Greetings,
The primary bug reported here is still present -- awscli seems quite
broken in sid -- and the proposed resolution works.
On a very clean and up to date Debian sid system:
$ dpkg -l | grep awscli
ii awscli 1.5.5-1 all
Universal
Hi Barak and Raphael,
the patch is already above, I didn't tweak the changelog because I don't even
know the best target series, and I don't know where to patch/prepare the upload.
Is that debdiff sufficient or not?
I can create a squeeze chroot and prepare a build, if it is enough the above
Hi Gianfranco,
On Tue, 23 Dec 2014, Gianfranco Costamagna wrote:
the patch is already above, I didn't tweak the changelog because I don't
even know the best target series, and I don't know where to
patch/prepare the upload.
The target serie is squeeze-lts. You can upload the .dsc to mentors
Package: libapache2-mod-authz-securepass
Version: 0~20140715+0git93f271f5-2
Severity: grave
Justification: renders package unusable
Dear Maintainer,
As you can see from the build logs [1], there is an implicit declaration of the
ap_requires function, which was removed in Apache 2.4 (currently
Package: libnftnl
Version: 1.0.2-1
Severity: serious
This package is unsuitable for a stable system.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Package: nftables
Version: 0.3-1
Severity: serious
This package is unsuitable in a stable system.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Hi,
Just in order to avoid duplicate effort: I have prepared (but not yet
tested) an upload for wheezy-security of unrtf, fixing CVE-2014-9274
CVE-2014-9275. It is available in the alioth git repository:
http://anonscm.debian.org/cgit/collab-maint/unrtf.git/
Bye
Willi
signature.asc
Hi Jonas,
Am Dienstag, den 23.12.2014, 02:55 +0100 schrieb Jonas Smedegaard:
Package: ghc
Version: 7.8.20141119-8
Severity: grave
Justification: renders package unusable
ghc fails to install (in clean cowbuilder chroot):
Setting up ghc (7.8.20141119-8) ...
/usr/lib/ghc/bin/ghc: error
package: unzip
version: 6.0-13
severity: serious
Hi,
The latest upload of unzip fails on armhf. This blocks migration to testing.
https://buildd.debian.org/status/package.php?p=unzip
Cheers,
Ivo
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of
A bit more info regarding this bug.
nftables is under heavy development by the Netfilter Project.
Lots of bugfixes and new features are included in each release.
nftables 0.3 is a very early version, and is lacking some important
changes that are included in nftables 0.4.
More specifically:
*
On Tue, Dec 23, 2014 at 10:48:17AM +0100, Ivo De Decker wrote:
package: unzip
version: 6.0-13
severity: serious
Hi,
The latest upload of unzip fails on armhf. This blocks migration to testing.
https://buildd.debian.org/status/package.php?p=unzip
Please note that this is *not* because
A bit more info regarding this bug.
nftables is under heavy development by the Netfilter Project.
Lots of bugfixes and new features are included in each release.
libnftnl 1.0.2 is a very early version, and is lacking some important
changes that are included in libnftnl 1.0.3.
More specifically:
Your message dated Tue, 23 Dec 2014 10:06:18 +
with message-id e1y3mm6-0006sx...@franck.debian.org
and subject line Bug#773642: fixed in jenkins-job-builder 0.9.0-0.2
has caused the Debian Bug report #773642,
regarding jenkins-job-builder: deleting jobs is completly broken
to be marked as
On Tue, Dec 23, 2014 at 11:04:39AM +0100, Santiago Vila wrote:
On Tue, Dec 23, 2014 at 10:48:17AM +0100, Ivo De Decker wrote:
package: unzip
version: 6.0-13
severity: serious
Hi,
The latest upload of unzip fails on armhf. This blocks migration to testing.
Processing commands for cont...@bugs.debian.org:
severity 764732 serious
Bug #764732 [gcc-4.9] gcc-4.9: broken -O2 optimizations on armhf
Severity set to 'serious' from 'important'
thanks
Stopping processing here.
Please contact me if you need assistance.
--
764732:
Quoting Joachim Breitner (2014-12-23 10:47:15)
Am Dienstag, den 23.12.2014, 02:55 +0100 schrieb Jonas Smedegaard:
ghc fails to install (in clean cowbuilder chroot):
Setting up ghc (7.8.20141119-8) ...
/usr/lib/ghc/bin/ghc: error while loading shared libraries:
Hi Raphael,
The target serie is squeeze-lts. You can upload the .dsc to mentors if
you want (or just send the debdiff as attachment here).
It was copy/pasted in email and lost spaces so it's best if you can resend
it as proper attachment.
Don't worry about this, if you have source package ready
Il 19/12/2014 17:04, Simon Horman ha scritto:
On Fri, Dec 19, 2014 at 11:43:42PM +0800, Thomas Goirand wrote:
On 12/19/2014 11:32 PM, Thomas Goirand wrote:
On 12/19/2014 10:25 PM, Simon Horman wrote:
On Fri, Dec 19, 2014 at 06:39:39PM +0800, Thomas Goirand wrote:
On 12/19/2014 11:50 AM,
Yes, that would be good!
Thanks,
Roland
On 20/12/14 06:08, Salvatore Bonaccorso wrote:
Hi Roland,
I will try to work again (as for the previous update) on the
wheezy-security update. As the patches will be mostly the same I could
also do again the unstable upload too. Just let me know!
Mentor rejected it
Hello,
Unfortunately your package ettercap was rejected because of the following
reason:
You are not uploading to one of those Debian distributions: experimental jessie
jessie-backports jessie-backports-sloppy jessie-security jessie-updates
oldstable oldstable-backports
Processing commands for cont...@bugs.debian.org:
tags 773345 + pending
Bug #773345 [pdns-backend-mysql] pdns-backend-mysql: fails to upgrade from
'wheezy': Can't DROP 'domainmetaidindex'; check that column/key exists
Added tag(s) pending.
thanks
Stopping processing here.
Please contact me if
Your message dated Tue, 23 Dec 2014 11:38:56 +
with message-id e1y3nnk-0007lf...@franck.debian.org
and subject line Bug#773509: fixed in mono 3.2.8+dfsg-9
has caused the Debian Bug report #773509,
regarding mono-runtime-dbg: missing debug symbols from mono-runtime-dbg
to be marked as done.
Hi,
Am Dienstag, den 23.12.2014, 12:04 +0100 schrieb Jonas Smedegaard:
I tried just now an upgrade from 7.6.3-20 (version in unstable) but that
fails too. Seems you tried from a previous experimental version.
Yes, I experience the problem on amd64. Could you try test a fresh
install?
On Mon, Dec 22, 2014 at 07:18:47PM -0800, Jonathan Nieder wrote:
Daniel Dickinson wrote:
This packages depend on runit which depends on the existence of inittab
which is not longer true with systemd.
That sounds like a runit bug. Do you have a change in git-daemon-run in
mind that
Hi Roland,
On Tue, Dec 23, 2014 at 12:14:36PM +0100, Roland Stigge wrote:
Yes, that would be good!
Thanks for confirming, and it's done already (also unblocked by Ivo
De Decker).
Regards,
Salvatore
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of
Your message dated Tue, 23 Dec 2014 12:04:18 +
with message-id e1y3oci-0007ha...@franck.debian.org
and subject line Bug#773345: fixed in pdns 3.4.1-4
has caused the Debian Bug report #773345,
regarding pdns-backend-mysql: fails to upgrade from 'wheezy': Can't DROP
'domainmetaidindex'; check
Processing control commands:
tag -1 + moreinfo unreproducible
Bug #773749 [wicd-daemon] wicd-daemon modifies /etc/dhcp/dhclient.conf, owned
by isc-dhcp-client - breaks /etc/resolv.conf settings
Added tag(s) unreproducible and moreinfo.
--
773749:
Control: tag -1 + moreinfo unreproducible
Hi,
(writing as the one who last uploaded wicd -- as an NMU.)
Michael Gilbert wrote:
control: reassign -1 src:wicd
I'm not sure if this is really a wicd issue, because:
On Mon, Dec 22, 2014 at 8:20 PM, Vincent Lefevre wrote:
This is actually a
Processing control commands:
tag -1 + moreinfo unreproducible
Bug #773749 [wicd-daemon] wicd-daemon modifies /etc/dhcp/dhclient.conf, owned
by isc-dhcp-client - breaks /etc/resolv.conf settings
Ignoring request to alter tags of bug #773749 to the same tags previously set
--
773749:
Quoting Joachim Breitner (2014-12-23 12:54:05)
Am Dienstag, den 23.12.2014, 12:04 +0100 schrieb Jonas Smedegaard:
I tried just now an upgrade from 7.6.3-20 (version in unstable) but
that fails too. Seems you tried from a previous experimental
version.
Yes, I experience the problem on
Hi,
Am Dienstag, den 23.12.2014, 14:17 +0100 schrieb Jonas Smedegaard:
Quoting Joachim Breitner (2014-12-23 12:54:05)
Am Dienstag, den 23.12.2014, 12:04 +0100 schrieb Jonas Smedegaard:
I tried just now an upgrade from 7.6.3-20 (version in unstable) but
that fails too. Seems you tried
Package: liblucene4-java
Version: 1:4.6.1+dfsg-2
Severity: serious
The liblucene4-java package installs dummy pom.xml files in
/usr/share/maven-repo
which are missing important information to be usable by other packages.
For example the pom.xml for lucene-core is reduced to:
?xml version=1.0
Package: libdb5.3-java
Version: 5.3.28-7~deb8u1
Severity: grave
Justification: prevents package from being installed/upgraded
Unfortunately, there is another[1] bug in libdb5.3-java.maintscript which
means that the package still can't be installed or, if an earlier version
is present, can't be
Processing commands for cont...@bugs.debian.org:
found 773806 5.3.28-7
Bug #773806 [libdb5.3-java] libdb5.3-java: Pre-installation script fails
Marked as found in versions db5.3/5.3.28-7.
thanks
Stopping processing here.
Please contact me if you need assistance.
--
773806:
Package: openclipart2
Severity: serious
Hello.
Openclipart2 included non-free images and missing copyright file.
NON-FREE images list:
CC-BY-NC-SA
/usr/share/openclipart2/*/BHSPitMonkey/BHSPitMonkey_Old_School_Game_Controller.(svg|png)
Tangui, Jan: It is a different (though closely related) bug for which
I opened bug #773806 [1]. As soon as that bug is fixed in a new
version, it should be possible to upgrade normally.
Ulrich
[1] http://bugs.debian.org/773806
--
To UNSUBSCRIBE, email to
Processing control commands:
found -1 6.0-12
Bug #773785 [unzip] unzip: FTBFS on armhf
Marked as found in versions unzip/6.0-12.
--
773785: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773785
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To UNSUBSCRIBE, email
Control: found -1 6.0-12
Hi,
On Tue, Dec 23, 2014 at 11:04:39AM +0100, Santiago Vila wrote:
The latest upload of unzip fails on armhf. This blocks migration to testing.
https://buildd.debian.org/status/package.php?p=unzip
Please note that this is *not* because of the changes made in
Control: clone -1 -2
Control: reassign -1 isc-dhcp-client 4.3.1-5
Control: retitle -1 isc-dhcp-client: no longer updates /etc/resolv.conf
Control: retitle -2 wicd does not start dhclient with its own config file
Control: severity -2 normal
On 2014-12-23 13:24:26 +0100, Axel Beckert wrote:
Processing control commands:
clone -1 -2
Bug #773749 [wicd-daemon] wicd-daemon modifies /etc/dhcp/dhclient.conf, owned
by isc-dhcp-client - breaks /etc/resolv.conf settings
Bug 773749 cloned as bug 773809
reassign -1 isc-dhcp-client 4.3.1-5
Bug #773749 [wicd-daemon] wicd-daemon modifies
On Tue, Dec 23, 2014 at 03:07:56PM +0100, Ivo De Decker wrote:
Another possibility is that the code is wrong (it fails with Error: offset
out of range), and that newer gcc versions are able to figure out that it's
wrong, while older versions weren't.
I believe that's unlikely, because the
On 2014-12-23 15:17:16 +0100, Vincent Lefevre wrote:
Vincent: Can you enable /etc/dhcp/dhclient-exit-hooks.d/debug and
wicd's debug mode to see if that helps you to find some more details
about why /etc/resolv.conf is no more updated in your setup, but still
does as expected in my setup?
Hi Vincent,
thanks for these details!
Vincent Lefevre wrote:
So if wicd's behaviour changed there, it's caused by something else,
but not by a change in wicd.
There has been a change in wicd since it was using the -cf option
in the past, but I don't know when. At least in December 2011,
Your message dated Tue, 23 Dec 2014 15:19:47 +
with message-id e1y3rft-00047v...@franck.debian.org
and subject line Bug#772880: fixed in firebird2.5
2.5.0.26054~ReleaseCandidate3.ds2-1+squeeze2
has caused the Debian Bug report #772880,
regarding firebird2.5: CVE-2014-9323: Segfault in server
Your message dated Tue, 23 Dec 2014 15:24:32 +
with message-id e1y3rk4-000594...@franck.debian.org
and subject line Bug#764451: fixed in libpam-mount 2.14-1.1
has caused the Debian Bug report #764451,
regarding libpam-mount: cryptsetup support broken
to be marked as done.
This means that you
Your message dated Tue, 23 Dec 2014 15:24:32 +
with message-id e1y3rk4-000594...@franck.debian.org
and subject line Bug#764451: fixed in libpam-mount 2.14-1.1
has caused the Debian Bug report #764451,
regarding libpam-mount: Fails to run mount: invalid option -- '-p'
to be marked as done.
I tried 2.3.0+git20140819-3 building it in wheezy with kernel 3.16 from
backports but bridge of my test was still not working:
auto xenbr0
allow-ovs xenbr0
iface xenbr0 inet static
address 192.168.1.90
netmask 255.255.255.0
network 192.168.1.0
broadcast
Package: lpe
Version: 1.2.7-1
Severity: grave
There is a off-by-1 buffer overflow in my buffer overflow fix. While
scanning for plugins, the length of available basename is stored that
includes \0, and then in another loop it is tested against
strlen(basename) that clearly does not include
Hi,
On Tue, Dec 23, 2014 at 03:23:46PM +0100, Santiago Vila wrote:
On Tue, Dec 23, 2014 at 03:07:56PM +0100, Ivo De Decker wrote:
Another possibility is that the code is wrong (it fails with Error: offset
out of range), and that newer gcc versions are able to figure out that it's
wrong,
On Tue, Dec 23, 2014 at 04:53:59PM +0100, Ivo De Decker wrote:
Sounds reasonable. You'll have to file a bug against gcc-4.9 for that.
Do you mean something like this, filed by Héctor Orón back in October? :-)
https://bugs.debian.org/764732
--
To UNSUBSCRIBE, email to
On Sun, 21 Dec 2014 20:23:17 -0600 Brad Bosch brad112...@gmail.com wrote:
I've not chimed in on this yet because I haven't had much time to research
the history or use of libuser (and I still haven't, really).
But I'd like to point out...
The id-utils package has been part of Debian for
On 22/12/14 18:08, Tomasz Buchert wrote:
On 19/12/14 22:05, Balint Reczey wrote:
Hi Jay,
[...]
Cheers,
Balint
Hi guys,
I didn't notice that upstream made a fix based on what I found. I'll
try to prepare an NMU right now.
Tomasz
Here is a NMU. Feel free to adapt it if you
Hi,
On 22.12.2014 22:52, Sebastian Andrzej Siewior wrote:
On 2014-12-22 02:52:02 [+0100], Marc Dequènes (duck) wrote:
I can upload this simple fix quickly, nevertheless i did not have time to
proofread it. Any comment?
I plan to add the following patch to clamav. I added a small comment
why
Package: texlive-bin
Severity: grave
Tags: security
X-Debbugs-CC: secure-testing-t...@lists.alioth.debian.org
According to http://seclists.org/oss-sec/2014/q4/1133
libpng (embeded in your package) has an heap overlow.
Thanks
Bastien
signature.asc
Description: This is a digitally signed message
Package: src:libpng1.6
Severity: grave
Tags: security
X-Debbugs-CC: secure-testing-t...@lists.alioth.debian.org
According to http://seclists.org/oss-sec/2014/q4/1133
libpng (embeded in your package) has an heap overlow.
Thanks
Bastien
signature.asc
Description: This is a digitally signed
Control: tags -1 help
Hi all,
On Mon, 15 Dec 2014 13:24:01 +0100
Andreas Beckmann a...@debian.org wrote:
libetpan-dev has the same problems as libetpan-dbg and needs to be
fixed, too.
On Sat, 13 Dec 2014 20:26:48 + bastien ROUCARIES
roucaries.bast...@gmail.com wrote:
The following
Processing control commands:
tags -1 help
Bug #773036 [libetpan-dbg] libetpan-dbg: unhandled symlink to directory
conversion: /usr/share/doc/PACKAGE
Added tag(s) help.
--
773036: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773036
Debian Bug Tracking System
Contact ow...@bugs.debian.org
Hi Thomasz,
2014-12-23 17:44 GMT+01:00 Tomasz Buchert tomasz.buch...@inria.fr:
On 22/12/14 18:08, Tomasz Buchert wrote:
On 19/12/14 22:05, Balint Reczey wrote:
Hi Jay,
[...]
Cheers,
Balint
Hi guys,
I didn't notice that upstream made a fix based on what I found. I'll
try to
Quoting Joachim Breitner (2014-12-23 14:33:36)
Am Dienstag, den 23.12.2014, 14:17 +0100 schrieb Jonas Smedegaard:
Quoting Joachim Breitner (2014-12-23 12:54:05)
Am Dienstag, den 23.12.2014, 12:04 +0100 schrieb Jonas Smedegaard:
I tried just now an upgrade from 7.6.3-20 (version in unstable)
Processing commands for cont...@bugs.debian.org:
tags 741451 + upstream
Bug #741451 [libtiff-tools] tiffcp: malloc(): memory corruption:
0x7f732ee68d90
Added tag(s) upstream.
thanks
Stopping processing here.
Please contact me if you need assistance.
--
741451:
Hi,
that looks good:
Am Dienstag, den 23.12.2014, 20:35 +0100 schrieb Jonas Smedegaard:
root@bastian:/# ldd /usr/lib/ghc/bin/ghc
[..]
libHShaskeline-0.7.1.2-ghc7.8.3.20141119.so =
/usr/lib/ghc/bin/../haskeline-0.7.1.2/libHShaskeline-0.7.1.2-ghc7.8.3.20141119.so
(0x7ffb9f4c2000)
Source: lucene4
Version: 1:4.6.1+dfsg-2
Severity: serious
The lucene4 package contains several pre-generated Java files created by JavaCC.
These files should be at least regenerated during the build and maybe removed
from the upstream tarball like the lucene-solr package.
Package: imagemagick
Version: 8:6.8.9.9-3
Severity: grave
Tags: security
X-Debbugs-CC: secure-testing-t...@lists.alioth.debian.org
Thanks to google they are a lot of security fix in imagemagick.
Will send a version ASAP.
Open this bug for having a bug number.
signature.asc
Description: This is
Processing control commands:
tags 773107 + confirmed - moreinfo
Bug #773107 [dbus] dbus-daemon-launch-helper permissions temporarily wrong
during upgrades
Added tag(s) confirmed.
Bug #773107 [dbus] dbus-daemon-launch-helper permissions temporarily wrong
during upgrades
Removed tag(s) moreinfo.
tags 773318 - moreinfo + patch
thanks
On 2014-12-23 18:15:45 [+0100], Andreas Cadhalpun wrote:
Hi,
Hi Andreas,
I think there is a better way than changing the type of frame_end to off_t.
It is possible to avoid the overflow by reordering the code:
Even better, I like it. The patch at the end
Source: glance
Version: 2014.1.3-5
Severity: serious
Tags: security upstream
Hi
Setting this to serious/RC since this probably should go as well to
jessie (please let me know if you disagree on severity). From [1]:
[1] http://www.openwall.com/lists/oss-security/2014/12/23/2
Masahito Muroi
Processing commands for cont...@bugs.debian.org:
tags 773318 - moreinfo + patch
Bug #773318 [clamav-daemon] clamav dies/hangs
Removed tag(s) moreinfo.
Bug #773318 [clamav-daemon] clamav dies/hangs
Added tag(s) patch.
thanks
Stopping processing here.
Please contact me if you need assistance.
--
Thanks, Tomasz, for preparing the NMU and Balint for uploading! I've
tweaked the DEP-3 stuff in the patch a little and changed its name, and
am preparing a regular, non-NMU upload which I will upload momentarily.
I've given Tomasz credit for the fix. Sorry for not being more on top of
it. Your
In my experiments, updating the nm-strongswan-service.name configuration
file as mentioned certainly improves the situation on my Sid terminal,
in that fix causes Strongswan to be presented as a VPN option in
nm-connection-editor.
However, even with that fix Strongswan is not listed as an
Processing commands for cont...@bugs.debian.org:
severity 773838 serious
Bug #773838 [dbus] dbus: 1.8.12-2 prevents pulseaudio from running
Severity set to 'serious' from 'important'
tags 773838 + pending
Bug #773838 [dbus] dbus: 1.8.12-2 prevents pulseaudio from running
Added tag(s) pending.
Quoting Joachim Breitner (2014-12-23 20:50:53)
Is your linker configuration in any way non-standard?
Only oddity is that the system is a cowbuilder chroot. I noticed you
use schroot, so we differ there, I guess.
I normally use eatmydata, but just tried recreating a fresh chroot
without
Your message dated Tue, 23 Dec 2014 21:34:44 +
with message-id e1y3x6k-0001mj...@franck.debian.org
and subject line Bug#768797: fixed in apt 1.0.9.5
has caused the Debian Bug report #768797,
regarding apt: sends invalid range request for empty Packages.xz
to be marked as done.
This means that
Your message dated Tue, 23 Dec 2014 21:34:44 +
with message-id e1y3x6k-0001mo...@franck.debian.org
and subject line Bug#769609: fixed in apt 1.0.9.5
has caused the Debian Bug report #769609,
regarding apt: does not process pending triggers
to be marked as done.
This means that you claim that
Your message dated Tue, 23 Dec 2014 21:34:44 +
with message-id e1y3x6k-0001mj...@franck.debian.org
and subject line Bug#768797: fixed in apt 1.0.9.5
has caused the Debian Bug report #768797,
regarding HTTP method parser gets into wrong state upon 416 reply with
Content-Length 0
to be marked
Your message dated Tue, 23 Dec 2014 21:34:44 +
with message-id e1y3x6k-0001n6...@franck.debian.org
and subject line Bug#772641: fixed in apt 1.0.9.5
has caused the Debian Bug report #772641,
regarding apt: E: Setting TIOCSCTTY for slave fd fd failed when run as a
session leader
to be marked
Your message dated Tue, 23 Dec 2014 21:34:44 +
with message-id e1y3x6k-0001nv...@franck.debian.org
and subject line Bug#773061: fixed in apt 1.0.9.5
has caused the Debian Bug report #773061,
regarding aptitude-robot: Hangs with dpkg zombies under some (not yet 100%
clear) circumstances
to be
Your message dated Tue, 23 Dec 2014 21:48:12 +
with message-id e1y3xjm-000449...@franck.debian.org
and subject line Bug#741451: fixed in tiff 4.0.3-11
has caused the Debian Bug report #741451,
regarding tiffcp: malloc(): memory corruption: 0x7f732ee68d90
to be marked as done.
This means
Your message dated Tue, 23 Dec 2014 22:20:02 +
with message-id e1y3xoa-0007yj...@franck.debian.org
and subject line Bug#773838: fixed in dbus 1.8.12-3
has caused the Debian Bug report #773838,
regarding dbus: 1.8.12-2 prevents pulseaudio from running
to be marked as done.
This means that you
Your message dated Tue, 23 Dec 2014 22:20:02 +
with message-id e1y3xoa-0007yd...@franck.debian.org
and subject line Bug#773107: fixed in dbus 1.8.12-3
has caused the Debian Bug report #773107,
regarding dbus-daemon-launch-helper permissions temporarily wrong during
upgrades
to be marked as
Your message dated Tue, 23 Dec 2014 22:25:58 +
with message-id e1y3xtu-00017z...@franck.debian.org
and subject line Bug#773834: fixed in imagemagick 8:6.8.9.9-4
has caused the Debian Bug report #773834,
regarding [imagemagick] Huge security queue
to be marked as done.
This means that you
Your message dated Tue, 23 Dec 2014 23:29:24 +0100
with message-id 20141223222924.gl26...@sym.noone.org
and subject line Fwd: Bug#773061 closed by David Kalnischkies
da...@kalnischkies.de (Bug#773061: fixed in apt 1.0.9.5) [origin:
ow...@bugs.debian.org]
has caused the Debian Bug report #773215,
Control: found 773318 0.98.5+dfsg-0+deb7u1
Control: notfound 773318 0.98.5+dfsg-3
# 0.98.5+dfsg-3 uses the system libmspack
# see bug #773041 for progress there
Hi Sebastian,
On 23.12.2014 21:44, Sebastian Andrzej Siewior wrote:
Even better, I like it. The patch at the end of the email is what
Processing control commands:
found 773318 0.98.5+dfsg-0+deb7u1
Bug #773318 [clamav-daemon] clamav dies/hangs
Marked as found in versions clamav/0.98.5+dfsg-0+deb7u1.
notfound 773318 0.98.5+dfsg-3
Bug #773318 [clamav-daemon] clamav dies/hangs
No longer marked as found in versions
Processing control commands:
found 773318 0.98.5+dfsg-0+deb7u1
Bug #773318 [clamav-daemon] clamav dies/hangs
Ignoring request to alter found versions of bug #773318 to the same values
previously set
notfound 773318 0.98.5+dfsg-3
Bug #773318 [clamav-daemon] clamav dies/hangs
Ignoring request to
Processing commands for cont...@bugs.debian.org:
reassign 773061 apt 1.0.9.4
Bug #773061 {Done: David Kalnischkies da...@kalnischkies.de} [aptitude-robot]
aptitude-robot: Hangs with dpkg zombies under some (not yet 100% clear)
circumstances
Bug reassigned from package 'aptitude-robot' to
On 23 December 2014 at 03:12, Fabio Fantoni fabio.fant...@m2r.biz wrote:
For have it working I had to do service networking restart.
I found probably final solution applying also this patch:
Processing commands for cont...@bugs.debian.org:
# Second try
unblock 773061 with 773215
Bug #773061 {Done: David Kalnischkies da...@kalnischkies.de} [apt]
aptitude-robot: Hangs with dpkg zombies under some (not yet 100% clear)
circumstances
773061 was blocked by: 773215
773061 was not
Package: exiv2
Version: 0.24-4.1
Severity: grave
Tags: security patch
There is a buffer overflow condition with some AVI files. I am not fully
sure but maybe it could be used for a code execution.
However, the bug is fixed upstream. See also report [0].
I extracted and tested the patch from
Processing commands for cont...@bugs.debian.org:
# Third try. *sigh*
fixed 773215 apt/1.0.9.5
Bug #773215 {Done: Axel Beckert a...@debian.org} [apt] apt-get: improper tty
handling, causes dpkg zombies if STDIN is a pipe
Marked as fixed in versions apt/1.0.9.5.
# They actually were the same
Processing commands for cont...@bugs.debian.org:
affects 773846 digikam
Bug #773846 [exiv2] Buffer overflow in INFO tags of riff (patch from upstream)
Added indication that 773846 affects digikam
thanks
Stopping processing here.
Please contact me if you need assistance.
--
773846:
Processing commands for cont...@bugs.debian.org:
affects 773846 geeqie
Bug #773846 [exiv2] Buffer overflow in INFO tags of riff (patch from upstream)
Added indication that 773846 affects geeqie
thanks
Stopping processing here.
Please contact me if you need assistance.
--
773846:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Please note that the version used in report is my local build package.
The report should obvioous be filed for version 0.24-4.
Regards
Klaus
- --
Klaus Ethgen http://www.ethgen.ch/
pub 4096R/4E20AF1C 2011-05-16
Processing commands for cont...@bugs.debian.org:
found 773846 0.24-4
Bug #773846 [exiv2] Buffer overflow in INFO tags of riff (patch from upstream)
Marked as found in versions exiv2/0.24-4.
thanks
Stopping processing here.
Please contact me if you need assistance.
--
773846:
Processing commands for cont...@bugs.debian.org:
notfound 773846 0.24-4.1
Bug #773846 [exiv2] Buffer overflow in INFO tags of riff (patch from upstream)
There is no source info for the package 'exiv2' at version '0.24-4.1' with
architecture ''
Unable to make a source version for version
Quoting Jonas Smedegaard (2014-12-23 22:26:24)
Quoting Joachim Breitner (2014-12-23 20:50:53)
It looks like you are on your own to debug this, at least until
others observe it as well.
Thanks for trying.
I will try in a pbuilder chroot (i.e. without cowdancer) to see if
that makes a
On Tue, 23 Dec 2014, bastien ROUCARIÈS wrote:
According to http://seclists.org/oss-sec/2014/q4/1133
libpng (embeded in your package) has an heap overlow.
Upload in a few minutes ...
Norbert
PREINING, Norbert
Your message dated Wed, 24 Dec 2014 01:36:29 +
with message-id e1y3ash-0004bn...@franck.debian.org
and subject line Bug#773824: fixed in texlive-bin 2014.20140926.35254-4
has caused the Debian Bug report #773824,
regarding [texlive-bin] Embeded libpng 1.6.13 Heap Overflow
to be marked as done.
Package: ia32-libs-i386
Version: 1:0.4
Severity: grave
Justification: renders package unusable
Dear Maintainer,
The package is uninstallable, because it depends on libjpeg62 = 6b1-1
This is provided only by old libjpeg62:i386 (Bill Allombert) on version
6b1-3+deb7u1 but can not be achieved by
* Emmanuel Bourg:
Package: liblucene4-java
Version: 1:4.6.1+dfsg-2
Severity: serious
The liblucene4-java package installs dummy pom.xml files in
/usr/share/maven-repo
which are missing important information to be usable by other packages.
Emmanuel,
thank you for finding and reporting
* Emmanuel Bourg:
Source: lucene4
Version: 1:4.6.1+dfsg-2
Severity: serious
The lucene4 package contains several pre-generated Java files created by
JavaCC.
These files should be at least regenerated during the build and maybe removed
from the upstream tarball like the lucene-solr
1 - 100 of 101 matches
Mail list logo