Bug#783339: INTERVAL hours miscomputed

[Amit Tewari]

Package: postgresql-9.1
Version: 9.1.15-0+deb7u1
Severity: important
File: postgresql

Dear Maintainer,

When "hours" are used in INTERVAL computations, #hours used in computations are 
double the #hours intended.
sample queries have been included below.

issue_tracker=> SELECT version(); SELECT now();
version
---
 PostgreSQL 9.1.15 on x86_64-unknown-linux-gnu, compiled by gcc (Debian 
4.7.2-5) 4.7.2, 64-bit
(1 row)

  now
---
 2015-04-26 05:56:30.177713+00
(1 row)

issue_tracker=> SELECT issue_guid, time from issue_comments where issue_guid in 
 ('9FS6') and time > current_date - INTERVAL '4 hours' order  by 1 desc,2 asc; 
issue_guid | time
+---
 9FS6   | 2015-04-25 21:29:49.634983+00
 9FS6   | 2015-04-26 00:32:15.62193+00
 9FS6   | 2015-04-26 01:29:31.390987+00
 9FS6   | 2015-04-26 04:53:43.580836+00
 9FS6   | 2015-04-26 04:57:07.377853+00
 9FS6   | 2015-04-26 05:36:58.890024+00
(6 rows)

issue_tracker=> SELECT issue_guid, time from issue_comments where issue_guid in 
 ('9FS6') and time > current_date - INTERVAL '8 hours' order  by 1 desc,2 asc; 
issue_guid | time
+---
 9FS6   | 2015-04-25 16:16:34.876737+00
 9FS6   | 2015-04-25 16:19:11.695349+00
 9FS6   | 2015-04-25 16:48:28.876748+00
 9FS6   | 2015-04-25 16:49:15.693228+00
 9FS6   | 2015-04-25 18:35:26.722351+00
 9FS6   | 2015-04-25 21:29:49.634983+00
 9FS6   | 2015-04-26 00:32:15.62193+00
 9FS6   | 2015-04-26 01:29:31.390987+00
 9FS6   | 2015-04-26 04:53:43.580836+00
 9FS6   | 2015-04-26 04:57:07.377853+00
 9FS6   | 2015-04-26 05:36:58.890024+00
(11 rows)

issue_tracker=>

-- System Information:
Debian Release: 7.8
  APT prefers oldstable
  APT policy: (500, 'oldstable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.10.12-20130925-1206-a58b552 (SMP w/16 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash

Versions of packages postgresql-9.1 depends on:
ii  libc6  2.13-38+deb7u8
ii  libcomerr2 1.42.5-1.1+deb7u1
ii  libgssapi-krb5-2   1.10.1+dfsg-5+deb7u3
ii  libkrb5-3  1.10.1+dfsg-5+deb7u3
ii  libldap-2.4-2  2.4.31-2
ii  libpam0g   1.1.3-7.1
ii  libpq5 9.1.15-0+deb7u1
ii  libssl1.0.01.0.1e-2+deb7u16
ii  libxml22.8.0+dfsg1-7+wheezy4
ii  locales2.13-38+deb7u8
ii  postgresql-client-9.1  9.1.15-0+deb7u1
ii  postgresql-common  134wheezy4
ii  ssl-cert   1.0.32
ii  tzdata 2014j-0wheezy1

postgresql-9.1 recommends no packages.

Versions of packages postgresql-9.1 suggests:
pn  locales-all 
pn  oidentd | ident-server  

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783337: apt: Please remove me from Uploaders

[Christian Perrier]

Package: apt
Version: 1.1~exp8
Severity: minor

Hello,

I'm no longer really involved in APT development (including i18n), so
I think it's the time for me to suggest that my name is removed from
the Uploaders field of debian/control.

Of course, I'd be happy to help in case of "emergency" but I'd prefer
Uploaders in packages to really reflect that I'm still involved in
them. I'm listed in way too many packages..:-)


-- Package-specific info:

-- (no /etc/apt/preferences present) --


-- /etc/apt/sources.list --

# Sid
deb http://ftp.de.debian.org/debian sid main contrib non-free
#deb ftp://kheops.homeunix.org/pub/mirror/debian sid main contrib non-free

#deb http://ftp.de.debian.org/debian experimental main contrib non-free
#deb ftp://kheops.homeunix.org/pub/mirror/debian experimental main contrib 
non-free

deb-src http://ftp.de.debian.org/debian sid main contrib non-free
#deb-src ftp://kheops.homeunix.org/pub/mirror/debian sid main contrib non-free

deb-src http://ftp.de.debian.org/debian wheezy main contrib non-free
#deb-src ftp://kheops.homeunix.org/pub/mirror/debian wheezy main contrib 
non-free

deb-src http://ftp.de.debian.org/debian experimental main contrib non-free
#deb-src ftp://kheops.homeunix.org/pub/mirror/debian experimental main contrib 
non-free


-- System Information:
Debian Release: 8.0
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages apt depends on:
ii  adduser 3.113+nmu3
ii  debian-archive-keyring  2014.3
ii  gnupg   1.4.18-7
ii  gnupg2  2.0.26-6
ii  libapt-pkg4.15  1.1~exp8
ii  libc6   2.19-18
ii  libgcc1 1:4.9.2-10
ii  libstdc++6  4.9.2-10

apt recommends no packages.

Versions of packages apt suggests:
ii  apt-doc 1.0.9.8
ii  aptitude0.6.11-1+b1
ii  dpkg-dev1.17.25
ii  python-apt  0.9.3.11
ii  synaptic0.81.3

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783247: Please don't install acpid and acpi-support-base

[Christian PERRIER]

Quoting Michael Biebl (bi...@debian.org):
> Package: hw-detect
> Version: 1.108
> Severity: normal
> Tags: patch
> 
> Hi!
> 
> While installing a jessie (GNOME) desktop with the latest RC3 installer,
> I noticed that we still install acpid and acpi-support-base.
> 
> A while ago, I already filed a bug to have acpid and acpi-support-base
> removed from tasksel [1], since it duplicates functionality which is
> nowadays provided by systemd/logind.
> 
> The same reasons apply to debian-installer.
> I therefor would like to see those packages dropped from hw-detect as
> well.


For the record, I plan to commit your patch to D-I's git as soon as
Cyril officially raises the "virtual freeze" we currently have in D-I
packages (master branches being targeted at the Jessie release).




signature.asc
Description: Digital signature

Bug#783336: celestia: crashes on launch with assert() failure with nvidia libGL

[Jonathan Lane]

Package: celestia
Version: 1.6.1+dfsg-3.1
Severity: important

Dear Maintainer,

celestia-glut is broken in Jessie on nvidia hardware.  This appears to be the 
same bug reported here:

https://bugs.launchpad.net/ubuntu/+source/nvidia-graphics-drivers-319/+bug/1248642

Rebuilding the package from source with the nvidia drivers loaded leads 
celestia-glut to crash with "segmentation fault" instead of the assert() 
failure mentioned in that bug report.

celestia-gnome continues to work properly.

-- System Information:
Debian Release: 8.0
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16.0-4-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages celestia depends on:
ii  celestia-glut  1.6.1+dfsg-3.1

celestia recommends no packages.

celestia suggests no packages.

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783091: (no subject)

[Dima Kogan]

I implemented another feature along these lines.

Added several external commands that trigger on failure. The way these are
intended to be used is to spawn a shell if something goes wrong so that the user
can poke around and find the problem. Most commonly you would do

  sbuild --anything-failed-commands %s

Currently we have

 --build-deps-failed-commands
 --build-failed-commands
 --anything-failed-commands

Where --anything-failed-commands simply activates all of the others

THis is in my git tree as well:

http://anonscm.debian.org/cgit/users/dkogan-guest/sbuild.git/commit/?id=17209f938dfdceae9a8e6985b46ef8a05b52087b


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#782672: (no subject)

[Dima Kogan]

I made some minor updates and some documentation. The new patch is in my
git tree, together with some more of my patches:

http://anonscm.debian.org/cgit/users/dkogan-guest/sbuild.git/commit/?id=522d7ad3591ffcfac128ceae35687304c978d8de


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783091: (no subject)

[Dima Kogan]

I added some documentation. New patch is in my git tree:

http://anonscm.debian.org/cgit/users/dkogan-guest/sbuild.git/commit/?id=49b88a50a448775a6b3a0dffc828811a20c03c24


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783335: sbuild: [PATCH] If Build-Depends can't be parsed, I now error loudly

[Dima Kogan]

Package: sbuild
Version: 0.65.2-1dima8
Severity: normal

Hi. Before this patch it was possible for sbuild to continue after
mis-parsed Build-Depends. This would result in mysterious failures later
on. This patch checks for the error and barfs.

The patch is in my git branch of sbuild that contains other changes as well:

 
https://anonscm.debian.org/cgit/users/dkogan-guest/sbuild.git/commit/?id=c5ae674bf9938cc7d55581b2db6771d666765d95

-- System Information:
Debian Release: 8.0
Architecture: amd64 (x86_64)
Foreign Architectures: armhf, armel, i386

Kernel: Linux 3.16-3-amd64 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) (ignored: LC_ALL set to C)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages sbuild depends on:
ii  adduser 3.113+nmu3
ii  apt-utils   1.0.9.5
ii  libsbuild-perl  0.65.2-1dima8
ii  perl5.20.1-4

Versions of packages sbuild recommends:
ii  debootstrap  1.0.67
ii  fakeroot 1.20.2-1

Versions of packages sbuild suggests:
pn  deborphan  
ii  wget   1.16-3

-- Configuration Files:
/etc/sbuild/sbuild.conf changed:
1;


-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783331: wordpress: unable to install theme automatically

[Dmitry Smirnov]

Forgot to mention that I've added 

define('FS_METHOD', 'direct');

to `/etc/wordpress/config-default.php` to avoid FTP upload dialog when I 
attempt to install a theme.

-- 
All the best,
 Dmitry Smirnov.


signature.asc
Description: This is a digitally signed message part.

Bug#783332: apt-p2p: IPv6 is not supported in apt-p2p

[Tianming Xie]

Package: apt-p2p
Version: 0.1.8
Severity: wishlist

(referenced from https://bugs.launchpad.net/ubuntu/+source/apt-p2p/+bug/363337)
I took a quick look in the python sources of the apt-p2p and it seems like 
there is only IPv4 support in this program. IPv6 would be a nice enhancement.


-- System Information:
Debian Release: 8.0
  APT prefers testing
  APT policy: (900, 'testing'), (500, 'testing-proposed-updates'), (500, 
'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=zh_CN.utf8, LC_CTYPE=zh_CN.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages apt-p2p depends on:
ii  adduser  3.113+nmu3
ii  python   2.7.9-1
ii  python-apt   0.9.3.11
ii  python-debian0.1.27
ii  python-pysqlite2 2.6.3-3
ii  python-twisted-web2  8.1.0-3
pn  python:any   

apt-p2p recommends no packages.

apt-p2p suggests no packages.

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783331: wordpress: unable to install theme automatically

[Dmitry Smirnov]

Package: wordpress
Version: 4.1+dfsg-1
Severity: normal

This was probably reported before but let's start all over again:

I'm trying to add new theme, I click [Install] and got the following error:

Unpacking the package…
Could not create directory.

I fix this utterly unhelpful message using the following patch:


--- a/wp-admin/includes/file.php
+++ b/wp-admin/includes/file.php
@@ -628,9 +628,9 @@
 
// Create those directories if need be:
foreach ( $needed_dirs as $_dir ) {
if ( ! $wp_filesystem->mkdir($_dir, FS_CHMOD_DIR) && ! 
$wp_filesystem->is_dir($_dir) ) // Only check to see if the Dir exists upon 
creation failure. Less I/O this way.
-   return new WP_Error( 'mkdir_failed_ziparchive', __( 
'Could not create directory.' ), substr( $_dir, strlen( $to ) ) );
+   return new WP_Error( 'mkdir_failed_ziparchive', __( 
'Could not create directory '.$_dir ), substr( $_dir, strlen( $to ) ) );
}
unset($needed_dirs);
 
for ( $i = 0; $i < $z->numFiles; $i++ ) {


Now error message reveal the first problem:

Could not create directory /usr/share/wordpress/wp-content/upgrade

Indeed there is no such directory so I create missing symlink which is
probably should be installed by the package:

ln -sv /var/lib/wordpress/wp-content/upgrade 
/usr/share/wordpress/wp-content/upgrade

Now theme archive is extracted to `/var/lib/wordpress/wp-content/upgrade`
but there is another error:

Unpacking the package…
Installing the theme…
Could not create directory. /usr/share/wordpress/wp-content/themes/yo-manga/
Theme install failed.

Theme should be installed to `/var/lib/wordpress/wp-content/themes` instead of
`/usr/share/wordpress/wp-content/themes` so I'm trying to address that with the
following sloppy patch:


--- a/wp-admin/includes/class-wp-upgrader.php
+++ a/wp-admin/includes/class-wp-upgrader.php
@@ -364,8 +364,14 @@
 
$source_files = array_keys( $wp_filesystem->dirlist( 
$remote_source ) );
$remote_destination = $wp_filesystem->find_folder( 
$local_destination );
 
+   $remote_destination =  str_replace(
+   '/usr/share/wordpress',
+   '/var/lib/wordpress',
+   $remote_destination
+   );
+
//Locate which directory to copy to the new folder, This is 
based on the actual folder holding the files.
if ( 1 == count( $source_files ) && $wp_filesystem->is_dir( 
trailingslashit( $args['source'] ) . $source_files[0] . '/' ) ) { //Only one 
folder? Then we want its contents.
$source = trailingslashit( $args['source'] ) . 
trailingslashit( $source_files[0] );
} elseif ( count( $source_files ) == 0 ) {



Now installation is successful:

Unpacking the package…
Installing the theme…
Successfully installed the theme Yo! Manga 1.4.6.

Here I confirm that theme appears in 
`/var/lib/wordpress/wp-content/themes/yo-manga`
but not in the list of themes in wordpress because the latter completely ignores
`/var/lib/wordpress/wp-content/themes/`. So I make a symlink

ln -s /var/lib/wordpress/wp-content/themes/yo-manga 
/usr/share/wordpress/wp-content/themes/yo-manga

and only then new theme appears in wordpress.

Unfortunately my PHP knowledge is not sufficient to find how to teach
wordpress to look for themes in `/var/lib/wordpress/wp-content/themes`.

It seems that wordpress needs patching to use themes from
`/var/lib/wordpress/wp-content/themes`.
Package already ship trigger (I think) to symlink everything
from `/usr/share/wordpress/wp-content/themes/` to
`/var/lib/wordpress/wp-content/themes` so already installed themes
will not be affected.

-- 
Cheers,
 Dmitry Smirnov
 GPG key : 4096R/53968D1B

---

The truth is incontrovertible, malice may attack it, ignorance may deride
it, but in the end; there it is.
-- Winston Churchill


signature.asc
Description: This is a digitally signed message part.

Bug#762245: systemd-gpt-auto-generator fails determining block device of root file system

[Michael Biebl]

On Sat, 20 Sep 2014 10:45:03 +0900 Norbert Preining 
wrote:
> Sep 20 10:35:41 wienerschnitzel systemd-gpt-auto-generator[112]: Failed to 
> determine block device of root file system: No such file or directory
> Sep 20 10:35:41 wienerschnitzel systemd[102]: 
> /lib/systemd/system-generators/systemd-gpt-auto-generator failed with error 
> code 1.
..
> -/  /dev/sda7 btrfs  rw,relatime,ssd,space_cache
> +/  /dev/root btrfs  rw,relatime,ssd,space_cache


Does your custom kernel use an initramfs?
If you use the stock Debian kernel, is the problem is not reproducible?

Seems the same issue as
https://bugs.freedesktop.org/show_bug.cgi?id=84689

-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#751476: mutt: 1.5.22 major performance regression with color regexp matching

[Kevin J. McCarthy]

This may be fixed by http://dev.mutt.org/hg/mutt/rev/755a18da99bc just
committed upstream.  ~b has a pretty big performance regression fixed by
that changeset.

-Kevin


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#742627: mutt-patched: full text search (l + ~b ) is extremely slow

[Kevin J. McCarthy]

This may be fixed by http://dev.mutt.org/hg/mutt/rev/755a18da99bc
just committed upstream.


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783260: removes socket if opendkim is running

[Scott Kitterman]

On Sunday, April 26, 2015 01:28:37 AM Jelmer Vernooij wrote:
> Hi Scott,
> 
> On Fri, Apr 24, 2015 at 04:07:03PM -0400, Scott Kitterman wrote:
> > On Friday, April 24, 2015 07:31:19 PM Jelmer Vernooij wrote:
> > > Source: opendkim
> > > Version: 2.10.1-1
> > > Severity: normal
> > > 
> > > The opendkim init script unconditionally removes any sockets during
> > > start, even if these sockets are not stale.
> > > 
> > > This means that running 'service opendkim start' while opendkim is
> > > already running causes opendkim to become unavailable as it won't be
> > > restarted, but the socket will be removed.
> > 
> > Would you please locally modify the opendkim init with the attached change
> > and see if that resolves it for you?
> 
> I can confirm that that works, but unfortunately I am now also having
> trouble reproducing the original problem with the currently packaged
> version.
> 
> I'll let you know if I run into it again. Sorry for what seems like a
> spurious bug report. :-/

Thanks for checking.  What was there before was definitely wrong, so I'm glad I 
looked at it as a result of the report.

Scott K


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783330: reiserfsprogs: reiserfsck cannot be found at boot while "/" is reiserfs

[xiaowp]

Package: reiserfsprogs
Version: 1:3.6.24-1
Severity: normal
Tags: d-i


Dear Maintainer,


   I'm debian testing and using reiserfs as the "/" file system. I found there 
is a warning message at boot like this:
Begin: Checking root file system ... fsck from util-linux 2.25.2
/sbin/fsck.reiserfs: exec: line 18: /sbin/reiserfsck: not found
fsck exited with status code 2
done.
Warning: File system check failed but did not detect errors
   I think this bug would make a dirty root file system more and more dirty. 
Eventually a completely broken, unusable file system.
   After boot I checked /sbin/fsck.reiserfs and found it is a shell script, 
rather than a soft-link(which is the case in Archlinux).
   I got a simple solution like this: Rename fsck.reiserfs or delete it, and 
run "ln -s reiserfsck fsck.reiserfs" to get a soft-link of reiserfsck, and 
finally run "update-initramfs -u".




-- System Information:
Debian Release: 8.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386


Kernel: Linux 4.0.0-xwp (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)


Versions of packages reiserfsprogs depends on:
ii  libc6 2.19-18
ii  libuuid1  2.25.2-6


reiserfsprogs recommends no packages.


reiserfsprogs suggests no packages.


-- no debconf information

Bug#783329: reiserfsprogs: reiserfsck cannot be found at boot while "/" is reiserfs

[xiaowp]

Package: reiserfsprogs Version: 1:3.6.24-1 Severity: normal Tags: d-i Dear 
Maintainer, I'm debian testing and using reiserfs as the "/" file system. I 
found there is a warning message at boot like this: Begin: Checking root file 
system ... fsck from util-linux 2.25.2 /sbin/fsck.reiserfs: exec: line 18: 
/sbin/reiserfsck: not found fsck exited with status code 2 done. Warning: File 
system check failed but did not detect errors I think this bug would make a 
dirty root file system more and more dirty. Eventually a completely broken, 
unusable file system. After boot I checked /sbin/fsck.reiserfs and found it is 
a shell script, rather than a soft-link(which is the case in Archlinux). I 
checked the latest version(1:3.6.24-2), which is still the same shell script. I 
got a simple solution like this: Rename fsck.reiserfs or delete it, and run "ln 
-s reiserfsck fsck.reiserfs" to get a soft-link of reiserfsck, and finally run 
"update-initramfs -u". -- System Information: Debian Release: 8.0 APT prefers 
testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Foreign 
Architectures: i386 Kernel: Linux 4.0.0-xwp (SMP w/8 CPU cores) Locale: 
LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to 
/bin/dash Init: systemd (via /run/systemd/system) Versions of packages 
reiserfsprogs depends on: ii libc6 2.19-18 ii libuuid1 2.25.2-6 reiserfsprogs 
recommends no packages. reiserfsprogs suggests no packages. -- no debconf 
information

Bug#783328: gdc: Phobos D standard library not available on PowerPC

[Mehul Sanghvi]

Package: gdc
Version: 4.9.2-2
Severity: normal

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?

I was trying to learn D, and wrote the following program and tried to
compile it.  That did not occur.

bash% cat hello.d

import std.stdio;

void main()
{
   writeln("Hello World!");
}

bash% gdc hello.d
hello.d:2: error: module stdio is in file 'std/stdio.d' which cannot be read
import path[0] = /usr/include/d/4.9

   * What exactly did you do (or not do) that was effective (or
 ineffective)?
   * What was the outcome of this action?

The program did not compile due to missing standard library

   * What outcome did you expect instead?

The program should have cmopiled.

gdc based on the package page at
https://packages.debian.org/jessie/gdc has a dependency on
libphobos-dev.  This package is not available for PPC systems.  It
is available for a limited set of architectures.  Why is gdc availble
for installation on a CPU architecture if one of its dependencies is
not available on that same architecture ?   The installation should
not have occurred.

Since libphobos is not available, I would have expected that gdc would
not have installed.  Yet it did just that, install it self.

With libphobos not available, I can't make use of D.



-- System Information:
Debian Release: 8.0
  APT prefers testing
  APT policy: (990, 'testing')
Architecture: powerpc (ppc)

Kernel: Linux 3.13-1-powerpc-smp (SMP w/2 CPU cores)
Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages gdc depends on:
ii  gdc-4.9  4.9.2-10

gdc recommends no packages.

gdc suggests no packages.

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#781274: unblock: owncloud/7.0.4+dfsg-4

[David Prévot]

Hi,

On Sat, Apr 25, 2015 at 10:17:33PM +0200, Salvatore Bonaccorso wrote:

> David, CVE-2015-3011 is exploitable if a victim user tries to edit a
> specially crafted contact item which he has access to?

Indeed, I managed to craft a group name, allowing to inject JavaScript
when editing the contact. The fix prevent to execute such JavaScript.

On the other hand, I have not yet managed to figure out a PoC allowing
to share the crafted field with another user (but that’s probably just
me not being aware of all features: upstream description is pretty clear
about this attack vector. If the victim can only be the attacker, that
would be pointless anyway…).

Regards

David


signature.asc
Description: Digital signature

Bug#783260: removes socket if opendkim is running

[Jelmer Vernooij]

Hi Scott,

On Fri, Apr 24, 2015 at 04:07:03PM -0400, Scott Kitterman wrote:
> On Friday, April 24, 2015 07:31:19 PM Jelmer Vernooij wrote:
> > Source: opendkim
> > Version: 2.10.1-1
> > Severity: normal
> > 
> > The opendkim init script unconditionally removes any sockets during
> > start, even if these sockets are not stale.
> > 
> > This means that running 'service opendkim start' while opendkim is
> > already running causes opendkim to become unavailable as it won't be
> > restarted, but the socket will be removed.
> 
> Would you please locally modify the opendkim init with the attached change 
> and 
> see if that resolves it for you?

I can confirm that that works, but unfortunately I am now also having trouble
reproducing the original problem with the currently packaged version.

I'll let you know if I run into it again. Sorry for what seems like a spurious
bug report. :-/

Cheers,

Jelmer


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#776094: dovecot-imapd: corrupts mailbox after trying to retrieve it

[Andrew Worsley]

Sorry it might take me some time to get back to this bug. I was running
Jessie. The key problem here is reproducing the bug. Can you install and
run strace on the dovecot daemon or what ever program you think is messing
up the inbox?

Use -f to follow any fields and -o to save the output to a file. If it
happens so easily for you the should be very easy and would clarify a lot
the exact sequence of events required.

Bug#783327: lintian is suggesting tinymce2 package which isn't existing in current releases (except squeeze)

[Axel Beckert]

Hi Carsten,

thanks for that bug report.

Carsten Schoenert wrote:
> while running Lintian over a new package with a embedded copy of TinyMCE
> Lintian is suggesting to consider of usage for 'tinymce2' package.
> 
> > W: zarafa-webapp: embedded-javascript-library 
> > usr/share/zarafa-webapp/client/tinymce/plugins/compat3x/tiny_mce_popup.js 
> > please use tinymce2?
> 
> The tinymce2 package was droppend with Wheezy and later so the
> suggesting isn't useful and pointing into a wrong direction. Lintian
> should point to the package 'tinymce' instead.

Not only that. That question mark at the end of the package name looks
suspicious, too.

I currently assume we can safely remove both characters, the "2" and
the "?", from data/files/js-libraries. Will do so.

Regards, Axel
-- 
 ,''`.  |  Axel Beckert , http://people.debian.org/~abe/
: :' :  |  Debian Developer, ftp.ch.debian.org Admin
`. `'   |  4096R: 2517 B724 C5F6 CA99 5329  6E61 2FF9 CD59 6126 16B5
  `-|  1024D: F067 EA27 26B9 C3FC 1486  202E C09E 1D89 9593 0EDE


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#771784: More info

[Raphaël Halimi]

Also happens on 1.1.1-2 (jessie) with a VNC connection in full screen,
with MATE desktop (not specific to GNOME).

Regards,

-- 
Raphaël Halimi



signature.asc
Description: OpenPGP digital signature

Bug#783327: lintian is suggesting tinymce2 package which isn't existing in current releases (except squeeze)

[Carsten Schoenert]

Package: lintian
Version: 2.5.30+deb8u4
Severity: normal

Hello there,

while running Lintian over a new package with a embedded copy of TinyMCE
Lintian is suggesting to consider of usage for 'tinymce2' package.

> W: zarafa-webapp: embedded-javascript-library 
> usr/share/zarafa-webapp/client/tinymce/plugins/compat3x/tiny_mce_popup.js 
> please use tinymce2?

The tinymce2 package was droppend with Wheezy and later so the
suggesting isn't useful and pointing into a wrong direction. Lintian
should point to the package 'tinymce' instead.

Regards
Carsten

-- System Information:
Debian Release: 8.0
  APT prefers testing
  APT policy: (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: armhf

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.utf8, LC_CTYPE=de_DE.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages lintian depends on:
ii  binutils   2.25-5
ii  bzip2  1.0.6-7+b3
ii  diffstat   1.58-1
ii  file   1:5.22+15-2
ii  gettext0.19.3-2
ii  hardening-includes 2.6
ii  intltool-debian0.35.0+20060710.1
ii  libapt-pkg-perl0.1.29+b2
ii  libarchive-zip-perl1.39-1
ii  libclass-accessor-perl 0.34-1
ii  libclone-perl  0.37-1+b1
ii  libdpkg-perl   1.17.25
ii  libemail-valid-perl1.195-1
ii  libfile-basedir-perl   0.03-1
ii  libipc-run-perl0.92-1
ii  liblist-moreutils-perl 0.33-2+b1
ii  libparse-debianchangelog-perl  1.2.0-1.1
ii  libtext-levenshtein-perl   0.11-1
ii  libtimedate-perl   2.3000-2
ii  liburi-perl1.64-1
ii  man-db 2.7.0.2-5
ii  patchutils 0.3.3-1
ii  perl [libdigest-sha-perl]  5.20.2-3
ii  t1utils1.38-4

Versions of packages lintian recommends:
ii  libperlio-gzip-perl 0.18-3+b1
ii  perl5.20.2-3
ii  perl-modules [libautodie-perl]  5.20.2-3

Versions of packages lintian suggests:
pn  binutils-multiarch 
ii  dpkg-dev   1.17.25
ii  libhtml-parser-perl3.71-1+b3
pn  libtext-template-perl  
pn  libyaml-perl   
ii  xz-utils   5.1.1alpha+20120614-2+b3

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#782900: Acknowledgement (jessie-pu: package ircd-hybrid/1:8.2.0+dfsg.1-2+deb8u1)

[Dominic Hargreaves]

On Sat, Apr 25, 2015 at 11:06:28AM +0200, Julien Cristau wrote:
> Control: tags -1 moreinfo
> 
> On Mon, Apr 20, 2015 at 09:31:04 +0100, Dominic Hargreaves wrote:
> 
> > Note: I would also like to add the patch (the one attached to the ticket
> > was applied upstream) for #769741, if that's okay.
> > 
> Can you send an updated debdiff?

Sure, here it is.
diff --git a/debian/.git-dpm b/debian/.git-dpm
index aa3a238..e7a3437 100644
--- a/debian/.git-dpm
+++ b/debian/.git-dpm
@@ -1,6 +1,6 @@
 # see git-dpm(1) from git-dpm package
-49feddb590758a85ea6aae4a25a560763fa60526
-49feddb590758a85ea6aae4a25a560763fa60526
+83b433f88de24a42d039f7aa6505c6e8901c3121
+83b433f88de24a42d039f7aa6505c6e8901c3121
 f12b9d1d5307ac50ef9d526ed0c95d5113d7434e
 f12b9d1d5307ac50ef9d526ed0c95d5113d7434e
 ircd-hybrid_8.2.0+dfsg.1.orig.tar.gz
diff --git a/debian/changelog b/debian/changelog
index b2b316e..8279a3c 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,15 @@
+ircd-hybrid (1:8.2.0+dfsg.1-2+deb8u1) UNRELEASED; urgency=medium
+
+  * Remove Suggests: hybserv as the package isn't in jessie
+  * Fix a DoS from localhost clients backported from 8.2.6
+(Closes: #782859)
+  * Debconf configuration script no longer ignores the result of
+upgrade questions (Closes: #779082)
+  * Don't display upgrade warnings on new installs (Closes: #782883)
+  * Support chained SSL certificates (Closes: #769741)
+
+ -- Dominic Hargreaves   Sat, 18 Apr 2015 21:19:30 +0100
+
 ircd-hybrid (1:8.2.0+dfsg.1-2) unstable; urgency=medium
 
   * Updated Swedish debconf translation (Closes: #761974)
diff --git a/debian/control b/debian/control
index 1182ee8..ce7c683 100644
--- a/debian/control
+++ b/debian/control
@@ -25,7 +25,6 @@ Pre-Depends: debconf (>= 0.5) | debconf-2.0
 Depends: ${shlibs:Depends}, ${misc:Depends} 
 Provides: ircd
 Recommends: whois
-Suggests: hybserv
 Description: high-performance secure IRC server
  ircd-hybrid is a stable, high-performance IRC server that features:
  .
diff --git a/debian/ircd-hybrid.config.nossl b/debian/ircd-hybrid.config.nossl
index 5b88b4a..912027e 100644
--- a/debian/ircd-hybrid.config.nossl
+++ b/debian/ircd-hybrid.config.nossl
@@ -3,9 +3,10 @@
 set -e
 . /usr/share/debconf/confmodule
 
-if dpkg --compare-versions "$2" lt "1:8.0.9.dfsg.1-2"; then
+if dpkg --compare-versions "$2" lt-nl "1:8.0.9.dfsg.1-2"; then
 db_input high ircd-hybrid/upgrade_no_services_warn || true
 db_go
+db_get ircd-hybrid/upgrade_no_services_warn || true
 if [ "$RET" = "false" ]; then
 echo "Aborting install";
 db_fset ircd-hybrid/upgrade_no_services_warn seen false
diff --git a/debian/ircd-hybrid.config.ssl b/debian/ircd-hybrid.config.ssl
index 4d88433..22e50c0 100644
--- a/debian/ircd-hybrid.config.ssl
+++ b/debian/ircd-hybrid.config.ssl
@@ -3,9 +3,10 @@
 set -e
 . /usr/share/debconf/confmodule
 
-if dpkg --compare-versions "$2" lt "1:8.0.4.dfsg.1-1"; then
+if dpkg --compare-versions "$2" lt-nl "1:8.0.4.dfsg.1-1"; then
 db_input high ircd-hybrid/upgrade_secure_links_warn || true
 db_go
+db_get ircd-hybrid/upgrade_secure_links_warn
 if [ "$RET" = "false" ]; then
 echo "Aborting install";
 db_fset ircd-hybrid/upgrade_secure_links_warn seen false
@@ -13,9 +14,10 @@ if dpkg --compare-versions "$2" lt "1:8.0.4.dfsg.1-1"; then
 fi
 fi
 
-if dpkg --compare-versions "$2" lt "1:8.0.9.dfsg.1-2"; then
+if dpkg --compare-versions "$2" lt-nl "1:8.0.9.dfsg.1-2"; then
 db_input high ircd-hybrid/upgrade_no_services_warn || true
 db_go
+db_get ircd-hybrid/upgrade_no_services_warn || true
 if [ "$RET" = "false" ]; then
 echo "Aborting install";
 db_fset ircd-hybrid/upgrade_no_services_warn seen false
diff --git a/debian/patches/chained_certs.patch b/debian/patches/chained_certs.patch
new file mode 100644
index 000..8dc69d2
--- /dev/null
+++ b/debian/patches/chained_certs.patch
@@ -0,0 +1,30 @@
+From 83b433f88de24a42d039f7aa6505c6e8901c3121 Mon Sep 17 00:00:00 2001
+From: Stephen Rothwell 
+Date: Sun, 16 Nov 2014 12:50:09 +1100
+Subject: Enable use of chained certificates
+
+Bug-Debian: http://bugs.debian.org/769741
+Patch-Name: chained_certs.patch
+---
+ src/conf_parser.c | 8 
+ 1 file changed, 4 insertions(+), 4 deletions(-)
+
+diff --git a/src/conf_parser.c b/src/conf_parser.c
+index 5f43e69..85d54c6 100644
+--- a/src/conf_parser.c
 b/src/conf_parser.c
+@@ -2983,10 +2983,10 @@ yyreduce:
+   break;
+ }
+ 
+-if (SSL_CTX_use_certificate_file(ConfigServerInfo.server_ctx, yylval.string,
+- SSL_FILETYPE_PEM) <= 0 ||
+-SSL_CTX_use_certificate_file(ConfigServerInfo.client_ctx, yylval.string,
+- SSL_FILETYPE_PEM) <= 0)
++if (SSL_CTX_use_certificate_chain_file(ConfigServerInfo.server_ctx,
++	   yylval.string) <= 0 ||
++SSL_CTX_use_certificate_chain_file(ConfigServerInfo.client_ctx,
++	   yylval.string) <= 0)
+ {
+ 

Bug#783325: jessie rc3 requires nomodeset in grub.cfg to boot an i386 iMac with a radeon vga.

[Ben Hutchings]

Control: reassign -1 src:linux 3.16.7-ckt9-2

On Sat, 2015-04-25 at 15:41 -0700, David Henderson wrote:
> Package: firmware-linux-nonfree
[...]
> The package used for this report is "firmware-linux-nonfree" because I
> couldnt think of anything closer.
> This package does not have a driver for this model radeon vga.
[...]

Please use reportbug in future.  It would show you the message for this
package which explains how it is not the right package for reporting
driver problems.

I'm quite sure that this package does have firmware for your Radeon
chip, though that may not be obvious - naming of the Radeon models *is*
very confusing.  That's not the problem, it's a change in the actual
driver which is in linux-image-something.  I'm reassigning accordingly.

Ben.

-- 
Ben Hutchings
I'm not a reverse psychological virus.  Please don't copy me into your sig.


signature.asc
Description: This is a digitally signed message part

Bug#783323: Broken configuration for OpenBlocks AX3-4

[Ben Hutchings]

On Sat, 25 Apr 2015 23:39:44 +0100 Ben Hutchings  wrote:
> Secondly, if the installation uses LVM, /dev/sda1 is the /boot
> partition, not the root partition.  After fixing the first problem,
> flash-kernel fails like this:

Actually, this doesn't depend on LVM.  The installer always creates a
separate /boot partition using the ext2 filesystem, and this makes sense
as u-boot generally doesn't support ext4.  So I think that the /boot
prefix should be removed from the paths for this entry.  (And maybe many
other entries.)

(I know u-boot has optional support for ext4 now, but there's no sign of
it in this version.  For reference, that's:
U-Boot 2011.12 (Aug 26 2013 - 13:08:34)
Plat'Home version: 2.0.7 (Marvell version: 2012_Q4.0p17)
)

Ben.

-- 
Ben Hutchings
I'm not a reverse psychological virus.  Please don't copy me into your sig.


signature.asc
Description: This is a digitally signed message part

Bug#783311: closed by "Adam D. Barratt" (Re: Bug#783311: broken package dependencies results in removal of libreoffice)

[Rene Engelhard]

On Sat, Apr 25, 2015 at 01:49:17PM -0700, Mark Hedges wrote:
>Could a script switch both the symlinks at the same time?

As Adam tried to say:

That's normally how it happens - you wouldn't have noticed. Both would (visibly
for the public) change consisistently.

Just the coincidence that a security update for LO was released exactly today 
made
a earlier mirror push of jessie-security as stable-security, which gave you a 
update
for jessie in your stable (pointing to wheezy)

Regards,

Rene


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783297: breaks initramfs if BUSYBOX=n

[Michael Biebl]

On Sat, 25 Apr 2015 16:22:13 +0200 Michael Biebl  wrote:
> Package: cryptsetup
> Version: 2:1.6.6-5
> Severity: grave
> 
> Hi,
> 
> if the cryptsetup package is installed, it also installed a
> initramfs-tools hook.
> 
> I use BUSYBOX=no in initramfs.conf, but the  cryptroot hook copies
> /bin/busybox to the initramfs nonetheless.
> 
> As a result, the initramfs is unable to boot the system
> 
> I'm getting
> Begin: Running /scripts/init-bottom ... done
> /init: exec: line 338: switch_root: not found
> ...Kernel panic -n not syncing: Attempted to kill init
> 
> 
> To reproduce the bug, make sure you have the "busybox" package installed
> (which it is, by default), set BUSYBOX=n in
> /etc/initramfs-tools/initramfs.conf and run "update-initramfs -u" and
> reboot.
> 


I looked into this in more detail, and the culprit seems to be
/usr/share/initramfs-tools/conf-hooks.d/cryptsetup
which forcefully set's
BUSYBOX=y.

/usr/share/initramfs-tools/hooks/busybox will see the BUSYBOX=y setting
and copy the busybox binary.

/usr/share/initramfs-tools/hooks/zz-busybox sources
/etc/initramfs-tools/initramfs.conf, therefor BUSYBOX=n will be set
again, and the symlinks are not created.

The result is a broken initramfs.


I'm not sure, what is supposed to take precedence in such a case: The
configuration in /etc/initramfs-tools/initramfs.conf or
/usr/share/initramfs-tools/conf-hooks.d/cryptsetup and if it's a bug in
cryptsetup which forcefully overrides BUSYBOX= or if it's a bug in
busybox, which sources /etc/initramfs-tools/initramfs.conf in
/usr/share/initramfs-tools/hooks/zz-busybox and therefor doesn't respect
the settings which are set via conf-hooks.d.


I've CCed the initramfs-tools and busybox maintainers for their input.


If cryptsetup really requires busybox and forcefully sets BUSYBOX=y, why
does the cryptsetup package not depend on busybox?

I see several possible fixes here

a/ /usr/share/initramfs-tools/hooks/zz-busybox doesn't source
/etc/initramfs-tools/initramfs.conf directly and as a result respects
settings from hooks directories.

b/ /usr/share/initramfs-tools/conf-hooks.d/cryptsetup drops the
BUSYBOX=y line. And if this is not an option, because cryptsetup
requires busybox, then this should be reflected in the package
dependencies accordingly by making the Recommends a Depends.






-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?




signature.asc
Description: OpenPGP digital signature

Bug#783326: Acknowledgement (please make the generated output reproducible)

[Jelmer Vernooij]

And here is the aforementioned patch.
Description: Add --no-include-build-time option to allow reproducible builds.
Author: Jelmer Vernooij 
Bug: https://sourceforge.net/p/epydoc/bugs/367/
Bug-Debian: https://bugs.debian.org/783326
Forwarded: https://sourceforge.net/p/epydoc/bugs/367/
Last-Update: 2015-04-25

--- epydoc-3.0.1+dfsg.orig/epydoc/cli.py
+++ epydoc-3.0.1+dfsg/epydoc/cli.py
@@ -137,7 +137,7 @@ OPTION_DEFAULTS = dict(
 include_source_code=True, pstat_files=[], simple_term=False, fail_on=None,
 exclude=[], exclude_parse=[], exclude_introspect=[],
 external_api=[], external_api_file=[], external_api_root=[],
-redundant_details=False, src_code_tab_width=8)
+redundant_details=False, src_code_tab_width=8, include_build_time=True)
 
 def parse_arguments():
 # Construct the option parser.
@@ -286,6 +286,10 @@ def parse_arguments():
 action='store_true', dest='include_log',
 help=("Include a page with the process log (epydoc-log.html)"))
 
+generation_group.add_option('--no-include-build-time',
+action='store_false', dest='include_build_time',
+help=("Print the build time in the page footer."))
+
 generation_group.add_option(
 '--redundant-details',
 action='store_true', dest='redundant_details',
@@ -558,6 +562,8 @@ def parse_configfiles(configfiles, optio
 options.include_source_code = _str_to_bool(val, optname)
 elif optname in ('include-log', 'include_log'):
 options.include_log = _str_to_bool(val, optname)
+elif optname in ('include-build-time', 'include_build_time'):
+options.include_build_time = _str_to_bool(val, optname)
 elif optname in ('redundant-details', 'redundant_details'):
 options.redundant_details = _str_to_bool(val, optname)
 
--- epydoc-3.0.1+dfsg.orig/epydoc/docwriter/html.py
+++ epydoc-3.0.1+dfsg/epydoc/docwriter/html.py
@@ -291,6 +291,9 @@ class HTMLWriter:
 @type include_log: C{boolean}
 @keyword include_log: If true, the the footer will include an
   href to the page 'epydoc-log.html'.
+@type include_build_time: C{boolean}
+@keyword include_build_time: If true, the the footer will
+  include the build time.
 @type src_code_tab_width: C{int}
 @keyword src_code_tab_width: Number of spaces to replace each tab
 with in source code listings.
@@ -358,6 +361,9 @@ class HTMLWriter:
 self._include_log = kwargs.get('include_log', False)
 """Are we generating an HTML log page?"""
 
+self._include_build_time = kwargs.get('include_build_time', True)
+"""Are we including a build time?"""
+
 self._src_code_tab_width = kwargs.get('src_code_tab_width', 8)
 """Number of spaces to replace each tab with in source code
 listings."""
@@ -1770,10 +1776,14 @@ class HTMLWriter:
   
 
 >>>   if self._include_log:
-Generated by Epydoc
-$epydoc.__version__$ on $time.asctime()$
->>>   else:
-Generated by Epydoc $epydoc.__version__$ on $time.asctime()$
+
+>>>   #endif
+Generated by Epydoc $epydoc.__version__$
+>>> if self._include_build_time:
+on $time.asctime()$
+>>> #endif
+>>>   if self._include_log:
+
 >>>   #endif
 
 


signature.asc
Description: Digital signature

Bug#783322: [Pkg-samba-maint] Bug#783322: winbindd crashes if LDAP password fails to be retrieved from secrets.tdb

[Jelmer Vernooij]

status 783322 +confirmed
status 783322 +upstream
thanks

On Sun, Apr 26, 2015 at 12:13:16AM +0200, Dmitry Katsubo wrote:
> Package: winbind
> Version: 2:4.1.17+dfsg-2
> 
> Hello,
> 
> winbind reports "Failed to retrieve LDAP password from secrets.tdb" and
> crashes creating a core dump.
> 
> Expected:
> 
> winbind correctly handles this situation, e.g. exits with error code.

Please set the LDAP database password using pdbedit. 

This indeed shouldn't cause a segfault, merely a big error message in the logs.

Cheers,

Jelmer


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783326: please make the generated output reproducible

[Jelmer Vernooij]

Package: python-epydoc
Version: 3.0.1+dfsg-5
Severity: wishlist
Tags: forwarded
Forwarded: https://sourceforge.net/p/epydoc/bugs/367/

Hi,

While working on the "reproducible builds" effort [1], we have noticed
that pydoctor does not generate reproducible output.

The attached patch adds an option to disable the outputting of a build
time. Once applied, packages using epydoc will be able to be built
reproducibly in our current experimental framework.

-- System Information:
Debian Release: jessie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages python-epydoc depends on:
ii  python  2.7.9-1

Versions of packages python-epydoc recommends:
ii  ghostscript9.15~rc1~dfsg-1
ii  graphviz   2.38.0-7
ii  python-docutils0.12+dfsg-1
ii  python-tk  2.7.9-1
ii  texlive-fonts-recommended  2014.20141024-2
ii  texlive-latex-base 2014.20141024-2
ii  texlive-latex-extra2014.20141024-1
ii  texlive-latex-recommended  2014.20141024-2

Versions of packages python-epydoc suggests:
pn  epydoc-doc
ii  python [python-profiler]  2.7.9-1

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#709460: [Britney] binNMUs plus source take-over issue

[Anthony Towns]

Hi,

Attached is a possible patch for bug#709460. Works against both normal and
live-data test cases by the looks.

N: Using Time::HiRes to calculate run times
Running live-2011-12-13... ok (258.376s)
Running live-2011-12-20... ok (251.626s)
Running live-2012-01-04... ok (193.008s)
Running live-2012-05-09... done (159.661s)

The most notable change is that I pulled the _compute_groups function out
as the first thing that doop_source does, and then reuse its output later
rather than working out which binary packages are valid independently.
(I've left in some commented print statements that add some output as to
what binaries doop_source is actually looking at which seemed helpful)

Cheers,
aj

-- 
Anthony Towns 
diff --git a/britney.py b/britney.py
index 55dd7c3..b254ea7 100755
--- a/britney.py
+++ b/britney.py
@@ -1859,11 +1859,6 @@ class Britney(object):
 InstallabilityTester.
 
 
-Pre-Conditions: The source package must be in testing and this
-should only be used when considering to do an upgrade
-migration from the input suite.  (e.g. do not use this for
-removals).
-
 Unlike doop_source, this will not modify any data structure.
 """
 # local copies for better performances
@@ -1964,7 +1959,7 @@ class Britney(object):
  suite != 'unstable' and \
  binaries_t[parch][0][binary][ARCHITECTURE] == 'all':
 continue
-else:
+else:
 rms.add((binary, version, parch))
 
 # single binary removal; used for clearing up after smooth
@@ -1981,11 +1976,24 @@ class Britney(object):
 if migration_architecture not in ['source', parch]:
 continue
 version = self.binaries[suite][parch][0][binary][VERSION]
+
+if (not include_hijacked
+and self.binaries[suite][parch][0][binary][SOURCE] != 
source_name):
+# This binary package has been hijacked by some other 
source.
+# So don't add it as part of this update.
+#
+# Also, if this isn't a source update, don't remove
+# the package that's been hijacked if it's present.
+if migration_architecture != 'source':
+for rm_b, rm_v, rm_p in list(rms):
+if (rm_b, rm_p) == (binary, parch):
+rms.remove((rm_b, rm_v, rm_p))
+continue
+
 adds.add((binary, version, parch))
 
 return (adds, rms, set(smoothbins.itervalues()))
 
-
 def doop_source(self, item, hint_undo=None, removals=frozenset()):
 """Apply a change to the testing distribution as requested by `pkg`
 
@@ -2016,16 +2024,19 @@ class Britney(object):
 inst_tester = self._inst_tester
 eqv_set = set()
 
+updates, rms, _ = self._compute_groups(item.package,
+   item.suite,
+   item.architecture,
+   item.is_removal,
+   removals=removals)
+#print("+++ %s" % (sorted(updates)))
+#print("--- %s" % (sorted(rms)))
+
 # remove all binary packages (if the source already exists)
 if item.architecture == 'source' or not item.is_removal:
 if item.package in sources['testing']:
 source = sources['testing'][item.package]
 
-updates, rms, _ = self._compute_groups(item.package,
-   item.suite,
-   item.architecture,
-   item.is_removal,
-   removals=removals)
 
 eqv_table = {}
 
@@ -2091,9 +2102,9 @@ class Britney(object):
 if not item.is_removal:
 source = sources[item.suite][item.package]
 packages_s = self.binaries[item.suite]
-for p in source[BINARIES]:
-binary, parch = p.split("/")
-if item.architecture not in ['source', parch]: continue
+
+for binary, version, parch in updates:
+p = "%s/%s" % (binary, parch)
 key = (binary, parch)
 binaries_t_a, provides_t_a = packages_t[parch]
 equivalent_replacement = key in eqv_set

Bug#783321: systemd opens file in /var/run and not in /run

[Michael Biebl]

Am 26.04.2015 um 00:36 schrieb Michael Biebl:
> Am 26.04.2015 um 00:05 schrieb Dmitry Katsubo:
>>
>> Afterwards the process systemd opens a file in /var/run, thus not
>> allowing me to unmount /var:

>> systemd opens a file in /run, thus allowing the administrator to umount
>> and e.g. repair /var volume.

> According to codesearch [1], we have quite a few locations where
> "/var/run/dbus/system_bus_socket" is hard-coded.


After thinking about this some more, I'm actually not convinced this is
a bug at all. /var/run/dbus/system_bus_socket is by far not the only
ressource, which could be openend from /var.

In the end, I think it's rather questionable if it's a good idea to run
fsck on a system partition in single user mode.
And if you want to do so, you'll just need to shut down all services,
sockets and processes manually, e.g. by running "systemctl stop foo.socket".

If you want to run a forced fsck, there are much better facilities, like
passing fsck.mode=force on the kernel-command-line [1].

Given this, I'm not sure if it's worth the effort to move the dbus
socket around and I'm inclined to just close this bug report.

I'll leave the decision to Simon though.


Michael

[1] man 8 systemd-fsck
-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#782143: pu: package stunnel4/3:5.06-2+deb8u1

[Peter Pentchev]

Control: retitle -1 pu: package stunnel4/3:5.06-2+deb8u1

On Thu, Apr 23, 2015 at 10:35:28PM +0100, Jonathan Wiltshire wrote:
> Control: retitle -1 pu: package stunnel4/3:5.06-3
> Control: tag -1 jessie
> 
> On Wed, Apr 08, 2015 at 02:32:49PM +0300, Peter Pentchev wrote:
> > This is a pre-approval request for unblocking a RC bugfix upload of
> > stunnel4 that will fix two RC bugs:
> > - #771421 - makes stunnel unusable for some users in certain
> >   configurations; not for everyone, but still, it happens too often to
> >   be ignored
> > - #782030 - makes stunnel start and stop properly, checking whether
> >   the action has actually succeeded
> 
> Deferring to a point release; SRM will confirm after release.

OK, here's an updated debdiff that retargets the upload towards
stable-proposed-updates; the only change is the header and the footer
of the changelog entry itself.

G'luck,
Peter

-- 
Peter Pentchev  r...@ringlet.net r...@freebsd.org p.penc...@storpool.com
PGP key:http://people.FreeBSD.org/~roam/roam.key.asc
Key fingerprint 2EE7 A7A5 17FC 124C F115  C354 651E EFB0 2527 DF13
diff -Nru stunnel4-5.06/debian/changelog stunnel4-5.06/debian/changelog
--- stunnel4-5.06/debian/changelog  2014-11-28 11:08:35.0 +0200
+++ stunnel4-5.06/debian/changelog  2015-04-26 01:34:49.0 +0300
@@ -1,3 +1,15 @@
+stunnel4 (3:5.06-2+deb8u1) stable-proposed-updates; urgency=medium
+
+  * Add the 17-upstream-hangup patch to fix prematurely closed
+connections when there is still data to be written.
+Thanks to Joachim Falk for backporting the patch!
+Closes: #771241
+  * Add the 18-lsb-startup patch to make the daemons' startup consistent
+with the way things are done in Debian.
+Among other things, Closes: #782030
+
+ -- Peter Pentchev   Sun, 26 Apr 2015 01:34:42 +0300
+
 stunnel4 (3:5.06-2) unstable; urgency=medium
 
   * Limit the systemd build dependency to Linux architectures only,
diff -Nru stunnel4-5.06/debian/patches/17-upstream-hangup.patch 
stunnel4-5.06/debian/patches/17-upstream-hangup.patch
--- stunnel4-5.06/debian/patches/17-upstream-hangup.patch   1970-01-01 
02:00:00.0 +0200
+++ stunnel4-5.06/debian/patches/17-upstream-hangup.patch   2015-04-24 
10:53:33.0 +0300
@@ -0,0 +1,74 @@
+Description: Fix premature data truncation in the POLLRDHUP handling
+DebianBug: https://bugs.debian.org/771241
+Origin: upstream; 
https://www.stunnel.org/pipermail/stunnel-users/2014-November/004860.html
+Last-Update: 2015-03-04
+
+--- a/src/client.c
 b/src/client.c
+@@ -515,6 +515,11 @@
+ int write_wants_read=0, write_wants_write=0;
+ /* actual conditions on file descriptors */
+ int sock_can_rd, sock_can_wr, ssl_can_rd, ssl_can_wr;
++#ifdef USE_WIN32
++unsigned long bytes;
++#else
++int bytes;
++#endif
+ 
+ c->sock_ptr=c->ssl_ptr=0;
+ 
+@@ -810,32 +815,44 @@
+ }
+ 
+ /** check for hangup conditions */
+-if(s_poll_rdhup(c->fds, c->sock_rfd->fd)) {
+-s_log(LOG_INFO, "Read socket closed (hangup)");
++/* http://marc.info/?l=linux-man&m=128002066306087 */
++/* readsocket() must be the last sock_rfd operation before FIONREAD */
++if(sock_open_rd && s_poll_rdhup(c->fds, c->sock_rfd->fd) &&
++(ioctlsocket(c->sock_rfd->fd, FIONREAD, &bytes) || !bytes)) {
++s_log(LOG_INFO, "Read socket closed (read hangup)");
+ sock_open_rd=0;
+ }
+-if(s_poll_hup(c->fds, c->sock_wfd->fd)) {
++if(sock_open_wr && s_poll_hup(c->fds, c->sock_wfd->fd)) {
+ if(c->ssl_ptr) {
+ s_log(LOG_ERR,
+-"Write socket closed (hangup) with %d unsent byte(s)",
++"Write socket closed (write hangup) with %d unsent 
byte(s)",
+ c->ssl_ptr);
+ longjmp(c->err, 1); /* reset the socket */
+ }
+-s_log(LOG_INFO, "Write socket closed (hangup)");
++s_log(LOG_INFO, "Write socket closed (write hangup)");
+ sock_open_wr=0;
+ }
+-if(s_poll_hup(c->fds, c->ssl_rfd->fd) ||
+-s_poll_hup(c->fds, c->ssl_wfd->fd)) {
++/* SSL_read() must be the last ssl_rfd operation before FIONREAD */
++if(!(SSL_get_shutdown(c->ssl)&SSL_RECEIVED_SHUTDOWN) &&
++s_poll_rdhup(c->fds, c->ssl_rfd->fd) &&
++(ioctlsocket(c->ssl_rfd->fd, FIONREAD, &bytes) || !bytes)) {
+ /* hangup -> buggy (e.g. Microsoft) peer:
+  * SSL socket closed without close_notify alert */
++s_log(LOG_INFO, "SSL socket closed (read hangup)");
++SSL_set_shutdown(c->ssl,
++SSL_get_shutdown(c->ssl)|SSL_RECEIVED_SHUTDOWN);
++}
++if(!(SSL_get_shutdown(c->ssl)&SSL_SENT_SHUTDOWN) &&
++s_poll_hup(c->fds, c->ssl_wfd->fd)) {
+ if(c->sock_ptr || write_wants_write) {
+ 

Bug#783324: Missing ehci-orion module in armhf installer

[Ben Hutchings]

Package: src:linux
Version: 3.16.7-ckt9-2
Severity: important
Tags: patch d-i

The installer should include all USB controller drivers for supported
machines (via the usb-modules packages), but the ehci-orion module is
missing on armhf.

Ben.

-- System Information:
Debian Release: 8.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
Architecture: i386 (x86_64)
Foreign Architectures: amd64

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783325: jessie rc3 requires nomodeset in grub.cfg to boot an i386 iMac with a radeon vga.

[David Henderson]

Package: firmware-linux-nonfree

Bug: jessie rc3 requires nomodeset in grub.cfg to boot an i386 iMac with a 
radeon vga.

The system is a Core Duo (i386) iMac model 4,1. 2GB ram, 250GB hard drive.
Pertinent information from the install is appended: lspci, parted, fstab.

rEFInd 0.8.7 was used to boot the Jessie rc3 i386 dvd1. rEFInd is installed on 
/dev/sda5.

The system installed normally. I did not have a working wifi connection or 
hardwired ethernet.
I've never gotten a flash drive set up and working with the Broadcom b43 driver 
to load.

After installation rEFInd shows two Debian swirls for two efi bootloaders.
On the initial boot using the grubia32.efi icon, the system appeared to halt 
after doing the fsck.

I went into rescue mode, modified /etc/default/grub to remove "quiet" as an 
option.
Then rebuilt the /boot/grub/grub.cfg file by using "grub-mkconfig -o 
/boot/grub/grub.cfg"

This time, the verbose display shows the system halted right after a switch to 
the radeon framebuffer.

I then changed the linux line in /boot/grub/grub.cfg to end in "ro nomodeset" 
to not switch to the radeon framebuffer.
(I know I need to change file "/etc/grub.d/10_linux " to make this change 
permanent.)

The iMac now completes the Jessie rc3 boot. 
I didn't have to do this for wheezy... as I recall, the radeon firmware load 
failed and wheezy continued booting without acceleration.

Congrats to everyone that contributed to making EFI work on this buggy EFI 
hardware.

The package used for this report is "firmware-linux-nonfree" because I couldnt 
think of anything closer.
This package does not have a driver for this model radeon vga.

wifi works after manually setting up the /lib/firmware/b43 directory from a 
tarball made under wheezy.

lspci output:
00:00.0 Host bridge: Intel Corporation Mobile 945GM/PM/GMS, 943/940GML and 
945GT Express Memory Controller Hub (rev 03)
00:01.0 PCI bridge: Intel Corporation Mobile 945GM/PM/GMS, 943/940GML and 945GT 
Express PCI Express Root Port (rev 03)
00:07.0 Performance counters: Intel Corporation Device 27a3 (rev 03)
00:1b.0 Audio device: Intel Corporation NM10/ICH7 Family High Definition Audio 
Controller (rev 02)
00:1c.0 PCI bridge: Intel Corporation NM10/ICH7 Family PCI Express Port 1 (rev 
02)
00:1c.1 PCI bridge: Intel Corporation NM10/ICH7 Family PCI Express Port 2 (rev 
02)
00:1d.0 USB controller: Intel Corporation NM10/ICH7 Family USB UHCI Controller 
#1 (rev 02)
00:1d.1 USB controller: Intel Corporation NM10/ICH7 Family USB UHCI Controller 
#2 (rev 02)
00:1d.2 USB controller: Intel Corporation NM10/ICH7 Family USB UHCI Controller 
#3 (rev 02)
00:1d.3 USB controller: Intel Corporation NM10/ICH7 Family USB UHCI Controller 
#4 (rev 02)
00:1d.7 USB controller: Intel Corporation NM10/ICH7 Family USB2 EHCI Controller 
(rev 02)
00:1e.0 PCI bridge: Intel Corporation 82801 Mobile PCI Bridge (rev e2)
00:1f.0 ISA bridge: Intel Corporation 82801GBM (ICH7-M) LPC Interface Bridge 
(rev 02)
00:1f.1 IDE interface: Intel Corporation 82801G (ICH7 Family) IDE Controller 
(rev 02)
00:1f.2 SATA controller: Intel Corporation 82801GBM/GHM (ICH7-M Family) SATA 
Controller [AHCI mode] (rev 02)
00:1f.3 SMBus: Intel Corporation NM10/ICH7 Family SMBus Controller (rev 02)
01:00.0 VGA compatible controller: Advanced Micro Devices, Inc. [AMD/ATI] 
RV530/M56-P [Mobility Radeon X1600]
02:00.0 Ethernet controller: Marvell Technology Group Ltd. 88E8053 PCI-E 
Gigabit Ethernet Controller (rev 22)
03:00.0 Network controller: Broadcom Corporation BCM4311 802.11a/b/g (rev 01)
04:03.0 FireWire (IEEE 1394): LSI Corporation FW322/323 [TrueFire] 1394a 
Controller (rev 61)

partition listing from parted:
(parted) print
Model: ATA WDC WD2500JS-40N (scsi)
Disk /dev/sda: 250GB
Sector size (logical/physical): 512B/512B
Partition Table: gpt
Disk Flags: 

Number  Start   End SizeFile system Name  Flags
 1  20.5kB  210MB   210MB   fat32   EFI System Partition  boot, esp
 2  210MB   50.2GB  50.0GB  hfs+iMacGLW
 3  50.4GB  140GB   90.0GB  hfs+devel
 4  140GB   150GB   9866MB  hfs+comhfs
 5  150GB   151GB   999MB   hfs+rEFInd
 6  151GB   152GB   99.6MB  aBios
 7  152GB   152GB   99.6MB  bBios msftdata
 8  152GB   154GB   2000MB  ext2aBoot msftdata
 9  154GB   156GB   2000MB  ext2bBoot msftdata
10  156GB   196GB   40.0GB  ext4aRoot msftdata
11  196GB   236GB   40.0GB  ext4bRoot msftdata
12  236GB   239GB   3000MB  linux-swap(v1)  aSwap
13  239GB   242GB   3000MB  linux-swap(v1)  bSwap msftdata
14  242GB   250GB   8371MB  linux-swap(v1)  ctest msftdata

# /etc/fstab: static file system information.
#
# Use 'blkid' to print the universally unique identifier for a
# device; this may be used with UU

Bug#783323: Broken configuration for OpenBlocks AX3-4

[Ben Hutchings]

Package: flash-kernel
Version: 3.35
Severity: important

flash-kernel has this entry for the OpenBlocks AX3-4:

Machine: PlatHome OpenBlocks AX3-4 board
Kernel-Flavors: armmp
DTB-Id: armada-xp-openblocks-ax3-4.dtb
DTB-Append: yes
U-Boot-Kernel-Address: 0x200
U-Boot-Kernel-Entry-Point: 0x240
U-Boot-Initrd-Address: 0x0
Boot-Device: /dev/sda1
Boot-Kernel-Path: /boot/uImage
Boot-Initrd-Path: /boot/uInitrd
Boot-DTB-Path: /boot/dtb
Required-Packages: u-boot-tools

Firstly, the Armada XP supports LPAE and the installer selects the
armmp-lpae kernel by default.  This makes it impossible to boot from
the files on the installed system.

Secondly, if the installation uses LVM, /dev/sda1 is the /boot
partition, not the root partition.  After fixing the first problem,
flash-kernel fails like this:

# flash-kernel 3.16.0-4-armmp-lpae
Installing armada-xp-openblocks-ax3-4.dtb into /boot/dtb-3.16.0-4-armmp-lpae
Taking backup of dtb-3.16.0-4-armmp-lpae.
Installing new dtb-3.16.0-4-armmp-lpae.
Installing armada-xp-openblocks-ax3-4.dtb into /boot/dtb-3.16.0-4-armmp-lpae
Taking backup of dtb-3.16.0-4-armmp-lpae.
Installing new dtb-3.16.0-4-armmp-lpae.
flash-kernel: installing version 3.16.0-4-armmp-lpae
Generating kernel u-boot image... done.
Will use /dev/sda1 as boot device.
Installing new uImage.
mv: cannot move '/tmp/flash-kernel.3ft8lyny/uImage' to 
'/tmp/flash-kernel.V2iwAjyz//boot/uImage': No such file or directory

Removing /boot from the file paths fixes this, but of course it would
break configurations without a separate /boot.  I don't know whether
there's a good way to deal with both configurations.  Maybe you should
bodge it by creating the /boot/boot directory in this case?

Thirdly, the machine name is not quite accurate - this is not just a
board but a complete product with a custom case.

Ben.

-- System Information:
Debian Release: 8.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
Architecture: i386 (x86_64)
Foreign Architectures: amd64

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783321: systemd opens file in /var/run and not in /run

[Michael Biebl]

Control: reassign -1 dbus

Am 26.04.2015 um 00:05 schrieb Dmitry Katsubo:
> Package: systemd
> Version: 215-16
> 
> Hello,
> 
> I run Debian jessie in single mode (recovery mode). In this mode I would
> like to start gpm service:
> 
> # /etc/init.d/gpm start
> 
> Afterwards the process systemd opens a file in /var/run, thus not
> allowing me to unmount /var:
> 
> # lsof | grep /var
> systemd  1 root   25u unix 0xf4760300  0t0  24111
> /var/run/dbus/system_bus_socket
> 
> Expected:
> 
> systemd opens a file in /run, thus allowing the administrator to umount
> and e.g. repair /var volume.

This socket is opened by systemd on behalf of dbus via

$ cat /lib/systemd/system/dbus.socket
[Unit]
Description=D-Bus System Message Bus Socket

[Socket]
ListenStream=/var/run/dbus/system_bus_socket

Re-assigning to dbus.
Dmitry, can you also post the dbus version you are using?


Simon, do you expect any breakage if we move the socket file to /run?
/var/run should typically be a symlink to /var/run, so it should still
be accessible under the old name. There might be setups's though, where
/var/run is not a symlink to /run, but I don't know if we support such
non-symlink configurations.

According to codesearch [1], we have quite a few locations where
"/var/run/dbus/system_bus_socket" is hard-coded.




[1] http://codesearch.debian.net
-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#775420: aircrack-ng: Airodump-ng won't start

[Antonio]

Hi,

The advice from clo...@igailia.com worked for me:

1) First stop NetworkManager

$ service network-manager stop

And retry creating mon0 with airmon-ng.

Thanks!

On Thu, 15 Jan 2015 18:35:27 +0100 Carlos Alberto Lopez Perez
 wrote:
> Control: retitle -1 airmon-ng/airodump-ng: ioctl(SIOCSIFFLAGS)
> failed: Name not unique on network Thanks.
> 
> 
> Hi,
> 
> 
> I'm not sure if this is a bug on aircrack-ng, on your kernel or
> driver of your wireless card, or on your specific network or system
> configurations.
> 
> After grepping the kernel, it seems to me that the error ENOTUNIQ
> ("Name not unique on network") happens when you try to create some
> interface with a duplicate MAC address and one of this interfaces is
> not in monitor mode.
> 
> The interface mon0 is going to have the same MAC than the parent
> (wlan1), so either one of mon0 or wlan1 has to be in monitor mode.
> 
> The interface that airmon-ng enables on mon0 should be a interface of
> type NL80211_IFTYPE_MONITOR, so it shouldn't give ENOTUNIQ error.
> 
> You say that it works if you manually first put wlan1 in monitor mode.
> So that matchs my understanding of the situation.
> Seems that for some reason (read:bug) the interface mon0 is not beeing
> created in monitor mode mode by default.
> 
> 
> Can you try the following:
> 
> 
> 1) First stop NetworkManager
> 
> $ service network-manager stop
> 
> And retry creating mon0 with airmon-ng.
> 
> If it still fails with the same error.
> 
> 2) Try using airmon-zc instead of airmon-ng to bring the interface up:
> 
> $ sudo airmon-zc start wlan0
> 
> 3) If it still fails, try creating the mon0 interface manually:
> 
> sudo iw dev wlan1 interface add mon0 type monitor
> 
> 4) You are running a propietary driver (wl) for the interface wlan0.
> This may cause problems. Can you try to temporally remove this driver
> from your kenel and booting without it, to check if that makes a
> difference ?
> 
> 5)
> 
> If all the above fails, can you please paste here the output
> of the following commands (after the error has happened):
> 
> /sbin/iw list
> /sbin/iw dev
> /sbin/ip addr
> /sbin/ifconfig -a
> 
> 



-- 

CLAVE PÚBLICA GPG: D48D35DF

Algunos consejos para un uso 
coherente del correo electrónico:

1.- Para proteger la intimidad de tus contactos y evitar el SPAM
(correo no deseado): Borra la dirección del remitente y cualquier otra
dirección que aparezca en el cuerpo del mensaje. Introduce los/las
destinatarias en el apartado CCO (Con Copia Oculta) 2.- Existen otros
programas de mensajería instantánea gratuitos, así que no es ningún
drama que MSN desaparezca o que hagan lo que les dé la gana. 3.- Nadie
regala duros a cuatro pesetas, verdad? Pues por qué se le da tanto
bombo a Sony Ericsson o a quien sea con el rollo de que regalan
ordenadores? A alguien le han dado uno, o cheques de Bill Gates?

CUIDA A TUS CONTACTOS Y DEJA DE HACER PUBLICIDAD A LAS MULTINACIONALES!

¡GRACIAS!


pgpYGlvut02Mr.pgp
Description: Firma digital OpenPGP

Bug#783322: winbindd crashes if LDAP password fails to be retrieved from secrets.tdb

[Dmitry Katsubo]

Package: winbind
Version: 2:4.1.17+dfsg-2

Hello,

winbind reports "Failed to retrieve LDAP password from secrets.tdb" and
crashes creating a core dump.

Expected:

winbind correctly handles this situation, e.g. exits with error code.


-- 
With best regards,
Dmitry
  STATUS=daemon 'winbindd' finished starting up and ready to serve 
connectionsGot sig[15] terminate (is_parent=0)
  STATUS=daemon 'winbindd' finished starting up and ready to serve 
connectionsfetch_ldap_pw: neither ldap secret retrieved!
[2014/06/22 23:25:10.038062,  0] 
../source3/passdb/pdb_ldap.c:6427(pdb_init_ldapsam_common)
  pdb_init_ldapsam_common: Failed to retrieve LDAP password from secrets.tdb
[2014/06/22 23:25:10.038313,  0] 
../source3/passdb/pdb_interface.c:178(make_pdb_method_name)
  pdb backend ldapsam:ldap://localhost did not correctly init (error was 
NT_STATUS_NO_MEMORY)
[2014/06/22 23:25:10.038500,  0] ../source3/lib/util.c:785(smb_panic_s3)
  PANIC (pid 3254): pdb_get_methods: failed to get pdb methods for backend 
ldapsam:ldap://localhost
  
[2014/06/22 23:25:10.054345,  0] ../source3/lib/util.c:896(log_stack_trace)
  BACKTRACE: 31 stack frames:
   #0 /usr/lib/i386-linux-gnu/libsmbconf.so.0(log_stack_trace+0x29) [0xb6cd4429]
   #1 /usr/lib/i386-linux-gnu/libsmbconf.so.0(smb_panic_s3+0x28) [0xb6cd4528]
   #2 /usr/lib/i386-linux-gnu/libsamba-util.so.0(smb_panic+0x3a) [0xb76116ba]
   #3 /usr/lib/i386-linux-gnu/libpdb.so.0(+0x2221f) [0xb732f21f]
   #4 /usr/lib/i386-linux-gnu/libpdb.so.0(pdb_capabilities+0x8) [0xb73311a8]
   #5 /usr/sbin/winbindd(_lsa_EnumTrustedDomainsEx+0x1c) [0xb772c61c]
   #6 /usr/sbin/winbindd(+0xb0b6f) [0xb7732b6f]
   #7 /usr/sbin/winbindd(+0x7d7dd) [0xb76ff7dd]
   #8 
/usr/lib/i386-linux-gnu/libdcerpc-binding.so.0(dcerpc_binding_handle_raw_call_send+0xa8)
 [0xb7390c28]
   #9 
/usr/lib/i386-linux-gnu/libdcerpc-binding.so.0(dcerpc_binding_handle_call_send+0x1d7)
 [0xb7391457]
   #10 
/usr/lib/i386-linux-gnu/libdcerpc-binding.so.0(dcerpc_binding_handle_call+0x6f) 
[0xb73916df]
   #11 
/usr/lib/i386-linux-gnu/samba/libdcerpc-samba.so.0(dcerpc_lsa_EnumTrustedDomainsEx_r+0x4d)
 [0xb741399d]
   #12 
/usr/lib/i386-linux-gnu/samba/libdcerpc-samba.so.0(dcerpc_lsa_EnumTrustedDomainsEx+0x5c)
 [0xb7413c2c]
   #13 /usr/sbin/winbindd(rpc_trusted_domains+0x93) [0xb76cb393]
   #14 /usr/sbin/winbindd(+0x4f759) [0xb76d1759]
   #15 /usr/sbin/winbindd(+0x34bf2) [0xb76b6bf2]
   #16 /usr/sbin/winbindd(winbindd_dual_list_trusted_domains+0x4a) [0xb76bea7a]
   #17 /usr/sbin/winbindd(+0x5220d) [0xb76d420d]
   #18 /usr/lib/i386-linux-gnu/libtevent.so.0(+0x8f0f) [0xb6b34f0f]
   #19 /usr/lib/i386-linux-gnu/libtevent.so.0(+0x713e) [0xb6b3313e]
   #20 /usr/lib/i386-linux-gnu/libtevent.so.0(_tevent_loop_once+0xa0) 
[0xb6b2f350]
   #21 /usr/sbin/winbindd(+0x54ca3) [0xb76d6ca3]
   #22 /usr/sbin/winbindd(+0x554ed) [0xb76d74ed]
   #23 /usr/lib/i386-linux-gnu/libtevent.so.0(+0x3fb0) [0xb6b2ffb0]
   #24 
/usr/lib/i386-linux-gnu/libtevent.so.0(tevent_common_loop_immediate+0xe8) 
[0xb6b2fc38]
   #25 /usr/lib/i386-linux-gnu/libtevent.so.0(+0x8caf) [0xb6b34caf]
   #26 /usr/lib/i386-linux-gnu/libtevent.so.0(+0x713e) [0xb6b3313e]
   #27 /usr/lib/i386-linux-gnu/libtevent.so.0(_tevent_loop_once+0xa0) 
[0xb6b2f350]
   #28 /usr/sbin/winbindd(main+0xd51) [0xb769c861]
   #29 /lib/i386-linux-gnu/i686/cmov/libc.so.6(__libc_start_main+0xf3) 
[0xb6999a63]
   #30 /usr/sbin/winbindd(+0x1b01e) [0xb769d01e]
[2014/06/22 23:25:10.057303,  0] ../source3/lib/util.c:797(smb_panic_s3)
  smb_panic(): calling panic action [/usr/share/samba/panic-action 3254]
[2014/06/22 23:25:10.400890,  0] ../source3/lib/util.c:805(smb_panic_s3)
  smb_panic(): action returned status 0
[2014/06/22 23:25:10.401174,  0] ../source3/lib/dumpcore.c:317(dump_core)
  dumping core in /var/log/samba/cores/winbindd

Bug#783321: systemd opens file in /var/run and not in /run

[Dmitry Katsubo]

Package: systemd
Version: 215-16

Hello,

I run Debian jessie in single mode (recovery mode). In this mode I would
like to start gpm service:

# /etc/init.d/gpm start

Afterwards the process systemd opens a file in /var/run, thus not
allowing me to unmount /var:

# lsof | grep /var
systemd  1 root   25u unix 0xf4760300  0t0  24111
/var/run/dbus/system_bus_socket

Expected:

systemd opens a file in /run, thus allowing the administrator to umount
and e.g. repair /var volume.

-- 
With best regards,
Dmitry


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783247: Please don't install acpid and acpi-support-base

[Marco d'Itri]

On Apr 25, Bjørn Mork  wrote:

> > Indeed they are not needed when systemd is used (but are still required 
> > on sysvinit systems).
> Are you sure about this? It was my first reaction as well, but then I
> remembered the troubles I had with logind conflicting with my acpid
> based setup.  
Yes: I checked.

-- 
ciao,
Marco


pgpzJOLumzG_c.pgp
Description: PGP signature

Bug#783320: linux: FTBFS on armhf, imx-hdmi module renamed to dw_hdmi-imx

[Vagrant Cascadian]

Source: linux
Version: 4.0-1~exp1
Severity: important
Tags: Patch

From buildd log:

  kernel-wedge copy-modules 4.0.0-trunk armmp 4.0.0-trunk-armmp
  missing module imx-hdmi
  command exited with status 1
  make[2]: *** [install-udeb_armhf] Error 2

diff --git a/installer/armhf/modules/armhf-armmp/fb-modules 
b/installer/armhf/modules/armhf-armmp/fb-modules
index 03d6305..849ebe2 100644
--- a/installer/armhf/modules/armhf-armmp/fb-modules
+++ b/installer/armhf/modules/armhf-armmp/fb-modules
@@ -1,3 +1,3 @@
 imx-ipuv3-crtc
-imx-hdmi
+dw_hdmi-imx
 tegra-drm


live well,
  vagrant


signature.asc
Description: PGP signature

Bug#783319: game-data-packager: running from a deleted directory gives a cryptic error message

[Alexandre Detiste]

Package: game-data-packager
Version: 41
Severity: minor

Dear Maintainer,

tchet@antec:~/.openra$ game-data-packager
sh: 0: getcwd() failed: No such file or directory
Could not import runpy module
Traceback (most recent call last):
  File "", line 2237, in _find_and_load
  File "", line , in _find_and_load_unlocked
  File "", line 2164, in _find_spec
  File "", line 1940, in find_spec
  File "", line 1911, in _get_spec
  File "", line 1879, in _path_importer_cache
FileNotFoundError: [Errno 2] No such file or directory
tchet@antec:~/.openra$



-- System Information:
Debian Release: 8.0
  APT prefers testing
  APT policy: (501, 'testing'), (450, 'unstable'), (400, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.19.0-trunk-amd64 (SMP w/6 CPU cores)
Locale: LANG=fr_BE.UTF-8, LC_CTYPE=fr_BE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages game-data-packager depends on:
ii  fakeroot1.20.2-1
ii  python3 3.4.2-2
ii  python3-debian  0.1.27
ii  python3-yaml3.11-2
pn  python3:any 

game-data-packager recommends no packages.

Versions of packages game-data-packager suggests:
ii  arj   3.10.22-13
ii  binutils  2.25-5
ii  cdparanoia3.10.2+debian-11
ii  dynamite  0.1.1-2
ii  gcc   4:4.9.2-2
ii  innoextract   1.4-1+b1
ii  lgc-pg1.2.6-1
ii  lhasa [lzh-archiver]  0.2.0+git3fe46-1
ii  make  4.0-8.1
ii  p7zip-full9.20.1~dfsg.1-4.1
ii  unshield  1.0-1
ii  unzip 6.0-16
ii  vorbis-tools  1.4.0-6

-- no debconf information

-- debsums errors found:
debsums: changed file /usr/share/games/game-data-packager/freespace2.json (from 
game-data-packager package)


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783318: cdimage.debian.org: live+nonfree image does not use needed nonfree firmware in booted system

[Luk Claes]

Package: cdimage.debian.org
Severity: important

Dear Steve,

When testing the live image 
live-non-free/amd64/iso-hybrid/debian-live-8.0.0-amd64-gnome-desktop+nonfree.iso
 for Jessie, my laptop booted correctly, but I failed to get wireless. 
Apparently the firmware-iwlwifi is on the image, but not installed on the 
booted system. After mounting /dev/sdb1 and manually dpkg -i 
../pool/non-free/f/firmware-nonfree/firmware-iwlwifi_0.43_all.deb I could use 
the wireless.

As a live image is expected to work out of the box and this affects many users 
I have chosen to classify this as an important bug.

Cheers

Luk


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783317: Missing upstream version of update-smart-drivedb man page

[Christian Franke]

Package: smartmontools
Version: 6.3+svn4002-2
Severity: minor

The original update-smart-drivedb man page was provided for the Debian 
package (Bug #708433) . This man page was added 2014-06-26 to upstream 
smartmontools (r3929). An slightly updated version was included in 
smartmontools upstream release 6.3 (r3976).


The Debian package build from smartmontools r4002 still provides the 
original version. No problem for this package, but future versions of 
the upstream man page might contain significant changes.


Thanks,
Christian Franke
smartmontools.org


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783247: Please don't install acpid and acpi-support-base

[Michael Biebl]

Am 25.04.2015 um 22:29 schrieb Bjørn Mork:
> m...@linux.it (Marco d'Itri) writes:
>> On Apr 24, Michael Biebl  wrote:
>>
>>> A while ago, I already filed a bug to have acpid and acpi-support-base
>>> removed from tasksel [1], since it duplicates functionality which is
>>> nowadays provided by systemd/logind.
>> Indeed they are not needed when systemd is used (but are still required 
>> on sysvinit systems).
> 
> Are you sure about this? It was my first reaction as well, but then I
> remembered the troubles I had with logind conflicting with my acpid
> based setup.  
> 
> logind duplicates the functionality provided acpid and acpi-support-base
> defaults.  And logind seems to be mandatory regardless of init system.
> So I guess acpid and acpi-support-base should be removed from tasksel.

acpid and acpi-support-base have already been removed from tasksel.


-- 
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?



signature.asc
Description: OpenPGP digital signature

Bug#783311: closed by "Adam D. Barratt" (Re: Bug#783311: broken package dependencies results in removal of libreoffice)

[Mark Hedges]

Sorry about that.

Could a script switch both the symlinks at the same time?

Thank you.

Mark
On Apr 25, 2015 12:12 PM, "Debian Bug Tracking System" <
ow...@bugs.debian.org> wrote:

> This is an automatic notification regarding your Bug report
> which was filed against the libreoffice package:
>
> #783311: broken package dependencies results in removal of libreoffice
>
> It has been closed by "Adam D. Barratt" .
>
> Their explanation is attached below along with your original report.
> If this explanation is unsatisfactory and you have not received a
> better one in a separate message then please contact "Adam D. Barratt" <
> a...@adam-barratt.org.uk> by
> replying to this email.
>
>
> --
> 783311: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=783311
> Debian Bug Tracking System
> Contact ow...@bugs.debian.org with problems
>
>
> -- Forwarded message --
> From: "Adam D. Barratt" 
> To: Mark Hedges , 783311-d...@bugs.debian.org
> Cc:
> Date: Sat, 25 Apr 2015 20:09:25 +0100
> Subject: Re: Bug#783311: broken package dependencies results in removal of
> libreoffice
> On Sat, 2015-04-25 at 11:27 -0700, Mark Hedges wrote:
> > Package: libreoffice
> > Version: 1:3.5.4+dfsg2-0+deb7u3
> > Severity: grave
> > Tags: d-i
>
> It's really not d-i-related.
>
> > Justification: renders package unusable
> >
> > I tried an `apt-get update` and `apt-get dist-upgrade` this morning.
> >
> > It told me it was going to uninstall the 'gnome' metapackage, and
> > libreoffice and a bunch of its supporting packages, and would install
> > abiword.
>
> This is a side-effect of the fact that it's release weekend, you've got
> "stable" and "stable-security" in your sources.list and the security
> team have released a package through stable-security (as
> jessie-security) before the main archive has (publicly) switched to
> jessie.
>
> Although that's unfortunate, this should resolve itself within the next
> day or so, once the release is official. The sources.list files
> generated by the installer explicitly use codenames rather than "stable"
> to avoid this and similar situations.
>
> Regards,
>
> Adam
>
> -- Forwarded message --
> From: Mark Hedges 
> To: sub...@bugs.debian.org
> Cc:
> Date: Sat, 25 Apr 2015 11:27:56 -0700
> Subject: broken package dependencies results in removal of libreoffice
> Package: libreoffice
> Version: 1:3.5.4+dfsg2-0+deb7u3
> Severity: grave
> Tags: d-i
> Justification: renders package unusable
>
> I tried an `apt-get update` and `apt-get dist-upgrade` this morning.
>
> It told me it was going to uninstall the 'gnome' metapackage, and
> libreoffice and a bunch of its supporting packages, and would install
> abiword.
>
> I tried removing the 'gnome' metapackage, but that didn't help.
>
> Here's what's going on now:
>
> root@peanut:~# apt-get update
> Hit http://security.debian.org stable/updates Release.gpg
> Hit http://security.debian.org stable/updates Release
> Hit http://security.debian.org stable/updates/main Sources
> Hit http://ftp.us.debian.org stable Release.gpg
> Hit http://security.debian.org stable/updates/contrib Sources
> Hit http://security.debian.org stable/updates/non-free Sources
> Hit http://security.debian.org stable/updates/main i386 Packages
> Hit http://security.debian.org stable/updates/contrib i386 Packages
> Hit http://security.debian.org stable/updates/non-free i386 Packages
> Hit http://ftp.us.debian.org stable Release
> Hit http://security.debian.org stable/updates/contrib Translation-en
> Hit http://security.debian.org stable/updates/main Translation-en
> Hit http://security.debian.org stable/updates/non-free Translation-en
> Hit http://ftp.us.debian.org stable/main Sources
> Hit http://ftp.us.debian.org stable/non-free Sources
> Hit http://ftp.us.debian.org stable/contrib Sources
> Hit http://ftp.us.debian.org stable/main i386 Packages
> Hit http://ftp.us.debian.org stable/non-free i386 Packages
> Hit http://ftp.us.debian.org stable/contrib i386 Packages
> Hit http://ftp.us.debian.org stable/contrib Translation-en
> Hit http://ftp.us.debian.org stable/main Translation-en
> Hit http://ftp.us.debian.org stable/non-free Translation-en
> Reading package lists... Done
> root@peanut:~# apt-get dist-upgrade
> Reading package lists... Done
> Building dependency tree
> Reading state information... Done
> Calculating upgrade... Done
> The following packages will be REMOVED:
>   libreoffice libreoffice-base libreoffice-evolution
> libreoffice-filter-binfilter libreoffice-filter-mobiledev
> libreoffice-help-en-us
>   libreoffice-java-common libreoffice-report-builder-bin libreoffice-writer
> The following packages have been kept back:
>   curl libcurl3 libcurl3-gnutls libreoffice-base-core libreoffice-calc
> libreoffice-common libreoffice-core libreoffice-draw
>   libreoffice-emailmerge libreoffice-gnome libreoffice-gtk
> libreoffice-impress libreoffice-math libreoffice-style-galaxy
>   libreoffice-style-tango python-uno uno-libs3 ure wpasupplicant
> 0 u

Bug#697602: Bug count confusion when "unrelated" binary and source has same name

[Joachim Breitner]

Hi,

On Tue, 15 Jan 2013 13:24:33 +0100 Philipp Kern  wrote:
> On Mon, Jan 07, 2013 at 03:16:42PM +0100, Niels Thykier wrote:
> I'd seriously argue that one of the source packages has to change its name. I
> don't think that the two namespaces (source and binary packages) should be
> considered that separated, so that might warrant an addition to policy? ("Do
> not build a binary package that has the name of a totally unrelated source
> package"?)

I seriously think that source and binary packages are separate
namespace, and any tool that does trips over a conflict is probably not
very clear about what its data actually means and should be improved for
greater general robustness.

Greetings,
Joachim

-- 
Joachim "nomeata" Breitner
Debian Developer
  nome...@debian.org | ICQ# 74513189 | GPG-Keyid: F0FBF51F
  JID: nome...@joachim-breitner.de | http://people.debian.org/~nomeata


signature.asc
Description: This is a digitally signed message part

Bug#783247: Please don't install acpid and acpi-support-base

[Bjørn Mork]

m...@linux.it (Marco d'Itri) writes:
> On Apr 24, Michael Biebl  wrote:
>
>> A while ago, I already filed a bug to have acpid and acpi-support-base
>> removed from tasksel [1], since it duplicates functionality which is
>> nowadays provided by systemd/logind.
> Indeed they are not needed when systemd is used (but are still required 
> on sysvinit systems).

Are you sure about this? It was my first reaction as well, but then I
remembered the troubles I had with logind conflicting with my acpid
based setup.  

logind duplicates the functionality provided acpid and acpi-support-base
defaults.  And logind seems to be mandatory regardless of init system.
So I guess acpid and acpi-support-base should be removed from tasksel.


Bjørn


--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#781274: unblock: owncloud/7.0.4+dfsg-4

[Salvatore Bonaccorso]

Hi Adam, hi David,

On Sat, Apr 25, 2015 at 05:52:58PM +0100, Adam D. Barratt wrote:
> On Sat, 2015-04-18 at 16:09 -0400, David Prévot wrote:
> [...]
> > The said period now started (yet I can’t find any definition of what
> > that means exactly), and the three security issues affecting owncloud,
> > having their targeted fixes available in Sid, still affect the version
> > in Jessie.
> > 
> > Adding the security team in the loop for advice: what is the way to move
> > forward now? (Will the pending unblock requests be processed and I
> > shouldn’t worry, will the issues warrant a DSA and should I prepare it,
> > should we rather make a pu request, something else?)
> 
> The unblock has semi-automagically (via a device named a jmw) been
> converted to a p-u request, but I'd still appreciate the security team's
> input on this.

Ok.

> None of CVE-2015-301[123] currently have "no-dsa" markers on the
> security tracker so it's quite possible that a DSA would be appropriate.

I think nobody has looked in the concrete three at the moment. But I
will try to do so tomorrow and give feedback. From a rough overview I
think both CVE-2015-3012 and CVE-2015-3013 are more like no-dsa (since
the first is mitigated in modern browsers and the second is due to
non-recommended setups).

The CVE-2015-3011 actually is exposed without protection, since "While
ownCloud advises browsers to disable inline JavaScript execution this
vulnerability is caused by a eval like construct which is currently
allowed in our default Content-Security-Policy, thus this is
effectively exploitable in any browser.".

David, CVE-2015-3011 is exploitable if a victim user tries to edit a
specially crafted contact item which he has access to?

Regards,
Salvatore


signature.asc
Description: Digital signature

Bug#783316: Architecture list in README.{html,txt} is long outdated

[Ben Hutchings]

Package: cdimage.debian.org
Severity: normal

According to README.txt:

   Debian is available for various kinds of computers ("architectures"),
   like "IBM-compatible" PCs (i386), Compaq's Alpha, Sun's Sparc,
   Motorola/IBM's PowerPC, and (Strong)ARM processors. Check the ports
   page for more information.

This omits amd64, and includes several unsupported architectures and
obsolete company names.  (In fact it doesn't seem to match the list of
supported architectures at any point in time, though it was almost
correct around 2001-2002.)

Ben.

-- System Information:
Debian Release: 8.0
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 
'experimental')
Architecture: i386 (x86_64)
Foreign Architectures: amd64

Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#782738: Update of the package

[Gunter Königsmann]

I just have updated the package wxMaxima as the last upstream release 
has been updated (without a change in the version number).


The old changelog of the release read:

 * wxWidgets 3.0 is now a mandatory requirement
 * Various bugfixes
 * Loads of stability and performance fixes
 * Adjustable framerate for animations
 * A version-control friendly flavour of the wxmx format
 * A mimetype marker at the beginning of wxmx files
 * Better desktop integration
 * An offline manual
 * Autodetection of maxima's working directory on Mac and Windows
 * Use gnuplot_postamble instead of gnuplot_preamble
 * Dropped the hard dependency of TeXinfo
 * Translation updates
 * LaTeX: Use centered dots for multiplications
 * LaTeX: Added an option to select if superscripts should be
   placed above or after subscripts
 * LaTeX: Allow the user to add additional commands to the preamble.
 * Export of animations to pdf (via a pdfTeX file run) and html
 * Now complex conjugates are drawn as overstrike text.
 * bumped the minor version number of .wxmx: overstrike text is
   a new feature and therefore a file containing it cannot be read by
   old wxMaxima versions.
 * An autosave functionality that makes maxima work more like a mobile
   app whose documents are always saved.
 * A table-of-contents pane for faster navigation
 * It is now possible to scroll away from a running evaluation for
   arbitrary lengths of time and to choose to follow the evaluation
   process again.
 * Now TeX scales down images that are obviously too big for the page.
 * An undo for cell deletes and for adding cells.
 * Autocompletion for units from ezUnits


The new re-release addresses a windows-only bug and fixes the 
long-standing problem that the cursor sometimes instead of moving down 
jumped to the beginning of the worksheet.


Kind regards,

   Gunter.

Bug#783315: RFA: doctrine-sphinx-theme -- Sphinx theme used by Doctrine

[David Prévot]

Package: wnpp
Severity: normal

I request an adopter for the doctrine-sphinx-theme package.

I initially packaged it to build doctrine-orm-doc, but we don’t build it
anymore (not DFSG compliant anymore), so I’m not interested anymore into
its maintenance (and will ask for its removal if nobody shows any
interest into it before Stretch).

The package description is:
 This is the common Sphinx theme for all Doctrine project documentations.

Regards

David


signature.asc
Description: Digital signature

Bug#783314: mirror submission for osl.ugr.es

[Pablo Hinojosa]

Package: mirrors
Severity: wishlist

Submission-Type: new
Site: osl.ugr.es
Type: leaf
Archive-architecture: amd64 i386 
Archive-http: /debian/
IPv6: no
Archive-upstream: ftp.es.debian.org
Updates: once
Maintainer: Pablo Hinojosa 
Country: ES Spain
Sponsor: Universidad de Granada http://www.ugr.es/


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#779134: nmu: testdisk_6.14-3, partclone_0.2.73-2

[Jonathan Wiltshire]

On Tue, Feb 24, 2015 at 06:38:03PM +0100, Agustin Martin wrote:
> Seems that there was yet another ntfs-3g library transition, now from   
> libntfs-3g852 to libntfs-3g853 (source:ntfs-3g) making testdisk and
> partclone again uninstallable in sid. Please trigger a binary NMU.
> 
> Thanks in advance
> 
> nmu testdisk_6.14-3 . ALL . -m "Rebuild against ntfs-3g 1:2014.2.15AR.3-1 
> (Closes: #764284)"
> nmu partclone_0.2.73-2 . ALL . -m "Rebuild against ntfs-3g 1:2014.2.15AR.3-1 
> (Closes: #777249)"

Scheduled (yay coordination!).


-- 
Jonathan Wiltshire  j...@debian.org
Debian Developer http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51



signature.asc
Description: Digital signature

Bug#783313: python-paramiko: Can't talk to default jessie openssh servers (key exchange incompatible)

[Dominic Hargreaves]

On Sat, Apr 25, 2015 at 07:42:10PM +0100, Dominic Hargreaves wrote:
> Package: python-paramiko
> Version: 1.7.7.1-3.1
> Severity: important
> 
> As noted in  versions
> of paramiko < 1.15.1 (well, 1.7.7.1-3.1 and 1.10.1-1~bpo70+1 tested
> by me) can't talk to OpenSSH 6.7 with its default cipher list. Whilst one
> can work around this by using a non-default cipherlist, we shouldn't
> require our users to configure ciphers considered to be insecure.
> 
> I can't actually see the related commit, but perhaps it's more obvious
> to someone else?
> 
> It would be great to have this fixed in a wheezy point-release.

Hmm, in fact even adding back all Ciphers and MACs, I can't get it working
again:

Ciphers 
aes128-ctr,aes192-ctr,aes256-ctr,aes128-...@openssh.com,aes256-...@openssh.com,chacha20-poly1...@openssh.com,3des-cbc,aes128-cbc,aes192-cbc,aes256-cbc,arcfour,arcfour128,arcfour256,blowfish-cbc,cast128-cbc
MACs 
umac-64-...@openssh.com,umac-128-...@openssh.com,hmac-sha2-256-...@openssh.com,hmac-sha2-512-...@openssh.com,umac...@openssh.com,umac-...@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-md5,hmac-md5-96,hmac-ripemd160,hmac-sha1,hmac-sha1-96

(Interestingly enough, it works fine from squeeze -> jessie, just not
wheezy -> jessie).

Here's the traceback I forgot to include last time:

ssh: Exception: Incompatible ssh peer (no acceptable kex algorithm)
ssh: Traceback (most recent call last):
ssh:   File "/usr/lib/python2.7/dist-packages/paramiko/transport.py", line 
1546, in run
ssh: self._handler_table[ptype](self, m)
ssh:   File "/usr/lib/python2.7/dist-packages/paramiko/transport.py", line 
1618, in _negotiate_keys
ssh: self._parse_kex_init(m)
ssh:   File "/usr/lib/python2.7/dist-packages/paramiko/transport.py", line 
1731, in _parse_kex_init
ssh: raise SSHException('Incompatible ssh peer (no acceptable kex 
algorithm)')
ssh: SSHException: Incompatible ssh peer (no acceptable kex algorithm)

Dominic.


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783312: ITP: python-click -- Python package for creating beautiful command line interfaces.

[Simon Fondrie-Teitler]

Package: wnpp
Severity: wishlist
Owner: "Simon Fondrie-Teitler" 

* Package name: python-click
  Version : 4.0
  Upstream Author : Armin Ronacher 
* URL : click.pocoo.org
* License : BSD-3-clause
  Programming Lang: Python
  Description : Python package for creating beautiful command line 
interfaces.

Click is a Python package for creating beautiful command line interfaces
in a composable way with as little code as necessary.  It's the "Command
Line Interface Creation Kit".  It's highly configurable but comes with
sensible defaults out of the box.

It aims to make the process of writing command line tools quick and fun
while also preventing any frustration caused by the inability to implement
an intended CLI API.


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783313: python-paramiko: Can't talk to default jessie openssh servers (key exchange incompatible)

[Dominic Hargreaves]

Package: python-paramiko
Version: 1.7.7.1-3.1
Severity: important

As noted in  versions
of paramiko < 1.15.1 (well, 1.7.7.1-3.1 and 1.10.1-1~bpo70+1 tested
by me) can't talk to OpenSSH 6.7 with its default cipher list. Whilst one
can work around this by using a non-default cipherlist, we shouldn't
require our users to configure ciphers considered to be insecure.

I can't actually see the related commit, but perhaps it's more obvious
to someone else?

It would be great to have this fixed in a wheezy point-release.

Cheers,
Dominic.

-- System Information:
Debian Release: 7.8
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: i386 (i686)

Kernel: Linux 3.2.0-4-686-pae (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages python-paramiko depends on:
ii  python 2.7.3-4+deb7u1
ii  python-crypto  2.6-4+deb7u3

python-paramiko recommends no packages.

python-paramiko suggests no packages.

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#782830: attr patch for musl support

[Szabolcs Nagy]

Source: attr
Version: 1:2.4.47-2
Tags: patch
diff -Nru attr-2.4.47/debian/changelog attr-2.4.47/debian/changelog
--- attr-2.4.47/debian/changelog	2014-09-08 07:27:25.0 +
+++ attr-2.4.47/debian/changelog	2015-04-25 18:31:11.0 +
@@ -1,3 +1,12 @@
+attr (1:2.4.47-2.1) UNRELEASED; urgency=medium
+
+  * Non-maintainer upload.
+  * Backport upstream patch to support musl libc
+http://git.savannah.gnu.org/cgit/attr.git/commit/?id=7921157890d07858d092f4003ca4c6bae9fd2c38
+  * xattr.h is not completely removed because some packages depend on it (acl)
+
+ --  Szabolcs Nagy   Sat, 18 Apr 2015 10:36:23 +
+
 attr (1:2.4.47-2) unstable; urgency=medium
 
   * Standards-Version: 3.9.5.
diff -Nru attr-2.4.47/debian/patches/20-remove-attr-xattr.patch attr-2.4.47/debian/patches/20-remove-attr-xattr.patch
--- attr-2.4.47/debian/patches/20-remove-attr-xattr.patch	1970-01-01 00:00:00.0 +
+++ attr-2.4.47/debian/patches/20-remove-attr-xattr.patch	2015-04-25 18:32:35.0 +
@@ -0,0 +1,320 @@
+Description: Backport upstream patch for musl support
+ Drop attr/xattr.h and use sys/xattr.h from libc instead.
+Author: Szabolcs Nagy 
+Origin: upstream, http://git.savannah.gnu.org/cgit/attr.git/commit/?id=7921157890d07858d092f4003ca4c6bae9fd2c38
+Last-Update: 2015-04-18
+
+Index: attr-2.4.47/getfattr/getfattr.c
+===
+--- attr-2.4.47.orig/getfattr/getfattr.c
 attr-2.4.47/getfattr/getfattr.c
+@@ -29,7 +29,7 @@
+ #include 
+ #include 
+ 
+-#include 
++#include 
+ #include "config.h"
+ #include "walk_tree.h"
+ #include "misc.h"
+Index: attr-2.4.47/include/attributes.h
+===
+--- attr-2.4.47.orig/include/attributes.h
 attr-2.4.47/include/attributes.h
+@@ -21,6 +21,10 @@
+ #ifdef __cplusplus
+ extern "C" {
+ #endif
++#include 
++#ifndef ENOATTR
++# define ENOATTR ENODATA
++#endif
+ 
+ /*
+  *	An almost-IRIX-compatible extended attributes API
+Index: attr-2.4.47/include/xattr.h
+===
+--- attr-2.4.47.orig/include/xattr.h
 attr-2.4.47/include/xattr.h
+@@ -1,63 +1,5 @@
+-/*
+- * Copyright (c) 2001-2002 Silicon Graphics, Inc.
+- * All Rights Reserved.
+- *
+- * This program is free software; you can redistribute it and/or modify it
+- * under the terms of the GNU Lesser General Public License as published by
+- * the Free Software Foundation; either version 2.1 of the License, or (at
+- * your option) any later version.
+- *
+- * This program is distributed in the hope that it will be useful, but WITHOUT
+- * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
+- * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU Lesser General Public
+- * License for more details.
+- *
+- * You should have received a copy of the GNU Lesser General Public
+- * License along with this program.  If not, see
+- * .
+- *
+- */
+-#ifndef __XATTR_H__
+-#define __XATTR_H__
+-
+-#include 
+-
++#include 
+ #include 
+ #ifndef ENOATTR
+-# define ENOATTR ENODATA/* No such attribute */
++# define ENOATTR ENODATA
+ #endif
+-
+-#define XATTR_CREATE  0x1   /* set value, fail if attr already exists */
+-#define XATTR_REPLACE 0x2   /* set value, fail if attr does not exist */
+-
+-
+-__BEGIN_DECLS
+-
+-extern int setxattr (const char *__path, const char *__name,
+-		  const void *__value, size_t __size, int __flags) __THROW;
+-extern int lsetxattr (const char *__path, const char *__name,
+-		  const void *__value, size_t __size, int __flags) __THROW;
+-extern int fsetxattr (int __filedes, const char *__name,
+-		  const void *__value, size_t __size, int __flags) __THROW;
+-
+-extern ssize_t getxattr (const char *__path, const char *__name,
+-void *__value, size_t __size) __THROW;
+-extern ssize_t lgetxattr (const char *__path, const char *__name,
+-void *__value, size_t __size) __THROW;
+-extern ssize_t fgetxattr (int __filedes, const char *__name,
+-void *__value, size_t __size) __THROW;
+-
+-extern ssize_t listxattr (const char *__path, char *__list,
+-size_t __size) __THROW;
+-extern ssize_t llistxattr (const char *__path, char *__list,
+-size_t __size) __THROW;
+-extern ssize_t flistxattr (int __filedes, char *__list,
+-size_t __size) __THROW;
+-
+-extern int removexattr (const char *__path, const char *__name) __THROW;
+-extern int lremovexattr (const char *__path, const char *__name) __THROW;
+-extern int fremovexattr (int __filedes,   const char *__name) __THROW;
+-
+-__END_DECLS
+-
+-#endif	/* __XATTR_H__ */
+Index: attr-2.4.47/libattr/Makefile
+===
+--- attr-2.4.47.orig/libattr/Makefile
 attr-2.4.47/libattr/Makefile
+@@ -29,12 +29,6 @@ LT_AGE = 1
+ CFILES = libattr.c attr_copy_fd.c attr_copy_file.c attr_copy_check.c attr_copy_action.c
+ HFILES = libattr.h
+ 
+-

Bug#783293: browsers crash with 'illegal instruction' on i586

[Bernhard Übelacker]

Hello hikaru,
tried to have a look at the browser crashes.

Unfortunately there it seems some part of the webkit engine does 
generate code 'just in time'. But this generator uses instructions like 
'fucomip', which is only available on later than pentium.


I tried as a workaround to build a libqtwebkit package with attached 
little modification (does disable JIT, like for other archs).

With this the browser does not crash.

Again unfortunately this packages have not distinct files for i586 and 
i686 like e.g. libav.

Therefore would such a change affect every x86 user of this package.
So this is also just a workaround.

(I have not tested it, but I would expect this is the
same case for libjavascriptcoregtk-3.0-0.)

Kind regards,
Bernhard
--- a/debian/rules	2014-10-01 18:40:03.0 +0200
+++ b/debian/rules	2015-04-25 13:50:30.105388093 +0200
@@ -55,7 +55,7 @@ ifneq (,$(filter arm64 armel hppa mips m
 else ifeq ($(DEB_HOST_ARCH),armhf)
 	./Tools/Scripts/build-webkit --qt DEFINES+=WTF_USE_3D_GRAPHICS=0 DEFINES+=ENABLE_JIT=0 DEFINES+=ENABLE_YARR_JIT=0 DEFINES+=ENABLE_ASSEMBLER=0 $(QMAKE_ARGS) $(MAKE_ARGS)
 else
-	./Tools/Scripts/build-webkit --qt $(QMAKE_ARGS) $(MAKE_ARGS) --no-force-sse2
+	./Tools/Scripts/build-webkit --qt DEFINES+=ENABLE_JIT=0 DEFINES+=ENABLE_YARR_JIT=0 DEFINES+=ENABLE_ASSEMBLER=0 $(QMAKE_ARGS) $(MAKE_ARGS) --no-force-sse2
 endif
 
 override_dh_auto_install:

Bug#783310: RFP: duc -- a collection of tools for indexing, inspecting and visualizing disk usage

[Ico Doornekamp]

Package: wnpp
Severity: wishlist

* Package name: duc
  Version : 1.0
  Upstream Author : Ico Doornekamp 
* URL : https://github.com/zevv/duc
* License : GPLv2
  Programming Lang: C
  Description : a collection of tools for indexing, inspecting and 
visualizing disk usage. 

Duc is a collection of tools for indexing, inspecting and visualizing disk
usage. Duc maintains a database of accumulated sizes of directories of your
file system, and allows you to query this database with some tools, or create
fancy graphs showing you where your bytes are.

Duc is designed to scale to huge filesystems: it will index and display
hundreds of millions of files on petabytes of storage without problems.

Duc comes with a number of different interfaces for quering the
database: 

- command line interface similar to 'ls' or 'du'

- ncurses interface, similar to 'ncdu', but faster and better scaling

- X11 interface, similar to filelight, but faster

- CGI common gateway interface for navigating file systems through
  a web interface


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783311: broken package dependencies results in removal of libreoffice

[Mark Hedges]

Package: libreoffice
Version: 1:3.5.4+dfsg2-0+deb7u3
Severity: grave
Tags: d-i
Justification: renders package unusable

I tried an `apt-get update` and `apt-get dist-upgrade` this morning.

It told me it was going to uninstall the 'gnome' metapackage, and
libreoffice and a bunch of its supporting packages, and would install
abiword.

I tried removing the 'gnome' metapackage, but that didn't help.

Here's what's going on now:

root@peanut:~# apt-get update
Hit http://security.debian.org stable/updates Release.gpg
Hit http://security.debian.org stable/updates Release
Hit http://security.debian.org stable/updates/main Sources
Hit http://ftp.us.debian.org stable Release.gpg
Hit http://security.debian.org stable/updates/contrib Sources
Hit http://security.debian.org stable/updates/non-free Sources
Hit http://security.debian.org stable/updates/main i386 Packages
Hit http://security.debian.org stable/updates/contrib i386 Packages
Hit http://security.debian.org stable/updates/non-free i386 Packages
Hit http://ftp.us.debian.org stable Release
Hit http://security.debian.org stable/updates/contrib Translation-en
Hit http://security.debian.org stable/updates/main Translation-en
Hit http://security.debian.org stable/updates/non-free Translation-en
Hit http://ftp.us.debian.org stable/main Sources
Hit http://ftp.us.debian.org stable/non-free Sources
Hit http://ftp.us.debian.org stable/contrib Sources
Hit http://ftp.us.debian.org stable/main i386 Packages
Hit http://ftp.us.debian.org stable/non-free i386 Packages
Hit http://ftp.us.debian.org stable/contrib i386 Packages
Hit http://ftp.us.debian.org stable/contrib Translation-en
Hit http://ftp.us.debian.org stable/main Translation-en
Hit http://ftp.us.debian.org stable/non-free Translation-en
Reading package lists... Done
root@peanut:~# apt-get dist-upgrade
Reading package lists... Done
Building dependency tree
Reading state information... Done
Calculating upgrade... Done
The following packages will be REMOVED:
  libreoffice libreoffice-base libreoffice-evolution
libreoffice-filter-binfilter libreoffice-filter-mobiledev
libreoffice-help-en-us
  libreoffice-java-common libreoffice-report-builder-bin libreoffice-writer
The following packages have been kept back:
  curl libcurl3 libcurl3-gnutls libreoffice-base-core libreoffice-calc
libreoffice-common libreoffice-core libreoffice-draw
  libreoffice-emailmerge libreoffice-gnome libreoffice-gtk
libreoffice-impress libreoffice-math libreoffice-style-galaxy
  libreoffice-style-tango python-uno uno-libs3 ure wpasupplicant
0 upgraded, 0 newly installed, 9 to remove and 19 not upgraded.
After this operation, 87.2 MB disk space will be freed.
Do you want to continue [Y/n]? ^C
root@peanut:~# apt-get install libreoffice
Reading package lists... Done
Building dependency tree
Reading state information... Done
Some packages could not be installed. This may mean that you have
requested an impossible situation or if you are using the unstable
distribution that some required packages have not yet been created
or been moved out of Incoming.
The following information may help to resolve the situation:

The following packages have unmet dependencies:
 libreoffice : Depends: libreoffice-core (= 1:4.3.3-2+deb8u1) but
1:3.5.4+dfsg2-0+deb7u3 is to be installed
   Depends: libreoffice-avmedia-backend-gstreamer but it
is not going to be installed or
libreoffice-avmedia-backend-vlc but it is not
going to be installed
   Depends: fonts-dejavu but it is not installable
E: Unable to correct problems, you have held broken packages.
root@peanut:~# apt-get install libreoffice libreoffice-core
libreoffice-avmedia-backend-vlc fonts-dejavu
Reading package lists... Done
Building dependency tree
Reading state information... Done
Package fonts-dejavu is not available, but is referred to by another package.
This may mean that the package is missing, has been obsoleted, or
is only available from another source

E: Package 'fonts-dejavu' has no installation candidate
root@peanut:~# apt-cache search fonts | grep deja
ming-fonts-dejavu - Ming format DejaVue Fonts
ttf-dejavu - Metapackage to pull in ttf-dejavu-core and ttf-dejavu-extra
ttf-dejavu-core - Vera font family derivate with additional characters
ttf-dejavu-extra - Vera font family derivate with additional characters
root@peanut:~# apt-get upgrade libreoffice-core
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following packages have been kept back:
  curl libcurl3 libcurl3-gnutls libreoffice libreoffice-base
libreoffice-base-core libreoffice-calc libreoffice-common
libreoffice-core
  libreoffice-draw libreoffice-emailmerge libreoffice-evolution
libreoffice-gnome libreoffice-gtk libreoffice-help-en-us
libreoffice-impress
  libreoffice-math libreoffice-report-builder-bin
libreoffice-style-galaxy libreoffice-style-tango libreoffice-writer
python-uno uno-libs3 ure
  wpasupplicant
0 upgraded, 0 newly installed, 0 to remov

Bug#783304: debian-installer: Autoinstall fails waiting on realtek 8169 firmware despite having working wired network connection

[Cyril Brulebois]

Andrew M.A. Cater  (2015-04-25):
> Package: debian-installer
> Version: 20150422
> Severity: normal
> 
> Dear Maintainer,
> 
> *** Reporter, please consider answering these questions, where appropriate ***
> 
>* What led up to the situation?
> 
> Selecting auto install: hangs waiting for firmware, same hardware works fine 
> if expert install used
>* What exactly did you do (or not do) that was effective (or
>  ineffective)?
>* What was the outcome of this action?
>* What outcome did you expect instead?
> 
> System is zotac zbox id-6 - normally requires radeon, realtek, wifi firmware.

We'll need to know more. Are you actually supplying firmwares? If so,
how? What are you doing for this firmware step when performing a
(manual?) expert install?

Also, what's the contents of syslog in the “hanging” case?

Mraw,
KiBi.


signature.asc
Description: Digital signature

Bug#757025: I can help

[Jonathan Wiltshire]

Control: close -1

On Wed, Feb 11, 2015 at 01:39:50PM -0500, Richard Winters wrote:
> I can help, but I'm not a dev or maintainer.
> 
> I've posted in devel mailing list that I'm available for help, and got a
> reply from Jay that I'd need to find a sponser...
> 
> Anyone interested in taking over as maintainer-> I'm more than happy to
> give a helping hand.

When there's a plan, feel free to reopen this transition bug.

-- 
Jonathan Wiltshire  j...@debian.org
Debian Developer http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51



signature.asc
Description: Digital signature

Bug#783309: dovecot-core: dovecot 2.2.13 segfaults when selecting virtual folders

[James Bottomley]

Package: dovecot-core
Version: 1:2.2.13-1
Severity: important

Evolution and Squirrelmail misbehave badly with dovecot virtual search
folders (to the extent that evolution doesn't really function).  This
is because the folder segfaults when it is selected.  The logs show
this:

Apr 25 02:10:22 bedivere dovecot: imap(jejb): Fatal: master: service(imap): 
child 19837 killed with signal 11 (core dumps disabled)

The virtual folder triggering the crash has the configuration

namespace {
  prefix = virtual/
  separator = /
  location = virtual:~/Maildir/virtual
}

And the actual virtual/openstack/dovecot-virtual file is

Lists/openstack-dev
  inthread refs or from "james bottomley" keyword thread

It's a standard search for threads I've either replied to or marked with
an imap keyword 'thread'

The imap command

0 status virtual/openstack (MESSAGES UNSEEN RECENT)

Is crashing most of the time with

gdb /usr/lib/dovecot/imap
GNU gdb (Debian 7.7.1+dfsg-5) 7.7.1
Copyright (C) 2014 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later

This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show
copying"
and "show warranty" for details.
This GDB was configured as "i586-linux-gnu".
Type "show configuration" for configuration details.
For bug reporting instructions, please see:
.
Find the GDB manual and other documentation resources online at:
.
For help, type "help".
Type "apropos word" to search for commands related to "word"...
Reading symbols from /usr/lib/dovecot/imap...Reading symbols
from /usr/lib/debug//usr/lib/dovecot/imap...done.
done.
(gdb) r
Starting program: /usr/lib/dovecot/imap 
process 7868 is executing new program: /usr/bin/doveconf
process 7868 is executing new program: /usr/lib/dovecot/imap
* PREAUTH [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID
ENABLE IDLE SORT SORT=DISPLAY THREAD=REFERENCES THREAD=REFS
THREAD=ORDEREDSUBJECT MULTIAPPEND URL-PARTIAL CATENATE UNSELECT CHILDREN
NAMESPACE UIDPLUS LIST-EXTENDED I18NLEVEL=1 CONDSTORE QRESYNC ESEARCH
ESORT SEARCHRES WITHIN CONTEXT=SEARCH LIST-STATUS SPECIAL-USE BINARY
MOVE] Logged in as jejb
0 status virtual/openstack (MESSAGES UNSEEN RECENT)

Program received signal SIGSEGV, Segmentation fault.
0xb7f0814b in mail_search_args_deinit_sub (args=args@entry=0x8005caf0, 
arg=0x8005cb08) at mail-search.c:169
169 mail-search.c: No such file or directory.
(gdb) bt
#0  0xb7f0814b in mail_search_args_deinit_sub
(args=args@entry=0x8005caf0, 
arg=0x8005cb08) at mail-search.c:169
#1  0xb7f08aea in mail_search_args_deinit (args=0x8005caf0)
at mail-search.c:193
#2  0xb7d9ecf1 in virtual_mailbox_close_internal
(mbox=mbox@entry=0x800585d0)
at virtual-storage.c:253
#3  0xb7d9ed7b in virtual_mailbox_close (box=0x800585d0)
at virtual-storage.c:307
#4  0xb7f403ff in mail_thread_mailbox_close (box=0x800585d0)
at index-thread.c:628
#5  0xb7f0d3fe in mailbox_close (box=0x800585d0) at mail-storage.c:1182
#6  0xb7f0d472 in mailbox_free (_box=0xb878) at mail-storage.c:1197
#7  0x8001e0ae in imap_status_get (cmd=0x80053948, ns=0x80052220, 
mailbox=0x8003a250 "virtual/openstack", items=0xb8f8, 
result_r=0xb900) at imap-status.c:96
#8  0x80011f64 in cmd_status (cmd=0x80053948) at cmd-status.c:40
#9  0x80016847 in command_exec (cmd=0x80053948) at imap-commands.c:158
#10 0x800155cb in client_command_input (cmd=0x80053948) at
imap-client.c:778
#11 0x80015719 in client_command_input (cmd=0x80053948) at
imap-client.c:839
#12 0x800159cd in client_handle_next_command (remove_io_r=, 
client=0x80052ee0) at imap-client.c:877
#13 client_handle_input (client=0x80052ee0) at imap-client.c:889
#14 0x80015dd5 in client_input (client=0x80052ee0) at imap-client.c:931
---Type  to continue, or q  to quit---
#15 0xb7e202e3 in io_loop_call_io (io=0x800538c8) at ioloop.c:441
#16 0xb7e214be in io_loop_handler_run_internal (ioloop=0x80042458)
at ioloop-epoll.c:220
#17 0xb7e2036a in io_loop_handler_run (ioloop=0x80042458) at
ioloop.c:488
#18 0xb7e203f9 in io_loop_run (ioloop=0x80042458) at ioloop.c:465
#19 0xb7dc6985 in master_service_run (service=0x80042380, 
callback=0x800200b0 ) at master-service.c:566
#20 0x80008b44 in main (argc=1, argv=0xbd84) at main.c:400

I thought it might be this patch

http://hg.dovecot.org/dovecot-2.2/rev/5c6f49e2d8d9

But after applying I still get the same segfault.

The actual location of the fault is this assert in the code

   case SEARCH_INTHREAD:
i_assert(arg->value.search_args->refcount > 0);

So there's probably some problem with executing the actual search

The bug isn't present in the experimental package 2.2.15, so the fix
must be in the dovecot tree somewhere between 2.2.13 and 2.2.15, but I
can't find it.

-- Package-specific info:

-- System Info

Bug#783275: Info received (Bug#783275: Acknowledgement (linux: cross-building for armhf fails in install-udeb_armhf target due to missing module imx-hdmi))

[Wookey]

+++ Debian Bug Tracking System [2015-04-25 03:39 +]:

Confirming that the above patch lets the build complete. I don't know
enough about the modules involved to know if it is sufficient/complete.

Wookey
-- 
Principal hats:  Linaro, Debian, Wookware, ARM
http://wookware.org/


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783308: RFS: mediagoblin/0.7.1+dfsg1-1 [ITP]

[Simon Fondrie-Teitler]

Package: sponsorship-requests
Severity: wishlist

Dear mentors,

I am looking for a sponsor for my package "mediagoblin"

 * Package name: mediagoblin
   Version : 0.7.1+dfsg1-1
   Upstream Author : Various persons, GNU
 * URL : http://mediagoblin.org/
 * License : GPL-3+
   Section : web

It builds those binary packages:

mediagoblin - web application for sharing photos, video and other media
mediagoblin-doc - web application for sharing photos, video and other media - 
documentation

To access further information about this package, please visit the following 
URL:

http://mentors.debian.net/package/mediagoblin


Alternatively, one can download the package with dget using this command:

  dget -x 
http://mentors.debian.net/debian/pool/main/m/mediagoblin/mediagoblin_0.7.1+dfsg1-1.dsc

Changes since the last upload:

  * Initial release. (Closes: #657405)


Regards,
Simon


signature.asc
Description: PGP signature

Bug#717445: pu: package ndiswrapper/1.57-1+deb7u1

[Adam D. Barratt]

On Sat, 2014-12-06 at 21:22 +0100, Philipp Kern wrote:
> Control: tag -1 + moreinfo
> 
> Hi,
> 
> On Sun, Jan 26, 2014 at 02:57:22PM +0100, Julian Andres Klode wrote:
> > I'm most likely going to ship the patch below in 1.59-2, it just drops
> > the detection and hard-codes the modprobe.d/ndiswrapper.conf file, as
> > the other locations are not supported anymore.
> 
> if this request still applies, please provide an updated debdiff against 
> stable
> of what you want to ship. Thanks!

Poke.

Regards,

Adam


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#750010: pu: package mlmmj/1.2.18.1-1

[Adam D. Barratt]

On Sat, 2015-01-17 at 12:12 +, Adam D. Barratt wrote:
> On 2014-09-20 19:26, Adam D. Barratt wrote:
> > Control: tags -1 + moreinfo
> > 
> > On Sat, 2014-05-31 at 23:08 +0800, Thomas Goirand wrote:
> >> Upstream for MLMMJ has released a bugfix version correcting
> >> a few bugs, one of which is the loss of some emails in some
> >> cases, which is IMO bad enough to deserve a correction in
> >> Debian Stable.
> > 
> > Apologies for the delay in getting back to you.
> > 
> >> The upstream ChangeLog file contains:
> >> 
> >> 1.2.18.1
> >>  o Stop mlmmj-maintd deleting list posts while they are being sent
> >>  o Fix +list from crashing Mlmmj
> >>  o Fix bug that made double subscription possible
> >> 
> >> I believe these are important bugfixes.
> > [...]
> >> So, I would like to upgrade the current Wheezy version of
> >> MLMMJ to the upstream release 1.2.18.1.
> > 
> > That looks like it should be okay, but I'd appreciate a debdiff of the
> > proposed package, rebuilt (and tested :-) on a wheezy system and
> > versioned as 1.2.18.1-1~deb7u1.
> 
> Ping?

Re-ping.

Regards,

Adam


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#761128: transition: oce

[Jonathan Wiltshire]

Control: tag -1 moreinfo

On Wed, Sep 10, 2014 at 11:45:48PM +0200, D. Barbier wrote:
> I would like to upload oce 0.16 into unstable, it is currently in
> experimental. This source package provides several development
> libraries, their soname version have been bumped.

The build failures on arm64 and mips need ironing out first (bonus marks if
you can get ppc64el to build as well).


-- 
Jonathan Wiltshire  j...@debian.org
Debian Developer http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51



signature.asc
Description: Digital signature

Bug#783274: iceweasel: stop tracking ESR in testing/unstable and make an iceweasel-esr package instead

[Christoph Anton Mitterer]

On Sat, 2015-04-25 at 11:54 +0200, Sylvestre Ledru wrote: 
> > Even when they're still supported by upstream, they simply receive far less
> > scrutiny (in terms of security audits/analysis) than the current versions.
> > Also often security holes are silently fixed, without being identified as 
> > such.
> >
> As Firefox release manager, I can tell you that this statement is incorrect.
> For every security bug, if the information is not present, the question
> "is ESR31 impacted?".
Sure, I but I didn't talk about this at all.
I referred to code that is changed/removed which may contain bugs that
contains perhaps security issues, which are never identified as such,
maybe not even as "normal" bug.


> And if you saw any security holes being silently fixed, this was not on
> purpose and it was a mistake.
No I haven't seen any particular cases, but this has happened to all
different kinds of software, libc (GHOST), the kernel and so on.

I don't think that Mozilla can make extensive security audits of every
line of code that is about to be changed/removed, so it's IMHO naive to
believe that FF would be safe from this situation, whereas mostly all
other software is not

Best wishes,
Chris.


smime.p7s
Description: S/MIME cryptographic signature

Bug#776095: wheezy-pu: package sudo/1.8.5p2-1+nmu3

[Adam D. Barratt]

On Sat, 2015-03-14 at 03:19 +0100, Andreas Beckmann wrote:
> Followup-For: Bug #776095
> Control: retitle -1 wheezy-pu: package sudo/1.8.5p2-1+nmu3
> 
> Rebased patch after the recent security update.

Still fine...

Regards,

Adam


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#781566: COPYING2 contains some armchair licensing: FIXED

[Jerome BENOIT]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Dear All !

The upstream maintainer has discarded the COPYING2 license in his GIT upstream 
source for Apophenia.
So from now Apophenia will be distribution under the GSL-2 license.

I am waiting for the next release of Apophenia (release 0.999d) which may 
arrive soon to close this RC bug.

Thanks,
Jerome

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAEBAgAGBQJVO8UJAAoJEIC/w4IMSybjq3IH/Rz32gw0IoqK9lCxGE1c/Vwr
5TVmKnljo0lluE58GyucwiPqOEuvcbNVmh/bxBwbC0AJVZ6EwEiItcONtSTIuXrz
hNx7CijWDDGQq4ugyqzGaZoA9kBGHBifuEAdCuHlB6mLqwLmAnF0J6SJHy2G9QP0
MTNAK3q9TssKR+YpbMvjLtWvwpMi/GXOc7PMEWgcpwWqpWyvbLs1qFjiQAjRja7O
Ied642PWuuPjX/6lNjicfbxMTjQ3BvXkfLqTSoQ2iSKvUbrNlRLzEUUTTfX3E35x
5hOi8lPp+L/XyVnM1cZREJ7xAuOa3hpch+0vvKPo8oJc9/EWhd3XhHjFMZ30YFM=
=MW0o
-END PGP SIGNATURE-


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783307: ITP: fzf -- General-purpose command-line fuzzy finder

[Dimitrios Zorbas]

Package: wnpp
Severity: wishlist
Owner: Dimitrios Zorbas 

* Package name: fzf
  Version : 0.9.11
  Upstream Author : Junegunn Choi 
* URL : https://github.com/junegunn/fzf
* License : MIT
  Programming Lang: Go
  Description : General-purpose command-line fuzzy finder

The fzf program provides a fast curses-based finder which reads a list
from STDIN and writes the selected item to STDOUT. It integrates nicely
with tmux and can also be used as a vim plugin.

I intend to maintain the package.


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#781274: unblock: owncloud/7.0.4+dfsg-4

[Adam D. Barratt]

On Sat, 2015-04-18 at 16:09 -0400, David Prévot wrote:
[...]
> The said period now started (yet I can’t find any definition of what
> that means exactly), and the three security issues affecting owncloud,
> having their targeted fixes available in Sid, still affect the version
> in Jessie.
> 
> Adding the security team in the loop for advice: what is the way to move
> forward now? (Will the pending unblock requests be processed and I
> shouldn’t worry, will the issues warrant a DSA and should I prepare it,
> should we rather make a pu request, something else?)

The unblock has semi-automagically (via a device named a jmw) been
converted to a p-u request, but I'd still appreciate the security team's
input on this.

None of CVE-2015-301[123] currently have "no-dsa" markers on the
security tracker so it's quite possible that a DSA would be appropriate.

Regards,

Adam


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#781566: COPYING2 contains some armchair licensing: FIXED

[Paul Tagliamonte]

Outstanding, thank you!
  Paul

On Sat, Apr 25, 2015 at 12:47 PM, Jerome BENOIT  wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Dear All !
>
> The upstream maintainer has discarded the COPYING2 license in his GIT 
> upstream source for Apophenia.
> So from now Apophenia will be distribution under the GSL-2 license.
>
> I am waiting for the next release of Apophenia (release 0.999d) which may 
> arrive soon to close this RC bug.
>
> Thanks,
> Jerome
>
> -BEGIN PGP SIGNATURE-
> Version: GnuPG v1.4.12 (GNU/Linux)
>
> iQEcBAEBAgAGBQJVO8UJAAoJEIC/w4IMSybjq3IH/Rz32gw0IoqK9lCxGE1c/Vwr
> 5TVmKnljo0lluE58GyucwiPqOEuvcbNVmh/bxBwbC0AJVZ6EwEiItcONtSTIuXrz
> hNx7CijWDDGQq4ugyqzGaZoA9kBGHBifuEAdCuHlB6mLqwLmAnF0J6SJHy2G9QP0
> MTNAK3q9TssKR+YpbMvjLtWvwpMi/GXOc7PMEWgcpwWqpWyvbLs1qFjiQAjRja7O
> Ied642PWuuPjX/6lNjicfbxMTjQ3BvXkfLqTSoQ2iSKvUbrNlRLzEUUTTfX3E35x
> 5hOi8lPp+L/XyVnM1cZREJ7xAuOa3hpch+0vvKPo8oJc9/EWhd3XhHjFMZ30YFM=
> =MW0o
> -END PGP SIGNATURE-



-- 
:wq


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#782848: wheezy-pu: package httpcomponents-client/4.1.1-2

[Adam D. Barratt]

Control: tags -1 + confirmed

On Sat, 2015-04-18 at 20:56 +0200, Markus Koschany wrote:
> similar to commons-httpclient [1] the Java team would like to fix
> CVE-2014-3577 for httpcomponents-client in wheezy. This package is
> the successor of commons-httpclient and currently also affected by
> this exploitable MITM vulnerability. [2] Please find attached the
> proposed debdiff against the version of httpcomponents-client 4.1.1-2
> in wheezy.

Please go ahead, thanks.

Regards,

Adam


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#761933: Using libroken through heimdal-multidev

[Jelmer Vernooij]

Hi Ben,

I think a separate pkg-config file for libroken would be reasonable.
Ideally this would be upstream rather than Debian-specific. Let's take
this to the upstream bug tracker.

Cheers,

Jelmer


signature.asc
Description: Digital signature

Bug#783271: When configuring custom logging in /etc/krb5.conf,, xrb5 services are unable to write to these log files as they are not, permitted in the service configuration used by systemd

[Russ Allbery]

Carsten Klein  writes:

> Having a logging configuration like

> [logging]
> kdc = FILE:/var/log/krb5/kdc.log
> admin_server = FILE:/var/log/krb5/kadmin.log
> default = FILE:/var/log/krb5/kadmin.log

> in the /etc/krb5.conf configuration file, it will prevent both the
> services krb5-admin-server and krb5-kdc from working correctly as these
> services are not permitted to write to these locations as per the
> default systemd service descriptors.

[...]

> I don't know how to fix this with the current systemd. Any hints?

Create the directory /etc/systemd/system/krb5-kdc.service.d and create a
file in that directory named paths.conf with contents:

[Service]
ReadWriteDirectories=-/var/tmp /tmp /var/lib/krb5kdc -/var/run /run 
/var/log/krb5

Do similarly for /etc/systemd/system/krb5-admin-server.service.d and a
file named paths.conf.

Basically, you need to override the default setting to add the additional
directories you want the daemons to be able to write to.  The above will
override just that one directive, leaving everything else about the
configuration unchanged.

(Not sure why you'd want to do this rather than using syslog, though.)

-- 
Russ Allbery (r...@debian.org)   


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#780191: wheezy-pu: package tcllib/1.14-dfsg-3+deb7u1

[Adam D. Barratt]

Control: tags -1 + confirmed

On Tue, 2015-03-10 at 12:06 +0300, Sergei Golovan wrote:
> I'd like to upload the tcllib package to wheezy. The updated package
> fixed a small security related bug (see [1] for details).
> 
> I've attached the difference between the package currently in wheezy and
> proposed update.
> 
> [1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=780100
> 

+tcllib (1.14-dfsg-3+deb7u1) stable; urgency=low
+
+  * Added a patch from upstream which fixes an XSS vulnerability in
+the html module for  elements (closes: #780100).

Please change the distribution to be "wheezy" and go ahead.

Regards,

Adam


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#746946: wheezy-pu: package distro-info-data/0.23~deb7u1

[Adam D. Barratt]

On Thu, 2015-04-16 at 00:49 +0200, Stefano Rivera wrote:
> Hi Adam (2015.03.28_21:09:54_+0200)
> > Argh, this somehow fell through the cracks again. :-(
> 
> And then I put this off for two weeks, and it's now out of date.
> 
> New revision, including the 8.0 change, but not 7.0, as discussed. Based
> on #782668:

That looks fine, thanks.

[...]
> Apologies for the age of this bug. I get lazy sometimes.

I can't exactly complain...

Regards,

Adam


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#776617: wheezy-pu: fso stack

[Adam D. Barratt]

Control: tags -1 + confirmed

Apologies for managing to overlook this when you filed it.

On Fri, 2015-01-30 at 01:43 +0100, Sebastian Reichel wrote:
> I just requested unblocking of the fso stack for unstable -> testing
> migration. I also prepared fixed packages for wheezy and the security
> team send me here.
> 
> This is the debdiff for the proposed stable updates:
> 
> === debdiff fso-datad_0.11.0-1.dsc fso-datad_0.11.0-1+deb7u1.dsc ===
> 
> diff -Nru fso-datad-0.11.0/debian/changelog fso-datad-0.11.0/debian/changelog
> --- fso-datad-0.11.0/debian/changelog 2012-05-26 10:29:47.0 +0200
> +++ fso-datad-0.11.0/debian/changelog 2015-01-28 00:18:22.0 +0100
> @@ -1,3 +1,9 @@
> +fso-datad (0.11.0-1+deb7u1) wheezy-security; urgency=high
> +
> +  * Fix DBus permissions (Closes: CVE-2014-8156)

With s/-security//g in each of the new changelog stanzas, please go
ahead; thanks.

Regards,

Adam


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783306: cyrus-imapd-2.4: Cyrus IMAPd service fails to start

[Dmitry Katsubo]

Package: cyrus-imapd-2.4
Version: 2.4.17+caldav~beta10-18

Dear all,

I have the same problem as mentioned in bug#739318. In particular, Cyrus
is listed as service to be started, but it does not start:

# chkconfig --list cyrus-imapd
cyrus-imapd   0:off  1:off  2:on   3:on   4:on   5:on   6:off

After boot, no cyrus-imapd is listed in systemctl output. I have to
start it manually:

# /etc/init.d/cyrus-imapd start

After that it is listed as started:

# systemctl status cyrus-imapd.service
● cyrus-imapd.service - Cyrus IMAP/POP3 daemons
   Loaded: loaded (/lib/systemd/system/cyrus-imapd.service; disabled)
   Active: active (running) since Sat 2015-04-25 14:44:47 CEST; 3h 11min ago
  Process: 2406 ExecStartPre=/usr/sbin/cyrus init-helper start
(code=exited, status=0/SUCCESS)
 Main PID: 2432 (cyrmaster)
   CGroup: /system.slice/cyrus-imapd.service
   ├─2432 /usr/sbin/cyrmaster -l 32 -C /etc/imapd.conf -M
/etc/cyrus.conf
   ├─2763 notifyd
   ├─8591 imapd -U 30
   ├─8593 imapd -U 30
   └─8594 imapd -U 30

-- 
With best regards,
Dmitry


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783305: cyrus-imapd-2.4: saslauthd is not listed as "After" service

[Dmitry Katsubo]

Package: cyrus-imapd-2.4
Version: 2.4.17+caldav~beta10-18

Hello,

I have noticed that saslauthd.service is not listed as service that has
to be started before Cyrus. If that service is active, it should be
started before as in my particular situation it is used for users'
authentication.

Expected that /lib/systemd/system/cyrus-imapd.service reads as follows:

After=local-fs.target network.target saslauthd.service

-- 
With best regards,
Dmitry


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783304: debian-installer: Autoinstall fails waiting on realtek 8169 firmware despite having working wired network connection

[Andrew M.A. Cater]

Package: debian-installer
Version: 20150422
Severity: normal

Dear Maintainer,

*** Reporter, please consider answering these questions, where appropriate ***

   * What led up to the situation?

Selecting auto install: hangs waiting for firmware, same hardware works fine if 
expert install used
   * What exactly did you do (or not do) that was effective (or
 ineffective)?
   * What was the outcome of this action?
   * What outcome did you expect instead?

System is zotac zbox id-6 - normally requires radeon, realtek, wifi firmware.
-- System Information:
Debian Release: 8.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: armhf

Kernel: Linux 3.16.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783256: jessie-pu: package clamav/0.98.6+dfsg-1+deb8u1

[Scott Kitterman]

On Saturday, April 25, 2015 11:20:20 AM Julien Cristau wrote:
> Control: tags -1 confirmed
> 
> On Fri, Apr 24, 2015 at 15:15:12 -0400, Scott Kitterman wrote:
> > Package: release.debian.org
> > Severity: normal
> > Tags: jessie
> > User: release.debian@packages.debian.org
> > Usertags: pu
> > 
> > There's copy/paste error in the clamav-daemon postinst that will cause an
> > upgrade failure if a custom pidfile location is in use.  We didn't push a
> > fix for this earlier, since we thought the bug would only be triggered
> > very rarely.
> > 
> > Yesterday, Ubuntu had a new release with a clamav version that had this
> > same error and got stacks of bug reports.  I expect Debian will be the
> > same and our initial assessment that this would occur infrequently was
> > wrong.
> > 
> > The fix is trivial and has no regression risk (if somehow it's still
> > wrong, it will just continue not to work).  Given this seems to be rather
> > more common that we thought, I'd like to get a fix out for Jessie most
> > soon.  Debdiff attached.
> 
> Feel free to upload to jessie.

Uploaded.  Thanks,

Scott K

signature.asc
Description: This is a digitally signed message part.

Bug#783303: chromium: Chromium crash after nVidia driver upgrade

[Nicolas Patrois]

Package: chromium
Version: 41.0.2272.118-1
Severity: normal

Dear Maintainer,

Since the last nVidia driver upgrade (from 346-35 to 346-59, yes the package 
downloaded from nVidia), Chromium completely crashes.
Look at the log:

Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559131] [ cut here 
]
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559137] kernel BUG at 
/build/linux-mckFlX/linux-3.9.8/kernel/auditsc.c:1772!
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559139] invalid opcode:  [#5] SMP 
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559141] Modules linked in: nvidia(PO) 
xt_multiport iptable_filter ip_tables x_tables nfnetlink_queue nfnetlink_log 
nfnetlink bluetooth rfkill crc16 binfmt_misc cpufreq_conservative cpufreq_stats 
cpufreq_userspace cpufreq_powersave pci_stub vboxpci(O) vboxnetadp(O) 
vboxnetflt(O) vboxdrv(O) sha256_generic hmac nls_utf8 cifs nfsd auth_rpcgss 
nfs_acl nfs lockd dns_resolver fscache sunrpc decnet uvcvideo videobuf2_vmalloc 
videobuf2_memops videobuf2_core videodev media snd_usb_audio snd_usbmidi_lib 
snd_hda_codec_hdmi evdev serio_raw acpi_cpufreq mperf kvm_amd kvm pcspkr 
k10temp drm sp5100_tco processor thermal_sys wmi button snd_hda_codec_realtek 
snd_hda_intel snd_hda_codec i2c_piix4 snd_hwdep i2c_core shpchp it87 hwmon_vid 
snd_seq_midi_emul snd_seq_midi snd_seq_midi_event snd_rawmidi snd_seq 
snd_seq_device snd_pcm_oss snd_mixer_oss snd_pcm snd_page_alloc snd_timer snd 
soundcore fuse parport_pc ppdev lp parport autofs4 hid_generic usbhid hid ext3 m
 bcache jbd dm_mirror dm_region_hash dm_log dm_mod mic
Apr 25 17:20:03 new-host-2 vmunix: ocod
Apr 25 17:20:03 new-host-2 vmunix: e sg sr_mod cdrom sd_mod crc_t10dif 
ata_generic firewire_ohci firewire_core crc_itu_t ohci_hcd ehci_pci 8139too 
ehci_hcd 8139cp pata_atiixp usbcore usb_common ahci libahci libata scsi_mod 
r8169 mii floppy [last unloaded: nvidia]
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559190] Pid: 983, comm: chromium 
Tainted: P  DO 3.9-1-686-pae #1 Debian 3.9.8-1 Gigabyte Technology Co., 
Ltd. GA-880GM-UD2H/GA-880GM-UD2H
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559192] EIP: 0060:[] 
EFLAGS: 00010202 CPU: 1
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559197] EIP is at 
__audit_syscall_entry+0x27/0xbd
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559198] EAX: 4003 EBX: f0b38000 
ECX: b6ae928d EDX: 0021
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559200] ESI: b7d39710 EDI: f40be550 
EBP: f06e ESP: f06e1fa8
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559201]  DS: 007b ES: 007b FS: 00d8 
GS: 00e0 SS: 0068
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559203] CR0: 80050033 CR2: b61a55b0 
CR3: 331a8000 CR4: 07f0
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559205] DR0:  DR1:  
DR2:  DR3: 
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559206] DR6: 0ff0 DR7: 0400
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559208] Process chromium (pid: 983, 
ti=f06e task=f40be550 task.ti=f06e)
Apr 25 17:20:03 new-host-2 syslogd: /dev/:0: No such file or directory

Message from syslogd@new-host-2 at Sat Apr 25 17:20:03 2015 ...
new-host-2 vmunix: [ 5981.559208] Process chromium (pid: 983, ti=f06e 
task=f40be550 task.ti=f06e)
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559209] Stack:
Apr 25 17:20:03 new-host-2 syslogd: /dev/:0: No such file or directory

Message from syslogd@new-host-2 at Sat Apr 25 17:20:03 2015 ...
new-host-2 vmunix: [ 5981.559209] Stack:
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559210]  b6ae928d b7d39710 b7d3db70 
c1300a1a  b79e9794 b7d39710 b7d3db70
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559214]  bf91e0e8 0021 007b 
007b  0033 0021 b15a4424
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559217]  0073 0292 bf91dfcc 
007b 4277fc6d 9250b127
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559220] Call Trace:

Message from syslogd@new-host-2 at Sat Apr 25 17:20:03 2015 ...
Apr 25 17:20:03 new-host-2 syslogd: /dev/:0: No such file or directory
new-host-2 vmunix: [ 5981.559220] Call Trace:
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559224]  [] ? 
sysenter_audit+0x1e/0x25
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559225] Code: 00 5b 5e c3 57 56 64 8b 
3d 18 8f 4e c1 53 8b 9f 18 03 00 00 85 db 0f 84 a1 00 00 00 83 7b 04 00 75 09 
83 bb bc 01 00 00 00 74 02 <0f> 0b 83 3d 50 bf 53 c1 00 0f 84 83 00 00 00 89 83 
10 02 00 00

Message from syslogd@new-host-2 at Sat Apr 25 17:20:03 2015 ...
new-host-2 vmunix: [ 5981.559225] Code: 00 5b 5e c3 57 56 64 8b 3d 18 8f 4e c1 
53 8b 9f 18 03 00 00 85 db 0f 84 a1 00 00 00 83 7b 04 00 75 09 83 bb bc 01 00 
00 00 74 02 <0f> 0b 83 3d 50 bf 53 c1 00 0f 84 83 00 00 00 89 83 10 02 00 00

Message from syslogd@new-host-2 at Sat Apr 25 17:20:03 2015 ...
new-host-2 vmunix: [ 5981.559242] EIP: [] 
__audit_syscall_entry+0x27/0xbd SS:ESP 0068:f06e1fa8
Apr 25 17:20:03 new-host-2 syslogd: /dev/:0: No such file or directory
Apr 25 17:20:03 new-host-2 vmunix: [ 5981.559242] EIP: [] 
__audit_s

Bug#776094: dovecot-imapd: corrupts mailbox after trying to retrieve it

[Santiago Vila]

tags 776094 +help
thanks

I hope the maintainer does not mind if I tag this bug with "help".
We really need it.


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783302: RFS: entityx/1.1.2-1 [ITP] -- fast, type-safe C++ Entity Component System

[Jason Pleau]

Package: sponsorship-requests
Severity: wishlist

Dear mentors,

I am looking for reviews (and possibly a sponsor) for my package "entityx":

* Package name: entityx
  Version : 1.1.2-1
  Upstream Author : Alec Thomas 
* URL : https://github.com/alecthomas/entityx
* License : Expat
  Section : libs

It builds those binary packages:

  libentityx-doc   : fast, type-safe C++ Entity Component System (API
documentation)

  libentityx-dev   : fast, type-safe C++ Entity Component System
(development files)

  libentityx1  : fast, type-safe C++ Entity Component System

  libentityx1-dbg  : Debug symbols for libentityx1


To access further information about this package, please visit the
following URL:

  http://mentors.debian.net/package/entityx


Alternatively, one can download the package with dget using this command:

  dget -x
http://mentors.debian.net/debian/pool/main/e/entityx/entityx_1.1.2-1.dsc

For people who prefer working with git, there is also a git repository
of the packaging files available at
https://anonscm.debian.org/cgit/collab-maint/entityx.git -- one can
clone it using

  git clone git://anonscm.debian.org/collab-maint/entityx.git


More information about entityx can be obtained from
https://github.com/alecthomas/entityx

Changes since the last upload:

 * Initial release (Closes: #772414)

Additionnal notes:

1.

I added a lintian-override for the symbols file in libentityx1. The
generated symbols were different between i386 and amd64, and since I
can't test for other architectures myself I couldn't tell if they were
different on say armel for example. Any help on that is appreciated.

2.

To make the build reproducible, I had to use a newer version of
dh-strip-nondeterminism than what's available in unstable right now.
(This was to remove timestamps from PNG files)

I built the git version available here:
https://anonscm.debian.org/cgit/reproducible/strip-nondeterminism.git (I
assume it'll get uploaded to unstable after jessie release).

This means my package cannot be included in Debian right now, but I'd be
happy if someone could review my package until dh-strip-determinism is
in unstable.

Thanks !

-- 
Jason Pleau


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783300: [Pkg-salt-team] Bug#783300: salt: CVE-2015-1838: insecure /tmp file handling in salt/modules/serverdensity_device.py

[Joe Healy]

Thanks for sending this through.

I'm currently waiting on salt 2014.7.2 to progress through the NEW queue. I
suspect the best course of action now is to prepare a 2014.7.4 for a
sponsor to upload to the NEW queue and wait for its transition. I
guess/hope that the security issue is likely to mean it does not sit in the
NEW queue for long.

Thanks,

Joe

Bug#783300: salt: CVE-2015-1838: insecure /tmp file handling in salt/modules/serverdensity_device.py

[Salvatore Bonaccorso]

Control: retitle -1 salt: CVE-2015-1838 CVE-2015-1839

On Sat, Apr 25, 2015 at 05:11:23PM +0200, Salvatore Bonaccorso wrote:
> Source: salt
> Version: 2014.7.0+ds-2
> Severity: normal
> Tags: security upstream patch fixed-upstream
> 
> Hi
> 
> There is an insecure use of /tmp file handling in
> salt/modules/serverdensity_device.py which afaics is only in 2014.7.0
> (so affecting experimental only) and is fixed in 2014.7.4.
> 
> See: https://bugzilla.redhat.com/show_bug.cgi?id=1212784

And actually there is as well CVE-2015-1839, which affects the same
set of versions, so using the same bug report (retitled accordingly).

More information at
https://bugzilla.redhat.com/show_bug.cgi?id=1212788

Regards,
Salvatore


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#776094: dovecot-imapd: corrupts mailbox after trying to retrieve it

[Santiago Vila]

Hello.

Sorry for the late reply. I have just realized about your messages.

Please note that in this bug I'm just the submitter, not the
maintainer, and therefore any message sent to the 776...@bugs.debian.org
address is received only by the maintainer abd the bug system, but not
by me.

The error may be reproduced on any Debian system running jessie if you
do exactly what I describe in the bug report.

In particular:

> I ended up with the messages re-appearing into /var/mail/amw which I
> then re-copied to the inbox-b and ran fetchmail again.

Please don't do it that way.

The error is not about the --folder option of fetchmail not working in
a "generic sense". It's about a *particular* mbox which does not work,
namely this one:

https://bugs.debian.org/cgi-bin/bugreport.cgi?msg=5;filename=inbox-b.gz;att=1;bug=776094

> I did this in a loop and gave up after running it over 250 times with
> any corruption.

Please test it on a Debian system running jessie exactly as I
describe, do not change *anything*.

> But note my comment at the bottom I did see one possible configuration
> problem on locking files - which isn't set on the default set up - but
> it made *NO* difference
> to me...
> 
> 1. I created a vanilla dovecot-imapd installation with one user and
> sent some mail to it's account in /var/mail/amw
> 2. I then created the remote folder by copying the mbox so:
>   cp /var/spool/mail/amw /home/amw/mail/inbox-b
> 
> 3. Then I confirmed the remote folder was ok as below:
> 
>   jessie% fetchmail -c localhost --folder  inbox-b

Please do this instead:

fetchmail -a localhost --folder inbox-b -m "true"

as I wrote in the initial bug report:

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776094

Here, we are not interested at all in whatever fetchmail does with the
messages once they have been retrieved, only about dovecot giving them
to fetchmail, and how the remote folder is corrupted afterwards.

>   * I repeated this in a loop:
> while true; do
>   cp /var/spool/mail/amw /home/amw/mail/inbox-b && fetchmail -a
> localhost --folder  inbox-b -m true && sleep 1 \nT=$(($T+1))
>   echo Try $T\nsleep 1
> done

No loop, please. This is not a "random" error, it's an error that I
can always reproduce with the provided inbox-b test case.

Please make sure that

a) You are using Debian jessie.
b) The inbox-b file is exactly the one I provided.
c) You run fetchmail using the provided command line.


BTW: We are releasing jessie as Debian 8 today, but I still hope that
this may be fixed in a point release.

Note: By looking at the test case one might think about the typical
blurb in security announcements: "A specially crafted message makes
program foo to crash..", as if this needed some kind of "bad faith"
from an attacker. This is not really the case. I hit this bug nearly
one day every two with real email.

I wonder: nobody is able to reproduce this, or just nobody *tried*?


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783291: /bin/touch is missing if built with BUSYBOX=n

[Mike Kupfer]

Michael Biebl wrote:

> Am 25.04.2015 um 15:55 schrieb Michael Biebl:
> > Am 25.04.2015 um 14:21 schrieb Michael Biebl:
> >> I can reproduce the missing /bin/touch if I build the initramfs without
> >> busybox support. Can you check your /etc/initramfs-tools/initramfs.conf
> >> if it contains BUSYBOX=n or if you have a snippet in
> >> /etc/initramfs-tools/conf.d/ which sets BUSYBOX=n. Can you confirm, that
> >> the missing /bin/touch is due to BUSYBOX=n?
> > 
> > The alternative is, that you have BUSYBOX=y, but you've uninstalled the
> > busybox package.
> > 
> > Mike, can you confirm that either one of those two is the case?

It's the latter: initramfs.conf has BUSYBOX=y, but busybox is not
installed.  I don't recall uninstalling it, but this VM has a pretty
long history.

regards,
mike


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#779482: support for ppc64el not complete

[tony mancill]

On Sat, 07 Mar 2015 10:08:35 +0100 =?ISO-8859-1?Q?S=E9bastien?= Villemot
 wrote:
> Control: retitle -1 support for powerpc, ppc64el and s390x not complete
> 
> On Sun, 1 Mar 2015 10:57:37 +0100 =?iso-8859-1?Q?S=E9bastien?= Villemot 
>  wrote:
> > Package: libgluegen2-rt-java
> > Version: 2.2.4-2
> > Severity: grave
> 
> > ppc64el is listed in the architectures supported by the package, but the
> > support does not seem to be complete, and prevents scilab from starting.
> 
> A similar issue affects powerpc and s390x.

Upstream has been working on architecture support recently.  I'm
currently trying to determine whether it's better to patch 2.2.4, or
simply update to 2.3.1. Any concerns with taking the latter approach?

Cheers,
tony



signature.asc
Description: OpenPGP digital signature

Bug#782984: sqlite3: please package sqlite3 version 3.8.9

[GCS]

Hi Carsten,

On Mon, Apr 20, 2015 at 1:45 PM, Carsten Schoenert
 wrote:
> yes of course, what would be fine as we are starting on the friday
> before the Debian Groupware Meeting [1] and can then prepare a upload of the
> Icedove 38.0~b2.
 There's a preliminary package available[2], which needs testing on
Hurd. The locking logic is changed and I don't know if I've updated
the Hurd support patch correctly or not.

Regards,
Laszlo/GCS
> [1] https://wiki.debian.org/GroupwareMeeting2015-04-24to26
[2] dget -x http://www.barcikacomp.hu/gcs/sqlite3_3.8.9-1.dsc


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783301: liboss4-salsa-dev: Overwrites files from liboss4-salsa-asound2

[John Paul Adrian Glaubitz]

Source: oss4
Version: 4.2-build2010-2
Severity: serious
Justification: affects other packages

Hello!

I recently tried wanted to build a package on kFreeBSD which requires ALSA
emulation, which is why I installed the liboss4-salsa-asound2 package. When
I tried to install the -dev package as well, the installation of the -dev
package would overwrite files from the liboss4-salsa-asound2 runtime
package.

Tested on falla.debian.org in a schroot:

glaubitz@falla:~$ dd-schroot-cmd -c sid_kfreebsd-amd64-dchroot-1429974156-24030 
apt-get install liboss4-salsa-asound2 liboss4-salsa-dev
Reading package lists...
Building dependency tree...
Reading state information...
The following extra packages will be installed:
  liboss4-salsa2
The following NEW packages will be installed:
  liboss4-salsa-asound2 liboss4-salsa-dev liboss4-salsa2
0 upgraded, 3 newly installed, 0 to remove and 0 not upgraded.
Inst liboss4-salsa2 (4.2-build2010-2 Debian:unstable [kfreebsd-amd64])
Inst liboss4-salsa-asound2 (4.2-build2010-2 Debian:unstable [kfreebsd-amd64])
Inst liboss4-salsa-dev (4.2-build2010-2 Debian:unstable [kfreebsd-amd64])
Conf liboss4-salsa2 (4.2-build2010-2 Debian:unstable [kfreebsd-amd64])
Conf liboss4-salsa-asound2 (4.2-build2010-2 Debian:unstable [kfreebsd-amd64])
Conf liboss4-salsa-dev (4.2-build2010-2 Debian:unstable [kfreebsd-amd64])
Do it for real [Y/n]: y
Reading package lists...
Building dependency tree...
Reading state information...
The following extra packages will be installed:
  liboss4-salsa2
The following NEW packages will be installed:
  liboss4-salsa-asound2 liboss4-salsa-dev liboss4-salsa2
0 upgraded, 3 newly installed, 0 to remove and 0 not upgraded.
Need to get 131 kB of archives.
After this operation, 758 kB of additional disk space will be used.
Get:1 http://debian.csail.mit.edu/debian/ sid/main liboss4-salsa2 
kfreebsd-amd64 4.2-build2010-2 [43.0 kB]
Get:2 http://debian.csail.mit.edu/debian/ sid/main liboss4-salsa-asound2 
kfreebsd-amd64 4.2-build2010-2 [7690 B]
Get:3 http://debian.csail.mit.edu/debian/ sid/main liboss4-salsa-dev 
kfreebsd-amd64 4.2-build2010-2 [80.1 kB]
Fetched 131 kB in 0s (1341 kB/s)
Download complete and in download only mode
Reading package lists...
Building dependency tree...
Reading state information...
The following extra packages will be installed:
  liboss4-salsa2
The following NEW packages will be installed:
  liboss4-salsa-asound2 liboss4-salsa-dev liboss4-salsa2
debconf: delaying package configuration, since apt-utils is not installed
0 upgraded, 3 newly installed, 0 to remove and 0 not upgraded.
Need to get 0 B/131 kB of archives.
After this operation, 758 kB of additional disk space will be used.
Selecting previously unselected package liboss4-salsa2:kfreebsd-amd64.
(Reading database ... 23030 files and directories currently installed.)
Preparing to unpack .../liboss4-salsa2_4.2-build2010-2_kfreebsd-amd64.deb ...
Unpacking liboss4-salsa2:kfreebsd-amd64 (4.2-build2010-2) ...
Selecting previously unselected package liboss4-salsa-asound2:kfreebsd-amd64.
Preparing to unpack 
.../liboss4-salsa-asound2_4.2-build2010-2_kfreebsd-amd64.deb ...
Unpacking liboss4-salsa-asound2:kfreebsd-amd64 (4.2-build2010-2) ...
Selecting previously unselected package liboss4-salsa-dev.
Preparing to unpack .../liboss4-salsa-dev_4.2-build2010-2_kfreebsd-amd64.deb ...
Unpacking liboss4-salsa-dev (4.2-build2010-2) ...
dpkg: error processing archive 
/var/cache/apt/archives/liboss4-salsa-dev_4.2-build2010-2_kfreebsd-amd64.deb 
(--unpack):
 trying to overwrite '/usr/lib/x86_64-kfreebsd-gnu/libasound.so.2', which is 
also in package liboss4-salsa-asound2:kfreebsd-amd64 4.2-build2010-2
Errors were encountered while processing:
 /var/cache/apt/archives/liboss4-salsa-dev_4.2-build2010-2_kfreebsd-amd64.deb
E: Sub-process /usr/bin/dpkg returned an error code (1)
Command apt-get --assume-yes -o Dpkg::Options::=--force-confnew install -- 
liboss4-salsa-asound2 liboss4-salsa-dev exited with exit code 1.
glaubitz@falla:~$

Cheers,
Adrian


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783300: salt: CVE-2015-1838: insecure /tmp file handling in salt/modules/serverdensity_device.py

[Salvatore Bonaccorso]

Source: salt
Version: 2014.7.0+ds-2
Severity: normal
Tags: security upstream patch fixed-upstream

Hi

There is an insecure use of /tmp file handling in
salt/modules/serverdensity_device.py which afaics is only in 2014.7.0
(so affecting experimental only) and is fixed in 2014.7.4.

See: https://bugzilla.redhat.com/show_bug.cgi?id=1212784

Please include the CVE id in changelog if you fix this issue.

Regards,
Salvatore


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#783258: flac: FTBFS due to missing symbols

[Dmitry Smirnov]

.symbols seems not to be very useful for C++ and they come with high 
maintenance cost. I'd probably just remove "libflac++6.symbols"...

See also

http://wiki.debian.org/UsingSymbolsFiles#See_also_about_C.2B-.2B-
-- 
Cheers,
 Dmitry Smirnov


signature.asc
Description: This is a digitally signed message part.