Bug#584193: smf-utils and denemo: error when trying to install together

There also is a clash with the dev packages: Package: libsmf-dev,denemo Version: libsmf-dev/1.3-1 Version: denemo/0.8.10-1 Unpacking libsmf-dev (from .../libsmf-dev_1.3-1_amd64.deb) ... dpkg: error processing /var/cache/apt/archives/libsmf-dev_1.3-1_amd64.deb (--unpack): trying to overwrite '/u

Bug#580590: Bug#515489: fixed in xpilot-ng 1:4.7.3-1.1

Ben Armstrong writes: >> Julien Cristau >> >>> * debian/control >>> - (Build-Depends): Add nvidia-glx and remove >>> libgl1-mesa-dev, libglu1-mesa-dev (FTBFS; Closes: #580590). >>> >> This is utterly wrong. The log entry is written wrong. Unfortunately the messages was mis

Bug#584175: grave bug

Package: gnome-codec-install Version: 0.4.6 Severity: normal this needs python2.5 or later -- System Information: Debian Release: squeeze/sid APT prefers stable APT policy: (700, 'stable'), (650, 'testing'), (600, 'unstable'), (500, 'oldstable'), (1, 'experimental') Architecture: amd64 (x86_

Bug#572031: closed by John Ham (Bug#572031: fixed in lighttpd 1.4.26-1.1)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Dne Mon, 15 Mar 2010 09:39:17 + ow...@bugs.debian.org (Debian Bug Tracking System) napsal(a): > This is an automatic notification regarding your Bug report > which was filed against the lighttpd package: > > #572031: lighttpd: fails to start

Processed: unarchiving 572031, found 572031 in 1.4.26-2

Processing commands for cont...@bugs.debian.org: > unarchive 572031 Bug #572031 {Done: John Ham } [lighttpd] lighttpd: fails to start with current OpenSSL Unarchived Bug 572031 > found 572031 1.4.26-2 Bug #572031 {Done: John Ham } [lighttpd] lighttpd: fails to start with current OpenSSL Bug Mark

Bug#584195: tclcl-dev and libopenafs-dev: error when trying to install together

Package: libopenafs-dev,tclcl-dev Version: libopenafs-dev/1.4.12.1+dfsg-1 Version: tclcl-dev/1.20~RC2-1 Severity: serious User: trei...@debian.org Usertags: edos-file-overwrite Date: 2010-06-02 Architecture: amd64 Distribution: sid Hi, automatic installation tests of packages that share a file a

Bug#584194: tclcl-dev and libctapimkt0-dev: error when trying to install together

Package: libctapimkt0-dev,tclcl-dev Version: libctapimkt0-dev/1.0.1-1 Version: tclcl-dev/1.20~RC2-1 Severity: serious User: trei...@debian.org Usertags: edos-file-overwrite Date: 2010-06-02 Architecture: amd64 Distribution: sid Hi, automatic installation tests of packages that share a file and a

Processed: severity of 584175 is grave

Processing commands for cont...@bugs.debian.org: > severity 584175 grave Bug #584175 [gnome-codec-install] gnome-codec-install: fails to configure with syntax error in PackageWorker.py Severity set to 'grave' from 'important' > thanks Stopping processing here. Please contact me if you need assi

Bug#584193: smf-utils and denemo: error when trying to install together

Package: denemo,smf-utils Version: denemo/0.8.10-1 Version: smf-utils/1.3-1 Severity: serious User: trei...@debian.org Usertags: edos-file-overwrite Date: 2010-06-02 Architecture: amd64 Distribution: sid Hi, automatic installation tests of packages that share a file and at the same time do not c

Bug#582247: Proposing a NMU for gcalcli failure on operations

Hi I prepared a small NMU for it. Should I continue aksing vor a sponsor (@Yaroslav). Attached is the debdiff for this. Andrei, I have uploaded a preliminary package to [1], could you test it? [1] http://people.ee.ethz.ch/~bonaccos/debian/gcalcli/ Bests Salvatore diff -u gcalcli-1.4/gcalcli g

Bug#584188: grub-pc: GRUB will not upgrade to GRUB2 on RAID system

Package: grub-pc Version: 1.98-1 Severity: grave Justification: renders package unusable GRUB legacy cannot be upgraded to GRUB2 on a system with a RAID array for /boot. I upgraded one of my servers from "Lenny" to "Squeeze", but the upgrade of GRUB fails because the package does not know how

Processed: Re: Bug#584169: gorm.app: Segfault on startup

Processing commands for cont...@bugs.debian.org: > reassign 584169 gnustep-gui Bug #584169 [gorm.app] gorm.app: Segfault on startup Bug reassigned from package 'gorm.app' to 'gnustep-gui'. Bug No longer marked as found in versions gorm.app/1.2.10-1. > forcemerge 568049 584169 Bug#568049: [amd64] A

Processed: reopening 516801

Processing commands for cont...@bugs.debian.org: > reopen 516801 Bug #516801 {Done: Jochen Friedrich } [net-snmp] CVE-2008-6123: Access restriction bypass 'reopen' may be inappropriate when a bug has been closed with a version; you may need to use 'found' to remove fixed versions. > thanks Stoppi

Bug#584184: dropbox: i386 version installs 64bit executable

Package: dropbox Version: 0.7.110-1+b1 Severity: grave Tags: sid Justification: renders package unusable The i386 version of in both unstable and experimental incorrectly installs a 64bit (rather than 32bit) executable: nx9005:~> dropbox /usr/bin/dropbox: Exec format error. Binary file not exec

Bug#516801: Fw: CVE-2008-6123 applies to snmpd in lucid (and sid)

the vulnerability seems to still exist in the 5.4.2.1~dfsg-5 source package. i sent the attached email to the debian developers [1] nearly 48 hours ago and it hasn't appeared in the pkg-net-snmp-devel archives, so i'm presuming it got caught in a spam filter somewhere and instead hoping for better

Bug#584031: marked as done (pyxplot: Security bugs in ghostscript)

Your message dated Wed, 2 Jun 2010 00:22:27 +0100 with message-id <201006020022.32660.stu...@nanonanonano.net> and subject line Re: Bug#584031: pyxplot: Security bugs in ghostscript has caused the Debian Bug report #584031, regarding pyxplot: Security bugs in ghostscript to be marked as done. This

Bug#583561: Ack

I'll fix this shortly (erm, tomorrow) when I update to 1.6.5.2. -- Tim Retout -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#580981: Fixed upstream

Now fixed upstream in Enscript 1.6.5.2. -- Tim Retout -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#583551: 583551 is a bad dependency in e2fsprogs

re: debian bug 583551: e2fsprogs 1.41.12-1 says it Pre-Depends on libblkid1 (>= 1.34-1). However, it appears to actually need libblkid1 (>= 2.17-1) to run mkfs.ext3. --dkg signature.asc Description: OpenPGP digital signature

Bug#570649: marked as done (php-imagick: FTBFS: error: duplicate 'static')

Your message dated Tue, 01 Jun 2010 23:02:23 + with message-id and subject line Bug#570649: fixed in php-imagick 3.0.0~rc1-1 has caused the Debian Bug report #570649, regarding php-imagick: FTBFS: error: duplicate 'static' to be marked as done. This means that you claim that the problem has b

Processed: Re: Bug#583964: gsfonts: breaks grace

Processing commands for cont...@bugs.debian.org: > severity 583964 grave Bug #583964 [gsfonts] gsfonts: breaks grace Severity set to 'grave' from 'normal' > block 583964 by 583956 Bug #583964 [gsfonts] gsfonts: breaks grace Was not blocked by any bugs. Added blocking bug(s) of 583964: 583956 > th

Bug#584153: marked as done (KDE 4 HTML is now installed to /usr/share/doc/kde/HTML)

Your message dated Tue, 01 Jun 2010 22:40:51 + with message-id and subject line Bug#584153: fixed in tellico 2.2-5 has caused the Debian Bug report #584153, regarding KDE 4 HTML is now installed to /usr/share/doc/kde/HTML to be marked as done. This means that you claim that the problem has be

Bug#583981: ypsilon: Terminates with Illegal instruction

On Mon, May 31, 2010 at 2:48 PM, Stefan Gursky wrote: > Package: ypsilon > Version: 0.9.6.update3-6 > Severity: grave > Tags: sid upstream > Justification: renders package unusable > > > Running ypsilon terminates immediately with message "Illegal instruction". > > It is this bug: > http://code.go

Bug#584015: ijsgutenprint: Security bugs in ghostscript

Dear Roger, > ijsgutenprint is a ghostscript IJS server driver. It's invoked > /by/ ghostscript, so is not itself responsible for running > ghostscript. One potential source of vulnerabilities is > actually in glue scripts such as Foomatic, so I think probably > should be reassigned to foomatic-

Processed: Re: Bug#583956: grace: fails to start after gsfonts upgrade

Processing commands for cont...@bugs.debian.org: > unmerge 583956 Bug#583956: grace: fails to start after gsfonts upgrade Bug#583964: gsfonts: breaks grace Disconnected #583956 from all other report(s). > reassign 583956 grace 1:5.1.22-5 Bug #583956 [gsfonts] grace: fails to start after gsfonts u

Bug#584146: data loss after upgrade

On Tue, Jun 01, 2010 at 09:19:14PM +0200, Christoph Goehre wrote: > Hi Wolfgang, > > On Di, Jun 01, 2010 at 02:05:48 -0400, Wolfgang Sourdeau wrote: > > It has been decided in Debian that Thunderbird/Icedove 3 was stable > > enough that version 2 would be obsoleted, although it's technically > > p

Bug#583183: [Pkg-cups-devel] Bug#584003: cups-pdf: Security bugs in ghostscript

Dear Martin-Eric, > ... We already call -dSAFER and drop privileges early, so we're > already protected as it is. Closing. Sorry, you seem to misunderstand: this bug is (more-or-less) about the need to use the -P- also, as well as -dSAFER, to be protected. Is cups-pdf "part of" cups? In that cas

Bug#583995: advi-examples: Security bugs in ghostscript

Dear Mehdi, > On a side note, you should check ... > In case, it isn't obvious: I already read 583183 before closing and I > explained why advi-examples isn't open to such flaws. I see: that comment was not directed at me. Thanks, Paul Paul Szabo p...@maths.usyd.edu.au http://www.maths.

Bug#584158: KDE 4 HTML docs are now installed to /usr/share/doc/kde/HTML

Source: eqonomize Version: 0.6-4 Severity: serious User: debian-qt-...@lists.debian.org Usertags: html-install-dir-switch Hello, Location of KDE 4 HTML documentation was changed from /usr/share/doc/kde4/HTML to /usr/share/doc/kde/HTML as of pkg-kde-tools (>= 0.9) [1] and kdelibs5-dev (>= 4:4.4.

Bug#584156: flightgear depends on packages unavailables

Package: flightgear Version: 1.9.1-1.1 Severity: grave Tags: sid Justification: renders package unusable Hi, I can't install flightgear, due to unmet dependencies patator:~# apt-get install flightgear Reading package lists... Done Building dependency tree Reading state information... Done Some p

Bug#584155: KDE 4 HTML docs are now installed to /usr/share/doc/kde/HTML

Source: kdiff3 Version: 0.9.95-4 Severity: serious User: debian-qt-...@lists.debian.org Usertags: html-install-dir-switch Hello, Location of KDE 4 HTML documentation was changed from /usr/share/doc/kde4/HTML to /usr/share/doc/kde/HTML as of pkg-kde-tools (>= 0.9) [1] and kdelibs5-dev (>= 4:4.4.

Bug#584153: KDE 4 HTML is now installed to /usr/share/doc/kde/HTML

Package: tellico Version: 2.2-4 Severity: serious User: debian-qt-...@lists.debian.org Usertags: html-install-dir-switch Hello, Location of KDE 4 HTML documentation was changed from /usr/share/doc/kde4/HTML to /usr/share/doc/kde/HTML as of pkg-kde-tools (>= 0.9) [1] and kdelibs5-dev (>= 4:4.4.4

Processed: severity of 583994 is important

Processing commands for cont...@bugs.debian.org: > severity 583994 important Bug #583994 [advi] advi: Security bugs in ghostscript Severity set to 'important' from 'grave' > thanks Stopping processing here. Please contact me if you need assistance. -- 583994: http://bugs.debian.org/cgi-bin/bugr

Processed: tagging 583994

Processing commands for cont...@bugs.debian.org: > tags 583994 + pending Bug #583994 [advi] advi: Security bugs in ghostscript Added tag(s) pending. > thanks Stopping processing here. Please contact me if you need assistance. -- 583994: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=583994 Deb

Bug#553554: dir-or-file-in-var-www /var/www/squid-reports/

Hi there I just installed sarg 2.2.7.1-1~bpo50+1 from lenny-backports, I notice that the installation take about 20 minutes to complete, I found that the installer was moving all the files from /var/www/squid-reports to /var/lib/sarg, this operation caused to fill my / partition which had 4G of fr

Bug#584015: ijsgutenprint: Security bugs in ghostscript

On Tue, Jun 01, 2010 at 11:11:19AM +1000, Paul Szabo wrote: > Package: ijsgutenprint > Severity: grave > Tags: security > Justification: user security hole > > > Please note remote execute-any-code security bugs in ghostscript: > > http://bugs.debian.org/583183 > > This package depends on gho

Bug#584146: data loss after upgrade

Hi Wolfgang, On Di, Jun 01, 2010 at 02:05:48 -0400, Wolfgang Sourdeau wrote: > It has been decided in Debian that Thunderbird/Icedove 3 was stable > enough that version 2 would be obsoleted, although it's technically > possible to have both versions concurrently installed on the same > system. Whi

Bug#583957: marked as done ([pcmanfm] segfault while pressing the left panel icon)

Your message dated Wed, 02 Jun 2010 03:13:33 +0800 with message-id <4c055bdd.6020...@debian.org> and subject line Re: Bug#583957: Package: pcmanfm 0.9.7-1 has caused the Debian Bug report #583957, regarding [pcmanfm] segfault while pressing the left panel icon to be marked as done. This means that

Bug#583953: marked as done (libmlt2: depends on libsox1a, which doesn't exist)

Your message dated Tue, 01 Jun 2010 18:51:09 + with message-id and subject line Bug#583953: fixed in mlt 0.5.4+git20100601-1 has caused the Debian Bug report #583953, regarding libmlt2: depends on libsox1a, which doesn't exist to be marked as done. This means that you claim that the problem h

Bug#584009: marked as done (hevea: Security bugs in ghostscript)

Your message dated Tue, 01 Jun 2010 18:49:20 + with message-id and subject line Bug#584009: fixed in hevea 1.10-12 has caused the Debian Bug report #584009, regarding hevea: Security bugs in ghostscript to be marked as done. This means that you claim that the problem has been dealt with. If t

Bug#580090: marked as done (FTBFS because of unrecognized ocamlgraph version)

Your message dated Tue, 01 Jun 2010 18:48:35 + with message-id and subject line Bug#580090: fixed in frama-c 20100401+boron+dfsg-2 has caused the Debian Bug report #580090, regarding FTBFS because of unrecognized ocamlgraph version to be marked as done. This means that you claim that the prob

Bug#583995: marked as done (advi-examples: Security bugs in ghostscript)

> I'm closing this bugreport because this package contains only dvi files. > It doesn't contain any program that calls "gs". Indeed. This means that advi-examples shouldn't depend on ghostscript in the first place (fixed in svn now). -Ralf. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@l

Bug#583957: I had segfault in version 0.9.5-2

In version 0.9.7-1 all work right. Thanks to maintainers and developers. =) -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#583957: Package: pcmanfm 0.9.7-1

Package: pcmanfm Version: 0.9.7-1 Severity: normal -- System Information: Debian Release: squeeze/sid APT prefers unstable APT policy: (500, 'unstable'), (101, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.32-5-686 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.U

Bug#584148: xserver-xorg-input-evdev: reconnect failure after unplugging keyboard & mouse

Package: xserver-xorg-input-evdev Version: 1:2.3.2-6 Justification: breaks unrelated software Severity: critical Tags: squeeze sid *** Please type your report below this line *** After unplugging or switching through a KVM device, USB keyboard and mouse cannot reconnect to X-server. It seems afte

Bug#584146: data loss after upgrade

Package: icedove Version: 3.0.4-3 Severity: grave It has been decided in Debian that Thunderbird/Icedove 3 was stable enough that version 2 would be obsoleted, although it's technically possible to have both versions concurrently installed on the same system. While updating my system and wrongf

Bug#583702: beneath-a-steel-sky: package ships data that cannot be modified

On Tue, Jun 01, 2010 at 08:21:37PM +0800, Ying-Chun Liu (PaulLiu) wrote: > Hi Torsten, > > I think maybe we can just package the tool into Debian main? > Not sure how to edit beneath-a-steel-sky, but ScummC should be able to > create ScummVM games from scratch. > > I'll try to see if ScummC can e

Processed: severity of 583312 is important

Processing commands for cont...@bugs.debian.org: > severity 583312 important Bug #583312 [nvidia-glx] since update to initscripts, sysv... to version 2.88.dfs-5 -- kdm "fails" to load Bug #583613 [nvidia-glx] xserver-xorg is shutting down itself at (and only at) boot Severity set to 'important'

Bug#583312: [pkg-nvidia-devel] Bug#583312: nvidia bug also with nouveau driver

Thomas Koch writes: > As noted in Message #71 to this bug, I believe to have observed the very > same issue with the free nouveau driver. In conclusion I believe that > the change in severity is not justified by your rationale. > Therefor please also consider bug #583336 and decide, if the bug c

Processed: Re: Bug#551903: libc6-i686 pthread_cond_wait fails to reacquire mutex upon cancellation

Processing commands for cont...@bugs.debian.org: > unarchive 551903 Bug #551903 {Done: Aurelien Jarno } [libc6-i686] libc6-i686 pthread_cond_wait fails to reacquire mutex upon cancellation Unarchived Bug 551903 > found 551903 2.11.1-2 Bug #551903 {Done: Aurelien Jarno } [libc6-i686] libc6-i686 p

Processed: Re: Bug#584013: hyperlatex: Security bugs in ghostscript

Processing commands for cont...@bugs.debian.org: > severity 584021 normal Bug #584021 [mediawiki-math] mediawiki-math: Security bugs in ghostscript Severity set to 'normal' from 'grave' > thanks Stopping processing here. Please contact me if you need assistance. -- 584021: http://bugs.debian.or

Bug#583858: libc6-i686: causes segfaults

On Tue, Jun 01, 2010 at 07:11:03AM +0200, Aurelien Jarno wrote: > On Mon, May 31, 2010 at 11:13:03PM +0200, Aurelien Jarno wrote: > > On Mon, May 31, 2010 at 09:53:45PM +0200, Stefan Fritsch wrote: > > > Hi, > > > > > > I can reproduce this. I have attached a stacktrace and part of the > > > upda

Processed: nvidia bug also with nouveau driver

Processing commands for cont...@bugs.debian.org: > severity 583312 serious Bug #583312 [nvidia-glx] since update to initscripts, sysv... to version 2.88.dfs-5 -- kdm "fails" to load Bug #583613 [nvidia-glx] xserver-xorg is shutting down itself at (and only at) boot Severity set to 'serious' from

Bug#584001: marked as done (courier-faxmail: Security bugs in ghostscript)

Your message dated Tue, 01 Jun 2010 17:02:48 + with message-id and subject line Bug#584001: fixed in courier 0.65.0-1 has caused the Debian Bug report #584001, regarding courier-faxmail: Security bugs in ghostscript to be marked as done. This means that you claim that the problem has been dea

Bug#583989: marked as done (Courier IMAP: Clients think logins have failed after upgrade)

Your message dated Tue, 01 Jun 2010 17:02:48 + with message-id and subject line Bug#583989: fixed in courier 0.65.0-1 has caused the Debian Bug report #583989, regarding Courier IMAP: Clients think logins have failed after upgrade to be marked as done. This means that you claim that the probl

Processed: Re: [Pkg-samba-maint] Bug#584104: Bug#584104: cifs-utils: mount.cifs ignores credentials option

Processing commands for cont...@bugs.debian.org: > severity 584104 serious Bug #584104 [cifs-utils] cifs-utils: mount.cifs ignores credentials option Severity set to 'serious' from 'normal' > thanks Stopping processing here. Please contact me if you need assistance. -- 584104: http://bugs.debia

Bug#571220: Bug still seems to be there

I have version 4.2.3-1 installed, but there my first attempt to call up the software and I get Deprecated: Assigning the return value of new by reference is deprecated in /usr/share/phppgadmin/classes/Misc.php on line /344/ I went into my system and purged the old package and deleted /usr/sh

Bug#583183: /usr/bin/gs: Insecure gs initialization

wouldn't it make more sense to solve these issues in the ghostscript package by itself; rather than 100 different packages. even if ghostscript won't change their code, debian always has the option to fix it anyway. that could be done be either applying a patch that automatically uses the safer

Bug#584042: marked as done (cd-circleprint: Security bugs in ghostscript)

Your message dated Tue, 01 Jun 2010 16:32:20 + with message-id and subject line Bug#584042: fixed in cd-circleprint 0.7.0-3 has caused the Debian Bug report #584042, regarding cd-circleprint: Security bugs in ghostscript to be marked as done. This means that you claim that the problem has bee

Bug#584139: ecb: uninstallable with emacs 23.2

Package: ecb Severity: serious Justification: uninstallable The current version of ecb is uninstallable in a Debian sid system, unfortunately. Also, the last update of this package was about 4 years ago. Would it be a good idea to update it? Regards, -- System Information: Debian Release: sque

Bug#482298: crashes when start run icedove on mipsel

Version: 3.0.4-2 > > Could you or someone from the list try to start Icedove on a mipsel > > machine? I didn't have a mipsel box. > I guess you mean "start icedove 3.0", I've tried to compile and run a > icedove 3.0 on a Yeeloong laptop, which is Loongson2F-based. So far no > crashes. And icedove

Bug#583471: marked as done (cryptsetup: FTBFS: configure: error: Your system requires SElinux libraries for static compilation.)

Your message dated Tue, 01 Jun 2010 16:03:31 + with message-id and subject line Bug#583471: fixed in cryptsetup 2:1.1.2-1 has caused the Debian Bug report #583471, regarding cryptsetup: FTBFS: configure: error: Your system requires SElinux libraries for static compilation. to be marked as don

Bug#583387: marked as done (no longer shipping static libraries causes cryptsetup FTBFS)

Your message dated Tue, 01 Jun 2010 16:03:31 + with message-id and subject line Bug#583387: fixed in cryptsetup 2:1.1.2-1 has caused the Debian Bug report #583387, regarding no longer shipping static libraries causes cryptsetup FTBFS to be marked as done. This means that you claim that the pr

Bug#539689: marked as done ([lenny] icedove and iceowel segfaults on mipsel)

Your message dated Tue, 1 Jun 2010 18:02:06 +0200 with message-id <20100601160206.ga1...@katjuscha.chris.lan> and subject line Re: Bug#482298: crashes when start run icedove on mipsel has caused the Debian Bug report #482298, regarding [lenny] icedove and iceowel segfaults on mipsel to be marked as

Bug#482298: marked as done (crashes when start run icedove on mipsel)

Your message dated Tue, 1 Jun 2010 18:02:06 +0200 with message-id <20100601160206.ga1...@katjuscha.chris.lan> and subject line Re: Bug#482298: crashes when start run icedove on mipsel has caused the Debian Bug report #482298, regarding crashes when start run icedove on mipsel to be marked as done.

Bug#561630: marked as done (segfault on startup (mipsel))

Your message dated Tue, 1 Jun 2010 18:02:06 +0200 with message-id <20100601160206.ga1...@katjuscha.chris.lan> and subject line Re: Bug#482298: crashes when start run icedove on mipsel has caused the Debian Bug report #482298, regarding segfault on startup (mipsel) to be marked as done. This means

Processed: closing as it's not affected by security issue

Processing commands for cont...@bugs.debian.org: > close 584005 Bug#584005: epstool: Security bugs in ghostscript 'close' is deprecated; see http://www.debian.org/Bugs/Developer#closing. Bug closed, send any further explanations to Paul Szabo > End of message, stopping processing here. Please

Bug#584005: epstool: Security bugs in ghostscript

Hi, I checked the package. It's not affected by this security issue. I'll close this bug. Philip -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Bug#583316: Running gs in a safe directory.

* paul.sz...@sydney.edu.au [100601 01:06]: > I do not see where /usr/lib/gv/safe-gs-workdir is created. It's done in debian/rules so that not makefiles have to be changed. (and it's /usr/share/gv/safe-gs-workdir btw). > I would prefer to check it actually is empty... pure paranoia, is > root-own

Bug#583475: META file for ocaml-llvm has a wrong filename

Hello Arthur, On Tue, Jun 01, 2010 at 04:57:23PM +0200, Arthur Loiret wrote: > Hi, > > 2010/5/30, Mehdi Dogguy : > > It *does* matter! When I have to open some META file by hand to see its > > content, it's much more easier to know beforehand (and without looking > > for it) where it is. For now,

Bug#583475: META file for ocaml-llvm has a wrong filename

On 01/06/2010 16:57, Arthur Loiret wrote: > Hi, > > 2010/5/30, Mehdi Dogguy : >> It *does* matter! When I have to open some META file by hand to see >> its content, it's much more easier to know beforehand (and without >> looking for it) where it is. For now, the situation is not uniform: >> mo

Bug#583475: META file for ocaml-llvm has a wrong filename

Hi, 2010/5/30, Mehdi Dogguy : > It *does* matter! When I have to open some META file by hand to see its > content, it's much more easier to know beforehand (and without looking > for it) where it is. For now, the situation is not uniform: most of the > people put the META file under +$lib/META, so

Processed: notfound 577532 in 3.0.4-2

Processing commands for cont...@bugs.debian.org: > #make bts happy > notfound 577532 3.0.4-2 Bug #577532 {Done: Christoph Goehre } [icedove] icedove: segfault on startup Bug No longer marked as found in versions icedove/3.0.4-2. > thanks Stopping processing here. Please contact me if you need as

Processed: tagging 548909

Processing commands for cont...@bugs.debian.org: > # minor issue, maybe via stable-proposed updates > tags 548909 - lenny Bug #548909 {Done: Axel Beckert } [xen-tools] xen-tools: xen-create-image creates world readable disk image files Removed tag(s) lenny. > thanks Stopping processing here. Ple

Bug#584003: marked as done (cups-pdf: Security bugs in ghostscript)

Your message dated Tue, 1 Jun 2010 16:29:13 +0300 with message-id and subject line Re: [Pkg-cups-devel] Bug#584003: cups-pdf: Security bugs in ghostscript has caused the Debian Bug report #584003, regarding cups-pdf: Security bugs in ghostscript to be marked as done. This means that you claim t

Bug#583183: [Pkg-cups-devel] Bug#584003: cups-pdf: Security bugs in ghostscript

On Tue, Jun 1, 2010 at 4:06 AM, Paul Szabo wrote: > Package: cups-pdf > Severity: grave > Tags: security > Justification: user security hole > > > Please note remote execute-any-code security bugs in ghostscript: > >  http://bugs.debian.org/583183 > > This package depends on ghostscript, and may b

Bug#583995: advi-examples: Security bugs in ghostscript

On 01/06/2010 14:26, paul.sz...@sydney.edu.au wrote: > Dear Mehdi, > On a side note, you should check ... >>> >>> Thanks for that pointer. I guess you are right. But please see... >> >> No. > > Sorry, but I do not understand. Do you mean that you refuse to read, > or that you disagree? May

Bug#584124: salome: fails to install (tries to overwrite '/usr/bin/display')

Package: salome Version: 5.1.3-8 Severity: grave Tags: sid Justification: renders package unusable Hi, First of all, thanks for having packaged Salome ! Unfortunately, on my system, it fails to install with the following error: Unpacking salome (from .../salome_5.1.3-8_amd64.deb) ... dpkg: error

Bug#584001: courier-faxmail: Security bugs in ghostscript

On 06/01/2010 01:24 PM, paul.sz...@sydney.edu.au wrote: Dear Racke, What kind of fixes do you have in mind? Please add the -P- option to all $GS invocations. Thanks, Paul Paul Szabo p...@maths.usyd.edu.au http://www.maths.usyd.edu.au/u/psz/ School of Mathematics and Statistics Unive

Bug#584061: marked as done (recoll: Security bugs in ghostscript)

Your message dated Tue, 1 Jun 2010 18:03:16 +0530 with message-id and subject line Re: Bug#584061: recoll: Security bugs in ghostscript has caused the Debian Bug report #584061, regarding recoll: Security bugs in ghostscript to be marked as done. This means that you claim that the problem has bee

Bug#583995: advi-examples: Security bugs in ghostscript

Dear Mehdi, >>> On a side note, you should check ... >> >> Thanks for that pointer. I guess you are right. But please see... > > No. Sorry, but I do not understand. Do you mean that you refuse to read, or that you disagree? Maybe you would care to explain, I would like to know your opinion. Chee

Bug#584052: kdelibs4c2a: Security bugs in ghostscript

On Tuesday 01 June 2010 03:29:46 Paul Szabo wrote: > Package: kdelibs4c2a > Version: 4:3.5.10.dfsg.1-0lenny4 > Severity: grave > Tags: security > Justification: user security hole > > > Please note remote execute-any-code security bugs in ghostscript: > > http://bugs.debian.org/583183 > > Thi

Bug#583702: beneath-a-steel-sky: package ships data that cannot be modified

Hi Torsten, I think maybe we can just package the tool into Debian main? Not sure how to edit beneath-a-steel-sky, but ScummC should be able to create ScummVM games from scratch. I'll try to see if ScummC can edit beneath-a-steel-sky or not. Regards, Paul --

Bug#583995: advi-examples: Security bugs in ghostscript

On 01/06/2010 14:07, paul.sz...@sydney.edu.au wrote: > Dear Mehdi, > >> On a side note, you should check ... > > Thanks for that pointer. I guess you are right. But please see… No. -- Mehdi Dogguy مهدي الدڤي http://dogguy.org/ -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.

Bug#574512: [Monotone-debian] Re: Bug#574512: Release-critical bugs in monotone: ping?

Am 01.06.2010 13:47, schrieb Francis Russell: > Ludovic Brenta wrote: >> Is anyone still interested in maintaining monotone in Debian? > > Just thought I'd add that I use monotone from Debian and know others who > do as well. I'm willing to help in whatever way I can although I'm not a > Debian Ma

Bug#583435: rpcbind: Insecure handling of state files

Hi! On Thu, 2010-05-27 at 19:09:08 +0200, Guillem Jover wrote: > Package: rpcbind > Version: 0.2.0-4 > Severity: serious > Tags: security > The rpcbind daemon, which runs as root, uses /tmp/portmap.xdr and > /tmp/rpcbind.xdr for doing warm starts as what seems to be a way to > preserve state betw

Bug#584013: hyperlatex: Security bugs in ghostscript

Dear Ronald, > I.e., you consider hyperlatex as "fixed" with regard to #584013 when > "-P- -dSAFER" are added to the gs calls? If you done that then I would not insist on keeping the bug open. Whether "fixed", only you can tell: sorry I do not use hyperlatex so cannot comment. (Please see the con

Bug#584052: kdelibs4c2a: Security bugs in ghostscript

Dear Sune, I agree with you. I suggested to gs that it should be secure-by-default, but they refused. Please do convince them... In the meantime, maybe you want to fix your use of that crappy gs. Cheers, Paul Paul Szabo p...@maths.usyd.edu.au http://www.maths.usyd.edu.au/u/psz/ School of Ma

Bug#559893: Bug#574512: Release-critical bugs in monotone: ping?

Francis Russell wrote: > Ludovic Brenta wrote: >> Is anyone still interested in maintaining monotone in Debian? > > Just thought I'd add that I use monotone from Debian and know others who > do as well. I'm willing to help in whatever way I can although I'm not a > Debian Maintainer. Is

Bug#584001: courier-faxmail: Security bugs in ghostscript

Dear Racke, > ... I just wonder why this option isn't mentioned in the gs manpage. Good question. Maybe report as a bug to ghostscript? Cheers, Paul Paul Szabo p...@maths.usyd.edu.au http://www.maths.usyd.edu.au/u/psz/ School of Mathematics and Statistics University of SydneyAustralia

Bug#559893: Bug#574512: Release-critical bugs in monotone: ping?

Ludovic Brenta wrote: Is anyone still interested in maintaining monotone in Debian? Just thought I'd add that I use monotone from Debian and know others who do as well. I'm willing to help in whatever way I can although I'm not a Debian Maintainer. Is this just a manpower issue? Francis

Bug#584013: hyperlatex: Security bugs in ghostscript

Hi, On 06/01/2010 01:10 PM, paul.sz...@sydney.edu.au wrote: >> (4) Please state clearly what's wrong with the package (hyperlatex in >> this case). From the other bug reports I deduce that gs calls should be >> extended with "-P- -dSAFER". This should be done in the hyperlatex >> source package in

Bug#584062: marked as done (sdf: Security bugs in ghostscript)

Your message dated Tue, 1 Jun 2010 12:48:09 +0100 with message-id <20100601114809.ge12...@riva.ucam.org> and subject line Re: Bug#584062: sdf: Security bugs in ghostscript has caused the Debian Bug report #584062, regarding sdf: Security bugs in ghostscript to be marked as done. This means that yo

Bug#583995: marked as done (advi-examples: Security bugs in ghostscript)

Your message dated Tue, 01 Jun 2010 13:49:22 +0200 with message-id <4c04f3c2.9050...@dogguy.org> and subject line Re: Bug#583995: advi-examples: Security bugs in ghostscript has caused the Debian Bug report #583995, regarding advi-examples: Security bugs in ghostscript to be marked as done. This m

Bug#584001: courier-faxmail: Security bugs in ghostscript

On 06/01/2010 01:24 PM, paul.sz...@sydney.edu.au wrote: Dear Racke, What kind of fixes do you have in mind? Please add the -P- option to all $GS invocations. OK, I'll do so today. I just wonder why this option isn't mentioned in the gs manpage. Regards Racke -- LinuXia Systems

Processed: Migrating to my DD account

Processing commands for cont...@bugs.debian.org: > submitter 579837 ! Bug #579837 {Done: Alessio Treglia } [wnpp] ITP: guayadeque -- Guayadeque Music Player Changed Bug submitter to 'Alessio Treglia ' from 'ales...@debian.org' > submitter 581057 ! Bug #581057 [wnpp] ITP: lv2vocoder -- LV2 vocode

Processed: submitter 579837, submitter 581057, submitter 583863, submitter 495976, submitter 547728 ...

Processing commands for cont...@bugs.debian.org: > submitter 579837 ales...@debian.org Bug #579837 {Done: Alessio Treglia } [wnpp] ITP: guayadeque -- Guayadeque Music Player Changed Bug submitter to 'ales...@debian.org' from 'Alessio Treglia ' > submitter 581057 ales...@debian.org Bug #581057 [w

Bug#584062: sdf: Security bugs in ghostscript

Dear Colin, Your explanation shows you are not directly responsible (maybe not vulnerable at all), and can close the bug. Thanks for investigating, sorry about the "noise". Cheers, Paul Paul Szabo p...@maths.usyd.edu.au http://www.maths.usyd.edu.au/u/psz/ School of Mathematics and Statistic

Bug#584001: courier-faxmail: Security bugs in ghostscript

Dear Racke, > What kind of fixes do you have in mind? Please add the -P- option to all $GS invocations. Thanks, Paul Paul Szabo p...@maths.usyd.edu.au http://www.maths.usyd.edu.au/u/psz/ School of Mathematics and Statistics University of SydneyAustralia -- To UNSUBSCRIBE, email

Bug#583989: Courier IMAP: Clients think logins have failed after upgrade

On 06/01/2010 01:18 AM, Adam Warner wrote: Package: courier Version: 0.64.2-1 Severity: grave Upstream has the patch: "Thunderbird chokes on that and requests a login again, claimin

  1   2   >