Bug#4332: Vulnerability in the Xt library (fwd)

On Thu, 29 Aug 1996, Marek Michalkiewicz wrote: > Package: xlib > Version: 3.1.2-7 > > It seems there is a buffer overrun in libXt, which may be a security > hole (some programs using libXt, such as xterm, are setuid root). > I haven't tried to exploit it, but xterm -fg very_long_string > segfaul

Re: shlibdeps

In article <[EMAIL PROTECTED]> you write: >Are we supposed to use dpkg-shlibdeps for all dependecies upon shared libs? I believe so, yes. >Or is it just for the three (or so) installed in /etc/dpkg/shlibs.default? Ian will correct me if I'm wrong, but I think (under the New Scheme of Things) pac

Re: PGP depends.

In article <[EMAIL PROTECTED]> you write: >I bit the bullet today and decided to install and implement pgp. Searching >the packages files did not turn it up, but I was able to deduce that it >was therefore, in non-free. However the search turned up this information: > >dchanges - recommends:

Bug#4350: Self-contradictory help message for dpkg-buildpackage

Package: dpkg Version: 1.3.12 sfere:/home/ftp/pub/debian/binary/base$ dpkg-buildpackage -h [...] Usage: dpkg-buildpackage [options] Options: -r [...] -si (default) src includes orig for rev. 0 or 1} genchanges -sa uploaded src includes orig (default) } Clearly o

Bug#4349: dpkg-source has misleading warning message

Package: dpkg Version: 1.3.9 sfere:~$ dpkg-source -b procmeter-2.0 procmeter-2.0.orig.tar.gz dpkg-source: warning: .orig.tar.gz name procmeter-2.0.orig.tar.gz is not -.orig.tar.gz (wanted procmeter_2.0.orig.tar.gz) This should read `... is not _.orig.tar.gz ...' (S)

Re: Bug#4269: xosview has only XOSView as application resource file

In article <[EMAIL PROTECTED]> you write: >> "jw" == joost witteveen <[EMAIL PROTECTED]> wrote: > >jw> do you want me to >jw> 1 move xosview to 'contrib', and stop maintaining it >jw> 2 just go on maintaining a broken xosview? > >IMHO, you should stick with 1. There are other things that m

Re: Do we ever retire packages?

In article <[EMAIL PROTECTED]> you write: >[EMAIL PROTECTED] writes: >> May I humbly suggest that we establish some sort of policy regarding packages >> that obsolete and can be retired? > >Yes, please! > >> I have argued before that a2ps and a2gs are effectively replaced by >> genscript, and that

Bug#4269: xosview has only XOSView as application resource file

On Mon, 26 Aug 1996, joost witteveen wrote: > > Xosview only reads the file XOSView (and ~/.Xdefaults) when evaluating > > its X resources. It does this by doing all the reading by foot (calling > > XrmGetFileDatabase() etc.). > > This is IMO the wrong way to do it; the application should use >