Package: telegram-desktop
Version: 4.5.3+ds-1+b1
Severity: normal
Hi.
Since the latest upgrade, telegram-desktop ignores the shift-modifier on my
system.
cu
AW
-- Package-specific info:
-- System Information:
Debian Release: 11.1
APT prefers testing
APT policy: (90, 'testing'), (90, 'stab
Moin,
begin quotation from Markus Demleitner (in
<20220921185014.db6o56sxwieo3vnm@victor>):
> On Wed, Sep 21, 2022 at 11:36:08AM +0200, Arne Wichmann wrote:
> > Bail out! ERROR:common/util.c:67:strip_ansi_escapes: assertion failed (err
> > == NULL): Error while compili
Package: luakit
Version: 1:2.2.1-1
Severity: grave
Justification: renders package unusable
Luakit aborts saying:
Bail out! ERROR:common/util.c:67:strip_ansi_escapes: assertion failed (err ==
NULL): Error while compiling regular expression
?[\u001b\u009b][[()#;?]*(?:[0-9]{1,4}(?:;[0-9]{0,4})*)?[
Package: luakit
Version: 1:2.2.1-1
Severity: wishlist
Tags: upstream
When I view a HTTPS-page with no usable certificate, I get a message like
the following:
Your connection may be insecure!
A problem occurred while loading the URL https://[...]
Unacceptable TLS certificate: The certificate doe
you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@saar.de)
signature.asc
Description: PGP signature
want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@saar.de)
signature.asc
Description: PGP signature
eceived
this although the mail probably bounced.)
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
> > On Sat, May 16, 2015 at 03:07:57PM +0200, Sebastian Ramacher wrote:
> > > > On 2015-05-15 15:22:28, Alessandro Ghedini wrote:
> > > > > On Fri, May 15, 2015 at 11:05:17AM +0200, Sebastian Ramacher wrote:
> > > > > > On 2015-05-14 20:41:15, Arne W
6:11.3-1
> > >
> > > On 2015-05-14 20:41:15, Arne Wichmann wrote:
> > > > Package: libavcodec56
> > > > Version: 6:11.3-2
> > > > Severity: grave
> > > > Tags: security
> > > > Justification: user security hole
> >
Package: libavcodec56
Version: 6:11.3-2
Severity: grave
Tags: security
Justification: user security hole
Hi, as far as I can see this has not yet been reported or fixed:
CVE-2014-7937 : Multiple off-by-one errors in libavcodec/vorbisdec.c in
FFmpeg before 2.4.2, as used in Google Chrome before 40
an free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
-BEGIN PGP SIGNATURE-
Version: GnuPG v1
iQIcBAEBCAAGBQJVBs5EAAoJEENYfBy4DUs+5vgP/07qI3cTAKOeTbPH5BcBS+XB
fNJFmOtTUdXaC9FW0YMAf/kLDtCeI5WXypY0gERyaoh4OaIdEhiWQ1nEIcBD/C0T
Z09s0D1L/1lypK3sCz+PO34IlF
don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
-BEGIN PGP S
.
> -- Spock, "Day of the Dove", stardate unknown
>
> -- Weitergeleitete Nachricht --
> From: Arne Wichmann
> To: Debian Bug Tracking System
> Cc:
> Date: Sun, 07 Dec 2008 20:18:40 +0100
> Subject: lvm2: should not uninstall when th
begin quotation from Moritz Muehlenhoff (in
<20140301122144.ga11...@inutil.org>):
> Version: 2.18-1
>
> On Fri, Aug 23, 2013 at 02:13:40PM +0200, Arne Wichmann wrote:
> > tags #717544 + patch
> >
> > Hi.
> >
> > A patch for CVE-2013-2207 is av
begin quotation from Antonio Terceiro (in <20140212131039.ga2...@debian.org>):
> On Mon, Feb 10, 2014 at 03:49:31PM +0100, Arne Wichmann wrote:
> > There has been no action on this bug for over a year now. Is there any plan
> > to do something about this?
>
> not qui
Package: libav-tools
Version: 6:9.11-1
Severity: grave
Tags: security
Justification: user security hole
Hi...
As far as I can see, CVE-2011-3935 [1] applies to libav-tools. As the
descriptions for the problem are bit low on information I use a high
severity - feel free to lower it if that is not
an free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Package: logcheck
Version: 1.3.15
Severity: wishlist
Hi...
There is one thing I would like to have in logcheck for quite a long time
already:
Invent a mechanism by which a pattern is only mailed (or not mailed) if
another pattern was seen a given time before it (or also possibly after
it).
For
Thank you for reacting quickly!
begin quotation from Theodore Ts'o (in <20140112234500.ga15...@thunk.org>):
> On Sun, Jan 12, 2014 at 09:27:14PM +0100, Arne Wichmann wrote:
> > This grave problem is now open for more than two months. Is there any plan
> > to resolve
self. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
ou but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
27;t support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Package: libnss3
Version: 2:3.14.5-1
Severity: important
Tags: security, wheezy, squeeze
Hi!
You recently fixed CVE-2013-1741 in unstable, but it is still open for wheezy
and squeeze.
cu
AW
-- System Information:
Debian Release: 7.3
APT prefers stable
APT policy: (500, 'stable')
Architectu
begin quotation from Dan Espen (in ):
> Arne Wichmann writes:
>
> > begin quotation from Schaaf, Jonathan P (GE Healthcare) (in
> > ):
> >> > Ok, doing some tests it seems that the logic of setting window/icon
> >> > names in fvwm is broken.
>
ou must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
RING) = "icon"
WM_NAME(STRING) = "nix"
(560) aw@anhrefn $ echo -ne "\033]2;title\007"
(561) aw@anhrefn $ xprop -id 0x282 |grep WM_.*NAME|grep -v LOCALE
WM_ICON_NAME(STRING) = "icon"
WM_NAME(STRING) = "title"
In any of the rxvt-cases, WM_NAME is di
Package: liblcms1
Version: 1.19.dfsg-1.2
Severity: important
Tags: security
Dear Maintainer,
CVE-2013-4160 also applies to lcms.
cu
AW
-- System Information:
Debian Release: jessie/sid
APT prefers testing
APT policy: (500, 'testing'), (500, 'stable'), (50, 'unstable'), (40,
'experimental'
replying to this email.
some of these still do not seem fixed to me...
> Date: Tue, 16 Jul 2013 02:14:18 +0200
> From: Arne Wichmann
> To: Debian Bug Tracking System
> Subject: libavcodec53: CVEs CVE-2013-0844 to CVE-2013-0874, CVE-2013-3670,
> CVE-2013-3672, CVE-2013-3674
>
to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Hi!
Is there any fix in stable for tiff3 planned?
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
A
ne can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
27;t support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Package: libavcodec53
Version: 6:0.8.7-1
Severity: grave
Tags: security
Justification: user security hole
Dear Maintainer,
I have here another series of CVEs for libav. Some of these are fixed, some
of these I was not able to check. Those without comment were checked by me
and seem valid - at lea
d.o. for the time
being. If somebody pops up and is willing to maintain the events list I am
willing to revert this.
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
ly as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
self. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
7;t want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Hi!
Is there any plan to fix CVE-2012-3480 / #684889 in stable?
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debi
icted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Fust FYI: I have mostly the same problems here.
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann
Mon, Nov 26, 2012 at 8:30 PM, Arne Wichmann wrote:
>
> > I have here another series of CVEs for ffmpeg/libav:
> >
> > CVE-2012-2882
>
> Libav's ogg decoder is a bit different to the one in FFmpeg. Can you
> please provide a testfile so that we can test if this is
Package: wesnoth-1.11-dm
Version: 1:1.11.0-1
Severity: normal
Dear Maintainer,
While playing 'Delfadors Memoirs' in the Szenario DM-Dark_Sky_Over_Weldyn
the game dies with "Error while playing the game: game_error: invalid
side(1) found in unit definition". I will try to attach the relevant save
Source: libav
Version: 0.8.4
Severity: grave
Tags: security
Justification: user security hole
Dear Maintainer,
I have here another series of CVEs for ffmpeg/libav:
CVE-2012-2882
CVE-2012-5359
CVE-2012-5360
CVE-2012-5361
For the last 3 http://technet.microsoft.com/en-us/security/msvr/msvr12-017
? Are they fixed?
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.
Hi...
This bug is still open in stable - is there any plan for a fix?
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debi
ne can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Package: openssl
Version: 0.9.8o-4squeeze13
Severity: grave
Tags: security
Justification: user security hole
openssl in squeeze (at least up to 0.9.8o-4squeeze13) is vulnerable to
CVE-2011-5095 [1]. For reference you might have a look at [2] - the problem
seems to be that fips/dh/fips_dh_key.c doe
t yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
an free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
one can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
found 675872 5.1.63-0+squeeze1
thanks
This is still open in stable.
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debi
begin quotation from Norbert Preining (in
<20120627143050.ge25...@gamma.logic.tuwien.ac.at>):
> On Mi, 27 Jun 2012, Arne Wichmann wrote:
> > Given that, the relevant files should be removed from debian, as they are
> > not DFSG-free. Am I wrong there?
>
> Yes
begin quotation from Francesco Poli (in
<20120625215725.69523c3a3df0a27f62672...@paranoici.org>):
> On Mon, 25 Jun 2012 10:36:50 +0200 Arne Wichmann wrote:
>
> > So, at least as far as I can see, there are a number of things to be done
> > in various time frames:
>
begin quotation from Norbert Preining (in
<20120619024124.gd14...@gamma.logic.tuwien.ac.at>):
> On Sa, 16 Jun 2012, Arne Wichmann wrote:
> > > Bug #483217 about licensing issues in files by Donald Arseneau was given
> > > an exception for lenny. Do you plan to do
begin quotation from Francesco Poli (in
<20120620232034.ae7eb33bd4efe458d8ed7...@paranoici.org>):
> On Sat, 16 Jun 2012 18:38:00 +0200 Arne Wichmann wrote:
> > This serious bug is now open without any action for more than a year. Is
> > that supposed to change?
>
crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
begin quotation from Adam D. Barratt (in
<1339930157.7014.2.ca...@jacala.jungle.funky-badger.org>):
> On Sun, 2012-06-17 at 12:14 +0200, Arne Wichmann wrote:
> > Just to remember... As far as I can see there are no more rdepends left.
> > Are there any more reasons not to r
self. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
t
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
ou must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
27;t support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
ou but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
self, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
self. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
ou but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
ne can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
ne can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
se his work in a more useful
> way?
And for wheezy again?
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debi
begin quotation from Moritz Mühlenhoff (in
<20120416154357.GA4565@pisco.westfalen.local>):
> On Mon, Apr 16, 2012 at 12:43:40AM +0100, Nicholas Bamber wrote:
> > On 15/04/12 16:18, Arne Wichmann wrote:
> > >Found: 665012 1.4.03-1.1
> > >
> > >As far as
Package: mysql-server-5.1
Version: 5.1.61-0+squeeze1
Severity: important
Hi. Quoting from the RedHat Bugreport [1]:
CVE-2012-0882: unspecified remote exploit (released with VulnDisco Pack
Professional 9.17).
This is mostly a heads-up as there is not enough information to fix this bug.
See also:
icted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Package: linux-2.6
Version: 3.2.16-1
Severity: grave
Tags: security
Justification: user security hole
This seems to have slipped through the kernel-sec repository...
Citing Redhat:
The issue is that the int3 handler uses a per CPU debug stack, and calls
do_traps() with interrupts enabled but pre
Package: rsyslog
Version: 5.8.11-1
Severity: normal
Dear Maintainer,
For some time now I receive some new error messages by mail from cron:
/etc/cron.daily/logrotate:
invoke-rc.d: action rotate is unknown, but proceeding anyway.
Source: pam
Severity: normal
Tags: security
Hi, citing from ubuntu
(https://bugs.launchpad.net/ubuntu/+source/pam/+bug/610125/comments/0):
> pam_motd calls the scripts in /etc/update-motd.d/ as root without
> sanitising the environment. While that is acceptable when called for
> instance by sshd
ourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
ou but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
So, what happened to these benchmarks?
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann
lf. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Mon, Dec 26, 2011 at 01:30:10AM +0100, Bernd Zeimetz wrote:
> > On 12/25/2011 11:11 PM, Arne Wichmann wrote:
> > [...]
> > >> b) at least for those who have access to Debian machines nothing is
> > >>happening behind the scene, given that 'events
expect instead?
I would have expected that woof does not use /tmp to cache large files. A cache
in the destination directory seems more appropriate.
Yours,
arne wichmann
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (990, 'testing'), (500, &#x
mply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
> > Bernd Zeimetz wrote:
> >> On 12/18/2011 01:03 PM, Arne Wichmann wrote:
> >> > begin quotation from Luca Capello (in <877h2jm9bv@gismo.pca.it>):
> >> > I do not like the way things are handled in that mail. I do not feel that
> >> > cen
Package: python2.7
Version: 2.7.2-7
Severity: important
Tags: security
Just to have it visible from python2.7, too:
-- begin citation --
distutils uses this method to create .pypirc:
def _store_pypirc(self, username, password):
"""Creates
self. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
begin quotation from Daniel Baumann (in
<4ea5.1010...@progress-technologies.net>):
> On 10/26/2011 11:42 AM, Arne Wichmann wrote:
> > anhrefn# /sbin/fdisk -l /dev/hda [...] /dev/hda3 * 3984120
> > 586067264 291041572+ 83 Linux
>
> something is fishy h
begin quotation from Daniel Baumann (in
<4ea7d30e.9060...@progress-technologies.net>):
> On 10/26/2011 11:13 AM, Arne Wichmann wrote:
> > /boot: /dev/hda3 on / type ext3 (rw)
>
> does that partition has the bootable flag?
anhrefn# /sbin/fdisk -l /dev/hda
[...]
/dev
begin quotation from Daniel Baumann (in
<4ea7c0cc.80...@progress-technologies.net>):
> On 10/26/2011 10:00 AM, Arne Wichmann wrote:
> > I tried that, the outcome did not change.
>
> what filesystem does your /boot use? how does your
> /etc/default/extlinux, /boot/ext
1 - 100 of 167 matches
Mail list logo
