Bug#992510: mailman3-web: SQL Syntax error installing mailman3-web
Package: mailman3-web
Version: 0+20200530-2
Severity: important
I'm in the process of migrating from buster to bullseye and am migrating
from mailman 2 to mailman 3. Installing mailman3, I get a SQL syntax
error:
Setting up mailman3-web (0+20200530-2) ...
dbconfig-common: writing config to /etc/dbconfig-common/mailman3-web.conf
creating postgres user mailman3web: already exists.
resetting password: success.
creating database mailman3web: already exists.
dbconfig-common: flushing administrative password
Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/django/db/backends/utils.py", line 84,
in _execute
return self.cursor.execute(sql, params)
psycopg2.errors.SyntaxError: syntax error at or near "WITH ORDINALITY"
LINE 6: FROM unnest(c.conkey) WITH ORDINALITY co...
^
The above exception was the direct cause of the following exception:
Traceback (most recent call last):
File "/usr/bin/django-admin", line 5, in
management.execute_from_command_line()
File "/usr/lib/python3/dist-packages/django/core/management/__init__.py",
line 381, in execute_from_command_line
utility.execute()
File "/usr/lib/python3/dist-packages/django/core/management/__init__.py",
line 375, in execute
self.fetch_command(subcommand).run_from_argv(self.argv)
File "/usr/lib/python3/dist-packages/django/core/management/base.py", line
323, in run_from_argv
self.execute(*args, **cmd_options)
File "/usr/lib/python3/dist-packages/django/core/management/base.py", line
364, in execute
output = self.handle(*args, **options)
File "/usr/lib/python3/dist-packages/django/core/management/base.py", line
83, in wrapped
res = handle_func(*args, **kwargs)
File
"/usr/lib/python3/dist-packages/django/core/management/commands/migrate.py",
line 232, in handle
post_migrate_state = executor.migrate(
File "/usr/lib/python3/dist-packages/django/db/migrations/executor.py", line
117, in migrate
state = self._migrate_all_forwards(state, plan, full_plan, fake=fake,
fake_initial=fake_initial)
File "/usr/lib/python3/dist-packages/django/db/migrations/executor.py", line
147, in _migrate_all_forwards
state = self.apply_migration(state, migration, fake=fake,
fake_initial=fake_initial)
File "/usr/lib/python3/dist-packages/django/db/migrations/executor.py", line
245, in apply_migration
state = migration.apply(state, schema_editor)
File "/usr/lib/python3/dist-packages/django/db/migrations/migration.py", line
124, in apply
operation.database_forwards(self.app_label, schema_editor, old_state,
project_state)
File
"/usr/lib/python3/dist-packages/django/db/migrations/operations/fields.py",
line 249, in database_forwards
schema_editor.alter_field(from_model, from_field, to_field)
File "/usr/lib/python3/dist-packages/django/db/backends/base/schema.py", line
534, in alter_field
self._alter_field(model, old_field, new_field, old_type, new_type,
File
"/usr/lib/python3/dist-packages/django/db/backends/postgresql/schema.py", line
122, in _alter_field
super()._alter_field(
File "/usr/lib/python3/dist-packages/django/db/backends/base/schema.py", line
543, in _alter_field
fk_names = self._constraint_names(model, [old_field.column],
foreign_key=True)
File "/usr/lib/python3/dist-packages/django/db/backends/base/schema.py", line
1115, in _constraint_names
constraints = self.connection.introspection.get_constraints(cursor,
model._meta.db_table)
File
"/usr/lib/python3/dist-packages/django/db/backends/postgresql/introspection.py",
line 155, in get_constraints
cursor.execute("""
File "/usr/lib/python3/dist-packages/django/db/backends/utils.py", line 67,
in execute
return self._execute_with_wrappers(sql, params, many=False,
executor=self._execute)
File "/usr/lib/python3/dist-packages/django/db/backends/utils.py", line 76,
in _execute_with_wrappers
return executor(sql, params, many, context)
File "/usr/lib/python3/dist-packages/django/db/backends/utils.py", line 84,
in _execute
return self.cursor.execute(sql, params)
File "/usr/lib/python3/dist-packages/django/db/utils.py", line 89, in __exit__
raise dj_exc_value.with_traceback(traceback) from exc_value
File "/usr/lib/python3/dist-packages/django/db/backends/utils.py", line 84,
in _execute
return self.cursor.execute(sql, params)
django.db.utils.ProgrammingError: syntax error at or near "WITH ORDINALITY"
LINE 6: FROM unnest(c.conkey) WITH ORDINALITY co...
^
dpkg: error processing package mailman3-web (--configure):
installed mailman3-web package post-installation script subprocess returned
error exit status 1
dpkg: dependency problems prevent configuration of mailman3-full:
mailman3-full depends on mailman3-web; however:
Package mailman3-web is not configured yet.
dpkg: error processing package mailman3-full
Bug#710418: ITP: opendb -- PHP and MySQL based inventory application
Package: wnpp Severity: wishlist Owner: Michael Schultheiss schul...@debian.org * Package name: opendb Version : 1.5.0.7 Upstream Author : Jason Pell * URL : http://opendb.iamvegan.net * License : GPL v2 Programming Lang: PHP Description : PHP and MySQL based inventory application The Open Media Collectors Database (OpenDb) is a PHP and MySQL based inventory application that allows you to easily catalog and lend media-related information, including DVD, VCD, CD, VHS, games, books, and laser discs. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#670451: gallery2: New upstream version 2.3.2
Package: gallery2 Severity: high We're releasing both Gallery 3.0.3 and Gallery 2.3.2 as security releases. Several researchers, working independently, discovered possible encryption-related vulnerabilities. Low-risk XSS vulnerabilities limited to the administration area were also reported. We thank the following individuals for reporting these issues: James 'albino' Kettle, George Argyros Aggelos Kiayias, and Emanuel Bronshtein. The CVE id for these issues is CVE-2012-1113. We recommend that all users of Gallery 2 and Gallery 3 upgrade as soon as possible. For complete details on this release including what changed, please refer to the official news story: http://gallery.menalto.com/gallery_3_0_3_and_gallery_2_3_2 -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#511715: ITP: gallery3 -- web-based photo album written in PHP
Marc Dequènes (Duck) wrote: You're not the only DD having hit a license problem, and if every (if not all) DD had created a personal repository for each package causing problem, there would be no central repository at all. Do you intend to support sid, testing, stable, and security up to old-stable by yourself in the long run? Do you really think this situation is sustainable? No, the situation isn't sustainable. The Gallery project has no free time to help fix the license issue. A call for assistance was made to the gallery-devel mailing list and no one stepped up to take up the task. Now that you have tell upstream that it is not necessary, do you think anyone of them will help you solve the licensing problem? You also forgot about the trust and security problem caused by adding any apt key like explained in your installation procedure[1]. What would happen if your GPG key is compromised? If you want to help Debian and your users you'll have to clean this up and make up a decision. If the source code of the SWF apps cannot be provided, then i think you could provide a package with such files removed and the corresponding features deactivated. If you also want to care about the lost features, and if these files are _really_ allowed to be distributed at all, then you may package them separately in a non-free package which would enhance the free one (and provide a helper script of some sort to activate the feature if needed). Please do not consider this mail an offensive one. I just think you made a mistake and i wanted to explain my point of view. I also think you should perfectly be able to improve the situation. Don't forget you may also ask your fellow developers for opinions and/or help on the MLs. I haven't taken offence. I've removed SWF files from previous Gallery versions since they weren't key to the functionality of the software. I haven't yet had time to determine whether the SWF files can be removed from Gallery 3 in a similar manner. I'll test that out and ask for further assistance if needed. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#511715: gallery3 Debian package
Tanguy Ortolo wrote: Hello Michael, I want to take some news about the packaging of Gallery 3. It has been several years since this ITP report was filed, and I know you have not abandonned it since you have updated your package only a month ago. However, even though you seem to have a working package (I have not tested it yet), it is still not part of Debian, and not even in the NEW queue. I do not know why this is stalled, but could you either explain if there is some specific reason for that, or ask for help? Packaging software is a good thing, but if it is not to release them I think it is only a waste of time… The thread at http://sourceforge.net/mailarchive/message.php?msg_id=27792791 has the current status of Gallery3 and Debian. signature.asc Description: Digital signature
Bug#511715: ...time passes
Bharat Mediratta wrote: Thanks, Michael. Roughly when will it show up in unstable? I'd love to test it out. Normally it takes about a week but since the new stable release is coming out shortly, it may take a bit longer. I'll get the package uploaded to people.debian.org this afternoon. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#511715: gallery3 Debian package
Michael Schultheiss wrote: Bharat Mediratta wrote: Thanks, Michael. Roughly when will it show up in unstable? I'd love to test it out. Normally it takes about a week but since the new stable release is coming out shortly, it may take a bit longer. I'll get the package uploaded to people.debian.org this afternoon. While awaiting the gallery3 package's migration into Debian Unstable, packages can be obtained from my people.debian.org repository. To access the package: 1. Add the following to /etc/apt/sources.list.d/gallery3.list deb http://people.debian.org/~schultmc/debian unstable/ deb-src http://people.debian.org/~schultmc/debian unstable/ 2. sudo apt-key adv --keyserver keyring.debian.org --recv-keys 9EC002FE1C9CA517 3. sudo apt-get update 4. sudo apt-get install gallery3 /etc/gallery3/apache.conf has the /gallery3 alias disabled by default - for testing purposes you'll most likely want to uncomment out the alias and restart apache. signature.asc Description: Digital signature
Bug#511715: ...time passes
Bharat Mediratta wrote: In a week or so if I don't see any progress, I'm going to officially ask the broadest possible audience for somebody to take over packaging Gallery 3 for Debian. The Debian packages for 3.0.1 were uploaded a few minutes ago. Since this is a new package, they will not be available in Debian Unstable until after the FTP Masters process the upload. I can host packages on people.debian.org in the meantime. signature.asc Description: Digital signature
Bug#511715: ...time passes
Bharat Mediratta wrote: It's been 3 months since the last activity on this bug. Can we please get this packaged? Michael, I am more than happy to beat the bushes to find a new maintainer but right now this seems to be going nowhere which is very frustrating. I apologize for the continued delays - I'll get the packaging finished ASAP. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#589930: Patch for the l10n upload of frontaccounting
Christian PERRIER wrote: Quoting Christian PERRIER (bubu...@debian.org): Dear maintainer of frontaccounting, On Thursday, October 14, 2010 I sent you a notice announcing my intent to upload a NMU of your package to fix its pending l10n issues, after an initial notice sent on Monday, October 11, 2010. We finally agreed that you would do the update yourself at the end of the l10n update round. That time has come. Ping? Don't worry, Michael, I know you're an efficient maintainer but sometimes busy elsewhere (like working on DC10 money things)...so I'm just taking news and (very gently) prod you;-) Sorry for the delay - I'll get the translations included and upload a new package later today. signature.asc Description: Digital signature
Bug#589930: Announce of the upcoming NMU for the frontaccounting package
Christian PERRIER wrote: Dear maintainer of frontaccounting and Debian translators, Some days ago, I sent a notice to the maintainer of the frontaccounting Debian package, mentioning the status of at least one old po-debconf translation update in the BTS. I announced the intent to build and possibly upload a non-maintainer upload for this package in order to fix this long-time pending localization bug as well as all other pending translations. The package maintainer agreed for the NMU or did not respond in four days, so I will proceed with the NMU. Sorry for the delayed response. I'd be happy to incorporate the i18n/l10n updates without requiring an NMU. signature.asc Description: Digital signature
Bug#511715: (no subject)
Friedemann Schorer wrote: Hi Michael, great you filed an ITP (is that one of the longest ITPs ever? ;) ) - can you tell when it may be ready for a first test? (Relax, don't wanna push, just ask). The initial package should be available shortly. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#511715: Ping
Bharat Mediratta wrote: We're on the cusp of release Gallery 3.0 -- who should I talk to about getting this packaged up for Debian? Thanks! I'm planning on packaging Gallery 3.0 for Debian as I've done with Gallery 1 and Gallery 2. signature.asc Description: Digital signature
Bug#592170: [Debconf-team] Bug#592170: please add debconf delegates to intro/organisation
Holger Levsen wrote: Marga remembered that she, Ganneff and me (and probably others (*)) were delegates, but I couldnt find such a mail from aj to d-d-a now, which is no surprise to me, given that DebConf has just ended. I found AJ's delegation at: http://lists.debian.org/debian-project/2006/06/msg00265.html http://lists.debconf.org/lurker/message/20060622.150218.0fd6bc26.en.html signature.asc Description: Digital signature
Bug#586629: frontaccounting: General update after the debconf review process
Christian PERRIER wrote: Quoting Michael Schultheiss (schul...@debian.org): Christian PERRIER wrote: Please notify me of your intents with regards to this. Thank you for your i18n/l10n work. I'll incorporate these changes and get an updated package uploaded soon. Howdy Michael, Soon as in very very soon or soon as in I'm busy with DC10 stuff so certaily not before DC10 starts? Soon as in as soon as I get a chance (hopefully sometime this week). signature.asc Description: Digital signature
Bug#586629: frontaccounting: General update after the debconf review process
Christian PERRIER wrote: Please notify me of your intents with regards to this. Thank you for your i18n/l10n work. I'll incorporate these changes and get an updated package uploaded soon. signature.asc Description: Digital signature
Bug#587155: frontaccounting: New upstream version 2.2.10
Package: frontaccounting Severity: wishlist New features - Option for setting Excel as default print destination - Line memos are automatically copied from previous line.in Bank/GL entries. - Report GL Transactions now prints line memos Bugs fixed in 2.2.10 --- - Small fixes in core Chart of Accounts. - No limits on 30 days in Payment terms if end of month. - Rounding bug when decimals greater than or equal to 6. - False overallocation fixed. - Allow optional long timeout on various buttons - Long ajax timeout on all reports Final instructions -- If you are updating from an earlier 2.X.X installation, please check roles setup, as due to bug just fixed they may need corrections for work order bulk reports and tax groups. Also follow the instruction in update.html file. If this is a new installation, please follow the instructions in install.html file. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#426048: Packaging FUPPES
Robert Massaioli wrote: Just a quick heads up: I have added a RFS for fuppes. Lets hope that somebody comes and takes a look at it. :) Robert P.S. I suspect the control file contains too many depends. Will try and double check with less tomorrow. I'll take a look -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20100214024607.go1...@amellus.com
Bug#528115: 2.3.1-dfsg1 introduced bug?
Guyang Alex Mao wrote: Probably related to this non-free material removal patch, because when I click on Add Items in any album in my gallery2 2.3.1-dfsg install, the site actually crashes out with an error about missing /usr/share/gallery2/modules/uploadapplet/* files. This renders gallery2 essentially unusable. If you want to use the upload applet, you'll need to reinstall it from the downloadable plugins. I put a note in README.Debian but will make this more prominent, such as triggering the upgrader to run so the missing modules are deactivated. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#505356: fixed
fixed 505356 3.1.0-1 kthxbai signature.asc Description: Digital signature
Bug#528115: gallery2: contains non-free material
Jan Wagner wrote: Hi Michael, On Saturday, 24. October 2009, Michael Schultheiss wrote: Luk Claes wrote: What's the status of this RC bug report? I've done the equivalent fix for gallery - I need to do a similar fix for gallery2 as well. any progress here? Sorry for the delay - I plan on working on this at the NYC BSP next weekend if I can't get to it before then. signature.asc Description: Digital signature
Bug#426048: Packaging FUPPES
Robert Massaioli wrote: Okay, well Eva seems to have done something and I'm going to continue to do work too so a combined project should be created. I'll try and create one on allioth asap. There's no need to create a new project on alioth unless we want our own separate infrastructure like mailing lists, etc. We can use the existing collab-maint project: https://alioth.debian.org/projects/collab-maint/ http://wiki.debian.org/Alioth/PackagingProject -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#426048: Packaging FUPPES
Robert Massaioli wrote: Sorry did you guys end up creating a debian allioth project? I have a bunch of debian/* files for fuppes now including a bash-completion script, man pages and more. I should really have made more of an effort to work together. If you are still working on it then let me know and I'll make sure that I give you what I have. I'm not aware of a separate fuppes project but as I stated early we can use collab-maint rather than a separate project if you want help maintaining fuppes. I'm happy to help out but don't have time to maintain fuppes without collaboration. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#561969: wishlist: Gallery 2.3.1
Daniel Baumann wrote: Hi, what is the state of this? I'm working on packaging the new upstream release as well as fixing other outstanding bugs in the package. I should have a new package uploaded shortly. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#426048: fuppes
Eva Ramon wrote: Hallo Michael, I am almost ready to upload the fuppes package. Is it ok for you if I go on with it? Do we really need to set up a group for it? We don't necessarily need a group for it but if you'd like help maintaining it, either an alioth group or using collab-maint would allow for easier collaboration. If you'd like to maintain it yourself, that's fine with me. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#562139: ITP: frontaccounting -- A web based double-entry accounting and ERP program
Package: wnpp Severity: wishlist Owner: Michael C. Schultheiss schul...@debian.org * Package name: frontaccounting Version : 2.2.1 Upstream Author : FrontAccounting LLC * URL : http://frontaccounting.net * License : GPL 3 Programming Lang: PHP Description : A web based double-entry accounting and ERP program A simple but powerful system for the entire Enterprise Resource Planning (ERP) chain, covering: * Purchase Orders * Goods Receivable Notes * Supplier Invoices/Credit Notes * Payments * Allocations * Accounts Payable * Items and Inventory * Stock * Manufacturing * Sales Orders * Customer Invoices/Credit Notes * Deposits * Allocations * Accounts Receivable * Dimensions * General Ledger with Budgert * Languages * Currencies * Several Companies -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#426048: Packaging FUPPES
Robert Massaioli wrote: So please feel free to email me if you want to package, or help package fuppes. I would like to help package fuppes. I think a team maintained package would be best since it would allow multiple people to work on the package as needed. http://wiki.debian.org/Alioth/PackagingProject explains how to setup collaborative maintenance using alioth.debian.org -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#528115: gallery2: contains non-free material
Luk Claes wrote: Hi What's the status of this RC bug report? I've done the equivalent fix for gallery - I need to do a similar fix for gallery2 as well. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#538700: Gallery 1.5.10 Released
Package: gallery Severity: wishlist Gallery 1.5.10 and Gallery 1.6-RC3 are now available for download. These releases fix one security issue and a handful of other small issues. These releases are also the last official releases of Gallery 1 from the Gallery project. We strongly recommend that all users of Gallery 1.5.9, 1.6-RC2, and earlier upgrade to this release to protect your Gallery installation. You can download them from: http://sourceforge.net/project/showfiles.php?group_id=7130package_id=7239 Upgrade instructions are available here: http://codex.gallery2.org/index.php/Gallery1:Upgrading For the full details and what this means for Gallery 1, please read the official announcement: http://gallery.menalto.com/last_official_G1_releases -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#525398: gallery2: Upgrade from 1.2.0.8 to 1.3.0 fails. Missing or invalid config.php
Darryl Luff wrote: After an 'aptitude upgrade' the next time I accessed gallery2 I was directed to /gallery2/upgrade/index.php. What version of the gallery2 package were you running prior to the upgrade? -- --- Michael Schultheiss E-mail: schul...@debian.org -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#511715: ITP: gallery3 -- web-based photo album written in PHP
Package: wnpp Severity: wishlist Owner: Michael Schultheiss schul...@debian.org * Package name: gallery3 Version : 3.0 * URL : http://gallery.sf.net * License : GPL Programming Lang: PHP Description : web-based photo album written in PHP Gallery3 is a web-based photo album with multiple user support. It provides users with the ability to create and maintain their own albums via an intuitive web interface. . Gallery3 is a complete rewrite of the popular Gallery software that strives for a simpler codebase and reduced scope to ease maintainability. -- System Information: Debian Release: 5.0 APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#442109: Status
Stefan Lesicnik wrote: Hi Michael, Any news on incorporating this. I would like to complete the Ubuntu merge. I apologize for the delay in incorporating this. I'll get it uploaded to Debian Unstable this week. -- Michael Schultheiss E-mail: schul...@debian.org -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#442109: Status
Stefan Lesicnik wrote: Hi I am busy completing a merge of gallery into Ubuntu and this bug and the addition of a homepage field to the control file are the only outstanding additions and it would be great if we could sync! Could you please let me know if this patch attached is acceptable and the chances of getting it into unstable or experimental! The patch looks fine to me - I'll get it integrated and uploaded to unstable. The Homepage field should be set to http://gallery.sf.net -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#503010: #503010 [G||] [gallery2] gallery2: fails to upgrade / fails to install - fwrite error
Alban Browaeys wrote: I am out of clue about what is happening though this may be more dependant on my system than I first thought (I hope this is not a bug introduced in the upgrade to php5 5.2.6-5 that I upgraded at teh same time as gallery2 be it in the code or if the default config has a change that could explain such an issue ... I bet this also explains the config.php truncated to 0 on upgrade. I haven't been able to duplicate this. I was able to successfully upgrade my gallery from gallery2-2.2.6-1 to gallery2-2.3-1 without issue. I'm running php5 5.2.6-5 as well. I'm setting up a test environment with gallery2 2.2.5-2 and will try upgrading directly to 2.3-1 to see if I can duplicate this. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#502681: gallery2: New upstream version - Gallery 2.3 (Skidoo) Released!
Package: gallery2 Severity: wishlist Gallery 2.3 (Skidoo) is now available for download! It's been almost 20 months since the last major release and Gallery 2.3 is packed with new features and enhancements. Major new features include: A much improved slideshow using PicLens to provide a rich, full screen experience; Comment spam filtering with Akismet; and configurable e-mail notifications. Translations and Integrations: Additionally, 8 languages are now 100% translated, 20 more are over 50% translated, and support has been added for integration with even more 3rd party applications! Security: Like each and every Gallery 2 release before this one, after a professional security audit and internal audits, we have made many improvements to protect your Gallery installation and you. No known exploits exist for the current version of Gallery (R2.2.6), however, we highly recommend that you upgrade to Gallery 2.3 to insure the security of your Gallery installation. Get all the details at: http://gallery.menalto.com/gallery_2.3_released -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#501579: gallery2: Warnings on upgrade to 2.2.6
Chris Chiappa wrote: Package: gallery2 Version: 2.2.6-1 Severity: normal I just did a safe-upgrade and got upgraded to 2.2.6. Stepping through the upgrade process I get the following warnings. Probably nothing, but not knowing more about the internals of Gallery, they're a little troublesome to see. An artifact of multiple Debian packages? Debian policy strongly discourages embedded copies of code that is available in other Debian packages. Recent versions of the Debian gallery2 package use the system adodb and smarty packages. I need to update the gallery2 package to disable those warnings. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#499806: gallery2: gallery with PHP4 doesn't work with libphp-adodb 5
tags 499806 wontfix tags 499806 - patch kthxbye Calum Mackay wrote: Package: gallery2 Version: 2.2.6-1 Severity: important Tags: patch Firstly, apologies if I'm missing something that renders my configuration invalid. I'm using Gallery2 with PHP4, which I believe is still supported. I know that future Gallery2 releases will require PHP5. gallery2 depends on libphp-adodb, which is currently at version 5.05. However, 5.x versions of adodb require PHP5; attempting to use adodb 5 with Gallery 2 PHP4 produces an unexpected T_STATIC error page. Since Gallery2 supports PHP4, I believe the gallery2 pkg should require a 4.x version of libphp-adodb, e.g: libphp-adodb ( 5.0). Downgrading to libphp-adodb 4.96-1 fixed the problem for me. Again, apols if I've missed an announcement *requiring* me to upgrade to PHP5. PHP4 was removed from testing and unstable several months ago: http://wiki.debian.org/PHP4Removal Continuing to use PHP4 in testing/unstable will require workarounds. The libphp-adodb dependency is currently unversioned and installing an older package works, as you have already seen. libphp-adodb versions less than 5.05-1 are not available in testing and unstable which would render the package unusable for the majority of users. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#499408: Gallery 2.2.6 Security Fix Release available
tags 499408 + pending kthxbye Jan Wagner wrote: Package: gallery2 Severity: grave Tags: security A new version has been released which fixes the following bugs: I'm finalizing the packaging of Gallery 2.2.6 and will be uploading it later today. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#499185: gallery: Gallery 1.5.9 Released
Package: gallery Severity: important Gallery 1.5.9 is now available for download. This release fixes several security issues and also resolves a handful of bugs found in Gallery 1.5.8. We recommend that all users of Gallery 1.5.8 and earlier upgrade to this release to protect your Gallery installation. http://gallery.menalto.com/gallery_1.5.9_released -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#426048: fuppes ITP
Radu Spineanu wrote: Hi, Is there any progress with the Fuppes packaging? I'm interested in this program, please let me know if I can go ahead and hijack the ITP(if you guys are not interested in it anymore). We've made some progress on the ITP but I haven't had time to work on it recently. I wouldn't mind if you hijacked the ITP. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#493891: gallery: Gallery 1.5.8 Released
Package: gallery Severity: important Gallery 1.5.8 is now available for download. This release fixes many security issues including some serious security issues. It also resolves as well as a handful of bugs and reorganizes the internal API some (which is documented here [1]). We strongly recommend that all users of Gallery 1.5.7 and earlier upgrade to this release to protect your Gallery installation. You can download Gallery 1.5.8 from the Gallery 1 download page on SourceForge. Upgrade instructions are available on our documentation site. Please discuss any issues specific to this release in this forum thread. [1] http://codex.gallery2.org/Gallery1:API_Changes_From_1.5.7_To_1.5.8 [2] http://codex.gallery2.org/index.php/Gallery1:Upgrading [3] http://gallery.menalto.com/node/79698 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#471160: removed smarty
Jan Wagner wrote: Hi Michael, On Saturday 19 April 2008 17:39, Michael Schultheiss wrote: Jan Wagner wrote: tags 471160 + patch hi there, what about the attached patch. shouldn't do it the trick? on my test installation it works all well Thank you for your patch. I've tested it and found that the embedded smarty and adodb are still utilized, at least on upgrades. I added a preinst file that handles the symlinking for upgrades and my Gallery started throwing HTTP 500 errors (Internal Error). I'll do some further testing to see if I can determine what the problem is. what about adodb? I just double checked the files, the are just copied over without modifications. Policy violation for embedded code copies are bad and I think you don't want to be assassinated by Security Team. :) I'm still working on adodb - the initial patch is non-functional and I'm working to see what Gallery needs from adodb so it can use the system adodb. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#485947: gallery2: Gallery 2.2.5 Security Fix Release
Package: gallery2 Severity: important Gallery 2.2.5 is now available for download. This release fixes critical security issues, no new features have been added. Users of all previous Gallery 2 versions are strongly encouraged to upgrade to version 2.2.5 as soon as possible! All issues addressed in this release have been discovered in internal security audits. Since 2.2.5 is a security release, it shares the same installation requirements as 2.2.4. If you haven't upgraded to 2.2.x yet, please review the Gallery 2.2 release notes [1] for highlights of changes and the requirements. Read on [2] for more details and upgrade instructions. [1] http://gallery.menalto.com/gallery_2.2_released [2] http://gallery.menalto.com/gallery_2.2.5_released -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#471160: Smarty still the same - not fixed?
Thijs Kinkhorst wrote: reopen 471160 thanks Hi, I don't understand why you're closing this bug. I cannot find information in the debdiff between the two versions that the Smarty security bug was fixed at all. Can you clarify? According to Gallery upstream, this bug was fixed in the 2.2.5 code tree. Also I don't think the bug is closed at all when the tarball still contains a verbatim copy of smarty. Embedded code copies are a policy violation and with good reason: they are a serious problem for security support. I'm working on removing the embedded copy of smarty but in my testing, the existing patches are not a drop in replacement for the current functionality. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#471160: removed smarty
Jan Wagner wrote: tags 471160 + patch hi there, what about the attached patch. shouldn't do it the trick? on my test installation it works all well Thank you for your patch. I've tested it and found that the embedded smarty and adodb are still utilized, at least on upgrades. I added a preinst file that handles the symlinking for upgrades and my Gallery started throwing HTTP 500 errors (Internal Error). I'll do some further testing to see if I can determine what the problem is. Upstream Gallery is working on a new version that includes a fix for the smarty issue. I agree that using the Debian packaged version is better than embedding, but not at the expense of usability. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] signature.asc Description: Digital signature
Bug#472634: aptitude: Unable to install via debootstrap
Package: aptitude Version: 0.4.11-3 Severity: important While setting up a sid chroot with debootstrap, I noticed that aptitude was unable to install. Upon examining the issue, I noticed this was because aptitude depends on libcwidget1 which is no longer in sid. -- Package-specific info: Terminal: screen $DISPLAY not set. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.24-1-686 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages aptitude depends on: ii apt [libapt-pkg-libc6. 0.7.10Advanced front-end for dpkg ii libc6 2.7-6 GNU C Library: Shared libraries ii libcwidget10.5.6.1-3 high-level terminal interface libr ii libept00.5.15High-level library for managing De ii libgcc11:4.3-20080202-1 GCC support library ii libncursesw5 5.6+20080203-1Shared libraries for terminal hand ii libsigc++-2.0-0c2a 2.0.17-2 type-safe Signal Framework for C++ ii libstdc++6 4.3-20080202-1The GNU Standard C++ Library v3 ii libxapian151.0.5-1 Search engine library ii zlib1g 1:1.2.3.3.dfsg-11 compression library - runtime Versions of packages aptitude recommends: pn aptitude-doc-en | aptitude-do none (no description available) pn libparse-debianchangelog-perl none (no description available) -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#471845: Gallery crashes when trying to remove global view permission
Carr, Chris wrote: 1: Fatal error: Maximum execution time of 30 seconds exceeded in /usr/share/gallery2/modules/core/classes/helpers/GalleryItemHelper_mediu m.class on line 979 I don't understand this one, since my phpinfo (link below) clearly shows that the max execution time is 630 seconds (I edited /etc/php5/apache2/php.ini to increase the time limit). I'm not sure why you're getting this error, especially since phpinfo shows 630 seconds. 2: Warning: fopen(/archive/Gallery/locks/1) [function.fopen]: failed to open stream: Too many open files in /usr/share/gallery2/modules/core/classes/GalleryPlatform.class on line 326 Warning: GalleryCoreApi::require_once(/usr/share/gallery2/modules/core/classes/.. /../../modules/core/classes/GalleryStatus.class) [function.GalleryCoreApi-require-once]: failed to open stream: Too many open files in /usr/share/gallery2/modules/core/classes/GalleryCoreApi.class on line 2717 Fatal error: GalleryCoreApi::require_once() [function.require]: Failed opening required '/usr/share/gallery2/modules/core/classes/../../../modules/core/classes/ GalleryStatus.class' (include_path='.:/usr/share/php:/usr/share/pear') in /usr/share/gallery2/modules/core/classes/GalleryCoreApi.class on line 2717 This one makes a little more sense, but I cannot find any configuration option to increase the maximum number of open files allowed. This is probably caused by ulimits on your filesystem. You can run ulimit -a to see what the current limits are and use ulimit -n to change the open files limit. You can also switch the Locking System used in the Site Admin section from File to Database to see if that solves your second issue. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#452128: Is there a need to run the upgrade script?
Shawn Willden wrote: On Monday 17 March 2008 08:25:23 am Thijs Kinkhorst wrote: tags 452128 etch moreinfo Hi Shawn, After upgrading this morning (to obtain the security fixes), my gallery installation cannot perform the web-based portion of the upgrade process. When it gets to step 2 System Checks, it fails saying: Is there any need to run the web based upgrade process at all after the security upgrade? That upgrade only changes some code segments, not something that I would say you need to run the upgrade script for... Does it work if you don't run the script? After doing the dpkg upgrade, gallery2 automatically requires the web-based upgrade to be run. How would I bypass it? I just tested this on 2008-03-14 and was not forced to run the web-based upgrader when moving from the original etch package to the security update. What versions of gallery2 are you upgrading from? -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#433141: Licence clarified but..
Romain Beauxis wrote: Why didn't you use the php package I uploaded to fix this issue ? Upstream gallery includes and modifies XML_HTMLSax3. In particular, there are licence issues when including something licenced with the PHP licence in a software not being part of PHP itself. XML_HTMLSax3 is now dual licensed under PHP and GPL licenses. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#457644: gallery2: Gallery 2.2.4 Security Fix Release
Package: gallery2 Severity: wishlist Just in time for the holidays, Gallery 2.2.4 is now available for download. This release fixes critical security issues, no new features have been added. Due to the severity of these issues users of all previous Gallery 2 versions are strongly encouraged to upgrade to version 2.2.4 as soon as possible! All issues addressed in this release were discovered through an extensive internal security audit. Since 2.2.4 is a security release, it shares the same installation requirements as 2.2.3. If you haven't upgraded to 2.2.x yet, please review the Gallery 2.2 release notes [1] for highlights of changes and the requirements. Read on [2] for more details and upgrade instructions. [1] http://gallery.menalto.com/gallery_2.2_released [2] http://gallery.menalto.com/gallery_2.2.4_released -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#452128: gallery2: Upgrade claims files are unwritable
Shawn Willden wrote: Any ideas? Not that I can think of off the top of my head. I'll do some testing and see what I can come up with. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431026: Bug#433141: Bug#431025: Bug#431026: [PEAR-DEV] Quality assurance propositionfor HTMLSax3
Romain Beauxis wrote: On Tue, 30 Oct 2007 20:03:31 -0400, Michael Schultheiss [EMAIL PROTECTED] wrote: PHP 3.01 is still GPL incompatible. There's also many people under the impression that the PHP license is only valid for code from the PHP Group. To solve the license issue, a GPL compatible license needs to be chosen. http://www.fsf.org/licensing/licenses/ lists numerous GPL Compatible Free Software Licenses. But who said we need a GPL compatible licence ? The 3 Debian bugs cc'd remain open due to incompatible licenses. This issue is getting on my nerves now, so please stop throwing pointless issues. Debian can accept software packaged under PHP licence 3.01 provided that they ship only php-related files. I you have a doubt, look at php5's package licence. Debian accepts PHP licensed code if it's from the PHP Group. *So* I have prepared a pakcage shipping *only* this pear package and uploaded it to new. It's still stuck there, but I hope that since the licence is cleared, it will be accepted. Now my question was wether there was something I didn't figured out in *this* scenario, not yet another occasion to feed the troll on GPL vs. PHP licence. My whole involvement in this issue is due to the license incompatibility and the release critical bugs in two of my packages due to that license issue. I'm not trying to troll, I'm trying to resolve issues affecting my packages and the software teams I'm part of. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#433141: Bug#431025: Bug#431026: [PEAR-DEV] Quality assurance proposition for HTMLSax3
Frank Habermann wrote: Hi all, good news from Harry, he has fixed the licence problem with HtmlSax and HTMLSax3 in CVS of pear. You can see it here: http://cvs.php.net/viewvc.cgi/pear/XML_HTMLSax/ All Harry did was switch to the PHP 3.0 license, which does nothing to solve the license problem. A license such as the BSD or Expat license would solve the problem. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431025: Bug#431026: [PEAR-DEV] Quality assurance proposition for HTMLSax3
Romain Beauxis wrote: Le Tuesday 30 October 2007 23:28:42 Michael Schultheiss, vous avez écrit : he has fixed the licence problem with HtmlSax and HTMLSax3 in CVS of pear. You can see it here: http://cvs.php.net/viewvc.cgi/pear/XML_HTMLSax/ All Harry did was switch to the PHP 3.0 license, which does nothing to solve the license problem. A license such as the BSD or Expat license would solve the problem. Now that licence is cleared, I think we can choose to use 3.01, as stated... 5. The PHP Group may publish revised and/or new versions of the license from time to time. Each version will be given a distinguishing version number. Once covered code has been published under a particular version of the license, you may always continue to use it under the terms of that version. You may also choose to use such covered code under the terms of any subsequent version of the license published by the PHP Group. No one other than the PHP Group has the right to modify the terms applicable to covered code created under this License. Or do I miss a point ? PHP 3.01 is still GPL incompatible. There's also many people under the impression that the PHP license is only valid for code from the PHP Group. To solve the license issue, a GPL compatible license needs to be chosen. http://www.fsf.org/licensing/licenses/ lists numerous GPL Compatible Free Software Licenses. -- Michael Schultheiss E-mail: [EMAIL PROTECTED]
Bug#441407: CVE-2007-4650: security bugs in the WebDAV and Reupload modules
Michael Schultheiss wrote: Thijs Kinkhorst wrote: The attached patch seems to contain quite some auxillary changes. Do you think you can prepare an upload for stable addressing only the issue at hand? I can ask upstream for a more narrow patch but this is what they told me to change initially. Stable update with a narrower patch attached. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] Format: 1.0 Source: gallery2 Version: 2.1.2-2.0.etch.1 Binary: gallery2 Maintainer: Michael C. Schultheiss [EMAIL PROTECTED] Architecture: all Standards-Version: 3.7.2 Build-Depends: debhelper (= 5) Files: 0603fedf38581e11c27a78d451f2730f 9506000 gallery2_2.1.2.orig.tar.gz 4bd60b2dcf3ebe9cbf1a59760c7cd164 16946 gallery2_2.1.2-2.0.etch.1.diff.gz Format: 1.7 Date: Thu, 18 Oct 2007 13:45:29 + Source: gallery2 Binary: gallery2 Architecture: source all Version: 2.1.2-2.0.etch.1 Distribution: stable-security Urgency: high Maintainer: Michael C. Schultheiss [EMAIL PROTECTED] Changed-By: Michael C. Schultheiss [EMAIL PROTECTED] Description: gallery2 - web-based photo album written in PHP Changes: gallery2 (2.1.2-2.0.etch.1) stable-security; urgency=high . * Fix multiple unspecified vulnerabilities that allowed attackers to edit unspecified data files using linked items in the Reupload module [CVE-2007-4650] Files: 36cbbb5df39635573646e362bd6ea13c 355 web optional gallery2_2.1.2-2.0.etch.1.dsc 4bd60b2dcf3ebe9cbf1a59760c7cd164 16946 web optional gallery2_2.1.2-2.0.etch.1.diff.gz 0131bce0e1c51184b0f7d89e74907979 9587480 web optional gallery2_2.1.2-2.0.etch.1_all.deb gallery2_2.1.2-2.0.etch.1.diff.gz Description: Binary data
Bug#441407: CVE-2007-4650: security bugs in the WebDAV and Reupload modules
Moritz Muehlenhoff wrote:
On Mon, Sep 10, 2007 at 04:02:14PM -0400, Michael Schultheiss wrote:
fixed 441407 2.2.3-1
kthxbye
Thijs Kinkhorst wrote:
Package: gallery2
Version: 2.1.2-2
Severity: serious
Tags: security
Hi,
As you know Gallery 2.2.3 has been released which fixes several
security bugs in the WebDAV and Reupload modules. Could you please
asess whether an update for etch is necessary?
I'll check with upstream and let you know.
What's the result?
WebDav is not in gallery2 2.1.2-2 (version in etch). Reupload is in
gallery2 2.1.2-2 and the attached patch should fix the security issue.
--
Michael Schultheiss
E-mail: [EMAIL PROTECTED]
--- modules/reupload/ReuploadPhotoOption.inc 2007-10-17 13:49:58.0 +
+++ modules/reupload/ReuploadPhotoOption.inc 2007-10-17 13:51:25.0 +
@@ -1,9 +1,7 @@
?php
/*
- * $RCSfile: ReuploadPhotoOption.inc,v $
- *
* Gallery - a web based photo album viewer and editor
- * Copyright (C) 2000-2006 Bharat Mediratta
+ * Copyright (C) 2000-2007 Bharat Mediratta
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
@@ -21,15 +19,11 @@
*/
/**
- * @version $Revision: 1.1 $ $Date: 2006/01/27 04:36:04 $
+ * This ItemEditOption will handle the reupload of a photo
* @package Reupload
+ * @subpackage UserInterface
* @author Piotr P. Karwasz [EMAIL PROTECTED]
- */
-
-/**
- * This controller will handle the reupload of a photo
- *
- * @package Reupload
+ * @version $Revision: 16994 $
*/
class ReuploadPhotoOption extends ItemEditOption {
@@ -40,26 +34,33 @@
global $gallery;
$platform = $gallery-getPlatform();
- $status = array();
- $error = array();
+ $status = $error = array();
if (!empty($form['tmp_name']['reupload']) !empty($form['size']['reupload'])) {
$inputFileName = $form['tmp_name']['reupload'];
list ($ret, $module) = GalleryCoreApi::loadPlugin('module', 'reupload');
if ($ret) {
- return array($ret-wrap(__FILE__, __LINE__), null, null);
+ return array($ret, null, null);
}
if (!$platform-is_uploaded_file($inputFileName)
|| !$platform-file_exists($inputFileName)) {
- return array(GalleryCoreApi::error(ERROR_BAD_PARAMETER, __FILE__, __LINE__),
- null, null);
+ return array(GalleryCoreApi::error(ERROR_BAD_PARAMETER), null, null);
+ }
+
+ list ($ret, $hasLinkedEntity) = $this-_hasLinkedEntity($item);
+ if ($ret) {
+ return array($ret, null, null);
+ }
+ if ($hasLinkedEntity) {
+ /* UI does not allow this */
+ return array(GalleryCoreApi::error(ERROR_BAD_PARAMETER), null, null);
}
list ($ret, $path) = $item-fetchPath();
if ($ret) {
- return array($ret-wrap(__FILE__, __LINE__), null, null);
+ return array($ret, null, null);
}
/*
@@ -68,31 +69,33 @@
*/
list ($ret, $lockIds[]) = GalleryCoreApi::acquireReadLockParents($item-getId());
if ($ret) {
- return array($ret-wrap(__FILE__, __LINE__), null, null);
+ return array($ret, null, null);
}
list ($ret, $lockIds[]) = GalleryCoreApi::acquireWriteLock($item-getId());
if ($ret) {
- return array($ret-wrap(__FILE__, __LINE__), null, null);
+ return array($ret, null, null);
+ }
+ list ($ret, $item) = $item-refresh();
+ if ($ret) {
+ GalleryCoreApi::releaseLocks($lockIds);
+ return array($ret, null, null);
}
/* take backup first */
$tmpfname = $platform-tempnam($gallery-getConfig('data.gallery.tmp'), 'tmp_');
if (!$tmpfname) {
GalleryCoreApi::releaseLocks($lockIds);
- return array(GalleryCoreApi::error(ERROR_PLATFORM_FAILURE, __FILE__, __LINE__),
- null, null);
+ return array(GalleryCoreApi::error(ERROR_PLATFORM_FAILURE), null, null);
}
if (!$platform-copy($path, $tmpfname)) {
$platform-unlink($tmpfname);
GalleryCoreApi::releaseLocks($lockIds);
- return array(GalleryCoreApi::error(ERROR_PLATFORM_FAILURE, __FILE__, __LINE__),
- null, null);
+ return array(GalleryCoreApi::error(ERROR_PLATFORM_FAILURE), null, null);
}
if (!$platform-copy($inputFileName, $path)) {
$platform-unlink($tmpfname);
GalleryCoreApi::releaseLocks($lockIds);
- return array(GalleryCoreApi::error(ERROR_PLATFORM_FAILURE, __FILE__, __LINE__),
- null, null);
+ return array(GalleryCoreApi::error(ERROR_PLATFORM_FAILURE), null, null);
}
$ret = $item-rescan();
@@ -113,19 +116,19 @@
$platform-copy($tmpfname, $path);
$platform-unlink($tmpfname);
GalleryCoreApi::releaseLocks($lockIds);
- return array($ret-wrap(__FILE__, __LINE__), null, null);
+ return array($ret, null, null);
}
$platform-unlink($tmpfname);
$ret = GalleryCoreApi::releaseLocks($lockIds);
if ($ret) {
- return array($ret-wrap(__FILE__, __LINE__), null, null);
+ return array($ret, null, null
Bug#441407: CVE-2007-4650: security bugs in the WebDAV and Reupload modules
Thijs Kinkhorst wrote: On Wednesday 17 October 2007 15:55, Michael Schultheiss wrote: WebDav is not in gallery2 2.1.2-2 (version in etch). Reupload is in gallery2 2.1.2-2 and the attached patch should fix the security issue. The attached patch seems to contain quite some auxillary changes. Do you think you can prepare an upload for stable addressing only the issue at hand? I can ask upstream for a more narrow patch but this is what they told me to change initially. -- Michael Schultheiss E-mail: [EMAIL PROTECTED]
Bug#433141: Bug#431026: Quality assurance proposition for HTMLSax3
Frank Habermann wrote: Hi, i have talked with Lukas on the pear-dev list about that problem and he want to talk with Harry next week as you see here [0]. I hope he can clear this problem that we have a solution as fast as possible. Frank Habermann [0]: http://news.php.net/php.pear.dev/48218 As I understand it, Chris Kelly, the Gallery Project Manager talked to Harry about relicensing HTMLSax3 under a GPL compatible license and Harry agreed to do so. That's the impression Chris gave me when I asked about it recently. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431025: Status update
The Gallery Project Manager has contacted the upstream HTMLSax3 author and he has agreed to relicense HTMLSax3 under a GPL compatible license. We're awaiting a new upstream release at this time. If there are further delays, I'll include his e-mail in debian/copyright -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#441567: gallery2: problem with open_basedir on multisite instalation (can't change language)
[EMAIL PROTECTED] wrote: Package: gallery2 Version: 2.2.3-1 Severity: important *** Please type your report below this line *** Hi, I have a multi site installation with the gallery2 package. Also I have the open_basedir restriction applied to the path where the multi site is running. The apache2 config looks like that: VirtualHost x.x.x.x:80 ServerName xyz.de ServerAlias www.xyzn.de ServerAdmin [EMAIL PROTECTED] DocumentRoot /var/path_to_web/ php_admin_value open_basedir /var/path_to_web/:/usr/share/gallery2:/tmp/ php_admin_flag safe_mode Off /VirtualHost With this settings all is working fine. But normally the open_bassedir should look like this /usr/share/gallery2/ with the trailing slash. But if I change the settings to this, I can't change the language on the gallery2 website. According to one of the upstream developers (from http://gallery.menalto.com/node/66546): @ trailing slash: that's not a bug, just an unfortunate case. usually one doesn't add a trailing slash to the open_basedir paths. If you disagree, I recommend posting in the Troubleshooting and Problems forum at http://gallery.menalto.com/forum/62 -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#441407: CVE-2007-4650: security bugs in the WebDAV and Reupload modules
fixed 441407 2.2.3-1 kthxbye Thijs Kinkhorst wrote: Package: gallery2 Version: 2.1.2-2 Severity: serious Tags: security Hi, As you know Gallery 2.2.3 has been released which fixes several security bugs in the WebDAV and Reupload modules. Could you please asess whether an update for etch is necessary? I'll check with upstream and let you know. Also, please retroactively add CVE id CVE-2007-4650 to your changelog for 2.2.3-1. I'll do so on my next upload. As I see it, gallery 1.x is not affected, can you confirm that? Yes, gallery 1.x is unaffected. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#441455: gallery: Gallery 1.5.7 Released
Package: gallery Serverity: wishlist Gallery 1.5.7 is now available for download. This release fixes one very minor security issue, fixes a few small bugs, and makes a significant amount of text more sensible. Even though this release has no major security fixes, we recommend that all users of Gallery 1.5.6 and earlier upgrade to this release to be as bug free and secure as possible. You can download 1.5.7 from http://sourceforge.net/project/showfiles.php?group_id=7130package_id=7239;Gallery 1 Upgrade instructions are available: http://codex.gallery2.org/index.php/Gallery1:Upgrading; If you've contributed to translations for Gallery 1 in the past, or would be interested in helping out, our translations for Gallery 1 are fairly far behind! Please join: https://lists.sourceforge.net/lists/listinfo/gallery-translations And send an introduction to get started. Get all the details at: http://gallery.menalto.com/gallery_1.5.7_released -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#440189: gallery2: Gallery 2.2.3 Security Fix Release
Package: gallery2 Severity: wishlist Gallery 2.2.3 is now available for download. This release adds no new features. It fixes critical application security bugs in the WebDAV and Reupload modules. If the WebDAV or Reupload modules are active in your Gallery we strongly recommend that you either disable them, upgrade them via Downloadable Plugins or perform a complete upgrade to version 2.2.3. Thanks go to Merrick Manalastas and Nicklous Roberts for reporting the issues to the Gallery Security team! Gallery 2.2.3 is a small security upgrade from 2.2.2 and has the same requirements as 2.2.2. If you haven't upgraded to 2.2.x yet, please refer to the release announcement of Gallery 2.2 for highlights of changes and the requirements of the Gallery 2.2 release. Details: http://gallery.menalto.com/gallery_2.2.3_released Download: http://codex.gallery2.org/Gallery2:Download#Packages -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#438509: gallery: Gallery 1.5.7 Released
Package: gallery Severity: wishlist Gallery 1.5.7 is now available for download. This release fixes one very minor security issue, fixes a few small bugs, and makes a significant amount of text more sensible. Even though this release has no major security fixes, we recommend that all users of Gallery 1.5.6 and earlier upgrade to this release to be as bug free and secure as possible. Upgrade instructions are available: http://codex.gallery2.org/index.php/Gallery1:Upgrading; If you've contributed to translations for Gallery 1 in the past, or would be interested in helping out, our translations for Gallery 1 are fairly far behind! Please join: https://lists.sourceforge.net/lists/listinfo/gallery-translations And send an introduction to get started. Get all the details at: http://gallery.menalto.com/gallery_1.5.7_released -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#433820: [Pkg-silc-devel] Bug#433820: Does not build with newer libsilc
Jérémy Bobbio wrote: Package: silky Version: 0.5.4-0.1 Severity: serious Hi! silky 0.5.4 will not build with newer version of libsilc. The API has changed and the code needs to be adapted to it. As silky have not received much love by upstream lately, I have started to work on it, but the required changes are quite invasive and I will need more time to fix this issue. According to http://sourceforge.net/forum/forum.php?forum_id=717434 upstream is basically gone. -- Michael Schultheiss E-mail: [EMAIL PROTECTED]
Bug#431025: Bug#433141: Clarifications on issues for this bug
Romain Beauxis wrote: Hope to hear so good news from you or anyone else ... I spoke with the upstream Gallery developers and they're working on getting this module relicensed under BSD or some other GPL compatible license. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431026: License issues with Gallery 1
See http://bugs.debian.org/431025 and http://bugs.debian.org/431026 for the full details. Romain Beauxis wrote: severity 431026 serious severity 431025 serious thanks Hi ! After Joerg's answer, it seems this issue is more important than I though.. Here is his answer to the usual non valid use of the PHP licence, which is the case here: The reason for this decision is the license which does not really fit the package. You package a php thing, either an addon library or a php application which uses the PHP license. Unfortunately for you this license can't really be used with anything else except PHP itself. Shortcut for packages from the PHP group: There was a release of a PHP license version 3.01. That one is usable for stuff from the PHP group itself, but still nothing else. So if you got this reject having a package from that group - it most probably still uses an older, inappropriate, version of the PHP license. As the license usually allows to use a newer version of it - do it. Oh, and ask Upstream to update its package. Package not from PHP group? Read on: Note: It is not that the PHP license is non-free. The license itself is free, *IF* and only *IF* you package PHP itself. For anything else it renders the package basically undistributable, as the license simply doesn't apply. (See also http://lists.debian.org/debian-legal/2005/10/msg00124.html and following mails for more). It always only talks about the product PHP, not about software. And php-whatever (or how the actual software may be called) isnt really PHP from the PHP group. Point 6 (in version 3 of the license, Point 5 in the older version 2) is also an advertisement clause. Bad thing which is usually discouraged. (And if you/Upstream made the mistake to include GPL licensed files you have more trouble). And, at the end there is the following text: --- This software consists of voluntary contributions made by many individuals on behalf of the PHP Group. The PHP Group can be contacted via Email at [EMAIL PROTECTED] For more information on the PHP Group and the PHP project, please see http://www.php.net. This product includes the Zend Engine, freely available at http://www.zend.com. --- I doubt that your package is made on behalf of the PHP group. Or that it includes the Zend Engine. As a good solution for this I suggest to talk to your upstream. Looking at the license they've chosen they do want to make it available for everyone, so I suggest to use either the original BSD license or the LGPL. As soon as this is fixed you are of course free to reupload the package. -- bye Joerg Romain -- Seven miles of Black Star Liners coming in the harbour. Yeah, seven miles of Black Star Liners coming in the harbour. I can see them coming. I can see I dreams running. I can hear the Elders saying, These are the days for which we've been praying. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#413790: SILC Toolkit 1.1.1 released
Moritz Naumann wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 SILC Toolkit 1.1.1 has just been released, containing fixes for over 20 bugs, most of them security fixes, compared to 1.1.0. It would be very nice to have a usable package crafted from any mantained upstream branch at some point. Thanks for putting your efforts in crafting this package, Michael. The Debian SILC packages are now being team maintained. We uploaded 1.1 a week ago but it's awaiting NEW processing. We'll get 1.1.1 uploaded as soon as we can. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#427515: opendb: New upstream version available
Package: opendb Severity: wishlist opendb 1.0pl1 has been released -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#413790: status on debian bug 413790?
Daniel Kahn Gillmor wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Mon 2007-05-07 23:02:19 -0400, Michael Schultheiss wrote: I'm still testing the updated package - I hope to upload it in the next day or two. Any word on this, Michael? Is there testing that other folks can help with? I wasn't able to get the new version to build properly. I'm still working on correcting the build issues. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#413790: status on debian bug 413790?
Daniel Kahn Gillmor wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Mon 2007-04-30 18:15:39 -0400, Michael Schultheiss wrote: Sorry - I've been extremely busy. I'll get an updated package released this week. Sorry for the delay. No problem, Michael. I think we're all busy like that! What's the status on the new version of silc-toolkit? I'm still testing the updated package - I hope to upload it in the next day or two. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#413790: status on debian bug 413790?
Daniel Kahn Gillmor wrote: This ticket was opened nearly two months ago, and no comments yet from the maintainer. Is it being worked on? Is this debian package actively maintained? Sorry - I've been extremely busy. I'll get an updated package released this week. Sorry for the delay. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#406935: ITP: ledger-smb -- A web based double-entry accounting program
retitle 406935 ITP: ledgersmb -- A web based double-entry accounting program kthxbye Michael Schultheiss wrote: * Package name: ledger-smb Package name will now be ledgersmb since the upstream has switched to that name over ledger-smb. Version 1.2.0 has just been released - that version or later will be the first version uploaded. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#416319: gallery2: Gallery 2.2.1 (Double Double) Released!
Package: gallery2 Severity: wishlist Gallery 2.2.1 (Double Double) is now available for download! In what has been close to a year of development, the Gallery team has packed this release full of new features and security enhancements. Major new features include: Downloadable Plugins which let you download, install, and upgrade modules and themes through the web interface; Dynamic Albums which let you set up albums based on keywords, ratings, and more; and WebDAV support for managing your photo library like a network hard drive with folders of images. Changes between 2.2 and 2.2.1: Gallery 2.2.1 is a patch release to address four relatively minor issues in Gallery 2.2: * Fix the plugin administration page for Italian and Danish locales. * Fix Downloadable Plugins to prevent upgrading to incompatible plugins. * Make the authentication step of the installation and upgrade wizards more resilient against interference from other PHP scripts running on your site. * Fix conflict between WebDAV and other short URLs. As a patch release, Gallery 2.2.1 does not contain any new features. Upgrading from 2.2 to 2.2.1 is quick and easy. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#415261: gallery2: Gallery 2.2 (Double Double) Released!
Package: gallery2 Severity: wishlist Gallery 2.2 (Double Double) is now available for download! In what has been close to a year of development, the Gallery team has packed this release full of new features and security enhancements. Major new features include: Downloadable Plugins which let you download, install, and upgrade modules and themes through the web interface; Dynamic Albums which let you set up albums based on keywords, ratings, and more; and WebDAV support for managing your photo library like a network hard drive with folders of images. Translations and Integrations: Additionally, 8 languages are now 100% translated, 13 more are over 60% translated, and support has been added for integration with even more 3rd party applications! Security: Like each Gallery 2 release before this one, after a professional security audit we have made many improvements to further tighten down Gallery 2 and keep the bad guys out. All issues addressed in this release were discovered during this private, internal security audit. No known exploits are available, however, we highly recommend that you upgrade to Gallery 2.2 to secure your Gallery installation. Get all the details at: http://gallery.menalto.com/gallery_2.2_released -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#412905: Bug#412906: fr.po file late update
Steve wrote: Hi, please use the attached fr.po file instead of the one contained in the opening bug message. I assume the one from bug #412905 should also be ignored? -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#412505: gallery2: [INTL:ja] initial Japanese debconf translation
reassign 412505 debian-installer retitle 412505 debian-installer: [INTL:ja] initial Japanese debconf translation kthxbye Christian Perrier wrote: Quoting Kenshi Muto ([EMAIL PROTECTED]): -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Package: gallery2 Severity: wishlist Tags: l10n patch Version: 2.1.2-1 Hi, I translated debconf messages into Japanese (ja.po). Please apply this. And the last one which is indeed the D-I translation..:-) Reassigned to d-i -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#411129: perl-tk: Anti aliasing / xft support missing
January Weiner wrote: Everything that needs to be done is to use $(PERL) Makefile.PL INSTALLDIRS=vendor PERL=$(PERL) instead of $(PERL) Makefile.PL INSTALLDIRS=vendor PERL=$(PERL) XFT=1 I think this is backwards - the rules file currently has the former. I'll do a new package release shortly. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#411129: perl-tk: Anti aliasing / xft support missing
January Weiner wrote: One more update on the subject. I have downloaded the newest perl-tk from CPAN. $CPAN/authors/id/S/SR/SREZIC/Tk-804.027_500.tar.gz (see announcement in the perl-tk newsgroups, msg id [EMAIL PROTECTED] I have compiled it, and now it seems to be rock solid, all the previous problems disappeared. Possibly, I have messed something when rebuilding Debian packages (I don't really know how to do that); in any case, I am retracting my previous retraction :-) Thanks for the file up. I'm on the ptk mailing list and saw the release - I was unsure if the beta release was worth packaging. It sounds like it is - I'll get a new release out shortly. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#410872: opendb: New upstream version available
Package: opendb Severity: wishlist opendb 0.81p20 has been released -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#408316: bug in gallery2
tags 408316 unreproducible kthxbye Tóth Kristóf wrote: Package: gallery2 Version: 2.1.2-1 The dpkg install works fine. When I install gallery2 via the web install program, it places it's config file (config.php) in the configured gallery root. But the gallery reads it's config from /etc/gallery/config.php, via the symlink. After finishing the install process, it seems everything to be ok, but finally pointing to the gallery site, the install begins again, because it doesn't has the config file on the proper place. I'm unable to reproduce this. I did a new install of the gallery2 package on my test machine and was able to go through the installer without issue. Upon completeing the install, I was able to access the gallery (i.e. was not thrown into the installer again). -- Michael Schultheiss E-mail: [EMAIL PROTECTED]
Bug#406935: ITP: ledger-smb -- A web based double-entry accounting program
Raphael Hertzog wrote: Hello, On Mon, 15 Jan 2007, Michael Schultheiss wrote: Package: wnpp Severity: wishlist Owner: Michael C. Schultheiss [EMAIL PROTECTED] * Package name: ledger-smb Version : 1.1.7 Upstream Author : LedgerSMB Core Team * URL : http://www.ledgersmb.org/ * License : GPL Programming Lang: Perl Description : A web based double-entry accounting program LedgerSMB is a double-entry accounting system written in Perl. Data is stored in a SQL database server and displayed through a web browser. The system is linked by a chart of accounts. All transactions for AR, AP, and GL are stored in a transaction table. Hyperlinks from the chart of accounts let you view transactions posted through AR, AP, and GL. It would be cool if you could maintain this package within the pkg-sql-ledger team. Since ledger-smb derives from sql-ledger the package needs to offer a nice way to take over sql-ledger's data. I'd be glad to maintain ledger-smb as part of a team. I'll gladly add you to the team if you accept. Packaging ledger-smb is on my TODO list for quite some time and I'll happily review your work. http://alioth.debian.org/projects/pkg-sql-ledger/ Also Seneca Cunningham [EMAIL PROTECTED] started packaging ledger-smb, he gave an URL at one time but it doesn't work anymore. Seneca, maybe you can provide your first package to Michael ? I've spoken with Seneca on the ledger-smb lists and have offered to help her get ledger-smb into Debian. Ideally we could merge our efforts so there's no duplication of effort. Maybe Seneca should be added to the Alioth team as well. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#406935: ITP: ledger-smb -- A web based double-entry accounting program
Package: wnpp Severity: wishlist Owner: Michael C. Schultheiss [EMAIL PROTECTED] * Package name: ledger-smb Version : 1.1.7 Upstream Author : LedgerSMB Core Team * URL : http://www.ledgersmb.org/ * License : GPL Programming Lang: Perl Description : A web based double-entry accounting program LedgerSMB is a double-entry accounting system written in Perl. Data is stored in a SQL database server and displayed through a web browser. The system is linked by a chart of accounts. All transactions for AR, AP, and GL are stored in a transaction table. Hyperlinks from the chart of accounts let you view transactions posted through AR, AP, and GL. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#401489: RFA: perl-tk -- Perl module providing the Tk graphics library.
Sebastian Harl wrote: Hi, On Sun, Dec 03, 2006 at 09:16:08PM -0500, Michael Schultheiss wrote: I request an adopter for the perl-tk package. I recommend someone with more Perl/Tk experience adopt this package. The last release dates back to April 11, 2004. Is upstream still active? comp.lang.perl.tk and [EMAIL PROTECTED] are still active. Someone in comp.lang.perl.tk has released a patch set for the current upstream release. The upstream maintainer recently passed away but there are talks of continuing the Perl/Tk development. I'm not currently packaging anything that requires Perl/Tk and have lost interest in maintaining it for Debian. Hopefully someone will adopt the package so it doesn't have to be orphaned. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#401489: RFA: perl-tk -- Perl module providing the Tk graphics library.
Package: wnpp Severity: normal I request an adopter for the perl-tk package. I recommend someone with more Perl/Tk experience adopt this package. The package description is: Perl/Tk (also known as pTk or ptk) is a collection of modules and code that attempts to wed the easily configured Tk 4 widget toolkit to the powerful lexigraphic, dynamic memory, I/O, and object-oriented capabilities of Perl 5. In other words, it is an interpreted scripting language for making widgets and programs with Graphical User Interfaces (GUI). . A good place to get started is by running the widget demo that's installed with this package. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17-2-k7 Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#398343: gallery: comments for pictures work even when disabled in config
Erik Steffl wrote: Package: gallery Version: 1.5.4-2 Severity: important Even after disabling comments in gallery config it is possible to add comments. I verified that comments are disabled and there are no visible links to add comments but my gallery is still spammed with comments so I assume that the comment links still work (even though they do not show on gallery pages). Not 100% sore this is a bug, might be something wrong on my end, in that case sorry for unneccessary bug (but please advise:-) In /etc/gallery/config/php: $gallery-app-comments_enabled = no; $gallery-app-comments_indication = both; $gallery-app-comments_indication_verbose = yes; $gallery-app-comments_anonymous = yes; $gallery-app-comments_display_name = !!FULLNAME!! (!!USERNAME!!); $gallery-app-comments_addType = inside; $gallery-app-comments_length = 1000; $gallery-app-comments_overview_for_all = yes; I recommend posting in the gallery forums at http://gallery.menalto.com/forum/44 I checked my G1 config file and I have $gallery-app-comments_anonymous = no although from what I read in the admin interface, setting $gallery-app-comments_enabled = no; should completely disable the comment functionality. The Gallery team just released Gallery 1.5.5-pl1 - I'll be updating the Debian gallery package shortly. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#398862: gallery: Gallery 1.5.5-pl1 released
Package: gallery Severity: wishlist Gallery 1.5.5-pl1 is now available for download. This is primarily a bug fix release, fixing a handful of bugs reported by users and some discovered by our testing team. Even though this release contains no security fixes, we recommend that all users of Gallery 1.5.4 and earlier upgrade to this release to be as bug free as possible. Visit http://gallery.menalto.com/gallery_1_5_5_released for more details. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#393412: Source package contains non-free IETF RFC/I-D's
Simon Josefsson wrote: 1. Ask the author of the RFC to re-license the RFC under a free license. A template for this e-mail request can be found at http://wiki.debian.org/NonFreeIETFDocuments I've asked the author to re-license the RFCs and will act according to their response. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#325104: fixed?
Matthew Carroll wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 looks like this was fixed in 2.1.2-1 The issue of including the CVS directories is fixed but the original issue of including development files like the .po files has not yet been fixed. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#383202: gallery: Gallery 1.5.4 released
Package: gallery Severity: wishlist Gallery 1.5.4 is now available for download. This release is a pure bug fix release. No security bugs and no new features. Besides minor bugfixes the most annoying bug, the broken permission dialog, was fixed. We recommend all Gallery 1 users upgrade to 1.5.4 to avoid problems. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#383018: perl-tk crashes when creating new MainWindow
severity 383018 important tags 383018 unreproducible kthxbye I'm unable to reproduce this issue. I'll ask on the perl-tk lists and see if I can find a fix. Michael Hartmann wrote: Package: perl-tk Version: 1:804.027-6 Severity: grave A few days ago I've installed Debian testing on my computer and recognized that perl-tk doesn't work. Everytime you try to create a new MainWindow it aborts. [EMAIL PROTECTED] /home/estel $ perl -MTk -we 'MainWindow-new' 8245384 is not a hash at /usr/lib/perl5/Tk/MainWindow.pm line 55. Abgebrochen (German for Aborted) I've also tried to compile the latest available version of pTk from cpan, but after installation: exactly the same problem. Properly this problem is not directly related to perl-tk, but maybe to X11/xorg. Don't be too rude if this is the wrong place for this bug report. :) I've also experienced this problem on a different machine running on Debian testing with latest updates (14th August 2006), but there are also other machines running on Debian testing without that problem. That's very strange. wild_guessMaybe there is just a file missing you still have on your computer when your installation is a bit older./wild_guess I've added the output of strace as it is maybe not reproducable on your computer. Maybe there is a problem with Xcms.txt, but that's just a guess. Strace output: http://m19s28.vlinux.de/estel/debian/ptk_strace. I'm really looking forward to a fix. Thank you. --Michael --- additional information: kernel: 2.6.17.7 (self compiled) and also 2.6.16 (package: linux-image-2.6.16-2-686) libc6: 2.3.6-15 -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#375077: initrd needs its own, static, nsswitch.conf
Bram Duvigneau wrote: I have 251-5 installed and am still seeing: udevd[PID]: nss_ldap: failed to bind to LDAP server I had the same problem with 251-5. I used compat ldap in my nsswitch.conf, it will work if you change compat to files. My /etc/nsswitch.conf file already contains files ldap: group: files ldap passwd: files ldap shadow: files ldap -- --- Michael Schultheiss E-mail: [EMAIL PROTECTED]
Bug#348513: Bug#378753: tetex-bin: texshow sometimes segfaults
Frank K?ster wrote: Dear Perl-TK maintainer, while investigating a segfault with an other perl-tk script in tetex-bin, we found that this old bug has not been fixed, or rather unfixed again: Helge Kreutzmann [EMAIL PROTECTED] wrote: FYI, there was once an other Perl-TK segfault in tetex-bin, http://bugs.debian.org/348513 I've read this now. So I'll provide the info from there, in case it is useful: ii perl 5.8.8-4Larry Wall's Practical Extraction and Report ii perl-tk804.027-5 Perl module providing the Tk graphics librar ii xbase-clients 7.1.ds-2 miscellaneous X clients The minimal test case in http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=348513;msg=149 still segfaults here, although I have the version where this bug is allegedly closed. Do you experience this bug still as well? Yes, same here - a sid chroot on a sarge i386 box with linux 2.6.16 from backports.org: [EMAIL PROTECTED]:~$ cat segfaultTK #!/usr/bin/perl use Tk; my $main = new MainWindow; my $cmdframe = $main-Frame; my $b = $cmdframe-Button(-font = undef); [EMAIL PROTECTED]:~$ ./segfaultTK Segmentation fault [EMAIL PROTECTED]:~$ Hi Niko, With the patch you provided in February, I released an updated perl-tk package for Debian. I've recently received reports that the minimal testcase you provided along with your patch is still segfaulting. I've verified that the patch you provided is still applied in the current Debian perl-tk package. Any assistance or suggestions you can provide would be greatly appreciated. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#375077: initrd needs its own, static, nsswitch.conf
reopen 375077 ! kthxbye Stephen Frost wrote: * Michael Biebl ([EMAIL PROTECTED]) wrote: case here? Also, have you tried waiting it out? Each request would end up taking about 2 minutes, but technically it *should* give up eventually.. I waited for something like 10min without success. But honestly this wouldn't be a proper solution anyways. Please try 251-5, I believe it'll help... I have 251-5 installed and am still seeing: udevd[PID]: nss_ldap: failed to bind to LDAP server I temporarily edited /etc/nsswitch.conf and removed the ldap entries so the system would boot, then re-added them and restarted libnss-ldap. -- --- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#325285: any news on this bug?
Martin Lohmeier wrote: I just noticed this bug and I'm asking if there is any process? Will there be a fix for sarge? A patch has been provided to the Debian Security Team. I expect a DSA will be released to cover this issue. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#370794: ITA: silc-toolkit
Package: wnpp Severity: normal Per Message-ID: [EMAIL PROTECTED] from Bug #273871, Tamas SZERB has essentially orphaned silc-toolkit. I intend to adopt silc-toolkit. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.16-1-k7 Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#322243: Status of this ITP?
Arnaud Fontaine wrote: Hello, I'm interested for packaging planetplanet and i would like to know if you are still interested by packaging it, otherwise i will prepare a package this week-end and it might be upload the next week. I'm interested in Debian having a planet package but have not yet had time to package it. Norbet Tretkowski made a planet package a while ago but I don't think it was ever uploaded to the archive. I'm fine with someone else packaging planet since I don't yet have time to do so myself. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#367785: gallery2: should not depend on mysql
Andy Grover wrote: Gallery2 currently recommends postgres but depends on mysql. I want to switch to postgres, but I will need to keep parts of mysql installed after doing so (mysql-client and php4-mysql). This is 20MB of deps I don't need. Can these be made recommended instead of required? Thanks -- The proper way to fix this is to have all of the mysql and postgres dependencies/recommends or'd together. I'll get a new release out shortly that fixes this. -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#365442: gallery2: Gallery2 fails import of Gallery1 data
Bill Denney wrote: Package: gallery2 Version: 2.1.1-1 Severity: normal I get this error when I try to import gallery1 albums into gallery2: Warning: copy(/usr/share/gallery2/g2data/albums/Photo-Expeditions/People/Infrared-Fall-1998/003.jpg) [function.copy]: failed to open stream: Too many open files in /usr/share/gallery2/modules/core/classes/GalleryPlatform.class on line 65 I know that I can just import fewer pictures at a time, but it's really annoying to have to do about 50 imports (I have about 5k photos in my gallery1 albums). Is there a work-around for this? It seems like it should not have more than a few files open at once, and it had gotten through about 700 pictures when this happened. This may be a memory limit issue: http://tinyurl.com/bulmj I recommend posting in the Gallery 2 Troubleshooting and Problems forum at http://gallery.menalto.com/forum/62 -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#365504: gallery2: Attempt to allocate ~2GB to read exif data
Bill Denney wrote: Package: gallery2 Version: 2.1.1-1 Severity: normal When I'm trying to import gallery1 data, it appears to try to import ~2GB of memory to read the exif out of a picture from my digital camera: Warning: fread() [function.fread]: Length parameter must be greater than 0 in /usr/share/gallery2/modules/exif/lib/exifer/makers/canon.inc on line 401 Warning: fread() [function.fread]: Length parameter must be greater than 0 in /usr/share/gallery2/modules/exif/lib/exifer/makers/canon.inc on line 401 Fatal error: Allowed memory size of 268435456 bytes exhausted (tried to allocate 1976638969 bytes) in /usr/share/gallery2/modules/exif/lib/exifer/makers/canon.inc on line 401 The image it appears to be trying to import is http://denney.homeip.net/albums/Fa-De-Blane-Wedding-Kerstin/IMG_1042.jpg http://codex.gallery2.org/index.php/Gallery2:migration offers some tips on migrating from G1 to G2. This EXIF issue might also be a memory limit issue (http://tinyurl.com/bulmj) I recommend posting in the Gallery 2 Troubleshooting and Problems forum at http://gallery.menalto.com/forum/62 -- Michael Schultheiss E-mail: [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
