On Fri, Apr 29, 2005 at 03:07:09AM +0200, Frank Lichtenheld wrote:
On Thu, Apr 28, 2005 at 06:34:15PM -0400, Justin Pryzby wrote:
Attached is a patch to fix FTBFS: missing build-depends on xlibs-dev.
Confirmed on sid/i386 pbuilder.
It would be preferable to exactly detemine which
blackbox FTBFS may be fixed by an additional build-depends on libxt-dev.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
On Thu, Apr 07, 2005 at 11:35:36PM +, mike at dst wrote:
Package: ifupdown
Version: 0.6.6
Severity: critical
Justification: breaks the whole system
(Reading database ... 23841 files and directories currently installed.)
Preparing to replace ifupdown 0.6.6 (using
On Sun, Apr 03, 2005 at 05:03:37PM +0200, Jean-Michel Kelbert wrote:
Le 17/03/05 à 02:08 Justin Pryzby ([EMAIL PROTECTED]) écrivait :
I can confirm that this problem exists with a fresh install.
Justin
Could you tell me it it's allready present in the new package ?
The new package (1.0-1
when the package is purged. Closes: #302625.
+- Also clear the password from Debconf immediately after writing
+ it to a file.
+
+ -- Justin Pryzby [EMAIL PROTECTED] Sun, 3 Apr 2005 23:49:50 -0400
+
webcalendar (0.9.45-3) unstable; urgency=low
* removed mysql-server or postgres
On Sat, Apr 02, 2005 at 01:01:38PM +0200, Leszek Koltunski wrote:
Subject: After removing gdm 'startx' wont start X
Package: gdm
Version: 2.6.0.6-1
Severity: grave
I decided to 'dpkg -P gdm' yesterday and 'startx' wont start X any more
when issued by normal user 'leszek'. ( root can
On Sat, Apr 02, 2005 at 12:40:27PM +0200, Thomas Hood wrote:
Package: zeroconf
Version: 0.2-1
Severity: serious
The copyright file says:
It was downloaded from http://www.progsoc.org/~wildfire/zeroconf/
That URL reports Your browser requested a page that could not be found:
reassign 302716 kernel
severity 302716 important
thanks
On Sat, Apr 02, 2005 at 04:49:37PM +0200, Leszek Koltunski wrote:
Subject: dpkg screws up GRUB's menu.lst
Package: dpkg
Version: 1.10.27
Severity: grave
Some time ago I moved my root partition from hda3 to hda5. All online
On Sat, Apr 02, 2005 at 05:08:22PM +0200, Leszek Koltunski wrote:
I once again purged gdm, tried to 'startx' as a normal user 'leszek' - no
success. For a brief moment I get to see this gray screen with the
hourglass, but after some ~1/2 a second X server exits.
I added another normal
On Sat, Apr 02, 2005 at 06:51:37PM +0200, Leszek Koltunski wrote:
Can you also confirm that XFree86 always works, independent of whether
gdm is installed or not, and independent of what user runs it?
ok, I've got 3 users here: 'root' , 'leszek' and 'blah' ( which is just a
dummy user
clone 296935 -1
retitle -1
severity -1 important
owner 298475 !
owner 298476 !
owner -1 !
thanks
All of the debconf stuff needs to be db_purged in postrm
if [[ $1 == purge ]].
See http://www.fifi.org/doc/debconf-doc/tutorial.html.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject
On Sat, Mar 26, 2005 at 04:42:50PM +0100, Dimitri Chausson wrote:
Package: xscreensaver
Version: 4.16-1
Severity: critical
Justification: breaks the whole system
Until now, I could reproduce this bug on kernel 2.6.8 and 2.6.11. It
seems independant from the desktop/window manager (tried
#299939 and #218014 likely have the same cause. Someone might
consider downgrading #299939 and/or merging them.
It seems that both are caused by a user-trigged disconnect event while
in a state when disconnect should be disallowed. A proper solution
probably requires glib synchronization, but
tag 301038 patch
thanks
It appears that the imagefs crash can be avoided by pre-creating the
file. It will crash if the file doesn't exist, but seems to succeed
if you /usr/bin/touch the file beforehand.
There's something wrong with the constructor CImage::CImage. When you
try to create a
On Thu, Mar 24, 2005 at 03:55:06PM +0300, Michael Tokarev wrote:
Package: libpam-ssh
Version: 1.91.0-5
Severity: critical
A long time ago (circa 1998 or so) I looked at pam-ssh project and
noticied several problems with it. And since it's now in Debian,
the same problems applies to Debian
On Thu, Mar 24, 2005 at 08:00:46PM +0100, Alessandro Pagnin wrote:
Ok, I've uninstalled makedev and reinstalled with udev. The installation
proceeds bat with this error:
/var/lib/dpkg/info/makedev.postinst: line 27: /sbin/MAKEDEV: no such file or
directory
That shouldn't be possible.. You
On Wed, Mar 23, 2005 at 10:39:16PM +0100, Dirk Salva wrote:
Package: kaboodle
Version: 4:3.3.1-2
Severity: grave
Justification: renders package unusable
When I start trying to view an mpeg or something else (like from leech.dk),
kaboodle only starts, but does not play. When I push
I recommend that this report be downgraded+tag unreproducible, if
someone can report success setting up masquerading via webmin-firewall
and iptables 1.2.11-8.
Justin
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
I think that comments in the wine BTS indicate that this patch will be
no longer necessary after the 20050310 release, but it is a bit
ambiguous.
In the meantime,
http://bugs.winehq.com/attachment.cgi?id=765action=view
is the included patch.
Justin
--- wine-20050211/misc/registry.c Mon Feb
Okay. Do I correctly understand that kernel patch + downgrade solves
your problem?
And, if you have *just* the kernel patch, /usr/sbin/pppd hangs, but
doesn't crash the system?
Thanks,
Justin
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL
Hi,
It seems that #294604 can be closed, and #298173 can be tag =
sarge,woody,security. Correct?
BTW: I noticed a strange version numbering in the experimental
packages. Is this intentional? It seems to me that people who had
installed the experimental versions would have to actively force
clone 273826 -1
retitle -1 New upstream release v1.7
severity -1 wishlist
thanks
Did you say that this freezes the whole system? If so, it is a
security problem with the kernel. Let us know so we can clone the bug
against the kernel.
Thanks,
Justin
On Fri, Mar 18, 2005 at 10:39:10PM +0100,
submitter 300314 Bluefuture [EMAIL PROTECTED]
thanks
Are you using a Dell laptop? The Linux 2.6.8 Changelog mentions a fix
for ALSA with a Dell. (But, you said it crashed under 2.6.8; thought
I'd ask anyway.) Knowing your machine type and sound card might help;
the kernel changelogs mention a
close 300314
thanks
On Sat, Mar 19, 2005 at 02:20:27AM +0100, Bluefuture wrote:
Il giorno ven, 18-03-2005 alle 18:43 -0500, Justin Pryzby ha scritto:
On Sat, Mar 19, 2005 at 01:18:07AM +0100, Bluefuture wrote:
2.6.10 and the latest user space alsa (alsa-base).
Okay. alsa-base is just
I was able to upgrade then purge, then reinstall sid's new
checksecurity. So, I think it would be useful if you could make the
postinst set -x and reconfigure it to point out where the problem is.
Thanks,
Justin
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe.
Couldn't you just use Replaces: unrar-nonfree? I'm not sure I
understand this bug report though; are there two packages with the
same name? Is there meant to be a seamless upgrade from unrar
(nonfree) to unrar (free)? In that case, why can't one of the just be
renamed?
Justin
--
To
I can confirm that this problem exists with a fresh install.
Justin
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Surely this is not the entire patch?
Justin
On Thu, Mar 17, 2005 at 12:01:29AM -0600, Micah Anderson wrote:
tag 298600 + patch
The attached patch fixes this problem and is the contents of the NMU
that I will be doing shortly.
--- bzflag-2.0.0.20050118/debian/changelog2005-01-17
1:3.2.5-1/proc file system utilities
-- no debconf information
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
--
Justin Pryzby
whois jgalt
References
[0]
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
--
Justin Pryzby
whois jgalt
References
[0]
--
Justin Pryzby
whois jgalt
References
[0]
!DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.01//EN
html
head
title
On Tue, Mar 15, 2005 at 01:47:17PM +0100, Thilo Pfennig wrote:
Am Montag, den 14.03.2005, 18:19 -0500 schrieb Justin Pryzby:
On Mon, Mar 14, 2005 at 06:08:39PM -0500, pryzbyj wrote:
On second thought, I'm not sure where you are seeing the reported
error (in a logfile?).
In Webmin.
I
On Mon, Mar 14, 2005 at 01:27:21PM +0100, Vlad Lazar wrote:
Package: Mozilla-firefox
Version: 1.0.1-2
Severity: grave
Justification: renders package unusable
Whenever I try to write anything in the address bar or google search bar
the Firefox chases (I uninstalled all extensions and wiped
On second thought, I'm not sure where you are seeing the reported
error (in a logfile?).
It might help to use the following lines in /etc/init.d/iptables:
mkfifo /tmp/fifo;
tee -a /tmp/iptables.out 0/tmp/fifo
echo -en \n$(date)\n$0 @$ /tmp/fifo;
exec 1/tmp/fifo 21
And if someone knows
On Mon, Mar 14, 2005 at 06:08:39PM -0500, pryzbyj wrote:
On second thought, I'm not sure where you are seeing the reported
error (in a logfile?).
It might help to use the following lines in /etc/init.d/iptables:
It should be $@, not @$:
mkfifo /tmp/fifo;
tee -a /tmp/iptables.out 0/tmp/fifo
Attaching a patch which is the result of the two upstream svn commits,
applied cleanly to Debian's clilist.c, and reran diff.
Justin
--- clilist.c 2005-03-13 09:29:52.541928856 -0500
+++ old/clilist.c 2005-03-13 09:30:02.151467984 -0500
@@ -185,7 +185,7 @@
setup =
Hi,
You recently reported a bug [0] against Debian's pacakge of
webmin-firewall. Could you report which version of iptables you have
installed?
Thanks,
Justin
References
[0] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=278916
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject
reassign 299223 iptables
thanks
On Sun, Mar 13, 2005 at 05:43:11PM +0100, Thilo Pfennig wrote:
Am Sonntag, den 13.03.2005, 11:01 -0500 schrieb Justin Pryzby:
Hi,
You recently reported a bug [0] against Debian's pacakge of
webmin-firewall. Could you report which version of iptables you
It should not be a conffile, since it is created/modified by postinst.
But also, I don't really follow what the postinst is doing.
# This writes to $CONFIG
if [ ! -e $CONFIG ];
then
echo templatedir= $CONFIG
fi
# But this later overwrites it, unconditionally, so I don't see the
# point
On Sun, Mar 13, 2005 at 06:55:30PM +0100, Frank Lichtenheld wrote:
On Sun, Mar 13, 2005 at 11:51:48AM -0500, Justin Pryzby wrote:
reassign 299223 iptables
why?
Because I originally thought it looked like the grave iptables bug
(tagged woody), but when I reread it with the reporter's iptables
Hi,
Is there any news on this bug [0]? Its not clear from the bug log
that its even present in a version distributed by Debian.
(Most importantly: is it present in testing?)
Ben, were you using a debian version of the package when you
experienced the bug, or one from CVS?
Thanks,
Justin
On Fri, Mar 11, 2005 at 12:40:03PM +0100, Christian T. Steigies wrote:
On Thu, Mar 10, 2005 at 08:06:16PM +0100, Peter De Wachter wrote:
Package: luola-data
Severity: serious
Justification: Policy 2.2.1
This package contains the font bluebold.ttf, which is one of Ray
Larabie's fonts
On Thu, Mar 10, 2005 at 09:33:19AM +0100, Alban browaeys wrote:
For the record:
; Print out errors (as a part of the output). For production web sites,
; you're strongly encouraged to turn this feature off, and use error logging
; instead (see below). Keeping display_errors enabled on a
On Wed, Mar 09, 2005 at 11:55:01PM +0100, Stefan Fritsch wrote:
! On a production system error logs on the browser output have to
be disabled !
It is lije keeping development backdoors on a production release
...
If debian php does it by default , please reassign the bug to it
but i
On Tue, Mar 08, 2005 at 10:22:54AM +0100, Javier Fernández-Sanguino Peña wrote:
tags 279483 patch pending
thanks
The attached patch should fix this, I'm making a NMU upload as this RC bug
has been over 4 months unanswered.
Same as #279484 (susv2). Are you planning on NMU that too? BTW; I
On Mon, Mar 07, 2005 at 07:10:56PM +0100, Stefan Sontheimer wrote:
Package: php4-gd2
Severity: grave
Justification: renders package unusable
I upgraded php4 from 4.3.10-2 to 4.3.10-8 last week. Unfortunately this
removed php4-gd2 from my system. Today I realized I need this package
for an
On Tue, Mar 08, 2005 at 04:25:09PM +0100, Javier Fernández-Sanguino Peña wrote:
On Tue, Mar 08, 2005 at 09:00:34AM -0500, Justin Pryzby wrote:
On Tue, Mar 08, 2005 at 10:22:54AM +0100, Javier Fernández-Sanguino Peña
wrote:
tags 279483 patch pending
thanks
The attached patch
Have you tried to construct a minimal test case?
I tried to reproduce the problem with a trivial program, included.
Let me know if I'm missing something already known.
Thanks,
Justin
References
[0] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=297798
#include dlfcn.h
#include stdio.h
Hi,
You recently reported a bug [0] in Debian's sysfsutils package. I
tested the init script, and it appears to work as intended. I added
this line to /etc/sysfs.conf:
devices/system/cpu/cpu0/cpufreq/scaling_governor = ondemand
and added two lines to /etc/init.d/sysfsutils:
while read
Hi Tim,
Are you available to do a quick upload of webcalendar? There is
presently grave bug #296935 which prevents configuration when the
user's password is nonalphanumeric.
Thanks,
Justin
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL
Hi,
Could you expand on the Debian bug #297798 which you reported against
libc6? It seems like you mean that applications using dlerror() break
when invoked by valgrind, because valgrind dlsym() frees its return
pointer. Is that a correct interpretation?
Thanks,
Justin
--
To UNSUBSCRIBE,
Its closed; Chris's message on Feb 19 was to:
[EMAIL PROTECTED], which caused it to be marked as Done.
See also the done tag, up top.
Justin
On Wed, Mar 02, 2005 at 05:38:48PM +0900, Horms wrote:
Should this bug be closed. The log against the bug suggests it should
be, but it seems to still be
On Sun, Feb 27, 2005 at 10:41:05AM +0100, Filippo Rusconi wrote:
Hellow Justin,
The problem may be that the DB_PASSWORD line is unable to handle an @
sign (though I cannot reproduce it). Can you try running
dpkg-reconfigure webcalendar, and entering a purely alphanumeric
password?
I
On Sun, Feb 27, 2005 at 06:39:52PM +0100, Filippo Rusconi wrote:
I don't know if that's right, or if there's a second problem. You can
work around it by editting the appropriate line in
/var/cache/debconf/config.dat.
Yes, it helped. However, the install of webcalendar along with a
On Sat, Feb 26, 2005 at 02:00:59PM +0200, Toni Willberg wrote:
Hi.
I'm not a Debian developer, so I don't know (nor really care) about the
policy.
What should be done, and by who, to get libsilc package to Testing?
There are more than one SILC client packages (GAIM's SILC plugin and
On Fri, Feb 25, 2005 at 09:36:52PM -0800, Steve Langasek wrote:
The problem may be that the DB_PASSWORD line is unable to handle an @
sign (though I cannot reproduce it).
I'm not sure why you can't reproduce this:
1) You seem to have replaced ')' with '}'. (Just for the record).
On Fri, Feb 25, 2005 at 09:42:43PM +0100, Filippo Rusconi wrote:
Package: webcalendar
Version: 0.9.45-3
Severity: grave
Justification: renders package unusable
The Setting up of webcalendar fails with following output:
Setting up webcalendar (0.9.45-3) ...
Search pattern not terminated
On Fri, Feb 25, 2005 at 10:53:48PM +0100, Filippo Rusconi wrote:
Hello,
thanks for answering the bug report.
I did as you requested, and then tried an install of the package. This
is the output:
Okay, it is as I suspected; perl is somehow causing the problem.
+ [EMAIL PROTECTED]
If that
Hi again,
I got your message, but deleted it, assuming it was also in the BTS.
Could you resend it, and also Cc: [EMAIL PROTECTED]
Thanks,
Justin
References
[0] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=296274
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of
On Mon, Feb 21, 2005 at 02:34:24PM +0100, Roel Teuwen wrote:
Package: kernel-image-2.6.8-2-32
Version: 2.6.8-6
Severity: grave
Justification: renders package unusable
After filing bugreport #294167 (apt-listbugs: segmentation fault on
hppa), it was closed by the developer, stating the
stupid question but which files should be there?
--
.''`.
: :' :rnaud
`. `'
`-
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
--
Justin Pryzby
whois jgalt
References
[0]
--
To UNSUBSCRIBE, email
On Sun, Feb 20, 2005 at 08:44:51PM +0200, Martin-Éric Racine wrote:
On Sun, 20 Feb 2005, Justin Pryzby wrote:
Could you try running MALLOC_CHECK_=1 gaim? See if that reports
anything. Or, if MALLOC_CHECK_ is already set, unset it (indeed, that
itself could cause the abort
/gauche-gtk-0.4.1/src'
m 444 -T
/build/buildd/gauche-gtk-0.4.1/debian/gauche-gtk`/usr/bin/gauche-config
--sysincdir`
/bin/sh: m: command not found
This makes me think that an environment variable isn't set.
--
Justin Pryzby
whois jgalt
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED
This is probably the already known-and-fixed bug 294399:
needs rebuild aganst libevent.
Please retest against version 2.0-4 so this bug can be closed and
testing migration can happen.
Justin
On Mon, Feb 14, 2005 at 01:14:01PM +0300, Peter Novodvorsky wrote:
Package: scanssh
Version: 2.0-3
, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
--
Justin Pryzby
Now seeking qualified employers
References
[0]
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Hi Michael,
I'm not the udev maintainer, but I can try to help.
Can you add set -x as the second line of
/var/lib/dpkg/info/udev.postinst, and retry configuration of that
package, and send us the output?
Thanks,
Justin
On Thu, Feb 10, 2005 at 03:36:13PM +0100, Michael Schmitt wrote:
Package:
On Sun, Feb 06, 2005 at 09:59:33PM +0100, tahiti_bob wrote:
Package: ifp-line
Version: 0.2.4.5-1
Severity: grave
Justification: renders package unusable
ifp ls gives the following message when not root
Device is busy. (I was unable to claim its interface.)
It works perfectly as root.
On Thu, Feb 03, 2005 at 04:47:24PM +0100, Torsten Marek wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Andrew Maier schrieb:
| Package: eric
| Version: 3.6.1-2
| Severity: grave
| File: /usr/bin/eric3
| Tags: patch
| Justification: renders package unusable
|
| I assume it is
Right; potion abort every time for me on two different machines. I
can't make it segfault. Sometimes it shows a couple packets
immediately before aborting; sometimes it waits a second, shows no
packets, and then aborts.
Justin
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of
: [EMAIL PROTECTED]
References: [EMAIL PROTECTED]
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: [EMAIL PROTECTED]
User-Agent: Mutt/1.5.6+20040907i
From: Justin Pryzby [EMAIL PROTECTED]
X-Virus-Scanned: Symantec AntiVirus Scan Engine
- End
On Tue, Feb 01, 2005 at 09:40:46AM +0100, EndelWar wrote:
Package: sarg
Version: 2.0.2-1
Severity: grave
Justification: renders package unusable
Running sarg on 2 different server cause it to hang up and uses nearly all
cpu time.
The command line used is sarg -l
On Tue, Feb 01, 2005 at 02:00:18PM +0100, psycheye wrote:
Hi,
if I transfer a files from windows os (several windows machine) to
my debian with samba later 5/10 minutes the linux system total
crash(!!!). I press the reset button!
If you run top from a console (virtual terminal, outside of X),
tags 293110 -security
thanks
Its not a security hole unless the package maintainer is supposedly
trojaning the package such as to waste CPU.
This sounds like its potentially a window manager problem. What WM
are you using? I can't reproduce it here under blackbox; could you
also try another
On Sat, Jan 29, 2005 at 02:21:26PM +0100, Cedric Blancher wrote:
Package: qiv
Version: 2.0-3
Severity: grave
Justification: renders package unusable
qiv keeps crashing on image loading :
Does it crash, or just not recognize the format?
[EMAIL PROTECTED]:~$ qiv beer.png
Gdk-ERROR **:
On Sat, Jan 29, 2005 at 03:36:37PM -0500, Anthony DeRobertis wrote:
Package: imms
Version: 2.0.1-3
Followup-For: Bug #292777
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Attached. I have only briefly tested this, so beware. This patch works
by getting rid of the call to popen (and thus
udev bind mounts /dev/ to /.dev/. Check your /dev/; I bet there's
little if anything there. Didn't udev say you should restart your
computer at the earliest possible convenience, and shouldn't expect
stuff to work if you enable udev without doing so? It used to do
that.
Maybe it is a problem
On Mon, Jan 24, 2005 at 10:14:39AM +0100, Goswin von Brederlow wrote:
Hi,
I wanted to track this bug but can't reproduce it on amd64:
Right. I've been working with the submitter without much success. I
asked for a shell account but that wasn't a possibility. Coredumps
all indicate a stack
On Sun, Jan 23, 2005 at 05:12:15PM +0100, Uwe Hermann wrote:
Hi,
sorry, the mail about this bug somehow got lost in my inbox...
(CC to debian-devel, any help with this issue is welcome)
On Wed, Nov 17, 2004 at 03:45:55AM +0100, Nicolas Gregoire wrote:
Package: info2www
Version:
tag 288550 patch
thanks
On Sun, Jan 23, 2005 at 07:19:29PM +0100, Chrissie wrote:
On Sat, Jan 22, 2005 at 07:17:18PM -0500, Justin Pryzby wrote:
Hi,
You recently submitted a bug on eroaster,
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=288550. I'm unable
to reproduce this; could
tags 281655 patch
thanks
I've included a 2-line patch which implements some output
sanitization. I can't find any other instance where this is a
problem, but don't take my word for it; I haven't followed the code
*that* closely.
Since info filenames/titles can be named anything (which is a Good
On Sun, Jan 23, 2005 at 05:42:04PM -0500, pryzbyj wrote:
tags 281655 patch
thanks
I've included a 2-line patch which implements some output
sanitization. I can't find any other instance where this is a
problem, but don't take my word for it; I haven't followed the code
*that* closely.
Hi,
You recently submitted a bug on eroaster,
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=288550. I'm unable
to reproduce this; could you add debugging statements to show what are
the value of version[1], len(version[1]), and range(len(version[1]))?
Justin
--
To UNSUBSCRIBE, email to
Couldn't we just use a dummy mount? Bind mount /bin/ as /tmp/`mktemp
-d`/, then test retval=diropen(/tmp/`mktemp`)? (Or
fopen(/tmp/`mktemp`/ls) or sth similar).
(I didn't say it was clean ... :) But this test is probably better
than nothing, as it prevents /dev/ from being unusable. Just
Showing a warning before running each applet is a good idea. Using
debconf to display a warning is a bad idea, because only the
administrator will see it (debconf is/was never mean for such
things).
Justin
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble?
On Fri, Jan 21, 2005 at 10:54:21PM +0100, Kurt Roeckx wrote:
Package: systraq
Version: 0.0.20041118-2
Severity: serious
Hi,
Your package is failing to build because it's trying to connect
to the internet. A package should be completly build from the
source and should not need anything
tag 291209 confirmed
thanks
On my laptop, the window is not black, but mostly white. The top of
the window looks distorted. Sound seems to be okay.
Justin
On Wed, Jan 19, 2005 at 01:54:16PM +0100, vu-ngoc.san wrote:
Package: csmash
Version: 0.6.6-5
Severity: grave
Justification: renders
tag 279154 confirmed
thanks
swami.glade is the only non-directory file which is installed to /debian/.
Justin
On Wed, Jan 19, 2005 at 09:03:06PM -0800, Debian Bug Tracking System wrote:
Processing commands for [EMAIL PROTECTED]:
package swami
Ignoring bugs not assigned to: swami
On Sun, Jan 16, 2005 at 11:19:52AM +0100, fellow wrote:
Package: torsmo
Version: 0.18-1
Severity: grave
Justification: renders package unusable
Hi!
The 0.17 version was good, but the new won't run.
It's simply write to the stdout: Floating point exception
The full strace is here:
Hi,
Did torsmo used to work for you? I just tested the testing version
and the sid version both on 2.6.10, and didn't get an FPE.
Justin
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Hi,
I'm following up on a gmemusage bug you reported.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=275875
This program reads /proc/memusage, the format of which changed in the
2.6 series kernels. I have a patch, and I was hoping you could test
it. I can provide binaries, too, if you use an
On Sun, Jan 16, 2005 at 09:51:44PM +0200, Stefanos Harhalakis wrote:
Package: login
Version: 1:4.0.3-30.7
Severity: critical
Tags: security
Justification: root security hole
It seems that /var/log/btmp is created as a world readable file.
This is insecure (and it is reported by 'tiger')
On Sun, Jan 16, 2005 at 10:36:46PM +0200, Stefanos Harhalakis wrote:
On Sunday 16 January 2005 22:24, Justin Pryzby wrote:
On Sun, Jan 16, 2005 at 09:51:44PM +0200, Stefanos Harhalakis wrote:
Package: login
Version: 1:4.0.3-30.7
Severity: critical
Tags: security
Justification
- Forwarded message from Stefanos Harhalakis [EMAIL PROTECTED] -
X-Original-To: [EMAIL PROTECTED]
From: Stefanos Harhalakis [EMAIL PROTECTED]
To: Justin Pryzby [EMAIL PROTECTED]
Subject: Re: Bug#290803: login: /var/log/btmp is created with insecure
permissions
Cc: [EMAIL PROTECTED]
X
--- xtrlock.c 2002-09-01 00:46:29.0 -0400
+++ xtrlock.c.new 2005-01-16 19:58:30.0 -0500
@@ -197,9 +197,11 @@
break;
default:
if (clen != 1) break;
-if (rlen (sizeof(rbuf) - 1)) rbuf[rlen]= cbuf[0];
/* allow space for the trailing
severity 275875 important
severity 255111 important
merge 276990 255111 275875
thanks
Patch allowing use on 2.6 kernels, and correcting a bug in the
reported size of the kernel (was 10). This patch should be used
instead of the one on rtfo.org (which is not presently accessible, so
I cannot
Gentoo has a patch at:
http://bugs.gentoo.org/attachment.cgi?id=43329
I think only the last section is relevent; other parts are controlled
only by the local user.
Upstream is aware of the problem as of last week and is apparently
working with gentoo on an update:
tags patch
thanks
It appears that the remote buffer overflow vulnerability can be
averted with a simple change to main.c:922. Use vsnprintf to cap the
size to (sizeof p).
Note that the original report mentions format string vulnerabilities
as well. Indeed, this same function, message(), is
On Fri, Jan 14, 2005 at 07:15:25PM +0100, Dirk Salva wrote:
Package: libarts1
Version: 1.3.2-1
Severity: grave
Justification: renders package unusable
[...]
And, another one: with the new KDE system hangs completely about 3 times!
It hangs so awesome that there was no remote-login via ssh
Care to write one? This program only takes two arguments:
-v be verbose - show current configuration at start up.
-s do _not_ start the daemon - just show parsed config file.
You might also mention the configuration file. Other than that ..
just an introduction copied from the
In addition to previously documented flaws, it appears that
ftp_passv() might overflow addr with a mallicious numerical response
of more than 3 digits.
Further auditing should look closely at locking with mutexes: is this
even a theoretical problem, for a remote attacker?
popcon indicates that
Alternatives (not Debian ones) include aget and axel.
Justin
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
401 - 500 of 504 matches
Mail list logo