Bug#681471: gunicorn 0.14.4 does not properly limit requests size
Package: gunicorn Version: 0.14.3-1 Severity: grave Tags: security fixed-upstream gunicorn 0.14 introduced the ability to check if a request line is too large to protect against DoS, however the implementation had the following flaws: * Gunicorn does not limit the size of a request header (the limit_request_field_size configuration parameter is not used) * When the configured request limit is lower than its maximum value, the maximum value is used instead. For instance if limit_request_line is set to 1024, gunicorn will only limit the request line to 4096 chars (this issue also affects limit_request_fields) * Request limits are not limited to their maximum authorized values. For instance it is possible to set limit_request_line to 64K (this issue also affects limit_request_fields) This has been fixed upstream in 0.14.4: https://github.com/benoitc/gunicorn/commit/d79ff999ce895e2ed0ea02aa8729e6da736dfc27 -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#681471: gunicorn 0.14.4 does not properly limit requests size
+1 for migrating 0.14.5 from sid to wheezy. On 12-07-13 09:47 AM, Chris Lamb wrote: Hi Djoume, Package: gunicorn Version: 0.14.3-1 Severity: grave [..] This has been fixed upstream in 0.14.4: We could cherry-pick this commit and upload the result to wheezy-p-u but I suggest that we just request an unblock for the current sid version. Just looks like bugfixes since 0.14.3 and 0.14.5 has been sitting in sid for at least 10 days now. (Or maybe it will migrate automatically; can't remember how we are doing the borderline exemptions for this freeze.) Regards, -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#462313: subversion-tools: manpages of svnwrap has a wrong inetd.conf example
Package: subversion-tools Severity: normal Hi, in svnwrap manpage the recommanded way of configuring inetd.conf is: svn stream tcp nowait my_svn_user /usr/bin/svnwrap svnserve -i -r /srv/svn This configuration gave me svn: Malformed network data when I try to checkout. I think that should be : svn stream tcp nowait my_svn_user /usr/bin/svnwrap svnserve svnserve -i -r /srv/svn More info : http://svn.haxx.se/users/archive-2004-03/0809.shtml Cheers -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.21.5-grsec--grs-ipv6-32 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#446102: boxes: New upstream version available
Package: boxes Version: 1.0.1a-2.2 Severity: normal Hello, Since July 23, 2006 a new upstream version is available on : http://boxes.thomasjensen.com/ It includes all fixes contained in boxes-1.0.1.patch except the config file location. It also includes new designs (boxquote, stone, ...) Could you please update the Debian package? Thanks. -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18.1--grs-ipv6-32 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#418004: Please update sun-java6 with new upstream version
merge 410052 410116 tag 410052 security thanks Hi, Please note that the actual JVM is vulnerable to a JPG/BMP parser vulnerability. This is known as CVE-2007-2789. More info (including a PoC) is available here : http://scary.beasts.org/security/CESA-2006-004.html Regards. -- Djoume SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#423062: Martin Zobel-Helas: Packages considered for 4.0r1
Hi, The security team don't plan any DSA for this issue. May be it is possible to upload the version in testing to proposed-updates? The changelog for the version in testing/unstable is : | sun-java5 (1.5.0-11-1) unstable; urgency=low | . |* New upstream release. |* README.alternatives: Fix typo. Closes: #409302. |* sun-java5-bin: Fix URL for the Unlimited Strength JCE in README.Debian. | Closes: #408616. |* Use iceape-browser instead of iceape as alternative dependency for the | -plugin package. |* sun-java5-bin: Depend on libstdc++5. ia32-sun-java5-bin: Depend on | ia32-libs. Ubuntu #71933. Is this would be acceptable from a SRM point of view? According to Sun Update releases are bug fix releases and as such are not intended to add or delete functionality from the original 1.5.0 release http://java.sun.com/j2se/1.5.0/ReleaseNotes.html#150_11 Regards. -- Djoume SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#385299: umbrello: Umbrello should depend on kdebase-bin
Le sam 24 mar 2007 01:02:04 GMT Sune Vuorela [EMAIL PROTECTED] a écrit : Ever got around trying to do something about this? I consider closing this bug as unreproducible soonish unless some more information. Something someone could try was to remove kdebase-bin, move away ~/.kde/ and try run umbrello. Feel free to close it, I haven't been able to reproduce it with a fresh Etch install... May be umbrello should suggest or recommands kdebase-bin to be able to report crash to the user via drkonqi ? (but I never found these dialog box very useful). Anyway, thanks for your time. Regards. -- Djoume SALVETTI signature.asc Description: Digital signature
Bug#385299: umbrello: Umbrello should depend on kdebase-bin
Package: umbrello
Version: 4:3.5.5-3
Followup-For: Bug #385299
retitle #385299 Umbrello should depend on kdebase-bin
severity #385299 serious
tag #385299 +patch
thanks
Hi,
I have used umbrello in a GNOME environement and experience the same bug
as you. To resolved it I had to manually install kdebase-bin (which
contains the 'drkonqi' executable).
I have set the severity to serious according to
http://release.debian.org/etch_rc_policy.txt :
Packages must include a Depends: line listing any other packages they
require for operation, unless those packages are marked Essential: yes
Regards.
-- System Information:
Debian Release: 4.0
APT prefers testing
APT policy: (500, 'testing')
Architecture: powerpc (ppc)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-3-powerpc
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Versions of packages umbrello depends on:
ii kdelibs4c2a4:3.5.5a.dfsg.1-6 core libraries and binaries for al
ii libart-2.0-2 2.3.17-1 Library of functions for 2D graphi
ii libaudio2 1.8-3 The Network Audio System (NAS). (s
ii libc6 2.3.6.ds1-11 GNU C Library: Shared libraries
ii libfontconfig1 2.4.2-1 generic font configuration library
ii libfreetype6 2.2.1-5 FreeType 2 font engine, shared lib
ii libgcc11:4.1.1-21GCC support library
ii libice61:1.0.1-2 X11 Inter-Client Exchange library
ii libidn11 0.6.5-1 GNU libidn library, implementation
ii libjpeg62 6b-13 The Independent JPEG Group's JPEG
ii libpng12-0 1.2.15~beta5-1PNG library - runtime
ii libqt3-mt 3:3.3.7-3 Qt GUI Library (Threaded runtime v
ii libsm6 1:1.0.1-3 X11 Session Management library
ii libstdc++6 4.1.1-21 The GNU Standard C++ Library v3
ii libx11-6 2:1.0.3-5 X11 client-side library
ii libxcursor11.1.7-4 X cursor management library
ii libxext6 1:1.0.1-2 X11 miscellaneous extension librar
ii libxft22.1.8.2-8 FreeType-based font drawing librar
ii libxi6 1:1.0.1-4 X11 Input extension library
ii libxinerama1 1:1.0.1-4.1 X11 Xinerama extension library
ii libxml22.6.27.dfsg-1 GNOME XML library
ii libxrandr2 2:1.1.0.2-5 X11 RandR extension library
ii libxrender11:0.9.1-3 X Rendering Extension client libra
ii libxslt1.1 1.1.19-1 XSLT processing library - runtime
ii libxt6 1:1.0.2-2 X11 toolkit intrinsics library
ii zlib1g 1:1.2.3-13compression library - runtime
umbrello recommends no packages.
-- no debconf information
--
Djoume SALVETTI
Index: kdesdk-3.5.5/debian/changelog
===
--- kdesdk-3.5.5.orig/debian/changelog 2007-02-19 13:54:40.0 +0100
+++ kdesdk-3.5.5/debian/changelog 2007-02-19 13:55:19.0 +0100
@@ -1,3 +1,10 @@
+kdesdk (4:3.5.5-3.1) unstable; urgency=low
+
+ * Non-maintainer upload.
+ * Depends on kdebase-bin (Closes: #385299)
+
+ -- Djoume SALVETTI [EMAIL PROTECTED] Mon, 19 Feb 2007 13:54:50 +0100
+
kdesdk (4:3.5.5-3) unstable; urgency=low
* Update automake 1.10 support patch as cdbs runs patch with -p1 before -p0
Index: kdesdk-3.5.5/debian/control
===
--- kdesdk-3.5.5.orig/debian/control2007-02-19 13:54:21.0 +0100
+++ kdesdk-3.5.5/debian/control 2007-02-19 13:54:33.0 +0100
@@ -326,7 +326,7 @@
Package: umbrello
Architecture: any
Section: devel
-Depends: ${shlibs:Depends}
+Depends: ${shlibs:Depends}, kdebase-bin
Suggests: khelpcenter, kdesdk-doc-html
Conflicts: umbrello-manual ( 20040311)
Replaces: umbrello-manual ( 20040311)
Bug#385299: umbrello: Umbrello should depend on kdebase-bin
Le lun 19 fév 2007 14:11:24 GMT Sune Vuorela [EMAIL PROTECTED] a écrit : I have used umbrello in a GNOME environement and experience the same bug as you. To resolved it I had to manually install kdebase-bin (which contains the 'drkonqi' executable). Why do you think umbrello needs drkonqi ? After a fresh Etch install with GNOME (default desktop), I have apt-get install umbrello. I have then found that any change I made to my diagram are not saved. So I launch umbrello from a terminal and see that it was crashing with : | KCrash: Application 'umbrello' crashing... | Could not find 'drkonqi' executable. | KCrash cannot reach kdeinit, launching directly. So I have apt-get install kdebase-bin to provide drkonqi, and since then I haven't had any trouble with umbrello in a GNOME environement (saving works). drkonqi is used when a application crashes - not for normal use. I will downgrade this soon, unless I get better reasonings May be it's not drkonqi that is required. Anyway, feel free to downgrade if you think serious is not justified. Regards. -- Djoume SALVETTI signature.asc Description: Digital signature
Bug#385299: umbrello: Umbrello should depend on kdebase-bin
severity #385299 important thanks Le lun 19 fév 2007 14:36:08 GMT Sune Vuorela [EMAIL PROTECTED] a écrit : On Monday 19 February 2007, Djoume SALVETTI wrote: I would be glad if you could pinpoint it to a specific part of kdebase-bin that it is needed. I have just tired to force-remove kdebase-bin - and I am still able to save a project in umbrello, close umbrello and reopen the project. I am not able to reproduce the bug now. Very strange, even after a purge of kdebase-bin umbrello works perfectly !? :-| Maybe it's only after a crash that the saving problem occur, but I haven't been able to crash umbrello up to now... So maybe you could tag this bug unreproductible, if I found some time I will try to reinstall completely a debian Etch with a GNOME desktop and see if umbrello works again. until then I have downgrade the severity to important. Regards. -- Djoume SALVETTI signature.asc Description: Digital signature
Bug#406315: totem-mozilla + vlc freeze my powerbook
Le mer 10 jan 2007 13:23:48 GMT Loïc Minier [EMAIL PROTECTED] a écrit : If I understand correctly, totem-mozilla did not break your whole system, hence I'm downgrading priority. Why system was completely freezed, but I'm not sure which software is responsible for that... Does vlc freeze your system as well when opening other videos? You can grab some from archive.org. Ok, I've download dad20060401.ogg from : http://www.archive.org/download/HampshireLinuxUserGroupDADDesktopAdaptedforDAD/dad20060401.ogg Note that I have found that vlc freeze only if the tab for http://files.macbidouille.com/news/200701/iPhone_H264.mov is still opened in iceweasel. open the video in iceweasel, close the tab, vlc works. open iPhone_H264.mov in iceweasel, do not close the tab, vlc iPhone_H262.mov freeze the system. open iPhone_H264.mov in iceweasel, do not close the tab, vlc dad20060401.ogg freeze the system. This all looks like a X video driver bug; what is your X video driver? [EMAIL PROTECTED]:~$ lspci |grep VGA :00:10.0 VGA compatible controller: nVidia Corporation NV34M [GeForce FX Go5200] (rev a1) [EMAIL PROTECTED]:~$ grep Driver /etc/X11/xorg.conf Driver kbd Driver mouse Driver nv [EMAIL PROTECTED]:~$ dpkg -l|grep xorg-video-nv ii xserver-xorg-video-nv 1.2.0-3X.Org X server -- NV display driver vlc iPhone_H264.mov alone works perfectly. But if I try to open the video with iceweasel before, the computer freeze like the first time. That's strange; at all rates, the X server should not freeze. That's why I had previously set the severity to critical. Maybe this bug should be reassign to xserver-xorg-video-nv? Regards. -- Djoume SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#406315: totem-mozilla + vlc freeze my powerbook
Le mer 10 jan 2007 14:15:10 GMT Sven Arvidsson [EMAIL PROTECTED] a écrit : The unofficial gstreamer0.10-plugins-really-bad package in debian-multimedia.org is compiled with FAAD. But currently GStreamer or FAAD is broken and thus these videos doesn't work at all... If this can be useful, I have debian-multimedia in my sources.list but I haven't gstreamer0.10-plugins-really-bad installed. The only packages from debian-multimedia installed on my computer are lame and lame-extras. Regards. -- Djoume SALVETTI
Bug#406315: totem-mozilla + vlc freeze my powerbook
Le mer 10 jan 2007 14:21:23 GMT Josselin Mouette [EMAIL PROTECTED] a écrit : This may be related to opening several Xvideo windows at once. What happens if you open one totem window and one vlc window, and try to read a video in each window simultaneously? You're probably right, if I try to read simultaneously two video, one with totem and the other one with vlc I've got the same system freeze as describe before. Regards. -- Djoume SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#400990: installation-report: Etch install over SSH rocks! :-)
Package: installation-reports Version: 2.23 Severity: normal -- Package-specific info: Boot method: network Image version: http://www.slug-firmware.net/ Date: Date and time of the install Machine: NSLU2 Partitions: df -Tl will do; the raw partition table is preferred [EMAIL PROTECTED]:~$ df -Tl FilesystemType 1K-blocks Used Available Use% Mounted on /dev/sda1 ext3 4806904768412 3794308 17% / udev tmpfs 1024028 10212 1% /dev devshm tmpfs 15040 0 15040 0% /dev/shm /dev/sda3 ext3 234591480192796 222482072 1% /home Base System Installation Checklist: [O] = OK, [E] = Error (please elaborate below), [ ] = didn't try it Initial boot: [O] Detect network card:[O] Configure network: [O] Detect CD: [ ] Load installer modules: [O] Detect hard drives: [O] Partition hard drives: [O] Install base system:[O] Clock/timezone setup: [O] User/password setup:[O] Install tasks: [ ] Install boot loader:[O] Overall install:[O] Comments/Problems: No problem at all! I've followed installations instructions on Martin Michlmayr website (http://www.cyrius.com/debian/nslu2/install.html). This HOWTO is well written and very easy to follow. Everythings goes well during the install, the only trouble I had was a missing key for secure-apt, which only required upgrading debian-archive-keyring kudos to debian-installer team! -- Please make sure that the hardware-summary log file, and any other installation logs that you think would be useful are attached to this report. Once you have filled out this report, mail it to [EMAIL PROTECTED] == Installer lsb-release: == DISTRIB_ID=Debian DISTRIB_DESCRIPTION=Debian GNU/Linux installer DISTRIB_RELEASE=3.1 (installer build 20061102) X_INSTALLATION_MEDIUM=netboot == Installer hardware-summary: == umame -a: Linux LKG711707 2.6.17-2-ixp4xx #1 Thu Sep 14 13:29:00 UTC 2006 armv5tel unknown lspci -nn: 00:01.0 USB Controller [0c03]: NEC Corporation USB [1033:0035] (rev 43) lspci -nn: 00:01.1 USB Controller [0c03]: NEC Corporation USB [1033:0035] (rev 43) lspci -nn: 00:01.2 USB Controller [0c03]: NEC Corporation USB 2.0 [1033:00e0] (rev 04) lspci -vnn: 00:01.0 USB Controller [0c03]: NEC Corporation USB [1033:0035] (rev 43) (prog-if 10) lspci -vnn: Subsystem: NEC Corporation USB [1033:0035] lspci -vnn: Flags: bus master, medium devsel, latency 8, IRQ 28 lspci -vnn: Memory at 4800 (32-bit, non-prefetchable) [size=4K] lspci -vnn: Capabilities: [40] Power Management version 2 lspci -vnn: lspci -vnn: 00:01.1 USB Controller [0c03]: NEC Corporation USB [1033:0035] (rev 43) (prog-if 10) lspci -vnn: Subsystem: NEC Corporation USB [1033:0035] lspci -vnn: Flags: bus master, medium devsel, latency 8, IRQ 27 lspci -vnn: Memory at 48001000 (32-bit, non-prefetchable) [size=4K] lspci -vnn: Capabilities: [40] Power Management version 2 lspci -vnn: lspci -vnn: 00:01.2 USB Controller [0c03]: NEC Corporation USB 2.0 [1033:00e0] (rev 04) (prog-if 20) lspci -vnn: Subsystem: NEC Corporation USB 2.0 [1033:00e0] lspci -vnn: Flags: bus master, medium devsel, latency 68, IRQ 26 lspci -vnn: Memory at 48002000 (32-bit, non-prefetchable) [size=256] lspci -vnn: Capabilities: [40] Power Management version 2 lspci -vnn: lsmod: Module Size Used by lsmod: reiserfs 269076 0 lsmod: ext3 136808 2 lsmod: jbd57844 1 ext3 lsmod: mbcache 9156 1 ext3 lsmod: vfat 13120 0 lsmod: fat53724 1 vfat lsmod: sd_mod 18608 4 lsmod: usb_storage76075 3 lsmod: scsi_mod 103792 2 sd_mod,usb_storage lsmod: evdev 10368 0 lsmod: ixp4xx_beeper 3584 0 lsmod: ixp400_eth 39868 0 lsmod: ixp400 1065572 1 ixp400_eth lsmod: ohci_hcd 17060 0 lsmod: ehci_hcd 31304 0 lsmod: usbcore 124964 4 usb_storage,ohci_hcd,ehci_hcd df: Filesystem 1k-blocks Used Available Use% Mounted on df: tmpfs15040 388 14652 3% /dev df: tmpfs15040 388 14652 3% /dev df: tmpfs15040 388 14652 3% /.dev df: /dev/scsi/host0/bus0/target0/lun0/part1 4806904612820 3949900 13% /target df: /dev/scsi/host0/bus0/target0/lun0/part3 234591480191788 222483080 0% /target/home free: total used free shared buffers free: Mem:3008028468 16120 712 free: Swap: 979956 4120 975836 free: Total: 1010036
Bug#356190: r83 works fine with 2.6.17
Good day, I was also loosing 3 bytes per packet with 0.0.0.svnr67-2. I Just want to add that r83 works fine here, with a standard debian 2.6.17 kernel (2.6.17-1-powerpc), on a powerbook 12 and a ZyXEL Zyair 802.11b/g (ID 0586:3401). Regards. -- Djoume SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#356190: Same problem here
Hello, Just want to add that I have the same problem as Wouter with zd1211-source 0.0.0.svnr67-2 and 2.6.16 on powerpc. DHCP doesn't work and I have the same : ip length 328 disagrees with bytes received 325. strange error message. But zd1211-source 0.0.0.svnr23-3 and 2.6.15 works fine. I have a ZyXEL Zyair 802.11b/g (ID 0586:3401). Regards. -- Djoume SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#302527: #302527: snapscan e25 segfault
Le mer 28 sep 2005 18:29:35 GMT Julien BLACHE [EMAIL PROTECTED] a écrit : Could you please test libsane 1.0.16-1 or later (together with libsane-extras 1.0.16.3 or later if you have both installed) and see if this problem still exists ? AFAICT this seems to be fixed. Good news! Djoume, can you confirm ? Yes I can confirm. No more segfault with sm3600 and snapscan enable. Congratulations guys! :-) -- Djoume SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#310046: xcdroast: [CAN-2003-1155] woody version vulnerable to symlink attack
Package: xcdroast Severity: important Tags: woody security Good day, From CAN-2003-1155 : | X-CD-Roast 0.98 alpha10 through alpha14 allows local users to overwrite | arbitrary files via a symlink attack on an unknown file. This is fixed in debian package 0.98+0alpha15-1 (so sarge and sid are not affected). Regards -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: powerpc (ppc) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.12-rc3 Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) Versions of packages xcdroast depends on: pn cdda2wav Not found. ii cdrecord 4:2.01+01a01-4 command line CD writing tool ii debconf 1.4.49 Debian configuration management sy ii libc62.3.2.ds1-22GNU C Library: Shared libraries an ii libgdk-pixbuf2 0.22.0-8The GdkPixBuf image library, gtk+ ii libglib1.2 1.2.10-10 The GLib library of C routines ii libgtk1.21.2.10-17 The GIMP Toolkit set of widgets fo ii libx11-6 4.3.0.dfsg.1-13 X Window System protocol client li ii libxext6 4.3.0.dfsg.1-13 X Window System miscellaneous exte ii libxi6 4.3.0.dfsg.1-13 X Window System Input extension li ii makedev 2.3.1-78creates device files in /dev ii mkisofs 4:2.01+01a01-4 Creates ISO-9660 CD-ROM filesystem ii xlibs4.3.0.dfsg.1-13 X Keyboard Extension (XKB) configu -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#308875: metamail: Metamail 'extcompose' script Symlink Vulnerability
Package: metamail Severity: normal Tags: security patch Good day, From CAN-2004-1808 : | Extcompose in metamail does not verify the output file before writing | to it, which allows local users to overwrite arbitrary files via a | symlink attack. More info is available here : http://archives.neohapsis.com/archives/bugtraq/2004-03/0118.html I think the attached (trivial) patch fixed the problem. Regards -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: powerpc (ppc) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.12-rc3 Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) Versions of packages metamail depends on: ii libc6 2.3.2.ds1-21 GNU C Library: Shared libraries an ii libncurses5 5.4-4Shared libraries for terminal hand diff -ru metamail-2.7/bin/extcompose metamail-2.7.djo/bin/extcompose --- metamail-2.7/bin/extcompose 2005-05-12 23:36:41.0 +0200 +++ metamail-2.7.djo/bin/extcompose 2005-05-12 23:35:45.0 +0200 @@ -17,6 +17,12 @@ fi OUTFNAME=$1 +if [ -e $OUTFNAME ] +then + echo Error : $OUTFNAME already exist. 12 + exit 1 +fi + choosing=yes while [ $choosing = yes ] do
Bug#302527: sane-utils: scanimage -L segfault on powerpc with AGFA snapscan e25
Le mardi 04/05/05 Julien BLACHE [EMAIL PROTECTED] a écrit : It would be nice if you could find the backend that is causing the problem, so that we can try to solve the bug. If you have/had libsane-extras installed, please try those backends first. Hi, I didn't have libsane-extras installed so I haven't try those backends, but I could do it if it could be usefull, just ask. sm3600 seems to be the backend which cause scanimage (and other programs) to segfault. I have also notice that dc25, dc210, dc240 and gphoto2 cause scanimage to hang. I have attached to this email a dll.conf that works for me. If I could be of any help for something else I would be happy to do it. Regards. -- Djoumé SALVETTI # /etc/sane.d/dll.conf - Configuration file for the SANE dynamic backend loader # # On Debian systems, the dll backend will also look for pieces of configuration # in the /etc/sane.d/dll.d directory -- packages providing backends should drop # a config file similar to dll.conf in this directory. # # enable the next line if you want to allow access through the network: net abaton agfafocus apple avision artec artec_eplus48u as6e bh canon canon630u canon_pp coolscan coolscan2 #dc25 #dc210 #dc240 dmc epson fujitsu #gphoto2 gt68xx hp hpsj5s hp5400 ibm leo ma1509 matsushita microtek microtek2 mustek mustek_pp mustek_usb nec niash pie plustek plustek_pp pnm qcam ricoh s9036 sceptre sharp #sm3600 snapscan sp15c st400 tamarack teco1 teco2 teco3 #test u12 umax umax_pp umax1220u v4l # ## The HP OfficeJet backend is not part of the SANE distribution ## but is provided by the hpoj Debian package #hpoj # ## The hpaio backend (hplip package) supports HP multifunction ## devices. It is intended as a replacement for hpoj, choose ## whichever works best for you #hpaio
Bug#302527: sane-utils: scanimage -L segfault on powerpc with AGFA snapscan e25
Le mardi 04/05/05 Julien BLACHE [EMAIL PROTECTED] a écrit : sm3600 seems to be the backend which cause scanimage (and other programs) to segfault. Hmm. valgrind produces no error on the backend... I have try to look with valgrind by myself but I haven't found any ppc version that works yet : http://lists.debian.org/debian-powerpc/2005/04/msg00030.html I guess you have no problems otherwise with your machine ? No segfaults, no oops... ? no, everything works like a charm now :-) -- Djoumé SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#302527: sane-utils: scanimage -L segfault on powerpc with AGFA snapscan e25
Le mardi 04/05/05 Julien BLACHE [EMAIL PROTECTED] a écrit : sm3600 seems to be the backend which cause scanimage (and other programs) to segfault. Does it segfault too if you only enable the sm3600 backend ? No, it doesn't segfault when sm3600 is the only one enable But it still segfault when sm3600 and u12 are enable or sm3600 and umax are enable or sm3600 and umax1220u are enable (or sm3600 and snapscan are enable) All others backends that are enable by default doesn't seems to cause scanimage to segfault when enable with sm3600. Regards. -- Djoumé SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#302527: sane-utils: scanimage -L segfault on powerpc with AGFA snapscan e25
Le dimanche 04/03/05 Julien BLACHE [EMAIL PROTECTED] a écrit : Could you disable all the backends in /etc/sane.d/dll.conf *AND* /etc/sane.d/dll.d/* (or just purge libsane-extras if you don't need it) and see if it still crashes ? Many thanks, after disabling everything (except snapscan) in /etc/sane.d/dll.conf evrything works fine! :-) Would you like me to investigate more on this or do you already know the source of the problem? Regards (and many thanks again!) -- Djoumé SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#302527: sane-utils: scanimage -L segfault on powerpc with AGFA snapscan e25
Le vendredi 04/01/05 Julien BLACHE [EMAIL PROTECTED] a écrit : What does file scanimage tell about your scanimage binary ? It should tell you it's not stripped. By the way, you need to have /usr/lib/sane/libsane-snapscan.so.1.0.15 as a non-stripped binary if you want to get something useful. Yes, I have take care of that : [EMAIL PROTECTED]:~$ file /usr/bin/scanimage /usr/bin/scanimage: ELF 32-bit MSB executable, PowerPC or cisco 4500, version 1 (SYSV), for GNU/Linux 2.2.0, dynamically linked (uses shared libs), not stripped [EMAIL PROTECTED]:~$ file /usr/lib/libsane.so.1.0.15 /usr/lib/libsane.so.1.0.15: ELF 32-bit MSB shared object, PowerPC or cisco 4500, version 1 (SYSV), not stripped Otherwise, somebody's in for some valgrind fun with the snapscan backend. I have no i386 machine at hand until April 18th... I'll try to find out what's going on... Ok, many thanks. -- Djoumé SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#302527: sane-utils: scanimage -L segfault on powerpc with AGFA snapscan e25
Package: sane-utils Version: 1.0.15-8 Severity: normal Good day, I'm not able to use my AGFA snapscan e25 USB scanner on my powerbook running Debian sid. Every program I have tried segfault (scanimage, xscanimage, xcam) or eat 100% of my CPU (xsane). My scanner works fine with my other laptop (IBM T21, PIII), running Debian sarge and with the same configuration of sane (I have only change the filename of the firmware file). This is the debug output of scanimage on my powerbook : [EMAIL PROTECTED]:~$ SANE_DEBUG_SNAPSCAN=255 scanimage -L [sanei_debug] Setting debug level of snapscan to 255. [snapscan] sane_snapscan_init [snapscan] sane_snapscan_init: Snapscan backend version 1.4.42 [snapscan] add_usb_device(libusb:003:002) [snapscan] add_usb_device: Detected (kind of) an USB device [snapscan] snapscani_usb_open(libusb:003:002) [snapscan] add_usb_device: Checking if 0x06bd is a supported USB vendor ID [snapscan] snapscani_check_device() [snapscan] mini_inquiry [snapscan] snapscan_cmd [snapscan] snapscani_usb_cmd(0,0x7fffd1c0,6,0x7fffd1d0,0x7fffd200 (36)) [snapscan] atomic_usb_cmd(0,0x7fffd1c0,6,0x7fffd1d0,0x7fffd200 (36)) [snapscan] usb_cmd(0,0x7fffd1c0,6,0x7fffd1d0,0x7fffd200 (36)) [snapscan] usb_cmd: cmdlen=6, datalen=0 [snapscan] usb_write: writing: 0x12 0x00 0x00 0x00 0x24 0x00 [snapscan] Written 6 bytes [snapscan] usb_read: reading: 0xf9 0x00 0x00 0x00 0x00 0x00 0x00 0x00 [snapscan] Read 8 bytes [snapscan] usb_read: reading: 0x06 0x00 0x02 0x02 0x49 0x00 0x00 0x00 0x41 0x47 ... [snapscan] Read 36 bytes [snapscan] usb_read: reading: 0xfb 0x00 0x00 0x00 0x00 0x00 0x00 0x00 [snapscan] Read 8 bytes [snapscan] snapscani_check_device: Is vendor AGFA model SNAPSCAN e25 a supported scanner? [snapscan] snapscani_get_model_id(SNAPSCAN e25, 0, 2) [snapscan] snapscani_get_model_id: looking up scanner for ID 0x06bd,0x2095. [snapscan] snapscani_check_device: Autodetected driver: SnapScanE20 [snapscan] snapscani_usb_close(0) [snapscan] 1st read 3 write 1 [snapscan] snapscani_usb_cmd(0,0x7fffd110,6,0x0,0x0 (0)) [snapscan] atomic_usb_cmd(0,0x7fffd110,6,0x0,0x0 (0)) [snapscan] usb_cmd(0,0x7fffd110,6,0x0,0x0 (0)) [snapscan] usb_cmd: cmdlen=6, datalen=0 [snapscan] usb_write: writing: 0x00 0x00 0x00 0x00 0x00 0x00 [snapscan] Written 6 bytes [snapscan] usb_read: reading: 0xfb 0x00 0x00 0x00 0x00 0x00 0x00 0x00 [snapscan] Read 8 bytes [snapscan] 2nd read 4 write 2 [snapscan] snapscani_init_device_structure() [snapscan] sane_snapscan_get_devices (0x7fffe378, 0) Segmentation fault [EMAIL PROTECTED]:~$ If it could be useful, I can try to recompiled sane with debug information and send a gdb backtrace. Regards. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: powerpc (ppc) Kernel: Linux 2.6.11-powerpc Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) Versions of packages sane-utils depends on: ii adduser 3.63 Add and remove users and groups ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an ii libieee1284-3 0.2.10-1 cross-platform library for paralle ii libjpeg62 6b-10The Independent JPEG Group's JPEG ii libsane 1.0.15-8 API library for scanners ii libusb-0.1-42:0.1.10a-7 userspace USB programming library -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#302527: sane-utils: scanimage -L segfault on powerpc with AGFA snapscan e25
Le vendredi 04/01/05 Julien BLACHE [EMAIL PROTECTED] a écrit : If it could be useful, I can try to recompiled sane with debug information and send a gdb backtrace. That'd be good, because it doesn't segfault here with my snapscan scanner. Here is the backtrace : (gdb) exec-file scanimage -L (gdb) run Starting program: /usr/bin/scanimage Using host libthread_db library /lib/libthread_db.so.1. Program received signal SIGSEGV, Segmentation fault. 0x300928c4 in mallopt () from /lib/libc.so.6 (gdb) bt #0 0x300928c4 in mallopt () from /lib/libc.so.6 #1 0x30092768 in mallopt () from /lib/libc.so.6 #2 0x30092768 in mallopt () from /lib/libc.so.6 #3 0x30092768 in mallopt () from /lib/libc.so.6 #4 0x30092768 in mallopt () from /lib/libc.so.6 #5 0x30092768 in mallopt () from /lib/libc.so.6 #6 0x30092768 in mallopt () from /lib/libc.so.6 #7 0x30092768 in mallopt () from /lib/libc.so.6 #8 0x30092768 in mallopt () from /lib/libc.so.6 #9 0x30092768 in mallopt () from /lib/libc.so.6 #10 0x30092768 in mallopt () from /lib/libc.so.6 #11 0x30092768 in mallopt () from /lib/libc.so.6 Previous frame inner to this frame (corrupt stack?) (gdb) As you can see there isn't so much information available, does this mean the problem is in libc? Or perhaps I made a mistake when recompiling sane-utils? I have only change the debian/rules file like this : --- sane-backends-1.0.15/debian/rules 2005-04-01 21:45:35.0 +0200 +++ src/sane-backends-1.0.15/debian/rules 2005-04-01 20:55:03.0 +0200 @@ -14,12 +14,12 @@ DEB_BUILD_GNU_TYPE ?= $(shell dpkg-architecture -qDEB_BUILD_GNU_TYPE) DEB_HOST_GNU_SYSTEM ?= $(shell dpkg-architecture -qDEB_HOST_GNU_SYSTEM) -ifneq (,$(findstring debug,$(DEB_BUILD_OPTIONS))) +#ifneq (,$(findstring debug,$(DEB_BUILD_OPTIONS))) CFLAGS += -g -endif -ifeq (,$(findstring nostrip,$(DEB_BUILD_OPTIONS))) +#endif +#ifeq (,$(findstring nostrip,$(DEB_BUILD_OPTIONS))) INSTALL_PROGRAM += -s -endif +#endif autotools: autotools-stamp autotools-stamp: @@ -168,7 +168,7 @@ # dh_undocumented dh_installchangelogs ChangeLog dh_link - dh_strip +# dh_strip dh_compress dh_fixperms dh_makeshlibs and then done a fakeroot debian/rule binary What can I do now? Regards. -- Djoumé SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#299185: kernel-source-2.6.8: Please consider include Guido Guenther rivafb patch
Package: kernel-source-2.6.8 Version: 2.6.8-13.djo Severity: wishlist Good day, Actual kernel-source-2.6.8 doesn't provide support for backlight control on newer powerbooks (12, NV30 based) which reduce a lot battery's autonomy. Could you consider include rivafb backlight control support and set CONFIG_FB_RIVA=y (see #297627) ? Note that Guido Guenther wrote : Well, backlight support is in rivafb since quiet some time but only 2.6.10 has everything to get rivafb to work at all on newer powerbooks (NV30 based). The backport would basically be to use the drivers/video/rivafb/ directory from 2.6.10, everything else make little sense. This in fact shouldn't be very painfull... Cheers, Regards. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: powerpc (ppc) Kernel: Linux 2.6.10-powerpc Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) Versions of packages kernel-source-2.6.8 depends on: ii binutils 2.15-5 The GNU assembler, linker and bina ii bzip2 1.0.2-5high-quality block-sorting file co ii coreutils [fileutils] 5.2.1-2The GNU core utilities -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#298926: [CAN-2005-0638] xloadimage shell metacharacters vulnerability
Package: xloadimage
Version: 4.1-14
Severity: normal
Tags: security, patch
Good day,
From CAN-2005-0638 :
| xloadimage before 4.1-r2, and xli before 1.17, allows attackers to
| execute arbitrary commands via shell metacharacters in filenames for
| compressed images, which are not properly quoted when calling the
| gunzip command.
More info available here :
http://bugs.gentoo.org/show_bug.cgi?id=79762
Attached to this mail is Gentoo patch that fixed the shell
metacharacters issue but not the buffer overflow issue mentionned
in the bug report. I have mailed Gentoo guy Tavis Ormandy about this
other vulnerability and will open another bug if necessary.
I think woody is also vulnerable.
Regards.
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: powerpc (ppc)
Kernel: Linux 2.6.10-powerpc
Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15)
Versions of packages xloadimage depends on:
ii libc62.3.2.ds1-20GNU C Library: Shared libraries an
ii libjpeg626b-10 The Independent JPEG Group's JPEG
ii libpng12-0 1.2.8rel-1 PNG library - runtime
ii libtiff4 3.7.1-4 Tag Image File Format (TIFF) libra
ii libx11-6 4.3.0.dfsg.1-12 X Window System protocol client li
ii xlibs4.3.0.dfsg.1-12 X Keyboard Extension (XKB) configu
ii zlib1g 1:1.2.2-4 compression library - runtime
-- no debconf information
--- xloadimage.4.1/zio.c1993-10-28 17:10:02.0 +
+++ xloadimage.4.1/zio.c2005-02-28 15:32:05.895470680 +
@@ -210,9 +211,30 @@
if ((strlen(name) strlen(filter-extension))
!strcmp(filter-extension,
name + (strlen(name) - strlen(filter-extension {
- debug((Filtering image through '%s'\n, filter-filter));
- zf-type= ZPIPE;
- sprintf(buf, %s %s, filter-filter, name);
+char *fname, *t, *s;
+
+/* meta-char protection from xli.
+ *
+ * protect in single quotes, replacing single quotes
+ * with ''', so worst-case expansion is 5x
+ */
+
+s = fname = (char *) lmalloc(1 + (5 * strlen(name)) + 1 + 1);
+ *s++ = '\'';
+for (t = name; *t; ++t) {
+if ('\'' == *t) {
+ /* 'foo'bar' - 'foo'''bar' */
+strcpy(s, '\'\');
+ s += strlen(s);
+} else {
+*s++ = *t;
+}
+}
+strcpy (s, ');
+debug((Filtering image through '%s'\n, filter-filter));
+zf-type= ZPIPE;
+sprintf(buf, %s %s, filter-filter, fname);
+lfree (fname);
if (! (zf-stream= popen(buf, r))) {
lfree((byte *)zf-filename);
zf-filename= NULL;
Bug#298105: sympa: [CAN-2004-1735] XSS vulnerability in the create list option in Sympa 4.1.x
Package: sympa Severity: normal Tags: security Good day, From CAN-2004-1735 : | Cross-site scripting (XSS) vulnerability in the create list option in | Sympa 4.1.x and earlier allows remote authenticated users to inject | arbitrary web script or HTML via the description field. More info is available on upstream BTS : http://listes.cru.fr/mantis/view_bug_advanced_page.php?f_id=327 Regards. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: powerpc (ppc) Kernel: Linux 2.6.10-powerpc Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) Versions of packages sympa depends on: ii adduser 3.62 Add and remove users and groups ii debconf 1.4.46 Debian configuration management sy ii exim4-daemon-heavy [mail-tr 4.50-4 exim MTA (v4) daemon with extended ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an pn libcgi-fast-perl Not found. pn libcrypt-ciphersaber-perlNot found. ii libdbd-mysql-perl 2.9003-3 A Perl5 database interface to the ii libdbi-perl 1.46-6 Perl5 database interface by Tim Bu pn libfcgi-perl Not found. ii libio-stringy-perl 2.110-1 Perl5 modules for IO from scalars ii libmailtools-perl 1.62-1 Manipulate email in perl programs pn libmd5-perl Not found. ii libmime-perl5.417-1 Perl5 modules for MIME-compliant m pn libmsgcat-perl Not found. pn libnet-ldap-perl Not found. pn mhonarc Not found. ii perl [libmime-base64-perl] 5.8.4-6 Larry Wall's Practical Extraction ii perl-suid 5.8.4-6 Runs setuid Perl scripts ii sysklogd [system-log-daemon 1.4.1-16 System Logging Daemon -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#297627: kernel-source-2.6.10: Please consider include rivafb as builtin
Package: kernel-source-2.6.10 Version: 2.6.10-5 Severity: wishlist Good day, Radeonfb and offb are builtin but rivafb is not. I don't know why but it seems that rivafb can't take over from offb even with video=rivafb kernel parameter. So this mean that on my 12 powerbook I can only used offb which is not so good because then I don't have any backlight control and It reduce a lot my battery's autonomy. I have recompile kernel-image-2.6.10 with CONFIG_FB_RIVA=y and it works nice. Regards. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: powerpc (ppc) Kernel: Linux 2.6.10-powerpc Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) Versions of packages kernel-source-2.6.10 depends on: ii binutils 2.15-5 The GNU assembler, linker and bina ii bzip2 1.0.2-5high-quality block-sorting file co ii coreutils [fileutils] 5.2.1-2The GNU core utilities -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#296780: sablevm: no Exception AbstractMethodError when access to a non-implemented abstract method
Package: sablevm
Version: 1.1.9-1
Severity: normal
Good day,
SableVM seems to go for an infinite loop instead of throw AbstractMethodError
exception (as Sun VM do) when I try to access to a non-implemented abstract
method.
To reproduce the problem I have use the two files attached and
do in order :
First compile only the commented version of A.java
Then compile BugAbstract.java
Then change A.java for the uncommented version and recompile it.
run java BugAbstract without recompiled BugAbstract.java
With Sun VM I have :
[EMAIL PROTECTED]:~/IFITEP/Java/interfaces$ java -version
java version 1.4.2_04
Java(TM) 2 Runtime Environment, Standard Edition (build 1.4.2_04-b05)
Java HotSpot(TM) Client VM (build 1.4.2_04-b05, mixed mode)
[EMAIL PROTECTED]:~/IFITEP/Java/interfaces$ java BugAbstract
Exception in thread main java.lang.AbstractMethodError: B.f()V
at BugAbstract.main(BugAbstract.java:7)
[EMAIL PROTECTED]:~/IFITEP/Java/interfaces$
With Sable VM :
[EMAIL PROTECTED]:~/perso/IFITEP/Java/interfaces$ java -version
SableVM version 1.1.9
- compile date and time: 2005-01-21 05:31:05 UTC
- gcc version: 3.3.5 (Debian 1:3.3.5-6)
- 'real life brokenness' features enabled
- signal based exception detection
- copying garbage collection
- bidirectional object layout
- inline-threaded interpreter
[EMAIL PROTECTED]:~/perso/IFITEP/Java/interfaces$ java BugAbstract
- 100% CPU
I have compile with Sun Java compiler and with Jikes with the same result.
(of course compiling BigAbstract.java after modifying A.java produce a compile
error about a non-implemented method).
I havent found any bug report about this on upstream bug tracking system, but
if you want me to report bug upstream just ask.
Regards.
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: powerpc (ppc)
Kernel: Linux 2.6.9-rfb-swsusp
Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15)
Versions of packages sablevm depends on:
ii java-common 0.22 Base of all Java packages
ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an
ii libpopt01.7-5lib for parsing cmdline parameters
ii libsablevm1 1.1.9-1 Free implementation of JVM second
ii unzip 5.51-2 De-archiver for .zip files
-- no debconf information
/*
class A {
void f() {
System.out.println(test);
}
}
*/
abstract class A {
abstract void f();
}
class B extends A {
}
public class BugAbstract {
public static void main(String[] agrs) {
B b = new B();
b.f();
}
}
Bug#296780: Acknowledgement (sablevm: no Exception AbstractMethodError when access to a non-implemented abstract method)
Just want to add that kaffe as the same behavior as Sun VM : [EMAIL PROTECTED]:~/perso/IFITEP/Java/abstract$ kaffe BugAbstract java.lang.AbstractMethodError: B.f at BugAbstract.main (BugAbstract.java:7) -- Djoumé SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#296677: kernel-source-2.6.10: Please consider include Guido Guenther powerpc patches
Package: kernel-source-2.6.10
Severity: wishlist
Tags: patch
Good day,
Guido Guenther maintains some patches against 2.6 that I found very
usefull :
software suspend :
From debian-ppc :
| On Wed, Feb 23, 2005 at 11:54:20AM +1100, Benjamin Herrenschmidt wrote:
| I also gather that suspend-to-disk is available -
| http://article.gmane.org/gmane.linux.debian.ports.powerpc/25379
|
| I don't think suspend to disk is very reliable tho ...
| Works here without problems for several days now, patch is at
| http://honk.physik.uni-konstanz.de/~agx/linux-ppc/kernel/2.6.11-rc4-agx0.diff
| Cheers,
| -- Guido
Again From debian-ppc on 04 december 2004 :
| The patch contains some other small goodies such as a selectable HZ
| value (default is 1000, 100 saves some battery) and some alsa and
| cpufreq fixes.
| Please note that this patch still conflicts with suspend to ram, so you
| won't be able to use both.
| Cheers,
| -- Guido
patch is at :
http://honk.physik.uni-konstanz.de/~agx/linux-ppc/kernel/
and attached to this bug report.
Regards.
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: powerpc (ppc)
Kernel: Linux 2.6.9-rfb-swsusp
Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15)
diff -u -Naur linux-2.6.10.orig/arch/ppc/Kconfig linux-2.6.10/arch/ppc/Kconfig
--- linux-2.6.10.orig/arch/ppc/Kconfig 2004-12-24 22:35:40.0 +0100
+++ linux-2.6.10/arch/ppc/Kconfig 2005-01-04 14:21:32.583281000 +0100
@@ -966,6 +966,15 @@
source drivers/zorro/Kconfig
+source kernel/power/Kconfig
+
+config PPC_HZ
+ int Clock Tick Rate
+ default 1000
+ help
+ Select the kernel clock tick rate in interrupts per second.
+ Slower processors should choose 100; everything else 1000.
+
endmenu
menu Bus options
diff -u -Naur linux-2.6.10.orig/arch/ppc/kernel/Makefile
linux-2.6.10/arch/ppc/kernel/Makefile
--- linux-2.6.10.orig/arch/ppc/kernel/Makefile 2004-12-24 22:35:28.0
+0100
+++ linux-2.6.10/arch/ppc/kernel/Makefile 2005-01-04 14:21:32.583281000
+0100
@@ -16,6 +16,7 @@
semaphore.o syscalls.o setup.o \
cputable.o ppc_htab.o
obj-$(CONFIG_6xx) += l2cr.o cpu_setup_6xx.o
+obj-$(CONFIG_SOFTWARE_SUSPEND) += swsusp.o
obj-$(CONFIG_POWER4) += cpu_setup_power4.o
obj-$(CONFIG_MODULES) += module.o ppc_ksyms.o
obj-$(CONFIG_NOT_COHERENT_CACHE) += dma-mapping.o
diff -u -Naur linux-2.6.10.orig/arch/ppc/kernel/signal.c
linux-2.6.10/arch/ppc/kernel/signal.c
--- linux-2.6.10.orig/arch/ppc/kernel/signal.c 2004-12-24 22:35:39.0
+0100
+++ linux-2.6.10/arch/ppc/kernel/signal.c 2005-01-04 14:21:32.583281000
+0100
@@ -28,6 +28,7 @@
#include linux/elf.h
#include linux/tty.h
#include linux/binfmts.h
+#include linux/suspend.h
#include asm/ucontext.h
#include asm/uaccess.h
#include asm/pgtable.h
@@ -614,6 +615,14 @@
unsigned long frame, newsp;
int signr, ret;
+ if (current-flags PF_FREEZE) {
+ refrigerator(PF_FREEZE);
+ signr = 0;
+ ret = regs-gpr[3];
+ if (!signal_pending(current))
+ goto no_signal;
+ }
+
if (!oldset)
oldset = current-blocked;
@@ -636,6 +645,7 @@
regs-gpr[3] = EINTR;
/* note that the cr0.SO bit is already set */
} else {
+no_signal:
regs-nip -= 4; /* Back up retry system call */
regs-result = 0;
regs-trap = 0;
diff -u -Naur linux-2.6.10.orig/arch/ppc/kernel/swsusp.S
linux-2.6.10/arch/ppc/kernel/swsusp.S
--- linux-2.6.10.orig/arch/ppc/kernel/swsusp.S 1970-01-01 01:00:00.0
+0100
+++ linux-2.6.10/arch/ppc/kernel/swsusp.S 2005-01-04 14:21:32.583281000
+0100
@@ -0,0 +1,356 @@
+#include linux/config.h
+#include linux/threads.h
+#include asm/processor.h
+#include asm/page.h
+#include asm/cputable.h
+#include asm/thread_info.h
+#include asm/ppc_asm.h
+#include asm/offsets.h
+
+
+/*
+ * Structure for storing CPU registers on the save area.
+ */
+#define SL_SP 0
+#define SL_PC 4
+#define SL_MSR 8
+#define SL_SDR10xc
+#define SL_SPRG0 0x10/* 4 sprg's */
+#define SL_DBAT0 0x20
+#define SL_IBAT0 0x28
+#define SL_DBAT1 0x30
+#define SL_IBAT1 0x38
+#define SL_DBAT2 0x40
+#define SL_IBAT2 0x48
+#define SL_DBAT3 0x50
+#define SL_IBAT3 0x58
+#define SL_TB 0x60
+#define SL_R2 0x68
+#define SL_CR 0x6c
+#define SL_LR 0x70
+#define SL_R12 0x74/* r12 to r31 */
+#define SL_SIZE(SL_R12 + 80)
+
+ .section .data
+ .align 5
+
+_GLOBAL(swsusp_save_area)
+ .space SL_SIZE
+
+
+ .section .text
+
Bug#296466: xerces21: [CAN-2004-1575] Xerces-C++ 2.5.0: Attribute blowup
Package: xerces21 Severity: normal Good day, From [CAN-2004-1575] : | The XML parser in Xerces-C++ 2.5.0 allows remote attackers to cause a | denial of service (CPU consumption) via XML attributes in a crafted | XML document. This problem have been fixed in version 2.6 of Xerces. I have report this problem to Jay Berkenbilt, the maintainer of xerces25, xerces24 and xerces23 (see bug #296432). It's not clear to me if xerces21 is also vulnerable but I think it could. Could you mention the CAN number in changelog entries about this problem. Regards. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: powerpc (ppc) Kernel: Linux 2.6.9-rfb-swsusp Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#295960: Acknowledgement (webcalendar: SQL injection via login name in validate.php)
This problem has been reference as CAN-2005-0474, Could you please reference this CAN number in changelog entries fixing this bug? Regards. -- Djoumé SALVETTI -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#295947: kernel-source-2.6.10: [CAN-2005-0449] skb_checksum_help DoS
Package: kernel-source-2.6.10 Severity: normal Good day, From CAN-2005-0449 : | The netfilter/iptables module in Linux before 2.6.8.1 allows remote | attackers to cause a denial of service (kernel crash) or bypass | firewall rules via crafted packets, which are not properly handled by | the skb_checksum_help function. More info is available here : http://oss.sgi.com/archives/netdev/2005-01/msg01036.html I believe this CAN is bogus as 2.6.10 seems to be vulnerable. A patch from Herbet Xu is available here : http://oss.sgi.com/archives/netdev/2005-01/msg01072.html Regards. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: powerpc (ppc) Kernel: Linux 2.6.9-rfb-swsusp Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#295960: webcalendar: SQL injection via login name in validate.php
Package: webcalendar
Version: 0.9.45-2
Severity: normal
Tags: security patch
Good day,
From [1] :
| There is a security hole in WebCalendar 0.9.45 and
| earlier that can allow a malicious user to issue SQL
| commands to affect your database. The user could
| insert data, delete data or drop tables. The malicious
| user does not need to have a valid WebCalendar login.
|
| This security issue does not affect sites using
| http-based authentication for WebCalendar or sites
| running in single-user mode. It only affects installs
| using web-based authentication and running in
| multi-user mode.
|
| If you have WebCalendar 1.0RC1 or later, this fix is
| already included, so you do not need to update anything.
A patch for 0.9.45-2 is available at [1] and attached to this bug
report.
Regards.
[1]
http://sourceforge.net/tracker/index.php?func=detailaid=1121329group_id=3870atid=303870
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: powerpc (ppc)
Kernel: Linux 2.6.9-rfb-swsusp
Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15)
Versions of packages webcalendar depends on:
ii apache [httpd]1.3.33-4 versatile, high-performance HTTP s
ii apache-ssl [httpd]1.3.33-4 versatile, high-performance HTTP s
ii debconf [debconf-2.0] 1.4.45 Debian configuration management sy
ii mysql-server 4.0.23-7 mysql database server binaries
ii php4 4:4.3.10-7 server-side, HTML-embedded scripti
ii php4-cli 4:4.3.10-7 command-line interpreter for the p
ii php4-mysql4:4.3.10-7 MySQL module for php4
-- debconf information:
* webcalendar/conf/db_host: localhost
* webcalendar/note/sql_install:
webcalendar/status/db_installed: false
* webcalendar/note/admin_user:
webcalendar/conf/db_persistent: true
webcalendar/conf/single_user_login:
* webcalendar/conf/single_user_mode: false
* webcalendar/conf/db_database: test
* webcalendar/conf/db_type: mysql
* webcalendar/conf/db_login: web
* webcalendar/conf/db_password: taket
webcalendar/conf/use_http_auth: false
* webcalendar/status/debconf_managed: true
*** includes/validate.php.orig Fri Nov 5 21:43:38 2004
--- includes/validate.php Sat Feb 12 08:32:45 2005
***
*** 38,43
--- 38,55
$login_pw = split('\|', decode_string ($encoded_login));
$login = $login_pw[0];
$cryptpw = $login_pw[1];
+ // Security fix. Don't allow certain types of characters in
+ // the login. WebCalendar does not escape the login name in
+ // SQL requests. So, if the user were able to set the login
+ // name to be x';drop table u;,
+ // they may be able to affect the database.
+ if ( ! empty ( $login ) ) {
+ if ( $login != addslashes ( $login ) ) {
+ echo Illegal characters in login .
+ tt . htmlentities ( $login ) . /tt;
+ exit;
+ }
+ }
// make sure we are connected to the database for password check
$c = dbi_connect ( $db_host, $db_login, $db_password, $db_database );
if ( ! $c ) {
*** login.php.orig Tue Nov 23 02:55:16 2004
--- login.php Sat Feb 12 08:21:09 2005
***
*** 62,67
--- 62,71
$login = stripslashes ( $login );
}
$login = trim ( $login );
+ if ( $login != addslashes ( $login ) ) {
+ echo Illegal characters in login;
+ exit;
+ }
if ( user_valid_login ( $login, $password ) ) {
user_load_variables ( $login, );
// set login to expire in 365 days
Bug#295759: squid: [CAN-2005-0446] Assertion failure on certain odd DNS responses
Package: squid Version: squid 2.5.8-2 Severity: normal Good day, From CAN-2005-0446 | Squid 2.5.STABLE8 and earlier allows remote attackers to cause a | denial of service (crash) via certain DNS responses regarding (1) | Fully Qualified Domain Names (FQDN) in fqdncache.c or (2) IP addresses | in ipcache.c, which trigger an assertion failure. This problem is fixed upstream and a patch is available here : http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE8-dns_assert Regards. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: powerpc (ppc) Kernel: Linux 2.6.9-rfb-swsusp Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) Versions of packages squid depends on: ii adduser 3.59 Add and remove users and groups ii debconf 1.4.45 Debian configuration management sy ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an ii libldap22.1.30-3 OpenLDAP libraries ii libpam0g0.76-22 Pluggable Authentication Modules l ii logrotate 3.7-2Log rotation utility ii netbase 4.20 Basic TCP/IP networking system pn squid-common Not found. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#295756: openwebmail: [CAN-2005-0445] XSS via domainname
Package: openwebmail Version: 2.41-10 Severity: normal Good day, From CAN-2005-0445 : | Cross-site scripting (XSS) vulnerability in Open WebMail 2.x allows | remote attackers to inject arbitrary HTML or web script via the domain | name parameter (logindomain) in the login page. This problem is fixed upstream, you can find a patch here : http://turtle.ee.ncku.edu.tw/openwebmail/download/cert/patches/SA-05:01/2.5x.patch Regards -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: powerpc (ppc) Kernel: Linux 2.6.9-rfb-swsusp Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) Versions of packages openwebmail depends on: ii apache [httpd]1.3.33-4 versatile, high-performance HTTP s ii apache-ssl [httpd]1.3.33-4 versatile, high-performance HTTP s ii debconf 1.4.45 Debian configuration management sy pn libauthen-pam-perl Not found. ii libdbd-mysql-perl 2.9003-3 A Perl5 database interface to the pn libmd5-perl Not found. pn libnet-ldap-perl Not found. pn libpg-perl Not found. ii libtext-iconv-perl1.2-3 Convert between character sets in ii perl 5.8.4-6Larry Wall's Practical Extraction ii perl-suid 5.8.4-6Runs setuid Perl scripts ii ucf 1.14 Update Configuration File: preserv pn wwwconfig-common Not found. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#293940: kernel-patch-adamantix: [CAN-2004-0667] RSBAC privilege escalation inside jail
Package: kernel-patch-adamantix Severity: normal Good day, RSBAC patch included in kernel-patch-adamantix seems to be vulnerable to CAN-2004-0667 : More details can be grab here : http://www.rsbac.org/download/bugfixes/ and a one line patch is available here : http://www.rsbac.org/download/bugfixes/v1.2.3/rsbac-bugfix-v1.2.3-3.diff This problem is also fixed in devel version (1.2.4) of RSBAC. Regards. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: powerpc (ppc) Kernel: Linux 2.6.9-rfb-swsusp Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) Versions of packages kernel-patch-adamantix depends on: ii bash 3.0-14 The GNU Bourne Again SHell pn grep-dctrl Not found. ii patch 2.5.9-2Apply a diff file to an original -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#293664: mozilla-firefox: [CAN-2004-1156] secunia window injection
Le samedi 02/05/05 Eric Dorland [EMAIL PROTECTED] a écrit : Unfortunately the patch does not apply cleanly to Firefox 1.0 sources. Any idea if they're planing a 1.0.1 to address it? On https://bugzilla.mozilla.org/show_bug.cgi?id=103638 Boris Zbarsky wrote : | What worries me most is that this patch actually changes some | embedding-type interfaces, and the regression fixes change the behavior | of nsWebBrowser in some ways Landing that sort of thing on | api-stable branches is really scary, to me. So I think they will wait a little before that, would you like me to mail Boris Zbarsky about it? Regards. -- Djoumé SALVETTI pgpLg69inycLj.pgp Description: PGP signature
Bug#293663: /usr/bin/mozilla-1.7.5: [CAN-2004-1156] secunia window injection vulnerability
Package: mozilla-browser Version: 2:1.7.5-1 Severity: normal File: /usr/bin/mozilla-1.7.5 Good day, Mozilla browser is vulnerable to window injection vulnerability describe in CAN-2004-1156 : http://secunia.com/secunia_research/2004-13/advisory/ http://secunia.com/multiple_browsers_window_injection_vulnerability_test/ The problem was fixed upstream : https://bugzilla.mozilla.org/show_bug.cgi?id=273699 (the patch is in https://bugzilla.mozilla.org/show_bug.cgi?id=103638) Regards. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: powerpc (ppc) Kernel: Linux 2.6.9-rfb-swsusp Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) Versions of packages mozilla-browser depends on: ii debconf 1.4.42 Debian configuration management sy ii libatk1.0-0 1.8.0-4 The ATK accessibility toolkit ii libc62.3.2.ds1-20GNU C Library: Shared libraries an ii libfontconfig1 2.2.3-4 generic font configuration library ii libfreetype6 2.1.7-2.3 FreeType 2 font engine, shared lib ii libgcc1 1:3.4.3-7 GCC support library ii libglib2.0-0 2.6.1-3 The GLib library of C routines ii libgtk2.0-0 2.6.1-2 The GTK+ graphical user interface ii libnspr4 2:1.7.5-1 Netscape Portable Runtime Library ii libpango1.0-01.8.0-3 Layout and rendering of internatio ii libstdc++5 1:3.3.5-8 The GNU Standard C++ Library v3 ii libx11-6 4.3.0.dfsg.1-10 X Window System protocol client li ii libxext6 4.3.0.dfsg.1-10 X Window System miscellaneous exte ii libxft2 2.1.2-6 FreeType-based font drawing librar ii libxp6 4.3.0.dfsg.1-10 X Window System printing extension ii libxrender1 0.8.3-7 X Rendering Extension client libra ii libxt6 4.3.0.dfsg.1-10 X Toolkit Intrinsics ii psmisc 21.5-1 Utilities that use the proc filesy ii xlibs4.3.0.dfsg.1-10 X Keyboard Extension (XKB) configu ii zlib1g 1:1.2.2-4 compression library - runtime -- debconf information: * mozilla/dsp: auto mozilla/locale_auto: true mozilla/xprint: * mozilla/prefs_note: -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#293664: mozilla-firefox: [CAN-2004-1156] secunia window injection
Package: mozilla-firefox Version: 1.0+dfsg.1-4 Severity: normal Good day, Firefox is vulnerable to window injection vulnerability describe in CAN-2004-1156 : http://secunia.com/secunia_research/2004-13/advisory/ http://secunia.com/multiple_browsers_window_injection_vulnerability_test/ The problem was fixed upstream : https://bugzilla.mozilla.org/show_bug.cgi?id=273699 (the patch is in https://bugzilla.mozilla.org/show_bug.cgi?id=103638) Regards. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: powerpc (ppc) Kernel: Linux 2.6.9-rfb-swsusp Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-15) Versions of packages mozilla-firefox depends on: ii debianutils 2.11.2 Miscellaneous utilities specific t ii fontconfig 2.2.3-4 generic font configuration library ii libatk1.0-0 1.8.0-4 The ATK accessibility toolkit ii libc62.3.2.ds1-20GNU C Library: Shared libraries an ii libfontconfig1 2.2.3-4 generic font configuration library ii libfreetype6 2.1.7-2.3 FreeType 2 font engine, shared lib ii libgcc1 1:3.4.3-7 GCC support library ii libglib2.0-0 2.6.1-3 The GLib library of C routines ii libgtk2.0-0 2.6.1-2 The GTK+ graphical user interface ii libidl0 0.8.3-1 library for parsing CORBA IDL file ii libjpeg626b-9The Independent JPEG Group's JPEG ii libkrb53 1.3.6-1 MIT Kerberos runtime libraries ii libpango1.0-01.8.0-3 Layout and rendering of internatio ii libpng12-0 1.2.8rel-1 PNG library - runtime ii libstdc++5 1:3.3.5-8 The GNU Standard C++ Library v3 ii libx11-6 4.3.0.dfsg.1-10 X Window System protocol client li ii libxext6 4.3.0.dfsg.1-10 X Window System miscellaneous exte ii libxft2 2.1.2-6 FreeType-based font drawing librar ii libxp6 4.3.0.dfsg.1-10 X Window System printing extension ii libxt6 4.3.0.dfsg.1-10 X Toolkit Intrinsics ii psmisc 21.5-1 Utilities that use the proc filesy ii xlibs4.3.0.dfsg.1-10 X Keyboard Extension (XKB) configu ii zlib1g 1:1.2.2-4 compression library - runtime -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
