[Bug 315507] Re: Unable to remove Suhosin patch
Hi, sorry ... from my side (Debian Maintainer), I cant reproduce the problem. You neither provided logs (suhosin logs to syslog) nor any example php scripts to verify your problem. Until I don't have any reproducible facts, I can't anything for you. Anyways .. maybe the guys from Ubuntu can fix a bug which is unreproducible. With kind regards, Jan. -- Unable to remove Suhosin patch https://bugs.launchpad.net/bugs/315507 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 225600] Re: [Hardy][Regression] PHP 5.2.4 symlink bug breaks TYPO3 default setup
I think adding the fix to a package in backports is a good compromise. I wouldn't even suggest necessarily upgrading PHP to a newer version, just fixing this obvious bug. I don't disagree with your concern that changing this behavior now may affect people that have already had to work around it, but conversely I think it's important that it be fixed specifically because this is an LTS release. People running this release may not otherwise be able to upgrade to a fixed version for at least 2 years. I'd certainly be happy to help out with the backport in some way, especially regarding testing, but I'm not very familiar with deb packaging. -- [Hardy][Regression] PHP 5.2.4 symlink bug breaks TYPO3 default setup https://bugs.launchpad.net/bugs/225600 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 315507] Re: Unable to remove Suhosin patch
The error I get is the same StephenA reported: "ALERT - canary mismatch on efree() - heap overflow detected (attacker '', file '')" and I get it by calling odbc_execute() or odbc_exec() with any query. The script I used to reproduce the problem is a simple test script with just the db connection and the query. I don't have the logs at hand right now, I'll post them tomorrow. -- Unable to remove Suhosin patch https://bugs.launchpad.net/bugs/315507 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 315507] Re: Unable to remove Suhosin patch
To those who are experiencing this issue, and would like it fixed: PLEASE provide more specific detail on exactly how to reproduce this issue. So far, we do not even seem to have information on which release of Ubuntu is involved, much less which versions of apache2 and php5 and Joomla. Clear and informative bug reports are essential. Without a clear set of steps show in detail how to reproduce this issue, it is highly unlikely any further progress can be made. A complete bug report should include: * The specific version of Ubuntu that the reporter is running (example: Ubuntu Server 9.04 Jaunty on amd64) * The specific version of the package(s) the reporter is using (use dpkg-query -W PACKAGENAME for this) * The actions taken to produce the problem (including any relevant changes to configuration files, full details of any software installed "by hand" or from non-Ubuntu package repositories) and what the web browser user does to trigger the bug, if we are dealing with a web application) * Whether or not it is possible for the reporter to reproduce the bug (by following these actions) * The expected result of these actions * The actual result of these actions (including all relevant log file entries) If you are experiencing this reported issue, please provide as many of the above items of information as you possibly can. Thanks! -- Unable to remove Suhosin patch https://bugs.launchpad.net/bugs/315507 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 383697] Re: lsb_release crashed with ImportError in ()
On my system (this is by no means necessarily complete): ./postfix.config:27:my $distribution = lc(`lsb_release -is 2>/dev/null`); ./samba.postinst:125: && [ "`lsb_release -s -i`" = "Ubuntu" ] samba depends on lsb-base so it's probably OK. postfix has no way of doing so here - the only way to make this work would be to make lsb_release behave truly as Essential. At least for the moment, I think it would be better for postfix to do this check at build-time. ** Also affects: postfix (Ubuntu) Importance: Undecided Status: New ** Changed in: postfix (Ubuntu) Importance: Undecided => Medium ** Changed in: postfix (Ubuntu) Status: New => Triaged -- lsb_release crashed with ImportError in () https://bugs.launchpad.net/bugs/383697 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to postfix in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 315507] Re: Unable to remove Suhosin patch
An attempted set of steps to reproduce this issue follows. I failed to reproduce it! Those who can reproduce it, please document, in a way similar to this, exactly how you (and so others!) can also reproduce this issue. Just in case the web display on LP messes up my PHP script, I am attaching the odbctest.php test script I used, too. Steps to Try to Reproduce LaunchPad Bug #315507 1) Create fresh virtual machine, install Ubuntu Server 9.04 Jaunty. Choose all the defaults, set your own time zone and your own user name and password. Pick no tasks, do a base system install only. Install was done from from ISO image ubuntu-9.04-server-i386.iso (md5sum is 20480057590ff8b80ad9094f40698030 and the ISO was downloaded from http://releases.ubuntu.com/jaunty/ubuntu-9.04-server-i386.iso ). Note: virtualbox-ose 2.1.4-dfsg-1ubuntu3 was used for this VM, but any other virtual machine setup (KVM, vmware server, etc) should also work fine, as would installing to a spare physical machine. 2) Update System and reboot sudo apt-get update && sudo apt-get dist-upgrade -y ## Update system sudo shutdown -r now ## Reboot system to pick up new kernel etc. 3) Install LAMP Server packages sudo tasksel install lamp-server ## Install LAMP server Note: Provide a password for MySQL server when the installer requests one. Remeber this password (I used "secret"). 4) We need ODBC to reproduce issue, so set up for ODBC to MySQL. sudo apt-get install php5-odbc libmyodbc unixodbc -y sudo cp -p /usr/share/libmyodbc/odbcinst.ini /etc/ sudo cp -p /usr/share/doc/libmyodbc/examples/odbc.ini /etc/ sudo service apache2 restart Note: The only two config files changed from their defaults are /etc/odbc.ini and /etc/odbcinst.ini which are zero length by default. The cp commands above copy the supplied example files, no changes to these examples are needed for this test setup. 5) Create a PHP test web page under /var/www/ and verify it runs echo -e "\n" |sudo tee /var/www/phpinfo.php wget -O info.html http://localhost/phpinfo.php w3m info.html ## Examine carefully, esp. Suhosin info Note: info.html should show the full phpinfo output, and it should include the information that "This server is protected with the Suhosin patch". Keep the info.html file in case it is needed later on during testing. 6) Create a test database and a testdb table in it, and 2 records PW=secret ## Use the password you set for mysql root earlier echo "create database test;" |mysql -uroot -p"$PW" echo "create table testdb ( id int );" |mysql -uroot -p"$PW" test echo "insert into testdb values (42);" |mysql -uroot -p"$PW" test echo "insert into testdb values (2001);" |mysql -uroot -p"$PW" test 7) Create PHP page that uses odbc_connect() and odbc_exec() cat >odbctest.php <<"EOF" \n"; } odbc_free_result($result); odbc_close($connection); ?> EOF sudo cp -p odbctest.php /var/www/ 8) Browse the odbctest.php page w3m http://localhost/odbctest.php NOTE: w3m should display two lines, one with the number 42 and the other with the number 2001. 9) Repeat this test a few thousand times, since issue is intermittent ab -n 5000 http://localhost/odbctest.php 10) Repeat step 8 to check whether PHP and ODBC are still working fine 11) Document exact versions of packages involved: dpkg-query -W apache2 libapache2-mod-php5 libmyodbc \ mysql-server php5-common php5-cli php5-odbc apache2 2.2.11-2ubuntu2.2 libapache2-mod-php5 5.2.6.dfsg.1-3ubuntu4.1 libmyodbc 3.51.15r409-4ubuntu1 mysql-server5.1.30really5.0.75-0ubuntu10.2 php5-cli5.2.6.dfsg.1-3ubuntu4.1 php5-common 5.2.6.dfsg.1-3ubuntu4.1 php5-odbc 5.2.6.dfsg.1-3ubuntu4.1 SUMMARY: All software involved behaved as expected. Reported issue #315507 was not reproduced. ** Attachment added: "odbctest.php test script trying to reproduce #315507" http://launchpadlibrarian.net/29264353/odbctest.php -- Unable to remove Suhosin patch https://bugs.launchpad.net/bugs/315507 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 230016] Re: [intrepid] Rebuild with perl 5.10
** Branch linked: lp:ubuntu/karmic/sigc -- [intrepid] Rebuild with perl 5.10 https://bugs.launchpad.net/bugs/230016 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openldap2.3 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 315507] Re: Unable to remove Suhosin patch
As a further test, I have also installed php5-suhosin, rebooted the virtual machine, and then retested it with 100,000 repetitions using ab. It all still works fine. /var/log/apache2/error.log contains no errors relating to "canary mismatch", and even doing sudo grep -ri "canary mismatch" /var/log/ shows no output. Jonathan -- Unable to remove Suhosin patch https://bugs.launchpad.net/bugs/315507 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 252686] Re: Reload action on init script kills daemon
I confirm that the version in hardy-proposed fixes the reload issue. ** Tags removed: verification-needed -- Reload action on init script kills daemon https://bugs.launchpad.net/bugs/252686 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to freeradius in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
