roper time to test the new
defaults. Could you reconsider?
Best,
Lorenzo
>
> On 2025-05-22 15:04:43 -0300, Santiago Ruano Rincón wrote:
> > Control: severity -1 important
> >
> > El 19/05/25 a las 22:26, Bastian Blank escribió:
> > > Source: isc-dhcp
> > >
Control: tag -1 pending
Hello,
Bug #1103152 in runit reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/debian/runit/-/commit/6142d7b9f1ab17a680ebef0c306c12139aeb9
Hi,
updated patch with fuser attached
Best,
Lorenzo
>From 6142d7b9f1ab17a680ebef0c306c12139aeb9376 Mon Sep 17 00:00:00 2001
From: Lorenzo Puliti
Date: Wed, 16 Apr 2025 10:50:18 +0200
Subject: [PATCH] getty-run: fix tests for busy getty device
* fix tests for when a getty is already busy w
Control: tags -1 patch
Hi,
patch attached
Andrew, Andras,
let me know if this looks good to you
Best,
Lorenzo
>From 58a61460b572460e67dc911a9eea60bd9b8c6529 Mon Sep 17 00:00:00 2001
From: Lorenzo Puliti
Date: Wed, 16 Apr 2025 10:50:18 +0200
Subject: [PATCH] getty-run: fix tests for busy ge
ble this specific service by default, I don't have a strong opinion
on that, but is a subject for a separate bug and I'm not going to
change that during the release process (so it can happen after Trixie)
Lorenzo
>
> (Not perfect, but it would have helped me at least.)
>
urgent.
If you are too busy would it be ok if I ask for sponsorship on mentors
on your behalf, with the version that is already in git?
If you welcome comaintainers I would happily take care of this package
while you are busy elsewhere.
Best Regards,
Lorenzo
[1] https://release.debian.org/testing
the RFS on mentors with a fix for this bug,
so please cancel the NMU and wait for that one to be sponsored.
Also, I would really like to avoid other surprises like this so I'm
marking the test as flaky and intend to keep it so until Trixie is
released.
Best,
Lorenzo
>
>
Control: tag -1 pending
Hello,
Bug #1099717 in runit reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/debian/runit/-/commit/0b940f03614c0eccd8bf58a690f5b2e6ab6c7
Control: tag -1 pending
Hello,
Bug #1090770 in runit reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/debian/runit/-/commit/25ff2a2d3e9d80a1b232f702ae5c2f5e8a7e8
Control: tag -1 pending
Hello,
Bug #981799 in runit reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/debian/runit/-/commit/90a98d42c6ea08d28f27ac7d812920bca7f2cd
pendency on dh-buildinfo
> and builds with dh --with buildinfo.
>
> This is now unsatisfiable, cf. #1068809.
>
> Patch attached.
patch merged in git (next branch),
Thanks,
Lorenzo
Control: tag -1 pending
Hello,
Bug #1090770 in runit reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/debian/runit/-/commit/5e3a41fc1ff45eb441c5f1cfc175c18b9fbd6
Control: tag -1 pending
Hello,
Bug #981937 in dh-sysuser reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/debian/dh-sysuser/-/commit/e93fef75bc05ec7cb8b05db7ebb1
Control: tag -1 pending
Hello,
Bug #1075294 in mplayer reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/multimedia-team/mplayer/-/commit/757b83e7904499eed1ca7170
Control: tag -1 pending
Hello,
Bug #1075484 in runit reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/debian/runit/-/commit/3e3ceeebb948d41332a8930594010f44ebd19
Control: tag -1 pending
Hello,
Bug #1073780 in runit reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/debian/runit/-/commit/a5d45f277169cf3e624c8a857b993992ac4c5
waflib/Context.py", line 9, in import
> > os, re, imp, sys ModuleNotFoundError: No module named 'imp'
> > make[1]: *** [debian/rules:22: override_dh_auto_configure] Error 1
is this an issue with python 3.12 (removed support for imp)?
there is an upstream commit that m
ion script subprocess
> returned error exit status 1
>
>
Is this is a duplicate of #950986?
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=950986
I bet the patch there would fix this bug too
Lorenzo
e may cause file loss.
I'm missing something for sure here, but sysvinit-core has a conflict
with systemd-sysv and both bfh-container and progress-linux-container
depends on systemd-sysv so they already should not be installed at the
same time in a system regardless of the versioned conflicts
Control: tag -1 pending
Hello,
Bug #1060709 in dh-runit reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/debian/dh-runit/-/commit/b4dca34fb7dfb366eaf13dea544e163
Control: tag -1 pending
Hello,
Bug #1060709 in dh-runit reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/debian/dh-runit/-/commit/e212a345deea6c322d7c168ae19dd34
further time on
this bug since it can be fixed with an upload, but I can elaborate if
you want me to.
Best Regards,
Lorenzo
>
> Helmut
>
>
>
Hi Helmut,
On Sat, 18 Nov 2023 09:19:46 +0100
Helmut Grohne wrote:
> Control: severity -1 serious
>
Could you please clarify how this is blocking the usrmerge transition,
besides runit itself missing a trigger?
Lorenzo
> I am raising the bug about missing trigger interest to
Control: tag -1 pending
Hello,
Bug #1028181 in runit reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/debian/runit/-/commit/31798bad784058f891c7102c7091620bb0a42
there
is no documentation on how to do it and anyway there is room for
improvement. I've opened a separate (#1028270) bug for the "no way to
login" issue above, if you disagree with the non-RC severity of
#1028270 please change the severity of that one as I'm going to close
this one by adding two dependency to runit-init.
Best,
Lorenzo
> Helmut
Hi Sebastian,
Could you please clarify if this package should be maintained inside the
Debian-Multimedia Team or outside? I.e. an uploader or a new maintainer?
Regards,
Lorenzo
On Wed, 16 Feb 2022 23:25:00 +0100 Sebastian Ramacher
wrote:
> Source: mplayer
> Version: 2:1.4+ds1-3
>
Control: tag -1 pending
Hello,
Bug #1001733 in dh-sysuser reported by you has been fixed in the
Git repository and is awaiting an upload. You can see the commit
message below and you can check the diff of the fix at:
https://salsa.debian.org/debian/dh-sysuser/-/commit/2849beb7e185c4f66569d26877a
d 247.3-6 ]
>
> As opensysusers is supposed to be a drop-in requirement for
> systemd-sysusers it *must* behave as systemd does and not execute
> data.
>
> Ansgar
>
Attached is a patch that sets the GECOS field without using eval: under
the assumption that the double quote
Source: runit
Version: 2.1.2-41exp
Severity: serious
Tags: ftbfs
Justification: fails to build from source (but built successfully in the past)
X-Debbugs-Cc: plore...@disroot.org
According to buildd logs, the shutdown.c source fails to build
on Hurd
> debian/contrib/shutdown.c:108:10: error: ‘RB_
Package: trafficserver
Version: 8.0.2+ds-1+deb10u4
Severity: grave
Tags: security
Justification: user security hole
-- System Information:
Debian Release: 10.10
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.19.0-
proc; then
systemd-tmpfiles --create --prefix /var/log/journal
fi
This is not a bug in opentmpfiles until systemd does not document
that the prefix option can be used as in the above snippet.
So I'm reassigning to systemd
Regards,
Lorenzo
> > Le 2021-04-13 15:44, Michael Bieb
Package: libqt5widgets5
Version: 5.15.2+dfsg-4
Severity: critical
Tags: upstream newcomer
Justification: breaks unrelated software
Dear Maintainer,
Recently i found a bug in QGLWidget (one of the widgets included in
libqt5widgets5) that
creates a segfault. This bug was accepted as upstream bug 86
ory, the code
that you are looking for will be written by dh-installinit in place of
the #DEBHEPLER# placeholder, during the build of the package.
To find out what the postinst will look like just compare the one in the
source with the one in the deb package in the archive.
Lorenzo
users.
Despite the apparent inaction on this bug, I'm still thinking on a
possible different solution.
Regards,
Lorenzo
Package: podman
Version: 2.0.3+dfsg1-1
Followup-For: Bug #966093
Dear Robby and Maintainer,
to avoid the described failure in running podman *as a regular user*, it's
enough to execute the command:
$ echo 'runtime = "crun"' > ~/.config/containers/libpod.conf
afterwards, both
$ podman info
an
Package: podman
Version: 2.0.3+dfsg1-1
Followup-For: Bug #966093
Dear Robby and Maintainer,
while I can confirm `podman` doesn't correctly execute the `crun` runtime when
started from a regular user, after executing the following command from the
user's shell:
$ echo 'runtime = "crun"' > ~/.c
Package: runit
Version: 2.1.2-36
Followup-For: Bug #953875
Control: tag -1 patch
There is an open RFS bug (#960940) on mentors that fixes this bug.
See https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=960940
Lorenzo
-- System Information:
Debian Release: bullseye/sid
APT prefers unstable
Package: src:dh-runit
Followup-For: Bug #954190
This is probably a bug in libghc-shake-dev, for example the changelog of
haskell-shake that says
' * Disable testsuite on armhf, fails on Ubuntu builders, probably
due to a misalignment bug due to 64bit kernel. '
-- System Information:
Debian
xt alternative (runit-sysv), or it will
proceed without recommends, or it will give an error?
I'm asking because there are downstreams (like Devuan) that blacklist
systemd packages
in their archive and I would like to understand what will happen there.
Regards,
Lorenzo
sysv implementation is respawned with a line in
/etc/inittab which
is a conffile of sysvinit-core. And even if I ship and maintain my own
version of inittab,
I would still have to deal with 'runit-init'.
Regards,
Lorenzo
-- System Information:
Debian Release: bullseye/sid
APT
Control: tag -1 + confirmed
surprised that apt is choosing a recommend that
removes packages when another alternative recommends that does not
require to remove any package exists. I wonder under which condition apt
will choose to install the second alternative recommends if removing
packages is not enough ? Lorenzo [1] For
-shake-dev maintainer,
I'm not knowledgeble of shake: is this likely a bug in shake or a bug that
need a fix on dh-runit side?
Thanks,
Lorenzo
[1]
https://tests.reproducible-builds.org/debian/rb-pkg/bullseye/armhf/dh-runit.html
-- System Information:
Debian Release: bullseye/sid
APT pr
t is huge.
Bastian,
do you have any idea of why there is this difference?
Are you able to reproduce an output like in message#5 within a
a minimal chroot install as I have done above?
Regards,
Lorenzo
pervise service, whereas this produces
> an empty directory so it still fails.
Yes, as you enable a service, you have to wait at least 5 seconds before
safely sending signals with sv. See runsvdir(8), it pools every 5 seconds.
It's a flaw in runit design.
Lorenzo
-- System Informatio
s not critical but
may prevent other packages from working properly, so before updating, I would
like it to work.
Thanks for support,
Lorenzo
-- System Information:
Debian Release: 9.4
APT prefers stable
APT policy: (700, 'stable'), (500, 'stable-updates')
Architectur
pport,
Lorenzo
-- System Information:
Debian Release: 9.4
APT prefers stable
APT policy: (700, 'stable'), (500, 'stable-updates')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.9.0-6-amd64 (SMP w/4 CPU cores)
Locale: LANG=it_IT.utf8, LC_CTYPE=
Package: thunar
Version: 1.6.11-1
Severity: critical
Justification: breaks the whole system
Dear Maintainer,
shredding a file in a mounted USB key causes `Thunar 1.6.11 (Xfce 4.12)` to
block permanently.
The window with the key won't close and Thunar must be killed manually; it can
be restarted (m
Control: forcemerge -1 878851
Dear Arturo,
I think the problem is the one described in bug #878851
I'm therefore merging the two bugs.
Regards,
Lorenzo Pinelli
Package: mediawiki-extensions-ldapauth
Version: 3.7
Severity: grave
Tags: newcomer
Justification: renders package unusable
Dear Maintainer,
It appears that due to a change in how ldap_connect works in php5-ldap >=
5.6.11 this extension for mediawiki fails to authenticate against ldap servers.
Di
with, say, force-start
("/etc/init.d/daemontools-workaround add-to-inittab" is probably
in violation of some debian policy).
Lorenzo
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
On 06/11/2014 09:08 AM, Ryan Kavanagh wrote:
Hi Lorenzo,
On Tue, Jun 10, 2014 at 10:01:13PM +0200, Lorenzo wrote:
otherwise I guess this should be reported upstream.
Thanks for putting in the legwork and bringing this back to my
attention. The same problem exists in OpenSSH (from which the
On 06/10/2014 09:29 PM, Lorenzo wrote:
On 06/08/2014 11:24 PM, Julien Cristau wrote:
On Sun, Jun 8, 2014 at 17:48:18 +0200, Lorenzo wrote:
after the latest openssl upgrade it happened again :)
While waiting to see upstream's reaction, could you rebuild the package
against the new versi
On 06/08/2014 11:24 PM, Julien Cristau wrote:
On Sun, Jun 8, 2014 at 17:48:18 +0200, Lorenzo wrote:
after the latest openssl upgrade it happened again :)
While waiting to see upstream's reaction, could you rebuild the package
against the new version of the library?
No, this should be
after the latest openssl upgrade it happened again :)
While waiting to see upstream's reaction, could you rebuild the package
against the new version of the library?
PS
I'm reusing this bug because... well, it's the same bug after all, so I
hope it's ok - if it's not just tell me.
Also, since
Package: opensmtpd
Followup-For: Bug #733147
Dear Maintainer,
it looks like the latest openssl version fixed everything
(which is weird, because `aptitude changelog openssh` says that this
should have happened with openssl 1.0.1e-6, while for me 1.0.1f-1 did
the trick -- unless I'm misreading some
On 30/10/2013 20:39, Guido Günther wrote:
> On Wed, Oct 30, 2013 at 05:41:08PM +0100, Lorenzo M. Catucci wrote:
>> Hi all;
>> after getting the same cgroup errors after a test-upgrade of libvirt,
>> I stumbled upon the wishlist report from Daniel Baumann a
http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=45;filename=mountcgroupsubsys.sh;att=1;bug=601757
At least on my system, this restored libvirt/qemu functionality
without doing any harm to lxc guests.
Thank you very much, yours
lorenzo
-- System Information:
Debian Release: jessie/sid
main.cpp,
since "{notclosed" is actually a valid perl regular expression
(unmatched {}, is silently treated as literal string) (Closes:
#724089)
so how should I fix that? Is there a patch I can apply upstream?
thanks in advance
Lorenzo
On 22/09/2013 21:14, David
Flightgear 2.10-3 is not installable because there is no installable package
for dependencies:
libopenscenegraph100
libopenthreads15
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Oh, this modification is already in the git repository
On 05/24/2013 05:36 PM, Bastien ROUCARIÈS wrote:
> Le vendredi 24 mai 2013 10:56:22, Lorenzo Bettini a écrit :
>> On 05/23/2013 06:07 PM, Bastien ROUCARIÈS wrote:
>>> Package: source-highlight
>>> Severit
>
> Please ask upstream about relicense, remove or repackage
>
Hi
what should be done to fix this?
I'm the author of source-highlight
Lorenzo
--
Lorenzo Bettini, PhD in Computer Science, DI, Univ. Torino
HOME: http://www.lorenzobettini.it
--
To UNSUBSCRIBE, email to debian-b
On 12/31/2012 04:31 AM, David Prévot wrote:
> Hi,
>
> On Fri, Dec 14, 2012 at 03:55:28PM +0100, Jakub Wilk wrote:
>> * Lorenzo Bettini , 2012-12-13, 09:29:
>>>> As per GR 2006-001, works licensed under GFDL with unmodifiable
>>>> sections are not suitable fo
Software Foundation raise funds for GNU development.''
>
> As per GR 2006-001, works licensed under GFDL with unmodifiable sections
> are not suitable for main:
> http://www.debian.org/vote/2006/vote_001
>
how should I change the documentation?
--
Lorenzo Bettini,
s.
#6 0x00401832 in main (argc=2, argv=0x7fffb5f8) at
smartdimmer.c:131
optind = 0
options = 4
setvalue = 0
c = -1
--
Lorenzo Paulatto - Paris
ig () at config.c:309
#4 0x0041153a in init_nvclock () at back_linux.c:109
#5 0x004029bc in main (argc=3, argv=0x7fffb5e8) at
nvclock.c:605
Let me know if I can help in any way, and if you need to test any patch.
bests
--
Lorenzo Paulatto - Paris
Il 24/08/2011 23:20, Sylvestre Ledru ha scritto:
Le mercredi 24 août 2011 à 23:17 +0200, Lorenzo Beretta a écrit :
Package: clang
Version: 2.7-3
Followup-For: Bug #639138
It fails to build even trivial programs saying that it can't find
bits/predefs.h, which moved away from /usr/include
Package: clang
Version: 2.7-3
Followup-For: Bug #639138
It fails to build even trivial programs saying that it can't find
bits/predefs.h, which moved away from /usr/include/bits/predefs.h
No idea about the binNMU, I'm not that much into debian packaging.
Good bye
-- System Information:
Debian R
Patch attached.
--- a/src/mssh-terminal.c
+++ b/src/mssh-terminal.c
@@ -46,8 +46,9 @@ void mssh_terminal_start_session(MSSHTerminal *terminal, char **env)
args[1] = terminal->hostname;
args[2] = NULL;
-vte_terminal_fork_command(VTE_TERMINAL(terminal), "ssh", args,
-env, NULL
me depends on.
Regards,
Lorenzo Masellis
-- System Information:
Debian Release: 6.0.1
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 2.6.32-5-686 (SMP w/1 CPU core)
Locale: LANG=it_IT.utf8, LC_C
Package: dash
Version: 0.5.5.1-7.4
Severity: critical
Justification: breaks the whole system
While trying to build a live cd image with:
lb config --mode=emdebian
lb build
dash fails to install and therefore blocks the image creation process.
from chroot/deboostrap/deboostrap.log:
Unpacking da
Package: gnome-power-manager
Version: 2.32.0-2
Severity: grave
Justification: renders package unusable
The status (energy, current, etc.) doesn't get updated, unless events are
triggered (e.g. charger disconnection).
As a consequence, gnome-power-manager shows an out-of date battery status
inform
Package: gclcvs
Version: 2.7.0-101
Severity: critical
Hello,
The gclcvs package FTBFS on Debian i386 [1]. However, the gclcvs package
FTBFS on Ubuntu too [2], we fixed that (except on armel) adding
"-fno-stack-protector" to CFLAG but we don't think this is a "proper"
solution to fix the FTBFS. Th
On 06/16/2010 01:51 PM, Julien Cristau wrote:
On Wed, May 26, 2010 at 13:56:15 +0200, Lorenzo Bettini wrote:
Hi
this test failure seems to have disappeared in the current version,
3.1.3-2, doesn't it?
https://buildd.debian.org/fetch.cgi?pkg=source-highlight;ver=3.1.3-2;arch=armel;
Package: steam
Severity: serious
Tags: patch
forwarded
Hello,
the new steam release imported from debian FTBFS on ubuntu. Please see
https://launchpad.net/ubuntu/+source/steam/2.2.31-6ubuntu1/+build/1767467 (for
the FTBFS on i386). However we have a patch for that, please see the bug report
on
Hi
this test failure seems to have disappeared in the current version,
3.1.3-2, doesn't it?
--
Lorenzo Bettini, PhD in Computer Science, DI, Univ. Torino
ICQ# lbetto, 16080134 (GNU/Linux User # 158233)
HOME: http://www.lorenzobettini.it MUSIC: http://www.purplesucker.com
eemingly related to this one.
FYI this is a laptop too. I'm now forced to gnome desktop... hope to get my kde
soon!
Thank you for your hard work, yours
lorenzo
Application: Plasma Workspace (plasma-desktop), signal: Segmentation fault
The current source language is "au
Click Here to have your questions answered by our support team.
http://onionsareenobli.com
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Trying to revert to 1.5 did not work for me: I got a segmentation fault...
the only solution was to purge icedove and then reinstall it...
--
Lorenzo Bettini, PhD in Computer Science, DSI, Univ. di Firenze
ICQ# lbetto, 16080134 (GNU/Linux User # 158233)
HOME: http://www.lorenzobettini.it
ian.org
500 stable freedom.dicea.unifi.it
1 experimentalfreedom.dicea.unifi.it
--- Package information. ---
Depends (Version) | Installed
=-+-=
libc6(>= 2.3.5-1) | 2.3.6.ds1-13
udev | 0.105-3
--
Lorenzo Bettini, PhD i
concerning my previous email, I solved the problem: I kept xorg 7.1 and
installed the new version of the NVIDIA driver:
NVIDIA-Linux-x86-1.0-8774-pkg1.run
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
I downloaded the xserver-xorg-core_2:1.0.2-10_i386.deb from debian
snapshot, but if I simply use dpkg -i to install it, then, when I start
X I get this error:
(EE) module ABI major version (1) doesn't match the server's version (0)
(EE) Failed to load module "v4l" (module requirement mismatch,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- From what I can tell, this seems to be a problem with bittorrent
3.4.2-8 and python 2.4. Bittorrent 3.4.2-8.1 is in unstable now and
works with python 2.4. It should be migrating to testing shortly.
HTH,
Lorenzo
- --
I've always found anom
l, and place them on a .debian.org
> host.
I already have a fixed package. I only need to add the CVE ID.
On which host of .debian.org should I upload it?
-- lorenzo
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
* Florian Weimer <[EMAIL PROTECTED]>:
> * Lorenzo Martignoni:
>
> > The patch has been tested by me and by Paul Gear but further tests will
> > be better, so your feedback will be very precious.
>
> Apart from the lack of CVE entry in the changelog, the pac
>
> >> (Note that I have yet to test Lorenzo's new package.)
> >
> > Are you in a position to do so?
>
> Sure, but the question is if you want to rely on the results. You
> don't seem to trust my judgement on this matter, for reasons I don't
> know.
The patch has been tested by me and by Paul Gear but further tests will
be better, so your feedback will be very precious.
-- lorenzo
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
orewall
> Vulnerability : programming error
> Problem-Type : remote
> Debian-specific: no
> CVE ID : CAN-2005-
> Debian Bug : 318946
>
> Supernaut noticed that shorewall could generate an iptables
> configuration which is significantly more permissive than t
these options.
I attached to this email a copy of the patch that fixes the security
problem. It is a backport of the upstream author patch for version
2.2.5. The BTS already contains a link to an updated version of the
package.
-- lorenzo
diff -urNad shorewall-2.2.3/firewall /tmp/dpep.v6MqTc/shor
Package: shorewall
Version: 2.4.1-2
Severity: critical
Tags: security
A client accepted by MAC address filtering can bypass any other rule.
If MACLIST_TTL is set to a value greater than 0 or MACLIST_DISPOSITION
is set to "ACCEPT" in /etc/shorewall/shorewall.conf (default is
MACLIST_TTL=0 and MACLI
crontab. I suspect it may be that rss2email barfs on bad rss, but
> since the feeds have been fixed by the time I look at them, I haven't
> been able to debug it.
It happened for a while (some days) so I disabled rss2email. Now I've
restarted it, and it works.
For what I know, nothing
ines/newrss
{'feed': {}, 'encoding': 'utf-8', 'bozo': 1, 'version': None, 'entries':
[], 'bozo_exception': }
rss2email 2.54
feedparser 3.3
html2text 2.2
Python 2.3.5 (#2, Feb 9 2005, 00:38:15)
[GCC 3.3.5 (Debian 1:3.3.5-8)]
=== END HERE ===
--
Lorenzo Iannuzzi
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
>
>>
>>
>> catdoc_0.91.5-1.woody4_i386.deb from stable-proposed-updates depends on
>> libc6 (>= 2.3.2.ds1-4):
>
> Reporting what's already reported gains nothing.
oops... sorry. O8-)
I filed the bugreport because I did not see it here:
http://bugs.debian.
Package: vlc
Followup-For: Bug #289490
On AMD64 pure64 dist, there's still the problem. VLC depends on
libflac4, but libflac6 is available.
-- System Information:
Debian Release: 3.1
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.10
Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=ISO-8859-
93 matches
Mail list logo
