On Tue, Dec 02, 2014 at 01:23:13AM +0100, Andrea Claudi wrote:
Hi,
This patch should fix the problem, moving the non-volatile state for the
samhain package to /var/lib/samhain.
The patch creates the directory for new installations but it is worth
noticing that the /var/state/samhain/ contains
On Wed, Jan 22, 2014 at 10:34:55PM +0100, Peter Palfrader wrote:
Package: samhain
Version: 2.8.3a-1+deb7u1
Severity: serious
Hi,
the samhain in stable-updates has an init script that fails on start
if the service is already running:
This was not a bug introduced in the update. The bug
to determine the status using the
+process name instead
+
+ -- Javier Fernández-Sanguino Peña j...@debian.org Thu, 23 Jan 2014 03:45:25 +0100
+
samhain (2.8.3a-1+deb7u1) stable; urgency=medium
* Backport fixes from unstable version to fix serious/important bugs
diff --git a/debian
On Tue, Jan 14, 2014 at 03:28:17PM +0100, Bastian Blank wrote:
Some debugging shows that dnmalloc is broken. It is already disabled
for ia64 and s390, so the maintainer obviously knows. Please disable
for _all_ architectures until this code is known to work.
I've disabled it for s390x just
On Fri, Mar 09, 2012 at 03:20:10PM +0100, Gerfried Fuchs wrote:
I had it hanging like this for two week's time, and tried again if I am
able to reproduce it - it's absolutely reproducible. Doing this within a
cowbuilder chroot on an i386 machine.
So, things to reproduce it should be as
merge 692071 692631
thanks
On Wed, Nov 07, 2012 at 11:20:33PM +0100, Ansgar Burchardt wrote:
The upstream tarball contains files under the non-free JSON license:
This has already been reported. I'm merging this bug.
Regards
Javier
signature.asc
Description: Digital signature
On Thu, Nov 01, 2012 at 11:08:32PM +0100, Francesco Poli (wintermute) wrote:
Hello Javier,
it seems to me [1] that storymaps includes non-free files
(src/org/json/*) released under the JSON license [2].
Yes, it does.
(B) replace src/org/json/* files with a DFSG-free and GPL-compatible
Package: release.debian.org
Version: N/A
Priority: grave
Tags: rm
I would like to request the Release Managers to remove *all* of the OpenVAS
2.x packages from the current testing distribution. This includes the
following packages:
- libopenvas2 / libopenvas2-dev (version 2.0.4-2.1)
-
On Tue, Jul 31, 2012 at 04:23:52PM +0800, Jim Barber wrote:
I have also encountered this problem when installing snort for the first time
on a freshly installed Debian host.
To get the package to configure I did the following steps:
(...)
Thank you (and the other reports) for the additional
tag 679106 pending
thanks
Hi,
After reviewing this bug I believe we did not fix it properly in 3.0pl1-117.
In that version we did the following change:
* debian/cron.init:
- Don't call start-stop-daemon directly, use LSB init functions
instead. Among other things, this
On Thu, May 24, 2012 at 01:03:27AM +0200, Cyril Brulebois wrote:
$subject says it all:
| [ clean = audit-plugins ] || dh clean --with quilt
| dh: unable to load addon quilt: Can't locate
Debian/Debhelper/Sequence/quilt.pm in @INC (@INC contains: /etc/perl
/usr/local/lib/perl/5.14.2
On Sun, May 06, 2012 at 02:09:23PM -0400, Brendan Byrd wrote:
Apparently, the -D option is only in the testing branch of netselect. I
can see two solutions:
1. Make sure netselect-apt can use netselect with or without the -D option.
2. Create a dependency link between netselect/testing and
On Tue, May 01, 2012 at 04:19:41PM +0200, Christoph Egger wrote:
severity 650060 serious
bye
Seems to happen now in unstable
It does not seem to be the same bug (or the patch provided does not apply
and fix this bug). The version of libmysqlclient-dev currently available in
unstable (version
On Tue, Apr 10, 2012 at 11:35:33AM -0500, Frank Loeffler wrote:
Hi,
What about parsing http://http.us.debian.org/debian/README.mirrors.txt
for information about Debian mirrors instead of the HTML page?
It didn't occur to me, but I'm not sure that parsing that text file is going
to be easier
On Tue, Apr 10, 2012 at 11:26:55AM -0500, Frank Loeffler wrote:
Hi
This is most likely a cause of #667985, which has been fixed in sid.
Yes, I've tested this in a Squeeze chroot and the behaviour in Squeeze
generates the error message that was reported.
The version in Squeeze is actually
On Sat, Apr 07, 2012 at 01:42:52PM -0700, Nameless wrote:
Netselect-apt fails to parse newest mirrors list with rel=nofollow in href
links.
Attached patch which tweaks the relevant regexp restored normal functionality.
Thanks for the patch. I will apply it, test it and update a new version
ccal's postint script causes dpkg-reconfigure (-a) to fail with the
following error message:
dpkg-maintscript-helper: error: environment variable
DPKG_MAINTSCRIPT_NAME is required
I can reproduce this issue simply runnign 'dpkg-reconfigure ccal'. I will
submit a fix to the postinst script
tags 660197 moreinfo unreproducible
thanks
On Fri, Feb 17, 2012 at 10:27:58AM +, George B. wrote:
Package fails to install. Error message:
I have done the install in a clean chroot and the installation does not fail.
I cannot reproduce this bug in a clean environment.
---
E:
On Sun, Jan 29, 2012 at 10:25:30AM +0200, Stefano Rivera wrote:
The BTS doesn't understand that a bug can be found in snort/2.9.2-1 and
fixed in snort/2.9.2-1, so I removed the found in annotation.
Thanks for the clarification, I misread the emails to control@b.d.o.
Regards
Javier
--
To
On Mon, Jan 23, 2012 at 05:48:13PM +, Debian Bug Tracking System wrote:
# err, that didn't work
notfixed 656289 snort/2.9.2-1
Bug #656289 {Done: Javier Fernandez-Sanguino Pen~a j...@debian.org} [snort]
snort 2.9.1-1 is uninstallable and unbuildable in unstable due to dependency
on
On Thu, Jan 19, 2012 at 02:03:42PM +0100, Andreas Beckmann wrote:
during a test with piuparts I noticed your package failed to install.
(...)
Setting up snort (2.9.2-1) ...
/var/lib/dpkg/info/snort.config: 15: /var/lib/dpkg/info/snort.config:
ifconfig: not found
On Wed, Jan 18, 2012 at 01:17:05AM +, peter green wrote:
as the title states this package is in unstable but it has
(build)-dependencies that are only satisfiable in experimental.
I have just uploaded daq (source+binaries) to unstable, thus closing this
bug.
Regards
Javier
signature.asc
On Sun, Dec 25, 2011 at 03:55:08PM +0100, gregor herrmann wrote:
tags 651581 + pending
thanks
Dear maintainer,
I've prepared an NMU for sac (versioned as 1.9b5-2.1) and
uploaded it to DELAYED/2. Please feel free to tell me if I
should delay it longer.
Thanks for the fix. I'm going to
tag 651463 upstream
thanks
Thanks for the heads up, it seems that the bug-fix upload I sent yesterday
triggered a rebuild of the package in all architectures and those who have
libevent2 now in unstable do not compile any more.
The issue is already known by upstream maintainer Niels Provos, who
On Tue, Jul 05, 2011 at 10:05:17PM +0200, Leo 'costela' Antunes wrote:
After testing in a clean pbuilder, your package failed to build with
the version of libevent in experimental (2.0.*).
Hi, why do you infer this is an issue with the newest libevent?
You can find a log of the build attempt
unblock 631018 by 632765
thanks
The #632765 is not related to the libc transition but, actually, seems to be
a FTBFS in amd64 which does not appear in the buildd logs (see
https://buildd.debian.org/status/fetch.php?pkg=honeydarch=amd64ver=1.5c-9stamp=1316385054)
Regards
Javier
--
To
On Sun, Oct 30, 2011 at 04:09:11PM -0400, Daniel T Chen wrote:
* honeydstats.[ch]: Rename struct user to honeyd_user to avoid collision
on armel. Fixes FTBFS. (Closes: #642352)
Thank you for the patch, I will review it and apply it to the package.
Best regards,
Javier
signature.asc
Build-Depends-Indep is out of date. gs-common is an empty package
nowadays.
Thanks for the solution, I wonder, however, why the gs-common didn't pull in
the ghostscript package in this autobuilder
I'm going to upload a new package to fix this bug right away anyway.
Regards
Javier
On Wed, Mar 30, 2011 at 11:53:13AM -0700, Josh Triplett wrote:
Package: noshell
Severity: serious
As a transitional package for the non-free titantools, noshell depends
on titantools. Thus, noshell should not live in main. As a
transitional package for a non-free package it should go in
On Sun, Mar 13, 2011 at 06:46:21PM +0100, Lucas Nussbaum wrote:
During a rebuild of all packages in sid, your package failed to build on
amd64.
It seems it is unable to build the Snort PDF Manual (using LaTeX).
The manual is built as part of the arch-independent package. I will check the
logs
On Tue, Dec 21, 2010 at 05:23:39PM +0100, Julien Cristau wrote:
On Tue, Dec 21, 2010 at 17:07:09 +0100, Javier Fernandez-Sanguino wrote:
Becas right now, with the current code, changes gets overwritten by debconf
on package (re)configuration.
That sounds like a serious bug in the
On Fri, Dec 17, 2010 at 02:57:39PM +0100, Alexander Reichle-Schmehl wrote:
* Alexander Reichle-Schmehl toli...@debian.org [101216 14:14]:
The only part missing would to make sure, snort-{mysql,pgsql} write into
the new file instead of the old one, and purge the new file. But the
main
On Mon, Dec 20, 2010 at 03:24:57PM +0100, Javier Fernández-Sanguino Peña wrote:
I see some issues with this bug. Some are minor (typos in the changelog and
the text) but the most important thing is: there is no NEWS file so
that users are forewarned of this (important) change.
Upon review
On Wed, Dec 15, 2010 at 03:55:22PM +0100, Alexander Reichle-Schmehl wrote:
I just noticed, that this bug is still open in testing, as fixed
packages never migrated.
If see it correctly, it doesn't migrate as
a) there's no unblock request, yet
b) It's outdated on kfreebsd-i386,
On Wed, Dec 15, 2010 at 03:55:22PM +0100, Alexander Reichle-Schmehl wrote:
I think there are no non-free autobuilders for these architectures. So
I guess the easiest solution would be an arch removal. What do you
think?
Well, buidling this package in porterbox is pretty straightforward so
Hi,
I'm preparing an upload right away to fix this bug (-115). I would appreciate
it if you can test it right away to ensure that the bug is fixed before the
release.
Regards
Javier
signature.asc
Description: Digital signature
On Sat, Oct 16, 2010 at 01:29:06PM +0200, Javier Fernández-Sanguino Peña wrote:
I'm preparing an upload right away to fix this bug (-115). I would appreciate
it if you can test it right away to ensure that the bug is fixed before the
release.
Forgot to add: if you do not want
On Wed, Sep 22, 2010 at 06:55:30PM +0200, Luca Falavigna wrote:
Il 22/09/2010 17:55, Didier 'OdyX' Raboud ha scritto:
My RSS tells me that titantools 4.0.11-7 left NEW on 04.09.2010 02:00,
but I
can't get a trace of that anywhere on the packages.qa.d.o, on the buildd or
on
the
severity 545052 serious
merge 596954 545052 serious
thanks
On Wed, Sep 15, 2010 at 12:41:20PM +0200, Lukas Baxa wrote:
After that bastille ran also the dpkg-statoverride command
to prevent resetting the permissions on system upgrades.
However, this part fails and bastille sets the override
On Tue, Aug 31, 2010 at 03:32:48PM +0700, Sthu Deus wrote:
I have the same problem on Debian 5 (stable.testing) up-to-date:
There is a problem with the bastille version in Lenny. Unfortunately, this is
fixed currently only in the 'unstable' package you will find available at
On Sat, Jun 12, 2010 at 05:51:21PM +0100, Anthony Campbell wrote:
Package: cron
Version: 3.0pl1-112
Severity: grave
Tags: sid
Justification: renders package unusable
Cron refuses to install: error message is:
Fixed in -113 version, which was just uploaded to sid.
Regards
Javier
--
On Mon, May 31, 2010 at 07:41:46AM +0200, Yves-Alexis Perez wrote:
what's the status on this? Has the situation improved since january, or
should the removal be asked to ftpmasters?
The removal of this package should be requested.
Regards
Javier
--
To UNSUBSCRIBE, email to
On Sun, Mar 14, 2010 at 07:54:47PM +0700, Daiki Ueno wrote:
The attached patch will fix the problem (I've already sent it to the
upstream).
Thanks for the patch, I will try to test it out soon and confirm that it
indeed fixes the issue.
Regards
Javier
--
To UNSUBSCRIBE, email to
On Sat, Jan 23, 2010 at 08:53:04AM +0200, Niko Tyni wrote:
Here's a trivial patch that's in line with the new upstream version at
https://community.cisecurity.org/download/?redir=/cisco/rat-2.2-dist.sh.gz
The problem is, that the new version of rat uses CIS's terms of use which are
clearly
On Sat, Jun 27, 2009 at 05:06:31PM +0200, Hans wrote:
I am missing the script openvas-nvt-sync in this package, although it is
in the source package.
This script is part of openvas-plugins but will be included in openvas-server
since upstream is not going to provide openvas-plugins anymore.
On Sat, Apr 11, 2009 at 08:09:12PM -0400, Barry deFreese wrote:
Now that Gtk1.2 is removed we are also looking to remove glib1.2 from
the archive.
I've asked for the removal of nessus-core (see #534501) so this will not be
an issue in the long term.
Nessus-core seems to build-depend on
On Tue, May 12, 2009 at 04:53:41PM -0500, Jamie Strandboge wrote:
I then reviewed the Ubuntu and Debian packages and found that while the most
serious issue of not checking setuid() was addressed in 3.0pl1-64, checks for
setgid() and initgroups() were not added. Other distributions (eg Gentoo
On Tue, Apr 21, 2009 at 11:01:43PM +0200, Emmanuel Bouthenot wrote:
Attached is a patch which fix the bug.
Feel free to do a NMU with this fix. Regards
Javier
signature.asc
Description: Digital signature
On Fri, Mar 13, 2009 at 04:54:06PM -0400, Barry deFreese wrote:
tags 515323 + patch
thank you
Hi,
Attached is a patch that will build with Gtk 2 as well as some packaging
fixes. Probably needs better testing as Spanish is not my first
language.
I've tested the patch and there are
On Fri, Mar 13, 2009 at 04:54:06PM -0400, Barry deFreese wrote:
Attached is a patch that will build with Gtk 2 as well as some packaging
fixes. Probably needs better testing as Spanish is not my first
language.
I have played with the patch a little bit and it does not work. I fixed the
On Sun, Mar 08, 2009 at 05:33:21PM -0700, Daniel Schepler wrote:
From my pbuilder build log:
...
cc -Wall -g -O2asmping.c ssmpngcl.o ssmpingc.o joingrp.o -o asmping
cc -Wall -g -O2ssmpingd.c ssmpngcl.o ssmpingc.o -o ssmpingd
ssmpingd.c: In function 'zerosrcinterface':
tags 515323 help
thanks
On Sun, Feb 15, 2009 at 05:24:52PM +0100, Moritz Muehlenhoff wrote:
i2e build-depends on libgtk1.2-dev, which will be removed for Squeeze.
I will look at it, the maintainer is not updating this software any
more and I'm not a GTK wizard, so help in porting this would be
tags 515323 help
thanks
On Sun, Feb 15, 2009 at 12:00:10PM +0100, Moritz Muehlenhoff wrote:
Package: cheops
Severity: serious
cheops build-depends on libgtk1.2-dev, which will be removed for Squeeze.
I will look at it, the upstream maintainer is not updating this software any
more.
On Sat, Jan 31, 2009 at 09:14:36PM +0100, Vincent Fourmond wrote:
Hello,
This bug has been know for ten days now, and patched for more than a
week. I hereby express my intention to upload rather soon a NMU based on
Evgeni's and fixing also the homepage/menu problems. (Evgeni, is that
Package: etoken
Severity: serious
Version: 0.3.9-5
I have recently been contacted by etoken's upstream author (seem ail below)
and he recommends this package is removed.
From upstream's page:
This project is dead. While old copies are still available via sourceforge
file archive, the software
On Sun, Nov 09, 2008 at 11:20:20AM +0800, LI Daobing (?) wrote:
tag 505039 patch
thanks
a debdiff in attachment.
On cursory glance it looks good to me. Please feel free to NMU.
Regards
Javier
signature.asc
Description: Digital signature
On Fri, Oct 24, 2008 at 04:27:31PM +0100, Jonny Lamb wrote:
I attach my patch for my NMU 3.2.2-7.1.
Great! Thanks for NMUing. I wonder why this bug has been hidden for such a
long time and was not noticed until recently...
Regards
Javier
signature.asc
Description: Digital signature
On Sun, Oct 19, 2008 at 01:09:48PM +0200, Lucas Nussbaum wrote:
Package: acidlab
Version: 0.9.6b20-23
Severity: serious
User: [EMAIL PROTECTED]
Usertags: piuparts piuparts-20081019
Hi,
While testing packages with piuparts, I discovered the following problem with
your package, which can
On Sun, Oct 12, 2008 at 09:10:35PM +0200, Adeodato Simó wrote:
Wow, that's very unfortunate. I'm afraid there isn't really much point
in a -5 that doesn't fix the FTBFS in the rest of arches.
At least we can test if -5 really fixes the FTBFS. Things come one step at a
time.
Regards
Javier
On Sun, Oct 12, 2008 at 09:10:35PM +0200, Adeodato Simó wrote:
Do you think you'll have the time to investigate that second FTBFS?
Since a patch has been provided for that second FTBFS I'm updating the
package uploaded to mentors (including also a fix for #498615) and will
upload as soon as
On Sun, Sep 28, 2008 at 05:46:23PM +0200, Christian Perrier wrote:
(sorry, I inadvertently sent this as a maintainer upload...sorry ? javier)
Ouch...
It's ok though, thanks for the upload
Regards
Javier
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble?
On Tue, Sep 16, 2008 at 05:04:04PM +0200, Thomas Viehmann wrote:
Hi,
as documented by #435176 and then #495083 libphp-phplot has been
unusable since May 2007. In fact, it has been empty(!) since May 2008,
i.e. for over four months, with no-one actually noticing until a bug
report was filed
On Tue, Sep 16, 2008 at 10:01:19PM +0100, Adeodato Simó wrote:
Acidlab does not actually require libphp-phplot. Many users can use acidlab
without the plotting functionality.
However, acidlab Depends: on libphp-phplot, so libphp-phplot cannot be
removed. So, since I think removing
severity 341595 serious
thanks
Modifying conffiles through debconf prompts is a violation of the Debian
policy, I'm adjusting the severity of this bug (even though it's fixed now :)
Regards
Javier
signature.asc
Description: Digital signature
severity 496415 important
thanks
On Sun, Aug 24, 2008 at 10:05:29PM +0400, Dmitry E. Oboukhov wrote:
In some packages I've discovered scripts with errors which may be used
by a user for damaging important system files or user's files.
I'm fully aware of what a symlink overrun is. As for tiger,
tags 494223 upstream
thanks
This looks like a problem with the Linux kernel headers. In my i386
environment I have linux-libc-dev version 2.6.25-6, which does *not* provide
a /usr/include/linux/pim.h file.
However, linux-libc-dev version 2.6.26-2 does include it, and its definitions
do
Package: dnscache-run
Version: 1:1.05-3
Severity: grave
Tags: patch
Dnscache-run's postrm script does not properly terminate the dnscache process
because, AFAIK, it does not call properly the daemontools utility used to
terminate processes (uses 'sv' instead of 'svc').
The attached patch fixes
On Sun, Jun 29, 2008 at 11:35:10PM +0200, Philipp Kern wrote:
Package: snort
Version: 2.8.1-2
Severity: serious
There was an error while trying to autobuild your package:
gcc -DHAVE_CONFIG_H -I. -I.. -I.. -I../src -I../src/sfutil
-I/usr/include/pcap -I../src/output-plugins
severity 483160 important
thanks
On Wed, May 28, 2008 at 01:11:44AM +1000, Steffen Joeris wrote:
Package: snort
Severity: grave
Tags: security
Justification: user security hole
This is hardly a grave bug. Bypassing IDS has been possible since they were
first invented, after all they are just
Package: gnome-screensaver
Version: 2.22.2-1
Priority: serious
After upgrading from gnome-screensaver version 2.20.0-2+b1 to 2.22.2-1
I've found that whenever the screensaver starts up (due to the timeout
defined) and locks the screen I'm not presented the unlock dialog.
All I can see is
Reviewing other bug reports (specially #45 which seems related) I've
found a pointer to
http://live.gnome.org/GnomeScreensaver/FrequentlyAskedQuestions#head-d50bc17e7d6f3a51c4715f02c657195e80e26c2c
on how to generate debug information.
I'm attaching to this bug report to samples of debug
On Mon, Apr 14, 2008 at 01:41:09PM +0200, Lucas Nussbaum wrote:
Package: nessus-libraries
Version: 2.2.10-1
Severity: serious
User: [EMAIL PROTECTED]
Usertags: qa-ftbfs-20080413 qa-ftbfs
Justification: FTBFS on i386
Hi,
During a rebuild of all packages in sid, your package failed to
On Sat, Mar 15, 2008 at 01:11:56PM -0400, James Vega wrote:
This bug is still present[0] and is holding up an RC bug fix for
Snort[1] from propagating to testing. The problem looks to be two-fold.
First, the check added in 2.7.0-9 to prevent building the documentation
will fail in dirty
On Sat, Mar 15, 2008 at 04:56:18PM -0400, James Vega wrote:
On Sat, Mar 15, 2008 at 08:21:24PM +0100, Javier Fernández-Sanguino Peña
wrote:
On Sat, Mar 15, 2008 at 01:11:56PM -0400, James Vega wrote:
This bug is still present[0] and is holding up an RC bug fix for
Snort[1] from
On Sat, Mar 15, 2008 at 05:48:39PM -0400, James Vega wrote:
On Sat, Mar 15, 2008 at 08:21:24PM +0100, Javier Fernández-Sanguino Peña
wrote:
This is not the reason why the buildd daemon tries to build the
documentation. It is building it because it is calling build, and not just
build-arch
On Sat, Mar 01, 2008 at 11:49:27PM +0100, Javier Fernández-Sanguino Peña wrote:
Please file your improvements as separate patches. I don't appreciate NMUs
which change things in the packages other than the bug they are trying to
fix.
I've uploaded fortunes-es 1.29 with the fixes you suggested
On Fri, Feb 29, 2008 at 04:19:52AM +0100, Cyril Brulebois wrote:
Please find attached a diff for my NMU, to be uploaded to DELAYED/2 RSN.
I find it quite surprising that you upload a fix to 2-day NMU when I'm not in
the Low-threshold NMU list.
-Build-Depends-Indep: debhelper
+Build-Depends:
On Sun, Jan 13, 2008 at 11:49:57AM +0100, Axel Beckert wrote:
At least since updating to this version of cron on kfreebsd-amd64 (maybe
earlier), cron seems to look for the pid in /etc/crond.pid which
doesn't work. It argues about it as follows:
Ummm... there are several issues here, you should
On Sun, Jan 13, 2008 at 09:37:11PM +0100, Axel Beckert wrote:
tag 460514 + patch
thanks
Hi,
On Sun, Jan 13, 2008 at 05:38:59PM +0100, Javier Fernández-Sanguino Peña
wrote:
Ummm... there are several issues here, you should report them separately:
Ok, I'll have a closer look at LSB
Package: atftpd
Version: 0.7.dfsg-3
Priority: serious
Justification: Policy violation, section 3.6
Atftpd Provides: the 'tftpd' virtual package, but that package is not listed
in the canonical virtual packages list at
http://www.debian.org/doc/packaging-manuals/virtual-package-names-list.txt
Package: tftpd-ha
Version: 0.48-1
Priority: serious
Justification: Policy violation, section 3.6
Tftpd-ha Provides: the 'tftpd' virtual package, but that package is not listed
in the canonical virtual packages list at
http://www.debian.org/doc/packaging-manuals/virtual-package-names-list.txt
On Wed, Nov 07, 2007 at 01:45:25PM +0100, Lucas Nussbaum wrote:
Package: tiger
version: 1:3.2.1-37
Severity: serious
User: [EMAIL PROTECTED]
Usertags: qa-ftbfs-20071106 qa-ftbfs
Justification: FTBFS on i386
Hi,
During a rebuild of all packages in sid, your package failed to build on
tags 439642 -patch
thanks
On Sun, Sep 30, 2007 at 05:51:10AM +0200, Cyril Brulebois wrote:
Why the hell is a package containing .so an Architecture: all package?!
It seems to have been an omission in moving the /usr/lib contents from
snort-common to the snort binary packages.
I'd also advise
On Mon, Sep 24, 2007 at 03:59:00PM +0200, Jens Seidel wrote:
I don't want to reopen this bug but why is it OK to omit /tmp? The code
is still vulnerable. Just assume po4a is started in /tmp or in another
directory where an attcker has write access and the problem remains ...
Yes, but only in
On Tue, Sep 04, 2007 at 10:20:47AM +0200, Thijs Kinkhorst wrote:
Hi,
This is CVE-2007-3912.
Please add it (retroactively) to the changelog.
Done, will commit it in 0.35
Javier
signature.asc
Description: Digital signature
On Sat, Sep 01, 2007 at 11:16:44AM +0200, Stephan Hermann wrote:
Good Morning Gentlemen,
please find attached the debdiff to fix this FTBFS.
Thanks. I'm using this to fix the bug and will upload new packages right
away.
Javier
signature.asc
Description: Digital signature
On Sat, Sep 01, 2007 at 12:42:19PM +0200, Thomas de Grenier de Latour wrote:
The checkrestart program from debian-goodies (both latest 0.33 and
stable 0.27) allows arbitrary command execution with root privileges.
Thanks. I was not aware of this bug.
Since this program is likely launched as a
On Sun, Aug 26, 2007 at 01:26:00PM +0200, Hans-J. Ullrich wrote:
Am Sonntag 26 August 2007 schrieb Javier Fernández-Sanguino Peña:
file /usr/lib/snort_dynamicengine/libsf_engine.so.0.0.0
Hi Javier,
thank you for your fast response.
This is my output. Please take a look:
(...)
Did
On Mon, Aug 27, 2007 at 07:08:02PM +0200, Hans-J. Ullrich wrote:
sorry, which line do you mean ???
From my first mail:
Could you please try and comment the following line from your snort.conf and
restart it to see if it works?
dynamicengine /usr/lib/snort_dynamicengine/libsf_engine.so
Regards
On Sun, Aug 26, 2007 at 11:25:07AM +0200, Hans wrote:
///usr/lib/snort_dynamicengine/libsf_engine.so: wrong ELF class: ELFCLASS32
I'm not a library expert, but this bug looks like the libsf_engine.so was
built as a 32bit library, which cannot be loaded into a 64bit program. Could
you please also
On Sun, Aug 26, 2007 at 11:25:07AM +0200, Hans wrote:
Dear maintainers,
on my AMD64 X2 system the latest version inhibits to start. It is looking
like an dependency or lib related problem.
It looks like the libraries that snort needs to use are not compiled properly
in ADM64's autobuilders
Package: po4a
Version: 0.29-1
Severity: grave
Tags: security patch
If you run po4a-gettextize on contents that do not get converted to PO files
due to some issue, the script will dump its results in
/tmp/gettextization.failed.po.
The script uses a file in the /tmp diretory but does not try to
On Sat, Apr 21, 2007 at 10:44:52AM -0700, Matt Kraai wrote:
tag 419454 patch
thanks
The attached patch fixes this problem by changing fancyheadings to
fancyhdr, which, according to the author of fancyheadings, is a
99%-compatible replacement.
Thanks. I'm going to try it out and upload a
On Sat, Apr 07, 2007 at 10:08:57PM +0900, Osamu Aoki wrote:
So far, I could not be able to find any code or text marked with my
account. Javi, how did you come up with my name? May be it was just
your guess. Current checking script for translation version is now
completely yours. Some text
On Fri, Apr 06, 2007 at 11:42:15PM +0900, Osamu Aoki wrote:
Hi,
Sigh... I understand it is nice if we had copyright section but
after all this was note.
Well, now it's a document over 50 pages long (for most architectures,
anyway). So it should have its own license section.
If
On Sat, Apr 07, 2007 at 12:12:19AM +0200, Frans Pop wrote:
On Friday 06 April 2007 23:59, Javier Fernández-Sanguino Peña wrote:
a) add the GPL license, as it should have had when it moved from b-f's
CVS to the DDP
Add the whole GPL licence with all translation problems that brings?
Hmmm
On Thu, Apr 05, 2007 at 11:02:00PM +0200, Francesco Poli wrote:
Thank you for agreeing to the licensing[1], could you please tell me the
relevant years, name and (optional) e-mail address, for the copyright
notice?
Hmm... as for names and e-mail addreses I think we need to dig that
information
On Sat, Mar 24, 2007 at 05:58:27PM -0700, Steve Langasek wrote:
Anyway, if a license change was properly announced beforehand contributors
that feel that their rights are violated would have ample time to express
their concerns.
Are there really so many substantial contributors that it
tags 413458 pending
thanks
This information has been introduced now in the Release Notes. It should be
available tomorrow at
http://www.debian.org/releases/etch/i386/release-notes/ch-upgrading.en.html#s4.6.1
Please review and let us know if this is sufficient
Regards
Javier
signature.asc
On Tue, Mar 27, 2007 at 05:06:43PM -0700, Steve Langasek wrote:
So please revert the comments about 'coreutils' under 4.6.1.
Ok. Will do.
Javier
signature.asc
Description: Digital signature
1 - 100 of 210 matches
Mail list logo