Bug#686307: unblock: ocl-icd/1.3-3
Le 31/08/2012 07:27, Adam D. Barratt a écrit : On Fri, 2012-08-31 at 01:56 +0200, Vincent Danjean wrote: I just released a new (upstream) version [1.4] of ocl-icd that fix important bugs. As the new 1.4 version also contains refactorized code that would lead to lots of difference with the actual sources in Debian, I backported only the bug fixes. I think they should really be applied for wheezy. [...] Note also that I did not yet upload the new package (1.3-3). You can see it here: http://moais.imag.fr/membres/vincent.danjean/debian/pool/main/o/ocl-icd/ And the debdiff against the 1.3-2 version currently in testing is in attachment. There didn't seem to be an attachment? Sorry, I forgot. Here is. Vincent Regards, Adam -- Vincent Danjean Adresse: Laboratoire d'Informatique de Grenoble Téléphone: +33 4 76 61 20 11ENSIMAG - antenne de Montbonnot Fax:+33 4 76 61 20 99ZIRST 51, avenue Jean Kuntzmann Email: vincent.danj...@imag.fr 38330 Montbonnot Saint Martin diff -Nru ocl-icd-1.3/debian/changelog ocl-icd-1.3/debian/changelog --- ocl-icd-1.3/debian/changelog2012-06-26 02:08:19.0 +0200 +++ ocl-icd-1.3/debian/changelog2012-08-31 01:11:09.0 +0200 @@ -1,3 +1,12 @@ +ocl-icd (1.3-3) unstable; urgency=low + + * backport fix from 1.4 release ++ fix version in OpenCL.pc file ++ fix 3 initialization bugs ++ fix NULL allowed argument in clCreateContextFromType + + -- Vincent Danjean vdanj...@debian.org Fri, 31 Aug 2012 00:46:47 +0200 + ocl-icd (1.3-2) unstable; urgency=low * rewrote relationships after thinking about OpenCL in Debian diff -Nru ocl-icd-1.3/debian/patches/from-upsteam_Use-OpenCL-supported-version-in-pc-file.patch ocl-icd-1.3/debian/patches/from-upsteam_Use-OpenCL-supported-version-in-pc-file.patch --- ocl-icd-1.3/debian/patches/from-upsteam_Use-OpenCL-supported-version-in-pc-file.patch 1970-01-01 01:00:00.0 +0100 +++ ocl-icd-1.3/debian/patches/from-upsteam_Use-OpenCL-supported-version-in-pc-file.patch 2012-08-31 01:11:09.0 +0200 @@ -0,0 +1,40 @@ +From 9dab108ddbc7be9dd1b6384d8e143be92beb3345 Mon Sep 17 00:00:00 2001 +From: Vincent Danjean vincent.danj...@ens-lyon.org +Date: Fri, 31 Aug 2012 00:16:57 +0200 +Subject: [PATCH] [fix] Use OpenCL supported version as version in OpenCL.pc + +ocl-icd version is not relevant for applications requiring OpenCL.pc +--- + OpenCL.pc.in |2 +- + configure.ac |3 +++ + 2 files changed, 4 insertions(+), 1 deletion(-) + +diff --git a/OpenCL.pc.in b/OpenCL.pc.in +index ddbe78b..685ef2f 100644 +--- a/OpenCL.pc.in b/OpenCL.pc.in +@@ -5,6 +5,6 @@ includedir=@includedir@ + + Name: OpenCL + Description: Open Computing Language generic Installable Client Driver Loader +-Version: @VERSION@ ++Version: @OPENCL_VERSION@ + Libs: -L${libdir} -lOpenCL + Cflags: -I${includedir} +diff --git a/configure.ac b/configure.ac +index 780d836..cdeb019 100644 +--- a/configure.ac b/configure.ac +@@ -11,6 +11,9 @@ AM_INIT_AUTOMAKE([-Wall -Werror foreign 1.9 tar-pax check-news color-tests paral + AMX_SILENT_RULES([AM_DEFAULT_VERBOSITY=0]) + LT_INIT([disable-static]) + ++OPENCL_VERSION=1.2 ++AC_SUBST([OPENCL_VERSION]) ++ + # Checks for programs. + AC_PROG_CC_C89 + AC_PROG_INSTALL +-- +1.7.10.4 + diff -Nru ocl-icd-1.3/debian/patches/from-upstream_fix-clCreateContextFromType.patch ocl-icd-1.3/debian/patches/from-upstream_fix-clCreateContextFromType.patch --- ocl-icd-1.3/debian/patches/from-upstream_fix-clCreateContextFromType.patch 1970-01-01 01:00:00.0 +0100 +++ ocl-icd-1.3/debian/patches/from-upstream_fix-clCreateContextFromType.patch 2012-08-31 01:11:09.0 +0200 @@ -0,0 +1,61 @@ +From 52652b3e9dea6e7350da16fca530a89d26cbacf6 Mon Sep 17 00:00:00 2001 +From: Vincent Danjean vincent.danj...@ens-lyon.org +Date: Fri, 31 Aug 2012 00:20:27 +0200 +Subject: [PATCH 2/2] [bug fix] clCreateContextFromType can have a NULL + properties + +In this case, we just need to pick a random platform +--- + ocl_icd_loader.c | 12 + 1 file changed, 12 insertions(+) + +--- a/icd_generator.rb b/icd_generator.rb +@@ -269,6 +269,17 @@ + ocl_icd_loader_gen_source += #include \ocl_icd_loader.h\\n + ocl_icd_loader_gen_source += #include \ocl_icd_debug.h\\n + ocl_icd_loader_gen_source += void _initClIcd();\n ++ocl_icd_loader_gen_source += EOF ++struct vendor_icd; ++struct platform_icd { ++ char * extension_suffix; ++ char * version; ++ struct vendor_icd *vicd; ++ cl_platform_id pid; ++}; ++extern struct platform_icd *_picds; ++extern cl_uint _num_picds; ++EOF + ocl_icd_loader_gen_source += + $api_entries.each { |func_name, entry| + next if forbidden_funcs.include?(func_name) +@@ -317,6 +328,18 @@ + return ((struct _cl_platform_id *) properties[i+1])-dispatch-clCreateContextFromType(properties, device_type, pfn_notify, user_data, errcode_ret); +
Bug#683716: Fixed translation with non broken encoding
The BTS broke the encoding for this french translation, turning the file to ISO-885961 while it should have been UTF-8. Attached is a fixed file (gzipped so that the BTS does NOT break it). -- fr.po.gz Description: Binary data signature.asc Description: Digital signature
Bug#686104: python-django-registration: Not compatible with, Django 1.4.
On Thu, 30 Aug 2012, Winfried Tilanus wrote: The SHA1 hashes used in python-django-registration are publicly visible. An attack against the SHA1 in python-django-registration would not need a compromise of the database first, but can be performed against openly available data. What openly available data are you referring to? Cheers, -- Raphaël Hertzog ◈ Debian Developer Get the Debian Administrator's Handbook: → http://debian-handbook.info/get/ -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686320: unblock: melange/1:2012.1-3
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package melange. This fixes RC bug #684736, plus few minor fixes: * Added myself as uploader. * Add Depends on python-melange for melange binary package (Closes: #684736). * Fixed debian/copyright syntax and Format: URL. * Fixed python-melange: capitalization-error-in-description python Python. Diff file attached. Please unblock melange/1:2012.1-3 Cheers, Thomas Goirand (zigo) diff --git a/debian/changelog b/debian/changelog index 267745d..b2a61aa 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,12 @@ +melange (1:2012.1-3) unstable; urgency=low + + * Added myself as uploader. + * Add Depends on python-melange for melange binary package (Closes: #684736). + * Fixed debian/copyright syntax and Format: URL. + * Fixed python-melange: capitalization-error-in-description python Python. + + -- Thomas Goirand z...@debian.org Mon, 27 Aug 2012 14:59:28 + + melange (1:2012.1-2) unstable; urgency=low * rebuild to resolve depends on unavailable factory-boy (Closes: #663397). diff --git a/debian/control b/debian/control index b2ab6b0..356e4fd 100644 --- a/debian/control +++ b/debian/control @@ -3,7 +3,8 @@ Section: net Priority: extra Maintainer: PKG OpenStack openstack-de...@lists.alioth.debian.org Uploaders: Loic Dachary (OuoU) l...@debian.org, - Ghe Rivero ghe.riv...@stackops.com + Ghe Rivero ghe.riv...@stackops.com, + Thomas Goirand z...@debian.org Build-Depends: debhelper (= 7.0.50), python-all (= 2.6.6-3~) Build-Depends-Indep: @@ -30,7 +31,7 @@ Vcs-Git: git://anonscm.debian.org/openstack/melange.git Package: melange Architecture: all -Depends: ${shlibs:Depends}, ${misc:Depends}, python, adduser +Depends: ${shlibs:Depends}, ${misc:Depends}, python, adduser, python-melange (= ${source:Version}) Description: IPAM management service for Openstack - Daemons Melange is a network information service that provides a centralized mechanism for managing IPs, MAC addresses and other information that @@ -58,4 +59,4 @@ Description: IPAM management service for Openstack - Python library needs to be shared across multiple openstack services (Nova zones, Atlas, Quantum). . - This package contains the python libraries. \ No newline at end of file + This package contains the Python libraries. \ No newline at end of file diff --git a/debian/copyright b/debian/copyright index 20190ba..8cb9478 100644 --- a/debian/copyright +++ b/debian/copyright @@ -1,11 +1,11 @@ -Format: http://dep.debian.net/deps/dep5 +Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/ Upstream-Name: melange Source: http://openstack.org/openstack/melange Files: * Copyright: 2010 United States Government as represented by the Administrator of the National Aeronautics and Space Administration. -Copyright: 2010-2011 OpenStack LLC -Copyright: Others (See individual files for more details) + 2010-2011 OpenStack LLC + Others (See individual files for more details) License: Apache-2 Licensed under the Apache License, Version 2.0 (the License); you may not use this file except in compliance with the License. diff --git a/debian/rules b/debian/rules index c64799f..b041e90 100755 --- a/debian/rules +++ b/debian/rules @@ -12,4 +12,4 @@ override_dh_auto_clean: override_dh_auto_install: dh_auto_install - cp $(CURDIR)/etc/melange/melange.conf.sample $(CURDIR)/debian/melange/etc/melange/melange.conf \ No newline at end of file + cp $(CURDIR)/etc/melange/melange.conf.sample $(CURDIR)/debian/melange/etc/melange/melange.conf
Bug#686321: unblock: keystone/2012.1.1-5
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package keystone. This fixes CVE-2012-3542 (which was embargoed until yesterday), adds a Chinese Debconf translation, and fixes the nl one: * CVE-2012-3542: Fixes lack of authorization for adding users to tenants (Closes: #686265) * Added Chinese debconf translation thanks to ben duyujie@gmail.com. * Really adds the nl debconf translation this time (Closes: #685671). Diff file attached. Please unblock keystone/2012.1.1-5. Cheers, Thomas Goirand (zigo) diff --git a/debian/changelog b/debian/changelog index 8cff360..f9d3d3a 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,12 @@ +keystone (2012.1.1-5) unstable; urgency=low + + * CVE-2012-3542: Fixes lack of authorization for adding users to tenants + (Closes: #686265) + * Added Chinese debconf translation thanks to ben duyujie@gmail.com. + * Really adds the nl debconf translation this time (Closes: #685671). + + -- Thomas Goirand z...@debian.org Mon, 27 Aug 2012 11:45:44 + + keystone (2012.1.1-4) unstable; urgency=low * Updated debian/keystone.templates, debian/control after review from diff --git a/debian/patches/CVE-2012-3542_Lack-of-authorization-for-adding-users-to-tenants.patch b/debian/patches/CVE-2012-3542_Lack-of-authorization-for-adding-users-to-tenants.patch new file mode 100644 index 000..1634e1e --- /dev/null +++ b/debian/patches/CVE-2012-3542_Lack-of-authorization-for-adding-users-to-tenants.patch @@ -0,0 +1,22 @@ +Description: Lack of authorization for adding users to tenants + Dolph Mathews reported a vulnerability in Keystone. When attempting to + update a user's default tenant, Keystone will only partially deny the + request when a user is not authorized to complete this action. The API + responds with 401 Not Authorized and the user's default tenant is not + changed. However, the user is still granted membership to this new + tenant. The result is that any client that can reach the + administrative API (deployed on port 35357, by default) can add any + user to any tenant. +Origin: https://review.openstack.org/#/c/11869/ +Bug-Debian: http://bugs.debian.org/686265 + +--- keystone-2012.1.1.orig/keystone/identity/core.py keystone-2012.1.1/keystone/identity/core.py +@@ -436,6 +436,7 @@ class UserController(wsgi.Application): + + def update_user_tenant(self, context, user_id, user): + Update the default tenant. ++self.assert_admin(context) + # ensure that we're a member of that tenant + tenant_id = user.get('tenantId') + self.identity_api.add_user_to_tenant(context, tenant_id, user_id) diff --git a/debian/patches/series b/debian/patches/series index 1e2e5fa..6fbf616 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -2,3 +2,4 @@ logging.conf.patch pip-require_versions default_catalog.patch sql_conn.patch +CVE-2012-3542_Lack-of-authorization-for-adding-users-to-tenants.patch diff --git a/debian/po/nl.po b/debian/po/nl.po index 7a9060b..59988ec 100644 --- a/debian/po/nl.po +++ b/debian/po/nl.po @@ -1,14 +1,14 @@ -# Dutch translation of nova debconf templates. +# Dutch translation of keystone debconf templates. # Copyright (C) 2012 THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the nova package. # Jeroen Schot sc...@a-eskwadraat.nl, 2012. # msgid msgstr -Project-Id-Version: nova 2012.1-6\n +Project-Id-Version: keystone 2012.1.1-4\n Report-Msgid-Bugs-To: keyst...@packages.debian.org\n POT-Creation-Date: 2012-08-11 08:37+0200\n -PO-Revision-Date: 2012-06-13 13:30+0200\n +PO-Revision-Date: 2012-08-22 12:24+0200\n Last-Translator: Jeroen Schot sc...@a-eskwadraat.nl\n Language-Team: Debian l10n Dutch debian-l10n-du...@lists.debian.org\n Language: nl\n @@ -67,16 +67,16 @@ msgid keystone\. msgstr U kunt deze instelling later wijzigen door het uitvoeren van \dpkg- -reconfigure keystone\. +reconfigure -plow keystone\. #. Type: string #. Description #: ../keystone.templates:3001 msgid Authentication server administration token: -msgstr +msgstr Beheer-token van authenticatieserver: #. Type: string #. Description #: ../keystone.templates:3001 msgid Please enter the token to use with the authentication server. -msgstr +msgstr Welke token moet er met de authenticatieserver worden gebruikt? diff --git a/debian/po/zh_CN.po b/debian/po/zh_CN.po new file mode 100644 index 000..4be1534 --- /dev/null +++ b/debian/po/zh_CN.po @@ -0,0 +1,55 @@ +# SOME DESCRIPTIVE TITLE. +# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER +# This file is distributed under the same license as the PACKAGE package. +# FIRST AUTHOR EMAIL@ADDRESS, YEAR. +# +msgid +msgstr +Project-Id-Version: keystone\n +Report-Msgid-Bugs-To: keyst...@packages.debian.org\n +POT-Creation-Date: 2012-06-27 19:39+0200\n +PO-Revision-Date: 2012-08-27 16:22+0800\n +Last-Translator: ben
Bug#686322: ITP: libgoffice -- Document centric objects library
Package: wnpp Severity: wishlist X-Debbugs-CC: debian-de...@lists.debian.org Package name: libgoffice Version: 0.9.5 Upstream Author: gnome.org URL: http://git.gnome.org/browse/goffice/ License: GPL-2 or GPL-3 Description: Document centric objects library GOffice is a library of document centric objects and utilities building on top of GLib and Gtk+. This is a new version of a library. Many Gnome Office applications i.e. Gnumeric, AbiWord, GnuCash etc. will be eventually linking to the new goffice library hence this is the effort to make it available. Implementation allow both libraries to co-exist gracefully and therefore avoid transition and allow graceful decommission of goffice-0.8. This year old library version 0.8 was NMUed twice and there is no evidence of maintainer activity since August 2011. I got no reply from maintainer since February 2012 when I emailed to him offering help with packaging new version. Also there is a corresponding wishlist #660182 which was not updated and no estimation for possible availability given. I forked the existing package and almost completely repackaged it. signature.asc Description: This is a digitally signed message part.
Bug#686323: unblock: horizon/2012.1.1-4
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package horizon/2012.1.1-4 This fixes CVE-2012-3540, which was embargoed until yesterday. Diff file attached. Cheers, Thomas Goirand (zigo) diff --git a/debian/changelog b/debian/changelog index 2a90c43..2451460 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +horizon (2012.1.1-4) unstable; urgency=high + + * CVE-2012-3540: added patch: Disallow login redirects to anywhere other than + the same origin (Closes: #686050). + + -- Thomas Goirand z...@debian.org Tue, 28 Aug 2012 03:05:44 + + horizon (2012.1.1-3) unstable; urgency=low [ Thomas Goirand ] diff --git a/debian/patches/CVE-2012-3540_disallow_login_redirect_other_than_same_origin.patch b/debian/patches/CVE-2012-3540_disallow_login_redirect_other_than_same_origin.patch new file mode 100644 index 000..4e1f5d5 --- /dev/null +++ b/debian/patches/CVE-2012-3540_disallow_login_redirect_other_than_same_origin.patch @@ -0,0 +1,31 @@ +Description: Disallow login redirects to anywhere other than the same origin. +Author: Paul McMillan paul.mcmil...@nebula.com +Origin: upstream +Bug-Debian: http://bugs.debian.org/686050 +Bug-Ubuntu: https://launchpad.net/bugs/1039077 + +--- horizon-2012.1.1.orig/horizon/views/auth_forms.py horizon-2012.1.1/horizon/views/auth_forms.py +@@ -28,6 +28,7 @@ from django import shortcuts + from django.conf import settings + from django.contrib import messages + from django.contrib.auth import REDIRECT_FIELD_NAME ++from django.utils.http import same_origin + from django.utils.translation import ugettext as _ + from keystoneclient import exceptions as keystone_exceptions + +@@ -94,7 +95,13 @@ class Login(forms.SelfHandlingForm): + request.session['region_endpoint'] = endpoint + request.session['region_name'] = region_name + +-redirect_to = request.REQUEST.get(REDIRECT_FIELD_NAME, ) ++redirect_to = request.REQUEST.get(REDIRECT_FIELD_NAME, None) ++# Make sure the requested redirect matches the protocol, ++# domain, and port of this request ++if redirect_to and not same_origin( ++request.build_absolute_uri(redirect_to), ++request.build_absolute_uri()): ++redirect_to = None + + if data.get('tenant', None): + try: diff --git a/debian/patches/series b/debian/patches/series new file mode 100644 index 000..3d6a997 --- /dev/null +++ b/debian/patches/series @@ -0,0 +1 @@ +CVE-2012-3540_disallow_login_redirect_other_than_same_origin.patch
Bug#686098: Acknowledgement (After wheezy, please add symlinks to make the OTF variant available under /u/s/fonts and thus for fontconfig)
On Wed, 29 Aug 2012, Fabian Greffrath wrote: Maybe it's an even better idea to make *only* the opentype variant available for fontconfig *instead* of the type1 variant. Is that a good idea? The fonts will not be available to not fontconfig using programs - or am I wrong? A typical xterm, would that run with it? Maybe nowadays it is uncommon to use programs that do not use fontconfig, but I want to check back. Any opinion here by anyone? Best wishes Norbert Norbert Preiningpreining@{jaist.ac.jp, logic.at, debian.org} JAIST, Japan TeX Live and Debian Developer gpg DSA: 0x09C5B094 fp: 14DF 2E6C 0307 BE6D AD76 A9C0 D2BF 4AA3 09C5 B094 `The first ten million years were the worst,' said Marvin, `and the second ten million, they were the worst too. The third ten million I didn't enjoy at all. After that I went into a bit of a decline.' --- Marvin reflecting back on his 576,000,003,579 year --- career as Milliways' car park attendent. --- Douglas Adams, The Hitchhikers Guide to the Galaxy -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686324: qa.debian.org: DDPO shows Paul Slootman when I ask for Paul Wise
Package: qa.debian.org Severity: normal User: qa.debian@packages.debian.org Usertags: ddpo This page should show my packages: http://qa.debian.org/developer.php?login=Paul+Wise Instead it shows the ones for another Paul: Packages overview for Paul Slootman Maintainer: Paul Slootman p...@debian.org -- bye, pabs http://wiki.debian.org/PaulWise signature.asc Description: This is a digitally signed message part
Bug#686319: unblock: iceweasel/10.0.7esr-1
On Fri, Aug 31, 2012 at 07:28:24AM +0200, Mike Hommey wrote: Note one of the CVEs essentially disables webGL with mesa because of a mesa bug that leads to security problems. Considering the mesa bug has been fixed in 8.0.4-2 and doesn't affect stable/stable-backports, I'm planning a 10.0.7esr-2 upload reenabling webgl for mesa. Should I wait for the transition to happen, or should i go ahead straight away? Mike -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686184: yodl: FTBFS on i386
Hi, I've seen this bug report and am working on a solution. Odd that it only happens on Linux/i386. New patch will follow soon. The errors I see on an i386 box are different from the buildd errors. Will compare compiler, libc, etc versions too. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686322: package is available
https://mentors.debian.net/package/libgoffice -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#681396: unblock slbackup-php
On Sa 18 Aug 2012 21:34:22 CEST Adam D. Barratt wrote: I will wait another 3 days (Wednesday 2012-07-15, 23:59 UTC) and if no other feedback has been written, I will proceed as recommended. Any news on that? Just for the record. The reworked source package (0.4.3-2) has been uploaded to mentors and is currently reviewed by my sponsor (Lisandro). Greets, Mike -- DAS-NETZWERKTEAM mike gabriel, rothenstein 5, 24214 neudorf-bornstein fon: +49 (1520) 1976 148 GnuPG Key ID 0x25771B31 mail: mike.gabr...@das-netzwerkteam.de, http://das-netzwerkteam.de freeBusy: https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xfb pgpDq6B6WkwQ4.pgp Description: Digitale PGP-Unterschrift
Bug#686098: Acknowledgement (After wheezy, please add symlinks to make the OTF variant available under /u/s/fonts and thus for fontconfig)
Am 31.08.2012 08:37, schrieb Norbert Preining: On Wed, 29 Aug 2012, Fabian Greffrath wrote: Maybe it's an even better idea to make *only* the opentype variant available for fontconfig *instead* of the type1 variant. Is that a good idea? The fonts will not be available to not fontconfig using programs - or am I wrong? Sorry, I did not make myself clear: At the moment, the Type 1 variants of the fonts are visible for fontfonfig, while the opentype variants are not. I merely suggested to switch this and make the Type1 variants only available for TeX while the opentype variants are made visible for fontconfig. - Fabian -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686325: src:iceweasel: please use xz compression for binary packages
Source: iceweasel Version: 10.0.6esr-2 Severity: important Usertags: xz-for-wheezy Please use xz compression for the binary packages. We are trying to fit a few more packages on the first CDs to get a usable desktop install with it, see [1] for more details. Iceweasel wasn't on my initial list, but having a supported browser on CD1 should be fairly important. Just adding override_dh_builddeb: dh_builddeb -- -Zxz to debian/rules should be enough for this. You can look for a data.tar.xz member using 'ar t *.deb' to be sure, also xulrunner-10.0 should only need ~9.2 MB (before: ~12 MB) and xulrunner-10.0-dbg only 95 MB (before: 155 MB). Regards, Ansgar [1] http://lists.debian.org/87wr1eahs1@deep-thought.43-1.org -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686326: PTS: mentors.d.n integration doesn't use suites other than unstable
Package: qa.debian.org Severity: normal User: qa.debian@packages.debian.org Usertags: pts It is possible to upload packages for any Debian suite to mentors.debian.net and the mentors site will accept them and list the source packages into the appropriate Sources file for the suite. Unfortunately the PTS has does not look at suites other than unstable so if someone uploads a package to experimental or squeeze-backports then the mentors to-do item will not be shown in the PTS. I have attached a partial patch for this, but I need help with the XSL parts. -- bye, pabs http://wiki.debian.org/PaulWise Index: xsl/pts-issues.xsl === --- xsl/pts-issues.xsl (revision 2833) +++ xsl/pts-issues.xsl (working copy) @@ -69,7 +69,7 @@ a href=http://mentors.debian.net;ttmentors.debian.net/tt/a has a href=http://mentors.debian.net/package/{$escaped-package};version xsl:value-of select=$mentors_version //a of this package, you - should consider sponsoring its upload. + should consider sponsoring their upload. /li /xsl:if /xsl:template Index: bin/filter_mentors.pl === --- bin/filter_mentors.pl (revision 2833) +++ bin/filter_mentors.pl (working copy) @@ -113,14 +113,15 @@ print STDERR $0: warning: mentors packages index appears empty, continuing without\n; } -my %unstable; +my %suite; +my $dist = $ARGV[0]; foreach my $component ( main, contrib, non-free ) { my $package; my $version; - open INPUT, Sources-unstable_$component or die; + open INPUT, Sources-$dist\_$component or next; while(INPUT) { chomp; @@ -130,9 +131,9 @@ if( /^$/ ) { - $unstable{$package} = $version -if( ! defined $unstable{$package} -or Dpkg::Version::version_compare( $unstable{$package}, $version ) 0 ); + $suite{$package} = $version +if( ! defined $suite{$package} +or Dpkg::Version::version_compare( $suite{$package}, $version ) 0 ); $package = undef; $version = undef; @@ -153,11 +154,11 @@ return if( defined $seen{$package}{$version} ); $seen{$package}{$version} = 1; - return if( defined $unstable{$package} and $unstable{$package} eq $version ); + return if( defined $suite{$package} and $suite{$package} eq $version ); - return if( defined $unstable{$package} + return if( defined $suite{$package} and $version !~ /~bpo\d+\+\d+$/ - and Dpkg::Version::version_compare( $unstable{$package}, $version ) 0 ); + and Dpkg::Version::version_compare( $suite{$package}, $version ) 0 ); return if( ! defined $mentorsneedssponsor{$package} and $keys_mentorsneedssponsor 0 ); @@ -173,8 +174,8 @@ my $version; my $block = ; - open INPUT, Sources-mentors_$component or die; - open OUTPUT, Sources-mentors_${component}_new or die; + open INPUT, Sources-mentors-$dist\_$component or next; + open OUTPUT, Sources-mentors-$dist\_${component}_new or die; while(INPUT) { chomp; Index: bin/update_incoming.sh === --- bin/update_incoming.sh (revision 2833) +++ bin/update_incoming.sh (working copy) @@ -10,11 +10,17 @@ security=http://security.debian.org; backports=http://backports.debian.org/debian-backports/; piuparts=http://piuparts.debian.org; +mentors=http://mentors.debian.net/debian; official_distros=oldstable stable testing unstable experimental pu_distros=oldstable-proposed-updates stable-updates stable-proposed-updates testing-proposed-updates security_distros=oldstable stable testing backports_distros=oldstable-backports oldstable-backports-sloppy stable-backports +mentors_distros=oldstable stable unstable experimental +oldstable-backports oldstable-backports-sloppy stable-backports +oldstable-security stable-security testing-security +oldstable-proposed-updates stable-proposed-updates testing-proposed-updates +UNRELEASED umask 002 set -e @@ -77,6 +83,12 @@ $* $dest || (echo Failure while executing $* . Continuing ... ; cp $dest.bak $dest) } +nice_mv() { + if [ -f $1 ] ; then +mv -f $1 $2 + fi +} + # Download all Sources.gz for comp in main contrib non-free do @@ -92,8 +104,12 @@ get $backports/dists/$dist/$comp/source/Sources.gz \ Sources-${dist}_$comp.gz done -get http://mentors.debian.net/debian/dists/unstable/$comp/source/Sources.gz \ -Sources-mentors_$comp.gz +for dist in $mentors_distros ; do + # Ignore errors since mentors currently only generates Sources files for + # suites that some packages use + get $mentors/dists/$dist/$comp/source/Sources.gz \ +Sources-mentors-${dist}_$comp.gz /dev/null +done done # Download update_excuses.html @@ -193,9 +209,11 @@ done # filter out some packages from Sources-mentors_* -../bin/filter_mentors.pl -mv Sources-mentors_main_new Sources-mentors_main -mv Sources-mentors_contrib_new Sources-mentors_contrib -mv Sources-mentors_non-free_new
Bug#686104: python-django-registration: Not compatible with, Django 1.4.
On 08/31/2012 08:41 AM, Raphael Hertzog wrote: What openly available data are you referring to? The hash calculated in django-registration is send out to people registering a new account, as part of the url to click on when confirming the registration of a new account. It is used as identifier in the communication. So if you are able to calculate a collision in it, you might do things like: - register an account on a non-existing e-mail address - register an account on the e-mail address of somebody else - confirm a registration request of somebody else Note the contrast with the use of hashes in the password storage (the use of SHA1 that is depreciated in Django 1.4). In a password storage the use of hashes is a second line of defense: to avoid compromise of the passwords after a compromise of the database. The use of hashes in django-registration is first line of defense. Calculating a collision with SHA1 is demonstrated in proof of concept. Right now it would probably still be impossible or at worst not be practical to launch such an attack against django-registration. But because cryptographic weaknesses tend to become more and more exploitable over time, I regard the use of SHA1 in python-django-registration 0.7.1 as a ticking time bomb. Winfried -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686098: Acknowledgement (After wheezy, please add symlinks to make the OTF variant available under /u/s/fonts and thus for fontconfig)
On Fri, 31 Aug 2012, Fabian Greffrath wrote: Sorry, I did not make myself clear: At the moment, the Type 1 No - I didn't make myself clear ... variants of the fonts are visible for fontfonfig, while the opentype and to the normal X font subsystem (fonts.scale ...) variants are not. I merely suggested to switch this and make the Type1 variants only available for TeX while the opentype variants are made visible for fontconfig. But that means that the all the fonts are *NOT* available to X without fontconfig ... THat was my question. Best wishes Norbert Norbert Preiningpreining@{jaist.ac.jp, logic.at, debian.org} JAIST, Japan TeX Live and Debian Developer gpg DSA: 0x09C5B094 fp: 14DF 2E6C 0307 BE6D AD76 A9C0 D2BF 4AA3 09C5 B094 NAZEING (participial vb.) The rather unconvincing noises of pretended interest which an adult has to make when brought a small dull object for admiration by a child. --- Douglas Adams, The Meaning of Liff -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686298: RFS: obnam/1.1-1.1 [NMU] [RC]
On Thu, Aug 30, 2012 at 04:27:37PM -0700, Russ Allbery wrote: Mika Pflüger deb...@mikapflueger.de writes: I am looking for a sponsor for an NMU fxing an RC bug in the package obnam. The RC bug http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680670 I reported myself is open and has a patch for two weeks now. Given that the Debian package maintainer is also upstream and this is not a trivial change semantically even if it's small in number of lines changed, it would be good to have Lars be able to review this before pushing it into the archive as an NMU. Lars was posting to debian-devel as recently as last Saturday. Let me copy him on this message. I will review this (and other obnam bugs) as soon as I am able. Right now I am fixing my CI system, which is a prerequisite to be able to make a new release upstream. I disagree with the severity of the bug, fwiw, but I don't care enough to change it in the bts. -- I wrote a book on personal productivity: http://gtdfh.branchable.com/ signature.asc Description: Digital signature
Bug#686104: python-django-registration: Not compatible with, Django 1.4.
On Fri, 31 Aug 2012, Winfried Tilanus wrote: On 08/31/2012 08:41 AM, Raphael Hertzog wrote: What openly available data are you referring to? The hash calculated in django-registration is send out to people registering a new account, as part of the url to click on when confirming the registration of a new account. It is used as identifier in the communication. So if you are able to calculate a collision in it, you might do things like: - register an account on a non-existing e-mail address - register an account on the e-mail address of somebody else - confirm a registration request of somebody else To be able to calculate a collision, you need to discover one of the activation keys that has been sent out. They are not public, they are sent by private mail. So you need either a MITM attack vector or you have already compromised the user's email. And then to generate the collision, AFAIK you need to know the fixed part of the input to the hash function and you need to be able to control the rest. Here this is not the case, you control the username part but you don't control the random part that django-registration injects: salt = sha.new(str(random.random())).hexdigest()[:5] activation_key = sha.new(salt+user.username).hexdigest() return self.create(user=user, activation_key=activation_key) Thus I don't see any security issue here. There are probably plenty of reasons to have django-registration 0.8 in wheezy, but TTBOMK this is not one of them. Cheers, -- Raphaël Hertzog ◈ Debian Developer Get the Debian Administrator's Handbook: → http://debian-handbook.info/get/ -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686327: gnome-online-accounts: ssl handshake broken - even when I activate most certificates
Package: gnome-online-accounts Version: 3.4.2-1 Severity: grave Justification: renders package unusable Dear all, currently gnome-online-accounts is completely unusable. WHat I do and did: * first trial to create a google account: SSL handshake failed * search the internet, update-ca-certificates, I actually did: - check mail.google.com, contacts.google.com for the certificate they use, Thawte - activate all the THawte related certificates, plus some others more - run update-ca-certificate (as root) * retry acount creation, this time we come to the place where g-o-a shows me the google login page * enter google credentials * come to the page: allow GNOME to access bla bla bla * click on Grant access * And here we go Error creating account Error getting identity: SSL handshake failed First remark: DOn't tell me to activate ALL certificates, because this will break exim smtp delivery (yeah, it is a pain with certificates) Second remark: THawte should be enough, and it is accepted Third remark: log out and log in to a new gnome session didn't help So, to sum up, broken, completely broken. No logs, no warning/errors in .xsession-errors. Thanks Norbert -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.6.0-rc3+ (SMP w/4 CPU cores; PREEMPT) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages gnome-online-accounts depends on: ii libc6 2.13-35 ii libglib2.0-0 2.32.3-1 ii libgoa-1.0-0 3.4.2-1 ii libnotify4 0.7.5-1 ii librest-0.7-0 0.7.12-3 ii libsoup2.4-1 2.38.1-2 Versions of packages gnome-online-accounts recommends: ii gnome-control-center 1:3.4.2-2 gnome-online-accounts suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686328: network-manager: creates static IPv6 routes for every cached route (=remote system)
Package: network-manager Version: 0.9.4.0-5 Severity: important Tags: patch upstream ipv6 Excuse me for filing this bug so late, I thought there was already one in Debian for this issue. But it seems I was only following the upstream discussion. The Linux kernel adds a route cache entry for every destination the system is trying to reach, to track things like MTU and RTT. You can usually see them using ip -6 route show cache. When network-manager is in ipv6-mode != ignore, it listens to netlink for routing table changes and wrongly adds a static route for every cached entry that appears. This is reported to slow down systems with many peers (i.e. bittorrent) and has security issues as well, since this would make traffic go ways you don't expect. For example, when you fire up LAN, send a packet to some host and then build a VPN connection with a net including that host, the traffic is still sent unencrypted. It also breaks Chromium in some cases This bug has been reported upstream https://bugzilla.gnome.org/show_bug.cgi?id=671767 and in Ubuntu https://bugs.launchpad.net/ubuntu/+source/network-manager/+bug/1038541 Both have fixed it. Upstream has commited two patches last night that (apart from some fuzz) apply to the Debian package. I'm just building a test and will attach the patch asap. IME this would be an important fix for Wheezy. -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (900, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-3-amd64 (SMP w/2 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages network-manager depends on: ii adduser3.113+nmu3 ii dbus 1.6.0-1 ii dpkg 1.16.8 ii isc-dhcp-client4.2.2.dfsg.1-5 ii libc6 2.13-35 ii libdbus-1-31.6.0-1 ii libdbus-glib-1-2 0.100-1 ii libgcrypt111.5.0-3 ii libglib2.0-0 2.32.3-1 ii libgnutls262.12.20-1 ii libgudev-1.0-0 175-7 ii libnl-3-2003.2.7-4 ii libnl-genl-3-200 3.2.7-4 ii libnl-route-3-200 3.2.7-4 ii libnm-glib40.9.4.0-5 ii libnm-util20.9.4.0-5 ii libpolkit-gobject-1-0 0.105-1 ii libuuid1 2.20.1-5.1 ii lsb-base 4.1+Debian7 ii udev 175-7 ii wpasupplicant 1.0-2 Versions of packages network-manager recommends: ii crda 1.1.2-1 ii dnsmasq-base 2.62-3 ii iptables 1.4.14-3 ii modemmanager 0.5.2.0-1 ii policykit-1 0.105-1 ii ppp 2.4.5-5.1+b1 Versions of packages network-manager suggests: ii avahi-autoipd 0.6.31-1 -- Configuration Files: /etc/NetworkManager/NetworkManager.conf changed [not included] /etc/init.d/network-manager changed [not included] -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686329: atop crashes if /var/run/ is nearly full
Package: atop Version: 1.23-1+squeeze1 Severity: minor If the partition where the process accounting file, /var/run/atop/atop.acct is located, is close to full (98%, depending on kernel settings), the kernel stops writing process accounting entries. (Log message in kern.log: Process accounting paused) Subsequently, acctvers(fd) in acctproc.c fails reading a version number from the accounting file, and doesn't initialize the acctrecsz variable. This, in turn, leads to a division by zero in acctprocnt(void): atop[4631] trap divide error ip:4060a8 sp:7fffd6992c90 error:0 in atop[40+1c000] Set severity to minor, as this only happens under unusual circumstances and it's trivial to work around using the ATOPACCT variable (according to the man page - not verified). -- System Information: Debian Release: 6.0.5 APT prefers stable APT policy: (989, 'stable'), (501, 'stable-updates'), (500, 'testing'), (99, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.5.3-smapi-x61s-amd64-7-g0f81c3f (SMP w/2 CPU cores) Locale: LANG=C, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages atop depends on: ii libc6 2.11.3-3 Embedded GNU C Library: Shared lib ii libncurses5 5.7+20100313-5 shared libraries for terminal hand ii logrotate 3.7.8-6 Log rotation utility ii zlib1g 1:1.2.3.4.dfsg-3 compression library - runtime atop recommends no packages. atop suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#662156: mysql-connector-c++: backport isNumeric method please.
tag 662156 + pending thanks Hi, On Mon, Mar 05, 2012 at 12:56:29AM +1100, Dmitry Smirnov wrote: isNumeric is implemented in cppconn 1.1.1. Since that version is not released yet, it would be very helpful if isNumeric method could be backported. Given that - 1.1.1 is now released - 1.1.1 is in NEW - wheezy is frozen and updates should go over updates and I don't belivbe a update like this would be accepted for wheezy, thus blocking possible needed updates I think this request is moot. This is fixed with 1.1.1-1 ;) Will close it when it got accepted. Regards, Rene -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686328: [Pkg-utopia-maintainers] Bug#686328: network-manager: creates static IPv6 routes for every cached route (=remote system)
On 31.08.2012 10:09, Bernhard Schmidt wrote: Package: network-manager Version: 0.9.4.0-5 Severity: important Tags: patch upstream ipv6 Excuse me for filing this bug so late, I thought there was already one in Debian for this issue. But it seems I was only following the upstream discussion. The Linux kernel adds a route cache entry for every destination the system is trying to reach, to track things like MTU and RTT. You can usually see them using ip -6 route show cache. When network-manager is in ipv6-mode != ignore, it listens to netlink for routing table changes and wrongly adds a static route for every cached entry that appears. This is reported to slow down systems with many peers (i.e. bittorrent) and has security issues as well, since this would make traffic go ways you don't expect. For example, when you fire up LAN, send a packet to some host and then build a VPN connection with a net including that host, the traffic is still sent unencrypted. It also breaks Chromium in some cases This bug has been reported upstream https://bugzilla.gnome.org/show_bug.cgi?id=671767 and in Ubuntu https://bugs.launchpad.net/ubuntu/+source/network-manager/+bug/1038541 Both have fixed it. Upstream has commited two patches last night that (apart from some fuzz) apply to the Debian package. I'm just building a test and will attach the patch asap. IME this would be an important fix for Wheezy. Agreed and thanks for bringing this up. I think Phil was also bitten by this bug and was very interested in getting a fix for that in wheezy. As I don't have a setup where I can test the patch, it would be great if either of you could give this patch a try and report back. Michael -- Why is it that all of the instruments seeking intelligent life in the universe are pointed away from Earth? signature.asc Description: OpenPGP digital signature
Bug#686331: objgraph: FTBFS with Python 3.3: tests fail
Source: objgraph Version: 1.7.1-1 Severity: important Tags: sid User: debian-pyt...@lists.debian.org Usertags: python3.3 objgraph FTBFS if built against Python 3.3: | + python3.3 setup.py test | running test | running egg_info | writing objgraph.egg-info/PKG-INFO | writing top-level names to objgraph.egg-info/top_level.txt | writing dependency_links to objgraph.egg-info/dependency_links.txt | reading manifest file 'objgraph.egg-info/SOURCES.txt' | reading manifest template 'MANIFEST.in' | writing manifest file 'objgraph.egg-info/SOURCES.txt' | running build_ext | /build/objgraph-hpCNME/objgraph-1.7.1/docs/quoting.txt | Doctest: quoting.txt ... FAIL | /build/objgraph-hpCNME/objgraph-1.7.1/docs/uncollectable.txt | Doctest: uncollectable.txt ... ok | /build/objgraph-hpCNME/objgraph-1.7.1/docs/generator-sample.txt | Doctest: generator-sample.txt ... ok | /build/objgraph-hpCNME/objgraph-1.7.1/docs/extra-info.txt | Doctest: extra-info.txt ... FAIL | /build/objgraph-hpCNME/objgraph-1.7.1/docs/highlighting.txt | Doctest: highlighting.txt ... ok | /build/objgraph-hpCNME/objgraph-1.7.1/docs/chain.txt | Doctest: chain.txt ... ok | /build/objgraph-hpCNME/objgraph-1.7.1/docs/objgraph.txt | Doctest: objgraph.txt ... ok | /build/objgraph-hpCNME/objgraph-1.7.1/docs/index.txt | Doctest: index.txt ... FAIL | /build/objgraph-hpCNME/objgraph-1.7.1/docs/CHANGES.txt | Doctest: CHANGES.txt ... ok | /build/objgraph-hpCNME/objgraph-1.7.1/docs/references.txt | Doctest: references.txt ... ok | /build/objgraph-hpCNME/objgraph-1.7.1/docs/HACKING.txt | Doctest: HACKING.txt ... ok | doctest_setup_py_works (tests) | Doctest: tests.doctest_setup_py_works ... ok | | == | FAIL: /build/objgraph-hpCNME/objgraph-1.7.1/docs/quoting.txt | Doctest: quoting.txt | -- | Traceback (most recent call last): | File /usr/lib/python3.3/doctest.py, line 2154, in runTest | raise self.failureException(self.format_failure(new.getvalue())) | AssertionError: Failed doctest test for quoting.txt | File /build/objgraph-hpCNME/objgraph-1.7.1/docs/quoting.txt, line 0 | | -- | File /build/objgraph-hpCNME/objgraph-1.7.1/docs/quoting.txt, line 8, in quoting.txt | Failed example: | objgraph.show_refs(all_the_chars, too_many=600, |filename='all-the-chars.dot') | Expected: | Graph written to all-the-chars.dot (513 nodes) | Got: | Graph written to all-the-chars.dot (257 nodes) | | | == | FAIL: /build/objgraph-hpCNME/objgraph-1.7.1/docs/extra-info.txt | Doctest: extra-info.txt | -- | Traceback (most recent call last): | File /usr/lib/python3.3/doctest.py, line 2154, in runTest | raise self.failureException(self.format_failure(new.getvalue())) | AssertionError: Failed doctest test for extra-info.txt | File /build/objgraph-hpCNME/objgraph-1.7.1/docs/extra-info.txt, line 0 | | -- | File /build/objgraph-hpCNME/objgraph-1.7.1/docs/extra-info.txt, line 12, in extra-info.txt | Failed example: | objgraph.show_refs([y], extra_info=lambda x: hex(id(x)), |filename='extra-info.png') | Expected: | Graph written to dot (5 nodes) | Image generated as extra-info.png | Got: | Graph written to /tmp/test-objgraph-2cv976/tmpqwpiyv.dot (4 nodes) | Image generated as extra-info.png | | | == | FAIL: /build/objgraph-hpCNME/objgraph-1.7.1/docs/index.txt | Doctest: index.txt | -- | Traceback (most recent call last): | File /usr/lib/python3.3/doctest.py, line 2154, in runTest | raise self.failureException(self.format_failure(new.getvalue())) | AssertionError: Failed doctest test for index.txt | File /build/objgraph-hpCNME/objgraph-1.7.1/docs/index.txt, line 0 | | -- | File /build/objgraph-hpCNME/objgraph-1.7.1/docs/index.txt, line 15, in index.txt | Failed example: | objgraph.show_refs([y], filename='sample-graph.png') | Expected: | Graph written to dot (5 nodes) | Image generated as sample-graph.png | Got: | Graph written to /tmp/test-objgraph-otzt95/tmp64ufq9.dot (4 nodes) | Image generated as sample-graph.png | | | -- | Ran 12 tests in 3.021s | | FAILED (failures=3) | make[1]: *** [override_dh_auto_test] Error 1 -- Jakub Wilk -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686328: creates static IPv6 routes for every cached route (=remote system)
Please find attached the patch. It consists of the two upstream commits, just refreshed by quilt. I can confirm that it fixes the issue for me. diff --git a/debian/patches/99-ignore-cached-cloned-routes-ipv6-config b/debian/patches/99-ignore-cached-cloned-routes-ipv6-config new file mode 100644 index 000..ab076ca --- /dev/null +++ b/debian/patches/99-ignore-cached-cloned-routes-ipv6-config @@ -0,0 +1,29 @@ +From 3ca3120e4a01ea4a86fd052311c977e7ec136365 Mon Sep 17 00:00:00 2001 +From: Ben Jencks b...@bjencks.net +Date: Thu, 30 Aug 2012 18:55:36 + +Subject: ip6: ignore cached/cloned route notifications from the kernel (lp:1038541) (bgo #671767) + +The kernel periodically adds routes for specific operations, including +when pinging any host. These are temporary routes and aren't part of +the interface's permanent routing configuration, so we should ignore +them. +--- +Index: network-manager/src/ip6-manager/nm-ip6-manager.c +=== +--- network-manager.orig/src/ip6-manager/nm-ip6-manager.c 2012-08-31 09:19:54.0 +0200 network-manager/src/ip6-manager/nm-ip6-manager.c 2012-08-31 09:56:24.0 +0200 +@@ -602,6 +602,14 @@ + return NULL; + } + ++ /* Cached/cloned routes are created by the kernel for specific operations ++ * and aren't part of the interface's permanent routing configuration. ++ */ ++ if (rtnl_route_get_flags (rtnlroute) RTM_F_CLONED) { ++ rtnl_route_put (rtnlroute); ++ return NULL; ++ } ++ + device = nm_ip6_manager_get_device (manager, rtnl_route_get_oif (rtnlroute)); + if (!device) { + nm_log_dbg (LOGD_IP6, ignoring message for unknown device); diff --git a/debian/patches/99-ignore-cached-cloned-routes-kernel-notifications b/debian/patches/99-ignore-cached-cloned-routes-kernel-notifications new file mode 100644 index 000..264ae9b --- /dev/null +++ b/debian/patches/99-ignore-cached-cloned-routes-kernel-notifications @@ -0,0 +1,24 @@ +From 46e0af2942e23fb3cf1c313e58e4081877d4f289 Mon Sep 17 00:00:00 2001 +From: Dan Williams d...@redhat.com +Date: Thu, 30 Aug 2012 18:57:06 + +Subject: ip6: ignore cached/cloned routes when retrieving IPv6 config (lp:1038541) (bgo #671767) + +Should also ignore them when building up the initial IPv6 config. +--- +Index: network-manager/src/ip6-manager/nm-ip6-manager.c +=== +--- network-manager.orig/src/ip6-manager/nm-ip6-manager.c 2012-08-31 09:56:03.0 +0200 network-manager/src/ip6-manager/nm-ip6-manager.c 2012-08-31 09:56:03.0 +0200 +@@ -1284,6 +1284,12 @@ + if (rtnl_route_get_family (rtnlroute) != AF_INET6) + continue; + ++ /* And ignore cache/cloned routes as they aren't part of the interface's ++ * permanent routing configuration. ++ */ ++ if (rtnl_route_get_flags (rtnlroute) RTM_F_CLONED) ++ continue; ++ + nldest = rtnl_route_get_dst (rtnlroute); + if (!nldest || nl_addr_get_family (nldest) != AF_INET6) + continue; diff --git a/debian/patches/series b/debian/patches/series index 134267a..954000d 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -6,3 +6,5 @@ 12-initialize-gerror.patch 13-dont-replace-kernel-default-route-for-IPv6.patch 14-use-same-kernel-API-as-wpa_supplicant.patch +99-ignore-cached-cloned-routes-ipv6-config +99-ignore-cached-cloned-routes-kernel-notifications
Bug#686330: mediawiki: Multiple security issues
Package: mediawiki Severity: grave Tags: security Justification: user security hole Please see here for more info: http://www.gossamer-threads.com/lists/wiki/mediawiki/295767 No CVE IDs available yet. Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686327: gnome-online-accounts: ssl handshake broken - even when I activate most certificates
tags 686327 + moreinfo unreproducible severity 686327 important thanks On 31.08.2012 10:06, Norbert Preining wrote: Package: gnome-online-accounts Version: 3.4.2-1 Severity: grave Justification: renders package unusable Dear all, currently gnome-online-accounts is completely unusable. WHat I do and did: * first trial to create a google account: SSL handshake failed * search the internet, update-ca-certificates, I actually did: - check mail.google.com, contacts.google.com for the certificate they use, Thawte - activate all the THawte related certificates, plus some others more - run update-ca-certificate (as root) * retry acount creation, this time we come to the place where g-o-a shows me the google login page * enter google credentials * come to the page: allow GNOME to access bla bla bla * click on Grant access * And here we go Error creating account Error getting identity: SSL handshake failed First remark: DOn't tell me to activate ALL certificates, because this will break exim smtp delivery (yeah, it is a pain with certificates) Second remark: THawte should be enough, and it is accepted Third remark: log out and log in to a new gnome session didn't help So, to sum up, broken, completely broken. Can't reproduce your problem here. Creating a Google Account works just fine here. This might indeed be related due to your local certificate configuration. If you run /usr/lib/gnome-online-accounts/goa-daemon --replace do you get any useful log messages related to your problem? For testing purposes, could you temporarily enable the default set of Debian certificates. Testing with a fresh user account would be helpful, too. I'm downgrading the severity, as the problem is not reproducible, so it doesn't look like this is a general problem. Michael -- Why is it that all of the instruments seeking intelligent life in the universe are pointed away from Earth? signature.asc Description: OpenPGP digital signature
Bug#685353: qemu-kvm 1.1.1 hangs using 100% CPU when using ES1370 emulation
On 30.08.2012 22:03, malc wrote: On Thu, 30 Aug 2012, Mike Gerber wrote: [] Vassily: Anything else you need when the hang happens again? Unfortunately I'll have to go into production with the guest, and I can't spend more weeks with this bug after this week end. Audio compiled without optimzations which should give meaningful backtrace and contents of local variables. Mike, are you able to do that? You can grab either the upstream qemu-kvm sources or debian sources, remove all -Oxx references or adding -O0, and recompile (`apt-get build-dep qemu-kvm' will install all necessary deps). Or I can compile it for you if you prefer. Indeed, with optimizations, while the stack trace is useful, it is not as useful as without... Michael: I noticed that this bug (#685353) is RC, so please rate it down if you think it is appropiate. I doubt that many people will hit it. It was you who marked this bug as grave, right? :) Yes it does not look like something many people will hit. Are you okay with downgrading it to normal or important ? Thanks! /mjt -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#602398: liblatex-encode-perl: Assumes latin1 encoding - produces invalid results when using UTF input
Hi Gunnar On Thu, Nov 04, 2010 at 08:08:08AM -0600, Gunnar Wolf wrote: Package: liblatex-encode-perl Version: 0.03-1 Severity: normal Having a completely UTF8 environment, and even explicitly setting Perl's environment to be fully UTF-aware, results in: 0 gwolf@mosca『29』~$ echo $LANG en_US.UTF-8 0 gwolf@mosca『30』~$ export PERL_UTF8_LOCALE=1 PERL_UNICODE=AS 0 gwolf@mosca『31』~$ perl -mLaTeX::Encode -e 'print LaTeX::Encode::latex_encode(Tħış ïš ffùĺł ȯff ŪŦḞ\n\n)' T\A\textsection\A\textpm\AA \~A\textasciimacron\AA\textexclamdown{} \i\textlnot\~A\textonesuperior\A\textordmasculine\AA \`E\textasciimacron\i\textlnot \AA\textordfeminine\AA\textbrokenbar\'a\c{} Sadly, this renders this module unusable for documents written in basically any language other than English. I'm preparing now the new upstream version 0.06. It includes now a latex-encode wrapper script, and it seems to do it now correctly: $ latex-encode utf8.test Tħ{\i}\c{s} {\i}\v{s} ff{\`u}\'{l}ł ȯff \={U}Ŧ\.{F} $ cat utf8.test Tħış ïš ffùĺł ȯff ŪŦḞ Regards, Salvatore signature.asc Description: Digital signature
Bug#686327: gnome-online-accounts: ssl handshake broken - even when I activate most certificates
On 31.08.2012 10:06, Norbert Preining wrote: Package: gnome-online-accounts Version: 3.4.2-1 Severity: grave Justification: renders package unusable Dear all, currently gnome-online-accounts is completely unusable. WHat I do and did: * first trial to create a google account: SSL handshake failed * search the internet, update-ca-certificates, I actually did: - check mail.google.com, contacts.google.com for the certificate they use, Thawte - activate all the THawte related certificates, plus some others more - run update-ca-certificate (as root) https://bbs.archlinux.org/viewtopic.php?id=131622 sounds an awful lot like your problem. I don't want to claim just yet that this is a local misconfiguration, but it certainly looks like. Michael -- Why is it that all of the instruments seeking intelligent life in the universe are pointed away from Earth? signature.asc Description: OpenPGP digital signature
Bug#686330: mediawiki: Multiple security issues
On Fri, 31 Aug 2012, Moritz Muehlenhoff wrote: Please see here for more info: http://www.gossamer-threads.com/lists/wiki/mediawiki/295767 Thanks. The Release Notes say that 1.19.2 is a security-fix release, and does not list any unrelated changes. Question is, (to the more seasoned MW packagers) can we trust that, and (to the Release Team) would it be acceptable to bump the upstream version on that? Thanks, //mirabilos -- tarent solutions GmbH Rochusstraße 2-4, D-53123 Bonn • http://www.tarent.de/ Tel: +49 228 54881-393 • Fax: +49 228 54881-314 HRB 5168 (AG Bonn) • USt-ID (VAT): DE122264941 Geschäftsführer: Boris Esser, Sebastian Mancke -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686243: laptop-mode-tools: Speakers pop everytime laptop mode tools is started
On Friday 31 August 2012 07:22 AM, David Smith wrote: I don't seem to have this configuration file on my PC. I created the file and made it you suggested but it didn't seem to do anything. I'm running laptop-mode-tools 1.61-1. Sorry. The correct path is: /etc/laptop-mode/conf.d/intel-hda-powersave.conf -- Ritesh Raj Sarraf RESEARCHUT - http://www.researchut.com Necessity is the mother of invention. signature.asc Description: OpenPGP digital signature
Bug#686332: python-wadllib: FTBFS with hash randomization: tests fail
Source: python-wadllib Version: 1.3.0-2 Severity: important Tags: sid User: debian-pyt...@lists.debian.org Usertags: python3.3 python-wadllib FTBFS if built with hash randomization enabled (here with PYTHONHASHSEED=42): | python2.7 setup.py test -vv | running test | running egg_info | writing dependency_links to src/wadllib.egg-info/dependency_links.txt | writing top-level names to src/wadllib.egg-info/top_level.txt | writing src/wadllib.egg-info/PKG-INFO | writing requirements to src/wadllib.egg-info/requires.txt | reading manifest file 'src/wadllib.egg-info/SOURCES.txt' | reading manifest template 'MANIFEST.in' | writing manifest file 'src/wadllib.egg-info/SOURCES.txt' | running build_ext | /build/python-wadllib-IW2BhZ/python-wadllib-1.3.0/src/wadllib/README.txt | Doctest: README.txt ... FAIL | | == | FAIL: /build/python-wadllib-IW2BhZ/python-wadllib-1.3.0/src/wadllib/README.txt | Doctest: README.txt | -- | Traceback (most recent call last): | File /usr/lib/python2.7/doctest.py, line 2201, in runTest | raise self.failureException(self.format_failure(new.getvalue())) | AssertionError: Failed doctest test for README.txt | File /build/python-wadllib-IW2BhZ/python-wadllib-1.3.0/src/wadllib/README.txt, line 0 | | -- | File /build/python-wadllib-IW2BhZ/python-wadllib-1.3.0/src/wadllib/README.txt, line 207, in README.txt | Failed example: | print(find_method.build_request_url(text='foo')) | Differences (ndiff with -expected +actual): | - http://api.launchpad.dev/beta/people?text=foows.op=findPerson | ? - | + http://api.launchpad.dev/beta/people?ws.op=findPersontext=foo | ? + | -- | File /build/python-wadllib-IW2BhZ/python-wadllib-1.3.0/src/wadllib/README.txt, line 210, in README.txt | Failed example: | print(find_method.build_request_url( | {'ws.op' : 'findPerson', 'text' : 'bar'})) | Differences (ndiff with -expected +actual): | - http://api.launchpad.dev/beta/people?text=barws.op=findPerson | ? - | + http://api.launchpad.dev/beta/people?ws.op=findPersontext=bar | ? + | | | -- | Ran 1 test in 0.159s | | FAILED (failures=1) | make[1]: *** [test-python2.7] Error 1 Hash randomization is enabled by default in Python 3.3, so the package will FTBFS when it becomes a supported Python 3 version. -- Jakub Wilk -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686259: yafaray: yafaray blender addon can not be enabled
On Fri, Aug 31, 2012 at 9:29 AM, Matteo F. Vescovi mfv.deb...@gmail.com wrote: Recommends (Version) | Installed =-+-=== blender (= 2.59) | 2.63a-2 OK, discovered the issue: I updated the yafaray-exporter dependency for blender (= 2.63a-2), but forgot to do the same on yafaray... and thought I could have fixed it with upcoming 2.64 version upload. I guess I should fix it anyway with a middle upload to prevent future bug reports about it. Thanks for pointing this out. Cheers. -- Matteo F. Vescovi Debian Maintainer GnuPG KeyID: 83B2CF7A -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#662156: mysql-connector-c++: backport isNumeric method please.
Hi Rene, On Fri, 31 Aug 2012 18:17:58 you wrote: - 1.1.1 is now released - 1.1.1 is in NEW - wheezy is frozen and updates should go over updates and I don't belivbe a update like this would be accepted for wheezy, thus blocking possible needed updates Good news, thank you. This request was logged long before freeze so I'm not too concerned about unblocking. For Wheezy it seems to be OK as is. I think this request is moot. This is fixed with 1.1.1-1 ;) Yes, you're right. Sorry for troubles but my sponsor insisted that I would ask you to backport. I also logged a ticket with upstream because they've managed to release 1.1.1 bundled with mysql-workbench before publishing standalone version. Will close it when it got accepted. Much appreciated, thanks. All the best, Dmitry. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686098: Acknowledgement (After wheezy, please add symlinks to make the OTF variant available under /u/s/fonts and thus for fontconfig)
Am 31.08.2012 09:48, schrieb Norbert Preining: But that means that the all the fonts are *NOT* available to X without fontconfig ... Hm, it should be somehow possible to (1) make the Type1 fonts available to the normal X font system without fontconfig and (2) make the opentype variants available for fontconfig at the same time... Alternatively, it should be possible to resolve the font name clash (e.g. TeXGyreSchola vs. TeX Gyre Schola) in fontconfig, so that only one consistent font name is presented in applications. Then we could make both variants available for fontconfig - and applications (or fontconfig itself) could choose whatever suits better. - Fabian -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686334: ITP: php-yubico -- PHP PEAR module for verifying Yubico YubiKey One-Time Passwords
Package: wnpp Severity: wishlist Owner: Klas Lindfors k...@yubico.com * Package name: php-yubico Version : 2.4 Upstream Author : Yubico Open Source Maintainers ossma...@yubico.com * URL : http://code.google.com/p/php-yubico/ * License : BSD-2-clause Programming Lang: PHP Description : PHP PEAR module for verifying Yubico YubiKey One-Time Passwords The YubiKey is an USB HID devices that act like keyboards and generate one-time passwords (OTPs). This PHP module is used for talking to an online validation server that implements the YK-VAL protocol, such as Yubico's YubiCloud or a locally installed server. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686249: postgresql: pgadmin3 does not show the fields of records which have contents with accents
Control: tags -1 moreinfo Re: SZABO Zsolt 2012-08-30 20120830150202.24777.42545.report...@galilei.mm.bme.hu When I open pgadmin3 then the fieldnames which contain accents are not displayed neither the content of the records and an ERROR window pops up saying: An error has occurred: ERROR: colud not access file $libdir/utf8_and_iso8859: No such file or directory Maybe the dynamic_library_path should be set in postgresql.conf to: '/usr/lib/postgresql/lib:/usr/lib/postgresql/8.4/lib' or similar? Hi Zsolt, I think something is wrong with the database config. Could you send me the output of ls -l /usr/lib/postgresql/*/lib/utf8_and_iso* As well as the postgresql.conf in use for this cluster? Christoph -- c...@df7cb.de | http://www.df7cb.de/ signature.asc Description: Digital signature
Bug#686327: gnome-online-accounts: ssl handshake broken - even when I activate most certificates
Hi Michael, On Fri, 31 Aug 2012, Michael Biebl wrote: severity 686327 important disagree. Can't reproduce your problem here. Creating a Google Account works just fine here. This might indeed be related due to your local certificate configuration. Then please explain me why the *first* secured connection to the google server where I have to enter the credentials worked out (*after* I have activated the Thawte certificates), and I was allowed to log in, and was asked to Grant access, and only at the grant access stage it broke? If you run /usr/lib/gnome-online-accounts/goa-daemon --replace do you get any useful log messages related to your problem? Nothing but the initial three lines: [~] /usr/lib/gnome-online-accounts/goa-daemon --replace 17:50:00.575:[5838]:[NOTICE]: goa-daemon version 3.4.2 starting [main.c:112, main()] 17:50:00.576:[5838]:[INFO]: Entering main event loop [main.c:136, main()] 17:50:00.584:[5838]:[INFO]: Connected to the session bus [main.c:56, on_bus_acquired()] 17:50:00.585:[5838]:[INFO]: Acquired the name org.gnome.OnlineAccounts on the session message bus [main.c:73, on_name_acquired()] ... For testing purposes, could you temporarily enable the default set of Debian certificates. Testing with a fresh user account would be helpful, too. What *is* the default set of Debian certificates? I'm downgrading the severity, as the problem is not reproducible, so it doesn't look like this is a general problem. Still, I can reproduce it 100% And .. https://bbs.archlinux.org/viewtopic.php?id=131622 sounds an awful lot like your problem. Of course I checked the internet and tried several things before, I have seen this posting, why I started playing around with certificates. The hint from this link brought me one step further, as explained above. Namely I was asked the credentials. But after that setup of the identity doesn't work. I don't want to claim just yet that this is a local misconfiguration, but it certainly looks like. So, then tell me *where* there is the configuration. Gnome 3 (not your fault!!) is just f***ing stupid in hiding everything in a way that nobody knows what is actually necessary or problematic. Why is it that all of the instruments seeking intelligent life in the universe are pointed away from Earth? Well, probably too many Gnome 3 developers out there on Earth? Best wishes Norbert Norbert Preiningpreining@{jaist.ac.jp, logic.at, debian.org} JAIST, Japan TeX Live and Debian Developer gpg DSA: 0x09C5B094 fp: 14DF 2E6C 0307 BE6D AD76 A9C0 D2BF 4AA3 09C5 B094 THROCKING (participial vb.) The action of continually pushing down the lever on a pop-up toaster in the hope that you will thereby get it to understand that you want it to toast something. Also: a style of drum-playing favoured by Nigel Olsson of the Elton John Band, reminiscent of the sound of someone slapping a frankfurter against a bucket. An excellent example of this is to be heard on 'Someone Save My Life Tonight' from the album Captain Fantastic and the Brown Dirt Cowboy. --- Douglas Adams, The Meaning of Liff -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686313: Please allow translation of all debconf templates
I notice that one of byobu's five template po files is an en_GB.po that just uses exactly the same strings as the en_US default. Christian PERRIER wrote: Template: byobu/launch-by-default Type: boolean Default: false _Description: Do you want to launch Byobu at shell login for all users? Never mind what I want! Byobu can launch automatically at login (e.g. console, ssh), providing an attachable/detachable window manager on the command line. . If you select this option, Byobu will install a symlink in /etc/profile.d. This setting is system-wide, for all users logging into the system. Individual users can disable this by touching ~/.byobu/disable-autolaunch, or configuring with 'byobu-config'. can launch what? If I'm not mistaken to launch needs something to be launched to be mentioned Some dictionaries allow for it to be intransitive, but the examples they give are usually of the phrasal verb launch into... So, I'd propose Byobu can be launched We also tried to avoid latinisms such as e.g. in the past and mostly preferred such as. Also capitalize ssh. The one kind of login it doesn't handle is graphical ones via a display manager, so it seems odd to talk about this as a window manager (especially when all the work of detachable terminal multiplexing is being done by GNU Screen or TMUX). You don't need to advertise Byobu's marvelousness to me now - I'm already installing it! Byobu will do nothing if I select this option, the package maintainer scripts will. users logging doesn't seem right to me. They don't write to journal files..:-) It's for all users (who are) logging-in into the system. Wait, does all users include root? This comes from Ubuntu where they assume I haven't even *got* a root user... no, another case where I don't want anything inserted in /etc/profile.d, thankyou. touching does not make it obvious that the touch utility is involved. In fact just running touch ~/.byobu/disable-autolaunch won't work until I've got a directory ~/.byobu, will it? And for me it would have to be touch ~/etc/byobu/disable-autolaunch, because byobu respects $XDG_CONFIG_HOME! Configuring what with byobu-config? Here also, to configure needs something to be configured..:) All this makes me propose: Template: byobu/launch-by-default Type: boolean Default: false _Description: Do you want to launch Byobu at shell login for all users? Byobu can be launched automatically at login (such as console or SSH logins), providing an attachable/detachable window manager on the command line. . If you select this option, a symlink will be created in /etc/profile.d. This setting is system-wide, for all users logged on the system. Individual users can disable this with touch ~/.byobu/disable-autolaunch, or using the byobu-config utility. Template: byobu/launch-by-default Type: boolean Default: false _Description: Launch Byobu at shell login for all users? Byobu can be launched automatically on all shell logins (via the console, SSH, etc.), to provide a screen session manager. . If you select this option, a symlink will be created in /etc/profile.d. This setting is system-wide, for all user logins. Individual users can opt out by using the utility byobu-config or by creating the file disable-autolaunch in their byobu configuration directory. (Another candidate for a WhyTheName entry. Japanese.) -- JBR with qualifications in linguistics, experience as a Debian sysadmin, and probably no clue about this particular package diff -ru byobu-5.16.pristine/debian/templates byobu-5.16/debian/templates --- byobu-5.16.pristine/debian/templates2012-03-12 04:38:09.0 + +++ byobu-5.16/debian/templates 2012-08-31 10:05:39.504400015 +0100 @@ -1,11 +1,11 @@ Template: byobu/launch-by-default Type: boolean Default: false -_Description: Do you want to launch Byobu at shell login for all users? - Byobu can launch automatically at login (e.g. console, ssh), providing - an attachable/detachable window manager on the command line. +_Description: Launch Byobu at shell login for all users? + Byobu can be launched automatically on all shell logins (via the console, + SSH, etc.), to provide a screen session manager. . - If you select this option, Byobu will install a symlink in /etc/profile.d. - This setting is system-wide, for all users logging into the system. - Individual users can disable this by touching - ~/.byobu/disable-autolaunch, or configuring with 'byobu-config'. + If you select this option, a symlink will be created in /etc/profile.d. + This setting is system-wide, for all user logins. Individual users can + opt out by using the utility byobu-config or by creating the file + disable-autolaunch in their byobu configuration directory. Template: byobu/launch-by-default Type: boolean Default: false _Description: Launch Byobu at shell login for all users? Byobu can be launched automatically
Bug#686335: texlive-base: updmap.pl does not recognize option dvipsDownloadBase35 set in updmap.cfg
Package: texlive-base Version: 2012.20120611-3 Severity: important Tags: patch Hello, I have found a bug in /usr/bin/updmap (part of package texlive-binaries) which is a symbolic link to /usr/share/texlive/texmf/scripts/tetex/updmap.pl (part of texlive-base). A patch is attached. I hope reportbug cancelled might first wrong bug report. This program founds its configuration files as expected (e.g. /etc/texmf/web2c/updmap.cfg), but the option dvipsDownloadBase35 is not recognized. The option can be set to the string values true and false, but the false value is not recognized because the perl statement in line 1048 (version in binary package) is wrong. Instead of if ($dvipsDownloadBase35) which checks for a non-empty string, it must be if ($dvipsDownloadBase35 eq true) to reach the else case, if option is set to false. Same if-expression is also used for the other options in the perl-script, e.g. dvipsPreferOutline. In the source package texlive-base_2012.20120611.orig.tar.xz the filename is texmf/scripts/tetex/updmap.pl as indicated by the patch. The wrong statement is at line 1026. Greetings, Martin -- Package-specific info: IMPORTANT INFORMATION: We will only consider bug reports concerning the packaging of TeX Live as relevant. If you have problems with combination of packages in a LaTeX document, please consult your local TeX User Group, the comp.text.tex user group, the author of the original .sty file, or any other help resource. *** The Debian TeX Team is *no* LaTeX Help Desk *** If you report an error when running one of the TeX-related binaries (latex, pdftex, metafont,...), or if the bug is related to bad or wrong output, please include a MINIMAL example input file that produces the error in your report. Please run your example with (pdf)latex -recorder ... (or any other program that supports -recorder) and send us the generated file with the extension .fls, it lists all the files loaded during the run and can easily explain problems induced by outdated files in your home directory. Don't forget to also include minimal examples of other files that are needed, e.g. bibtex databases. Often it also helps to include the logfile. Please, never send included pictures! If your example file isn't short or produces more than one page of output (except when multiple pages are needed to show the problem), you can probably minimize it further. Instructions on how to do that can be found at http://www.minimalbeispiel.de/mini-en.html (english) or http://www.minimalbeispiel.de/mini.html (german) ## minimal input file ## other files ## List of ls-R files -rw-r--r-- 1 root root 7020 Aug 31 11:01 /var/lib/texmf/ls-R lrwxrwxrwx 1 root root 29 Jun 18 03:25 /usr/share/texmf/ls-R - /var/lib/texmf/ls-R-TEXMFMAIN lrwxrwxrwx 1 root root 31 Jun 26 00:39 /usr/share/texlive/texmf/ls-R - /var/lib/texmf/ls-R-TEXLIVEMAIN -rw-rw-r-- 1 root staff 1924 Aug 8 17:46 /usr/local/share/texmf/ls-R lrwxrwxrwx 1 root root 31 Jun 26 00:39 /usr/share/texlive/texmf-dist/ls-R - /var/lib/texmf/ls-R-TEXLIVEDIST lrwxrwxrwx 1 root root 31 Jun 26 00:39 /usr/share/texlive/texmf-dist/ls-R - /var/lib/texmf/ls-R-TEXLIVEDIST lrwxrwxrwx 1 root root 31 Jun 26 00:39 /usr/share/texlive/texmf/ls-R - /var/lib/texmf/ls-R-TEXLIVEMAIN ## Config files -rw-r--r-- 1 root root 475 Aug 8 10:43 /etc/texmf/web2c/texmf.cnf -rw-r--r-- 1 root root 4048 Aug 30 22:28 /var/lib/texmf/web2c/fmtutil.cnf -rw-r--r-- 1 root root 54 Aug 31 10:09 /etc/texmf/web2c/updmap.cfg -rw-r--r-- 1 root root 3886 Aug 30 22:28 /var/lib/texmf/tex/generic/config/language.dat ## Files in /etc/texmf/web2c/ total 16 -rw-r--r-- 1 root root 283 Jun 18 03:25 mktex.cnf -rw-r--r-- 1 root root 475 Aug 8 10:43 texmf.cnf -rw-r--r-- 1 root root 54 Aug 31 10:09 updmap.cfg -rw-r--r-- 1 root root 55 Aug 31 10:09 updmap.cfg~ ## md5sums of texmf.d ca40c66f144b4bafc3e59a2dd32ecb9c /etc/texmf/texmf.d/00debian.cnf -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-3-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages texlive-base depends on: ii debconf [debconf-2.0] 1.5.46 ii dpkg 1.16.8 ii install-info 4.13a.dfsg.1-10 ii libpaper-utils 1.1.24+nmu2 ii luatex 0.70.1.20120524-3 ii tex-common 3.13 ii texlive-binaries 2012.20120628-2 ii texlive-common 2012.20120611-3 ii texlive-doc-base 2012.20120611-1 ii ucf3.0025+nmu3 ii xdg-utils 1.1.0~rc1+git20111210-6 Versions of packages texlive-base recommends: ii lmodern 2.004.2-1 Versions
Bug#686336: icinga-web: fix default reporting download directory
Package: icinga-web Version: 1.7.1-4 Severity: minor I know debian does not provide a package for Icinga reporting but this would simplify installing it in Debian: In /usr/share/icinga-web/app/modules/Reporting/config/module.xml there is a hardcoded path for temporary reports generated and sent by the Reporting clonk: setting name=dir.download/usr/app/modules/Reporting/data/tmp//setting This can of course be overriden by the user in /etc/icinga-web/conf.d/module_reporting.xml but wouldn't it be more sensible to set it correct by default? Maybe setting name=dir.download/var/cache/icinga-web/reports/setting or setting name=dir.download/var/spool/icinga-web/reports/setting Regards, Oskar Liljeblad -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-2-amd64 (SMP w/2 CPU cores) Locale: LANG=POSIX, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686337: pmacct: nfacctd init script - restart broken
Package: pmacct Severity: important Hi, please rewrite the nfacctd init script using start-stop-daemon instead of using killall in the stop part - actually the init script kills itself, so restart (which calls stop and start) will never execute the start part. Also should stop wait until the process is gone, start-stop-daemon also handles this properly. Cheers, Bernd -- Bernd ZeimetzDebian GNU/Linux Developer http://bzed.dehttp://www.debian.org GPG Fingerprint: ECA1 E3F2 8E11 2432 D485 DD95 EB36 171A 6FF9 435F -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686098: Acknowledgement (After wheezy, please add symlinks to make the OTF variant available under /u/s/fonts and thus for fontconfig)
Hi again, Am 31.08.2012 11:02, schrieb Fabian Greffrath: Alternatively, it should be possible to resolve the font name clash (e.g. TeXGyreSchola vs. TeX Gyre Schola) in fontconfig, so that only one consistent font name is presented in applications. Then we could make both variants available for fontconfig - and applications (or fontconfig itself) could choose whatever suits better. the discrepancy is in the Opentype files. Fontlint even complains about it: $ fontlint fonts/opentype/public/tex-gyre/texgyreschola-regular.otf Copyright (c) 2000-2011 by George Williams. Executable based on sources from 23:14 GMT 25-Feb-2011-ML. Library based on sources from 13:48 GMT 22-Feb-2011. Warning: Mac and Windows entries in the 'name' table differ for the Family string in the language English (US) Mac String: TeX Gyre Schola Windows String: TeXGyreSchola Warning: Mac and Windows entries in the 'name' table differ for the Fullname string in the language English (US) Mac String: TeX Gyre Schola Windows String: TeXGyreSchola-Regular [...] Norbert, could you iron this out with upstream? - Fabian -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686338: mysql-utilities - New Upstream version
Package: mysql-utilities Severity: wishlist Hello, could you please package the newest upstream version (1.0.6)? Thanks, Jonas -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686104: python-django-registration: Not compatible with, Django 1.4.
On 08/31/2012 09:59 AM, Raphael Hertzog wrote: Hi, (I hope you are still patient with me.) It is hard to judge how severe the use of SHA1 in django-registration 0.7.1 is. I think we can go endlessly here. (What if an attacker requests 2 accounts: one on a valid e-mail address and one on a invalid one? Is 5 characters of salt, 26 bits of randomness, enough safeguard?). I think in the end it is a subjective decision and I am not to judge here. So lets get back to the original issue: the changelog mentions fixed compatibility issues with Django 1.4: https://bitbucket.org/ubernostrum/django-registration/src/2d6fcc0c55d0/CHANGELOG It is for sure referring to this commit: https://bitbucket.org/ubernostrum/django-registration/changeset/b79f9f2cf3c9f246d68a0e5d3b9e75ab0c1b20c6 I have seen one bug report about this causing problems: http://spottedsun.com/django-registration-activation-error-for-django-1-4/ I can recall also fixed problems with the naming schemes between 0.7.1 and 0.8, but I can't give exact references to those. Winfried -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686339: ITP: python-wherigo -- python module for creating a wherigo player
Package: wnpp Severity: wishlist Owner: Bas Wijnen wij...@debian.org * Package name: python-wherigo Version : 0.1 Upstream Author : Bas Wijnen wij...@debian.org * URL : https://github.com/wijnen/python-wherigo * License : AGPL-3+ Programming Lang: Python Description : python module for creating a wherigo player Wherigo cartridges are real-world adventure games, which require the user to move with their legs instead of their keys. This module implements the logic that a cartridge needs, except the interface. It can be used to create a player program, or embed wherigo playing into a larger program. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#664644: openjdk-6-jdk: jar -x hangs on some jar archives
And here is a backtrace with jdb: % jdb -classpath /usr/lib/jvm/java-6-openjdk-amd64/lib/tools.jar sun.tools.jar.Main -x ../dstm/dstm.jar Initializing jdb ... run run sun.tools.jar.Main -x ../dstm/dstm.jar Set uncaught java.lang.Throwable Set deferred uncaught java.lang.Throwable VM Started: suspend All threads suspended. where all Signal Dispatcher: Finalizer: [1] java.lang.Object.wait (native method) [2] java.lang.ref.ReferenceQueue.remove (ReferenceQueue.java:133) [3] java.lang.ref.ReferenceQueue.remove (ReferenceQueue.java:149) [4] java.lang.ref.Finalizer$FinalizerThread.run (Finalizer.java:177) Reference Handler: [1] java.lang.Object.wait (native method) [2] java.lang.Object.wait (Object.java:502) [3] java.lang.ref.Reference$ReferenceHandler.run (Reference.java:133) main: [1] java.io.FileInputStream.readBytes (native method) [2] java.io.FileInputStream.read (FileInputStream.java:236) [3] java.io.BufferedInputStream.fill (BufferedInputStream.java:235) [4] java.io.BufferedInputStream.read1 (BufferedInputStream.java:275) [5] java.io.BufferedInputStream.read (BufferedInputStream.java:334) [6] java.io.FilterInputStream.read (FilterInputStream.java:133) [7] java.io.PushbackInputStream.read (PushbackInputStream.java:186) [8] java.util.zip.ZipInputStream.readFully (ZipInputStream.java:414) [9] java.util.zip.ZipInputStream.readLOC (ZipInputStream.java:247) [10] java.util.zip.ZipInputStream.getNextEntry (ZipInputStream.java:91) [11] sun.tools.jar.Main.extract (Main.java:868) [12] sun.tools.jar.Main.run (Main.java:260) [13] sun.tools.jar.Main.main (Main.java:1 167) signature.asc Description: This is a digitally signed message part.
Bug#683726: closed by Julien Cristau
As suggested, I replaced the nvidia driver with nouveau: now sleepresume work like breeze (prompter than with nvidia!). Even the glx acceleration is more than fair: I'll stick to nouveau. In conclusion, the kernel is fine, this breakage was a problem of the interaction with the closed-source driver: let the guys at nvidia find a fix... ;-) Thank you, ciao, N. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686340: cssutils: FTBFS with Python 3.3: AssertionError: Tuples differ: (None, None) != ('text/html', 'ascii')
Source: cssutils Version: 0.9.10~b1-1 Severity: important Tags: sid User: debian-pyt...@lists.debian.org Usertags: python3.3 cssutils FTBFS if built against Python 3.3: | + nosetests-3.3 -v --exclude=test_parseString --exclude=test_parseFile --exclude=test_parseUrl --exclude=test_combine --exclude=test_cssText2 --exclude=test_errorhandler.py --py3where /build/cssutils-rJx1Up/cssutils-0.9.10~b1/build/lib/tests | codec.decode (force) ... ok | codecs.decoder ... ok | codec.detectencoding_str() ... ok | codec.detectencoding_unicode() ... ok | codec.encoder ... ok | codec._fixencoding() ... ok | CSSMediaRule.cssRules.parentRule .parentStyleSheet .type ... ok | CSSCharsetRule InvalidModificationErr ... ok | CSSCharsetRule.cssText ... ok | CSSCharsetRule.encoding ... ok | CSSCharsetRule.__init__() ... ok | CSSCharsetRule.__init__(encoding) ... ok | CSSRule.parentRule .parentStyleSheet .type ... ok | CSSRule readonly ... ok | CSSCharsetRule.__repr__() ... ok | CSSCharsetRule.__repr__(), .__str__() ... ok | CSSMediaRule.cssRules.parentRule .parentStyleSheet .type ... ok | CSSComment.cssText InvalidModificationErr ... ok | CSSComment.cssText ... ok | CSSComment.type and init ... ok | CSSRule.parentRule .parentStyleSheet .type ... ok | CSSRule readonly ... ok | CSSComment.__repr__(), .__str__() ... ok | CSSMediaRule.cssRules.parentRule .parentStyleSheet .type ... ok | CSSFontFaceRule.cssText InvalidModificationErr ... ok | CSSFontFaceRule.cssText ... ok | CSSFontFaceRule (incomplete) ... ok | CSSFontFaceRule.__init__() ... ok | CSSRule.parentRule .parentStyleSheet .type ... ok | CSSFontFaceRule.style properties ... ok | CSSRule readonly ... ok | CSSFontFaceRule.__repr__(), .__str__() ... ok | CSSFontFaceRule.style (and references) ... ok | CSSFontFaceRule.valid ... ok | CSSMediaRule.cssRules.parentRule .parentStyleSheet .type ... ok | CSSImportRule.cssText InvalidModificationErr ... ok | CSSImportRule.cssText ... ok | CSSImportRule.href ... ok | CSSImportRule.hrefFound ... ok | CSSImportRule.hreftype ... ok | CSSImportRule (incomplete) ... ok | CSSImportRule.__init__() ... ok | CSSImportRule.media ... ok | CSSImportRule.name ... ok | CSSRule.parentRule .parentStyleSheet .type ... ok | CSSRule readonly ... ok | CSSImportRule.__repr__(), .__str__() ... ok | CSSImportRule.styleSheet ... ok | CSSMediaRule.cssRules.parentRule .parentStyleSheet .type ... ok | CSSMediaRule.cssText InvalidModificationErr ... ok | CSSMediaRule.add() ... ok | CSSMediaRule.cssRules ... ok | CSSMediaRule.cssText ... ok | CSSMediaRule.deleteRule(rule) ... ok | CSSMediaRule.deleteRule(index) ... ok | CSSMediaRule (incomplete) ... ok | CSSMediaRule.__init__() ... ok | CSSMediaRule.insertRule ... ok | CSSMediaRule.__iter__() ... ok | CSSMediaRule.media ... ok | CSSMediaRule.name ... ok | CSSRule.parentRule .parentStyleSheet .type ... ok | CSSRule readonly ... ok | CSSStylesheet references ... ok | CSSMediaRule.__repr__(), .__str__() ... ok | CSSMediaRule.cssRules.parentRule .parentStyleSheet .type ... ok | CSSNamespaceRule.cssText InvalidModificationErr ... ok | CSSNamespaceRule.cssText ... ok | CSSNamespaceRule (incomplete) ... ok | CSSNamespaceRule.__init__() ... ok | CSSNamespaceRule.namespaceURI ... ok | CSSRule.parentRule .parentStyleSheet .type ... ok | CSSNamespaceRule.prefix ... ok | CSSRule readonly ... ok | CSSNamespaceRule.__repr__(), .__str__() ... ok | CSSMediaRule.cssRules.parentRule .parentStyleSheet .type ... ok | CSSPageRule.cssText InvalidModificationErr ... ok | CSSPageRule.cssRules ... ok | CSSPageRule.cssText ... ok | CSSPageRule (incomplete) ... ok | CSSPageRule.__init__() ... ok | CSSRule.parentRule .parentStyleSheet .type ... ok | CSSPageRule.style properties ... ok | CSSRule readonly ... ok | CSSPageRule.__repr__(), .__str__() ... ok | CSSPageRule.selectorText ... ok | CSSPageRule.specificity ... ok | CSSPageRule.style (and references) ... ok | CSS2Properties ... ok | cssproperties _toCSSname(DOMname) ... ok | cssproperties _toDOMname(CSSname) ... ok | CSSMediaRule.cssRules.parentRule .parentStyleSheet .type ... ok | CSSRule.type and init ... ok | CSSRule.parentRule .parentStyleSheet .type ... ok | CSSRule readonly ... ok | CSSRuleList.__init__() ... ok | CSSRuleList.rulesOfType() ... ok | CSSStyleDeclaration.__contains__(nameOrProperty) ... ok | CSSStyleDeclaration.__iter__ and .item ... ok | CSSStyleDeclaration.children() ... ok | CSSStyleDeclaration.$css2property get set del ... ok | CSSStyleDeclaration.cssText ... ok | CSSStyleDeclaration.getCssText(separator) ... ok | CSSStyleDeclaration.getProperties() ... ok | CSSStyleDeclaration.getProperty ... ok | CSSStyleDeclaration.getPropertyCSSValue() ... ok | CSSStyleDeclaration.getPropertyPriority() ... ok | CSSStyleDeclaration.getPropertyValue() ... ok | CSSStyleDeclaration.__init__() ... ok | CSSStyleDeclaration[CSSName] ... ok | CSSStyleDeclaration.keys() ... ok | CSSStyleDeclaration.length ... ok | CSSStyleDeclaration.XXX(name) ... ok |
Bug#680470: Two security issues: AST-2012-010 / AST-2012-011
On Thu, Aug 30, 2012 at 07:43:21PM +0300, Tzafrir Cohen wrote: On Thu, Aug 30, 2012 at 05:51:46PM +0200, Moritz Muehlenhoff wrote: On Fri, Jul 06, 2012 at 08:06:56AM +0200, Moritz Muehlenhoff wrote: Package: asterisk Severity: grave Tags: security http://downloads.asterisk.org/pub/security/AST-2012-010.html (no CVE yet) http://downloads.asterisk.org/pub/security/AST-2012-011.html (CVE-2012-3812) 1.6 is not mentioned in the Affected versions, but I haven't validated whether because it's no longer supported/tracked upstream or because the issues are not present. Can you double-check? For sid/wheezy, please remember that we're in freeze and only isolated fixes are to be made instead of updating to a new full upstream release. Once you've uploaded, please send an unblock request by filing a bug against the release.debian.org pseudo package. What's the status? This is marked pending for nearly two months now! For some reason I had the impression we had 1.8.13.1 packaged. I would suggest to upload 1.8.13.1 , which is exactly 1.8.13.0 + the fixes for those two issues: http://svnview.digium.com/svn/asterisk/tags/1.8.13.1/?view=log For the record, they were fixed in the branch in: http://svnview.digium.com/svn/asterisk?view=revisionrevision=369652 http://svnview.digium.com/svn/asterisk?view=revisionrevision=369436 Note, however, that today we had the following commits: http://svnview.digium.com/svn/asterisk?view=revisionrevision=372015 http://svnview.digium.com/svn/asterisk?view=revisionrevision=371998 So this is juas a good a timing as any for a new package. Two new issues have been announced, we should incorporate these: CVE-2012-2186: http://downloads.digium.com/pub/security/AST-2012-012.html CVE-2012-4737: http://downloads.digium.com/pub/security/AST-2012-013.html Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686341: All the fail2ban mail reports are dated from 1970-01-01 01:00
Package: fail2ban Version: 0.8.6-3~bpo60+1 Severity: normal Since a recent update, all the mail reports I receive from fail2ban are dated from 1970-01-01 01:00 It's a bit boring as I cannot anymore sort these reports by date. -- System Information: Debian Release: 6.0.5 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: i386 (x86_64) Kernel: Linux 2.6.39-2-amd64 (SMP w/2 CPU cores) Locale: LANG=fr_FR@euro, LC_CTYPE=fr_FR@euro (charmap=ISO-8859-15) Shell: /bin/sh linked to /bin/dash Versions of packages fail2ban depends on: ii lsb-base3.2-23.2squeeze1 Linux Standard Base 3.2 init scrip ii python 2.6.6-3+squeeze7 interactive high-level object-orie ii python-central 0.6.16+nmu1 register and build utility for Pyt Versions of packages fail2ban recommends: ii iptables 1.4.8-3administration tools for packet fi pn python-gamin none (no description available) ii whois 5.0.10 an intelligent whois client Versions of packages fail2ban suggests: ii mailutils [mailx] 1:2.1+dfsg1-7 GNU mailutils utilities for handli -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#681396: unblock slbackup-php
On Fri 31 Aug 2012 04:12:12 Mike Gabriel escribió: On Sa 18 Aug 2012 21:34:22 CEST Adam D. Barratt wrote: I will wait another 3 days (Wednesday 2012-07-15, 23:59 UTC) and if no other feedback has been written, I will proceed as recommended. Any news on that? Just for the record. The reworked source package (0.4.3-2) has been uploaded to mentors and is currently reviewed by my sponsor (Lisandro). And I'm a little bit busy, I hope to be able to look at it during the weekend. Reagards, Lisandro. -- You know it's love when you memorize her IP number to skip DNS overhead. Anonymous Lisandro Damián Nicanor Pérez Meyer http://perezmeyer.com.ar/ http://perezmeyer.blogspot.com/ signature.asc Description: This is a digitally signed message part.
Bug#686342: pacemaker built without corosync quorum plugin. Cluster fails to start.
Package: pacemaker Version: 1.1.7-2 Severity: normal Dear Maintainer, Pacemaker is built without corosync quorum support. Cluster fails to start with corosync 1.4.2-3 with the following error in logs: Aug 31 12:15:00 cc01 crmd: [6187]: info: crm_new_peer: Node 16847020 is now known as cc01 Aug 31 12:15:00 cc01 crmd: [6187]: info: ais_status_callback: status: cc01 is now unknown Aug 31 12:15:00 cc01 crmd: [6187]: ERROR: init_quorum_connection: The Corosync quorum API is not supported in this build Aug 31 12:15:00 cc01 pacemakerd: [6178]: ERROR: pcmk_child_exit: Child process crmd exited (pid=6187, rc=100) Aug 31 12:15:00 cc01 pacemakerd: [6178]: WARN: pcmk_child_exit: Pacemaker child process crmd no longer wishes to be respawned. Shutting ourselves down. Aug 31 12:15:00 cc01 pacemakerd: [6178]: notice: pcmk_shutdown_worker: Shuting down Pacemaker Rebuilding pacemaker with '--with-cs-quorum' option fixes the problem. -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-3-amd64 (SMP w/1 CPU core) Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1) Shell: /bin/sh linked to /bin/dash Versions of packages pacemaker depends on: ii adduser 3.113+nmu3 ii corosync 1.4.2-3 ii libbz2-1.01.0.6-4 ii libc6 2.13-35 ii libcfg4 1.4.2-3 ii libcib1 1.1.7-1 ii libconfdb41.4.2-3 ii libcoroipcc4 1.4.2-3 ii libcpg4 1.4.2-3 ii libcrmcluster11.1.7-1 ii libcrmcommon2 1.1.7-1 ii libesmtp6 1.0.6-1+b1 ii libglib2.0-0 2.32.3-1 ii libgnutls26 2.12.20-1 ii liblrm2 1.0.9+hg2665-1 ii libltdl7 2.4.2-1.1 ii libncurses5 5.9-10 ii libpam0g 1.1.3-7.1 ii libpe-rules2 1.1.7-1 ii libpe-status3 1.1.7-1 ii libpengine3 1.1.7-1 ii libpils2 1.0.9+hg2665-1 ii libplumb2 1.0.9+hg2665-1 ii libsnmp15 5.4.3~dfsg-2.5 ii libssl1.0.0 1.0.1c-4 ii libstonithd1 1.1.7-1 ii libtinfo5 5.9-10 ii libtransitioner1 1.1.7-1 ii libuuid1 2.20.1-5.1 ii libxml2 2.8.0+dfsg1-5 ii libxslt1.11.1.26-13 ii python2.7.3~rc2-1 ii python2.6 2.6.8-0.2 ii python2.7 2.7.3~rc2-2.1 ii resource-agents 1:3.9.2-5 pacemaker recommends no packages. pacemaker suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#670945: [php-maint] Bug#670945: Bug#670945: Bug#670945: About the media types text/x-php and text/x-php-source
On Thu, 2012-08-30 at 00:16 +0200, Christoph Anton Mitterer wrote: RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule ^(.*)$ $1.php [last] Tried them out in the meantime. Seem to work as expected. Cheers, CHris. smime.p7s Description: S/MIME cryptographic signature
Bug#584850: Provide better diagnostic for directories [patch]
After two years, this bug is still there (package mmv 1.01b-15 on Ubuntu 12.04 amd64). This is a serious usability issue: I don't use mmv so frequently to remember that the -r option is needed to rename directories, so every time I lose several minutes to try to understand what's wrong with my matching string. And, honestly speaking, this behaviour for the -r option really doesn't make much sense, it's just counterintuitive. Please merge the patch provided by Ulrich Eckhardt in the main tree, it shouldn't take too long to test it. Thank you very much for your patience and best regards Andrea -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#257253: TCL_*_SEARCH_FLAGS missing
reassign 257253 aolserver4-core 4.0.7-1 stop From the comments of the bug report on SF (http://sourceforge.net/tracker/?func=detailatid=103152aid=640754group_id=3152), this bug affects AOLserver Tcl 4.07 and not 8.4.6. -- Stéphane Aulery -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686196: httping: Segmentation fault (after slow responses?)
On Wed, Aug 29, 2012 at 9:09 PM, folkert folk...@vanheusden.com wrote: can you run it from gdb? gdb httping set args http://tracker.t411.me:56969/statistics r bt Some progress: connected to 81.31.38.46:56969 (26 bytes), seq=5824 time=46.18 ms Program received signal SIGSEGV, Segmentation fault. 0xb7ce2797 in ?? () from /lib/i386-linux-gnu/i686/cmov/libc.so.6 (gdb) bt #0 0xb7ce2797 in ?? () from /lib/i386-linux-gnu/i686/cmov/libc.so.6 #1 0x0804c63a in main (argc=2, argv=0xb764) at main.c:903 (gdb) Olaf -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686336: icinga-web: fix default reporting download directory
severity 686333 wishlist thanks Hello Oskar, I know debian does not provide a package for Icinga reporting but this would simplify installing it in Debian: In /usr/share/icinga-web/app/modules/Reporting/config/module.xml there is a hardcoded path for temporary reports generated and sent by the Reporting clonk: Thanks for your request, that should be includable, but not for wheezy any more... I'll have a look on it when returning from vacation. Regards Markus
Bug#669041: dhelp: Also have 404 for /doc hierarchy.
Package: dhelp Version: 0.6.20 Severity: normal Under /var/log/apache2/error.log I have errors: [Fri Aug 31 13:44:48 2012] [error] [client 127.0.0.1] File does not exist: /var/www/doc, referer: http://localhost/cgi-bin/dsearch?search=apt-cache%20tag [Fri Aug 31 13:44:49 2012] [error] [client 127.0.0.1] File does not exist: /var/www/favicon.ico which quickly fixed by: ln -s /usr/share/doc /var/www/doc -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Versions of packages dhelp depends on: ii doc-base 0.10.4 ii libcommandline-ruby1.8 0.7.10-12 ii libdata-page-perl 2.02-1 ii libdb-ruby1.8 0.6.5-7 ii libgettext-ruby1.8 2.2.1-2 ii libhtml-parser-perl3.69-2 ii liblocale-gettext-perl 1.05-7+b1 ii libtemplate-perl 2.24-1 ii liburi-perl1.60-1 ii perl-modules 5.14.2-12 ii poppler-utils 0.18.4-3 ii pstotext 1.9-6 ii ruby-bdb [libdb-ruby1.8] 0.6.5-7 ii ruby-commandline [libcommandline-ruby1.8] 0.7.10-12 ii ruby-gettext [libgettext-ruby1.8] 2.2.1-2 ii ruby1.81.8.7.358-4 ii swish++6.1.5-2.2 ii ucf3.0025+nmu3 Versions of packages dhelp suggests: ii apache2-mpm-worker [httpd] 2.2.22-11 ii catdvi 0.14-12.1 ii html2text 1.3.2a-15 ii info2www1.2.2.9-24 ii man2html1.6g-6 ii w3m 0.5.3-8 -- Best regards! -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#683831: unblock: aplus-fsf/4.22.1-5
On 2012-08-04 17:18, Neil Roeth wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package aplus-fsf The dependency on xemacs21-nomule was blocking it; I removed that dependency. The full set of binary packages is: aplus-fsf, aplus-fsf-doc, aplus-fsf-el, aplus-fsf-dev and xfonts-kapl. unblock aplus-fsf/4.22.1-5 [...] I am sorry, but I think we will have to decline this request. Per Freeze Policy Rule 8[1], the limit is 20 days and your request seems to have missed by a week. Sorry, ~Niels [1] http://release.debian.org/wheezy/freeze_policy.html -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686196: httping: Segmentation fault (after slow responses?)
can you run it from gdb? gdb httping set args http://tracker.t411.me:56969/statistics r bt Some progress: connected to 81.31.38.46:56969 (26 bytes), seq=5824 time=46.18 ms Program received signal SIGSEGV, Segmentation fault. 0xb7ce2797 in ?? () from /lib/i386-linux-gnu/i686/cmov/libc.so.6 (gdb) bt #0 0xb7ce2797 in ?? () from /lib/i386-linux-gnu/i686/cmov/libc.so.6 #1 0x0804c63a in main (argc=2, argv=0xb764) at main.c:903 (gdb) Problem confirmed! Also found an other related problem. Are you willing to give attached version a try? Thanks in advance. Folkert van Heusden -- Multi tail barnamaj mowahib li mora9abat attasjilat wa nataij awamir al 7asoub. damj, talwin, mora9abat attarchi7 wa ila akhirih. http://www.vanheusden.com/multitail/ -- Phone: +31-6-41278122, PGP-key: 1F28D8AE, www.vanheusden.com httping-1.5.4.tgz Description: application/gtar-compressed
Bug#686196: httping: Segmentation fault (after slow responses?)
On Fri, Aug 31, 2012 at 12:59 PM, folkert folk...@vanheusden.com wrote: Problem confirmed! Also found an other related problem. Are you willing to give attached version a try? Thanks in advance. Sure BTW, is there a VCS available for httping? Would be nice to easily find out what changed when. -- Olaf -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#683184: RFS: suckless-tools/39-1 [ITA]
On Thu, Aug 30, 2012 at 10:04 PM, Jakub Wilk jw...@debian.org wrote: Now I realized that the other tarballs were created in a wrong directory, too. (“This target […] leaves [the tarball] in the current directory.” — Policy §4.9) Hmm.. So I need to leave the tarballs in the directory from where rules is executed? eg debian/rules get-orig-source should leave them in package root directory and if I execute make -f rules get-orig-source it should execute in the debian/ directory? The word current directory actually confuses me :-) I was not aware of this policy (I should read policy document properly). Any way will fix this tonight Regards -- Vasudev Kamath http://copyninja.info copyninja@{frndk.de|vasudev.homelinux.net} -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#683336: RFS: ninja-build/120508+git638b033
(I don't intend to sponsor this package.) * Gary Kramlich g...@reaperworld.com, 2012-08-01, 23:43: I've now uploaded the 120715 upstream release to mentors. It appears to be here: http://mentors.debian.net/debian/pool/main/n/ninja-build/ninja-build_120715.dsc Why is it a native package? Architecture: i386 amd64 - why one these two? It FTBFS here: | fakeroot debian/rules clean | debian/rules:5: /usr/share/hardening-includes/hardening.make: No such file or directory | dh /usr/share/hardening-includes/hardening.make | dh: Unknown sequence /usr/share/hardening-includes/hardening.make (choose from: binary binary-arch binary-indep build build-arch build-indep clean install install-arch install-indep) | make: *** [/usr/share/hardening-includes/hardening.make] Error 255 -- Jakub Wilk -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#683184: RFS: suckless-tools/39-1 [ITA]
* Vasudev Kamath kamathvasu...@gmail.com, 2012-08-31, 16:40: Now I realized that the other tarballs were created in a wrong directory, too. (“This target […] leaves [the tarball] in the current directory.” — Policy §4.9) Hmm.. So I need to leave the tarballs in the directory from where rules is executed? eg debian/rules get-orig-source should leave them in package root directory and if I execute make -f rules get-orig-source it should execute in the debian/ directory? Yes. -- Jakub Wilk -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686266: [Pkg-parrot-devel] Bug#686266: parrot: FTBFS on hurd-i386
tags 686266 pending forwarded 686266 https://github.com/parrot/parrot/pull/822 kthxbye On Thu, Aug 30, 2012 at 08:41:02PM +0200, Svante Signell wrote: Source: parrot Version: 4.3.0-2 Severity: important Tags: patch Usertags: hurd User: debian-h...@lists.debian.org Hello, the patch inlined below enables a successful build of parrot for GNU/Hurd. The patch use the same settings as for GNU/Linux (and GNU/kFreeBSD). Thanks! --- a/config/init/hints.pm 2012-08-30 20:18:57.0 +0200 +++ b/config/init/hints.pm 2012-08-30 19:58:12.0 +0200 @@ -37,6 +37,7 @@ my $osname = lc( $conf-data-get('OSNAME_provisional') ); $osname = 'linux' if ($osname eq 'gnukfreebsd'); +$osname = 'linux' if ($osname eq 'gnu'); my $hints_file_name = $conf-options-get('hintsfile') || $osname ; $hints_file = catfile('config', 'init', 'hints', $hints_file_name.pm); Looks good. Thanks. -- perl -E '$_=q;$/= @{[@_]};and s;\S+;inidehG ordnasselA;eg;say~~reverse' signature.asc Description: Digital signature
Bug#686338: mysql-utilities - New Upstream version
On Fri, 31 Aug 2012 19:45:52 Jonas Genannt wrote: could you please package the newest upstream version (1.0.6)? Don't you worry, I will, after release of Wheezy. Cheers, Dmitry. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686344: unblock: simplesamlphp/1.9.2.-1
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi, Please unblock package simplesamlphp. It's a security-update only release that further tightens the screws on the security issue addressed in 1.9.1, after further discussion with the scientists who discovered the issue. The debdiff is very simple. Please unblock simplesamlphp/1.9.2.-1 Thanks, Thijs diff -Nru simplesamlphp-1.9.1/debian/changelog simplesamlphp-1.9.2/debian/changelog --- simplesamlphp-1.9.1/debian/changelog 2012-08-06 14:58:01.0 +0200 +++ simplesamlphp-1.9.2/debian/changelog 2012-08-29 17:45:36.0 +0200 @@ -1,3 +1,11 @@ +simplesamlphp (1.9.2-1) unstable; urgency=medium + + * New upstream security release: +Fix possible issue in PKCS 1.5 encryption when a key is +correctly decrypted but its length is not the one expected. + + -- Thijs Kinkhorst th...@debian.org Wed, 29 Aug 2012 15:43:31 + + simplesamlphp (1.9.1-1) unstable; urgency=medium * New upstream security release: diff -Nru simplesamlphp-1.9.1/docs/simplesamlphp-changelog.txt simplesamlphp-1.9.2/docs/simplesamlphp-changelog.txt --- simplesamlphp-1.9.1/docs/simplesamlphp-changelog.txt 2012-08-02 08:25:33.0 +0200 +++ simplesamlphp-1.9.2/docs/simplesamlphp-changelog.txt 2012-08-29 10:19:20.0 +0200 @@ -6,6 +6,12 @@ This document lists the changes between versions of simpleSAMLphp. See the upgrade notes for specific information about upgrading. +## Version 1.9.2 + +Released 2012-08-29 + + * Fix related to the security issue addressed in version 1.9.1. + ## Version 1.9.1 Released 2012-08-02. diff -Nru simplesamlphp-1.9.1/lib/SAML2/Utils.php simplesamlphp-1.9.2/lib/SAML2/Utils.php --- simplesamlphp-1.9.1/lib/SAML2/Utils.php 2012-08-02 08:25:23.0 +0200 +++ simplesamlphp-1.9.2/lib/SAML2/Utils.php 2012-08-29 10:19:12.0 +0200 @@ -393,6 +393,10 @@ try { $key = $encKey-decryptKey($symmetricKeyInfo); +if (strlen($key) != $keySize) { + throw new Exception('Unexpected key size (' . strlen($key) * 8 . 'bits) for encryption algorithm: ' . + var_export($symmetricKey-type, TRUE)); +} } catch (Exception $e) { /* We failed to decrypt this key. Log it, and substitute a random key. */ SimpleSAML_Logger::error('Failed to decrypt symmetric key: ' . $e-getMessage()); diff -Nru simplesamlphp-1.9.1/lib/SimpleSAML/Configuration.php simplesamlphp-1.9.2/lib/SimpleSAML/Configuration.php --- simplesamlphp-1.9.1/lib/SimpleSAML/Configuration.php 2012-08-02 08:28:37.0 +0200 +++ simplesamlphp-1.9.2/lib/SimpleSAML/Configuration.php 2012-08-29 11:16:57.0 +0200 @@ -5,7 +5,7 @@ * * @author Andreas Aakre Solberg, UNINETT AS. andreas.solb...@uninett.no * @package simpleSAMLphp - * @version $Id: Configuration.php 3136 2012-08-02 06:28:37Z olavmrk $ + * @version $Id: Configuration.php 3152 2012-08-29 09:16:57Z jaim...@gmail.com $ */ class SimpleSAML_Configuration { @@ -295,7 +295,7 @@ * @return string */ public function getVersion() { - return '1.9.1'; + return '1.9.2'; }
Bug#686196: httping: Segmentation fault (after slow responses?)
Problem confirmed! Also found an other related problem. Are you willing to give attached version a try? Thanks in advance. BTW, is there a VCS available for httping? Would be nice to easily find out what changed when. I indeed use SVN but I do not dare to give public access to it as I sometimes commit code with embarrassing mistakes and such. I also noticed that I occasionally sleepwalk and that I then do sleepcoding - as you can imagine that is then horrible code. Not to mention the explicit language in the comments written then. Folkert van Heusden -- MultiTail cok yonlu kullanimli bir program, loglari okumak, verilen kommandolari yerine getirebilen. Filter, renk verme, merge, 'diff- view', vs. http://www.vanheusden.com/multitail/ -- Phone: +31-6-41278122, PGP-key: 1F28D8AE, www.vanheusden.com -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#651312: Source oddity - empty debian diff
Package: httpfs2 Version: 0.1.4-1 Followup-For: Bug #651312 Hello, this is intentional for this package. Thanks Michal -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#685458: xterm: Segmentation fault with -t option specified
On Wed, Aug 29, 2012 at 09:49:33AM +0200, Cyril Brulebois wrote: Hi, Thomas Dickey dic...@his.com (28/08/2012): however, I did make additional fixes (4 additional occurrences) in this area, and the original report on which I based my changes wasn't for the Tektronix option. It would be nice if the Debian package were updated to #281 (two months old). I'm currently working on #282, and if there were fixes needed as a result of updating to #281, those would be reflected in #282. diff against current package is (excluding configure): 47 files changed, 3795 insertions(+), 1152 deletions(-) Sorry, but this is not something I want to (or can) review as a maintainer, or as a release team member. Especially since there's AFAICT nothing like a git or svn repository I could clone to check individual commits. Actually my suggestion was for a new unstable version (you appear to be working on the assumption that I was proposing to propagate #281 to testing, etc - not realistic given Debian's freeze/release process). The change we're discussing was part of #280, and is (by itself) relatively easy to review: * add null-pointer checks to input-method caching added in [292]patch #277 to fix a problem in the exposure code, when deselecting a window (report by Kriston Rehberg). Here are the relevant chunks: --- charproc.c 2012/05/10 10:51:37 1.1205 +++ charproc.c 2012/05/24 18:02:25 1.1206 @@ -1,4 +1,4 @@ -/* $XTermId: charproc.c,v 1.1204 2012/05/10 10:32:49 tom Exp $ */ +/* $XTermId: charproc.c,v 1.1205 2012/05/10 10:51:37 tom Exp $ */ /* * Copyright 1999-2011,2012 by Thomas E. Dickey @@ -3970,7 +3970,7 @@ XPoint spot; XVaNestedList list; -if (input-xic +if (input input-xic (ld = getLineData(screen, screen-cur_row)) != 0) { spot.x = (short) LineCursorX(screen, ld, screen-cur_col); spot.y = (short) (CursorY(screen, screen-cur_row) + xw-misc.xim_fs_ascent); @@ -7474,7 +7474,7 @@ { TInput *input = lookupTInput(xw, (Widget) xw); -if (input-xim) { +if (input input-xim) { XCloseIM(input-xim); input-xim = 0; TRACE((freed screen-xim\n)); @@ -8051,8 +8051,8 @@ TRACE((xim_destroy_cb im=%lx, client=%p, call=%p\n, (long) im, client_data, call_data)); - -input-xic = NULL; +if (input) + input-xic = NULL; XRegisterIMInstantiateCallback(XtDisplay(xw), NULL, NULL, NULL, xim_instantiate_cb, NULL); } --- input.c 2012/03/15 00:01:30 1.334 +++ input.c 2012/05/24 18:02:25 1.335 @@ -1,4 +1,4 @@ -/* $XTermId: input.c,v 1.333 2012/01/07 02:01:05 tom Exp $ */ +/* $XTermId: input.c,v 1.334 2012/03/15 00:01:30 tom Exp $ */ /* * Copyright 1999-2011,2012 by Thomas E. Dickey @@ -832,7 +832,7 @@ { #if OPT_I18N_SUPPORT OPT_INPUT_METHOD TInput *input = lookupTInput(xw, (Widget) xw); - if (input-xic) { + if (input input-xic) { Status status_return; #if OPT_WIDE_CHARS if (screen-utf8_mode) { --- misc.c 2012/05/07 23:35:34 1.588 +++ misc.c 2012/05/24 18:02:25 1.589 @@ -1,4 +1,4 @@ -/* $XTermId: misc.c,v 1.586 2012/04/15 16:00:56 tom Exp $ */ +/* $XTermId: misc.c,v 1.588 2012/05/07 23:35:34 tom Exp $ */ /* * Copyright 1999-2011,2012 by Thomas E. Dickey @@ -180,7 +180,7 @@ { #if OPT_I18N_SUPPORT OPT_INPUT_METHOD TInput *input = lookupTInput(xw, (Widget) xw); - if (input-xic) + if (input input-xic) XSetICFocus(input-xic); #endif @@ -218,7 +218,7 @@ { #if OPT_I18N_SUPPORT OPT_INPUT_METHOD TInput *input = lookupTInput(xw, (Widget) xw); - if (input-xic) + if (input input-xic) XUnsetICFocus(input-xic); #endif -- Thomas E. Dickey dic...@invisible-island.net http://invisible-island.net ftp://invisible-island.net signature.asc Description: Digital signature
Bug#683142: unblock: bdii/5.2.12-1
On 2012-07-31 10:49, Mattias Ellert wrote: sön 2012-07-29 klockan 12:46 +0200 skrev Niels Thykier: On 2012-07-29 06:47, Mattias Ellert wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: freeze-exception unblock bdii/5.2.12-1 Hi! The bdii package was removed from testing due to an RC bug, together with the packages that depends on it. The 5.2.12-1 update fixes the RC bug (bug #663444). I would like to request a freeze exception for this update to allow the bdii package and the packages depending on it to be part of the release. Mattias Why did you include a new upstream release in this? It makes it harder for us to review and reduces the chance for you to get the unblock? Does this upstream release have important bug fixes, if so what are they? Hi Mattias, I had been preparing an update to a new upstream release for a long time before finally making the upload. On several occasions I have completed a potential update and then looked at the BTS and thought that I should fix that RC bug before doing the upload. Since fixing the RC bug was not trivial this always ment that I held off doing the upload. I finally did fix the RC bug. The fixed package compared to the last package I prepared and did not upload was really just fixing the RC bug. My problem is; this RC bug was reported in March. It receives no (public) reply from you until you close it with the 5.2.12-1. While you do have a point that conffile handling is not trivial, the reporter gave you a link to http://wiki.debian.org/DpkgConffileHandling to assist you. That page has both the old school handling and plenty of references to the dpkg-maintscript-helper tool. Failing that, an email to d-mentors could easily have given you the answer within a day. Sorry, but I do not buy the 4 month delay for fixing this. The changes in the package between the previous upload and the new one are very minor. It is true that if you list the files changed the list is not short, but most of the changed files are in the debian directory. These changes are there to do the fix of the RC bug, fix some lintian warnings and update the copyright file to the new recommended format. The changes to the patches are just dropping the parts of the patches that were accepted upstream and rebasing the remaining parts. These changes I get and I can (mostly) ignore. My primary concern is actually the upstream changes. Admittedly I am not too pleased with the dh_pysupport - dh_python... For the changes to the upstream itself, i.e. the files outside the debian directory. These are mainly changes to the default configuration to reduce the memory consumption and to add support for IPv6. Those changes sound nice to have, especially lack of IPv6 is in fact starting to be a bit sad. The problem here is timing; during the freeze we have to manually review this stuff. [...] I haven't read the full diff, so there are possibly more issues lurking in it. In its current state, I am not inclined to grant an exception. ~Niels PS: urgency=high is no effect when the package is not in testing (in case you weren't aware of it) I was not aware. However, the package was in testing until 2 days before I did the upload. The fact the package was removed made the update very urgent - and then the urgency is ignored because it was removed Well... I don't make the rules. Urgency describes how important it is for people to upgrade their package. If bdii had still been in testing, the urgency would have made (partly?) sense... Anyway, it is hardly a problem, so just a FYI. :) I can make another update using the dpkg-maintscript-helper script instead of my own not-so-great fix. If you truly do not want to take advantage of the fixes for memory usage and IPv6 support I could also upload a version where I backport the fix for the RC bug to the 5.2.5 version. But I personally think using the new version would be better. Let me know what you think is petter. Mattias Please do not get me wrong; I like improvements as much as every one else, but I don't like having to manually review them. I believe the RC bug fix on 5.2.5-2 should be reasonable sane and lets take that as a starting point. ~Niels -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686293: Freeze exception for libquantum/1.1.0-3
On 2012-08-31 00:21, Boris Pek wrote: Package: release.debian.org Severity: normal Dear release team, Please consider a release exception for the package libquantum version 1.1.0-3. Best regards, Boris Looks fine, feel free to go ahead and ping us when it has been in unstable for a couple of days. ~Niels -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686345: closing a single-window gimp instance should be easier
Package: gimp Version: 2.8.0-2+b1 Severity: minor Hi, when running Gimp in Single-Window Mode, multiple images are opened as tabs inside the main window, this is great. However, closing such a session is problematic: - you can close single tabs by clicking the X of the tab or pressing ^w - you can close all tabs by pressing Shift-^w - you can exit gimp by pressing ^q - you cannot exit gimp by clicking the X of the main window, this will only close the current tab I think the last point is wrong. In multi-window mode, the behaviour is correct, I close as single window with a single image. In single-window I expect to close the whole application as I am closing the window that contains everything (this is e.g. done by all browsers I know). Regards Evgeni -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.5-trunk-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages gimp depends on: ii gimp-data 2.8.0-2 ii libaa1 1.4p5-40 ii libatk1.0-0 2.4.0-2 ii libbabl-0.1-0 0.1.10-1 ii libbz2-1.0 1.0.6-4 ii libc6 2.13-35 ii libcairo2 1.12.2-2 ii libdbus-1-3 1.6.2-2 ii libdbus-glib-1-20.100-1 ii libexif12 0.6.20-3 ii libfontconfig1 2.9.0-7 ii libfreetype62.4.9-1 ii libgdk-pixbuf2.0-0 2.26.1-1 ii libgegl-0.2-0 0.2.0-2 ii libgimp2.0 2.8.0-2+b1 ii libglib2.0-02.32.3-1 ii libgs9 9.05~dfsg-6 ii libgtk2.0-0 2.24.10-2 ii libgudev-1.0-0 175-7 ii libjasper1 1.900.1-13 ii libjpeg88d-1 ii liblcms11.19.dfsg-1.2 ii libmng1 1.0.10-3 ii libpango1.0-0 1.30.0-1 ii libpng12-0 1.2.49-3 ii libpoppler-glib80.18.4-3 ii librsvg2-2 2.36.1-1 ii libtiff43.9.6-7 ii libwebkitgtk-1.0-0 1.8.1-3.1 ii libwmf0.2-7 0.2.8.4-10 ii libx11-62:1.5.0-1 ii libxcursor1 1:1.1.13-1 ii libxext62:1.3.1-2 ii libxfixes3 1:5.0-4 ii libxmu6 2:1.1.1-1 ii libxpm4 1:3.5.10-1 ii python 2.7.3-2 ii python-gtk2 2.24.0-3 ii python2.7 2.7.3-4 ii zlib1g 1:1.2.7.dfsg-13 Versions of packages gimp recommends: ii ghostscript 9.05~dfsg-6 Versions of packages gimp suggests: pn gimp-data-extras none pn gimp-help-en | gimp-help none ii gvfs-backends 1.12.3-1+b1 ii libasound21.0.25-4 -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686346: dpkg is wrong about the install state of docbook-mathml, making the system in inconsistent state
Package: dpkg Version: 1.16.8 Severity: serious I did the following: ay:~ sudo apt-get install --purge debian-archive-keyring debian-faq debian-goodies debianutils deborphan desktop-file-utils dialog dict dict-foldoc dict-wn dictd dictionaries-common dictzip doc-base docbook-defguide- docbook-dsssl- docbook-mathml- docbook-simple- docbook-slides- docbook-website- docbook-xml- docdiff gif2png gettext gettext-base gettext-el ghostscript ghostscript-x Reading package lists... Done Building dependency tree Reading state information... Done The following extra packages will be installed: fontconfig-config libasprintf0c2 libfontconfig1 libgettextpo0 libgs9 libgs9-common Suggested packages: xdg-utils jed-extra dhelp dwww doc-central yelp khelpcenter4 httpd gettext-doc ghostscript-cups hpijs The following packages will be REMOVED: docbook-defguide* docbook-dsssl* docbook-mathml* docbook-simple* docbook-slides* docbook-website* docbook-xml* rarian-compat* scrollkeeper* xmlto* The following NEW packages will be installed: libasprintf0c2 libgettextpo0 The following packages will be upgraded: debian-archive-keyring debian-faq debian-goodies debianutils deborphan desktop-file-utils dialog dict dict-foldoc dict-wn dictd dictionaries-common dictzip doc-base docdiff fontconfig-config gettext gettext-base gettext-el ghostscript ghostscript-x gif2png libfontconfig1 libgs9 libgs9-common 25 upgraded, 2 newly installed, 10 to remove and 546 not upgraded. Need to get 0 B/23.0 MB of archives. After this operation, 23.4 MB disk space will be freed. Do you want to continue [Y/n]? apt-get started to remove packages, but for docbook-mathml, dpkg said that it wasn't installed: Preconfiguring packages ... (Reading database ... 89406 files and directories currently installed.) Removing docbook-defguide ... Removing docbook-dsssl ... Purging configuration files for docbook-dsssl ... dpkg: warning: ignoring request to remove docbook-mathml which isn't installed Removing docbook-slides ... Purging configuration files for docbook-slides ... Removing docbook-simple ... Purging configuration files for docbook-simple ... Removing docbook-website ... Purging configuration files for docbook-website ... [...] apt-get ended with a zero exit status, but due to the above problem, the system is now in an inconsistent state: ay:~ sudo apt-get dist-upgrade -s Reading package lists... Done Building dependency tree Reading state information... Done You might want to run 'apt-get -f install' to correct these. The following packages have unmet dependencies: docbook-mathml : Depends: docbook-xml (= 4.1.2-4) but it is not installed E: Unmet dependencies. Try using -f. docbook-mathml is still in dpkg -l output: ii docbook-mathml 1.0.0-2 Extension to DocBook XML for using MathML markup I don't know about what is special with docbook-mathml, except for the warning dpkg-query: warning: parsing file '/var/lib/dpkg/status' near line 13551 package 'docbook-mathml': missing architecture due to bug 620958. -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (900, 'testing'), (900, 'stable'), (200, 'unstable') Architecture: powerpc (ppc) Kernel: Linux 2.6.26-1-powerpc Locale: LANG=POSIX, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages dpkg depends on: ii libbz2-1.0 1.0.6-4 ii libc62.13-35 ii liblzma5 5.1.1alpha+20120614-1 ii libselinux1 2.1.9-2 ii tar 1.26-4 ii zlib1g 1:1.2.6.dfsg-2 dpkg recommends no packages. Versions of packages dpkg suggests: ii apt 0.9.7.2 -- no debconf information -- debsums errors found: dpkg-query: warning: parsing file '/var/lib/dpkg/status' near line 5289 package 'inn2': missing architecture dpkg-query: warning: parsing file '/var/lib/dpkg/status' near line 8592 package 'libgdbmg1': missing architecture dpkg-query: warning: parsing file '/var/lib/dpkg/status' near line 11216 package 'libnewt0': missing architecture dpkg-query: warning: parsing file '/var/lib/dpkg/status' near line 13551 package 'docbook-mathml': missing architecture dpkg-query: warning: parsing file '/var/lib/dpkg/status' near line 23016 package 'libpcd': missing architecture dpkg-query: warning: parsing file '/var/lib/dpkg/status' near line 31393 package 'inn2-inews': missing architecture dpkg-query: warning: parsing file '/var/lib/dpkg/status' near line 33462 package 'libisc4': missing architecture dpkg-divert: warning: parsing file '/var/lib/dpkg/status' near line 5289 package 'inn2': missing architecture dpkg-divert: warning: parsing file '/var/lib/dpkg/status' near line 8592 package 'libgdbmg1': missing architecture dpkg-divert: warning: parsing file '/var/lib/dpkg/status' near line 11216 package 'libnewt0': missing architecture dpkg-divert: warning: parsing file '/var/lib/dpkg/status' near line 13551 package
Bug#686347: logrotate ignores 'size' parameter
Package: logrotate Version: 3.7.8-6 Severity: normal Tags: squeeze LOG: http://pastebin.com/sHKtj8QP -- Package-specific info: Contents of /etc/logrotate.d total 40 -rw-r--r-- 1 root root 194 Apr 1 09:15 apache2 -rw-r--r-- 1 root root 173 Oct 28 2010 apt -rw-r--r-- 1 root root 79 Oct 16 2010 aptitude -rw-r--r-- 1 root root 232 Sep 14 2010 dpkg -rw-r--r-- 1 root root 146 May 12 2011 exim4-base -rw-r--r-- 1 root root 126 May 12 2011 exim4-paniclog -rw-r--r-- 1 root root 72 May 4 2010 heartbeat -rw-r--r-- 1 root root 858 Aug 31 11:55 mysql-server -rw-r--r-- 1 root root 840 Aug 31 12:38 mysql-server-test -rw-r--r-- 1 root root 515 Aug 5 2010 rsyslog -- System Information: Debian Release: 6.0.5 APT prefers stable APT policy: (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 3.2.13-grsec--grs-ipv6-64 (SMP w/8 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages logrotate depends on: ii base-passwd 3.5.22 Debian base system master password ii cron 3.0pl1-116 process scheduling daemon ii libc6 2.11.3-3 Embedded GNU C Library: Shared lib ii libpopt0 1.16-1 lib for parsing cmdline parameters ii libselinux1 2.0.96-1 SELinux runtime shared libraries Versions of packages logrotate recommends: ii bsd-mailx [mailx] 8.1.2-0.20100314cvs-1 simple mail user agent logrotate suggests no packages. -- Configuration Files: /etc/cron.daily/logrotate [Errno 2] No such file or directory: u'/etc/cron.daily/logrotate' -- no debconf information
Bug#686329: atop crashes if /var/run/ is nearly full
On Fri, Aug 31, 2012 at 09:38:43AM +0200, Jan Niehusmann wrote: If the partition where the process accounting file, /var/run/atop/atop.acct is located, is close to full (98%, depending on kernel settings), the kernel stops writing process accounting entries. (Log message in kern.log: Process accounting paused) Subsequently, acctvers(fd) in acctproc.c fails reading a version number from the accounting file, and doesn't initialize the acctrecsz variable. This, in turn, leads to a division by zero in acctprocnt(void): atop[4631] trap divide error ip:4060a8 sp:7fffd6992c90 error:0 in atop[40+1c000] Set severity to minor, as this only happens under unusual circumstances and it's trivial to work around using the ATOPACCT variable (according to the man page - not verified). If you can reproduce this, please retry with a backport of atop 1.26. There have been changes in this area of atop. I can give you a backported package if you want to. Greetings Marc -- - Marc Haber | I don't trust Computers. They | Mailadresse im Header Mannheim, Germany | lose things.Winona Ryder | Fon: *49 621 31958061 Nordisch by Nature | How to make an American Quilt | Fax: *49 621 31958062 -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686348: libnids-dev: nids.h is missing a dependency on libpcap.h
Package: libnids-dev Version: 1.23-1.1 Severity: normal Originally found on Ubuntu, but the Ubuntu folks tell me the package is taken straight from Debian so should be reported here. nids.h includes pcap.h. But I can install libnids-dev without libpcap being found as a dependency. That leaves the configure script of a package I'm trying to install telling me misleadingly that it can't find nids.h. -- System Information: Debian Release: squeeze/sid APT prefers lucid-updates APT policy: (500, 'lucid-updates'), (500, 'lucid-security'), (500, 'lucid') Architecture: i386 (i686) Kernel: Linux 2.6.31-23-generic (SMP w/2 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages libnids-dev depends on: ii libc6-dev 2.11.1-0ubuntu7.10 Embedded GNU C Library: Developmen ii libnids1.21 1.23-1.1 IP defragmentation TCP segment rea libnids-dev recommends no packages. libnids-dev suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686349: man-db: provide option to skip database build process
Package: man-db Version: 2.6.2-1 Severity: wishlist This step: echo Building database of manual pages ... 2 run_mandb -cq in postinst can take quite some time. Especially when building Debian packages in an automated fashion this can be quite a waste of build time and resources AFAICT. It would be nice if there'd be a simple way to skip this step (simple as in no need to dpkg-divert any files from man-db when being executed inside pbuilder/cowbuilder/... environment :)) regards, -mika- -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/2012-08-31t14-48...@devnull.michael-prokop.at
Bug#685353: qemu-kvm 1.1.1 hangs using 100% CPU when using ES1370 emulation
retitle 685353 kvm process hangs with 100% CPU usage when using sound emulation severity 685353 normal thanks Hi Michael, * Michael Tokarev schrieb: On 30.08.2012 22:03, malc wrote: On Thu, 30 Aug 2012, Mike Gerber wrote: [] Vassily: Anything else you need when the hang happens again? Unfortunately I'll have to go into production with the guest, and I can't spend more weeks with this bug after this week end. Audio compiled without optimzations which should give meaningful backtrace and contents of local variables. Mike, are you able to do that? You can grab either the upstream qemu-kvm sources or debian sources, remove all -Oxx references or adding -O0, and recompile (`apt-get build-dep qemu-kvm' will install all necessary deps). I had to 1. Replace CFLAGS 2. Call configure with --enable-debug in debian/rules of the package to get rid of all -O2s. (Not sure what happens when you have both -O0 and -O2.) A test (full) backtrace didn't contain any optimized out values anymore, so I think this is OK. Or I can compile it for you if you prefer. Not necessary, but maybe you could consider adding a debug switch in debian/ rules to have the package built without optimizations. I'm somewhat familiar with customizing Debian packages, others maybe not. Michael: I noticed that this bug (#685353) is RC, so please rate it down if you think it is appropiate. I doubt that many people will hit it. It was you who marked this bug as grave, right? :) Yes, before I knew it was connected to excessive use of the sound emulation and weird sample rates :) Yes it does not look like something many people will hit. Are you okay with downgrading it to normal or important ? Yes, this email should do it. Thanks, Mike -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686281: crash after uninstalling all the plugins
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 I've the same problem after uninstalling all the plugins, exposure-blend and ppracer (gimp:17383): Gtk-CRITICAL **: IA__gtk_tree_model_get: assertion `GTK_IS_TREE_MODEL (tree_model)' failed (script-fu:17389): LibGimpBase-WARNING **: script-fu: gimp_wire_read(): error Erreur de segmentation - -- Bertrand Grondin http://grondin.tuxfamily.org -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://www.enigmail.net/ iF4EAREIAAYFAlBAtmYACgkQsDqcESDFOb+HnwEAzEc/FJaSkj4FefYnaYIEWwNK pzLNUR27CJrxuPYLU80BALWdQoU0EFo122J0c/9XYt32qcR2OwqtJnYRRHOmuuAz =tzKG -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#656746: For the record
Hi, last but not least, some clarification on these rc bugs: Unfortunately, both bugs (632955 656746) can't be fixed in 0.8.x, as they are by design -- it does 'it all' on package configuration/installation time, which usually needs human interaction. Furthermore, secret keys are generated which might also just stall if the system lacks entropy. Fortunately, this is all irrelevant for the upcoming 1.0.0* version, now (waiting) in experimental. 0.8.x will not see further updates in Debian; I will eventually provide a special 0.8.x 'PPD' for that for installations that really don't want to upgrade (would become really relevant for wheezy+1, however ;). HtH, Stephan -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686350: DDPO: shows versions in pink in experimental even in case of up-to-date package
Package: qa.debian.org Severity: normal Hello, you can look it up on my DDPO page[1]: several new upstream releases were uploaded to experimental (during the freeze) but the version column still shows the package as if it needs an update. [1] http://qa.debian.org/developer.php?login=mo...@debian.org Regards, Sandro -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.4-trunk-amd64 (SMP w/8 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#680470: Two security issues: AST-2012-010 / AST-2012-011
On Fri, Aug 31, 2012 at 12:14:05PM +0200, Moritz Muehlenhoff wrote: On Thu, Aug 30, 2012 at 07:43:21PM +0300, Tzafrir Cohen wrote: On Thu, Aug 30, 2012 at 05:51:46PM +0200, Moritz Muehlenhoff wrote: On Fri, Jul 06, 2012 at 08:06:56AM +0200, Moritz Muehlenhoff wrote: Package: asterisk Severity: grave Tags: security http://downloads.asterisk.org/pub/security/AST-2012-010.html (no CVE yet) http://downloads.asterisk.org/pub/security/AST-2012-011.html (CVE-2012-3812) Regarding AST-2011-011 and Squeeze: It appears to be the result of wrong fixes for a memory leak (see commit message below). I have not tries to apply the original memory leak fix (r354889 is the one on branch 1.8) or a proper version of it on the the version in Squeeze. Note that memory leak fixes normally don't get an advisory and there are quite a few of them in the 1.8 branch so I'm not sure I would bother just for this one. Short version: technically does not apply. 1.6 is not mentioned in the Affected versions, but I haven't validated whether because it's no longer supported/tracked upstream or because the issues are not present. Can you double-check? For sid/wheezy, please remember that we're in freeze and only isolated fixes are to be made instead of updating to a new full upstream release. Once you've uploaded, please send an unblock request by filing a bug against the release.debian.org pseudo package. What's the status? This is marked pending for nearly two months now! For some reason I had the impression we had 1.8.13.1 packaged. I would suggest to upload 1.8.13.1 , which is exactly 1.8.13.0 + the fixes for those two issues: http://svnview.digium.com/svn/asterisk/tags/1.8.13.1/?view=log For the record, they were fixed in the branch in: http://svnview.digium.com/svn/asterisk?view=revisionrevision=369652 http://svnview.digium.com/svn/asterisk?view=revisionrevision=369436 Note, however, that today we had the following commits: http://svnview.digium.com/svn/asterisk?view=revisionrevision=372015 http://svnview.digium.com/svn/asterisk?view=revisionrevision=371998 So this is juas a good a timing as any for a new package. Two new issues have been announced, we should incorporate these: CVE-2012-2186: http://downloads.digium.com/pub/security/AST-2012-012.html Note the wording. Issue is not compltely mitigated. There are still methods of sneaking in unwanted functionality (e.g. through setting Asterisk environment variables). CVE-2012-4737: http://downloads.digium.com/pub/security/AST-2012-013.html -- Tzafrir Cohen icq#16849755 jabber:tzafrir.co...@xorcom.com +972-50-7952406 mailto:tzafrir.co...@xorcom.com http://www.xorcom.com iax:gu...@local.xorcom.com/tzafrir -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686351: /usr/sbin/grub-probe: grub-probe : erreur : no such disk.
Package: grub-common Version: 1.99-22.1 Severity: minor File: /usr/sbin/grub-probe Hi, When running: grub-probe --verbose / I get the following message: grub-probe : info : Scanning for dmraid_nv RAID devices on disk hd0. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : scanning hd0 for LVM. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : no LVM signature found. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : Scanning for mdraid09 RAID devices on disk hd0. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : Scanning for mdraid1x RAID devices on disk hd0. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : Scanning for mdraid09 RAID devices on disk hd0. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : Scanning for mdraid09 RAID devices on disk hd0,msdos5. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : Scanning for mdraid09 RAID devices on disk hd0,msdos1. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : Scanning for mdraid1x RAID devices on disk hd0. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : Scanning for mdraid1x RAID devices on disk hd0,msdos5. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : Scanning for mdraid1x RAID devices on disk hd0,msdos1. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : scanning hd0 for LVM. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : no LVM signature found. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : scanning hd0,msdos5 for LVM. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : no LVM signature found. grub-probe : info : scanning hd0,msdos1 for LVM. grub-probe : info : the size of hd0 is 312581808. grub-probe : info : no LVM signature found. grub-probe : info : changing current directory to /dev/mapper. grub-probe : info : opening eldamar-root. grub-probe : erreur : no such disk. My root partition (ext4) is on a top of an LVM and an LUKS partition I'm not sure that anything is actually broken. Cheers Laurent Bigonville -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.4-trunk-amd64 (SMP w/4 CPU cores) Locale: LANG=fr_BE.utf8, LC_CTYPE=fr_BE.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages grub-common depends on: ii gettext-base0.18.1.1-9 ii libc6 2.13-35 ii libdevmapper1.02.1 2:1.02.74-4 ii libfreetype62.4.9-1 ii libfuse22.9.0-5 ii zlib1g 1:1.2.7.dfsg-13 Versions of packages grub-common recommends: ii os-prober 1.55 Versions of packages grub-common suggests: ii desktop-base 7.0.3 pn grub-emu none pn multiboot-doc none pn xorrisonone -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#680470: Two security issues: AST-2012-010 / AST-2012-011
On Fri, Aug 31, 2012 at 12:14:05PM +0200, Moritz Muehlenhoff wrote: CVE-2012-2186: http://downloads.digium.com/pub/security/AST-2012-012.html I almost forgot: While patching, I noticed that the squeeze backport for AST-2012-004 was incomplete. The part left out is: http://anonscm.debian.org/viewvc/pkg-voip/asterisk/branches/squeeze/debian/patches/AST-2012-004-MixMonitor?revision=9938view=markup I added it in as well. I have packages ready for Unstable (1.8.13.1 + patches) and Squeeze (1.6.2.9-2+squeeze7). -- Tzafrir Cohen icq#16849755 jabber:tzafrir.co...@xorcom.com +972-50-7952406 mailto:tzafrir.co...@xorcom.com http://www.xorcom.com iax:gu...@local.xorcom.com/tzafrir -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686183: cross-building binutils fails due to --strip-program setting including paramters
W dniu 29.08.2012 18:39, Wookey pisze: If binutils is cross-built, using DEB_BUILD_OPTIONS=nocheck dpkg-buildpackage -aarmhf -uc -us This results in install failing because 'install' is run with --strip-program=arm-linux-gnueabihf-strip --remove-section=.comment --remove-section=.note which of course results in 'file not found', because --strip-program is expecting an actual binary name. This works on the native build because install_binary = install -m 755 -s i.e. does not include the --strip-program setting. There is no --strip-options setting in install so far as I can see, so if this behvaiour is important then I think it can only be done with a wrapper script. Attached patch fixes strip problem and also changes debian/control handling to make sure that proper file is generated for cross builds. diff -Naur /usr/src/binutils/debian/rules debian/rules --- /usr/src/binutils/debian/rules 2012-08-22 16:16:16.0 +0200 +++ debian/rules 2012-08-31 14:18:33.770224213 +0200 @@ -105,7 +105,8 @@ CROSS := $(DEB_HOST_GNU_TYPE)- CC = $(CROSS)gcc CXX = $(CROSS)g++ - STRIP= $(CROSS)strip --remove-section=.comment --remove-section=.note + STRIP= $(CURDIR)/debian/strip.cross + #$(CROSS)strip --remove-section=.comment --remove-section=.note install_binary = install -m 755 -s --strip-program=$(STRIP) endif @@ -311,9 +312,12 @@ -rm -rf debian/patched debian/tmp debian/files* debian/substvars -rm -f debian/*.orig debian/*.rej -rm -rf $(d_cross) debian/files debian/substvars - -rm -rf builddir-$(TARGET) {configure,build,install}-cross-stamp + -rm -rf builddir-$(TARGET) {configure,build,install}-cross-stamp ontrol-stamp + -rm -rf debian/strip.cross + cp debian/control.in debian/control for i in debian/*.in; do \ case $$i in debian/control*.in) continue; esac; \ + case $$i in debian/strip.cross.in) continue; esac; \ rm -f $${i%*.in}; \ done @@ -321,7 +325,7 @@ -debian/control: debian/control.in $(if $(TARGET),debian/control.cross.in) +control-stamp: debian/control.in $(if $(TARGET),debian/control.cross.in) ifneq (,$(TARGET)) sed /^$$/ q debian/control.in debian/control sed -e s/__TARGET__/$$(echo -n $(TARGET) | sed s/_/-/g)/ \ @@ -329,6 +333,12 @@ else cp debian/control.in debian/control endif +ifneq (,$(CROSS)) + sed -e s/__TARGET__/$$(echo -n $(CROSS) | sed s/_/-/g)/ \ + debian/strip.cross.in debian/strip.cross + chmod 755 debian/strip.cross +endif + touch $@ ### # single-arch targets # @@ -339,7 +349,7 @@ SINGLE_CONFARGS += --enable-ld=default --enable-gold endif -configure-single-stamp: patch-stamp debian/control +configure-single-stamp: patch-stamp control-stamp $(checkdir) ifeq ($(with_check),yes) @@ -919,7 +929,6 @@ dpkg --build $(d_cross) .. else - cp debian/control.in debian/control : # generate some control helper files nver=$$(echo $(DEB_UPSTREAM) | awk -F. '{ OFS=.; $$NF=$$NF+1; print }'); \ for i in debian/*.in; do \ @@ -1191,7 +1200,7 @@ CONFARGS += --enable-ld=default --enable-gold endif -configure-cross-stamp: patch-stamp debian/control +configure-cross-stamp: patch-stamp control-stamp $(checkdir) test != $(TARGET) rm -rf configure-cross-stamp builddir-$(TARGET) diff -Naur /usr/src/binutils/debian/strip.cross.in debian/strip.cross.in --- /usr/src/binutils/debian/strip.cross.in 1970-01-01 01:00:00.0 +0100 +++ debian/strip.cross.in 2012-08-31 13:27:28.766166672 +0200 @@ -0,0 +1 @@ +__TARGET__strip --remove-section=.commend --remove-section=.note $*
Bug#686352: [collection/objdump-info] Handle setugid files, too
Package: lintian Version: 2.5.10.1 Severity: normal Tags: patch Hi, Just like the strings collection in #533618, the objdump-info collection only operates on files for which the file-info starts with ELF; this will fail if Lintian is run as root (as in a pbuilder environment) and file(1) reports setuid, setgid or a similar string before the ELF keyword. What do you think about the trivial attached patch that changes the check in the same way as the strings check earlier and other checks in the Lintian source? Thanks a lot for writing and maintaining this excellent tool! G'luck, Peter -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (990, 'testing'), (500, 'stable') Architecture: i386 (i686) Kernel: Linux 3.2.0-3-686-pae (SMP w/4 CPU cores) Locale: LANG=bg_BG.UTF-8, LC_CTYPE=bg_BG.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages lintian depends on: ii binutils 2.22-6.1 ii bzip2 1.0.6-4 ii diffstat 1.55-3 ii file 5.11-2 ii gettext0.18.1.1-9 ii hardening-includes 2.2 ii intltool-debian0.35.0+20060710.1 ii libapt-pkg-perl0.1.26+b1 ii libarchive-zip-perl1.30-6 ii libc-bin 2.13-35 ii libclass-accessor-perl 0.34-1 ii libclone-perl 0.31-1+b2 ii libdpkg-perl 1.16.8 ii libemail-valid-perl0.190-1 ii libipc-run-perl0.91-1 ii libparse-debianchangelog-perl 1.2.0-1 ii libtimedate-perl 1.2000-1 ii liburi-perl1.60-1 ii locales2.13-35 ii man-db 2.6.2-1 ii patchutils 0.3.2-1.1 ii perl [libdigest-sha-perl] 5.14.2-12 lintian recommends no packages. Versions of packages lintian suggests: ii binutils-multiarch 2.22-6.1 ii dpkg-dev 1.16.8 ii libhtml-parser-perl3.69-2 pn libperlio-gzip-perlnone ii libtext-template-perl 1.45-2 ii man-db 2.6.2-1 ii xz-utils [lzma]5.1.1alpha+20120614-1 -- no debconf information From 0a2d045682e54482e8b6d7f80f1c40c9ebf18471 Mon Sep 17 00:00:00 2001 From: Peter Pentchev r...@ringlet.net Date: Fri, 31 Aug 2012 16:23:54 +0300 Subject: [PATCH] Collect objdump info from set[ug]id ELF files too. --- collection/objdump-info |2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/collection/objdump-info b/collection/objdump-info index 097124b..d23ef3f 100755 --- a/collection/objdump-info +++ b/collection/objdump-info @@ -58,7 +58,7 @@ $opts{pipe_in}-blocking(1); foreach my $bin ($info-sorted_index) { my $finfo = $info-file_info ($bin); -if ($finfo =~ m/^\bELF\b/) { +if ($finfo =~ m/^[^,]*\bELF\b/) { printf {$opts{pipe_in}} %s\0, $bin; } } -- 1.7.10.4 signature.asc Description: Digital signature
Bug#680470: Two security issues: AST-2012-010 / AST-2012-011
On Fri, Aug 31, 2012 at 04:23:44PM +0300, Tzafrir Cohen wrote: Regarding AST-2011-011 and Squeeze: It appears to be the result of wrong fixes for a memory leak (see commit message below). I have not tries to apply the original memory leak fix (r354889 is the one on branch 1.8) or a proper version of it on the the version in Squeeze. Note that memory leak fixes normally don't get an advisory and there are quite a few of them in the 1.8 branch so I'm not sure I would bother just for this one. Short version: technically does not apply. I've updated the Debian Security Tracker. CVE-2012-2186: http://downloads.digium.com/pub/security/AST-2012-012.html Note the wording. Issue is not compltely mitigated. There are still methods of sneaking in unwanted functionality (e.g. through setting Asterisk environment variables). Yes, I think the correct fix here is to point to he updated best practice documentation by upstream. Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686287: Could you explain more?
On 31. aug. 2012 05:12, Thomas Goirand wrote: Hi Andre, Could you explain a bit more what needs to be done in the ip6tables, in the init script? Should I just create a MiniUPnP chain in the forward table as well? I'm ok to write that part, though I need directions. Only rule that is needed it the one in FORWARD, and just use ip6tables instead of iptables. Keep in mind the ip6tables ruleset is separate from the iptables ones though, so it needs to have its own dupe/dirty checks (same parameters as with iptables). -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686329: atop crashes if /var/run/ is nearly full
Hi Marc, On Fri, Aug 31, 2012 at 02:39:22PM +0200, Marc Haber wrote: If you can reproduce this, please retry with a backport of atop 1.26. There have been changes in this area of atop. I can give you a backported package if you want to. It's easy to reproduce. With a command like echo 99 99 30 /proc/sys/kernel/acct you can make the kernel suspend process accounting unless the filesystem is 99% empty. With that, I verified that the issue occurs with the following versions of atop: - 1.23-1+squeeze1 from squeeze - 1.26-2 from wheezy/sid - upstream version 1.27-3 (note that with 1.27, upstream changed the default location of the accounting file to /tmp/atop.d/atop.acct) Regards, Jan -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686353: weave incompatibilities with g++ 4.4
Package: python-scipy Version: 0.7.2+dfsg1-1 Severity: important Tags: patch upstream While building backport packages of new python-brian release I ran into a known issue: /usr/lib/python2.6/dist-packages/scipy/weave/blitz/blitz/mathfunc.h: In static member function 'static long int blitz::_bz_abslong int::apply(long int)': /usr/lib/python2.6/dist-packages/scipy/weave/blitz/blitz/mathfunc.h:45: error: 'labs' is not a member of 'std' ... which was fixed upstream (6e1155ea14e85efdb6c3d944ded3583c12d01778) and even patched in Ubuntu's elderly version of scipy: http://projects.scipy.org/scipy/attachment/ticket/739/weave-739.patch So I would recommend applying this patch in Debian stable squeeze version of scipy and shipping it via updates. I am attaching the proposed patch refreshed for Debian package -- System Information: Debian Release: 6.0.5 APT prefers stable APT policy: (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-5-amd64 (SMP w/8 CPU cores) Locale: LANG=en_US, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages python-scipy depends on: ii libamd2.2.0 1:3.4.0-2approximate minimum degree orderin ii libatlas3gf-base [libla 3.8.3-27 Automatically Tuned Linear Algebra ii libblas3gf [libblas.so. 1.2-8Basic Linear Algebra Reference imp ii libc6 2.11.3-3 Embedded GNU C Library: Shared lib ii libgcc1 1:4.4.5-8GCC support library ii libgfortran34.4.5-8 Runtime library for GNU Fortran ap ii liblapack3gf [liblapack 3.2.1-8 library of linear algebra routines ii libstdc++6 4.4.5-8 The GNU Standard C++ Library v3 ii libumfpack5.4.0 1:3.4.0-2sparse LU factorization library ii python 2.6.6-3+squeeze7 interactive high-level object-orie ii python-central 0.6.16+nmu1 register and build utility for Pyt ii python-numpy1:1.4.1-5Numerical Python adds a fast array Versions of packages python-scipy recommends: ii g++ [c++-compiler]4:4.4.5-1 The GNU C++ compiler ii g++-4.3 [c++-compiler]4.3.5-4The GNU C++ compiler ii g++-4.4 [c++-compiler]4.4.5-8The GNU C++ compiler Versions of packages python-scipy suggests: ii python-profiler 2.6.6-1deterministic profiling of any Pyt -- no debconf information ---BeginMessage--- Origin: http://projects.scipy.org/scipy/attachment/ticket/739/weave-739.patch Applied-Upstream: 6e1155ea14e85efdb6c3d944ded3583c12d01778 Last-Update: 2012-08-31 --- a/scipy/weave/blitz/blitz/mathfunc.h +++ b/scipy/weave/blitz/blitz/mathfunc.h @@ -12,6 +12,8 @@ #include blitz/prettyprint.h #endif +#include cstdlib + BZ_NAMESPACE(blitz) // abs(P_numtype1)Absolute value --- a/scipy/weave/blitz/blitz/blitz.h +++ b/scipy/weave/blitz/blitz/blitz.h @@ -65,6 +65,8 @@ #define BZ_THROW // Needed in blitz/numinquire.h +#include cstdlib + BZ_NAMESPACE(blitz) #ifdef BZ_HAVE_STD --- a/scipy/weave/blitz/blitz/prettyprint.h +++ b/scipy/weave/blitz/blitz/prettyprint.h @@ -22,6 +22,8 @@ #ifndef BZ_PRETTYPRINT_H #define BZ_PRETTYPRINT_H +#include cstdlib + BZ_NAMESPACE(blitz) class prettyPrintFormat { ---End Message---
Bug#686346: dpkg is wrong about the install state of docbook-mathml, making the system in inconsistent state
Hi! On Fri, 2012-08-31 at 14:17:46 +0200, Vincent Lefevre wrote: Package: dpkg Version: 1.16.8 Severity: serious apt-get started to remove packages, but for docbook-mathml, dpkg said that it wasn't installed: [...] dpkg: warning: ignoring request to remove docbook-mathml which isn't installed [...] apt-get ended with a zero exit status, but due to the above problem, the system is now in an inconsistent state: ay:~ sudo apt-get dist-upgrade -s Reading package lists... Done Building dependency tree Reading state information... Done You might want to run 'apt-get -f install' to correct these. The following packages have unmet dependencies: docbook-mathml : Depends: docbook-xml (= 4.1.2-4) but it is not installed E: Unmet dependencies. Try using -f. docbook-mathml is still in dpkg -l output: ii docbook-mathml 1.0.0-2 Extension to DocBook XML for using MathML markup Could you send send also the dpkg log, apt history and term log for that session, and the problematic dpkg status file? (you might want to sanitize the status file, or you can send it privately to me otherwise). I'm taking a look, but those would be of much help. thanks, guillem -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686290: Switch to interface name for listening ip?
On 31. aug. 2012 04:32, Thomas Goirand wrote: On 08/31/2012 05:14 AM, Andre Tomt wrote: Package: miniupnpd Version: 1.7-4 Not sure what to make of severity. Its pretty much a requirement for IPv6. As for most of your bug submission, these are request for new features, so this falls under the wishlist. Just have a look to what reportbug explains for the bug definitions: 6 normal: a bug that does not undermine the usability of the whole package; for example, a problem with a particular option or menu item. vs 8 wishlist: suggestions and requests for new features. Your request clearly falls into the wishlist category. Debateable ;) According to the upstream documentation this is a requirement for IPv6 and I'm pretty sure working IPv6 support is a release goal (though we are too late for wheezy anyway I guess). Yup - http://wiki.debian.org/ReleaseGoals/FullIPv6Support But I admit, for some of my submissions I've just been to lazy to do any thinking about the severity. I'll try harder, hehe Also, my time working on this package is limited. So if you wish to have such new features added in Debian (which would really be great), I would strongly suggest that you also start working on the problems and provide patches, not just comments in the BTS. Otherwise I will have to close the bugs after 6 months of inactivity (that's just basic bug triaging, the issue stays in the BTS archive). OK. I'm fine with providing patches, and will attempt to do so for my remaining issues. Is there repository somewhere that has the latest changes not yet uploaded to the archive? I'd prefer working against something that is more closely tracking actual development if possible. Not a requirement but if its already available publicly somewhere that would be super nice. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#686184: yodl: FTBFS on i386
On 08/30/2012 11:56 PM, Svante Signell wrote: Hi, I've seen this bug report and am working on a solution. Odd that it only happens on Linux/i386. New patch will follow soon. The errors I see on an i386 box are different from the buildd errors. Will compare compiler, libc, etc versions too. Hi Svante: I was able to immediately reproduce the problem on an i386 box, but then wasn't able to reproduce it on another i386 (running wheezy, but not in a chroot) yesterday. So this leads me to believe that it might be environmental as well. Thank you for looking into it on your side as well. Cheers, tony signature.asc Description: OpenPGP digital signature
Bug#686354: ppp: [INTL:ru] Russian debconf templates translation update
Package: ppp Version: 2.4.5-5.1 Severity: wishlist Tags: l10n patch Dear Maintainer, *** Please consider answering these questions, where appropriate *** * What led up to the situation? * What exactly did you do (or not do) that was effective (or ineffective)? * What was the outcome of this action? * What outcome did you expect instead? *** End of the template - remove these lines *** Russian debconf templates translation update is attached. -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-3-amd64 (SMP w/4 CPU cores) Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ru.po.gz Description: GNU Zip compressed data
Bug#686209: synaptic: Repositories window fails to open
On Wed, Aug 29, 2012 at 10:34:59PM +0200, Jacob Aaron Ferrero wrote: Package: synaptic Version: 0.75.13 Severity: normal Dear Maintainer, It seems to be right after adding multiarch support with dpkg the repositories window fails to open. Please see the console output below: Traceback (most recent call last): File /usr/bin/software-properties-gtk, line 104, in module app = SoftwarePropertiesGtk(datadir=options.data_dir, options=options, file=file) File /usr/lib/python2.7/dist- packages/softwareproperties/gtk/SoftwarePropertiesGtk.py, line 85, in __init__ SoftwareProperties.__init__(self, options=options, datadir=datadir) File /usr/lib/python2.7/dist- packages/softwareproperties/SoftwareProperties.py, line 96, in __init__ self.reload_sourceslist() File /usr/lib/python2.7/dist- packages/softwareproperties/SoftwareProperties.py, line 584, in reload_sourceslist self.distro.get_sources(self.sourceslist) File /usr/lib/python2.7/dist-packages/aptsources/distro.py, line 87, in get_sources raise NoDistroTemplateException(Error: could not find a aptsources.distro.NoDistroTemplateException: Error: could not find a distribution template Thanks for your bugreport. What is the output of: $ lsb_release -a ? Thanks, michael -- System Information: Debian Release: wheezy/sid Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.2.0-3-amd64 (SMP w/8 CPU cores) Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages synaptic depends on: ii hicolor-icon-theme 0.12-1 ii libapt-inst1.5 0.9.7.4 ii libapt-pkg4.12 0.9.7.4 ii libatk1.0-0 2.4.0-2 ii libc6 2.13-35 ii libcairo2 1.12.2-2 ii libept1.4.121.0.9 ii libfontconfig1 2.9.0-7 ii libfreetype62.4.9-1 ii libgcc1 1:4.7.1-7 ii libgdk-pixbuf2.0-0 2.26.1-1 ii libglib2.0-02.32.3-1 ii libgtk2.0-0 2.24.10-2 ii libpango1.0-0 1.30.0-1 ii libstdc++6 4.7.1-7 ii libvte9 1:0.28.2-5 ii libx11-62:1.5.0-1 ii libxapian22 1.2.12-1 ii zlib1g 1:1.2.7.dfsg-13 Versions of packages synaptic recommends: ii gksu 2.0.2-6 ii libgtk2-perl 2:1.244-1 ii policykit-1 0.105-1 ii rarian-compat0.8.1-5 ii software-properties-gtk 0.82.7.1debian1 Versions of packages synaptic suggests: ii apt-xapian-index 0.45 pn deborphan none pn dwww none ii menu 2.1.46 -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org