Hi,
On 06/01/2010 03:10 AM, Paul Szabo wrote:
> This package depends on ghostscript, and may be affected. Please
> evaluate the security of this package, and fix if needed.
There are several issues with this bug:
(1) If ghostscript has a bug, maybe it should be fixed there instead of
in all gs d
Hi,
On 01/06/2010 10:31, Roland Stigge wrote:
> Hi,
>
> On 06/01/2010 03:10 AM, Paul Szabo wrote:
>> This package depends on ghostscript, and may be affected. Please
>> evaluate the security of this package, and fix if needed.
>
> There are several issues with this bug:
>
> (1) If ghostscript ha
Package: wnpp
Severity: wishlist
Owner: fladischermich...@fladi.at
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
* Package name: django-nose
Version : 0.1
Upstream Author : Jeff Balogh
* URL : http://github.com/jbalogh/django-nose
* License : BSD
Programming
Package: wnpp
Severity: wishlist
Owner: fladischermich...@fladi.at
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
* Package name: nose-cover3
Version : 0.0.5
Upstream Author : Ask Solem
* URL : http://pypi.python.org/pypi/nose-cover3/
* License : LGPL-2.1+
Pr
On Tue, Jun 01, 2010 at 12:52:21PM +0200, fladischermich...@fladi.at wrote:
> * Package name: nose-cover3
> Version : 0.0.5
> Upstream Author : Ask Solem
> * URL : http://pypi.python.org/pypi/nose-cover3/
> * License : LGPL-2.1+
> Programming Lang: Python
>
Dear Roland,
> (1) If ghostscript has a bug, maybe it should be fixed there instead of
> in all gs dependant packages?
Yes, but gs says "cannot fix" and "please use -P-".
> (2) Mass bug filing (esp. RC/security) is generally not a great idea,
> especially if
> (3) You haven't checked the individ
Dear Vincent,
> I agree on all points of [Roland Stigge] ...
Please read my reply to him.
> I'm closing the bug for latex-make unless you come back with facts (or
> that discussion on d-d agreeds that all package using gs must be changed).
Yes, all users of gs must use the two options -P- and -
Philipp Kern, 2010-06-01 13:28:
> On Tue, Jun 01, 2010 at 12:52:21PM +0200, fladischermich...@fladi.at wrote:
>> * Package name: nose-cover3
>> Version : 0.0.5
>> Upstream Author : Ask Solem
>> * URL : http://pypi.python.org/pypi/nose-cover3/
>> * License : LGPL
Package: wnpp
Severity: wishlist
X-Debbugs-CC: debian-devel@lists.debian.org,
pkg-javascript-de...@lists.alioth.debian.org
* Package name: libjs-jquery-tablesorter
Upstream Author : Christian Bach
* URL : http://tablesorter.com
* License : MIT and GPL
Programming Lang:
On 01/06/2010 13:10, paul.sz...@sydney.edu.au wrote:
>> (4) Please state clearly what's wrong with the package (hyperlatex in
>> this case). From the other bug reports I deduce that gs calls should be
>> extended with "-P- -dSAFER". This should be done in the hyperlatex
>> source package in bin/ps2
2010/5/31 Ludovic Brenta :
> Option 1: upload a new package "gnat" that Breaks: all -dev packages
> that were present in Lenny but are no longer present in Squeeze.
> This however does not really help apt, or the user, discover the
> new replacement packages.
>
> Option 2: change each new -dev pack
severity 584021 normal
thanks
Le mardi 1 juin 2010 06:17:23, paul.sz...@sydney.edu.au a écrit :
> > I agree on all points of [Roland Stigge] ...
>
> Please read my reply to him.
Well, I still fail to see why you need to fill RC bugs everywhere. If your
rational for filling bugs against all pack
On Tue, Jun 01, 2010 at 06:32:56PM +0200, Vincent Danjean wrote:
> Perhaps, gs should have these options enabled by default (and provide other
> options to disable them if needed) instead of requiring to modify all
> programs. It would secure home-made scripts, too.
I agree. I've found (and repor
David Kalnischkies wrote:
2010/5/31 Ludovic Brenta :
Option 1: upload a new package "gnat" that Breaks: all
-dev packages that were present in Lenny but are no
longer present in Squeeze. This however does not really
help apt, or the user, discover the new replacement
packages.
Option 2: c
If collaboration among users should work nicely out of the box, we will
finally need three small things. I am not sure in which package some of
them should go, though.
1) An install? option to populate /etc/skel/ with the special permission
directories private/(rwx--) and incoming/ (rwsrws-wt
Hello,
in the past cryptsetup got several bugreports which complain about the
lsb dependenciy headers specified in cryptdisks and cryptdisks-early
initscipts. (#576646, #575652)
the problem is that loads of possible setups are possible, all
introducing different required initscript order. either
Package: wnpp
Severity: wishlist
Owner: Miguel Landaeta
* Package name: sdo-api-java
Version : 1.1.1
Upstream Author : Apache Software Foundation (ASF)
* URL :
http://svn.apache.org/repos/asf/tuscany/sdo-java/tags/1.1.1/sdo-api/
* License : Apache-2.0
Progra
On Tue, Jun 01, 2010 at 08:23:00PM +0200, C. Gatzemeier wrote:
>
> If collaboration among users should work nicely out of the box, we will
> finally need three small things. I am not sure in which package some of
> them should go, though.
>
> 1) An install? option to populate /etc/skel/ with the
Package: wnpp
Severity: wishlist
Owner: Alexandre Quessy
* Package name: scenic
Version : 0.6.0
Upstream Author : Tristan Matthews
Alexandre Quessy
Simon Piette
Philippe Chevry
Koya Charles
Le mardi 1 juin 2010 12:12:23, Romain Beauxis a écrit :
> I am not closing but downgrading for mediawiki, unless you prove that there
> is a real security issue.
Ok, I have looked at the source code. We use dvips to generate the postscript
file.
Does the issue happen for dvips ?
Romain
--
T
On Mon, May 24, 2010 at 5:05 AM, Raphael Hertzog wrote:
> * The dpkg-maintscript-helper tool has been introduced in dpkg 1.15.7.2
> to help packagers deal with renaming conffiles and removing obsolete
> conffiles.
This is a great addition; however, if the user has changed the
conffile *an
Package: wnpp
Severity: wishlist
Owner: Joel Roth
* Package name: nama
Version : 1.058
Upstream Author : Joel Roth
* URL : http://search.cpan.org/dist/Audio-Nama/lib/Audio/Nama.pm
* License : GPL
Programming Lang: Perl
Description : Ecasound-based re
Package: wnpp
Severity: wishlist
Owner: NIIBE Yutaka
Owner: NIIBE Yutaka
* Package name: cutter-testing-framework
Version : 1.1.3
Upstream Author : Kouhei Sutou
* URL : http://cutter.sourceforge.net/
* License : LGPL
Programming Lang: C
Description :
On Tue, 01 Jun 2010, Jonathan Niehof wrote:
> This is a great addition; however, if the user has changed the
> conffile *and* the maintainer also changes it in the same version
> where it is moved, the user's file is left silently in place and the
> maintainer's installed as .dpkg-new. This seems s
24 matches
Mail list logo
