version for
On 03/16/2013 05:35 PM, Mike Hommey wrote:
Likewise, I'd rather know what we do wrt md5, and while at it, cacert
(the cert of which uses a md5 signature at the moment, so it effectively
doesn't work ; see bug 682470) before uploading, so as to avoid doing
two uploads.
the choice of signature
Processing commands for cont...@bugs.debian.org:
tag 702071 pending
Bug #702071 [poppler] CVE-2013-1788, CVE-2013-1789 and CVE-2013-1790
Added tag(s) pending.
thanks
Stopping processing here.
Please contact me if you need assistance.
--
702071:
tag 702071 pending
thanks
Hello,
Bug #702071 reported by you has been fixed in the Git repository. You can
see the changelog below, and you can check the diff of the fix at:
http://git.debian.org/?p=pkg-freedesktop/poppler.git;a=commitdiff;h=603219d
---
commit
Your message dated Mon, 18 Mar 2013 15:48:17 +
with message-id e1uhcil-0001kp...@franck.debian.org
and subject line Bug#702736: fixed in firebird2.5 2.5.2~svn+54698.ds4-2
has caused the Debian Bug report #702736,
regarding firebird2.5: CVE-2013-2492: Request Processing Buffer Overflow
Your message dated Mon, 18 Mar 2013 15:47:31 +
with message-id e1uhchb-hu...@franck.debian.org
and subject line Bug#703171: fixed in bdii 5.2.17-3
has caused the Debian Bug report #703171,
regarding bdii: fails to install: mv: cannot move '/tmp/tmp.SuSMJe59Wd' to
Hi,
On 2013-03-18 14:30, ow...@bugs.debian.org wrote:
Processing commands for cont...@bugs.debian.org:
# Package is unusable when running as non-root
severity 690500 grave
Bug #690500 {Done: Chris Lamb la...@debian.org} [gunicorn]
gunicorn: setgroups - Operation not permitted
Severity set to
Hi Pino
On Mon, Mar 18, 2013 at 02:48:18PM +0100, Pino Toscano wrote:
I've verified the issues, and the situation that I found for current
wheezy+sid (= 0.18.4-5) is the following:
Alle sabato 2 marzo 2013, Salvatore Bonaccorso ha scritto:
CVE-2013-1788[0]:
invalid memory issues
This
Another problem with the whole block is the following:
g) All the pass through stuff happens before any authentication.
Even if there was no way to hack into accessing other files... but just
the intended ones like .../images/davical.png or whatever... that could
be a problem.
Imagine that users
Processing commands for cont...@bugs.debian.org:
found 702260 2.7.8.dfsg-2
Bug #702260 {Done: Michael Gilbert mgilb...@debian.org} [libxml2] libxml2:
CVE-2013-0338 CVE-2013-0339
Marked as found in versions libxml2/2.7.8.dfsg-2.
thanks
Stopping processing here.
Please contact me if you need
Processing control commands:
tags -1 + patch
Bug #703265 [lletters] lletters: crashes on most buttons on non-OSS3 systems
Added tag(s) patch.
--
703265: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=703265
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To
Control: tags -1 + patch
Hi,
On 18/03/13 14:47, Steven Chamberlain wrote:
On Linux we could override it with --enable-sound=no (assuming it is too
difficult to get it working with OSS4 or aoss in the Wheezy timeframe).
I've attached a patch for this but am still trying to test it.
I've
On 03/18/2013 05:40 PM, postmas...@ispire.me wrote:
Am 18.03.13 10:11, schrieb postmas...@ispire.me:
Am 18.03.13 06:41, schrieb Thomas Goirand:
Hi Jules,
I have built a new version of the package, and made it available in my
private FTP server here:
http://ftparchive.gplhost.com/misc/nova/
On Sun, Mar 17, 2013 at 8:45 PM, Emilio Pozuelo Monfort
po...@debian.org wrote:
Hi,
On 03/17/2013 10:49 AM, Mattia Monga wrote:
Not sure what do you mean: I've installed the experimental
libglib2.0-0 in order to upgrade gnome-session; I cannot downgrade it
without downgrading all
Processing commands for cont...@bugs.debian.org:
tags 703298 + unreproducible moreinfo
Bug #703298 [automake] automake: tests fail: undefined reference to `yywrap'
Added tag(s) unreproducible and moreinfo.
thanks
Stopping processing here.
Please contact me if you need assistance.
--
703298:
tags 703298 + unreproducible moreinfo
thanks
Hi,
the bug is unreproducible in Wheezy.
Thanks,
Anton
On 03/18/2013 03:06 PM, anarcat wrote:
So if Debian is really affected by this, please reply by stating which
version is affected, using a syntax similar to the one I used above (but
with
Package: ruby-activerecord-3.2
Severity: grave
Tags: security
Please see http://article.gmane.org/gmane.comp.security.oss.general/9750 for
details and patches.
Cheers,
Moritz
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble?
retitle 703348 CVE-2013-1854
thanks
On Mon, Mar 18, 2013 at 06:33:45PM +0100, Moritz Muehlenhoff wrote:
Package: ruby-activerecord-3.2
Severity: grave
Tags: security
Please see http://article.gmane.org/gmane.comp.security.oss.general/9750 for
details and patches.
The reference is wrong.
Processing commands for cont...@bugs.debian.org:
retitle 703348 CVE-2013-1854
Bug #703348 [ruby-activerecord-3.2] CVE-2013-1857
Changed Bug title to 'CVE-2013-1854' from 'CVE-2013-1857'
thanks
Stopping processing here.
Please contact me if you need assistance.
--
703348:
Package: ruby-actionpack-3.2
Severity: grave
Tags: security
Please see the following references for patches and details:
http://article.gmane.org/gmane.comp.security.oss.general/9748
http://article.gmane.org/gmane.comp.security.oss.general/9750
Cheers,
Moritz
--
To UNSUBSCRIBE, email
On Mon, Mar 18, 2013 at 07:43:09PM +1300, Andrew McMillan wrote:
I guess I'm listed as 'upstream' for DAViCal as well as being the DD
responsible for the package. Unfortunately I have no time to do either
job for the foreseeable future.
Should we rather drop davical from Wheezy, then?
We
Package: python-pytest
Version: 2.3.4-1~exp1
Severity: serious
Tags: patch
$ py.test-2.7 -v
Traceback (most recent call last):
File /usr/bin/py.test-2.7, line 5, in module
sys.exit(load_entry_point('pytest==2.3.4* Bump Standards-Version to
3.9.4, no change needed.', 'console_scripts',
On Sat, Mar 16, 2013 at 01:49:24PM -0400, Jay Berkenbilt wrote:
They also send me links to the upstream fixes:
http://bugs.icu-project.org/trac/changeset/32865
http://bugs.icu-project.org/trac/changeset/32908
I can prepare a new upload with these fixes and call it CVE-2013-0900.
There's
On Mon, 2013-03-18 at 18:46 +0100, Moritz Muehlenhoff wrote:
Should we rather drop davical from Wheezy, then?
I personally would say this is not necessary...
First let me repeat... I've only reported these things in the Debian
BTS, as the upstream BTS is not working and as I knew that
Hi Bernd,
the -8 works just fine (at least, does not crash).
Thanks,
Anton
On 03/18/2013 12:30 AM, Bernd Zeimetz wrote:
Hey guys,
could you please give -8 from unstable a try (should ship with the next mirror
push in =4 hours) and see if everything works as expected? Importing worked
severity 703222 important
thanks
On 03/18/2013 05:43 PM, Mattia Monga wrote:
I've just downgraded and rebooted to the unstable version of the
packages and everything works now. Since I'm tracking the unstable
distribution, I'm not able to say if the versions I had installed were
slighty
Processing commands for cont...@bugs.debian.org:
severity 703222 important
Bug #703222 [gnome-session-bin] gnome-session-bin: gnome-session crashes with
trap int3
Severity set to 'important' from 'grave'
thanks
Stopping processing here.
Please contact me if you need assistance.
--
703222:
tags 703290 + patch
stop
Attached is a little patch for point (2) based on Andres idea, it uses
htmlentities() to masquerade any evil stuff.
a) Can someone check whether this is enough? (Guess so).
If someone NMUs, please don't close this bug though, just lower the
severity, as I currently abuse
Processing commands for cont...@bugs.debian.org:
tags 703290 + patch
Bug #703290 [davical] davical: possible code insertion or XSS
Added tag(s) patch.
stop
Stopping processing here.
Please contact me if you need assistance.
--
703290: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=703290
On Sun, 17 Mar 2013 21:23:48 -0700, tony mancill wrote:
(I just wasn't sure where the upstream tarball came from since there
is, IIRC, no debian/watch file :))
Fair enough. The tarball is available at this link:
Hi,
On Mon, Mar 18, 2013 at 02:47:47PM +, Steven Chamberlain wrote:
On 17/03/13 19:35, Adam Borowski wrote:
On systems that don't have OSS installed and configured, pressing any
button that has an attached sound, causes a crash.
Another option might be to disable sound on Linux, then
Your message dated Mon, 18 Mar 2013 20:31:51 +
with message-id 514779b7.20...@pyro.eu.org
and subject line Re: automake: tests fail: undefined reference to `yywrap'
has caused the Debian Bug report #703298,
regarding automake: tests fail: undefined reference to `yywrap'
to be marked as done.
On Mon, Mar 18, 2013 at 10:11:00 -0400, anarcat wrote:
This bug is blocking release, is it still happening?
This has been opened more than 6 months ago...
This specific bug with python and libssl doesn't, AIUI, since #680930.
But nothing prevents other incarnation of the same issue
Processing control commands:
tag -1 +patch
Bug #698832 [keepassx] keepassx: icons license and copyright information is
missing
Added tag(s) patch.
--
698832: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=698832
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To
Control: tag -1 +patch
Hi Felix,
Thanks for preparing the patch. Some minor points:
- the release version should be 0.4.3+dfsg-0.1 (as per
http://wiki.debian.org/NonMaintainerUpload)
- the changelog entry should start with:
* Non-maintainer upload.
- the urgency should be bumped to
Your message dated Mon, 18 Mar 2013 21:03:53 +
with message-id e1uhhdl-0003oh...@franck.debian.org
and subject line Bug#701868: fixed in openssl 1.0.1e-2
has caused the Debian Bug report #701868,
regarding cannot connect to IRC server
to be marked as done.
This means that you claim that the
Your message dated Mon, 18 Mar 2013 21:03:53 +
with message-id e1uhhdl-0003oh...@franck.debian.org
and subject line Bug#701868: fixed in openssl 1.0.1e-2
has caused the Debian Bug report #701868,
regarding openssl 1.0.1e-1 upgrade breaks subversion client/server
to be marked as done.
This
On Mon, Mar 18, 2013 at 18:55:40 +0100, Moritz Mühlenhoff wrote:
On Sat, Mar 16, 2013 at 01:49:24PM -0400, Jay Berkenbilt wrote:
They also send me links to the upstream fixes:
http://bugs.icu-project.org/trac/changeset/32865
http://bugs.icu-project.org/trac/changeset/32908
I can
On Mon, 2013-03-18 at 18:46 +0100, Moritz Muehlenhoff wrote:
On Mon, Mar 18, 2013 at 07:43:09PM +1300, Andrew McMillan wrote:
I guess I'm listed as 'upstream' for DAViCal as well as being the DD
responsible for the package. Unfortunately I have no time to do either
job for the foreseeable
Package: libharminv-dev
Version: 1.3.1-8
Severity: grave
Justification: renders package unusable
Dear Maintainer,
It appears as though the harminv package has become unusable in i386.
It refers to libcblas.3gf.so, which is no longer available in
testing/unstable.
Any help would be much
On Mon, Mar 11 2013, Thomas Goirand wrote:
Hi Thomas,
I don't want the 2nd version. Openstack operator all want to answer all
questions, then go to the coffee machine and rest 10 minutes during the
setup... ;)
So, I continue to think that everything should be done in shell script.
Not the
Control: tag -1 +patch
Works for me.
commit 2674f3279495191233db770302d7e71d8647ce41
Author: Serafeim Zanikolas s...@debian.org
Date: Mon Mar 18 23:09:23 2013 +0100
add postrm/preinst scripts to handle apt hook file
fixes #703207
diff --git
Processing control commands:
tag -1 +patch
Bug #703207 [apt-transport-spacewalk] apt-transport-spacewalk: removing the
package breaks apt: sh: 1: /usr/lib/apt-spacewalk/post_invoke.py: not found
Added tag(s) patch.
--
703207: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=703207
Debian Bug
Hi Damyan,
On 2013-03-10 20:45:28, Damyan Ivanov wrote:
-=| Sebastian Ramacher, 10.03.2013 17:42:49 +0100 |=-
Thanks. I have pushed a fix[1] in Git, but haven't tagged the
bugreport accordingly. Sorry about that.
[1]
severity 703290 important
stop
On Tue, 2013-03-19 at 10:20 +1300, Andrew McMillan wrote:
Is there any way to do an XSS exploit in 12 characters? If not, then I
don't think this is 'grave'.
Unless someone from the security or release team complains I've set the
severity to important.
Some DD
Processing commands for cont...@bugs.debian.org:
severity 703290 important
Bug #703290 [davical] davical: possible code insertion or XSS
Severity set to 'important' from 'grave'
stop
Stopping processing here.
Please contact me if you need assistance.
--
703290:
Processing commands for cont...@bugs.debian.org:
tags 656394 + upstream
Bug #656394 [src:davical] davical: possible to no longer use PHP's eval?
Added tag(s) upstream.
tags 656020 + upstream
Bug #656020 [src:davical] davical: apache config documentation improvements
Added tag(s) upstream.
tags
On 03/19/2013 05:18 AM, Julien Danjou wrote:
I think you're wrong. The fact that question aren't asked all in a row
is not the OpenStack packaging team's problem here
Who's problem then?
and trying to avoid
this problem by re-implementing something that you will endless run
after is a waste
On Mon, Mar 18, 2013 at 11:22:56AM -0400, Daniel Kahn Gillmor wrote:
On 03/16/2013 05:35 PM, Mike Hommey wrote:
Likewise, I'd rather know what we do wrt md5, and while at it, cacert
(the cert of which uses a md5 signature at the moment, so it effectively
doesn't work ; see bug 682470)
69 matches
Mail list logo
