Il 07/02/2017 02:36, Paul Wise ha scritto:
> I noticed this is fixed in experimental (but there was a typo in the
> changelog), do you intend to get this fixed in stretch too?
yes , see 854456
a.
signature.asc
Description: OpenPGP digital signature
Package: freevo
Severity: grave
Justification: renders package unusable
Dear everybody,
'freevo' is in "dormant state" since Feb 2014 [1] ; there are some
patches around to revive it [2] and a github branch that had some
activity [3], but in truth there was no activity in some years.
In the mean
Package: intel-microcode
Version: 2.20140624.1
Severity: critical
Justification: breaks the whole system
hi
I have installed a small wheezy system, and then promptly
upgraded it to jessie. This system has rootfs crypted
with cryptsetup (altogh I am not sure this is relevant).
I have two kernel c
hi,
I partially fixed the problem.
New dpkg-deb has changed the way it compresses the data in deb packages,
I have added some logic to detect it.
a.
signature.asc
Description: OpenPGP digital signature
On Fri, Jul 05, 2013 at 02:15:19PM +0200, gregor herrmann wrote:
> Dear maintainer,
>
> I've prepared an NMU for dvbstreamer (versioned as 2.1.0-2.4) and
> uploaded it to DELAYED/2.
thanks a lot.
a.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubsc
hi
I tried guppy SVN 90. It works with python 2.7 in Debian wheezy.
a.
--
Andrea Mennucc
"E' un mondo difficile. Che vita intensa!" (Tonino Carotone)
signature.asc
Description: Digital signature
hi,
'debdelta-upgrade' uses 'prelink -u' in ssytems where prelink is used,
to recover the original version of the file; so this bug is
affecting it as well; please give it a look
a.
--
Andrea Mennucc
"E' un mondo difficile. Che vita intensa!" (Tonino Carotone)
--
To UNSUBSCRIBE, email to
let me just say that I am quite puzzled... I compiled it using pbuilder before
uploading... a.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
tag 607921 +wontfix
thanks
Dear Holger,
here is the situation. When you install the package 'freevo' it sets up
your PC to be a PVR. It sets some services to be automatically started
at boot, such as the TV recorder and the main GUI. All services are
hi,
I was biten by this bug
here are some info, hoping they help
I have two hard disks /dev/sda /dev/sdb,
each 500GB , each with 4 primary partitions
(I created an identical layout in them two),
the first partition /dev/sda1 is a standard ext3 containing /boot ;
the last one is a RAID1 partiti
On Tue, Mar 09, 2010 at 07:13:08PM +, Ben Hutchings wrote:
> On Tue, Mar 09, 2010 at 04:29:55PM +0100, A Mennucc wrote:
> > Package: linux-headers-2.6.33-2-686
> > Version: 2.6.33-1~experimental.2
> > Severity: grave
> > Justification: renders package unusable
&g
Package: linux-headers-2.6.33-2-686
Version: 2.6.33-1~experimental.2
Severity: grave
Justification: renders package unusable
hi,
this package depends on linux-kbuild-2.6.33 that though does not exist
(this is problematic for me, since my video card is not supported
by nv, so I have to compile th
Package: nvidia-libvdpau1
Version: 190.53-1
Severity: grave
Justification: renders package unusable
hi
the package nvidia-libvdpau-dev
depends on nvidia-libvdpau1 (>= 190.53)
the package nvidia-libvdpau1
depends on nvidia-libvdpau1-driver (>= 190.53)
but conflicts nvidia-libvdpau
now, AFAICT, t
Cyril Brulebois ha scritto:
Package: src:kaa-base
Version: 0.6.0-2
Severity: serious
Justification: Breaks on several release archs
(just for the record , according to
http://release.debian.org/squeeze/arch_qualify.html
kfreebsd-* may be part of the next release, but is at risk, while hurd
is
Package: console-tools
Version: 1:0.2.3dbs-67
Severity: normal
The problem is in the line
readlink /proc/self/fd/0 | grep -q -e /dev/vc -e '/dev/tty[^p]' -e
/dev/console
if 'grep' does not match, it will fail, and since 'set -e', then
the script will fail.
This patch fixes the problem.
On Fri, Jan 01, 2010 at 06:59:44PM -0500, Noah Meyerhans wrote:
> This was fixed for both unstable, volatile, and stable (via
> stable-proposed-updates) earlier today.
thanks a lot!
a.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble
Package: spamassassin
Version: 3.2.5-2+lenny1
Severity: critical
Justification: causes serious data loss
hi
since 1st Jan, the rule FH_DATE_PAST_20XX is triggering on all emails,
adding 3.2 to the spam score.
Following the example in
/usr/share/doc/spamassassin/examples/procmailrc.example
I had
hi,
I compiled vzctl 3.0.23-8 (using pbuilder, for lenny amd64) and
installed, it works fine; if anybody is bitten by this bug, the
backported package is in http://tonelli.sns.it/pub/mennucc1/vz
(and is signed with my key)
a.
--
Andrea Mennucc
"The EULA sounds like it was written by a team o
Package: vzctl
Version: 3.0.22-14
Severity: grave
Justification: renders package unusable
hi, it seems that bug 513310 is back with kernel 2.6.26-2 on amd64
I cannot start a VZ ; see attachment, where I create one from scratch
and it fails to start; I also attach the strace of 'vzctl start'
a.
Package: nvidia-glx-legacy-96xx
Version: 96.43.13+1-1
Severity: grave
Justification: renders package unusable
hi,
this package provides xserver-xorg-video-2
but xserver-xorg-core conflicts with xserver-xorg-video-2
the net result is as follows:
v
# apt-get install nvidia-glx-legacy-
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
hi,
the problem is that module-assistant sets
KSRC=/lib/modules/2.6.30-1-686/build
and then debian/rules calls the nvidia makefile nv/Makefile.kbuild by
$(MAKE) SYSSRC=$(KSRC)
but instead if you call the upstream makefile directly,
it interna
This is a pre-release version of the X server from The X.Org Foundation.
It is not supported in any way.
Bugs may be filed in the bugzilla at http://bugs.freedesktop.org/.
Select the "xorg" product for bugs you find in this release.
Before reporting bugs in pre-release versions please check the
la
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I attach the X log , just in case
I also reported this bug into
http://www.nvnews.net/vbulletin/showthread.php?t=136680
a.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
hi,
the upstream code (that is,
ftp://download.nvidia.com/XFree86/Linux-x86/96.43.13/
) compiles fine
the difference is AFAICT that the upstream code also runs a file
'conftest.sh' that sets some macros ; while debian/rules doesn't
the bad news is t
On Thu, Sep 10, 2009 at 02:06:11PM +, Debian Bug Tracking System wrote:
> lirc-modules-source >= 0.8.3-4 (uploaded on the 7th of August 2009)
> compiles and works well with kernel 2.6.26 - 2.6.31. It's available in sid
> for all architectures != mipsel, which keeps it out of testing for now[1]
On Thu, Sep 10, 2009 at 02:41:48PM +0200, A Mennucc wrote:
> the lirc module does not compile on the kernel 2.6.30-1-686 ,
> in a recent Debian/unstable install
let me correct, that box is Debian/testing
a.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a s
hi,
I was looking into svn://svn.debian.org/svn/pkg-lirc/lirc/trunk/
I am puzzled
I see that, you are not upgrading to the latest upstream
(currently 0.8.5 , since May 2009 - but before that there was
0.8.4a in Oct 2008) ; but rather, whenever a new
kernel has entered in Debian, you have
backpo
Package: lirc-modules-source
Version: 0.8.3-3
Severity: grave
Justification: renders package unusable
hi,
the lirc module does not compile on the kernel 2.6.30-1-686 ,
in a recent Debian/unstable install
a.
for templ in ; do \
cp $templ `echo $templ | sed -e 's/_KVERS_/2.6.30-1-686/g'` ;
Package: nvidia-kernel-legacy-96xx-source
Version: 96.43.13-0.1
Severity: grave
Justification: renders package unusable
hi,
the source does not build with kernel 2.6.30-1-686
I attach a typescript of the command
# m-a -t b-i nvidia-kernel-legacy-96xx
the most relevant errors are:
/usr/src/mo
hi Daniel
the original advisory says
> Using earlier NVIDIA Linux drivers on the Celsius H270 notebook will
> result in a corrupt EDID
and
> anyone repackaging a 180.xx NVIDIA Linux graphics driver upgrade to
> 180.51
moreover what LWN says is
> It fixes a problem with the 180.29 release (packa
Package: nvidia-graphics-drivers
Version: 180.44-2
Severity: critical
Justification: breaks the whole system
hi, this advisory has appeared into
http://www.nvnews.net/vbulletin/showthread.php?t=131849
> Please note that the NVIDIA 180.51 Linux graphics driver
> fixed an interaction problem that r
On Wed, Mar 25, 2009 at 11:03:08AM +0100, Diego Biurrun wrote:
> --enable-debug
>
> Why do you use this flag?
I added it to ship symbols into mplayer-dbg
> It could be the cause for this build failure.
can you elaborate?
a.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
hi,
I think I found where the bug is: reading
http://sourceware.org/ml/binutils/2008-06/msg00280.html
it seems that MIPS has problems linking together PIC and non-PIC code
so we need to compile the whole of MPlayer with -fPIC
I looked into FFMpeg b
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I am puzzled... how come that this happens only on MIPS?
a.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAknAF9MACgkQ9B/tjjP8QKSG0ACgjrJmJanbCaYkqwrMqF81mmj
retitle 474947 "fix Dynamic MMaps error"
severity 474947 important
tag 474947 -unreproducible
thanks
hi bug, hi people, hi d-release
I did some study on bug 474947, that is grave/RC, and is posted against APT.
Since I was told that the APT team is understaffed, I decided to take
action myself.
hi,
On Mon, Oct 20, 2008 at 03:30:14PM +0300, Eugene V. Lyubimkin wrote:
> P.S. No one answered on my investigation message before :(
BTW, I am not part of the APT team. I tried to address this bug after I read
http://lists.debian.org/debian-devel-announce/2008/10/msg0.html
> Though, I thin
tag 474947 +unreproducible
thanks
hi,
I tried this bug and I cannot reproduce it.
I have copied all sources from this bug report into my
/etc/apt/sources.list and removed duplicates, and deleted non-US
entries (they are obsolete); the resulting file is attached.
I then run
apt-get update
a
Package: fuzzyocr
Version: 2.3b-2
Severity: grave
Justification: renders package unusable
It turns out that, when installed with spamassassin 3.2,
fuzzyocr 2.3b-2 does absolutely nothing
a.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAI
On Thu, Sep 04, 2008 at 12:25:15PM +0200, W. Martin Borgert wrote:
> "I allow that my contribution to the Debian GNU/Linux release
> notes can be distributed under any DFSG-free license."
fine for me
a.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Co
Package: audacious
Version: 1.5.1-1
Severity: grave
Justification: renders package unusable
hi
I cannot use audacious, it crashes at start
(BTW, I deinstalled audacious-plugins-extra )
here is the backtrace
[Switching to Thread 0xb7286720 (LWP 14654)]
0xb7602812 in strrchr () from /lib/i686/
On Wed, Jun 18, 2008 at 04:24:18PM +0200, Reinhard Tartler wrote:
> Since mplayer includes an exact copy of ffmpeg by using an 'svn:external'
> on the ffmpeg svn, it makes sense to build shared library packages out
> of that source.
hi Reinhard,
I did build such a package ~1 month ago; the pack
On Wed, Jun 18, 2008 at 12:30:33PM +0100, Neil McGovern wrote:
> I also find it fairly rich that you complain at a lack of answers, and
> yet don't reply to pings to a BR asking for an update.
The reason I did not reply is that I was working to find a
solution to the bug, but I did not find it.
On Wed, Jun 18, 2008 at 10:29:17AM +0100, Neil McGovern wrote:
> Neither, it's the RC policy which carries more weight than a RG:
> http://release.debian.org/lenny/rc_policy.txt
>
> 5a) Packages in the archive must not be so buggy or out of date that we
> refuse to support them.
>
> The security
On Wed, Jun 18, 2008 at 10:29:17AM +0100, Neil McGovern wrote:
> On Wed, Jun 18, 2008 at 11:10:21AM +0200, A Mennucc wrote:
> And that was the case since 16 Dec 2006?
yes. Read ahead.
> Why was this not brought up
> sooner, and why has there been zero effort made into resolving this
hi
On Tue, Jun 17, 2008 at 10:28:27PM +0100, Neil McGovern wrote:
> I'm afraid I can't accede to your request. This bug has been open since
> 25 Oct 2006. The etch-ignore tag was added 16 Dec 2006, where it was
> explicitly stated that it's RC for lenny. I pinged the bug on 28 Mar
> 2008, to agai
hi everybody
I am requesting to the d-release team a lenny-ignore tag for bug 395252.
There are multiple reasons for this request, please take some time to
read ahead.
--- Reason 1 : policy
Recently, after a long discussion in bug 392362, a paragraph [4.13]
was added to d-policy 3.8.0 stating
hi,
I have been trying to address this bug from time to time , but with no
success so far ; up to some time ago, the version of ffmpeg-free in
unstable was 0.cvs20070307 , and that had an difference in a fundamental
C structure in a header, wrt mplayer.
Joey Hess ha scritto:
> So is there any rea
dear pygame mantainer, hi,
bugs in pygame are keeping freevo out of testing ; for this reason,
I will NMU pygame in some days, unless you tell me you have time
to update pygame yourself
a.
signature.asc
Description: Digital signature
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
hi
this bug crashes freevo on amd64 CPUs. This is why I added a "blocks" tag.
a.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFIL+xU9B/tjjP8QKQRAtYQAJ49hTMh9YQUk
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
this bug was (indipendently) posted to python-pygame
I added a "blocks"
a.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFILzuU9B/tjjP8QKQRAsMtAJsHY7U1L7K5CgoqBf5
On Thu, May 15, 2008 at 04:59:45PM +0100, Don Alexander wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Package: mplayer
> Version: 1:1.0.rc2svn20080417-0.0
you are not using the version in Debian main, but
the version packaged by C. Marillat
a.
--
To UNSUBSCRIBE, email to [EMAI
On Fri, May 09, 2008 at 03:02:11PM +0200, Julien Danjou wrote:
> I don't know why but here it just crashes:
here instead it works...
> error opening file /home/freevo/cache/vfs/home/freevo/cache/skin-111
please try moving away the whole of /home/freevo/cache
with these steps
$ su - freevo
$ mv /
On Mon, Apr 14, 2008 at 04:38:47PM +0200, Lucas Nussbaum wrote:
> Don't blame gcc 4.3. It built that code fine last week. Blame dpkg (see
> my other mail)
actually, I am happy to know that. Having one gcc bug that stops
mplayer from transitioning from sid to lenny was already one gcc bug
too many.
On Mon, Apr 14, 2008 at 03:06:50PM +0200, Reimar Döffinger wrote:
> >
> > This might be caused by the default value of CFLAGS now set by
> > dpkg-buildpackage.
>
> No, certainly not.
well, looking at the original bug report, it really says "cc -g -O2"
more details are in
http://people.debian.
hi
Read from
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=402950#44
on.
As you see, that piece of code worked in the past, if enough
optimization was allowed. The fact that it does not work anymore is
quite surprising and I would consider this a regression in gcc 4.3
anyhow I will do some c
On Mon, Apr 14, 2008 at 12:48:56PM +0200, Lucas Nussbaum wrote:
> Package: mplayer
> Version: 1.0~rc2-10
> Severity: serious
> User: [EMAIL PROTECTED]
> Usertags: qa-ftbfs-20080413 qa-ftbfs
> Justification: FTBFS on i386
>
> Hi,
>
> During a rebuild of all packages in sid, your package failed to
Nico Golde ha scritto:
> Package: mplayer
> Severity: grave
> Tags: security patch
>
> This also affects mplayer since it also uses this code.
> A patch is available on:
> http://hg.debian.org/hg/xine-lib/xine-lib?cmd=changeset;node=12cb075fba8ea09813fc35e0c731d2a64265b637;style=raw
I saw a comme
Package: audacious-crossfade
Version: 0.3.14-1
Severity: grave
Justification: renders package unusable
hi
when I start audacious, it immediatly segfaults.
I use 'gdb' to get this backtrace:
[Switching to Thread 0xb7440720 (LWP 14979)]
0xb79a977c in g_type_check_instance_cast () from /usr/lib/lib
On Sat, Oct 13, 2007 at 03:25:06PM -0400, Sean Zimmermann wrote:
> I tried playing the file with totem, and, though it begins to play
> the file correctly, audio cuts out within the first few seconds,
> though it continues to play the video.
this IMHO means that ALSA is still broken
overall
hi
when you boot with the new kernel, does audio work with other applications?
If you use Gnome , can you play sounds in the gnome sound manager ?
may you try with totem ?
if the above works, may you please try again playing your files with mplayer ,
but using the option '-ao esd' ?
thanks
a
hi
please send us the output of 'mplayer -v -v -v file...'
(with both kernels if possible)
a.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
hi
On Fri, Jul 27, 2007 at 03:00:26PM +0200, Nico Golde wrote:
> the copyright file of this package is totally broken, it
> doesn't even name where to get the source code from
> in the copyright file which is a policy violation.
I guess that you are referring to this line in the policy:
"In add
Package: xdelta
Version: 1.1.3-7
Severity: grave
Justification: renders package unusable
hi
libglib1.2 has been renamed to libglib1.2ldbl
so currently xdelta is not installable in unstable
a.
-- System Information:
Debian Release: 4.0
APT prefers stable
APT policy: (500, 'stable')
Archi
the bug was fixed by binNMU (on Sat 21) ; for some reasons, this
binNMU has not yet entered into unstable
a.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
On Wed, Jul 11, 2007 at 01:46:30PM +0200, Rafal Krypa wrote:
> MPlayer binary, even when run with empty config files and no command
> line options, receives SIGSEGV before it is able to print or do anything
> noticeable.
try
$ mplayer -v -v
does it print absolutely nothing?
> Backtrace:
>
> P
On Tue, Jun 19, 2007 at 09:28:05PM +0100, Stefano Zacchiroli wrote:
> Package: zope-debhelper
> Version: 0.3.9
> Severity: grave
> Tags: security
>
> The maintainer scripts generated by zope-debhelper leave passwords in
> /var/cache/debconf/config.dat. Passwords are therefor world readable by
> an
hi
you also need this patch
--
Andrea Mennucc
"The EULA sounds like it was written by a team of lawyers who want to tell
me what I can't do, and the GPL sounds like it was written by a human
being who wants me to know what I can do."
Anonymous,http://www.securityfocus.com/columnists/420
-
On Fri, Jan 26, 2007 at 07:13:34AM +0100, Goswin von Brederlow wrote:
> [EMAIL PROTECTED] (A Mennucc) writes:
>
> > hi
> >
> > I wanted to test running 'Acrobat Reader' on my amd64, so I installed
> > ia32-libs-gtk ; but it failed, as reported in this lon
hi
I wanted to test running 'Acrobat Reader' on my amd64, so I installed
ia32-libs-gtk ; but it failed, as reported in this long bug
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=406455
Disclaimer: I did not have time to read bug 406455;
but I hope I can add some useful infos, namely:
0
> I will open a BR on dpkg
bug #406715
a.
signature.asc
Description: OpenPGP digital signature
hi
summary:
if mozilla-imagezoom is installed before iceape,
then the installation of iceape fails to set a
symlink, and iceape will not work
I have another host, where I installed iceape-browser, and it works;
so I compared the two installations, and I found the problem. Lets call
DW the
Package: iceape-browser
Version: 1.0.7-2
Severity: grave
Justification: renders package unusable
hi
I just installed iceape in this Etch machine.
More precisely, I installed:
iceape-browser iceape-gnome-support
iceape-mailnews iceape-calendar
Unfortunately, iceape refuses to start: it just shows
Hi,
Attached is the diff for my flpsed 0.3.7-1.1 NMU.
--
Andrea Mennucc
"The EULA sounds like it was written by a team of lawyers who want to tell
me what I can't do, and the GPL sounds like it was written by a human
being who wants me to know what I can do."
Anonymous,http://www.security
[forwarding this into the bug, so it is visible from the web page as well]
I tried flpsed on a fresh install of etch and it fails as well: hence
the "confirmed" tag.
Since there is no dependency on gs, flpsed fails this requirement:
Packages must include a "Depends:" line listing any ot
tags 111342 -woody
thanks
Hi,
Attached is the diff for my xarchon 0.50-10.1 NMU.
I changed it a little bit.
Basilarly,
-misc-fixed-medium-*-normal-*-15-0-*-*-*-*-iso8859-1
fails; while
-misc-fixed-medium-*-normal-*-15-*-*-*-*-*-iso8859-1
instead works.
I also fixed two lintian warnings:
- del
severity 403379 important
tag 403379 -security
thanks
while looking into the fix of the code, I came to the conclusion that
this bug could not be exploited w.r.t. security
a.
signature.asc
Description: OpenPGP digital signature
severity 403398 important
set 403398 -security
thanks
Sam Hocevar ha scritto:
>
>I'm investigating #403398
hi
I investigated this issue, and it is (quite likely) not a security one;
the crash is of this form: when a I-frame, or an header, is damaged,
then mplayer does not allocate memory fo
I have two hypotheses in mind:
--- hypothesis 1
Aurelien Jarno ha scritto:
> mplayer segfaults on a file I have (probably badly) downloaded from the
> Internet. Note that other video applications in Debian (vlc, kaffeine)
> do not segfault. It is very likely a security problem.
> So
Aurelien Jarno ha scritto:
> reopen 403379
> thanks
> Sorry, but I still have the same problem. Also a debdiff show no code
> change between this version and the previous one.
I forgot to copy the patch from my -debug tree to my -build tree
before debuild (damn it)
the patch is not on this PC,
Aurelien Jarno ha scritto:
> mplayer segfaults on a file I have (probably badly) downloaded from the
> Internet. Note that other video applications in Debian (vlc, kaffeine)
> do not segfault. It is very likely a security problem.
>
> The file is available here: http://temp.aurel32.net/mplayer.mp
clone 403379 -1
retitle -1 libavcodec: segfault while reading an mpeg file
reassign -1 libavcodec0d
found -1 0.cvs20060823-4
thanks
Aurelien Jarno wrote:
> Package: mplayer
> Version: 1.0~rc1-8
> Severity: grave
> Tags: security
> Justification: user security hole
>
> mplayer segfaults on a file
set severity normal
tag -security
tag +pending
thanks
this was not a security risk
here is what I understand
MPlayer uses "custom buffers" to drive libmpeg2 (it is a feature of
libmpeg2); there is an array of pointers to buffers, called
mpi->planes , allocated with calloc(), so they are all zero
Pierre Habouzit ha scritto:
> xine and vlc that use debian libpmeg2 instead do not segfault.
>
just for the record: libxine1 ships its own internal version of libmpeg2
it is xineplug_decode_mpeg2.la
a.
signature.asc
Description: OpenPGP digital signature
Pierre Habouzit ha scritto:
> FYI, the patch to compile against debian's libmpeg2.a (yes using your
> beloved static compiling) is ridiculously small (see attachment).
it is also ridiculously useless
the MPlayer version of libmpeg2 differs heavily from the one you propose
for example, MPlayer
On Wed, Dec 13, 2006 at 04:00:02PM +0100, Pierre Habouzit wrote:
> Package: mplayer
> Version: 1.0~rc1-2
> Severity: grave
> Tags: security
> Justification: user security hole
>
> While playing http://madism.org/~madcoder/pub/foobar.mpeg mplayer
> segfaults, somewhere in mpeg2_idct_copy_mmx.
>
Pierre Habouzit ha scritto:
> On Wed, Dec 13, 2006 at 05:53:03PM +0100, A Mennucc wrote:
>> here is some more info:
>>
>> $ gdb ./mplayer
>> This GDB was configured as "x86_64-linux-gnu"...Using host libthread_db
>> library "/lib/libthread_db.so
you may download the "debug" version of mplayer from
http://tonelli.sns.it/pub/mplayer/debug
a.
signature.asc
Description: OpenPGP digital signature
here is some more info:
$ gdb ./mplayer
This GDB was configured as "x86_64-linux-gnu"...Using host libthread_db
library "/lib/libthread_db.so.1".
(gdb) run ~/mplayer/bench/foobar.mpeg
Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 47190863550720 (LWP 1368)]
MC_put_o_1
severity 402920 normal
tag 402920 unreproducible
thanks
Pierre Habouzit ha scritto:
> Package: mplayer
> Version: 1.0~rc1-2
your mplayer version is quite old; current one is 1.0~rc1-7
> Severity: serious
why? I checked into debian-policy 10.1 :
http://www.debian.org/doc/debian-policy/ch-files.h
Aurélien GÉRÔME ha scritto:
> Sorry Andrea, this is really RC (as I always said), but this is also
> RC for etch (as I was told on #debian-release).
You (and others) say this bug is RC; I (and others) say it is not.
It is time we settle this fact for good (etch is frozen).
I asked the d-ctte to
It is time to really delve into this.
I do not think that this bug is "serious".
(I have actually the feeling that the severity for this bug is "wishlist". )
Here are some reasonings:
1) It is true that the debian-policy asks for dynamic compilation,
whenever possible;
but the MPlayer team de
severity 395252 important
thanks
hi
I am downgrading severity of this bug, for the sake of including MPlayer
in the Etch release. Before jumping on horses, please read the motivation.
--
Some time ago, I proposed some options for solving this bug.
First option [O]:
compile MPlayer using FFm
hi there
since time is running, and the general freeze is coming, I have decided
to do some work on this bug
I have packaged a new version of ffmpeg 0.svn6767 ; I have then built a
version of mplayer 1.0~rc1-5 that is dynamically linked to that;
moreover I have built a version of libxine using th
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Reinhard Tartler ha scritto:
> xine is able to build against an out of tree ffmpeg. This is what the
> current xine in etch is doing.
(I was aware of this; I hope I made it clear in previous emails )
> So far, I'm not aware of any regressions
> yet.
severity 396646 normal
retitle 396646 clarify and tidy up copyrights
thanks
ciao
On Wed, Nov 01, 2006 at 11:23:43PM +0100, Francesco Poli wrote:
> There seems to be still a licensing issue, though... :-(
> According to its debian/copyright[1], mplayer includes a file named
> mmx.h
.
> Where
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
BTW: I have been assuming that Moritz is reporting the consensus of the
whole security team , and not only his personal opinion... is it so?
whereas Joey reported the opinion of the release people (that was not
opposite to [A])
I personally may embra
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
hi
I would like to add my 2¢ (although Dario's email pretty much says it all)
Here are 3 possible scenarios:
[N] The safest way to linking MPlayer with dynamical FFmpeg would be :
each time there is a MPlayer release, Diego provides us with the corr
thanks, go ahead
a.
On Fri, Oct 27, 2006 at 08:00:23PM +0100, Neil Williams wrote:
> This is the NMUdiff that I propose to upload to fix the RC bug due to
> the automake transition.
>
> --
>
> Neil Williams
> =
> http://www.data-freedom.org/
> http://www.nosoftwarepatents.com/
>
Hi
the new lightspeed 1.2a-6 in unstable uses libgtkgl2.0-dev and GTK2 ;
according to the bug submitter, the new lightspeed works fine.
So this bug is not grave any more
( since 'grave' means 'renders package unusable', but the package
'lightspeed' is not affected by this bug anymore)
a.
sig
hi everybody
as a prospective Release Assistant, I am in charge of seeing that
this bug 354650 be fixed somehow
I see that this is now considered to be a bug in libgtk1.2 ...
is it really worthy to spend a lot of time debugging it, since
libgtk1.2 is obsolete and not mantained upstream?
so here
1 - 100 of 111 matches
Mail list logo
