X-Git-Url: https://sipb.mit.edu/gitweb.cgi/wiki.git/blobdiff_plain/19f5abfe7dd4cc037d38abeda321af35371bb60c..c195916edaa80040b7106b041e08bcb43c4501f1:/doc/LennyBugsAll diff --git a/doc/LennyBugsAll b/doc/LennyBugsAll index 63f60c7..be4eab3 100644 --- a/doc/LennyBugsAll +++ b/doc/LennyBugsAll @@ -30,6 +30,19 @@ in [http://packages.debian.org/lenny/dk-filter dk-filter] "dk-filter reliably crashes upon connection from postfix" [[BR]](Note: bug report, little followup. Test, reproduce, debug, fix.) +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506057 506057] +in [http://packages.debian.org/lenny/splashy splashy] +"splashy: Splashy fails to install due to missing default theme" + +These ones are only about 2 weeks old: + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507071 507071] +in [http://packages.debian.org/lenny/racoon racoon] +"racoon - Fails after upgrade: symbol lookup error: /usr/sbin/racoon: undefined symbol: libipsec_opt" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507072 507072] +in [http://packages.debian.org/lenny/ipsec-tools ipsec-tools] +"libipsec0 packaged in ipsec-tools without development headers" = Specific hardware = @@ -47,6 +60,10 @@ in [http://packages.debian.org/lenny/installation-reports installation-reports] in [http://packages.debian.org/lenny/ruby1.9 ruby1.9] "ruby1.9: FTBFS on hppa: make[1]: *** [all] Segmentation fault" +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=499078 499078] +in [http://packages.debian.org/lenny/jfsutils jfsutils] +"jfsutils: Bus Error when running fsck.jfs on sparc" + = Examples = [http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496954 496954] @@ -56,6 +73,12 @@ in [http://packages.debian.org/lenny/bind9 bind9] got the first reproducible testcase, and sent that upstream, which swiftly produced a fix. += May be a lot of work = + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=456037 456037] +in [http://packages.debian.org/lenny/fenix fenix] +"fenix: not 64 bit clean" + = Puzzling = Someone please explain what's going on (Debian Project-wise) in these bugs. @@ -74,14 +97,6 @@ Please read these reports and figure out what category they belong in. Or make in [http://packages.debian.org/lenny/installation-reports installation-reports] "cdrom: Most of the system's files have a future timestamp causing at least update/config problems." -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=451628 451628] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"Packages might enter the archive from security without source" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=456037 456037] -in [http://packages.debian.org/lenny/fenix fenix] -"fenix: not 64 bit clean" - [http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=490171 490171] in [http://packages.debian.org/lenny/rtorrent rtorrent] "rtorrent: random crash" @@ -94,10 +109,6 @@ in [http://packages.debian.org/lenny/libqt3-mt libqt3-mt] in [http://packages.debian.org/lenny/installation-reports installation-reports] "installation-reports: Grub error: not a regular file..." -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=495178 495178] -in [http://packages.debian.org/lenny/libjs-jquery libjs-jquery] -"libjs-jquery: Should compile jquery.min.js and jquery.pack.js from jquery.js" - [http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=495232 495232] in [http://packages.debian.org/lenny/quagga quagga] "quagga: zebra ignores routes added via command line" @@ -114,14 +125,6 @@ in [http://packages.debian.org/lenny/mdadm mdadm] in [http://packages.debian.org/lenny/cdimage.debian.org cdimage.debian.org] "sarge images have syslinux binaries without source" -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=497823 497823] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"longstanding DFSG violations in linux-2.6 package" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=499078 499078] -in [http://packages.debian.org/lenny/jfsutils jfsutils] -"jfsutils: Bus Error when running fsck.jfs on sparc" - [http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=500460 500460] in [http://packages.debian.org/lenny/oss-compat oss-compat] "oss-compat: modules are not loaded" @@ -158,10 +161,6 @@ in [http://packages.debian.org/lenny/ghostscript ghostscript] in [http://packages.debian.org/lenny/libwebkit-1.0-1 libwebkit-1.0-1] "epiphany-webkit: Crashes at startup whenever I go to a site." -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504283 504283] -in [http://packages.debian.org/lenny/egroupware-core egroupware-core] -"CVE-2007-3215: phpmailer issue (embedded code-copy)" - [http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504373 504373] in [http://packages.debian.org/lenny/libtemplate-perl libtemplate-perl] "libtemplate-perl: Upgrade from etch breaks code using DBI plugins" @@ -182,46 +181,14 @@ in [http://packages.debian.org/lenny/nvidia-glx-legacy-96xx-dev nvidia-glx-legac in [http://packages.debian.org/lenny/gnu-fdisk gnu-fdisk] "gnu-fdisk: wipes out MBR when used on GPT partitions" -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504771 504771] -in [http://packages.debian.org/lenny/wordpress wordpress] -"wordpress can be subject of delayed attacks via cookies" - [http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504918 504918] in [http://packages.debian.org/lenny/network-manager network-manager] "Updating to lenny failed when NetworkManager got updated" -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504977 504977] -in [http://packages.debian.org/lenny/ffmpeg-debian ffmpeg-debian] -"ffmpeg-debian: Several security issues" - [http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=505237 505237] in [http://packages.debian.org/lenny/snmpd snmpd] "/etc/init.d/snmpd start reports error if already running" -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=505563 505563] -in [http://packages.debian.org/lenny/icedove icedove] -"Mozilla Thunderbird Multiple Vulnerabilities" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506057 506057] -in [http://packages.debian.org/lenny/splashy splashy] -"splashy: Splashy fails to install due to missing default theme" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506152 506152] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"libept0 should have priority important" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506353 506353] -in [http://packages.debian.org/lenny/mailscanner mailscanner] -"CVE-2008-5312/3: mailscanner might allow local users to overwrite arbitrary files via a symlink attack" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506652 506652] -in [http://packages.debian.org/lenny/xml2rfc xml2rfc] -"Yet another boilerplate change" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506741 506741] -in [http://packages.debian.org/lenny/wireshark wireshark] -"wireshark: DoS caused by sending a SMTP request with large content" - [http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506748 506748] in [http://packages.debian.org/lenny/rtorrent rtorrent] "crash rtorrent by scgi-interface (function: 'fi.get_filename_last')" @@ -230,10 +197,6 @@ in [http://packages.debian.org/lenny/rtorrent rtorrent] in [http://packages.debian.org/lenny/libgnutls26 libgnutls26] "libgnutls26: 2.4.2-3 breaks OpenLDAP access" -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506883 506883] -in [http://packages.debian.org/lenny/tuxguitar tuxguitar] -"tuxguitar: hard-codes dependencies on libraries" - [http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506977 506977] in [http://packages.debian.org/lenny/release.debian.org release.debian.org] "FPC: copyright infringement in pre 2.2.2 sources" @@ -242,21 +205,23 @@ in [http://packages.debian.org/lenny/release.debian.org release.debian.org] in [http://packages.debian.org/lenny/open-iscsi open-iscsi] "initiatorname.iscsi should maybe not be in /etc" -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507021 507021] -in [http://packages.debian.org/lenny/helpdeco helpdeco] -"Fails to work on amd64" - [http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507059 507059] in [http://packages.debian.org/lenny/initramfs-tools initramfs-tools] "initramfs-tools: Wrong check for udevadm in functions" -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507071 507071] -in [http://packages.debian.org/lenny/racoon racoon] -"racoon - Fails after upgrade: symbol lookup error: /usr/sbin/racoon: undefined symbol: libipsec_opt" +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507239 507239] +in [http://packages.debian.org/lenny/release.debian.org release.debian.org] +"RM: astrolog/stable -- RoQA; orphaned long time, non-free, contains potentially undistributable code" -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507072 507072] -in [http://packages.debian.org/lenny/ipsec-tools ipsec-tools] -"libipsec0 packaged in ipsec-tools without development headers" += Unclassified Security = + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=505563 505563] +in [http://packages.debian.org/lenny/icedove icedove] +"Mozilla Thunderbird Multiple Vulnerabilities" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506353 506353] +in [http://packages.debian.org/lenny/mailscanner mailscanner] +"CVE-2008-5312/3: mailscanner might allow local users to overwrite arbitrary files via a symlink attack" [http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507165 507165] in [http://packages.debian.org/lenny/xine-lib xine-lib] @@ -266,18 +231,21 @@ in [http://packages.debian.org/lenny/xine-lib xine-lib] in [http://packages.debian.org/lenny/xine-lib xine-lib] "xine-lib: CVE-2008-5246 heap overflow" -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507239 507239] -in [http://packages.debian.org/lenny/release.debian.org release.debian.org] -"RM: astrolog/stable -- RoQA; orphaned long time, non-free, contains potentially undistributable code" +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506741 506741] +in [http://packages.debian.org/lenny/wireshark wireshark] +"wireshark: DoS caused by sending a SMTP request with large content" -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507242 507242] -in [http://packages.debian.org/lenny/amule-daemon amule-daemon] -"amule-daemon: causes OOM's by leaking lots of memory" +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504977 504977] +in [http://packages.debian.org/lenny/ffmpeg-debian ffmpeg-debian] +"ffmpeg-debian: Several security issues" -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507316 507316] -in [http://packages.debian.org/lenny/smarty smarty] -"smarty: Non-free logo included in package" +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504771 504771] +in [http://packages.debian.org/lenny/wordpress wordpress] +"wordpress can be subject of delayed attacks via cookies" +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504283 504283] +in [http://packages.debian.org/lenny/egroupware-core egroupware-core] +"CVE-2007-3215: phpmailer issue (embedded code-copy)" = Fresh bugs = @@ -303,13 +271,6 @@ in [http://packages.debian.org/lenny/xbattbar-acpi xbattbar-acpi] in [http://packages.debian.org/lenny/yocto-reader yocto-reader] "Package installation results in license violation" -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507675 507675] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"python2.5 should have priority standard" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507678 507678] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"libsqlite3-0 should have priority standard" [http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507706 507706] in [http://packages.debian.org/lenny/cdimage.debian.org cdimage.debian.org] @@ -319,54 +280,6 @@ in [http://packages.debian.org/lenny/cdimage.debian.org cdimage.debian.org] in [http://packages.debian.org/lenny/cryptsetup cryptsetup] "cryptsetup: Sometimes initrd ends up missing conf/conf.d/cryptroot file in it" -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507775 507775] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"libkeyutils1 should have priority standard" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507778 507778] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"libldap-2.4-2 should have priority standard" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507779 507779] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"[Priorities] libustr-1.0-1 -> standard" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507780 507780] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"python-sepolgen should have priority standard" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507783 507783] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"libxml2 should have priority standard" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507784 507784] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"python2.5-minimal should have priority standard" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507796 507796] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"libisccfg40 should have priority standard" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507797 507797] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"libisccc40 should have priority standard" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507798 507798] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"libedit2 should have priority standard" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507799 507799] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"libgssglue1 must have priority standard" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507800 507800] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"ucf must have priority standard" - -[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507801 507801] -in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] -"libpci3 must have priority standard" - [http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507818 507818] in [http://packages.debian.org/lenny/mldonkey-server mldonkey-server] "mldonkey-server: mlnet does not start, logs syntax error in downloads.ini" @@ -472,6 +385,10 @@ in [http://packages.debian.org/lenny/debget debget] These look like good progress is being made and they'll get fixed soon. +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507316 507316] +in [http://packages.debian.org/lenny/smarty smarty] +"smarty: Non-free logo included in package" + [http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=332782 332782] in [http://packages.debian.org/lenny/release-notes release-notes] "release-notes: Where's the license?" @@ -485,6 +402,33 @@ in [http://packages.debian.org/lenny/release-notes release-notes] in [http://packages.debian.org/lenny/xbat xbat] "xbat: game elements do not display properly" +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506883 506883] +in [http://packages.debian.org/lenny/tuxguitar tuxguitar] +"tuxguitar: hard-codes dependencies on libraries" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=495178 495178] +in [http://packages.debian.org/lenny/libjs-jquery libjs-jquery] +"libjs-jquery: Should compile jquery.min.js and jquery.pack.js from jquery.js" + += Not much of use one can do = + +(this one looks like it'll be removed from Lenny or have amd64 disabled) + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507021 507021] +in [http://packages.debian.org/lenny/helpdeco helpdeco] +"Fails to work on amd64" + +(this one looks the maintainer has labeled unreproducible) + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507242 507242] +in [http://packages.debian.org/lenny/amule-daemon amule-daemon] +"amule-daemon: causes OOM's by leaking lots of memory" + +(waiting on upstream) + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506652 506652] +in [http://packages.debian.org/lenny/xml2rfc xml2rfc] +"Yet another boilerplate change" = Flamewars = @@ -494,6 +438,11 @@ You might enjoy reading these, but they may not be good targets to fix. in [http://packages.debian.org/lenny/otrs2 otrs2] "otrs2 - makes files in /usr writable by non-root" +For this one, the actual flameware is off the bug report log. + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=497823 497823] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"longstanding DFSG violations in linux-2.6 package" = Would have been fun = @@ -504,3 +453,70 @@ in auctex "auctex: reuses old logfile on emacsen upgrades, enabling symlink attack" += Ftpmaster bugs = + +These bugs are probably not good targets because the work involved with them is easy for either the maintainer or ftpmasters to fix. + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=451628 451628] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"Packages might enter the archive from security without source" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=506152 506152] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"libept0 should have priority important" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507675 507675] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"python2.5 should have priority standard" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507678 507678] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"libsqlite3-0 should have priority standard" +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507775 507775] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"libkeyutils1 should have priority standard" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507778 507778] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"libldap-2.4-2 should have priority standard" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507779 507779] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"[Priorities] libustr-1.0-1 -> standard" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507780 507780] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"python-sepolgen should have priority standard" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507783 507783] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"libxml2 should have priority standard" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507784 507784] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"python2.5-minimal should have priority standard" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507796 507796] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"libisccfg40 should have priority standard" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507797 507797] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"libisccc40 should have priority standard" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507798 507798] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"libedit2 should have priority standard" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507799 507799] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"libgssglue1 must have priority standard" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507800 507800] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"ucf must have priority standard" + +[http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507801 507801] +in [http://packages.debian.org/lenny/ftp.debian.org ftp.debian.org] +"libpci3 must have priority standard" +