date:20130304

Bug#700915: simple-cdd: Should provide translations of the debconf prompt simple-cdd/profiles

2013-03-04 Thread Vagrant Cascadian

On Tue, Feb 19, 2013 at 10:33:30AM +0100, Raphaël Hertzog wrote:
> When you opt to not preseed simple-cdd/profiles, you get an English debconf 
> prompt.
> 
> Considering that debian-installer is very well translated, it's a bit of a
> pity to get this non-translated prompt.

The intention was to allow this template to be edited directly... and the
assumption was if someone wanted it translated, they would supply a translated
template. I didn't think of the case where a user might want to support
multiple languages with a single built simple-cdd image.

> It should not be too difficult to setup some translation infrastructure
> with po2debconf and the related tools of po-debconf.

I guess we could provide the infrastructure to translate the default template,
and if they want to edit the template they lose translations, or ideally
include a mechanism to supply a customized template and .po file as well...

live well,
  vagrant

--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#701963: simple-cdd: type-handling no longer exists, should be dropped from default.downloads

2013-03-04 Thread Vagrant Cascadian

Control: tags 701963 fixed-upstream pending

On Fri, Mar 01, 2013 at 09:14:52AM +0100, Raphaël Hertzog wrote:
> /usr/share/simple-cdd/profiles/default.downloads contains this:
> 
> # type-handling tiny package needed for xorg on most architectures
> type-handling
> 
> But type-handling has been dropped in wheezy and this leads to spurious
> error messages.

Fixed in bzr:

  525 Vagrant Cascadian 2013-03-03
  Remove type-handling from profiles/*.downloads, as it is no longer pres 
as it
  is not present in wheezy (Closes: #701963). Thanks to Raphaël Hertzog.
  === modified file 'profiles/default.downloads'
  --- profiles/default.downloads2008-11-01 05:18:22 +
  +++ profiles/default.downloads2013-03-03 18:33:42 +
  @@ -20,9 +20,6 @@
   jfsutils
   xfsprogs

  -# type-handling tiny package needed for xorg on most architectures
  -type-handling
  -
   # debian-cd uses debootstrap from the mirror
   debootstrap


  === removed file 'profiles/x-basic.downloads'
  --- profiles/x-basic.downloads2007-01-05 22:52:43 +
  +++ profiles/x-basic.downloads1970-01-01 00:00:00 +
  @@ -1,2 +0,0 @@
  -# provides "not+sparc" dependency for xorg
  -type-handling


Will try and get into wheezy...


live well,
  vagrant


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#701998: simple-cdd: --keyboard parameter doesn't work with wheezy

2013-03-04 Thread Vagrant Cascadian

Control: tags 701998 fixed-upstream pending

On Fri, Mar 01, 2013 at 03:25:41PM +0100, Raphaël Hertzog wrote:
> The keyboard parameter sets the following kernel parameter:
> console-keymaps-at/keymap=$keyboard
> 
> With wheezy (and newer), one should use
> "keymap=$keyboard" or "keyboard-configuration/xkb-keymap=$keyboard".

This is fixed upstream in bzr, which contains both the old and new values, to
allow building both older and newer images:

  524 Vagrant Cascadian 2012-12-07
  Use newer preseeding for setting keyboard layout from KERNEL_PARAMS. 
Thanks to
  Gustavo Ortiz Uriburu for the patch.
  === modified file 'build-simple-cdd'
  --- build-simple-cdd  2012-12-07 23:16:19 +
  +++ build-simple-cdd  2012-12-07 23:22:46 +
  @@ -468,7 +468,7 @@

   if [ -n "$keyboard" ]; then
 echo "setting default keyboard..."
  -  KERNEL_PARAMS="$KERNEL_PARAMS console-keymaps-at/keymap=$keyboard"
  +  KERNEL_PARAMS="$KERNEL_PARAMS console-keymaps-at/keymap=$keyboard 
keyboard-configuration/xkb-keymap=$keyboard 
keyboard-configuration/layout=$keyboard"
 echo "KERNEL_PARAMS: $KERNEL_PARAMS"
   fi

Might try and get a fixed package in for wheezy... presuming setting all those
values don't conflict somehow.


live well,
  vagrant


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#592135: ITP: color -- create ANSI escape codes to color shell output

2013-03-04 Thread Jari Aalto


Yogesh,

The ITP at  is
from 2011-09-25.

Please let me know if there is anything that should delay packaging this
software. I'm planning to mark this bug "noowner" and ITP it in a short
while.

Jari


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#701227: [Pkg-nagios-devel] Bug#701227: nagios-nrpe: CVE-2013-1362: allows the passing of $() as command arguments to execute shell commands

2013-03-04 Thread Alexander Wirt

Salvatore Bonaccorso schrieb am Sunday, den 03. March 2013:

> Control: tags -1 + patch
> 
> Hi Alex
> 
> On Sat, Feb 23, 2013 at 01:19:14PM +0100, Alexander Wirt wrote:
> > On Sat, 23 Feb 2013, Salvatore Bonaccorso wrote:
> > 
> > > On Sat, Feb 23, 2013 at 08:33:20AM +0100, Salvatore Bonaccorso wrote:
> > > > In the debian package we have explicitly --enable-command-args so the
> > > > Debian packages looks affected.
> > > 
> > > But needs to be explicitly enabled in /etc/nagios/nrpe.cfg, should be
> > > added to the above.
> > Yeah we disable that feature by default and add some big warnings to the
> > documentation. Nobody ever thought that command-args via nrpe are secure. 
> 
> How about dissalowing $() completly if command arguments in case are
> enabled? I tried to extract the relevant part, see attached debdiff.
> But it's not yet tested.
In fact it looks like the patch on my disk :). I am sorry for not handling
this earlier, but our new bathroom took my whole spare time in the last
weeks.

It should be better this week.

Alex
-- 
Alexander Wirt, formo...@formorer.de 
CC99 2DDD D39E 75B0 B0AA  B25C D35B BC99 BC7D 020A


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702216: filezilla: No program has been associated on your system with this file type

2013-03-04 Thread Daniel Phillips

Package: filezilla
Version: 3.6.0.2-1
Severity: normal

Dear Maintainer,

On trying to open files from the local directory tree in filezilla the file did 
not have an association. 
Desktop - KDE

Reproduce:
1. Right Click a file in local directory tree and choose open

File types tried pdf, avi, mkv, tar.gz, php

Expected  - open file
Result error - The file '' could not be opened:No program 
has been associated on your system with this file type

Settings, Filetype associations: 
pdf "/usr/bin/okular" -open
php "/usr/bin/kate" -open
avi "/usr/bin/smplayer" -open ## have tried play

tried with inherit checked and not checked
tried without -open or -play

This seems to be a KDE Desktop related issue, I could not reproduce in Openbox

Kind Regards,

Daniel




-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_ZA.UTF-8, LC_CTYPE=en_ZA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages filezilla depends on:
ii  filezilla-common3.6.0.2-1
ii  libatk1.0-0 2.4.0-2
ii  libc6   2.13-38
ii  libcairo2   1.12.2-3
ii  libdbus-1-3 1.6.8-1
ii  libfontconfig1  2.9.0-7.1
ii  libfreetype62.4.9-1.1
ii  libgcc1 1:4.7.2-5
ii  libgdk-pixbuf2.0-0  2.26.1-1
ii  libglib2.0-02.33.12+really2.32.4-5
ii  libgnutls26 2.12.20-4
ii  libgtk2.0-0 2.24.10-2
ii  libidn111.25-2
ii  libpango1.0-0   1.30.0-1
ii  libsqlite3-03.7.15.2-1
ii  libstdc++6  4.7.2-5
ii  libtinyxml2.6.2 2.6.2-1
ii  libwxbase2.8-0  2.8.12.1-12
ii  libwxgtk2.8-0   2.8.12.1-12

Versions of packages filezilla recommends:
ii  xdg-utils  1.1.0~rc1+git20111210-6

filezilla suggests no packages.

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#678353: Error still occurs with older libc6

2013-03-04 Thread Benjamin Eikel

Hello,

I downgraded libc6 to 2.13-38 on the machine were the error occurs, but the 
error is still there.

Kind regards
Benjamin


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#700015: libx11-6: crashes on systems using Mali graphics

2013-03-04 Thread Сергей И . Королев

in my instalation gnome-shell, empathy, evolution, emerillon and some
other application affected to this bug. i think about system way
workaround. how about patch libMali.so to call XInitThreads in init
after library loaded?

2013/3/4 Michal Suchanek :
> Hello
>
> I moved gnome-shell to /usr/local/bin and use this script instead:
>
> #!/bin/sh
> gdb -ex 'break main' -ex  'r' -ex 'call XInitThreads()' -ex 'c' -ex
> 'bt full' -ex 'quit' --args /usr/local/bin/gnome-shell.distrib "$@"
>
>
> HTH
>
> Michal


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#648766: (no subject)

2013-03-04 Thread Raúl Porcel

Any updates on this?

I get the same problem using Gentoo on a T2000.

Thanks!


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#698562: pdns-backend-{my, pg}sql: fails to upgrade from squeeze: mysqldump: Got error: 1049: Unknown database 'pdns' when selecting the database

2013-03-04 Thread Marc Haber

severity #698562 wishlist
retitle #698562 upgrade from squeeze => wheezy fails if database has not been 
created  before the upgrade
thanks

Hi Andreas,

thanks for reacting so fast.

On Sun, Mar 03, 2013 at 09:52:18PM +0100, Andreas Beckmann wrote:
> On 2013-03-03 21:28, Marc Haber wrote:
> > piuparts does not bother to create a database before trying the
> > upgrade, installs a broken pdns which never worked on squeeze, and
> > only notices this after trying to upgrade to wheezy.
> 
> If database creation is trivially scriptable, I could add a
> pre_install/post_install hook script to piuparts to do this (if someone
> supplies such a script).

For MySQL, you just neeed to create database pdns and pipe the file
p/usr/share/doc/pdns-backend-mysql/mysql.sql into a mysql instance.
Then you generate a few lines of configuration and you're fine. I am
not sure whether one needs at least one domain and SOA record in the
database for PowerDNS to be truly operational.

After the update, it is necessary to remove the configuration
generated at squeeze installation.

And one needs to use some magic with database passwords. I doubt that
a noninteractive install of the backend package is going to ever
succeed.

And, there is #681248 which is possibily going to kill automatic
updates as well. Unfortunately, PowerDNS is not an example of
robustness when it comes to configuration syntax, but thankfully, it
is only used by experienced administrators who know how to address
such issues.

> > It would of course be possible to catch this situation during the
> > upgrade to wheezy and to assume a fresh install. Otoh, this is a
> > pathological case. Noone would install a DNS server and have it run
> > in a broken, non functional state. Please comment whether it would be
> > acceptable to flag this as a bug in squeeze's pdns and downgrade it to
> > normal or even wishlist.
> 
> Since installation in squeeze succeeded I assumed the package was
> actually functional.

Unfortunately, it is not.

> Feel free to downgrade the severity, but keep the bug found in the
> wheezy version s.t. piuparts-analyze can classify this as a known and
> bugged failure.

Done.

> > I would accept a patch that would make wheezy's PowerDNS fail more
> > gracefully on an unconfigured squeeze database on update, but at the
> > moment I have to say that I am not going to spend my time on
> > developing a work-around for a pathological synthetic test case and do
> > sincerely apologize for that.
> 
> That's OK. This "pathological synthetic test case" works fine for most
> packages, and will work for pdns/wheezy.

In pdns/wheezy it won't be pathological any more since it will start
with a functional database.

Greetings
Marc

-- 
-
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany  |  lose things."Winona Ryder | Fon: *49 621 31958061
Nordisch by Nature |  How to make an American Quilt | Fax: *49 621 31958062

-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702217: CVE-2013-1812: DoS

2013-03-04 Thread Moritz Muehlenhoff

Package: ruby-openid
Severity: grave
Tags: security
Justification: user security hole

This was assigned CVE-2013-1812:
https://github.com/openid/ruby-openid/pull/43

Patch:
https://github.com/openid/ruby-openid/commit/a3693cef06049563f5b4e4824f4d3211288508ed

Cheers,
Moritz


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702218: java.lang.IllegalAccessException after update of openjdk-6-jre

2013-03-04 Thread Matthias Faulstich

Package: openjdk-6-jdk:amd64
Version: 6b27-1.12.3-1

Hello!

After todays update to the new version of openjdk-6 I get following exception 
in 
a JUnit-Test of my project.
This exception has not been thrown in the previous version.
The actual version 7u3-2.1.6-1 of openjdk-7 doesn't throw this exception with 
the same project code.


04.03.2013 09:17:16 com.sun.corba.ee.impl.javax.rmi.CORBA.Util 
WARNUNG: "IOP00711413: (INTERNAL) Could not find the expected Value Handler 
implementation in the JDK: Wrong JDK Version?"
org.omg.CORBA.INTERNAL:   vmcid: SUN  minor code: 1413  completed: No
at 
com.sun.corba.ee.impl.logging.UtilSystemException.couldNotFindJdkValueHandler(UtilSystemException.java:1045)
at 
com.sun.corba.ee.impl.logging.UtilSystemException.couldNotFindJdkValueHandler(UtilSystemException.java:1063)
at com.sun.corba.ee.impl.javax.rmi.CORBA.Util.(Util.java:178)
at 
com.sun.corba.ee.impl.orbutil.ORBUtility.getMaxStreamFormatVersion(ORBUtility.java:777)
at 
com.sun.corba.ee.impl.servicecontext.MaxStreamFormatVersionServiceContextImpl.(MaxStreamFormatVersionServiceContextImpl.java:60)
at 
com.sun.corba.ee.impl.servicecontext.MaxStreamFormatVersionServiceContextImpl.(MaxStreamFormatVersionServiceContextImpl.java:55)
at 
com.sun.corba.ee.spi.servicecontext.ServiceContextDefaults.getMaxStreamFormatVersionServiceContext(ServiceContextDefaults.java:135)
at 
com.sun.corba.ee.impl.protocol.CorbaClientRequestDispatcherImpl.(CorbaClientRequestDispatcherImpl.java:145)
at 
com.sun.corba.ee.spi.protocol.RequestDispatcherDefault.makeClientRequestDispatcher(RequestDispatcherDefault.java:63)
at 
com.sun.corba.ee.impl.orb.ORBConfiguratorImpl.initRequestDispatcherRegistry(ORBConfiguratorImpl.java:530)
at 
com.sun.corba.ee.impl.orb.ORBConfiguratorImpl.configure(ORBConfiguratorImpl.java:158)
at com.sun.corba.ee.impl.orb.ORBImpl.postInit(ORBImpl.java:632)
at com.sun.corba.ee.impl.orb.ORBImpl.set_parameters(ORBImpl.java:701)
at org.omg.CORBA.ORB.init(ORB.java:354)
at com.sun.enterprise.util.ORBManager.initORB(ORBManager.java:546)
at com.sun.enterprise.util.ORBManager.getORB(ORBManager.java:278)
at 
com.sun.enterprise.naming.SerialInitContextFactory.getInitialContext(SerialInitContextFactory.java:178)
at 
javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:684)
at 
javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:305)
at javax.naming.InitialContext.init(InitialContext.java:240)
at javax.naming.InitialContext.(InitialContext.java:192)
at 
org.eclipse.persistence.sessions.JNDIConnector.getContext(JNDIConnector.java:149)
at 
org.eclipse.persistence.sessions.JNDIConnector.connect(JNDIConnector.java:117)
at 
org.eclipse.persistence.sessions.JNDIConnector.connect(JNDIConnector.java:94)
at 
org.eclipse.persistence.sessions.DatasourceLogin.connectToDatasource(DatasourceLogin.java:164)
at 
org.eclipse.persistence.internal.sessions.DatabaseSessionImpl.loginAndDetectDatasource(DatabaseSessionImpl.java:570)
at 
org.eclipse.persistence.internal.jpa.EntityManagerFactoryProvider.login(EntityManagerFactoryProvider.java:209)
at 
org.eclipse.persistence.internal.jpa.EntityManagerSetupImpl.deploy(EntityManagerSetupImpl.java:246)
at 
org.eclipse.persistence.internal.jpa.EntityManagerFactoryImpl.getServerSession(EntityManagerFactoryImpl.java:69)
at 
org.eclipse.persistence.internal.jpa.EntityManagerFactoryImpl.createEntityManagerImpl(EntityManagerFactoryImpl.java:118)
at 
org.eclipse.persistence.internal.jpa.EntityManagerFactoryImpl.createEntityManagerImpl(EntityManagerFactoryImpl.java:112)
at 
org.eclipse.persistence.internal.jpa.EntityManagerFactoryImpl.createEntityManager(EntityManagerFactoryImpl.java:100)
at 
cafm.reporting.consumption.ConsumptionDBQueries.getEntityManager(ConsumptionDBQueries.java:23)
at 
cafm.reporting.consumption.ConsumptionDBQueries.getReFunctiounitByName(ConsumptionDBQueries.java:116)
at cafm.reporting.consumption.TestUtils.(TestUtils.java:31)
at 
cafm.reporting.consumption.converter.TestConsumptionByFuEtTableModelToDefaultCategoryDatasetConverter.init(TestConsumptionByFuEtTableModelToDefaultCategoryDatasetConverter.java:19)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at 
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:616)
at 
org.junit.runners.model.FrameworkMethod$1.runReflectiveCall(FrameworkMethod.java:44)
at 
org.junit.internal.runners.model.ReflectiveCallable.run(ReflectiveCallable.java:15)
at 
org.junit.runners.model.FrameworkMethod.invokeExplosively(Framewo

Bug#702219: ruby-passenger: CVE-2012-6135

2013-03-04 Thread Moritz Muehlenhoff

Package: ruby-passenger
Severity: important
Tags: security

Please see 
http://www.openwall.com/lists/oss-security/2013/03/01/7
http://www.openwall.com/lists/oss-security/2013/03/02/1

Cheers,
Moritz


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#700915: simple-cdd: Should provide translations of the debconf prompt simple-cdd/profiles

2013-03-04 Thread Raphael Hertzog

Hi,

On Sun, 03 Mar 2013, Vagrant Cascadian wrote:
> On Tue, Feb 19, 2013 at 10:33:30AM +0100, Raphaël Hertzog wrote:
> > When you opt to not preseed simple-cdd/profiles, you get an English debconf 
> > prompt.
> > 
> > Considering that debian-installer is very well translated, it's a bit of a
> > pity to get this non-translated prompt.
> 
> The intention was to allow this template to be edited directly... and the
> assumption was if someone wanted it translated, they would supply a translated
> template.

So the user should rebuild simple-cdd and provide an updated version via
local_packages? That was the idea?

> > It should not be too difficult to setup some translation infrastructure
> > with po2debconf and the related tools of po-debconf.
> 
> I guess we could provide the infrastructure to translate the default template,
> and if they want to edit the template they lose translations, or ideally
> include a mechanism to supply a customized template and .po file as well...

What I wonder is why you didn't put the templates at its usual place in
debian/simple-cdd-profiles.templates and then it's trivial to use the
po-debconf stuff for this.

Cheers,
-- 
Raphaël Hertzog ◈ Debian Developer

Get the Debian Administrator's Handbook:
→ http://debian-handbook.info/get/


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#701536: RM: subsurface -- RoQA; unmaintained package, maintainer MIA

2013-03-04 Thread Robert C. Helling


On Sun, 3 Mar 2013, John Paul Adrian Glaubitz wrote:


On 03/03/2013 10:35 PM, Cristian Ionescu-Idbohrn wrote:

On Sun, 3 Mar 2013, John Paul Adrian Glaubitz wrote:


The license issue was just an example (hence the braces). The reasoning is
that the Debian packaging is supposed to be independent of upstream,
especially since we cannot always follow upstream, during a freeze, for
example.
Assume we have version 3.0 in Debian and upstream has 3.5 and we're 
frozen.

During the freeze, someone discovers a nasty bug in subsurface which is
considered RC (release critical) in Debian, but gets fixed in 3.5.1 
upstream.


What about upstream keeping stuff on release branches (3.0, 3.0.2, 3.5,
and so on)?  And doing that sort of backporting patches themselfs?  How
much would that help with packaging?


Yes, but that would always mean Debian somehow depends on upstream which is 
not really a desired situation. As I said, we cannot always keep up with 
upstream for various reasons. Debian-specific changes through patches are not 
uncommon and it doesn't always make sense to adopt the changes upstream.


Am I right to state that for subsurface currently it is a primary goal to 
have some .deb package that could be hosted on the subsurface web server 
and which more or less tracks our releases? Getting included in the Debian 
distribution with not too old versions is also nice but more important on 
an intermediate time scale. I.e. what is currently needed is some 
tool-chain which turns (semi-automatically, that is, usable by a 
non-Debina-guru) sources that are not too different from the current state 
into a distributable .deb.


Best
Robert

--
.oOo.oOo.oOo.oOo.oOo.oOo.oOo.oOo.oOo.oOo.oOo.oOo.oOo.oOo.oOo.oOo.oOo.oOo.oOo.oO
Robert C. Helling Elite Master Course Theoretical and Mathematical Physics
  Scientific Coordinator
  Ludwig Maximilians Universitaet Muenchen, Dept. Physik
print "Just another   Phone: +49 89 2180-4523  Theresienstr. 39, rm. B339
stupid .sig\n";   http://www.atdotde.de


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702002: [Pkg-mailman-hackers] Bug#702002: mailman: Init script produces "Error in sys.excepthook" in list_lists

2013-03-04 Thread Thorsten Glaser

On Fri, 1 Mar 2013, Cedric Knight wrote:

> On running
>/etc/init.d/mailman start

> close failed in file object destructor:
> Error in sys.excepthook:

I think I committed this in r731 already but didn’t upload
due to the freeze. Can you please test that the following
patch fixes your problem?

Index: trunk/debian/mailman.init
===
--- trunk/debian/mailman.init   (revision 730)
+++ trunk/debian/mailman.init   (revision 731)
@@ -44,15 +44,21 @@
exit 0;
 fi
 
+# Just a newline.
+nl='
+'
+
 case "$1" in
   start)
 SITE_LIST=$( sed -rne 
"s/^[[:space:]]*MAILMAN_SITE_LIST[[:space:]]*=[[:space:]]*(['\"])([^'\"]+)\\1/\\2/p"
 /etc/mailman/mm_cfg.py )
 [ -n "$SITE_LIST" ] || SITE_LIST='mailman'
-if ! /var/lib/mailman/bin/list_lists -b | grep -q "^${SITE_LIST}$"; then
+case "$nl$(/var/lib/mailman/bin/list_lists -b)" in
+(*$nl$SITE_LIST$nl*) ;;
+(*)
 log_warning_msg "Site list for mailman missing (looking for list named 
'${SITE_LIST}')."
 log_warning_msg "Please create it; until then, mailman will refuse to 
start."
-exit 0;
-fi
+exit 0 ;;
+esac
 log_daemon_msg "Starting Mailman master qrunner" "mailmanctl"
 if $DAEMON -s -q start; then
 log_end_msg 0
Index: trunk/debian/changelog
===
--- trunk/debian/changelog  (revision 730)
+++ trunk/debian/changelog  (revision 731)
@@ -1,3 +1,9 @@
+mailman (1:2.1.15-2) UNRELEASED; urgency=low
+
+  * Prevent losing stderr in the init script when there are many lists.
+
+ -- Thorsten Glaser   Sun, 23 Sep 2012 22:11:28 +0200
+
 mailman (1:2.1.15-1) unstable; urgency=low
 
   * New upstream release.

Thanks,
//mirabilos
-- 
tarent solutions GmbH
Rochusstraße 2-4, D-53123 Bonn • http://www.tarent.de/
Tel: +49 228 54881-393 • Fax: +49 228 54881-314
HRB 5168 (AG Bonn) • USt-ID (VAT): DE122264941
Geschäftsführer: Boris Esser, Sebastian Mancke


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#700015: libx11-6: crashes on systems using Mali graphics

2013-03-04 Thread Michal Suchanek

On 4 March 2013 09:17, Сергей И. Королев  wrote:
> in my instalation gnome-shell, empathy, evolution, emerillon and some
> other application affected to this bug. i think about system way
> workaround. how about patch libMali.so to call XInitThreads in init
> after library loaded?
>

That's presumably possible but you will have to binary-patch the
library. There is no source.

Also it's good idea to try the workaround with gdb to make sure you
really have the same problem.

Thanks

Michal


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#701817: unblock: botan1.10/1.10.5-1

2013-03-04 Thread Ondřej Surý

Package: release.debian.org
Followup-For: Bug #701817
User: release.debian@packages.debian.org
Usertags: unblock

And the patches...

-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
#
#
# patch "src/pubkey/dh/dh.cpp"
#  from [87394105b44ac22e9f8727335586b5ae9c95acbb]
#to [fd216f648a465f32e2626653acd54b4a36e27d97]
#

--- src/pubkey/dh/dh.cpp	87394105b44ac22e9f8727335586b5ae9c95acbb
+++ src/pubkey/dh/dh.cpp	fd216f648a465f32e2626653acd54b4a36e27d97
@@ -87,6 +87,9 @@ SecureVector DH_KA_Operation::agre
{
BigInt input = BigInt::decode(w, w_len);
 
+   if(input <= 1 || input >= p - 1)
+  throw Invalid_Argument("DH agreement - invalid key provided");
+
BigInt r = blinder.unblind(powermod_x_p(blinder.blind(input)));
 
return BigInt::encode_1363(r, p.bytes());

Bug#701817: unblock: botan1.10/1.10.5-1

2013-03-04 Thread Ondřej Surý

Package: release.debian.org
Followup-For: Bug #701817
User: release.debian@packages.debian.org
Usertags: unblock

Hi,

I know this is a bold move to ask for inclusion of new upstream
release, but I have checked individual patches between 1.10.3 and
1.10.5 and those non-security is only a small cruft which can be (in
my opinion) safely included.  So I would like to avoid a confusion of
our users to create 1.10.3 with most of the patches between 1.10.3 and
1.10.5.

In case you will reject this, I will take the SECURITY PATCHES part
and upload it via t-p-u.  I would like to avoid it, but I am prepared
to do that.

Apart from full debdiff I am also including these individual patches:

SECURITY PATCHES

check_for_out_of_range_DH_values.patch
[mtnlog] Check for DH inputs out of range, was removed in the pk_op refactoring.

fix_potential_crash_in_AES-NI.patch
[chglog] A potential crash in the AES-NI implementation of the AES-192 key 
schedule (caused by misaligned loads) has been fixed.
[mtnlog] Avoid a potentially unaligned __m128i load in the AES-NI 
implementation of the AES-192 key schedule.

fix_side_channel_attack_in_power_mod.patch
[chglog] Avoid a conditional operation in the power mod
 implementations on if a nibble of the exponent was zero or
 not. This may help protect against certain forms of side
 channel attacks.
[mtnlog] Avoid a conditional in the power mod implementations on if
 the nibble is zero or not. Likely an attacker would still be
 able to tell if it was zero or not, especially for fixed
 window where we just multiply by 1, but it can't hurt.

fix_timing_attack_in_montgomery.patch
[chglog] A previously conditional operation in Montgomery
 multiplication and squaring is now always performed, removing
 a possible timing channel.
[mntlog] Always perform the add/subtract even if the final value would
 end up being zero, so our timing does not depend on the
 input.

reject_invalid_SRP_values.patch
[chglog] The SRP6 code was checking for invalid values as specified in
 RFC 5054, specifically values equal to zero mod p. However
 SRP would accept negative A/B values, or ones larger than p,
 neit her of which should occur in a normal run of the
 protocol. These values are now rejected. Credits to Timothy
 Prepscius for pointing out these values are not normally used
 and probably signal something fishy.
[mtnlog] In SRP reject values that are negative or larger than p -
 this is safe to accept but still likely bogus. And doing two
 compares is cheaper than a modular reduction so a win there
 as well.


RANDOM CRUFT

clang_parameters.patch
[chglog] Use correct flags for creating a shared library on OS X under
 Clang.
[mtnlog] Use correct Darwin/Clang dynamic link flags
[doesn't affect any compiled code]

version_bump.patch
- Just stuff related to version bump (e.g. version numbers and changelog)
[doesn't affect any compiled code]

deleted_obsolete_examples.patch
- Drop obsolete CMS examples
[doesn't affect any compiled code]

VC++2012_incompatibility_fix.patch
[chglog] Fix a compile time incompatability with Visual C++ 2012.
[mtnlog] Attempted fix at compile time incompatability with VC 2012
[some C++ dark magick, but should not affect anything]

make_version_string_fixed.patch
[chglog] The return value of version_string is now a compile time
 constant string, so version information can be more easily
 extracted from binaries.
[mtnlog] Make the result of version_string a compile time constant
 string, so we can find the complete value by running strings
 on a binary file.
[mtnlog] Handle gcc -dumpversion producing only two numbers. Bug 215.
[looks harmless to me]

unblock botan1.10/1.10.5-1

-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#700015: libx11-6: crashes on systems using Mali graphics

2013-03-04 Thread Сергей И . Королев

I have idea use objcopy to rename original _init symbol, make new init
function with call XInitThreads and original init and change entry
point of library. How to do it I'll write about the results.

2013/3/4 Michal Suchanek :
> On 4 March 2013 09:17, Сергей И. Королев  wrote:
>> in my instalation gnome-shell, empathy, evolution, emerillon and some
>> other application affected to this bug. i think about system way
>> workaround. how about patch libMali.so to call XInitThreads in init
>> after library loaded?
>>
>
> That's presumably possible but you will have to binary-patch the
> library. There is no source.
>
> Also it's good idea to try the workaround with gdb to make sure you
> really have the same problem.
>
> Thanks
>
> Michal


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702052: visualvm: Please package visualvm 1.3.5

2013-03-04 Thread Paweł Pałucha

> An updated version in Debian would be great.  Since this is a
> team-maintained package, I went ahead and uploaded the existing
> packaging to the pkg-java git repo on Alioth to make it easier to
> collaborate.  The packaging URL is:
>
> git://git.debian.org/git/pkg-java/visualvm.git
>
> If you do prepare an update, please consider using the packaging repo.

I checked that it will require also update of NetBeans platform. So
it's not going to be as easy as I thought, but I'll try to work on it.
Thanks for the answer!
Paweł


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#701817: unblock: botan1.10/1.10.5-1

2013-03-04 Thread Ondřej Surý

Package: release.debian.org
Followup-For: Bug #701817
User: release.debian@packages.debian.org
Usertags: unblock

Don't press ENTER after adding patch.

-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
#
#
# patch "src/pubkey/dh/dh.cpp"
#  from [87394105b44ac22e9f8727335586b5ae9c95acbb]
#to [fd216f648a465f32e2626653acd54b4a36e27d97]
#

--- src/pubkey/dh/dh.cpp	87394105b44ac22e9f8727335586b5ae9c95acbb
+++ src/pubkey/dh/dh.cpp	fd216f648a465f32e2626653acd54b4a36e27d97
@@ -87,6 +87,9 @@ SecureVector DH_KA_Operation::agre
{
BigInt input = BigInt::decode(w, w_len);
 
+   if(input <= 1 || input >= p - 1)
+  throw Invalid_Argument("DH agreement - invalid key provided");
+
BigInt r = blinder.unblind(powermod_x_p(blinder.blind(input)));
 
return BigInt::encode_1363(r, p.bytes());
diff --git a/src/build-data/cc/clang.txt b/src/build-data/cc/clang.txt
index e5d52db..cbcfd89 100644
--- a/src/build-data/cc/clang.txt
+++ b/src/build-data/cc/clang.txt
@@ -27,6 +27,8 @@ visibility_attribute '__attribute__((visibility("default")))'
 
 # The default works for GNU ld and several other Unix linkers
 default -> "$(CXX) -shared -fPIC -Wl,-soname,$(SONAME)"
+
+darwin  -> "$(CXX) -dynamiclib -fPIC -install_name $(LIBDIR)/$(SONAME)"
 
 
 
diff --git a/doc/examples/cms_dec.cpp b/doc/examples/cms_dec.cpp
deleted file mode 100644
index 84355fb..000
--- a/doc/examples/cms_dec.cpp
+++ /dev/null
@@ -1,120 +0,0 @@
-/*
-* (C) 2009 Jack Lloyd
-*
-* Distributed under the terms of the Botan license
-*/
-
-#include 
-#include 
-#include 
-using namespace Botan;
-
-#include 
-#include 
-
-int main(int argc, char* argv[])
-   {
-   if(argc != 2)
-  {
-  std::cout << "Usage: " << argv[0] << " \n";
-  return 1;
-  }
-
-   Botan::LibraryInitializer init;
-
-   try {
-  AutoSeeded_RNG rng;
-
-  X509_Certificate mycert("mycert.pem");
-  PKCS8_PrivateKey* mykey = PKCS8::load_key("mykey.pem", rng, "cut");
-
-  X509_Certificate yourcert("yourcert.pem");
-  X509_Certificate cacert("cacert.pem");
-  X509_Certificate int_ca("int_ca.pem");
-
-  X509_Store store;
-  store.add_cert(mycert);
-  store.add_cert(yourcert);
-  store.add_cert(cacert, true);
-  store.add_cert(int_ca);
-
-  DataSource_Stream message(argv[1]);
-
-  CMS_Decoder decoder(message, store, mykey);
-
-  while(decoder.layer_type() != CMS_Decoder::DATA)
- {
- CMS_Decoder::Status status = decoder.layer_status();
- CMS_Decoder::Content_Type content = decoder.layer_type();
-
- if(status == CMS_Decoder::FAILURE)
-{
-std::cout << "Failure reading CMS data" << std::endl;
-break;
-}
-
- if(content == CMS_Decoder::DIGESTED)
-{
-std::cout << "Digested data, hash = " << decoder.layer_info()
-  << std::endl;
-std::cout << "Hash is "
-  << ((status == CMS_Decoder::GOOD) ? "good" : "bad")
-  << std::endl;
-}
-
- if(content == CMS_Decoder::SIGNED)
-{
-// how to handle multiple signers? they can all exist within a
-// single level...
-
-std::cout << "Signed by " << decoder.layer_info() << std::endl;
-//std::cout << "Sign time: " << decoder.xxx() << std::endl;
-std::cout << "Signature is ";
-if(status == CMS_Decoder::GOOD)
-   std::cout << "valid";
-else if(status == CMS_Decoder::BAD)
-   std::cout << "bad";
-else if(status == CMS_Decoder::NO_KEY)
-   std::cout << "(cannot check, no known cert)";
-std::cout << std::endl;
-}
- if(content == CMS_Decoder::ENVELOPED ||
-content == CMS_Decoder::COMPRESSED ||
-content == CMS_Decoder::AUTHENTICATED)
-{
-if(content == CMS_Decoder::ENVELOPED)
-   std::cout << "Enveloped";
-if(content == CMS_Decoder::COMPRESSED)
-   std::cout << "Compressed";
-if(content == CMS_Decoder::AUTHENTICATED)
-   std::cout << "MACed";
-
-std::cout << ", algo = " << decoder.layer_info() << std::endl;
-
-if(content == CMS_Decoder::AUTHENTICATED)
-   {
-   std::cout << "MAC status is ";
-   if(status == CMS_Decoder::GOOD)
-  std::cout << "valid";
-   else if(status == CMS_Decoder::BAD)
-  std::cout << "bad";
-   else if(status == CMS_Decoder::NO_KEY)
-  std::cout << "(cannot check, no key)";
-   s

Bug#698829: kernel swap after upgrade to 3.2.23-1~bpo60+2

2013-03-04 Thread Daniele Melosi

Hi,

after kernel upgrade i've the following situation:

after 2 days of uptime:
 08:41:41 up 2 days, 14:56,  0 users,  load average: 13.07, 13.83, 13.65
size-192(DMA)  0  0192   201 : tunables  120   60
 8 : slabdata  0  0  0
size-192   35599  83060192   201 : tunables  120   60
 8 : slabdata   4153   4153273

after 6 days of uptime:
 08:41:41 up 6 days,  1:56,  0 users,  load average: 16.60, 15.22, 14.48
size-192(DMA)  0  0192   201 : tunables  120   60
 8 : slabdata  0  0  0
size-192  1780288 1799240192   201 : tunables  120   60
   8 : slabdata  89962  89962256

As you can see the size-192 is increasing and after the 7th days the
server start swapping.

The server is a shared hosting linux with apache + cgi-wrapper and has a
lots of entries in /proc/mounts:

# wc -l /proc/mounts
329219 /proc/mounts

On 28/01/2013 05:42, Ben Hutchings wrote:
> Control: tag -1 moreinfo
> 
> On Thu, 2013-01-24 at 09:11 +0100, Daniele Melosi wrote:
>> Package: linux-image-3.2.0-0.bpo.3-amd64
>> Version: 3.2.23-1~bpo60+2
> 
> This is quite a few months out of date and there have been many bug
> fixes since then.  Please upgrade to linux-image-3.2.0-0.bpo.4-amd64
> version 3.2.35-2~bpo60+1 and report whether the bug remains.
> 
>> In a linux web server (a LAMP architecture) after upgrade the kernel
>> version to the backport one, the system start swapping after a week of
>> utilization.
>>
>> In /proc/slapinfo the main difference is in size-192:
>>
>> after reboot:
>> size-1923363   3980192   201 : tunables  120   60
>>  8 : slabdata199199209
>>
>> after 2 weeks:
>> size-192  39806000 39806000192   201 : tunables  120
>> 608 : slabdata 1990300 1990300131
> 
> A fairly clear memory leak, but sadly it's not obvious what is leaking.
> 
> Please send the output of:
> - lsmod
> - lspci
> - dmesg
> 
>> I'm using debian 6.0.2 with backported kernel (3.2.23-1~bpo60+2) and
>> libc6 2.11.3-3.
> 
> Ben.
> 


-- 
Daniele Melosi


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702195: symlink conffiles are not supported, causing problems for dpkg on upgrade/removal and incorrect debsums reports

2013-03-04 Thread Julien Cristau

On Sun, Mar  3, 2013 at 22:53:50 +0100, Michael Biebl wrote:

> found 690067 3.3.5-3
> thanks
> 
> I quickly talked to algernon on IRC and did let him know that the
> proposed fix to use real conffiles for the systemd symlinks is not good.
> symlinks in .wants directories should never be real files.
> That will only cause problems in the future.
> 
That sounds so terribly wrong...

Cheers,
Julien


signature.asc
Description: Digital signature

Bug#688966: Bug#677795: Bug#688966: Review midgard2-core package

2013-03-04 Thread Piotr Pokora

Hi!

> So, php5-midgard2 would need just a rebuild to pick up the new library
> name, together with uploading of midgard2-core. The mentors link of
> php5-midgard2 has expired, but if I recall correctly Piotr had only
> indeed put it there with a changelog entry like "rebuild", so there are
> no actual packaging changes needed.

Exactly. There are no  changes made to php5-midgard2 package, so it
only requires rebuild against fixed[0] midgard2-core package.

[0]: http://ftp-master.debian.org/new/midgard2-core_10.05.7.1-2.html

Piotras


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#694443: pep8: New upstream release: 1.3.3

2013-03-04 Thread David Watson

Hi Thomas,

Sorry for the delay in responding to you, life has been a little busy for
me lately.  I should have some free time at the end of this week and I will
make a new upload of pep8 a priority.

If I don't manage to get it uploaded by the end of next weekend, please
feel free to upload an NMU.

regards,

David


On 28 February 2013 15:58, Thomas Goirand  wrote:

> Ping, David! Still no reply from you. It would be nice if you did.
>
> I really *need* a new version, as I'm committed with a dependency with:
> build-depends: pep8 (>= 1.3.3). To give you a bit more of background,
> and for a full list of packages that I worked on, and on which pep8 >=
> 1.3.3 is the last piece of the puzzle, please see the team's QA page:
>
>
> http://qa.debian.org/developer.php?login=openstack-de...@lists.alioth.debian.org
>
> That's currently 44 packages that have been worked on for Openstack, and
> even more that are hosted in the python module repo. So you can imagine
> that I really would like to be able to release it all with the
> corresponding pep8 version.
>
> glance, nova, cinder, quantum, keystone, ceilometer and heat are all
> declaring dependency for pep8 >= 1.3.3
>
> If you don't have time to work on a new upstream pep8 version, please
> allow me to NMU it to Experimental. An answer would be really appreciated.
>
> Without any answer form you, in 8 days at least, I will prepare an
> upload of a new upstream version to the delayed queue (15 days). This
> brings to the total of 1 month (even more if you consider the first
> request from Tristan Seligmann from 26th of November which had no
> reply), which is generally accepted as a reasonable delay to expect from
> a maintainer to at least reply.
>
> I'm sorry to stick so close to the admited "Debian acceptable waiting
> limit of 1 month", but my work on nearly 50 packages depends on it.
>
> Cheers,
>
> Thomas Goirand (zigo)
>

Bug#688321: unblock: quota/4.01-1

2013-03-04 Thread Simon Kuhnle

Hi,

On Sun, Mar 03, 2013 at 01:58:32PM -0800, Christoph Egger wrote:
> intrigeri  writes:
> > Michael Meskes wrote (27 Dec 2012 11:21:56 GMT) :
> >>> > Would it be possible to get *only* the xfs fix in testing instead of the
> >>> > whole new release?
> >
> >> Where does fixing the XFS problem differ from fixing the other bugs
> >> in 4.01?
> >
> > As I understand it (and not being a member of the release team), it
> > differs because that one has been reported in Debian as the #685356
> > important bug, while the others have not. At this time of the freeze,
> > including a new upstream release because it fixes a lot of more or
> > less important bugs (and adds a few features..) is probably not an
> > option. I guess that's exactly why Salvatore prepared a minimal
> > t-p-u debdiff.
> >
> > But well, if you feel like every change in 4.01 satisfies the current
> > freeze policy and should be fixed in Wheezy, then please feel free to
> > explain why :)
> >
> >> Anyway, we can surely do a Wheezy version of 4.00 that fixes XFS.
> >
> > OK. Do you ACK Salvatore's proposed t-p-u debdiff?
> 
> Hm could we maybe add 8b6ce13e1b196cb9d0cc5b24dfc75c97a9eb883d (upstream
> git) as well?
> Seems to be the one addressing (at least the second half of)
> #698864. Cc-ed the folks there to check the fixed quota 4.00 binary they
> deployed is actually using this patch.

Yes, that's exactly the patch we're using.
It fixes our problems described in #698864.

Regards
Simon


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702221: php5: CVE-2013-1635 CVE-2013-1643

2013-03-04 Thread Moritz Muehlenhoff

Package: php5
Severity: grave
Tags: security
Justification: user security hole

Hi,
two issues have been reported in php5. CVE-2013-1635 doesn't classify as a 
security
issue per the Debian Security policy, but if the fix is non-intrusive we
could include it nonetheless:

CVE-2013-1643
http://git.php.net/?p=php-src.git;a=commitdiff;h=c737b89473df9dba6742b8fc8fbf6d009bf05c36

CVE-2013-1635
http://git.php.net/?p=php-src.git;a=commitdiff;h=702b436ef470cc02f8e2cc21f2fadeee42103c74

Cheers,
Moritz


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702122: mirrors: add debian-mirror.sakura.ne.jp to syncproxy leaf

2013-03-04 Thread ISHIKAWA Mutsumi


I don't think it is good idea. Because synxproxy to Japan trans
pacific network connection bandwidth is narrow (~ 5Mbps).

If you want to setup some kind of redundancy of push primary in Japan,
we should build some kind of pushproxy and management system of
primary pusy mirror backend.

> In <20130303075058.c44c71f5a6785883bddec...@debian.or.jp> 
>   Hideki Yamane  wrote:
>> Package: mirrors
>> Severity: normal
>> X-debbugs-CC: debian-mirr...@lists.debian.org, bo...@debian.or.jp
>>
>> Hi,
>>
>>  Some of you may know, I've started debian-mirror.sakura.ne.jp.
>>  
>> http://henrich-on-debian.blogspot.com/2013/02/introducing-debian-mirrorsakuranejp.html
>>
>>  Now it is pushed-mirror under hanzubon.jp, and I think it's better to be 
>> pushed 
>>  from upstream syncproxy if we can.
>>
>>  The reason is, sakura mirror and other mirrors pushed from hanzubon.jp is 
>> providing
>>  ftp.jp.debian.org. ftp.jp.d.o has some robustness mechanism that if primary 
>> one goes
>>  down or not sync some days and be obsolete, then DNS entry will switch to 
>> point 
>>  another mirror. However, if hanzubon.jp archive will stop or be corrupted, 
>> then 
>>  **all** of those mirrors are same state. If sakura mirror can get updated 
>> archives
>>  from syncproxy, ftp.jp.d.o get more robustness IMO.
>>
>>  Could you consider to add sakura mirror as syncproxy leaf, please?
>>
>> -- 
>> Regards,
>>
>>  Hideki Yamane henrich @ debian.or.jp/org
>>  http://wiki.debian.org/HidekiYamane

-- 
ISHIKAWA Mutsumi
  , 


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702223: ITP: hunspell-gu -- Gujarati dictionary for hunspell

2013-03-04 Thread Kartik Mistry

Package: wnpp
Severity: wishlist
Owner: Kartik Mistry 

* Package name: hunspell-gu
  Version : 0.3
  Upstream Author : Kartik Mistry 
* URL : 
http://wiki.openoffice.org/wiki/Dictionaries#Gujarati_.28India.29
* License : GPL-2+
  Programming Lang: Text files
  Description : Gujarati dictionary for hunspell

This package will provide Gujarati dictionary in hunspell format. Initial
database is based on current aspell-gu dictionary available in Debian.

-- 
Kartik Mistry | IRC: kart_
{0x1f1f, kartikm}.wordpress.com


signature.asc
Description: Digital signature

Bug#702222: ITP: pelican -- blog aware, static website generator

2013-03-04 Thread Ondřej Surý

Package: wnpp
Severity: wishlist
Owner: "Ondřej Surý" 

* Package name: pelican
  Version : 3.1.1
  Upstream Author : Alexis Métaireau
* URL : http://getpelican.com/
* License : GNU AGPLv3
  Programming Lang: Python
  Description : static blog generator in Python

 Pelican is a static site generator, written in Python.  It allows you
 to write your weblog entries directly with your editor of choice in
 reStructuredText, Markdown, or AsciiDoc, and generates completely
 static output that is easy to host anywhere.  Pelican includes a
 simple CLI tool to (re)generate the weblog and it is easy to
 interface with DVCSes and web hooks.


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#399875: libxslt1.1: exclude-result-prefixes not honored (regression)

2013-03-04 Thread Vincent Lefevre

retitle 399875 xsltproc: document how to manipulate HTML-compatible XHTML
thanks

On 2013-03-03 21:54:18 -0800, Jonathan Nieder wrote:
> retitle 399875 xsltproc: document how to manipulate HTML-compatible XHTML 
> (?)

Using  is a bad idea as the
namespace won't be correct (or will just by chance) in XML.

The solution is to use:

http://www.w3.org/1999/XSL/Transform";
xmlns:h="http://www.w3.org/1999/xhtml";
xmlns="http://www.w3.org/1999/xhtml";>

and the default namespace for HTML elements in the templates, e.g.
 and not . Both HTML namespace declarations above are
needed: The "xmlns:h" attribute above is needed for XPath (which
cannot use the notion of default namespace) and the "xmlns" is
needed to use the default namespace in order to avoid a prefix in
the output (for compatibility with HTML parsers).

-- 
Vincent Lefèvre  - Web: 
100% accessible validated (X)HTML - Blog: 
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)

--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#701536: RM: subsurface -- RoQA; unmaintained package, maintainer MIA

2013-03-04 Thread Cristian Ionescu-Idbohrn

Removed some addresses on the Cc: list, as subsurface listmaster is
complaining about too many.  I hope the people behind the removed
addresses are subscribed to the subsurface mailinglist anyway.

It would maybe be a good idea to only keep:

subsurf...@hohndel.org, 701...@bugs.debian.org

on the Cc: list.

On Mon, 4 Mar 2013, Sylvestre Ledru wrote:
> On 04/03/2013 09:24, Robert C. Helling wrote:
> >
> > Am I right to state that for subsurface currently it is a primary goal
> > to have some .deb package that could be hosted on the subsurface web
> > server and which more or less tracks our releases? Getting included in
> > the Debian distribution with not too old versions is also nice but more
> > important on an intermediate time scale. I.e. what is currently needed
> > is some tool-chain which turns (semi-automatically, that is, usable by a
> > non-Debina-guru) sources that are not too different from the current
> > state into a distributable .deb.
> In our context, we are focusing on Debian (and Ubuntu) themself. That
> means that, we are trying to propose the version matching the
> dependencies in the archive.
> However, if there is a need, we can always provide backports.

That sounds very nice, because I'm gessing a wheezy backport will be
begged for.

> By the way, I started to work on the packaging. I updated
> libdivecomputer and I am working on subsurface.

That sounds super :)


Cheers,

-- 
Cristian


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#701227: [Pkg-nagios-devel] Bug#701227: nagios-nrpe: CVE-2013-1362: allows the passing of $() as command arguments to execute shell commands

2013-03-04 Thread Salvatore Bonaccorso

Hey Alex

On Mon, Mar 04, 2013 at 09:06:52AM +0100, Alexander Wirt wrote:
[...]
> In fact it looks like the patch on my disk :). I am sorry for not handling
> this earlier, but our new bathroom took my whole spare time in the last
> weeks.
> 
> It should be better this week.

Okay and thank you!

Salvatore


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#650636: gephi debian package

2013-03-04 Thread Ximin Luo

Hi, apparently there is a proper Debianised effort (adhering to Debian's
dyn-link and source licensing requirements) going on:

http://wiki.gephi.org/index.php/Specification_-_Debian_Package

I've CC'd the person in charge of that page here.

Andy, could you give us an update on how this is going? I could be happy to
take over the packaging effort, if there is not much work left.

Ximin

-- 
GPG: 4096R/5FBBDBCE
https://github.com/infinity0
https://bitbucket.org/infinity0
https://launchpad.net/~infinity0



signature.asc
Description: OpenPGP digital signature

Bug#702224: please set the default charset to UTF-8

2013-03-04 Thread Andrew Shadura

Source: lynx
Version: 2.8.8dev.15-1
Severity: normal

Currently, in the system-wide lynx.cfg there's a line:

CHARACTER_SET:iso-8859-1

I suggest that it probably finally makes sense to switch that to utf-8
as it's mostly what new systems come with.

-- System Information:
Debian Release: wheezy/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: i386 (i686)

Kernel: Linux 3.6-trunk-686-pae (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) (ignored: LC_ALL 
set to en_GB.UTF-8)
Shell: /bin/sh linked to /bin/dash


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702225: xalan: can't transform XHTML files

2013-03-04 Thread Vincent Lefevre

Package: xalan
Version: 1.10-6
Severity: important

It is no longer possible to transform XHTML files. For instance:

*** test.html ***


http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd";>
http://www.w3.org/1999/xhtml";>

Test


Test.



*** test.xsl ***


http://www.w3.org/1999/XSL/Transform";>
http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd";
indent="no"/>

  

  



I get after a few seconds:

XSLT Warning: Fatal Error.Occurred at file test.html, line 3, column 55. An 
exception occurred! Type:NetAccessorException, Message:Could not open file: 
http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd (line -1, column -1.)

SAXParseException Message is: An exception occurred! Type:NetAccessorException, 
Message:Could not open file: http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd 
(test.html, line 3, column 55)

There is no such problem with xsltproc. It seems that xalan must
use the catalog system and it fails to do it so.

-- System Information:
Debian Release: 7.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 3.8-trunk-amd64 (SMP w/2 CPU cores)
Locale: LANG=POSIX, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages xalan depends on:
ii  libc6  2.13-38
ii  libgcc11:4.7.2-5
ii  libstdc++6 4.7.2-5
ii  libxalan1101.10-6
ii  libxerces-c28  2.8.0+deb1-3

xalan recommends no packages.

xalan suggests no packages.

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702227: Permission of the backend too strict for a backend chain (beh, jasmine)

2013-03-04 Thread Marco Gaiarin

Package: cups
Version: 1.4.4-7+squeeze2

If i need to chain some backend, eg because i need the Backend Error
Handler (beh, in the package 'foomatic-filters') or the 'jasmine'
backend (http://jasmine.berlios.de/dokuwiki/doku.php, non packaged)
i've found that the second backend cannot be launched.

Seems to me that cups drop privilege running the first backend as user
'lp', but some of the backend (eg, ipp) are set as 750 root.root, so
cannot get executed.

I've simply done (trying to disrupt original permission as little as
possible, so probably these permission are still wrong):

cd /usr/lib/cups/backend-available
chown .lp dnssd http ipp lpd serial usb
chmod 751 dnssd http ipp lpd
chmod 554 serial usb

but at every cups upgrade owner and mode of the backend get restored,
and chained backend stop to work.


I hope that this things can be fixed, or at least explained a bit in a
README.Debian.


Thanks.


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#701897: CVE-2012-5667: buffer overflow with overly long input lines

2013-03-04 Thread Raphael Geissert

Hi,

The issue can easily be reproduced on an x86_64 system running squeeze
with the public reproducer.
Valgrind also shows the issue (but beware of the time and memory it takes).

Cheers,
-- 
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702070: widelands: Copyright file points to wrong license and doesn't cite source

2013-03-04 Thread Martin Quinson

On Mon, Mar 04, 2013 at 12:31:37AM +0100, Steven De Herdt wrote:
> Hello,
> 
> > Pointing to the wrong gpl version doesn't violate debian policy.
> I had the impression upstream released under GPLv2 only, but the source
> code files say "v2 or later".  In as far as Debian distributes under
> GPLv3, and not the unspecified "the GPL" (which includes v1), that
> should be legally fine.  But it's not quite the verbatim copyright
> info/distribution licenses required by policy.
> The media files seem less clear to me.  To the best of my knowledge
> they're distributed under GPLv2 only, so that Debian cannot legally
> distribute these files under the license pointed to.  Of course, the
> upstream tarball isn't exceedingly clear on this.
> 
> > Breaking a "should" clause is also not violating the debian policy.
> No, but apparently:
> "In addition, the copyright file must say where the upstream sources (if
> any) were obtained, and should name the original authors."
> 
> I suppose now's not a convenient time for these problems, but I thought
> they were serious...

The good news is that I'm willing to fix bugs in my packages even when
they are not release critical :) 

I admit that I'm not as responsive as I should recently, but I'll try
to come back soon.

As for the GPL version, my bad (I guess), this will be fixed soon.

As for the source of download, that will be fixed soon too (and I
guess that duckduckgo gave you the answer in the meanwhile).

As for the licensing of the media, this is not clearly stated upstream
either. I guess you know the drill for games: most of the projects
distribute the pngs only as the blender files are super heavy to store
and process. This is a clear infringement of the dfsg, but that's a
bad habit that is hard to fight in the milieu. I didn't check but I
wouldn't be surprised to learn that the blender files of wesnoth or
freeciv are not as easily available as the C/C++ sources...

The situation is not completely desperate for widelands (at least
compared to other smaller games around), as most of the blender files
can be retrieved from: bzr branch lp:widelands-media

Not all the models are available, as some of them were lost by the
designers, see: https://bugs.launchpad.net/widelands-media/+bug/677337

Yep, that's a still very sorry state, but I feel like we need to help
upstream fixing the situation instead of becoming harsh on them. For
that, I openned the following bug to ask them to clarify the license.
My guess is that they consider this repo as a working directory and
juste forgot to write the licensing meta-information down.
https://bugs.launchpad.net/widelands-media/+bug/1144060

So, in conclusion. Thanks for your report, I'll try to come back on
this package as I recently managed to do for several of my other
packages. The issues you point are mainly missing pointers that I will
add. Be them serious or important. 

For the more profund issues underlying, I'll see with upstream about
how to improve it.

Thanks for the report, 
Mt.

-- 
Philosophy is a game with objectives and no rules. 
Mathematics is a game with rules and no objectives.

-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702228: python-tables: add ViTables in suggested packages

2013-03-04 Thread Pierre Haessig

Package: python-tables
Version: 2.3.1-3
Severity: wishlist

Dear Maintainer,

I suggest that ViTables, already packaged in Debian, would be a relevant
addition to the list of suggested packages of PyTables. It is indeed a useful
companion GUI to explore PyTables files.

best,
Pierre



-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-4-amd64 (SMP w/12 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages python-tables depends on:
ii  libbz2-1.01.0.6-4
ii  libc6 2.13-38
ii  libhdf5-7 [libhdf5-7] 1.8.8-9
ii  liblzo2-2 2.06-1
ii  python2.7.3-4
ii  python-numexpr2.0.1-3
ii  python-numpy [python-numpy-abi9]  1:1.6.2-1
ii  python2.6 2.6.8-1.1
ii  python2.7 2.7.3-6

python-tables recommends no packages.

Versions of packages python-tables suggests:
pn  python-netcdf  
ii  python-tables-doc  2.3.1-3

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#662955: RFS: rubyripper/0.6.2-1 [ITP]

2013-03-04 Thread Scott Leggett

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Hi Paul,

On 04/03/13 00:33, Paul Wise wrote:
> You might want to join #debian-au :)
> 

I didn't know this existed, cool!

> Have you considered joining the multimedia team?
> 
> https://wiki.debian.org/Teams/Multimedia

No I haven't, I'll take a look.

> 
> I don't intend to sponsor this package, but here is a review: ...

:-/

Thank you for taking the time to do such a detailed review. It looks
like you've identified quite some issues with the current package.

I have pushed a few of those patches upstream; it's just that upstream
is (slowly) getting ready for releasing 0.7.0 and the build is
currently broken, otherwise I would package something a bit newer
(0.6.2 is quite old!).

I think the best course of action at this stage would be to work on
sending some patches upstream prior to the new release. Hopefully that
way I can avoid carrying patches for 0.7.0 when it is done, and
produce a better package.

- -- 
Regards,
Scott Leggett.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iQIcBAEBAgAGBQJRNHyvAAoJEHlzKPr+55fVymYP/2o+qNkaliu7Da6HaXerWaXH
li8jW6DP8F+3E+QpQTMqS7dcUZ8iYnhQKk5kn4H8Bg2wqPS/WsQKyL1UaOd+Qb56
xVG9TdwqbBD5NBsbm+XcnMCL/F58xKF8xZgFTlboCtQl3drp37Y5HydYiJwh1sgX
lZuGifSVdvyFtVRkpqOxT6s+5asthNOEfoaQBebCp1d3xpKOZHjXb8eDB0Bu34fO
vYk6fXIMeAh20GnMou6uwPyCo5hSbXgBblyDJYjRcDFGWFJ7M3ITi9V/0DcTAJQD
MC2fWhP6H1e40CnTNlRIW6SCJBWw3QU75nvhWMjDUn7NmfJVAR+foUofGLKRFraG
6frocetbqogCubOakkCapLL4h4c9qWS946BBq0sLlM+FKlzx3BOutaDawUomHImq
LLf0ZXLJrlQ8TAQQN/RIi+RXcG3lXQ6ZAY7p2KGHjqDzjmn1cS0fPzubRhkLpepU
AZhuH4a/GXGFRVEXqUidDuT2qO/yFrJK2ZjZOjyypYqJlHF8eHTarVQ8KH4PS5uv
W3dM/1qBWrHM7y6CzHbgPf/3UHTKd+LUxxr4en4Wf/MKWV0f3YmdF6r3ir6bcW+L
Qo3HxURjiPC+LB/RNfyRwWVG2Kpc6J9INXEakPx7xlNGSFjDBDnz8zbWTocOtnvc
lofClxTwHr1xa0ECX7tQ
=rkUq
-END PGP SIGNATURE-

-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#647267: debian-installer: grub-install tries to install on the wrong drive

2013-03-04 Thread Alex Young

Just to confirm that this bug still exists: I've just done an ordinary 
(non-expert) installation toa  Thinkpad T420 with the wheezy netinst iso 
written to a USB drive with unetbootin, and grub was told to install to 
/dev/sda (the USB drive) rather than /dev/sdb (the installation target), 
which failed.


I had selected guided partitioning with encrypted LVM.

Doing the update-grub; grub-install /dev/sdb dance on the emergency 
console left me with a working system.  Perhaps that could be added to 
the error screen the installer presents in case of a grub-install failure?


Interestingly, I had to do the installation a second time with firmware 
files on a *second* USB device, and on that occasion the correct drive 
was picked for grub.


--
Alex


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702174: RFS: estonianidcard/3.7.0 [ITP] -- Estonian ID card support packages

2013-03-04 Thread Paul Wise

I don't intend to sponsor these packages, but here is a review:

mentors.d.n cut off my downloads early so I wasn't able to review all
the packages.

General:

Please run wrap-and-sort -sa to wrap various files.

The package descriptions are too short.

The Homepage redirects to its https version.

Some packages don't close their ITPs.

The comments in debian/rules are not needed.

The copyright information is incorrect.

I would suggest debhelper rules.tiny and compat 9 instead of cdbs.

Please run these automatic checks against your packages:

https://wiki.debian.org/HowToPackageForDebian#Check_points_for_any_package

The watch files make a couple of common mistakes:

http://wiki.debian.org/debian/watch#Common_mistakes

estonianidcard:

The package should probably be a native package?

The upstream tarball looks weird, it only contains an empty file.

esteidpkcs11loader:

The patch Fix-library-directory makes the package only work on
amd64/i386, please change the Architecture line in debian/control or
fix the patch.

Why is JavaScript code loading ELF shared libraries??! Especially
loading them from an absolute path is very wrong.

esteidfirefoxplugin:

No need to make override_dh_strip .PHONY.

No need to tell dh what the dbg package is since you do that for dh_strip.

override_dh_auto_configure is not needed.

Please ask upstream to remove the pre-compiled or generated files from
their tarball:

keychain-tool firefox-win/plugin-win.aps firefox-win/plugin-win.res ie/dlldata.c

Please ask upstream to remove the embedded code copy of the OpenSSL
headers: include/openssl

http://wiki.debian.org/EmbeddedCodeCopies

Likewise for the other files in include/, they are all embedded code
copies, from Mozilla and scute.

esteidcerts:

Why do the certs need to be put in the ca-certificates db? Either they
should be in ca-certificates itself (unlikely), or they should not be
side-loaded into it via this package.

The debian/rules file looks a bit weird, seems like you install things
twice, once with dh_install and once manually.

-- 
bye,
pabs

http://wiki.debian.org/PaulWise


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#662955: RFS: rubyripper/0.6.2-1 [ITP]

2013-03-04 Thread Paul Wise

On Mon, Mar 4, 2013 at 6:51 PM, Scott Leggett wrote:

> I think the best course of action at this stage would be to work on
> sending some patches upstream prior to the new release. Hopefully that
> way I can avoid carrying patches for 0.7.0 when it is done, and
> produce a better package.

Yep, always a good idea to get patches merged upstream.

-- 
bye,
pabs

http://wiki.debian.org/PaulWise


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702229: ITP: python-feedgenerator -- Syndication feed generation library

2013-03-04 Thread Ondřej Surý

Package: wnpp
Severity: wishlist
Owner: "Ondřej Surý" 

* Package name: python-feedgenerator
  Version : 1.5
  Upstream Author : Django Software Foundation and Dirk Makowski
* URL : https://pypi.python.org/pypi/feedgenerator
* License : BSD-3
  Programming Lang: Python
  Description : Syndication feed generation library

 Feedgenerator is a standalone version of Django's feedgenerator, which
 is a syndication feed generation library used used for generating RSS.


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#700642: wheezy live rc1 seems working

2013-03-04 Thread Praveen A

I disabled network card in Virtual Box and installation succeeded
(using wheezy live rc1 amd64 gnome iso). I will try again with a
network card without its interface configured.

-- 
പ്രവീണ്‍ അരിമ്പ്രത്തൊടിയില്‍
You have to keep reminding your government that you don't get your
rights from them; you give them permission to rule, only so long as
they follow the rules: laws and constitution.


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702230: conkeror: xulrunner 19.0 should be found automatically

2013-03-04 Thread David Edmondson

Package: conkeror
Version: 1.0~~pre+git120901-1
Severity: normal

Dear Maintainer,

xulrunner version 19.0 is available in the Debian experimental
repository, yet the /usr/bin/conkeror script looks for versions only up
to 17.0. 19.0 has some improvements over 10.0 that is included in
stable/testing/unstable, and it would be convenient to be able to use it
easily.

-- Package-specific info:

-- Extensions information
Name: Adblock Plus
Location: ${PROFILE_EXTENSIONS}/{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
Status: enabled

Name: HTTPS-Everywhere
Location: 
/usr/share/mozilla/extensions/{a79fe89b-6662-4ff4-8e88-09950ad4dfde}/https-everywh...@eff.org
Package: xul-ext-https-everywhere
Status: enabled

-- Plugins information
Name: Shockwave Flash
Location: /usr/lib/flashplugin-nonfree/libflashplayer.so
Status: enabled


-- Addons package information
ii  xul-ext-https- 2.0.5-1  all  extension to force the use of HTT

-- Extensions information
Name: Adblock Plus
Location: ${PROFILE_EXTENSIONS}/{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
Status: enabled

Name: HTTPS-Everywhere
Location: 
/usr/share/mozilla/extensions/{a79fe89b-6662-4ff4-8e88-09950ad4dfde}/https-everywh...@eff.org
Package: xul-ext-https-everywhere
Status: enabled

-- Plugins information
Name: Shockwave Flash
Location: /usr/lib/flashplugin-nonfree/libflashplayer.so
Status: enabled


-- Addons package information
ii  xul-ext-https- 2.0.5-1  all  extension to force the use of HTT

-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (650, 'testing'), (600, 'unstable'), (550, 'experimental'), (500, 
'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages conkeror depends on:
ii  xulrunner-10.0  10.0.12esr-1

Versions of packages conkeror recommends:
ii  conkeror-spawn-process-helper  1.0~~pre+git120527-1
ii  xdg-utils  1.1.0~rc1+git20111210-6

Versions of packages conkeror suggests:
ii  emacs23-lucid [emacsen]  23.4+1-4

-- no debconf information


pgpn3N771gj6w.pgp
Description: PGP signature

Bug#701938: [www.debian.org] Debian Trademarks: Branden Robinson presented as DPL

2013-03-04 Thread MJ Ray

Holger wrote:
> The Debian UK Society, by Branden Robinson (Debian Project Leader at the time 
> of decision).

That line is rather moot.  That business no longer exists and I think
zack has just terminated its licence for that reason.
http://anonscm.debian.org/viewvc/webwml/webwml/english/trademark.wml?view=log

I would just stick the year on the end of the debian.ch one, so it
says "Debian Project Leader 2011" but I've not checked how we usually
refer to past project leaders.

Hope that helps,
-- 
MJR/slef
My Opinion Only: see http://people.debian.org/~mjr/
Please follow http://www.uk.debian.org/MailingLists/#codeofconduct

-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#701706: RFS: ocamlrss/2.0-1 [ITP] -- RSS 2.0 parser and printer for OCaml

2013-03-04 Thread Paul Wise

I don't intend to sponsor this package, but here is a review:

You might want to get involved in the ocaml team:

http://wiki.debian.org/Teams/OCamlTaskForce

Please drop the unnessecary information from the patch header,
including the partial changelog and the stuff about patch tagging
guidelines.

Please get the patch included upstream.

Please improve your watch file:

http://wiki.debian.org/debian/watch#Common_mistakes

There should be no need for .PHONY in debian/rules.

The lintian override should probably be replaced by a bug against
lintian or blhc.

The copyright/license info for rss_date.mli/rss_date.ml is incomplete.

Automatic checks:

http://wiki.debian.org/HowToPackageForDebian#Check_points_for_any_package

ocamlc:

File "rss_date.ml", line 220, characters 10-280:
Warning 25: bad style, all clauses in this pattern-matching are guarded.

lintian:

P: librss-ocaml: no-upstream-changelog
P: librss-ocaml-dev: no-upstream-changelog

similarity-tester:

rss_types.ml   consists  for  85  %  of  ./rss.ml
   material

-- 
bye,
pabs

http://wiki.debian.org/PaulWise


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702231: ITP: blinker -- Fast, simple object-to-object and broadcast signaling library

2013-03-04 Thread Ondřej Surý

Package: wnpp
Severity: wishlist
Owner: "Ondřej Surý" 

* Package name: blinker
  Version : 1.2
  Upstream Author : Jason Kirtland
* URL : http://discorporate.us/projects/Blinker/
* License : MIT License (Expat)
  Programming Lang: Python
  Description : Fast, simple object-to-object and broadcast signaling 
library

 Blinker provides a fast dispatching system that allows any number of
 interested parties to subscribe to events, or "signals".
 .
 Signal receivers can subscribe to specific senders or receive signals
 sent by any sender.


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702232: "firestring: Added DEP-8 tests"

2013-03-04 Thread Vibhav Pant

Package: firestring
Severity: wishlist
Tags: patch

I'm forwarding a diff that adds DEP-8 tests to the package, originally
submitted to Launchpad. See
 for details.


firestring_0.9.12-8_0.9.12-8ubuntu1.diff.gz
Description: GNU Zip compressed data

Bug#701814: Re: Bug#701814: os-prober: damages XFS exported via iSCSI but not mounted locally; potential data loss

2013-03-04 Thread Balint Reczey

Hi,

On 02/27/2013 05:28 PM, Torsten Jerzembeck wrote:
> Julien Cristau wrote:
>> On Wed, Feb 27, 2013 at 13:41:45 +0100, Torsten Jerzembeck wrote:
>>> Package: os-prober
>>> Version: 1.42
>>> Severity: grave
>>> Justification: causes non-serious data loss
>>>
>>> While updating the kernel on a storage server exporting a large XFS via
>>> iSCSI, os-prober tried to mount this file system. This operation disrupted
>>> the iSCSI operation and damaged the file system.
>>>
>> On that kind of machine you really want to set
>> GRUB_DISABLE_OS_PROBER=true in /etc/default/grub.
> Granted (and thanks for pointing me to that option which I didn't know
> about before this). However, I think os-prober shouldn't blindly mount
> seemingly unmounted filesystems. It should check at least if there is
> another process accessing that filesystem/device.

os-prober uses 'mount -o ro', or grub-mount from 1.45:

commit 7ed9dec4d2c65056f211324f8e25a4d913b0f2a1
Author: Colin Watson 
Date:   Fri Apr 8 17:39:32 2011 +0100

Use grub-mount if it exists.  This lets us do true read-only mounts,
and works better on journalling filesystems that were mounted uncleanly.

It does practically everything to avoid file system corruption thus I
think this bug should be either closed or moved to mount package to
provide a true read-only option if '-o ro'
is not enough.

Cheers,
Balint




signature.asc
Description: OpenPGP digital signature

Bug#701693: RFS: compton/0.0.1+git-2182505-2013-02-05-1 [ITP]

2013-03-04 Thread Paul Wise

Sounds like you should work with upstream to merge compton fixes back
into xcompmgr, which is already in Debian.

-- 
bye,
pabs

http://wiki.debian.org/PaulWise


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702233: /usr/bin/tinyca2: tinyca won't open saved CA, possibly related to openssl upgrade

2013-03-04 Thread Mateusz Kijowski

Package: tinyca
Version: 0.7.5-3
Severity: important
File: /usr/bin/tinyca2
Tags: upstream


When trying to open a previously saved CA tinyca errors with:

Use of uninitialized value in split at /usr/share/tinyca/OpenSSL.pm line 601.
Use of uninitialized value $dn in substitution (s///) at 
/usr/share/tinyca/HELPERS.pm line 107.
Use of uninitialized value $dn in split at /usr/share/tinyca/HELPERS.pm line 
109.
Use of uninitialized value $dn in substitution (s///) at 
/usr/share/tinyca/HELPERS.pm line 107.
Use of uninitialized value $dn in split at /usr/share/tinyca/HELPERS.pm line 
109.
Use of uninitialized value $string in substitution (s///) at 
/usr/share/tinyca/OpenSSL.pm line 1043,  line 3.
Use of uninitialized value $string in split at /usr/share/tinyca/OpenSSL.pm 
line 1045,  line 3.
Use of uninitialized value in split at /usr/share/tinyca/OpenSSL.pm line 1046, 
 line 3.
Use of uninitialized value $m in string eq at /usr/share/tinyca/OpenSSL.pm line 
1074,  line 3.
Use of uninitialized value $m in string eq at /usr/share/tinyca/OpenSSL.pm line 
1074,  line 3.
Use of uninitialized value $m in string eq at /usr/share/tinyca/OpenSSL.pm line 
1074,  line 3.
Use of uninitialized value $m in string eq at /usr/share/tinyca/OpenSSL.pm line 
1074,  line 3.
Use of uninitialized value $m in string eq at /usr/share/tinyca/OpenSSL.pm line 
1074,  line 3.
Use of uninitialized value $m in string eq at /usr/share/tinyca/OpenSSL.pm line 
1074,  line 3.
Use of uninitialized value $m in string eq at /usr/share/tinyca/OpenSSL.pm line 
1074,  line 3.
Use of uninitialized value $m in string eq at /usr/share/tinyca/OpenSSL.pm line 
1074,  line 3.
Use of uninitialized value $m in string eq at /usr/share/tinyca/OpenSSL.pm line 
1074,  line 3.
Use of uninitialized value $m in string eq at /usr/share/tinyca/OpenSSL.pm line 
1074,  line 3.
Use of uninitialized value $m in string eq at /usr/share/tinyca/OpenSSL.pm line 
1074,  line 3.
Use of uninitialized value $m in string eq at /usr/share/tinyca/OpenSSL.pm line 
1074,  line 3.
Use of uninitialized value $year in numeric ge (>=) at 
/usr/share/perl/5.14/Time/Local.pm line 100,  line 3.
Use of uninitialized value $year in numeric lt (<) at 
/usr/share/perl/5.14/Time/Local.pm line 103,  line 3.
Use of uninitialized value $year in numeric ge (>=) at 
/usr/share/perl/5.14/Time/Local.pm line 103,  line 3.
Use of uninitialized value $year in numeric gt (>) at 
/usr/share/perl/5.14/Time/Local.pm line 104,  line 3.
Use of uninitialized value $month in numeric gt (>) at 
/usr/share/perl/5.14/Time/Local.pm line 108,  line 3.
Use of uninitialized value $month in numeric lt (<) at 
/usr/share/perl/5.14/Time/Local.pm line 108,  line 3.
Use of uninitialized value $month in array element at 
/usr/share/perl/5.14/Time/Local.pm line 112,  line 3.
Use of uninitialized value $month in numeric eq (==) at 
/usr/share/perl/5.14/Time/Local.pm line 113,  line 3.
Use of uninitialized value $mday in numeric gt (>) at 
/usr/share/perl/5.14/Time/Local.pm line 116,  line 3.
Use of uninitialized value $mday in numeric lt (<) at 
/usr/share/perl/5.14/Time/Local.pm line 116,  line 3.
Use of uninitialized value $mday in concatenation (.) or string at 
/usr/share/perl/5.14/Time/Local.pm line 116,  line 3.
*** unhandled exception in callback:
***   Day '' out of range 1..31 at /usr/share/tinyca/OpenSSL.pm line 1050
***  ignoring at /usr/bin/tinyca2 line 121.


It seems that this is related to a recent upgrade of the openssl package, I 
upgraded it from 1.0.1c-4 to 1.0.1e-1. Perhaps it is an openssl bug?


-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=pl_PL.UTF-8, LC_CTYPE=pl_PL.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages tinyca depends on:
ii  libgtk2-perl2:1.244-1
ii  liblocale-gettext-perl  1.05-7+b1
ii  openssl 1.0.1e-1

Versions of packages tinyca recommends:
ii  zip  3.0-6

tinyca suggests no packages.

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702214: zathura: Slow resizing followed by segfault

2013-03-04 Thread Sebastian Ramacher

Control: tags -1 + moreinfo

On 2013-03-04 02:02:28, frozencemetery wrote:
> Package: zathura
> Version: 0.1.2-4
> Severity: normal
> 
> Hello,
> 
> While using zathura to browse this pdf
> 
> > http://web.mit.edu/campus-map/pdf/campusmap.pdf
> 
> zathura was quite slow to render, especially when zooming, and also consumed
> an entire core of my machine (and I believe loading the graphics card as well)
> when no rendering had been requested (i.e., in what appeared to be an "idle"
> state).  It eventually segfaulted, as reported in dmesg:
> 
> > [34555.296106] zathura[1659]: segfault at 0 ip 7f81c833e62c sp 
> > 7fff36156a70 error 4 in libpoppler.so.19.0.0[7f81c81f9000+1da000]

I'm unable to reproduce the segfault with 0.1.2-4 and 0.2.2-1 from
experimental. However, I remember that we have fixed some segfaults in
the poppler plugin in 0.2.x that were caused by race conditions and
really unfortunate unfortunate timing of events. Could you please check
if the segfault is gone in 0.2.2-1?

Both pages in that PDF are quite large, so the high CPU usage is
somewhat expected.

REgards
-- 
Sebastian Ramacher

signature.asc
Description: Digital signature

Bug#702234: gnome-shell: Screen lock delayed on password prompt

2013-03-04 Thread Asterix

Package: gnome-shell
Version: 3.4.2-7
Severity: grave
Tags: security
Justification: user security hole

Dear Maintainer,

I tried to type in the password for an encrypted wireless network, and pressed
enter. I then closed my lid, expecting it to lock the screen and suspend. It
did suspend, but when I woke it up, instead of the locked screen, it was
unlocked, and there was a password prompt there (I had got the wifi password
wrong, so it had made another prompt). This meant that without the password,
someone could look at the stuff I had on my screen. When I clicked cancel, it
then locked my screen after about half a second. I found that this is the same
when gnome-shell password prompts are given for root privelages, for example
opening synaptic, and that there is this problem not only closing my lid, but
if I wait for a minute until the screen turned off. Each time, it does not lock
the screen until just after the password prompt is closed.

I would expect the screen to lock, and probably to be presented with a password
prompt upon unlocking, but it would also solve the security issue if it
canceled the prompt when going to sleep/switching the screen off.

I could not do anything effective, other than be aware of the situation,
although this is less effective when there are surprise prompts such as when
you get a password wrong.



-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages gnome-shell depends on:
ii  dconf-gsettings-backend [gsettings-backend]  0.12.1-3
ii  gconf-service3.2.5-1+build1
ii  gir1.2-accountsservice-1.0   0.6.21-8
ii  gir1.2-atk-1.0   2.4.0-2
ii  gir1.2-caribou-1.0   0.4.4-1
ii  gir1.2-clutter-1.0   1.10.8-2
ii  gir1.2-cogl-1.0  1.10.2-6
ii  gir1.2-coglpango-1.0 1.10.2-6
ii  gir1.2-folks-0.6 0.6.9-1+b1
ii  gir1.2-freedesktop   1.32.1-1
ii  gir1.2-gconf-2.0 3.2.5-1+build1
ii  gir1.2-gcr-3 3.4.1-3
ii  gir1.2-gdesktopenums-3.0 3.4.2-3
ii  gir1.2-gdkpixbuf-2.0 2.26.1-1
ii  gir1.2-gee-1.0   0.6.4-2
ii  gir1.2-gkbd-3.0  3.4.0.2-1
ii  gir1.2-glib-2.0  1.32.1-1
ii  gir1.2-gmenu-3.0 3.4.2-5
ii  gir1.2-gnomebluetooth-1.03.4.2-1
ii  gir1.2-gtk-3.0   3.4.2-6
ii  gir1.2-json-1.0  0.14.2-1
ii  gir1.2-mutter-3.03.4.1-5
ii  gir1.2-networkmanager-1.00.9.4.0-10
ii  gir1.2-pango-1.0 1.30.0-1
ii  gir1.2-polkit-1.00.105-3
ii  gir1.2-soup-2.4  2.38.1-2
ii  gir1.2-telepathyglib-0.120.18.2-2
ii  gir1.2-telepathylogger-0.2   0.4.0-1
ii  gir1.2-upowerglib-1.00.9.17-1
ii  gjs  1.32.0-5
ii  gnome-bluetooth  3.4.2-1
ii  gnome-icon-theme-symbolic3.4.0-2
ii  gnome-settings-daemon3.4.2+git20121218.7c1322-2
ii  gnome-shell-common   3.4.2-7
ii  gnome-themes-standard3.4.2-2.1
ii  gsettings-desktop-schemas3.4.2-3
ii  libatk1.0-0  2.4.0-2
ii  libc62.13-38
ii  libcairo-gobject21.12.2-3
ii  libcairo21.12.2-3
ii  libcanberra0 0.28-6
ii  libclutter-1.0-0 1.10.8-2
ii  libcogl-pango0   1.10.2-6
ii  libcogl9 1.10.2-6
ii  libcroco30.6.6-2
ii  libdbus-1-3  1.6.8-1
ii  libdbus-glib-1-2 0.100.1-1
ii  libebook-1.2-13  3.4.4-3
ii  libecal-1.2-11   3.4.4-3
ii  libedataserver-1.2-163.4.4-3
ii  libedataserverui-3.0-1   3.4.4-3
ii  libffi5  3.0.10-3
ii  libfolks25   0.6.9-1+b1
ii  libgck-1-0   3.4.1-3
ii  libgconf-2-4 3.2.5-1+build1
ii  libgcr-3-1   3.4.1-3
ii  libgdk-pixbuf2.0-0   2.26.1-1
ii

Bug#702235: python2.6: CVE-2011-1521 - Vulnerability in urllib/urllib2

2013-03-04 Thread Romuald Brunet

Subject: python2.6: CVE-2011-1521 - Vulnerability in urllib/urllib2
Package: python2.6-minimal
Version: 2.6.6-8+b1
Severity: important

(patch attached)

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-1521

Vulnerability CVE-2011-1521, allowing remote web servers to redirect to
a file on the local host, fixed in python 2.6.7, is missing from Debian
squeeze and so make all software using urllib/urllib2 to access a remote
server vulnerable.

An easy way to DOS a system using this is to send it an url redirecting
to file:///dev/random that will block even for a few bytes read() calls


I've attached an updated patch that applies to the last squeeze source

Original patch is available here:
http://hg.python.org/cpython/rev/c15ab33017ff


-- System Information:
Debian Release: 6.0.7
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: i386 (i686)

Versions of packages python2.6-minimal depends on:
ii  libc6  2.11.3-4  Embedded GNU C Library:
Shared lib
ii  libssl0.9.80.9.8o-4squeeze14 SSL shared libraries
ii  zlib1g 1:1.2.3.4.dfsg-3  compression library -
runtime

Versions of packages python2.6-minimal recommends:
ii  python2.6 2.6.6-8+b1 An interactive high-level
object-o

Versions of packages python2.6-minimal suggests:
pn  binfmt-support (no description available)

-- no debconf information


-- 
Romuald Brunet
Gandi.net
# HG changeset patch
# User gu...@google.com
# Date 1301420903 25200
# Branch 2.6
# Node ID c15ab33017ff1314380c077acc0ea1781cd63ac2
# Parent  b99c94261225aa86802aa14918ca64e97969bedd
# Parent  92293101839cc8a0ff34c6b0b9fdd8f7741eecaf
Merge urllib/urllib2 security fix from 2.5 branch.

--- a/Lib/test/test_urllib.py
+++ b/Lib/test/test_urllib.py
@@ -162,6 +162,20 @@
 finally:
 self.unfakehttp()
 
+def test_invalid_redirect(self):
+# urlopen() should raise IOError for many error codes.
+self.fakehttp("""HTTP/1.1 302 Found
+Date: Wed, 02 Jan 2008 03:03:54 GMT
+Server: Apache/1.3.33 (Debian GNU/Linux) mod_ssl/2.8.22 OpenSSL/0.9.7e
+Location: file:README
+Connection: close
+Content-Type: text/html; charset=iso-8859-1
+""")
+try:
+self.assertRaises(IOError, urllib.urlopen, "http://python.org/";)
+finally:
+self.unfakehttp()
+
 def test_empty_socket(self):
 # urlopen() raises IOError if the underlying socket does not send any
 # data. (#1680230)
--- a/Lib/test/test_urllib2.py
+++ b/Lib/test/test_urllib2.py
@@ -942,6 +942,28 @@
 self.assertEqual(count,
  urllib2.HTTPRedirectHandler.max_redirections)
 
+def test_invalid_redirect(self):
+from_url = "http://example.com/a.html";
+valid_schemes = ['http', 'https', 'ftp']
+invalid_schemes = ['file', 'imap', 'ldap']
+schemeless_url = "example.com/b.html"
+h = urllib2.HTTPRedirectHandler()
+o = h.parent = MockOpener()
+req = Request(from_url)
+req.timeout = socket._GLOBAL_DEFAULT_TIMEOUT
+
+for scheme in invalid_schemes:
+invalid_url = scheme + '://' + schemeless_url
+self.assertRaises(urllib2.HTTPError, h.http_error_302,
+  req, MockFile(), 302, "Security Loophole",
+  MockHeaders({"location": invalid_url}))
+
+for scheme in valid_schemes:
+valid_url = scheme + '://' + schemeless_url
+h.http_error_302(req, MockFile(), 302, "That's fine",
+MockHeaders({"location": valid_url}))
+self.assertEqual(o.req.get_full_url(), valid_url)
+
 def test_cookie_redirect(self):
 # cookies shouldn't leak into redirected requests
 from cookielib import CookieJar
--- a/Lib/urllib.py
+++ b/Lib/urllib.py
@@ -652,6 +652,18 @@
 fp.close()
 # In case the server sent a relative URL, join with original:
 newurl = basejoin(self.type + ":" + url, newurl)
+
+# For security reasons we do not allow redirects to protocols
+# other than HTTP, HTTPS or FTP.
+newurl_lower = newurl.lower()
+if not (newurl_lower.startswith('http://') or
+newurl_lower.startswith('https://') or
+newurl_lower.startswith('ftp://')):
+raise IOError('redirect error', errcode,
+  errmsg + " - Redirection to url '%s' is not allowed" %
+  newurl,
+  headers)
+
 return self.open(newurl)
 
 def http_error_301(self, url, fp, errcode, errmsg, headers, data=None):
--- a/Lib/urllib2.py
+++ b/Lib/urllib2.py
@@ -578,6 +578,17 @@
 
 newurl = urlparse.urljoin(req.get_full_url(), newurl)
 
+# For security reasons we do not allow redirects to protocols
+# other than HTTP, HTTPS or FTP.
+newurl_lower = newurl.lower()
+if not (newurl

Bug#677795: Bug#688966: Review midgard2-core package

2013-03-04 Thread intrigeri

Hi Timo and Piotr,

Timo Jyrinki wrote (04 Mar 2013 07:41:40 GMT) :
> So, php5-midgard2 would need just a rebuild to pick up the new
> library name, together with uploading of midgard2-core.

Thank you for the prompt clarification!

Just to clarify even further, would a binNMU be enough? (The paragraph
about an upload to mentors with a single "rebuild" changelog entry got
me confused.)

In any case, it looks now clear that "this needs to be unblocked else
php5-midgard2 will be broken by midgard2-core" is no valid reason, in
itself, to grant the unblock requested by #688966. Hopefully this will
help the release team make a decision :)

Cheers,
-- 
  intrigeri
  | GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc
  | OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#698117: unblock: rebuildd/0.4.2

2013-03-04 Thread intrigeri

Hi Raphaël,

Raphael Hertzog wrote (04 Mar 2013 07:14:53 GMT) :
> rebuildd is the kind of fringe package that has no reverse-dependency
> and that can always safely be removed if anything turns out wrong.

Yeah, well, this reply makes me a bit sad, as it relies a bit too much
for my taste on the fact that Wheezy will not be released soon, and
I'd rather see such matters handled with a "let's release it very
soon" mindset, but I see what you mean :)

> I'd rather that 0.4.2 be accepted despite the large diff.

I've no strong opinion on that one, and I'm not speaking for the
release team, but I doubt such an unblock will be granted if the
maintainer does not addresses the question asked by Julien Cristau
a while ago. I mean, sorry to be the not-nice one, but this unblock
request has a moreinfo tag for a reason..

Cheers,
-- 
  intrigeri
  | GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc
  | OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702236: ITP: r-cran-quantreg -- Quantile Regression

2013-03-04 Thread ivo Maintz

Package: wnpp
Severity: wishlist
Owner: ivo Maintz 

* Package name: r-cran-quantreg
  Version : 4.94
  Upstream Author : Roger Koenker 
* URL : http://cran.r-project.org/web/packages/quantreg/index.html
* License : GPL2
  Programming Lang: R, C
  Description : Quantile Regression
   Quantile regression is an evolving body of statistical methods for
   estimating and drawing inferences about conditional quantile functions.
   An implementation of these methods in the R language is provided by
   r-cran-quantreg.


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702021: debian wheezy not booting

2013-03-04 Thread Piotrek

I did not try it and I have no idea where that recovery image is .
It's true i didn't paid any taxes but it's because i'm a student :-D


2013/3/4 Leslie S Satenstein 

> Two raesons.  You did not pay your taxes for 2012
>
> or have you tried to boot with the DVD image recovery linux that is part
> of the install packages
>
>
>
> SENT FROM MY OPEN SOURCE* LINUX* SYSTEM.
>
> Regards
> *
>  Leslie
> *
> *Mr. Leslie Satenstein
> *50 years in Information Technology and going strong.
> Yesterday was a good day, today is a better day,
> and tomorrow will be even better.
> mailto:lsatenst...@yahoo.com 
> alternative: leslie.satenst...@itbms.biz
> www.itbms.biz  www.eclipseguard.com
>
>
> --- On *Sun, 3/3/13, Piotrek * wrote:
>
>
> From: Piotrek 
> Subject: Bug#702021: debian wheezy not booting
> To: 702...@bugs.debian.org
> Date: Sunday, March 3, 2013, 8:14 PM
>
>
> I have even accessed console after setting acpi = off , and typed aptitude
> update & upgrade , installed firmware-linux but still same problems , why
> debian dont likes me :{
>
>

Bug#702237: cinnamon: Typo in cinnamon-screensaver-lock-dialog.1

2013-03-04 Thread Vincent Blut

Package: cinnamon
Version: 1.7.1-1
Severity: minor

Hi,

Please fix the following typo in the third line:

s/cinnamona/cinnamon/

Also I think the "NOTE" section should be reworked, maybe something just
like:

"cinnamon-screensaver-lock-dialog will work only if cinnamon-screensaver
is installed."

Opinion?

Cheers,
Vincent



-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'testing-updates'), (500, 'unstable'), 
(1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 3.8-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages cinnamon depends on:
ii  cinnamon-common  1.7.1-1
ii  dconf-gsettings-backend [gsettings-backend]  0.12.1-3
ii  gconf2   3.2.5-1+build1
ii  gir1.2-accountsservice-1.0   0.6.21-8
ii  gir1.2-atk-1.0   2.4.0-2
ii  gir1.2-caribou-1.0   0.4.4-1
ii  gir1.2-clutter-1.0   1.10.8-2
ii  gir1.2-cogl-1.0  1.10.2-6
ii  gir1.2-coglpango-1.0 1.10.2-6
ii  gir1.2-freedesktop   1.32.1-1
ii  gir1.2-gconf-2.0 3.2.5-1+build1
ii  gir1.2-gdesktopenums-3.0 3.4.2-3
ii  gir1.2-gdkpixbuf-2.0 2.26.1-1
ii  gir1.2-gkbd-3.0  3.4.0.2-1
ii  gir1.2-glib-2.0  1.32.1-1
ii  gir1.2-gmenu-3.0 3.4.2-5
ii  gir1.2-gnomebluetooth-1.03.4.2-1
ii  gir1.2-gtk-3.0   3.4.2-6
ii  gir1.2-javascriptcoregtk-3.0 1.8.1-3.4
ii  gir1.2-json-1.0  0.14.2-1
ii  gir1.2-muffin-3.01.7.1-1
ii  gir1.2-networkmanager-1.00.9.4.0-10
ii  gir1.2-pango-1.0 1.30.0-1
ii  gir1.2-polkit-1.00.105-3
ii  gir1.2-soup-2.4  2.38.1-2
ii  gir1.2-upowerglib-1.00.9.17-1
ii  gir1.2-webkit-3.01.8.1-3.4
ii  gjs  1.32.0-5
ii  gkbd-capplet 3.4.0.2-1
ii  gnome-icon-theme-symbolic3.4.0-2
ii  gnome-session-bin3.4.2.1-3
ii  gnome-settings-daemon3.4.2+git20121218.7c1322-2
ii  gsettings-desktop-schemas3.4.2-3
ii  libatk1.0-0  2.4.0-2
ii  libc62.13-38
ii  libcairo21.12.2-3
ii  libcanberra0 0.28-6
ii  libclutter-1.0-0 1.10.8-2
ii  libcogl-pango0   1.10.2-6
ii  libcogl9 1.10.2-6
ii  libcroco30.6.6-2
ii  libdbus-glib-1-2 0.100.1-1
ii  libgdk-pixbuf2.0-0   2.26.1-1
ii  libgirepository-1.0-11.32.1-1
ii  libgjs0b [libgjs0-libmozjs185-1.0]   1.32.0-5
ii  libgl1-mesa-glx [libgl1] 8.0.5-3
ii  libglib2.0-0 2.33.12+really2.32.4-5
ii  libgnome-desktop-3-2 3.4.2-1
ii  libgnome-keyring03.4.1-1
ii  libgnome-menu-3-03.4.2-5
ii  libgstreamer0.10-0   0.10.36-1.1
ii  libgtk-3-0   3.4.2-6
ii  libjs-jquery 1.7.2+dfsg-1
ii  libjson-glib-1.0-0   0.14.2-1
ii  libmozjs185-1.0  1.8.5-1.0.0+dfsg-4
ii  libmuffin0   1.7.1-1
ii  libnm-glib4  0.9.4.0-10
ii  libnm-util2  0.9.4.0-10
ii  libpango1.0-01.30.0-1
ii  libpolkit-agent-1-0  0.105-3
ii  libpolkit-gobject-1-00.105-3
ii  libpulse-mainloop-glib0  2.0-6
ii  libpulse02.0-6
ii  libstartup-notification0 0.12-1
ii  libx11-6 2:1.5.0-1
ii  libxfixes3   1:5.0-4
ii  libxml2  2.8.0+dfsg1-7
ii  mesa-utils   8.0.1-2+b3
ii  multiarch-support2.13-38
ii  python   2.7.3-4
ii  python-dbus  1.1.1-1
ii  python-gconf 2.28.1+dfsg-1
ii  python-imaging   1.1.7-4
ii  py

Bug#702189: sync live images

2013-03-04 Thread Daniel Baumann

Hi,

please sync live images:

rsync -aPv live.debian.net::squeeze 6.0.7

Thanks,
Daniel

-- 
Address:Daniel Baumann, Burgunderstrasse 3, CH-4562 Biberist
Email:  daniel.baum...@panthera-systems.net
Internet:   http://people.panthera-systems.net/~daniel-baumann/


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702165: ITP: ruby-georuby -- Ruby data holder for OGC Simple Features

2013-03-04 Thread Francesco P. Lovergine

On Sun, Mar 03, 2013 at 09:47:02PM +0100, Andreas Tille wrote:
> Hi Christopher,
> 
> you might like to consider maintaining this package in Debian GIS team.
> 
> Kind regards
> 

and possibly also partecipating in other ruby + gis activities within 
the team. Ruby support is sub-optimal in general also at upstream level
(see gdal status for instance). There are big margins of improvement.

-- 
Francesco P. Lovergine

-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#700642: looks like this is fixed in rc1

2013-03-04 Thread Praveen A

Installation succeeded with network card enabled but interface not
configured. Now let me try once again with a closer to real situation,
network is configured but no internet connection available.

-- 
പ്രവീണ്‍ അരിമ്പ്രത്തൊടിയില്‍
You have to keep reminding your government that you don't get your
rights from them; you give them permission to rule, only so long as
they follow the rules: laws and constitution.


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#698833: unblock: rss2email/1:2.71-2

2013-03-04 Thread Etienne Millon

* intrigeri  [130304 10:05]:
> Hi,
> 
> Etienne Millon wrote (24 Jan 2013 21:13:36 GMT) :
> > * Niels Thykier  [130124 22:11]:
> >> Jakub Wilk recommended that I revoked the hint and I understand from
> >> the log of #638994 that the patched version has its issues.
> 
> > Agreed, I may have rushed a bit on this one. Sorry for the noise.
> 
> Any update on this side?

I asked the mailman maintainers with no response. But I believe that
if the bug is on rss2email's email, then python's email library is at
fault and should be fixed (not my call of course). So I suggest that
this version stays blocked.

-- 
Etienne Millon


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702214: zathura: Slow resizing followed by segfault

2013-03-04 Thread frozencemetery

Sebastian Ramacher  writes:

> I'm unable to reproduce the segfault with 0.1.2-4 and 0.2.2-1 from
> experimental. However, I remember that we have fixed some segfaults in
> the poppler plugin in 0.2.x that were caused by race conditions and
> really unfortunate unfortunate timing of events. Could you please check
> if the segfault is gone in 0.2.2-1?
>
> Both pages in that PDF are quite large, so the high CPU usage is
> somewhat expected.

I can't seem to reproduce the segfault in 0.2.2-1, so in that respect I
suppose the problem is fixed.  However, I also can't get zathura to exit
when viewing the pdf in the experimental version; it ceased responding
to non-scroll input and loaded up the CPU.  Subjectively, up until I
lost response, the rendering took longer but the rest of the interface
(especially scrolling) was more responsive.

Since it appears the segfault is gone, what remains of my complaint is
performance, which is at best wishlist, following the garbage in garbage
out principle.  If you think there's nothing more to be done, feel free
to close this bug.

Thanks.

pgpQpRjkXOE68.pgp
Description: PGP signature

Bug#702238: kawari8 still segfaults on 64bit Linux

2013-03-04 Thread Shyouzou Sugitani

Package: kawari8
Version: 8.2.8-7
Severity: normal

Dear Maintainer,

kawari8 still segfaults on Linux x86_64.(amd64)

The previous fix(#693893) is incomplete.
An updated patch(kawari8-64bit-fix2.patch) is available here:
http://sourceforge.net/tracker/?func=detail&aid=3588933&group_id=47961&atid=451497
(added fix for some files.)

Please consider applying this patch to the package.


-- System Information:
Debian Release: 7.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=ja_JP.UTF-8, LC_CTYPE=ja_JP.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages kawari8 depends on:
ii  libc6 2.13-38
ii  libgcc1   1:4.7.2-5
ii  libpython2.7  2.7.3-7+b1
ii  libstdc++64.7.2-5

kawari8 recommends no packages.

Versions of packages kawari8 suggests:
ii  ninix-aya  4.3.9-1

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#641041: Seems to work

2013-03-04 Thread Tokarski Boleslaw


Hello,

I found the same problem on Ubuntu 12.10, but I believe the case is the 
very same.


It seems that the pam module ignores the contents of /etc/krb5.conf. 
However, adding ccache=KCM:%u to /etc/pam.d/common-auth seems to solve 
the issue.


Br,
Boleslaw Tokarski


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702056: The package libpolybori-dev doesn't ship a flags.conf

2013-03-04 Thread Alexander Dreyer

Hi Julien,
can you check, whether you can extract the information from the pkginfo
file polybori-0.8.pc instead?

I would that ensure that the currently pending spk also generated the
.pc files:
http://trac.sagemath.org/sage_trac/ticket/13989

Best regards,
  Alexander
-- 
Dr. rer. nat. Dipl.-Math. Alexander Dreyer

Abteilung "Systemanalyse, Prognose und Regelung"
Fraunhofer Institut für Techno- und Wirtschaftsmathematik (ITWM)
Fraunhofer-Platz 1
67663 Kaiserslautern

Telefon+49 (0) 631-31600-4318
Fax+49 (0) 631-31600-5318
E-Mail alexander.dre...@itwm.fraunhofer.de
Internet   http://www.itwm.fraunhofer.de/sys/dreyer.html


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#701792: PHP extension installed to wrong directory

2013-03-04 Thread Ondřej Surý

Uploaded to DELAYED/5.

On Mon, Mar 4, 2013 at 8:42 AM, Ondřej Surý  wrote:
> Sebastian,
>
> thanks for the patch. Are you willing to NMU?  Or I can do it (as the
> last time).
>
> Ondrej
>
> On Mon, Mar 4, 2013 at 12:13 AM, Sebastian Ramacher
>  wrote:
>> Control: tags -1 + patch
>>
>> On 2013-02-27 09:45:06, Ondřej Surý wrote:
>>> Package: php-zeroc-ice
>>> Version: 3.4.2-8.1
>>> Severity: grave
>>>
>>> The package php-zeroc-ice.install file hardcodes installation directory:
>>>
>>> usr/php/*.so usr/lib/php5/20090626+lfs
>>>
>>> which is clearly wrong because the php API version has changed.
>>>
>>> rules-php.mk has the correct way of getting the right API version, e.g. 
>>> using php-config5:
>>>
>>> $(php-config5 --extension-dir)
>>
>> The attached patch should do the trick.
>>
>> Regards
>> --
>> Sebastian Ramacher
>
>
>
> --
> Ondřej Surý 



--
Ondřej Surý 


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702239: cinnamon: Missing dependency on python-pyinotify

2013-03-04 Thread Vincent Blut

Package: cinnamon
Version: 1.7.1-1
Severity: normal

Hi,

Please add python-pyinotify to the Depends field, without it
cinnamon-looking-glass can't be launched.

$ cinnamon-looking-glass
Traceback (most recent call last):
  File "/usr/lib/cinnamon-looking-glass/cinnamon-looking-glass.py", line
  19, in 
import pyinotify
ImportError: No module named pyinotify

Cheers,
Vincent


-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'testing-updates'), (500, 'unstable'), 
(1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 3.8-trunk-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages cinnamon depends on:
ii  cinnamon-common  1.7.1-1
ii  dconf-gsettings-backend [gsettings-backend]  0.12.1-3
ii  gconf2   3.2.5-1+build1
ii  gir1.2-accountsservice-1.0   0.6.21-8
ii  gir1.2-atk-1.0   2.4.0-2
ii  gir1.2-caribou-1.0   0.4.4-1
ii  gir1.2-clutter-1.0   1.10.8-2
ii  gir1.2-cogl-1.0  1.10.2-6
ii  gir1.2-coglpango-1.0 1.10.2-6
ii  gir1.2-freedesktop   1.32.1-1
ii  gir1.2-gconf-2.0 3.2.5-1+build1
ii  gir1.2-gdesktopenums-3.0 3.4.2-3
ii  gir1.2-gdkpixbuf-2.0 2.26.1-1
ii  gir1.2-gkbd-3.0  3.4.0.2-1
ii  gir1.2-glib-2.0  1.32.1-1
ii  gir1.2-gmenu-3.0 3.4.2-5
ii  gir1.2-gnomebluetooth-1.03.4.2-1
ii  gir1.2-gtk-3.0   3.4.2-6
ii  gir1.2-javascriptcoregtk-3.0 1.8.1-3.4
ii  gir1.2-json-1.0  0.14.2-1
ii  gir1.2-muffin-3.01.7.1-1
ii  gir1.2-networkmanager-1.00.9.4.0-10
ii  gir1.2-pango-1.0 1.30.0-1
ii  gir1.2-polkit-1.00.105-3
ii  gir1.2-soup-2.4  2.38.1-2
ii  gir1.2-upowerglib-1.00.9.17-1
ii  gir1.2-webkit-3.01.8.1-3.4
ii  gjs  1.32.0-5
ii  gkbd-capplet 3.4.0.2-1
ii  gnome-icon-theme-symbolic3.4.0-2
ii  gnome-session-bin3.4.2.1-3
ii  gnome-settings-daemon3.4.2+git20121218.7c1322-2
ii  gsettings-desktop-schemas3.4.2-3
ii  libatk1.0-0  2.4.0-2
ii  libc62.13-38
ii  libcairo21.12.2-3
ii  libcanberra0 0.28-6
ii  libclutter-1.0-0 1.10.8-2
ii  libcogl-pango0   1.10.2-6
ii  libcogl9 1.10.2-6
ii  libcroco30.6.6-2
ii  libdbus-glib-1-2 0.100.1-1
ii  libgdk-pixbuf2.0-0   2.26.1-1
ii  libgirepository-1.0-11.32.1-1
ii  libgjs0b [libgjs0-libmozjs185-1.0]   1.32.0-5
ii  libgl1-mesa-glx [libgl1] 8.0.5-3
ii  libglib2.0-0 2.33.12+really2.32.4-5
ii  libgnome-desktop-3-2 3.4.2-1
ii  libgnome-keyring03.4.1-1
ii  libgnome-menu-3-03.4.2-5
ii  libgstreamer0.10-0   0.10.36-1.1
ii  libgtk-3-0   3.4.2-6
ii  libjs-jquery 1.7.2+dfsg-1
ii  libjson-glib-1.0-0   0.14.2-1
ii  libmozjs185-1.0  1.8.5-1.0.0+dfsg-4
ii  libmuffin0   1.7.1-1
ii  libnm-glib4  0.9.4.0-10
ii  libnm-util2  0.9.4.0-10
ii  libpango1.0-01.30.0-1
ii  libpolkit-agent-1-0  0.105-3
ii  libpolkit-gobject-1-00.105-3
ii  libpulse-mainloop-glib0  2.0-6
ii  libpulse02.0-6
ii  libstartup-notification0 0.12-1
ii  libx11-6 2:1.5.0-1
ii  libxfixes3   1:5.0-4
ii  libxml2  2.8.0+dfsg1-7
ii  mesa-utils   8.0.1-2+b3
ii  multiarch-support2.13-38
ii  python   2.7.3-4
ii  python-dbus  1.1.1-1
ii  python-gconf 2.28.1+dfsg-1
ii  pyt

Bug#702240: git repo not up to date

2013-03-04 Thread Markus Wanner

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Package: botan1.10
Version: 1.10.3-1
Severity: wishlist

Ond?ej,

I wanted to have a look at the packaging for botan, but either the git
repository is out-of-date or the Vcs-* fields are. Please push or
adjust Vcs-*.

Regards

Markus Wanner
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQQcBAEBCgAGBQJRNJKfAAoJEOhoLRs/MemzCV8f/ijw2D01NdYUcg+0USch135f
xGl1gpH2pzph3wF5/AQ3FkZmvV72lO32+U3sxOOHFCZnU9QA2B7go4CpVIXs1LsP
mblInNbYq76fYbOfW3fYd9qsEjq0kUplgYYTg/v6DsUVGdPcIqdkuatWwmKqABQX
jOOSGe6QRqxR6hovu6t8ogP7emYhxjhCHbg+WuCHxOR54I+qqKdybep1YcdxjZkj
pTKMN5B3WaqX5bXsbovHLLUJRplcVX0/1YR56X+QhQfBY9cI0+qP5ccaZ3EX3Ika
SzNg+AmhrUhQZc0FkSo4vnQStLP8Q78aPDuU00fqBgmSykEOAA9eGu2s0cyngXYR
HgabaFPumBglkuYCeX3b4PZeMMbYVBQJd7sBf79+blssdwDHjknHb/soFhpufGIB
dst+W/fUWPmBqOrLC5wWApGUdoU61NzS+Ko7oJc4aIGro55Cthb/V0shNGp/ZNHA
rmD0qu2ggXSla+8FIXuf5d/DLV/Mn3gCN8E8vyItUEaBwx2guYQWr4bvuKntApjG
yDXymfOaz4/sPsWfZqosSv2H8tmz5drQDXrZqIhYNQ2cepOI1ke2PiESSuZNHCao
tt4XPJhfHT/iQxLNLdvRY+cRMLOcawc4gLAGmiDZEEcvX8FyRRXIYMDkpe00nV+q
hRiMiiD6QjAO3c/BN6OGxGeyfDObyumLfY0wyQw2EI0uA4rWIx57wPN8lt5NFfML
wzbg83h7btxLlHsP6iobb3a5K4LZme9YAAx/K2QYj5jADJFzqRnbe7p2/TgJhugj
8fOm9AZbbKlPyxFXbgwvCuBMfk8ZEtyjMR6K9/i9QEYL3jXf6xGj+hl+LZxk51pL
SOTlR3FgrITRFG+uXxrm3omeJQB+oMadOuemXKqP6OYUw+rRed2HZY19SOlmeR4H
RzfWV4IvXpn8GA7JDGQHbqYLTsM8ZA2uuAqnQWAuqwNX7/mXVrT59jnLMzv5FxnO
FTYrEZsoV3TW21m62EZKshnJ7jkGHebaI28WIQpYthx7nVTI+ovcUz/lC298Twub
PBFtmjYjpT9YuD9Fl03CqQbwCRKNfyWormoeWY7eZhJzKF44rTCeBQ7o0HO6ledO
zHmytgVm1kcURehBTC7Cbhn2PJ5a1RT7Ej3b1nD/tWu6XUPjqvCClwZwwFQiNAiw
V7zgTKU78ZFFkCf4MoISS6yiQRbKoIuFsFizaRuSzSRyx/zrtpv0W7nmJxNW9PnU
N82UPOVOEAF9DiDSwAfhcvAkvOzOCmdcUZwUPaJqD4i6P/X7n6VXGjk38c+uTIOn
Pvgi4pA7ootSz8Z0JS6SRI8RcMjt7+XZfYpJN9RJE7tuuZcaFfdJa8wzk/j6QEw=
=6xPj
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702233: /usr/bin/tinyca2: tinyca won't open saved CA, possibly related to openssl upgrade

2013-03-04 Thread Mateusz Kijowski

I have just tested with a new CA, created with the TinyCA GUI and I
get the same error.


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#701536: RM: subsurface -- RoQA; unmaintained package, maintainer MIA

2013-03-04 Thread Sylvestre Ledru

On 04/03/2013 11:07, Cristian Ionescu-Idbohrn wrote:
>> By the way, I started to work on the packaging. I updated
>> libdivecomputer and I am working on subsurface.
> 
> That sounds super :)

Here it is:
http://anonscm.debian.org/gitweb/?p=collab-maint/subsurface.git;a=summary
http://anonscm.debian.org/gitweb/?p=collab-maint/libdivecomputer.git;a=summary

Khalid, I am sorry but I had to kill the subsurface.git repository. It
was not correctly set up.

I uploaded libdivecomputer. Once it reached the Debian mirror, I will
upload subsurface 3.0.2.

Sylvestre


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#701814: Using lsof as input for os-prober

2013-03-04 Thread Peter Senna Tschudin

Isn't it a good idea to use lsof to determine what is being exported
through iscsi and avoid trying to mount it? Should I try to make the
patch for this?

-- 
Peter


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702241: gnome-packagekit: gpk-update-viewer does not update package index so falsely says is up to date.

2013-03-04 Thread Asterix

Package: gnome-packagekit
Version: 3.4.2-2
Severity: serious
Tags: security
Justification: gpk-update-viewer does not update package index so falsely says 
is up to date - security issue.

Dear Maintainer,

Having installed debian wheezy rc-1, I was expecting to be notified of updates,
or even automatically install them, through gpk-prefs, as my settings were to
have it check and automatically install all updates every day. However, I did
not get any for a couple of days, and so I clicked "check now" on gpk-prefs and
it ran gpk-update-viewer, which told me that my software was up to date.

However, it wasn't up to date. I ran apt-get update in the terminal, and then
gpk-update-viewer again, and it then did have updates, which I could apply.

What I would have expected to happen would be that gpk-update-viewer would
resynchronise the package index files when it was run, or at least make it
obvious that this hadn't been done and that I should do this. The package index
files should definitely be updated hourly/daily/weekly (depending on gpk-
prefs), when the updates are checked for.

I have put this down as a security issue, as most people probably assume that
they will be either notified of (security) updates, or that they will
automatically receive them (especially given the settings in gpk-prefs), and
that if they go onto update-viewer and are told that all software is up to date
they don't need to worry about security updates, but their system won't be up
to date. This will mean that people will have avoidable security holes in their
system.



-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages gnome-packagekit depends on:
ii  dconf-gsettings-backend [gsettings-backend]  0.12.1-3
ii  gnome-packagekit-data3.4.2-2
ii  gnome-settings-daemon3.4.2+git20121218.7c1322-2
ii  libatk1.0-0  2.4.0-2
ii  libc62.13-38
ii  libcairo-gobject21.12.2-3
ii  libcairo21.12.2-3
ii  libcanberra-gtk3-0   0.28-6
ii  libcanberra0 0.28-6
ii  libdbus-1-3  1.6.8-1
ii  libdbus-glib-1-2 0.100.1-1
ii  libfontconfig1   2.9.0-7.1
ii  libgdk-pixbuf2.0-0   2.26.1-1
ii  libglib2.0-0 2.33.12+really2.32.4-5
ii  libgtk-3-0   3.4.2-6
ii  libnotify4   0.7.5-1
ii  libpackagekit-glib2-14   0.7.6-3
ii  libpango1.0-01.30.0-1
ii  libsqlite3-0 3.7.13-1
ii  libupower-glib1  0.9.17-1
ii  libx11-6 2:1.5.0-1
ii  packagekit   0.7.6-3

gnome-packagekit recommends no packages.

gnome-packagekit suggests no packages.

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702242: ITP: libpfm4 -- Library to program the performance monitoring events

2013-03-04 Thread Vincent Danjean

Package: wnpp
Severity: wishlist
Owner: Vincent Danjean 

* Package name: libpfm4
  Version : 4.3.0
  Upstream Author : Stephane Eranian 
* URL : http://perfmon2.sourceforge.net/
* License : BSD-like (see below)
  Programming Lang: C + python bindings
  Description : Library to program the performance monitoring events

 Libpfm4 helps convert from an event name, expressed as a string, to
 the event encoding. The encoding can then be used with specific OS
 interfaces. Libpfm4 also provides OS-specific interfaces to directly
 setup OS-specific data structures to be passed to the kernel. The
 current libpfm4, for instance, provides support for the perf_events
 interface which was introduced in Linux v2.6.31.

Note: this package is a dependency of PAPI (see next ITP)
Note2: libpfm3 was in Debian but it is abandonned upstream (and removed in
 wheezy). libpfm4 is a full rewrite (both projects coexisted during a time)

License:
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
 in the Software without restriction, including without limitation the rights
 to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 
copies
 of the Software, and to permit persons to whom the Software is furnished to do 
so,
 subject to the following conditions:
 .
 The above copyright notice and this permission notice shall be included in all
 copies or substantial portions of the Software.
 .
 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 
IMPLIED,
 INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A
 PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR 
COPYRIGHT
 HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN 
ACTION OF
 CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE 
SOFTWARE
 OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#697676: lvm2: cLVM binary package is missing

2013-03-04 Thread Ferenc Wagner

Julien Cristau  writes:

> Somebody would have to properly maintain its dependencies in debian
> (redhat-cluster, and by extension gfs2-utils, corosync, ...).  They're
> the reason the clvm package had to go.

Hi Julien,

We're running clvm over Corosync in wheezy (were using redhat-cluster
earlier).  Installation wasn't exactly straightforward because of
#614238, but manageable anyway.  I can accept there are problems with
the corosync package in wheezy, but which one is serious enough to
warrant removing clvm support from wheezy altogether?  And what could be
done to fix this?  I'm willing to help out if at all possible.
-- 
Regards,
Feri.


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702243: ITP: papi -- Performance Application Programming Interface library

2013-03-04 Thread Vincent Danjean

Package: wnpp
Severity: wishlist
Owner: Vincent Danjean 

* Package name: papi
  Version : 5.1.0.2
  Upstream Author : University of Tennessee
* URL : http://icl.cs.utk.edu/papi/custom/index.html?lid=51&slid=69
* License : BSD
  Programming Lang: C
  Description : Performance Application Programming Interface library

 Performance Application Programming Interface (PAPI) provides the tool
 designer and application engineer with a consistent interface and methodology
 for use of the performance counter hardware found in most major
 microprocessors. PAPI enables software engineers to see, in near real time,
 the relation between software performance and processor events.
 .
 In addition Component PAPI provides access to a collection of components that
 expose performance measurement opportunites across the hardware and software
 stack.


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702221: [php-maint] Bug#702221: php5: CVE-2013-1635 CVE-2013-1643

2013-03-04 Thread Ondřej Surý

Argh, thanks for poke.

Building for squeeze-security now.

$ diffstat php5_5.3.3-7+squeeze15.debdiff
 debian/patches/CVE-2013-1635.patch |   48 +
 debian/patches/CVE-2013-1643.patch |  135 +
 php5-5.3.3/debian/changelog|7 +
 php5-5.3.3/debian/patches/series   |2
 4 files changed, 192 insertions(+)

I will upload it directly to security-master if you agree.

O.

On Mon, Mar 4, 2013 at 10:36 AM, Moritz Muehlenhoff  wrote:
> Package: php5
> Severity: grave
> Tags: security
> Justification: user security hole
>
> Hi,
> two issues have been reported in php5. CVE-2013-1635 doesn't classify as a 
> security
> issue per the Debian Security policy, but if the fix is non-intrusive we
> could include it nonetheless:
>
> CVE-2013-1643
> http://git.php.net/?p=php-src.git;a=commitdiff;h=c737b89473df9dba6742b8fc8fbf6d009bf05c36
>
> CVE-2013-1635
> http://git.php.net/?p=php-src.git;a=commitdiff;h=702b436ef470cc02f8e2cc21f2fadeee42103c74
>
> Cheers,
> Moritz
>
> ___
> pkg-php-maint mailing list
> pkg-php-ma...@lists.alioth.debian.org
> http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-php-maint



--
Ondřej Surý 


php5_5.3.3-7+squeeze15.debdiff
Description: Binary data

Bug#700015: libx11-6: crashes on systems using Mali graphics

2013-03-04 Thread Сергей И . Королев

good news! i make quick and dirty hacks and this work system wide.

details:
  my libMali.so have one nop instruction in function _init and two
unused bytes in section .init;
  i disassemble libMali.so to find addresses of XInitThreads thunk and
function called from _init;
  i increase section .init lenght to +2;
  i make simple dummy asm code:

.thumb

/*
fake _init
*/
.org 0x02476c
nop
blx XInitThread
bl sub_x
nop

/*
fake XInitThreads thunk
*/
.org 0x024d14
XInitThread:
nop

/*
fake subfunction for _init
*/
.org 0x0268e0
sub_x:
nop

  i compile this code and make objdump -d of result and have:


a.out: file format elf32-littlearm


Disassembly of section .text:

 :
...
   2476c:   46c0nop ; (mov r8, r8)
   2476e:   f000 ead2   blx 24d14 
   24772:   f002 f8b5   bl  268e0 
   24776:   46c0nop ; (mov r8, r8)
...

00024d14 :
   24d14:   46c0nop ; (mov r8, r8)
...

000268e0 :
   268e0:   46c0nop ; (mov r8, r8)

  i replace call to subfunction and nop in _init to generated code;
  and in result i have needed - XInitThreads call after libMali.so load;


2013/3/4 Michal Suchanek :
> On 4 March 2013 09:17, Сергей И. Королев  wrote:
>> in my instalation gnome-shell, empathy, evolution, emerillon and some
>> other application affected to this bug. i think about system way
>> workaround. how about patch libMali.so to call XInitThreads in init
>> after library loaded?
>>
>
> That's presumably possible but you will have to binary-patch the
> library. There is no source.
>
> Also it's good idea to try the workaround with gdb to make sure you
> really have the same problem.
>
> Thanks
>
> Michal


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702244: libopendbx: Vcs-Browser points to empty repository

2013-03-04 Thread Ansgar Burchardt

Source: libopendbx
Version: 1.4.6-3
Severity: minor

Hi,

libopendbx has a Vcs-Browser field pointing to
  http://anonscm.debian.org/gitweb/?p=collab-maint/opendbx.git;a=summary
but that repository is empty.

Ansgar


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702245: Thinkpad T410s cannot detect link

2013-03-04 Thread YunQiang Su

Package: linux
Version: 3.8-1~experimental.1

After upgrade to 3.8-1~experimental.1, my Thinkpad T410s cannot detect
cable link now.
While it works well on 3.2, 3.5, 3.6 and 3.7 kernel.

lspci shows

00:19.0 Ethernet controller: Intel Corporation 82577LM Gigabit Network
Connection (rev 06)

--
YunQiang Su


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#669942: /usr/bin/uscan: [uscan] Fails when using --dehs

2013-03-04 Thread Alessio Treglia

Hello everybody,

any news on this?

Cheers,

-- 
Alessio Treglia  | www.alessiotreglia.com
Debian Developer | ales...@debian.org
Ubuntu Core Developer| quadris...@ubuntu.com
0416 0004 A827 6E40 BB98 90FB E8A4 8AE5 311D 765A


signature.asc
Description: Digital signature

Bug#702246: ITP: ruby-escper -- Collection of tools that make printing of plain text and images to one or several serial thermal ESCPOS printers easy

2013-03-04 Thread Michael Franzl

Package: wnpp
Severity: wishlist
Owner: Michael Franzl 

* Package name: ruby-escper
  Version : 1.1.5
  Upstream Author : Michael Franzl 
* URL : http://github.com/michaelfranzl/ruby-escper
* License : GNU Affero
  Programming Lang: Ruby
  Description : Collection of tools that make printing of plain text and
images to one or several serial thermal ESCPOS printers easy


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702226: live-installer hangs when starting installation from live system

2013-03-04 Thread Ben Armstrong

On 04/03/13 06:20 AM, Praveen A wrote:
> package: live-installer
> version: 40
> severity: critical
> 
> I downloaded debian-wheezy-live-rc1-amd64-gnome-desktop.iso and live
> installer just hangs when selecting "Install Debian Sid" from System
> Tools menu as seen in the screenshot. It was working in wheezy b4
> image.

The component providing desktop installs is debian-installer-launcher,
not live-installer. This component hasn't changed since b4 was released,
and is less tested than installing from the boot menu, which you should
still be able to do. Please make absolutely sure "it was working in
wheezy b4 image" as I have my doubts.

I notice you tested from Virtualbox? Did you try from hardware? I just
tried on an Eee PC model 4G (equipped with 1G RAM). The result was a a
black screen with underscore in the upper left corner and the pointer
frozen in one spot. Touchpad and keyboard are both unresponsive, so at
this point a reboot was my only option.

I retested from a terminal with:

$ gksudo debian-installer-launcher

This briefly flashed a message on stderr that I could not see in time to
copy down.

So I switched to vc1 and tried this to catch the message:

$ sudo debian-installer-launcher
ERROR: 'kexec' is not a valid plugin. Check and try again.

I've run out of time to investigate ... have to catch my bus to work.
I'll look into it more later.

Meanwhile, the installer should be usable from the boot menu.

Ben

-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#700015: libx11-6: crashes on systems using Mali graphics

2013-03-04 Thread Michal Suchanek

Hello,

On 4 March 2013 13:46, Сергей И. Королев  wrote:
> good news! i make quick and dirty hacks and this work system wide.

That's cool but not exactly easily reproducible.

Could you prehaps attach a bsdiff?

Thanks

Michal


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702248: Non-optimal boot priority/dependency of service 'cups'

2013-03-04 Thread Marco Gaiarin

Package: cups
Version: 1.4.4-7+squeeze2


To permit an effective management of the printer queue, i've setup in
/etc/cups/cups-files.conf a line like:

SystemGroup printops

where 'printops' is a group in my LDAP setup (slapd,
libnss/libpam-ldapd).

Every time i reboot a server, cups complain in error_log about:

E [25/Feb/2013:18:24:28 +0100] Unknown SystemGroup "printops" on line 
17 of /etc/cups/cups-files.conf.

and start in an ''half-working'' way, eg daemon run but does not work;
i have to restart cups to get it back.

So, i think that cups service have to boot-depend on slapd/nslcd
services.


Thanks.


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#700015: libx11-6: crashes on systems using Mali graphics

2013-03-04 Thread Сергей И . Королев

I think we can have libMali different version or target. My target
Samsung Exynos and version R3P2.

2013/3/4 Michal Suchanek :
> Hello,
>
> On 4 March 2013 13:46, Сергей И. Королев  wrote:
>> good news! i make quick and dirty hacks and this work system wide.
>
> That's cool but not exactly easily reproducible.
>
> Could you prehaps attach a bsdiff?
>
> Thanks
>
> Michal


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#701792: PHP extension installed to wrong directory

2013-03-04 Thread Sebastian Ramacher

On 2013-03-04 13:17:54, Ondřej Surý wrote:
> Uploaded to DELAYED/5.

Thank you.

Cheers
-- 
Sebastian Ramacher


signature.asc
Description: Digital signature

Bug#701814: Re: Bug#701814: os-prober: damages XFS exported via iSCSI but not mounted locally; potential data loss

2013-03-04 Thread q1werty

Hi,

> os-prober uses 'mount -o ro', or grub-mount from 1.45:

Please excuse me if this is trivial, but
'-o ro' does not prevent write access!
According to man:

"Note that, depending on the filesystem type,  state  and  kernel
behavior, the system may still write to the device. For example,
Ext3 or ext4 will replay its journal if the filesystem is dirty.
To prevent this kind of write access, you may want to mount ext3
or ext4 filesystem with "ro,noload" mount  options  or  set
the block device to read-only mode, see command blockdev(8)."

Maybe for XFS also?


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702213: wine: InstallShield disables GNOME temporarily

2013-03-04 Thread Hilko Bengen

* Josh Gardner:

> Package: wine
> Version: 1.4.1-4
> Severity: important
>
> Dear Maintainer,
> Installing Battlefield 1942 temporarily disables the GNOME desktop on
> Wheezy.

Can you reproduce the problem on your system with the installers of any
freely available demo version of Battlefield 1942?

-Hilko


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702226: live-installer hangs when starting installation from live system

2013-03-04 Thread Praveen A

2013/3/4 Ben Armstrong :
> On 04/03/13 06:20 AM, Praveen A wrote:
>> package: live-installer
>> version: 40
>> severity: critical
>>
>> I downloaded debian-wheezy-live-rc1-amd64-gnome-desktop.iso and live
>> installer just hangs when selecting "Install Debian Sid" from System
>> Tools menu as seen in the screenshot. It was working in wheezy b4
>> image.
>
> The component providing desktop installs is debian-installer-launcher,
> not live-installer. This component hasn't changed since b4 was released,
> and is less tested than installing from the boot menu, which you should
> still be able to do. Please make absolutely sure "it was working in
> wheezy b4 image" as I have my doubts.

Yes, it was working in b4. I have tested it on multiple systems
(virtual and real hardware). Thanks for telling me the correct
component.

Yes, installing from boot menu works.

> I notice you tested from Virtualbox? Did you try from hardware? I just
> tried on an Eee PC model 4G (equipped with 1G RAM). The result was a a
> black screen with underscore in the upper left corner and the pointer
> frozen in one spot. Touchpad and keyboard are both unresponsive, so at
> this point a reboot was my only option.

Since it is not specific to hardware (same virtual machine
configuration worked with b4), I think testing with vm is enough. But
if required I can test on a real hardware too. Looks like you were
able to reproduce it with a real hardware too.

> I retested from a terminal with:
>
> $ gksudo debian-installer-launcher
>
> This briefly flashed a message on stderr that I could not see in time to
> copy down.
>
> So I switched to vc1 and tried this to catch the message:
>
> $ sudo debian-installer-launcher
> ERROR: 'kexec' is not a valid plugin. Check and try again.
>
> I've run out of time to investigate ... have to catch my bus to work.
> I'll look into it more later.

Thanks!

> Meanwhile, the installer should be usable from the boot menu.

yes, it works from the boot menu.

-- 
പ്രവീണ്‍ അരിമ്പ്രത്തൊടിയില്‍
You have to keep reminding your government that you don't get your
rights from them; you give them permission to rule, only so long as
they follow the rules: laws and constitution.


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#698581: Similar problem reproduced on different computer

2013-03-04 Thread Ben Hutchings

Control: tag -1 patch upstream fixed-upstream

On Mon, 2013-03-04 at 08:13 +0100, Andreas Glaeser wrote:
[...]
> When I realised, that this actually was a disk-full-issue, I downgraded the 
> bug to
> 'wishlist' and thought I was going to close it, when it was verified, but now 
> I thin the
> real problem is that during the build-process the user is not informed, that 
> there is
> actually no disk space left, but one gets quite misleading error messages.
[...]

No, the original error message was correct.  I can reproduce it by
enabling both these options in 3.2:

CONFIG_MK7=y
CONFIG_EFI_STUB=y

Fix attached.

Ben.

-- 
Ben Hutchings
Always try to do things in chronological order;
it's less confusing that way.
From 0f905a43ce955b638139bd84486194770a6a2c08 Mon Sep 17 00:00:00 2001
From: Matt Fleming 
Date: Tue, 20 Nov 2012 13:07:46 +
Subject: [PATCH] x86, efi: Fix processor-specific memcpy() build error

Building for Athlon/Duron/K7 results in the following build error,

arch/x86/boot/compressed/eboot.o: In function `__constant_memcpy3d':
eboot.c:(.text+0x385): undefined reference to `_mmx_memcpy'
arch/x86/boot/compressed/eboot.o: In function `efi_main':
eboot.c:(.text+0x1a22): undefined reference to `_mmx_memcpy'

because the boot stub code doesn't link with the kernel proper, and
therefore doesn't have access to the 3DNow version of memcpy. So,
follow the example of misc.c and #undef memcpy so that we use the
version provided by misc.c.

See https://bugzilla.kernel.org/show_bug.cgi?id=50391

Reported-by: Al Viro 
Reported-by: Ryan Underwood 
Cc: H. Peter Anvin 
Cc: sta...@vger.kernel.org
Signed-off-by: Matt Fleming 
---
 arch/x86/boot/compressed/eboot.c |2 ++
 1 file changed, 2 insertions(+)

diff --git a/arch/x86/boot/compressed/eboot.c b/arch/x86/boot/compressed/eboot.c
index c760e07..e87b0ca 100644
--- a/arch/x86/boot/compressed/eboot.c
+++ b/arch/x86/boot/compressed/eboot.c
@@ -12,6 +12,8 @@
 #include 
 #include 
 
+#undef memcpy			/* Use memcpy from misc.c */
+
 #include "eboot.h"
 
 static efi_system_table_t *sys_table;


signature.asc
Description: This is a digitally signed message part

Bug#700015: libx11-6: crashes on systems using Mali graphics

2013-03-04 Thread Michal Suchanek

On 4 March 2013 14:24, Сергей И. Королев  wrote:
> I think we can have libMali different version or target. My target
> Samsung Exynos and version R3P2.

Yes, I am running r3p0 which is the version available for A10 at this
time. Still r3p2 diff is useful at least for users of that version.

Thanks

Michal


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#659899: CVE-2011-0790: XSS

2013-03-04 Thread Salvatore Bonaccorso

Hi all

On Mon, Feb 27, 2012 at 08:27:05PM +0100, Florian Weimer wrote:
> * Antoine Beaupré:
> 
> > I don't actually know - I followed your lead and used that patch in the
> > bugzilla Redhat bugtrackers:
> >
> > https://bugzilla.redhat.com/attachment.cgi?id=556619&action=diff&context=patch&collapsed=&headers=1&format=raw
> 
> *grml*
> 
> Fedora has already released the potentially incorrect patch.  I've
> asked on the oss-security mailing list.  Sorry for the delay.

I have contacted Tobi Oetiker regarding the issues mentioned and he
promptly replied to me. He uploaded a new upstream version (2.6.9)
which changes the regexpes to:

qr/[<>%&'";]/

So this can be integrated in the fix addressing stable-security.

p.s.: could also be updated for testing/unstable to have the fix in
upcoming stable release.

p.s.2: Thank you Tobi!

Regards,
Salvatore

-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702234: #702234 gnome-shell: Screen lock delayed on password prompt version graph

2013-03-04 Thread Timo Juhani Lindfors

Hi,

to me this sounds like a general X limitation and not an issue in
gnome-shell. I can reproduce this even in squeeze with gnome2:

1) start gnome-terminal
2) click the "File" menu and don't close it
3) close the laptop lid
4) press the power button to start the system again

The result is that the system hibernates but the screen lock does not
act because the menu is open. Afaik Xorg upstream is well aware of this
and the real fix is wayland. See e.g. 

   "screensaver won't trigger during pop-up"

  -- http://people.freedesktop.org/~daniels/lca2013-wayland-x11.pdf
  -- 
http://mirror.linux.org.au/linux.conf.au/2013/webm/The_real_story_behind_Wayland_and_X.webm

I don't think it is realistic for Debian to start fixing X either so
maybe the most we can do is to document this in release notes but even
that sounds like an overreaction to me.

-Timo


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#702245: Thinkpad T410s cannot detect link

2013-03-04 Thread Ben Hutchings

Control: tag -1 upstream
Control: forwarded -1 e1000-de...@lists.sourceforge.net

On Mon, 2013-03-04 at 20:58 +0800, YunQiang Su wrote:
> Package: linux
> Version: 3.8-1~experimental.1
> 
> After upgrade to 3.8-1~experimental.1, my Thinkpad T410s cannot detect
> cable link now.
> While it works well on 3.2, 3.5, 3.6 and 3.7 kernel.
> 
> lspci shows
> 
> 00:19.0 Ethernet controller: Intel Corporation 82577LM Gigabit Network
> Connection (rev 06)

I'm forwarding this to the Intel network driver developers.

You will probably need to provide some additional information:
- All boot messages relating to this device
  ('grep 00:19.0 /var/log/dmesg' should show you them)
- Output of 'ethtool eth0' (or whatever the interface name is)

Ben.

-- 
Ben Hutchings
Always try to do things in chronological order;
it's less confusing that way.


signature.asc
Description: This is a digitally signed message part

1 2 3 4 >

1 - 100 of 322 matches

Mail list logo