Bug#289857: manpages-dev: strtol(3) lacking an error condition

On Tue, 11 Jan 2005 12:19:05 +, Matthew Vernon wrote: > strtol(3) should document that function's behaviour when either no > conversion could be performed, or BASE was not a legal value; to whit return > 0 and set errno to EINVAL. Starting with r1.2 in the infodrom CVS this bug had been fixed,

Bug#306256: send(2) manpage incorrectly states that ENOBUFS error cannot occur in Linux

On Mon, 25 Apr 2005 11:01:35 +0100, Roy Hills wrote: > The man page for send(2) contains the following incorrect statement > in the Errors section: > > ENOBUFS > The output queue for a network interface was full. > This generally indicates that the interface has > stop

Bug#319594: manpages-dev: typo in waitpid(2)

On Mon, 25 Jul 2005 11:36:12 +0200, Michael Kerrisk wrote: > > Package: manpages-dev > > Version: 2.02-2 > > Severity: normal > > > > Hi, > > there's a typo in waitpid(2) at line 34: > > > > watpid(-1, &status, 0); instead of waitpid(-1, &status, 0); > > > > thanks, > > filippo > > Hello Filipp

Bug#341129: xmms: bug in NPTL implementation causing segfault when using crossfade plugin

Package: xmms Severity: wishlist Tags: patch Dear xmms maintainer, forwarding an excerpt from the README of the upcoming xmms-crossfade release: | * There is a serious problem on some systems: Users who have the | NPTL (Native Posix Thread Libary) version of glibc instaleld on | their

Bug#341133: beep-media-player: bug in NPTL implementation causing segfault when using crossfade plugin

Package: beep-media-player Severity: wishlist Tags: patch Dear beep-media-player maintainers, forwarding an excerpt from the README of the upcoming xmms-crossfade release: | * There is a serious problem on some systems: Users who have the | NPTL (Native Posix Thread Libary) version of glib

Bug#326354: Intent to NMU on 11/30

to resolve FTBFS and Broken Depends. (closes: #326354) + + -- Florian Ernst <[EMAIL PROTECTED]> Mon, 28 Nov 2005 18:18:48 +0100 + gnuchess (5.07-3) unstable; urgency=low * Removed superfluous declaration of input_thread in src/common.h. diff -u gnuchess-5.07/debian/control gn

Bug#339211: Intent to NMU on 11/30

llocator +change, closes: #339211). + + -- Florian Ernst <[EMAIL PROTECTED]> Mon, 28 Nov 2005 18:46:55 +0100 + libmusicbrainz-2.0 (2.0.2-12) unstable; urgency=low * libmusicbrainz2c2: Add conflicts, replaces on libmusicbrainz2 (closes: diff -u libmusicbrainz-2.0-2.0.2/debian/rules

Bug#339212: libmusicbrainz2.1 NMU imminent (allocator transition)

On Mon, 28 Nov 2005 08:52:55 -0500, Christopher Martin wrote: > I will be NMUing this package very shortly, applying the patch from Matthias > Klose, for the allocator transition. Well, I'm not Andreas, but only the person who just recently started considering to take over maintenance of libmusic

Bug#50504: Better manpage for sync.

On Sun, 14 Nov 1999 22:50:40 -0300, Nicolás Lichtmaier wrote: > This comes with the manpages package. Consider replacing sync(1) with this > manpage. > > [ Attached sync.8 ] An improved version of sync.8 was already present in manpages_1.44-1. Currently, sync.1 is shipped by coreutils. All in al

Bug#309281: 'man intro' typo: "custumary"

On Mon, 16 May 2005 03:44:37 -0400, A Costa wrote: > Found a typo in '/usr/share/man/man1/intro.1.gz', see attached '.diff'. This was fixed upstream in 2.05, thus this bug can be closed for 2.05-1. HTH, Flo signature.asc Description: Digital signature

Bug#309282: 'man epoll' typos: "clarifiction" and "eventi"

On Mon, 16 May 2005 03:51:25 -0400, A Costa wrote: > Found a few typos in '/usr/share/man/man4/epoll.4.gz', see attached '.diff'. The typos have been fixed upstream in 2.05, thus this bug could simply be closed for 2.05-1. HTH, Flo signature.asc Description: Digital signature

Bug#153126: Fixed in sid

On Wed, 20 Nov 2002 01:53:09 +, Brian M. Carlson wrote: > This bug has been fixed in sid (and sarge, which has the same version of > the package). Indeed, the offending text isn't present in any revision in the infodrom CVS, so I guess this bug could simply be closed for 1.44-1. HTH, Flo si

Bug#309284: 'man tty_ioctl' typo: "proces"

On Mon, 16 May 2005 03:57:30 -0400, A Costa wrote: > Found a typo in '/usr/share/man/man4/tty_ioctl.4.gz', see attached '.diff'. This typo was fixed upstream in 2.05, thus this bug could simply be closed for 2.05-1. HTH, Flo signature.asc Description: Digital signature

Bug#309285: upstream 2.03 fixed various typos

These typos have been fixed upstream in 2.03, thus these bugs could simply be closed for 2.03-1. HTH, Flo signature.asc Description: Digital signature

Bug#309286: upstream 2.05 fixed various typos

These typos have been fully fixed upstream in 2.05, thus these bugs could simply be closed for 2.05-1. HTH, Flo signature.asc Description: Digital signature

Bug#207936: bootparam(7) lists wrong 'init' attempt order

On Sat, 30 Aug 2003 16:56:06 -0400, Phil Edwards wrote: > Under the generic boot parameters section (very first section), bootparam(7) > lists the following: > >`init=...' >This sets the initial command to be executed by the kernel. If this is >not set, or cannot be found, t

Bug#251122: resolver.5.gz: add resolver(3) to SEE ALSO

On Thu, 27 May 2004 04:23:05 +0800, Dan Jacobson wrote: > Add resolver(3) to SEE ALSO, as resolver(3) is mentioned in the text. This seems to have been fixed in 1.68-1. > Could also add resolver(5) to resolver(3)'s SEE ALSO. This wish still applies. > Also there is no resolv+ man page as mentio

Bug#339211: Intent to NMU on 11/30

On Tue, Nov 29, 2005 at 12:28:50AM -0800, Steve Langasek wrote: > Is there any reason to not simply drop libmusicbrainz-2.0, in favor of the > libmusicbrainz-2.1 package that *everything* else in the archive is using? Except for the (broken) dcd package, which still Build-Depends on libmusicbrainz

Bug#341227: typo at @EXPORT_OK in /usr/share/perl5/Algorithm/Diff.pm

tag 341227 confirmed upstream forwarded 341227 http://rt.cpan.org/NoAuth/Bug.html?id=8576 thanks * Martin Zobel-Helas: > there seems to be an typo in @EXPORT_OK of > /usr/share/perl5/Algorithm/Diff.pm. It's should be LCSidx, not LCDidx, > as the function is called LCSidx Thanks. This has been

Bug#341244: wml/developer.wml: all=1 page outdated wrt ddpo_maintainers info

Package: qa.debian.org Severity: minor Tags: patch Dear QA people, the huge (600kB) page displaying all maintainers (developer.php?all=1) claims to list packages in main, non-us, Other and a Total, yet the semantics of the ddpo_maintainers which is parsed for this info seems to have changed. The

Bug#326354: Intent to NMU on 11/30

On Tue, Nov 29, 2005 at 12:39:42PM -0700, Lukas Geyer wrote: > On Mon, Nov 28, 2005 at 06:20:08PM +0100, Florian Ernst wrote: > > given that this bug is RC for two weeks now while a trivial fix is > > available I intent to NMU on Wednesday, the 30th, using the attached > > p

Bug#341302: mozilla-firefox: first invocation after upgrade displays Google ad

Package: mozilla-firefox Version: 1.4.99+1.5rc3.dfsg-1 Severity: normal When starting Firefox after an upgrade from 1.0.7 for the first time, Firefox does not show the usual local Debian start page, but some Google page. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscri

Bug#339211: Intent to NMU on 11/30

On Wed, Nov 30, 2005 at 05:37:52AM -0800, Steve Langasek wrote: > It's my opinion that libmusicbrainz-2.0 is unreleasable whether or not you > do this NMU, because it's an obsolete version of the lib that should be > removed. So I would definitely recommend that you focus on making python > bindin

Bug#330970: wmmaiload: Preserve atime after mbox check

Hello Peter, I mailed the upstream author some time ago and told him about your patch and the problems I'm experiencing with the latest release. I didn't get a reply yet, but I just pinged hin again about that. Regards, Flo -- BOFH excuse #164: root rot signature.asc Description: Digital sig

Bug#332259: webmin possible remote root exploit -> problem also applies to spampd

* Sven Mueller: > http://www.dyadsecurity.com/webmin-0001.html > http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=341394 > > If this is considered a possible remote root compromise, the spampd bug > I reported a while ago to [EMAIL PROTECTED] (see also bug > #332259) is also a possible remote comp

Bug#295211: manpages-dev is more recent than GNU libc

* Justin Pryzby: > #295211 manpages-dev is more recent than GNU libc. > > Does this bug still apply? Yes. For example, exit_group is documented in a manual page, but not yet supported by the current libc version. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". T

Bug#339211: Intent to NMU on 11/30

On Wed, 30 Nov 2005 16:58:05 +0100, Andreas Rottmann wrote: > I agree. I've CC'ed the Maintainers of the remaining reverse depends of > libmusicbrainz2, to get feedback. Hopefully the two packages (dcd, > libtunepimp) can be rebuilt against libmusicbrainz 2.1. They can, and they were: for dcd se

Bug#328958: RFA: libmusicbrainz-2.1: Second generation incarnation of the CD Index -- optional

[ Sent to the RFA for libmusicbrainz-2.1 and the RC bug of libmusicbrainz-2.0, as this relates to both ] On Thu, Nov 24, 2005 at 12:05:53PM +0100, Florian Ernst wrote: > On Sun, 18 Sep 2005 14:02:42 +0200, Andreas Rottmann wrote: > > I'd like someone adopt libmusicbrainz; [...] &g

Bug#341953: wmaker: Unexpected window-cycling behaviour - last focused window gets autoraised.

Package: wmaker Version: 0.92.0-5 Severity: normal Hi Marcelo, after upgrading wmaker, window cycling behaviour changed again in an unexpected way: When cycling through windows, the last focused window gets autoraised. Previously, all windows stayed in their "stack-order" until I explicitly moved

Bug#335881: numerix: FTBFS: Segfaults in tests

* Michel Quercia: > like this ? > > -- ># corps de boucle à dérouler. taille du code = 24 octets ># entrer avec eax = edx = 1er chiffre de a, CF = 0 > #undef BODY > #define BODY(x,y,z) \ > adcl

Bug#335881: numerix: FTBFS: Segfaults in tests

* Michel Quercia: > I don't know how to make a patch. Is this ok ? It is. > --- 985,991 > #define BODY(x,y,z) \ > adcl x(%ebx,%ecx,4), %eax; \ > !/* movl y(%esi,%ecx,4), %edx */ .byte 0x8B, 0x54, 0x8E, y; \ > movl %eax, x(%edi,%ecx,4); \ > !/* ad

Bug#335881: numerix: FTBFS: Segfaults in tests

tag 335881 patch thanks * Michel Quercia: > Florian Weimer a écrit : > >>You must also byte-code the final movl instruction, I'm afraid: >> >> > Sorry. Attached is the new diff file (with respect to the original 0.21 > source). Thanks a lot. I can con

Bug#340167: [patch] red plane with limited bombs

It's simple to change this... there will be no upstream fix for that because the author rewrites the hole thing. So plz patch it in the debian pkg... diff for airstrike-0.99+1.0pre6a/src/sprite_types/biplane.c is attached it should work, flo 202c202,203 < (!(s->state & BIPLANE_CRASHI

Bug#342491: adns: new upstream release 1.1 suitable for packaging?

Package: adns Severity: wishlist Hello Bernd, I just noticed there's a new upstream release 1.1 of adns, major changes as follows: | Major bugfixes: | * Do not spin if connect() fails immediately (!) | * Stop searching on a CNAME (even if it's broken). | * When search list runs out, _qf_o

Bug#342494: bluez-libs: new upstream release available (2.22, 2005-10-31)

Package: bluez-libs Severity: wishlist Hello Edd, as of 2005-10-31 there is a new upstream release 2.22 available, the changelog reads as follow: | ver 2.22: | Decode reserved LMP feature bits. | Fix errno overwrite problems. | Fix profile descriptor problem with Samsung phones. | Add compile tim

Bug#342496: directfb: new upstream release available (0.9.24, 2005-10-25)

Package: directfb Severity: wishlist Hello Guillem, as of 2005-10-25 there is a new upstream release 0.9.24 available, upstream lists as follows: | Something with that number... 0.9.24 is out! | | Some fixes made it worthwhile to release 0.9.24 just now. | 2005-10-25: Tarball updated! One file

Bug#342525: juman: new upstream release available (5.1, 2005-09-07)

Package: juman Version: 4.0-7 Severity: wishlist Dear Tsuchiya-san, as of 2005-09-07 a new upstream release 5.1 is available, please update the package when you think it is due time. Cheers, Flo signature.asc Description: Digital signature

Bug#342586: libgc: new upstream release available (6.6, 09-Sep-2005)

Package: libgc Severity: wishlist Hello Ryan, as of 09-Sep-2005 there is a new upstream release 6.6 available at . Recent changes include | - Don't access the GC thread structure from the restart handler. It's |unsafe, since the hand

Bug#342587: libelf: new upstream release available (0.8.6)

Package: libelf Severity: wishlist Hello Alex, there is a new upstream release 0.8.6 available at . Although, the only relevant change seems to be | * added workaround for alignment errors in archive members. Please update the package when you think it is due time

Bug#342292: Fwd: Re: [vendor-sec] xpdf update - patch wrong?

* Frank Küster: > It also seems that there are some buffer overflows in 3.00 that do not > have any tests, e.g. in XRef.cc, line 391 after patch-CAN-2004-0888 has > been applied. Or is such a check > > if (newSize < 0) { > goto err1; > } > > enough to detect an integer overflow,

Bug#342550: firefox: Javascript, history.dat & DoS

* Steve Kemp: >> My ff does not crashed, but it ate really much cpu-time when I tested >> slightly modified version of javascript. > > Not a security issue, "just" a DOS attack. > > Mozilla.org do not regard DOS attacks as security issues, so we cannot > either. Even if the browser cannot

Bug#342292: Fwd: Re: [vendor-sec] xpdf update - patch wrong?

* Frank Küster: > Would > > if (nTiles >= INT_MAX / sizeof(JPXTile) { > error(getPos(), "Bad tile count in JPX SIZ marker segment"); > return gFalse; > > be okay? It might still be a DoS issue, I think. Allocating arbitrary amounts of memory upon user request is usually a bad

Bug#332902: Accepted numerix 0.21-2 (source i386 all)

* Mike Furr: > So I reassigned 332902 to binutils and merged them. IMO, adding that > option to all of OCaml is a bad idea based on the notes in the gcc manpage: > Only use these options when there are significant benefits from > doing so. When you specify these options, the assembler

Bug#342292: Fwd: Re: [vendor-sec] xpdf update - patch wrong?

* Frank Küster: > The function that is called in *tetex-bin* is not gmallocn, but gmalloc > - it's based on xpdf 3.00, not 3.01, and this is the very reason why I > need to check for an overflow in nTiles * sizeof(JPXTile). Sure, I wanted to explain why this is not sufficient. It should be equiv

Bug#342550: firefox: Javascript, history.dat & DoS

* Mike Hommey: >> Even if the browser cannot be restarted after the attack has been >> carried out? The impact of this bug is slightly different from other >> crash bugs. > > Are you sure the firefox process was not still running ? That would > explain the browser not being able to restart... Ac

Bug#342292: Fwd: Re: [vendor-sec] xpdf update - patch wrong?

* Martin Pitt: > - For invalid (big) positive values of nObjs which, when multiplied with nObjs > overflow an int, we have two cases: But neither ISO C nor GNU C make any promises regarding this case. Overflow is undefined, period. You can pass -fwrapv to gcc if you want modulo arithmetic for

Bug#342292: Fwd: Re: [vendor-sec] xpdf update - patch wrong?

* Martin Pitt: > Hi Florian! > > Florian Weimer [2005-12-09 11:53 +0100]: >> * Martin Pitt: >> >> > - For invalid (big) positive values of nObjs which, when multiplied with >> > nObjs >> > overflow an int, we have two cases: >> >>

Bug#342708: libmpcdec: new upstream release available (1.2.2, 2005.10.23)

Package: libmpcdec Severity: wishlist Hello Joe, as of 2005.10.23 there is a new upstream release 1.2.2 available at . However, it only seems to include a compilation fix for OpenBSD, so this is probably more of a JFYI than a real wishlist bug... Cheers

Bug#342715: lzo: new upstream release available (2.02, 17 Oct 2005)

Package: lzo Severity: wishlist Hello Peter, as of 17 Oct 2005 there is a new upstream release 2.02 available at . A full changelog can be seen at . As the interface has changed you might want

Bug#342716: mozilla-mozgest: new upstream release available (1.0.3, 2005-11-04)

Package: mozilla-mozgest Version: 1.0-2 Severity: wishlist Hello Alan, as of 2005-11-04 there is a new upstream release 1.0.3 available at . The changelog lists resolving a Java Plugin and Mouse Guesture Extension conflict (can't terminate fi

Bug#342721: sox: new upstream release available (12.17.9, December 5 2005)

Package: sox Version: 12.17.8-1 Severity: wishlist Hello Guenter, as of December 5 2005 there is a new upstream release available at . The changelog includes | Add optional status line that tracks progress of read/write routines. | Updates to compile under VC6. | F

Bug#342724: xinetd: new upstream release available (2.3.14, 24 Oct 2005)

Package: xinetd Version: 1:2.3.13-3 Severity: wishlist Hello Thomas, as of 24 Oct 2005 there is a new upstream release 2.3.14 available at . The changelog reads | Applied patch from Art Haas for gcc 3.5 compat. | Flush the descriptor after writing a banner. -Jay Fenlason

Bug#342654: CVE-2005-4080: Bypass of input sanitising with Internet Explorer

* Ola Lundqvist: > As i understand this article at gmane.org this is a IE bug. Fixing this > in horde do not give much effect as it is just as simple to trigger this > bug in any html page anywhere else. But these HTML pages cannot retrieve session authentication information from IMP. In the end

Bug#300807: Are you out there?

Hello once more, On Fri, Nov 25, 2005 at 09:51:33PM +0100, Florian Ernst wrote: > I'm wondering whether you are still actively working on these > packages... The thing is I'm pretty interested in seeing > libfinance-quote-perl and libhtml-tableextract-perl updated, so if >

Bug#281250: Are you out there?

Hello once more, On Fri, Nov 25, 2005 at 09:46:08PM +0100, Florian Ernst wrote: > I'm wondering whether you are still actively working on these > packages... The thing is I'm pretty interested in seeing > libio-string-perl and libmailtools-perl updated, so if you currently &g

Bug#338211: Are you out there?

Hello once more, On Fri, Nov 25, 2005 at 09:54:56PM +0100, Florian Ernst wrote: > I'm wondering whether you are still actively working on this > package... The thing is I'm pretty interested in seeing > libcurses-perl updated, so if you currently lack the time I can > offer

Bug#342704: ocaml: FTBFS on hppa: "Error: Field out of range [-262144..262143] (-267528)."

* Julien Cristau: > ocaml FTBFS on hppa with the following error (from the build log): > ../../ocamlcompopt.sh -warn-error Ay -I ../camlp4 -I ../boot -c -impl > pa_o_fast.ppo > [...] > /tmp/camlasm6f9a2e.s: Assembler messages: > /tmp/camlasm6f9a2e.s:97621: Error: Field out of range [-262144..2621

Bug#342833: debian-installer: Installation on Firewire hard drives fails on PPC/PowerMac

Package: debian-installer Severity: grave Justification: renders package unusable debian-installer offers to install a Debian system on an external Firewire drive in the partitioning menu. However, installation of yaboot fails if _any_ system partition is on a Firewire device, even if the boot pa

Bug#342704: ocaml: FTBFS on hppa: "Error: Field out of range [-262144..262143] (-267528)."

* Florian Weimer: > This looks indeed like a GAS bug (or a miscompilation of GAS). The > branch target is only a few hundred instructions away, so it should be > reachable using a BL instruction. I was wrong, this is not a real GAS bug. (See the binutils list for a discussion.) T

Bug#338089: New aic7xxx driver fails spectacularly on 2940UW

Hello folks, following up to this bugreport as I experience similar problems... I have an ASUS P2B-S mainboard featuring an Adaptec AIC-7890 Ultra2 chipset with a single device connected, a TEAC CD-R55S cd-writer, both working reliably ever since I bought them in 1998. The transport setting are a

Bug#339211: Bug#328958: RFA: libmusicbrainz-2.1: Second generation incarnation of the CD Index -- optional

Hello Joe, On Sat, Dec 10, 2005 at 10:59:30PM -0600, Joe Wreschnig wrote: > On Thu, 1 Dec 2005 20:25:15 +0100, Florian Ernst wrote: > > With respect to this new situation I'd prefer to omit the python > > bindings completely, despite the pending removal of the bindings

Bug#333958: Future of blender maintenance (was: Patch for #333958, Intent to NMU)

Hello folks, now coming back to this issue as my NMU of blender has finally migrated to Testing / Etch. On Thu, Nov 10, 2005 at 06:50:59PM +0100, Wouter van Heyst wrote: > On Wed, Nov 09, 2005 at 06:47:33PM +0100, Florian Ernst wrote: > > On Wed, Nov 09, 2005 at 05:05:17PM +0100, W

Bug#333958: Future of blender maintenance (was: Patch for #333958, Intent to NMU)

Hello again, thanks for your speedy reply. On Tue, Dec 13, 2005 at 01:58:26PM +0900, Masayuki Hatta wrote: > I'm still toying Blender sometimes, so I would like to be involved > with the maintenance of blender package in some way. You guys may add > your name to Uploaders: right now -- and I thi

Bug#341767: simple script causes sshd to run out of memory and die

* Matthew Vernon: > > Dec 1 21:37:40 mpiblaster kernel: HighMem: empty > > Dec 1 21:37:40 mpiblaster kernel: Swap cache: add 0, delete 0, find 0/0, > race 0+0 > > Dec 1 21:37:40 mpiblaster kernel: Out of Memory: Killed process 19833 > (sshd). > > > > While infinite recursion is certainl

Bug#309599: your bug -- manpages-dev: Return value of res_search and friends

* Justin Pryzby: > tag 309599 moreinfo > thanks > > Does this bug still apply? The relevant section says: > >The res_query(), res_search(), res_querydomain(), >res_mkquery() and res_send() functions return the length >of the response, or -1 if an error occurs. > > W

Bug#343330: xemacs21: Lisp error when opening a Perl file

error message text copied by manual typing) Thanks, Florian -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.14.2 Locale: LANG=C, LC_CTYPE=de_DE Versions of

Bug#343350: Cursors and DB_DBT_USERMEM

Package: libdb4.4 Version: 4.4.16-1 Tags: patch upstream If DBC->c_get is invoked with two DBTs with the DB_DBT_USERMEM flag, and the flag is DB_NEXT, and the key DBT is too small, and the value in the database is empty, DBC->c_get returns a DB_BUFFER_SMALL error code *and* advances the cursor. T

Bug#342832: qa.debian.org: resolver in etch+ requires . suffix

* alex bodnaru: > on the other hand, etch and sid can resolv the host > only if i sufix the host name with `.', but the host > can resolv the uml address. I'm sorry, but this can only be investigated if you provide the actual domain names involved. -- To UNSUBSCRIBE, email to [EMAIL PROTECTE

Bug#342704: Disable HPPA native code compiler

Upstream has responded; they won't fix this, and they no longer maintain the native code compiler on HPPA. I susgest to disable it in the Debian package. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#343466: XSS issue in mod_imap

Package: apache Tags: security upstream Severity: important Upstream reports a cross-site scripting issue in Apache: Impact does not seem to be substantial (rather obscure module, specific configuration required, only clients running IE

Bug#343467: [CVE-2005-3352] XSS issue in mod_imap

Package: apache2 Tags: security upstream Severity: important Upstream reports a cross-site scripting issue in Apache: Impact does not seem to be substantial (rather obscure module, specific configuration required, only clients running I

Bug#343503: [CVE-2005-4048] avcodec_default_get_buffer heap overflow

Package: gst-ffmpeg Tags: security Severity: grave The package embeds a local copy of libavcodec, which is vulnerable to CVE-2005-4048: http://article.gmane.org/gmane.comp.video.ffmpeg.devel/26558 http://mplayerhq.hu/pipermail/ffmpeg-cvslog/2005-December/000979.html Please check if it is necessa

Bug#339481: Why was memtester packaged outside the sysutils package anyway?

packages now don't adequately conflict with each other, so some action needs to be taken as this is basically RC. Please take a look at the update I had prepared, files are at <http://people.debian.org/~florian/memtester/>, and provide an update yourself if you want to continue maint

Bug#343896: no longer works with HP iLO

* Wichert Akkerman: > debug1: Remote protocol version 2.0, remote software version mpSSH_0.0.1 > debug1: no match: mpSSH_0.0.1 Find out what (Open)SSH version this actually is, we can then add a regexp to set the proper compatibility flags. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a

Bug#343896: no longer works with HP iLO

* Wichert Akkerman: > Previously Florian Weimer wrote: >> * Wichert Akkerman: >> > debug1: Remote protocol version 2.0, remote software version mpSSH_0.0.1 >> > debug1: no match: mpSSH_0.0.1 >> >> Find out what (Open)SSH version this actually is, we can

Bug#335997: flyspray: Multiple XSS vulnerabilities

* Thijs Kinkhorst: > For the testing (etch) and unstable distribution (sid) this problem has > been fixed in version 0.9.8-5. > close 335997 0.9.8-4 -4 or -5? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#344106: ValueError: invalid Debian version string

* Nelson A. de Oliveira: > While running debsecan, it's finishing with this error: > ValueError: invalid Debian version string Could you me send me a compressed copy of your /var/lib/dpkg/status file? It probably contains some funny version string. -- To UNSUBSCRIBE, email to [EMAIL PROTECTE

Bug#340821: [EMAIL PROTECTED]: Re: perlindex: libraries under /home/... get indexed as /usr//home/...]

I just received this mail from the upstream author. Here's a rough translation: Here's a workaround. Maybe I find some time over christmas to do a real fix. - Forwarded message from Ulrich Pfeifer <[EMAIL PROTECTED]> - From: Ulrich Pfeifer <[EMAIL PROTECTED]> To: F

Bug#344106: ValueError: invalid Debian version string

tag 344106 confirmed thanks * Nelson A. de Oliveira: >> Could you me send me a compressed copy of your /var/lib/dpkg/status >> file? It probably contains some funny version string. > > Attached. :-) The following entry is the culprit: Package: amsn Status: install ok installed Priority: option

Bug#344204: [debsecan-create-cron] Wrong line in cron file

* Amaya Rodrigo Sastre: > [EMAIL PROTECTED]>debsecan-create-cron --suite sid > /usr/sbin/debsecan-create-cron: cron file /etc/cron.d/debsecan created. debsecan-create-cron only takes a single argument, and copies to the cron job. I admit it's confusing, and I'm going to add a check to reject fun

Bug#344241: debsecan: not sure -- probably open issue is reported "fixed"

* Yaroslav Halchenko: > now you've got an active user/tester thus you might get an increase > in the amount of bug reports :-) Thanks. > On my first try of the package I've decided to do full system > "security upgrade", so I ran > >>apt-get install $(debsecan --suite sid --format packages --on

Bug#344241: debsecan: not sure -- probably open issue is reported "fixed"

* Yaroslav Halchenko: > Please feel free to close the bug :-) I'm afraid; the other problematic packages you reported are real. So let's keep this bug open. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#344344: gkrellm-alltraxclock2: Missing space in dependence field?

Package: gkrellm-alltraxclock2 Severity: minor gkrellm (>=2.1.0),libatk1.0-0 [...] - I think there should be a blank, shouldn't it?! Florian Ludwig -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#344449: RFA: xabacus -- simulation of the ancient calculator

xabacus Package: xabacus Binary: xmabacus, xabacus Version: 7.1.6-1 Priority: optional Section: games Maintainer: Florian Ernst <[EMAIL PROTECTED]> Build-Depends: debhelper (>= 5), lesstif2-dev, libesd0-dev, libxpm-dev Architecture: any Standards-Version: 3.6.2 Format:

Bug#344448: RFA: lincity -- build & maintain a city/country

e... $ apt-cache showsrc lincity Package: lincity Binary: lincity Version: 1.13.1-4 Priority: optional Section: games Maintainer: Florian Ernst <[EMAIL PROTECTED]> Build-Depends: debhelper (>= 5), libpng12-dev, libsm-dev, libx11-dev, xutils Architecture: any Standards-Version: 3.6

Bug#344451: RFA: gnubik -- 3D Rubik's cube game

procedure as outlined on <http://www.debian.org/devel/wnpp/> for taking over. Until a new maintainer has been found I will continue to take care just as before, of course... $ apt-cache showsrc gnubik Package: gnubik Binary: gnubik Version: 2.2-4 Priority: optional Section: games Maintainer:

Bug#344452: RFA: libemail-find-perl -- Perl module to find RFC 822 email addresses in arbitrary text

tional Section: perl Maintainer: Florian Ernst <[EMAIL PROTECTED]> Build-Depends-Indep: debhelper (>= 4.0.2), perl (>= 5.6.0-16), libemail-valid-perl, libmailtools-perl, libtest-simple-perl Architecture: all Standards-Version: 3.6.2 Format: 1.0 Directory: pool/main/libe/libemail-find-pe

Bug#344454: RFA: libhtml-linkextractor-perl -- Perl module used to extract links from HTML documents

ion: 0.130-2 Priority: optional Section: perl Maintainer: Florian Ernst <[EMAIL PROTECTED]> Build-Depends-Indep: debhelper (>= 4.1.0), perl (>= 5.6.0-16), liburi-perl, libhtml-parser-perl, liburi-perl Architecture: all Standards-Version: 3.6.2 Format: 1.0 Directory: pool

Bug#344455: RFA: libhttp-cache-transparent-perl -- Perl module used to transparently cache HTTP requests

nt-perl Version: 0.6-2 Priority: optional Section: perl Maintainer: Florian Ernst <[EMAIL PROTECTED]> Build-Depends-Indep: debhelper (>= 4.1.0), perl (>= 5.8.0), perl-modules, libwww-perl (>= 5.65), libtest-simple-perl Architecture: all Standards-Version: 3.6.2 Format: 1.0 Directory:

Bug#344453: RFA: libhtml-fromtext-perl -- Mark up text as HTML

riority: optional Section: perl Maintainer: Florian Ernst <[EMAIL PROTECTED]> Build-Depends-Indep: debhelper (>= 4.1.0), perl (>= 5.8.0), libscalar-list-utils-perl, libhtml-parser-perl, libregexp-common-perl, libemail-find-perl, libexporter-lite-perl, libtest-pod-perl (>= 0.95-1), l

Bug#344450: RFA: fbgrab -- Framebuffer grabber

procedure as outlined on <http://www.debian.org/devel/wnpp/> for taking over. Until a new maintainer has been found I will continue to take care just as before, of course... $ apt-cache showsrc fbgrab Package: fbgrab Binary: fbgrab Version: 1.0.0-2 Priority: optional Section: misc Maintainer:

Bug#344456: RFA: libsort-versions-perl -- Perl module for sorting of revision (and similar) numbers

riority: optional Section: perl Maintainer: Florian Ernst <[EMAIL PROTECTED]> Build-Depends-Indep: debhelper (>= 4.1.0), perl (>= 5.6.0-16), libtest-simple-perl Architecture: all Standards-Version: 3.6.2 Format: 1.0 Directory: pool/main/libs/libsort-versions-perl Files: 2da4199a2e

Bug#344457: RFA: libterm-progressbar-perl -- Perl module to print a progress bar

sion: 2.09-2 Priority: optional Section: perl Maintainer: Florian Ernst <[EMAIL PROTECTED]> Build-Depends-Indep: debhelper (>= 4.1.0), perl (>= 5.6.0-16), libclass-methodmaker-perl, libterm-readkey-perl Architecture: all Standards-Version: 3.6.2 Format: 1.0 Directory: po

Bug#344458: RFA: libtk-tablematrix-perl -- Table/matrix widget extension to Perl/Tk

riority: optional Section: perl Maintainer: Florian Ernst <[EMAIL PROTECTED]> Build-Depends: debhelper (>= 4.1.0), perl (>= 5.6.0-16), perl-modules, perl-tk, libx11-dev Architecture: any Standards-Version: 3.6.2 Format: 1.0 Directory: pool/main/libt/libtk-tablematrix-perl Files:

Bug#344459: RFA: txt2html -- Text to HTML converter

procedure as outlined on <http://www.debian.org/devel/wnpp/> for taking over. Until a new maintainer has been found I will continue to take care just as before, of course... $ apt-cache showsrc txt2html Package: txt2html Binary: txt2html Version: 2.43-1 Priority: optional Section: text Ma

Bug#344460: RFA: uni2ascii -- convert UTF-8 into 7-bit ASCII and vice versa

procedure as outlined on <http://www.debian.org/devel/wnpp/> for taking over. Until a new maintainer has been found I will continue to take care just as before, of course... $ apt-cache showsrc uni2ascii Package: uni2ascii Binary: uni2ascii Version: 3.0-1 Priority: optional Section: text Ma

Bug#344461: RFA: xpuzzles -- collection of puzzles for X

uzzles Package: xpuzzles Binary: xmpuzzles, xpuzzles Version: 7.1.5-1 Priority: optional Section: games Maintainer: Florian Ernst <[EMAIL PROTECTED]> Build-Depends: debhelper (>> 4.0.0), libesd0-dev, libxpm-dev, libxt-dev, lesstif2-dev, xlibmesa-gl-dev | libgl-dev Architecture: any Standards

Bug#344462: RFA: libconfig-general-perl -- generic configuration module

30-1 Priority: optional Section: perl Maintainer: Florian Ernst <[EMAIL PROTECTED]> Build-Depends: debhelper (>= 4.1.46) Build-Depends-Indep: perl (>= 5.6.0-16) Architecture: all Standards-Version: 3.6.2 Format: 1.0 Directory: pool/main/libc/libconfig-general-perl Files: b3cd041f13c

Bug#288386: libdvdnav: New version available

tags 288386 patch thanks [EMAIL PROTECTED] BCC'd Hello Philipp, On Fri, 25 Nov 2005 22:07:19 +0100, Florian Ernst wrote: > On Mon, 03 Jan 2005 13:33:03 +0100, Dirk Meul wrote: > > there is a new version (0.1.10) at http://dvd.sourceforge.net/ > > available. Please upgrade.

Bug#344398: CVE-2005-4470: Integer overhead in header parser for .blend import

s: #330895 + * patch source/blender/blenloader/intern/readfile.c to fix BlenLoader +Integer Overflow by adding 04_fix_integer_overflow_in_readfile.c.dpatch, +thus preventing potential code execution via a heap overflow; +for reference, this is CVE-2005-4470 - closes: #344398 + + -- Flor

<    1   2   3   4   5   6   7   8   9   10   >