Re: Processed: reassign 882223 to glibc-doc

2017-11-21 Thread Bastien ROUCARIES 
On Mon, Nov 20, 2017 at 10:14 PM, Aurelien Jarno  wrote:
> On 2017-11-20 20:51, Debian Bug Tracking System wrote:
>> Processing commands for cont...@bugs.debian.org:
>>
>> > # match possible intention of reporter
>> > reassign 882223 glibc-doc
>> Bug #882223 [manpages-dev] Document security problems with system.3 and 
>> popen.3 (argument injection)
>> Bug reassigned from package 'manpages-dev' to 'glibc-doc'.
>> No longer marked as found in versions manpages/4.13-3.
>> Ignoring request to alter fixed versions of bug #882223 to the same values 
>> previously set
>> > thanks
>> Stopping processing here.
>
> Can you please point us to what has to be fixed on the glibc-doc side?
> The system.3 and popen.3 manpages are part of manpages-dev, not
> glibc-doc.

Online copy here:
https://www.gnu.org/software/libc/manual/html_node/Pipe-to-a-Subprocess.html#Pipe-to-a-Subprocess
https://www.gnu.org/software/libc/manual/html_node/Running-a-Command.html#index-system

Does not mention security problems...


https://www.gnu.org/software/libc/manual/html_node/Line-Input.html#index-gets
for instance mention security problem




> --
> Aurelien Jarno  GPG: 4096R/1DDD8C9B
> aurel...@aurel32.net http://www.aurel32.net

Bug#754731: [glibc] Outdated debian/copyright

2014-07-13 Thread bastien ROUCARIES 
Package: glibc
Version: 2.19-7
Severity: important

debian/copyright is outdated at least against LICENSES

For isntance:
The following applies to portions of libidn/punycode.c and
libidn/punycode.h:

This file is derived from RFC 3492bis written by Adam M. Costello.

Disclaimer and license: Regarding this entire document or any
portion of it (including the pseudocode and C code), the author
makes no guarantees and is not responsible for any damage resulting
from its use.  The author grants irrevocable permission to anyone
to use, modify, and distribute it in any way that does not diminish
the rights of anyone else to use, modify, and distribute it,
provided that redistributed derivative works do not contain
misleading author or version information.  Derivative works need
not be licensed under similar terms.


Bastien


-- 
To UNSUBSCRIBE, email to debian-glibc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/3605351.14sjVkBgzi@bastien-debian