date:20210601

Bug#989364: scilab: Multiple security issues in ezxml

2021-06-01 Thread Moritz Muehlenhoff

Package: scilab
Severity: important
Tags: security
X-Debbugs-Cc: Debian Security Team 

Multiple security issues were found in ezxml, which scilab bundles:

CVE-2021-31598:
https://sourceforge.net/p/ezxml/bugs/28/

CVE-2021-31348 / CVE-2021-31347:
https://sourceforge.net/p/ezxml/bugs/27/

CVE-2021-31229:
https://sourceforge.net/p/ezxml/bugs/26/

CVE-2021-30485:
https://sourceforge.net/p/ezxml/bugs/25/

CVE-2021-26222:
https://sourceforge.net/p/ezxml/bugs/22/

CVE-2021-26221:
https://sourceforge.net/p/ezxml/bugs/21/

CVE-2021-26220:
https://sourceforge.net/p/ezxml/bugs/23/

CVE-2019-20202:
https://sourceforge.net/p/ezxml/bugs/17

CVE-2019-20201
https://sourceforge.net/p/ezxml/bugs/16

CVE-2019-20200:
https://sourceforge.net/p/ezxml/bugs/19

CVE-2019-20199:
https://sourceforge.net/p/ezxml/bugs/18

CVE-2019-20198:
https://sourceforge.net/p/ezxml/bugs/20

CVE-2019-20007:
https://sourceforge.net/p/ezxml/bugs/13

CVE-2019-20006:
https://sourceforge.net/p/ezxml/bugs/15

CVE-2019-20005:
https://sourceforge.net/p/ezxml/bugs/14


-- 
debian-science-maintainers mailing list
debian-science-maintainers@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-science-maintainers

Processed: Re: Bug#989344: rviz: error while loading shared libraries: libOgreOverlay.so.1.12.5: cannot open shared object file: No such file or directory

2021-06-01 Thread Debian Bug Tracking System

Processing control commands:

> reassign -1 libogre-1.12 1.12.10+dfsg2-1
Bug #989344 [rviz] rviz: error while loading shared libraries: 
libOgreOverlay.so.1.12.5: cannot open shared object file: No such file or 
directory
Bug reassigned from package 'rviz' to 'libogre-1.12'.
No longer marked as found in versions ros-rviz/1.14.4+dfsg-3.
Ignoring request to alter fixed versions of bug #989344 to the same values 
previously set
Bug #989344 [libogre-1.12] rviz: error while loading shared libraries: 
libOgreOverlay.so.1.12.5: cannot open shared object file: No such file or 
directory
Marked as found in versions ogre-1.12/1.12.10+dfsg2-1.
> affects -1 rviz
Bug #989344 [libogre-1.12] rviz: error while loading shared libraries: 
libOgreOverlay.so.1.12.5: cannot open shared object file: No such file or 
directory
Added indication that 989344 affects rviz
> retitle -1 libogre-1.12: package name does not match soname
Bug #989344 [libogre-1.12] rviz: error while loading shared libraries: 
libOgreOverlay.so.1.12.5: cannot open shared object file: No such file or 
directory
Changed Bug title to 'libogre-1.12: package name does not match soname' from 
'rviz: error while loading shared libraries: libOgreOverlay.so.1.12.5: cannot 
open shared object file: No such file or directory'.

-- 
989344: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989344
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

-- 
debian-science-maintainers mailing list
debian-science-maintainers@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-science-maintainers

Bug#989344: rviz: error while loading shared libraries: libOgreOverlay.so.1.12.5: cannot open shared object file: No such file or directory

2021-06-01 Thread Jochen Sprickerhof


Control: reassign -1 libogre-1.12 1.12.10+dfsg2-1
Control: affects -1 rviz
Control: retitle -1 libogre-1.12: package name does not match soname

Hi,

* Johannes Schauer Marin Rodrigues  [2021-06-01 15:32]:

when trying to run rviz I get:

rviz: error while loading shared libraries: libOgreOverlay.so.1.12.5: cannot 
open shared object file: No such file or directory

But all my system has is /usr/lib/x86_64-linux-gnu/libOgreOverlay.so.1.12.10


Rviz was compiled against libogre-1.12 1.12.5+dfsg1-1+b1 which provided
libOgreOverlay.so.1.12.5. The upload of version 1.12.10+dfsg2-1 moved to
libOgreOverlay.so.1.12.10. This is due to Ogre having the complete version as
its soversion:

https://sources.debian.org/src/ogre-1.12/1.12.10+dfsg2-1/CMakeLists.txt/#L68

Following Debian policy 8.1 the package should probably be named
libogre1.12.10 but that's probably too late for bullseye.


Maybe a binNMU is needed? A rebuild of rviz in current Debian unstable
fixed the problem for me.


As rviz is the only reverse dependency of libogre-1.12, I will ask the release
team to schedule a binNMU and ignore this bug for bullseye.

Cheers Jochen


signature.asc
Description: PGP signature
-- 
debian-science-maintainers mailing list
debian-science-maintainers@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-science-maintainers

Bug#989344: rviz: error while loading shared libraries: libOgreOverlay.so.1.12.5: cannot open shared object file: No such file or directory

2021-06-01 Thread Johannes Schauer Marin Rodrigues

Package: rviz
Version: 1.14.4+dfsg-3
Severity: grave
Justification: renders package unusable

Hi,

when trying to run rviz I get:

rviz: error while loading shared libraries: libOgreOverlay.so.1.12.5: cannot 
open shared object file: No such file or directory

But all my system has is /usr/lib/x86_64-linux-gnu/libOgreOverlay.so.1.12.10

Maybe a binNMU is needed? A rebuild of rviz in current Debian unstable
fixed the problem for me.

Thanks!

cheers, josch

-- 
debian-science-maintainers mailing list
debian-science-maintainers@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-science-maintainers

Bug#989323: petsc: add support for ML (libtrilinos-ml-dev)

2021-06-01 Thread Martin Diehl

Package: petsc
Severity: wishlist
Tags: patch
X-Debbugs-Cc: martin.di...@kuleuven.be

Dear Maintainer,

Would it be possible to add support for ML, the preconditioner from Trilinos?
I am developing a software that uses PETSc with ML and it would be very
convenient to use the Debian package instead of installing PETSc from
source.

As far as I see, the following modifications would be sufficient:
1) Add 'libtrilinos-ml-dev' to 'Build-Depends' in 'control'
2) Add '--with-ml' to 'CONFIGURATON_OPTIONS' in 'rules'

Note that a similar quesion is raised in #847045 (libtrilinos-zoltan-dev).


-- System Information:
Debian Release: bullseye/sid
  APT prefers groovy-updates
  APT policy: (500, 'groovy-updates'), (500, 'groovy-security'), (500, 
'groovy'), (100, 'groovy-backports')
Architecture: amd64 (x86_64)

Kernel: Linux 5.8.0-50-generic (SMP w/2 CPU threads)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

-- 
debian-science-maintainers mailing list
debian-science-maintainers@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-science-maintainers

Bug#989364: scilab: Multiple security issues in ezxml

Processed: Re: Bug#989344: rviz: error while loading shared libraries: libOgreOverlay.so.1.12.5: cannot open shared object file: No such file or directory

Bug#989344: rviz: error while loading shared libraries: libOgreOverlay.so.1.12.5: cannot open shared object file: No such file or directory

Bug#989344: rviz: error while loading shared libraries: libOgreOverlay.so.1.12.5: cannot open shared object file: No such file or directory

Bug#989323: petsc: add support for ML (libtrilinos-ml-dev)

5 matches

Site Navigation

Mail list logo

Footer information