Package: tor
Severity: serious
Tags: security
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
The following SA (Secunia Advisory) id was published for Tor:
SA33635[1]
> DESCRIPTION:
> A vulnerability with an unknown impact has been reported in Tor.
>
> The vulnerability is caused due to an
Le Thu, Jan 22, 2009 at 02:28:06PM -0200, Nelson A. de Oliveira a écrit :
> Hi!
>
> (First sorry for being MIA and not answering; my job is getting a lot
> of my time)
>
> On Thu, Jan 22, 2009 at 11:49 AM, Charles Plessy wrote:
> > forwarded 512371 https://www.mozdev.org/bugs/show_bug.cgi?id=204
Thanks for the DSA-1709 fix.
Belatedly, I realize that this still leaves a DoS attack: fill up utmp
with entries for all possible PIDs, then login will fail. Maybe that is
"properly" Bug#505071 (as distinct from this one)? Please see there
about ideas on how to perform this DoS without access to g
Package: chmsee
Version: 1.0.1-1+b1
Severity: grave
Justification: renders package unusable
Hello,
I just installed chmsee and it seems it either crashes on start on an
index file, when given a particular .chm file as a parameter, or fails
to open the .chm file, later crashing.
(I have just tes
2009/1/22 Evgeni Golov :
> I'll prepare an NMU, making the package binNMU-able, and hoping the new
> build will have correctly gziped manpages.
Go ahead an NMU but please forward first a proposed patch to this bug
report. If time permits I might be able to make the upload myself.
Regards
Javier
Your message dated Thu, 22 Jan 2009 23:47:34 +
with message-id
and subject line Bug#512700: fixed in sofia-sip 1.12.10-3
has caused the Debian Bug report #512700,
regarding FTBFS on nearly all arches
to be marked as done.
This means that you claim that the problem has been dealt with.
If thi
Your message dated Thu, 22 Jan 2009 23:47:34 +
with message-id
and subject line Bug#512699: fixed in sofia-sip 1.12.10-3
has caused the Debian Bug report #512699,
regarding libsofia-sip-ua-glib3.symbols malformed
to be marked as done.
This means that you claim that the problem has been dealt
On Friday 23 January 2009 00:31:15 Laurent Bigonville wrote:
> Package: sofia-sip
> Version: 1.12.10-2
> Severity: serious
>
> Hi,
>
> Sofia-sip FTBFS on nearly all arches due to missing symbols in .symbols
> files
>
> Could you please fix it
Hello,
and thanks for reporting.
It was failing becau
Am Donnerstag, den 22.01.2009, 23:33 +0100 schrieb Jan Lübbe:
> On Thu, 2009-01-22 at 20:56 +0100, Torsten Marek wrote:
> > There seems to be another problem in kvm-82 with regard to image
> > corruption, I'm using a qcow2 image backed by another qcow2 one.
> >
> > I was able to install Windows XP
Package: sofia-sip
Version: 1.12.10-2
Severity: serious
Hi,
Sofia-sip FTBFS on nearly all arches due to missing symbols in .symbols
files
Could you please fix it
Thanks!
Laurent Bigonville
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe".
On second thought, maybe it is not present in kvm-82 without the patch.
chkdsk behaves erratically (sometimes reports errors, then doesnt) with
kvm-72, too, but I can work without any problems. The only other symptom
is that IE7 is awfully crashy, but that doesn't seem to be connected to
corrupted
On Thu, 2009-01-22 at 20:56 +0100, Torsten Marek wrote:
> There seems to be another problem in kvm-82 with regard to image
> corruption, I'm using a qcow2 image backed by another qcow2 one.
>
> I was able to install Windows XP and apply all patches etc, but soon
> after that, chkdsk started report
Package: libsofia-sip-ua-glib3
Version: 1.12.10-2
Severity: serious
Hi,
the libsofia-sip-ua-glib3.symbols file is malformed.
The first line should read:
libsofia-sip-ua-glib.so.3 libsofia-sip-ua-glib3 #MINVER#
Laurent Bigonville
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debi
Package: firmware-iwlwifi
Version: 0.14
Severity: critical
Justification: breaks the whole system
Hello!
I have a Fujitsu-Siemens AMILO Xi 2550 notebook with Intel 4965 Wi-Fi.
You can see the details of the hardware at my homepage:
http://phd.pp.ru/notebooks/FujitsuSiemens_AMILO_Xi2550.html.
Starting "mysql" from the command line always results in "Illegal Instruction", then execution terminates (of course). The
parameters seem not to change anything. The situation is the same with "mysqldump".
What CPU and what kernel are you using on the problem machine?
What version of the mysql
Thanks for the report and patches. Just to clarify one point raised by
the debian security team:
"I can see that the patch was adjusted several times and the current
version still has the code that sends the entire tree, could that
somehow be used for a DoS attack?"
Thanks,
Stuart
--
>From
Processing commands for cont...@bugs.debian.org:
> fixed 512608 4.0.2+debian-6
Bug#512608: [SA33617] Typo3 Multiple Vulnerabilities
Bug marked as fixed in version 4.0.2+debian-6.
>
End of message, stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system adm
Processing commands for cont...@bugs.debian.org:
> reopen 512608
Bug#512608: [SA33617] Typo3 Multiple Vulnerabilities
'reopen' may be inappropriate when a bug has been closed with a version;
you may need to use 'found' to remove fixed versions.
Bug reopened, originator not changed.
> found 512608
Processing commands for cont...@bugs.debian.org:
> tag 512365 +security
Bug#512365: gmetad: stack based buffer overflow in process_path
There were no tags set.
Tags added: security
>
End of message, stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system a
Processing commands for cont...@bugs.debian.org:
> tags 512649 unreproducible
Bug#512649: mhddfs in Debian 4.0r6 gives relocation error
There were no tags set.
Tags added: unreproducible
> severity 512649 normal
Bug#512649: mhddfs in Debian 4.0r6 gives relocation error
Severity set to `normal' fr
On Thu, Jan 22, 2009 at 02:16:18PM -0500, Simon Valiquette wrote:
> By the way, I noticed that the compiler warned that eboard was linked
> with a number of apparently unnecessary libraries like libpango. For
> Lenny, it is best to keep it like it is now, but it would be a good idea
> to lo
tags 512649 unreproducible
severity 512649 normal
thanks
On 16:32 Thu 22 Jan , Lennart Gilander wrote:
> Package: mhddfs
> Version: 0.1.18-1
> Severity: grave
> Executing mhddfs using 'mhddfs /nmt/hdd1,/mnt/hdd2 /media/video -o
> allow_other' gives the error message:
> mhddfs: relocation er
There seems to be another problem in kvm-82 with regard to image
corruption, I'm using a qcow2 image backed by another qcow2 one.
I was able to install Windows XP and apply all patches etc, but soon
after that, chkdsk started reporting errors.
best,
Torsten
--
.: Torsten Marek
.: http://shlom
Processing commands for cont...@bugs.debian.org:
> severity 512527 important
Bug#512527: sshproxy - not able to login after successfully installed,
configured, started (thread crashes)
Severity set to `important' from `grave'
> tags 512527 + moreinfo unreproducible
Bug#512527: sshproxy - not abl
severity 512527 important
tags 512527 + moreinfo unreproducible
thanks
OoO En ce début d'après-midi nuageux du mercredi 21 janvier 2009, vers
14:37, Istvan Pongracz disait :
> Package: sshproxy
> Version: 0.6_beta2.2
> Severity: grave
> Justification: renders package unusable
> After install
Patrik Fimml un jour écrivit:
Okay, I found out that it was looping inside NText::formatLine exactly
between the following lines in the file ntext.cc:
320 while(k-j > 0) {
321 fit = false;
322
323 // try full-fit for for unwrapped of last chunk of wrapping
324
325 if (j=
Colin Watson wrote:
> Joey, what do you think of this? I'd rather not add a new database
> unilaterally.
I don't like special casing ucf in debconf. I suppose we could add a
Sensative: true field and filter questions with that set to a separate
database.
I think I prefer the approach of ucf ensur
Processing commands for cont...@bugs.debian.org:
> tags 511698 sid
Bug#511698: update-menus fails with unknown error
There were no tags set.
Tags added: sid
>
End of message, stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
(administra
Your message dated Thu, 22 Jan 2009 17:32:06 +
with message-id
and subject line Bug#511511: fixed in slurm-llnl 1.3.6-1lenny1
has caused the Debian Bug report #511511,
regarding slurm-llnl: Imporer checking of EVP_VerifyFinal() return value.
to be marked as done.
This means that you claim th
Your message dated Thu, 22 Jan 2009 18:08:24 +0100
with message-id <20090122170824.ga28...@ngolde.de>
and subject line closing
has caused the Debian Bug report #512608,
regarding [SA33617] Typo3 Multiple Vulnerabilities
to be marked as done.
This means that you claim that the problem has been dea
Your message dated Thu, 22 Jan 2009 18:28:13 +0100
with message-id <20090122172813.ga13...@xanadu.blop.info>
and subject line Re: Bug#512514: emacs22: FTBFS in lenny: segfault
has caused the Debian Bug report #512514,
regarding emacs22: FTBFS in lenny: segfault
to be marked as done.
This means th
On Wed, Jan 21, 2009 at 12:36:39AM -0600, Manoj Srivastava wrote:
> ucf has no way of knowing whether the data it is being asked to
> diff has passwords or other sensitive information; and since it is
> required by policy to use debconf for all user interaction, it _has_ to
> send the di
Your message dated Thu, 22 Jan 2009 16:47:04 +
with message-id
and subject line Bug#512510: fixed in boxbackup 0.11~rc2-5
has caused the Debian Bug report #512510,
regarding boxbackup: FTBFS in lenny: DebugMemLeakFinder.cpp:165: error:
'::malloc' has not been declared
to be marked as done.
Philipp Kolmann wrote:
>> it doesn't. probably your /usr/src/open-vm.tar.bz2 is unclean.
>
> Danke. Ein Löschen von /usr/src/modules/open-vm und apt-get --reinstall
> und neu build hat geholfen.
[ Translation: thanks. removing /usr/src/modules/open-vm and apt-get
--reinstall and building again di
Processing commands for cont...@bugs.debian.org:
> severity 512660 normal
Bug#512660: ocsinventory-server cannot work 'cause many files are missing
Severity set to `normal' from `grave'
> tags 512660 +wontfix
Bug#512660: ocsinventory-server cannot work 'cause many files are missing
There were no
severity 512660 normal
tags 512660 +wontfix
thanks
On Thu, Jan 22, 2009 at 05:33:59PM +0100, root wrote:
> Package: ocsinventory-server
> Version: 1.01-6
> Severity: grave
> Justification: renders package unusable
>
> After installing ocsinventory-server, it doesn't work, because while the
> da
Package: ocsinventory-server
Version: 1.01-6
Severity: grave
Justification: renders package unusable
After installing ocsinventory-server, it doesn't work, because while the
database has been created, there is no tables inside it.
The indications given in /usr/share/doc/ocsinventory-server/README
Hi!
(First sorry for being MIA and not answering; my job is getting a lot
of my time)
On Thu, Jan 22, 2009 at 11:49 AM, Charles Plessy wrote:
> forwarded 512371 https://www.mozdev.org/bugs/show_bug.cgi?id=20475
There is a new version already and it works with the latest release of
iceweasel. Th
notfound 512310 0.5.0-1
notfound 512394 0.5.0-1
thanks
[ Adding my AM and the bugs back to CC ]
On Thu, 22 Jan 2009 17:06:53 +0100 Josselin Mouette wrote:
> Le jeudi 22 janvier 2009 à 13:18 +0100, Evgeni Golov a écrit :
> > Dear nautilus-python maintainers,
> >
> > I intend to NMU nautilus-pyth
Processing commands for cont...@bugs.debian.org:
> notfound 512310 0.5.0-1
Bug#512310: python-nautilus: scripts in ~/.nautilus/python-extensions/ failed
to be executed
Bug no longer marked as found in version 0.5.0-1.
> notfound 512394 0.5.0-1
Bug#512394: python-nautilus: nautilus freezes/crashe
Your message dated Thu, 22 Jan 2009 17:17:03 +0100
with message-id <49789bff.8040...@debian.org>
and subject line Re: Bug#512650: Build failed with linux-headers-2.6-amd64
2.6.26+17
has caused the Debian Bug report #512650,
regarding Build failed with linux-headers-2.6-amd64 2.6.26+17
to be marke
Package: kvm
Version: 82+dfsg-1
Severity: serious
kvm versions from experimental cause serious problems with at least qcow2. When
installing Windows XP on a fresh image, not even the partition can be created.
On an existing image, kvm 82 causes serious corruptions in the disk image.
Using kvm 7
Package: mysql
Version: 5.0.32
Severity: critical
Justification: breaks unrelated software
Hi,
We use mysql on an encrypted partition (LUKS) and see the error roughly
once a month and this causes the entire application server tomcat/jdbc
to no being able to offer useful services anymore.
[9 Aug
Package: open-vm-source
Version: 2008.11.18-130226-1
Severity: serious
I have just updated a lenny system on an ESX host and wanted to rebuild the
open-vm-source modules. But compilation failed:
[...]
/usr/bin/make -C modules/linux/vmhgfs
Using 2.6.x kernel build system.
make[3]: Entering direct
Package: mhddfs
Version: 0.1.18-1
Severity: grave
Executing mhddfs using 'mhddfs /nmt/hdd1,/mnt/hdd2 /media/video -o
allow_other' gives the error message:
mhddfs: relocation error: mhddfs: symbol fuse_opt_insert_arg, version
FUSE_2.6 not defined in file libfuse.so.2 with link time reference
On Thu, Jan 22, 2009 at 02:35:55PM +0100, Harald Braumann wrote:
> > There are two search lines in your grub.cfg, and the logs you provided
> don't
> > make it clear which of them is causing the problem.
> > grubdbg-1.96%2B20080724-10.log refers to 249d254f-9ee3-4908-aec6-177
> which
> > is neith
Your message dated Thu, 22 Jan 2009 14:47:06 +
with message-id
and subject line Bug#511265: fixed in gnome-python-extras 2.19.1-3.1~lenny1
has caused the Debian Bug report #511265,
regarding FTBFS: (on lenny) gdl/gdl-icons.h header missing
to be marked as done.
This means that you claim that
Hi,
I've uploaded an NMU to unstable and tpu to fix this bug, patch (of the upload
to unstable) is attached.
Not sure if it would make sense to rise the build-dep. of libgdl in unstable
for future uploads as it would break backports.
Cheers,
Bernd
--
Bernd Zeimetz Deb
Your message dated Thu, 22 Jan 2009 13:47:03 +
with message-id
and subject line Bug#511265: fixed in gnome-python-extras 2.19.1-3.1
has caused the Debian Bug report #511265,
regarding FTBFS: (on lenny) gdl/gdl-icons.h header missing
to be marked as done.
This means that you claim that the pr
Package: rus-ispell
Version: 0.99g5-6
Severity: grave
Tags: patch
Hello again.
Unfortunatly we was not carefull enough with previous patch. sortkoi8r script
works as it should only in C locale (or may be some other latin-1). But you
built package not in clean environment. As a result sorting was
Processing commands for cont...@bugs.debian.org:
> severity 512371 grave
Bug#512371: biofox: not compatible with firefox in lenny !
Severity set to `grave' from `important'
> forwarded 512371 https://www.mozdev.org/bugs/show_bug.cgi?id=20475
Bug#512371: biofox: not compatible with firefox in lenn
Robert Millan wrote on 22.01.2009 13:51:49:
> On Wed, Oct 15, 2008 at 07:19:41PM +0200, Harald Braumann wrote:
> >
> > If I remove this stanza and then enter those commands at the grub
cmdline
> > one by one,
> > the crash occurs in the "search --fs-uuid ..." line.
>
> Hi Harald,
>
> There
Package: debtags
Version: 1.7.7
Severity: serious
gcc-4.3 4.3.2-4 uncovers invalid code in debtags.
see http://gcc.gnu.org/bugzilla/show_bug.cgi?id=38933
(this is the only regression seen in a test rebuild of lenny with GCC-4.3 from
unstable).
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ..
severity 512624 important
thanks
This doesn't make the package unusable, or mostly so.
Neil
--
i get an error... i forget what it is ... but definitely an error, well, maybe
a warning... or an informational message... but definitely an output
Verbatim quote from #debian, irc.freenode.net, Sat
Processing commands for cont...@bugs.debian.org:
> severity 512624 important
Bug#512624: typo3-dummy: Safe-Mode breaks access to javascript libraries
Severity set to `important' from `grave'
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system
severity 512626 normal
thanks
On Donnerstag, 22. Januar 2009, Christian Welzel wrote:
> The config set by apache.conf includes the wrong value for the
> sendmail_path php_value. Thereby sendmail does not accepts emails send by
> typo3 core.
As typo3 is not mainly a mail application, I think this
Processing commands for cont...@bugs.debian.org:
> severity 512626 normal
Bug#512626: typo3-dummy: typo3 cannot send emails
Severity set to `normal' from `grave'
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
(administrator,
Source: ganglia-monitor-core
Severity: grave
Tags: security patch
Hi,
the following CVE (Common Vulnerabilities & Exposures) ids were
published for ganglia-monitor-core.
CVE-2009-0241[0]:
| Stack-based buffer overflow in the process_path function in
| gmetad/server.c in Ganglia 3.1.1 allows remot
On Wed, Oct 15, 2008 at 07:19:41PM +0200, Harald Braumann wrote:
>
> If I remove this stanza and then enter those commands at the grub cmdline
> one by one,
> the crash occurs in the "search --fs-uuid ..." line.
Hi Harald,
There are two search lines in your grub.cfg, and the logs you provided
Package: ia32-libs-tools
Version: 11
Severity: grave
Justification: renders package unusable
The package doesn't install because of a post-installation script error.
Here is the output:
inspironjaime2:~# apt-get install ia32-apt-get
Reading package lists... Done
Building dependency tree
Reading s
Dear nautilus-python maintainers,
I intend to NMU nautilus-python to fix the following two bugs:
#512310 - does not load extensions on archs where int isn't the same as
Py_ssize_t
#512394 - nautilus freezes/crashes when extension calls file.get_vfs_file_info()
The debdiff is attached, are there
Processing commands for cont...@bugs.debian.org:
> reassign 512624 typo3-dummy 4.2.3-1
Bug#512624: typo3-dummy: Safe-Mode breaks access to javascript libraries
Bug reassigned from package `typo3-dummy' to `typo3-dummy'.
> thanks
Stopping processing here.
Please contact me if you need assistance.
Package: typo3-dummy
Version: 4.2.3-1
Severity: grave
Justification: renders package unusable
The config set by apache.conf includes the wrong value for the sendmail_path
php_value. Thereby sendmail does not accepts emails send by typo3 core.
-- System Information:
Debian Release: 5.0
APT prefe
reassign 512623 mysql-client
thanks
Hello Axel, you shouldn't report the bugs against non-existent binary package
names if you
want to receive the response from the maintainer. It seems you didn't even used
reportbug
utility, because version is not specified too.
However, I'm reassigning this b
Processing commands for cont...@bugs.debian.org:
> reassign 512623 mysql-client
Bug#512623: mysql: does not start (always crashes)
Warning: Unknown package 'mysql'
Bug reassigned from package `mysql' to `mysql-client'.
> thanks
Stopping processing here.
Please contact me if you need assistance.
Package: typo3-dummy
Version: 4.2.3
Severity: grave
Justification: renders package unusable
In PHP safe mode, the backend of typo3 cannot access the javascript
libaries. This is because these libraries are symlinked to /usr/share/...
but this directories are missing in the open_basedir setting.
-
Package: mysql
Severity: grave
Justification: renders package unusable
Starting "mysql" from the command line always results in "Illegal Instruction",
then execution terminates (of course). The
parameters seem not to change anything. The situation is the same with
"mysqldump". (I am trying to c
Processing commands for cont...@bugs.debian.org:
> found 512608 4.0.2+debian-5
Bug#512608: [SA33617] Typo3 Multiple Vulnerabilities
Bug marked as found in version 4.0.2+debian-5.
> found 512608 4.2.3-1
Bug#512608: [SA33617] Typo3 Multiple Vulnerabilities
Bug marked as found in version 4.2.3-1.
>
Package: openmpi
Version: 1.3-1
Severity: serious
--- Please enter the report below this line. ---
Hello
I just upgraded to openmpi 1.3-1. The compilation of my codes went fine.
The linking stage sometimes failed with
undefined reference to `MPI::Win::Set_errhandler(MPI::Errhandler const&)'
un
On Wed, 21 Jan 2009 08:33:38 +0100 Robert Luberda wrote:
> And in fact the page is not compressed
That is true, however I wonder why. When I rebuild the same source on
my Sid box, all manpages are correctly gziped. A binNMU should be
sufficient, but the package is not binNMU-able :(
> moreover i
The following message is a courtesy copy of an article
that has been posted to gmane.linux.debian.devel.release as well.
Lucas Nussbaum writes:
> During a rebuild of all packages in a lenny chroot, your package failed
> to build on i386.
Thanks for your report.
I tried to rebuild boxbackup on
(Putting back the bug in the loop, dropping cont...@…)
Reinhard Tartler (22/01/2009):
> > During a rebuild of all packages in a lenny chroot, your package
> > failed to build on i386.
>
> Thanks for your report.
>
> I tried to rebuild boxbackup on my machine, but succeeded without
> problems. T
forcemerge 512553 413428
The workaround of adding ipv6 to /etc/modules, as mentioned in #413428,
also solves this bug (#512553). So they presumably are the same bug.
Probably because of recent changes in Lenny's kernel or sshd, the ipv6
module is not loaded in time for the ifup -a command during
Processing commands for cont...@bugs.debian.org:
> forcemerge 512553 413428
Bug#512553: netbase: static configured ipv6 interface fails at boot
Bug#413428: ifupdown: fails to set static IPv6 addresses
Forcibly Merged 413428 512553.
> The workaround of adding ipv6 to /etc/modules, as mentioned in
Ok, I suppose it's my fault to have 32bit flash installed.
I removed old version and manually linked .so from /etc/alternatives.
With this flashplayer gmail became broken (iceweasel silently crashes)
although some other pages (youtube.com) opens fine.
On Thu, Jan 22, 2009 at 10:47 AM, Raphael Hert
Processing commands for cont...@bugs.debian.org:
> forcemerge 473055 512386
Bug#473055: laptop-mode-tools: failure to re-apply spindown settings on resume
from hibernate or suspend
Bug#512386: laptop-mode-tools=Fails to reapply hard disk settings after a
resume from hibernation
Bug#481766: pleas
forcemerge 473055 512386
thanks
Thanks for your bugreport.
On Tue, 20 Jan 2009, Alex Dănilă wrote:
> More search showed and already reported bug, #473055. Please merge but
> keep this severity tag to more than important. It has the potential to
> destroy a piece of hardware, I consider this v
77 matches
Mail list logo
