urity/ (so crafting a watch-file
> is not
> trivial). The upstream team (hi Dan and Marina) is helpful and responsive.
>
> Thanks to the work of Isaac Clerencia, Tomasz Muras, Didier Raboud, Thijs
> Kinkhorst and others, Moodle has been shipped with Debian in some form
Package: moodle
Followup-For: Bug #754565
It's not a big problem to remove whole tcpdf library from Moodle src - it
is not used by Moodle itself. However, there are other issues with the
package - including security fixes and I'm afraid there is too much work
too little interest in maintaining
Hi,
Keep in mind that even if backport is created there will be no upgrade path
from 1.9 to 2.5 - that was my biggest issue with Moodle in wheezy.
Tomek
On 03/11/2013 09:35 PM, Jonathan Wiltshire wrote:
On Mon, Mar 11, 2013 at 06:43:02PM +0100, Tomasz Muras wrote:
On 03/11/2013 05:22 PM, Jonathan Wiltshire wrote:
Just to clarify before I do it: stable stays as it is; remove moodle
from Wheezy and you will work on the basis of getting 2.5
On 03/11/2013 10:49 AM, Didier 'OdyX' Raboud wrote:
a) we fail at releasing Moodle updates to unstable in a timely manner (and I
have my share of the fault here);
b) we consequently fail at releasing Moodle security updates to wheezy in a
timely manner (this unblock is opened for almost
On 03/11/2013 05:22 PM, Jonathan Wiltshire wrote:
On 2013-03-11 10:18, Tomasz Muras wrote:
On 03/11/2013 10:49 AM, Didier 'OdyX' Raboud wrote:
So as much as I find that unfortunate, I think that the best solution
for all
of Moodle, Moodle-in-Debian and Debian, is to not ship Moodle 2.2
On 02/02/2013 11:58 AM, Craig Small wrote:
On Mon, Dec 17, 2012 at 03:55:48PM -0500, Tomasz Muras wrote:
Consider extending dh_make to add
Maintainer: Name Lastname email
line to debian/copyright
Hello Tomasz,
The copyright format has no such field. All of the templates follow
the format
On 01/23/2013 11:57 PM, Jonathan Wiltshire wrote:
I would be happy to accept the patches proposed, but they need fixing in
unstable first if they have not been already.
You can go ahead and upload to t-p-u once the fixes reach unstable, and I
will accept it after a few days to allow testing to
hidden
Fixes CVE-2012-6100
* MSA-13-0008: MDL-36620 - guest users can access RSS feed for site
level blogs
Fixes CVE-2012-6104
* MSA-13-0005: MDL-35991 - open redirect issues
Fixes CVE-2012-6101
-- Tomasz Muras nexor1...@gmail.com Tue, 15 Jan 2013 20:43:50 +0100
access RSS feed for site
level blogs
+* MSA-13-0005: MDL-35991 - open redirect issues
+
+ -- Tomasz Muras nexor1...@gmail.com Tue, 15 Jan 2013 20:43:50 +0100
+
moodle (2.2.3.dfsg-2.6~wheezy1) testing-proposed-updates; urgency=low
* Fix possible security issue for curl in 3rd party
On 01/14/2013 09:16 PM, Eric Lavarde wrote:
Hello,
On 14/01/13 19:48, Daniel Pocock wrote:
A few projects exist without following this convention, and sooner or
later somebody may try to package one of them.
According to the Java Language Specification, using a domain name is a
suggested
it as a dependency for other PHP package.
I am a DM and would like to get the appropriate DM upload permission set
at some point.
Regards,
Tomasz Muras
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Maybe I've reported it against a wrong version - the current one as
opposed to the next one to be uploaded.
moodle/2.2.3.dfsg-2.6~wheezy0 is the current version and the version
that fixes the security issue is moodle/2.2.3.dfsg-2.6~wheezy1
The new package is available at:
Package: wnpp
Severity: wishlist
Owner: Tomasz Muras nexor1...@gmail.com
* Package name: libgetoptionkit-php
Version : 1.2.1
Upstream Author : Yo-An Lin (c9s) cornelius.h...@gmail.com
* URL : https://github.com/c9s/GetOptionKit
* License : GPL v3
Programming
Package: dh-make
Version: 0.61
Severity: wishlist
Dear Maintainer,
Consider extending dh_make to add
Maintainer: Name Lastname email
line to debian/copyright
-- System Information:
Debian Release: 7.0
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel:
Package: maint-guide
Severity: wishlist
The choice between native non-native package may be confusing for the
newcomers. I would suggest making the guide easier and assume most/all
of the readers will create a non-native package.
I would remove the short chapter:
2.9. Initial native Debian
) testing-proposed-updates; urgency=low
+
+ * Fix possible security issue for curl in 3-rd party libraries:
+* phpCAS (CVE-2012-5583)
+* amazon-s3-php-class
+
+ -- Tomasz Muras nexor1...@gmail.com Tue, 27 Nov 2012 23:15:45 +0100
+
moodle (2.2.3.dfsg-2.6~wheezy0) testing-proposed-updates
Thanks for reporting it Andreas.
I have tried to reproduce it several times with the chroot and I think
this is a non-issue.
For some reason your database was not created - possibly because on of
the mysql packages was not installed (moodle depends on mysql or
postgresql). This is what I
On 09/30/2012 04:24 PM, Didier 'OdyX' Raboud wrote:
Le dimanche, 30 septembre 2012 15.45:03, Didier Raboud a écrit :
tags 687924 + patch
tags 687924 + pending
thanks
Dear maintainer,
I've prepared an NMU for moodle (versioned as 2.2.3.dfsg-2.3) and
uploaded it to DELAYED/1. Please feel free
On 07/23/2012 09:02 AM, Didier 'OdyX' Raboud wrote:
Le vendredi, 20 juillet 2012 20.56:21, Tomasz Muras a écrit :
...those are not covered:
MDL-31692 (CVE-2012-3389)
MDL-32126 (CVE-2012-3398)
MDL-33916 (CVE-2012-3388)
MDL-32199 (CVE-2012-3391)
MDL-31460 (CVE-2012-3392)
MDL-32155 (CVE-2012-3390
On 07/20/2012 08:21 PM, Didier Raboud wrote:
tags 682203 + patch
tags 682203 + pending
thanks
Dear maintainer,
I've prepared an NMU for moodle (versioned as 2.2.3.dfsg-2.1) and
uploaded it to DELAYED/3. Please feel free to tell me if I
should delay it longer.
Thanks Didier,
Those are fixes
If the user installing Moodle is not going to be able to give an
administrative user,
why not give him the option to provide the database, user and password instead?
I see your point and I agree, it would be nice for the package to provide such
an option.
It would require updating
Dear Alfredo,
Package installer (dbconfig-common) asks for admin password only to
create a new user and new database. To confirm that, check
/etc/moodle/config.php after you install Moodle.
If you prefer to, you can configure DB settings manually. When asked:
Configure database for moodle
Hello Juhani,
Thank you very much for spotting this - it is an important issue, I just
uploaded package with the fix.
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
No bother, I would even to to 2.3 but 2.2 is required for an upgrade
from 1.9. So it's very important that we get 2.2 into wheezy.
Tomek
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
On 04/13/2012 10:31 PM, Moritz Mühlenhoff wrote:
On Thu, Mar 08, 2012 at 09:26:20PM +0100, Tomasz Muras wrote:
forwarded 662945 http://tracker.moodle.org/browse/MDL-31938
What's the status? I signed up for a Moodle JIRA account, but
the bug seems to be restricted.
It is not fixed yet
forwarded 662945 http://tracker.moodle.org/browse/MDL-31938
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
I've started to work on Moodle 2 packaging some time ago. There is *a
lot* to be done there, so any help would be appreciated - please contact
me if you would like to help.
As for the version, 2.2 will be released soon. Either 2.2 or 2.3 needs
to go into sid, to provide continues security fixes.
Package: javahelper
Version: 0.37
Followup-For: Bug #632821
In my case this is caused by jh_manifest:
% ./javatut.jar
Hello world
% jh_manifest -cnet.zabuchy.Main javatut.jar
% chmod +x javatut.jar
% ./javatut.jar
Error! CRCs do not match! Got 1a6cd7b3, expected 0
Tomasz Muras
-- System
The previous follow up:
In my case this is caused by jh_manifest:
% ./javatut.jar
Hello world
% jh_manifest -cnet.zabuchy.Main javatut.jar
% chmod +x javatut.jar
% ./javatut.jar
Error! CRCs do not match! Got 1a6cd7b3, expected 0
should go to a bug #634089 - I've typed wrong number, sorry.
Tomasz
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Package: debian-maintainers
Severity: normal
This is my annual ping, please process.
cheers
Tomasz (Tomek) Muras
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
Package: wnpp
Severity: wishlist
Owner: Tomasz Muras nexor1...@gmail.com
* Package name : pmatch
Version : 0.4.0
Upstream Author : Tomasz Muras nexor1...@gmail.com
* URL : http://pmatch.rubyforge.org
* License : GPL v3
Programming Lang: Ruby
Package: wnpp
Severity: wishlist
Owner: Tomasz Muras nexor1...@gmail.com
* Package name: pmatch
Version : 0.4.0
Upstream Author : Tomasz Muras nexor1...@gmail.com
* URL : http://pmatch.rubyforge.org
* License : GPL v3
Programming Lang: Ruby
Description
Lars,
On Sat, Jul 2, 2011 at 1:03 PM, Lars Wirzenius l...@liw.fi wrote:
It seems you didn't Cc the bug, or debian-devel. Just in case that
was intentional, I'm not doing it either.
My mistake, thanks for pointing it out.
On Sat, Jul 02, 2011 at 12:36:51PM +0100, Tomasz Muras wrote
Package: drush
Version: 4.4-1
Severity: wishlist
drupal.org has now switched from CVS to git - I don't think there is a
need for drush
package to suggest CVS or Subversion. I'm not sure if there is any value in
suggesting git?
Tomasz Muras
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ
Package: wnpp
Severity: wishlist
* Package name: dragmath
Version : 0.7.8.2
Upstream Author : Chris Sangwin c.j.sang...@bham.ac.uk Alex Billingsley
em...@alexbillingsley.co.uk
* URL : http://www.dragmath.bham.ac.uk/
* License : GPL3
Programming Lang: Java
The same here - I need new YUI 3.2.0 (or later) for Moodle package.
cheers,
Tomek
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Thanks for reporting and for patch Mònica.
I see no problems with it (although I didn't test it yet) - but I'd
like to see what Moodle developers think about it.
I've submitted a bug report upstream:
http://tracker.moodle.org/browse/MDL-26283 .
Thank you Victor for sharing this. I have added note to the NEWS file,
the bug should be closed with the next upload.
Cheers!
Tomek
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Hi Ryan,
Thanks for reporting the bug!
Could you please let me know what was the version you were upgrading from?
cheers,
Tomek Muras
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
On 31/10/10 15:37, Adam D. Barratt wrote:
On Sat, 2010-10-30 at 13:18 +0100, Tomasz Muras wrote:
Please unblock package moodle
This version contains only updated translations and security
patches ported from the latest upstream release: 1.9.10.
Are these:
+ - Added patch for MDL
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package moodle
This version contains only updated translations and security
patches ported from the latest upstream release: 1.9.10.
unblock moodle/1.9.9.dfsg2-2
--
Package: libjs-yui
Version: 2.8.1-1
Severity: important
As per http://yuilibrary.com/support/2.8.2 :
A security-related defect was introduced in the YUI 2 Flash component
infrastructure beginning with the YUI 2.4.0 release. This defect allows
JavaScript injection exploits to be created against
not included
in the Moodle package as well.
Tomasz Muras
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Hi,
The big jump in a version was necessary to fix several security
vulnerabilities that has piled up over the last few years. I will
create a new version of the package that will depend on www-config
asap - hopefully later today.
Best regards,
Tomasz Muras
--
To UNSUBSCRIBE, email to debian
Package: bloboats
Version: bloboats_1.0.1.dsfg-3
Severity: minor
Small typo:
the package name should contain 'dfsg' instead of 'dsfg'
cheers,
Tomek Muras
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact
Package: dbconfig-common
Version: 1.8.46
Severity: normal
When removing a database during uninstall of my package (moodle),
dbconfig-common shows:
dbconfig-common: dropping pgsql database moodle.
dropping database moodle: does not exist.
The actual reason for not removing a DB is different -
Tags: unreproducible
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
04:24:59 raphael if they b-depend on haxe, mtasc, or swftools (if it
gets uploaded again) they probably do
04:25:43 dondelelcaro probably can be a lintian check
So there seems to be three tools available.
haxe and mtasc will not compile .fla files that are contained with the
Moodle
Package: wnpp
Severity: wishlist
Owner: Tomasz Muras nexor1...@gmail.com
* Package name: gnome-screensaver-flags
Version : 0.1
Upstream Author : Tomasz Muras nexor1...@gmail.com
* URL : http://techblog.zabuchy.net
* License : GPL
Programming Lang: None
Package: debian-maintainers
Please add Tomasz Muras nexor1...@gmail.com to Debian Maintainers keyring.
Thanks,
Tomek
Comment: Add Tomasz Muras nexor1...@gmail.com as a Debian Maintainer
Date: Wed, 21 Jul 2010 21:34:22 +0100
Recommended-By: Xavier Oswald xosw...@debian.org
Agreement: http
I can that there are more includes like this. All the non-existing
includes I was able to find are:
charts/charts-experimental-min.js
element/element-beta-min.js
imagecropper/imagecropper-beta-min.js
profilerviewer/profilerviewer-beta-min.js
selector/selector-beta-min.js
Hi Juan,
This bug is over 3 years old. If you are still interested in Moodle -
could you test it again with the recent version of the Moodle package?
cheers,
Tomek Muras
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact
I am taking over maintaining Moodle package. As suggested by the
previous maintainers I have re-packaged it from scratch with Moodle
1.9, see the VCS:
http://git.debian.org/?p=pkg-moodle/moodle.git;a=summary
I have started some documentation on Debian Wiki as well:
http://wiki.debian.org/Moodle
Package: ucf
Version: 3.0025
Severity: minor
Tags: patch
In ucf --help text replace uct to ucf.
--- ucf 2009-08-27 01:16:28.0 -0400
+++ ucf.NEW 2010-04-12 17:47:36.0 -0400
@@ -114,7 +114,7 @@
configuration file. )
--state-dir bar
Moodle uses nusoap only if PHP version is smaller than 4 or PHP is
compiled without SOAP.
There is no need for nusoap for neither Debian squeeze or unstable -
so the library can be simply removed in the new version of the package
(it should be OK to remove it even in lenny as PHP4 is no longer
On Fri, Apr 2, 2010 at 10:45 AM, Penny Leach pe...@mjollnir.org wrote:
I just realised that there are two of you working on this package - for
some reason I thought you were the same person, probably due to the emails
from both of you being procmailed into different maildirs.
I'm afraid it's
The main problem, I believe, is that the package needs to be updated to the
latest Moodle 1.9.x release. 1.9 was released two years ago.
The second biggest problem, is that it needs to be migrated to
dbconfig-common.
After that we don't really have a list of problems with the packaging per
Package: mypasswordsafe
Version: 0.0.20050615-1
Severity: important
When reading sample .dat file on my machine (AMD64 problem?) program hangs in
infinite loop.
Code that couses it exist in serializers.cpp, in BlowfishLizer::readEntry
method. After few bytes read,
readCBC function starts
59 matches
Mail list logo
