ks a lot.
Best regards,
--
Olivier BERGER
(OpenPGP: 4096R/7C5BB6A5)
http://www.olivierberger.com/weblog/
e :
https://github.com/rss2email/rss2email/issues/18
In any case, the Debian side needs work, whatever source for upstream is
;)
Hth if anyone cares about rss2email.
Best regards,
--
Olivier BERGER
http://www-public.telecom-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8
Ingenieur Recherche - Dept INF
Institut Mines-Telecom, Telecom SudParis, Evry (France)
ell me if I'm guessing right.
Then this show-stopper bug could probably be closed.
Hope this helps
--
Olivier BERGER
http://www-public.telecom-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8
Ingenieur Recherche - Dept INF
Institut Mines-Telecom, Telecom SudParis, Evry (France)
n, owncloud-client also depends on it. See #900556.
Hth,
--
Olivier BERGER
http://www-public.telecom-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8
Ingenieur Recherche - Dept INF
Institut Mines-Telecom, Telecom SudParis, Evry (France)
Hi.
Just for the records, it's keepass2, not keypass2, sorry.
Best regards,
Olivier Berger writes:
> Responding to myself,
>
> On Sun, Dec 03, 2017 at 03:50:57PM +0100, Olivier Berger wrote:
>>
>> I think that it would be great to have some migration options to o
Responding to myself,
On Sun, Dec 03, 2017 at 03:50:57PM +0100, Olivier Berger wrote:
>
> I think that it would be great to have some migration options to other
> password managers.
>
> Would you have any suggestion ?
>
It seems that keypass2 could be an option, importing f
ki.gnome.org/action/show/Projects/GObjectIntrospection
> [2] https://wiki.gnome.org/action/show/Projects/PyGObject
--
Olivier BERGER
http://www-public.telecom-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8
Ingenieur Recherche - Dept INF
Institut Mines-Telecom, Telecom SudParis, Evry (France)
.
>
> Patches exists for ubuntu.
>
>
--
Olivier BERGER
http://www-public.telecom-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8
Ingenieur Recherche - Dept INF
Institut Mines-Telecom, Telecom SudParis, Evry (France)
ounts "/tmp/whatever" --save-after-login
/# apt-get remove libcwidget3
/# dpkg -i /tmp/whatever/libcwidget3deb
/# C-d
Hope this helps,
[0] http://snapshot.debian.org/package/cwidget/0.5.17-3/#libcwidget3_0.5.17-3
--
Olivier BERGER
http://www-public.telecom-sudparis.eu/~berger_o/ - Op
On Wed, Aug 05, 2015 at 03:19:15PM +0200, Olivier Berger wrote:
>
> FWIW, I experienced a similar breakage on pbuilder for sid, and workedaround
> by using pbuilder's bind mount option to add a temporary dir containing the
> version from snapshots.d.o [0].
>
> Someth
On Thu, Apr 23, 2015 at 09:31:01PM +0200, Fabio Pedretti wrote:
> This is a possible alternative, not packaged in Debian:
> https://github.com/odeke-em/drive
FYI, see RFP in #790933 for drive.
Hth,
--
Olivier BERGER
http://www-public.telecom-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/58
t barely usable by some.
This will allow upgrading from wheezy installations directly to testing
hopefully.
I could try to perform a NMU (as ober...@debian.org), if you prefer.
Hope this helps.
Best regards,
Olivier Berger writes:
> Hi
>
> I see that you have made a fix for a few bi
7;git-post-receive-tag-pending-commitmsg' hook).
> ---
> commit d1b4f82
> Author: Dmitry Smirnov
> Date: Fri Jun 26 00:39:55 2015
>
> Build-Depends: libxmlrpc-c++4-dev --> libxmlrpc-c++8-dev (Closes:
> #762040).
>
>
--
Olivier BERGER
http://www-publi
cessing triggers for libc-bin (2.19-11) ...
> Errors were encountered while processing:
>fusionforge-plugin-foafprofiles
This very much looks like a missing dependency on php-arc
Don't have the time to fix this myself for the moment, sorry.
Hope this helps.
Best regards,
--
Olivi
Joachim Fahrner writes:
> but it has no icon in Gnomes message area. Looks like it it not compatible
> with Gnome 3.14.
>
This is #750847, I guess, and it started before Gnome 3.14 ;-)
Just my 2 cents,
Best regards,
--
Olivier BERGER
http://www-public.telecom-sudparis.eu/
ket for that particular issue ?
Hope this helps.
Best regards,
--
Olivier BERGER
http://www-public.telecom-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8
Ingenieur Recherche - Dept INF
Institut Mines-Telecom, Telecom SudParis, Evry (France)
--
To UNSUBSCRIBE, email to debian-
ar issue inside a docker container running sid,
adapted from phusion/baseimage-docker, and even though the workaround helps,
I'm concerned of the impact.
Also, maybe #711289 is relevant to this issue, but it's a bit cryptic to me for
the moment.
Thanks in advance.
Best regards,
--
URITY-79
> > > SECURITY-77
> > > SECURITY-75
> > > SECURITY-74
> > > SECURITY-73
>
> See http://www.openwall.com/lists/oss-security/2014/02/21/2, where
> some CVEs were assigned to identify the issues. Please include the CVE
> identifier in the chang
kfreebsd, so I'm not sure this is the same issue.
My 2 cents,
--
Olivier BERGER
http://www-public.telecom-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8
Ingenieur Recherche - Dept INF
Institut Mines-Telecom, Telecom SudParis, Evry (France)
--
To UNSUBSCRIBE, email to debian-bugs-rc-
Package: notmuch-emacs
Version: 0.17-2
Severity: grave
Justification: renders package unusable
In emacs24, notmuch won't be available after latest testing upgrade :-(
I get, in *Messages* :
Loading /etc/emacs/site-start.d/50notmuch.el (source)...
Package notmuch not fully installed. Skipping set
Olivier Berger writes:
> On Mon, Jan 06, 2014 at 02:19:30PM +0100, Olivier Berger wrote:
>> Dear maintainer,
>>
>> Maybe https://github.com/jowolf/sshmenu could be a replacement, as it is
>> supposed to run with ruby 1.9... however, one would need to update the
On Mon, Jan 06, 2014 at 02:19:30PM +0100, Olivier Berger wrote:
> Dear maintainer,
>
> Maybe https://github.com/jowolf/sshmenu could be a replacement, as it is
> supposed to run with ruby 1.9... however, one would need to update the
> packaging of ruby-gnome2, AFAIU.
&
10:15:47AM +0200, Olivier Berger wrote:
> Hi.
>
> Here's what I get :
> $ sshmenu
> /usr/lib/ruby/1.9.1/rubygems/custom_require.rb:36:in `require': cannot load
> such file -- sshmenu (LoadError)
> from /usr/lib/ruby/1.9.1/rubygems/custom_require.rb:36:in
Package: git-annex
Version: 4.20131106
Severity: grave
Tags: upstream
Justification: causes non-serious data loss
Hi.
I hope I'm not overreacting.
Consider the following situation, where :
1. a file is annexed, with git annex add.
2. make the file modifiable : git annex unlock
3. modify the con
ision"
[app] SmartctlParser::parse_section_info_property(): Unknown property
"Logical block size"
[app] SmartctlParser::parse_section_info_property(): Unknown property
"Device type"
[gtk]
[gtk] unhandled exception (type std::exception) in signal han
ix/phpcas.git;a=shortlog;h=refs/heads/debian-1.3.1
[1]
https://github.com/Jasig/phpCAS/commit/0e75d13385c0480d24512e5ea7dbb69863609b43
--
Olivier BERGER
(OpenPGP: 4096R/7C5BB6A5)
http://www.olivierberger.com/weblog/
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
ly not, but it's a worth trying.)
>
FWIW, I won't test it : machine in production.
Hope this helps.
Best regards,
--
Olivier BERGER
http://www-public.telecom-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8
Ingenieur Recherche - Dept INF
Institut Mines-Telecom, Telecom SudParis,
h 5.4.4-11 and could reproduce the problem right after an
/etc/init.d/apache2 reload.
Will now test 5.4.4-12 and report.
Best regards,
--
Olivier BERGER
http://www-public.telecom-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8
Ingenieur Recherche - Dept INF
Institut Mines-Telecom, Telecom S
a duplicate of #694473, as I can reproduce
systematically a crash in an apache subprocess when editing a mediawiki page
right after a reload.
However, I've been unable to produce core dumps (see my previous message to
#691318) to confirm for sure.
In any case, thanks for the hint.
Best r
to make sure
apache's sub processes can dump cores ?
Thanks in advance.
Best regards,
--
Olivier BERGER
http://www-public.telecom-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8
Ingenieur Recherche - Dept INF
Institut Mines-Telecom, Telecom SudParis, Evry (France)
--
To UNSUBSCRIBE,
at just
> gives them the choice to either quit so they can export their
> calendars, or continue?
>
You may also see #655703 which deals with that very same issue.
Hope this helps.
Best regards,
--
Olivier BERGER
http://www-public.it-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7
it was killed previously ;)
Workaround source : http://linuxfr.org/users/moules/journaux/faille-xorg-111
Hope this helps.
Best regards,
--
Olivier BERGER
http://www-public.it-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8
Ingenieur Recherche - Dept INF
Institut TELECOM, SudParis (http://www.it-sud
nu-gnome binary package as it depends on obsolete
> libraries like libpanel-applet2-ruby, which have been removed with the
> switch to GNOME 3. Closes: #636823, #642531
>
FWIW, instead of the ssh-menu applet, that's now gone, one may use alltray
sshmenu (alltray package).
H
On Thu, Sep 01, 2011 at 12:02:49AM +0200, Vincent Caron wrote:
>
> While installing the gforge-mta-postfix variant, apt-get ran in infinite CPU
> loop
> and blocked in a Perl loop. It can be traced back to
> /usr/share/gforge/bin/install-postfix.sh running a Perl snippet. For some
> reason
> my
On Fri, Jan 21, 2011 at 02:21:55AM -0500, Luis Uribe wrote:
> That's because phpunit 3.5 uses PHP_CodeCoverage (not packaged yet)
> to collect and process code coverage information.
>
> I just create an [1]ITP for it.
>
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=610676
>
More gener
Hi.
On Wed, Dec 15, 2010 at 02:07:43PM +1100, David Hicks wrote:
>
> The MantisBT project was notified by Gjoko Krstic of Zero Science Lab
> (gj...@zeroscience.mk) of multiple vulnerabilities affecting MantisBT
> <1.2.4.
>
> The two following advisories have been released explaining the
> vulner
On Mon, Sep 20, 2010 at 10:07:27AM +0200, Sebastian Dröge wrote:
> >
> > That would be great if this could be fixed, as I'm using revelation,
> > whose package seems to depend on python-gi. So using revelation and
> > pitivi at the same time is currently impossible, it seems.
>
> Well, revelation
then.
That would be great if this could be fixed, as I'm using revelation,
whose package seems to depend on python-gi. So using revelation and
pitivi at the same time is currently impossible, it seems.
Best regards,
--
Olivier BERGER
http://www-public.it-sudparis.eu/~berger_o/ - OpenPGP-Id:
elating to pure
Mantis code, but couldn't find more details so far in upstream tracker
(at mantisbt.org).
Hope this helps.
Best regards,
--
Olivier BERGER
http://www-public.it-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8
Ingénieur Recherche - Dept INF
Institut TELECOM, SudParis (http://
595510 http://www.mantisbt.org/bugs/view.php?id=12312
> Bug #595510 [mantis] mantis: CVE-2010-2574 xss vulnerability
> Set Bug forwarded-to-address to
> 'http://www.mantisbt.org/bugs/view.php?id=12312'.
> > thanks
> Stopping processing here.
>
> Please contac
Hi.
Le vendredi 04 juin 2010 à 12:48 +0200, Giuseppe Iuculano a écrit :
> On 06/04/2010 12:44 PM, Olivier Berger wrote:
> > Here :
> > http://mentors.debian.net/cgi-bin/sponsor-pkglist?action=details;package=phpgroupware
>
> Please add the "Closes" entries fo
nsor-pkglist?action=details;package=phpgroupware
>
> do you need a sponsor ?
>
Yes.
Thanks in advance if you can upload this for us.
Best regards,
--
Olivier BERGER
http://www-public.it-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8
Ingénieur Recherche - Dept INF
Insti
bly a last update before removal ?
Hope this helps.
Best regards,
--
Olivier BERGER
http://www-public.it-sudparis.eu/~berger_o/ - OpenPGP-Id: 2048R/5819D7E8
Ingénieur Recherche - Dept INF
Institut TELECOM, SudParis (http://www.it-sudparis.eu/), Evry (France)
--
To UNSUBSCRIBE, emai
On Thu, Apr 01, 2010 at 02:32:29PM +0200, Olivier Berger wrote:
> >
> > > "phpGW 0.9.16 depends on the PHP4 object handling hack ( aka
> > > ini_set('zend.ze1_compatibility_mode', 1); ) which was dropped in PHP5.3
> > >
> > > There is
Le jeudi 01 avril 2010 à 14:50 +0200, Olivier Berger a écrit :
> Le jeudi 01 avril 2010 à 14:32 +0200, Olivier Berger a écrit :
>
> > My intent is to ask for its removal from testing, then.
> >
>
> Done : http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=576196
And actua
Hi.
On Thu, Mar 18, 2010 at 10:36:58PM +, Debian Bug Tracking System wrote:
> #552480: eclipse: GTK dialog stopped working
>
> It has been closed by Debian Orbital Alignment Team
> .
>
>* Added workaround for gtk problems. (Closes: #552480)
>
Am I wrong in saying that this has been fi
On Mon, Mar 29, 2010 at 04:44:58PM +0200, Olivier Berger wrote:
> severity 575247 serious
> thanks
>
> On Wed, Mar 24, 2010 at 03:10:06PM +0100, Olivier Berger wrote:
> > Hi.
> >
> > More precisely, some explanation can be found in
> > http://lists.gnu.org/
Le jeudi 01 avril 2010 à 14:32 +0200, Olivier Berger a écrit :
> My intent is to ask for its removal from testing, then.
>
Done : http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=576196
> We may provide unofficial packages in any case for those interested.
>
FYI, details are
severity 575247 serious
thanks
On Wed, Mar 24, 2010 at 03:10:06PM +0100, Olivier Berger wrote:
> Hi.
>
> More precisely, some explanation can be found in
> http://lists.gnu.org/archive/html/phpgroupware-developers/2010-03/msg00011.html
> :
>
> "phpGW 0.9.16 depends o
also that fsck displays the failing device, instead of "open: No
such file or directory", to say something like :
"open /dev/sda1 : No such file or directory" for instance.
That would help a great deal identify what's problematic in the fstab.
My 2 cents,
--
Olivie
On Thu, Nov 05, 2009 at 07:48:32AM -0700, lam...@debian.org wrote:
>
> There was an error while trying to autobuild your package:
>
> > Automatic build of libsmbios_2.0.3.dfsg-1 on mundy by sbuild/ia64 98
> > make[2]: *** [bin-supported/dellMediaDirectCtl.o] Error 1
>
FYI, upstream changelog in
Le samedi 20 février 2010 à 12:35 +0100, José Luis Tallón a écrit :
> Olivier Berger wrote:
> > On Fri, Dec 11, 2009 at 03:42:26PM +0100, José Luis Tallón wrote:
> >
> >> usertags 505589 awaiting-sponsor
> >> A new version is being tested right now.
>
On Fri, Dec 11, 2009 at 03:42:26PM +0100, José Luis Tallón wrote:
> usertags 505589 awaiting-sponsor
> A new version is being tested right now.
>
> Anyone cares to sponsor it ?
>
It seems that libsmbios won't be in the next release... is it just still
waiting for a sponsor ?
Have you tried and
Le vendredi 12 février 2010 à 13:54 +0900, Ansgar Burchardt a écrit :
>
> do you have any plans to upload an updated package? The sympa version
> in testing is still from 2008 even though there have been three uploads
> in 2009.
See discussion in #549440.
Best regards,
--
Olivier
On Wed, Dec 30, 2009 at 08:36:11AM +0100, Mike Hommey wrote:
> On Tue, Dec 29, 2009 at 11:45:48PM +0100, Alexander Kurtz wrote:
> > Hi,
> >
> > Since I didn't find a copy of libnss3-1d 3.12.4-1, I wanted to mention
> > that the lenny version[1] of libnss3-1d works without problems with
> > squeeze
FYI, a patch has been included in recent upload of phpgroupware
(1:0.9.16.012+dfsg-9) in order to fix the code although it is normally not used.
Best regards,
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@list
ed by a regular user, and is a
kind of daemon, so I think it may be placed in another dir, maybe somewhere in
a sympa-dedicated directory.
Hope this helps,
--
Olivier BERGER
(OpenPGP: 1024D/B4C5F37F)
http://www.olivierberger.com/weblog/
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@l
On Sat, Jun 27, 2009 at 02:36:16PM +0200, Olivier Berger wrote:
> found 425010 1.1.6+dfsg-2
This looks to me as a potential fix for the version in stable :
http://git.debian.org/?p=users/olberger-guest/mantis.git;a=commit;h=f6879d0a0d7b7b23cf5ac9bde55837debdba34e1
But As I'm not confid
On Mon, Jun 29, 2009 at 11:32:19AM +0200, Olivier Berger wrote:
> > Still, the problem is now back (since circa 1.1.2+dfsg-1, apparently).
> >
>
> On 1.1.8+dfsg-1, I get this too upon fresh install :
> # ls -ld /etc/mantis/
> drwxr-xr-x 2 root root 4096 Jun 29 11:20 /et
found 425010 1.1.8+dfsg-1
thanks
On Sat, Jun 27, 2009 at 03:00:25PM +0200, Olivier Berger wrote:
> Le samedi 27 juin 2009 à 14:36 +0200, Olivier Berger a écrit :
>
> SNIP
>
> Actually, this happens to be caused by a different problem than what
> happened before 1.0.7
Le samedi 27 juin 2009 à 14:36 +0200, Olivier Berger a écrit :
SNIP
Actually, this happens to be caused by a different problem than what
happened before 1.0.7+dfsg-1, since the configuration is now handled
differently in the postinst (by ucf, etc.)
Still, the problem is now back (since circa
found 425010 1.1.6+dfsg-2
thanks
On Sat, Jun 27, 2009 at 12:45:23PM +0200, Olivier Berger wrote:
>
> I did some quick tests and it seems to still be the case also on my
> testing system, but the installation may have been borked... so I'll
> double check.
>
I confirm that
27;ll
double check.
I suspect some patch integration problem anyway.
Hope this helps.
Best regards,
--
Olivier BERGER
http://www-public.it-sudparis.eu/~berger_o/ - OpenPGP-Id: 1024D/6B829EEC
Ingénieur Recherche - Dept INF
Institut TELECOM, SudParis (http://www.it-sudparis.eu/), Evry (F
On Mon, Jul 28, 2008 at 10:30:05PM +0200, Ola Lundqvist wrote:
> Package: linux-patch-openvz
> Severity: serious
>
> Hi
>
> I'm the maintainer of this package. According to Maximilian Attems
> the openvz patch has been included in Debian kernel package
> targeted for Lenny.
>
> This makes this p
On Sat, Jun 13, 2009 at 08:32:17PM +0200, Hadmut Danisch wrote:
>
> running sympa or sympa perl scripts, e.g.
> /etc/init.d/sympa start
> or the sympa.pl reports
>
> $* is no longer supported at /usr/lib/sympa/bin/parser.pl line 65.
>
>
> looks as if sympa is not compatible with latest perl ve
Package: twiki
Version: 1:4.0.5-9.1etch1
Severity: grave
Tags: security
Justification: user security hole
FYI, Twiki in oldstable is affected by a security vulnerability :
http://twiki.org/cgi-bin/view/Codev/SecurityAlert-CVE-2009-1339
AFAIK, there's no patch available for old versions.
Best re
On Tue, Apr 21, 2009 at 01:02:33PM +0200, Olivier Berger wrote:
>
> FWIW, I experience similar issue, I suppose :
>
My bad, this was not on the same version and I actually experienced #523947
instead, it seems.
Sorry for the bothering (well... actually, URL to the patch in question
On Tue, Apr 07, 2009 at 04:23:53PM -0400, Lennart Sorensen wrote:
> I just posted a patch to the mailing list that makes 180.29 build
> perfectly with 2.6.29-2 and also works with linux-modules-nonfree-2.6,
> which is something we have been trying to get going for a while now.
>
Would you care to
Package: python-elementtree
Version: 1.2.6-13
Severity: normal
I also experienced this problem.
It seems that python-support implemented the .public files only starting with
0.90.0... so I guess a dependency is wrong here :(
FWIW :
dpkg -l python-support gives :
0.8.7
Hope this helps,
-- Sys
; > is not present in repository.
> > Could you please make temporary download for the kbuild for 2.6.29 as
> > it was done for 2.6.28?
> >
>
> right thus please stop reopening new bugs on same issue.
> closing.
>
--
Olivier BERGER
http://www-public.it-sudparis.eu
Here's a proposed patch for stable too.
Regards,
Message transféré
De: Olivier Berger <[EMAIL PROTECTED]>
À: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sujet: Re: Proposed NMU -> twiki-4.0.5-9.1etch2 - Re: [Fwd:
[TWiki-Announce] Security Alert -CVE-2008-5305: TWiki S
ler, which is not the default.
> > I
> > cannot find a way to configure phpgroupware to use the 'sendmail' method.
> >
> > Can someone enlighten me?
>
> After a quick code check this was my conclusion as well.
>
May I suggest that you complement https://sa
On Wed, Nov 05, 2008 at 03:57:01PM +1300, Francois Marier wrote:
> FYI, I am currently following this up with the upstream developer.
>
> Francois
>
Hi.
It seems that the discussions have been succesfull, as the lib seems to be
licensed under LGPL now.
Do you have more details ?
Best regards
à 18:05 +0100, Olivier Berger a écrit :
> reassign 504283 egroupware-felamimail
> thanks
>
> oops, my fault, sorry, should have directed it for -felamimail instead.
>
> Regards,
>
> Le dimanche 02 novembre 2008 à 17:44 +0100, Olivier Berger a écrit :
> > re
reassign 504283 egroupware-felamimail
thanks
oops, my fault, sorry, should have directed it for -felamimail instead.
Regards,
Le dimanche 02 novembre 2008 à 17:44 +0100, Olivier Berger a écrit :
> reassign 504283 egroupware
> thanks
--
Olivier BERGER <[EMAIL PROTECTED]>
http://w
reassign 504283 egroupware
thanks
#504255 was already filed on phpgroupware, so I suppose that this one was meant
for egroupware instead.
#504255 mentions a likely patch for egroupware, should felamimail still be
around (even if a better fix may be to depend on updated libphp-phpmailer, of
cou
again, please use a dependency
> against
> libphp-phpmailer ;)
Sure ;)
Best regards,
--
Olivier BERGER <[EMAIL PROTECTED]>
http://www-public.it-sudparis.eu/~berger_o/ - OpenPGP-Id: 1024D/6B829EEC
Ingénieur Recherche - Dept INF
Institut TELECOM, SudParis (http://www.it-sudparis.eu/), Evr
Le dimanche 02 novembre 2008 à 11:13 +0100, Olivier Berger a écrit :
> Thanks for spotting this problem.
>
> The referred [2] patch is actually not exactly apllicable to the version
> of class.phpmailer.php shipped in phpgroupware 0.9.11, and the correct
> one is attached.
>
&
racker/index.php?func=detail&aid=1734811&group_id=26031&atid=385707
>
Thanks for spotting this problem.
The referred [2] patch is actually not exactly apllicable to the version
of class.phpmailer.php shipped in phpgroupware 0.9.11, and the correct
one is attached.
I'll try an
le) for people willing to build
unofficial packages from the sources, if/whenever I have time to work on
that.
Hope this helps.
--
Olivier BERGER <[EMAIL PROTECTED]>
http://www-public.it-sudparis.eu/~berger_o/ - OpenPGP-Id: 1024D/6B829EEC
Ingénieur Recherche - Dept INF
Institut TELECOM, SudP
it problematic (thinking in paranoid mode)... maybe
something like :
key_password="$RET" perl -p -e 's/[EMAIL PROTECTED]@/$ENV{key_password}/' ... ?
My 2 cents again,
--
Olivier BERGER <[EMAIL PROTECTED]>
http://www-public.it-sudparis.eu/~berger_o/ - OpenPGP-Id: 1024D/6B829EEC
On Thu, Oct 09, 2008 at 05:25:50PM +0200, Patrick Schoenfeld wrote:
> Hi,
>
> On Thu, Oct 09, 2008 at 03:17:43PM +0300, Niko Tyni wrote:
> > Line 212 in the postinst breaks if sympa/key_password contains sed
> > metacharacters, for instance 'a/b/c' as above.
>
> attached is a patch for this issue
to use the /m
> > modifier, but I dont know what this particular function in sympa does.
> >
> >
> You're right, we had already fixed similar code earlier but obviously
> forgot this one. We'll fix the problem ASAP in both trunk and 5.4 branch.
> If yo
;
I also have access to Racke's internal CVS, but unfortunately, I'm not
available on a stable pace to contribute much either :(
There's definitely a manpower/availability/dedication problem for this
package, which is unfortunate.
Just my 2 not so useful cents,
--
Olivier BERGE
ers... so popularity contest may not be relevant here
AFAICT.
For the rest of the complains, I have unfortunately no time to help at
the moment, but I'm not the maintainer either, so that doesn't make a
difference.
Still, /me would be worried if sympa was out of Debian :-/
My 2 cents,
--
Oli
On Wed, Aug 27, 2008 at 05:24:20PM +0200, Nico Golde wrote:
> reopen 494969
> thanks
>
> Hi,
> I am reopening this bug as I can confirm that there are lots
> of other tmp races in the sympa source. See Oliver Berges
> mail.
>
The other bug is #496518 ?
I'm not sure the current bug needed reopen
tags 494648 + pending
thanks
On Sun, Aug 24, 2008 at 11:33:38PM +1000, Sven Dowideit wrote:
> Vincent, and DD's
>
Any reason why not having usual sponsor (Ardo ?) in CC: ? He may be subscribed
to the package and readin us though.
> I've finally placed a new twiki 4.1.2-4 deb at
>
> http://dis
this.
Best regards,
Le lundi 25 août 2008 à 11:59 +0200, Olivier Berger a écrit :
> Le jeudi 21 août 2008 à 16:14 +0200, Thijs Kinkhorst a écrit :
>
> > When grepping the sympa source for "/tmp" I find quite some occurances
> > of
> > other files directly in tmp
Package: sympa
Version: 5.3.4-5.1
Severity: grave
Tags: security
Justification: user security hole
AFAICT (and thanks to Thijs Kinkhorst <[EMAIL PROTECTED]> :
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494969#21) there are more
insecure use of /tmp in sympa.
Besides the one in #496518 the
Package: sympa
Version: 5.3.4-5.1
Severity: critical
Tags: security
Justification: root security hole
AFAICT (and thanks to Thijs Kinkhorst <[EMAIL PROTECTED]> :
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494969#21) there are more
insecure use of /tmp in sympa.
One quite nasty is the one
hanged)
./usr/bin/sympa_wizard:my $new_wwsympa_conf = '/tmp/wwsympa.conf';
./usr/bin/sympa_wizard:my $new_sympa_conf = '/tmp/sympa.conf';
I think that even though the first ones reported on
/usr/lib/cgi-bin/sympa/wwsympa.fcgi and /usr/lib/sympa/bin/sympa.pl are now
fixed b
Le vendredi 15 août 2008 à 08:10 +0200, Olivier Berger a écrit :
> Still I have one doubt about the change for
> $TWiki::cfg{RCS}{WorkAreaDir} and $TWiki::cfg{TempfileDir}
> in case of upgrades...
>
> Will try and report for my upgrade tests.
>
OK, upgrades from -3.2 to -4
ion of the twiki package at
> http://distributedinformation.com/TWikiDebian/
>
> that fixes both the security flaw Dmitry found, and a few other bad
> oddities.
>
> Could one of you by any chance take a look at it (and upload) for me?
>
>
> Cheers
> Sven
--
Olivier BE
/src/sympa.pl?r1=5071&r2=5111
http://sourcesup.cru.fr/cgi/viewvc.cgi/trunk/wwsympa/wwsympa.fcgi?r1=5106&r2=5110
-
I guess both patches need to be applied to the package then.
See attached patch.
Anyway some second opinion may be valuable.
Best regards,
On Wed, Aug 13, 2008 at 03:55:46PM +0200
o really close bugs fixed in an NMU
> as NMUs were only tagging the bugs as "fixed", not really closing
> them.
>
> Since version control was implemented, this is no longer needed.
OK, my fault.
Sorry about bothering.
--
Olivier BERGER <[EMAIL PROTECTED]>
http://
ndancys on apache* rather than apache*-common (Closes:
> #482285)
>* remove TWikiGuest user with hardcoded password from htpassword.
>* Build instructions moved from section -arch to -indep (closes
> lintian warning).
>
--
Olivier BERGER <[EMAIL PROTECTED]>
http://www-p
xed by the time if such thing would have
been reported already Sorry for duplicate.
In any case I guess this redirect will be solved soon now it has your
attention.
Merging both tickets, then.
>
> Olivier Berger wrote:
>> On Wed, Aug 13, 2008 at 10:12:29PM +1000, Sven Dowideit w
On Wed, Aug 13, 2008 at 10:12:29PM +1000, Sven Dowideit wrote:
>
> the best irony of this bug, is :
>
> > I've implemented Joey's suggestion of 1777 & O_EXCL - mostly the files
> in tmp are written by CGI::Session, that takes care of things.
> >
> > I also moved the 1777 tmp dir back to /tmp/twik
he postinst.
Or maybe simply not create a separate dir for session files and use
plain clear /tmp for CGI::Session files ? Unless that leads to potential
information leaks ?
Follow-up to :
http://lists.debian.org/debian-devel/2008/08/msg00340.html ?
My 2 cents,
--
Olivier BERGER <[EMAIL PROT
scription available)
pn mysql-server | postgresql (no description available)
ii openssl 0.9.8g-12 Secure Socket Layer (SSL) binary a
--
Olivier BERGER <[EMAIL PROTECTED]>
http://www-public.it-sudparis.eu/~berger_o/ - OpenPGP-Id: 1024D/6B829EEC
Ingénieur Reche
1 - 100 of 177 matches
Mail list logo
