Hi,
On 01/29/2013 09:56 PM, Anton Gladky wrote:
> tags 699194 + pending
> thanks
>
> Dear maintainer,
>
> I've prepared an NMU for pcscada (versioned as 0.7.1-3.1) and
> uploaded it to DELAYED/5. Please feel free to tell me if I
> should delay it longer.
Thanks for the NMU, but I already fixed
Hi
And a small followup:
On Wed, Jan 30, 2013 at 08:11:44AM +0100, Salvatore Bonaccorso wrote:
> CVE-2012-5958 Issue #2: Stack buffer overflow of Tempbuf
> CVE-2012-5959 Issue #4: Stack buffer overflow of Event->UDN
> CVE-2012-5960 Issue #8: Stack buffer overflow of Event->UDN
Package: libupnp
Severity: grave
Tags: security
Hi,
the following vulnerabilities were published for libupnp.
CVE-2012-5958[0]: Stack buffer overflow of Tempbuf
CVE-2012-5959[1]: Stack buffer overflow of Event->UDN
CVE-2012-5960[2]: Stack buffer overflow of Event->UDN
CVE-2012-5961[3]: Stack buf
Your message dated Wed, 30 Jan 2013 05:47:39 +
with message-id
and subject line Bug#699132: fixed in texmacs 1:1.0.7.16+1-1
has caused the Debian Bug report #699132,
regarding Fix issues with non-arch-indep builds (like on the buildds)
to be marked as done.
This means that you claim that the
Processing commands for cont...@bugs.debian.org:
> tag 699260 confirmed
Bug #699260 [src:r-cran-genabel] r-cran-genabel: FTBFS: error: subscript out of
bounds
Added tag(s) confirmed.
> severity 699260 grave
Bug #699260 [src:r-cran-genabel] r-cran-genabel: FTBFS: error: subscript out of
bounds
Se
tag 699260 confirmed
severity 699260 grave
thanks
Le Tue, Jan 29, 2013 at 01:28:36PM -0600, Dirk Eddelbuettel a écrit :
>
> Also, CRAN has 1.7-3, you guys are at 1.7-0 of GenABEL. Maybe this even
> changed upstream...
Indeed :)
+*** v. 1.7-3 (2013.01.09)
+
+(2013.01.09)
+Commented the parts r
On Tue, Jan 29, 2013 at 02:32:13PM +, Steven Chamberlain wrote:
> Please let me know what you think to a t-p-u upload fixing this in
> wheezy. I haven't asked the release team about this yet, but I'm
> assuming psmisc/22.20-1 introduced too many changes (including autoconf
> stuff) meaning it
Michael,
For now it sounds like there's no consensus that this is a bug in
initgroups(3) in eglibc or setgroups(2) in kfreebsd.
If you're aware of this leading to a bug in a specific Debian package
(particularly if it is a bug with a security impact), please file a bug
against that package.
Jeff
Hi!
This file seems to have been copied into quite a few different source trees.
See
#699301, #699304, #699305 and #699306. A relicensing solution from HP would
be fantastic about now in the wheezy release cycle.
Looking through source packages, with an sRGB*icm file in them, the following
so
Package: xicc
Version: 0.2
Severity: serious
Justification: DFSG3: must allow derived works
Dear Maintainer,
The file xicc-0.2/data/sRGB.icm is not licensed under the
same terms as the rest of this package -- it is a file from HP and is not
distributed under a free licence.
$ md5sum xicc-0.2/dat
Package: nip2
Version: 7.28.4-1
Severity: serious
Justification: DFSG3: must allow derived works
Dear Maintainer,
The file share/nip2/data/sRGB.icm is not licensed under the
same terms as the rest of this package -- it is a file from HP and is not
distributed under a free licence.
$ md5sum nip2-
Source: libmng
Version: 1.0.10-3
Severity: serious
Justification: DFSG3: must allow derived works
Dear Maintainer,
The file contrib/msvc/mngview/sRGB.icm is not licensed under the
same terms as the rest of this package -- it is a file from HP and is not
distributed under a free licence.
$ md5sum
Package: python-uniconvertor
Version: 1.1.4-1
Severity: serious
Justification: DFSG3: must allow derived works
Dear Maintainer,
The file src/share/icc/sRGB_Color_Space_Profile.icm is not licensed under the
same terms as the rest of this package -- it is a file from HP and is not
distributed under
Hi,
Craig Small wrote:
> On Tue, Jan 29, 2013 at 09:22:59AM +0100, Sascha Silbe wrote:
>> ERROR: couldn't execute
>> "/home/sascha.silbe/src/deb/procps-3.3.3/testsuite/lib.test/fileutils_badfd.sh":
>> no such file or directory
>
> This file now appears in procps 3.3.6 I'm not sure why you trigg
Processing control commands:
> tags -1 +squeeze
Bug #698633 [ocsinventory-server] ocsinventory-server: fails to upgrade from
lenny: Table 'ocsweb.accesslog' doesn't exist
Added tag(s) squeeze.
--
698633: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=698633
Debian Bug Tracking System
Contact
Control: tags -1 +squeeze
I have verified in a vm that this failure is not seen for squeeze->wheezy
upgrades. I have tested both with and without debconf prompting (hence with
and without dbconfig doing its job for the squeeze installation).
--
Stuart Prescotthttp://www.nanonanonano.net/
Processing control commands:
> retitle -1 ircd-hybrid: CVE-2013-0238 Denial of service vulnerability in
> hostmask.c:try_parse_v4_netmask()
Bug #699267 [ircd-hybrid] ircd-hybrid: Denial of service vulnerability in
hostmask.c:try_parse_v4_netmask()
Changed Bug title to 'ircd-hybrid: CVE-2013-0238
Control: retitle -1 ircd-hybrid: CVE-2013-0238 Denial of service vulnerability
in hostmask.c:try_parse_v4_netmask()
Hi
On Tue, Jan 29, 2013 at 05:38:36PM +0200, Henri Salo wrote:
> I have requested CVE identifier for this vulnerability.
Was assigned now: CVE-2013-0238
Regards,
Salvatore
--
T
On 2013-01-23, Rob Browning wrote:
> Antoine Beaupré writes:
>
>> anarcat@angela:~$ ls -ald /etc/emacs*
>> drwxr-xr-x 3 root root 4096 jan 22 19:16 /etc/emacs
>> lrwxrwxrwx 1 root root 11 oct 3 10:43 /etc/emacs23 -> /etc/emacs/
>>
>> So yeah, this is a symlink pointing to itself... Not sure how
Hello,
it is admittedly all a bit tedious because of conflicts with the regular Wine
package. But at least now (Jan 2013) it is
installable. And it works. Also coming from the win 1.4 package.
Steffen
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsub
Your message dated Tue, 29 Jan 2013 21:03:06 +
with message-id
and subject line Bug#699224: fixed in libvirt 0.9.12-6
has caused the Debian Bug report #699224,
regarding libvirt [CVE-2013-0170]: libvirt Use-After-Free May Let Remote Users
Execute Arbitrary Code
to be marked as done.
This mea
tags 699194 + pending
thanks
Dear maintainer,
I've prepared an NMU for pcscada (versioned as 0.7.1-3.1) and
uploaded it to DELAYED/5. Please feel free to tell me if I
should delay it longer.
Cheers,
Anton
nmu.debdiff
Description: Binary data
Processing commands for cont...@bugs.debian.org:
> tags 699194 + pending
Bug #699194 [libpcscada2-dev] libpcscada2-dev: fails to upgrade from 'squeeze'
- trying to overwrite /usr/lib/ada/adalib/pcscada/pcsc-scard-conversion.ali
Added tag(s) pending.
> thanks
Stopping processing here.
Please cont
Your message dated Tue, 29 Jan 2013 20:48:13 +
with message-id
and subject line Bug#698074: fixed in gdb 7.4.1+dfsg-0.1
has caused the Debian Bug report #698074,
regarding gdb: includes non-free documentation (GFDL with unmodifiable sections)
to be marked as done.
This means that you claim th
Your message dated Tue, 29 Jan 2013 20:49:11 +
with message-id
and subject line Bug#672066: fixed in zeroc-ice 3.5~beta1-3
has caused the Debian Bug report #672066,
regarding zeroc-ice34: slice2cpp generates invalid C++ code
to be marked as done.
This means that you claim that the problem has
On Tue, Jan 29, 2013 at 10:52:16AM +0100, Luciano Bello wrote:
> Package: libvirt
> Severity: grave
> Tags: security patch
> Justification: user security hole
>
> Hi,
> please see :
> https://bugzilla.redhat.com/show_bug.cgi?id=893450
> http://libvirt.org/git/?p=libvirt.git;a=commit;h=46532e3e8ed5
Processing commands for cont...@bugs.debian.org:
> forcemerge 697852 699128
Bug #697852 {Done: Guido Günther } [python-libvirt]
python-libvirt: should have a "lockstep" dependency on libvirt0
Bug #699128 {Done: Guido Günther } [python-libvirt]
python-libvirt - Insufficient dependency on libvirt0
Your message dated Tue, 29 Jan 2013 20:55:34 +0100
with message-id <20130129195534.ga9...@bogon.sigxcpu.org>
and subject line Re: Bug#699128: python-libvirt - Insufficient dependency on
libvirt0
has caused the Debian Bug report #699128,
regarding python-libvirt - Insufficient dependency on libvirt
On Tue, 29 Jan 2013, Andreas Tille wrote:
> because I'm lacking the relevant R knowledge (and I also fail in finding
> some relevant R/CRAN packaging team inside Debian) I'm writing to Debian
> Mentors and main R packages maintainer. I guess with some basic R knowledge
> the problem below is easy
Also, CRAN has 1.7-3, you guys are at 1.7-0 of GenABEL. Maybe this even
changed upstream...
Dirk
--
Dirk Eddelbuettel | e...@debian.org | http://dirk.eddelbuettel.com
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact list
On Mon, Jan 28, 2013 at 04:44:07PM +0200, Tzafrir Cohen wrote:
> On Sun, Jan 27, 2013 at 04:23:05PM +, Ben Hutchings wrote:
> > I've uploaded the attached changes to DELAYED/5, and will follow this
> > with an upload of dahdi-firmware.
>
> Thanks for your fixes. Applied them in SVN. I don't ha
| On Tue, Jan 29, 2013 at 04:16:45PM +0100, Lucas Nussbaum wrote:
| > Source: r-cran-genabel
| > Version: 1.7-0-1
| > Severity: serious
| > Tags: wheezy sid
| > User: debian...@lists.debian.org
| > Usertags: qa-ftbfs-20130129 qa-ftbfs
| > Justification: FTBFS in wheezy on amd64
|
lp
Andreas.
On Tue, Jan 29, 2013 at 04:16:45PM +0100, Lucas Nussbaum wrote:
> Source: r-cran-genabel
> Version: 1.7-0-1
> Severity: serious
> Tags: wheezy sid
> User: debian...@lists.debian.org
> Usertags: qa-ftbfs-20130129 qa-ftbfs
> Justification: FTBFS in wheezy
Package: drupal7
Version: 7.14-1.3
Hi,
Steven, thanks for your observing eyes ;-)
I have uploaded Drupal7 7.14-1.3 fixing this specific vulnerability,
but yes, I agree with your suggestion - I am not the Drupal maintainer
(although I have done several security uploads lately), but it clearly
mak
Your message dated Tue, 29 Jan 2013 18:32:31 +
with message-id
and subject line Bug#698334: fixed in drupal7 7.14-1.3
has caused the Debian Bug report #698334,
regarding drupal7: SA-CORE-2013-001 - Drupal core - Multiple vulnerabilities
to be marked as done.
This means that you claim that the
> I propose to remove executable ElmerGUI.real from the package. Anyway,
> it is better, than to remove the whole package.
Ok. But this removal will affect other files (they will become useless):
1) ElmerGUI and ElmerGUIlogger will be removed from debian/elmer.files
2) debian/elmer.postinst will b
Hi,
I propose to remove executable ElmerGUI.real from the package. Anyway,
it is better, than to remove the whole package.
But we need to get a pre-approval permission from release-managers.
Could you, please, provide a patch?
Thanks,
Anton
2013/1/29 Boris Pek :
> Hi,
>
> Ftp-masters were info
The most obviously problematic image is accompanied by the text:
"Figure 13.1: Comic taken from http://www.phdcomics.com/. No royalties
paid. Hope that’s ok.
Please don’t hurt me."
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contac
Control: severity -1 important
Hi,
Am Dienstag, den 29.01.2013, 17:03 + schrieb Steve McIntyre:
> On Sun, Jan 27, 2013 at 07:11:57PM +0100, Joachim Breitner wrote:
> >Am Sonntag, den 27.01.2013, 15:09 + schrieb Steve McIntyre:
> >> Do we have any hope of progress on this RC bug? Otherwise
Processing control commands:
> severity -1 important
Bug #691600 [libghc-warp-dev] libghc-warp-dev: does not parse request headers
correctly
Severity set to 'important' from 'grave'
--
691600: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=691600
Debian Bug Tracking System
Contact ow...@bugs.
Package: sextractor
Version: 2.8.6-3
Severity: serious
Justification: Policy 2.1
Neither of the documentation pdfs have source code. One of them
(sextractor.pdf) appears is freely licensed, and the source is available (see
#399759). However, the other (Guide2source_extractor.pdf) has no obvious
Your message dated Tue, 29 Jan 2013 17:03:29 +
with message-id
and subject line Bug#696837: fixed in deluge 1.3.3-2+nmu1
has caused the Debian Bug report #696837,
regarding Missing Depends on python-libtorrent, fails to start
to be marked as done.
This means that you claim that the problem ha
On Sun, Jan 27, 2013 at 07:11:57PM +0100, Joachim Breitner wrote:
>Hi,
>
>Am Sonntag, den 27.01.2013, 15:09 + schrieb Steve McIntyre:
>> Do we have any hope of progress on this RC bug? Otherwise it's
>> incredibly tempting to push for removal of libghc-warp-dev considering
>> its tiny popcon an
Your message dated Tue, 29 Jan 2013 16:48:53 +
with message-id
and subject line Bug#699270: fixed in glance 2012.1.1-4
has caused the Debian Bug report #699270,
regarding CVE-2013-0212: Backend password leak in Glance error message
to be marked as done.
This means that you claim that the prob
...@lists.debian.org
Usertags: qa-ftbfs-20130129 qa-ftbfs
Justification: FTBFS in wheezy on amd64
Hi,
During a rebuild of all packages in *wheezy*, your package failed to
build on amd64.
Relevant part:
> ┌──┐
> │ I
On Tue, Jan 29, 2013 at 01:52:43AM +0600, Andrey Rahmatullin wrote:
>On Mon, Jan 28, 2013 at 08:21:09PM +0100, Cristian Greco wrote:
>> First of all, I apologize for not taking care of the huge amount of
>> bugs with deluge lately.
>>
>> I tend to disagree with the proposed patch. The current situ
Processing commands for cont...@bugs.debian.org:
> forwarded 699258 http://rt.cpan.org/Public/Bug/Display.html?id=83033
Bug #699258 [src:libio-async-loop-glib-perl] libio-async-loop-glib-perl: FTBFS:
test failed
Set Bug forwarded-to-address to
'http://rt.cpan.org/Public/Bug/Display.html?id=83033
Processing control commands:
> tag -1 + confirmed
Bug #699258 [src:libio-async-loop-glib-perl] libio-async-loop-glib-perl: FTBFS:
test failed
Added tag(s) confirmed.
--
699258: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699258
Debian Bug Tracking System
Contact ow...@bugs.debian.org with
Control: tag -1 + confirmed
On Tue, 29 Jan 2013 16:14:34 +0100, Lucas Nussbaum wrote:
> > # Failed test 'loop_once(2) when idle took at least 1.5 seconds'
> > # at /usr/share/perl5/IO/Async/LoopTests.pm line 140.
> > # '3.814697265625e-05'
> > # >=
> > # '1.5'
> > # Looks like
: wheezy sid
User: debian...@lists.debian.org
Usertags: qa-ftbfs-20130129 qa-ftbfs
Justification: FTBFS in wheezy on amd64
Hi,
During a rebuild of all packages in *wheezy*, your package failed to
build on amd64.
Relevant part:
> debian/rules build
> dh build --buildsystem ant
>dh_t
Processing commands for cont...@bugs.debian.org:
> tags 699254 + confirmed
Bug #699254 [src:libpdfbox-java] libpdfbox-java: FTBFS: cp: missing file operand
Added tag(s) confirmed.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
699254: http://bugs.debian.org/cgi-b
Processing commands for cont...@bugs.debian.org:
> block 699251 with 665890
Bug #699251 [src:python-eventlet] python-eventlet: FTBFS: build-dependency not
installable: python-greenlet (>= 0.3.1-2.1)
699251 was not blocked by any bugs.
699251 was not blocking any bugs.
Added blocking bug(s) of 699
Google Maps Mobile logo
Profile picture
You have been sent a friend request by Tammy Bohanan on Google Latitude
Latitude lets you share your location with friends and view their locations
on your phone or computer. Click Start Using Google Latitude to see the
friend request.
Start Using G
Your message dated Tue, 29 Jan 2013 16:02:51 +
with message-id
and subject line Bug#699266: fixed in nova 2012.1.1-12
has caused the Debian Bug report #699266,
regarding CVE-2013-0208: Boot from volume allows access to random volumes
to be marked as done.
This means that you claim that the pr
Control: tags -1 -sid
Le mardi, 29 janvier 2013 16.16:30, Lucas Nussbaum a écrit :
> Severity: serious
> Justification: FTBFS in wheezy on amd64
>
> During a rebuild of all packages in *wheezy*, your package failed to
> build on amd64.
Hrm. I tried a local sid build, it builds fine. Don't know w
Processing control commands:
> tags -1 -sid
Bug #699264 [src:nsis] nsis: FTBFS: build hangs
Removed tag(s) sid.
--
699264: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699264
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To UNSUBSCRIBE, email to debian-bugs-rc-r
Package: glance
Version: 2012.1.1-3
Severity: grave
Tags: upstream
Here's the advisory as I received it. Upload is following soon.
Title: Backend password leak in Glance error message
Reporter: Dan Prince (Red Hat)
Products: Glance
Affects: All versions
Dan Prince of Red Hat discovered an issue
Package: ircd-hybrid
Version: 1:7.2.2.dfsg.2-6.2
Severity: grave
Tags: security
Mr. Bob Nomnomnom from Torland reported a denial of service security
vulnerability in ircd-hybrid. Function hostmask.c:try_parse_v4_netmask() is
using strtoul to parse masks. Documentation says strtoul can parse "-numb
Your message dated Tue, 29 Jan 2013 15:32:31 +
with message-id
and subject line Bug#699249: fixed in ruby-activesupport-2.3 2.3.14-6
has caused the Debian Bug report #699249,
regarding rails: CVE-2013-0333: Vulnerability in JSON Parser in Ruby on Rails
3.0 and 2.3
to be marked as done.
This
Package: nova
Version: 2012.1.1-11
Severity: grave
Tags: upstream
This was an embargoed security issue, which I am fixing today.
Upload is comming.
Thomas Goirand (zigo)
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listma
Processing commands for cont...@bugs.debian.org:
> found 671489 italc/1:1.0.13-1.2
Bug #671489 {Done: Dmitry Smirnov } [src:italc] italc:
FTBFS: Couldn't find any Qt4 libraries
Marked as found in versions italc/1:1.0.13-1.2.
> thanks
Stopping processing here.
Please contact me if you need assist
Source: nsis
Version: 2.46-7
Severity: serious
Tags: wheezy sid
User: debian...@lists.debian.org
Usertags: qa-ftbfs-20130129 qa-ftbfs
Justification: FTBFS in wheezy on amd64
Hi,
During a rebuild of all packages in *wheezy*, your package failed to
build on amd64.
Relevant part:
> Using z
Source: adios
Version: 1.3-10
Severity: serious
Tags: wheezy sid
User: debian...@lists.debian.org
Usertags: qa-ftbfs-20130129 qa-ftbfs
Justification: FTBFS in wheezy on amd64
Hi,
During a rebuild of all packages in *wheezy*, your package failed to
build on amd64.
Relevant part
Source: dhelp
Version: 0.6.20
Severity: serious
Tags: wheezy sid
User: debian...@lists.debian.org
Usertags: qa-ftbfs-20130129 qa-ftbfs
Justification: FTBFS in wheezy on amd64
Hi,
During a rebuild of all packages in *wheezy*, your package failed to
build on amd64.
Relevant part
Source: r-cran-genabel
Version: 1.7-0-1
Severity: serious
Tags: wheezy sid
User: debian...@lists.debian.org
Usertags: qa-ftbfs-20130129 qa-ftbfs
Justification: FTBFS in wheezy on amd64
Hi,
During a rebuild of all packages in *wheezy*, your package failed to
build on amd64.
Relevant part:
> m
Source: gnuradio
Version: 3.5.3.2-1
Severity: serious
Tags: wheezy sid
User: debian...@lists.debian.org
Usertags: qa-ftbfs-20130129 qa-ftbfs
Justification: FTBFS in wheezy on amd64
Hi,
During a rebuild of all packages in *wheezy*, your package failed to
build on amd64.
Relevant part:
> mak
Source: libio-async-loop-glib-perl
Version: 0.20-2
Severity: serious
Tags: wheezy sid
User: debian...@lists.debian.org
Usertags: qa-ftbfs-20130129 qa-ftbfs
Justification: FTBFS in wheezy on amd64
Hi,
During a rebuild of all packages in *wheezy*, your package failed to
build on amd64.
Relevant
Source: ruby-activeresource-2.3
Version: 2.3.14-2
Severity: serious
Tags: wheezy sid
User: debian...@lists.debian.org
Usertags: qa-ftbfs-20130129 qa-ftbfs
Justification: FTBFS in wheezy on amd64
Hi,
During a rebuild of all packages in *wheezy*, your package failed to
build on amd64.
Relevant
Source: libpdfbox-java
Version: 1:1.7.0+dfsg-3
Severity: serious
Tags: wheezy sid
User: debian...@lists.debian.org
Usertags: qa-ftbfs-20130129 qa-ftbfs
Justification: FTBFS in wheezy on amd64
Hi,
During a rebuild of all packages in *wheezy*, your package failed to
build on amd64.
Relevant part
Source: libcitygml
Version: 0.14+svn128-1+3p0p1
Severity: serious
Tags: wheezy sid
User: debian...@lists.debian.org
Usertags: qa-ftbfs-20130129 qa-ftbfs
Justification: FTBFS in wheezy on amd64
Hi,
During a rebuild of all packages in *wheezy*, your package failed to
build on amd64.
Relevant part
Source: python-eventlet
Version: 0.9.16-3
Severity: serious
Tags: wheezy sid
User: debian...@lists.debian.org
Usertags: qa-ftbfs-20130129 qa-ftbfs
Justification: FTBFS in wheezy on amd64
Hi,
During a rebuild of all packages in *wheezy*, your package failed to
build on amd64.
Relevant part
Source: ldiskfsprogs
Version: 1.41.90.wc4+dfsg-1
Severity: serious
Tags: wheezy sid
User: debian...@lists.debian.org
Usertags: qa-ftbfs-20130129 qa-ftbfs
Justification: FTBFS in wheezy on amd64
Hi,
During a rebuild of all packages in *wheezy*, your package failed to
build on amd64.
Relevant
Your message dated Tue, 29 Jan 2013 14:48:21 +
with message-id
and subject line Bug#698635: fixed in gosa 2.7.4-4.1
has caused the Debian Bug report #698635,
regarding gosa: package configuration calls a2enmod even if apache is not
installed
to be marked as done.
This means that you claim th
Processing control commands:
> clone 699226 -1
Bug #699226 [rails] rails: CVE-2013-0333: Vulnerability in JSON Parser in Ruby
on Rails 3.0 and 2.3
Bug 699226 cloned as bug 699249
> reassign -1 ruby-activesupport-2.3
Bug #699249 [rails] rails: CVE-2013-0333: Vulnerability in JSON Parser in Ruby
o
Control: clone 699226 -1
Control: reassign -1 ruby-activesupport-2.3
On Tue, Jan 29, 2013 at 11:04:00AM +0100, Salvatore Bonaccorso wrote:
> The following advisory was made for rails:
>
> [1] http://weblog.rubyonrails.org/
> [2]:
> https://groups.google.com/forum/?fromgroups=#!topic/rubyonrail
Hi Craig,
The attached changes, cherry-picked from upstream Git, applied and
refreshed against psmisc/22.19-1, seem sufficient to fix the RC bug for
me on GNU/kFreeBSD.
Please let me know what you think to a t-p-u upload fixing this in
wheezy. I haven't asked the release team about this yet, but
Your message dated Tue, 29 Jan 2013 13:47:28 +
with message-id
and subject line Bug#694888: fixed in ca-certificates-java 20121112+nmu2
has caused the Debian Bug report #694888,
regarding ca-certificates-java: early triggered jks-keystore may fail and leave
the temporary /etc/java-7-openjdk/j
Your message dated Tue, 29 Jan 2013 13:47:28 +
with message-id
and subject line Bug#694888: fixed in ca-certificates-java 20121112+nmu2
has caused the Debian Bug report #694888,
regarding ca-certificates-java: early triggered jks-keystore may fail and leave
the temporary /etc/java-7-openjdk/j
Processing commands for cont...@bugs.debian.org:
> severity 687829 grave
Bug #687829 {Done: Craig Small } [psmisc] psmisc: pstree
hangs on kfreebsd-amd64
Severity set to 'grave' from 'normal'
> user debian-...@lists.debian.org
Setting user to debian-...@lists.debian.org (was ste...@pyro.eu.org).
Your message dated Tue, 29 Jan 2013 13:32:46 +
with message-id
and subject line Bug#696816: fixed in jenkins 1.447.2+dfsg-3
has caused the Debian Bug report #696816,
regarding jenkins: Security issues were found in Jenkins core
to be marked as done.
This means that you claim that the problem
Processing commands for cont...@bugs.debian.org:
> # Wrong version number was tagged;
> # went missing from version tracking and RC bug lists as a result
> unarchive 692063
Bug #692063 {Done: Craig Small } [procps] [procps] Unflagged
Dependency Can Leave Disabled System
Unarchived Bug 692063
> fo
Your message dated Tue, 29 Jan 2013 13:17:28 +
with message-id
and subject line Bug#699227: fixed in ldap-git-backup 1.0.4-1
has caused the Debian Bug report #699227,
regarding ldap-git-backup: Incorrect directory permissions
to be marked as done.
This means that you claim that the problem ha
On Tue, Jan 29, 2013 at 12:09:29 +, James Page wrote:
> reopen 697617
> thanks
>
There's no need to do that, fwiw. The bts knows if it's fixed in
a certain version then earlier ones are affected...
Cheers,
Julien
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a
Hi,
Ftp-masters were informed about problems with package in stable [#699235].
And I am still waiting for replies with opinions about package in testing.
Regards,
Boris
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas
Processing commands for cont...@bugs.debian.org:
> fixed 697617 jenkins/1.480.2+dfsg-1~exp1
Bug #697617 [jenkins] jenkins: CVE-2013-0158: remote code execution
vulnerability
Marked as fixed in versions jenkins/1.480.2+dfsg-1~exp1.
> thanks
Stopping processing here.
Please contact me if you need
Package: memcached
Dear maintainer,
Recently you fixed one or more security problems and as a result you closed
this bug. These problems were not serious enough for a Debian Security
Advisory, so they are now on my radar for fixing in the following suites
through point releases:
squeeze (6.0.7)
Processing commands for cont...@bugs.debian.org:
> reopen 697617
Bug #697617 {Done: James Page } [jenkins] jenkins:
CVE-2013-0158: remote code execution vulnerability
'reopen' may be inappropriate when a bug has been closed with a version;
all fixed versions will be cleared, and you may need to r
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi Steve
On 25/01/13 15:18, Steven McDonald wrote:
> The issue was raised on debian-devel[0] that this bug still
> affects unstable and is causing jenkins to be a candidate for
> removal from wheezy. I have backported the fixes for these issues
> fr
Your message dated Tue, 29 Jan 2013 22:49:43 +1100
with message-id <20130129114943.ga5...@enc.com.au>
and subject line Re: Bug#699218: procps: FTBFS with test suite error:
testsuite/lib.test/fileutils_badfd.sh missing
has caused the Debian Bug report #699218,
regarding procps: FTBFS with test suit
Package: mahara
Severity: critical
Tags: security
Justification: user security hole
Hi there,
Melissa Draper pointed that the embedded copy of flowplayer-core in Mahara
is affected by http://code.google.com/p/flowplayer-core/issues/detail?id=441
Cheers, luciano
--
To UNSUBSCRIBE, email to
Package: ldap-git-backup
Version: 1.0.3-2
Severity: critical
Tags: security fixed-upstream pending
Justification: root security hole
Citing from RT#4170 to have a public bug report to refer to:
Hans Spaans wrote:
> On a default system the directory /var/backups/ldap is created with
> permissions
Hello,
2013/1/27 David Prévot :
> I've prepared an NMU for gdb (versioned as 7.4.1+dfsg-0.1) and
> uploaded it to DELAYED/2. Please feel free to tell me if I
> should delay it longer.
It is fine. Thanks for taking care.
Best regards,
--
Héctor Orón -.. . -... .. .- -. -.. . ...- . .-.. ---
Package: rails
Severity: grave
Tags: security
Justification: user security hole
Hi
The following advisory was made for rails:
[1] http://weblog.rubyonrails.org/
[2]:
https://groups.google.com/forum/?fromgroups=#!topic/rubyonrails-security/1h2DR63ViGo
Disclaimer: I have not checked which vers
Processing control commands:
> severity -1 serious
Bug #699195 [stevedore] stevedore: package runs test suite at build time
without required Build-Depends.
Severity set to 'serious' from 'normal'
> retitle -1 stevedore: FTBFS due to missing Build-Deps on
> python-{mock,nose,setuptools}
Bug #6991
Package: libvirt
Severity: grave
Tags: security patch
Justification: user security hole
Hi,
please see :
https://bugzilla.redhat.com/show_bug.cgi?id=893450
http://libvirt.org/git/?p=libvirt.git;a=commit;h=46532e3e8ed5f5a736a02f67d6c805492f9ca720
The Debian package in unstable looks affected. Can
On Tue, Jan 29, 2013 at 10:20:20 +0100, Ana Guerrero wrote:
> Now you showed they seem to be ABI compatible, giving the possibility to
> users
> of installing the flavour they want would be nice to have. I checked more
> and I was thinking about to change the symbols files of libhdf5-$flavour-7
Processing commands for cont...@bugs.debian.org:
> retitle 698916 wordpress: CVE-2013-0235: pingback port scanning issue fixed
> in 3.5.1
Bug #698916 {Done: Raphaël Hertzog } [wordpress] wordpress:
pingback port scanning issue fixed in 3.5.1
Bug #698926 {Done: Raphaël Hertzog } [wordpress] wordp
On Mon, Jan 28, 2013 at 05:00:29PM +0100, Julien Cristau wrote:
> On Mon, Jan 28, 2013 at 16:55:47 +0100, Ana Guerrero wrote:
>
> > > On Mon, Jan 28, 2013 at 13:03:02 +0100, Ana Guerrero wrote:
> > >
> > > > On Mon, Jan 28, 2013 at 12:26:18PM +0100, Julien Cristau wrote:
> > > > > On Mon, Jan 28,
Package: procps
Version: 1:3.3.3-2
Severity: serious
Justification: FTBFS
Dear Maintainer,
in order to help diagnosing #699205, I need to rebuild procps with
debugging options as there's no pre-built -dbg package (hint,
hint). Unfortunately that fails with a test suite error, despite
"nocheck" be
99 matches
Mail list logo