Package: amule-utils-gui
Version: 2.1.3-4
Severity: serious
Justification: unknow
When I try to start amulegui I get:
[EMAIL PROTECTED]:~$ amulegui
Gtk-Message: Failed to load module "gnomebreakpad": libgnomebreakpad.so: cannot
open shared object file: No such file or directory
*** glibc detect
tags 443206 + upstream
severity 443206 serious
thanks
Reported upstream: http://bugzilla.gnome.org/show_bug.cgi?id=479722
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
tags 443744 + upstream confirmed
thanks
Reported upstream:
http://sourceforge.net/tracker/index.php?func=detail&aid=1800931&group_id=154306&atid=791252
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Hello,
Here is a little "ping" to know if you intent to fix this
security issue[*] opened since july 2007.
[*] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=434045
Regards,
On Sun, Jul 22, 2007 at 09:06:48AM +0200, Gregory Colpart wrote:
> Hello,
>
> The package horde3 has XSS vulnerability
# Automatically generated email from bts, devscripts version 2.10.8
# doesnt affect stable
tags 443029 + sid lenny
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Package: libmpich1.0ldbl
Version: 1.2.7-3.1
Followup-For: Bug #443787
Package libmpich1.0ldbl description contains:
Replaces: libmpich1.0, libmich1.0c2, libmpich1.0-noslog
but it should probably be
Replaces: libmpich1.0, libmpich1.0c2, libmpich1.0-noslog
^
A "p" is mi
# Automatically generated email from bts, devscripts version 2.10.8
# doesnt affect stable
tags 443632 + sid lenny
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
# Automatically generated email from bts, devscripts version 2.10.8
# doesnt affect stable
tags 443033 + sid lenny
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Package: duplicity
Version: 0.4.3-2
Severity: grave
Justification: renders package unusable
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
This is quite odd. I've been using the current version of duplicity to
produce incremental backups since last week. Today is monday so we start
a fresh backup,
package hylafax-server
retitle 443070 faxaddmodem doesn't release lock file in /var/lock/
quit
Hi Lukasz,
I changed the title of this bug report and I'll try to fix it during the
next days.
Bye,
Giuseppe
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble?
severity 430726 important
tags 430726 + moreinfo unreproducible
thanks
On 27/06/07 at 00:00 +0300, Lior Kaplan wrote:
> Dear opencv maintainer,
>
> opencv isn't binNMU safe, which causes other packages to FTBFS due to problems
> installing their build depends. Example can be seen at
> http://peo
Hi,
I was browsing Darwin dev mailing list, but I didn't see your message.
Are you sure it has reached [EMAIL PROTECTED] ??
Any progress regarding this bug... it is really making AMD64 build useless.
Cheers,
--
: nanoANT Adam Strzelecki :
: nanoant.com :
--
To UNSUBSCRIBE, email
Package: yaird
Version: 0.0.12-22
Severity: grave
Justification: renders package unusable
I recently installed a 2.6.23 kernel for testing purposes and noticed
that yaird is no longer able to create a valid ramdisk. The errors I get
are
..
yaird error: unrecognised device:
/sys/devices/pci000
On Sat, Sep 22, 2007 at 04:38:06AM +0200, Gonéri Le Bouder wrote:
> On Wed, Jul 11, 2007 at 11:39:47AM +0200, Gerfried Fuchs wrote:
> > sauerbraten segfaults on my PowerBook G4 no matter if I start it with
> > -f (then I receive a bit of output) or not. Please find attached an
> > strace and gdb
Package: apt-setup
Severity: serious
Version: 1:0.27
The check added by Joey to see if the DHCP question was asked is broken.
Getting the question asked interactively does _not_ set the seen flag, which
means that currently with a netinst install at default priority you do not
get a mirror.
s
Package: po4a
Severity: serious
Hi,
hex-a-hop fails to build from source on m68k:
http://buildd.debian.org/fetch.cgi?&pkg=hex-a-hop&ver=0.0.20070315-6&arch=m68k&stamp=1190551250&file=log
The affected output line is:
Building "bg" translation
Can't locate unicore/PVA.pl in @INC (@INC contains: /
On Mon, Sep 24, 2007 at 03:20:06PM +0200, Jens Seidel wrote:
> Package: po4a
> Severity: serious
>
> Please adapt the dependencies. Thanks.
I see that perl-base has the following line:
Replaces: perl (<< 5.8.8-5), perl-modules (<< 5.8.8-8), ...
Should it be safe to directly depend on perl-base
Hi
I was just wondering about the status of this security bug.
Shall we go ahead and deactivate the svn support via NMU and you can decide
what to do later or do you likely have the time to do the splitting?
Thanks for your feedback.
Cheers
Steffen
signature.asc
Description: This is a digitall
Hi!
On Sat, Jun 16, 2007 at 02:15:13AM +0200, Javier Fernández-Sanguino Peña wrote:
> Package: po4a
> Version: 0.29-1
> Severity: grave
> Tags: security patch
>
> If you run po4a-gettextize on contents that do not get converted to PO files
> due to some issue, the script will dump its results in
Hi,
When I build snort on my sid amd64 box, the .so files get built as 64
bit as they should. So this is probably something debian buildd
specific.
Sami
signature.asc
Description: Digital signature
Package: mysql-admin
Version: 1.2.5rc-2
Severity: serious
Justification: Policy 7.3 or 7.5.1/7.5.2
mysql-admin does not list mysql-admin-common in Conflicts or
Replaces, yet it replaces one of the files in mysql-admin-common.
Removal of mysql-admin-common happens at a later stage than the
instal
tags 431692 + fixed-upstream
thanks
Hi
According to upstream, this was fixed in 0.2.3,
http://sourceforge.net/tracker/index.php?func=detail&aid=1799127&group_id=97143&atid=617135
--
Cheers,
Sven Arvidsson
http://www.whiz.se
PGP Key ID 760BDD22
signature.asc
Description: This is a digitally si
Jens Seidel wrote:
On Mon, Sep 24, 2007 at 03:20:06PM +0200, Jens Seidel wrote:
PS: I now see in http://buildd.debian.org/pkg.cgi?pkg=hex-a-hop
that the state of m68k is: "Dep-Wait: perl (>= 5.8.8-11)". Does this
mean that the dependencies of hex-a-hop are not yet fullfilled but a build
attemp
On Mon, Sep 24, 2007 at 05:22:21PM +0200, Luk Claes wrote:
> Jens Seidel wrote:
> >On Mon, Sep 24, 2007 at 03:20:06PM +0200, Jens Seidel wrote:
>
> >PS: I now see in http://buildd.debian.org/pkg.cgi?pkg=hex-a-hop
> >that the state of m68k is: "Dep-Wait: perl (>= 5.8.8-11)". Does this
> >mean that
On Mon, Sep 24, 2007 at 05:46:44PM +0200, Jens Seidel wrote:
> On Mon, Sep 24, 2007 at 05:22:21PM +0200, Luk Claes wrote:
> > Jens Seidel wrote:
> > >On Mon, Sep 24, 2007 at 03:20:06PM +0200, Jens Seidel wrote:
> >
> > >PS: I now see in http://buildd.debian.org/pkg.cgi?pkg=hex-a-hop
> > >that the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
hi,
sorry for the delay on this, got a quite busy time!
I received a mail with a patch to fix this odd bug some hours ago, but
it seems new upstream version (0.2.3) fixes this definitely. I gonna
move to package it really soon.
If someone is interest
Only until Sep 28 - When you purchase the Doctor Listing at the sale price you
will also get Hospital, Nursing Home, Dentist and Chiropractor data at no
additional cost
Licensed Doctors in the USA
788,462 in total 17,400 emails
34 primary and secondary specialties
Sort by over a dozen
Hello Jens,
On Mon, Sep 24, 2007 at 03:59:00PM +0200, [EMAIL PROTECTED] wrote:
> Hi!
>
> On Sat, Jun 16, 2007 at 02:15:13AM +0200, Javier Fernández-Sanguino Peña
> wrote:
> > Package: po4a
> > Version: 0.29-1
> > Severity: grave
> > Tags: security patch
> >
> > If you run po4a-gettextize on con
Package: xorg
Version: 1:7.3+2
Severity: grave
Justification: renders package unusable
After the recent Xorg and Nvidia upgrade, I can no longer run my
Xinerama setup without causing Xorg to segfault, and the following
backtrace:
Backtrace:
0: /usr/bin/X11/X(xf86SigHandler+0x7e) [0x80c632e]
On Sep 20, 2007 at 1900 +0300, Timo Sirainen appeared and said:
> On Thu, 2007-09-20 at 17:49 +0200, René Pfeiffer wrote:
> > Sep 20 17:42:49 messages dovecot: POP3(XX): Couldn't open INBOX:
> > Internal error occurred. Refer to server log for more information.
> > [2007-09-20 17:42:49]
>
>
Hi,
Can someone please take a look at bug #440538. There doesn't seem to be
any sparc developers machines available.
Kurt
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Frans Pop wrote:
> Getting the question asked interactively does _not_ set the seen flag, which
> means that currently with a netinst install at default priority you do not
> get a mirror.
Is there a reason why you chose to make apt-setup look at netcfg's
question instead of just checking for a
I'm reopening this bug because the fix was not implemented reliably
and had to be reverted. See #442891 and #402645.
IMHO testing for a configured network interface is the only
semi-reliable way to approach this. Digging around in netcfg's internals
is messy, creates a binding between apt-setup an
On Monday 24 September 2007, you wrote:
> Is there a reason why you chose to make apt-setup look at netcfg's
> question instead of just checking for a default route?
No, there is not. I basically did not have the "no NIC present" use case in
mind.
> If asking the question interactively does not
On Wed, Sep 19, 2007 at 12:10:26AM +0200, Josip Rodin wrote:
> > kernel which works well - at least on out US III machine. We've applied
> > 179c85ea53bef807621f335767e41e23f86f01df to make sure that the system
> > doesn't create unkillable processes anymore if you use the libc6 from
> > _lenny_.
>
program startup
Reply-To:
In-Reply-To: <[EMAIL PROTECTED]>
I have created a complete patch for this bug. I will ask for
sponsorship to upload this as an NMU in 7 days.
--
diff -u grun-0.9.2/debian/changelog grun-0.9.2/debian/cha
On Mon, Sep 24, 2007 at 06:54:01PM +0200, Luk Claes wrote:
> On Mon, Sep 24, 2007 at 05:46:44PM +0200, Jens Seidel wrote:
> > On Mon, Sep 24, 2007 at 05:22:21PM +0200, Luk Claes wrote:
> > > This means that the next try for a build will only happen when perl
> > > version 5.8.8-11 or later is avai
Josip Rodin wrote:
> On Wed, Sep 19, 2007 at 12:10:26AM +0200, Josip Rodin wrote:
>>> kernel which works well - at least on out US III machine. We've applied
>>> 179c85ea53bef807621f335767e41e23f86f01df to make sure that the system
>>> doesn't create unkillable processes anymore if you use the libc
On Mon, Sep 24, 2007 at 09:53:44PM +0200, Bernd Zeimetz wrote:
> >>> kernel which works well - at least on out US III machine. We've applied
> >>> 179c85ea53bef807621f335767e41e23f86f01df to make sure that the system
> >>> doesn't create unkillable processes anymore if you use the libc6 from
> >>>
>> I'm not sure if those problems are related :) The register dumps would
>> be needed if the kernel fails to initialize the CPU
>
> Fabio told me that break+p output might be useful in this case too,
> I'm just repeating :)
Does Fabio probably know how to send that via a serial connection? :)
Package: wxwidgets2.6
Version: 2.6.3.2.1.5
Severity: grave
Hi,
with wxWidgets 2.6 and recent GTK+ in Sid, almost all applications
using wxWidgets crash due to bugs in GtkBorder handling. I have
observed these crashes in aMule (detail dialog), Audacity (about,
preferences) and FileZilla (crashes r
Frans Pop wrote:
> Note that with my old, apt-setup would only default to using a mirror and
> thus time out. Your patch was intended to avoid that time out (which is
> fine), but at the cost of breaking the normal case. IMO timing out in
> situations that occur only rarely is even somewhat acce
Package: bind9
Version: 1:9.3.1-2.0.1
Severity: critical
Tags: security
Justification: breaks unrelated software
Currently if you update your etch system, bind9 package is removed!
This happened on our firewall/router/server machine, rendering DNS
support for the whole network inoperable.
bind9 d
Package: cdrom
Severity: critical
Justification: breaks the whole system
I have a server with an onboard Adaptec RAID bus controller (ASR-2010s).
After the fresh installation of stable Debian 4.0 distribution my system
was rendered unbootable. It got stucked waiting for the root partition.
The
I have the same problem with the same error messages.
However, I don't even have gnome-applets installed!
I am unable to install it since it depends on libwnck18, which is
tagged as BROKEN. Shouldn't it depend on linbwnck22 instead?
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subje
Package: php-pear
Version: 5.2.0-8+etch7
Severity: grave
Tags: patch security
Hello,
Overview:
=
Lack of validation of the install-as attribute in package.xml
version 1.0 and of the tag in package.xml version 2.0
allows attackers to install files in any location and possibly
overwrite cr
On Mon, Sep 24, 2007 at 03:59:00PM +0200, Jens Seidel wrote:
> I don't want to reopen this bug but why is it OK to omit /tmp? The code
> is still vulnerable. Just assume po4a is started in /tmp or in another
> directory where an attcker has write access and the problem remains ...
Yes, but only in
severity 443899 important
quit
On Mon, Sep 24, 2007 at 11:48:41PM +0200, Gregory Colpart wrote:
> Package: php-pear
> Version: 5.2.0-8+etch7
> Severity: grave
> Tags: patch security
Overinflated severity. Yeah, running programs as root that pull input from
untrusted network sources can break thi
Bernd Zeimetz a écrit :
I'm not sure if those problems are related :) The register dumps would
be needed if the kernel fails to initialize the CPU
Fabio told me that break+p output might be useful in this case too,
I'm just repeating :)
Does Fabio probably know how to send that via a serial co
Package: poppler
Severity: grave
Tags: security
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for poppler.
CVE-2007-5049[0]:
| Stack-based buffer overflow in the StreamPredictor::getNextLine
| function in xpdf, as used in (1) poppler before 0.5.91, (2) gpdf, (3)
| kp
Package: xpdf
Severity: grave
Tags: security
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for xpdf.
CVE-2007-5049[0]:
| Stack-based buffer overflow in the StreamPredictor::getNextLine
| function in xpdf, as used in (1) poppler before 0.5.91, (2) gpdf, (3)
| kpdf, (4
libavutil version: 1d.49.3.0
libavcodec version: 1d.51.38.0
libavformat version: 1d.51.10.0
built on Jun 23 2007 14:31:53, gcc: 4.1.3 20070601 (prerelease) (Debian
4.1.2-12)
File formats:
E mpeg2video MPEG2 video
Codecs:
D VSDT mpeg2video
Doesn't this mean that mpeg2 encoder is di
reassign 443870 nvidia-glx
retitle 443870 'nvidia-glx: segfault in Xrealloc with Xserver 1.4 and Xinerama"
found 443870 100.14.19-1
thank you
Phil Dibowitz wrote:
> After the recent Xorg and Nvidia upgrade, I can no longer run my
> Xinerama setup without causing Xorg to segfault, and the follow
Package: inotify-tools
Severity: grave
Tags: security
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for inotify-tools.
CVE-2007-5037[0]:
| Buffer overflow in the inotifytools_snprintf function in
| src/inotifytools.c in the inotify-tools library before 3.11 allows
|
reassign 443897 grub
retitle 443897 update-grub fails to reconize /dev/i2o/* root
partitions
thanks
Daniel Koc <[EMAIL PROTECTED]> writes:
<...>
> Manual editing grub entry has helped to mount the root partition, but
> the system was unable to mount all the other partitions, because all
> fstab
Long before submitting the bug report, I changed my sources.list to the
following:
deb http://http.us.debian.org/debian etch main contrib non-free
deb http://security.debian.org etch/updates main contrib non-free
deb http://http.us.debian.org/debian sarge main contrib non-free
deb http://security
Package: wammu
Version: 0.22-1
Severity: grave
Justification: renders package unusable
Hi,
I decided to give wammu a second try. When I launch wammu it tells me
that there is no configuration file and asks me if I want to configure
phone connection. If I click on yes I get alternatively:
% wammu
Package: motion
Version: 3.2.3-2.1+b3
Followup-For: Bug #436200
The stable version (3.2.3-2.1) works perfectly if I install it with
apt-get -t stable.
The testing version (3.2.3-3.1+b3) crashes on any motion being detected,
apparently because of a problem with ffmpeg:
servalan:~# motion -n -c /e
On Mon, 24 Sep 2007 09:21:24 +0100, Sam Morris writes:
>Package: duplicity
>Version: 0.4.3-2
>Severity: grave
>Justification: renders package unusable
>
>Severity serious because I can't run duplicity at all now, on two
>different machines.
indeed; i'll track this down tonight.
regards
az
--
+
Package: libgtkhtml3.14-19
Version: 3.14.3-1
Severity: grave
Justification: renders package unusable
This is attempting to be installed as part of a dist-upgrade and get
this:
Preparing to replace libgtkhtml3.14-19 3.14.3-1 (using
/libgtkhtml3.14-19_3.16.0-1_i386.deb) ...
Unpacking replacemen
Hey Bastian,
Reading http://ccrma.stanford.edu/planetccrma/man/man3/stdarg.3.html
I see that I can also use:
*aq = *ap;
what do you think?
Diego
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Package: openafs-modules-source
Version: 1.4.4.dfsg1-7
Severity: grave
Justification: renders package unusable
I just built a new x86_64 machine to bridge AFS/NFS/CIFS and after
logging in to an AFS id, I found this:
ls -l /u1/cobdev/cobbuild/
total 21
?- ? ?? ?
Brice Goglin wrote:
> There are some known bugs about Xinerama in Xserver 1.4, especially
> #443274. But the backtrace above is completely different, and it seems
> totally nvidia specific. So I am reassigning this bug to nvidia-glx.
> We'll keep #443274 to deal with Xserver-without-nvidia Xinerama
Phil Dibowitz wrote:
> Doing some research I found this:
>
> http://www.nvnews.net/vbulletin/showthread.php?s=7858bb6d26391d3abf310c8788143778&t=99016
>
> which suggests that I can work around the problem by explicitly disabling
> "composite."
>
> I'll try this when I get into the office tomorro
Richard A Nelson <[EMAIL PROTECTED]> writes:
> Package: openafs-modules-source
> Version: 1.4.4.dfsg1-7
> Severity: grave
> Justification: renders package unusable
> I just built a new x86_64 machine to bridge AFS/NFS/CIFS and after
> logging in to an AFS id, I found this:
> ls -l /u1/cobdev/cobb
On Mon, 24 Sep 2007, Russ Allbery wrote:
That output looks like you don't have a token. It's the output I'd expect
from listing a directory that's listable but not readable. Do you
actually have a token? What is the output from the tokens command and
what are the ACLs on that directory?
I t
Richard A Nelson <[EMAIL PROTECTED]> writes:
> $ fs la Access list for . is
> Normal rights:
> system:anyuser rl
> cowboy rla <<<=== that'd be my primary id
> cobbuild rlidwka <<<=== the ID logged onto
> $ls -la
> ...
> -rw--- 1 cobbuild cobdev 2778 Jun 27 16
Package: audacity
Version: 1.3.3-1+b1
Severity: grave
Justification: renders package unusable
First I noticed that audacity was crashing when almost any menu item was
used (notably the Preferences item). Moving the configuration file
~/.audacity aside made audacity refuse to start. Simply launchin
Hello,
I fail to reproduce this. I have a suspicion that on some people systems
indeed gtk and wxwidgets are causing problems.
Could you try running audacity without GNOME? (e.g. in KDE)
Joost
On Tuesday 25 September 2007 07:39:57 Géraud Meyer wrote:
> Package: audacity
> Version: 1.3.3-1+b1
>
On Mon, 24 Sep 2007, Russ Allbery wrote:
Ah, okay, this, where you see some stuff and not others. Yeah, this was
reported on the list as well, so with the additional details you gave, it
means something broke in 2.6.22.6 on x86 and possibly in 2.6.22.5 on
x86_64.
that could be, I didn't have
70 matches
Mail list logo
