Hi,
On 07/07/2020 17:07, Sylvain Beucler wrote:
> On 06/07/2020 19:11, Sylvain Beucler wrote:
>> Do we have definite info on what versions are affected?
>>
>> I cannot reproduce the issue in jessie/stretch/buster (5.7.x).
>>
>> Incidentally Salvatore's tes
Hi,
On 06/07/2020 19:11, Sylvain Beucler wrote:
> Do we have definite info on what versions are affected?
>
> I cannot reproduce the issue in jessie/stretch/buster (5.7.x).
>
> Incidentally Salvatore's test now yields an error in bullseye
> (5.8dfsg-3), though I
-u testuser -a SHA -A
testpass -x AES -X testpass 127.0.0.1 1.3.6.1.2.1.1.5 1.3.6.1.2.1.1.7
Error in packet.
Reason: (genError) A general failure occured
Cheers!
Sylvain Beucler
Debian LTS Team
Hi,
AFAICT the vulnerability is introduced in:
https://github.com/varnishcache/varnish-cache/commit/62932b422f311ed1224f14a216169bcdc1b77a2d
(removed "req->err_reason = NULL;")
The reproducer below doesn't leak with the prior commit, and leaks with
that commit as well as stretch/5.0.0.
reopen 957253
thanks
I didn't actually build with GCC-10 and I suspect it won't.
There seem to be a transient issue with installing dependencies on
experimental right now, so I'll retry later.
ix to older versions.
Cheers!
Sylvain
I didn't check whether the "undetermined" state would work for a lower
suite, thanks. I'll mark it as "postponed" or "ignored" instead -- but
hopefully I'll get some info :)
.
Cheers!
Sylvain
/default.vcl -p max_restarts=1
curl localhost:6081/1 localhost:6081/2
-> Reason: Service Unavailable
(no leak)
Cheers!
Sylvain
Hi,
My address also seems to have been blacklisted: 90.120.212.217
I would be really grateful if it could be unblocked.
Regards.
od to set a deadline in advance for
this issue to be resolved.
What are your suggestions?
Cheers!
Sylvain
Upstream commit:
https://git.linux-nfs.org/?p=steved/nfs-utils.git;a=commitdiff;h=fee2cc29e888f2ced6a76990923aef19d326dc0e
ther information see:
[0] https://security-tracker.debian.org/tracker/CVE-2014-2875
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2875
Please adjust the affected versions in the BTS as needed.
Cheers!
Sylvain Beucler
Debian LTS Team
ll is silent. Spider is the worst.
> If this is still visible on your system then
> some more information could help.
> - Which game have you played inside kpat?
> - Some example lines of the messages in .xsession_errors
See bug 941858.
--
Sylvain L. Sauvage
-- 1 root root 2043816 juil. 19 2019 /boot/vmlinuz-4.19.0-5-marvell
-rw-r--r-- 1 root root 2165432 janv. 19 10:22 /boot/vmlinuz-5.4.0-3-marvell
$ cat /sys/class/mtd/mtd1/size
2097152
/boot/vmlinuz-5.4.0-3-marvell is too large and can't be flashed to /dev/mtd1.
Thank you
--
Sylvain
-- Package
ten to for a day".
At first glance the situation looks OK to me. What would you recommend?
Cheers!
Sylvain
Hi,
On 26/12/2019 01:13, Jacob Nevins wrote:
> In 2017, Sylvain Beucler wrote:
>> it's best to bug upstream into making a proper release, this would
>> benefit to everybody.
> There's now been an upstream release: 2019.1 (and 2019.1.1 shortly
> afterward).
> <https
ure script.
It seems this was introduced during a refactoring for 7.0.0-rc1-1
https://lists.debian.org/debian-security/2019/11/msg00020.html
See https://wiki.debian.org/EmbeddedCodeCopies for further information.
Cheers!
Sylvain
ure script.
It seems this was introduced during a refactoring for 7.0.0-rc1-1
https://lists.debian.org/debian-security/2019/11/msg00020.html
See https://wiki.debian.org/EmbeddedCodeCopies for further information.
Cheers!
Sylvain
this issue with Debian.
Any ideas?
(Also, upstream patch was reviewed/approved at last:)
https://lists.freedesktop.org/pipermail/mesa-dev/2019-November/223771.html
Cheers!
Sylvain
Dear Maintainer,
Calling autoconf before running configure script fixes the issue
about detecting whether fork() is available in AC_FUNC_FORK macro.
Sylvain
diff -Nru a/debian/rules b/debian/rules
--- a/debian/rules 2019-08-19 00:44:52.0 +
+++ b/debian/rules 2019-10-27 13:47
-----
Cheers,
Sylvain
-- System Information:
Debian Release: bullseye/sid
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'oldstable-updates'), (500,
'oldoldstable'), (500, 'unstable'), (500, 'testing'), (500, 'stable'), (500,
'oldstable'), (1, 'exper
' nfs-common ' | awk '{print $3}')" !=
'1:1.3.4-2.6' ]; then
exit 0
fi
if [ "$(stat -c '%U:%G' /var/lib/nfs)" != 'root:root' ]; then
exit 1
fi
if [ "$(stat -c '%U:%G' /var/lib/nfs/sm)" != 'statd:nogroup' ]; then
exit 1
fi
fi
Cheers!
Sylvain
mode to force statd:
$ sudo service rpcinfo stop
$ sudo service rpcinfo start
$ sudo mount -t nfs -o vers=3 127.0.0.1:/media/nfs /mnt/t
$ ps aux | grep statd
Ensure rpc.statd runs as 'statd' (not 'root').
Cheers!
Sylvain Beucler
Debian LTS Team
issue is now fixed upstream in openssh.
https://github.com/openssh/openssh-portable/pull/149
Sylvain
signature.asc
Description: Digital signature
,
Sylvain
-- System Information:
Debian Release: 10.1
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: i386 (x86_64)
Kernel: Linux 3.16.74 (SMP w/4 CPU cores)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE
.com/show_bug.cgi?id=1737797
To the least, it would help to know which versions are affected.
Please adjust the affected versions in the BTS as needed.
Cheers!
Sylvain Beucler
Debian LTS Team
Hi,
I'm in the Debian LTS/ELTS team and considering an update for this issue.
Do you (package maintainers) intend to address it?
Or would you like a patch?
Cheers!
Sylvain
s.git/tree/vhffs-patches/php5?id=28c40430856181b6d56694c0091995e44af8acd4
Sylvain
signature.asc
Description: Digital signature
3/dist-packages/carbon/cache.py", line 116, in
choose_item
return next(self.queue)
builtins.StopIteration:
Is seems to be related to Github issues. carbon-cache daemon has to be
restarted very, very often…
--
Sylvain
Attached.
I cannot reproduce the segfault with netpbm-10.47.63 on Jessie nor with
our netpbm-free.
This looks like a random crash so compiler hardening might be mitigating.
I asked the reporter for more info.
Source:
https://bugzilla.suse.com/show_bug.cgi?id=1024287
9763
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19763
https://github.com/saitoha/libsixel/issues/82
Please adjust the affected versions in the BTS as needed.
Cheers!
Sylvain Beucler, Debian LTS team
retitle 931309 libgig: Multiple security issues (CVE-2018-14449..14459,
CVE-2018-18192..18197)
thanks
(typo: not CVE-2018-14460)
urity-tracker.debian.org/tracker/CVE-2018-18196
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18196
[17] https://security-tracker.debian.org/tracker/CVE-2018-18197
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18197
Please adjust the affected versions in the BTS as
Hi!
On Thu, May 23, 2019 at 11:42:51PM +0200, Markus Koschany wrote:
> On Mon, 20 May 2019 12:20:31 +0200 Sylvain Beucler wrote:
> > Package: axis
> > X-Debbugs-CC: t...@security.debian.org
> > Tags: security
> >
> > The following vulnerability was published f
ttps://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0227
[1]
https://github.com/apache/axis1-java/commit/35511b872a6460129cfc0cd35baaccbd820977b5
Cheers!
Sylvain Beucler
Debian LTS Team
because it is running with less
> problems.
> Like https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=926066
> or https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=910494
Thanks for the report!
- Sylvain
Hi,
On 06/05/2019 23:33, Sylvain Beucler wrote:
> On 06/05/2019 15:47, Hideki Yamane wrote:
>> On Mon, 6 May 2019 15:04:09 +0200 Karsten wrote:
>>> Package: firefox-esr
>>> Version: 60.6.1esr-1~deb8u1
>> It was already done in unstable and stable-proposed-upd
ling list.
>
> LTS maintainers, could you build it for oldstable, please?
I'm rebuilding the new version with the previous oldstable changes.
(any estimated time for parallel build 4CPU/SSD?)
If the build succeeds and if I can install extensions again, I'll upload
to LTS.
Cheers!
Sylvain
control: severity -1 important
thanks
elog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2019-11065
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11065
https://github.com/gradle/gradle/pull/8927
Cheers!
Sylvain Beucler
s/27
https://gitlab.gnome.org/GNOME/evolution-ews/issues/36
https://bugzilla.redhat.com/show_bug.cgi?id=1678313
Note: depends on evolution-data-server patch
Cheers!
Sylvain Beucler / Debian LTS
/CVE-2019-10735
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10735
https://www.thewildbeast.co.uk/claws-mail/bugzilla/show_bug.cgi?id=4159
Cheers!
Sylvain
Uploaded to jessie-security.
-generated queries
(during CSV import).
(but no more phpX-mysql vs. phpX-mysqlnd AFAICS.)
Cheers!
Sylvain
=-+-===
libdbd-mysql |
libdbd-pgsql |
libdbd-sqlite3|
--
Sylvain L. Sauvage
. Shortly after the window appears (and before the
contents of the help appears) MATLAB crashes with the following message.
Hope it helps.
Best regards,
Sylvain Chevillard
Segmentation violation detected at Wed Aug 29
instead of clang++-6.0 works fine
* Using '-fuse-ld=bfd', '-fuse-ld=lld' or no flags (bfd default) works fine
* Using another ('undefined', 'thread' or 'memory') sanitizer is also broken
while no sanitizers works fine
Sylvain
-- System Information:
Debian Release: buster/sid
APT prefers testing
Fixed in glibc, but not in CLDR yet:
https://sourceware.org/bugzilla/show_bug.cgi?id=22996
free to upload.
As per Social Contract #3 I do have to explain to my users why they get
the security fix after the disclosure.
This is not a commentary, this is purely factual.
Please advise.
- Sylvain
Le mercredi 6 juin 2018, 17:06:56 CEST Volker Diels-Grabsch a écrit :
> Dear Sylvain,
>
> One of the pushover developers here. I think we fixed that one, as
> well as some related issues.
>
> Would you mind retrying with the latest pushover version? […]
Indeed, the segfaulti
and it works.
Thanks!
--
Sylvain L. Sauvage
ggests field is empty.
--
Sylvain L. Sauvage
Hi,
I’m using Plasma5 and kwallet did stop working.
--
Sylvain L. Sauvage
HI,
thanks for your answer, I will collect references in order to fill the
ticket in CLDR.
P: Dpatch author: Niv Sardi
+# DP: Patch author: Sylvain Lesage
+# DP: Upstream status: Not Submitted
+# DP: Date: 2018-03-22
+
+@DPATCH@
+diff -urNad '--exclude=CVS' '--exclude=.svn' '--exclude=.git'
'--exclude=.arch' '--exclude=.hg' '--exclude=_darcs' '--exclude=.bzr'
glibc~/localedata/locales/e
Hi,
Given my past collaboration with the original authors, I believe this is
an oversight!
I'll see what I can do.
Also I wish you wouldn't start mentioning package removal/replacement on
first contact, this is inconsiderate.
Regards.
On 02/03/2018 04:19, Julie Marchant wrote:
> Package:
Package: mpdVersion: 0.19.21-1
Hi,
If I change the port in mpd.conf and restart mpd it still listens on the
default 6600 port.I even uncommented the MPDCONF line in /etc/default/mpd, but
it still doesn't work.
With changed port in mpd.conf to 6601 and restarting mpd (same result if
started via
screens in a multi-display setup
- main display's left origin briefly shifted to the right causing a
"wrapping" effect
I didn't experience a system crash though.
Cheers!
Sylvain
Source: maven
Followup-For: Bug #880952
I've checked upstream (which I should have done first) and it seems version
3.5.2 has fixed the issue (at least the piped one).
So I guess this issue can be turned into an upgrade to 3.5.2 wishlist.
Thanks.
-- System Information:
Debian Release:
to be processed.
The following command 'mvn -v | cat' should not output bold text.
Also note that, in my opinion, 'mvn -v -B' should also disable bold/color
output, but don't.
Sylvain
-- System Information:
Debian Release: buster/sid
APT prefers testing
APT policy: (990, 'testing'), (800
Package: locales
Version: 2.24-17
Severity: normal
Tags: l10n newcomer
Dear Maintainer,
in Bolivia, nobody uses the A4 format, it's impossible to buy this kind of
paper. The default paper size is "letter", and everybody uses it.
Meanwhile, the es_BO configuration indicates the A4 format as
Operation not supported: unsupported disk driver qemu"
This error is not present in version 1:2.8+dfsg-6+deb9u1.
--
Sylvain Leroy
the
live-build package.
Thank you very much for all the nice job you do.
Sylvain Chevillard
-- System Information:
Debian Release: 9.1
APT prefers stable
APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.9.0-2-amd64 (SMP w/1 CPU core)
Locale: LANG=fr_FR.UTF-8
/grafana/public/vendor/jquery
with https://github.com/components/jquery/tree/1.8
<https://github.com/components/jquery/tree/1.8> — you just need to create a
"dist" directory with a jquery.js symlink in it.
The fix would be then to change the jQuery version to 1.8.x.
Sylvain
ake
and its targets.
I'm not really able to test that much more, nor provide a full patch for the
packaging repo but I can test any .deb that would have such fixes (including
the 5.0 snapshots).
Regards,
Sylvain
-- System Information:
Debian Release: 9.0
APT prefers testing
APT policy: (
0/cmake, one gets:
CMake Error at /usr/share/llvm-4.0/cmake/ClangConfig.cmake:17 (include):
include could not find load file:
/usr/lib/cmake/clang/ClangTargets.cmake
Call Stack (most recent call first):
CMakeLists.txt:3 (find_package)
I'm guessing some paths needs to be updated in order to hand
away or twice for the same job.
You can see aptitude’s output (in French, but you should get the
gist of it) in the attached file.
Sincerely,
--
Sylvain Sauvage
# aptitude
Récupération des rapports de bogue… Fait
Analyse des informations Trouvé/Corrigé… Fait
Lecture des fichiers de modifications
I found a fix for that issue, it's not pretty but it works. Just add
this to your apache config:
LimitGIDRange 0 9
LimitUIDRange 0 9
Hi Sandro,
The patch Emilio wrote is a great fix, thank you both for your help in
fixing this issue and preparing a new upload.
Needless to delay the fix any longer.
Regards,
Sylvain
with HP VC FlexFabric-20/40 F8 Module (embeddeb with QLogic
QMH2572 8Gb FC HBA for HP BladeSystem c-Class) in a HP C7000 Enclosure
On related link : https://www.kernel.org/doc/Documentation/scsi/bnx2fc.txt
Regards,
--
M. Sylvain COSTARD
Université Rennes 2
Direction du Système
Hi Stephen,
On Sat, Jan 21, 2017 at 06:33:04PM +0100, Stephen Kitt wrote:
> Hi Sylvain,
>
> On Fri, 20 Jan 2017 20:20:46 +0100, Sylvain <b...@debian.org> wrote:
> [...]
> > With regard to gargoyle-free in particular: the package is inactive
> > upstream so it's pr
t just so you know, for
all these reasons this was quite a bad first impression :(
With regard to gargoyle-free in particular: the package is inactive
upstream so it's probably best to let the package die and reintroduce
it in Debian when they actually make a new release.
Cheers!
Sylvain
Hello,
Here is in attachment the latest patch we made for
fcoe-utils-1.0.29+git20140505 version for Debian.
All is working and ifdown/ifup is no longer necessary to see hosts in
/sys/class/fc_host/
Regards,
--
M. Sylvain COSTARD
Université Rennes 2
Direction du Système
and debian 8.
Now a little not about your reporting webpage which is *strongly*
recommanding :
# apt-get install reportbug
in this case it will ask for an apt-update which will destroy the system,
without a chance to report anything.
Hope this helps.
Sylvain.
option.
It would be nice if the default crontab would allow to define post-hooks
without modifying the crontab, for example by running run-parts on a new
/etc/letsencrypt/post-hook.d/ directory.
Thanks,
Sylvain
=455
- RedHat bugzilla https://bugzilla.redhat.com/show_bug.cgi?id=1083003#c0.
A patch was provided in omd tracker
http://git.mathias-kettner.de/git/?p=omd.git;a=blob;f=packages/nagios/patches/0007-fix_downtime_struct.dif;h=af0e245b585e78c372a69d10c5e3b47ab64ad510;hb=HEAD.
Thanks
Sylvain
2016-08-16 11:34 GMT+02:00 Sylvestre Ledru :
> You could report this bug upstream?
> http://llvm.org/bugs/
>
Done: https://llvm.org/bugs/show_bug.cgi?id=28997
Though, I'm not sure how to appropriately mark the Debian bug to link to
the upstream bug.
Package: clang-3.9
Version: 1:3.9~+rc1-1~exp1
Severity: important
Dear Maintainer,
The new mangling behavior of clang++ for GCC abi_tag attribute seems to be
different from the g++ one on some edge cases.
Consider the following code:
$ cat classes.hpp
#include
struct Mother
{
virtual
Hello,
It seems that this issue is not with symbolic links but with relative
symbolic links. Symlinking directly to the absolute path of the real
file fixes the bug :
sylvain@bureau:/usr/share/xul-ext/ublock-origin/css/fonts$ ls -l
total 12
lrwxrwxrwx 1 root root 62 juil. 30 11:45
small_map
was cleaned-up and shortened, so the index computation resulted in
far larger indices.
AFAICS this is already fixed in the in-progress 109.0 version.
Cheers!
Sylvain
On Sat, Jun 04, 2016 at 12:07:13PM -0400, Bas Wijnen wrote:
> Package: freedink
> Version: 108.4-1
> Severity:
Control: tags -1 fixed-upstream
thanks
Hi,
AFAICS I switched to a '<' in my latest clean-up, probably because I
fixed the same warning.
Cheers!
Sylvain
On Sat, Jun 04, 2016 at 11:17:41AM -0400, Bas Wijnen wrote:
> Package: freedink
> Version: 108.4-1
> Severity: normal
>
&g
> Le 23 mars 2016 à 11:55, Sylvain Veyrié <s...@transparencyrights.com> a écrit
> :
>
> Le 10/02/2016 23:12, Martín Ferrari a écrit :
>> I was waiting for the final 0.12.0 to be released, but since that is taking
>> a while, I should try to fix this somehow...
Package: anope
Version: 2.0.3-2
Severity: normal
Dear Maintainer,
Anope used with its flatfile db backend (default) with backups enabled
(default as well) exits after a while because it cannot create the backup
database into /var/lib/anope/db/backups:
Anope log:
[Apr 23 20:48:20 2016] Anope
it in user code is quite common for a while now.
In the current state of the package, one cannot use the mathgl library
with C++11 code wich is, in my opinion (and at least in my use case) a
big problem.
Thanks,
Sylvain
/include/mgl2/config.h file but I still see the two
defines at '1' lines 22 and 27
Thanks for your time,
Sylvain
-- System Information:
Debian Release: stretch/sid
APT prefers testing
APT policy: (990, 'testing'), (800, 'stable-updates'), (800, 'stable'), (700,
'unstable'), (90, 'experimental
Package: debian-installer-8-netboot-armhf
Severity: normal
Tags: d-i
Dear Maintainer,
System information are not good as i use reportbug from by PC.
I am trying to reinstall Debian Jessie on a cubieboard2 with netboot installer
(already installed last year) but install hangs after partitionning
imap.c could help,
but my attempts miserably failed (panicking on both 2.2.18 and 2.2.22
so I'm doing something wrong).
--
Sylvain
--
Sylvain
till have the crash.
--
Sylvain
. "OR (YOUNGER 100)
(YOUNGER 100)" and "INTHREAD REFS YOUNGER 100" don't trigger it,
however.
Thanks
--
Sylvain
mars 19 09:25 Messages non lus
drwx-- 2 sleveque sleveque 4096 mars 13 22:50 Messages r
-rw-r--r-- 1 sleveque sleveque 100 mars 4 2013 .virtual-subscriptions
In case you are not familiar with it, accentuated letters are UTF7 encoded, the
"" represents "é" an
eld, which is wrong.
Attached is a patch which continues to the next field with brackets if the
date parsing failed until there is not more field with brackets instead
of only considering the first one.
Sylvain
-- System Information:
Debian Release: stretch/sid
APT prefers stable-updates
APT
Package: fop
Version: 1:2.1-1
Followup-For: Bug #808839
Dear Maintainer,
The issue is still reproducible with the last version from sid.
The behavior is still the same, it is triggered by the use of the jlatexmath
plugin with any *.fo file.
Thanks
-- System Information:
Debian Release:
I finally took some time to debug this and it seems the problem may be
related to libjlatexmath-fop-java.
In my setup I use LaTeX formatting from a docbook file to produce a PDF
file with fop and jlatexmath fop plugin.
My invocation of fop is prefixed by:
xist in upstream yet: it has 3 release candidates
(rc1, rc2 and rc3), and Makefile in deb source does specify 0.12.0rc1.
(I was looking for the systemd feature introduced in 0.12.0rc3)
--
Sylvain Veyrié
-- System Information:
Debian Release: 8.2
APT prefers stable
APT policy: (950, 'stab
Package: fop
Version: 1:2.0+dfsg-5
Followup-For: Bug #808839
Dear Maintainer,
Thanks for taking a look at this.
Unfortunately I already have this package installed so that does not change
anything.
$ aptitude versions gsfonts-x11
Paquet gsfonts-x11 :
p 0.22 stable
Thanks for your bug report.
I've proposed a fix to replace module-init-tools.
It will be part of the next release (0.25-1).
Piotr is currently reviewing my RFS.
Sylvain
On Sat, Jan 09, 2016 at 02:13:18PM +, Alessandro Ghedini wrote:
> On Fri, Oct 23, 2015 at 05:06:17PM +1100, Sylvain BERTRAND wrote:
> > Package: mpv
> > Version: 0.6.2-2
> >
> > mpv fill memory while playing a vp9/opus/webm video file.
> > totem is fine, i
Package: fop
Version: 1:2.0+dfsg-4
Severity: grave
Justification: renders package unusable
Dear Maintainer,
Since I've updated my fop version (to 1:1.1.dfsg2-1) I can't use it anymore as
I get the following error:
[ERROR] FOP - Exception java.lang.IllegalArgumentException: URI is not
101 - 200 of 1393 matches
Mail list logo