Package: fckeditor
Version: 1:2.6.2-1
Severity: grave
Tags: security lenny
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi,
the following CVE (Common Vulnerabilities & Exposures) ids were
published for fckeditor.
CVE-2009-2265[0]:
| Multiple directory traversal vulnerabilities in FCKeditor befo
On Mon, 6 Jul 2009 21:44:44 +0200 Thijs Kinkhorst wrote:
> > version 1:1.5.2-5 that I released to unstable is suitable for stable
> > aswell. Prior to this bugfix unstable and stable both contained
> > version 1:1.5.2-4. Attached is a patch with the fix. Do you want me to
> > build it for stable as
Hi,
> Now, however, using what is in unstable, ie
>
> Get:33 http://ftp.us.debian.org unstable/main libruby1.8 1.8.7.173-1 [1679kB]
> Get:34 http://ftp.us.debian.org unstable/main ruby1.8 1.8.7.173-1 [290kB]
> Get:35 http://ftp.us.debian.org unstable/main ruby 4.2 [20.6kB]
> Get:36 http://ftp.us
tags 527796 + patch
thanks
Add dependency coreutils instead of textuils in debian/control.
Elías
Julien Cristau writes:
> xprint support was removed from libXfont. We should add a Breaks:
> xprint to the libxfont1 package, as it doesn't look like xprint will be
> coming back.
Strictly speaking, shouldn't that have called for an soname bump?
--
Aaron M. Ucko, KB1CJC (amu at alum.mit.edu,
Your message dated Tue, 07 Jul 2009 01:54:57 +
with message-id
and subject line Bug#530271: fixed in ipplan 4.86a-7+lenny1
has caused the Debian Bug report #530271,
regarding CVE-2009-1732, CVE-2009-1733
to be marked as done.
This means that you claim that the problem has been dealt with.
If
tags 527734 + patch
thanks
Add dependency xutils-dev in debian/control
--
Elías
Your message dated Tue, 07 Jul 2009 03:46:22 +0200
with message-id <1246931182.4670.40.ca...@localhost>
and subject line Fixed by binNMUs
has caused the Debian Bug report #534770,
regarding libghc6-x11-xft-dev: dependency on libghc6-utf8-string-dev << 0.3.4+
to be marked as done.
This means that
Processing commands for cont...@bugs.debian.org:
> reopen 532119
Bug#532119: [hardware-monitor] Does not load
Bug reopened, originator not changed.
>
End of message, stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
(administrator, Debi
Package: dpkg-dev
Version: 1.15.3
Severity: serious
Justification: broken dependencies
Since the latest update of dpkg from 1.15.2 to 1.15.3, dpkg-gensymbols
produces broken symbols files. As an example I attached the
libc6.symbols file for -19, which whas generated using 1.15.3.
Severity serious
Torsten,
plexus-build-api is used only on modello 1.0+, so it looks like you
where using the wrong version of the sources. There was a
uscan --upstream-version 0
in debian/rules which always download the latest version of the sources,
regardless of the version given in the changelog, so that may
Luk Claes writes:
> Package: heirloom-mailx
> Version: 12.4-1
> Severity: serious
> Tags: patch
>
> Dear maintainer,
>
> I've prepared an NMU for heirloom-mailx (versioned as 12.4-1.1), but
> have not uploaded it yet. Please free to tell me if I should upload or
> let you take care of it.
You ma
Hi!
After upgrading to 185.18.14-1 starting X using gdm failed -- quite like
in message #20 (everything starts, logo flickers and then X dies). I was
able to start X using almost every way but gdm (startx, plain X server
etc) and gdm was the one to blame.
There is 10 second timeout before it ass
On Mon, Jul 06, 2009 at 10:36:15AM +0100, Dominic Hargreaves wrote:
> 1.26 (just uploaded to unstable) fixes what looks like a fairly serious
> security issue:
>
> v1.26 2009.07.03
> - SECURITY BUGFIX!
> fix Bug in verify_hostname_of_cert where it matched only the prefix for
> the hostname
On Mon, Jul 06, 2009 at 11:37:47PM +0300, Niko Tyni wrote:
> I think the problem is this:
>
> % openssl x509 -text -in certs/server-wildcard.pem|grep -A2 Validity
> Validity
> Not Before: Feb 22 08:06:33 2008 GMT
> Not After : Feb 21 08:06:33 2009 GMT
>
> Looking a
# Automatically generated email from bts, devscripts version 2.10.35lenny3
# via tagpending
#
# libio-socket-ssl-perl (1.16-1+lenny1) UNRELEASED; urgency=low
#
# * Disable tests which rely on expired test cert to fix FTBFS
#(closes: #536017)
#
package libio-socket-ssl-perl
tags 536017 + pend
Processing commands for cont...@bugs.debian.org:
> # Automatically generated email from bts, devscripts version 2.10.35lenny3
> # via tagpending
> #
> # libio-socket-ssl-perl (1.16-1+lenny1) UNRELEASED; urgency=low
> #
> # * Disable tests which rely on expired test cert to fix FTBFS
> #(close
Processing commands for cont...@bugs.debian.org:
> tag 536017 + pending
Bug#536017: libio-socket-ssl-perl: FTBFS in lenny
There were no tags set.
Tags added: pending
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
(administra
tag 536017 + pending
thanks
Some bugs are closed in revision 39430
by Dominic Hargreaves (dom)
Commit message:
* Disable tests which rely on expired test cert to fix FTBFS
(closes: #536017)
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscr
Processing commands for cont...@bugs.debian.org:
> # Automatically generated email from bts, devscripts version 2.10.35lenny3
> tags 535946 + pending
Bug#535946: libio-socket-ssl-perl: Partial hostname matching vulnerability
fixed in 1.26
Tags were: pending security
Tags added: pending
>
End of
tag 535946 + pending
thanks
Some bugs are closed in revision 39428
by Dominic Hargreaves (dom)
Commit message:
* Fix partial hostname matching security vulnerability (closes: #535946)
* Add myself to Uploaders
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a su
Processing commands for cont...@bugs.debian.org:
> tag 535946 + pending
Bug#535946: libio-socket-ssl-perl: Partial hostname matching vulnerability
fixed in 1.26
Tags were: security
Tags added: pending
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug track
Package: java-gcj-compat
Version: 1.0.80-5
Severity: serious
Tags: patch
Justification: FTBFS
Hi,
dpkg-dev now expects proper folding in (Build-|)Depends, so your package
now FTBFS:
| dpkg-checkbuilddeps: warning: can't parse dependency gcj-4.3 (>= 4.3.3)
[!hppa]
| ecj (>= 3.3.0)
| dpkg-checkbu
On Mon, Jul 06, 2009 at 09:20:59PM +0200, Salvatore Bonaccorso wrote:
> I "backported" the changes from 1.25 to 1.26 from unstable to the 1.16
> in Lenny:
Thanks, I'm preparing an update in the pkg-perl svn repository.
--
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from
Your message dated Mon, 6 Jul 2009 23:02:46 +0200
with message-id <200907062302.47824.th...@debian.org>
and subject line Re: Bug#535890: phpmyadmin: remote code injection via xss
vulnerability
has caused the Debian Bug report #535890,
regarding phpmyadmin: remote code injection via xss vulnerabil
Your message dated Mon, 6 Jul 2009 22:57:59 +0200
with message-id
and subject line Re: Bug#520775: libdoxia-sitetools-java: Invalid Conflicts
with libdoxia-java
has caused the Debian Bug report #520775,
regarding libdoxia-sitetools-java: Invalid Conflicts with libdoxia-java
to be marked as done
Processing commands for cont...@bugs.debian.org:
> tags 518446 + help
Bug#518446: doxia-sitetools: FTBFS: java.lang.reflect.InvocationTargetException
There were no tags set.
Tags added: help
>
End of message, stopping processing here.
Please contact me if you need assistance.
Debian bug trackin
Hi,
On Sun, Mar 22, 2009 at 8:58 PM, Damien Raude-Morvan wrote:
> I've successfuly built doxia-sitetools 1.0-alpha-11-3 in a sid chroot using
> two packages from experimental :
>
> * libmodello-java 1.0-alpha-21-1
> * libdoxia-java 1.0-alpha-11-2
>
> I think those packages should be uploaded to
Rafael Almeida wrote:
Package: ekiga
Version: 3.2.1~git20090515.9d0263-1
Severity: serious
Tags: sid
Ekiga is depending on libopal3.6.1, but the package is not currently
available on sid. However, there is a libopal3.6.3 which ekiga may
work with.
I am uploading ekiga with new ptlib/opal depen
Processing commands for cont...@bugs.debian.org:
> retitle 535709 "Missing dependency on package sharutils"
Bug#535709: console-setup: Missing dependency on uudecode
Changed Bug title to `"Missing dependency on package sharutils"' from
`console-setup: Missing dependency on uudecode'.
(By the way,
Package: ekiga
Version: 3.2.1~git20090515.9d0263-1
Severity: serious
Tags: sid
Ekiga is depending on libopal3.6.1, but the package is not currently
available on sid. However, there is a libopal3.6.3 which ekiga may
work with.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
Processing commands for cont...@bugs.debian.org:
> close 532362
Bug#532362: CVE-2009-0033 CVE-2009-0580 CVE-2009-0783 CVE-2009-0781: Apache
Tomcat 6 Multiple Vulnerabilities
'close' is deprecated; see http://www.debian.org/Bugs/Developer#closing.
Bug closed, send any further explanations to Giuse
On Mon, Jul 06, 2009 at 09:49:30PM +0200, Salvatore Bonaccorso wrote:
> Package: libio-socket-ssl-perl
> Version: 1.16-1
> Severity: serious
> Justification: FTBFS
>
> During trying to backport the bugfixes for the security bug #535946 I
> noticed that libio-socket-ssl-perl FTBFS on lenny.
>
> At
Your message dated Mon, 06 Jul 2009 19:54:46 +
with message-id
and subject line Bug#533361: fixed in xcftools 1.0.4-1+lenny1
has caused the Debian Bug report #533361,
regarding xcftools: 'xcf2pnm -C ... layer' crashes on some valid XCF files
to be marked as done.
This means that you claim th
I also have the 865G driver and am having problems with it.
But disabling DRI with Option "DRI" "False" in my xorg.conf lets me
run X without big problems (it is slow, but it runs at least, have you
guys tried this?).
Some people over at the #intel-gfx suggested that this was not a problem of
t
Processing commands for cont...@bugs.debian.org:
> tags 534595 pending
Bug#534595: samba-common-bin: Uninstallable on experimental
Tags were: pending patch
Tags added: pending
> tags 299433 pending
Bug#299433: smbd and nmbd should clean out their PID files when killed
gracefully
Tags were: fixed
Your message dated Mon, 6 Jul 2009 21:47:56 +0200
with message-id <20090706194756.gb14...@ngolde.de>
and subject line Re: [Secure-testing-team] Bug#536012: drupal6:
SA-CORE-2009-007 - Drupal core - Multiple vulnerabilities
has caused the Debian Bug report #536012,
regarding drupal6: SA-CORE-2009-
Package: libio-socket-ssl-perl
Version: 1.16-1
Severity: serious
Justification: FTBFS
During trying to backport the bugfixes for the security bug #535946 I
noticed that libio-socket-ssl-perl FTBFS on lenny.
Attached is my buildlog in a up lenny cowbuilder environment.
Salvatore
-- System Inform
Package: python-imaging-tk
Version: 1.1.6-3
Severity: grave
Justification: renders package unusable
On a fresh new installed debian (using netinst with testing/unstable repos
from the start), I get a crash when running the Duo card game
(http://launchpad.net/duo).
The crash seems to occur only on
Hi Håkan,
> version 1:1.5.2-5 that I released to unstable is suitable for stable
> aswell. Prior to this bugfix unstable and stable both contained
> version 1:1.5.2-4. Attached is a patch with the fix. Do you want me to
> build it for stable aswell?
Thank you for getting in touch with us. Judging
Processing commands for cont...@bugs.debian.org:
> # remove tag until patch ist really tested
> # not done yet
> tag 535946 - patch
Bug#535946: libio-socket-ssl-perl: Partial hostname matching vulnerability
fixed in 1.26
Tags were: patch security
Tags removed: patch
> thanks
Stopping processing
severity 535855 normal
thanks
On Mon, Jul 6, 2009 at 00:23, Fabrice Silva wrote:
> Le dimanche 05 juillet 2009 à 13:33 -0400, Kumar Appaiah a écrit :
>> Works for me, though.
> It also works for me on two others computers. I don't understand why
> this machine raise this error...
So, as you just
Processing commands for cont...@bugs.debian.org:
> severity 535855 normal
Bug#535855: ImportError: No module named _path
Severity set to `normal' from `grave'
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
(administrator, De
Processing commands for cont...@bugs.debian.org:
> found 536012 6.6-3lenny2
Bug#536012: drupal6: SA-CORE-2009-007 - Drupal core - Multiple vulnerabilities
Bug marked as found in version 6.6-3lenny2.
> --
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking sys
Processing commands for cont...@bugs.debian.org:
> unblock 477751 with 88010
Bug#88010: please consider catalog design change
Bug#477751: dh_installcatalogs: Don't readd catalog on every upgrade to the
catalog
Was blocked by: 88010
Blocking bugs of 477751 removed: 88010
> forcemerge 477751 88010
Processing commands for cont...@bugs.debian.org:
> tag 535946 + patch
Bug#535946: libio-socket-ssl-perl: Partial hostname matching vulnerability
fixed in 1.26
Tags were: security
Tags added: patch
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking
tag 535946 + patch
thanks
Hi
On Mon, Jul 06, 2009 at 10:36:15AM +0100, Dominic Hargreaves wrote:
> Package: libio-socket-ssl-perl
> Version: 1.24-1
> Severity: grave
> Tags: security
> Justification: user security hole
>
> 1.26 (just uploaded to unstable) fixes what looks like a fairly serious
>
Package: drupal6
Version: 6.12-1
Severity: critical
Tags: security
SA-CORE-2009-007 was reported on July 1, 2009; it is fixed in the new
upstream version 6.13.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=531386
Please note that the Drupal version in Lenny (6.6) is also vulnerable.
-- Syste
Your message dated Mon, 06 Jul 2009 18:47:06 +
with message-id
and subject line Bug#535435: fixed in drupal6 6.12-1.1
has caused the Debian Bug report #535435,
regarding [drupal6] SA-CORE-2009-007 - Drupal core - Multiple vulnerabilities
to be marked as done.
This means that you claim that t
Your message dated Mon, 06 Jul 2009 18:47:04 +
with message-id
and subject line Bug#535476: fixed in drupal5 5.18-1.1
has caused the Debian Bug report #535476,
regarding [drupal5] SA-CORE-2009-007 - Drupal core - Multiple vulnerabilities
to be marked as done.
This means that you claim that t
Hi,
attached is a patch for a 0-day NMU to fix this issue.
Cheers
Nico
--
Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0
For security reasons, all text in this mail is double-rot13 encrypted.
diff -u drupal5-5.18/debian/changelog drupal5-5.18/debian/changelog
--- drupal
Hi,
attached is a patch for a 0-day NMU to fix this issue.
Cheers
Nico
--
Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0
For security reasons, all text in this mail is double-rot13 encrypted.
diff -u drupal6-6.12/debian/changelog drupal6-6.12/debian/changelog
--- drupal
Processing commands for cont...@bugs.debian.org:
> tag 522211 + help
Bug#522211: initscripts: System doesn't boot when serial console and bootlogd
enabled
There were no tags set.
Tags added: help
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking s
tag 522211 + help
thanks
I need help from someone with knowledge about the bootlogd feature to
solve this issue. Please submit patches or information on how to
solve it.
Happy hacking,
--
Petter Reinholdtsen
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject
Processing commands for cont...@bugs.debian.org:
> fixed 529773 0.8.1-4
Bug#529773: libghc6-xmonad-dev can't be upgraded due to unsatisfiable
dependencies
Bug marked as fixed in version 0.8.1-4.
>
End of message, stopping processing here.
Please contact me if you need assistance.
Debian bug tr
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Alexander Reichle-Schmehl schrieb:
Hi,
> I talked to the GNOME maintainers, and they think the problem might be
> missing xfonts-100dpi or xfonts-75dpi packages. Can you confirm this? Has
> the working computer these packages installed while the oth
Apparently I managed to obtain more detail:
The bug comes from NFS and not iceweasel directly. I have a nis/nfs
account installed in the machine, a local user account and the root. I
checked with the local user account and iceweasel works.
I'll continue looking in to this but you might want to cha
Your message dated Mon, 06 Jul 2009 16:17:08 +
with message-id
and subject line Bug#535835: fixed in libdevel-nytprof-perl 2.10-2
has caused the Debian Bug report #535835,
regarding libdevel-nytprof-perl: FTBFS: libtest-simple-perl is a virtual package
to be marked as done.
This means that y
tag 535835 + pending
thanks
Some bugs are closed in revision 39414
by Gregor Herrmann (gregoa)
Commit message:
Add patch test_more.patch by Niko Tyni: allows to build with older
versions of Test::More; remove build dependency on libtest-simple-perl
>= 0.82; thanks to Kurt Roeckx for the bug rep
Processing commands for cont...@bugs.debian.org:
> tag 535835 + pending
Bug#535835: libdevel-nytprof-perl: FTBFS: libtest-simple-perl is a virtual
package
There were no tags set.
Tags added: pending
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug trackin
On Mon, 06 Jul 2009 10:41:08 +0300, Niko Tyni wrote:
> > > Please note that this sbuild bug was discussed and finally fixed in
> > > July 2008: #395271
> > So I guess you'll have to wait until all arches switch to the new
> > sbuild it that case. It's only in use on some arches.
> Agreed.
Let's
Processing commands for cont...@bugs.debian.org:
> clone 449429 -1
Bug#449429: dak: should this package be removed?
Bug 449429 cloned as bug 535986.
> reassign -1 ftp.debian.org
Bug#535986: dak: should this package be removed?
Bug reassigned from package `dak' to `ftp.debian.org'.
> retitle -1 R
clone 449429 -1
reassign -1 ftp.debian.org
retitle -1 RM: dak -- RoQA; old, unmaintained, 6 NMUs, unusable as-is
severity -1 normal
thanks
Given the current state of the package, and to save everybody's time (people
sending emails, people reading them, people ignoring them, etc) it would be
easi
Your message dated Mon, 06 Jul 2009 16:37:15 +0100
with message-id <4a521a2b.2080...@p10link.net>
and subject line re: Depends on GTK 1.2 and GLIB 1.2
has caused the Debian Bug report #515292,
regarding Depends on GTK 1.2 and GLIB 1.2
to be marked as done.
This means that you claim that the probl
Package: iceweasel
Version: 3.0.6-1
Severity: grave
Justification: renders package unusable
I am installing several new machines (such as processor intel core 2 quad
x86_64).
I did the standard netinst with a "Debian 5.0.2 amd" netinst CD.
When done I try to launch Iceweasel (3.0.6) from a normal
On Jul 6, 2009, at 17:43 , Tzafrir Cohen wrote:
I attach the patch from the bug report. It applies to our Lenny
package.
I have not checked any further.
I can confirm that the patch applies cleanly in Lenny and that the patch
indeed solves the problem (as reported and in the upstream issue
On Mon, Jul 06, 2009 at 03:44:02PM +0300, Fotos Georgiadis wrote:
>
> Recorded calls using MixMonitor() result in data loss,
> since the recordings are (recorded and) played back at high speed.
>
> You won't know of this data loss unless you try to recover
> one of the recordings (and then it's t
Hi!
Alexander Reichle-Schmehl schrieb:
>> I can start Xdialog on a different Lenny machine and it works nicely. Do
>> you have any suggestions?
> Do you know any differences between the working machine and the non working
> one? Especially regarding bug-buddy?
I talked to the GNOME maintainers,
Hi Julien,
Julien Cristau wrote:
xprint support was removed from libXfont.
I see. I guess I should work out why; there have obviously been some
developments that I have not been following carefully enough. (This
machine has been in "not broken don't fix it" mode for a long time, and
now w
Hi Stephan!
Stephan Fuhrmann schrieb:
>> I'm sorry, but I fail to reproduce your problem here. Xdialog works in
>> my local etch chroot without any problems with out without having
> Etch? I'm running Lenny!
Sorry, my fault: Used the right version but wrote the wrong one.
>> ldd $(which Xdial
Processing commands for cont...@bugs.debian.org:
> reopen 480899
Bug#480899: incomplete split prevents installation of cdebconf-gtk
Bug is already open, cannot reopen.
> found 480899 0.143
Bug#480899: incomplete split prevents installation of cdebconf-gtk
Bug marked as found in version 0.143.
>
Package: asterisk
Version: 1:1.4.21.2~dfsg-3
Severity: grave
Tags: fixed-upstream
Justification: causes non-serious data loss
Recorded calls using MixMonitor() result in data loss,
since the recordings are (recorded and) played back at high speed.
You won't know of this data loss unless you try t
also sprach Chet Ramey [2009.07.03.1952 +0200]:
> There is, in fact a de facto standard, but the bash4 behavior is
> what the Bourne and Korn shells have always done. In fact, the only
> way Martin's statement is true is if "all other shells" means "dash",
> since that's the only other shell I fo
Your message dated Mon, 06 Jul 2009 10:02:10 +
with message-id
and subject line Bug#530271: fixed in ipplan 4.91a-1.1
has caused the Debian Bug report #530271,
regarding CVE-2009-1732, CVE-2009-1733
to be marked as done.
This means that you claim that the problem has been dealt with.
If this
Your message dated Mon, 06 Jul 2009 10:17:06 +
with message-id
and subject line Bug#525722: fixed in spout 1.3-2
has caused the Debian Bug report #525722,
regarding spout: Segfaults shortly after starting to play
to be marked as done.
This means that you claim that the problem has been dealt
Hi
Please find the NMU patch attached.
Cheers
Steffen
diff -u ipplan-4.91a/debian/changelog ipplan-4.91a/debian/changelog
--- ipplan-4.91a/debian/changelog
+++ ipplan-4.91a/debian/changelog
@@ -1,3 +1,13 @@
+ipplan (4.91a-1.1) unstable; urgency=high
+
+ * Non-maintainer upload by the security te
Your message dated Mon, 06 Jul 2009 09:33:37 +
with message-id
and subject line Bug#535940: fixed in geoclue 0.11.1-5
has caused the Debian Bug report #535940,
regarding geoclue pull glib 1.2 as build-dep
to be marked as done.
This means that you claim that the problem has been dealt with.
I
Your message dated Mon, 06 Jul 2009 09:36:15 +
with message-id
and subject line Bug#535676: fixed in loop-aes-utils 2.15.1~rc1-2
has caused the Debian Bug report #535676,
regarding loop-aes-utils: FTBFS: ncurses not found
to be marked as done.
This means that you claim that the problem has b
Processing commands for cont...@bugs.debian.org:
> found 535946 1.24-1
Bug#535946: libio-socket-ssl-perl: Partial hostname matching vulnerability
fixed in 1.26
Bug marked as found in version 1.24-1.
> found 535946 1.16-1
Bug#535946: libio-socket-ssl-perl: Partial hostname matching vulnerability
Package: libio-socket-ssl-perl
Version: 1.24-1
Severity: grave
Tags: security
Justification: user security hole
1.26 (just uploaded to unstable) fixes what looks like a fairly serious
security issue:
v1.26 2009.07.03
- SECURITY BUGFIX!
fix Bug in verify_hostname_of_cert where it matched only t
Hi,
* Adam Majer [2009-07-06 05:49]:
> Michael S. Gilbert wrote:
> > package: rails
> > version: 1.1.6-3
> > severity: serious
> > tags: security
> >
> > hello,
> >
> > it has been found that rails is vulnerable to a password bypass [1]. this
> > will be
> > fixed in upstream version 2.3.3.
>
Processing commands for cont...@bugs.debian.org:
> tag 535940 pending
Bug#535940: geoclue pull glib 1.2 as build-dep
There were no tags set.
Tags added: pending
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
(administrator,
tag 535940 pending
thanks
Hello,
Bug #535940 reported by you has been fixed in the Git repository. You can
see the changelog below, and you can check the diff of the fix at:
http://git.debian.org/?p=collab-maint/geoclue.git;a=commitdiff;h=dc6c0ba
---
commit dc6c0ba9d203734a0aaf8954729a08dd2
Processing commands for cont...@bugs.debian.org:
> severity 535941 important
Bug#535941: linux-image-2.6.26-2-xen-686: domU crashes daily
Severity set to `important' from `grave'
>
End of message, stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system adm
Processing commands for cont...@bugs.debian.org:
> tags 535676 + pending
Bug#535676: loop-aes-utils: FTBFS: ncurses not found
There were no tags set.
Tags added: pending
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
(admini
On Mon, Jul 06, 2009 at 09:40:48AM +0200, Sylvain Le Gall wrote:
> Patch has already been applied for sid version (3.0.1-2), migration to
> lenny is blocked by current OCaml 3.11.1 transition.
^
Errata corrige. Migration to *squeeze* (i.e., testing) is currently
blocked by the transition. U
Package: linux-image-2.6.26-2-xen-686
Version: 2.6.26-17
Severity: grave
Justification: renders package unusable
domU crashes randomly...
I have annother Lenny Xen-Hostsystem with 2.6.18-6-xen-686 dom0-kernel
(from etch) and everything works perfect. Both systems won't work with
2.6.26-2-xen-68
Your message dated Mon, 06 Jul 2009 07:48:13 +
with message-id
and subject line Bug#535276: fixed in petsc 3.0.0.dfsg-5.1
has caused the Debian Bug report #535276,
regarding FTBFS with new dpkg-dev
to be marked as done.
This means that you claim that the problem has been dealt with.
If this
Hello,
On Sun, Jul 05, 2009 at 07:38:51PM -0400, Michael S. Gilbert wrote:
> package: camlimages
> version: 2.20-8
> severity: serious
> tags: security
>
> hello,
>
> camlimages is vulnerable to several integer overflows [1]. this has
> not yet been fixed upstream, but has been addressed by red
On Sun, Jul 05, 2009 at 08:57:13PM +0200, Kurt Roeckx wrote:
> On Sun, Jul 05, 2009 at 07:21:05PM +0200, gregor herrmann wrote:
> > On Sun, 05 Jul 2009 17:33:05 +0200, Kurt Roeckx wrote:
> >
> > > > So if I see it corrctly, perl-modules should not stop "providing"
> > > > libtest-simple-perl. Thu
Processing commands for cont...@bugs.debian.org:
> tags 535276 + patch
Bug#535276: FTBFS with new dpkg-dev
Tags were: patch
Tags added: patch
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking system administrator
(administrator, Debian Bugs databas
tags 535276 + patch
thanks
Hi,
Attached is the diff for my petsc 3.0.0.dfsg-5.1 NMU.
diff -u petsc-3.0.0.dfsg/debian/control petsc-3.0.0.dfsg/debian/control
--- petsc-3.0.0.dfsg/debian/control
+++ petsc-3.0.0.dfsg/debian/control
@@ -5,10 +5,10 @@
Uploaders: "Adam C. Powell, IV"
XS-DM-Upload-Al
Package: geoclue
Severity: serious
Version: 0.11.1-4
Hi
geoclue pulls glib 1.2 as build dep.
libglib-dev should be replaced by libglib2.0-dev
Regards
Laurent Bigonville
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact lis
On Sun, Jul 05, 2009 at 07:38:51PM -0400, Michael S. Gilbert wrote:
> package: camlimages
> version: 2.20-8
> severity: serious
> tags: security
>
> hello,
>
> camlimages is vulnerable to several integer overflows [1]. this has
> not yet been fixed upstream, but has been addressed by redhat [2].
Processing commands for cont...@bugs.debian.org:
> # Automatically generated email from bts, devscripts version 2.9.26etch2
> tags 533983 - patch
Bug#533983: gnome-swallow: FTBFS: gnome-swallow.c:23:36: error:
libgnomeui/gnome-about.h: No such file or directory
Tags were: squeeze sid patch
Tags r
Hi Pavel,
I am not sure what's the best way to solve this issue.
I guess we can make a GConf schema registration scripts for the
package. But it seems to me that only stardict-gnome can be benefit by
the script and stardict-gtk doesn't.
Does anyone has better soultion than completely disable the
96 matches
Mail list logo
