Your message dated Tue, 22 Mar 2011 13:34:13 +0000
with message-id <[email protected]>
and subject line Bug#615817: fixed in trac-spamfilter 0.2.1+svn6871-4
has caused the Debian Bug report #615817,
regarding trac-spamfilter: Crash when invalid UTF-8 is used
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
615817: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=615817
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: trac-spamfilter
Version: 0.2.1+svn6871-3
Severity: important

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi!

When a spammer sends some invalid UTF-8 chars, we get this backtrace:

Traceback (most recent call last):
  File "/usr/lib/pymodules/python2.6/tracspamfilter/api.py", line 112,
in test
    retval = strategy.test(req, author, content)
      File
"/usr/lib/pymodules/python2.6/tracspamfilter/filters/bayes.py", line
66, in test
    score = hammie.score(content.encode('utf-8'))
      File "/usr/lib/python2.6/dist-packages/spambayes/hammie.py",
line 62, in score
    return self._scoremsg(msg, evidence)
      File "/usr/lib/python2.6/dist-packages/spambayes/hammie.py",
line 38, in _scoremsg
    return self.bayes.spamprob(tokenize(msg), evidence)
      File "/usr/lib/python2.6/dist-packages/spambayes/classifier.py",
line 190, in chi2_spamprob
    clues = self._getclues(wordstream)
      File "/usr/lib/python2.6/dist-packages/spambayes/classifier.py",
line 493, in _getclues
    tup = self._worddistanceget(word)
      File "/usr/lib/python2.6/dist-packages/spambayes/classifier.py",
line 504, in _worddistanceget
    record = self._wordinfoget(word)
      File
"/usr/lib/pymodules/python2.6/tracspamfilter/filters/bayes.py", line
142, in _wordinfoget
    row = self._get_row(word)
      File
"/usr/lib/pymodules/python2.6/tracspamfilter/filters/bayes.py", line
109, in _get_row
    (word,))
      File "/usr/lib/python2.6/dist-packages/trac/db/util.py", line
64, in execute
    return self.cursor.execute(sql_escape_percent(sql), args)
      File
"/usr/lib/python2.6/dist-packages/trac/db/sqlite_backend.py", line 80,
in execute
    result = PyFormatCursor.execute(self, *args)
      File
"/usr/lib/python2.6/dist-packages/trac/db/sqlite_backend.py", line 59,
in execute
    args or [])
      File
"/usr/lib/python2.6/dist-packages/trac/db/sqlite_backend.py", line 51,
in _rollback_on_error
    return function(self, *args, **kwargs)
    ProgrammingError: You must not use 8-bit bytestrings unless you
use a text_factory that can interpret 8-bit bytestrings (like
text_factory = str). It is highly recommended that you instead just
switch your application to Unicode strings.

See this bug in upstream bugtracker:
http://trac.edgewall.org/ticket/10033

Those changesets fix the problem:
http://trac.edgewall.org/changeset/9932
http://trac.edgewall.org/changeset/9933

This is pretty important since the package becomes useless because a
spammer just have to include some bad UTF-8 chars and the filter
becomes ineffective. Moreover, the training database could become
corrupted. Consider including this fix in the next point release.

- -- System Information:
Debian Release: wheezy/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (101, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.37-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEARECAAYFAk1rQ9cACgkQKFvXofIqeU7y3gCdHO5enJlcgpRXLF+/B9+wCgYL
j/0AoLMe4vbkj6ZoJl+hplnKfI84cStK
=hRuR
-----END PGP SIGNATURE-----



--- End Message ---
--- Begin Message ---
Source: trac-spamfilter
Source-Version: 0.2.1+svn6871-4

We believe that the bug you reported is fixed in the latest version of
trac-spamfilter, which is due to be installed in the Debian FTP archive:

trac-spamfilter_0.2.1+svn6871-4.debian.tar.gz
  to main/t/trac-spamfilter/trac-spamfilter_0.2.1+svn6871-4.debian.tar.gz
trac-spamfilter_0.2.1+svn6871-4.dsc
  to main/t/trac-spamfilter/trac-spamfilter_0.2.1+svn6871-4.dsc
trac-spamfilter_0.2.1+svn6871-4_all.deb
  to main/t/trac-spamfilter/trac-spamfilter_0.2.1+svn6871-4_all.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Chris Lamb <[email protected]> (supplier of updated trac-spamfilter package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Tue, 22 Mar 2011 10:53:46 +0000
Source: trac-spamfilter
Binary: trac-spamfilter
Architecture: source all
Version: 0.2.1+svn6871-4
Distribution: unstable
Urgency: low
Maintainer: Chris Lamb <[email protected]>
Changed-By: Chris Lamb <[email protected]>
Description: 
 trac-spamfilter - Spam-prevention plugin for Trac
Closes: 615817
Changes: 
 trac-spamfilter (0.2.1+svn6871-4) unstable; urgency=low
 .
   * Apply patch to avoid crash when invalid UTF-8 is used. Thanks to Vincent
     Bernat <[email protected]>. (Closes: #615817)
   * Update Vcs-{Git,Browser}.
   * Bump Standards-Version to 3.9.1.
   * Move to '3.0 (quilt)' source package format.
Checksums-Sha1: 
 33efa867fde5bfc67e094bdc5a7312a1bf0189c7 1307 
trac-spamfilter_0.2.1+svn6871-4.dsc
 9bacc74e386b1700d379dc66401ae8d17196869e 4228 
trac-spamfilter_0.2.1+svn6871-4.debian.tar.gz
 a80b7022424c9eceb0752ed1a77597307e994eb0 26356 
trac-spamfilter_0.2.1+svn6871-4_all.deb
Checksums-Sha256: 
 1072497a226f60d32a05eb0d4d726662b7236b6af1128a7f149993a0c12ac01d 1307 
trac-spamfilter_0.2.1+svn6871-4.dsc
 b96075e85965e91b92c58bbf5359c316e9e96967d0c12bcd823160b18ecc08f6 4228 
trac-spamfilter_0.2.1+svn6871-4.debian.tar.gz
 21e127015d0cf32b1c7b20047fe5e833cdfc3702a609b48a3c7aa7b6fdb9f81d 26356 
trac-spamfilter_0.2.1+svn6871-4_all.deb
Files: 
 04c9a9ac7e249e24a71a91cdfe8d8c01 1307 python optional 
trac-spamfilter_0.2.1+svn6871-4.dsc
 325aaf383f5a0c1284b1880573a0cd5e 4228 python optional 
trac-spamfilter_0.2.1+svn6871-4.debian.tar.gz
 75c9b5beefdd20a45af62d25f0972eda 26356 python optional 
trac-spamfilter_0.2.1+svn6871-4_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iEYEARECAAYFAk2If9MACgkQ5/8uW2NPmiCyzQCcCUoP2VE2ywhZ7gSgJs7pDTU8
viUAoKINjqd1Qmbx7dg8iV6Lg+uhgBoK
=bo9l
-----END PGP SIGNATURE-----



--- End Message ---

Reply via email to