Bug#712141: sympa: Very long loop while compiling some digest messages
Package: sympa Version: 6.1.11~dfsg-5 Severity: important Tags: patch Hi, While compiling the digest for one list, the sympa process ran into some kind of infinite loop. This issue is encountered when one of the messages that needs to be digested contains binary attachments that are embedded in text/plain parts. The problem was fixed in the 6.1.16 release of Sympa and in particular in the changeset 7955[1]. In my case, Sympa was unable to deliver messages to the lists while compiling the digest and thus can be considered as as DoS. Fix delivered in Sympa 6.1.16 solved the problem. 1. https://sourcesup.renater.fr/scm/viewvc.php?view=revisionroot=symparevision=7955 Kind regards, Olivier; -- System Information: Debian Release: 7.0 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 3.8.13--std-ipv6-64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages sympa depends on: ii adduser 3.113+nmu3 ii ca-certificates 20130119 ii dbconfig-common 1.8.47+nmu1 ii debconf [debconf-2.0] 1.5.49 ii dpkg 1.16.10 ii libarchive-zip-perl 1.30-6 ii libc6 2.13-38 ii libcgi-fast-perl 5.14.2-21 ii libcgi-pm-perl3.61-2 ii libdbd-mysql-perl 4.021-1+b1 ii libdbd-pg-perl2.19.2-2 ii libdbd-sqlite3-perl 1.37-1 ii libdbd-sybase-perl1.14-1 ii libdbi-perl 1.622-1 ii libfcgi-perl 0.74-1+b1 ii libfile-copy-recursive-perl 0.38-1 ii libhtml-format-perl 2.10-1 ii libhtml-stripscripts-parser-perl 1.03-1 ii libhtml-tree-perl 5.02-1 ii libintl-perl 1.20-1 ii libio-stringy-perl2.110-5 ii libmailtools-perl 2.09-1 ii libmime-charset-perl 1.009.2-1 ii libmime-encwords-perl 1.012.4-1 ii libmime-lite-html-perl1.23-1.1 ii libmime-tools-perl5.503-1 ii libmsgcat-perl1.03-5+b2 ii libnet-ldap-perl 1:0.4400-1 ii libnet-netmask-perl 1.9016-1 ii libregexp-common-perl 2011121001-1 ii libtemplate-perl 2.24-1 ii libterm-progressbar-perl 2.13-1 ii libunicode-linebreak-perl 0.0.20120401-1 ii libxml-libxml-perl2.0001+dfsg-1 ii lsb-base 4.1+Debian8 ii mhonarc 2.6.18-2 ii perl 5.14.2-21 ii perl-modules [libcgi-pm-perl] 5.14.2-21 ii postfix [mail-transport-agent]2.9.6-2 ii rsyslog [system-log-daemon] 5.8.11-3 ii sqlite3 3.7.13-1+deb7u1 Versions of packages sympa recommends: ii apache2-suexec-custom [apache2-suexec] 2.2.22-13 ii doc-base0.10.4 ii libapache2-mod-fcgid1:2.3.6-1.2 ii libcrypt-ciphersaber-perl 0.61-4 ii libfile-nfslock-perl1.21-1 ii libio-socket-ssl-perl 1.76-2 ii libmail-dkim-perl 0.39-1 ii libsoap-lite-perl 0.714-1 ii locales 2.13-38 ii logrotate 3.8.1-4 ii mysql-server5.5.31+dfsg-0+wheezy1 Versions of packages sympa suggests: ii apache2-mpm-worker [httpd-cgi] 2.2.22-13 pn libauthcas-perl none pn libdbd-oracle-perl none pn libtext-wrap-perl none ii openssl 1.0.1e-2 -- Configuration Files: /etc/logrotate.d/sympa changed [not included] /etc/sympa/httpd.conf-cgi [Errno 2] No such file or directory: u'/etc/sympa/httpd.conf-cgi' /etc/sympa/httpd.conf-fcgi [Errno 2] No such file or directory: u'/etc/sympa/httpd.conf-fcgi' /etc/sympa/topics.conf changed [not included] -- debconf information: * sympa/db_passwd: (password omitted) sympa/password-confirm: (password omitted) sympa/pgsql/admin-pass: (password omitted) sympa/app-password-confirm: (password omitted) sympa/key_password_again: (password omitted) * sympa/db_passwd_again: (password omitted) sympa/key_password: (password omitted) sympa/pgsql/app-pass: (password omitted) sympa/mysql/admin-pass: (password omitted) * sympa/db_adminpasswd: (password omitted) sympa/mysql/app-pass: (password omitted) * sympa/dbconfig-install: false * sympa/listmaster: listmas...@attac-mail.attac.org * wwsympa/wwsympa_url: http://list.attac.org/wws * wwsympa/webserver_restart: true sympa/upgrade-backup: true sympa/pgsql/changeconf: false sympa/db_options: sympa/db_configured: true sympa/internal/skip-preseed:
Bug#492351: gradm2: Default policy defines duplicates subjects.
Package: gradm2 Version: 2.1.11-1 Severity: important Hello, Default policy defines duplicates entries for two subjects (klogd and cron) which prevents gradm2 from starting. Attached patch should solves the problem. Thanks, Olivier; -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.22-debian4-2 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages gradm2 depends on: ii libc6 2.7-12 GNU C Library: Shared libraries ii libpam0g 0.99.7.1-7 Pluggable Authentication Modules l gradm2 recommends no packages. Versions of packages gradm2 suggests: pn kernel-patch-grsecurity2 none (no description available) -- no debconf information --- policy.org 2008-07-16 19:42:16.0 +0200 +++ policy 2008-07-16 19:42:47.0 +0200 @@ -81,7 +81,7 @@ # all accesses of this subject and anything it executes to be placed # in this subject, and inheritance flags added to executable objects # in this subject -# a - allow this process to talk to the /dev/grsec2 device +# a - allow this process to talk to the /dev/grsec device # # user/group transitions: # You may now specify what users and groups a given subject can @@ -281,15 +281,9 @@ subject /usr/bin/ssh /etc/ssh/ssh_config r -subject /sbin/klogd - +CAP_SYS_ADMIN - subject /sbin/syslog-ng +CAP_SYS_ADMIN -subject /usr/sbin/cron - /dev/log rw - subject /bin/login /dev/log rw /var/log/wtmp w
Bug#492356: mediawiki-extensions: Cite extension fails to render HTML correctly.
Package: mediawiki-extensions Version: 1.4 Severity: normal Hello, Cite.php Mediawiki's extension fails to render correctly HTML in certain cases. For example, following code will be generated with a break after the ref usage. Upgrading to the latest Cite.php's upstream version should solves the problem. ,[ Example ] | This line shouldrefis it ?/ref, works fine. | This one should notrefis it ?/ref be rendered correctly. | references/ ` Thanks, Olivier; -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.22-debian4-2 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages mediawiki-extensions depends on: ii mediawiki 1:1.12.0-2 website engine for collaborative w Versions of packages mediawiki-extensions recommends: ii php-geshi 1.0.7.22-1 Generic Syntax Highlighter ii php5-ldap 5.2.6-2+b1 LDAP module for php5 ii python2.5.2-1An interactive high-level object-o ii python-imaging1.1.6-3Python Imaging Library mediawiki-extensions suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#478151: gpg-mailkeys: line 79: printf: --: invalid option
Package: signing-party Version: 1.0-1 Severity: important Hello, When trying I try to use gpg-mailkeys, it gives me this error: ../gpg-mailkeys 0x578499CB [0x578499CB] Olivier Tétard [EMAIL PROTECTED]:./gpg-mailkeys: line 79: printf: --: invalid option printf: usage: printf [-v var] format [arguments] This tiny patch solves the problem for me. --8---cut here---start-8--- --- gpg-mailkeys.org2008-04-27 16:45:46.0 +0200 +++ gpg-mailkeys2008-04-27 16:45:57.0 +0200 @@ -76,7 +76,7 @@ EOM if [ -f ~/.signature ]; - then printf --=20\n $TEMPFILE + then printf -- --=20\n $TEMPFILE cat ~/.signature $TEMPFILE fi --8---cut here---end---8--- Thanks, Olivier; -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.22-debian4-2 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages signing-party depends on: ii gnupg 1.4.6-2.1 GNU privacy guard - a free PGP rep ii libgnupg-interface-perl 0.33-6 Perl interface to GnuPG ii libmailtools-perl 2.03-1 Manipulate email in perl programs ii libmime-perl 5.426-1transitional dummy package ii libmime-tools-perl [libmime-p 5.426-1Perl5 modules for MIME-compliant m ii libtext-template-perl 1.44-1.1 Text::Template perl module Versions of packages signing-party recommends: ii dialog1.1-20080316-1 Displays user-friendly dialog boxe ii exim4 4.69-3 meta-package to ease Exim MTA (v4) ii exim4-daemon-light [mail- 4.69-3 lightweight Exim MTA (v4) daemon ii libgd-gd2-perl1:2.35-1 Perl module wrapper for libgd - gd ii libintl-perl 1.16-4 Uniforum message translations syst ii libpaper-utils1.1.23 library for handling paper charact ii libtext-iconv-perl1.7-1 converts between character sets in ii recode3.6-15 Character set conversion utility ii whiptail 0.52.2-11.2Displays user-friendly dialog boxe -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#465085: prelude-manager segfault on new client connection
Package: prelude-manager Version: 0.9.11-1 Severity: grave Justification: renders package unusable Hello, Since prelude-manager 0.9.11-1, I am unable to get a client connected to it without having the manager segfaulting. Here is the prelude-manager log when running it into gdb: % sudo gdb prelude-manager GNU gdb 6.7.1-debian Copyright (C) 2007 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later http://gnu.org/licenses/gpl.html This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type show copying and show warranty for details. This GDB was configured as i486-linux-gnu... (no debugging symbols found) Using host libthread_db library /lib/i686/cmov/libthread_db.so.1. (gdb) r Starting program: /usr/sbin/prelude-manager (no debugging symbols found) Failed to read a valid object file image from memory. [Thread debugging using libthread_db enabled] [New Thread 0xb7b916b0 (LWP 18974)] 10 Feb 17:12:47 (process:18974) INFO: Subscribing Normalize to active decoding plugins. 10 Feb 17:12:47 (process:18974) INFO: server started (listening on 127.0.0.1 port 4690). 10 Feb 17:12:48 (process:18974) INFO: Subscribing db[default] to active reporting plugins. 10 Feb 17:12:48 (process:18974) INFO: Subscribing Debug[default] to active reporting plugins. [New Thread 0xb7392b90 (LWP 18977)] [New Thread 0xb6b91b90 (LWP 18999)] 10 Feb 17:13:11 (process:18974) INFO: [127.0.0.1:57220 0x197b2477bceb9 idmef:w]: TLS authentication succeed: client certificate is trusted. Program received signal SIGSEGV, Segmentation fault. [Switching to Thread 0xb6b91b90 (LWP 18999)] 0xb7cc133c in free () from /lib/i686/cmov/libc.so.6 (gdb) (gdb) quit The program is running. Exit anyway? (y or n) y % Here is the client side: % python player.py 10 Feb 17:13:11 (process:18998) INFO: Connecting to 127.0.0.1:4690 prelude Manager server. 10 Feb 17:13:39 (process:18998) WARNING: Failover enabled: connection error with 127.0.0.1:4690: End of file. In order to register this sensor, please run: prelude-admin register MyPlayer idmef:w 127.0.0.1 --uid 1000 --gid 100 % Thanks, Olivier; -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.22-debian4-1 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages prelude-manager depends on: ii adduser3.105 add and remove users and groups ii dbconfig-common1.8.36common framework for packaging dat ii libc6 2.7-6 GNU C Library: Shared libraries ii libgcrypt111.4.0-3 LGPL Crypto library - runtime libr ii libgnutls262.2.1-3 the GNU TLS library - runtime libr ii libprelude20.9.16.2-1Hybrid Intrusion Detection System ii libpreludedb0 0.9.14.1-1Hybrid Intrusion Detection System ii libxml22.6.31.dfsg-1 GNOME XML library ii ucf3.004 Update Configuration File: preserv Versions of packages prelude-manager recommends: ii mysql-client-5.1 [mysql-clien 5.1.22rc-1 MySQL database client binaries -- debconf information: prelude-manager/db/basepath: prelude-manager/missing-db-package-error: abort prelude-manager/pgsql/authmethod-admin: ident prelude-manager/pgsql/no-empty-passwords: prelude-manager/internal/skip-preseed: false prelude-manager/pgsql/method: unix socket prelude-manager/passwords-do-not-match: prelude-manager/pgsql/changeconf: false prelude-manager/pgsql/admin-user: postgres prelude-manager/install-error: abort prelude-manager/internal/reconfiguring: true prelude-manager/dbconfig-remove: prelude-manager/upgrade-backup: true prelude-manager/pgsql/authmethod-user: password * prelude-manager/mysql/admin-user: root * prelude-manager/database-type: mysql prelude-manager/remote/port: 3306 * prelude-manager/mysql/method: unix socket prelude-manager/upgrade-error: abort prelude-manager/remove-error: abort prelude-manager/pgsql/manualconf: * prelude-manager/db/dbname: preludemanager prelude-manager/purge: false * prelude-manager/db/app-user: preludemanager prelude-manager/remote/host: localhost * prelude-manager/dbconfig-install: false prelude-manager/remote/newhost: * prelude-manager/dbconfig-reinstall: true prelude-manager/dbconfig-upgrade: true -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#463414: rc script isn't able to detect if prelude-manager failed to start
Package: prelude-manager Version: 0.9.10-4 Severity: normal Hello, rc script isn't able to detect a start failure of the manager. For example, if prelude-manager isn't able to connect to the database, the rc script will fail silently. I don't really know how to solve this problem, maybe try to grep for prelude-manager in the ps output at the end of the rc script. Thanks, Olivier; --8---cut here---start-8--- % sudo /etc/init.d/prelude-manager start Starting Prelude Manager: prelude-manager. % ps aux | grep prelude-manager % sudo prelude-manager 31 Jan 15:52:34 (process:10140) INFO: Subscribing Normalize to active decoding plugins. 31 Jan 15:52:34 (process:10140) INFO: server started (listening on 127.0.0.1 port 4690). 31 Jan 15:52:34 (process:10140) WARNING: Option error: could not initialize libpreludedb: Can't connect to local MySQL server through socket '/var/run/mysqld/mysqld.sock' (2). zsh: exit 255 sudo prelude-manager --8---cut here---end---8--- -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.22-debian4-1 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages prelude-manager depends on: ii adduser3.105 add and remove users and groups ii dbconfig-common1.8.36common framework for packaging dat ii libc6 2.7-6 GNU C Library: Shared libraries ii libgcrypt111.4.0-3 LGPL Crypto library - runtime libr ii libgnutls132.0.4-1 the GNU TLS library - runtime libr ii libprelude20.9.16.2-1Hybrid Intrusion Detection System ii libpreludedb0 0.9.14.1-1Hybrid Intrusion Detection System ii libxml22.6.31.dfsg-1 GNOME XML library ii ucf3.004 Update Configuration File: preserv Versions of packages prelude-manager recommends: ii mysql-client-5.1 [mysql-clien 5.1.22rc-1 MySQL database client binaries -- debconf information: prelude-manager/db/basepath: prelude-manager/missing-db-package-error: abort prelude-manager/pgsql/authmethod-admin: ident prelude-manager/pgsql/no-empty-passwords: prelude-manager/internal/skip-preseed: false prelude-manager/pgsql/method: unix socket prelude-manager/passwords-do-not-match: prelude-manager/pgsql/changeconf: false prelude-manager/pgsql/admin-user: postgres prelude-manager/install-error: abort prelude-manager/internal/reconfiguring: true prelude-manager/dbconfig-remove: prelude-manager/upgrade-backup: true prelude-manager/pgsql/authmethod-user: password * prelude-manager/mysql/admin-user: root * prelude-manager/database-type: mysql prelude-manager/remote/port: * prelude-manager/mysql/method: unix socket prelude-manager/upgrade-error: abort prelude-manager/remove-error: abort prelude-manager/pgsql/manualconf: * prelude-manager/db/dbname: preludemanager prelude-manager/purge: false * prelude-manager/db/app-user: prelude-manager prelude-manager/remote/host: * prelude-manager/dbconfig-install: false prelude-manager/remote/newhost: * prelude-manager/dbconfig-reinstall: true prelude-manager/dbconfig-upgrade: true -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#443680: python-yappy: typo in Description: field
Package: python-yappy Version: 1.8-2 Severity: minor There is a typo in the Description: field of the package: a 'r' is missing in fo_r_ Python. Thanks, Olivier; -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.22-debian3-1 Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages python-yappy depends on: ii python-support0.7.3 automated rebuilding support for p python-yappy recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]