Bug#973858: chromium: Outdated version, more than 100 open security issues

[Peter Gervai]

Package: chromium
Version: 84.0.4147.105-1
Severity: grave
Tags: security
Justification: user security hole
X-Debbugs-Cc: Debian Security Team 

Versions in Debian, even that in experimental have 100+ open unfixed CVE listed 
in the tracker.
https://security-tracker.debian.org/tracker/source-package/chromium
Many of those are just a few days old.

This is related to bug#973848 but underlines the security side importance.

Thanks.

Bug#920339: matrix-synapse: installation process hangs with unknown reason

[Peter Gervai]

Package: matrix-synapse
Version: 0.99.2-2
Followup-For: Bug #920339

Still exists in the recent version. It seems that the server is spawned and
disowned, and the configure script waits forever for some return value which 
never 
comes.



Also this output is not really happy:

Setting up matrix-synapse (0.99.2-2) ...
Traceback (most recent call last):
  File "/usr/lib/python3.7/runpy.py", line 193, in _run_module_as_main
"__main__", mod_spec)
  File "/usr/lib/python3.7/runpy.py", line 85, in _run_code
exec(code, run_globals)
  File "/usr/lib/python3/dist-packages/synapse/config/__main__.py", line 31, in 

print(getattr(config, key))
AttributeError: 'HomeServerConfig' object has no attribute 'signing_key_path'
chown: missing operand after 'matrix-synapse:nogroup'
Try 'chown --help' for more information.
chmod: missing operand after '0600'
Try 'chmod --help' for more information.




As a sidenote: _no_ systemd here. Sysvinit for your service, which may or may 
not 
relate to the problem; it is a completely valid config though.

Bug#884173: worksforme

[Peter Gervai]

works for me. unfortunately I don't see anything in your traces
either, but it's not a general problem with the release.

g

Bug#850054: [Pkg-tigervnc-devel] Bug#850054: /usr/bin/tigervncserver: label error in sanity check

[Peter Gervai]

Hello,

On Tue, Jan 3, 2017 at 5:42 PM, Joachim Falk  wrote:

> I have a fix for this and many other minor things. Can you test
> an RC for tigervnc 1.7.0+dfsg-2? Find the debs under

Looks ok for me.

(As a sidenote plain tigervncserver calls /etc/X11/Xvnc-session calls
Xsession which doesn't seem to handle multiple screens nicely, which
resulted a black server screen; may be my local stuff, though. Just
mentioning.)

g

Bug#845016: AttributeError: /usr/lib/x86_64-linux-gnu/libcrypto.so.1.1: undefined symbol: EVP_CIPHER_CTX_cleanup

[Peter Gervai]

Package: shadowsocks
Version: 2.9.0-1
Severity: grave
Justification: renders package unusable

(If you believe this is libssl1.1 bug feel free to reassign.)

The program simply won't start in sid:

INFO: loading config from /etc/shadowsocks/config.json
2016-11-19 15:20:09 INFO loading libcrypto from libcrypto.so.1.1
Traceback (most recent call last):
  File "/usr/bin/ssserver", line 11, in 
load_entry_point('shadowsocks==2.9.0', 'console_scripts', 'ssserver')()
  File "/usr/lib/python2.7/dist-packages/shadowsocks/server.py", line 34, in 
main
config = shell.get_config(False)
  File "/usr/lib/python2.7/dist-packages/shadowsocks/shell.py", line 270, in 
get_config
check_config(config, is_local)
  File "/usr/lib/python2.7/dist-packages/shadowsocks/shell.py", line 125, in 
check_config
encrypt.try_cipher(config['password'], config['method'])
  File "/usr/lib/python2.7/dist-packages/shadowsocks/encrypt.py", line 44, in 
try_cipher
Encryptor(key, method)
  File "/usr/lib/python2.7/dist-packages/shadowsocks/encrypt.py", line 84, in 
__init__
random_string(self._method_info[1]))
  File "/usr/lib/python2.7/dist-packages/shadowsocks/encrypt.py", line 110, in 
get_cipher
return m[2](method, key, iv, op)
  File "/usr/lib/python2.7/dist-packages/shadowsocks/crypto/openssl.py", line 
76, in __init__
load_openssl()
  File "/usr/lib/python2.7/dist-packages/shadowsocks/crypto/openssl.py", line 
52, in load_openssl
libcrypto.EVP_CIPHER_CTX_cleanup.argtypes = (c_void_p,)
  File "/usr/lib/python2.7/ctypes/__init__.py", line 375, in __getattr__
func = self.__getitem__(name)
  File "/usr/lib/python2.7/ctypes/__init__.py", line 380, in __getitem__
func = self._FuncPtr((name_or_ordinal, self))
AttributeError: /usr/lib/x86_64-linux-gnu/libcrypto.so.1.1: undefined symbol: 
EVP_CIPHER_CTX_cleanup

Seems to have a closed (unreasolved) upstream issue about it, closed 
inconsistently:
https://github.com/shadowsocks/shadowsocks/issues/646


-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.6.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash
Init: sysvinit (via /sbin/init)

Versions of packages shadowsocks depends on:
ii  lsb-base  9.20161101
ii  python2.7.11-2
ii  python-m2crypto   0.24.0-1
ii  python-pkg-resources  28.7.1-1
pn  python:any

shadowsocks recommends no packages.

shadowsocks suggests no packages.

-- Configuration Files:
/etc/shadowsocks/config.json changed [not included]

-- no debconf information

Bug#820583: flashplugin-nonfree: should notify when an update is not yet available, not just reinstall current version

[Peter Gervai]

Package: flashplugin-nonfree
Version: 1:3.6.1+b1
Followup-For: Bug #820583

And again. This time, however, this is a major update, which may or may not 
justify some delay,
but still the install re-downloads the same version happily and makes no noise 
about it. 

This should be fixed; either don't do this or do complain about it. (I have 
tried to check your script
but your detailed comments in the code aren't always clear. :-P)
Thanks.

~# update-flashplugin-nonfree --status
Flash Player version installed on this system  : 11.2.202.626
Flash Player version available on upstream site: 22.0.0.209

Bug#814429: geneweb: debian/mktemplates may fail due to grep binary matching: iconv: conversion from `Binary' is not supported

[Peter Gervai]

Package: geneweb
Version: 6.08dfsg-3.1
Severity: serious
Tags: patch
Justification: fails to build from source (but built successfully in the past)

Build fails with
iconv: conversion from `Binary' is not supported
on ca language file. The problem is that grep matches the file as binary, and
outputs "Binary file matches", which gets (mis)parsed and screw up iconv params.
Probably dependent on the version of grep, and the phase of the moon possibly. 
:-)

This should fix it anyway:

--- debian/mktemplates  2016-02-11 14:00:53.103700366 +
+++ debian/mktemplates~ 2016-02-11 13:59:01.0 +
@@ -67,7 +67,7 @@
sed '/^\"Content-Type/s/CHARSET/UTF-8/' \
> debian/pobuild/$pofilename.temp
 
-   pocharset=`grep -ai charset $pofile|cut -f2 -d=| sed 's/n\\"//g'`
+   pocharset=`grep -i charset $pofile|cut -f2 -d=| sed 's/n\\"//g'`
cat $pofile | \
 iconv --from $pocharset --to utf-8 | \
sed "s/$pocharset/UTF-8/g" \

Bug#764570: indeed

[Peter Gervai]

Indeed the problem could be band-aided by inserting

--- /usr/lib/python2.7/dist-packages/taskcoachlib/application/application.py~
  2014-08-03 15:51:09.0 +0200
+++ /usr/lib/python2.7/dist-packages/taskcoachlib/application/application.py
   2014-10-10 23:14:31.482657257 +0200
@@ -83,6 +83,9 @@
 self.reopenCallback()

 def OnInit(self):
+# Suppress WXDEBUG assertions, as happens by default with wx2.8.
+self.SetAssertMode(wx.PYAPP_ASSERT_SUPPRESS)
+
 if operating_system.isWindows():
 self.Bind(wx.EVT_QUERY_END_SESSION, self.onQueryEndSession)

Thanks!
p


-- 
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#764570: taskcoach: fail to start: wx._core.PyAssertionError

[Peter Gervai]

Package: taskcoach
Version: 1.4.1-2
Severity: grave
Justification: renders package unusable

The last update wasn't that successful. :-(

$ taskcoach 

(taskcoach:9934): Gtk-CRITICAL **: IA__gtk_widget_set_size_request: assertion 
'height >= -1' failed
Traceback (most recent call last):
  File "/usr/bin/taskcoach", line 72, in 
start()
  File "/usr/bin/taskcoach", line 63, in start
app = application.Application(options, args)
  File "/usr/lib/python2.7/dist-packages/taskcoachlib/patterns/singleton.py", 
line 29, in __call__
class_.instance = super(Singleton, class_).__call__(*args, **kwargs)
  File 
"/usr/lib/python2.7/dist-packages/taskcoachlib/application/application.py", 
line 117, in __init__
self.init(**kwargs)
  File 
"/usr/lib/python2.7/dist-packages/taskcoachlib/application/application.py", 
line 226, in init
self.settings, splash=splash)
  File "/usr/lib/python2.7/dist-packages/taskcoachlib/gui/mainwindow.py", line 
68, in __init__
self._create_window_components()  # Not private for test purposes
  File "/usr/lib/python2.7/dist-packages/taskcoachlib/gui/mainwindow.py", line 
140, in _create_window_components
viewer.addViewers(self.viewer, self.taskFile, self.settings)
  File "/usr/lib/python2.7/dist-packages/taskcoachlib/gui/viewer/factory.py", 
line 45, in __init__
self.__add_all_viewers()
  File "/usr/lib/python2.7/dist-packages/taskcoachlib/gui/viewer/factory.py", 
line 51, in __add_all_viewers
self.__add_viewers(task.SquareTaskViewer)
  File "/usr/lib/python2.7/dist-packages/taskcoachlib/gui/viewer/factory.py", 
line 66, in __add_viewers
**self._viewer_kwargs(viewer_class))
  File "/usr/lib/python2.7/dist-packages/taskcoachlib/patterns/metaclass.py", 
line 39, in __call__
instance = super(NumberedInstances, cls).__call__(*args, **kwargs)
  File "/usr/lib/python2.7/dist-packages/taskcoachlib/gui/viewer/task.py", line 
464, in __init__
super(SquareTaskViewer, self).__init__(*args, **kwargs)
  File "/usr/lib/python2.7/dist-packages/taskcoachlib/gui/viewer/task.py", line 
136, in __init__
super(BaseTaskTreeViewer, self).__init__(*args, **kwargs)
  File "/usr/lib/python2.7/dist-packages/taskcoachlib/gui/viewer/task.py", line 
77, in __init__
super(BaseTaskViewer, self).__init__(*args, **kwargs)
  File "/usr/lib/python2.7/dist-packages/taskcoachlib/gui/viewer/mixin.py", 
line 85, in __init__
super(FilterableViewerMixin, self).__init__(*args, **kwargs)
  File "/usr/lib/python2.7/dist-packages/taskcoachlib/gui/viewer/base.py", line 
583, in __init__
super(TreeViewer, self).__init__(*args, **kwargs)
  File "/usr/lib/python2.7/dist-packages/taskcoachlib/gui/viewer/base.py", line 
70, in __init__
pub.subscribe(self.onBeginIO, 'taskfile.aboutToRead')
  File 
"/usr/lib/python2.7/dist-packages/taskcoachlib/thirdparty/pubsub/core/publisherbase.py",
 line 143, in subscribe
topicObj = self.__topicMgr.getOrCreateTopic(topicName)
  File 
"/usr/lib/python2.7/dist-packages/taskcoachlib/thirdparty/pubsub/core/topicmgr.py",
 line 206, in getOrCreateTopic
if obj:
wx._core.PyAssertionError: C++ assertion "m_window" failed at 
../src/gtk/dcclient.cpp(2043) in DoGetSize(): GetSize() doesn't work without 
window


-- System Information:
Debian Release: wheezy/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.14-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash

Versions of packages taskcoach depends on:
ii  fonts-dejavu 2.34-1
ii  libxss1  1:1.2.2-1
ii  python   2.7.8-1
ii  python-chardet   2.2.1-2
ii  python-dateutil  1.5+dfsg-1
ii  python-keyring   3.7-1
ii  python-lockfile  1:0.8-2
ii  python-pyparsing 2.0.2+dfsg1-1
ii  python-squaremap 1:1.0.4-2
ii  python-twisted-core  14.0.2-2
ii  python-wxgtk3.0  3.0.1.1+dfsg-1
ii  python-wxversion 2.8.12.1+dfsg2-1
ii  python-xdg   0.25-4
ii  x11-utils7.7+1

Versions of packages taskcoach recommends:
ii  libavahi-compat-libdnssd1  0.6.31-4
ii  libgnome-2-0   2.32.1-5
ii  python-notify  0.1.1-3

Versions of packages taskcoach suggests:
pn  espeak   
pn  python-kde4  

-- no debconf information


-- 
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#584942: Bug#583738: Bug#584942: by the way

[Peter Gervai]

But it still chokes on anything in color:

D [22/Dec/2010:15:24:09 +0100] [Job 1700] sfopen: gs_parse_file_name failed.
D [22/Dec/2010:15:24:09 +0100] [Job 1700] sfopen: gs_parse_file_name failed.
D [22/Dec/2010:15:24:09 +0100] [Job 1700] ./base/gsicc_manage.c:709:
gsicc_open_search(): Could not find lab.icc
D [22/Dec/2010:15:24:09 +0100] [Job 1700] | ./psi/zusparam.c:805:
set_lab_icc(): cannot find default lab icc profile
D [22/Dec/2010:15:24:09 +0100] [Job 1700] sfopen: gs_parse_file_name failed.
D [22/Dec/2010:15:24:09 +0100] [Job 1700] sfopen: gs_parse_file_name failed.
D [22/Dec/2010:15:24:09 +0100] [Job 1700] sfopen: gs_parse_file_name failed.
D [22/Dec/2010:15:24:09 +0100] [Job 1700] ./base/gsicc_manage.c:709:
gsicc_open_search(): Could not find %rom%iccprofiles/default_rgb.icc
D [22/Dec/2010:15:24:09 +0100] [Job 1700] | ./base/gsicc_manage.c:869:
gsicc_set_device_profile(): cannot find device profile
D [22/Dec/2010:15:24:09 +0100] [Job 1700] Unrecoverable error:
unknownerror in .setdistillerparams
D [22/Dec/2010:15:24:09 +0100] [Job 1700] Operand stack:
D [22/Dec/2010:15:24:09 +0100] [Job 1700] --nostringval--
--nostringval--  --nostringval--  --nostringval--  false
--nostringval--  GrayAC
SImageDict  --nostringval--  GrayImageDepth  -1  OffOptimizations  0
.AlwaysEmbed  --nostringval--  SubsetFonts  true  CalGrayProfile  None
  ColorACSImageDict  --nostringval--  DownsampleGrayImages  false
UCRandBGInfo  Preserve  LockDistillerParams  false
PDFXSetBleedBoxToMedi
aBox  true  AutoFilterColorImages  true  ColorImageFilter  DCTEncode
EmbedAllFonts  true  EncodeMonoImages  true  MonoImageFilter  CCITTFax
Encode  CalCMYKProfile  None  DownsampleColorImages  false
PreserveOverprintSettings  true  ImageMemory  524288
PDFXTrimBoxToMediaBoxOffse
t  --nostringval--  ASCII85EncodePages  false  UsePrologue  false
ColorImageDownsampleThreshold  1.5  DoThumbnails  false
EncodeGrayImages
  true  MonoImageDownsampleThreshold  1.5  sRGBProfile  None
CannotEmbedFontPolicy  Warning  DetectBlends  true
PreserveOPIComments  true
 GrayImageFilter  DCTEncode  ParseDSCCommentsForDocInfo  true
AntiAliasMonoImage
D [22/Dec/2010:15:24:09 +0100] [Job 1700] s  false
UseFlateCompression  true  ColorImageDict  --nostringval--
CreateJobTicket  false  EncodeColorImages  true  MonoImageDict
--nostringval--  PreserveHalftoneInfo  false  Binding  Left
DefaultRenderingIntent  Default  PreserveEPSInfo  true
GrayImageDownsampleThreshold  1.5  ParseDSCComments  true
AntiAliasGrayImages  false  ColorImageDepth  -1  EmitDSCWarnings
false  MonoImageDepth  -1  PreserveCopyPage  true
AutoPositionEPSFiles  true  AutoRotatePages  PageByPage
ConvertImagesToIndexed  true  .NeverEmbed  --nostringval--
GrayImageDict  --nostringval--  Optimize  false  OPM  1
AntiAliasColorImages  false  TransferFunctionInfo  Preserve
CalRGBProfile  None  ColorConversionStrategy  LeaveColorUnchanged
DownsampleMonoImages  false  MaxSubsetPct  100
PDFXBleedBoxToTrimBoxOffset  --nostringval--  AutoFilterGrayImages
true  CompressPages  true
D [22/Dec/2010:15:24:09 +0100] [Job 1700] sfopen: gs_parse_file_name failed.
D [22/Dec/2010:15:24:09 +0100] [Job 1700] sfopen: gs_parse_file_name failed.
D [22/Dec/2010:15:24:09 +0100] [Job 1700] ./base/gsicc_manage.c:709:
gsicc_open_search(): Could not find lab.icc
D [22/Dec/2010:15:24:09 +0100] cupsdReadClient: 17 GET
/images/right.gif HTTP/1.1
D [22/Dec/2010:15:24:09 +0100] cupsdAuthorize: No authentication data provided.
D [22/Dec/2010:15:24:09 +0100] [Job 1700] | ./psi/zusparam.c:805:
set_lab_icc(): cannot find default lab icc profile
I [22/Dec/2010:15:24:09 +0100] [Job 1700] Rendering completed




ii  ghostscript   9.00~dfsg-2~0jones1   The
GPL Ghostscript PostScript/PDF interpreter


Peter



-- 
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#584942: Bug#583738: Bug#584942: by the way

[Peter Gervai]

Found: 9.00~dfsg-2~0jones1

> You posted above to my personal email address.

Yes.

> Please repost to the bugreport - and only there.  Thanks.

I will not post publicly private data, sorry.

But I'll send a mail that it's still won't work if you insist, without
the attachments.

Peter



--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#584942: Bug#583738: Bug#584942: by the way

[Peter Gervai]

On Sun, Nov 28, 2010 at 13:21, Jonas Smedegaard  wrote:

>>> yeh the bug's still present,
>>
>> Still present where? With which version of ghostscript did you test?
>
> It would still be useful if you could answer above - even if you cannot test
> any further with different versions of ghostscript.

Haven't I? :-)

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=583738#113

>> Please try the newest packaging as requested here:
>> http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=78;att=0;bug=583738
>
> I had hoped for help with above, as it is more reliable if those initially
> experiencing the bug could confirm that the bug has been properly solved.

It has not. But there were other random crashes after installing it,
and I haven't got the time to properly figure out where and why.

> command documentation) with the GTP-based evince-gtk works fine here, using
> ghostscript 9.00~dfsg-2.

My versions were detailed in the msg above, and usually printing any
pdf (from evince, from lpr, ...) results a crash. Converting it into
.ps usually "solves" the problem.

All versions are at jones1 and I've upgraded the whole system to sid
last time just to see the random crashes to go, which they didn't.

I'll try to test it further and reopen if I find some useful info, I
unfortunately cannot figure out any useful I could add at this point
apart from "not working". :-(

Peter



-- 
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#583738: not working

[Peter Gervai]

> Still present where? With which version of ghostscript did you test?

Latest and greatest sid versions.

> Please try test that newer ghostscript package and report back if you
> can confirm that it works properly now.

Fail. Follows below the exact versions:

Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (2000, 'unstable'), (500, 'stable')
Architecture: i386 (i686)

Kernel: Linux 2.6.34-narya2 (SMP w/2 CPU cores; PREEMPT)
Locale: LANG=C, LC_CTYPE=hu_HU (charmap=ISO-8859-2)
Shell: /bin/sh linked to /bin/bash

Versions of packages cups depends on:
ii  adduser  3.112+nmu1  add and remove users and groups
ii  bc   1.06.95-2   The GNU bc arbitrary precision cal
ii  cups-client  1.4.4-7 Common UNIX Printing System(tm) -
ii  cups-common  1.4.4-7 Common UNIX Printing System(tm) -
ii  cups-ppdc1.4.4-7 Common UNIX Printing System(tm) -
ii  debconf [debconf-2.0 1.5.36  Debian configuration management sy
ii  ghostscript  9.00~dfsg-1~0jones1 The GPL Ghostscript PostScript/PDF
ii  libavahi-client3 0.6.27-2Avahi client library
ii  libavahi-common3 0.6.27-2Avahi common library
ii  libc62.11.2-7Embedded GNU C Library: Shared lib
ii  libcups2 1.4.4-7 Common UNIX Printing System(tm) -
ii  libcupscgi1  1.4.4-7 Common UNIX Printing System(tm) -
ii  libcupsdriver1   1.4.4-7 Common UNIX Printing System(tm) -
ii  libcupsimage21.4.4-7 Common UNIX Printing System(tm) -
ii  libcupsmime1 1.4.4-7 Common UNIX Printing System(tm) -
ii  libcupsppdc1 1.4.4-7 Common UNIX Printing System(tm) -
ii  libdbus-1-3  1.2.24-3simple interprocess messaging syst
ii  libgcc1  1:4.4.5-6   GCC support library
ii  libgnutls26  2.8.6-1 the GNU TLS library - runtime libr
ii  libgssapi-krb5-2 1.8.3+dfsg-2MIT Kerberos runtime libraries - k
ii  libijs-0.35  0.35-7  IJS raster image transport protoco
ii  libkrb5-31.8.3+dfsg-2MIT Kerberos runtime libraries
ii  libldap-2.4-22.4.23-6OpenLDAP libraries
ii  libpam0g 1.1.1-6.1   Pluggable Authentication Modules l
ii  libpaper11.1.24  library for handling paper charact
ii  libpoppler5  0.12.4-1.2  PDF rendering library
ii  libslp1  1.2.1-7.8   OpenSLP libraries
ii  libstdc++6   4.4.5-6 The GNU Standard C++ Library v3
ii  libusb-0.1-4 2:0.1.12-16 userspace USB programming library
ii  lsb-base 3.2-26  Linux Standard Base 3.2 init scrip
ii  poppler-utils0.12.4-1PDF utilitites (based on libpopple
ii  procps   1:3.2.8-9   /proc file system utilities
ii  ssl-cert 1.0.27  simple debconf wrapper for OpenSSL
ii  ttf-freefont 20090104-7  Freefont Serif, Sans and Mono True
ii  zlib1g   1:1.2.3.4.dfsg-3compression library - runtime

Versions of packages cups recommends:
ii  cups-driver-gutenpri 5.2.6-1 printer drivers for CUPS
ii  foomatic-filters 4.0.5-5 OpenPrinting printer support - fil
ii  ghostscript-cups 9.00~dfsg-1~0jones1 The GPL Ghostscript PostScript/PDF

Versions of packages cups suggests:
ii  cups-bsd  1.4.4-7Common UNIX Printing System(tm) -
ii  cups-pdf  2.5.0-16   PDF printer for CUPS
ii  foomatic-db   20100804-1 OpenPrinting printer support - dat
ii  hplip 3.10.6-1.1 HP Linux Printing and Imaging Syst
ii  smbclient 2:3.5.6~dfsg-1 command-line SMB/CIFS clients for
ii  udev  164-1  /dev/ and hotplug management daemo
pn  xpdf-korean | xpdf-japane  (no description available)

-- Configuration Files:
/etc/cups/cupsd.conf changed [not included]
/etc/logrotate.d/cups changed [not included]

-- debconf information:
* cupsys/backend: ipp, lpd, parallel, scsi, serial, socket, usb, snmp, dnssd
* cupsys/raw-print: true


> If possible try both against an up-to-date squeeze system and an
> up-to-date sid system - to figure out if really the bug might be
> triggered by something else (e.g. CUPS) rather than ghostscript itself.

Well I didn't update the whole system yet but I guess I upgraded all
direct depends,
and it fails even worse:

D [22/Nov/2010:07:41:03 +0100] PID 15388
(/usr/lib/cups/filter/pdftopdf) exited with no errors.
D [22/Nov/2010:07:41:03 +0100] [Job 1654] Ghostscript command line:
/usr/bin/gs -dQUIET -dPARANOIDSAFER -dNOPAUSE -dBATCH -sDEVICE=cups
-sstdout=%stderr -sOutputFile=%stdout -I/usr/share/cups/fonts
-sMediaType=Plain -r720x360 -dDEVICEWIDTHPOINTS=612
-

Bug#584942: by the way

[Peter Gervai]

yeh the bug's still present, and isn't it the same as bug #569580 ?



-- 
 byte-byte,
    grin



--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#516292: okay, here's the patch

[Peter Gervai]

Hello,

Here's the patch against 5.3 server regarding ECHO_REQ vs. CHECK_ACK,
it seems to work, so far.

Still, it's a bad idea to upgrade the client while not upgrading the
server (since, as far as I see, tere's no upgrade path from upstream).
So client should be kept at last published version and a new
webclientwhatever could be packaged and clearly noted that it doesn't
have an open source server part.

ps: gosh, what an ugly code!

-- 
 byte-byte,
grin
diff -urN dhis-server-5.3/debian/changelog dhis-server-5.3.new/debian/changelog
--- dhis-server-5.3/debian/changelog	2009-08-14 00:28:29.0 +0200
+++ dhis-server-5.3.new/debian/changelog	2009-08-13 23:55:04.402948447 +0200
@@ -1,3 +1,10 @@
+dhis-server (5.3-1.2.1) unstable; urgency=low
+
+  * Non-maintainer upload.
+  * Hack included to handle v5.5 client echos
+
+ -- Peter Gervai   Thu, 13 Aug 2009 23:54:37 +0200
+
 dhis-server (5.3-1.2) unstable; urgency=low
 
   * Non-maintainer upload.
diff -urN dhis-server-5.3/main.c dhis-server-5.3.new/main.c
--- dhis-server-5.3/main.c	2009-08-14 00:28:29.0 +0200
+++ dhis-server-5.3.new/main.c	2009-08-14 00:24:00.667948834 +0200
@@ -352,6 +352,8 @@
 
 if(msg.hdr.opcode==ECHO_REQ) {
 echo_ack_t m;
+online_t *p;
+		echo_req_t *mp;
 
 		DSYSLOG(1,(LOG_DEBUG,"do_dgram(): ECHO_REQ received. Sending ECHO_ACK.\n"));
 
@@ -359,7 +361,25 @@
 m.oserial=msg.hdr.serial;
 		m.hdr.hostid=msg.hdr.hostid;
 net_write_message((msg_t *)&m,from,msg.hdr.rport);
-return(1);
+
+/* hacking 5.3 server to handle 5.5 client msgs */
+		mp=(echo_req_t *)&msg;
+p=onbase;
+		while(p!=NULL) {
+		DSYSLOG(1,(LOG_DEBUG,"do_dgram(): ECHO_REQ hack checks online hosts; p.addr=%u p.id=%d from=%u h.id=%d\n",
+			  p->addr, p->id, from, mp->hdr.hostid));
+ if(p->addr==from && p->id==mp->hdr.hostid) break;
+ p=p->next;
+} 
+if(p==NULL) return(0);
+/* if(mp->sid!=p->sid) return(0); */
+		DSYSLOG(1,(LOG_DEBUG,"do_dgram(): ECHO_REQ hack active to update presence (v5.5 compat). id=%d fail=%d\n",
+			  p->id, p->check_fails));
+on_update(p->id,from,msg.hdr.rport,5,0);
+p->ka=time(NULL) + p->refresh;
+p->check_fails=0;
+
+		return(1);
 }
 
 if(msg.hdr.opcode==CHECK_ACK) {
diff -urN dhis-server-5.3/online.c dhis-server-5.3.new/online.c
--- dhis-server-5.3/online.c	2009-08-14 00:28:29.0 +0200
+++ dhis-server-5.3.new/online.c	2009-08-14 00:03:42.225947655 +0200
@@ -185,11 +185,18 @@
 
 		p2=p1->next;
 		if(p1->proto==3) 
-		if((t  - p1->ka) > KA_OFFLINE)
+		if((t  - p1->ka) > KA_OFFLINE) {
 			on_delete(p1->id);
+			DSYSLOG(1,(LOG_DEBUG,"on_parse(): Host %d is timed out, going offline\n",
+   p1->id));
+		}
+
 		if(p1->proto==4 || p1->proto ==5) {
-		if(p1->check_fails > CHECK_FAILS)
+		if(p1->check_fails > CHECK_FAILS) {
 			on_delete(p1->id);
+			DSYSLOG(1,(LOG_DEBUG,"on_parse(): Host %d failed %d checks, going offline\n",
+   p1->id, p1->check_fails));
+		}
 		else {
 			if (p1->proto == 4) {
 			if(p1->ka < time(NULL)) {

Bug#516292: still no success

[Peter Gervai]

Hmm,

Client seems not to reply CHECK_REQ and server doesn't seem to care
about ECHO_*, and this combination seems not to work.

-- 
 byte-byte,
grin



-- 
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#315886: elinks: "core dump" while sorting thru bookmarks' saved snapshots

[Peter Gervai]

On Sun, 26 Jun 2005 14:51:03 -0400
grok <[EMAIL PROTECTED]> wrote:

> I am getting this crash pretty regularly now when I start shuffling
> around the 'snapshot' URLs (they've already been moved away from where
> elinks puts them as per the configuration setting, so they should just
> be 'regular' URLs now, right?)

Sorry to be dumb but, um, what are you doing, and where's the data loss?
I have no idea what you mean by "shuffling snapshot URLs". 

> I put core dump in quotes in the subjectline, because the error message
> _says_ that it has produced a core dump, but I don't actually get one --
> just the backtrace below. Seems to me, perhaps, that I turned off core
> dumps somewhere, some time ago?
> ;>

bash$ ulimit -c unlimited

> Let me know what I should do if you want to go further on this with me.

I have to understand the bug first.

> P.S.: The english in your error message is a little awkward. You can

MY english? You mean the upstream? :) 

> swap-in my version below here, if you want (I may have dropped some of
> your text while cutting & pasting).
> 
> [ELinks crashed. That shouldn't happen. Please report this incident to
> the developers. If you would like to help in debugging the problem
> you've just uncovered, please keep the core you've just got and send the
> developers the output of the 'bt' command, entered from inside gdb
> (which you run as: gdb elinks core). Thanks a lot for your cooperation!]

I'll forward that anyway.


Thanks,
Peter


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#310035: Elinks contains nonfree code

[Peter Gervai]

Hello Steve,

On Sat, 21 May 2005 03:10:19 -0700
Steve Langasek <[EMAIL PROTECTED]> wrote:

> Timo Lindfors has pointed out to me on IRC that this is a duplicate of bug
> #300889, which was fixed upstream in 0.10.4.  That version hasn't reached
> testing yet, though, because there have been 6 new uploads since the middle
> of last month.  Is 0.10.4-6 suitable for release in your opinion?  It seems
> to me that this package is still in flux, so I'm inclined to suggest a
> backported fix to testing-proposed-updates for this bug.  If you think
> 0.10.4-6 is ready, we can push that in instead, but it seems to me that
> 0.9.3 is much more stable and a backport is less likely to lead to a
> last-minute removal of elinks from sarge.

I was pondering this for the last week.

First, there were no real security bugs fixed, but many small ones (like
the DoS with frames).

Second, there were lots of small annoying ones fixed (like endless refresh on
sourceforge).

Third, I just checked and there wasn't really any upstream screwups in the
last years, the new package bugs usually exist in old versions too.
Many versions are due to new upstream releases and my packaging woes.

Fourth, um, that's 0.10.4-7 we're talking about due to a problem of
type-handling (see bug #309367) which dislikes new dpkg-architecure and
I didn't notice that. (It'll be the same as -6 but with a non-screwed
control field.)

Apart from that I believe 0.10.4-7 is in far better shape than 0.9.xx,
and it is supposed to handle multiple arch compiles better (I don't 
find the bug now but was related to type-handling and autotools-dev
somewhere), and contains elinks-lite, which was a long-long-long standing
wish from many people with small systems.

I am not really familiar with uploading to frozen, and who to bribe,
etc. :) I dare to say that 0.10.4-7 have good chances to stay in, any
errors there may only be related to my packaging screwups :-/ [which
seems to work right now(tm)]

What I cannot do is get the backport done (due to lack of time) and I
doubt upstream would be anything but angry to let an old version in. 

What do you think?

Peter


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#309367: non-bug

[Peter Gervai]

Whatever, he's right, it's ugly. I'll do some sanity
checking, it's not a big deal.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#304803: still happens 0.10.4-2

[Peter Gervai]

Hello Blars^2[on],

On Thu, 28 Apr 2005 03:27:26 -0700
Blars Blarson <[EMAIL PROTECTED]> wrote:

> This bug still happens building 0.10.4-2 on a sparc pbuilder.

Yes, sorry, a fix that a fellow non-linux debian user created
tricks me all the time. -3 should have fixed it for good, it's
in the incoming at least now.

Peter


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#304803: ack

[Peter Gervai]

acknowledged. 

peter


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#302421: point taken but I don't have the solution

[Peter Gervai]

On Mon, 4 Apr 2005 03:27:44 +0200
Florian Zumbiehl <[EMAIL PROTECTED]> wrote:

> Hi,
> 
> > links-ssl package was *removed* from Debian in june, 2004.
> 
> Nope, links-ssl is still part of woody:
> 
> http://packages.debian.org/stable/non-US/links-ssl
> 
> > links and elinks (and links2 by the way) does not show any signs
> > of this bug.
> 
> You are sure that you were looking at package version 0.96.20020409-2?

Erm, you should have tagged it so, but you're right.

My problem is the following:

* links-ssl was removed because of licence conflict, so I probably should not
upload links-ssl current, since it violates OpenSSL licence.

* I probably should not update links-nossl into links-ssl for obvious reasons
(people would kill me for losing SSL).

* Upstream probably wouldn't give a s--t to find a 3 years old bug in the code
and just fix that (while it was fixed probably 3 years ago). I don't have the
resources to find it myself and patch it.


So, either you find someone fixing this bug in the 2002 april code of 
links (while uploading it is still dubious), or propose something along
the DFSG and policies. I am completely clueless, I guess it shouldn't be
just "removed" from woody (as it was from sid) since it doesn't yet have
elinks as a replacement. Uploading elinks instead of links-ssl may be not
a very nice move either as the old links and current elinks happen to
differ pretty much everywhere.

And the main problem is that I do not have the time to run this question
through debian mailing lists and debate many smart people about just
anything. If you (or someone else) come up with a solution which is 
acceptable by our community standards, please tell me and I'll try to do it
(apart from the fact that I can not fix the problem in the code unless 
someone throws a patch at me).

Thank you,
Peter


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#302421: Upstream contact?

[Peter Gervai]

On Sun, 3 Apr 2005 22:08:34 +0100
Esteban Manchado Velázquez <[EMAIL PROTECTED]> wrote:

> Hello:
> 
>Does upstream know this? 

links-ssl was removed from Debian since  Mon, 21 Jun 2004.

>Is anyone working on this bug?

Not likely.

Peter

ps: Neither links nor elinks seem to have this "bug", and I would guess
links-ssl did not have it either.

$ nc -l -p 12345
GET /blah.php%20Host:blurgl.tld%20X-Blub: HTTP/1.1
Host: localhost:12345
User-Agent: ELinks (0.10.2; Linux 2.6.10-narya i686; 103x33)
Accept: */*
Accept-Encoding: gzip
Accept-Language: en
Connection: Keep-Alive

$ nc -l -p 12345
GET /blah.php%0AHost:blurgl.tld%0AX-Blub: HTTP/1.1
Host: localhost:12345
User-Agent: Links (1.00pre12; Linux 2.6.10-narya i686; 103x33) (Debian pkg 
0.99+1.00pre12-1)
Accept: */*
Accept-Charset: us-ascii, ISO-8859-1, ISO-8859-2, ISO-8859-4, ISO-8895-5, 
ISO-8859-7, ISO-8895-9, ISO-8859-13, ISO-8859-15, ISO-8859-16, windows-1250, 
windows-1251, windows-1257, cp437, cp737, cp850, cp852, cp866, x-cp866-u, 
x-mac, x-mac-ce, x-kam-cs, koi8-r, koi8-u, TCVN-5712, VISCII, utf-8
Connection: Keep-Alive