Bug#797623: opensaml2: transition needed for g++-5 ABIs

Russ Allbery <r...@debian.org> writes: > Ferenc Wagner <wf...@niif.hu> writes: > >> Thanks. Regarding xmltooling, We could as well do a regular upload >> replacing the liblog4cpp5-dev dependency of libxmltooling-dev with >> liblog4shib-dev. I only noticed t

Bug#797623: opensaml2: transition needed for g++-5 ABIs

Russ Allbery <r...@debian.org> writes: > Ferenc Wagner <wf...@niif.hu> writes: > >> That's great! Let's start with log4shib, another immediate BD of >> OpenSAML2, which also has a not-yet-packaged upstream release. I >> applied the DEP-14 transformation

Bug#797623: opensaml2: transition needed for g++-5 ABIs

Ferenc Wagner <wf...@niif.hu> writes: > I'm doing OpenSAML itself tomorrow. I converted the Alioth repository to DEP-14 and pushed all my changes. Please review and upload if it's suitable. Preferably after log4shib_1.0.9-1 is in, I guess, so that it builds against that version. -

Bug#797623: opensaml2: transition needed for g++-5 ABIs

Luca BRUNO <lu...@debian.org> writes: >> On Tue, 01 Sep 2015 10:48:28 +0200 Ferenc Wagner <wf...@niif.hu> wrote: >> >>> I'll package new upstream versions of the whole Shibboleth stack to >>> fix the outstanding OpenSAML security bug in unstable.

Bug#797623: opensaml2: transition needed for g++-5 ABIs

Russ Allbery <r...@debian.org> writes: > Ferenc Wagner <wf...@niif.hu> writes: > >> Please wait a little, I'm packaging the new upstream anyway and will >> introduce this change soon (I'll need a sponsor, though). > > I should be able to help with spon

Bug#809764: [Debian-ha-maintainers] Bug#809764: Bug#809764: libqb6-dev and libqb-dev: error when trying to install together

Herbert Fortes (hpfn) writes: > "In case several development versions of a library exist, you may need > to use dpkg's Conflicts mechanism" I think the Policy means this between versions of the same library (eg. your libqb6-dev and a later libqb7-dev). But anyway, this is a

Bug#804590: [Debian-ha-maintainers] Bug#804590: redhat-cluster: build-depends on libcorosync-dev which is no longer built

Jonathan Wiltshire <j...@debian.org> writes: > On Mon, Dec 14, 2015 at 02:22:54AM +0100, Ferenc Wagner wrote: > >> The redhat-cluster package will be removed from the archive, we don't >> intend to fix it. > > Here's the hit list then: [gfs2-utils, lvm2, ocfs2-tools

Bug#804590: [Debian-ha-maintainers] Bug#804590: redhat-cluster: build-depends on libcorosync-dev which is no longer built

gregor herrmann writes: > On Mon, 09 Nov 2015 20:39:32 +0100, Emilio Pozuelo Monfort wrote: > >> Your package build-depends on libcorosync-dev which is no longer >> built by corosync. Please switch to the appropriate packages to >> build against the new version. > > Afer

Bug#802410: [Debian-ha-maintainers] Bug#802410: openais: FTBFS: error: corosync/coroipc_types.h: No such file or directory

Fernando Seiti Furusato writes: > It also fails on ppc64el and other architectures Hi Fernando, We're planning to drop the openais package altogether, replacing it by Corosync 2. The new HA stack builds DLM, cLVM and GFS directly on Corosync. -- Regards, Feri.

Bug#793855: DoS, Shibboleth SP software crashes on well-formed but invalid XML (CVE-2015-0851)

Salvatore Bonaccorso <car...@debian.org> writes: > On Thu, Sep 24, 2015 at 08:54:08AM +0200, Ferenc Wagner wrote: > >> Salvatore Bonaccorso <car...@debian.org> writes: >> >>> Any news for the fix to unstable for CVE-2015-0851? >> >> Sorry,

Bug#793855: DoS, Shibboleth SP software crashes on well-formed but invalid XML (CVE-2015-0851)

Salvatore Bonaccorso writes: > Any news for the fix to unstable for CVE-2015-0851? Sorry, I got bogged down in another department. It isn't forgotten, though, I expect to tend to it in a couple of days. -- Regards, Feri.

Bug#797623: Bug#797625: xmltooling: transition needed for g++-5 ABIs

Hi, Thanks for the detailed report. Right now I'm doing urgent work on HA packages, but once that's done, I'll package new upstream versions of the whole Shibboleth stack to fix the outstanding OpenSAML security bug in unstable. This will change the SO version of xml-security-c and probably all

Bug#793855: DoS, Shibboleth SP software crashes on well-formed but invalid XML (CVE-2015-0851)

We're already working on this with the Security Team. I wonder if I should prepare new packages (for {wheezy,jessie}-security) with the changelogs closing this bug. Or should it be closed by the unstable upload of 1.5.5? The proposed security uploads can be found at

Bug#768922: [Debian-ha-maintainers] pacemaker in jessie

franz schaefer schae...@mond.at writes: As many of us, see https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=768922. thanks for the link. so from the discussion there the only reason that libqb0 is not newer is that it did not work on kfreebsd which is no longer important as this is droped

Bug#768618: [Debian-ha-maintainers] Bug#768922: Bug#768618: pacemaker: FTBFS in jessie: build-dependency not installable: libqb-dev (= 0.16.0.real)

Simon Horman ho...@verge.net.au writes: On Mon, Jan 19, 2015 at 09:26:36AM +0900, Christian Balzer wrote: Meanwhile, here in what it what we tenuously call reality one can observe the following things: 1. Pacemaker broken in Jessie for more than 2 months now. 2. Silence on this bug for

Bug#768203: sblim-wbemcli: fails to upgrade from 'wheezy' - trying to overwrite /usr/bin/wbemcli

Andreas Beckmann a...@debian.org and Bernd Zeimetz be...@bzed.de writes: Breaks: python-pywbem ( 0.8.0~dev650-1~) Replaces: python-pywbem ( 0.8.0~dev650-1~) OK. Footnote 53 brought up an example with a file being moved between related packages, which made me read more into Breaks+Replaces

Bug#768203: sblim-wbemcli: fails to upgrade from 'wheezy' - trying to overwrite /usr/bin/wbemcli

Thanks much. Unblock request filed as #768610. -- Feri. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org

Bug#768203: sblim-wbemcli: fails to upgrade from 'wheezy' - trying to overwrite /usr/bin/wbemcli

Andreas Beckmann a...@debian.org writes: during a test with piuparts I noticed your package fails to upgrade from 'wheezy'. Hi, Something is strange here, as sblim-wbemcli was never part of wheezy, thus it is not supposed to be upgraded from there. It installed fine in 'wheezy', then the

Bug#768203: sblim-wbemcli: fails to upgrade from 'wheezy' - trying to overwrite /usr/bin/wbemcli

exhibits this problem. On 2014-11-06 11:00, Ferenc Wagner wrote: Of course the above problem could be declared in the metadata of sblim-wbemcli, though 7.6 does not seem to apply here. 7.4 (Conflicts) seems more appropriate to me, if something really is needed. I initially thought

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Ferenc Wagner wf...@niif.hu writes: Ferenc Wagner wf...@niif.hu writes: Ferenc Wagner wf...@niif.hu writes: Bernd Zeimetz be...@bzed.de writes: I'm preparing a new upload of sblim-wbemcli. Shall I rename the contained wbemcli binary, or do you still plan letting me use that name

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Ferenc Wagner wf...@niif.hu writes: Ferenc Wagner wf...@niif.hu writes: Bernd Zeimetz be...@bzed.de writes: I'm preparing a new upload of sblim-wbemcli. Shall I rename the contained wbemcli binary, or do you still plan letting me use that name? given the low popcon and pywebem not being

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Ferenc Wagner wf...@niif.hu writes: Bernd Zeimetz be...@bzed.de writes: I'm preparing a new upload of sblim-wbemcli. Shall I rename the contained wbemcli binary, or do you still plan letting me use that name? given the low popcon and pywebem not being devleoped by upstream anymore, I

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Bernd Zeimetz be...@bzed.de writes: I'm preparing a new upload of sblim-wbemcli. Shall I rename the contained wbemcli binary, or do you still plan letting me use that name? given the low popcon and pywebem not being devleoped by upstream anymore, I think it would be okay for you to take

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Hi Bernd, I'm preparing a new upload of sblim-wbemcli. Shall I rename the contained wbemcli binary, or do you still plan letting me use that name? -- Regards, Feri. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact

Bug#697676: lvm2: cLVM binary package is missing

Julien Cristau jcris...@debian.org writes: Somebody would have to properly maintain its dependencies in debian (redhat-cluster, and by extension gfs2-utils, corosync, ...). They're the reason the clvm package had to go. Hi Julien, We're running clvm over Corosync in wheezy (were using

Bug#691439: [Pkg-freeipmi-devel] Bug#691439: Acknowledgement (libfreeipmi12: copyright file missing after upgrade (policy 12.5))

Ferenc Wagner wf...@lant.ki.iif.hu writes: Andreas Beckmann deb...@abeckmann.de writes: That happens during the sid - experimental upgrade, not squeeze-wheezy. Same problem with libipmidetect0. As downloaded from packages.debian.org, libfreeipmi12_1.1.5-4_amd64.deb and libipmidetect0_1.1.5

Bug#691439: [Pkg-freeipmi-devel] Bug#691439: Acknowledgement (libfreeipmi12: copyright file missing after upgrade (policy 12.5))

Andreas Beckmann deb...@abeckmann.de writes: That happens during the sid - experimental upgrade, not squeeze-wheezy. Same problem with libipmidetect0. As downloaded from packages.debian.org, libfreeipmi12_1.1.5-4_amd64.deb and libipmidetect0_1.1.5-4_amd64.deb contain symlinks, not directories

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Hi Bernd, Although I've already lost any hope of getting sblim-wbemcli into wheezy due to this bug (I didn't know its freeze exception would expire), I'd still appreciate your feedback on the matter, if you can spare the time. -- Thanks, Feri. -- To UNSUBSCRIBE, email to

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Bernd Zeimetz be...@bzed.de writes: Could you summarize the advantages/disadvantages of sblim-wbemcli over the python version? Is there a common interface? Hi, I can't say much about the Python version, because it refuses to work with our storage: $ wbemcli.distrib our.storage.niif.hu -n

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Ferenc Wagner wf...@niif.hu writes: Ralf Treinen trei...@free.fr writes: Here is a list of files that are known to be shared by both packages /usr/bin/wbemcli /usr/share/man/man1/wbemcli.1.gz Hi, While in my opinion sblim-wbemcli ships the more genuine wbemcli binary (leading

Bug#679607: python-pywbem and sblim-wbemcli: error when trying to install together

Ralf Treinen trei...@free.fr writes: Here is a list of files that are known to be shared by both packages /usr/bin/wbemcli /usr/share/man/man1/wbemcli.1.gz Hi, While in my opinion sblim-wbemcli ships the more genuine wbemcli binary (leading the search results, packaged similarly by

Bug#571631: libapache2-mod-shib2: shib-keygen generates world-readable key file

Scott Cantor canto...@osu.edu writes: Note that we can't just use umask 177 in the Debian version of this script since Debian runs shibd as a non-root user and then won't be able to read the certificate. For Debian, we should set the group ownership to the shibd user we create and make the

Bug#571631: libapache2-mod-shib2: shib-keygen generates world-readable key file

Ferenc Wagner wf...@niif.hu writes: Upstream fixed this by using umask 177. Russ, How should we proceed with this bug? I'm not sure it warrants a security update, so I didn't want to push this patch. Thanks, Feri. From 8012fbf3cfb48df91ff26dc30cda23fb739386e7 Mon Sep 17 00:00:00 2001 From

Bug#571631: libapache2-mod-shib2: shib-keygen generates world-readable key file

forwarded 571631 https://bugs.internet2.edu/jira/browse/SSPCPP-106 thanks Dominic Hargreaves d...@earth.li writes: # ls -l sp* ls: cannot access sp*: No such file or directory # shib-keygen [...] # ls -l sp* -rw-r--r-- 1 root root 1164 Feb 26 15:39 sp-cert.pem -rw-r--r-- 1 root root 1675

Bug#571631: libapache2-mod-shib2: shib-keygen generates world-readable key file

Upstream fixed this (with amazing speed -- thanks, Scott!) by using umask 177. This is stricter than requested, as it affects the certificate as well, not only the key. Dominic, is this acceptable for you? (Btw. I recommend using the backported packages, they are more mature in several respects

Bug#499922: Even more broken, unfortunately

Hi, Here's what happens on a freshly installed Squeeze system: nfs:/etc/network# dpkg --status ifenslave-2.6 Package: ifenslave-2.6 Status: unknown ok not-installed Priority: optional Section: net nfs:/etc/network# find -name ifenslave* nfs:/etc/network# aptitude install ifenslave-2.6 Reading

Bug#562636: libshibsp4: shibd wont start

Jason Cormie j.cor...@abertay.ac.uk writes: uadsmc11:~# /etc/init.d/shibd restart shibd error: unable to run config check as user Restarting Shibboleth 2 daemon: /usr/sbin/shibd: symbol lookup error: /usr/lib/libshibsp.so.4: undefined symbol:

Bug#549936: breaks Shibboleth SPs: IdPs with KeyDescriptor use=signing are broken

Faidon Liambotis parav...@debian.org writes: Russ Allbery wrote: Unfortunately, I'm both sick at the moment and my main computer is dead with hardware failure, so I can't easily pursue it at the moment. If someone else could, that would be great. I had proposed the needed changes for

Bug#508434: Fixed bugs

Matthew Johnson mj...@debian.org writes: Hi, I have just uploaded 1.8.9-2 which I hope fixes these bugs. Please could you check the package ASAP to ensure that it does. Hi, I confirm that 1.8.9-2 fixes this bug. Thank you very much for the quick response! -- Cheers, Feri. -- To

Bug#508434: ipmitool: Several init script problems due to wrong pidfile name

Package: ipmitool Version: 1.8.9-1 Severity: serious Tags: patch Justification: Policy 9.3.2 Hi, According to man ipmievd: pidfile=filename Save process ID to this file when in daemon mode. Defaults to /var/run/ipmievd.pidN (where N is the ipmi

Bug#504721: Possible reason for serial console misdetection

Jérémy Bobbio [EMAIL PROTECTED] writes: On Tue, Dec 02, 2008 at 10:50:26PM +0100, Frans Pop wrote: As we are not interested in the settings of the serial line or by the state of the VT, we can just omit the struct declarations and be fine with a dummy buffer. Don't you risk overflowing the

Bug#505237: Fixed in Lenny

found 505237 5.4.1~dfsg-11 thanks Hi, yes, apparently this bug is present in Lenny,too . On a clean install: [EMAIL PROTECTED]:~# aptitude install snmpd [...] Setting up snmpd (5.4.1~dfsg-11) ... Starting network management services: snmpd. [...] [EMAIL PROTECTED]:~# ps $(pgrep snmpd) PID

Bug#505237: Possible patch

Patrick Matthäi [EMAIL PROTECTED] writes: I attached a diff which might fix it, could you please test it? Yes, this is what I use since the last upgrade. However, I don't think it's a good idea to use --oknodo on restart and reload. The missing process is a genuine error in those cases, isn't

Bug#505237: Possible patch

Patrick Matthäi [EMAIL PROTECTED] writes: Ferenc Wagner schrieb: Patrick Matthäi [EMAIL PROTECTED] writes: I attached a diff which might fix it, could you please test it? Yes, this is what I use since the last upgrade. However, I don't think it's a good idea to use --oknodo on restart

Bug#453123: [Pkg-net-snmp-devel] Bug#453123: debconf interaction not closed

Of course not leaking file descriptors is a good practice, but it isn't the responsibility of all the daemons of the world to close all possible file descriptors their parent might have leaked to them (see for example http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=486826#37). I don't agree

Bug#505237: /etc/init.d/snmpd start reports error if already running

Package: snmpd Version: 5.2.3-7etch4 Severity: serious Justification: Policy 9.3.2 Hi, The start action shouldn't fail if the service is already running: # invoke-rc.d snmpd start Starting network management services:invoke-rc.d: initscript snmpd, action start failed. This happens with

Bug#503070: open-iscsi: init script not idempotent

Package: open-iscsi Version: 2.0.870~rc3-0.2 Severity: serious Justification: Policy 9.3.2 Hi, It is debatable what must behave sensibly mean, but in case of open-iscsi repeated start shouldn't result in error in my opinion: [EMAIL PROTECTED]:~$ sudo /etc/init.d/open-iscsi start Starting iSCSI

Bug#496810: nsca bugs

Alexander Wirt [EMAIL PROTECTED] writes: Thomas Viehmann schrieb am Wednesday, den 10. September 2008: thanks for looking into a fix for #496810. Regarding #466261: If it's a patch of only a couple of lines and low-risk, I'd think it'd be well worth it (though the release-team in CC gets

Bug#496810: simple patch proposal

tag 496810 +patch thanks Hi, I think simply including --oknodo like below fixes this problem: --- debian/nsca.init.orig 2008-09-07 15:44:19.280906007 +0200 +++ debian/nsca.init 2008-09-07 16:00:39.378879122 +0200 @@ -55,12 +55,12 @@ if [ ! -d /var/run/nagios ]; then

Bug#493899: what about splashy and directvnc and Lenny now?

Hi, I'm just curious: does this fix mean that #462626 should be reopened, that is, splashy is broken again? And do you expect to ship the fixed version (1.0.1-11) in Lenny? The same problem affects directvnc, so I'm forced to run it under strace now... -- Thanks, Feri. -- To UNSUBSCRIBE,

Bug#495954: struggling to reproduce

Hi, I installed a new machine very similar to the original one. I couldn't install exactly the same packages, a couple of locally installed ones aren't available anymore. But the diff of the /var/lib/dpkg/status files were really small. Then I replaced /var/lib/dpkg/status and

Bug#495954: slapd: Upgrade to Lenny failed: libldap_r-2.3.so.0 missing

Daniel Burrows [EMAIL PROTECTED] writes: On Fri, Aug 22, 2008 at 06:28:05PM +0200, Ferenc Wagner [EMAIL PROTECTED] was heard to say: severity 495954 critical thanks This bug makes unrelated software on the system break. Well, aptitude is a package manager, so most of its bugs do

Bug#495954: slapd: Upgrade to Lenny failed: libldap_r-2.3.so.0 missing

Daniel Burrows [EMAIL PROTECTED] writes: On Sat, Aug 23, 2008 at 08:30:14PM +0200, Ferenc Wagner [EMAIL PROTECTED] was heard to say: Daniel Burrows [EMAIL PROTECTED] writes: 2. A typescript of the upgrade with -o Debug::pkgDpkgPM=true added (both to get more debugging information

Bug#411787: Any update on this?

Hi, can anybody provide me with some information on the status of this bug? GFS is unusable in Etch because of this. Will the attached patch be included? -- Regards, Feri. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]