severity 820003 minor
retitle 820003 SIGSEV when starting sparkleshare with already running instance
Ok, this seems to only happen when there's another sparkleshare instance
running. I guess this should be handled more cleanly, but downgrading.
Neil
--
Package: sparkleshare
Version: 1.5.0-1
Severity: grave
Justification: renders package unusable
After installing sparkleshare on a clean stretch system, it successfully
loads the initial setup screen. However, then trying to "sparkleshare
start" or "sparkleshare open" produces the attached log.
N
Hi,
On Sat, Dec 20, 2014 at 12:12:13PM +0100, Andreas Cadhalpun wrote:
> Control: tags 773041 security
> Control: severity 773041 grave
> Justification: causes remote denial of service
>
For info, I saw this a few days ago and reported it to the security
team. It is indeed available in the wild,
package evince
unarchive 658139
found 658139 3.8.3-2
thanks
It looks like the latest package upload did not ack the NMU. Which means
this bug is back.
Neil
On Thu, Nov 08, 2012 at 11:37:43AM -0800, Don Armstrong wrote:
> I have uploaded an NMU which fixes this bug to delayed/7. The diff for
> th
On Sun, Jul 14, 2013 at 08:02:03PM +0200, Nicolas Patrois wrote:
> Today (07-14-2013), updating intel-microcode completely blocks
> aptitude (and dpkg as well).
Hi,
For info, this does not occur using apt-get on a Thinkpad X220.
Neil
--
signature.asc
Description: Digital signature
user debian-rele...@packages.debian.org
usertags 678979 wheezy-will-remove
thanks
On Sat, Mar 16, 2013 at 12:44:15PM -0400, Peter Eisentraut wrote:
> On Sat, 2013-03-16 at 11:38 +, Adam D. Barratt wrote:
> > On Sun, 2012-10-07 at 14:30 +0200, Mehdi Dogguy wrote:
> > > On 21/09/2012 04:58, Pete
Control: tag -1 +wheezy-ignore
This doesn't seem to actually affect wheezy in a user-environment. Thus
adding wheezy-ignore tag.
Neil
--
signature.asc
Description: Digital signature
Control: tag -1 +wheezy-ignore
On Mon, Jan 21, 2013 at 07:15:49PM +, Robert Lemmen wrote:
> b) the release team could decide to simply wheezy-ignore this bug since
> a fixed version is in unstable and this is "only" a DFSG-problem, i.e.
> something we *decide* we don't want in main rather than
Control: fixed #681138 4.0.4debian2-3.2
Apparently the below doesn't work. So I'm marking it as fixed. *sigh*
On Sat, Jan 26, 2013 at 03:09:09PM +, Debian Bug Tracking System wrote:
> Processing control commands:
>
> > notfound #681138 4.0.4debian2
> Bug #681138 {Done: Thomas Mueller } [ownc
On Sun, Nov 11, 2012 at 12:39:35PM +0100, Daniel Baumann wrote:
> On 11/11/2012 11:26 AM, intrigeri wrote:
> > Anything left to be done before filing an unblock request?
>
> like said, when live-build has been updated, syslinux-themes will be
> updated too, and then someone can ask for unblocks.
>
Control: notfound #681138 4.0.4debian2
I couldn't reproduce this in 4.0.4debian2, marking as such.
Neil
--
signature.asc
Description: Digital signature
Control: tag 570516 +wheezy-ignore
This probably isn't going to get fixed, even if it still exists. Tagging
wheezy-ignore.
Neil
--
signature.asc
Description: Digital signature
On Mon, Dec 17, 2012 at 12:42:14AM +0100, alberto fuentes wrote:
> Since its being a while without response and we are getting closer to
> release, i was thinking about requesting a wheezy-ignore for the bug or
> something to the release team
>
I'm not happy adding an ignore tag if there isn't an
Package: freevo
Severity: grave
Hi,
Youtube-dl is about to be removed from testing. As freevo depends on it,
it is also a candidate for removal. Please let
debian-rele...@lists.debian.org know how you plan on handling this
issue.
Thanks,
Neil
-- System Information:
Debian Release: 7.0
APT pre
Package: metacafe-dl
Version: 2008.07.23-2
Severity: grave
Hi,
metacafe-dl doesn't seem to work anymore, possibly due to #688997.
In any case, metacafe-dl is currently a candidate to be removed from
wheezy unless something is fixed.
Neil
-- System Information:
Debian Release: 7.0
APT prefers
Control: tag 540512 +wheezy-ignore
Control: tag 538822 +wheezy-ignore
This is obviously not going to get fixed this time. Adding ignore tags.
On Wed, Nov 07, 2012 at 08:40:58PM +0100, Paul Gevers wrote:
> There has been a small discussion about dash RC bugs 538822 and 540512
> in the bts and the
On Thu, Jan 10, 2013 at 09:26:37PM +0100, Thomas Girard wrote:
> Since my GPG key has expired, I will not be able to upload this in a
> timely fashion, so you can consider this email as a call for NMU.
>
For info, you can simply change the expiration date...
Neil
--
To UNSUBSCRIBE, email to d
tags 591969 + wheezy-ignore
thanks
On Wed, Dec 05, 2012 at 03:56:11PM +0100, Christian Welzel wrote:
> Am 05.12.2012 13:07, schrieb Neil McGovern:
>
> > Can someone explain: 1) Why there were no updates to the bug
> > between December 2010 and June 2012?
>
> The bug cou
On Tue, Dec 04, 2012 at 08:01:58PM +0100, Tobias Hansen wrote:
> the discussion in RC bug #591969 ended with a call for a wheezy-ignore
> tag. The bug was also tagged squeeze-ignore. What does the release team say?
>
In general, I'm fairly loathed to add a *second* release ignore tag.
Can someon
tags 692614 + wheezy-ignore
tags 692619 + wheezy-ignore
tags 692624 + wheezy-ignore
tags 692625 + wheezy-ignore
tags 692627 + wheezy-ignore
tags 692628 + wheezy-ignore
tags 692629 + wheezy-ignore
tags 692630 + wheezy-ignore
tags 692631 + wheezy-ignore
tags 692613 + wheezy-ignore
tags 692615 + wheez
On Sun, Jul 22, 2012 at 01:51:32PM -0700, Steve Langasek wrote:
> > If it's the solution that the TC decide on to resolve the issue, it
> > sounds like something we could work with, at least imho, from what I've
> > seen so far. I've CCed -release for any further comments, as I don't
> > know how
Hi,
On Tue, Jul 17, 2012 at 11:45:42PM +0200, Michael Biebl wrote:
> If a missing mime file would mean an RC bug, this would instantly make
> 514 packages RC buggy.
> Interestingly, the particular section in the Debian policy is a should
> directive, not a must, so I don't understand the reasons f
On Tue, Jul 10, 2012 at 04:26:17PM +0200, Patrick Winnertz wrote:
> this is not that bad than it sounds as lustre is a very very specific
> kind of software, which is rarely/not at all used by normal users.
>
Hi,
I don't think this is RC from a FTBFS point of view, but I'm not
entirely sure abo
On Wed, Jul 04, 2012 at 08:34:24AM +0200, Ralf Treinen wrote:
> songwrite is currently orphaned and has an RC bug #672210. The problem is
> that the version of songwrite is much too old, in fact upstream has since
> october 2007 (!) moved from songwrite to songwrite2. IMHO, fixing #672210
> would r
Package: colorhug-client
Version: 0.1.9-2
Severity: grave
Hi!
Colourhug 0.1.9 has an issue with colorhug-ccmx where it fails to update
the stored calibration data on the device. This leads to 'aperture
closed' messages when attempting to calibrate.
This has been fixed upstream at 0.1.10, see
htt
Hia,
I'm currently wondering why #598135 is RC. Would someone care to
explain what I'm missing? :)
Thanks,
Neil
--
[local irc server has just been brought up]
suddenly there's quite some silence in the hacklab
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org
with a subjec
On Mon, Nov 08, 2010 at 10:47:54PM +0800, Thomas Goirand wrote:
> As it stands, it's unreasonable to even try working on the 0.30.x branch
> for Squeeze, given the short amount of time remaining. I feel very sad
> about it, but as there's no way to convince the RT that the 0.32.x
> branch is in a v
the "this week in Debian" podcast. It was
> fun. I wish I was living in Cambridge with 9 other DDs, I feel alone
> here in Shanghai (lucky, Li Daobing lives here now)! :)
>
> Neil McGovern wrote:
> > Hi Thomas,
> >
> > Firstly, please accept my apologies for
On Wed, Sep 08, 2010 at 12:54:57PM -0500, Kumar Appaiah wrote:
> Hi!
>
> On Wed, Sep 08, 2010 at 12:36:41PM -0400, Camm Maguire wrote:
> > Greetings! I uploaded a fix for 591862 together with a minor upstream
> > point release that just missed the freeze. Would it be possible to
> > permit the f
This mail should be sent to the debian-release mailing list, copying in.
On Tue, Sep 14, 2010 at 12:32:57AM +0200, Erik Schanze wrote:
> please let me kindly ask for setting squeeze-ignore tag for
> serious Bug #509287.
>
> Afio has a problematic license, but in my opinion it should
> not block t
On Mon, Aug 30, 2010 at 03:07:59PM +, Gerrit Pape wrote:
> On Fri, Aug 06, 2010 at 05:07:22PM +0100, Neil McGovern wrote:
> > On Tue, Jul 27, 2010 at 10:54:12PM -0400, Don Armstrong wrote:
> > > Release team: if you think this bug makes runit-run unreleaseable,
> > &
Well, it seems that other people haven't taken an interest in the bug,
and we've now frozen, again.
As there isn't a resolution in sight, I'll add a hint at the end of
August for the removal of the package unless there's significant
progress to fixing the issue.
Neil
--
the hacklab room is the
On Tue, Jul 27, 2010 at 10:54:12PM -0400, Don Armstrong wrote:
> Release team: if you think this bug makes runit-run unreleaseable,
> please indicate as such; otherwise I think it's reasonable for the
> maintainer to downgrade the severity of this bug if the maintainer
> feels that it is releasable
On Fri, Aug 06, 2010 at 05:02:28PM +0200, Bernhard R. Link wrote:
> I do not think it makes sense to release xprintmon in squeeze.
> (Actually I think noone but me uses it, so I'm also considering
> to have it removed from unstable, but I most likely will not
> think enough about that before squeez
severity 512915 important
thanks
Looks like the consensus is that this isn't RC, though not desirable.
Thus downgrading.
--
<+Mulligan> Your folk tale is inconsistent and confusing.
<+Mulligan> I shall round up your local population and tell them good CHRISTIAN
folk tales.
<+Mulligan> Then build
Hi there,
Is there any plans to fix this bug?
Thanks,
Neil
--
* DrFairlyEvil kills himself.
< Werefern> DrFairlyEvil: Wait, you should give me your computer first!
< DrFairlyEvil> Werefern: Bite me. It's coming with me.
< Werefern> How selfish, you won't need it where you're going!
< DrFairlyEv
Hi,
With regards to #554788, is there a chance that this could be fixed, or
even replied to? I really would rather not remove courier from testing.
Neil
--
What is a sane place to look for washing machines around Manchester?
enrico: the canals :-)
--
To UNSUBSCRIBE, email to debian-bugs-rc-
Hi Debian Science team,
I was wondering what your plans were with regard to Atlas and bug
#588280?
I don't particularly want to remove atlas and all its rdeps, but there
hasn't been any activity or reply to that RC bug in a month now.
Thanks,
Neil
--
Damned Inselaffen. Oh, wait, that's me.
Hia,
I'd advise against just multiple retries, that won't fly from a release
point of view as it'll need to be built reliably for security updates.
Neil
--
dou you speak frensh ?
-!- Sp3ct0L|ZcC [~spec...@86.211.34.66] has quit [autokilled: This host
violated network policy. If you feel an erro
On Fri, Jul 24, 2009 at 01:50:02PM +0100, Neil McGovern wrote:
> Just to re-iterate from a release team PoV, this could really do with
> fixing.
> (for d-d readers, this is a awesome bug, where dbus upgrades kill X)
>
> This is holding up xcb-util, which is holding up python-v
Hi all,
Just to re-iterate from a release team PoV, this could really do with
fixing.
(for d-d readers, this is a awesome bug, where dbus upgrades kill X)
This is holding up xcb-util, which is holding up python-visual, which is
preventing the removal (finally!) of GTK 1
Thanks,
Neil
--
hermanr
On Tue, Jan 27, 2009 at 07:22:28PM +0100, Andreas Tille wrote:
> Well, there was no response to my diff from RM so I guess it is accepted
> the way I tried to address their concerns. I just uploaded
>
Thanks, ACCEPTed.
Neil
--
A. Because it breaks the logical sequence of discussion
Q. Why is to
On Tue, Jan 27, 2009 at 08:56:29PM +0900, Charles Plessy wrote:
> Le Tue, Jan 27, 2009 at 11:36:54AM +0000, Neil McGovern a écrit :
> > On Tue, Jan 27, 2009 at 07:53:53PM +0900, Charles Plessy wrote:
> >
> > The debhelper change, at this very very late stage in the relea
On Tue, Jan 27, 2009 at 07:53:53PM +0900, Charles Plessy wrote:
> Hi Neil, thanks for your review.
>
> Le Tue, Jan 27, 2009 at 10:45:30AM +0000, Neil McGovern a écrit :
> >
> > > >* Use Debhelper 7 (idebian/co{ntrol,mpat}.
> >
> > Not ok.
>
&
On Sat, Jan 24, 2009 at 07:09:31PM +0900, Charles Plessy wrote:
> http://people.debian.org/~naoliv/misc/debian-med/biofox_diff.txt
>
> >* New upstream release, compatible with Firefox 3 (Closes: #512371).
> >* Updated debian/watch.
Both ok.
> >* Use Debhelper 7 (idebian/co{ntrol,mpat
severity 512624 important
thanks
This doesn't make the package unusable, or mostly so.
Neil
--
i get an error... i forget what it is ... but definitely an error, well, maybe
a warning... or an informational message... but definitely an output
Verbatim quote from #debian, irc.freenode.net, Sat
On Mon, Jan 12, 2009 at 07:39:01PM +0100, Robert Millan wrote:
> On Sat, Jan 10, 2009 at 10:10:58PM +0000, Neil McGovern wrote:
> > tags 239111 +lenny-ignore
> > tags 243835 +lenny-ignore
> > tags 246111 +lenny-ignore
> > tags 309218 +lenny-ignore
> > tag
severity 511551 normal
thanks
This bug isn't RC, resetting severity to default.
Neil
--
Jump in and have a quim!
signature.asc
Description: Digital signature
Removing from testing as maintainer doesn't seem to want it fixed.
Neil
--
* Tolimar votes for debconf7 to be somewhere where he speaks the
language.
That would a veto for switzerland ;)
Tolimar: that also vetos germany
signature.asc
Description: Digital signature
severity 506766 important
tags 506766 + moreinfo unreproducible
thanks
This hasn't been reproduced, so obviously doesn't affect everyone or the
majority of people. Hence downgrading.
--
return (test == true)? ( (test == false)? false : true) : ((test == false) ?
false : true);
signature.asc
De
Hi,
Can this patch be backported against the version in testing, and a TPU
upload done?
Thanks,
Neil
--
I'll run a script, posting some of my wisdoms from time to time to
the channel ;)
signature.asc
Description: Digital signature
On Sat, Jan 03, 2009 at 08:55:54PM +0100, Moritz Muehlenhoff wrote:
> On Sat, Jan 03, 2009 at 07:57:07PM +0100, Luk Claes wrote:
> > Moritz Muehlenhoff wrote:
> > > Neil McGovern wrote:
> > >>> A 30 second peek into the rules files shows that there's even a
&
On Sat, Jan 03, 2009 at 04:55:00PM +0100, Moritz Muehlenhoff wrote:
> On Sat, Jan 03, 2009 at 03:28:31PM +0000, Neil McGovern wrote:
> > I've removed dillo from lenny, as it should be obvious that we can't
> > accept a new gtk port at this time in the freeze.
>
>
I've removed dillo from lenny, as it should be obvious that we can't
accept a new gtk port at this time in the freeze.
I've uploaded claws-mail in t-p-u, disabling the dillo plugin. Bug with
diff to follow shortly.
Thanks,
Neil
--
dpkg: shut up
No, I won't, and you can't make me. :P
hah. _I_
On Sat, Jan 03, 2009 at 04:15:17AM +0100, Evgeni Golov wrote:
> libf2c2 currently suffers from bad style on 64bit archs where a long is
> 8 bytes (see #508565 and #442018).
Hi Evgeni,
Please upload, and re-ping once it's hit unstable for unblocks and
binNMUs.
Thanks,
Neil
--
A. Because it break
tags 475737 +lenny-ignore
thanks
Adding this tag as agreed with RT and Maintainer.
Neil
--
* stockholm calls netapp
* stockholm calls someone else
you are typing random numbers on your phone?
yes. my newest attempt to close our budget hole
signature.asc
Description: Digital signature
On Wed, Dec 24, 2008 at 12:23:03AM -0500, Asheesh Laroia wrote:
> I have a feeling that the libwebkit currently in sid and lenny is pretty
> broken, from the looks of this bug.
>
Unfortunately, we don't seem to be able to get much/any response from
the maintainers. It would have been really usef
severity 491030 important
thanks
This package contains documentation. It doesn't contain the docs you
want. This doesn't make it unusable, or even mostly so. Please do not
re-upgrade without discussion with the release team.
Thanks,
Neil
--
[..] Debian (in the form of a large, busy, and frequent
On Sun, Dec 14, 2008 at 10:38:05AM +0100, David Paleino wrote:
> On Thu, 11 Dec 2008 10:38:30 -0800 (PST), Asheesh Laroia wrote:
>
> > Howdy Debian Releasers,
> >
> > I was examining the remaining Lenny RC bugs and found
> > http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504875 via
> > http:/
On Sun, Dec 07, 2008 at 01:17:25PM +0900, Charles Plessy wrote:
> yocto-reader has a RC bug that was filed for multiple licensing issues.
As there has been no progress on this report, removal hint added.
Neil
--
bah Germans. You just put 100 DDs in one country and then they all
beco
tags 507003 +lenny-ignore
thanks
On Wed, Dec 03, 2008 at 12:33:52AM +0100, Carsten Hey wrote:
> This bug in open-iscsi is not a functional one and the package works
> quite well (although is against the policy). I consider the danger of
> a functional breakage through a possible fix before the re
On Thu, Nov 20, 2008 at 08:59:14PM -0600, Kumar Appaiah wrote:
> > I would like to have emacspeak-28.0-4 and emacspeak-ss-1.12-2 unblocked.
> > Failing that, I'll try to backport the debconf changes to the 26.0
> > package.
>
> Thanks for the explanation, James. I guess it's up to the release team
On Mon, Nov 03, 2008 at 06:54:32PM +0100, Luca Capello wrote:
> FYI, the Release Team was asked for an advice on Sun, 26 October [2].
> However, I know we (the Debian foo2zjs maintainers) decided to go to the
> tech-ctte just two days later...
>
Indeed, hence the lack of comment. However, as this
severity 502753 normal
thanks
On Sun, Oct 19, 2008 at 04:07:56PM +0200, Lucas Nussbaum wrote:
> > sh: /dev/tty: No such device or address
> It is reproducible by installing your package in a clean chroot - cleaned
> up using:
> debfoster -o MaxPriority=required -o UseRecommends=no -f -n apt deb
On Wed, Sep 03, 2008 at 11:11:42PM +0200, Thomas Viehmann wrote:
> Hi,
>
> blobandconquer contains some non-DFSG-compliant material, as Guus, its
> maintainer, reports in #495531.
>
> Futhermore, he states
> > I'm reporting this bug to prevent blobandconquer from getting released
> > with lenny b
On Sun, Aug 31, 2008 at 12:11:04AM +0200, Thomas Viehmann wrote:
> based on the maintainer's comments in the bug log, it seems dubious
> whether the bug #495968 (insecure /tmp file vulnerability) is fixed in
> time for lenny. Given that it has never been released with Debian
> before, it would be b
tags 383465 +lenny-ignore
thanks
This is being lenny ignored as there's a fix underway (nouveau) and it's
not yet a complete replacement, so nv will still be required.
Neil
--
I don't see why anyone would want to "cyber" with a 16yo. IME none of
them can spell, and they probably haven'
On Wed, Jun 18, 2008 at 12:29:45PM +0200, A Mennucc wrote:
> On Wed, Jun 18, 2008 at 10:29:17AM +0100, Neil McGovern wrote:
> > On Wed, Jun 18, 2008 at 11:10:21AM +0200, A Mennucc wrote:
> > And that was the case since 16 Dec 2006?
>
> yes. Read ahead.
>
> &g
On Wed, Jun 18, 2008 at 11:10:21AM +0200, A Mennucc wrote:
> hi
>
> On Tue, Jun 17, 2008 at 10:28:27PM +0100, Neil McGovern wrote:
> > I'm afraid I can't accede to your request. This bug has been open since
> > 25 Oct 2006. The etch-ignore tag was added 16 Dec 20
On Mon, Jun 16, 2008 at 04:21:50PM +0200, A Mennucc wrote:
> hi everybody
>
Hello, and thanks for your mail.
> I am requesting to the d-release team a lenny-ignore tag for bug 395252.
>
I'm afraid I can't accede to your request. This bug has been open since
25 Oct 2006. The etch-ignore tag was
I'm wondering if this is a 64bit problem. Anyway, lowering to important
as it obviously works for some people.
Neil
--
bah Germans. You just put 100 DDs in one country and then they all
become friends of each other.
signature.asc
Description: Digital signature
Hi all,
Just a quick note that this issue is RC for Lenny. Has there been any
progess on solving it since the last time this bug was pinged?
Neil
--
return (test == true)? ( (test == false)? false : true) : ((test == false) ?
false : true);
signature.asc
Description: Digital signature
Hello,
Has there been progress on this bug?
Thanks,
Neil
--
the hacklab room is the one with a pirate flag, and a venezuelan flag,
and a third flag
the other hacklab room is the "other hacklab room"
signature.asc
Description: Digital signature
Hi there,
Just a reminder that this is a RC issue, and needs resolving if mplayer
is going to ship with lenny.
Cheers,
Neil
--
ETOOMUCHSPANISHTOOFAST
signature.asc
Description: Digital signature
reopen 380360
On Thu, Mar 20, 2008 at 01:38:23AM +0100, Matthias Klose wrote:
> this is fixed.
>
No it's not.
# pyversions -r 2.5
python2.5
# dpkg -l python2.5 python2.5-minimal
un python2.5 (no description available)
ii python2.5-minimal 2.5.2-2 A minimal subset of the Pytho
On Wed, Mar 19, 2008 at 11:23:56PM +0100, Matthias Klose wrote:
> tag 380360 + moreinfo
> thanks
>
> I will downgrade this report again unless you show a situation which
> causes a package fail to install.
>
Please re-read the original bug report, which points to #379709.
Neil
--
A. Because it
On Wed, Mar 05, 2008 at 12:59:51PM +0100, Ola Lundqvist wrote:
> I have got a report about this bug #469293, that is about data corruption
> during a migration function that exist within vzctl.
>
> The fix is simple, but I need to know if it is possible to get this fix
> in the next version (r4) o
This issue probably qualifies for a stable point update (-release in
cc). I can prepare a package if you want.
Cheers,
Neil
--
Neil McGovern
SQA - Amino Communications
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Package: clamav
Version: 0.90.1-3etch7
Severity: critical
Tags: security
Two new CVEs for clamav:
Name: CVE-2007-6595
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6595
Reference: BUGTRAQ:20071229 TK53 Advisory #2: Multiple vulnerabilities in ClamAV
Reference:
UR
Package: megahal
Version: 9.1.1a-1
Followup-For: Bug #454212
Confirmed using etch i386 (though an amd64 processor). Attached output
of megahal and strace.
-- System Information:
Debian Release: 4.0
APT prefers stable
APT policy: (500, 'stable')
Architecture: i386 (i686)
Shell: /bin/sh linked
This seems to be due to a missing debian/compat.
As this is keeping a security hole in testing, I intend to NMU this on
Monday unless the maintainer speaks up :)
Cheers,
Neil
--
irssiproxy appears to be crack cut with washing up powder
signature.asc
Description: Digital signature
On Thu, Jul 26, 2007 at 08:28:41AM +0200, Bart Martens wrote:
> Hi Stable Debian-Release,
> Hi Security Team,
>
Not speaking in any official capacity here, but:
Lets have a look at the vulnerabilities which still affect etch:
CVE-2007-2022 - "Unspecified vulnerability ... unspecified impact and
On Sun, Jul 08, 2007 at 11:40:18PM +0900, Junichi Uekawa wrote:
>
> > It seems that libdpkg-ruby isn't available for ruby1.9, which is linked
> > as my default /usr/bin/ruby
>
> ermm... why are you doing that?
>
It looks like ruby1.9 was the last (ruby) package I installed.
> > As the dependan
Package: apt-listbugs
Version: 0.0.80
Severity: grave
When running apt-listbugs:
/usr/sbin/apt-listbugs:213:in `require': no such file to load -- debian
(LoadError)
from /usr/sbin/apt-listbugs:213:in `'
It seems that libdpkg-ruby isn't available for ruby1.9, which is linked
as my defaul
tags 404818 + patch
thanks
This has been assigned CVE id CVE-2006-6799, please mention this in the
changelog.
The attached pacth *should* fix the issue. I don't think it contains
regressions, but I haven't had time to test it.
When uploading, please do so with high urgency.
Many thanks,
Neil
--
tags 402316 + patch
thanks
Hello,
Please find attached a patch which should solve (at least partially)
this problem.
* removes -r option from wget.
* specifies an output file to ensure you don't end up with thousands of
files.
* performs perl syntax check to ensure it's a valid perl file.
Thi
tags 403034 - security
severity 403034 normal
thanks
Firstly, this isn't a security issue. Clamav does segfault if you give
it a $loop value of about 10,000, but that wouldn't cause a DoS.
As it's not a security issue, it's not grave.
Important is defined as:
a bug which has a major effect on
Hi there,
This has been assigned CVE-2006-6169
Please mention this id in the changelog when closing it.
Many thanks,
Neil McGovern
--
10 people enough for a Debconf? If they were all Germans, maybe...
signature.asc
Description: Digital signature
And this time, I'll add the patch.
--
Ganneff is just a big cuddly teddy bear.
Our photo proves it.
--- gdm2_2.4.7/gui/gdmlogin.c 2006-05-12 06:58:23.0 +0100
+++ gdm2_2.4.8/gui/gdmlogin.c 2006-05-31 11:11:52.0 +0100
@@ -640,6 +640,8 @@
static void
gdm_run_gdmconfig (GtkWidg
(note to bts: forwarding as I managed to not send it to the submitter
the first time)
Hi there,
Could you run /usr/sbin/blootbotsetup manyally for me and tell me the
output (if any)?
Does anything appear in the logs in /var/log/blootbot/ ?
Many thanks,
Neil
--
I'll run a script, posting some
Hi there,
Could you run /usr/sbin/blootbotsetup manyally for me and tell me the
output (if any)?
Does anythign appear in the logs in /var/log/blootbot/ ?
Many thanks,
Neil
--
* stockholm calls netapp
* stockholm calls someone else
you are typing random numbers on your phone?
yes. my newest at
Hi there,
This has been given a Mitre ID CVE-2006-3458.
Please mention this in changelogs.
Cheers,
Neil
--
A. Because it breaks the logical sequence of discussion
Q. Why is top posting bad?
gpg key - http://www.halon.org.uk/pubkey.txt ; the.earth.li B345BDD3
--
To UNSUBSCRIBE, email to [EMAI
utils
module to parse and render "restructured text".
A hotfix is available at
http://www.zope.org/Products/Zope/Hotfix-2006-07-05/Hotfix-20060705
I've asked for a CVE id, and will follow up once it's been received.
Could you start to prepare a package?
Many thanks,
Neil McGo
Hi there,
Has there been any progress on this? As this bug is RC, it's holding up
the migration of a security fix from entering testing.
Cheers,
Neil
--
A. Because it breaks the logical sequence of discussion
Q. Why is top posting bad?
gpg key - http://www.halon.org.uk/pubkey.txt ; the.earth.li
Please find attached a second patch to fix B1 of the issue.
Neil
--
A. Because it breaks the logical sequence of discussion
Q. Why is top posting bad?
gpg key - http://www.halon.org.uk/pubkey.txt ; the.earth.li B345BDD3
--- address_tools.p32003-04-02 06:48:18.0 +0100
+++ address_tools
On Fri, Jan 20, 2006 at 04:51:41PM +0100, Michael Ablassmeier wrote:
> hi again,
>
> On Thu, Jan 19, 2006 at 02:11:19PM +0100, Michael Ablassmeier wrote:
> >
> > On Thu, Jan 19, 2006 at 12:33:53PM +, Neil McGovern wrote:
> > > Whilst browsing planet.dbeian.o
Package: raggle
Version: 0.4.4-1
Severity: grave
Hi there,
Whilst browsing planet.dbeian.org through raggle, viewing the post:
http://mjg59.livejournal.com/51563.html
Caused raggle to crash with:
/usr/bin/raggle:3563:in `select_item': undefined method `[]=' for nil:NilClass
(NoMethodError)
to server_privileges.php db_name or
checkprivs parameter.
Regards,
Neil McGovern
--
__
.` `. [EMAIL PROTECTED] | Application Manager
: :' ! | Secure-Testing Team member
'. `- gpg: B345BDD3| Webapps Team member
`- Please don't cc, I'm su
On Wed, Dec 07, 2005 at 02:35:03AM +, James Troup wrote:
> Neil McGovern <[EMAIL PROTECTED]> writes:
>
> > I'm tagging this bug as security and upping the severity.
> >
> > Justification:
> > A small script can be used to affect the availability o
ecome saturated, leading to a loss of availability of the machine that
xloadimage is installed on.
Regards,
Neil McGovern
--
__
.` `. [EMAIL PROTECTED] | Application Manager
: :' ! | Secure-Testing Team member
'. `- gpg: B345BDD3| Webapps Team member
`-
1 - 100 of 107 matches
Mail list logo
