On 4.4.2021 16.23, Andrew Savchenko wrote:
Hello Yves-Alexis,
Sunday, April 4, 2021, 7:35:46 PM, you wrote:
statoverride in hardening-runtime were added by Topi Miettinen so I'm adding
him in the loop for comments.
For the screensavers specifically, I have narrowed it down to /etc/pam.d
Package: libpam-modules
Version: 1.4.0-2
Severity: normal
X-Debbugs-Cc: toiwo...@gmail.com
pam_unix may report incorrectly that the password expires within random days.
This is already fixed upstream:
commit db6b293046aee4735f3aa2d1713742ed4b533219
Author: Tomas Mraz
Date: Wed Jul 22
On 13.1.2021 13.29, Julian Andres Klode wrote:
On Wed, Jan 13, 2021 at 12:08:39PM +0200, Topi Miettinen wrote:
Package: libapt-pkg6.0
Version: 2.1.17
I'm using a patched kernel (upstream 5.10.0 +
https://patchwork.kernel.org/project/linux-mm/patch/20201220180656.43843-1-toiwo...@gmail.com
Package: libapt-pkg6.0
Version: 2.1.17
I'm using a patched kernel (upstream 5.10.0 +
https://patchwork.kernel.org/project/linux-mm/patch/20201220180656.43843-1-toiwo...@gmail.com/)
where mremap() always remaps memory to a different address to improve
address space layout randomization, when
Package: refind
Version: 0.11.4-1
Severity: normal
Tags: upstream
Hi,
CentOS keys are expired:
$ openssl x509 -noout -enddate -in /etc/refind.d/keys/centos.crt
notAfter=Jun 7 12:00:00 2017 GMT
$ openssl x509 -noout -enddate -inform der -in /etc/refind.d/keys/centos.cer
notAfter=Jun 7
Package: ca-certificates
Version: 20190110
Severity: normal
Hi,
I found these expired certificates (thanks to Lynis):
$ openssl x509 -noout -enddate -in
/usr/share/ca-certificates/mozilla/Certplus_Class_2_Primary_CA.crt
notAfter=Jul 6 23:59:59 2019 GMT
$ openssl x509 -noout -enddate -in
Package: nvidia-kernel-support
Version: 430.64-4
Severity: normal
/etc/nvidia/current/nvidia-modprobe.conf contains the lines below with
'install' or 'remove' commands in modprobe.d files. According to kmod
developers, these are long obsolete and should be replaced by 'softdep'
commands. I'd be
Using $XDG_DATA_HOME, falling back to $HOME/.local/share/, was
implemented with 54901bcd1672c9e22db35c66741ec2eda123b491, which was
released in 3.3.0.
-Topi
I made MR!1 for updating debian/watch. This displays 3.3.0 from GitHub
as the latest version instead of 3.2.3, which was the last version in
SourceForge.
-Topi
This will be fixed by upstream PR#469, hopefully included in v3.3.1.
-Topi
Also debian/watch should be updated to follow new releases in GitHub
instead of SourceForge.
-Topi
This will be fixed by upstream PR#536, hopefully in v3.3.1.
-Topi
Package: tomoyo-tools
Version: 2.6.0-20190305-1
Severity: important
Version 2.6 is not compatible with kernel versions before 5.0. Please
add an entry in NEWS to warn users that kernel may panic if old versions
of databases are used, for example like earlier NEWS items.
-Topi
On 20.6.2019 12.25, Michael Biebl wrote:
Hi
Am 20.06.19 um 09:57 schrieb Trent W. Buck:
Package: systemd
Version: 241-5
Severity: minor
File: /usr/bin/systemd-analyze
Below are two units which both block @debug syscalls (confirmed by strace
crashing).
systemd-analyze incorrectly claims
Package: waagent
Version: 2.2.34-4
From
https://lintian.debian.org/tags/systemd-service-file-shutdown-problems.html:
The specified systemd .service file contains both
DefaultDependencies=no and Conflicts=shutdown.target
directives without
Before=shutdown.target.
This can lead to problems
15 matches
Mail list logo