[Touch-packages] [Bug 1814105] Re: random 404s on security.ubuntu.com for libavahi packages

2019-02-14 Thread vdloo 
Yeah I noticed, thanks

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to avahi in Ubuntu.
https://bugs.launchpad.net/bugs/1814105

Title:
  random 404s on security.ubuntu.com for libavahi packages

Status in avahi package in Ubuntu:
  Invalid

Bug description:
  Hi, when I try to apt-get upgrade from xenial-security I get 404s from
  some of the security.ubuntu.com mirrors. Not sure if this is the place
  to report it but it seems to be related to
  https://launchpad.net/ubuntu/+source/avahi/0.6.32~rc+dfsg-
  1ubuntu2.3/+publishinghistory.

  ```
  root@okok-blabla-magweb-cmbl ~ # wget 
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
 
  --2019-01-31 13:48:19--  
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
  Resolving security.ubuntu.com (security.ubuntu.com)... 91.189.88.161, 
91.189.88.152, 91.189.88.149, ...
  Connecting to security.ubuntu.com (security.ubuntu.com)|91.189.88.161|:80... 
connected.
  HTTP request sent, awaiting response... 404 Not Found
  2019-01-31 13:48:19 ERROR 404: Not Found.

  root@okok-blabla-magweb-cmbl ~ # wget 
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
 
  --2019-01-31 13:48:20--  
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
  Resolving security.ubuntu.com (security.ubuntu.com)... 91.189.88.161, 
91.189.88.152, 91.189.88.149, ...
  Connecting to security.ubuntu.com (security.ubuntu.com)|91.189.88.161|:80... 
connected.
  HTTP request sent, awaiting response... 404 Not Found
  2019-01-31 13:48:20 ERROR 404: Not Found.

  root@okok-blabla-magweb-cmbl ~ # wget 
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
 
  --2019-01-31 13:48:20--  
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
  Resolving security.ubuntu.com (security.ubuntu.com)... 91.189.88.152, 
91.189.91.26, 91.189.91.23, ...
  Connecting to security.ubuntu.com (security.ubuntu.com)|91.189.88.152|:80... 
connected.
  HTTP request sent, awaiting response... 200 OK
  Length: 21452 (21K) [application/x-debian-package]
  Saving to: ‘libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb.1’

  libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb.1
  
100%[==>]
  20.95K  --.-KB/sin 0.02s

  2019-01-31 13:48:21 (1.21 MB/s) - ‘libavahi-common-data_0.6.32~rc
  +dfsg-1ubuntu2.3_amd64.deb.1’ saved [21452/21452]

  root@okok-blabla-magweb-cmbl ~ # wget 
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
 
  --2019-01-31 13:48:22--  
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
  Resolving security.ubuntu.com (security.ubuntu.com)... 91.189.88.152, 
91.189.88.149, 91.189.88.161, ...
  Connecting to security.ubuntu.com (security.ubuntu.com)|91.189.88.152|:80... 
connected.
  HTTP request sent, awaiting response... 200 OK
  Length: 21452 (21K) [application/x-debian-package]
  Saving to: ‘libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb.2’

  libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb.2
  
100%[==>]
  20.95K  --.-KB/sin 0.03s

  2019-01-31 13:48:23 (664 KB/s) - ‘libavahi-common-data_0.6.32~rc+dfsg-
  1ubuntu2.3_amd64.deb.2’ saved [21452/21452]

  root@okok-blabla-magweb-cmbl ~ # wget 
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
 
  --2019-01-31 13:48:24--  
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
  Resolving security.ubuntu.com (security.ubuntu.com)... 91.189.88.162, 
91.189.91.23, 91.189.88.152, ...
  Connecting to security.ubuntu.com (security.ubuntu.com)|91.189.88.162|:80... 
connected.
  HTTP request sent, awaiting response... 404 Not Found
  2019-01-31 13:48:24 ERROR 404: Not Found.
  ```

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/avahi/+bug/1814105/+subscriptions

-- 
Mailing list: https://launchpad.net/~touch-packages
Post to : touch-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~touch-packages
More help   : https://help.launchpad.net/ListHelp

[Touch-packages] [Bug 1814105] [NEW] random 404s on security.ubuntu.com for libavahi packages

2019-01-31 Thread vdloo 
Public bug reported:

Hi, when I try to apt-get upgrade from xenial-security I get 404s from
some of the security.ubuntu.com mirrors. Not sure if this is the place
to report it but it seems to be related to
https://launchpad.net/ubuntu/+source/avahi/0.6.32~rc+dfsg-
1ubuntu2.3/+publishinghistory.

```
root@okok-blabla-magweb-cmbl ~ # wget 
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
 
--2019-01-31 13:48:19--  
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
Resolving security.ubuntu.com (security.ubuntu.com)... 91.189.88.161, 
91.189.88.152, 91.189.88.149, ...
Connecting to security.ubuntu.com (security.ubuntu.com)|91.189.88.161|:80... 
connected.
HTTP request sent, awaiting response... 404 Not Found
2019-01-31 13:48:19 ERROR 404: Not Found.

root@okok-blabla-magweb-cmbl ~ # wget 
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
 
--2019-01-31 13:48:20--  
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
Resolving security.ubuntu.com (security.ubuntu.com)... 91.189.88.161, 
91.189.88.152, 91.189.88.149, ...
Connecting to security.ubuntu.com (security.ubuntu.com)|91.189.88.161|:80... 
connected.
HTTP request sent, awaiting response... 404 Not Found
2019-01-31 13:48:20 ERROR 404: Not Found.

root@okok-blabla-magweb-cmbl ~ # wget 
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
 
--2019-01-31 13:48:20--  
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
Resolving security.ubuntu.com (security.ubuntu.com)... 91.189.88.152, 
91.189.91.26, 91.189.91.23, ...
Connecting to security.ubuntu.com (security.ubuntu.com)|91.189.88.152|:80... 
connected.
HTTP request sent, awaiting response... 200 OK
Length: 21452 (21K) [application/x-debian-package]
Saving to: ‘libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb.1’

libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb.1
100%[==>]
20.95K  --.-KB/sin 0.02s

2019-01-31 13:48:21 (1.21 MB/s) - ‘libavahi-common-data_0.6.32~rc+dfsg-
1ubuntu2.3_amd64.deb.1’ saved [21452/21452]

root@okok-blabla-magweb-cmbl ~ # wget 
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
 
--2019-01-31 13:48:22--  
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
Resolving security.ubuntu.com (security.ubuntu.com)... 91.189.88.152, 
91.189.88.149, 91.189.88.161, ...
Connecting to security.ubuntu.com (security.ubuntu.com)|91.189.88.152|:80... 
connected.
HTTP request sent, awaiting response... 200 OK
Length: 21452 (21K) [application/x-debian-package]
Saving to: ‘libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb.2’

libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb.2
100%[==>]
20.95K  --.-KB/sin 0.03s

2019-01-31 13:48:23 (664 KB/s) - ‘libavahi-common-data_0.6.32~rc+dfsg-
1ubuntu2.3_amd64.deb.2’ saved [21452/21452]

root@okok-blabla-magweb-cmbl ~ # wget 
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
 
--2019-01-31 13:48:24--  
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
Resolving security.ubuntu.com (security.ubuntu.com)... 91.189.88.162, 
91.189.91.23, 91.189.88.152, ...
Connecting to security.ubuntu.com (security.ubuntu.com)|91.189.88.162|:80... 
connected.
HTTP request sent, awaiting response... 404 Not Found
2019-01-31 13:48:24 ERROR 404: Not Found.
```

** Affects: avahi (Ubuntu)
 Importance: Undecided
 Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to avahi in Ubuntu.
https://bugs.launchpad.net/bugs/1814105

Title:
  random 404s on security.ubuntu.com for libavahi packages

Status in avahi package in Ubuntu:
  New

Bug description:
  Hi, when I try to apt-get upgrade from xenial-security I get 404s from
  some of the security.ubuntu.com mirrors. Not sure if this is the place
  to report it but it seems to be related to
  https://launchpad.net/ubuntu/+source/avahi/0.6.32~rc+dfsg-
  1ubuntu2.3/+publishinghistory.

  ```
  root@okok-blabla-magweb-cmbl ~ # wget 
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb
 
  --2019-01-31 13:48:19--  
http://security.ubuntu.com/ubuntu/pool/main/a/avahi/libavahi-common-data_0.6.32~rc+dfsg-1ubuntu2.3_amd64.deb

[Touch-packages] [Bug 1626883] Re: libssl 1.0.2g-1ubuntu4.4 and 1.0.1f-1ubuntu2.20 cause PHP SSL cert validation to segfault

2016-09-23 Thread vdloo 
Can confirm that this affects 1.0.1-4ubuntu5.37 on 12.04

Reproducible by trying to openssl_x509_parse the ssl cert for
sourceforge with PHP 5.5.30-1+deb.sury.org~precise+1

$ openssl s_client -connect sourceforge.net:443   cert.txt
$ echo " segfault.php
$ php segfault.php
Segmentation fault (core dumped)

The backtrace:
$ gdb php
GNU gdb (Ubuntu/Linaro 7.4-2012.04-0ubuntu2.1) 7.4-2012.04
Copyright (C) 2012 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later 
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "x86_64-linux-gnu".
For bug reporting instructions, please see:
...
Reading symbols from /usr/bin/php...(no debugging symbols found)...done.
(gdb) r segf.php
Starting program: /usr/bin/php segf.php
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".

Program received signal SIGSEGV, Segmentation fault.
0x75c40f81 in ?? () from /lib/x86_64-linux-gnu/libc.so.6
(gdb) bt
#0  0x75c40f81 in ?? () from /lib/x86_64-linux-gnu/libc.so.6
#1  0x006e8e8d in add_assoc_string_ex ()
#2  0x004a67ba in zif_openssl_x509_parse ()
#3  0x006d4959 in dtrace_execute_internal ()
#4  0x007911de in ?? ()
#5  0x00754358 in execute_ex ()
#6  0x006d4846 in dtrace_execute_ex ()
#7  0x74f72ecc in ?? () from 
/usr/lib/php5/20121212/ioncube_loader_lin_5.5.so
#8  0x006e66b4 in zend_execute_scripts ()
#9  0x0068380d in php_execute_script ()
#10 0x007949c3 in ?? ()
#11 0x00465081 in main ()
(gdb)

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/1626883

Title:
  libssl 1.0.2g-1ubuntu4.4 and 1.0.1f-1ubuntu2.20 cause PHP SSL cert
  validation to segfault

Status in openssl package in Ubuntu:
  Confirmed
Status in openssl source package in Precise:
  Confirmed
Status in openssl source package in Trusty:
  Confirmed
Status in openssl source package in Xenial:
  Confirmed
Status in openssl source package in Yakkety:
  Confirmed

Bug description:
  Last night unattended-upgrades upgraded the openssl packages
  (libssl1.0.0, libssl-dev, openssl) from version 1.0.2g-1ubuntu4.1 to
  version 1.0.2g-1ubuntu4.4 on a CI build server. Then everything that
  used PHP to connect to a HTTPS site started crashing when verifying
  the server cert.

  Like this:

  ```
  
jenkins@ubuntutemplate:/var/lib/jenkins/workspace/imt-erp-e2e-flaky/webshop/vagrant/wordpress$
 DATABASE_DATABASE=wordpressmastere2e catchsegv wp plugin install --force 
--activate wp-cfm
  Deprecated: Methods with the same name as their class will not be 
constructors in a future version of PHP; WP_Import has a deprecated constructor 
in /var/lib/jenkins/workspace/imt-erp-e2e-flaky/webshop
/vagrant/wordpress/wp-content/plugins/wordpress-importer/wordpress-importer.php 
on line 38
  Notice: Undefined offset: 4 in 
phar:///usr/local/bin/wp/php/WP_CLI/DocParser.php on line 124
  Segmentation fault (core dumped)
  *** Segmentation fault
  Register dump:

   RAX:    RBX: 0001   RCX: 
   RDX: 000c   RSI: 55665071af59   RDI: 
   RBP: 556650a49e4e   R8 : 556652364720   R9 : 
   R10:    R11: 7fdb3c081730   R12: 55665071af59
   R13: 000c   R14:    R15: 7fdb39418cf0
   RSP: 7ffc4bad7a08

   RIP: 7fdb3bf77d16   EFLAGS: 00010293

   CS: 0033   FS:    GS: 

   Trap: 000e   Error: 0004   OldMask:    CR2: 

   FPUCW: 027f   FPUSW:    TAG: 
   RIP:    RDP: 

   ST(0)     ST(1)  
   ST(2)     ST(3)  
   ST(4)     ST(5)  
   ST(6)     ST(7)  
   mxcsr: 1fa0
   XMM0:   XMM1:  

   XMM2:   XMM3:  

   XMM4:   XMM5:  

   XMM6:   XMM7:  

   XMM8:   XMM9:  

   XMM10:  XMM11: 

   XMM12:  XMM13: 

   XMM14:  XMM15: 


  Backtrace: