On Tue, 4 Jun 2024 at 05:57, Paul Gevers wrote:
> I looked at the results of the autopkgtest of your package, because it
> showed up in the glibc regressions. I noticed that it regularly fails on
> amd64, ppc64el and s390x. For your info, as it seems to correlate, those
> are the architectures
On Mon, 20 May 2024 at 02:03, Kip Warner wrote:
> I would like to keep this bug report open still.
>
I have reopened it.
> I can confirm that it does not work. dh_missing does not report any
> warnings anymore, but the resulting package does not contain anything
> that I specified in my
On Wed, 8 May 2024 at 09:03, Jun MO wrote:
> 1) I hope there will still be the original
> w(1)/last(1)/lastb(1)/lastlog(1)/faillog(1)
> tools which can still read *old* format utmp/wtmp/lastlog in Debian at
> least for
> a while after switch to Y2038-safe replacements. Those tools can read
>
I
;
> > On Mon 18 Mar 2024 at 10:43am +08, Sean Whitton wrote:
> >
> >> The vote has concluded. The result is that the Technical Committee
> >> recommends that Craig Small be appointed by the Debian Project
> >> Leader to the Technical Committee.
> >>
>
Control: forwarded -1 https://gitlab.com/procps-ng/procps/-/issues/301
Control: tags -1 fixed-upstream
On Thu, 25 Apr 2024 at 22:36, David wrote:
> Hello, it seems there is a bug in the debian package "procps" with the
> "w"utility.
> it produce a segfault when using the "-s" argument.
> I
Package: wordpress
Version: 6.5+dfsg1-1
Severity: important
Tags: security
X-Debbugs-Cc: Debian Security Team
In WordPress < 6.5.2 there is a stored XSS in the Avatar block.
You have to have certain things enabled for it to work so it won't
impact everyone.
References:
Package: dh-exec
Version: 0.29
Severity: normal
In a multi-binary package, if there is a dh-exec-install .install or .manpages
file for
one of the packages, then these files are not carried across and logged
for dh_install so dh_missing fails if you use the other type of build.
For example, on
Package: razercfg
Version: 0.42+ds-4
Followup-For: Bug #1059997
Hi,
You have double "dist-packages" in the install path.
$ python3
Python 3.11.8 (main, Feb 7 2024, 21:52:08) [GCC 13.2.0] on linux
Type "help", "copyright", "credits" or "license" for more information.
>>> from pyrazer import *
Control: tag 1066090 fixed-upstream
On Wed, 13 Mar 2024 at 00:30, Tim Connors wrote:
> I'm guessing it's looking at field 22 starttime in /proc/$pid/stat?
> starttime is seconds since boot. Since the process exists in the
> parent system as well, starttime will surely be seconds since host
>
>
> As per https://www.cve.org/CVERecord?id=CVE-2024-26464 the CVE has
> been rejected now.
>
> Reason: This candidate was withdrawn by its CNA. Further investigation
> showed that it was not a security issue.
>
I did wonder myself how it could be a security issue. Wonder if it is one
of those
Hi Steve,
Looks like you missed one:
dh_installdocs -plibsnmp-perl -ptkmib -plibsnmp-base -plibsnmp40
dh_installdocs: error: Requested unknown package libsnmp40 via
-p/--package, expected one of: snmpd snmptrapd snmp libsnmp-base
libsnmp40t64 libnetsnmptrapd40t64 libsnmp-dev libsnmp-perl tkmib
On Thu, 8 Feb 2024 at 21:06, Emanuele Rocca wrote:
> FAIL: fuser no args, no proc
> FAIL: fuser -a no proc
> FAIL: fuser -v, no proc
> FAIL: fuser -av, no proc
> FAIL: fuser -va, no proc
>
Are these systems running systemd?
If you can get on those hosts, what does fuser `mktemp` show?
On Mon, 13 Jun 2016 at 20:09, Daniel Baumann <
daniel.baum...@progress-technologies.com> wrote:
> when using 'uptime' in containers (regardless what kind of containers),
> it shows the uptime of the host system rather than the one of the
> container.
>
> What we used locally here is to look at
On Fri, 2 Feb 2024 at 08:54, Rob Janssen wrote:
> I am using systemd.
>
Where are you seeing this error? The systemd socket is the thing that opens
up the socket, so shouldn't matter what the snmptrapd process is running as.
When I reboot, I get this:
$ sudo ss -unlp | grep 162
UNCONN 0 0
On Sat, 30 Dec 2023 at 06:15, Rob Janssen wrote:
> After the upgrade, the snmptrapd service no longer starts.
> The error message is: couldn't open udp:162 -- errno 13 ("Permission
> denied")
>
Could you tell me how you start snmptrapd?
There are two ways:
The default systemd way. The socket is
> On a system reporting temperatures via "sensors", trying to enumerate the
> corresponding OIDs via:
> snmpwalk -v 2c -c public localhost LM-SENSORS-MIB::lmSensors
> yields no result.
>
$ snmpwalk -v 2c -c public 127.0.0.1 LM-SENSORS-MIB::lmSensors | grep ':
temp[0-9]'
Hi Chris,
It got uploaded to unstable tonight.
- Craig
On Sat, 27 Jan 2024 at 07:30, Chris Hofstaedtler wrote:
> Hi,
>
> please upload the fix for #1059817 also to unstable.
>
> Thanks,
> Chris
>
On Wed, 10 Jan 2024 at 09:42, Chris Hofstaedtler wrote:
> Please find a patch attached to install fuser into /usr, for the
> currently ongoing UsrMerge effort [1].
> It has been build-tested and checked by dumat.
>
Hi Chris,
Thanks for the patch. I have reviewed it and uploaded a new version
On Wed, 15 Nov 2023 at 23:03, Guillem Jover wrote:
> I'm all in for shrinking the essential-set. If there is consensus to
> switch pidof implementations that also seems fine to me in the abstract.
> But this shuffling around of essential-ness and new tiny packages and
> stuff seems a bit
Hello,
For quite some time (since 2006!) there has been a discussion at[1] about
changing from the sysvinit-utils version of pidof to the procps one. A
quick scan of the various distributions shows that only Debian and Ubuntu
(and I assume most other downstreams) use the sysvinit-utils version.
On Tue, 14 Nov 2023 at 06:09, Mark Hindley wrote:
> IIUC, the proposal[1] was to create a new Essential procps-base just
> containing
> pidof. Otherwise bin:procps would have to become Essential itself. Its
> installed
> size is about 20 times larger than sysvinit-util and that wouldn't
>
On Sat, 11 Nov 2023 at 23:45, Luca Boccassi wrote:
> Now that Bookworm has shipped, what about finally finishing this and
> getting rid of this debianism? There is really no reason to delay it
> any longer at this point. Thank you!
>
Hi Luca,
I'll need the assistance of the sysvinit-utils
On Wed, 1 Nov 2023 at 08:15, Ani Hay wrote:
> Instead of wasting all this space one should be a symlink to the other.
>
39 kilobytes is not exactly a lot.
tags 1053706 fixed-upstream
thankyou
On Mon, 9 Oct 2023 at 22:09, Pierpaolo Toniolo
wrote:
> I was trying to read the DISPLAY value from the output of 'w' command but
> with
> version 2:4.0.4-2 there is no value in the "FROM" column.
>
It's not really giving anything useful printing :0 Also
On Sat, 23 Sept 2023 at 08:09, Michael Biebl wrote:
> Is there some work being done to support this in dh-exec?
> Is there a way I can work around this issue for now?
>
The short answer is, that no work has been done on that issue. The main
use-case I have seen for dh-exec was for the multiarch
Looks like another "guess what strange thing the buildd is doing this time"
problem.
The failing test is (effectively)
pmap -XX $pid $pid | grep KB
And make sure the first numbers of each row are the same. Because it is the
same process, it should be the same.
There is the same test for pmap -X
.
- Craig
On Tue, 22 Aug 2023 at 12:07, Paul Kimoto wrote:
> On Wed, Aug 16, 2023 at 11:03:14PM -0400, Paul Kimoto wrote:
> > On Wed, Aug 16, 2023 at 05:25:26PM +1000, Craig Small wrote:
> >> What does
> >> grep -e ' 0:2[57] ' /proc/self/mountinfo
> >> s
On Tue, 21 Feb 2023 at 10:51, Andras Korn
wrote:
> The changelog for 23.6 says "fuser: Use modern statn where possible", but
> it's regrettably also used where not possible.
>
The next release of psmisc will have that fallback, see
Hi Paul,
On Wed, 16 Aug 2023 at 12:45, Paul Kimoto wrote:
> I believe that fuser(1) should work on libraries, but on this system
> it doesn't:
>
I don't think it is the libraries, the issue is the device IDs are
different.
> $ stat -L /usr/lib/x86_64-linux-gnu/libc.so.6
>
> File:
tags -1 fixed-upstream
The probable fix is at
https://gitlab.com/procps-ng/procps/-/commit/2c933ecba3bb1d3041a5a7a53a7b4078a6003413
The issue is the -C command allocates memory using malloc(length of arg *
size of struct).
In odd situations, you could have a very large arg, the multiplication
Package: procps
Version: 2:4.0.3-1
Severity: important
Tags: security
X-Debbugs-Cc: Debian Security Team
We have a very scant report of a ps buffer overflow security bug.
Under some circumstances, this weakness allows a user who has access to run the
“ps” utility on a machine, the ability to
Hi,
I'm thinking of adding a quick and dirty check for a regex. A very quick
set of characters to say "this is a regex" and suppress the warning.
The first idea is just look for a '[' or a '|'. I think that covers most
simple conditions. I'm not looking for some sort odd corner cases, just the
On Tue, 11 Apr 2023 at 11:48, наб wrote:
> This happens in all these configurations:
> $ snmptranslate -Op .1
> Segmentation fault
> $ snmptranslate -Op
> Segmentation fault
> $ snmpget -Op
> Segmentation fault
>
Hi наб,
Thanks for the report. I have passed this to upstream at
forwarded 1032139 https://github.com/net-snmp/net-snmp/issues/537
thankyou
On Wed, 1 Mar 2023 at 01:36, наб wrote:
>
> I couldn't for the life of me find where I'd post this, so I trust you
> understand upstream's link jungle and can forward this in my stead.
>
Forwarded to
Package: libc6
Version: 2.36-6
Severity: minor
I've been trying to work out why the Chinese translation for free
doesn't want to line up the columns like everyone else, report is
at [1]
For some reason, it thinks the strange colon used in the translation is
one character wide, but its actually
On Thu, 5 Jan 2023, 19:30 Ingo Saitz, wrote:
> running vmstat to produce a continuous output (eg. "vmstat 3") does not
> update the values in the memory columns any more. The "main loop" just
> does not fetch those values.
>
Hi Ingo,
Thanks very much for the report and the patch. It has been
On Thu, 5 Jan 2023 at 18:26, Chris Hofstaedtler wrote:
> Right. For the avoidance of doubt, if you think removing it is a
> better option, from my PoV, please do so.
It would be nice, but we're sort-of locked in for the "user API". I
would rationalise the ps command line parsing first.
If you're
For some reason the issue is not vim-ale its something broken in the
generic vim infrastructure.
debian.vim sets nocompatible which is supposed to stop the issue but it doesn't
running vim -N or putting "set nocompatible" in ~/.vimrc fixes it
On Fri, 30 Dec 2022 at 18:33, Salvatore Bonaccorso wrote:
> Upstream has addressed both issues with
> https://github.com/net-snmp/net-snmp/commit/be804106fd0771a7d05236cff36e199af077af57
I've made a debian patch and uploaded 5.9.3+dfsg-2 that has this fix.
- Craig
On Sat, 31 Dec 2022 at 22:21, Michael Prokop wrote:
> I just uploaded guymager v0.8.13-2 which takes care of this.
Great, that's another one down. Thanks for the quick response.
- Craig
Hi
I checked the source code, build logs and current binaries, open-vm-tools
doesn't use libprocps or link to it.
A simple removal of libprocps-dev from debian/control will fix this.
- Craig
Hi,
I checked the build logs, the source code and even the current binary
packages. guymager does not need libprocps.
A simple removal of libprocps-dev from debian/control is all that is needed.
- Craig
On Thu, 29 Dec 2022 at 05:04, Paul Gevers wrote:
> With procps migrated to testing, dose [1] is reporting two more packages
> that weren't on our radar: open-vm-tools and guymager. Can you have a
>
Both these packages do not use any symbols from the old library and their
binary packages
do not
OK, open-vm-tools doesn't even use the library so that's an easy fix.
On Sat, 31 Dec 2022 at 15:50, Craig Small wrote:
> On Thu, 29 Dec 2022 at 05:04, Paul Gevers wrote:
>
>> With procps migrated to testing, dose [1] is reporting two more packages
>> that weren't on our ra
On Thu, 29 Dec 2022 at 05:04, Paul Gevers wrote:
> With procps migrated to testing, dose [1] is reporting two more packages
> that weren't on our radar: open-vm-tools and guymager. Can you have a
> look and help the maintainer with migrating to the new version of
> procps? open-vm-tools has a
On Thu, 22 Dec 2022 at 19:50, Paul Gevers wrote:
> That's (in general) sub-optimal for the release team. We try hard to
> avoid entangling transitions and therefor we try to finish transitions
> sooner rather than later. My preference would be that you NMU (minimal
> changes) now; the maintainer
#1024218 - apitrace - patch available
#1024219 - cpu-x - patch available at upstream git
#1024220 - deepin-screen-recorder - nil
#1024221 - intel-gpu-tools - patch available upstream, version issues
#1024223 - obs-advanced-scene-switcher - Done!
#1024224 - openscap - Done!
#1024225 - veyon - nil
(added the bug report for igt)
On Thu, 22 Dec 2022 at 08:29, Craig Small wrote:
> On Thu, 22 Dec 2022 at 07:46, Paul Gevers wrote:
>
>> An actual upload. If the maintainer isn't doing it, I think an NMU is
>> appropriate if you're sure of the fix.
>>
> Ah, I thought
On Thu, 22 Dec 2022 at 07:46, Paul Gevers wrote:
> An actual upload. If the maintainer isn't doing it, I think an NMU is
> appropriate if you're sure of the fix.
>
Ah, I thought you were the igt maintainer :)
I'll have a go recreating it and uploading it tonight. I'm pretty confident
about the
On Thu, 22 Dec 2022 at 05:54, Paul Gevers wrote:
> The issue is that src:intel-gpu-tools is a key packages but currently
> unfixed. Having procps migrate to testing now would cause it to be
> instantaneously RC buggy, but because it is key, we can't simply remove
> it from bookworm. Can you help
On Wed, 21 Dec 2022 at 18:18, Paul Szabo wrote:
> Package: snmptrapd
> Version: 5.9+dfsg-4+deb11u1
> The file /lib/systemd/system/snmptrapd.service ends up with line
>
> ExecStart=/usr/sbin/snmptrapd -LOw -f -p /run/snmptrapd.pid
>
> whereas I guess that should instead be
>
>
On Mon, 19 Dec 2022 at 03:54, Paul Gevers wrote:
> With a recent upload of procps the autopkgtest of pslist fails in
> testing when that autopkgtest is run with the binary packages of procps
> from unstable. It passes when run with only packages from testing. In
> tabular form:
>
The good news
Hi Chris,
Thanks for your bug report. skill is one of those programs that isn't
used or loved much, but still hangs around. That being said, it shouldn't
have bugs like this!
When the program was converted to use the new API, the bit of code that
actually checks there is a match against the
On Fri, 9 Dec 2022 at 17:51, Petter Reinholdtsen wrote:
> Since 2022-12-05 the Debian sid builds of linuxcnc have failed. After
> some days scratching our heads, we discovered that the problem
> originated from 'ps' changout its output format. Running 'ps -o comm=
> ' used to include '' if the
On Tue, 6 Dec 2022 at 11:03, Witold Baryluk
wrote:
> trying to overwrite '/usr/share/man/zh_CN/man1/free.1.gz', which is also
> in package manpages-zh 1.6.3.6-1
> dpkg: error while cleaning up:
> new procps package post-removal script subprocess returned error exit
> status 1
>
> After
On Tue, 6 Dec 2022 at 06:51, Sebastian Ramacher
wrote:
> FAIL: check_fatal_proc_unmounted
> FAIL library/tests/test_pids (exit status: 1)
>
Not sure why the s390 (correctly) failed this test.
The issue is that the second value, which is the process VSS returns 0 so
it fails.
The failed check is
tags 1024225 patch
thankyou
Attached is a patch for veyon to work with libproc2. I cannot test it
because I can't actually get veyon to build as the upstream is in a
different branch and remote.
It looks ok but might need some additional work.
- Craig
diff --git
On Wed, 16 Nov 2022 at 21:45, Uwe Bueschel wrote:
> The following packages have unmet dependencies:
> wordpress : Depends: libjs-underscore (>= 1.13.4~dfsg+~1.11.4) but
> 1.9.1~dfsg-3 is to be installed
> Depends: php-getid3 (>= 1.9.22+dfsg) but 1.9.20+dfsg-1 is to
> be installed
>
For CPU-X upstream already have this working with libproc2, see.
https://github.com/X0rg/CPU-X/commit/2765e68dc4650b7306255e0c10056508d5ab44f8
This is in version 4.5.2
- Craig
tags 1024218
Hi,
Attached is a patch for API trace. I couldn't actually get apitrace to
build on my system (even without the patch) so it's hard to test it.
- Craig
Description: Build for libproc2
Replace libprocps with libproc2
Author: Craig Small
Reviewed-by: Craig Small
Last-Update
Package: veyon-plugins
Severity: important
Tags: upstream ftbfs
Hi,
The procps project is changing the libprocps library. The old API found in
libprocps8 is very diferrent to what is found in libproc2.
As a result, your package will FTBFS as the library name has changed as well
as the library
Package: openscap-utils
Severity: important
Tags: upstream ftbfs
Hi,
The procps project is changing the libprocps library. The old API found in
libprocps8 is very diferrent to what is found in libproc2.
As a result, your package will FTBFS as the library name has changed as well
as the
Source: obs-advanced-scene-switcher
Version: 1.19.1-1
Severity: important
Tags: upstream ftbfs
Hi,
The procps project is changing the libprocps library. The old API found in
libprocps8 is very diferrent to what is found in libproc2.
As a result, your package will FTBFS as the library name has
Package: intel-gpu-tools
Severity: important
Tags: upstream ftbfs
Hi,
The procps project is changing the libprocps library. The old API found in
libprocps8 is very diferrent to what is found in libproc2.
As a result, your package will FTBFS as the library name has changed as well
as the
Package: deepin-screen-recorder
Severity: important
Tags: upstream ftbfs
Hi,
The procps project is changing the libprocps library. The old API found in
libprocps8 is very diferrent to what is found in libproc2.
As a result, your package will FTBFS as the library name has changed as well
as
Source: cpu-x
Version: 4.5.1-1
Severity: important
Tags: upstream ftbfs
Hi,
The procps project is changing the libprocps library. The old API found in
libprocps8 is very diferrent to what is found in libproc2.
As a result, your package will FTBFS as the library name has changed as well
as the
Package: apitrace
Severity: important
Tags: ftbfs upstream
Hi,
The procps project is changing the libprocps library. The old API found in
libprocps8 is very diferrent to what is found in libproc2.
As a result, your package will FTBFS as the library name has changed as well
as the library
On Tue, 15 Nov 2022 at 00:36, Christoph Anton Mitterer <
cales...@scientia.org> wrote:
> $ hd /proc/19557/cmdline
> 73 73 68 3a 20 2f 68 6f 6d 65 2f 63 61 6c 65 73 |ssh:
> /home/cales|
> 0010 74 79 6f 2f 2e 73 73 68 2f 6d 75 78 2f 72 6f 6f
> |tyo/.ssh/mux/roo|
> 0020 74 40
On Fri, 4 Nov 2022 at 12:09, Christoph Anton Mitterer
wrote:
> pgrep --full --exact --euid "${LOGNAME}" --list-full -- "^ssh:
> ${HOME}/\.ssh/mux/.+ \[mux]$"
>
$ ./blah [4565] &
[1] 769
$ pgrep --full --exact --list-full '^/bin/sh ./blah \[4565]$'
769 /bin/sh ./blah [4565]
$ cat blah
On Sat, 31 Jul 2021 at 05:45, Mauricio Tagliaferro
wrote:
(no body text)
I suspect its not the hyphen but the length of the command.
$ ln -s /bin/sleep ./name-process
$ ./name-process 100 &
[2] 49256
$ killall -9 name-process
[2]- Killed ./name-process 100
This was killall
Package: wordpress
Version: 6.0.2+dfsg1-1
Severity: important
Tags: security
X-Debbugs-Cc: Debian Security Team
WordPress 6.0.3 is out and fixes many, many, many security issues:
* Stored XSS via wp-mail.php (post by email)
* Open redirect in `wp_nonce_ays`
* Sender’s email address is exposed
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: transition
The procps library is now finally changing. Over 20 years ago there was
a library to assist with the procps binaries but the API wasn't very
good nor not really intentioned for use
Package: prometheus-xmpp-alerts
Version: 0.4.2-1
Severity: important
prometheus-xmpp-alerts is expecting its datetime to be in UTC, but that
is not what the prometheus alertmanager uses.
This means basically prometheus-xmpp-alerts does not work with
prometheus-alermanager which is its main
Hi,
Im not seeing this issue at all in 5.9.3
cat crash-79988d8886068ffd86a3f3efc90d420f5284c45f | xargs agentxtrap
1: Bad value notation (bs)
$ agentxtrap -V
NET-SNMP version: 5.9.3
>
On Thu, 1 Sept 2022 at 16:39, Salvatore Bonaccorso
wrote:
> Do the issues affect as well older series?
>
I suspect so because 2 days ago there was an update for the 5.7 branch
upstream.
https://github.com/WordPress/WordPress/commit/8b87e45e69889ec4a6a837c9d6971697da49e2c8
The commit message
Hi Colin,
Thanks for the report. I first copied dh-exec-install-rename from dh-exec
0.23.4 and compiled OpenSSL fine. The odd thing is that 0.23.4 was out but
0.24 was on Salsa but never released. 0.25 was just an update of the Salsa
version and 0.26 was the re-introduction of the patches for
set_status: CVE-2022-24806, CVE-2022-24807, CVE-2022-24808,
+CVE-2022-24810
+
+ -- Craig Small Wed, 10 Aug 2022 16:16:59 +1000
+
net-snmp (5.9+dfsg-3) unstable; urgency=medium
* Source only upload - no changes Closes: #970798
diff -Nru net-snmp-5.9+dfsg/debian/patches/series net-snmp-
I said:
> I had uploaded net-snmp 5.9.3 anyway but I'll add those CVEs to the
> changelog.
> I'm trying to find where they've made the changes to see if it is possible
> to get at least bullseye fixed.
>
I've had a look and believe these two commits are the fixes:
snmpd: fix bounds checking in
On Sun, 17 Jul 2022 at 21:12, Craig Small wrote:
> Why, after 10 years, has the mass-rebuild triggered it?
>
Because after even more years of printing a useless warning Dejagnu now
makes it an error[1].
- Craig
1:
https://git.savannah.gnu.org/gitweb/?p=dejagnu.git;a=co
On Sun, 17 Jul 2022 at 00:03, Lucas Nussbaum wrote:
> > ERROR: global config file ../testsuite/global-conf.exp not found.
> > ERROR: global config file ../testsuite/global-conf.exp not found.
> > ERROR: global config file ../testsuite/global-conf.exp not found.
>
This bug is curious for a few
On Thu, 13 Oct 2016 21:31:38 +0200 Bastien ROUCARIES <
roucaries.bast...@gmail.com> wrote:
> > dh-exec --with=subst --no-act
> /usr/lib/dh-exec/dh-exec-filter | /usr/lib/dh-exec/dh-exec-subst |
> /usr/lib/dh-exec/dh-exec-strip [input: {0, NULL}, output: {0, NULL}]
>
> instead of
>
On Sun, 29 Oct 2017 at 20:51, Andreas Beckmann wrote:
> auto_nlist.c: In function 'auto_nlist_value':
> auto_nlist.c:68:18: error: 'struct nlist' has no member named 'n_name';
> did you mean 'n_type'?
>
Given this is a really old bug and there appears to be n_name in the
structure[1] I'm not
Hi Ole,
It looks like that offending code wasn't removed, it was just
relocated further along [1].
Looking at what they have done for net-snmp 5.9.2 snmplib/snmp_api.c
isn't changed between 5.9 and 5.9.2 so I'll apply it as the problem
isn't going away.
Your bug report was fine BTW. If there
Upstream should have a new version of net-snmp that compiles with
OpenSSL v3.0 in May. I've tested the RC1 release and it compiles
fine.
https://sourceforge.net/p/net-snmp/mailman/message/37642006/
- Craig
Package: libwayland-client0
Version: 1.20.0-1
Severity: important
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
xdg-desktop-portal-gnome keeps crashing. What I do to trigger it is to
click the download button on anything inside the Brave browser.
e.g. start brave
go to any project on
Hi Katharina,
Thanks for the bug report. Only the minimised file needs changing and it
needs to remove two characters. There is a single icon that makes a remote
call that needs to be removed and I missed the ', from it.
- Craig
On Tue, 5 Apr 2022 at 23:45, Katharina Drexel
wrote:
>
Hello,
You may recall quite some time ago there was this bug #810018 where it was
asked can procps ship pidof so that sysvinit-utils could have its Essential
flag removed.
That was.. back in 2016. Is this still something that would be useful to
be done?
Michael put some good work in looking
Package: wordpress
Version: 5.8.3+dfsg1-1
Severity: grave
Tags: security
Justification: user security hole
X-Debbugs-Cc: Debian Security Team
WordPress has released version 5.9.2 that has one bug fix and three
security fixes[1]. They state the security fixes are required back
to 3.7 so all
Hi,
My understanding of this issue is you are starting agentxtrap on the
command line and then doing something to it to make argv[0] = NULL ?
I can see how this is possible in a debugger, but is there any way of doing
this outside a debugger or something that is directly writing to the
process
On Sun, 27 Feb 2022 at 02:42, Sebastian Andrzej Siewior <
sebast...@breakpoint.cc> wrote:
> | transports/snmpTLSBaseDomain.c:59:22: error: static declaration of
> ‘ERR_get_error_all’ follows non-static declaration
> |59 | static unsigned long ERR_get_error_all(const char **file, int
>
On Sat, 12 Feb 2022 at 20:35, intrigeri wrote:
> Would one of you be interested in proposing this upstream?
>
Done
https://gitlab.com/apparmor/apparmor/-/merge_requests/852
Not sure if Debian BTS handles forwards to MR, I've only ever done it for
issues.
- Craig
On Sat, 12 Feb 2022 at 20:35, intrigeri wrote:
> So it seems to me a good solution may be to allow being ptraced
> in the "apache2-common" abstraction.
>
That makes sense.
> Would one of you be interested in proposing this upstream?
>
> I'm not using Apache2 myself so I'm not a good person to
Hi Michael,
Bug 100908 is a duplicate of 982436. 982436 suggested the 99 instead of
10.
I think the logic here is originally these settings were in
/etc/sysctl.conf and that's the last loaded file, so a 99 prefix puts it
"lastish".
- Craig
On Mon, 24 Jan 2022 at 21:00, Michael Schaller
Hi Drew,
I've read this a few times, is there something we can do to fix this?
Should the commit be rolled back?
On Tue, 4 Jan 2022 at 07:30, Drew Parsons wrote:
> Hi Craig, Commit 4ad43078 applied a patch for Bug#996245 to make the
> sample debian/rules for python packages suggest using
>
Package: wordpress
Version: 5.8.2+dfsg1-1
Severity: grave
Tags: security upstream
Justification: user security hole
X-Debbugs-Cc: Debian Security Team
WordPress have released version 5.8.3 which fixes 4 security bugs.
https://wordpress.org/news/2022/01/wordpress-5-8-3-security-release/
* An
On 2022-01-05 at 12:24, debian-b...@cboltz.de wrote:
> so all profiles that include abstractions/base can be ptraced.
>
> However, what you see happens in the HANDLING_UNTRUSTED_INPUT hat (this
> hat is used when Apache processes are idle) - and Apache hats typically
> don't include
Package: libapache2-mod-apparmor
Version: 2.13.6-10
Severity: minor
File: /etc/apparmor.d/usr.sbin.apache2
Hi AppArmor maintainers,
I noticed if I (or a script) ran "ss -tnlp" then my logs would show a
lot of lines like:
audit: type=1400 audit(1641349042.460:2559): apparmor="DENIED"
On Fri, 24 Dec 2021, 23:02 Christian Boltz, wrote:
> Support for "include if exists" was added to aa-logprof in version 3.0.
> Unfortunately the patch is quite big, which makes backporting to the
> 2.13 branch nearly impossible.
>
> I'm afraid you'll either need to upgrade to 3.x - or avoid
Package: apparmor-utils
Version: 2.13.6-10
Severity: normal
File: /usr/sbin/aa-logprof
Control: affects -1 wordpress
Hi AppArmor maintainers,
aa-logprof doesn't understand any lines that have include if exists.
$ sudo aa-logprof
ERROR: Syntax Error: Unknown line found in file
Package: ftp.debian.org
Severity: normal
Hi ftp people,
In January 2009 I RFA'ed lprng. In September 2020 cascardo made it an
orphan. It's basically been that since and I'm not even sure it has an
upstream.
This RM is for lprng-doc, the documentation of the orphaned lprng
package.
In July
1 - 100 of 1160 matches
Mail list logo