Package: nagios-nrpe
Severity: grave
Tags: security
Hi
On bugtraq mailinglist it was reported publicly[1]. If support for
command argument in the daemon are enabled then it would be possible
to pass $() and possibly executing shell commands when run unter bash.
Upstream has released 2.14 contain
Processing control commands:
> reassign -1 libgcrypt11
Bug #699034 [src:cairo] libwebkitgtk-1.0-0: midori and GtkLauncher crash after
typing a url (cairo-surface.c assertion)
Bug reassigned from package 'src:cairo' to 'libgcrypt11'.
Ignoring request to alter found versions of bug #699034 to the s
Followup-For: Bug #700446
Please also check the log for bug #700447.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Source: xserver-xorg-video-ati
Followup-For: Bug #700446
Please refer to
http://anonscm.debian.org/gitweb/?p=pkg-xorg/driver/xserver-xorg-video-ati.git;a=commitdiff;h=42fd3337aac4dd1e2efa71cbcbd87ae11d4e527d
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "
Processing control commands:
> tags 698879 + patch
Bug #698879 [src:e2fsprogs] e2fsprogs: Unhandled /usr/share/doc symlink to doc
transition
Added tag(s) patch.
--
698879: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=698879
Debian Bug Tracking System
Contact ow...@bugs.debian.org with probl
Package: src:e2fsprogs
Followup-For: Bug #698879
Control: tags 698879 + patch
Hello. I think that uploading the attached diff would close this bug.
The problem causing data corruption on 16TB filesystems should
probably be reported as a separate serious bug.
Do you think it is possible to extrac
Your message dated Sat, 23 Feb 2013 01:02:32 +
with message-id
and subject line Bug#700789: fixed in autoconf-archive 20111221-2
has caused the Debian Bug report #700789,
regarding autoconf-archive: unhandled symlink to directory conversion:
/usr/share/doc/PACKAGE
to be marked as done.
This
Control: tags 581999 patch
I haven't tested the following patch, but it should essentially resolve the
issue.
It removes the check for empty USER and PASS entirely, instead setting a
default password (a default was already set for user) in the debconf template,
and lets debconf's noninteractive
Processing control commands:
> tags 581999 patch
Bug #581999 [rinputd] fails to install
Added tag(s) patch.
--
581999: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=581999
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ.
Package: warmux
Version: 1:11.04.1+repack-3
Justification: renders package unusable
Severity: grave
Hello!
When I press the "Play" button warmux immediately stops with following errors:
markus@markusbyte:~> LC_ALL=C warmux
On 2013-02-22 22:26, Andreas Henriksson wrote:
> (Also, there's a replaces on gir-repository-dev without corresponding
> breaks... but that version is older then the one included in squeeze and
> has since been completely dropped... So I don't know which files if any
> was actually replaced there..
On 2013-02-22 22:37, Andreas Henriksson wrote:
> Both << and <= 0.10.4 could work since there are only 0.10.3-1 and 0.10.4-1.
>
> I'll make sure that both the replaces and breaks use the same version
And I probably just suggested to add a matching Breaks, since the
operator does not really ma
On Thu, Feb 21, 2013 at 08:01:02PM +0100, Margarita Manterola wrote:
> tags 700820 +patch
> thanks
>
> Hi,
>
> I have prepared a patch that fixes the issue, by adding a --non-interactive
> flag to the script called by the postinst script. This way, the postinst
> doesn't prompt but if called by
Processing control commands:
> severity -1 important
Bug #700739 [src:linux] Kernel panic - not syncing: Fatal exception in interrupt
Severity set to 'important' from 'grave'
--
700739: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700739
Debian Bug Tracking System
Contact ow...@bugs.debian.o
Control: severity -1 important
On Fri, 2013-02-22 at 23:37 +0900, Kubo Hiroshi wrote:
> Control: severity -1 grave
Sorry, no. This package works for most people, so it doesn't 'break the
whole system'.
> Hi dear,
>
> After I repoted the crash, I experienced the same crashes
> for serveral ti
Your message dated Fri, 22 Feb 2013 22:02:36 +
with message-id
and subject line Bug#696099: fixed in gssdp 0.12.2.1-2
has caused the Debian Bug report #696099,
regarding libgssdp-1.0-dev: removal of libgssdp-1.0-dev makes files disappear
from gupnp-vala
to be marked as done.
This means that
On Fri, Feb 22, 2013 at 10:26:12PM +0100, Andreas Henriksson wrote:
[...]
> > Adding
> >
> > Breaks: gupnp-vala (<= 0.10.4)
> >
> > should solve this issue.
>
> This should be gupnp-vala (<< 0.10.4), right? [...]
Oh wait I guess this doesn't matter since 0.10.4 << 0.10.4-1...
Both << an
Hello Andreas!
Sorry for not noticing your bug report earlier!
Will fix the (somewhat artificial, but whatever) bug immediately, but
I have one small question below that I would be very happy if you
could confirm before I upload
On Sun, Dec 16, 2012 at 07:06:48PM +0100, Andreas Beckmann wrot
Processing commands for cont...@bugs.debian.org:
> found 700971 0.6.7
Bug #700971 [nslcd] nslcd mangles config file upon update
There is no source info for the package 'nslcd' at version '0.6.7' with
architecture ''
Unable to make a source version for version '0.6.7'
Marked as found in versions 0
Processing control commands:
> fixed -1 0.8.5
Bug #700971 [nslcd] nslcd mangles config file upon update
Marked as fixed in versions nss-pam-ldapd/0.8.5.
> tags -1 + patch
Bug #700971 [nslcd] nslcd mangles config file upon update
Added tag(s) patch.
--
700971: http://bugs.debian.org/cgi-bin/bugre
Control: fixed -1 0.8.5
Control: tags -1 + patch
On Thu, 2013-02-21 at 01:09 +, Mark Cunningham wrote:
> Before install, i get the defaults i configured when installed the
> package. I set these to non used variables and created the nslcd.conf
> myself.
I've been able to find the problem: the
Processing commands for cont...@bugs.debian.org:
> fixed 690319 0.7.15+squeeze3
Bug #690319 {Done: Arthur de Jong } [nss-pam-ldapd] lookup
fail to contact nslcd when first 1024 filedescriptor are already used (select)
There is no source info for the package 'nss-pam-ldapd' at version
'0.7.15+squ
Hi,
On Sun, Feb 03, 2013 at 06:18:57PM +0100, Guido Günther wrote:
> Hi Eric,
> On Tue, Jan 29, 2013 at 02:21:30PM -0700, Eric Blake wrote:
> > On 01/29/2013 01:22 PM, Guido Günther wrote:
> > > Hi,
> > > On Mon, Jan 28, 2013 at 07:35:38PM +0100, Peter Krempa wrote:
> > >> When reading and dispatch
Package: avelsieve
Version: 1.9.9-2.3
Severity: grave
Justification: renders package unusable
Working with a fresh install/config of avelsieve and dovecot-managesieved, with
no sieve scripts yet, I am able to view and fill out the initial "add rule"
form in avelsieve. Upon adding the rule (which
Control: found -1 1.99.9-1
Hi all
I had a look at the version in experimental:
On Mon, Feb 18, 2013 at 09:23:20PM +0100, Martin Gerhard Loschwitz wrote:
> I don't think we have Corosync 2.0 anywhere (we have 1.99 in experimental, I
> don't know if that specific version is affected or not just ye
Le jeudi 21 février 2013 23:12:28, vous avez écrit :
> It looks like the license of GNUTLS 3.1.x may eventually be
> changed from LGPLv3+ back to LGPLv2.1+. If that succeeds,
> I believe it would solve the incompatibility with Pan.
> http://lists.gnutls.org/pipermail/gnutls-devel/2013-February/006
Hello,
The config file of rinputd starts like this:
-
#!/bin/sh
set -e
[ `echo $DEBIAN_FRONTEND | tr '[:upper:]' '[:lower:]'` = "noninteractive" ] &&
exit 0
. /usr/share/debconf/confmodule
Processing control commands:
> fixed -1 3.4.7
Bug #701184 [fai-nfsroot] fai-nfsroot: fails to remove: rm: cannot remove
`/etc/init.d/rcS': No such file or directory
Marked as fixed in versions fai/3.4.7.
--
701184: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=701184
Debian Bug Tracking Syst
Package: python-django
Severity: grave
Tags: security
Justification: user security hole
Please see
https://www.djangoproject.com/weblog/2013/feb/19/security/
Cheers,
Moritz
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Con
Your message dated Fri, 22 Feb 2013 16:32:49 +
with message-id
and subject line Bug#701181: fixed in im-switch 1.23
has caused the Debian Bug report #701181,
regarding im-switch: LP: 1101836: Needs to keep hands off when removed but not
purged
to be marked as done.
This means that you claim
Package: fai-nfsroot
Version: 3.2.17~lenny1
Severity: serious
User: debian...@lists.debian.org
Usertags: piuparts
Control: fixed -1 3.4.7
Hi,
during a test with piuparts I noticed your package fails to remove.
>From the attached log (scroll to the bottom...):
Removing fai-nfsroot ...
rm: ca
Your message dated Fri, 22 Feb 2013 16:32:58 +0100
with message-id <51278faa.6030...@cyconet.org>
and subject line Re: Bug#701188: ipplan: Lost connection to MySQL server at
'reading initial communication packet', system error: 111 during initial config
via web IF (debconf mysql)
has caused the D
Package: inn2
Dear maintainer,
Recently you fixed one or more security problems and as a result you closed
this bug. These problems were not serious enough for a Debian Security
Advisory, so they are now on my radar for fixing in the following suites
through point releases:
squeeze (6.0.7) - use
Package: im-switch
Version: 1.20
Severity: serious
If this im-switch package is removed but not purged, this package makes
other somewhat independent package im-config unusable and causes hard to
fix problem for non-technical users and its effect is very annoying since
it interferes with keyboard
Processing commands for cont...@bugs.debian.org:
> close 701184
Bug #701184 [fai-nfsroot] fai-nfsroot: fails to remove: rm: cannot remove
`/etc/init.d/rcS': No such file or directory
Marked Bug as done
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
701184: http:
Le samedi 16 février 2013 à 16:35 +0100, Andreas Beckmann a écrit :
> during a test with piuparts I noticed your package fails to upgrade from
> 'squeeze'.
> It installed fine in 'squeeze', then the upgrade to 'wheezy' fails.
>
> >>From the attached log (scroll to the bottom...):
>
> Preparing
Processing commands for cont...@bugs.debian.org:
> tags 697015 -wheezy
Bug #697015 [src:imagevis3d] imagevis3d: FTBFS[kfreebsd]: error:
'POSIX_FADV_WILLNEED' was not declared in this scope
Removed tag(s) wheezy.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
697
Package: ipplan
Version: 4.92a-2
Severity: grave
Justification: renders package unusable
New install: Configured mysql via debconf ok but needed to amend
/etc/ipplan.apache.conf to re-enable aliases to /usr/share/ipplan before the
ipplan web page could be accessed, contrary to instructions in
/usr
On 2013-02-22 12:18, ow...@bugs.debian.org wrote:
Thank you for the additional information you have supplied regarding
this Bug report.
Ah, this happened automatically because the bug was closed. There is no
need to prepare stable packages unless stable is affected.
Thanks,
--
Jonathan Wilt
Package: linbox
Version: 1.1.6~rc0-4.2
Severity: serious
Tags: sid
Hi,
in an unstable chroot, linbox FTBFS like this:
checking whether GMP was compiled with --enable-cxx... yes
checking for NTL >= 5.0... found
checking for GIVARO >= 3.2.10... not found
***
Package: hplip
Severity: grave
Tags: security
Justification: user security hole
Several further insecurely handled temporary files were discovered by Red Hat:
https://www.redhat.com/archives/enterprise-watch-list/2013-February/msg00024.html
I've extracted the patch from the RHEL update, it's atta
Processing control commands:
> found -1 1.99.9-1
Bug #699615 [corosync] CVE-2013-0250 - corosync: Remote DoS due improper HMAC
initialization
Marked as found in versions corosync/1.99.9-1.
--
699615: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699615
Debian Bug Tracking System
Contact ow..
Processing control commands:
> severity -1 grave
Bug #700739 [src:linux] Kernel panic - not syncing: Fatal exception in interrupt
Severity set to 'grave' from 'important'
--
700739: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700739
Debian Bug Tracking System
Contact ow...@bugs.debian.org w
Package: drupal7
Severity: grave
Tags: security
Justification: user security hole
This has been assigned CVE-2013-0316:
http://drupal.org/SA-CORE-2013-002
Cheers,
Moritz
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contac
On 2013-02-22 08:51, Vincent Cheng closed #700997:
>* [...] distutils in Debian now
> takes care of installing headers into the right location as of python3.2
> (>= 3.2.3-7), so add a build-dep on that [...]
Maybe a solution for the other packages, too.
Andreas
--
To UNSUBSCRIBE,
45 matches
Mail list logo
