Processing commands for [EMAIL PROTECTED]:
# Automatically generated email from bts, devscripts version 2.9.27
tags 401894 upstream
Bug#401894: gnupg: [CVE-2006-6235] remotely controllable function pointer
Tags were: security
Tags added: upstream
tags 401898 upstream
Bug#401898: gnupg:
Package: sylpheed-claws-gtk2
Version: 2.6.0-1
Severity: grave
Justification: renders package unusable
From an xterm:
$ cd # go to home directory
$ rm -r .sylpheed-claws # try to start after general clean up
$ sylpheed-claws-gtk2
/home/fabien/.sylpheed-claws/sylpheedrc: fopen: No such file or
Package: bibledit
Version: 2.2-1
Severity: serious
There was an error while trying to autobuild your package:
Automatic build of bibledit_2.2-1 on caballero by sbuild/ia64 98
Build started at 20061206-1651
[...]
** Using build dependencies supplied by package:
Build-Depends: autotools-dev
On 2006-12-06 10:21:38 -0500 Mark Purcell [EMAIL PROTECTED] wrote:
ufraw is the only package, which I don't maintain which also has a
dependancy on exiv2 and they are Cc:ed on this email.
Thanks for CC:ing me.
I can reupload ufraw if necessary. But as long as there are no API
changes in
* Roberto C. Sanchez ([EMAIL PROTECTED]) [061206 18:28]:
Just realize that such an approach effectively prevents backporting
after the release of Etch. I generally use stable on all my machines,
so that is how I do much of my development work, on Stable. Anyhow, is
there any idea how many
ppc is big-endian...
--
Steve McIntyre, Cambridge, UK.[EMAIL PROTECTED]
I suspect most samba developers are already technically insane... Of
course, since many of them are Australians, you can't tell. -- Linus Torvalds
--
To UNSUBSCRIBE, email to [EMAIL
Goedson Teixeira Paixao [EMAIL PROTECTED] writes:
Em Qua, 2006-12-06 às 17:12 +0100, Andreas Barth escreveu:
* Goedson Teixeira Paixao ([EMAIL PROTECTED]) [061206 17:07]:
diff -ru apt-0.6.46.3/apt-pkg/deb/debindexfile.cc
apt-0.6.46.3.new/apt-pkg/deb/debindexfile.cc
---
Moritz Muehlenhoff a écrit :
Package: zope-cmfplone
Severity: grave
Tags: security
Justification: user security hole
I don't know very much about Plone and I didn't investigate too deeply
as Sarge is not affected, but I suppose this needs to be fixed for Etch:
Hi,
Having done the upgrade today, I am still subject to this bug. PHP was
not downgraded by the upgrade, and I don't know how to do that.
It seems that the bug is corrected in upstream svn version :
Revision : http://.egroupware.org/viewvc?view=revrevision=22825
Changelog :
Your message dated Wed, 06 Dec 2006 21:17:02 +
with message-id [EMAIL PROTECTED]
and subject line Bug#401896: fixed in pygtk 2.8.6-7
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your
Processing commands for [EMAIL PROTECTED]:
tags 379947 + pending
Bug#379947: new version of knowledgetree available
There were no tags set.
Tags added: pending
tags 389193 + pending
Bug#389193: Recommends unavailable virtual-mysql-server (= 4.0.0)
There were no tags set.
Tags added: pending
Package: libapache2-mod-fcgid
Version: 2.0-1
Severity: critical
Justification: breaks unrelated software
Merely enabling the fcgid module causes all Apache children to segfault as soon
as they start. This started happening when I upgraded from Apache 2.0.x. Here's
a snippet from the Apache
Le mercredi 06 décembre 2006 à 21:17 +, Loic Minier a écrit :
* Let python-gtk2-dev depend on python-all-dev; closes: #401896.
Shouldn't python-dev be enough? Depending on python-all-dev will bring
all python interpreter versions, this sounds overkill to me.
--
Josselin Mouette
tags 395321 + patch
thanks
Hello,
I fix this bug by using module_param instead of MODULE_PARM which is
deprecated (in favor of module_param) and not type-safe. It builds fine
but could you please try this patch and tell me if the module behaves
correctly? If so, I will prepare a NMU.
Processing commands for [EMAIL PROTECTED]:
tags 395321 + patch
Bug#395321: vaiostat-source: fails to build against 2.6.18
There were no tags set.
Tags added: patch
thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
Package: compiz
Version: 0.2.2-1
Severity: grave
Justification: renders package unusable
When executing the following command :
compiz --replace
from an X terminal window, the X server crashes.
Compiz was working fine until my last apt-get update
which upgraded xserver-xorg to version
Processing commands for [EMAIL PROTECTED]:
merge 401591 401574
Bug#401574: reportlab-accel - FTBFS: dh_pycentral: Command not found
Bug#401591: reportlab-accel: dh_pycentral: Command not found
Merged 401574 401591.
thanks
Stopping processing here.
Please contact me if you need assistance.
On Wednesday 06 December 2006 15:21, Mark Purcell wrote:
Is there
a soname changed involded? aka will apps build against 0.10
still run when exiv2 0.12 is installed without a rebuild?
I've just had a look and there is an soname change and thus a library
transition involved..
Mark
Processing commands for [EMAIL PROTECTED]:
# the following bugs are closed by packages in NEW
#
tags 128764 pending
Bug#128764: xcircuit: maybe add another menu entry ?
Tags were: patch
Tags added: pending
tags 226233 pending
Bug#226233: upgrade to Tcl/Tk GUI?
Tags were: patch
Tags added:
Your message dated Wed, 06 Dec 2006 22:47:06 +
with message-id [EMAIL PROTECTED]
and subject line Bug#401740: fixed in xine-lib 1.1.2+dfsg-2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is
tags 401917 pending
thanks
Thanks,
just checking with upstream what ping is being used for and whether a
package dependency is needed as well as the build dep before I upload.
d
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processing commands for [EMAIL PROTECTED]:
tags 401917 pending
Bug#401917: bibledit_2.2-1(ia64/unstable): FTBFS: missing build-dep
There were no tags set.
Tags added: pending
thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
Hi Cameron and Stefan,
Stefan requested that I request CVE IDs for the torrentflux issues from
Mitre, which I have done, please see below for these. It would be good
to pass these upstream and include them in any changelogs that fix these
issues that haven't been uploaded already.
micah
New
Here my output:
utopia:~# apt-get install gaim
Reading package lists... Done
Building dependency tree... Done
gaim is already the newest version.
0 upgraded, 0 newly installed, 0 to remove and 1 not upgraded.
2 not fully installed or removed.
Need to get 0B of archives.
After unpacking 0B of
Package: libx11-6
Version: 2:1.0.3-4
Severity: critical
Tags: security
Justification: root security hole
First of all, I tagged this bug as critical because the description in
reportbug fit, but as the issue is relatively harmless and not directly
caused by libx11, feel free to reprioritise, I
Package: libneon26-gnutls
Severity: serious
Hi,
bazaar now got NMUed and it now builds against libneon26-gnutls. Which
isn't a problem in itself.
The Problem here is that libneon26 and libneon26-gnutls are *NOT*
parallel installable. This causes bazaar to indirectly conflict with
anything
Your message dated Thu, 07 Dec 2006 00:02:10 +
with message-id [EMAIL PROTECTED]
and subject line Bug#398733: fixed in open-iscsi 2.0.730-1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is
Your message dated Thu, 07 Dec 2006 00:02:10 +
with message-id [EMAIL PROTECTED]
and subject line Bug#397636: fixed in open-iscsi 2.0.730-1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is
Processing commands for [EMAIL PROTECTED]:
severity 400720 serious
Bug#400720: mozilla-plugin-vlc: vlc plugin broken: (no video)
Severity set to `serious' from `normal'
End of message, stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system
Debian Bug Tracking System wrote:
Thank you for the problem report you have sent regarding Debian.
This is an automatically generated reply, to let you know your message has
been received. It is being forwarded to the package maintainers and other
interested parties for their attention; they
On 12/4/06, Stefan Fritsch [EMAIL PROTECTED] wrote:
The metaInfo.php issue doesn't seem to be fixed in 2.2
To be clear, I would like to point out that the more serious remote
command execution using metaInfo.php IS fixed in 2.2.
However, the local privilege escalation is present in 2.2 by a
Hi Micah,
Thanks for doing this. Unfortunately, I think one of these reports is
a duplicate, and some are inaccurate as they don't apply to version
2.2. I don't know how these work, but if you can update them you may
want to make some changes. See my notes below.
On 12/6/06, Micah Anderson
Processing commands for [EMAIL PROTECTED]:
reassign 401961 neon26
Bug#401961: conflicts with libneon26, making most neon-using packages
uninstallable
Bug reassigned from package `libneon26-gnutls' to `neon26'.
forcemerge 401388 401961
Bug#401388: libneon26-gnutls should not conflict with
Jérôme Marant [EMAIL PROTECTED] writes:
Didn't you break the autofiles, by chance? You told me you changed
something in the autodiff patch?
I only moved the autofiles.diff back to the end of patches/series. It
had migrated to be next to last, and it has to be last.
One way to make sure that
tags 401603 + pending
# lowering severity as the fix is already implemented for daily builds
severity 401603 important
thanks
On Wednesday 06 December 2006 10:05, Joey Hess wrote:
If I run the build by hand (in fakeroot), it's crw-r--r-- all the way
through, and is ok in the initrd. The next
On 12/6/06, Cameron Dale [EMAIL PROTECTED] wrote:
On 12/4/06, Stefan Fritsch [EMAIL PROTECTED] wrote:
The metaInfo.php issue doesn't seem to be fixed in 2.2
To be clear, I would like to point out that the more serious remote
command execution using metaInfo.php IS fixed in 2.2.
Sorry for the
On 12/6/06, Cameron Dale [EMAIL PROTECTED] wrote:
==
Name: CVE-2006-6331
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6331
Reference:
CONFIRM:http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=%23400582
Processing commands for [EMAIL PROTECTED]:
tags 401603 + pending
Bug#401603: d-i: i386 netinst installgui fails to boot due to broken file
attribs in /dev
There were no tags set.
Tags added: pending
# lowering severity as the fix is already implemented for daily builds
severity 401603
On 12/4/06, Stefan Fritsch [EMAIL PROTECTED] wrote:
In index.php and dir.php, urldecode() is called after the htmlentities
escaping is done by getRequestVar(). This allows to bypass the
escaping. In dir.php this could be used for a XSS. Replace $dir by
htmlentities($dir) in the error message. Or
Package: apt
Version: 0.6.46.3-0.2
Severity: grave
I had been posting to
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=401263 but it has
become clear from the patch posted yesterday that that bug is a
separate issue to the one I am seeing with the Debian Installer. Most
of the information in
Processing commands for [EMAIL PROTECTED]:
# Automatically generated email from bts, devscripts version 2.9.27
close 401765 1.4.5-3
Bug#401765: gnupg: [CVE-2006-6169] buffer overflow in ask_outfile_name() also
present in Sarge
'close' is deprecated; see
Package: mozilla
Severity: grave
Justification: renders package unusable
after todays update (iceape install) mozilla package (mozilla 1.8 not
seakmonkey 1.0.6) is not any more installable:
The following packages have unmet dependencies:
mozilla: Depends: iceape but it is not going to be
On Wednesday 06 December 2006 16:19, KELEMEN Peter wrote:
That should have read “If the release managers allow upload of
0.12...”. Apologies and waiting for the reply.
Peter,
While we await a decision from debian-release.
Could you post packages to either experimental or people.debian.org
* 2006-12-06 23:08, Encolpe Degoute wrote:
Moritz Muehlenhoff a écrit :
Package: zope-cmfplone
Severity: grave
Tags: security
Justification: user security hole
I don't know very much about Plone and I didn't investigate too deeply
as Sarge is not affected, but I suppose this needs
On Wed, Dec 06, 2006, Josselin Mouette wrote:
Shouldn't python-dev be enough? Depending on python-all-dev will bring
all python interpreter versions, this sounds overkill to me.
I wanted to depend on python-dev | python-something-dev, but there's no
virtual provide shared by python2.X-dev
On Thu, Dec 07, 2006 at 03:09:56PM +0900, Clemens Schwaighofer [EMAIL
PROTECTED] wrote:
Package: mozilla
Severity: grave
Justification: renders package unusable
after todays update (iceape install) mozilla package (mozilla 1.8 not
seakmonkey 1.0.6) is not any more installable:
The
101 - 146 of 146 matches
Mail list logo
