Package: file
Version: 1:5.14-2
Severity: wishlist
Tags: patch upstream
Dear Maintainer,
I wish file recognized correctly Borland Delphi compiled form resources.
These files are currently recognized as "data".
They begin with a known string "TPF0". The magic rule is:
0 string TPF0
Package: lsat
Version: 0.9.7.1-1
Severity: normal
Tags: patch
LSAT's checkftpusers module hardcodes max number of users to check in many
places. The amount (100) is too low for servers. I include a patch that
extracts the value to a #defined constant, and set to 4000.
-- System Information:
De
Package: lsat
Version: 0.9.7.1-1
Severity: important
SIGSEGV is raised when you run "lsat -o OUTFILE.TXT", because unsafe string
handling is used. Classic buffer overflow.
static char *out_file = "lsat.out"; /* output filename var */
356 strcpy(out_file, argv
Package: lsat
Version: 0.9.7.1-1
Severity: normal
Tags: patch
On SunOS 5.10 checknet module doesn't work:
"awk: can't open length($1) > 0 {print $1}"
I changed the "shellcode":
* it sorts results numerically instead of using AWK
* it passes -n to netstat to avoid long lookups
--- checknet.c.ori
Package: lsat
Version: 0.9.7.1-1
Severity: normal
I prepared a quick fix against buffer overflows. Some fixes against 'unsecure
practices' are also included.
--- lsatmain.c.orig 2009-06-12 11:15:32.0 +0200
+++ lsatmain.c 2009-06-12 11:58:59.0 +0200
# remove unnecessary constants
@
Package: lsat
Version: 0.9.7.1-1
Severity: normal
Please don't use the patch on lines 76 and 104, it introduces another problem!
Thanks
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Package: lsat
Version: 0.9.7.1-1
Severity: normal
The part corrected looks like this:
@@ -101,7 +101,7 @@
/* see if they match. If they do, the user does */
/* not want to run that module, so we put it in */
/* another array of ints to look through later. */
-
Package: lsat
Version: 0.9.7.1-1
Severity: normal
Tags: patch
Uninitialized local variable "fileval" is passed to close - random file
descriptor is closed.
strace shows:
close(134556941)= -1 EBADF (Bad file descriptor)
--- checkpasswd.c.orig 2009-06-15 12:12:47.0
Package: dhcp-probe
Version: 1.3.0-2
Severity: grave
Justification: renders package unusable
When configuring package:
Setting up dhcp-probe (1.3.0-2) ...
dpkg: error processing dhcp-probe (--configure):
subprocess installed post-installation script returned error exit status 1
Errors were encou
Package: yersinia
Version: 0.7.1-1
Severity: normal
This error appears by just installing libpcap-dev. Without it ./configure says:
checking for a complete set of pcap headers... no
!!! couldn't find a complete set of pcap headers
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.deb
Package: radare
Version: 1.4-1
Severity: important
This version has several serious bugs which make this package hardly usable.
Please bump the package to latest hg, radare 1.4.2b works well.
-- System Information:
Debian Release: squeeze/sid
APT prefers testing
APT policy: (500, 'testing')
Package: timelimit
Version: 1.6-1
Severity: wishlist
Tags: upstream
It would be great if I could limit execution to e.g. 0.3 seconds. Instead
alarm(), set timer with setitimer().
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Co
Package: jclassinfo
Version: 0.19.1-5
Severity: important
Tags: upstream patch
Parsing some classes results with a crash:
(...)
81)CONSTANT_Utf8[1]("too many bytes in \"")
*** glibc detected *** /tmp/jclassinfo-0.19.1/jclassinfo/.libs/lt-jclassinfo:
free(): invalid next size (fast): 0x08cf5c08 *
Package: netris
Version: 0.52-8
Severity: normal
Tags: patch
Valgrind reports a memory leak in netris:
20 bytes in 1 blocks are definitely lost in loss record 5 of 43
at 0x4023D47: realloc (vg_replace_malloc.c:476)
by 0x804AF7D: GetTermcapInfo (curses.c:152)
by 0x804AD15: InitScreens (cu
Package: sqlite3
Version: 3.6.22-1
Severity: normal
A bug resulting in a crash (segmentation fault) of sqlite3 has been
detected. Please find attached the script causing problems and a debug
session log.
Tested to be vulnerable:
linux 3.6.23
linux 3.6.22
linux 3.6.4
solaris 3.5.1
Tested to be in
Package: pdfsam
Severity: important
I am using the Sun JDK/JRE and don't want to install OpenJDK to use pdfsam.
Pdfsam works with Sun Java.
-- System Information:
Debian Release: squeeze/sid
APT prefers testing
APT policy: (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.26-1-6
Package: cppcheck
Version: 1.44-1
Severity: normal
Tags: upstream
Option --enable=[id] is optional, but the default value is not specified in the
manual.
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.de
Package: spout
Version: 1.3-2
Severity: normal
/usr/share/applications/spout.desktop: file contains
"Categories:Application:Game:ArcadeGame", should be
"Categories=Application:Game:ArcadeGame".
-- System Information:
Debian Release: squeeze/sid
APT prefers testing
APT policy: (500, 'testing
18 matches
Mail list logo
