Package: phpmyadmin
Version: 4:2.11.8.1-5+lenny1
Severity: critical
Tags: security
Justification: root security hole
Cross-site scripting (XSS) vulnerability allows remote attackers to inject
arbitrary web script or HTML via a crafted MySQL table name.
SQL injection vulnerability allows remote at
Package: libghc6-fastcgi-prof
Version: 3001.0.2.2-1
Severity: serious
libghc6-fastcgi-prof depends on libgch6-fastcgi-dev, rather than
libghc6-fastcgi-dev as it should. This makes it uninstallable.
- Josh Triplett
-- System Information:
Debian Release: squeeze/sid
APT prefers unstable
APT p
Package: lvm2
Version: 2.02.53-2
Severity: critical
Justification: breaks the whole system
Hello,
My computer failed to boot this morning because lvm2 failed to create
/dev//* symlinks on (read-only) /. It seems that starting
"checkroot" before "lvm2" fixed the problem.
Best regards,
--
Stéph
Here is the fix:
cd /usr/share/perl/5.10.0
cp -R * ../5.10
apt-get install zoneminder
Installation finishes OK after that, no problems.
On Fri, Oct 16, 2009 at 12:35 PM, Lucas Nussbaum
wrote:
> During a rebuild of all packages in sid, your package failed to build on
> amd64.
[msg snipped]
>> applying patch 06_rebuild-r to ./ ...* installing *source* package 'TeXmacs'
>> ...
>> ** R
>> ** demo
>> ** preparing package for lazy loa
The fix does not work for me. dselect behaves the same way as it did
with 1.15.4.1.
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Christopher Burns wrote:
Hey Alexis,
I've Cc'd Peter Green on this email. He posted the bug on the debian build.
Sorry for not responding sooner, I must have missed the mail (I spotted
it while having another poke through the debian rc bugs list)
I'm just doing flyby investigation/fix att
It seems this bug only happens when building with arch indep packages.
Building only arch specific packages works fine (hence why this bug does
not show up on debian buildds)
there are two possible fixes I can see, the easy one and the good one
The easy one is to add foomatic-db-engine to buil
Package: rcalc
Version: 0.5.0-1.3
Severity: serious
Justification: FTBFS, no upstream release since 2005, many alternatives
I observe that rcalc seems to have some problems:
* last 3 uploads were NMUs
* fails to build from source (missing dependency on libglade2, but when that's
fixed, the GNOM
Package: xorg
Version: 1:7.4+4
Severity: critical
Justification: breaks unrelated software
Today I upgraded sid (i.e., "from sid to sid") after having being about one
month away from my computer. After rebooting, the boot process complaint
that the root device was damaged, but fsck gave an error a
On Thu, 16 Apr 2009 at 21:33:59 -0700, Jorgen Cederlof wrote:
> Package: whirlpool
> Version: 1-2
> Severity: grave
> Tags: patch
> Justification: renders package unusable
Ping? This RC bug has been marked pending for more than 6 months, and a
hashing utility that generates the wrong hashes is pre
On Fri, 09 Oct 2009 at 13:02:31 -0400, Barry deFreese wrote:
> ssed seems to build/run fine built with gcc-4.3/4.4.
For what it's worth, Ubuntu also seem to patch ssed to use their standard gcc.
Also, debian/changelog indicates that 4.1 is only forced because 4.0
miscompiled ssed; now that 4.0 is
Hi!
Seeing that this bug is marked fixed in util-linux/2.16.1-4 I tried to
reproduce it and failed.
I rebooted my box twice, then simulated a crash (via alt-sysrq s u o)
twice and rebooted once again. Hardware clock was ok every time.
Note that I didn't have a way to reliably reproduce this befo
For some reason, I managed to avoid actually changing the Build-Depends
when building. I did test the build in a clean chroot, but I must have
subsequently discarded that. *shrug* Thanks to Kurt Roeckx.
Anyway, I am about to upload 3.2.2~pre1-1.2. The associated changelog
entry is:
lsb-build-ba
found 549801 0.4.62
thanks
This bug seems to have been reintroduced in sid.
chmod 0755 debian/python-markdown/usr/lib/`pyversions
-d`/site-packages/markdown.py
chmod: cannot access
`debian/python-markdown/usr/lib/python2.5/site-packages/markdown.py': No
such file or directory
make: *** [inst
Processing commands for cont...@bugs.debian.org:
> found 549801 0.4.62
Bug #549801 {Done: Piotr Ożarowski } [cdbs] python-markdown:
FTBFS: chmod: cannot access
`debian/python-markdown/usr/lib/python2.5/site-packages/markdown.py': No such
file or directory
Bug Marked as found in versions cdbs/0
Processing commands for cont...@bugs.debian.org:
> found 551949 4:2.9.1.1-11
Bug #551949 {Done: Michal ÄihaÅ } [phpmyadmin] phpmyadmin:
Denial of Service Attack through setup.php
Bug #535044 {Done: Michal ÄihaÅ } [phpmyadmin] phpmyadmin:
PHPMyAdmin seems to be vulnerable to some code injecti
extracted from 7.62
diff -rpU10 nginx-0.7.61/src/http/ngx_http_parse.c nginx-0.7.62/src/http/ngx_http_parse.c
--- nginx-0.7.61/src/http/ngx_http_parse.c 2009-04-23 18:38:59.0 +0200
+++ nginx-0.7.62/src/http/ngx_http_parse.c 2009-09-07 13:11:24.0 +0200
@@ -732,33 +732,33 @@ ngx_http_
reassign 552163 nvidia-glx
severity 552163 important
kthxbye
On Fri, Oct 23, 2009 at 22:16:56 +0200, Fabrizio Regalli wrote:
> Package: compiz
> Version: 0.8.2-6
> Severity: grave
>
> compiz --replace give me this message:
>
> Checking for Xgl: not present.
> xset q doesn't reveal the location
Processing commands for cont...@bugs.debian.org:
> reassign 552163 nvidia-glx
Bug #552163 [compiz] compiz does not work with nvidia driver
Bug reassigned from package 'compiz' to 'nvidia-glx'.
Bug No longer marked as found in versions compiz/0.8.2-6.
> severity 552163 important
Bug #552163 [nvidia
Your message dated Fri, 23 Oct 2009 19:47:10 +
with message-id
and subject line Bug#533783: fixed in libcomplearn 1.1.5-1.1
has caused the Debian Bug report #533783,
regarding libcomplearn: non-standard gcc/g++ used for build (gcc-4.2)
to be marked as done.
This means that you claim that the
Package: compiz
Version: 0.8.2-6
Severity: grave
compiz --replace give me this message:
Checking for Xgl: not present.
xset q doesn't reveal the location of the log file. Using
fallback /var/log/Xorg.0.log
Detected PCI ID for VGA: 01:00.0 0300: 10de:0191 (rev a2) (prog-if 00
[VGA controller])
C
Processing commands for cont...@bugs.debian.org:
> found 552035 0.6.32-3+lenny2
Bug #552035 [nginx] there is null pointer dereference in nginx in debian
etch/lenny
Bug Marked as found in versions nginx/0.6.32-3+lenny2.
>
End of message, stopping processing here.
Please contact me if you need ass
Processing commands for cont...@bugs.debian.org:
> found 552035 0.6.32-3
Bug #552035 [nginx] there is null pointer dereference in nginx in debian
etch/lenny
Bug Marked as found in versions nginx/0.6.32-3.
> tags 552035 security
Bug #552035 [nginx] there is null pointer dereference in nginx in deb
Arun SAG wrote:
> Hi,
> Here is how i reproduced the error/bug:
> http://sagarun.fedorapeople.org/misc/debianbug.txt? ( error in line 568 )
Sorry, I thought you add opened a new bug. I hadn't realised that you
were commenting on an old bug.
Peter
--
To UNSUBSCRIBE, email to debian-bugs-rc-
Your message dated Fri, 23 Oct 2009 18:32:08 +
with message-id
and subject line Bug#432143: fixed in gnus 5.11+v0.10.dfsg-1
has caused the Debian Bug report #432143,
regarding depend on emacs22, not gone emacs-snapshot
to be marked as done.
This means that you claim that the problem has been
Your message dated Fri, 23 Oct 2009 18:32:08 +
with message-id
and subject line Bug#432644: fixed in gnus 5.11+v0.10.dfsg-1
has caused the Debian Bug report #432644,
regarding gnus: fix for emacs22
to be marked as done.
This means that you claim that the problem has been dealt with.
If this i
Your message dated Fri, 23 Oct 2009 18:32:08 +
with message-id
and subject line Bug#432644: fixed in gnus 5.11+v0.10.dfsg-1
has caused the Debian Bug report #432644,
regarding depend on emacs22, not gone emacs-snapshot
to be marked as done.
This means that you claim that the problem has been
Your message dated Fri, 23 Oct 2009 18:32:08 +
with message-id
and subject line Bug#432143: fixed in gnus 5.11+v0.10.dfsg-1
has caused the Debian Bug report #432143,
regarding gnus: fix for emacs22
to be marked as done.
This means that you claim that the problem has been dealt with.
If this i
Package: python-setuptools
Version: 0.6.4-1
Severity: grave
Justification: renders package unusable
Many packages FTBFS with the current version of python-setuptools,
whereas they build fine while with 0.6c9-2.
Example:
$ apt-get source mako
[snip]
dpkg-source: info: extracting mako in mako-0
Your message dated Fri, 23 Oct 2009 17:02:06 +
with message-id
and subject line Bug#549734: fixed in davfs2 1.4.3-1
has caused the Debian Bug report #549734,
regarding davfs2: FTBFS: configure: error: could not find neon
to be marked as done.
This means that you claim that the problem has bee
Richard Atterer wrote:
> > Since CVE-2009-2625 doesn't allow code injection, but only DoS and given
> > that libwww in oldstable is only used by wmweather, I think we can ignore
> > it, unless Nico wants to work on an update?
>
> Well, I've already prepared new versions of the packages, althou
Processing commands for cont...@bugs.debian.org:
> # Automatically generated email from bts, devscripts version 2.10.35lenny7
> tags 541307 + pending
Bug #541307 {Done: maximilian attems } [linux-2.6] agp/intel:
gpu lockups on 865G
Added tag(s) pending.
>
End of message, stopping processing here.
Processing commands for cont...@bugs.debian.org:
> # Automatically generated email from bts, devscripts version 2.10.35lenny7
> tags 541630 + pending
Bug #541630 {Done: maximilian attems }
[linux-image-2.6.30-1-686] r128: Missing initialisation tests; missing firmware
or deliberate attack can le
Processing commands for cont...@bugs.debian.org:
> tags 545834 + patch
Bug #545834 [src:ivtools] ivtools: FTBFS: On 64 bit arches: error: cast from
'void*' to 'osboolean' loses precision
Added tag(s) patch.
>
End of message, stopping processing here.
Please contact me if you need assistance.
De
Processing commands for cont...@bugs.debian.org:
> # Automatically generated email from bts, devscripts version 2.10.35lenny7
> tags 542551 + pending
Bug #542551 {Done: maximilian attems }
[linux-image-2.6.30-1-686] linux-image-2.6.30-1-686: System lockup (kernel
freeze, soft lockup) on dual (mu
Hi,
Here is how i reproduced the error/bug:
http://sagarun.fedorapeople.org/misc/debianbug.txt ( error in line 568 )
Thanks,
--
SAGA
Processing commands for cont...@bugs.debian.org:
> tags 520724 +patch
Bug #520724 [snmpd] snmpd: fails to set the group (gid), this will be a
security problem in some configurations
Added tag(s) patch.
>
End of message, stopping processing here.
Please contact me if you need assistance.
Debian
I've attached a patch that solves the problem by creating a group
named snmp. It's my first patch ever for Debian so please be gentle...
but also cautious.
Alex
diff -u net-snmp-5.4.1~dfsg/debian/snmpd.postrm net-snmp-5.4.1~dfsg/debian/snmpd.postrm
--- net-snmp-5.4.1~dfsg/debian/snmpd.postrm
+++ n
Processing commands for cont...@bugs.debian.org:
> forwarded 545834 ivtools-de...@lists.sourceforge.net
Bug #545834 [src:ivtools] ivtools: FTBFS: On 64 bit arches: error: cast from
'void*' to 'osboolean' loses precision
Set Bug forwarded-to-address to 'ivtools-de...@lists.sourceforge.net'.
> than
forwarded 545834 ivtools-de...@lists.sourceforge.net
thanks
On Wed, Oct 21, 2009 at 07:16:08PM +0100, Barak A. Pearlmutter wrote:
> > Source: ivtools ... intptr_t and uintptr_t are c99 standard types
> > ... I have an NMU ready ...
>
> Nice patch. I'm not QA but I am a DD. And an avid idraw/dra
All was well until this bit:
Setting up zoneminder (1.24.2-1) ...
Starting ZoneMinder: Can't locate ZoneMinder.pm in @INC (@INC contains:
/usr/local/share/perl/5.10.0 /etc/perl /usr/local/lib/perl/5.10.1
/usr/local/share/perl/5.10.1 /usr/lib/perl5 /usr/share/perl5
/usr/lib/perl/5.10 /usr/share/per
Processing commands for cont...@bugs.debian.org:
> forcemerge 550704 552056
Bug#550704: grub-pc - Needs to handle symlinks in /dev/mapper
Bug#552056: Unable to upgrade grub-pc to 1.97~beta4-1: grub-probe can't find a
device for /
Forcibly Merged 550704 552056.
> thanks
Stopping processing here.
forcemerge 550704 552056
thanks
Am Freitag, den 23.10.2009, 07:51 -0700 schrieb Daniel Burrows:
> On Fri, Oct 23, 2009 at 10:36:02AM +0200, Felix Zielcke
> was heard to say:
> > Am Donnerstag, den 22.10.2009, 20:06 -0700 schrieb Daniel Burrows:
> > Is your /dev/mapper/emurlahn-root a symlink to s
Package: qtiplot
Version: 0.9.7.8-1
Justification: renders package unusable
Severity: grave
*** Please type your report below this line ***
qtiplot died silently with a core dump at startup on my system
previous versions were perfectly working (debian/stable)
-- System Information:
Debian Releas
Hi,
I can't reproduce this problem with Proftpd as server (tried gftp from sid
and lenny).
Corrupted binary files suggest that you maybe transfer the files in ascii
mode. There is a checkbox to force ascii transfer in gftp and maybe you
activated this?
Sven
--
They're the cowards We are rebels
We
On Fri, Oct 23, 2009 at 10:36:02AM +0200, Felix Zielcke was
heard to say:
> Am Donnerstag, den 22.10.2009, 20:06 -0700 schrieb Daniel Burrows:
> Is your /dev/mapper/emurlahn-root a symlink to some /dev/dm-X device?
> If so you need to run `update-initramfs -c -t -k all' and if you don't
> want to
Processing commands for cont...@bugs.debian.org:
> limit source avifile
Limiting to bugs with field 'source' containing at least one of 'avifile'
Limit currently set to 'source':'avifile'
> tags 227408 + pending
Bug #227408 [avifile] Document ffmpeg patent issues
Added tag(s) pending.
> tags 5425
Processing commands for cont...@bugs.debian.org:
> tags 550306 + patch pending
Bug #550306 [asymptote] FTBFS: mv: cannot move
`debian/asymptote/usr/share/doc/asymptote/examples'
Added tag(s) pending and patch.
> tags 552103 + pending
Bug #552103 [asymptote-doc] asymptote-doc: examples missing
Add
In data venerdì 23 ottobre 2009 15:27:27, Lisandro Damián Nicanor Pérez Meyer
ha scritto:
: > tag 552094 moreinfo unreproducible
> The marble plugin is installed by libmarble-dev. Could you please remove
> this package and try to start qt designer again?
Please look this backstrace:
#0 0x41fc
Processing commands for cont...@bugs.debian.org:
> tag 552094 moreinfo unreproducible
Bug #552094 [qt4-designer] [qt4-designer] Crash on Marble plugins loading
Added tag(s) unreproducible and moreinfo.
> thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracki
tag 552094 moreinfo unreproducible
thanks
On Friday 23 October 2009 08:14:11 Kbyte wrote:
[snip]
> designer-qt4 doesn't start because the loading of marble plugins fails.
>
> Kde4 packages are at version 4:4.3.2-1
I can't reproduce the fail in my system, but if you help me, we may get to the
Your message dated Fri, 23 Oct 2009 12:45:03 +
with message-id
and subject line Bug#552033: fixed
has caused the Debian Bug report #552033,
regarding RM: w3c-libwww libwww-doc -- ROM; Removal scheduled long ago;
security issues
to be marked as done.
This means that you claim that the problem
severity 552088 normal
stop
On Fri, Oct 23, 2009 at 11:30:26AM +0200, Dennis Leeuw wrote:
> Package: linux-image-2.6-686
> Version: 2.6.26+17+lenny1
> Severity: grave
> Justification: renders package unusable
not even remotely.
> I have a:
> [ 256.620087] ath5k phy1: Atheros AR5213A chip found
Processing commands for cont...@bugs.debian.org:
> severity 552088 normal
Bug #552088 [linux-image-2.6-686] linux-image-2.6-686: ath5k phy1: noise floor
calibration timeout
Severity set to 'normal' from 'grave'
> stop
Stopping processing here.
Please contact me if you need assistance.
Debian b
Your message dated Fri, 23 Oct 2009 10:47:57 +
with message-id
and subject line Bug#551971: fixed in eglibc 2.10.1-2
has caused the Debian Bug report #551971,
regarding at: Segfaults when trying to execute task
to be marked as done.
This means that you claim that the problem has been dealt wi
Package: qt4-designer
Version: 4:4.5.3-4
Severity: serious
--- Please enter the report below this line. ---
designer-qt4 doesn't start because the loading of marble plugins fails.
Kde4 packages are at version 4:4.3.2-1
--- System information. ---
Architecture: i386
Kernel: Linux 2.6.31.2-
Your message dated Fri, 23 Oct 2009 10:47:57 +
with message-id
and subject line Bug#551885: fixed in eglibc 2.10.1-2
has caused the Debian Bug report #551885,
regarding cron: segfaults happening
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is n
Your message dated Fri, 23 Oct 2009 10:47:57 +
with message-id
and subject line Bug#552010: fixed in eglibc 2.10.1-2
has caused the Debian Bug report #552010,
regarding libc6: After upgrade many applications become unusable
to be marked as done.
This means that you claim that the problem has
Package: trousers
Version: 0.3.1-10
Severity: serious
Hello,
trousers does not seem to work for me, so I want to purge it. But
purging trousers does not work:
# dpkg --purge trousers
(Reading database ... 264922 files and directories currently installed.)
Removing trousers ...
Stopping Trusted C
Package: linux-image-2.6-686
Version: 2.6.26+17+lenny1
Severity: grave
Justification: renders package unusable
I have a:
[ 256.620087] ath5k phy1: Atheros AR5213A chip found (MAC: 0x59, PHY:
0x43)
[ 256.620091] ath5k phy1: RF5112A multiband radio found (0x36)
The module ath5k when inserted dur
Processing commands for cont...@bugs.debian.org:
> tags 549886 + patch
Bug #549886 [src:glusterfs] can't compile against berkeley DB 4.8
Added tag(s) patch.
> tags 549854 + patch
Bug #549854 [src:glusterfs] glusterfs: FTBFS: bdb-ll.c:966: error:
'DB_LOG_AUTOREMOVE' undeclared (first use in this f
tags 549886 + patch
tags 549854 + patch
tags 544433 + patch
thanks
This patch fixes building against DB 4.8 (it should apply over 2.0.4 as
well as over 2.0.7 for the Debian 2.0.4 packaging ports fine), among a
few other details.
The salient point is this:
+-#if (DB_VERSION_MAJOR == 4 &&
Processing commands for cont...@bugs.debian.org:
> unarchive 429339
Bug #429339 {Done: Francois Marier } [moodle] Needs to use
libphp-phpmailer
Unarchived Bug 429339
> severity 429339 normal
Bug #429339 {Done: Francois Marier } [moodle] Needs to use
libphp-phpmailer
Severity set to 'normal' from
Package: heimdal-docs
Version: 1.2.e1.dfsg.1-3
Severity: serious
Tags: patch
$ dpkg -c heimdal-docs_1.2.e1.dfsg.1-3_all.deb | grep info/dir.gz
-rw-r--r-- root/root 428 2009-10-21 01:46 ./usr/share/info/dir.gz
The dir.gz file should not be there. This is very bad because (among
other things)
Processing commands for cont...@bugs.debian.org:
> found 533347 1.0.2-3
Bug #533347 [wireshark] wireshark: new upstream version (1.0.8) available with
security fixes
Bug Marked as found in versions wireshark/1.0.2-3.
>
End of message, stopping processing here.
Please contact me if you need assis
Processing commands for cont...@bugs.debian.org:
> tags 549180 pending
Bug #549180 [gnome-panel] gnome-panel: Does not start anymore. CRITICAL **:
panel_multiscreen_x: assertion `monitor >= 0 && monitor < monitors [n_screen]'
failed
Added tag(s) pending.
>
End of message, stopping processing her
Am Donnerstag, den 22.10.2009, 20:06 -0700 schrieb Daniel Burrows:
> Package: grub-pc
> Version: 1.97~beta4-1
> Severity: serious
>
> The error I get is:
>
> Setting up grub-pc (1.97~beta4-1) ...
> grub-probe: error: cannot find a device for /.
>
> My / is just a normal LVM partition on this
Your message dated Fri, 23 Oct 2009 07:58:51 +
with message-id
and subject line Bug#531536: fixed in kallery 1.2.0-4
has caused the Debian Bug report #531536,
regarding kallery: fails to install on upgrade
to be marked as done.
This means that you claim that the problem has been dealt with.
I
On Fri, Oct 23, 2009 at 05:36:52AM +0800, Paolo Scarabelli wrote:
> I couldn't find any debugging symbols package for universalindentgui.
> Please, let me know where I can find them and if I need to install
> additional debug packages.
Did you see the link in my mail? It has instructions how to re
Processing commands for cont...@bugs.debian.org:
> # Fri Oct 23 07:03:22 UTC 2009
> # Tagging as pending bugs that are closed by packages in NEW
> # http://ftp-master.debian.org/new.html
> #
> # Source package in NEW: libnet-tftpd-perl
> tags 551817 + pending
Bug #551817 [wnpp] ITP: libnet-tftpd-p
On 10/23/2009 12:05 AM, Andreas Henriksson wrote:
> Hello!
>
> On Thu, Oct 22, 2009 at 02:36:52PM -0700, Daniel Moerner wrote:
>> You're absolutely right, thanks for pointing this out. I updated the
>> patch in this email.
>>
>
> Thanks.
>
>> diff -u gksu-polkit-0.0.1/debian/changelog gksu-polki
Package: snort-mysql
Version: 2.8.4.1-4+b1
Severity: grave
Justification: renders package unusable
hello friends,
thanks for providing us snort.
a problem with last version i've installed:
snort is starting in foreground (even though by start-stop-daemon).
-- System Information:
Debian Release
Hello!
On Thu, Oct 22, 2009 at 02:36:52PM -0700, Daniel Moerner wrote:
> You're absolutely right, thanks for pointing this out. I updated the
> patch in this email.
>
Thanks.
> diff -u gksu-polkit-0.0.1/debian/changelog gksu-polkit-0.0.1/debian/changelog
> --- gksu-polkit-0.0.1/debian/changelog
Your message dated Fri, 23 Oct 2009 07:02:11 +
with message-id
and subject line Bug#547738: fixed in tftp-hpa 5.0-7
has caused the Debian Bug report #547738,
regarding FTBFS: dh: unable to load addon quilt
to be marked as done.
This means that you claim that the problem has been dealt with.
I
75 matches
Mail list logo
