Bug#332782: Release Notes: license clarification

On Mon, Aug 25, 2008 at 02:45:50AM +0200, W. Martin Borgert wrote: > > From , we have > > these contributors not listed in your mail: > > - Daniel Nylander > Swedish translation. Translations being copyrightable works in their own righ

Bug#495963: python-coverage: code coverage shows 0% cover on linked files

* Ben Finney [2008-08-22 08:21 +0200]: Tags: patch On 22-Aug-2008, Nicolas Évrard wrote: * Ben Finney [2008-08-22 01:25 +0200]: On 21-Aug-2008, Nicolas Évrard wrote: % nosetests --cover-erase --with-coverage --cover-package=relatorio And it shows the following table after the tests h

Bug#327585: Is there any workaround ?

Hello, as I met this bug too, I'd like to know if someone found a workaround ? --- Boris LECHNER Administrateur systeme de la Plateforme Mecanique Institut National des Sciences Appliquées 24 bvd de la Victoire 67084 Strasbourg Cedex Tel : 03 88 14

Bug#415801: reportbug: SOAP support now more important due to BTS changes

On Mon, 2008-08-25 at 13:49 +0800, Paul Wise wrote: > Lack of SOAP support in reportbug now more important due to the latest > HTML changes in the bug tracking system. Some packages do not show the > list of bugs, despite saying that there are bugs. I've been informed that the version in sid fixe

Bug#415801: [Reportbug-maint] Bug#415801: reportbug: SOAP support now more important due to BTS changes

Hello Paul, On Mon, Aug 25, 2008 at 07:49, Paul Wise <[EMAIL PROTECTED]> wrote: > severity 415801 important > thanks > > Lack of SOAP support in reportbug now more important due to the latest > HTML changes in the bug tracking system. Some packages do not show the > list of bugs, despite saying th

Bug#496362: closed by Thomas Goirand <[EMAIL PROTECTED]> (Re: Bug#496362: The possibility of attack with the help of symlinks in some Debian packages)

reopen 496362 thanks DBTS> Done as the mass-opening of symlink attack in /tmp was wrong in this case. Why wrong? { my $ent = shift; if ($ent->head->mime_type eq 'message/rfc822') { if ($DEBUG) { unlink "/tmp/spam.log.$$" if -e "/tmp/spam.log.$$

Bug#496366: [Debian-med-packaging] Bug#496366: The possibility of attack with the help of symlinks in some Debian packages

tags 496366 confirmed thanks Hi Charles, > What is the relevance of this bug for the releasability of the package? > Upstream is already at a much higher version number and I am not able to > solve the prolem by myself. I've confirmed that the bug is indeed well-present: the script in question

Bug#494549: RFP: autoscan-network -- Network monitoring and management tool

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hey, Jonathan Wiltshire schrieb: > I would happily package this, but the source is not available even > though it is supposedly GPLd. If you can obtain the source, I will > package it for you. It is, although I also had problems finding it at the fir

Bug#495484: Is the rest of the data free?

Guus Sliepen wrote: > On Sun, Aug 24, 2008 at 10:39:12PM +0200, Raphael Champeimont (Almacha) wrote: > >> As the upstream website says "Resources are Non Free." and the original >> tar.gz does not contain information about copyright of graphics files >> (at least I didn't find any), I was wonderin

Bug#492970: nfs-common 1:1.1.3-1 client disallows access to, files/directories (confirmed)

As others, I had exactly the same error. Root couldn't write to the mounted directory. See full details here: http://thread.gmane.org/gmane.linux.debian.user/333162 client: nfs-common1:1.1.3-1 server: nfs-kernel-server 1:1.1.2-6 Confirmed: At client, cat /proc/mo

Bug#492477: Notes about the loggerhead package

Hi Jelmer, here some notes I made while reviewing the loggerhead package: - it installs a conffile /etc/loggerhead.conf. After having a short look at it, it seems to me that for almost every usecase, the user is expected to edit this file. This means that on every upgrade where we edit

Bug#496410: The possibility of attack with the help of symlinks in some Debian packages

On Mon, Aug 25, 2008 at 10:40:31AM +0400, Dmitry E. Oboukhov wrote: > On 13:15 Sun 24 Aug , Steve Langasek wrote: > SL> severity 496410 important > SL> thanks > You are mistake :) > Your script places in /usr/sbin, ie it runs with root privs. > If I create symlink /etc/shadow -> /tmp/eglog an

Bug#496015: wyrd: version 1.4.4 Armel requires ocaml error: No bytecode file specified.

Hi, Looking at it again, I found that the earlier version, 1.4.2 as well as 1.4.4 required ocaml. Also I was wrong about Severity, Wyrd is unusable as is on this Armel system. thank you clare -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMA

Bug#494466: [patch, RFC] Allow to select driver inclusion policy for initramfs-tools

Just for the record, this works as expected. Thanks a lot for implementing this, Frans! -- Martin Michlmayr http://www.cyrius.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#496493: zeroc-icee: unsatisfiable dep on libicee-java (>= ${binary:Version})

Package: zeroc-icee Version: 1.2.0-5 Severity: serious Tags: patch The reorganization of zeroc-icee in unstable introduces a new bug: Package: zeroc-icee Architecture: all Section: devel -Depends: libicee-dev, libicee-java, icee-slice, icee-translators +Depends: libicee-dev (>= ${binary:Versio

Bug#494773: [php-maint] Bug#494773: This is #495575

On Monday 25 August 2008 08:44, Ariel wrote: > forcemerge 495575 494773 > thanks > > This is #495575 and upgrading solved it. Thanks for letting us know. One tip for the next time: the forcemerge command doesn't work when sent to [EMAIL PROTECTED], you need to cc [EMAIL PROTECTED] for that. I've

Bug#496362: The possibility of attack with the help of symlinks in some Debian packages

Hi, > Done as the mass-opening of symlink attack in /tmp was wrong in this case. I don't think closing this is the appropriate action. Sure, debug code is not top priority. But still, the fix is straghtforward and puts extra protection on those running in debug mode. Besides, people tend to cop

Bug#466643: locale affects this

Hello, this problem seems much more likely to happen when using some other locale than en_US or C. I use the cs_CZ locale and the problem happens here, probably because apt downloads translations for package descriptions. Running "LANG=C apt-get update" is a workaround for now. I'd love to see thi

Bug#496393: this bug is not fixed

reopen 496393 thanks Hi, Maybe I'm completely missing something, but the patch you added just seems to make matters much worse. Perhaps I don't understand it, but you remove use of the safe "mktemp" function and replace it with tempfiles based on PID? It looks to me like this change just intro

Bug#496465: dpkg-dev: dpkg-source can't work with V3 format

Hi, On Mon, 25 Aug 2008, Noel David Torres Taño wrote: > $ dpkg-source --format=3 -b wmaker-data-0.9~2 > dpkg-source: error: source package format `3' is not supported (Perl module > Dpkg::Source::Package::V3 is required) > > /usr/share/perl5/Dpkg/Source/Package/V3.pm in fact does not exist. >

Bug#496494: [libc6] gdb fail to debug with a dlopen() call

Package: libc6 Version: 2.7-13 Severity: normal --- Please enter the report below this line. --- Debugging session fail when a dlopen() call is reached. The problem occur when trying to debug some gambas2 (in unstable) or gambas3 executable. These programs run fine without dbg. Here is an exam

Bug#496349: libfcgi-perl: download link in copyright file is broken

Hi, On Sun, 24.08.2008 at 23:40:46 +0200, Moritz Muehlenhoff <[EMAIL PROTECTED]> wrote: > [EMAIL PROTECTED] wrote: > > Package: libfcgi-perl > > Severity: serious > > Justification: Policy 12.5 > > > > > > Hi, > > > > the download link mentioned in the copyright file does no longer > > resolv

Bug#494466: [patch, RFC] Allow to select driver inclusion policy for initramfs-tools

Frans, There's one thing that imho could be improved with the current driver-policy handling. IMHO it would make sense not to create the /etc/initramfs-tools/conf.d/driver-policy file if these conditions are met: - the question was not asked (because debconf priority > medium) - the policy is t

Bug#496495: openssh-client: ssh-vulnkey "see manpage" message is unnecessary

Package: openssh-client Version: 1:5.1p1-2 Severity: minor When running ssh-vulnkey -a on a system with no compromised keys, I used to get no output. I would argue this to be the correct behaviour. Now, however I get # # See the ssh-vulnkey(1) manual page for further advice. which is an entire

Bug#496361: The possibility of attack with the help of symlinks in some Debian packages

Hi Rene, Rene Engelhard wrote: > I so far thought mktemp was safe enough? (of course, we get > senddoc.mutt., but... mktemp is safe enough. I think Dmitry refers to lines 3 and 4 of that script: echo "$@" > /tmp/log.obr.$$ echo "$#" >> /tmp/log.obr.$$ which I agree should not be there, probably

Bug#496496: libx500-dn-perl: package description plainly b0rked

Package: libx500-dn-perl Version: 0.29-3 Severity: minor Hi! The package description is plainly b0rked: ,--[ grep-available -P libx500-dn-perl -sDescription ]-- | Description: X500::DN provides a pure perl parser and formatter for RFC 2253 | style DN strings. `-

Bug#496497: libapache-mod-perl: mod_perl not installable -- perl 5.8 removed, not compatible with perl 5.10

Package: libapache-mod-perl Version: 1.29.0.4-2 Severity: grave Justification: renders package unusable Perl 5.8 has been removed. libapache-mod-perl depends on it and is now uninstallable. Perl 5.10 is present but the version of mod_perl available is incompatible with it. There are many newer

Bug#496387: The possibility of attack with the help of symlinks in some Debian packages

Hello Dmitri, José Luis, Dmitri, thank you for your investigation work: your script revealed some weak points inside scripts of the package wims. I made a new package to fix these weaknesses, and will send a message about them to the upstream developer. José Luis, please can you sponsor the new p

Bug#496362: The possibility of attack with the help of symlinks in some Debian packages

Quoting Thomas Goirand ([EMAIL PROTECTED]): > I'm closing this bug. If you find that it still needs to be fixed, let > me know and reopen the bug. But then set it to wishlist This MBF is one of the worse I've ever seen. signature.asc Description: Digital signature

Bug#495423: [Pkg-xfce-devel] Bug#495423: Bug#495423: xfce4-mailwatch-plugin: Please add an option so that mailwatch does not change status of mails

On Fri, 22. Aug 2008, Tino Keitel wrote: > So maybe the bug reporter refers to the mail status in a maildir on > the server, That is exactly what I meant. I have the same behaviour with mutt as you described it. - Stephan -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsub

Bug#496465: dpkg-dev: dpkg-source can't work with V3 format

El Monday 25 August 2008 09:44:14 Raphael Hertzog escribió: > Hi, > > On Mon, 25 Aug 2008, Noel David Torres Taño wrote: > > $ dpkg-source --format=3 -b wmaker-data-0.9~2 > > dpkg-source: error: source package format `3' is not supported (Perl module > > Dpkg::Source::Package::V3 is required) > >

Bug#487016: ttf-fifthhorseman-dkg-handwriting: FTBFS: make: *** [dkg.ttf] Segmentation fault

reassign 487016 freetype forcemerge 487101 487016 thanks As noted, this bug has been fixed in freetype; re-merging the clones. -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. Ubuntu Developer

Bug#494466: [patch, RFC] Allow to select driver inclusion policy for initramfs-tools

On Monday 25 August 2008, Martin Michlmayr wrote: > - the question was not asked (because debconf priority > medium) That would break the case where the architecture default if different from the default of initramfs-tools. > - the policy is the same as the default of initramfs-tools (most) I

Bug#496360: The possibility of attack with the help of symlinks in some Debian packages

severity 496360 grave thanks On Mon, Aug 25, 2008 at 11:36:37AM +0400, Dmitry E. Oboukhov wrote: > tags 496360 -moreinfo > tags 496360 -unreproducible > thanks > SL> Your bug report contains *no* information about the liquidsoap package. > SL> Where is the vulnerability? > following by link in bu

Bug#495246: Permission for xosd NMU?

Hi, while preparing an NMU for xosd #495246 I tried to pick some of the low hanging fruits and the diff got slightly big now. So I'm asking if you'd like to get the whole patch with the following changelog (debdiff attached) or only the bugfixes? xosd (2.2.14-1.6) unstable; urgency=low . * No

Bug#496498: (typo) Modules/FindLua51.cmake prints user messages referring to Lua 5.0

Package: cmake Version: 2.6.0-5 Severity: minor /usr/share/cmake-2.6/Modules/FindLua51.cmake, the module responsible for detecting the presence of Lua 5.1, prints user messages that refer to Lua 5.0 instead of 5.1. Thus, a user trying to compile software that needs Lua 5.1 with liblua5.1-0-dev not

Bug#478502: pwlib-titan needs to be binNMU'd on sparc

On Sat, Aug 23, 2008 at 07:50:17PM -0700, Steve Langasek wrote: > On Sat, Aug 23, 2008 at 08:14:10PM +0100, Jurij Smakov wrote: > > > It appears that pwlib-titan version currently in unstable got > > miscompiled on sparc somehow, that's currently causing RC build > > failures of gnugk (#478502,

Bug#490010: Pasting text from Pidgin into itself produces gibberish

reassign 490010 libgtk2.0-0 thanks * Tim Allen <[EMAIL PROTECTED]> [2008-08-23 12:48:42 CEST]: > This happens every time I paste text from a Pidgin chat window into the > text-box at the bottom. It even happened with pastes to evolution, so it's not a pidgin problem but rather a gtkhtml widget t

Bug#493917: Copyright headers still missing

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Michael, Michael Tautschnig a écrit : | Hi Daniel, | | a few moments ago the 2.0.1 build has finally been approved by the ftp-masters, | so future uploads will reach the Debian archive quickly. | | I intend to package 2.0.2 as soon as time permits

Bug#496361: The possibility of attack with the help of symlinks in some Debian packages

On 06:13 Mon 25 Aug , Rene Engelhard wrote: RE> Hi, RE> Dmitry E. Oboukhov wrote: RE>> For example if a script uses in its work a temp file which is created RE>> in /tmp directory, then every user can create symlink with the same RE>> name in this directory in order to destroy or rewrit

Bug#332782: Release Notes: license clarification

On Sun, Aug 24, 2008 at 12:19:46PM -0700, Steve Langasek wrote: > On Sun, Aug 24, 2008 at 07:00:56PM +0200, W. Martin Borgert wrote: > > I ask hereby - and in private mails following this one - all > > authors of the release notes to place their contribution to the > > release notes under the GNU G

Bug#481522: Patch for the l10n upload of jwchat

Dear maintainer of jwchat, On Sunday, August 17, 2008 I sent you a notice announcing my intent to upload a NMU of your package to fix its pending l10n issues, after an initial notice sent on Tuesday, August 12, 2008. We finally agreed that you would do the update yourself at the end of the l10n

Bug#496439: no text on graph created by rrdtool

reassign 496439 librrd2 forcemerge 493575 496439 thanks Hi, On Sun, Aug 24, 2008 at 08:20:56PM +0200, Begault Luc wrote: > rrdtool create graphs without any text (such as legends) in cacti. The > blog entry > http://ramblingfoo.blogspot.com/2007/08/softfloat-rrdtool-sequel.html > show the same ou

Bug#496500: yaird: fails to create initrd when running 2.6.24 etchnhalf kernel

Package: yaird Version: 0.0.12-18 Severity: important This is bug 431534, exposed again because stable has an old version of yaird but a recent kernel. martello:~# dpkg --configure -a Setting up linux-image-2.6.18-6-amd64 (2.6.18.dfsg.1-22etch2) ... Running depmod. Finding valid ramdisk creators.

Bug#496362: The possibility of attack with the help of symlinks in some Debian packages

Thijs Kinkhorst wrote: > Hi, > >> Done as the mass-opening of symlink attack in /tmp was wrong in this case. > > I don't think closing this is the appropriate action. Sure, debug code is not > top priority. But still, the fix is straghtforward and puts extra protection > on those running in deb

Bug#496499: screen-message: setting background doesn't work

Package: screen-message Version: 0.14-1 Severity: normal Hi! Some of your further changes seem to eliminate the posibility to set the background color of the window. It starts up for a very short while with the chosen background color but switches to white shortly after. I'm not too su

Bug#496362: The possibility of attack with the help of symlinks in some Debian packages

Christian Perrier wrote: > Quoting Thomas Goirand ([EMAIL PROTECTED]): > >> I'm closing this bug. If you find that it still needs to be fixed, let >> me know and reopen the bug. > > But then set it to wishlist > > This MBF is one of the worse I've ever seen. I'm reopening the issue, as ther

Bug#474089: [Pkg-virtualbox-devel] Bug#474089: closed by Michael Meskes

On Sun, Aug 24, 2008 at 09:29:03PM +0200, Michael Biebl wrote: > NOLSB=yes > [..] > [ -f /lib/lsb/init-functions ] || NOLSB=yes > > ==> NOLSB will never be no This is not exactly true because in [...] /etc/default/virtualbox-ose is sourced if available. Thus NOLSB could be reset there. > Don't m

Bug#496387: The possibility of attack with the help of symlinks in some Debian packages

JL> please can you sponsor the new package? The description file is at JL> ftp://debian.ofset.org/debian/pool/main/w/wims_3.62-15.dsc $ dget ftp://debian.ofset.org/debian/pool/main/w/wims_3.62-15.dsc dget: retrieving ftp://debian.ofset.org/debian/pool/main/w/wims_3.62-15.dsc curl: (67) Access den

Bug#496501: cups: samba can't see printers with iso-8859-1

Package: cups Version: 1.3.8-1 Severity: normal Upon a fresh boot, samba can see all printers fine as evidenced by #rpcclient -c enumprinters localhost However, if samba is restarted, I see the following message repeated 5 times in /var/log/cups/error_log: E [22/Aug/2008:02:51:12 -0700] Unsup

Bug#495484: Is the rest of the data free?

On Mon, Aug 25, 2008 at 09:01:49AM +0200, Raphael Champeimont (Almacha) wrote: > > According to upstream it's just the music and sound effects that was taken > > from > > online resources, the graphics were created by upstream. > > Ok, so as only sound and music are not free, it would be great i

Bug#492665: Uploaded: copher -- automatically make a SourceForge release

On Mon, 25 Aug 2008, Jonathan Wiltshire wrote: Uploaded to mentors.debian.net and awaiting sponsorship. If you want it sooner, the source package is at http://mentors.debian.net/debian/pool/main/c/copher Thanks very much for this. -- http://rrt.sc3d.org/ | Travail broadens the behind -- To

Bug#494466: [patch, RFC] Allow to select driver inclusion policy for initramfs-tools

* Frans Pop <[EMAIL PROTECTED]> [2008-08-25 10:10]: > On Monday 25 August 2008, Martin Michlmayr wrote: > > - the question was not asked (because debconf priority > medium) > > That would break the case where the architecture default if different from > the default of initramfs-tools This would

Bug#496450: ncmpc: Jumping to song dir from search (F5) not possible

Hi, On Sun, Aug 24, 2008 at 09:59:22PM +0200, Hagen Fuchs wrote: > It would be very logical to implement a way to enter the album that > corresponds to one of the resulting entries in a search list; á la: > > "I'd really like to hear that album where 'foo' sang 'bar'!" I'm not sure I did under

Bug#496494: [libc6] gdb fail to debug with a dlopen() call

Laurent Carlier a écrit : > Package: libc6 > Version: 2.7-13 > Severity: normal > > --- Please enter the report below this line. --- > > Debugging session fail when a dlopen() call is reached. The problem occur > when > trying to debug some gambas2 (in unstable) or gambas3 executable. > Pleas

Bug#496191: Package description misses a space at the begining of a line, causing "dpkg -l" to fail.

tags + unreproducible thanks On Sat, 2008-08-23 at 08:14 -0300, Henrique de Moraes Holschuh wrote: > On Sat, 23 Aug 2008, nathael wrote: > > -suse this package on a server that provides SASL authentication, then > > + suse this package on a server that provides SASL authentication, then > > Rathe

Bug#496495: openssh-client: ssh-vulnkey "see manpage" message is unnecessary

tags 496495 pending thanks On Mon, Aug 25, 2008 at 12:51:23AM -0700, Kevin Mitchell wrote: > When running ssh-vulnkey -a on a system with no compromised keys, I used > to get no output. I would argue this to be the correct behaviour. Now, > however I get > > # > # See the ssh-vulnkey(1) manual p

Bug#496494: [libc6] gdb fail to debug with a dlopen() call

Le Monday 25 August 2008 10:54:11, vous avez écrit : > Laurent Carlier a écrit : > > Package: libc6 > > Version: 2.7-13 > > Severity: normal > > > > --- Please enter the report below this line. --- > > > > Debugging session fail when a dlopen() call is reached. The problem occur > > when trying to

Bug#496387: The possibility of attack with the help of symlinks in some Debian packages

Hello Dmitri, wget downloads the description file easily: ---8<- gk:/tmp$ LC_ALL=C wget ftp://debian.ofset.org/debian/pool/main/w/wims_3.62-15.dsc --2008-08-25 11:00:51-- ftp://debian.ofset.org/debian/pool/main/w/wims_3.62-15.dsc => `wims_3.62-15.d

Bug#492597: cairo backend crashes

Hi Martin, I cannot reproduce the crash on my system. Can you check with LANG=C and/or send me a backtrace? Regards, Daniel -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#496375: The possibility of attack with the help of symlinks in some Debian packages

Hi Dmitry, Le dimanche 24 août 2008 à 22:05 +0400, Dmitry E. Oboukhov a écrit : > Package: rkhunter > Severity: grave > > Hi, maintainer! > > This message about the error concerns a few packages at once. I've > tested all the packages (for Lenny) on my Debian mirror. All scripts > of packa

Bug#496038: stellarium: segmentation fault

Fredag 22 august 2008 19:49, skrev Cedric Delfosse: > Looks like the segfault comes from the DRI library. Could you disable > DRI from your X configuration, and try again ? > > Regards, > > Cédric I have no mention of DRI in my X configuration. But adding this stanza to xorg.conf helped: Section

Bug#496502: mdadm: Tries to start array at boot before partitions is found.

Package: mdadm Version: 2.6.7-3 Severity: critical Justification: breaks the whole system Hi, I've got a system setup with two physical disks, md-raid1 on top of those, dm-crypt on top of that and lvm at the top. The hardware is a SunFire v120 SPARC. The system was originally installed with De

Bug#496368: Downgrading due to lack of evidence

Without a clear explanation of exactly what problem might occur and with clear signs that this bug was filed without due preparation, I've downgraded it pending clarification of the precise problem. -- Neil Williams = http://www.data-freedom.org/ http://www.nosoftwarepatents.com/ ht

Bug#496503: vim-full: Please talk about "filetype plugin on"

Package: vim-full Version: 2:7.2.000-2 Severity: wishlist Hi, For us, the lame vim users, 2.7.2c disabled "Filetype plugins" (that is, they are no longer automatically enabled) and, as lame we are, it took a while to first look at NEWS.Debian.gz where it says about that, and later find out how to

Bug#495738: abiword: Garbled text

I have the same problem, with a lot of fonts. Expecially with Microsoft ones, it is so annoying when I read files made with MS Office. -- Lorenzo Breda Linux user #387700 Query keyserver.linux.it for gpg key Fingerprint: 4A99 1D3C 3EDE 9A08 E074 D6AD 9916 53D8 CF52 7180 -- To UNSUBSCRIBE, em

Bug#482439: cfengine2: There are still a ton of segfaults

Richard A Nelson <[EMAIL PROTECTED]> writes: >>> ==12662== Invalid read of size 1 >>> ==12662==at 0x80778C8: (within /usr/sbin/cfagent) >>> ==12662==by 0x8077A8A: (within /usr/sbin/cfagent) >>> ==12662==by 0x807A48E: (within /usr/sbin/cfagent) >>> ==12662==by 0x8053AC0: (within /us

Bug#494227: xmlroff: diff for NMU version 0.6.0-1.1

Am Montag, den 25.08.2008, 01:14 +0200 schrieb W. Martin Borgert: > On 2008-08-25 00:13, Thomas Viehmann wrote: > > Unfortunately, Martin, it makes the Debian refcard look ugly. > > Nonetheless, I believe moving from segfault to quirky output > > warrants closing the RC bug here. As such, I'll uplo

Bug#481581: [Debian-olpc-devel] Bug#481581: Bug#481581 sugar: Sugar can power down the computer

2008/8/23 [EMAIL PROTECTED] <[EMAIL PROTECTED]>: > Hi, > I refresh my patch for the 82.0 release of sugar. The patch is really > simple since now the sugar's session_manager have a function that handle > the logout. Reported upstream, with your patch, at http://dev.laptop.org/ticket/8141 Regards

Bug#478502: pwlib-titan needs to be binNMU'd on sparc

On Monday 25 August 2008 18:17:03 Jurij Smakov wrote: > Both have built successfully on sparc [0,1] against the binNMU'd > version of libpt-1.11.2 (from pwlib-titan source) Jurij, Thanks for your debuging of this. Good news. Mark -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject

Bug#492299: closing...

severity 492299 normal close 492299 thanks Hi Terry, first, setting the right severity... second, closing, as you failed to provide any useful info to debug and fix this bug, which is probably already fixed anyway, as Debian is used on many Thinkpads. If the problem still occurs, after updati

Bug#495331: Same bug as bug #400768

This is the same bug as bug #400768: apt: Returns "E: Wow, you exceeded the number of versions this APT is capable of" Bug #400768 has been merged with bug #466643 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#400768: Same bug as bug #495331

This is the same bug as bug #495331: apt-get on SID fails in German locale: "E: Toll, Sie haben die Anzahl an Beschreibungen überschritten, die APT handhaben kann." -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#496338: udev: Buffer I/O error following upgrade to 0.125-5

On Aug 24, frank <[EMAIL PROTECTED]> wrote: > When upgrading from udev_0.105-4 to udev_0.125-5 Buffer I/O errors are > reported when connecting a digital camera. Following this, the camera cannot I can't see how udev could cause this. For a start, raise the udev log level (using udevcontrol/udevad

Bug#496438: The possibility of attack with the help of symlinks in some Debian packages

tags 496438 security confirmed thanks Hi, There are indeed several occurances of insecure tempfile usage: 15:${EXTRA_AREC_OPT} ${1} |tee /tmp/v-recorder${2}-out &>/dev/tty$[${2}+1] 18:${EXTRA_AREC_OPT} ${1} |tee /tmp/v-recorder${2}-out &>/dev/ttyv$[${2}+1] 33:${EXTRA_DR

Bug#494969: sympa: Leftover debug code may lead to data loss

Le jeudi 21 août 2008 à 16:14 +0200, Thijs Kinkhorst a écrit : > When grepping the sympa source for "/tmp" I find quite some occurances > of > other files directly in tmp with insecure filenames. It should be > checked > for each if that code is executed and whether or not they should be > moved >

Bug#472680: close

severity 472680 normal close 472680 thanks Hi, First, setting the right severity. (This bug, if it is one in Debian at all, clearly doesnt affect many users of Debian.) Second, closing it, as we cannot fix it with the information provided by the submitter and because it really looks like an is

Bug#496467: screen-message: patch for better timeout handling

Hi Paul, Am Montag, den 25.08.2008, 10:00 +0800 schrieb Paul Wise: > Source: screen-message > Version: 0.14-1 > Severity: wishlist > > The attached patch adds better handling for hiding the edit widget on > timeouts: > > * a command-line option to give a custom timeout > * doesn't re

Bug#496505: RM: cdcontrol -- RoQA; RC-buggy, security issues, unmaintained, low popcon

Package: ftp.debian.org Hi, Please remove cdcontrol from unstable, for the following reasons: * It has an RC security bug about insecure tempfile usage. * It is unmaintained, last MU four years ago. Maintainer seems MIA and is also upstream. * It has few popcon votes. thanks, Thijs pgpDHGH

Bug#493689: insight: FTBFS on ia64

Chris Lamb wrote: > Patch attached. D'oh, it already had a patch; that was silly. Regards, -- Chris Lamb, UK [EMAIL PROTECTED] GPG: 0x634F9A20 signature.asc Description: PGP signature

Bug#490290: live-helper: Could handle empty LH_LINUX_PACKAGES more gracefully

Hi, could you please elaborate how you constructed a situation where you got empty LH_LINUX_PACAKGES? As said, this is seems impossible to me, since by default lh sets values for empty variables automatically. Otherwise, I intend to close the bug report. Regards, Daniel -- Address:Danie

Bug#496393: this bug is not fixed

On Mon, Aug 25, 2008 at 09:44:03AM +0200, Thijs Kinkhorst wrote: > reopen 496393 > thanks > > Hi, > > Maybe I'm completely missing something, but the patch you added just seems to > make matters much worse. Perhaps I don't understand it, but you remove use of > the safe "mktemp" function and re

Bug#496499: screen-message: setting background doesn't work

Version: 0.15-1 Hi, I guess I’m uploading versions too fast. But at least with 0.15, it seems to work here. Sorry for not trying out that feature before doing the 0.14 upload. Greetings, Joachim Am Montag, den 25.08.2008, 10:29 +0200 schrieb Gerfried Fuchs: > Package: screen-message > Version:

Bug#459779: Bug fixed in git

tags 459697 +pending tags 459779 +pending tags 468900 +pending thanks This bug has been fixed in git. -- Address:Daniel Baumann, Burgunderstrasse 3, CH-4562 Biberist Email: [EMAIL PROTECTED] Internet: http://people.panthera-systems.net/~daniel-baumann/ -- To UNSUBSCRIB

Bug#496360: closed by Romain Beauxis <[EMAIL PROTECTED]> (Not a bug for us)

reopen 496360 thanks Please do not close, if You want, change severity :) user's files can be very important, for example ~/.gnupg/* if attacker creates symlink to its then your gpg's private key may be corrupted. On 09:24 Mon 25 Aug , Debian Bug Tracking System wrote: DBTS> Thi

Bug#496467: screen-message: patch for better timeout handling

On Mon, 2008-08-25 at 12:03 +0200, Joachim Breitner wrote: > * I’d still like to avoid command line options, and I think the entry > timeout is something that does not have to be configurable. Rather, I > think we can find a more suitable value. Do you think 5 seconds is too > much? What do you u

Bug#495144: anjuta in Debian and the RC bug #495144

Hi Marcos, thanks for working on RC bugs! Your comment on bts.turmzimmer.net regarding #495144 looks interesting, but I'm not sure whether I entirely understand the comment and its implications. For one, if the bug does not occur in unstable, what happened to make it disappear? Also, it mi

Bug#496361: The possibility of attack with the help of symlinks in some Debian packages

found 496361 1:2.4.1-6 notfound 496361 1:3.0.0~beta2-1 notfound 496361 2.0.4.dfsg.2-7etch5 tag 496361 + pending thanks Dmitry E. Oboukhov wrote: > #!/bin/sh > URI_ENCODE="`dirname $0`/uri-encode" > > echo "$@" > /tmp/log.obr.$$ > echo "$#" >> /tmp/log.obr.$$ [...] Oops, I did

Bug#496360: Not a bug for us

reopen 496360 severity 496360 important kthxbye On Mon, Aug 25, 2008 at 11:21:24 +0200, Romain Beauxis wrote: > Hi ! > > Indeed, liguidsoap uses files under /tmp to write logs and dump audio data > during the live show. > > We don't consider this as a bug, but as feature (tm). This is b

Bug#468264: live-helper: lh_build leaves chroot/dev/pts mounted after it has finished

retitle 468264 if live-helper fails, it doesn't unmount chroot/dev/pts thanks Hi, live-helper does unmount /dev/pts in the chroot after having built the image. There is only one case where it doesn't do it, and that is if it fails somewhere before the end (where it will unmount). Regards, Daniel

Bug#496500: [Yaird-devel] Bug#496500: yaird: fails to create initrd when running 2.6.24 etchnhalf kernel

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Mon, Aug 25, 2008 at 04:29:39PM +0800, James Andrewartha wrote: >Package: yaird >Version: 0.0.12-18 >Severity: important > >This is bug 431534, exposed again because stable has an old version of >yaird but a recent kernel. Acknowledged. I see some

Bug#492081: (no subject)

Same here, I've done a fresh install of Debian Lenny Beta2, configuring the installation with the locales "Spanish from Spain", and I can do the following things: login users in tty login root in tty login users in kdm su in tty But I can't switch to root with su in kdm. My password contains sev

Bug#495144: anjuta in Debian and the RC bug #495144

Hi there, On Monday 25 August 2008 11:19:58 you wrote: > Your comment on bts.turmzimmer.net regarding #495144 looks > interesting, but I'm not sure whether I entirely understand the > comment and its implications. For one, if the bug does not occur in > unstable, what happened to make it disappear

Bug#496283: nvidia-kernel-2.6.26-1-amd64 still broken

There's still a problem. "nvidia-kernel-2.6.26-1-amd64" depends on "nvidia-kernel-common", which contains the header "Recommends: nvidia-kernel-source | nvidia-kernel". Apparently there is no package which "Provides: nvidia-kernel". Therefore, "nvidia-kernel-common" sucks in an extra 96MB of stuf

Bug#496375: The possibility of attack with the help of symlinks in some Debian packages

Le lundi 25 août 2008 à 14:02 +0400, Dmitry E. Oboukhov a écrit : > On 11:09 Mon 25 Aug , Julien Valroff wrote: > JV> Hi Dmitry, > > JV> Le dimanche 24 août 2008 à 22:05 +0400, Dmitry E. Oboukhov a écrit : > JV>> Package: rkhunter > JV>> Severity: grave [...] > JV>> In some packages I've disco

Bug#496508: xulrunner-1.9: Invalid memory reference

Package: xulrunner-1.9 Version: 1.9.0.1-1 Severity: important File: /usr/lib/xulrunner-1.9/xulrunner-stub *** Please describe what you were doing when the application crashed *** 0xe424 in ?? () #0 0xe424 in ?? () -- System Information: Debian Release: lenny/sid APT prefers unstable

Bug#483777: live-helper: Change from --sections option to --category option

tags 483777 +pending thanks Fixed in git, thanks. -- Address:Daniel Baumann, Burgunderstrasse 3, CH-4562 Biberist Email: [EMAIL PROTECTED] Internet: http://people.panthera-systems.net/~daniel-baumann/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "uns

Bug#161978: this really should be checked by lintian

severity 161978 important thanks Hi, downgrading severity, as this is about an old issue with tetex and because there is probably even a lintian check for this already. (Too lazy to confirm now, thus I'm also not reassigning the bug to lintian yet.) regards, Holger pgpEdv6EozCnM.pgp

Bug#496507: [www.debian.org] Debian Description Translation Project (DDTP) Translation-lang files not only available for sid

Package: www.debian.org Severity: minor According to http://www.debian.org/international/l10n/ddtp This version of APT downloads Translation-lang files from Debian mirrors. These are only available for sid at the moment and may be missing on some mirrors. The location of these files on mirrors

Bug#496361: The possibility of attack with the help of symlinks in some Debian packages

Hi, Thijs Kinkhorst wrote: > Rene Engelhard wrote: > > I so far thought mktemp was safe enough? (of course, we get > > senddoc.mutt., but... > > mktemp is safe enough. I think Dmitry refers to lines 3 and 4 of that script: > > echo "$@" > /tmp/log.obr.$$ > echo "$#" >> /tmp/log.obr.$$ > > which

  1   2   3   4   5   >