Processing commands for cont...@bugs.debian.org:
> reassign 631347 src:php5
Bug #631347 [php5] CVE-2011-2483 crypt_blowfish: 8-bit character mishandling
allows different password pairs to produce the same hash
Bug reassigned from package 'php5' to 'src:php5'.
> forcemerge 631286 631347
Bug#631286
Hi,
On Wed, 22 Jun 2011, Daniel Stone wrote:
> Hmm. Seems plausible, but I went through quite a few libX11 uploads
> without losing my diversion: I would've noticed quite quickly, as the
> failure mode (which prompted the xkbcomp 1.2.2 and 1.2.3 releases) with
> my local XKB dataset and any distr
Your message dated Thu, 23 Jun 2011 14:34:53 +0900 (JST)
with message-id <20110623.143453.306658922.ko...@pm.tokushima-u.ac.jp>
and subject line Re: Bug#556671: FTBFS with binutils-gold
has caused the Debian Bug report #556671,
regarding FTBFS with binutils-gold
to be marked as done.
This means th
Processing commands for cont...@bugs.debian.org:
> forcemerge 631286 631347
Bug#631286: CVE-2011-2483 crypt_blowfish: 8-bit character mishandling allows
different password pairs to produce the same hash
Bug#631347: CVE-2011-2483 crypt_blowfish: 8-bit character mishandling allows
different passwo
forcemerge 631286 631347
tags 631286 +squeeze wheezy sid
Thank you
Hi,
I already notice the bug when you reported it in postgresql and cloned the bug.
Yes, the php5 is affected, but only squeeze and onwards (writing this from top
of my head, so I will better double check).
Security team, can y
Package: php5
Severity: serious
Tags: security
Hi,
A bug in crypt_blowfish was reported [1,2,3]. The RH report [4] may be useful
too.
The function BF_set_key in ./ext/standard/crypt_blowfish.c is vulnerable. Can
you confirm that the bug affects the Debian packages?
If so, please, considerer pr
Package: opie
Severity: serious
Tags: important
Hi,
A security bug has been reported in opielogin[1]. A patch by Novell is can be
found here: https://bugzillafiles.novell.org/attachment.cgi?id=435901
Please, considerer port this patch to stable and oldstable.
Thanks a lot for all your help,
Package: opie
Severity: serious
Tags: important
Hi,
A security bug has been reported in opiesu[1]. A patch by Novell is can be
found here: https://bugzillafiles.novell.org/attachment.cgi?id=435902
Please, considerer port this patch for stable and oldstable.
Thanks a lot for all your help,
lu
Your message dated Thu, 23 Jun 2011 01:47:10 +
with message-id
and subject line Bug#630990: fixed in gnome-video-arcade 0.8.0-1
has caused the Debian Bug report #630990,
regarding gnome-video-arcade: uninstallable on some archs
to be marked as done.
This means that you claim that the problem
Your message dated Thu, 23 Jun 2011 00:02:43 +
with message-id
and subject line Bug#629702: fixed in pd-boids 1.1.1-2
has caused the Debian Bug report #629702,
regarding pd-boids: FTBFS: boids2d.c:20:22: fatal error: m_pd.h: No such file
or directory (lacks B-D on puredata-dev)
to be marked a
Your message dated Thu, 23 Jun 2011 00:02:36 +
with message-id
and subject line Bug#629701: fixed in pd-beatpipe 0.1-3
has caused the Debian Bug report #629701,
regarding pd-beatpipe: FTBFS: beatpipe.c:26:18: fatal error: m_pd.h: No such
file or directory (lacks B-D on puredata-dev)
to be mar
Your message dated Wed, 22 Jun 2011 23:47:18 +
with message-id
and subject line Bug#629700: fixed in pd-bassemu 0.3-3
has caused the Debian Bug report #629700,
regarding pd-bassemu: FTBFS: bassemu~.c:5:18: fatal error: m_pd.h: No such file
or directory (lacks B-D on puredata-dev)
to be marked
Hi,
On Wed, Jun 22, 2011 at 11:06:39PM +0200, Sven Joachim wrote:
> On 2011-06-22 21:10 +0200, Daniel Stone wrote:
> > On Wed, Jun 22, 2011 at 08:50:40PM +0200, Sven Joachim wrote:
> >> This is bad indeed. However, I am unable to reproduce this behavior.
> >> Could you please send your /var/log/d
On 2011-06-22 21:10 +0200, Daniel Stone wrote:
> Hi,
>
> On Wed, Jun 22, 2011 at 08:50:40PM +0200, Sven Joachim wrote:
>> This is bad indeed. However, I am unable to reproduce this behavior.
>> Could you please send your /var/log/dpkg.log (compress it first) and the
>> output of "dpkg-divert --li
Your message dated Wed, 22 Jun 2011 20:47:23 +
with message-id
and subject line Bug#626671: fixed in monav 0.3-4
has caused the Debian Bug report #626671,
regarding monav: Uses -march=native
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not t
What I did was:
-Delete the error file (/usr/share/initramfs-tools/hooks/plymouth)
-uninstall plymouth
-reinstall plymouth
and problem solved :)
2011/6/22 Anisse Astier
> Hi,
>
> I recently upgraded and encountered the same problem.
>
> Here is my analysis :
>
> plymouth has been splitted in pl
Processing commands for cont...@bugs.debian.org:
> fixed 629722 3.0.2-2
Bug #629722 [src:epiphany-browser] epiphany-browser: FTBFS: build-dependency
not installable: gir-repository-dev
Bug Marked as fixed in versions epiphany-browser/3.0.2-2.
> thanks
Stopping processing here.
Please contact me
Your message dated Wed, 22 Jun 2011 19:47:24 +
with message-id
and subject line Bug#630636: fixed in mockito 1.8.5+ds1-3
has caused the Debian Bug report #630636,
regarding mockito ftbfs (missing b-d on default-jdk)
to be marked as done.
This means that you claim that the problem has been dea
On Wed, Jun 22, 2011 at 09:08:01PM +0200, Bastian Blank wrote:
> On Wed, Jun 22, 2011 at 05:07:52AM +0100, Ben Hutchings wrote:
> > And the first behaviour is
> > definitely the correct default, as installing a boot loader package
> > almost always means yo
Package: tcp-wrappers
Version: 7.6.q-20
Severity: serious
While updating my cowbuilder chroot, I get this:
Unpacking replacement libwrap0 ...
dpkg: error processing /var/cache/apt/archives/libwrap0_7.6.q-20_i386.deb
(--unpack):
trying to overwrite '/usr/share/man/man5/hosts_options.5.gz', whic
On Wed, Jun 22, 2011 at 01:57:36PM -0500, Dan White wrote:
> On 22/06/11 14:39 -0400, Patricio Rojo wrote:
> >Hi Dan,
> >>Does an upgrade also resolve the trouble for you? If not:
> >No, it was because of upgrading I had the problem. Downgrading
> >was the only solution I found. Maybe this bug s
Processing commands for cont...@bugs.debian.org:
> forcemerge 630917 631297
Bug#630917: qt4-linguist-tools: trying to overwrite '/usr/bin/lupdate-qt4',
which is also in package libqt4-dev 4:4.7.3-1
Bug#631297: qt4-linguist-tools: trying to overwrite '/usr/bin/lrelease-qt4'
Forcibly Merged 630917
On 22/06/11 14:39 -0400, Patricio Rojo wrote:
Hi Dan,
Does an upgrade also resolve the trouble for you? If not:
No, it was because of upgrading I had the problem. Downgrading was
the only solution I found. Maybe this bug should be linked to
libsasl2 packages? Except this downgrade, I'm ke
On Wed, Jun 22, 2011 at 05:07:52AM +0100, Ben Hutchings wrote:
> And the first behaviour is
> definitely the correct default, as installing a boot loader package
> almost always means you want to install the boot loader in the boot
> sector.
The boot secto
Processing commands for cont...@bugs.debian.org:
> reassign #627020 fglrx-glx
Bug #627020 [fglrx-driver] qa.debian.org: With update of kernel 2.6.38-2,
xserver-xorg-core 2:1.10.1-2, fglrx no longer works (11-4, 11-5)
Bug reassigned from package 'fglrx-driver' to 'fglrx-glx'.
> severity #627020 gr
On 2011-06-22 19:56 +0200, Daniel Stone wrote:
> Package: dpkg
> Version: 1.16.0.3
> Severity: grave
> Justification: causes non-serious data loss
>
> I have pretty much the entirety of the X stack diverted through
> dpkg-divert so I can keep package dependencies, but still run all my own
> built-
Processing commands for cont...@bugs.debian.org:
> retitle 631294 in some situations, preinst does not check the required kernel
> version
Bug #631294 [udev] [udev] upgrade from udev 167-3 to 170-1 broke system(no
mouse or keyboard)
Changed Bug title to 'in some situations, preinst does not chec
retitle 631294 in some situations, preinst does not check the required kernel
version
severity 631294 important
thanks
On Jun 22, "Brent S. Elmer Ph.D." wrote:
> The 167 version required kernel version 2.6.27. I have kernel 2.6.30
> installed.
> At boot, I see a message saying udev requires
On Wed, Jun 22, 2011 at 12:43:03PM -0400, Patricio Rojo wrote:
> I'm sorry to confirm that this bug has leaked into wheezy/testing...
> shoudn't it been stopped at sid? maybe the bug was informed at a wrong
> package?
The change that broke openldap was in the sasl library package, not in
openldap
Package: dpkg
Version: 1.16.0.3
Severity: grave
Justification: causes non-serious data loss
I have pretty much the entirety of the X stack diverted through
dpkg-divert so I can keep package dependencies, but still run all my own
built-from-git X stuff. This includes all the client libraries.
Perh
Hello,
Afetr the last update I test "slapd" and it works. The update was very
big so I can't say what library or program has corrected the problem.
I think that it is a new version as the version string has changed from
2.4.25-1+b1 to 2.4.25-1.1.
For me the bug is solved.
Regards
JPPO
--
Package: udev
Version: 170-1
Severity: critical
--- Please enter the report below this line. ---
I have a wheezy box that I upgraded udev from 167-3 to 170-1 last week when the
new udev package hit testing.
After the upgrade, I have no mouse or keyboard when X starts. Now that the new
udev is i
Rolling back to version 2.1.23.dfsg1-8 of
libsasl2-2
libsasl2-modules
from snapshots.debian.org solved the problem for now.
Thanks much!
On 22-Jun-11 12:43 PM, Patricio Rojo wrote:
> I'm sorry to confirm that this bug has leaked into wheezy/testing...
> shoudn't it been stopped at sid? may
I'm sorry to confirm that this bug has leaked into wheezy/testing...
shoudn't it been stopped at sid? maybe the bug was informed at a wrong
package?
Please, I need a quick fix to resume the use of my servers!
Thanks!
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a
Package: evolution
Version: 2.30.3-5
Severity: grave
--- Please enter the report below this line. ---
Evolution crash at start, or never start
--- System information. ---
Architecture: i386
Kernel: Linux 2.6.38-bpo.2-686
Debian Release: 6.0.1
500 stable www.debian-multimedia.o
Processing commands for cont...@bugs.debian.org:
> tags 614044 pending
Bug #614044 {Done: Norbert Tretkowski } [src:mysql-5.1]
mysql-5.1-server: fails to build from source
Bug #627208 {Done: Norbert Tretkowski } [src:mysql-5.1]
mysql-5.1: FTBFS with segmentation fault (signal 11) on i386
Added t
Your message dated Wed, 22 Jun 2011 18:22:56 +0200
with message-id <1308759776.2064.14.camel@oban>
and subject line Re: [Evolution] Bug#631291: [evolution] evolution crash at
start or never start
has caused the Debian Bug report #631291,
regarding [evolution] evolution crash at start or never star
Processing commands for cont...@bugs.debian.org:
> severity 631289 important
Bug #631289 [linux-2.6] iwlagn: Kernel 2.6.39-2-amd64 in Debian Testing causes
Lenovo X201 and T500 wifi to crash Netgear DGN3500 ADSL router/Wifi access point
Severity set to 'important' from 'grave'
> thanks
Stopping
Hi,
I recently upgraded and encountered the same problem.
Here is my analysis :
plymouth has been splitted in plymouth and plymouth-drm.
script.so, the script engine for themes that was in the "plymouth" package is
now in plymouth-drm.
Now, suppose you've got a plymouth theme requiring script.
Package: linux-2.6
Version: 2.6.39-2
Severity: grave
File: iwlagn
Justification: renders package unusable
I am running Debian Testing generally updated each morning. Kernel
2.6.38-2-amd64 was working fine with my
configuration of Lenovo X201 and T500 laptops connecting to my Netgear DGN3500
AD
Processing commands for cont...@bugs.debian.org:
> clone 631285 -1
Bug#631285: CVE-2011-2483 crypt_blowfish: 8-bit character mishandling allows
different password pairs to produce the same hash
Bug 631285 cloned as bug 631286.
> reassign -1 src:php5
Bug #631286 [postgresql] CVE-2011-2483 crypt_b
On Mon, Jun 20, 2011 at 12:57:44PM -0700, Manoj Srivastava wrote:
> On 06/20/2011 11:20 AM, Roger Leigh wrote:
> >On Fri, Jun 03, 2011 at 11:25:52AM +0100, Roger Leigh wrote:
> >>"Don't allow migration to testing because until SELinux refpolicy
> >>is updated to support /run, the system is rendered
Package: postgresql
Severity: serious
Tags: security
Hi,
A bug in crypt_blowfish was reported [1,2,3]. The function BF_set_key in
postgresql is vulnerable. The RH report [4] may be useful too. Upstream already
has a patch[5].
Please, considerer providing patches for stable and oldstable too.
T
Processing commands for cont...@bugs.debian.org:
> clone 629310 -1
Bug#629310: libmetacity-private0: button_layout for the window decorations does
not work anymore
Bug 629310 cloned as bug 631284.
> reassign -1 compiz
Bug #631284 [libmetacity-private0] libmetacity-private0: button_layout for the
Package: php5-suhosin
Severity: serious
Tags: security
Hi,
The CVE (Common Vulnerabilities & Exposures) CVE-2011-2483 was
published for php5-suhosin.
A bug in crypt_blowfish was reported [1,2,3]. The function BF_set_key from
crypt_blowfish.c:554 looks vulnerable. The RH report may be useful[4] t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 22.06.2011 11:23, Colin Watson wrote:
> Gosh. You might almost think that there wasn't already provision for
> this case in grub-pc's debconf interface ...
I'm sorry, I should have verified. Given that the original issue is
minor since you can ove
On Wed, 2011-06-22 at 03:40 +0100, Ben Hutchings wrote:
> Which version of GNOME is this?
2.30.2. Apart from the newer kernel, this is a pure Squeeze system.
> The panic message shows there was an earlier kernel warning; please can
> you provide that.
Thanks to netconsole (a really great tool!)
On Wed, Jun 22, 2011 at 05:07:52AM +0100, Ben Hutchings wrote:
> On Wed, 2011-06-22 at 11:33 +0800, YunQiang Su wrote:
> > When update to grub-pc 1.99-8, it write my MBR, then I report a bug.
> >
> > http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=631224
> >
> > and Colin Watson tell me that it
On Wed, Jun 22, 2011 at 11:07:54AM +0200, Arno Töll wrote:
> There may be similar cases for embedded systems and some other
> virtualization/chrooted magic. Why don't prompt the user in a - as for
> me low priority - debconf template whether he wants to install the boot
> loader or not with default
On Wed, Jun 22, 2011 at 03:09:12PM +0800, YunQiang Su wrote:
> When installing, user will usually install grub in MBR or they have no
> choice to set it when install (install from LiveCD).
If you mean the Ubuntu live CD, IIRC it does have an option for this
although only when you're doing manual p
On Wed, Jun 22, 2011 at 02:26:31PM +0800, YunQiang Su wrote:
> But once upgrade Ubuntu, the MBR is taken place, and once then upgrade
> Debian, it's back.
'dpkg-reconfigure grub-pc' on the Ubuntu side, then - it's not that
complicated.
--
Colin Watson [cjwat
On Wed, Jun 22, 2011 at 07:35:30AM +0200, Harald Dunkel wrote:
> Please keep chroot-like environments in mind (e.g. lxc,
> Linux vserver, debootstrap, etc.).
We do. Why do you think grub-pc.postinst goes to such effort to make it
possible to install the boot loader nowhere, while also trying to a
On Wed, Jun 22, 2011 at 02:06:13PM +0800, Aron Xu wrote:
> grub-pc will write MBR every time when triggered,
grub-pc does not use any dpkg triggers.
> and grub-pc-bin will not update grub entry after the kernel is
> updated. - It is weird when you have grub installed to an alternative
> place, th
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
> Please keep chroot-like environments in mind (e.g. lxc,
> Linux vserver, debootstrap, etc.). Installing grub-pc due
> to some unexpected dependency chain or just by accident
> should not make your host system unbootable.
That said, there are also us
-- Forwarded message --
From: YunQiang Su
Date: 2011/6/22
Subject: Re: Whether should grub2 write MBR automatic
To: Andrei POPESCU
Cc: debian-de...@lists.debian.org, 631...@bugs.debian.or
> Did you? Try 'dpkg-reconfigure grub-pc' ;)
>
yes it works. BUT:
When installing, user w
Your message dated Wed, 22 Jun 2011 07:03:06 +
with message-id
and subject line Bug#622033: fixed in gcompris 9.3-1.1
has caused the Debian Bug report #622033,
regarding gcompris: FTBFS: goocanvas.c:481:3: error: implicit declaration of
function 'GTK_OBJECT_FLAGS'
to be marked as done.
This
Your message dated Wed, 22 Jun 2011 07:03:06 +
with message-id
and subject line Bug#554419: fixed in gcompris 9.3-1.1
has caused the Debian Bug report #554419,
regarding FTBFS with binutils-gold
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is n
57 matches
Mail list logo