Package: telegram-desktop
Version: 4.5.3+ds-1+b1
Severity: normal
Hi.
Since the latest upgrade, telegram-desktop ignores the shift-modifier on my
system.
cu
AW
-- Package-specific info:
-- System Information:
Debian Release: 11.1
APT prefers testing
APT policy: (90, 'testing'), (90,
Moin,
begin quotation from Markus Demleitner (in
<20220921185014.db6o56sxwieo3vnm@victor>):
> On Wed, Sep 21, 2022 at 11:36:08AM +0200, Arne Wichmann wrote:
> > Bail out! ERROR:common/util.c:67:strip_ansi_escapes: assertion failed (err
> > == NULL): Error while compili
Package: luakit
Version: 1:2.2.1-1
Severity: grave
Justification: renders package unusable
Luakit aborts saying:
Bail out! ERROR:common/util.c:67:strip_ansi_escapes: assertion failed (err ==
NULL): Error while compiling regular expression
Package: luakit
Version: 1:2.2.1-1
Severity: wishlist
Tags: upstream
When I view a HTTPS-page with no usable certificate, I get a message like
the following:
Your connection may be insecure!
A problem occurred while loading the URL https://[...]
Unacceptable TLS certificate: The certificate
, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@saar.de)
signature.asc
Description: PGP signature
t want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@saar.de)
signature.asc
Description: PGP signature
w I received
this although the mail probably bounced.)
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (
:07:57PM +0200, Sebastian Ramacher wrote:
On 2015-05-15 15:22:28, Alessandro Ghedini wrote:
On Fri, May 15, 2015 at 11:05:17AM +0200, Sebastian Ramacher wrote:
On 2015-05-14 20:41:15, Arne Wichmann wrote:
Hi, as far as I can see this has not yet been reported or fixed
:41:15, Arne Wichmann wrote:
Package: libavcodec56
Version: 6:11.3-2
Severity: grave
Tags: security
Justification: user security hole
Hi, as far as I can see this has not yet been reported or fixed:
CVE-2014-7937 : Multiple off-by-one errors in libavcodec
Package: libavcodec56
Version: 6:11.3-2
Severity: grave
Tags: security
Justification: user security hole
Hi, as far as I can see this has not yet been reported or fixed:
CVE-2014-7937 : Multiple off-by-one errors in libavcodec/vorbisdec.c in
FFmpeg before 2.4.2, as used in Google Chrome before
but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
-BEGIN PGP SIGNATURE-
Version: GnuPG v1
iQIcBAEBCAAGBQJVBs5EAAoJEENYfBy4DUs+5vgP/07qI3cTAKOeTbPH5BcBS+XB
fNJFmOtTUdXaC9FW0YMAf/kLDtCeI5WXypY0gERyaoh4OaIdEhiWQ1nEIcBD/C0T
Z09s0D1L/1lypK3sCz+PO34IlFHmkRNTwlF0TLsYE
to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
-BEGIN PGP SIGNATURE-
Version: GnuPG v1
iQIcBAEBCAAGBQJU6FXNAAoJEENYfBy4DUs+4jAP/03iI0NGp/xfhkQC/TaJ/paM
RWoE3Sbn62j9XL4C1Q3qHW9hkJFNKYaOIDIIjkdoZsNxy83PejSHDL0G
-- Weitergeleitete Nachricht --
From: Arne Wichmann arnew-report...@rasentrimmer.org
To: Debian Bug Tracking System sub...@bugs.debian.org
Cc:
Date: Sun, 07 Dec 2008 20:18:40 +0100
Subject: lvm2: should not uninstall when the system is using lvm
Package: lvm2
Version: 2.02.39-2
begin quotation from Moritz Muehlenhoff (in
20140301122144.ga11...@inutil.org):
Version: 2.18-1
On Fri, Aug 23, 2013 at 02:13:40PM +0200, Arne Wichmann wrote:
tags #717544 + patch
Hi.
A patch for CVE-2013-2207 is available on
http://sourceware.org/bugzilla/show_bug.cgi?id=CVE
begin quotation from Antonio Terceiro (in 20140212131039.ga2...@debian.org):
On Mon, Feb 10, 2014 at 03:49:31PM +0100, Arne Wichmann wrote:
There has been no action on this bug for over a year now. Is there any plan
to do something about this?
not quite
- there is no patch
but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Package: libav-tools
Version: 6:9.11-1
Severity: grave
Tags: security
Justification: user security hole
Hi...
As far as I can see, CVE-2011-3935 [1] applies to libav-tools. As the
descriptions for the problem are bit low on information I use a high
severity - feel free to lower it if that is not
Thank you for reacting quickly!
begin quotation from Theodore Ts'o (in 20140112234500.ga15...@thunk.org):
On Sun, Jan 12, 2014 at 09:27:14PM +0100, Arne Wichmann wrote:
This grave problem is now open for more than two months. Is there any plan
to resolve this?
First, the CVE about
Package: logcheck
Version: 1.3.15
Severity: wishlist
Hi...
There is one thing I would like to have in logcheck for quite a long time
already:
Invent a mechanism by which a pattern is only mailed (or not mailed) if
another pattern was seen a given time before it (or also possibly after
it).
For
Package: libnss3
Version: 2:3.14.5-1
Severity: important
Tags: security, wheezy, squeeze
Hi!
You recently fixed CVE-2013-1741 in unstable, but it is still open for wheezy
and squeeze.
cu
AW
-- System Information:
Debian Release: 7.3
APT prefers stable
APT policy: (500, 'stable')
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
begin quotation from Dan Espen (in ic61s0x85c@home.home):
Arne Wichmann a...@anhrefn.saar.de writes:
begin quotation from Schaaf, Jonathan P (GE Healthcare) (in
c2dddb22b0ae094db5f3ce04cb9e2f2615a20...@cinurcna02.e2k.ad.ge.com):
Ok, doing some tests it seems that the logic
to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
contact Reinhard Tartler
siret...@tauware.de by
replying to this email.
some of these still do not seem fixed to me...
Date: Tue, 16 Jul 2013 02:14:18 +0200
From: Arne Wichmann a...@linux.de
To: Debian Bug Tracking System sub...@bugs.debian.org
Subject: libavcodec53: CVEs CVE-2013-0844 to CVE
Package: liblcms1
Version: 1.19.dfsg-1.2
Severity: important
Tags: security
Dear Maintainer,
CVE-2013-4160 also applies to lcms.
cu
AW
-- System Information:
Debian Release: jessie/sid
APT prefers testing
APT policy: (500, 'testing'), (500, 'stable'), (50, 'unstable'), (40,
to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Hi!
Is there any fix in stable for tiff3 planned?
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann
as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Package: libavcodec53
Version: 6:0.8.7-1
Severity: grave
Tags: security
Justification: user security hole
Dear Maintainer,
I have here another series of CVEs for libav. Some of these are fixed, some
of these I was not able to check. Those without comment were checked by me
and seem valid - at
, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
)
Arne Wichmann (a...@linux.de)
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Hi!
Is there any plan to fix CVE-2012-3480 / #684889 in stable?
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne
Fust FYI: I have mostly the same problems here.
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de
politics of the reporters could be more open.
On Mon, Nov 26, 2012 at 8:30 PM, Arne Wichmann a...@linux.de wrote:
I have here another series of CVEs for ffmpeg/libav:
CVE-2012-2882
Libav's ogg decoder is a bit different to the one in FFmpeg. Can you
please provide a testfile so that we can
Package: wesnoth-1.11-dm
Version: 1:1.11.0-1
Severity: normal
Dear Maintainer,
While playing 'Delfadors Memoirs' in the Szenario DM-Dark_Sky_Over_Weldyn
the game dies with Error while playing the game: game_error: invalid
side(1) found in unit definition. I will try to attach the relevant save
? Are they fixed?
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description
Source: libav
Version: 0.8.4
Severity: grave
Tags: security
Justification: user security hole
Dear Maintainer,
I have here another series of CVEs for ffmpeg/libav:
CVE-2012-2882
CVE-2012-5359
CVE-2012-5360
CVE-2012-5361
For the last 3 http://technet.microsoft.com/en-us/security/msvr/msvr12-017
but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Hi...
This bug is still open in stable - is there any plan for a fix?
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne
, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Package: openssl
Version: 0.9.8o-4squeeze13
Severity: grave
Tags: security
Justification: user security hole
openssl in squeeze (at least up to 0.9.8o-4squeeze13) is vulnerable to
CVE-2011-5095 [1]. For reference you might have a look at [2] - the problem
seems to be that fips/dh/fips_dh_key.c
but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
found 675872 5.1.63-0+squeeze1
thanks
This is still open in stable.
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne
begin quotation from Norbert Preining (in
20120627143050.ge25...@gamma.logic.tuwien.ac.at):
On Mi, 27 Jun 2012, Arne Wichmann wrote:
Given that, the relevant files should be removed from debian, as they are
not DFSG-free. Am I wrong there?
Yes you are.
Could you please enlighten me
begin quotation from Francesco Poli (in
20120625215725.69523c3a3df0a27f62672...@paranoici.org):
On Mon, 25 Jun 2012 10:36:50 +0200 Arne Wichmann wrote:
So, at least as far as I can see, there are a number of things to be done
in various time frames:
- Alert enough people to the problem
begin quotation from Norbert Preining (in
20120619024124.gd14...@gamma.logic.tuwien.ac.at):
On Sa, 16 Jun 2012, Arne Wichmann wrote:
Bug #483217 about licensing issues in files by Donald Arseneau was given
an exception for lenny. Do you plan to do so for squeeze also or has
someone
begin quotation from Francesco Poli (in
20120620232034.ae7eb33bd4efe458d8ed7...@paranoici.org):
On Sat, 16 Jun 2012 18:38:00 +0200 Arne Wichmann wrote:
This serious bug is now open without any action for more than a year. Is
that supposed to change?
Hi Arne,
thanks for following up
free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
begin quotation from Adam D. Barratt (in
1339930157.7014.2.ca...@jacala.jungle.funky-badger.org):
On Sun, 2012-06-17 at 12:14 +0200, Arne Wichmann wrote:
Just to remember... As far as I can see there are no more rdepends left.
Are there any more reasons not to remove t1lib?
How did you
Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
way?
And for wheezy again?
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Package: mysql-server-5.1
Version: 5.1.61-0+squeeze1
Severity: important
Hi. Quoting from the RedHat Bugreport [1]:
CVE-2012-0882: unspecified remote exploit (released with VulnDisco Pack
Professional 9.17).
This is mostly a heads-up as there is not enough information to fix this bug.
See
begin quotation from Moritz Mühlenhoff (in
20120416154357.GA4565@pisco.westfalen.local):
On Mon, Apr 16, 2012 at 12:43:40AM +0100, Nicholas Bamber wrote:
On 15/04/12 16:18, Arne Wichmann wrote:
Found: 665012 1.4.03-1.1
As far as I can see this is not yet fixed in stable.
cu
Package: linux-2.6
Version: 3.2.16-1
Severity: grave
Tags: security
Justification: user security hole
This seems to have slipped through the kernel-sec repository...
Citing Redhat:
The issue is that the int3 handler uses a per CPU debug stack, and calls
do_traps() with interrupts enabled but
Package: rsyslog
Version: 5.8.11-1
Severity: normal
Dear Maintainer,
For some time now I receive some new error messages by mail from cron:
/etc/cron.daily/logrotate:
invoke-rc.d: action rotate is unknown, but proceeding anyway.
. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Source: pam
Severity: normal
Tags: security
Hi, citing from ubuntu
(https://bugs.launchpad.net/ubuntu/+source/pam/+bug/610125/comments/0):
pam_motd calls the scripts in /etc/update-motd.d/ as root without
sanitising the environment. While that is acceptable when called for
instance by sshd or
Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
So, what happened to these benchmarks?
cu
AW
--
[...] If you don't want to be restricted, don't agree to it. If you are
coerced, comply as much as you must to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de
, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
:30:10AM +0100, Bernd Zeimetz wrote:
On 12/25/2011 11:11 PM, Arne Wichmann wrote:
[...]
b) at least for those who have access to Debian machines nothing is
happening behind the scene, given that 'events@d.o' is archived on
master [8].
[8]
http://anonscm.debian.org/viewvc
/cgi.py, line 679, in __write
self.file.write(line)
IOError: [Errno 28] No space left on device
* What outcome did you expect instead?
I would have expected that woof does not use /tmp to cache large files. A cache
in the destination directory seems more appropriate.
Yours,
arne wichmann
to protect yourself, just don't support
it. Noone can free you but yourself. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
wrote:
On 12/18/2011 01:03 PM, Arne Wichmann wrote:
begin quotation from Luca Capello (in 877h2jm9bv@gismo.pca.it):
I do not like the way things are handled in that mail. I do not feel that
centralization is a good idea for event handling, but this is what is
being
done: eve
Package: python2.7
Version: 2.7.2-7
Severity: important
Tags: security
Just to have it visible from python2.7, too:
-- begin citation --
distutils uses this method to create .pypirc:
def _store_pypirc(self, username, password):
Creates a
, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
. (crag, on Debian Planet)
Arne Wichmann (a...@linux.de)
signature.asc
Description: Digital signature
begin quotation from Daniel Baumann (in
4ea5.1010...@progress-technologies.net):
On 10/26/2011 11:42 AM, Arne Wichmann wrote:
anhrefn# /sbin/fdisk -l /dev/hda [...] /dev/hda3 * 3984120
586067264 291041572+ 83 Linux
something is fishy here; you're claiming you're using
begin quotation from Daniel Baumann (in
4ea6984a.1050...@progress-technologies.net):
On 10/25/2011 11:20 AM, Arne Wichmann wrote:
After running
extlinux-install /dev/hda
extlinux-update
the order should be extlinux-update, and then extlinux-install; not the
other way round
begin quotation from Daniel Baumann (in
4ea7c0cc.80...@progress-technologies.net):
On 10/26/2011 10:00 AM, Arne Wichmann wrote:
I tried that, the outcome did not change.
what filesystem does your /boot use? how does your
/etc/default/extlinux, /boot/extlinux/* and /boot/* look like
1 - 100 of 167 matches
Mail list logo
