date:20180211

bug#30394: ARM compilation via qemu binfmt - Assertion failure

2018-02-11 Thread Pjotr Prins

On Sun, Feb 11, 2018 at 12:45:18AM +0100, Chris Marusich wrote: > Danny Milosavljevic writes: > > > This is only fixed in glibc 2.27 (not in core-updates). > > Should we upgrade glibc in core-updates, then? Or is it better to do it > in the next core-updates cycle, to avoid still more unexpecte

bug#30414: Libreoffice CVE-2018-6871 [remote read of any local files]

2018-02-11 Thread Marius Bakke

[the café I'm at is blocking outgoing email, so resending through a browser] On Sun, Feb 11, 2018, at 1:27 AM, Marius Bakke wrote: > > > On February 10, 2018 10:49:52 PM GMT+01:00, Leo Famulari > wrote: > >I'm trying to update LibreOffice to 5.4.5.1. > > > >This version of LibreOffice requires

bug#30414: Libreoffice CVE-2018-6871 [remote read of any local files]

2018-02-11 Thread Leo Famulari

On Sun, Feb 11, 2018 at 02:29:02PM +, Marius Bakke wrote: > I gave this a go, and there were (of course) a lot more changes > necessary to make this newer libreoffice build. In particular, it now > works with an external xmlsec (albeit NSS only), and it wants to build > PDFium(!) in the same f

bug#30414: Libreoffice CVE-2018-6871 [remote read of any local files]

2018-02-11 Thread Marius Bakke

Leo Famulari writes: >> From a28e82e1e3d480d5edf374cea062536d4c8d6d82 Mon Sep 17 00:00:00 2001 >> From: Marius Bakke >> Date: Sun, 11 Feb 2018 11:46:27 +0100 >> Subject: [PATCH] gnu: libreoffice: Update to 5.4.5.1 [CVE-2018-6871]. >> >> * gnu/packages/check.scm (cppunit-1.14): New public variab

bug#30415: Unzip CVE-2018-1000031 and others

2018-02-11 Thread Leo Famulari

The 3rd-party security advisory suggests that the bugs are fixed in UnZip 6.1c23: https://www.sec-consult.com/en/blog/advisories/multiple-vulnerabilities-in-infozip-unzip/index.html See unzip610c23.zip here: http://antinode.info/ftp/info-zip/ Unfortunately, this is a zip file, unlike the 9 year

bug#30414: Libreoffice CVE-2018-6871 [remote read of any local files]

2018-02-11 Thread Marius Bakke

On Sun, Feb 11, 2018, at 3:08 PM, Marius Bakke wrote: > Leo Famulari writes: > > >> From a28e82e1e3d480d5edf374cea062536d4c8d6d82 Mon Sep 17 00:00:00 2001 > >> From: Marius Bakke > >> Date: Sun, 11 Feb 2018 11:46:27 +0100 > >> Subject: [PATCH] gnu: libreoffice: Update to 5.4.5.1 [CVE-2018-6871].

bug#30415: Unzip CVE-2018-1000031 and others

2018-02-11 Thread Leo Famulari

On Sat, Feb 10, 2018 at 01:57:28PM -0500, Leo Famulari wrote: > We need to fix CVE-2018-131, CVE-2018-132, CVE-2018-133, > CVE-2018-134, CVE-2018-135 in UnZip: > > http://seclists.org/oss-sec/2018/q1/134 > https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-131 and etc

bug#30414: Libreoffice CVE-2018-6871 [remote read of any local files]

2018-02-11 Thread Leo Famulari

On Sun, Feb 11, 2018 at 03:08:59PM +, Marius Bakke wrote: > I've attached a revised patch that adds libltdl, and removes the > automake inputs. However, I have to leave now, so could you please > verify that it works and push? I can provide moral support on #guix if > nothing else :-) Can so

bug#30370: guix system init can't find guix-register

2018-02-11 Thread Diego Nicola Barbato

Hello, l...@gnu.org (Ludovic Courtès) writes: > Diego Nicola Barbato skribis: > >> But I also tried running >> "grep -r d4wwx93gqizx132zjk7h1ir7rzph0pig ~/.config/guix/latest" which >> returned this: >> /home/diego/.config/guix/latest/guix/config.scm: >> "/gnu/store/d4wwx93gqizx132zjk7h1ir7rzp

bug#30401: gitolite some important hooks not working

2018-02-11 Thread Ricardo Wurmus

n...@crash.cx writes: > A paste that lost its formatting but speaks for itself: > > Counting objects: 4, done. > Delta compression using up to 4 threads. > Compressing objects: 100% (3/3), done. > Writing objects: 100% (4/4), 1.03 KiB | 1.03 MiB/s, done. > Total 4 (delta 0), reused 0 (delta 0) >

bug#30401: gitolite some important hooks not working

2018-02-11 Thread ng0

On Sun, 11 Feb 2018, Ricardo Wurmus wrote: > n...@crash.cx writes: > >> A paste that lost its formatting but speaks for itself: >> >> Counting objects: 4, done. >> Delta compression using up to 4 threads. >> Compressing objects: 100% (3/3), done. >> Writing objects: 100% (4/4), 1.03 KiB | 1.03 MiB

bug#30428: guix git-fetch doesn't specify "--depth 1" - git clone clones a lot without any use

2018-02-11 Thread Danny Milosavljevic

git-fetch doesn't allow specifying "--depth 1". That means the repo clones are needlessly large. Since in packages we only need one specific commit anyhow why do we fetch all the other commits?

bug#30365: Offloading sometimes hangs

2018-02-11 Thread Ricardo Wurmus

Hi Ludo, > l...@gnu.org (Ludovic Courtès) skribis: > >> So what we have here is that the Scheme procedure ‘select’ returned >> stdin as “ready for reading”. How did that happen? I believe this is >> due to : ‘scm_i_prepare_to_wait_on_fd’ >> returns 1, so ‘select’ ret

bug#30394: ARM compilation via qemu binfmt - Assertion failure

bug#30414: Libreoffice CVE-2018-6871 [remote read of any local files]

bug#30414: Libreoffice CVE-2018-6871 [remote read of any local files]

bug#30414: Libreoffice CVE-2018-6871 [remote read of any local files]

bug#30415: Unzip CVE-2018-1000031 and others

bug#30414: Libreoffice CVE-2018-6871 [remote read of any local files]

bug#30415: Unzip CVE-2018-1000031 and others

bug#30414: Libreoffice CVE-2018-6871 [remote read of any local files]

bug#30370: guix system init can't find guix-register

bug#30401: gitolite some important hooks not working

bug#30401: gitolite some important hooks not working

bug#30428: guix git-fetch doesn't specify "--depth 1" - git clone clones a lot without any use

bug#30365: Offloading sometimes hangs

13 matches

Site Navigation

Mail list logo

Footer information