Processing commands for [EMAIL PROTECTED]:
> severity 316177 normal
Bug#316177: daemontools-installer: daemontools package tries to remove
/usr/local folder upon removal
Severity set to `normal'.
> tag 316177 moreinfo
Bug#316177: daemontools-installer: daemontools package tries to remove
/usr/l
severity 316096 important
tags 316096 sarge upstream
forwarded 316096 upstream
thanks
On Tue, Jun 28, 2005 at 07:17:57 -0500, Yevgen Muntyan wrote:
> Package: gnumeric
> Version: 1.4.3-4
> ii libgsf-1 1.12.0-1 Structured File Library -
> runtime
It is a known issue that
Processing commands for [EMAIL PROTECTED]:
> severity 316096 important
Bug#316096: gnumeric: Crash when saving to MS Excel format
Severity set to `important'.
> tags 316096 sarge upstream
Bug#316096: gnumeric: Crash when saving to MS Excel format
There were no tags set.
Tags added: sarge, upstrea
tags 315115 patch
thanks
On Wed, Jun 29, 2005 at 04:26:09AM +0200, Jeroen van Wolffelaar wrote:
> Updated packages mailed to security team, awaiting review and upload.
If you want to test:
http://www.wolffelaar.nl/~jeroen/sudo.CAN-2005-1993.tar.gz
(intentionally lacking .changes files)
Please s
Processing commands for [EMAIL PROTECTED]:
> tags 315115 patch
Bug#315115: [bugtraq] Sudo version 1.6.8p9 now available, fixes security issue.
Tags were: pending sarge woody security
Bug#315718: sudo: Sudo version 1.6.8p9 now available, fixes security issue.
Tags added: patch
> thanks
Stopping pr
On Tue, Jun 28, 2005 at 09:56:37AM +0200, Rene Engelhard wrote:
> Why don't you tag it experimental then?
I didn't think of it until too late, sorry.
> ARGL. Why do you report two bugs in one? Report *one* bug for *one*
> issue. And you of course got the severity wrong anyway. Cleaning up.
Thank
reopen 315115
tags 315115 woody sarge pending
thanks
Updated packages mailed to security team, awaiting review and upload.
--Jeroen
--
Jeroen van Wolffelaar
[EMAIL PROTECTED] (also for Jabber & MSN; ICQ: 33944357)
http://Jeroen.A-Eskwadraat.nl
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
wi
Processing commands for [EMAIL PROTECTED]:
> reopen 315115
Bug#315115: [bugtraq] Sudo version 1.6.8p9 now available, fixes security issue.
Bug#315718: sudo: Sudo version 1.6.8p9 now available, fixes security issue.
Bug reopened, originator not changed.
> tags 315115 woody sarge pending
Bug#315115
Package: evms-ha
Severity: grave
Justification: renders package unusable
evms-ha includes /etc/heartbeat which is no longer used
in the heartbeat package and is now a symlink to /etc/ha.d.
Now the evms_failover resource.d scripts should
be moved to /etc/ha.d/resource.d.
Currently one is not able
Steve Kemp wrote:
>
> Can I be the first to say that I don't understand the nature of this
> issue?
The description sounds reasonably straightforward, though I'd classify
this as a vulnerability of pretty low importance, from a "will people be
exploited by this" viewpoint.
> Is this also present
Your message dated Tue, 28 Jun 2005 20:26:26 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#269940: fixed in zope 2.6.4-2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your
Your message dated Tue, 28 Jun 2005 20:26:26 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#256615: fixed in zope 2.6.4-2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your
Your message dated Tue, 28 Jun 2005 20:26:26 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#267384: fixed in zope 2.6.4-2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your
Your message dated Tue, 28 Jun 2005 20:26:25 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#222443: fixed in zope 2.6.4-2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your
On Wed, Jun 29, 2005 at 01:40:42AM +0200, Bill Allombert wrote:
> On Tue, Jun 28, 2005 at 07:26:25PM -0400, Daniel Jacobowitz wrote:
> > On Tue, Jun 28, 2005 at 03:32:42PM +0200, Bill Allombert wrote:
> > > On Tue, Jun 28, 2005 at 09:01:21AM -0400, Daniel Jacobowitz wrote:
> > > > But they ARE conf
Your message dated Tue, 28 Jun 2005 19:47:19 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#315899: fixed in alsaplayer 0.99.76-4
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is n
On Tue, Jun 28, 2005 at 07:26:25PM -0400, Daniel Jacobowitz wrote:
> On Tue, Jun 28, 2005 at 03:32:42PM +0200, Bill Allombert wrote:
> > On Tue, Jun 28, 2005 at 09:01:21AM -0400, Daniel Jacobowitz wrote:
> > > But they ARE conffiles! One of the reasons they're in /etc is so that
> > > the system a
Package: daemontools-installer
Version: 0.76-9
Severity: critical
Justification: causes serious data loss
Package daemontools created through daemontools-installer can cause
catastrophe upon removal.
Simply trying to remove daemontools package from the system tries to
remove the /usr/local directo
On Tue, Jun 28, 2005 at 03:32:42PM +0200, Bill Allombert wrote:
> On Tue, Jun 28, 2005 at 09:01:21AM -0400, Daniel Jacobowitz wrote:
> > But they ARE conffiles! One of the reasons they're in /etc is so that
> > the system administrator can modify them if desired.
>
> No, they are maybe config fil
Package: lvm2
Version: 2.01.12-2
Followup-For: Bug #315339
Installing new lvm2 makes stripped VG unrecognizable.
Downgrading lvm2 back to 2.01.04-5 fixes the problem.
# vgdisplay lvmg
LV backup: inconsistent LE count 1832 != 3662
Internal error: LV segments corrupted in backup.
Volume group
On Wed, Jun 29, 2005 at 12:49:31AM +0200, Moritz Muehlenhoff wrote:
> Package: apache2
> Severity: grave
> Tags: security
> Justification: user security hole
>
> Latest 2.1.6-alpha fixes a security in the proxy HTTP code:
>
> | The 2.1.6-alpha release addresses a security vulnerability present
>
Package: apache2
Severity: grave
Tags: security
Justification: user security hole
Latest 2.1.6-alpha fixes a security in the proxy HTTP code:
| The 2.1.6-alpha release addresses a security vulnerability present
| in all previous 2.x versions. This fault did not affect Apache 1.3.x
| (which did n
Processing commands for [EMAIL PROTECTED]:
> # Automatically generated email from bts, devscripts version 2.8.14
> tags 316106 sid
Bug#316106: FTBFS with freetype 2.1.10
There were no tags set.
Tags added: sid
>
End of message, stopping processing here.
Please contact me if you need assistance.
On Tue, Jun 28, 2005 at 01:31:39PM +0200, Bastian Blank wrote:
> Package: exim4-config
> Version: 4.51-1
> Severity: serious
> exim4-config fails to install if the system have no /etc/shadow file.
> | Setting up exim4-config (4.51-1) ...
> | hostname: Unknown host
> | hostname: Unknown host
> | A
It seems the bug got fixed in later kernel versions upstream: I tested
kernel-2.6.11.5 and kernel-2.6.12.1 and there are no problems.
--
Andreas Gösele
Package: gringotts
Version: 1.2.8+1.2.9pre1-1
Severity: grave
Tags: l10n
Justification: renders package unusable
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
hi,
recently I wanted to access my passwords, most of which I now store in
a gringotts file. I punchend in "gringotts -f passwd.grg" in
Your message dated Tue, 28 Jun 2005 16:32:16 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#305735: fixed in sudo 1.6.8p9-2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now you
On Mon, Jun 27, 2005 at 12:38:29PM +0900, Horms wrote:
> Hi Kurt,
>
> I have tried a fresh approach to this problem, that is making the
> code in question a shared object. It is compiled with -fPIC as far as
> I can see. This change is included in the 1.17-2 packages that
> I have put in http://de
Your message dated Tue, 28 Jun 2005 16:02:51 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#315115: fixed in sudo 1.6.8p9-1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now you
Your message dated Tue, 28 Jun 2005 16:02:51 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#315115: fixed in sudo 1.6.8p9-1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now you
Your message dated Tue, 28 Jun 2005 15:47:41 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#315650: fixed in exim4 4.51-2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your
Your message dated Tue, 28 Jun 2005 15:47:41 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#315650: fixed in exim4 4.51-2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your
Package: subversion
Version: 1.2.0-1
Severity: grave
Justification: renders package unusable
Hi.
I know the bug 266165
(http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=266165).
The behavior is the same but the segfault IMHO does not depend on
libapr0 because it shows even using the local filesyst
Your message dated Tue, 28 Jun 2005 10:35:50 -0700
with message-id <[EMAIL PROTECTED]>
and subject line Bug#316121: apt: Ubuntu key installed in /etc/apt/trusted.gpg
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is
Package: apt
Version: 0.6.38
Severity: serious
Hi,
I currently have the ubuntu key installed in
/etc/apt/trusted.gpg, and do not have the debian key in it.
This is not at all what I expect. I never had anything from
ubuntu installed.
I assume this happened with an earlier version apt (0.6.36) f
On Sun, 26 Jun 2005 14:51:03 -0400
grok <[EMAIL PROTECTED]> wrote:
> I am getting this crash pretty regularly now when I start shuffling
> around the 'snapshot' URLs (they've already been moved away from where
> elinks puts them as per the configuration setting, so they should just
> be 'regular'
severity 316094 normal
thanks,
On Tue, 28 Jun 2005, Benoit Panizzon wrote:
Package: sendmail
Version: 8.13.4-3
Severity: grave
Justification: causes non-serious data loss
The messages (below) indicate no loss of data, just a delay in sending
Hi Cowboy
Hello !
I did desperately try to tr
Processing commands for [EMAIL PROTECTED]:
> severity 316094 normal
Bug#316094: sendmail: Enabling IPv6 breaks submit.mc (Deferred:Connection
refused by [127.0.0.1])
Severity set to `normal'.
> thanks,
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking syst
Package: mozilla
Severity: serious
Justification: no longer builds from source
Building Mozilla on an up-to-date unstable machine results in the below
build failure:
g++ -o nsFreeType.o -c -DOSTYPE=\"Linux2.6\" -DOSARCH=\"Linux\" -I../..
-I../../../dist/include/xpcom -I../../../dist/include/stri
Your message dated Tue, 28 Jun 2005 09:47:16 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#313400: fixed in dpkg 1.13.10
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your
Your message dated Tue, 28 Jun 2005 09:47:16 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#316084: fixed in dpkg 1.13.10
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your
On Tue, Jun 28, 2005 at 09:01:21AM -0400, Daniel Jacobowitz wrote:
> On Tue, Jun 28, 2005 at 01:51:46PM +0200, Bill Allombert wrote:
> > However theses files are binaries files, not text files. They probably
> > do not beong in /etc in the first place but at least they should not be
> > marked as c
Your message dated Tue, 28 Jun 2005 09:17:10 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#315444: fixed in busybox 1:1.00-3
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now y
severity 315945 important
thanks
On Mon, Jun 27, 2005 at 01:54:32PM +0200, Simon K?gstr?m wrote:
>Package: seyon
>Version: 2.20c-16
>Severity: grave
>Justification: renders package unusable
>
>seyon does not work when gnome-terminal is installed. When I try to run
>it, I get the following message:
reassign #316089 adduser
# too bad this doesn't make this bug SEP.
thanks
On Tue, Jun 28, 2005 at 01:31:39PM +0200, Bastian Blank wrote:
> exim4-config fails to install if the system have no /etc/shadow file.
>
> | Setting up exim4-config (4.51-1) ...
> | hostname: Unknown host
> | hostname: Unkn
Processing commands for [EMAIL PROTECTED]:
> severity 315945 important
Bug#315945: seyon does not work when gnome-terminal is installed
Severity set to `important'.
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
(administrat
Processing commands for [EMAIL PROTECTED]:
> reassign #316089 adduser
Bug#316089: exim4-config - fails to install if system uses no shadow
Bug reassigned from package `exim4-config' to `adduser'.
> # too bad this doesn't make this bug SEP.
> thanks
Stopping processing here.
Please contact me if
On Tue, Jun 28, 2005 at 01:51:46PM +0200, Bill Allombert wrote:
> However theses files are binaries files, not text files. They probably
> do not beong in /etc in the first place but at least they should not be
> marked as conffiles, since dpkg do not handle non-text conffiles in a
> useful way:
>
Package: gnumeric
Version: 1.4.3-4
Severity: critical
Justification: causes serious data loss
Gnumeric crashes when I'm trying to save file in MS Excel format,
regardless of file content - it may be a new empty file or file with
some data.
Steps to reproduce are:
1. Open some file or create a new
Package: ncurses-base
Version: 5.4-8
Severity: serious
Hello Dan,
ncurses-base mark the following files as conffiles:
/etc/terminfo/E/Eterm
/etc/terminfo/a/ansi
/etc/terminfo/c/cons25
/etc/terminfo/c/cygwin
/etc/terminfo/d/dumb
/etc/terminfo/h/hurd
/etc/terminfo/l/linux
/etc/terminfo/m/mach
/etc
Package: sendmail
Version: 8.13.4-3
Severity: grave
Justification: causes non-serious data loss
Hi Cowboy
I did desperately try to track down this error I saw on different systems:
Jun 28 13:53:41 go sendmail[18911]: j5SBrfKk018911: [EMAIL PROTECTED],
ctladdr=benoit (1024/100),
delay=00:00:00
Calum Mackay wrote:
Looking good so far: the file is now being created, and I've yet to see
any handshake errors.
Still no errors whatsoever here, so I'm confident your update cured the
problem, Andreas, thanks. You might want to release this?
thanks again.
cheers,
c.
--
To UNSUBSCRIBE, e
Processing commands for [EMAIL PROTECTED]:
> tag 251184 + fixed
Bug#251184: FTBFS - Please rebuild vflib3 with libt1-dev instead t1lib-dev
Tags were: sid patch
Tags added: fixed
> quit
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
(
Processing commands for [EMAIL PROTECTED]:
> tag 251183 + fixed
Bug#251183: FTBFS - Please rebuild ultrapoint with libt1-dev instead t1lib-dev
Tags were: sid patch
Tags added: fixed
> quit
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrat
Processing commands for [EMAIL PROTECTED]:
> tag 251182 + fixed
Bug#251182: FTBFS - Please rebuild ttf2pt1 with libt1-dev instead t1lib-dev
Tags were: sid patch
Tags added: fixed
> quit
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
Package: exim4-config
Version: 4.51-1
Severity: serious
exim4-config fails to install if the system have no /etc/shadow file.
| Setting up exim4-config (4.51-1) ...
| hostname: Unknown host
| hostname: Unknown host
| Adding system-user for exim (v4)
| chage: can't open shadow password file
| grou
Package: dpkg
Version: 1.13.9
Severity: serious
dpkg fails to install if base-passwd is not configured and does not
declare a pre-dependency against. At this time, no /etc/passwd or /etc/group
exists, as base-passwd builds them in its postinstall script.
| Unpacking dpkg (from .../archives/dpkg_1
Package: a2ps
Version: 1:4.13b-4.3
Followup-For: Bug #267527
The bug is still not fixed for the lpr package. a2ps-lpr-wrapper tries
printing with "lpr -d ", which does NOT work.
Frank
-- System Information:
Debian Release: 3.1
Architecture: i386 (i686)
Kernel: Linux 2.4.25smp
Locale: LANG=C, LC_
Processing commands for [EMAIL PROTECTED]:
> tag 267527 - fixed
Bug#267527: a2ps option "-P" does not work
Tags were: fixed
Tags removed: fixed
> quit
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
(administrator, Debian Bugs databa
Your message dated Tue, 28 Jun 2005 12:13:38 +0200
with message-id <[EMAIL PROTECTED]>
and subject line Bug#316071: phpbb2: Inproper escaping in viewtopic.php
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the
Processing commands for [EMAIL PROTECTED]:
> forwarded 316059 http://qa.openoffice.org/issues/show_bug.cgi?id=50819
Bug#316059: does not find libstdc++6 (missing depenency / broken RPATH)
Noted your statement that Bug has been forwarded to
http://qa.openoffice.org/issues/show_bug.cgi?id=50819.
>
Hello Moritz,
Thanks for your report. We were given notice about this but couldn't
reproduce the mentioned bug in our current phpbb2 Debian versions.
On Tue, June 28, 2005 11:16, Moritz Muehlenhoff wrote:
> [Cc:ing security@ as Sarge is affected as well]
Can you clarify: have you verified that s
Package: java-package
Version: 0.24
Followup-For: Bug #314234
It's also broken for the most recent release:
$ fakeroot make-jpkg jdk-1_5_0_04-linux-i586.bin
Creating temporary directory: /tmp/make-jpkg.qPkjfh
Loading plugins: blackdown-j2re.sh blackdown-j2sdk.sh common.sh
ibm-j2re.sh ibm-j2sd
Package: phpbb2
Severity: grave
Tags: security
Justification: user security hole
[Cc:ing security@ as Sarge is affected as well]
phpbb 2.0.16 fixes a security issue due to inproper escaping of the
$highlight_match variable in viewtopic.php.
Upstream developers classify it as critical and provide
Processing commands for [EMAIL PROTECTED]:
> tags 309932 -experimental +sid
Unknown tag/s: +sid.
Recognized are: patch wontfix moreinfo unreproducible fixed potato woody sid
help security upstream pending sarge sarge-ignore experimental d-i confirmed
ipv6 lfs fixed-in-experimental fixed-upstream
Processing commands for [EMAIL PROTECTED]:
> severity 309932 grave
Bug#309932: gnome-system-tools: boot-admin is DANGEROUS
Severity set to `grave'.
> retitle 309932 boot-admin should not be in unstable
Bug#309932: gnome-system-tools: boot-admin is DANGEROUS
Changed Bug title.
> thanks
Stopping p
Processing commands for [EMAIL PROTECTED]:
> tag 316030 + experimental
Bug#316030: python-uno: appears to be completely broken
There were no tags set.
Tags added: experimental
> clone 316030 -1
Bug#316030: python-uno: appears to be completely broken
Bug 316030 cloned as bug 316059.
> retitle -1
reopen 315582
thanks
This bug is closed in sid, but still opened in sarge.
It will will be closed in etch as soon as the
package propagate (I'll then remove the etch tag).
Regards.
--
- Alexis Sukrieh
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble?
Processing commands for [EMAIL PROTECTED]:
> reopen 315582
Bug#315582: backup-manager: insecure handling of temporary files
Bug reopened, originator not changed.
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
(administrator,
69 matches
Mail list logo
