Bug#689765: unblock: libio-socket-ssl-perl/1.76-2
Package: release.debian.org
User: release.debian@packages.debian.org
Usertags: unblock
Severity: normal
Dear Release-Team
I have prepared an update for libio-socket-ssl-perl 1.76-1 which is
found in wheezy and unstable but not yet uploaded. 1.77 was released
upstream to fix[1].
[1]: https://rt.cpan.org/Public/Bug/Display.html?id=79916
Upstream RT#79916 is marked 'Serverity Critical'. As comment in SSL.pm
we can read, before the _update_peer subroutine:
# called if PeerAddr is not set in ${*$self}{'_SSL_arguments'}
# this can be the case if start_SSL is called with a normal IO::Socket::INET
# so that PeerAddr|PeerPort are not set from args
The following script demostrates the problem, but is not exactly what
the comment suggest. I was not able to reproduce a better example.
Daniel Kahn Gillmor gave me some quidance on #debian-perl.
cut-cut-cut-cut-cut-cut-
#!/usr/bin/perl
use strict;
use warnings;
use IO::Socket::SSL;
use IO::Socket::INET6;
my $sock = IO::Socket::INET6-new(
PeerAddr = '127.0.0.1',
PeerPort = 5556,
Type = SOCK_STREAM,
) or die Cannot construct socket - $@;
use Data::Show;
show $sock;
my $upgraded_sock = IO::Socket::SSL-start_SSL($sock);
use Data::Show;
show $upgraded_sock;
cut-cut-cut-cut-cut-cut-
With PeerAddr set to 127.0.0.1 you get for upgraded_sock:
cut-cut-cut-cut-cut-cut-
==( $upgraded_sock )==[ 'test.pl', line 19 ]==
do {
require Symbol;
my $a = bless(Symbol::gensym(), IO::Socket::SSL);
*{$a} = {
_SSL_arguments= {
PeerAddr = 127.0.0.1,
PeerPort = 5556,
Proto = tcp,
SSL_cert_file =
certs/client-cert.pem,
SSL_check_crl = 0,
SSL_honor_cipher_order = 0,
SSL_key_file =
certs/client-key.pem,
SSL_server = 0,
SSL_use_cert = 0,
SSL_verify_mode= 0,
SSL_version= SSLv23:!SSLv2,
},
_SSL_ctx = bless({ context = 27267440 },
IO::Socket::SSL::SSL_Context),
_SSL_fileno = 3,
_SSL_ioclass_upgraded = IO::Socket::INET6,
_SSL_object = 27913664,
_SSL_opened = 1,
io_socket_domain = 2,
io_socket_proto = 6,
io_socket_timeout = undef,
io_socket_type= 1,
};
$a;
}
cut-cut-cut-cut-cut-cut-
but for '::1' you see that PeerAddr is missing from _SSL_arguments:
cut-cut-cut-cut-cut-cut-
==( $upgraded_sock )==[ 'test.pl', line 19 ]==
do {
require Symbol;
my $a = bless(Symbol::gensym(), IO::Socket::SSL);
*{$a} = {
_SSL_arguments= {
Proto = tcp,
SSL_cert_file =
certs/client-cert.pem,
SSL_check_crl = 0,
SSL_honor_cipher_order = 0,
SSL_key_file =
certs/client-key.pem,
SSL_server = 0,
SSL_use_cert = 0,
SSL_verify_mode= 0,
SSL_version= SSLv23:!SSLv2,
},
_SSL_ctx = bless({ context = 14291248 },
IO::Socket::SSL::SSL_Context),
_SSL_fileno = 3,
_SSL_ioclass_upgraded = IO::Socket::INET6,
_SSL_object = 14937456,
_SSL_opened = 1,
io_socket_domain = 10,
io_socket_proto = 6,
io_socket_timeout = undef,
io_socket_type= 1,
};
$a;
}
cut-cut-cut-cut-cut-cut-
but with the patched IO::Socket::SSL:
cut-cut-cut-cut-cut-cut-
==( $upgraded_sock )==[ 'test.pl', line 19 ]==
do {
require Symbol;
my $a = bless(Symbol::gensym(), IO::Socket::SSL);
*{$a} = {
_SSL_arguments= {
PeerAddr = ::1,
PeerPort = 5556,
Bug#689770: pre-unblock: fbreader/0.12.10dfsg-8
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please pre-approve the attached patch for the package fbreader.
See the background at #689338 and [1].
[1] https://github.com/geometer/FBReader/issues/224
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (990, 'testing'), (500, 'stable-updates'), (500, 'unstable'),
(500, 'stable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 3.2.0-2-686-pae (SMP w/2 CPU cores)
Locale: LANG=fi_FI.UTF-8, LC_CTYPE=fi_FI.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
diff --git a/zlibrary/core/src/filesystem/ZLInputStreamDecorator.cpp b/zlibrary/core/src/filesystem/ZLInputStreamDecorator.cpp
index b44cf9a..b0b65b9 100644
--- a/zlibrary/core/src/filesystem/ZLInputStreamDecorator.cpp
+++ b/zlibrary/core/src/filesystem/ZLInputStreamDecorator.cpp
@@ -24,7 +24,10 @@ ZLInputStreamDecorator::ZLInputStreamDecorator(shared_ptrZLInputStream decorat
bool ZLInputStreamDecorator::open() {
bool result = myBaseStream-open();
- myBaseOffset = myBaseStream-offset();
+ if (result)
+ {
+ myBaseOffset = myBaseStream-offset();
+ }
return result;
}
Bug#689770: pre-unblock: fbreader/0.12.10dfsg-8
Control: tags -1 confirmed On 2012-10-06 10:05, Eugene V. Lyubimkin wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please pre-approve the attached patch for the package fbreader. See the background at #689338 and [1]. [1] https://github.com/geometer/FBReader/issues/224 [...] Looks reasonable, please go ahead. Please ping us once the patched fbreader has been in sid for a couple of days. ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/506febe4.9080...@thykier.net
Processed: Re: Bug#689770: pre-unblock: fbreader/0.12.10dfsg-8
Processing control commands: tags -1 confirmed Bug #689770 [release.debian.org] pre-unblock: fbreader/0.12.10dfsg-8 Added tag(s) confirmed. -- 689770: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=689770 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/handler.s.b689770.134951217728429.transcr...@bugs.debian.org
Bug#689772: unblock: olsrd/0.6.3-5
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package olsrd olsrd-0.6.3-5 ships OLSRd with hardening flags. It also updates OLSR to the latest stable version upstream, which fixes critical bugs which are bound to be reported against this package once it is shipped with a stable Debian release. The release notes are here: http://olsr.org/?q=node/55 Note that 0.6.2 was released more than a year ago and it would seem wrong to ship wheezy with it. 0.6.3 *was* in place in the archive when the freeze happened, and was blocked only because builds were failing on Debian/kFreeBSD, which is now fixed. So please do: unblock olsrd/0.6.3-5 The debdiff is quite long, so I will not attach it here, but a diffstat: CHANGELOG | 13 Makefile | 120 Makefile.inc | 28 README-Olsr-Extensions | 43 android/README | 30 android/regex/Makefile.inc | 13 android/regex/NOTICE | 382 + android/regex/cclass.h |2 android/regex/cname.h |2 android/regex/engine.c |7 android/regex/re_format.7 | 756 --- android/regex/regcomp.c | 20 android/regex/regerror.c |8 android/regex/regex.3 | 667 -- android/regex/regexec.c |2 android/regex/regfree.c |1 android/regex/utils.h |2 contrib/netsimpcap/Makefile |2 debian/changelog | 37 debian/control |6 debian/olsrd-adhoc-setup.1 | 36 debian/olsrd-default | 32 debian/olsrd.conf | 217 debian/olsrd.conf.funkfeuer | 34 debian/olsrd.init |9 debian/olsrd.manpages |1 debian/patches/100-debug_level.patch | 11 debian/patches/230-usr-lib-olsrd.patch |6 debian/patches/260-quagga-plugin-detect-protocol-version.patch | 10 debian/patches/270-gui-linux-gtk-align-olsr_ip_addr-to-olsr-definition-of-it.patch | 33 debian/patches/280-fix-linux-gtk-build.patch | 28 debian/patches/290-hardcode-etc-olsrd-olsrd-conf.patch | 104 debian/patches/295-update-jsoninfo-plugin.patch | 674 ++ debian/patches/295-update-olsrd-adhoc-setup.patch | 81 debian/patches/296-jsoninfo-fix-typo.patch | 25 debian/patches/300-stop-hiding-compile-and-linking-flags.patch | 628 ++ debian/patches/310-hardening-fixes.patch | 57 debian/patches/320-build-tas-plugin-against-debian-lua.patch | 21 debian/patches/series |9 debian/rules | 25 files/olsrd-adhoc-setup | 76 files/olsrd.conf.default.full | 64 files/olsrd.conf.default.lq | 36 files/olsrd.conf.default.lq-fisheye | 36 files/olsrd.conf.default.rfc | 17 gui/linux-gtk/CHANGELOG
Bug#684355: unblock: autofs/5.0.7-2
Control: retitle -1 unblock: autofs/5.0.7-2 Since the previous email, one more neat way to break ucf file ownership tansfer when renaming a package has been found, #689747, which I just fixed. Initially we queried just one file which is supposed to be owned by old autofs5 - default/autofs, but it turned out that each file has to be handled separately, which is now implemented. This all is a result of a bugfix in 5.0.6-3, when I stopped transferring ucf-ownership forcible but started doing it conditionally, only of previously ownership belonged to autofs5. That was a bugfix without a separate BTS entry. Initial issue is that I do not want to transfer ownership of these files if they currently belong to some other package, if that's _ever_ possible, so using --force unconditionally does not look sane. Maybe I'm wrong here and always using --force for ucf file registration is okay, but the current version look more or less robust anyway. The small debdiff between 5.0.7-1 and 5.0.7-2 follows. Please consider unblocking the package. unblock autofs/5.0.7-2 Thank you for your time! /mjt diff -Nru autofs-5.0.7/debian/autofs.postinst autofs-5.0.7/debian/autofs.postinst --- autofs-5.0.7/debian/autofs.postinst 2012-09-03 08:52:07.0 +0400 +++ autofs-5.0.7/debian/autofs.postinst 2012-10-06 13:00:26.0 +0400 @@ -2,17 +2,15 @@ set -e if [ $1 = configure ]; then - # transfer ownership from old autofs5 package - case $(ucfq -w /etc/default/autofs) in -*:autofs5:*) force=--force ;; -*) force= ;; - esac - for map in master net misc smb; do -ucfr $force autofs /etc/auto.$map -ucf /usr/share/autofs/conffiles/auto.$map /etc/auto.$map + for file in auto.master auto.net auto.misc auto.smb default/autofs; do +# transfer ownership from old autofs5 package +case `ucfq -w /etc/$file` in + *:autofs5:*) force=--force ;; + *) force= ;; +esac +ucfr $force autofs /etc/$file +ucf /usr/share/autofs/conffiles/$file /etc/$file done - ucfr $force autofs /etc/default/autofs - ucf /usr/share/autofs/conffiles/default/autofs /etc/default/autofs fi # In version 5.0.6 (wheezy), the package has been renamed diff -Nru autofs-5.0.7/debian/changelog autofs-5.0.7/debian/changelog --- autofs-5.0.7/debian/changelog 2012-09-26 21:15:05.0 +0400 +++ autofs-5.0.7/debian/changelog 2012-10-06 13:06:37.0 +0400 @@ -1,3 +1,10 @@ +autofs (5.0.7-2) unstable; urgency=low + + * force transfer ucf autofs5=autofs ownership for all ucf-managed +files (Closes: #689747) + + -- Michael Tokarev m...@tls.msk.ru Sat, 06 Oct 2012 13:06:37 +0400 + autofs (5.0.7-1) unstable; urgency=low * new upstream (5.0.7) release. It brings the following changes: -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/506ff95d.1090...@msgid.tls.msk.ru
Bug#689730: marked as done (unblock: geoip-database/20121005-1)
Your message dated Sat, 06 Oct 2012 11:28:19 +0200 with message-id 506ff9b3.90...@thykier.net and subject line Re: Bug#689730: unblock: geoip-database/20121005-1 has caused the Debian Bug report #689730, regarding unblock: geoip-database/20121005-1 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 689730: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=689730 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package geoip-database An new round of the monthly update :) Thanks! unblock geoip-database/20121005-1 -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-3-amd64 (SMP w/2 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- On 2012-10-05 18:32, Patrick Matthäi wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package geoip-database An new round of the monthly update :) Thanks! unblock geoip-database/20121005-1 [...] Unblocked, thanks. ~Niels---End Message---
Processed: Re: Bug#684355: unblock: autofs/5.0.7-2
Processing control commands: retitle -1 unblock: autofs/5.0.7-2 Bug #684355 [release.debian.org] unblock: autofs/5.0.7-1 Changed Bug title to 'unblock: autofs/5.0.7-2' from 'unblock: autofs/5.0.7-1' -- 684355: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=684355 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/handler.s.b684355.134951561519042.transcr...@bugs.debian.org
Bug#689697: marked as done (unblock: rygel/0.14.3-2)
Your message dated Sat, 06 Oct 2012 11:32:25 +0200 with message-id 506ffaa9.5060...@thykier.net and subject line Re: Bug#689697: unblock: rygel/0.14.3-2 has caused the Debian Bug report #689697, regarding unblock: rygel/0.14.3-2 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 689697: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=689697 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package rygel Upstream recommended to include a trivial patch that improves the interopability with many DLNA devices on the market that always does seek requests. Without this patch these users won't get smooth playback. (ie. many BlueRay Disc players on the market apparently have this bug). http://git.gnome.org/browse/rygel/commit/?h=rygel-0-14id=6afee764be64d0239d426f48cc7754aa6ad97ef9 unblock rygel/0.14.3-2 -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (300, 'unstable'), (100, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-3-amd64 (SMP w/1 CPU core) Locale: LANG=en_US.UTF-8, LC_CTYPE=sv_SE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash ---End Message--- ---BeginMessage--- On 2012-10-05 11:41, Andreas Henriksson wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package rygel Upstream recommended to include a trivial patch that improves the interopability with many DLNA devices on the market that always does seek requests. Without this patch these users won't get smooth playback. (ie. many BlueRay Disc players on the market apparently have this bug). http://git.gnome.org/browse/rygel/commit/?h=rygel-0-14id=6afee764be64d0239d426f48cc7754aa6ad97ef9 unblock rygel/0.14.3-2 [...] Unblocked, thanks. ~Niels---End Message---
Bug#689691: unblock: php-letodms-core/3.3.9-1
Control: tags -1 moreinfo On 2012-10-05 10:12, Francisco Manuel Garcia Claramonte wrote: Subject: unblock: php-letodms-core/3.3.9-1 Package: release.debian.org User: release.debian@packages.debian.org Usertags: unblock Severity: normal Please unblock package php-letodms-core The current letodms version in testing (3.3.4-1) has some important security vulnerabilities. New php-letodms-core-3.3.9-1 fixes all these issues. unblock php-letodms-core/3.3.9-1 Thank you, Regards, Francisco. Can you please attach a debdiff of the actual changes. Particularly it would be very useful for us if the changes were not remove all files from 3.3.4 and add all files in 3.3.9[1]. ~Niels [1] The diff we get is 33 files changed, 7519 insertions(+), 7376 deletions(-) and next to useless for us to review. -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/506ffc25.3020...@thykier.net
Processed: Re: Bug#689691: unblock: php-letodms-core/3.3.9-1
Processing control commands: tags -1 moreinfo Bug #689691 [release.debian.org] unblock: php-letodms-core/3.3.9-1 Added tag(s) moreinfo. -- 689691: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=689691 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/handler.s.b689691.134951633323353.transcr...@bugs.debian.org
Bug#687776: marked as done (unblock: normalize-audio/0.7.7-10)
Your message dated Sat, 06 Oct 2012 12:58:07 +0200 with message-id 50700ebf.4030...@thykier.net and subject line Re: Bug#687776: unblock: normalize-audio/0.7.7-10 has caused the Debian Bug report #687776, regarding unblock: normalize-audio/0.7.7-10 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 687776: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=687776 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package normalize-audio. The only change between -10 and -11 is the enabled LFS support. Without LFS support normalized-audio refuses to operate on audio files 2 GB on 32bit platforms. begin debdiff diff -Nru normalize-audio-0.7.7/debian/changelog normalize-audio-0.7.7/debian/changelog --- normalize-audio-0.7.7/debian/changelog 2012-06-10 15:03:26.0 +0200 +++ normalize-audio-0.7.7/debian/changelog 2012-09-03 22:05:20.0 +0200 @@ -1,3 +1,9 @@ +normalize-audio (0.7.7-11) unstable; urgency=low + + * Enable LFS support (Closes: #686590). + + -- Joachim Reichel reic...@debian.org Mon, 03 Sep 2012 21:54:19 +0200 + normalize-audio (0.7.7-10) unstable; urgency=low * Fix Format: line in debian/copyright. diff -Nru normalize-audio-0.7.7/debian/rules normalize-audio-0.7.7/debian/rules --- normalize-audio-0.7.7/debian/rules 2012-06-10 14:59:43.0 +0200 +++ normalize-audio-0.7.7/debian/rules 2012-09-03 21:52:37.0 +0200 @@ -2,6 +2,8 @@ # export DH_VERBOSE=1 +CFLAGS := $(CFLAGS) -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 + %: dh $@ --with autoreconf end debdiff unblock normalize-audio/0.7.7-11 -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (910, 'testing'), (800, 'stable'), (200, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.2.0-2-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- On 2012-09-15 19:36, Joachim Reichel wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package normalize-audio. The only change between -10 and -11 is the enabled LFS support. Without LFS support normalized-audio refuses to operate on audio files 2 GB on 32bit platforms. begin debdiff diff -Nru normalize-audio-0.7.7/debian/changelog normalize-audio-0.7.7/debian/changelog --- normalize-audio-0.7.7/debian/changelog 2012-06-10 15:03:26.0 +0200 +++ normalize-audio-0.7.7/debian/changelog 2012-09-03 22:05:20.0 +0200 @@ -1,3 +1,9 @@ +normalize-audio (0.7.7-11) unstable; urgency=low + + * Enable LFS support (Closes: #686590). + + -- Joachim Reichel reic...@debian.org Mon, 03 Sep 2012 21:54:19 +0200 + normalize-audio (0.7.7-10) unstable; urgency=low * Fix Format: line in debian/copyright. diff -Nru normalize-audio-0.7.7/debian/rules normalize-audio-0.7.7/debian/rules --- normalize-audio-0.7.7/debian/rules 2012-06-10 14:59:43.0 +0200 +++ normalize-audio-0.7.7/debian/rules 2012-09-03 21:52:37.0 +0200 @@ -2,6 +2,8 @@ # export DH_VERBOSE=1 +CFLAGS := $(CFLAGS) -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 + %: dh $@ --with autoreconf end debdiff unblock normalize-audio/0.7.7-11 [...] Unblocked, thanks. ~Niels---End Message---
Processed: Re: Bug#687614: unblock: gdebi/0.8.6 (pre-approval)
Processing control commands: tags -1 moreinfo Bug #687614 [release.debian.org] unblock: gdebi/0.8.6 (pre-approval) Added tag(s) moreinfo. -- 687614: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=687614 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/handler.s.b687614.13495224921976.transcr...@bugs.debian.org
Bug#687614: unblock: gdebi/0.8.6 (pre-approval)
Control: tags -1 moreinfo On 2012-09-14 11:31, Luca Falavigna wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Dear Release Team, I'd like to upload a new gdebi version in unstable fixing some bugs I recently triaged. They were reported on Launchpad, but most of them affect Debian too. Here's a description of the changes introduced since 0.8.5: [...] Other than those, I plan to include new translations in the package, I'm currently waiting for Launchpad to finalize them. I'm attaching a full debdiff (not including translations, at the moment) of the changes I'd like to introduce. Cheers, Luca The changes are mostly reasonable and I would be okay with them except the part where GDebiCli.py calls sys.exit(app.install())[0]. I had a brief look at the code and app.install() (being GDebiCli.install()) appears to return a mix of int and boolean. Like @@ -141,9 +141,7 @@ #os.system(gdebi %s_%s_*.deb % (...)) pass else: -ret = call([dpkg,...]) -if (ret != 0): -return False +return call([dpkg,...]) ^^^ (ret != 0 suggests int) vvv (clearly boolean) return True In the 0.8.5 code, there are a couple of places where GDebiCli.install returns False on error[1], which I believe python translates to 0 leading to exit 0 with errors (and I suspect that is not what you wanted). ~Niels [0] Actually, this also appears in gdebi AFAICT (w. s/app/debi/). [1] I have marked the first two return False on error I noticed. def install(self): # install the dependecnies (install,remove,unauthenticated) = self._deb.required_changes if len(install) 0 or len(remove) 0: fprogress = apt.progress.text.AcquireProgress() iprogress = apt.progress.base.InstallProgress() try: res = self._cache.commit(fprogress,iprogress) except apt.cache.FetchFailedException, e: sys.stderr.write(_(Error during install: '%s') % e) return False except SystemError, e: sys.stderr.write(_(Error during install: '%s') % e) return False [...] -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/50701432.5080...@thykier.net
Bug#689795: unblock: python-larch/1.20121006-1
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
I humbly request that the release team allow the recently uploaded
python-larch package version 1.20121006-1 into wheezy before the
release. It fixes two bugs, one of which was reported to Debian:
* #675818: UnboundLocalError: local variable 'new_node' referenced
before assignment
- this bug is of normal severity, but could arguably be important
- what happens is that when the fsck feature of Obnam (my backup
program) is used in fix problems and do not just report them
mode, the program crashes because of an unknown local variable
name
- the problem is that I had inadvertently indented a line wrongly:
the line logs the value of a variable, but is not indented to be
inside the block in which the variable exists
- the fix is a one-line change to indent the problematic line to
the correct level
* the unreported problem is that the package is using the cmdtest tool
during build time to run tests, but is lacking this in the build
dependencies
- I apologise profusely for not reporting a bug for this myself
I am also upstream of python-larch, and have chosen to make a new
upstream release to include these fixes. I hope that is not a problem
for the release team.
An additional change, apart from a new entry in the NEWS file, is
that I fixed the spelling of the name of the person who developed the
B-tree variant the python-larch package implements.
The debdiff is below.
I hope the release team is in good health, and that this request of
mine leaves you in good spirits.
diff -Nru python-larch-1.20120527/debian/changelog
python-larch-1.20121006/debian/changelog
--- python-larch-1.20120527/debian/changelog2012-10-06 11:59:01.0
+0100
+++ python-larch-1.20121006/debian/changelog2012-10-06 11:59:01.0
+0100
@@ -1,3 +1,12 @@
+python-larch (1.20121006-1) unstable; urgency=low
+
+ * New upstream release.
+- Fix UnboundLocalError: local variable 'new_node' referenced before
+ assignment (Closes: #675818)
+ * debian/control: Add missing build-dependency on cmdtest.
+
+ -- Lars Wirzenius l...@liw.fi Sat, 06 Oct 2012 10:27:20 +0100
+
python-larch (1.20120527-1) unstable; urgency=low
* New upstream release.
diff -Nru python-larch-1.20120527/debian/control
python-larch-1.20121006/debian/control
--- python-larch-1.20120527/debian/control 2012-10-06 11:59:01.0
+0100
+++ python-larch-1.20121006/debian/control 2012-10-06 11:59:01.0
+0100
@@ -5,7 +5,7 @@
Standards-Version: 3.9.3
Build-Depends: debhelper (= 7.3.8), python (= 2.6.6-3~),
python-coverage-test-runner, python-tracing, python-sphinx,
-python-cliapp (= 0.14), python-ttystatus
+python-cliapp (= 0.14), python-ttystatus, cmdtest
X-Python-Version: = 2.6
Package: python-larch
diff -Nru python-larch-1.20120527/larch/fsck.py
python-larch-1.20121006/larch/fsck.py
--- python-larch-1.20120527/larch/fsck.py 2012-05-27 10:44:29.0
+0100
+++ python-larch-1.20121006/larch/fsck.py 2012-10-06 10:30:43.0
+0100
@@ -104,7 +104,7 @@
new_node = larch.IndexNode(node.id, keys,
[node[k] for k in keys])
self.fsck.forest.node_store.put_node(new_node)
-tracing.trace('fixed it: %s' % new_node.keys())
+tracing.trace('fixed it: %s' % new_node.keys())
class CheckRoot(WorkItem):
diff -Nru python-larch-1.20120527/larch/__init__.py
python-larch-1.20121006/larch/__init__.py
--- python-larch-1.20120527/larch/__init__.py 2012-05-27 10:44:29.0
+0100
+++ python-larch-1.20121006/larch/__init__.py 2012-10-06 10:30:43.0
+0100
@@ -14,7 +14,7 @@
# along with this program. If not, see http://www.gnu.org/licenses/.
-__version__ = '1.20120527'
+__version__ = '1.20121006'
class Error(Exception):
diff -Nru python-larch-1.20120527/NEWS python-larch-1.20121006/NEWS
--- python-larch-1.20120527/NEWS2012-05-27 10:44:29.0 +0100
+++ python-larch-1.20121006/NEWS2012-10-06 10:30:43.0 +0100
@@ -2,7 +2,16 @@
==
These are the release notes for larch, a Python implementation of a
-copy-on-write B-tree, designed by Odah Rodeh.
+copy-on-write B-tree, designed by Ohad Rodeh.
+
+Version 1.20121006
+--
+
+* Critical bug fix: an indentation problem in the Python code was fixed.
+ A line was intended wrong, resulting it to not be included in the right
+ block, and therefore not having access to the variable created in that
+ block.
+* Bug fix: The Debian packaging was missing a build dependency on cmdtest.
Version 1.20120527, released 2012-05-27
---
unblock python-larch/1.20121006-1
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (500,
Bug#689752: marked as done (unblock tiff3-3.9.6-9 and tiff-4.0.2-4)
Your message dated Sat, 06 Oct 2012 13:39:07 +0200 with message-id 5070185b.1040...@thykier.net and subject line Re: Bug#689752: unblock tiff3-3.9.6-9 and tiff-4.0.2-4 has caused the Debian Bug report #689752, regarding unblock tiff3-3.9.6-9 and tiff-4.0.2-4 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 689752: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=689752 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Usertags: unblock Please unblock tiff3-3.9.6-9 and tiff-4.0.2-4, which fix CVE-2012-4447 and address RC security bug #688944. I had uploaded tiff3-3.9.6-8 and tiff-4.0.2-3, which fixed CVE-2012-4447 but claimed to fix non-existent CVE-2012-4777. Ugh. My dcut was a few seconds too late. So those versions only lived a few minutes. The bug was only reported against the tiff package but affects both tiff and tiff3. -- Jay Berkenbilt q...@debian.org ---End Message--- ---BeginMessage--- On 2012-10-05 23:43, Jay Berkenbilt wrote: Package: release.debian.org Usertags: unblock Please unblock tiff3-3.9.6-9 and tiff-4.0.2-4, which fix CVE-2012-4447 and address RC security bug #688944. I had uploaded tiff3-3.9.6-8 and tiff-4.0.2-3, which fixed CVE-2012-4447 but claimed to fix non-existent CVE-2012-4777. Ugh. My dcut was a few seconds too late. So those versions only lived a few minutes. The bug was only reported against the tiff package but affects both tiff and tiff3. Unblocked both, thanks. ~Niels---End Message---
Bug#689795: marked as done (unblock: python-larch/1.20121006-1)
Your message dated Sat, 06 Oct 2012 13:40:22 +0200
with message-id 507018a6.3050...@dogguy.org
and subject line Re: Bug#689795: unblock: python-larch/1.20121006-1
has caused the Debian Bug report #689795,
regarding unblock: python-larch/1.20121006-1
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
689795: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=689795
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
---BeginMessage---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
I humbly request that the release team allow the recently uploaded
python-larch package version 1.20121006-1 into wheezy before the
release. It fixes two bugs, one of which was reported to Debian:
* #675818: UnboundLocalError: local variable 'new_node' referenced
before assignment
- this bug is of normal severity, but could arguably be important
- what happens is that when the fsck feature of Obnam (my backup
program) is used in fix problems and do not just report them
mode, the program crashes because of an unknown local variable
name
- the problem is that I had inadvertently indented a line wrongly:
the line logs the value of a variable, but is not indented to be
inside the block in which the variable exists
- the fix is a one-line change to indent the problematic line to
the correct level
* the unreported problem is that the package is using the cmdtest tool
during build time to run tests, but is lacking this in the build
dependencies
- I apologise profusely for not reporting a bug for this myself
I am also upstream of python-larch, and have chosen to make a new
upstream release to include these fixes. I hope that is not a problem
for the release team.
An additional change, apart from a new entry in the NEWS file, is
that I fixed the spelling of the name of the person who developed the
B-tree variant the python-larch package implements.
The debdiff is below.
I hope the release team is in good health, and that this request of
mine leaves you in good spirits.
diff -Nru python-larch-1.20120527/debian/changelog
python-larch-1.20121006/debian/changelog
--- python-larch-1.20120527/debian/changelog2012-10-06 11:59:01.0
+0100
+++ python-larch-1.20121006/debian/changelog2012-10-06 11:59:01.0
+0100
@@ -1,3 +1,12 @@
+python-larch (1.20121006-1) unstable; urgency=low
+
+ * New upstream release.
+- Fix UnboundLocalError: local variable 'new_node' referenced before
+ assignment (Closes: #675818)
+ * debian/control: Add missing build-dependency on cmdtest.
+
+ -- Lars Wirzenius l...@liw.fi Sat, 06 Oct 2012 10:27:20 +0100
+
python-larch (1.20120527-1) unstable; urgency=low
* New upstream release.
diff -Nru python-larch-1.20120527/debian/control
python-larch-1.20121006/debian/control
--- python-larch-1.20120527/debian/control 2012-10-06 11:59:01.0
+0100
+++ python-larch-1.20121006/debian/control 2012-10-06 11:59:01.0
+0100
@@ -5,7 +5,7 @@
Standards-Version: 3.9.3
Build-Depends: debhelper (= 7.3.8), python (= 2.6.6-3~),
python-coverage-test-runner, python-tracing, python-sphinx,
-python-cliapp (= 0.14), python-ttystatus
+python-cliapp (= 0.14), python-ttystatus, cmdtest
X-Python-Version: = 2.6
Package: python-larch
diff -Nru python-larch-1.20120527/larch/fsck.py
python-larch-1.20121006/larch/fsck.py
--- python-larch-1.20120527/larch/fsck.py 2012-05-27 10:44:29.0
+0100
+++ python-larch-1.20121006/larch/fsck.py 2012-10-06 10:30:43.0
+0100
@@ -104,7 +104,7 @@
new_node = larch.IndexNode(node.id, keys,
[node[k] for k in keys])
self.fsck.forest.node_store.put_node(new_node)
-tracing.trace('fixed it: %s' % new_node.keys())
+tracing.trace('fixed it: %s' % new_node.keys())
class CheckRoot(WorkItem):
diff -Nru python-larch-1.20120527/larch/__init__.py
python-larch-1.20121006/larch/__init__.py
--- python-larch-1.20120527/larch/__init__.py 2012-05-27 10:44:29.0
+0100
+++ python-larch-1.20121006/larch/__init__.py 2012-10-06 10:30:43.0
+0100
@@ -14,7 +14,7 @@
# along with this program. If not, see http://www.gnu.org/licenses/.
-__version__ = '1.20120527'
+__version__ = '1.20121006'
class Error(Exception):
diff -Nru python-larch-1.20120527/NEWS python-larch-1.20121006/NEWS
--- python-larch-1.20120527/NEWS2012-05-27 10:44:29.0 +0100
+++
Re: Freeze exception for csound
On 2012-09-30 00:50, Felipe Sateler wrote: Dear release team, Would you accept a freeze exception for csound version 1:5.17.11~dfsg-2 (just uploaded), to include the attached patch (no other changes)? The build system wrongly passes the -package csnd flag to the SWIG interface wrappers, which causes the csound JNI library to fail to load. The patch corrects this issue, and comes from upstream. Not fixing this bug means the JNI library provided by libcsnd-java is useless. Unblocked, thanks. Next time, please consider filing an unblock bug - they are much easier for us to track. ~Niels -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/50701bb9.9010...@thykier.net
Bug#689360: marked as done (unblock: at-spi2-core/2.5.3-2)
Your message dated Sat, 06 Oct 2012 14:02:19 +0200
with message-id 50701dcb.3000...@thykier.net
and subject line Re: Bug#689360: unblock: at-spi2-core/2.5.3-2
has caused the Debian Bug report #689360,
regarding unblock: at-spi2-core/2.5.3-2
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
689360: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=689360
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
---BeginMessage---
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Hello,
Please unblock package at-spi2-core
unblock at-spi2-core/2.5.3-2
As Bug#663027 shows, the at-spi2-core package does not play well with
old versions of gdm: it freezes on keyboard typing. That's why Mario
added a Breaks: gdm3 ( 3.4) to make sure that gdm gets upgraded to a
working version.
In addition, patches/pl contains the upstream polish translation update.
Thanks,
Samuel
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (990, 'testing'), (500, 'unstable'), (500, 'stable'), (1,
'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.0.4 (SMP w/8 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
--
Samuel
Now I know someone out there is going to claim, Well then, UNIX is intuitive,
because you only need to learn 5000 commands, and then everything else follows
from that! Har har har!
(Andy Bates in comp.os.linux.misc, on intuitive interfaces, slightly
defending Macs.)
diff -Nru at-spi2-core-2.5.3/debian/changelog
at-spi2-core-2.5.3/debian/changelog
--- at-spi2-core-2.5.3/debian/changelog 2012-06-29 04:35:57.0 +0200
+++ at-spi2-core-2.5.3/debian/changelog 2012-09-30 17:51:08.0 +0200
@@ -1,3 +1,13 @@
+at-spi2-core (2.5.3-2) unstable; urgency=low
+
+ [ Mario Lang ]
+ * Add Breaks on gdm3 3.4 (Closes: Bug#663027).
+
+ [ Samuel Thibault ]
+ * patches/pl: Cherry-pick from upstream: Update pl translation.
+
+ -- Samuel Thibault sthiba...@debian.org Sun, 30 Sep 2012 17:51:06 +0200
+
at-spi2-core (2.5.3-1) unstable; urgency=low
[ Samuel Thibault ]
diff -Nru at-spi2-core-2.5.3/debian/control at-spi2-core-2.5.3/debian/control
--- at-spi2-core-2.5.3/debian/control 2012-06-29 04:35:25.0 +0200
+++ at-spi2-core-2.5.3/debian/control 2012-09-30 17:17:15.0 +0200
@@ -21,6 +21,7 @@
Architecture: any
Multi-Arch: foreign
Depends: ${misc:Depends}, ${shlibs:Depends}
+Breaks: gdm3 ( 3.4)
Description: Assistive Technology Service Provider Interface (dbus core)
This package contains the core components of GNOME Accessibility.
diff -Nru at-spi2-core-2.5.3/debian/patches/pl
at-spi2-core-2.5.3/debian/patches/pl
--- at-spi2-core-2.5.3/debian/patches/pl1970-01-01 01:00:00.0
+0100
+++ at-spi2-core-2.5.3/debian/patches/pl2012-09-30 17:13:45.0
+0200
@@ -0,0 +1,113 @@
+commit 0209f5bb65f632a11aac1642e56a4289aa2f3132
+Author: Piotr Drąg piotrd...@gmail.com
+Date: Sat Sep 1 20:47:11 2012 +0200
+
+Updated Polish translation
+
+diff --git a/po/pl.po b/po/pl.po
+index eed3d73..968f9f3 100644
+--- a/po/pl.po
b/po/pl.po
+@@ -4,12 +4,15 @@
+ # pomóc w jego rozwijaniu i pielęgnowaniu, napisz do nas:
+ # gnom...@aviary.pl
+ # -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
++# Artur Flinta afli...@at.kernel.pl, 2003.
++# Piotr Drąg piotrd...@gmail.com, 2011-2012.
++# Aviary.pl gnom...@aviary.pl, 2011-2012.
+ msgid
+ msgstr
+ Project-Id-Version: at-spi2-core\n
+ Report-Msgid-Bugs-To: \n
+-POT-Creation-Date: 2011-03-28 20:51+0200\n
+-PO-Revision-Date: 2011-03-28 20:52+0200\n
++POT-Creation-Date: 2012-09-01 20:46+0200\n
++PO-Revision-Date: 2012-09-01 20:47+0200\n
+ Last-Translator: Piotr Drąg piotrd...@gmail.com\n
+ Language-Team: Polish gnom...@aviary.pl\n
+ Language: pl\n
+@@ -21,82 +24,7 @@ msgstr
+ X-Poedit-Language: Polish\n
+ X-Poedit-Country: Poland\n
+
+-#: ../atspi/atspi-misc.c:290
+-#, c-format
+-msgid AT-SPI: Unknown signature %s for RemoveAccessible
+-msgstr AT-SPI: nieznany podpis %s dla RemoveAccessible
+-
+-#: ../atspi/atspi-misc.c:327
+-#, c-format
+-msgid AT-SPI: Error calling getRoot for %s: %s
+-msgstr AT-SPI: błąd podczas wywoływania getRoot dla %s: %s
+-
+-#: ../atspi/atspi-misc.c:485
+-#, c-format
+-msgid AT-SPI: Error in GetItems, sender=%s, error=%s
+-msgstr AT-SPI: Błąd w GetItems, nadawca=%s, błąd=%s
+-
+-#: ../atspi/atspi-misc.c:587
+-#, c-format
+-msgid
+-AT-SPI: Called _atspi_dbus_return_accessible_from_message with strange
+-signature %s
+-msgstr
Bug#689800: nmu: olsrd_0.6.3-5
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: binnmu nmu olsrd_0.6.3-5 . amd64 . -m Rebuild in a clean sid environment. olsrd/amd64 was not built in a Debian sid environment and has a unsatisfiable Depends: libc6 (= 2.15) that can be solved by rebuilding in sid. Andreas -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20121006122132.27260.3389.report...@cake.ae.cs.uni-frankfurt.de
Bug#689180: marked as done (unblock: meta-gnome3/1:3.4+4)
Your message dated Sat, 06 Oct 2012 14:21:40 +0200 with message-id 50702254.5090...@thykier.net and subject line Re: Bug#689180: unblock: meta-gnome3/1:3.4+4 has caused the Debian Bug report #689180, regarding unblock: meta-gnome3/1:3.4+4 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 689180: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=689180 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi, sorry to ask again but there was a mistake in meta-gnome3 1:3.4+3. Changelog says it all. meta-gnome3 (1:3.4+4) unstable; urgency=low * Downgrade xul-ext-gnome-keyring to Suggests, it is only available in experimental. Closes: #689176. unblock meta-gnome3/1:3.4+4 Thanks, -- .''`. Josselin Mouette : :' : `. `' `- ---End Message--- ---BeginMessage--- On 2012-09-29 22:08, Josselin Mouette wrote: Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Hi, sorry to ask again but there was a mistake in meta-gnome3 1:3.4+3. Changelog says it all. meta-gnome3 (1:3.4+4) unstable; urgency=low * Downgrade xul-ext-gnome-keyring to Suggests, it is only available in experimental. Closes: #689176. unblock meta-gnome3/1:3.4+4 Thanks, Unblocked; thanks. ~Niels---End Message---
unblock gnuradio 3.6.1-1
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Dear release team, I've uploaded ia64 binaries for gnuradio 3.6.1-1. A while ago there was some issue with the ia64 buildd machine, but indeed gnuradio 3.6.1-1 compiles just fine on ia64. So I am expecting any minute that the testing migration excuses will no longer say out of date on ia64: and I am sending this message along since the excuse Not touching package due to block request by freeze is also listed. Note: The gnuradio 3.6.1-1 source and other binary architectures went into the archive before the freeze - [2012-06-12] Accepted 3.6.1-1 in unstable (low) (A. Maitland Bottoms) gnuradio 3.6.1-1 would be a good candidate for inclusion in Wheezy. Thanks, - -Maitland -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Processed by Mailcrypt 3.5.9 http://mailcrypt.sourceforge.net/ iEYEARECAAYFAlBwMtMACgkQkwbJvNrxBUyhmgCfWqwhZQGMrvJ9fjeTjwPMc+dB No8Ani5Q3iyPQLQuW5VWGpX3Z0xzuYx7 =3RCd -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20592.13025.266072.622...@airborne.nrl.navy.mil
Bug#689814: unblock: gnuradio/3.6.1-1
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock The gnuradio 3.6.1-1 source was accepted into unstable on 12 June 2012: http://packages.qa.debian.org/g/gnuradio/news/20120612T181727Z.html Since that was before the Wheezy freeze, this should apply: Any packages in unstable before the 19:52 dinstall begins on that day will be given automatic freeze exceptions (for the specific version in unstable). All other architectures built before the freeze, the ia64 binaries only recently have been uploaded. (Subject: gnuradio_3.6.1-1_ia64.changes ACCEPTED into unstable Date: Sat, 06 Oct 2012 04:17:55 +) It would be good to release Wheezy with gnuradio 3.6.1 - -Maitland -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Processed by Mailcrypt 3.5.9 http://mailcrypt.sourceforge.net/ iEYEARECAAYFAlBwVCAACgkQkwbJvNrxBUzhAgCfXQ37ln8i8GnpadAcQJeAeJ2T kGsAn2VVM2qXLucIg3anZw1jCCYLzSnA =S4F+ -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20592.21540.844022.527...@airborne.nrl.navy.mil
Bug#689818: unblock: xml-light/2.2-15
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package xml-light.
xml-light/2.2-15 fixes a security issue (namely CVE-2012-3514). It
changed an internal datastructure from a Hash table to a Map to avoid
hash collision attacks.
This upload required the rebuild of its reverse dependencies because
ABI changed. AFAIK, all r-deps were rebuilt sucessfully.
Debdiff between -14 and -15 is attached for your convenience.
unblock xml-light/2.2-15
Regards,
--
Mehdi
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.2.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to en_GB.UTF-8)
Shell: /bin/sh linked to /bin/dash
diff -Nru xml-light-2.2/debian/changelog xml-light-2.2/debian/changelog
--- xml-light-2.2/debian/changelog 2012-06-07 13:55:42.0 +0200
+++ xml-light-2.2/debian/changelog 2012-10-05 15:31:52.0 +0200
@@ -1,3 +1,14 @@
+xml-light (2.2-15) unstable; urgency=low
+
+ [ Sylvain Le Gall ]
+ * Remove Sylvain Le Gall from uploaders
+
+ [ Mehdi Dogguy ]
+ * Fix CVE-2012-3514 (Closes: #685584).
+- add 06_CVE-2012-3514.diff
+
+ -- Mehdi Dogguy me...@debian.org Fri, 05 Oct 2012 15:31:52 +0200
+
xml-light (2.2-14) unstable; urgency=low
* Do not try to install the .cmxs plugin on architectures where
diff -Nru xml-light-2.2/debian/control xml-light-2.2/debian/control
--- xml-light-2.2/debian/control 2012-06-05 16:38:56.0 +0200
+++ xml-light-2.2/debian/control 2012-10-01 14:40:35.0 +0200
@@ -3,7 +3,6 @@
Priority: optional
Maintainer: Debian OCaml Maintainers debian-ocaml-ma...@lists.debian.org
Uploaders:
- Sylvain Le Gall gil...@debian.org,
Mehdi Dogguy me...@debian.org
Build-Depends:
cdbs (= 0.4.23-1.1),
diff -Nru xml-light-2.2/debian/patches/06_CVE-2012-3514.diff xml-light-2.2/debian/patches/06_CVE-2012-3514.diff
--- xml-light-2.2/debian/patches/06_CVE-2012-3514.diff 1970-01-01 01:00:00.0 +0100
+++ xml-light-2.2/debian/patches/06_CVE-2012-3514.diff 2012-10-01 15:40:17.0 +0200
@@ -0,0 +1,153 @@
+--- a/dtd.ml
b/dtd.ml
+@@ -93,16 +93,18 @@
+
+ type dtd = dtd_item list
+
+-type ('a,'b) hash = ('a,'b) Hashtbl.t
++module StringMap = Map.Make(String)
++
++type 'a map = 'a StringMap.t ref
+
+ type checked = {
+- c_elements : (string,dtd_element_type) hash;
+- c_attribs : (string,(string,(dtd_attr_type * dtd_attr_default)) hash) hash;
++ c_elements : dtd_element_type map;
++ c_attribs : (dtd_attr_type * dtd_attr_default) map map;
+ }
+
+ type dtd_state = {
+- elements : (string,dtd_element_type) hash;
+- attribs : (string,(string,(dtd_attr_type * dtd_attr_default)) hash) hash;
++ elements : dtd_element_type map;
++ attribs : (dtd_attr_type * dtd_attr_default) map map;
+ mutable current : dtd_element_type;
+ mutable curtag : string;
+ state : (string * dtd_element_type) Stack.t;
+@@ -113,7 +115,21 @@
+ let _raises e =
+ file_not_found := e
+
+-let empty_hash = Hashtbl.create 0
++let create_map() = ref StringMap.empty
++
++let empty_map = create_map()
++
++let find_map m k = StringMap.find k (!m)
++
++let set_map m k v = m := StringMap.add k v (!m)
++
++let unset_map m k = m := StringMap.remove k (!m)
++
++let iter_map f m = StringMap.iter f (!m)
++
++let fold_map f m = StringMap.fold f (!m)
++
++let mem_map m k = StringMap.mem k (!m)
+
+ let pos source =
+ let line, lstart, min, max = Xml_lexer.pos source in
+@@ -158,45 +174,45 @@
+ raise e
+
+ let check dtd =
+- let attribs = Hashtbl.create 0 in
+- let hdone = Hashtbl.create 0 in
+- let htodo = Hashtbl.create 0 in
++ let attribs = create_map () in
++ let hdone = create_map () in
++ let htodo = create_map () in
+ let ftodo tag from =
+ try
+- ignore(Hashtbl.find hdone tag);
++ ignore(find_map hdone tag);
+ with
+ Not_found -
+ try
+- match Hashtbl.find htodo tag with
+- | None - Hashtbl.replace htodo tag from
++ match find_map htodo tag with
++ | None - set_map htodo tag from
+ | Some _ - ()
+ with
+ Not_found -
+- Hashtbl.add htodo tag from
++ set_map htodo tag from
+ in
+ let fdone tag edata =
+ try
+- ignore(Hashtbl.find hdone tag);
++ ignore(find_map hdone tag);
+ raise (Check_error (ElementDefinedTwice tag));
+ with
+ Not_found -
+-Hashtbl.remove htodo tag;
+-Hashtbl.add hdone tag edata
++unset_map htodo tag;
++set_map hdone tag edata
+ in
+ let fattrib tag aname adata =
+ let h = (try
+-Hashtbl.find attribs tag
++find_map attribs tag
+ with
+ Not_found -
+- let h = Hashtbl.create 1 in
+- Hashtbl.add attribs tag h;
++ let h = create_map () in
++ set_map attribs tag h;
+ h) in
+ try
+- ignore(Hashtbl.find h aname);
++ ignore(find_map h aname);
+
Re: Freeze exception for csound
On Oct 6, 2012 7:53 AM, Niels Thykier ni...@thykier.net wrote: On 2012-09-30 00:50, Felipe Sateler wrote: Dear release team, Would you accept a freeze exception for csound version 1:5.17.11~dfsg-2 (just uploaded), to include the attached patch (no other changes)? The build system wrongly passes the -package csnd flag to the SWIG interface wrappers, which causes the csound JNI library to fail to load. The patch corrects this issue, and comes from upstream. Not fixing this bug means the JNI library provided by libcsnd-java is useless. Unblocked, thanks. Thanks to you. Next time, please consider filing an unblock bug - they are much easier for us to track. Ok, will do. ~Niels
Bug#689772: 0.6.3-3 was targeted to wheezy
As an upstream committer on olsrd and a committer on the olsrd packaging, I'd like to second this request. The work we did up to 0.6.3-4 was always targeted for wheezy, and 0.6.3-5 is purely to fix lintian warnings and add hardening support. -- To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/507067dc.3050...@eds.org
Bug#689822: release.debian.org: please accept the package wims_4.03a-8 into testing-proposed-updates
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: britney I received one week ago an automated e-mail announcing that wims was removed from testing. The automated information about the reason of this operation was a build-dependency on , node-uglify I checked that the package wims does not build-depend on node-uglify, and also rebuilt it successfully in a wheezy chroot thanks to pbuilder. Please would you accept the new package wims_4.03a-8 into testing-proposed-updates? It provides a fix for the RC bug #687947 which was sent three weeks ago. PLease take a look at the attached debdiff file. I shall await your response before uploading the new package. Thank you in advance. -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (990, 'testing'), (650, 'stable'), (600, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-2-amd64 (SMP w/2 CPU cores) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash diff -Nru wims-4.03a/debian/changelog wims-4.03a/debian/changelog --- wims-4.03a/debian/changelog 2012-06-24 16:12:50.0 +0200 +++ wims-4.03a/debian/changelog 2012-10-06 19:33:11.0 +0200 @@ -1,3 +1,12 @@ +wims (4.03a-8) testing-proposed-updates; urgency=low + + * removed files coming from upstream which are genrated by the +the script postinst. The fix is done by a few lines added to +the patch debian/patches/20root-makefile.patch +Closes: #687947 + + -- Georges Khaznadar georg...@ofset.org Sat, 06 Oct 2012 19:09:34 +0200 + wims (4.03a-7) unstable; urgency=low * modified the description, thanks to Justin B Rye. Closes: #678745 diff -Nru wims-4.03a/debian/patches/20root-makefile.patch wims-4.03a/debian/patches/20root-makefile.patch --- wims-4.03a/debian/patches/20root-makefile.patch 2012-03-09 11:13:51.0 +0100 +++ wims-4.03a/debian/patches/20root-makefile.patch 2012-10-06 19:37:24.0 +0200 @@ -4,7 +4,7 @@ --- /dev/null +++ b/Makefile -@@ -0,0 +1,223 @@ +@@ -0,0 +1,230 @@ +DESTDIR = +WIMS_VERSION = 4.03a + @@ -29,6 +29,13 @@ + rm -rf wims/public_html/gifs/themes/$$d/.DS_Store; \ + rm -rf wims/public_html/gifs/themes/$$d/.svn; \ + done ++ # remove files which are touched by postinst scripts ++ rm -f wims/log/unsecure ++ for f in supervisor.phtml visitor.phtml; do \ ++ for d in default standard; do \ ++ rm -f wims/public_html/themes/$$d/$$f; \ ++ done; \ ++ done + +javabuild: + # builds the java executables
Bug#689825: unblock: pymongo/2.2-2
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package pymongo
Version 2.2-2 is affected by bug #689283 and #688040
Version 2.2-3, currently in Unstable, fixes those two bugs (and has no other
changes)
Thanks!
diff -Nru pymongo-2.2/debian/changelog pymongo-2.2/debian/changelog
--- pymongo-2.2/debian/changelog2012-06-26 23:35:28.0 +0100
+++ pymongo-2.2/debian/changelog2012-10-06 17:17:46.0 +0100
@@ -1,3 +1,10 @@
+pymongo (2.2-3) unstable; urgency=low
+
+ * python-pymongo-ext now depends on python-bson-ext (Closes: #688040)
+ * Copyright updated (Closes: #689283)
+
+ -- Federico Ceratto federico.cera...@gmail.com Sat, 06 Oct 2012 17:16:25
+0100
+
pymongo (2.2-2) unstable; urgency=low
* Dependency added (Closes: #678471)
diff -Nru pymongo-2.2/debian/control pymongo-2.2/debian/control
--- pymongo-2.2/debian/control 2012-06-26 23:35:28.0 +0100
+++ pymongo-2.2/debian/control 2012-10-06 17:17:46.0 +0100
@@ -32,6 +32,7 @@
, ${python:Depends}
, ${misc:Depends}
, python-pymongo
+ , python-bson-ext
Recommends: python-gridfs (= ${source:Version})
Provides: ${python:Provides}
Description: C-coded extension to the python-pymongo package
diff -Nru pymongo-2.2/debian/copyright pymongo-2.2/debian/copyright
--- pymongo-2.2/debian/copyright2012-06-26 23:35:28.0 +0100
+++ pymongo-2.2/debian/copyright2012-10-06 17:17:46.0 +0100
@@ -2,7 +2,19 @@
Source: http://api.mongodb.org/python/
Files: *
-Copyright: © 2011, Mike Dirolf m...@10gen.com
+Copyright: © 2009-2012, Mike Dirolf m...@10gen.com 10gen, Inc.
+ © 2009-2012, Various contributors, see contributors.rst
+License: Apache
+Comment: The contributors.rst contains a long, variable list
+ hence it is not included in this file.
+
+Files: bson/time64.c
+Copyright: © 2007-2010, Michael G Schwern
+License: MIT
+
+Files: bson/encoding_helpers.c
+Copyright: © 2009-2012 10gen, Inc.
+ © 2011, Portions Copyright 2001 Unicode, Inc.
License: Apache
Files: debian/*
@@ -23,3 +35,22 @@
See the License for the specific language governing permissions and
limitations under the License.
+License: MIT
+ Permission is hereby granted, free of charge, to any person obtaining a copy
+ of this software and associated documentation files (the Software), to deal
+ in the Software without restriction, including without limitation the rights
+ to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+ copies of the Software, and to permit persons to whom the Software is
+ furnished to do so, subject to the following conditions:
+ .
+ The above copyright notice and this permission notice shall be included in
+ all copies or substantial portions of the Software.
+ .
+ THE SOFTWARE IS PROVIDED AS IS, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+ IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+ FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+ AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+ LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+ OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+ THE SOFTWARE.
+
diff -Nru pymongo-2.2/debian/rules pymongo-2.2/debian/rules
--- pymongo-2.2/debian/rules2012-06-26 23:35:28.0 +0100
+++ pymongo-2.2/debian/rules2012-10-06 17:17:46.0 +0100
@@ -14,6 +14,10 @@
override_dh_installchangelogs:
dh_installchangelogs doc/changelog.rst
+override_dh_installdocs:
+ dh_installdocs
+ dh_installdocs -A doc/contributors.rst
+
override_dh_auto_clean:
rm -rf debian/html
find doc -name *.pyc -exec rm -rf {} +
unblock pymongo/2.2-3
-- System Information:
Debian Release: wheezy/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 3.2.0-3-686-pae (SMP w/2 CPU cores)
Locale: LANG=en_IE.UTF-8, LC_CTYPE=en_IE.UTF-8 (charmap=ANSI_X3.4-1968)
(ignored: LC_ALL set to C)
Shell: /bin/sh linked to /bin/dash
--
To UNSUBSCRIBE, email to debian-release-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20121006184817.18095.86217.reportbug@ehm
Re: unblock gnuradio 3.6.1-1
A. Maitland Bottoms bott...@debian.org writes: gnuradio 3.6.1-1 would be a good candidate for inclusion in Wheezy. FWIW, I agree. Bdale pgpI7zcNTVeId.pgp Description: PGP signature
Bug#689839: unblock: ruby1.9.1/1.9.3.194-2
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package ruby1.9.1
I've just uploaded ruby1.9.1/1.9.3.194-2 to unstable. It contains a
security fix for CVE-2011-1005, which closes Debian bug #689075.
Attached you will find a debdiff against the version currently in
wheezy.
unblock ruby1.9.1/1.9.3.194-2
-- System Information:
Debian Release: wheezy/sid
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 3.2.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=pt_BR.utf8, LC_CTYPE=pt_BR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
--
Antonio Terceiro terce...@debian.org
diff -Nru ruby1.9.1-1.9.3.194/debian/changelog ruby1.9.1-1.9.3.194/debian/changelog
--- ruby1.9.1-1.9.3.194/debian/changelog 2012-06-02 08:10:26.0 -0300
+++ ruby1.9.1-1.9.3.194/debian/changelog 2012-10-06 16:29:43.0 -0300
@@ -1,3 +1,12 @@
+ruby1.9.1 (1.9.3.194-2) unstable; urgency=low
+
+ * debian/patches/20120927-cve_2011_1005.patch: patch sent by upstream;
+fixes CVE-2011-1005 which was thought of as not affecting the Ruby 1.9.x
+series (Closes: #689075). Thanks to Tyler Hicks tyhi...@canonical.com
+for reporting the issue.
+
+ -- Antonio Terceiro terce...@debian.org Sat, 06 Oct 2012 16:29:42 -0300
+
ruby1.9.1 (1.9.3.194-1) unstable; urgency=low
[ Lucas Nussbaum ]
diff -Nru ruby1.9.1-1.9.3.194/debian/patches/20120927-cve_2011_1005.patch ruby1.9.1-1.9.3.194/debian/patches/20120927-cve_2011_1005.patch
--- ruby1.9.1-1.9.3.194/debian/patches/20120927-cve_2011_1005.patch 1969-12-31 21:00:00.0 -0300
+++ ruby1.9.1-1.9.3.194/debian/patches/20120927-cve_2011_1005.patch 2012-10-02 10:06:08.0 -0300
@@ -0,0 +1,93 @@
+Description: Prevent untainted strings from being incorrectly tainted
+ This flaw allowed untainted strings to be tainted and modified, even in
+ safe level 4.
+Origin: upstream
+--- a/error.c
b/error.c
+@@ -569,7 +569,6 @@ exc_to_s(VALUE exc)
+
+ if (NIL_P(mesg)) return rb_class_name(CLASS_OF(exc));
+ r = rb_String(mesg);
+-OBJ_INFECT(r, exc);
+ return r;
+ }
+
+@@ -853,11 +852,7 @@ name_err_to_s(VALUE exc)
+
+ if (NIL_P(mesg)) return rb_class_name(CLASS_OF(exc));
+ StringValue(str);
+-if (str != mesg) {
+- rb_iv_set(exc, mesg, mesg = str);
+-}
+-OBJ_INFECT(mesg, exc);
+-return mesg;
++return str;
+ }
+
+ /*
+@@ -988,7 +983,6 @@ name_err_mesg_to_str(VALUE obj)
+ args[2] = d;
+ mesg = rb_f_sprintf(NAME_ERR_MESG_COUNT, args);
+ }
+-OBJ_INFECT(mesg, obj);
+ return mesg;
+ }
+
+--- a/test/ruby/test_exception.rb
b/test/ruby/test_exception.rb
+@@ -333,4 +333,55 @@ end.join
+ load(t.path)
+ end
+ end
++
++ def test_to_s_taintness_propagation
++for exc in [Exception, NameError]
++ m = abcdefg
++ e = exc.new(m)
++ e.taint
++ s = e.to_s
++ assert_equal(false, m.tainted?,
++ #{exc}#to_s should not propagate taintness)
++ assert_equal(false, s.tainted?,
++ #{exc}#to_s should not propagate taintness)
++end
++
++o = Object.new
++def o.to_str
++ foo
++end
++o.taint
++e = NameError.new(o)
++s = e.to_s
++assert_equal(false, s.tainted?)
++ end
++
++ # CVE-2011-1005
++ def test_exception_to_s_should_not_propagate_untrustedness
++favorite_lang = Ruby
++
++for exc in [Exception, NameError]
++ assert_raise(SecurityError) do
++lambda {
++ $SAFE = 4
++ exc.new(favorite_lang).to_s
++ favorite_lang.replace(Python)
++}.call
++ end
++end
++
++assert_raise(SecurityError) do
++ lambda {
++$SAFE = 4
++o = Object.new
++o.singleton_class.send(:define_method, :to_str) {
++ favorite_lang
++}
++NameError.new(o).to_s
++favorite_lang.replace(Python)
++ }.call
++end
++
++assert_equal(Ruby, favorite_lang)
++ end
+ end
diff -Nru ruby1.9.1-1.9.3.194/debian/patches/series ruby1.9.1-1.9.3.194/debian/patches/series
--- ruby1.9.1-1.9.3.194/debian/patches/series 2012-05-27 19:46:34.0 -0300
+++ ruby1.9.1-1.9.3.194/debian/patches/series 2012-09-30 17:40:56.0 -0300
@@ -16,3 +16,4 @@
110829-hurd_dirent_usage.patch
hurd-path-max.diff
20120517-r35434.patch
+20120927-cve_2011_1005.patch
signature.asc
Description: Digital signature
