Bug#302393: kernel-patch-suspend2: Process of unpatching fails on kernel-source-2.6.8-15

is definitely wrong. Florian -- Package-specific info: --- version: Linux version 2.6.8 ([EMAIL PROTECTED]) (gcc version 3.3.5 (Debian 1:3.3.5-8)) #1 Sat Mar 26 22:16:53 CET 2005 --- cmdline: root=/dev/hda3 ro video=matroxfb:dfp:vesa:0x1BB parport=0x378,7 --- cpuinfo: processor : 0 vendor_id

Bug#302421: links-ssl: handles line breaks in link URLs incorrectly

hands of the virtual host blurgl.tld on the same server. Cya, Florian -- System Information Debian Release: 3.0 Architecture: i386 Kernel: Linux florz 2.4.27 #3 Sat Aug 28 04:55:31 CEST 2004 i686 Locale: LANG=C, [EMAIL PROTECTED] Versions of packages links-ssl depends on: ii libc6

Bug#302522: apache: some directories are world writeable after install

Package: apache Version: 1.3.33-4 Severity: normal Hello, after an install this dirs are world writeable /var/lib/apache/mod-bandwidth /var/lib/apache/mod-bandwidth/link /var/lib/apache/mod-bandwidth/master The owner of the dirs is correct. -- System Information: Debian Release: 3.1 APT pr

Bug#316667: qgo is used for mimetype text/plain (at least by KDE)

/plain. I don't know what causes this or if this is really a problem in your package (and not KDE). Regards Florian -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked t

Bug#316760: New upstream version available

Package: libalzabo-perl Severity: wishlist -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello, the Debian package for libalzabo-perl is outdated. Version 0.87 is already available on CPAN. Please update your package. TIA, Florian - -- System Information: Debian Release: testing/unstable

Bug#316761: New upstream version available

Package: libapache-asp-perl Severity: wishlist -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello, the Debian package for libapache-asp-perl is outdated. Version 2.59 is already available on CPAN. Please update your package. TIA, Florian - -- System Information: Debian Release: testing

Bug#316389: Please add the transactions patch to db4.2

* Peter Marschall: > You may find further finormation about this patch on Standord's > Directory pages where it was first published (accoeding to my > knowledge): > http://www.stanford.edu/services/directory/openldap/configuration/openldap-build-42.html The patch does not include any documentatio

Bug#317081: ITP: hs-plugins -- Dynamically Loaded Haskell Modules

Package: wnpp Severity: wishlist Owner: Florian Ragwitz <[EMAIL PROTECTED]> * Package name: hs-plugins Version : 0.9.8 Upstream Author : Don Stewart * URL : http://www.cse.unsw.edu.au/~dons/hs-plugins/ * License : GPL-2 Description : Dynamically

Bug#317110: ITP: libio-all-perl -- Perl module for unified IO

Package: wnpp Severity: wishlist Owner: Florian Ragwitz <[EMAIL PROTECTED]> * Package name: libio-all-perl Version : 0.33 Upstream Author : Brian Ingerson <[EMAIL PROTECTED]> * URL : http://search.cpan.org/~ingy/IO-All/ * License : Perl (GPL

Bug#302797: libspoon-perl: libio-all-perl package

Package: libspoon-perl Version: 0.20-1 Followup-For: Bug #302797 Hello, I prepared a package for libio-all-perl. It's available here: http://www-user.tu-chemnitz.de/~rafl/Code/Debian/ I'd be glade if someone would sponsor it because I'm not a DD yet. Regards, Flo -- System Information: Debian

Bug#317123: libspoon-perl: New upstream version available

Package: libspoon-perl Version: 0.20-1 Severity: wishlist Spoon 0.23 is already available on CPAN. Please upate your package. Regards, Flo -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh lin

Bug#317120: ITP: libkwiki-perl -- The Kwiki Wiki Building Framework

Package: wnpp Severity: wishlist Owner: Florian Ragwitz <[EMAIL PROTECTED]> * Package name: libkwiki-perl Version : 0.38 Upstream Author : Brian Ingerson <[EMAIL PROTECTED]> * URL : http://search.cpan.org/~ingy/Kwiki/ * License : Perl (GPL

Bug#311264: Status of libkwiki-perl

Package: kwiki Followup-For: Bug #311264 So what's the current state of this bug? Are you still working on it? If not I'd like to adopt that package. Regards, Florian -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable

Bug#317133: zlib1g: [CAN-2005-2096] buffer overflow in decompressor

Package: zlib1g Version: 1:1.2.2-5 Severity: grave Tags: security Justification: user security hole FreeBSD has just released an advisory on a buffer overflow in the zlib decompression routine. Their patch is expected to appear under: ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-05:16/zlib.

Bug#317120: ITP: libkwiki-perl -- The Kwiki Wiki Building Framework

close 317120 thank you, BTS. On Wed, Jul 06, 2005 at 08:24:35AM -0500, Michael D. Ivey wrote: > On Wed, Jul 06, 2005 at 03:01:39PM +0200, Florian Ragwitz wrote: > > * Package name: libkwiki-perl > > Version : 0.38 > > Upstream Author : Brian Ingerson <[EMA

Bug#317120: ITP: libkwiki-perl -- The Kwiki Wiki Building Framework

On Wed, Jul 06, 2005 at 03:38:01PM +0200, Mohammed Adnène Trojette wrote: > Please don't Cc: me, I read the list. > > On Wed, Jul 06, 2005, Florian Ragwitz wrote: > > Package: wnpp > > Severity: wishlist > > Owner: Florian Ragwitz <[EMAIL PROTECTED]> >

Bug#317110: ITP: libio-all-perl -- Perl module for unified IO

On Thu, Jul 07, 2005 at 08:53:00PM +1000, Anibal Monsalve Salazar wrote: > On channel #debian-bugs you wrote: > > #302797 can be closed if anyone would sponsor libio-all-perl: > >http://www-user.tu-chemnitz.de/~rafl/Code/Debian/ > > I couldn't find libio-all-perl. 12:01 < HE> rafl: I already uplo

Bug#311264: Status of libkwiki-perl

On Fri, Jul 08, 2005 at 09:51:34PM +1200, Nick Phillips wrote: > Florian Ragwitz wrote: > > >Package: kwiki > >Followup-For: Bug #311264 > > > >So what's the current state of this bug? Are you still working on it? > >If not I'd like to adopt that p

Bug#302797: libspoon-perl: libio-all-perl package

On Fri, Jul 08, 2005 at 09:48:12PM +1200, Nick Phillips wrote: > Florian Ragwitz wrote: > >I prepared a package for libio-all-perl. It's available here: > >http://www-user.tu-chemnitz.de/~rafl/Code/Debian/ > > > >I'd be glade if someone would sponsor it becau

Bug#317843: [perl] testcase #19 broken / random number assumption

D]:~$ perl i [EMAIL PROTECTED]:~$ perl i [EMAIL PROTECTED]:~$ perl i 1 [EMAIL PROTECTED]:~$ perl i 1 Flo -- Florian Lohoff [EMAIL PROTECTED] +49-171-2280134 Heisenberg may have been here. signature.asc Description: Digital signature

Bug#317952: clamav: clamscan should descend into xpi files

Package: clamav Version: 0.86.1-2 Severity: wishlist xpi files are ZIP archives and can contain malicious code. It makes sense to scan them, IMHO. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#317967: [CAN-2005-2096] dpkg-deb contains a statically linked copy of zlib

Package: dpkg Version: 1.13.10 Severity: normal Tags: security dpkg-deb seems to contain a statically linked copy of zlib version 1.2.2. This means it's potentially vulnerable to CAN-2005-2096. Please check, and advise the security team if an update for stable is required. -- To UNSUBSCRIBE,

Bug#317966: dump: restore contains a statically linked copy of zlib

Package: dump Version: 0.4b37-2 Severity: normal Tags: security This copy might be vulnerable to CAN-2005-2096. Please check, and inform the security team if an update for stable is needed. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL P

Bug#317968: [CAN-2005-2096] zsync contains a statically linked copy of zlib

Package: zsync Version: 0.4.0-1 Severity: normal Tags: security zysnc and zsyncmake apparently contain statically linked copies of zlib 1.2.1.1. This means that these programs are potentially vulnerable to CAN-2005-2096. Please check and advise the security team if an update for stable is requir

Bug#318014: bacula-sd: [CAN-2005-2096] contains statically linked copy of zlib

Package: bacula-sd Version: 1.36.3-1 Severity: normal Tags: security /usr/lib/bacula/bscan.mysql seems to contain a statically linked copy of zlib, which might be vulnerable to CAN-2005-2096. Please check, and advise the security team if an update for stable is required. -- To UNSUBSCRIBE, ema

Bug#318061: mozilla-firefox: version 1.0.5 fixes several security bugs

Package: mozilla-firefox Version: 1.0.4-3 Severity: grave Tags: security Justification: user security hole Firefox 1.0.5 fixes several security bugs, two of them rated critical. Unfortunately, details for these bugs are embargoed until at least July 20, 2005, so no details so far. http://www.mozi

Bug#318062: mozilla-browser: version 1.7.9 fixes security bugs

Package: mozilla-browser Version: 2:1.7.8-1 Severity: grave Tags: security Justification: user security hole Mozilla 1.7.9 fixes several security bugs, one of them rated critical. Unfortunately, details for this bug are embargoed until at least July 20, 2005. 8-( http://www.mozilla.org/projects/s

Bug#318063: php4: PHP 4.4.0 may fix security bugs

Package: php4 Severity: grave Tags: security Justification: user security hole Version 4.4.0 address some memory corruption bugs, apparently resulting from fairly wide-spread errors in the implementation of reference counting. These bugs probably can be exploited by malicious PHP scripts only, an

Bug#318069: [CAN-2005-2096] sash contains statically linked copy of zlib

Package: sash Version: 3.7-5 Severity: normal Tags: security /bin/sash seems to contain a statically linked copy of zlib (version 1.2.2). Please check, and if necessary, advise the security team if an update for the stable distribution is required. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED]

Bug#318063: php4: PHP 4.4.0 may fix security bugs

* Adam Conrad: >> These bugs will likely be addressed for stable by a change in the >> security bug policy for stable. Discussions with the security team are >> ongoing; a detailed statement should be published soon. > > We need a new security policy for something that *may* fix security > bugs?

Bug#318091: libphysfs-1.0-0: [CAN-2005-2096] linked statically against zlib on most architectures

Package: libphysfs-1.0-0 Version: 1.0.0-4 Severity: normal Tags: security On most architectures, /usr/lib/libphysfs-1.0.so.0.0.0 includes a statically linked copy of a vulnerable zlib version (1.2.1). This is probably caused by a missing build dependency on zlib1g-dev. Please investigate and adv

Bug#318096: mrtg: [CAN-2005-2096] includes statically linked copy of zlib

Package: mrtg Version: 2.12.1-1 Severity: normal Tags: security The file /usr/bin/rateup contains a statically linked copy of zlib. Please investigate if this makes MRTG vulnerable to zlib vulnerabilities such as CAN-2005-2096, and coordinate a security update for the stable distribute with the se

Bug#318097: oops: [CAN-2005-2096] includes vulnerable copy of zlib

Package: oops Version: 1.5.23.cvs-2.1 Severity: normal Tags: security sid /usr/sbin/oops includes a statically linked copy of zlib, which likely makes the daemon vulnerable to the CAN-2005-2096 issue. Please link the binary to the system-wide zlib library instead. oops is not part of sarge, and

Bug#309196: retitle to include CAN-2005-2096 reference

retitle 309196 [CAN-2005-2096] Includes private copy of libz thanks This bug makes the package very likely vulnerable to CAN-2005-2096. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#318099: lsb-rpm: [CAN-2005-2096] statically linked copy of zlib

Package: lsb-rpm Version: 4.0.4-31 Severity: normal Tags: security /usr/bin/lsb-rpm seems to include a statically linked copy of zlib. Please investigate if this makes the package vulnerable to CAN-2005-2096, and advise the security team whether a security update for the stable distribution is nee

Bug#318101: systemimager-ssh: [CAN-2005-2096] contains private copy of zlib

Package: systemimager-ssh Version: 3.2.3-4 Severity: normal Tags: security The binary packages built from this source package contain a private copy of zlib, in the file: /usr/share/systemimager/boot/*/ssh/systemimager_ssh.tar.gz Depending on what the package doesn. this may expose systems to

Bug#318100: texmacs: [CAN-2005-2096] linked statically against zlib on alpha

Package: texmacs Version: 1:1.0.5-2 Severity: normal Tags: security On alpha, /usr/lib/texmacs/TeXmacs/bin/texmacs.bin contains a private copy of the zlib library. Depending on what texmacs does, this may make the program vulnerable to CAN-2005-2096. Please investigate and advise the security te

Bug#318104: lintian: warn if package includes a private copy of zlib

Package: lintian Version: 1.23.9 Severity: wishlist [Reposting from debian-devel, as requested by Marc Brockschmidt] From: Florian Weimer <[EMAIL PROTECTED]> Subject: Lintian test case author needed (zlib linking) To: debian-devel@lists.debian.org Date: Wed, 13 Jul 2005 13:44:46 +0200 Mess

Bug#309196: retitle to include CAN-2005-2096 reference

t this package right now, and just uploading it without testing seems to be a bit risky because it's the first version built with GCC 4.0. Wed Jul 13 19:11:42 CEST 2005 Florian Weimer <[EMAIL PROTECTED]> * Use system-wide zlib diff -rN -u old-debian/changelog new-debian/changel

Bug#309196: retitle to include CAN-2005-2096 reference

* Alasdair McWilliam: > That patch wont work because rageircd/include/zlink.h includes > "zlib.h" (i.e. rageircd/zlib/zlib.h) and not (i.e. /usr/ > include/zlib.h) "..." searches the system include paths as well, the difference to <...> is that the current directory and the directory in which

Bug#318014: bacula-sd: [CAN-2005-2096] contains statically linked copy of zlib

* José Luis Tallón: >> What is the security bug? How is the statically linked binary used? >> Mike Stone > > Buffer overflow in ZLib, if memory serves me well. > > BScan / BCopy should not need to use zlib, but a new version is probably > a good idea (please note that bacula-sd itself is *not* sta

Bug#318317: libc6: Numerous (49) memory leaks in gethostbyname, as reported by mudflap

* Vesselin Peev: > #include > int main() > { > gethostbyname("www.google.com"); > return 0; > } > number of leaked objects: 49 This is not a problem, unless this number grows with each gethostbyname invocation. The underlying programming pattern which causes this is quite common an

Bug#318317: libc6: Numerous (49) memory leaks in gethostbyname, as reported by mudflap

* Vesselin Peev: >> This is not a problem, unless this number grows with each >> gethostbyname invocation. The underlying programming pattern which >> causes this is quite common and perfectly harmless (if you get the >> threading issues right, of coruse). > > Just tested it in a loop, the leaks

Bug#318317: libc6: Numerous (49) memory leaks in gethostbyname, as reported by mudflap

* Vesselin Peev: > I'm thinking of submitting a wish about better handling, You could reuse this bug report (downgrade it to wishlist, reassign if necessary). > if possible with the mudflap architecture, of internal data > allocated by libc. Proper handling should of course include no > "unacces

Bug#318096: acknowledged by developer (Not exploitable)

* Debian Bug Tracking System: > The rateup binary in mrtg is not exploitable by the bug in zlib. rateup > only uses zlib to compress graphs that it generates. Thanks. Is there any reason why zlib must be linked statically? If not, you should change this, even though it's not a security problem.

Bug#302421: acknowledged by developer (Re: Bug#302421: not valid)

e version 0.96.20020409-2? Cya, Florian -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#303131: 1.29 contains officially required boilerplates

Package: xml2rfc Severity: important Tags: upstream The IETF Secretariat recently announced that they require different boilerplates in I-D submissions: >However, as of 17:00 ET on Friday May 6, 2005, the Secretariat will >accept *only* those Internet-Drafts that comply with the requirements >of

Bug#301883: asterisk: sqlite logging enabled by default and never rotated

* Jose Carlos Garcia Sogo: >> Or simply: purge all records older than a month. > > Yes, that should work, IMO. You should check that it actually keeps the database size bounded, though. Some B-tree implementations have problems with ever-increasing keys, and a perpetually growing number of page

Bug#303193: before executing a command tpb should chdir into the userhome

Package: tpb Severity: normal Hi, a xterm executed always is started in /. This little patch executes a chdir to the HOME-enviorment variable. before command executing. --- tpb.c 2004-08-22 15:45:11.0 +0200 +++ /home/squat/i/tpb-0.6.3/src/tpb.c 2005-04-05 13:21:35.045655576 +02

Bug#299486: mozilla-firefox: firefox crashes

Package: mozilla-firefox Version: 1.0.2-1 Followup-For: Bug #299486 Can confirm described behaviour on kernel 2.6.8 built from official Debian kernel-source-2.6.8-15 (Applied Debian patches kernel-patch-mppe, kernel-patch-suspend2). mozilla-firefox-gnome-support is not installed. -- System Infor

Bug#299486: mozilla-firefox: firefox crashes

P 10677)] [New Thread 1127205808 (LWP 10678)] [New Thread 1135598512 (LWP 10679)] [New Thread 1145306032 (LWP 10680)] /usr/lib/mozilla-firefox/firefox-bin: relocation error: /usr/lib/mozilla-firefox/firefox-bin: undefined symbol: NS_NewUnionEnumerator Program exited with code 0177. HTH, Florian signature.asc Description: OpenPGP digital signature

Bug#299486: mozilla-firefox: firefox crashes

tension. "~/.firefox/plugins" contains: flashplayer.xpt, libflashplayer.so Removed XUL.mfasl once between restarts of Firefox. I didn't get to make my window manager unusable again. Florian -- ... Life's uncertain...eat dessert first... signature.asc Description: OpenPGP digital signature

Bug#303658: tex4ht: Wrong use of update-alternatives in prerm / postinst

Package: tex4ht Severity: normal Justification: actually only minor, but it hurts the spirit of the alternatives mechanism too much Hello, the update-alternatives calls have been first introduced in 20010309-3 to avoid a clash with the ht package. The then-maintainers started discussing alternat

Bug#299486: mozilla-firefox: firefox crashes

Steve Langasek wrote: > Ok, so it sounds like this was an unrelated extension problem. Confirmed. After removing everything from the extensions directory (SwitchProxy) and XUL.mfasl Firefox works well. Reinstallation of SwitchProxy rendered it unusable again. signature.asc Description: OpenPGP

Bug#303898: libetpan1: uppercase "DATE:" header field does not get parsed

Package: libetpan1 Version: 0.36-1 Severity: normal Hi, i am seeing an interesting bug with libetpan Parsing a mail with this header from a Maildir libetpan does not seem to be able to parse the "DATE:" header line: # Return-Path: <[EMAIL PROTECTED]> # X-Original-To: [EMAIL PROTECTED] # Deliver

Bug#301486: kernel-image-2.6.8-2-generic: Aiee, killing interrupt handler

It wasn't a initrd problem at all, /etc/rcS/S36discover was the culprit. If I disable qlogicisp for discover, 2.6.8-2 boots. See further bug reports. Yours, Florian. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#304028: kernel-image-2.6.8-2-generic: No Mouse

Package: kernel-image-2.6.8-2-generic Version: 2.6.8-7 Severity: important If I boot into 2.6.8-2, I have no mouse. Compare: Linux alpha 2.4.27-2-generic #1 Tue Feb 15 01:56:26 UTC 2005 alpha GNU/Linux 1:900 XT-PIC keyboard 2: 0 XT-PIC cascade 7:

Bug#304046: gcompris: no current tread after warning dialog

Package: gcompris Version: 6.4-1 Severity: important After the dialog that told me that I don't have "assetml-voices-alphabet"!de, gcompompris died with a SIGABRT. GNU gdb 6.3-debian Copyright 2004 Free Software Foundation, Inc. GDB is free software, covered by the GNU General Public License, and

Bug#303898: libetpan1: uppercase "DATE:" header field does not get parsed

st say mutt parses and displays this correctly. The internet is built on the "be strict in what you send, be liberal in what you receive.". The date format is not RFC2822 but nevertheless in a format which is detect and parseable. Flo -- Florian Lohoff [EMAIL PROT

Bug#304266: ITP: sdate -- never ending september date

* Josselin Mouette: > Is there any real-life use for this program? No, especially since September ended a couple of months ago: -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "uns

Bug#304028: kernel-image-2.6.8-2-generic: No Mouse

maximilian attems wrote: On Sun, 10 Apr 2005, Florian Hars wrote: If I boot into 2.6.8-2, I have no mouse. i presume that you are not using hotplug/discover. I most definitely use discover, as I found out the hard way (/etc/rcS/S36discover caused a kernel panic by loading two conflicting SCSI

Bug#330970: wmmaiload: Preserve atime after mbox check

tags 330970 +confirmed thanks Hello, thanks for reporting this issue and sorry for the long delay. I can confirm your bug with the current version in Debian, but I just noticed that there were some new upstream releases. I'll package them first to verify if the bug still exists with the new rele

Bug#334350: flexbackup default config insecure temporary file creation

Package: flexbackup Severity: grave Tags: security "ZATAZ Audits" has published an advisory concerning flexbackup. Based on a cursory investigation of the source package, Debian is affected as well. From: ZATAZ Audits <[EMAIL PROTECTED]> Subject: [Full-disclosure] flexbackup default config insec

Bug#333866: apt-ftparchive: please generate Source: line in Packages file for recompliation-only binary NMU

* Marc Haber: > apt-ftparchive is in a position to help here by generating a proper > Source: line in the Packages: file. For example, bind9 1:9.2.1-2.0.1 > should have "Source: bind9 (1:9.2.1-2)" in the Packages file. IMO, the > Source: line should only be suppressed if both package name and > ve

Bug#334423: [CAN-2005-3120] buffer overflow in nntp schema handling

Package: lynx, lynx-cur Severity: grave Tags: security Various vendors have reported a remotely exploitable buffer overflow vulnerability in Lynx. From: Martin Pitt <[EMAIL PROTECTED]> Subject: [USN-206-1] Lynx vulnerability To: [EMAIL PROTECTED] Cc: full-disclosure@lists.grok.org.uk, bugtraq@sec

Bug#333500: [Pkg-openssl-devel] Bug#333500: not fixed in stable+oldstable

* Kurt Roeckx: >> found 333500 0.9.7g-2 > > That was already fixed in a different source package (openssl097 > 0.9.7g-5) that now provides the binary package. so I'm removing > this one, since you can't actually mark it fixed. (Or can you do > some tricks with assigning this to multiple packages

Bug#334514: [Pkg-catalyst-maintainers] Bug#334514: libhtml-tree-perl: uncommong versioned depends syntax

On Tue, Oct 18, 2005 at 03:23:10PM +0200, Goswin Brederlow wrote: > your libhtml-tree-perl package uses an uncommon syntax for versioned > depends on libwww-perl (<<5.36-0). The common syntax includes a ' ' > after the operator of the versioned depends (<< 5.36-0). Does that hurt in some way? Besi

Bug#333958: FTBFS when using sudo (see #288882)

Just one more note: Incidentally, all archs using sudo instead of fakeroot fail to build[0]. Again this is caused by scons creating files during the clean target, just as in #22, so the same fix should resolve both the FTBFS on alpha, mips and mipsel and this bug. Cheers, Flo [0] To be hones

Bug#190455: Fixed in NMU of cowsay 3.03-6

On Sat, 15 Nov 2003 20:32:08 -0500, Michael D. Ivey wrote: >* Added reversal patch for elephant-in-snake (Closes: #190455) > Thanks to D. Joe Anderson ... although I have no clue what > this cow is supposed to be. Just in case nobody has answered this so far:

Bug#254557: Also doesn't calculate the width of unicode strings right for dialogue bubble

On Tue, 14 Jun 2005 04:45:13 -0400, Anthony DeRobertis wrote: > [EMAIL PROTECTED]:~$ cowsay '?' > _ > < ? > > - > \ ^__^ > \ (oo)\___ > (__)\ )\/\ > ||w | >

Bug#223823: manpage refers to non-existing file /usr/share/cowsay/cows

On Sat, 13 Dec 2003 01:23:24 +0100, Eric Van Buggenhaut wrote: > cowsay.1 refers to /usr/share/cowsay/cows but this file isn't shipped > with the package. I don't know about cowsay_3.03-5, the version this bug was reported against, but the current cowsay_3.03-6 plainly lists | .SH FILES | .B /usr

Bug#276144: mozilla-thunderbird: Breaks formatting of cowsay-based signature

tags 276144 patch thanks [EMAIL PROTECTED] BCCed On Tue, 12 Oct 2004 14:08:07 +0100, Jo Shields wrote: > Removing trailing whitespace from the cowsay speech bubble has indeed > fixed the issue. Perhaps this bug should be reassigned to the cowsay > maintainers. The attached patch should work for

Bug#326063: Bug#333083: cowsay: Cowsay 4 beta aka Acme-Cow-0.1 available

On Mon, 10 Oct 2005 12:09:15 +0200, Florian Ernst wrote: > Are you going to package this? Either way please see my other mails which will hopefully help to resolve some cowsay issues. If you actually don't want to work on cowsay anymore I'd be happy to adopt it as I somehow like this

Bug#327872: cowsay: cow format mech-and-cow doesn't work due to bad file existing in package

tags 327872 patch thanks [EMAIL PROTECTED] BCCed On Mon, 12 Sep 2005 12:57:12 -0400, Len Sorensen wrote: > /usr/share/cowsay/cows/mech-and-cow should not be present as it isn't a > valid format file. It prevents use of the real file > /usr/share/cowsay/cows/mech-and-cow.cow Invoking cowsay like

Bug#330364: Helix Player Remote Format String Exploit

* Debian Bug Tracking System: >* New upstream release: > - fixes security problems addressed in CAN-2005-2170 (Closes: #330364). This CAN is incorrect, the correct one is CAN-2005-2710. Please fix the changelog in the next upload. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a s

Bug#157955: tidy: Tidy.el Emacs mode

On Fri, 23 Aug 2002 15:40:15 +0100, Andrew Ferrier wrote: > Not sure how appropriate this would be, but would it be possible > to stick the following Emacs tidy add-on into the tidy (or > another) package?: > > http://discus.anu.edu.au/~kahlil/emacs/tidy.el > > It makes tidy incredibly useful fro

Bug#176105: tidy: enclose-block-text does it in TDs too

Considering the following transcript | $ dpkg -l tidy | tail -n 1 | ii tidy 20050415-1 HTML syntax checker and reformatter | $ cat test.html | http://www.w3.org/TR/html4/strict.dtd";> | foo | $ tidy -q --enclose-block-text yes --enclose-text yes test.html | grep "" | line 3 column 1

Bug#199121: tidy: -big5 377

On Sat, 28 Jun 2003 09:31:00 +0800, Dan Jacobson wrote: > if upstream's -big5 has stopped putting octal 377 375 at the end of > files, please update sid. Considerung the following transcript | $ dpkg -l tidy | tail -n 1 | ii tidy 20050415-1 HTML syntax checker and reformatter | $

Bug#224427: tidy: claims to recognize '-out' option, but doesn't

tags 224427 patch thanks [EMAIL PROTECTED] BCCed Even though tidy itself doesn't claim to recognize this "-out" option anymore, the manpage still refers to it and probably should be updated to reflect upstream changes. Please see this transcript | $ tidy -h | grep -- -out | -output , -o write

Bug#283763: tidy: Error in XML file not detected

On Wed, 01 Dec 2004 08:03:51 +0100, Hans-Joachim Baader wrote: > an XML file that contains something like > > > > is not well-formed because the < and > must be escaped (eg. with < and > >) even within quotes. tidy -xml doesn't detect this. Other tools such > as xmllint do. Considering that a)

Bug#333444: tidy: new upstream release available

On Wed, 12 Oct 2005 00:51:07 +0200, Florian Ernst wrote: > Alternatively, if time is too scarce a resource for you at the moment, > I can offer you to package the most recent release for you to check > and upload, or even to take up (co-)maintenance of tidy and tidy-doc, > depen

Bug#308883: package does not include /etc/tidy.conf

tags 308883 patch thanks [EMAIL PROTECTED] BCCed On Thu, 12 May 2005 19:37:50 -0400, Demetrio Rey wrote: > Previous packages had a default /etc/tidy.conf file. This file is > missing in the current package. The attached patch adds /etc/tidy.conf to the tidy package again. HTH, Flo diff -u tidy-

Bug#68509: tidy: indents textarea contents

On Thu, 3 Aug 2000 17:50:11 -0700 (PDT), Joey Hess wrote: > I don't think tidy should indent the contents of tags if it is > in auto-indent mode, because if it does at least some browsers (netscape) > will include the indent in the text they display in the . I consider this bug resolved, please

Bug#328941: Fwd: [Re: pugs: FTBFS on 64 bit arches: internal error] [EMAIL PROTECTED]

On Thu, Oct 20, 2005 at 12:08:19AM +0100, Ian Lynagh wrote: > On Wed, Oct 19, 2005 at 06:22:35PM +0100, Ian Lynagh wrote: > > On Wed, Oct 19, 2005 at 07:13:25PM +0200, Kurt Roeckx wrote: > > > On Tue, Oct 18, 2005 at 12:47:36PM +0100, Ian Lynagh wrote: > > > > On Sun, Sep 18, 2005 at 12:35:31PM +02

Bug#308883: package does not include /etc/tidy.conf

On Thu, Oct 20, 2005 at 09:53:55AM +1000, Jason Thomas wrote: > even better add to debian/tidy.install: > > debian/tidy.conf /etc/tidy Uh, right. *smacksforehead* I guess I was too fixed on doing it via cdbs (which I actually dislike) to think about the obvious... Cheers, Flo signature.asc De

Bug#307575: cross-site scripting attack via redirect parameter (CAN-2005-1308)

* Stefan Hornburg: > The upstream author commented that advisory as follows: > > I certainly never heard of it, and the description (or the lack of it) > leaves me somewhat skeptical. The redirect URL is generated by: > output_attrencoded(cgi("redirect")), which encodes all metacharacters. > >

Bug#68509: This one is fixed

[...] When you mail nn-done without Version:, i.e. the old way of closing bugs, the bug tracking system does approximately what it always did and records the bug as closed for all versions of the package containing it. Obviously, this loses the benefits of version tracking, and is now intended

Bug#334616: This doesn't seem to be a serious security problem

* Moritz Muehlenhoff: > while I agree that running yiff with lesser privileges is desirable > I can't see a RC security problem in this case. You can't crash > a system be reading from /dev, /proc or /sys, even reading from raw > hard disk devices doesn't cause harm. If you know such a scenario >

Bug#316035: galeon gconf schema missing - my solution

conf at all. At the same time I was getting problems with X settings (key repeat off, mouse acceleration reset) that may or may not have a relation. But I hope this solution works for you too! Florian signature.asc Description: Digital signature

Bug#335236: ITP: python-pyxmpp -- XMPP and Jabber implementation for Python

Package: wnpp Severity: wishlist Owner: Florian Ragwitz <[EMAIL PROTECTED]> * Package name: python-pyxmpp Version : 0.5 Upstream Author : Jacek Konieczny <[EMAIL PROTECTED]> * URL : http://pyxmpp.jabberstudio.org/ * License : GPL Description

Bug#335240: wajig: Please add a command to search for build dependencies

Package: wajig Version: 2.0.29 Severity: wishlist Hello, it would be nice to be able to search for packages that build-depend on another. I don't like using grep-dctrl for that. TIA, Flo -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable

Bug#335260: ITP: dnspython -- DNS toolkit for Python

Package: wnpp Severity: wishlist Owner: Florian Ragwitz <[EMAIL PROTECTED]> * Package name: dnspython Version : 1.3.4 Upstream Author : Bob Halley <[EMAIL PROTECTED]> * URL : http://dnspython.org * License : Description : DNS toolki

Bug#335306: Yet another local file inclusion vulnerability

Package: phpmyadmin Tags: security Severity: grave This one seems to be different from the vulnerability mentioned in Debian bug #333433. From: Stefan Esser <[EMAIL PROTECTED]> Subject: [Full-disclosure] Advisory 16/2005: phpMyAdmin Local File Inclusion Vulnerability To: full-disclosure@l

Bug#333566: tentative patch for this bug

* Stephen Gran: > So, it looks like this is the patch that fixes the infinite loop. > Comments, etc, appreciated. Security folks, does this look to you like > it does the job, and can I upload it for sarge? This is basically a reimplementation of mpz_setbit and friends. If GMP is a mandatory bu

Bug#335260: Duplicate?

On Sun, Oct 23, 2005 at 01:09:42PM +0900, Seo Sanghyeon wrote: > How does this relate to #317825? It seems to be a duplicate, yes. Unfortunately the package is already uploaded and waiting in the NEW queue. Sorry, Flo -- BOFH excuse #107: The keyboard isn't plugged in signature.asc Descriptio

Bug#335260: ITP: dnspython -- DNS toolkit for Python

* Florian Ragwitz: > * URL : http://dnspython.org It's <http://www.dnspython.org/>. If I understand the Python policy correctly, the package should be called python-dns. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe".

Bug#335260: ITP: dnspython -- DNS toolkit for Python

On Sun, Oct 23, 2005 at 01:25:19PM +0200, Florian Weimer wrote: > * Florian Ragwitz: > > > * URL : http://dnspython.org > > It's <http://www.dnspython.org/>. > > If I understand the Python policy correctly, the package should be > called python-

Bug#335091: O: xmms-crossfade

On Fri, 21 Oct 2005 22:42:14 +0200, Martin Waitz wrote: > The current version in Debian only supports XMMS which is using > libgtk1.2 from oldlibs and there has been no request to package the BEEP > version (linked against gtk2) so far. Hmm, I couldn't find this version, can you please tell me whe

Bug#335260: ITP: dnspython -- DNS toolkit for Python

On Sun, Oct 23, 2005 at 11:31:15AM -0500, Steve Greenland wrote: > On 22-Oct-05, 17:28 (CDT), Florian Ragwitz <[EMAIL PROTECTED]> wrote: > > * Package name: dnspython > > Version : 1.3.4 > > Upstream Author : Bob Halley <[EMAIL PROTECTED]

Bug#335240: wajig: Please add a command to search for build dependencies

On Mon, Oct 24, 2005 at 06:18:58AM +1000, Graham Williams wrote: > Received Sun 23 Oct 2005 5:34am +1000 from Florian Ragwitz: > > it would be nice to be able to search for packages that build-depend on > > another. I don't like using grep-dctrl for that. > > Could you

<    1   2   3   4   5   6   7   8   9   10   >