[DRE-maint] ruby-capybara_2.0.2-1_amd64.changes REJECTED

[Luca Falavigna]

Hi,

* lib/capybara/spec/public/*.js have different copyright holders than the one
  listed in copyright file
* lib/capybara/spec/public/jquery-ui.js lacks corresponding source

These files are in the upstream tarball, despite your README.source states the
opposite. You could want to double-check this issue.

Cheers,
Luca

===

Please feel free to respond to this email if you don't understand why
your files were rejected, or if you upload new files which address our
concerns.


___
Pkg-ruby-extras-maintainers mailing list
Pkg-ruby-extras-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers

[DRE-maint] Bug#705533: redmine: html escape? problem in the administration/settings dialog, projects and repositories tab

[Wim Bertels]

On Tue, 2013-04-16 at 11:34 +0200, Jérémy Lal wrote:
> On 16/04/2013 11:19, Wim Bertels wrote:
> > Package: redmine Version: 1.0.1-2 Severity: normal Tags: upstream
> > 
> > 
> > problem occured after safe-upgrade
> > 
> > As an administrator for redmine, u can use the webinterface for the
> > administration/settings dialog. In this dialog the projects and
> > repositories tab have a a problem with listing checkboxes rendering
> > them useless, it is impossible to use them, so u cannot choose a scm
> > or set the default project settings anymore (workaround for the
> > advanced, directly edit the redmine database, settings table)
> 
> Can you downgrade rails security updates from 2.3.5-1.2+squeeze8
> to 2.3.5-1.2+squeeze7, then 2.3.5-1.2+squeeze6, etc... until you
> find at which version it works again ?
> 
> There is a good chance the culprit is the latest rails security update,
> since nobody reported that bug before and 2.3.5-1.2+squeeze8 was made
> available this month.

check:
a downgrade of the following packages to squeeze7 (stable has squeeze8)
fixed the problem:
libactionmailer-ruby1.8_2.3.5-1.2+squeeze7_all.deb
libactiverecord-ruby1.8_2.3.5-1.2+squeeze7_all.deb
libactiveresource-ruby_2.3.5-1.2+squeeze7_all.deb
rails_2.3.5-1.2+squeeze7_all.deb
libactionmailer-ruby_2.3.5-1.2+squeeze7_all.deb
libactiverecord-ruby1.9.1_2.3.5-1.2+squeeze7_all.deb
libactivesupport-ruby1.8_2.3.5-1.2+squeeze7_all.deb  rails-doc_2.3.5-1.2
+squeeze7_all.deb
libactionpack-ruby1.8_2.3.5-1.2+squeeze7_all.deb
libactiverecord-ruby_2.3.5-1.2+squeeze7_all.deb
libactivesupport-ruby1.9.1_2.3.5-1.2+squeeze7_all.deb
rails-ruby1.8_2.3.5-1.2+squeeze7_all.deb
libactionpack-ruby_2.3.5-1.2+squeeze7_all.deb
libactiveresource-ruby1.8_2.3.5-1.2+squeeze7_all.deb
libactivesupport-ruby_2.3.5-1.2+squeeze7_all.deb

So indeed the problem persists in the upgrade to latest stable packages.

So if if u need a quick patch:
# get files
$ wget -r -l1 --no-parent -A.deb
http://snapshot.debian.org/archive/debian-security/20130212T211154Z/pool/updates/main/r/rails/
# then cd to dir where deb files just downloaded are
# install files
$ ls *squeeze7* | xargs dpkg -i
# logout of redmine
# restart apache
# everything should be fine now, security?

have to plant some flowers now,
Wim


___
Pkg-ruby-extras-maintainers mailing list
Pkg-ruby-extras-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers

[DRE-maint] Bug#705533: redmine: html escape? problem in the administration/settings dialog, projects and repositories tab

[Wim Bertels]

On Tue, 2013-04-16 at 12:03 +0200, Ondřej Surý wrote:
> Could it be the same as #705466? Can you check if the patch attached
> to #705466 fix your problem?

it's not necessarily the same bug (but could be related, since the
output behaviour is similar):
cf#705466=
The problem is, that an option list rendered by add_options with an
initial empty option leads to escaped option tags. (backports redmine)

in this case (#705533)
- The initial doens't have to be empty,
the problem occurs right after the upgrade.
- it's a stable debian with redmine installed out of the stable repository

mvg,
Wim


___
Pkg-ruby-extras-maintainers mailing list
Pkg-ruby-extras-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers

[DRE-maint] Bug#705533: redmine: html escape? problem in the administration/settings dialog, projects and repositories tab

[Wim Bertels]

Package: redmine
Version: 1.0.1-2
Severity: normal
Tags: upstream


problem occured after safe-upgrade

As an administrator for redmine,
u can use the webinterface for the administration/settings dialog.
In this dialog the projects and repositories tab have a a problem with listing 
checkboxes rendering them useless,
it is impossible to use them, so u cannot choose a scm or set the default 
project settings anymore (workaround for the advanced, directly edit the 
redmine database, settings table)

an example:
this the html that is shown:
Enabled SCMSubversionDarcsMercurialCvsBazaarGitFilesystem
where one would expect the actual check boxes to be chown,
the html source code on this page for this is:
Enabled SCM<
label class="block">
SubversionDarcs<
label class="block">Mercurial<
label class="block">Cvs<
input id="settings_enabled_scm_" name="settings[enabled_scm][]" type="checkbox" 
value="Bazaar" />Bazaar<
input id="settings_enabled_scm_" name="settings[enabled_scm][]" type="checkbox" 
value="Git" />Git<
input id="settings_enabled_scm_" name="settings[enabled_scm][]" type="checkbox" 
value="Filesystem" />Filesystem
so the code that is shown to the user should be the html source code

possible causes:
unlike utf8, sql_ascii encoding database, i already tested this with different 
encodings, no change
most likely: ruby related packages upgrade, i could recreate the problem i a 
virtual environment, the problem occurs right after the upgrade

upgraded packages:
  acpid apache2 apache2-mpm-prefork apache2-suexec apache2-utils 
  apache2.2-bin apache2.2-common at base-files bind9-host bogofilter 
  bogofilter-bdb bogofilter-common browser-plugin-gnash bzip2 cpufrequtils 
  cups cups-bsd cups-client cups-common cups-pk-helper cups-ppdc cvs dbus 
  dbus-x11 debian-archive-keyring dnsutils dpkg dpkg-dev evince 
  evince-common evolution-data-server evolution-data-server-common exim4 
  exim4-base exim4-config exim4-daemon-heavy file foomatic-filters 
  fusionforge-standard gforge-common gforge-db-postgresql 
  gforge-lists-mailman gforge-mta-exim4 gforge-plugin-scmcvs 
  gforge-plugin-scmgit gforge-plugin-scmsvn gforge-shell-postgresql 
  gforge-web-apache2 ghostscript ghostscript-cups gimp gimp-data 
  gir1.0-json-glib-1.0 gnash gnash-common gnupg gpgv gzip host hpijs hplip 
  hplip-cups hplip-data iceweasel imagemagick initscripts isc-dhcp-client 
  isc-dhcp-common libactionmailer-ruby libactionmailer-ruby1.8 
  libactionpack-ruby libactionpack-ruby1.8 libactiverecord-ruby1.8 
  libactiveresource-ruby libactiveresource-ruby1.8 libactivesupport-ruby 
  libactivesupport-ruby1.8 libapache2-mod-fcgid libapache2-mod-perl2 
  libapache2-mod-php5 libapr1 libarchive1 libavcodec52 libavformat52 
  libavutil49 libbind9-60 libbrlapi0.5 libbz2-1.0 libc-bin libc-dev-bin 
  libc6 libc6-dev libc6-i686 libcamel1.2-14 libconfig-inifiles-perl 
  libcpufreq0 libcups2 libcupscgi1 libcupsdriver1 libcupsimage2 
  libcupsmime1 libcupsppdc1 libcurl3-gnutls libdbd-pg-perl libdbus-1-3 
  libdbus-glib-1-2 libdns69 libdpkg-perl libebackend1.2-0 libebook1.2-9 
  libecal1.2-7 libedata-book1.2-2 libedata-cal1.2-7 libedataserver1.2-13 
  libedataserverui1.2-8 libegroupwise1.2-13 libevince2 libexif12 libexpat1 
  libfreetype6 libgc1c2 libgdata-common libgdata-google1.2-1 libgdata1.2-1 
  libgdata7 libgimp2.0 libgnutls26 libgs8 libgssapi-krb5-2 libgssrpc4 
  libhpmud0 libicu44 libisc62 libisccc60 libisccfg62 libjasper1 
  libjson-glib-1.0-0 libk5crypto3 libkadm5clnt-mit7 libkadm5srv-mit7 
  libkdb5-4 libkrb5-3 libkrb5support0 libldap-2.4-2 liblwres60 libmagic1 
  libmagick++3 libmagickcore3 libmagickcore3-extra libmagickwand3 
  libmodplug1 libmono-cairo2.0-cil libmono-corlib2.0-cil 
  libmono-i18n-west2.0-cil libmono-posix2.0-cil libmono-security2.0-cil 
  libmono-sharpzip2.84-cil libmono-system2.0-cil libmozjs2d libmtp8 
  libmysqlclient16 libnautilus-extension1 libnm-glib-vpn1 libnm-glib2 
  libnm-util1 libnss3-1d libopenjpeg2 libperl5.10 libpng12-0 
  libpolkit-agent-1-0 libpolkit-backend-1-0 libpolkit-gobject-1-0 
  libpoppler-glib4 libpoppler5 libpostproc51 libpq5 libproxy0 libraptor1 
  librpm1 librpmio1 libsane-hpaio libservlet2.5-java libsmbclient 
  libsoup-gnome2.4-1 libsoup2.4-1 libssh-4 libssl0.9.8 libswscale0 libt1-5 
  libtasn1-3 libtiff4 libvorbis0a libvorbisenc2 libvorbisfile3 
  libvte-common libvte9 libwbclient0 libwebkit-1.0-2 libwebkit-1.0-common 
  libxi6 libxml2 libxml2-ut

[DRE-maint] Bug#705533: redmine: html escape? problem in the administration/settings dialog, projects and repositories tab

[Ondřej Surý]

Could it be the same as #705466? Can you check if the patch attached
to #705466 fix your problem?


O.

On Tue, Apr 16, 2013 at 11:34 AM, Jérémy Lal  wrote:
> On 16/04/2013 11:19, Wim Bertels wrote:
>> Package: redmine Version: 1.0.1-2 Severity: normal Tags: upstream
>>
>>
>> problem occured after safe-upgrade
>>
>> As an administrator for redmine, u can use the webinterface for the
>> administration/settings dialog. In this dialog the projects and
>> repositories tab have a a problem with listing checkboxes rendering
>> them useless, it is impossible to use them, so u cannot choose a scm
>> or set the default project settings anymore (workaround for the
>> advanced, directly edit the redmine database, settings table)
>
> Can you downgrade rails security updates from 2.3.5-1.2+squeeze8
> to 2.3.5-1.2+squeeze7, then 2.3.5-1.2+squeeze6, etc... until you
> find at which version it works again ?
>
> There is a good chance the culprit is the latest rails security update,
> since nobody reported that bug before and 2.3.5-1.2+squeeze8 was made
> available this month.
>
> cc-ing Ondřej
>
> Jérémy
>



-- 
Ondřej Surý 


___
Pkg-ruby-extras-maintainers mailing list
Pkg-ruby-extras-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers

[DRE-maint] Bug#705533: redmine: html escape? problem in the administration/settings dialog, projects and repositories tab

[Jérémy Lal]

On 16/04/2013 11:19, Wim Bertels wrote:
> Package: redmine Version: 1.0.1-2 Severity: normal Tags: upstream
> 
> 
> problem occured after safe-upgrade
> 
> As an administrator for redmine, u can use the webinterface for the
> administration/settings dialog. In this dialog the projects and
> repositories tab have a a problem with listing checkboxes rendering
> them useless, it is impossible to use them, so u cannot choose a scm
> or set the default project settings anymore (workaround for the
> advanced, directly edit the redmine database, settings table)

Can you downgrade rails security updates from 2.3.5-1.2+squeeze8
to 2.3.5-1.2+squeeze7, then 2.3.5-1.2+squeeze6, etc... until you
find at which version it works again ?

There is a good chance the culprit is the latest rails security update,
since nobody reported that bug before and 2.3.5-1.2+squeeze8 was made
available this month.

cc-ing Ondřej

Jérémy


___
Pkg-ruby-extras-maintainers mailing list
Pkg-ruby-extras-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers