Bug#605155: gquilt: Use of PYTHONPATH env var in an insecure way

Hi Christine, On Thu, Dec 2, 2010 at 04:22, Christine Spang wrote: > It looks like gquilt doesn't actually require PYTHONPATH to > be set, anyway, since python already adds the directory of > the executed script to sys.path. I propose the following > patch: That patch seems ok. Cheers, -- Sand

Processed: Re: Bug#605218: apt-get dist-upgrade fails to install ia32-libs

Processing commands for cont...@bugs.debian.org: > tag 605218 patch Bug #605218 [ia32-libs] apt-get dist-upgrade fails to install ia32-libs since version 20101117 Added tag(s) patch. > thanks Stopping processing here. Please contact me if you need assistance. -- 605218: http://bugs.debian.org/c

Bug#605218: apt-get dist-upgrade fails to install ia32-libs

tag 605218 patch thanks On Wed, Dec 1, 2010 at 4:34 PM, Julien Cristau wrote: > On Wed, Dec  1, 2010 at 16:18:54 -0500, Michael Gilbert wrote: > >> Since ia32-libs-workaround-499043 is a third-party package, this really >> isn't Debian's problem. I think that the bug can be safely closed. In >> th

Bug#395609: [EpU- 13] : physicians (34 specialties) - 788k records, 17k emails, 200k fax numbers

As requested, below you will find our most recent catalog of contact lists. They are all from optin sources and are sold with unlimited use rights. ( HEALTHCARE ) - Doctors (34 different specialties) - Chiropractors - Alternative Medicine - Dentists - Dentists with Specialties - Veterinarians

Bug#603450: Fwd: Due offlineimap absence of certificate validation issue -- Debian BTS#603450

-- Forwarded message -- From: dave b Date: 1 December 2010 13:59 Subject: Re: Due offlineimap absence of certificate validation issue -- Debian BTS#603450 To: John Goerzen Cc: Jan Lieskovsky , Christoph Höger Here have a patch! This obviously will break connecting to hosts whic

Bug#605155: gquilt: Use of PYTHONPATH env var in an insecure way

On 02/12/10 13:22, Christine Spang wrote: Hi all, Since we are currently in deep freeze for Squeeze, I'm very hesitant to ask the release managers to make an exception for a new release. (I wish I'd known that the new release fixed important bugs! I glanced at the changelog but it seemed like it

Bug#555668: elfsign uses MD5

I wonder if this bug can be downgraded (or marked squeeze-ignore). The weaknesses of MD5 are well-known, and support for it should be deprecated, but I don't think that needs to be done for squeeze. Post-squeeze, the solution should fail for md5 signatures by default. It should require an explicit

Bug#605155: gquilt: Use of PYTHONPATH env var in an insecure way

Hi all, Since we are currently in deep freeze for Squeeze, I'm very hesitant to ask the release managers to make an exception for a new release. (I wish I'd known that the new release fixed important bugs! I glanced at the changelog but it seemed like it was all trivial or irrelevant-for-Debian th

Bug#605527: approx: routinely has inconsistant Release* and Packages* files

> On Wed, Dec 01, 2010 at 11:17:39PM +0100, Simon Paillard wrote: > > > with both approx entries and direct entries to the exact same mirrors > > > configured in apt's sources.list, at least one of my approx entries > > > results > > > in a "Hash Sum mismatch" on nearly every apt-get update, while

Bug#559814: hamlib: stable-security fix CVE-2009-3736

Dear security team- I'm the DM maintainer for the package 'hamlib' (I am also currently working through the of becoming a DD). Regarding this bug (a mass-filed CVE against libtool): http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559814 CVE-2009-3736 local privilege escalation I fixed

Bug#603861: fetchmailconf: looks in the wrong place for fetchmailconf.py

Greetings, I am confused. The upstream package contains a trivial fetchmailconf script that gets generated by these Makefile.am rules: (the second is actually one long line): fetchmailconf: ( echo '#! /bin/sh' && echo 'exec @PYTHON@ @pythondir@/fetchmailconf.py "$$@"' ) >$@ && chmod +x

Bug#605527: marked as done (approx: routinely has inconsistant Release* and Packages* files)

Your message dated Wed, 1 Dec 2010 17:08:30 -0800 with message-id <20101202010830.gc17...@talon.fglan> and subject line Re: Bug#605527: approx: routinely has inconsistant Release* and Packages* files has caused the Debian Bug report #605527, regarding approx: routinely has inconsistant Release* an

Bug#598309: marked as done (ust-bin: CVE-2010-3386: insecure library loading)

Your message dated Thu, 02 Dec 2010 00:33:31 + with message-id and subject line Bug#598309: fixed in ust 0.5-1+squeeze1 has caused the Debian Bug report #598309, regarding ust-bin: CVE-2010-3386: insecure library loading to be marked as done. This means that you claim that the problem has bee

Bug#605616: cdimage.d.o has broken 5.0.7-live mirror

On Thu, Dec 02, 2010 at 12:02:30AM +, Steve McIntyre wrote: >On Wed, Dec 01, 2010 at 09:36:57PM +0100, Daniel Baumann wrote: >>Package: cdimage.debian.org >>Severity: serious >> >>cdimage.d.o mirrors live images from live.d.n. however, for the 5.0.7 >>release, all *.img files mirrored on cdimag

Bug#605616: cdimage.d.o has broken 5.0.7-live mirror

On Wed, Dec 01, 2010 at 09:36:57PM +0100, Daniel Baumann wrote: >Package: cdimage.debian.org >Severity: serious > >cdimage.d.o mirrors live images from live.d.n. however, for the 5.0.7 >release, all *.img files mirrored on cdimage.d.o are broken (size 20 >instead of several hundreds of megabytes),

Processed: tagging 570152

Processing commands for cont...@bugs.debian.org: > # Bug doesn't affect lenny > tags 570152 + sid squeeze Bug #570152 {Done: Micha Lenk } [gnucash] gnucash: Please build against new version of libgoffice-0.8 Added tag(s) squeeze and sid. > thanks Stopping processing here. Please contact me if yo

Processed: tagging 570152

Processing commands for cont...@bugs.debian.org: > # Bug doesn't affect sid or squeeze anymore > tags 570152 - sid squeeze Bug #570152 {Done: Micha Lenk } [gnucash] gnucash: Please build against new version of libgoffice-0.8 Removed tag(s) squeeze and sid. > thanks Stopping processing here. Plea

Bug#603861: marked as done (fetchmailconf: looks in the wrong place for fetchmailconf.py)

Your message dated Wed, 01 Dec 2010 22:47:24 + with message-id and subject line Bug#603861: fixed in fetchmail 6.3.18-2 has caused the Debian Bug report #603861, regarding fetchmailconf: looks in the wrong place for fetchmailconf.py to be marked as done. This means that you claim that the pro

Processed: Re: Bug#603513: [Pkg-javascript-devel] Bug#603513: yui: multiple xss issues in included swf files

Processing commands for cont...@bugs.debian.org: > tag 591199 squeeze-ignore Bug #591199 [src:yui] yui: does not build swf files from source Bug #591383 [src:yui] libjs-yui: does not build .swf files from source Added tag(s) squeeze-ignore. Added tag(s) squeeze-ignore. > kthxbye Stopping processin

Bug#603513: [Pkg-javascript-devel] Bug#603513: yui: multiple xss issues in included swf files

tag 591199 squeeze-ignore kthxbye On Wed, Dec 1, 2010 at 23:09:34 +0100, Moritz Muehlenhoff wrote: > We should update the SWF files affected through #603513 with their > versions from YUI 2.8.2 and tag #591199 squeeze-ignore. For Wheezy > we can get the necessary SWF compilers into the archive

Processed: Re: [pkg-fetchmail-maint] Bug#603861: fetchmailconf: looks in the wrong place for fetchmailconf.py

Processing commands for cont...@bugs.debian.org: > severity 603861 grave Bug #603861 [fetchmailconf] fetchmailconf: looks in the wrong place for fetchmailconf.py Severity set to 'grave' from 'normal' > thanks Stopping processing here. Please contact me if you need assistance. -- 603861: http:/

Processed: Re: Bug#605527: approx: routinely has inconsistant Release* and Packages* files

Processing commands for cont...@bugs.debian.org: > tags 605527 +moreinfo Bug #605527 [approx] approx: routinely has inconsistant Release* and Packages* files Added tag(s) moreinfo. > thanks Stopping processing here. Please contact me if you need assistance. -- 605527: http://bugs.debian.org/cgi

Bug#605527: approx: routinely has inconsistant Release* and Packages* files

tags 605527 +moreinfo thanks On Tue, Nov 30, 2010 at 02:18:16PM -0800, Vagrant Cascadian wrote: > Package: approx > Version: 4.5-1 > Severity: grave > Justification: renders package unusable > > approx is failing to cache the mirror correctly. > > i routinely end up with apt-get update from appr

Bug#598389: Unblock request for suricata 1.0.2

On 12/01/2010 10:48 PM, Adam D. Barratt wrote: > I've just had a quick look at your t-p-u upload for suricata. Without > getting too far in to checking the patches themselves, one thing that I > noticed is that the diff adds nine new patches to debian/patches but > debian/patches/series is only ei

Processed: Re: mysql-gui-tools: EOL upstream, should not be shipped in squeeze, replaced by MySQL Workbench

Processing commands for cont...@bugs.debian.org: > severity 584987 important Bug #584987 [mysql-gui-tools] mysql-gui-tools: EOL upstream, should not be shipped in squeeze, replaced by MySQL Workbench Severity set to 'important' from 'serious' > thanks Stopping processing here. Please contact me

Bug#603513: [Pkg-javascript-devel] Bug#603513: yui: multiple xss issues in included swf files

Jaldhar H. Vyas wrote: > On Mon, 29 Nov 2010, Thomas Goirand wrote: > >> Take care if you do that: there's some reverse dependencies involved! >> I'd rather that you just remove the swf files from the package, and >> create a non-free package for them. There's many cases were you will >> need yui,

Bug#584987: mysql-gui-tools: EOL upstream, should not be shipped in squeeze, replaced by MySQL Workbench

severity 584987 important thanks On Wed, Dec 01, 2010 at 09:28:56AM +0800, Paul Wise wrote: > On Wed, 2010-12-01 at 00:53 +0100, Moritz Muehlenhoff wrote: > > > I noticed this bug when filing a bug for CVE-2010-4177 and CVE-2010-4178. > > Raising severity so that it gets checked whether we want t

Bug#598389: Unblock request for suricata 1.0.2

On Tue, 2010-11-09 at 21:03 +, Adam D. Barratt wrote: > On Tue, 2010-11-09 at 17:58 +0100, Pierre Chifflier wrote: > > Suricata 1.0.2 was released after the freeze, and it fixes several > > bugs (exactly, "half a dozen TCP evasions"). > > See http://www.packetstan.com/2010/09/suricata-tcp-evasi

Bug#605218: apt-get dist-upgrade fails to install ia32-libs

On Wed, Dec 1, 2010 at 16:18:54 -0500, Michael Gilbert wrote: > Since ia32-libs-workaround-499043 is a third-party package, this really > isn't Debian's problem. I think that the bug can be safely closed. In > the meantime, this discussion can serve as a record for anyone else who > may have inst

Bug#605218: apt-get dist-upgrade fails to install ia32-libs

Since ia32-libs-workaround-499043 is a third-party package, this really isn't Debian's problem. I think that the bug can be safely closed. In the meantime, this discussion can serve as a record for anyone else who may have installed the rogue package and run into the problem. Mike -- To UNSUBS

Bug#600930: marked as done (rsyslog: FTBFS (powerpc): undefined reference to `__sync_fetch_and_add_8')

Your message dated Wed, 01 Dec 2010 21:02:51 + with message-id and subject line Bug#600930: fixed in rsyslog 5.7.2-2 has caused the Debian Bug report #600930, regarding rsyslog: FTBFS (powerpc): undefined reference to `__sync_fetch_and_add_8' to be marked as done. This means that you claim t

Processed: retitle 605595 to brdesktop-common: recommends splashy and printconf (not in squeeze)

Processing commands for cont...@bugs.debian.org: > retitle 605595 brdesktop-common: recommends splashy and printconf (not in > squeeze) Bug #605595 [brdesktop-common] brdesktop-common: recommends splashy (not in squeeze) Changed Bug title to 'brdesktop-common: recommends splashy and printconf (n

Bug#605595: brdesktop-common: recommends splashy (not in squeeze)

On 12/01/2010 06:33 PM, Julien Cristau wrote: > > splashy was removed from squeeze, but brdesktop-common still > recommends it. > and I've just added a removal hint for foomatic-gui, which builds the binary package printconf recommended by brdesktop-common. So, that's needs fixing too. Regards

Bug#598639: [RC: #598639] foomatic-gui/printconf: Not working in modern CUPS environments

On 11/27/2010 02:01 PM, Didier 'OdyX' Raboud wrote: > > as discussed over IRC and at the Bern BSP, I propose to remove the > foomatic-gui source package altogether from Squeeze (at least), for > the following reasons: > > * Doesn't work with CUPS (the most used printing system), see this > bug

Bug#605616: cdimage.d.o has broken 5.0.7-live mirror

Package: cdimage.debian.org Severity: serious cdimage.d.o mirrors live images from live.d.n. however, for the 5.0.7 release, all *.img files mirrored on cdimage.d.o are broken (size 20 instead of several hundreds of megabytes), apparently the mirroring process was corrupted somehow. -- Address:

Bug#605565: marked as done (gnustep-base-runtime: unremovable if the daemon is not running)

Your message dated Wed, 01 Dec 2010 20:33:07 + with message-id and subject line Bug#605565: fixed in gnustep-base 1.20.1-5 has caused the Debian Bug report #605565, regarding gnustep-base-runtime: unremovable if the daemon is not running to be marked as done. This means that you claim that th

Bug#598135: Severity

Hia, I'm currently wondering why #598135 is RC. Would someone care to explain what I'm missing? :) Thanks, Neil -- [local irc server has just been brought up] suddenly there's quite some silence in the hacklab -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subjec

Bug#605612: caret: Incompatibility with recent Qt versions causes surface IO to corrupt data

Package: caret Version: 5.6.1.3~dfsg.1-1 Severity: grave Tags: upstream Justification: renders package unusable When reading surface data files, Caret (when linked against recent Qt version, e.g. 4.6) fails to load the data properly. Consequently, it becomes impossible to use any functionality wit

Bug#605569: marked as done (tasksel - s...@latin broken)

Your message dated Wed, 01 Dec 2010 19:17:08 + with message-id and subject line Bug#605569: fixed in tasksel 2.86 has caused the Debian Bug report #605569, regarding tasksel - s...@latin broken to be marked as done. This means that you claim that the problem has been dealt with. If this is no

Processed: Re: Bug#605569: tasksel - s...@latin broken

Processing commands for cont...@bugs.debian.org: > tags 605569 pending Bug #605569 [tasksel] tasksel - s...@latin broken Added tag(s) pending. > thanks Stopping processing here. Please contact me if you need assistance. -- 605569: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=605569 Debian Bu

Bug#605569: tasksel - s...@latin broken

tags 605569 pending thanks Quoting Alberto (coleccions...@terra.es): > Package: tasksel > Version: 2.85 > Severity: grave > > From a lenny->squeeze upgrade: > > Configurando tasksel (2.85) ... > Error de análisis de plantilla cerca de `description...@latin.utf-8: > Izaberite softver za instalira

Processed: Re: Bug#603407: gearman-server: Server hangs when job is submitted

Processing commands for cont...@bugs.debian.org: > tag 603407 + unreproducible Bug #603407 [gearman-server] gearman-server: Server hangs when job is submitted Added tag(s) unreproducible. > severity 603407 normal Bug #603407 [gearman-server] gearman-server: Server hangs when job is submitted Sever

Bug#603407: gearman-server: Server hangs when job is submitted

tag 603407 + unreproducible severity 603407 normal thanks On Mon, 15 Nov 2010 19:21:28 +0100, gregor herrmann wrote: > Oh, BTW; in your tests with the newer version of gearman-server, have > you also updated libgearman-client-perl? It has also 1.09 in lenny > and 1.11 in squeeze and sid. If not c

Processed: severity of 604472 is important

Processing commands for cont...@bugs.debian.org: > severity 604472 important Bug #604472 [linux-2.6] b43/ssb driver causes some laptops to freeze during boot Severity set to 'important' from 'serious' > thanks Stopping processing here. Please contact me if you need assistance. -- 604472: http:/

Bug#598309: Security unblock requests (ust/0.7-2.1)

On Wed, Dec 1, 2010 at 12:35:00 -0500, Jon Bernard wrote: > Otherwise, no objections to upload? > Please go ahead, thanks. Cheers, Julien signature.asc Description: Digital signature

Bug#493599: pushing udns into squeeze

Replying to an old email from more than a year ago. I'm about to release a new version of udns, and thought I'd put some missing dots under "i"s and address the concerns... I'm quoting whole thing just to show context, I have a question for only one point below, with a few short comments. 13.07.

Bug#605603: wordpress: Author level SQL injection vulnerability fixed in 3.0.2

Package: wordpress Version: 3.0.1-2 Severity: grave Tags: security Justification: user security hole 3.0.2 includes an update which appears to fix an SQL injection attack: This looks worthy of an update f

Processed: limit source to gnustep-base, tagging 605565

Processing commands for cont...@bugs.debian.org: > #gnustep-base (1.20.1-5) unstable; urgency=high > # > # * debian/gnustep-base-runtime.gdomap.in: Pass --oknodo to > #start-stop-daemon; thanks Adam Borowski (Closes: #605565). > # > limit source gnustep-base Limiting to bugs with field 'sourc

Processed: limit source to gnustep-base, tagging 605565

Processing commands for cont...@bugs.debian.org: > #gnustep-base (1.20.1-5) unstable; urgency=high > # > # * debian/gnustep-base-runtime.gdomap.in: Pass --oknodo to > #start-stop-daemon; thanks Adam Borowski (Closes: #605565). > # > limit source gnustep-base Limiting to bugs with field 'sourc

Bug#604798: marked as done (missing dependency on python-gnome2)

Your message dated Wed, 01 Dec 2010 17:47:58 + with message-id and subject line Bug#604798: fixed in gnome-python-desktop 2.30.0-4 has caused the Debian Bug report #604798, regarding missing dependency on python-gnome2 to be marked as done. This means that you claim that the problem has been

Bug#598309: Security unblock requests (ust/0.7-2.1)

* Julien Cristau wrote: > On Wed, Dec 1, 2010 at 11:52:00 -0500, Jon Bernard wrote: > > > diff -Nru ust-0.5/debian/changelog ust-0.5/debian/changelog > > --- ust-0.5/debian/changelog2010-07-02 11:34:52.0 -0400 > > +++ ust-0.5/debian/changelog2010-11-30 21:23:43.0

Bug#605596: brdesktop-artwork-splashy: recommends splashy (not in squeeze)

Package: brdesktop-artwork-splashy Version: 0.7 Severity: serious Justification: Policy 2.2.1 splashy was removed from squeeze, so keeping brdesktop-artwork-splashy probably makes little sense at this point. Cheers, Julien -- System Information: Debian Release: squeeze/sid APT prefers testing

Bug#605595: brdesktop-common: recommends splashy (not in squeeze)

Package: brdesktop-common Version: 0.6 Severity: serious Justification: Policy 2.2.1 splashy was removed from squeeze, but brdesktop-common still recommends it. Cheers, Julien -- System Information: Debian Release: squeeze/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable

Bug#604060: marked as done (pootle: XSS via 'match_names' parameter)

Your message dated Wed, 01 Dec 2010 17:17:25 + with message-id and subject line Bug#604060: fixed in pootle 2.0.5-0.3 has caused the Debian Bug report #604060, regarding pootle: XSS via 'match_names' parameter to be marked as done. This means that you claim that the problem has been dealt wit

Bug#598309: Security unblock requests (ust/0.7-2.1)

On Wed, Dec 1, 2010 at 11:52:00 -0500, Jon Bernard wrote: > diff -Nru ust-0.5/debian/changelog ust-0.5/debian/changelog > --- ust-0.5/debian/changelog 2010-07-02 11:34:52.0 -0400 > +++ ust-0.5/debian/changelog 2010-11-30 21:23:43.0 -0500 > @@ -1,3 +1,9 @@ > +ust (0.5-1+squeeze1)

Bug#602869: marked as done (gadmin-openvpn-server: puts logfile in /etc instead of /var/log)

Your message dated Wed, 01 Dec 2010 17:02:37 + with message-id and subject line Bug#602869: fixed in gadmin-openvpn-server 0.1.5-3.1 has caused the Debian Bug report #602869, regarding gadmin-openvpn-server: puts logfile in /etc instead of /var/log to be marked as done. This means that you cl

Bug#598309: Security unblock requests (ust/0.7-2.1)

* Moritz Muehlenhoff wrote: > On Mon, Nov 15, 2010 at 05:13:22PM -0500, Jon Bernard wrote: > > * Moritz Muehlenhoff wrote: > > > On Wed, Nov 03, 2010 at 01:06:24AM +0200, Jari Aalto wrote: > > > > The following message is a courtesy copy of an article > > > > that has been posted to gmane.linux.d

Bug#605112: marked as done (postgresql-8.4: FTBFS on kfreebsd-i386)

Your message dated Wed, 1 Dec 2010 17:15:03 +0100 with message-id <20101201161503.gt5...@radis.liafa.jussieu.fr> and subject line Re: Bug#605112: postgresql-8.4: FTBFS on kfreebsd-i386 has caused the Debian Bug report #605112, regarding postgresql-8.4: FTBFS on kfreebsd-i386 to be marked as done.

Bug#603429: hylafax-server: prompting due to modified conffiles which where not modified by the user

tags 603429 + patch thanks Hi! * Holger Levsen [101114 01:04]: [..] > From the attached log (scroll to the bottom...): > > Configuration file `/etc/default/hylafax' >==> Modified (by you or by a script) since installation. >==> Package distributor has shipped an updated version. >

Processed: Re: Bug#603429: hylafax-server: prompting due to modified conffiles which where not modified by the user

Processing commands for cont...@bugs.debian.org: > tags 603429 + patch Bug #603429 [hylafax-server] hylafax-server: prompting due to modified conffiles which where not modified by the user Added tag(s) patch. > thanks Stopping processing here. Please contact me if you need assistance. -- 603429

Processed: forcibly merging 583738 575798

Processing commands for cont...@bugs.debian.org: > forcemerge 583738 575798 Bug#583738: ghostscripts pdftoraster fails printing from gtk apps Bug#575798: cups: cannot print from gedit and evince Bug#584942: /usr/lib/cups/filter/pdftoraster failed Forcibly Merged 575798 583738 584942. > thanks Sto

Bug#493599: Transaction ID and Source Port not random enough

On Wed, Dec 01, 2010 at 06:44:26PM +0300, Michael Tokarev wrote: > After several years of silence I'm about to release > a new version of udns, with just one bugfix and a change > from sequentional queue IDs for queries to random, using > a simple pseudo-random number generator by Bob Jenkins. > >

Bug#583738: marked as done (ghostscripts pdftoraster fails printing from gtk apps)

Your message dated Wed, 1 Dec 2010 16:39:46 +0100 with message-id <20101201153946.ga7...@jones.dk> and subject line Re: Bug#583738: It's there again has caused the Debian Bug report #583738, regarding ghostscripts pdftoraster fails printing from gtk apps to be marked as done. This means that you c

Processed: autolog: diff for NMU version 0.40-13.1

Processing commands for cont...@bugs.debian.org: > tags 604208 + pending Bug #604208 [autolog] autolog: package purge (after dependencies removal) fails Added tag(s) pending. > thanks Stopping processing here. Please contact me if you need assistance. -- 604208: http://bugs.debian.org/cgi-bin/bu

Processed: unmerging 583738

Processing commands for cont...@bugs.debian.org: > unmerge 583738 Bug#583738: ghostscripts pdftoraster fails printing from gtk apps Bug#575798: cups: cannot print from gedit and evince Bug#584942: /usr/lib/cups/filter/pdftoraster failed Disconnected #583738 from all other report(s). > thanks Stop

Bug#604208: autolog: diff for NMU version 0.40-13.1

tags 604208 + pending thanks Dear maintainer, I've prepared an NMU for autolog (versioned as 0.40-13.1) and uploaded it to DELAYED/2. Please feel free to tell me if I should delay it longer. Regards. -- Mehdi Dogguy diff -Nru autolog-0.40/debian/changelog autolog-0.40/debian/changelog --- auto

Bug#493599: Transaction ID and Source Port not random enough

After several years of silence I'm about to release a new version of udns, with just one bugfix and a change from sequentional queue IDs for queries to random, using a simple pseudo-random number generator by Bob Jenkins. This affects queueIDs _only_, not source port, because by design udns uses j

Bug#605584: mercurial-server: leaves unowned files on purge

Package: mercurial-server Version: 1.0.1-1.1 Severity: serious Your postrm does: if remove_repositories_on_purge; then echo -n "Removing hg user and purging data..." deluser --remove-home --quiet --system hg > /dev/null || true else echo -n "Rem

Processed: severity of 602546 is normal

Processing commands for cont...@bugs.debian.org: > severity 602546 normal Bug #602546 [libopensc2] libopensc2 package contains unversioned .so files Severity set to 'normal' from 'serious' > thanks Stopping processing here. Please contact me if you need assistance. -- 602546: http://bugs.debian

Bug#521227: marked as done (irssi-plugin-xmpp: Segfault when successfully identified)

Your message dated Wed, 1 Dec 2010 16:11:28 +0100 with message-id <20101201151128.ga18...@radis.liafa.jussieu.fr> and subject line Re: Bug#521227: Segfault when successfully identified has caused the Debian Bug report #521227, regarding irssi-plugin-xmpp: Segfault when successfully identified to be

Processed: notfound 521227 in 0.50+cvs20100122-1, notfound 521227 in 0.51+cvs20100627-1

Processing commands for cont...@bugs.debian.org: > notfound 521227 0.50+cvs20100122-1 Bug #521227 [irssi-plugin-xmpp] irssi-plugin-xmpp: Segfault when successfully identified Bug No longer marked as found in versions irssi-plugin-xmpp/0.50+cvs20100122-1. > notfound 521227 0.51+cvs20100627-1 Bug #

Bug#605562: installation-report: Installation from usb stick lead to unbootable system (und unbootable usb stick)

Hi! Am 01.12.2010 14:59, schrieb Gaudenz Steinlin: > The most reliable test is to do a complete reinstall to an empty > partition. This would leave your existing installation intact. Okay, I'll try to do that tomorrow, when I got a new disc. Best regards, Alexander -- To UNSUBSCRIBE, ema

Bug#605484: libapache2-mod-fcgid: stack overwrite vulnerability

On 12/01/2010 03:09 AM, Tatsuki Sugiura wrote: Hello, Thank you for noticing me. I'll check tomorrow. BTW, do you know about how to update backports archive? Is it OK to request on debian-backports ML? I sadly know almost nothing about that, but I'm sure it wouldn't hurt to ask on the list.

Bug#605562: installation-report: Installation from usb stick lead to unbootable system (und unbootable usb stick)

Excerpts from Alexander Reichle-Schmehl's message of Mit Dez 01 12:04:46 +0100 2010: > Hi Gaudenz! > > Am 01.12.2010 11:57, schrieb Gaudenz Steinlin: > > >> I booted from usb stick (which was presented as /dev/sda) on a hardware > >> raid (/dev/sdb). After the system was successfully installed,

Bug#591115: marked as done (doctrine: FTBFS: failed tests)

Your message dated Wed, 01 Dec 2010 13:17:09 + with message-id and subject line Bug#591115: fixed in doctrine 1.2.2-2 has caused the Debian Bug report #591115, regarding doctrine: FTBFS: failed tests to be marked as done. This means that you claim that the problem has been dealt with. If this

Bug#591115: Bug forwarded

Hi! Am 30.11.2010 19:25, schrieb Federico Gimenez Nieto: >> So my understanding would be, that a >> legitimate fix would be to disbale this test (without uploading a NEW >> upstream version). If you could prepere that, I'm willing to sponsor >> the upload; if you got the OK from the release team

Bug#605232: marked as done (/etc/network/ifupdown-scripts-zg2.d/vlan fails with dash as /bin/sh bashism in common-funktions)

Your message dated Wed, 01 Dec 2010 11:32:06 + with message-id and subject line Bug#605232: fixed in ifupdown-scripts-zg2 0.3-4.1 has caused the Debian Bug report #605232, regarding /etc/network/ifupdown-scripts-zg2.d/vlan fails with dash as /bin/sh bashism in common-funktions to be marked as

Bug#605562: installation-report: Installation from usb stick lead to unbootable system (und unbootable usb stick)

Hi Gaudenz! Am 01.12.2010 11:57, schrieb Gaudenz Steinlin: >> I booted from usb stick (which was presented as /dev/sda) on a hardware >> raid (/dev/sdb). After the system was successfully installed, the >> bootloader was installed to the mbr of /dev/sda (the usb stick), not my >> hard disc (/dev

Processed: Re: Bug#605562: installation-report: Installation from usb stick lead to unbootable system (und unbootable usb stick)

Processing commands for cont...@bugs.debian.org: > reassign 605562 grub-installer Bug #605562 [installation-reports] installation-report: Installation from usb stick lead to unbootable system (und unbootable usb stick) Bug reassigned from package 'installation-reports' to 'grub-installer'. Bug No

Bug#605562: installation-report: Installation from usb stick lead to unbootable system (und unbootable usb stick)

reassign 605562 grub-installer forcemerge 568529 605562 Thanks Excerpts from Alexander Reichle-Schmehl's message of Mit Dez 01 11:05:01 +0100 2010: > Boot method: USB stick > Image version: beta1 AMD64 > Date: 2010-11-29 > Install boot loader:[E] > Overall install:[E] > > Comments/P

Bug#604932: Segfaults when playing first song

Just to add my 2 cents to that bug. I have the exact same bug, with the same arch. When I mean the same bug, I have the same conf and the same version. The core files is the same. It seems that libvorbisenc on armel is not working... Cheers everyone -- To UNSUBSCRIBE, email to debian-bugs-rc

Bug#605569: tasksel - s...@latin broken

Package: tasksel Version: 2.85 Severity: grave From a lenny->squeeze upgrade: Configurando tasksel (2.85) ... Error de análisis de plantilla cerca de `description...@latin.utf-8: Izaberite softver za instaliranje:', en la estrofa #1 de /var/lib/dpkg/info/tasksel.templates dpkg: error al proce

Bug#603926: marked as done (Policy violation when modifying a conf-file.)

Your message dated Wed, 01 Dec 2010 10:47:06 + with message-id and subject line Bug#603926: fixed in webfs 1.21+ds1-7 has caused the Debian Bug report #603926, regarding Policy violation when modifying a conf-file. to be marked as done. This means that you claim that the problem has been deal

Bug#605565: gnustep-base-runtime: unremovable if the daemon is not running

Package: gnustep-base-runtime Version: 1.20.1-4 Severity: serious Tags: patch Justification: Policy 9.3.2 If the gdomap daemon is for any reason not working (manually stopped, crashed, disabled in a chroot, disabled by the rc policy, botched install, etc), removal of the gnustep-base-runtime pack

Bug#584653: RC bugs in upcoming stable

Arne mentioned http://security-tracker.debian.org/tracker/CVE-2010-2055 and in there, I see: - Bug #592569 is referenced. Surely wrong: that CVE pre-dates my request to make -dSAFER the default, was about -P- and similar. - "experimental 9.00~dfsg-2 vulnerable" whereas bugs #584653 and #58

Bug#605560: [Pkg-utopia-maintainers] Bug#605560: network-manager: installation breaks (reset required) a "diskless" box

forcemerge 569215 605560 tags 569215 confirmed thanks On 01.12.2010 10:14, Sascha Silbe wrote: > The network interface that NetworkManager brought down was explicitly > configured as "manual" in /etc/network/interfaces: > > === Begin snippet === > #auto eth1 > #iface eth1 inet dhcp > # eth1 aut

Processed: Re: [Pkg-utopia-maintainers] Bug#605560: network-manager: installation breaks (reset required) a "diskless" box

Processing commands for cont...@bugs.debian.org: > forcemerge 569215 605560 Bug#569215: network-manager: ignores setting of unmanaged mode Bug#605560: network-manager: installation breaks (reset required) a "diskless" box Bug#582574: network-manager ignores configured interfaces in /etc/network/

Bug#605562: installation-report: Installation from usb stick lead to unbootable system (und unbootable usb stick)

Package: installation-reports Version: 2.43 Severity: serious Tags: d-i Justification: Renders System unusable -- Package-specific info: Boot method: USB stick Image version: beta1 AMD64 Date: 2010-11-29 Machine: Dell Precision T3400 Partitions: FilesystemType 1K-blocks Used Available

Bug#584653: RC bugs in upcoming stable

So, to clarify, does that mean that this 6 month old [1] security problem which was deemed too difficult to fix by the stable security team [2] will be around for the next 2 years because the only available fix does not make it into stable? [3] [1] http://www.securityfocus.com/archive/1/511433 [2]

Bug#605484: libapache2-mod-fcgid: stack overwrite vulnerability

Hello, Thank you for noticing me. I'll check tomorrow. BTW, do you know about how to update backports archive? Is it OK to request on debian-backports ML? >>> In Message "Bug#605484: libapache2-mod-fcgid: stack overwrite vulnerability" >>><20101130144044.13636.41836.report...@glocken

Processed: Re: Bug#593607: pcmanfm wrongly deleted some files in a failed move operation

Processing commands for cont...@bugs.debian.org: > fixed 593607 0.9.8-1 Bug #593607 {Done: Andrew Lee } [pcmanfm] pcmanfm wrongly deleted some files in a failed move operation Bug Marked as fixed in versions pcmanfm/0.9.8-1. > thanks Stopping processing here. Please contact me if you need assist

Bug#593607: pcmanfm wrongly deleted some files in a failed move operation

fixed 593607 0.9.8-1 thanks Hi Andrew! Am 01.12.2010 10:13, schrieb Andrew Lee: > Thanks Alexander for the reminder. Since there is no response and we are > in a freeze status. I assume this has been fixed, and close this bug now. Fine, fine. I also marked the current version in sid as not af

Bug#605560: network-manager: installation breaks (reset required) a "diskless" box

Package: network-manager Version: 0.8.1-4 Severity: grave Justification: causes non-serious data loss Installing network-manager on a box with / on NFS brings down the primary network interface, rendering the root file system inaccessible. I had to manually disable /etc/init.d/network-manager (fr

Bug#593607: marked as done (pcmanfm wrongly deleted some files in a failed move operation)

Your message dated Wed, 01 Dec 2010 17:13:02 +0800 with message-id <4cf6119e.10...@debian.org> and subject line Re: Bug#593607: pcmanfm wrongly deleted some files in a failed move operation has caused the Debian Bug report #593607, regarding pcmanfm wrongly deleted some files in a failed move oper

Bug#569540: marked as done (crashes on start, potamus: munmap_chunk(): invalid pointer calling jack_ringbuffer_free)

Your message dated Wed, 01 Dec 2010 08:48:50 + with message-id and subject line Bug#569540: fixed in potamus 0.12-1 has caused the Debian Bug report #569540, regarding crashes on start, potamus: munmap_chunk(): invalid pointer calling jack_ringbuffer_free to be marked as done. This means tha

Processed: tagging 569540

Processing commands for cont...@bugs.debian.org: > # this patch is included in 0.12; will be fixed soon in a QA upload > tags 569540 + fixed-upstream pending Bug #569540 [potamus] crashes on start, potamus: munmap_chunk(): invalid pointer calling jack_ringbuffer_free Added tag(s) pending and fixe