Bug#1072708: openafs: src/rx[gen] contains SUN RPC code under the original license

On Thu, Jul 04, 2024 at 12:23:11AM +0200, Bastian Germann wrote: > Am 03.07.24 um 23:56 schrieb Benjamin Kaduk: > > On Wed, Jul 03, 2024 at 11:27:50PM +0200, Bastian Germann wrote: > > > Am 03.07.24 um 05:23 schrieb Benjamin Kaduk: > > > > I do not see how it would be

Bug#1072708: openafs: src/rx[gen] contains SUN RPC code under the original license

On Wed, Jul 03, 2024 at 11:27:50PM +0200, Bastian Germann wrote: > Am 03.07.24 um 05:23 schrieb Benjamin Kaduk: > > I do not see how it would be possible to replace this code in Debian before > > upstream can do so; this code is a core part of the functionality of the > > s

Bug#1072708: openafs: src/rx[gen] contains SUN RPC code under the original license

Hi Bastian, Sorry for the slow reply. Life has throwna a lot of things at me this month. On Thu, Jun 06, 2024 at 10:17:33PM +0200, Bastian Germann wrote: > > OpenAFS includes the Sun RPC code under the original, non-free license. > That code was relicensed by Oracle under a BSD license (see >

Bug#1063648: krb5: FTBFS on arm64, armel and ppc64el with "Can't resolve hostname" in dh_auto_test

On Sat, Feb 10, 2024 at 01:33:15PM +0100, Johannes Schauer Marin Rodrigues wrote: > > there as a binNMU "Rebuild to sync binNMU versions" for krb5 and that > failed for arm64, armel and ppc64el: > > https://buildd.debian.org/status/package.php?p=krb5 > > The error logs look very similar: > ***

Bug#1043131: Solution for kernel 6.5 with openafs 1.8.10-1 in debian

Hi Gergely, On Wed, Dec 20, 2023 at 04:26:55PM +0100, Gergely Riskó wrote: > Hey all, > > Yes, OpenAFS is always a pain to work with both on the server and the > client side. :( > > This time I think the client installation is harder than usual, we > have to apply 5 patches. Yes, there's a lot

Bug#1010764: upstream fix

tags 1010764 upstream fixed-upstream pending thanks On Wed, May 18, 2022 at 01:55:00AM +, Jeremy Stanley wrote: > The fix for this appears to have merged upstream in January, so > could probably be backported in Salsa: > > https://gerrit.openafs.org/14882 Indeed, upstream has been getting th

Bug#1005404: Kernel modules fail to build with Linux 5.16 onward

Hi Ben, Thanks for detecting and reporting the build errors. I'm a bit confused as to how this is "grave", though -- I would have classified it as merely "serious" as for, e.g., 970258 and 995134. For upstream, we went with a slightly different patch owing to the unreliability of the linux versio

Bug#995134: dkms modules fail to build on 5.14.0, error: ‘TIF_IA32’ undeclared

severity 995134 serious tags 995134 upstream fixed-upstream pending thanks On Sun, Sep 26, 2021 at 05:07:44PM -0400, Ryan Kavanagh wrote: > Package: openafs-modules-dkms > Version: 1.8.6-5 > Severity: grave > Justification: Renders package unusable > > The openafs dkms modules fail to build on 5.

Bug#945506: Processed: dkms: export CC pointing to the kernels compiler

Hi Andreas, Thanks for filing 984929. Do you have a sense for what the cutoff should be for trying to get 984929 resolved vs. just uploading a workaround in the dkms-consuming packages (e.g., openafs)? Thanks, Ben On Wed, Mar 10, 2021 at 01:09:06PM +, Debian Bug Tracking System wrote: > Pro

Bug#980115: connection failure when rx initialized after 08:25:36 GMT 14 Jan 2021

On Wed, Feb 03, 2021 at 01:05:38PM -0800, Benjamin Kaduk wrote: > > > > Do you still have this on your radar? While as discussed this is not a > > DSA candidate a fix can be released out of order from a point release > > via the stable-updates mechanism, and thi

Bug#980115: connection failure when rx initialized after 08:25:36 GMT 14 Jan 2021

Hi Salvatore, On Wed, Feb 03, 2021 at 09:39:25PM +0100, Salvatore Bonaccorso wrote: > HI Benjamin, > > On Mon, Jan 18, 2021 at 07:19:14PM -0800, Benjamin Kaduk wrote: > > On Mon, Jan 18, 2021 at 06:04:39PM +, Jeremy Stanley wrote: > > > Thanks for pulling this into

Bug#980115: connection failure when rx initialized after 08:25:36 GMT 14 Jan 2021

On Mon, Jan 18, 2021 at 06:04:39PM +, Jeremy Stanley wrote: > Thanks for pulling this into unstable and testing! Is there any work > in progress to fix it in stable as well? I took a quick peek in > Salsa and didn't see any merge requests or an obvious branch for > Buster's 1.8.2 (just the debi

Bug#980115: connection failure when rx initialized after 08:25:36 GMT 14 Jan 2021

Package: openafs-client Version: 1.8.2-1 Severity: grave Control: clone -1 -2 Control: reassign -2 openafs-fileserver The Rx RPC stack requires a connection identifier for each new connection a system initiates. In 2014 support to generate the initial identifier randomly was added to the core Rx

Bug#972969: openafs-modules-dkms: Does not build on bullseye with kernel 5.9.1

Hi Robert, On Mon, Oct 26, 2020 at 07:08:41PM +0100, Robert Senger wrote: > Package: openafs-modules-dkms > Version: 1.8.6-3 > Severity: serious > Tags: ftbfs > Justification: fails to build from source (but built successfully in the past) > > DKMS fails to build module on bullseye with kernel 5.

Bug#970258: Same on sid

tags 970258 fixed-upstream thanks On Wed, Sep 16, 2020 at 09:27:30AM +0200, Malte Eggers wrote: > I'm (unsurprisingly) experiencing the same problem on sid. This appears to be > the relevant section of the make.log Indeed, this is not surprising -- the patches for kernel 5.8 compatibility haven'

Bug#966881: openafs: FTBFS: ld: vlib.a(volume.o):./src/vol/volume.c:128: multiple definition of `vol_io_params'; ihandle.o:./src/vol/ihandle.c:81: first defined here

tags 966881 fixed-upstream thanks On Mon, Aug 03, 2020 at 10:04:57AM +0200, Lucas Nussbaum wrote: > Source: openafs > Version: 1.8.6-1 > Severity: serious > Justification: FTBFS on amd64 > Tags: bullseye sid ftbfs > Usertags: ftbfs-20200802 ftbfs-bullseye > > Hi, > > During a rebuild of all pack

Bug#964027: incompatible with kernel 5.7.0: ERROR: modpost: "__pagevec_lru_add" [...] undefined!

tags 964027 pending fixed-upstream thanks On Tue, Jun 30, 2020 at 12:48:41PM -0400, Ryan Kavanagh wrote: > Package: openafs-modules-dkms > Version: 1.8.6~pre1-3 > Severity: grave > Justification: package is not compatible with the current kernel > > The package cannot successfully be installed un

Bug#959064: ignition-transport FTBFS in testing.

On Thu, Apr 30, 2020 at 03:40:30AM +0100, peter green wrote: > On 29/04/2020 17:47, Jochen Sprickerhof wrote: > > > > What I found up to now: > > > > - pkg-config=0.29.2-1: > > > >   $ pkg-config --cflags-only-I libzmq > >   -isystem /usr/include/mit-krb5 -I/usr/include/pgm-5.2 > > > > - Whereas pk

Bug#956358: openafs-modules-dkms: piuparts failure on package installation

severity 956358 important tags 956358 + moreinfo thanks On Fri, Apr 10, 2020 at 11:30:10AM +0300, Adrian Bunk wrote: > > https://piuparts.debian.org/sid/source/o/openafs.html > > ... > Loading new openafs-1.8.6pre1 DKMS files... > It is likely that 4.19.0-8-amd64 belongs to a chroot's host >

Bug#945506: openafs-modules-dkms: module FTBFS for Linux 5.3.0-2-amd64

On Tue, Dec 10, 2019 at 01:19:11PM +0100, Andreas Beckmann wrote: > Please check my reply on #946497 which is about the same problem in > zfs-dkms. Perhaps both of you find a solution that will work for the two > packages. Thanks for the pointer. I think that having dkms set CC/etc. appropriately

Bug#945506: openafs-modules-dkms: module FTBFS for Linux 5.3.0-2-amd64

Hi Andreas, On Tue, Nov 26, 2019 at 02:38:21AM +0100, Andreas Beckmann wrote: > Package: openafs-modules-dkms > Version: 1.8.5-1 > Severity: serious > Tags: ftbfs > Justification: fails to build from source > User: debian...@lists.debian.org > Usertags: piuparts > > Hi, > > openafs-modules-dkms/

Bug#934758: DKMS module fails to build for linux 5.2.0-2

severity 934758 important tags 934758 + fixed-upstream pending thanks On Wed, Aug 14, 2019 at 09:53:40AM -0400, Ryan Kavanagh wrote: > Package: openafs-modules-dkms > Version: 1.8.2-1 > Severity: grave > Justification: renders package unusable > > The openafs DKMS module fails to build for Linux

Bug#932000: In testing

On Tue, Jul 23, 2019 at 12:09:29PM -0700, Felix Lechner wrote: > On Tue, Jul 16, 2019 at 8:07 AM Greg Hudson wrote: > > > > Candidate patch here: > > Thank you. The update works great, although I now have problems with > idmap not working on a kerberized NFSv4 mount. > > I write with hesitation.

Bug#908616: OpenAFS security release

On Tue, Sep 11, 2018 at 10:02:20PM +0200, Salvatore Bonaccorso wrote: > Hey! > > On Tue, Sep 11, 2018 at 02:30:51PM -0500, Benjamin Kaduk wrote: > > Source: openafs > > Version: 1.6.9-2+deb8u7 > > Tags: security > > Severity: serious > > > > OpenAFS u

Bug#908616: OpenAFS security release

Source: openafs Version: 1.6.9-2+deb8u7 Tags: security Severity: serious OpenAFS upstream released security releases 1.6.23 and 1.8.2 today, fixing: http://openafs.org/pages/security/OPENAFS-SA-2018-001.txt http://openafs.org/pages/security/OPENAFS-SA-2018-002.txt http://openafs.org/pages/security

Bug#897535: openafs: FTBFS: dh_auto_test: make -j1 test VERBOSE=1 returned exit code 2

(ditto) On Wed, May 30, 2018 at 11:18:11AM -0500, Benjamin Kaduk wrote: > (resetting autoremoval timer) > > On Fri, May 11, 2018 at 12:44:01PM -0500, Benjamin Kaduk wrote: > > ping? > > > > I cannot reproduce locally either on bare metal or in schroot. > >

Bug#897535: openafs: FTBFS: dh_auto_test: make -j1 test VERBOSE=1 returned exit code 2

(resetting autoremoval timer) On Fri, May 11, 2018 at 12:44:01PM -0500, Benjamin Kaduk wrote: > ping? > > I cannot reproduce locally either on bare metal or in schroot. > > -Ben > > On Fri, May 04, 2018 at 09:15:51AM -0500, Benjamin Kaduk wrote: > > Hi Lucas, >

Bug#897535: openafs: FTBFS: dh_auto_test: make -j1 test VERBOSE=1 returned exit code 2

ping? I cannot reproduce locally either on bare metal or in schroot. -Ben On Fri, May 04, 2018 at 09:15:51AM -0500, Benjamin Kaduk wrote: > Hi Lucas, > > On Wed, May 02, 2018 at 10:52:53PM +0200, Lucas Nussbaum wrote: > > > > During a rebuild of all packages in sid, y

Bug#897535: openafs: FTBFS: dh_auto_test: make -j1 test VERBOSE=1 returned exit code 2

Hi Lucas, On Wed, May 02, 2018 at 10:52:53PM +0200, Lucas Nussbaum wrote: > > During a rebuild of all packages in sid, your package failed to build on > amd64. > > Relevant part (hopefully): > > rx/perf.ok > > volser/vos-man..ok > > volser/vos..FAILED 5 > > bu

Bug#886799: openafs-modules-dkms: install fails with compile error "implicit declaration of function 'inode_change_ok'"

On Thu, Jan 25, 2018 at 09:21:48AM -0800, deb...@lewenberg.com wrote: > > The patch you provide works fine with jessie and the 1.6.9 source > packages. However, I cannot get it to work with wheezy. > > I compile the openafs source package against wheezy and the compilation > completes without e

Bug#886799: fixing openafs kernel module for security updated kernel

The SRU request for jessie is in #887857. I don't think there is a way to get a fix into jessie-backports, so I think we will need to remove openafs-modules-source and openafs-modules-dkms from jessie-backports and pull the version from buster into jessie-backports-sloppy (which will be a trip thr

Bug#886768: Processed: Looks pretty RC to me

On Sun, Jan 14, 2018 at 06:45:08PM +, Debian Bug Tracking System wrote: > Processing commands for cont...@bugs.debian.org: > > > severity 886768 serious Could you say a bit more about why you feel that all binary packages from src:openafs should be subject to autoremoval when only the functio

Bug#887018: fails to compile against linux 3.16+63+deb8u1

reassign 887018 src:openafs severity 887018 important merge 886719 887018 retitle 886719 meltdown/spectre kernel (old)stable-security kernel breaks openafs module thanks On Fri, Jan 12, 2018 at 09:29:52AM -0600, Chad Seys wrote: > Package: openafs-modules-dkms > Version: 1.6.18.2-1~bpo8+1 > Sever

Bug#884276: openafs-modules-dkms: module FTBFS

tags 884276 pending upstream fixed-upstream thanks Hi Andreas, Upstream has a fix queued, but it got bumped by last week's security release (1.6.22) and the release containing it is not out yet. But it's easy enough to pull the patches in locally until that happens. Thanks, Ben

Bug#861218: libgssapi-krb5-2: soname-independent files in shared library package (policy 8.2)

It seems like an /etc/gss/mech.d/README-- (or similar) would alleviate the technical problems with having a single file named README, and would be glob-able for consuming software that is adapted to know about a broader convention. It would, of course, be slightly confusing to users even if there

Bug#861218: libgssapi-krb5-2: soname-independent files in shared library package (policy 8.2)

Hi Helmut, On Wed, Apr 26, 2017 at 06:52:58AM +0200, Helmut Grohne wrote: > Package: libgssapi-krb5-2 > Version: 1.15-1 > Severity: serious > Justification: violates policy section 8.2 > > libgssapi-krb5-2 is a shared library package and contains > /etc/gss/mech.d/README. The latter filename does

Bug#846088: Alladin License in krb5

On Mon, Nov 28, 2016 at 10:17:35AM -0500, Sam Hartman wrote: > To be clear I've contacted upstream off-list and we'll see what we find > in the next few days. Upstream has relicensed the file; we can pull that in for the next upload. -Ben >

Bug#828369: openssl 1.1 compatibility for krb5

krb5 1.15 beta1 is out, and has support for openssl 1.1. It is tempting to fix this bug by taking the new upstream version instead of having to backport a somewhat invasive patchset. However, trying to use krb5 1.15 for the fix would give a somewhat tight timeline in order to get something fixed in

Bug#836642: Processed: severity of 836642 is serious

On Sat, 10 Sep 2016, Debian Bug Tracking System wrote: > Processing commands for cont...@bugs.debian.org: > > > severity 836642 serious > Bug #836642 [openafs] openafs: please drop the build dependency on > hardening-wrapper > Severity set to 'serious' from 'important' That was a bit sooner than

Bug#834035: Fwd: krb5 commit: Work around glibc OFD lock bug on 32-bit Linux

-- Forwarded message -- Date: Mon, 15 Aug 2016 11:37:12 -0400 From: Greg Hudson Reply-To: krb...@mit.edu To: cvs-k...@mit.edu Subject: krb5 commit: Work around glibc OFD lock bug on 32-bit Linux https://github.com/krb5/krb5/commit/65110210b75d38908cdd84cb202cf013ccf6ed0e commit

Bug#834035: kdb5_util hangs forever

On Thu, 11 Aug 2016, Greg Hudson wrote: > I do not understand the kernel behavior reflected in this trace > output. For fd 3 (principal.ok), we see: Yes, it would be good to get the kernel version from the reporter on the affected machine (and the unaffected ones, too, for comparison). (Using r

Bug#834035: kdb5_util hangs forever

severity 834035 serious thanks On Thu, 11 Aug 2016, Michael Welle wrote: > Package: krb5-kdc > Version: 1.14.3+dfsg-1 > Severity: critical I do not see why critical severity is justified based on the supplied information. I am willing to declare that this behavior makes the package unfit for re

Bug#821782: openafs-modules-dkms installs correctly against Linux 4.4.0-1-amd64

On Mon, 2 May 2016, Kai-Martin Knaak wrote: > Package: openafs-modules-dkms > Version: 1.6.17-2 > Followup-For: Bug #821782 > > Dear Maintainer, > > the same set-up which failed for kernel 4.5.0-1-amd64 installed fine > for kernel 4.4.0-1-amd . This is expected, unfortunately -- upstream openafs

Bug#821782: openafs-modules-dkms: module FTBFS against Linux 4.5: osi_vnodeops.c:1935:5: error: implicit declaration of function 'nd_set_link'

On Tue, 19 Apr 2016, Andreas Beckmann wrote: > Package: openafs-modules-dkms > Version: 1.6.17-2 > Severity: serious > > from the attached make.log: > > CC [M] > /var/lib/dkms/openafs/1.6.17/build/src/libafs/MODLOAD-4.5.0-1-amd64-SP/osi_vnodeops.o > /var/lib/dkms/openafs/1.6.17/build/src/libaf

Bug#815521: openafs dkms module incompatible with Linux 4.4 kernel

Yes, the incompatibility of any version of openafs with the linux kernel 4.4 and newer is known upstream. In addition to the build-breaking changes in linux, there are some changes in when ERESTART can be returned, that openafs is also unadapted for; running with just the patches to fix the build

Bug#813093: libirstlm-dev,libopenafs-dev: error when trying to install together

On Fri, 29 Jan 2016, Giulio Paci wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA512 > > Hi Andreas, > thank you for the bug report. > > On 29/01/2016 15:10, Andreas Beckmann wrote: > > Package: libirstlm-dev,libopenafs-dev > > Severity: serious > > User: trei...@debian.org > > Userta

Bug#794224:

On Fri, 28 Aug 2015, Al Biheiri wrote: > Can we get an ETA on when it will be available for wheezy? > > It’s been 17 days since you said it is “due to be installed in the > Debian FTP archive.” and Its still not available. It is already available for wheezy, from a certain point of view. There

Bug#780865: Fix also needed for i386 (and squeeze-backports)

On Wed, 12 Aug 2015, siev...@math2.nat.tu-bs.de wrote: > Hello, > > it seems that openafs 1.6.1-3+deb7u4 which fixes (not only) > bug #780865 is available in wheezy-proposed-updates only for the amd64 > architecture, while the same problem exists for 32 bit systems. That's just how Debian works -

Bug#778851: corrupted mmaped files in AFS

source: openafs version: 1.6.9-2 severity: grave control: fixed -1 1.6.10-4 A bug in OpenAFS's determination of the data version of a file can cause data loss when writing a file larer than the AFS cache and simultaneously exceeding the system's maximum dirty ratio. See http://rt.central.org/rt/T

Bug#768379: krb5-1.12.1+dfsg-12 FTBFS on kfreebsd

reopen 768379 thanks On Thu, 6 Nov 2014, Steven Chamberlain wrote: > Benjamin Kaduk wrote: > > This change in the system headers causes krb5 to FTBFS on kfreebsd > > systems. Luckily, upstream krb5 (me) has already fixed this in git commit > > 37f87c189ff050c01282f3d8da

Bug#768379: krb5-1.12.1+dfsg-12 FTBFS on kfreebsd

Source: krb5 Severity: serious Version: krb5-1.12.1+dfsg-11 User: debian-...@lists.debian.org Usertags: kfreebsd X-Debbugs-CC: debian-...@lists.debian.org FreeBSD svn r264299 merged to stable/10 a change that removed the RTM_OLDADD and RTM_OLDDEL symbols from the preprocessor namespace in net/rout

Bug#767079: Installation fails: afsd is already running?

forcemerge 767079 767056 tags 767079 pending thanks On Tue, 28 Oct 2014, Joachim Breitner wrote: > afsd is already running? Well, the intent is that that was helpful. I concede the overall result isn't terribly good. > I raised the severity because this leaves dpkg in an unhappy state, I > hop

Bug#762835: error exit on dafileserver (segfault)

On Thu, 25 Sep 2014, Thomas Otto wrote: > > > Package: openafs-fileserver > Version: 1.6.1-3+deb7u2 > Severity: serious > > > Hello, > > i used the actual (updated) debian stable. > > since last week our dafileserver has problems and exited quite often. > > This affects that some client hangs afte

Bug#760804: serf: FTBFS: Directory /usr/include/mit-krb5 found where file expected.

On Tue, 9 Sep 2014, Russ Allbery wrote: > I suspect Ben's hope was that, if using pkgconfig, scons would not make an > attempt to parse the flags and split them apart, and would instead just > use them as-is in the compiler invocation. Right. krb5-config is stuck with some legacy behavior that i

Bug#760804: serf: FTBFS: Directory /usr/include/mit-krb5 found where file expected.

On Tue, 9 Sep 2014, James McCoy wrote: > > The problem here is two-fold. krb5-multidev's krb5-config recently > changed to emit “-isystem /usr/include/mit-krb5” for CFLAGS: > > krb5 (1.12.1+dfsg-9) unstable; urgency=high > > [ Jelmer Vernooij ] > … > * Use -isystem for include paths

Bug#760149: libkrb5support0 dropped number of symbols without SOVERSION bump

tags 760149 pending thanks On Mon, 1 Sep 2014, Ondřej Surý wrote: > the libkrb5support0 version 1.12.1 has dropped several symbols, > breaking at least some libsasl2-modules, see: > > http://lists.alioth.debian.org/pipermail/pkg-cyrus-sasl2-debian-devel/2014-August/002653.html There is a bug in

Bug#759954: krb5: FTBFS: cp: cannot stat 'rst_apiref/*.rst': No such file or directory

tags 759954 pending thanks On Sat, 30 Aug 2014, Lucas Nussbaum wrote: > During a rebuild of all packages in sid, your package failed to build on > amd64. > > Relevant part (hopefully): > > make[1]: Entering directory '/«BUILDDIR»/krb5-1.12.1+dfsg/build/doc' > > sed -e 's|@SRC@|../../src|g' \ > >

Bug#730267: libkrb5-dev: file conflict with heimdal-multidev: /usr/lib/x86_64-linux-gnu/pkgconfig/k{adm, rb5}*.pc

Sam, were you planning to work on fixing this in krb5-multidev or should I add it to my list? -Ben -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#728845: krb5: CVE-2013-1418: multi-realm KDC null dereference leads to crash

On Wed, 6 Nov 2013, Salvatore Bonaccorso wrote: Package: krb5 Severity: grave Tags: security upstream patch Hi, the following vulnerability was published for krb5. CVE-2013-1418[0]: multi-realm KDC null dereference leads to crash [Puts on upstream hat] Note that we believe it to be very unc

Bug#708711: src:krb5: 1.10.1+dfsg-6 builds on 0 architectures

On Wed, 22 May 2013, Sam Hartman wrote: As I recall 1.11 includes a verto update. how critical is that? do I need to update debian libverto befor krb5? I'm not entirely sure. I think that the libverto update addressed some issues with respect to dladdr() dependencies which made building diff

Bug#708711: src:krb5: 1.10.1+dfsg-6 builds on 0 architectures

On Wed, 22 May 2013, Sam Hartman wrote: As it turns out krb5 upstream has abandoned texinfo as their doc system. Ben kaduk has done most of the work of moving to the new upstream version so i'll do that. https://github.com/kaduk/krb5/commits/debian-1.11 is where my current version lives. Th

Bug#708267: cve-2002-2443: kpasswd udp ping-pong

On Tue, 14 May 2013, Sam Hartman wrote: Sorry, I missed this. and had already done an upload. No worries, it is a trivial patch to apply. Please push the packaging to alioth at your convenience. -Ben -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsu

Bug#704775: Processed: found 704775 in 1.8.3+dfsg-4squeeze6

On Tue, 16 Apr 2013, Benjamin Kaduk wrote: Having seen the reproducer, I am of the opinion that this bug should get fixed in stable. I am planning to prepare a candidate stable upload (which may include another bugfix if it seems appropriate) later this week for consideration. The attached

Bug#702633: cve-2012-1016 not found in krb5-1.8

The check which introduced the bug for cve-2012-1016 was brought in when pkinit agility was introduced, upstream's commit 3725d22140c23a376dd79b69d130be8e2b91005f on 19 Sept 2011. The first release to include this code was krb5-1.10; the 1.8 version in squeeze is too old for this bug. -Ben K

Bug#704775: Processed: found 704775 in 1.8.3+dfsg-4squeeze6

On Mon, 15 Apr 2013, Sam Hartman wrote: "Tom" == Tom Yu writes: Tom> Sam Hartman writes: >> My recommendation is that this is not worth a DSA or stable fix >> for squeeze unless some Debian user comes forward and says that >> they're seeing crashes in the wild related to this.

Bug#704775: krb5: KDC TGS-REQ null deref (CVE-2013-1416)

On Sat, 6 Apr 2013, Michael Gilbert wrote: I'm not seeing any new kerberos releases: http://web.mit.edu/kerberos/krb5-1.10 Current Kerberos Security Team policy is to not issue security advisories for null pointer dereference crashes. We assign CVE numbers for tracking, but do not delay pub

Bug#704775: Acknowledgement (krb5: KDC TGS-REQ null deref (CVE-2013-1416))

The patch is now available in the pkg-k5-afs/debian.git repository on alioth. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#704775: krb5: KDC TGS-REQ null deref (CVE-2013-1416)

Package: krb5-kdc Version: 1.10.1+dfsg-4+nmu1 Severity: serious Upstream has patched against CVE-2013-1416; Debian should as well. By sending an unusual but valid TGS-REQ, an authenticated remote attacker can cause the KDC process to crash by dereferencing a null pointer. Only krb5 releases 1

Bug#704647: krb5: rdns=false does not work

On Thu, 4 Apr 2013, Benjamin Kaduk wrote: On Thu, 4 Apr 2013, Michael Gilbert wrote: control: tag -1 patch control: tag -1 pending Hi, I've uploaded an nmu fixing this issue to delayed/5. Please see attached patch. There is a patch staged in the pkg-k5-afs/debian-krb5.git reposito

Bug#704647: krb5: rdns=false does not work

On Thu, 4 Apr 2013, Michael Gilbert wrote: control: tag -1 patch control: tag -1 pending Hi, I've uploaded an nmu fixing this issue to delayed/5. Please see attached patch. There is a patch staged in the pkg-k5-afs/debian-krb5.git repository on alioth which addresses this bug and also 70345

Bug#702633: CVE-2012-1016: NULL pointer dereference (DoS) in plugins/preauth/pkinit/pkinit_srv.c

On Tue, 19 Mar 2013, Adam D. Barratt wrote: On Tue, 2013-03-19 at 15:47 -0400, Benjamin Kaduk wrote: reopen 702633 Why? Do you believe that the 1.10.1+dfsg-4+nmu1 package does not contain a fix for this bug? The changelog entry for 1.10.1+dfsg-4+nmu1 mentions the wrong CVE number, and as

Bug#702633: CVE-2012-1016: NULL pointer dereference (DoS) in plugins/preauth/pkinit/pkinit_srv.c

reopen 702633 thanks The changelog entry for krb5 1.10.1+dfsg-4+nmu1 mentions the CVE number 2013-1016; this vulnerability is actually cve-2012-1016 (note 2012 instead of 2013). I don't see a debian-security-announce mail yet, so hopefully the typo will not be promulgated there. -Ben Kaduk

Bug#651720: new ZFS installs completely broken in Wheezy/Sid

On Tue, 20 Nov 2012, Steven Chamberlain wrote: Hi Arno! Sorry, I somehow didn't have 651...@bugs.debian.org copied on my previous mail so I'm inlining your mail for the benefit of the BTS: On 20/11/12 23:19, Arno Töll wrote: I am not sure if checking for / being ZFS is good enough then. Would

Bug#655865: FTBFS on kfreebsd-*: field 'export' has incomplete type

On Sun, 15 Jan 2012, Guillem Jover wrote: On Sun, 2012-01-15 at 13:41:12 +, Robert Millan wrote: El 14 de gener de 2012 19:17, Guillem Jover ha escrit: This is a problem with the newer kfreebsd-kernel-headers, reassigning. Actually it's not. Upstream considers that users of some header

Bug#633704: horrible Segmentation fault

scii-4.18.orig//debian/changelog 2011-05-17 01:30:08.0 -0400 % +++ uni2ascii-4.18/debian/changelog 2011-08-23 19:24:25.0 -0400 % @@ -1,3 +1,11 @@ % +uni2ascii (4.18-1.1) unstable; urgency=low % + % + * Non-maintainer upload. % + * Check for partially-matched sscanf() patterns and

Bug#630107: [kfreebsd] cannot configure grub-pc (error: cannot find a GRUB drive for /dev/ad0s1)

On Sun, 12 Jun 2011, Robert Millan wrote: 2011/6/12 Guillem Jover : The problem is an ABI change as can be seen from:   So the library needs the SOVERSION bumped. I'll do that and use the opportunity to add libjail

Bug#629211: d-conf on kfreebsd

On Sat, 4 Jun 2011, Robert Millan wrote: I propose this patch. --- /usr/include/sys/mount.h2011-01-30 16:26:51.0 +0100 +++ mount.h 2011-06-04 22:37:11.0 +0200 @@ -26,6 +26,7 @@ #include #include +#include #include #include @@ -36,8 +37,8 @@ #define