|
Packages | Any | Security Issue | Very High | Critical | [avahi] blacklist package since it's a zeroconf impleme... | In Progress | |
Task Description
Avahi is a zero-configuration networking implementation that contains critical security issues because mDNS operates under a different trust model than unicast DNS trusting the entire network rather than a designated DNS server, it is vulnerable to spoofing attacks by any system within the multicast IP range. Like SNMP and many other network management protocols, it can also be used by attackers to quickly gain detailed knowledge of the network and its machines. [0]
Since it violates the Hyperbola Social Contract , Avahi should be blacklisted.
|
|
Software Development | HyperBK | Implementation Request | Very High | Critical | Develop a BSD descendant kernel for HyperbolaBSD | In Progress | |
Task Description
Develop HyperBK (Hyper Berkeley Kernel), a BSD descendant kernel with GPL-compatible licenses preserved, non-compatible ones removed, and new code written under GPL-3 for HyperbolaBSD.
TODO:
Download OpenBSD kernel source code from OpenBSD site → DONE
Download LibertyBSD scripts to deblob and rebrand kernel from their scripts. → DONE
Remove files under non GPL-compatible licenses → DONE
Import code from another BSD systems under GPL-compatible licenses → IN PROGRESS
Write new code under GPL-3 → IN PROGRESS
PATCHING NOTE
When the check concerns kernel, we obviously want to match with HyperbolaBSD.
Example of triplet check: hyperbolabsd)
Example of uname -s check: HyperbolaBSD)
Example of uname -r check: 0.1)
Example of C macro check: defined(__HyperbolaBSD__)
|
|
Software Development | General | Implementation Request | Very High | Critical | POWER (ppc64le) porting | Deferred | |
Task Description
The unfortunate reality is that x86 computers come encumbered with built-in low-level backdoors like the Intel Management Engine , as well as nonfree boot firmware. This means that users can’t gain full control over their computers, even if they install a free operating system such as Hyperbola GNU/Linux-libre .
Hyperbola is working hard to fix these issues and getting closer every day, but for the time being, this is why many current Respects Your Freedom (RYF) offerings are refurbished older devices.
For the future of free computing, we need support architectures that do not come with such malware pre-installed, and the Power9-based Talos II promises to be a great architecture example for workstations and servers environments where Hyperbola is focused since is a fully free long-term support distribution.
Devices like this are the future of computing that Respects Your Freedom and for that reason it’s a high priority for Hyperbola port all packages for the POWER architecture (power64le).
NOTE: POWER porting is focused only for Hyperbola GNU/Linux-libre .
|
|
Software Development | General | Implementation Request | Very High | Critical | ARM (aarch and armv7h) porting | Deferred | |
Task Description
The unfortunate reality is that x86 computers come encumbered with built-in low-level backdoors like the Intel Management Engine , as well as nonfree boot firmware. This means that users can’t gain full control over their computers, even if they install a free operating system such as Hyperbola GNU/Linux-libre .
Hyperbola is working hard to fix these issues and getting closer every day, but for the time being, this is why many current Respects Your Freedom (RYF) offerings are refurbished older devices.
For the future of free computing, we need support architectures that do not come with such malware pre-installed, and ARM A7/A53 promises to be a great architecture example for low-power computers, laptops and embedded systems.
NOTE: ARM porting is focused only for HyperbolaBSD .
|
|
Packages | Any | Security Issue | Very High | Critical | [grub2] UEFI SecureBoot vulnerability + multiple flaws ... | Unconfirmed | |
Task Description
https://www.debian.org/security/2020-GRUB-UEFI-SecureBoot/
https://9to5linux.com/grub2-boot-failure-issues-fixed-in-debian-and-ubuntu-update-now
|
|
Packages | Stable | Bug Report | Medium | Critical | [torsocks] which: no getcap | Requires Testing | |
Task Description
Current torsocks version is broken. It returns the following error when attempting to torify application :
which: no getcap
|
|
Packages | Any | Security Issue | Medium | Critical | [libjpeg-turbo] CVE-2019-2201 | Researching | |
Task Description
In generate_jsimd_ycc_rgb_convert_neon of jsimd_arm64_neon.S, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution in an unprivileged process with no additional execution privileges needed. User interaction is needed for exploitation
https://security-tracker.debian.org/tracker/CVE-2019-2201
Patch: https://github.com/libjpeg-turbo/libjpeg-turbo/issues/388
|
|
Packages | Any | Bug Report | Very Low | Critical | [system-config-printer] Impossible to print some pdfs (... | Assigned | |
Task Description
Hello,
I’m unable to print some pdfs on my Hyperbola 3.0 system. Some background :
cups is installed, service enabled and working system-config-printer is installed and my printer has been correctly added.
I can print most pdfs and text files but recently with a pdf, it fails to print it.* And system-config-printer returned the following error (see capture) :
Printer "EPSON XP-620-Series" requires the '/usr/lib/cups/filters/epson-escpr-wrapper' but it is not currently installed.
Currently, “epson-escpr-wrapper” is installed but it is in :
/usr/libexec/cups/filters/epson-escpr-wrapper
Looking at source code of system-config-printer, it expects that wrapper to be installed in “/usr/lib/” so I tried to symlink that “epson-escpr-wrapper” to “/usr/lib/cups/filters” but it doesn’t work..
*With a Debian system and the exact same configuration, the “problematic” pdf prints just fine so it is not an issue with the pdf.
|
|
Packages | Stable | Freedom Issue | Very Low | Critical | [elementary-icon-theme] Contains non-FSDG compliant dis... | Assigned | |
Task Description
About that distro, Elementary OS is semi-libre/free, Ubuntu based, long term support, but does not comply with the GNU Free System Distributibution Guidelines (FSDG). To either rebrand or remove existing non-FSDG compliant distro icon files.
The following affected files are present in this list:
/usr/share/icons/elementary/places/16/distributor-logo.svg
/usr/share/icons/elementary/places/24/distributor-logo.svg
/usr/share/icons/elementary/places/32/distributor-logo.svg
/usr/share/icons/elementary/places/48/distributor-logo.svg
/usr/share/icons/elementary/places/64/distributor-logo.svg
/usr/share/icons/elementary/places/128/distributor-logo.svg
/usr/share/icons/elementary/places/symbolic/distributor-logo-symbolic.svg
|
|
Packages | Stable | Freedom Issue | Very Low | Critical | [conky] Some serious issues | Assigned | |
Task Description
I’m writing here about the package Conky. It is the useful widget of system monitor into your desktop, but there are some serious issues:
Config variables
distribution outputs the string “Arch Linux” instead of “Hyperbola GNU/Linux-libre”.
eve requires users to use API for non-libre/free video game EVE Online, and should be removed.
All Beep Media Player (BMPx) related variables (including bmpx_album, bmpx_artist, bmpx_bitrate, bmpx_title, bmpx_track and bmpx_uri) are obselete and useless, and should be removed because the package BMPx isn’t present on Arch and Hyperbola official repositories but Arch User Repository (AUR).
[For Milky Way version 0.4.x only] All PulseAudio related variables (including if_pa_sink_muted, pa_sink_volume, pa_sink_volumebar, pa_sink_description, pa_card_name and pa_card_active_profile) are no longer used, and should be removed due replaced the default audio server with sndio.
Manual
|
|
Packages | Stable | Drop Request | Very Low | Critical | [osdbattery] Unmaintained and unsupportable | Unconfirmed | |
Task Description
osdbattery is (probably) useless and broken so Conky did compete because It is still unmaintained and unsupported over 14 years ago (last released version 1.4 on August 23, 2005), and should be removed per anti-abandonware rule at the packaging guidelines.
Also, the default config file contains non-libre/free Microsoft font Verdana as X11 font format property in font variable.
|
|
Packages | Any | Privacy Issue | Very Low | Critical | [bleachbit] needs to be adapted to UXP applications | Assigned | |
Task Description
The current version of BleachBit needs to be adapted so it can clean the new .cache/hyperbola/ directory.
|
|
Packages | Any | Security Issue | Very Low | Critical | [unbound] Multiple CVEs | Assigned | |
Task Description
https://ostif.org/our-audit-of-unbound-dns-by-x41-d-sec-full-results/
[Critical] https://security-tracker.debian.org/tracker/CVE-2019-18934
|
|
Packages | Stable | Bug Report | Very Low | Critical | [smartmontools] update-smart-drivedb fails to update | Assigned | |
Task Description
smartmontools 6.5-1.hyperbola1
Error while trying to update smart-drivedb :
anon@test[~] update-smart-drivedb
External Link/usr/bin/update-smart-drivedb: download from branches/RELEASE_6_5_DRIVEDB failed (curl: exit 23)
/usr/bin/update-smart-drivedb: download from trunk failed (curl: exit 23)
|
|
Packages | Stable | Security Issue | Very Low | Critical | [lts-kernel][sec] filter /dev/mem access & restrict acc... | Unconfirmed | |
Task Description
These two options could be enabled :
Kernel hacking → [*] Filter access to /dev/mem [*] Filter I/O access to /dev/mem
Security options → [*] Restrict unprivileged access to the kernel syslog
|
|
Packages | Any | Security Issue | Very Low | Critical | [opensmtpd] CVE-2020-8794 | Unconfirmed | |
Task Description
Description: https://www.openwall.com/lists/oss-security/2020/02/24/5 https://www.bleepingcomputer.com/news/security/new-critical-rce-bug-in-openbsd-smtp-server-threatens-linux-distros/
Qualys Security Advisory
LPE and RCE in OpenSMTPD’s default install (CVE-2020-8794)
Summary Analysis ... Acknowledgments
We discovered a vulnerability in OpenSMTPD, OpenBSD’s mail server. This vulnerability, an out-of-bounds read introduced in December 2015 (commit 80c6a60c, “when peer outputs a multi-line response ...”), is exploitable remotely and leads to the execution of arbitrary shell commands: either as root, after May 2018 (commit a8e22235, “switch smtpd to new grammar”); or as any non-root user, before May 2018.
Because this vulnerability resides in OpenSMTPD’s client-side code (which delivers mail to remote SMTP servers), we must consider two different scenarios:
- Client-side exploitation: This vulnerability is remotely exploitable
in OpenSMTPD's (and hence OpenBSD's) default configuration. Although
OpenSMTPD listens on localhost only, by default, it does accept mail
from local users and delivers it to remote servers. If such a remote
server is controlled by an attacker (either because it is malicious or
compromised, or because of a man-in-the-middle, DNS, or BGP attack --
SMTP is not TLS-encrypted by default), then the attacker can execute
arbitrary shell commands on the vulnerable OpenSMTPD installation.
- Server-side exploitation: First, the attacker must connect to the
OpenSMTPD server (which accepts external mail) and send a mail that
creates a bounce. Next, when OpenSMTPD connects back to their mail
server to deliver this bounce, the attacker can exploit OpenSMTPD's
client-side vulnerability. Last, for their shell commands to be
executed, the attacker must (to the best of our knowledge) crash
OpenSMTPD and wait until it is restarted (either manually by an
administrator, or automatically by a system update or reboot).
We developed a simple exploit for this vulnerability and successfully tested it against OpenBSD 6.6 (the current release), OpenBSD 5.9 (the first vulnerable release), Debian 10 (stable), Debian 11 (testing), and Fedora 31.
The fix is delivered in OpenSMTPD 6.6.4p1, available here, which the developer recommends installing “AS SOON AS POSSIBLE.”
|
|
Packages | Stable | Bug Report | Very Low | Critical | [gtk-2] Severe problems with GTK2-applications | Unconfirmed | |
Task Description
Description: Since the migration to xenocara there seems to be a bug with applications using GTK-2. From time to time there are crashes with assertion `!xcb_xlib_threads_sequence_lost’.
Looking into this a little bit more deep there are also other distributions affected and this is an upstream-bug. But the concrete situation is not that easy, while it could be also part of the library libX11 itself. Looking therefore here: https://bugs.launchpad.net/ubuntu/+source/pcmanfm/+bug/1782984
Affected are for example LXDE in general, icedove, iceweasel and many more!
|
|
Packages | Stable | Freedom Issue | Very Low | Critical | [keybase] Complete removal of tool | Unconfirmed | |
Task Description
There is only the source code of the client available and since years nothing more happened. With keybase joining “Zoom” nothing more seems to happen. Look also here in the forum: https://forums.hyperbola.info/viewtopic.php?id=368
|
|
Packages | Any | Replace Request | Defer | Critical | [bzr] replace deprecated GNU Bazaar to Brezy | Deferred | |
Task Description
Description:
replace deprecated GNU Bazaar to Brezy for Canis Major
Additional info:
bzr 2.7.0-2
GNU Bazaar will be unmaintained (for now, there are only bug fixes)
GNU Bazaar only supports Python 2.
-
-
-
Note: It needs a provide: bazaar and brezy
Steps to reproduce:
|
|
Software Development | General | Implementation Request | Defer | Critical | RISC-V (riscv64) porting + multilib support | Deferred | |
Task Description
The unfortunate reality is that x86 computers come encumbered with built-in low-level backdoors like the Intel Management Engine , as well as nonfree boot firmware. This means that users can’t gain full control over their computers, even if they install a free operating system such as Hyperbola GNU/Linux-libre .
Hyperbola is working hard to fix these issues and getting closer every day, but for the time being, this is why many current Respects Your Freedom (RYF) offerings are refurbished older devices.
For the future of free computing, we need support architectures that do not come with such malware pre-installed, and RISC-V promises to be a great architecture example for low-power computers, laptops and embedded systems, also as ARM architecture replacement.
Devices like this are the future of computing that Respects Your Freedom and for that reason it’s a high priority for Hyperbola port all packages for the RISC-V architecture (riscv64) with multilib support.
NOTE: RISC-V porting is focused only for Hyperbola GNU/Linux-libre .
|
|
Packages | Any | Feature Request | Very High | High | [sage-notebook] contains systemd unit file | In Progress | |
Task Description
Description:
The Arch version of Sage-notebook from the snapshot used by Hyperbola comes with systemd support. Since Hyperbola follows the Init Freedom Campaign , systemd unit files removal is required. OpenRC init script replacement isn’t possible here because Sage-notebook is using a systemd unit file adapted for users instead of system users.
Additional info: * package version(s) * config and/or log files etc.
Repository : community
Name : sage-notebook
Version : 0.13-4
Description : Browser-based notebook interface for SageMath
Architecture : any
URL : http://www.sagemath.org
Licenses : GPL3
Groups : None
Provides : None
Depends On : sagemath python2-twisted python2-flask-oldsessions python2-flask-openid python2-flask-autoindex python2-flask-babel mathjax
Optional Deps : python2-pyopenssl: to use the notebook in secure mode
Conflicts With : None
Replaces : None
Download Size : 1625.00 KiB
Installed Size : 9154.00 KiB
Packager : Antonio Rojas <arojas@archlinux.org>
Build Date : Thu 04 May 2017 06:12:28 PM -03
Validated By : MD5 Sum SHA-256 Sum Signature
/usr/lib/systemd/user/sage.service is owned by sage-notebook 0.13-4
Steps to reproduce:
|
|
Packages | Any | Feature Request | Very High | High | [erlang-nox] contains systemd unit files | In Progress | |
Task Description
Description:
The Arch version of Erlang (headless version) from the snapshot used by Hyperbola comes with systemd support. Since Hyperbola follows the Init Freedom Campaign , systemd unit files removal is required or add OpenRC init scripts to replace it.
Additional info: * package version(s) * config and/or log files etc.
Repository : community
Name : erlang-nox
Version : 19.3-3
Description : General-purpose concurrent functional programming language developed by Ericsson (headless version)
Architecture : x86_64
URL : http://www.erlang.org/
Licenses : Apache
Groups : None
Provides : None
Depends On : ncurses openssl
Optional Deps : erlang-unixodbc: database support
java-environment: for Java support
lksctp-tools: for SCTP support
Conflicts With : erlang
Replaces : None
Download Size : 39.01 MiB
Installed Size : 106.73 MiB
Packager : Jan de Groot <jgc@archlinux.org>
Build Date : Fri 28 Apr 2017 08:44:33 AM -03
Validated By : MD5 Sum SHA-256 Sum Signature
/usr/lib/systemd/system/epmd.service is owned by erlang-nox 19.3-3
/usr/lib/systemd/system/epmd.socket is owned by erlang-nox 19.3-3
Steps to reproduce:
|
|
Packages | Any | Feature Request | Very High | High | [motion] contains systemd unit file | In Progress | |
Task Description
Description:
The Arch version of Motion from the snapshot used by Hyperbola comes with systemd support. Since Hyperbola follows the Init Freedom Campaign , systemd unit files removal is required or add OpenRC init scripts to replace it.
Additional info: * package version(s) * config and/or log files etc.
Repository : community
Name : motion
Version : 4.0.1-2
Description : A software motion detector which grabs images from video4linux devices and/or from webcams
Architecture : x86_64
URL : http://www.lavrsen.dk/foswiki/bin/view/Motion/WebHome
Licenses : GPL
Groups : None
Provides : None
Depends On : libjpeg v4l-utils ffmpeg
Optional Deps : None
Conflicts With : None
Replaces : None
Download Size : 235.61 KiB
Installed Size : 923.00 KiB
Packager : Sergej Pupykin <pupykin.s+arch@gmail.com>
Build Date : Mon 14 Nov 2016 02:17:55 PM -03
Validated By : MD5 Sum SHA-256 Sum Signature
/usr/lib/systemd/system/motion.service is owned by motion 4.0.1-2
Steps to reproduce:
|
|
Packages | Any | Feature Request | Very High | High | [tinc] contains systemd unit files | In Progress | |
Task Description
Description:
The Arch version of tinc from the snapshot used by Hyperbola comes with systemd support. Since Hyperbola follows the Init Freedom Campaign , systemd unit files removal is required or add OpenRC init scripts to replace it.
Additional info: * package version(s) * config and/or log files etc.
Repository : community
Name : tinc
Version : 1.0.31-2
Description : VPN (Virtual Private Network) daemon
Architecture : x86_64
URL : http://www.tinc-vpn.org/
Licenses : GPL
Groups : None
Provides : None
Depends On : lzo openssl zlib
Optional Deps : None
Conflicts With : None
Replaces : None
Download Size : 107.42 KiB
Installed Size : 194.00 KiB
Packager : Evangelos Foutras <evangelos@foutrelis.com>
Build Date : Mon 13 Mar 2017 01:06:11 AM -03
Validated By : MD5 Sum SHA-256 Sum Signature
/usr/lib/systemd/system/tinc.service is owned by tinc 1.0.31-2
/usr/lib/systemd/system/tinc@.service is owned by tinc 1.0.31-2
Steps to reproduce:
|
|
Packages | Any | Feature Request | Very High | High | [netdata] contains systemd unit files | In Progress | |
Task Description
Description:
The Arch version of tinc from the snapshot used by Hyperbola comes with systemd support. Since Hyperbola follows the Init Freedom Campaign , systemd unit files removal is required or add OpenRC init scripts to replace it.
Additional info: * package version(s) * config and/or log files etc.
Repositorio : community
Nombre : netdata
Versión : 1.6.0-3
Descripción : Real-time performance monitoring, in the greatest possible detail, over the web.
Arquitectura : x86_64
URL : https://github.com/firehol/netdata/wiki
Licencias : GPL
Grupos : Nada
Provee : Nada
Depende de : libmnl libnetfilter_acct zlib
Dependencias opcionales : nodejs: Webbox plugin
lm_sensors: sensors module
En conflicto con : Nada
Remplaza a : Nada
Tamaño de la descarga : 1778,98 KiB
Tamaño de la instalación : 6515,00 KiB
Encargado : Sven-Hendrik Haase <sh@lutzhaase.com>
Fecha de creación : dom 23 abr 2017 16:24:38 -05
Validado por : Suma MD5 Suma SHA-256 Firma
community/netdata /usr/lib/systemd/
community/netdata /usr/lib/systemd/system/
community/netdata /usr/lib/systemd/system/netdata.service
Steps to reproduce:
|
|
Packages | Any | Feature Request | Very High | High | [backuppc]: contains systemd files | Researching | |
Task Description
Description:
Since Hyperbola follows the Init Freedom Campaign, systemd unit files removal is required or add OpenRC init scripts to replace it.
Additional info: * package version(s)
community/backuppc 4.1.2-1 [installed]
Enterprise-grade system for backing up Linux, Windows and MacOS PCs
* config and/or log files etc.
Additional info:
Steps to reproduce: install it
|
|
Packages | Any | Feature Request | Very High | High | [gpsd]: contains systemd files | Researching | |
Task Description
Since Hyperbola follows the Init Freedom Campaign, systemd unit files removal is required or add OpenRC init scripts to replace it.
Additional info: * package version(s)
extra/gpsd 3.16-3 [installed]
GPS daemon and library to support USB/serial GPS devices
* config and/or log files etc.
Additional info:
Steps to reproduce: install it
|
|
Packages | Stable | Feature Request | Very High | High | [hiawatha]: remove systemd files, provide openrc | Researching | |
Task Description
Description:
Hiawatha contains only systemd files.
It shall be removed and openrc shall be provided
|
|
Packages | Any | Feature Request | Very High | High | [onioncat] needs OpenRC init script | Assigned | |
Task Description
Description:
Additional info:
Steps to reproduce:
|
|
Packages | Any | Feature Request | Very High | High | [umurmur] needs OpenRC init script and contains systemd... | Assigned | |
Task Description
Description:
Additional info:
umurmur /usr/lib/systemd/system/umurmur.service
Steps to reproduce:
|
|
Packages | Any | Feature Request | Very High | High | [prosody] needs OpenRC init script and contains systemd... | Assigned | |
Task Description
Description:
Additional info:
prosody /usr/lib/systemd/system/prosody.service
prosody /usr/lib/sysusers.d/prosody.conf
prosody /usr/lib/tmpfiles.d/prosody.conf
Steps to reproduce:
|
|
Packages | Any | Feature Request | Very High | High | [unrealircd] needs OpenRC init script and contains syst... | Assigned | |
Task Description
Description:
Additional info:
unrealircd /usr/lib/systemd/system/unrealircd.service
unrealircd /usr/lib/tmpfiles.d/unrealircd.conf
Steps to reproduce:
|
|
Packages | Any | Feature Request | Very High | High | [mcelog] needs OpenRC init script and contains systemd ... | Assigned | |
Task Description
Description:
Additional info:
mcelog /usr/lib/systemd/system/mcelog.service
Steps to reproduce:
|
|
Packages | Any | Feature Request | Very High | High | [bzr] needs OpenRC init script (bzr serve) | Assigned | |
Task Description
Description:
Additional info:
Note: needs a provide: bazaar
Steps to reproduce:
|
|
Packages | Any | Feature Request | Very High | High | [mercurial] needs OpenRC init scripts (hg serve and chg... | Assigned | |
Task Description
Description:
Additional info:
Note: needs a provide: hg
Steps to reproduce:
|
|
Packages | Any | Implementation Request | Very High | High | [murmur-headless] add a Murmur package capable of worki... | In Progress | |
Task Description
Description:
Add new a Murmur package capable of working without a graphical user interface. It’s common on servers and embedded devices that requires only interfaces like network (eg. SSH) or serial port to handle services.
Additional info:
Steps to reproduce:
|
|
Packages | Any | Implementation Request | Very High | High | [asterisk-headless] add an Asterisk package capable of ... | In Progress | |
Task Description
Description:
Add an Asterisk package capable of working without a graphical user interface. It’s common on servers and embedded devices that requires only interfaces like network (eg. SSH) or serial port to handle services.
Additional info:
Steps to reproduce:
|
|
Services | PunBB Branding | Bug Report | High | High | Forum appearance bugs | In Progress | |
Task Description
Some forum display errors:
preview button with the orange border.
Error message when logging in gray color making it difficult to read
|
|
Packages | Stable | Update Request | High | High | [qt5] upgrade Qt project to the 5.6 LTS version, requir... | Deferred | |
Task Description
Cannot mix incompatible Qt library (version 0×50800) with this library (version 0×50904) Aborted
./Nextcloud-2.3.3-x86_64.AppImage: /usr/lib/libQt5Core.so.5: version `Qt_5.9’ not found (required by /tmp/.mount_NextclpprMnG/usr/bin/../lib/libqt5keychain.so.1
These two packages are directly affected by an older qt5...
Could you update all the qt packages to the LTS version available?
|
|
Packages | Any | Update Request | Medium | High | Make Knock patch for Linux-libre 4.14 LTS | Unconfirmed | |
Task Description
The Knock patches for linux-libre maintained by you at https://git.hyperbola.info:50100/kernels/knock.git/ have support up to linux-libre 4.13 only (and I think it didn’t work for it when I tried it, compilation failed) but from all of those supported versions, the newest maintained generation by the upstream is 4.9.x
However, since newer kernel generations might require reprogramming the patch, I want to request it only for the latest LTS generation which is 4.14. As you know, LTS software are supported for a long time, so it’s worth to make it for linux-libre 4.14.x
This might not be really important for Hyperbola in the short term, but you are the maintainers of the TCP Stealth implementation for Linux-libre and I and maybe other people would like to use it in their projects for newer versions.
Plus, it would be great since while 4.9 kernels can use the GRSec+Knock combination like linux-libre-lts-unofficial-grsec-knock, with support for 4.14 anyone would be able to use a combination of newer patches such as Linux-hardened+Knock (Linux-hardened supports 4.14 and 4.15 as of now) which is what I’d like to do. https://github.com/copperhead/linux-hardened/releases
|
|
Packages | Any | Bug Report | Medium | High | [notmuch-mutt] missing requirement | Researching | |
Task Description
Description: notmuch-mutt fails to compile without perl-mail-message which is missing in Hyperbola
Steps to reproduce: Install notmuch-mutt and try `notmuch-mutt` at the command line. Then install `perl-mail-message` from Arch and try again.
|
|
Packages | Any | Feature Request | Medium | High | [supervisor] contains systemd unit file | In Progress | |
Task Description
The Arch version of “supervisor” from the snapshot used by Hyperbola comes with systemd support. Since Hyperbola follows the a global ruleset for INIT-freedom, systemd unit files removal is required and adding support for other init-systems (preferred OpenRC for now) to replace it.
|
|
Packages | Stable | Bug Report | Medium | High | opensmtpd: permission problems | In Progress | |
Task Description
Description:
cat msg | /usr/sbin/sendmail – sendmail: No such file or directorycannot create temporary file /var/spool/smtpd/offline/1572544775.XXXXIqNsFX
Additional info: * package version: 6.4.2p1-1.hyperbola2.backports1
It is same problem as here: https://github.com/OpenSMTPD/OpenSMTPD/issues/839
I could solve it with:
sudo chmod g+s /usr/sbin/smtpctl sudo chmod g+s /usr/sbin/smtpctl
and then
sudo rc-service smtpd start
Even though I think I should not need to start it to use only sendmail.
|
|
Packages | Any | Bug Report | Medium | High | [gstreamer] needed rebuild | In Progress | |
Task Description
(gst-plugin-scanner:17336): GStreamer-WARNING : Failed to load plugin ‘/usr/lib/gstreamer-1.0/libgstzbar.so’: libzbar.so.0: cannot open shared object file: No such file or directory (gst-plugin-scanner:17336): GStreamer-WARNING : Failed to load plugin ‘/usr/lib/gstreamer-1.0/libgstfluidsynthmidi.so’: libfluidsynth.so.1: cannot open shared object file: No such file or directory
Repositorio : extra Nombre : gstreamer Versión : 1.12.0-1 Descripción : GStreamer open-source multimedia framework core library Arquitectura : x86_64 URL : https://gstreamer.freedesktop.org/ Licencias : LGPL Grupos : Nada Provee : Nada Depende de : libxml2 glib2 libunwind libcap libelf Dependencias opcionales : Nada En conflicto con : Nada Remplaza a : Nada Tamaño de la descarga : 1897,45 KiB Tamaño de la instalación : 17241,00 KiB Encargado : Jan Alexander Steffens (heftig) jan.steffens@gmail.com Fecha de creación : jue 04 may 2017 14:13:05 -05 Validado por : Suma MD5 Suma SHA-256 Firma
|
|
Packages | Any | Update Request | Medium | High | [php] is out of date/support | Unconfirmed | |
Task Description
Description:
From official PHP page, our php 7.1 is out of support and security
Our package : https://www.hyperbola.info/packages/extra/x86_64/php/
PHP page : https://www.php.net/supported-versions.php
|
|
Packages | Any | Bug Report | Low | High | [kaccounts-integration] option to add NextCloud/OwnClou... | Unconfirmed | |
Task Description
Description:
Additional info: * package version(s)
* config and/or log files etc.
Steps to reproduce:
|
|
Packages | Any | Bug Report | Low | High | [kdenetwork-kopete] clicking to add an Jabber Account o... | Unconfirmed | |
Task Description
Description:
Additional info: * package version(s)
* config and/or log files etc.
Steps to reproduce:
|
|
Packages | Any | Bug Report | Low | High | [xfce4-power-manager] locking session issue | Requires Testing | |
Task Description
I probably should’ve mentioned this before, but if it is set to suspend when lid is closed, it should automatically lock. if the security option: lock screen with system is set to sleep is tweaked on it doesn’t lock always.
This is word for word what I wrote in the forums, but yeah... it is a problem say if someone wants to use your laptop without your permission and can do so.
But it is also a problem if you set it to lock instead because it is more prone to overheating when your not using it, and it doesn’t suspend quickly enough.
I have tried this many times and the same story can be told, again and again.
I think this issue should be considered high or critical merely because of the privacy risk if someone gets their hands on your laptop while its on. Even if you have been away... :/
I wonder if anyone else has this issue... well you guys will tell me I am sure. if critical doesn’t match what you think I am sure you will change it. ;)
|
|
Packages | Any | Bug Report | Very Low | High | Desite "noauto" specified in /etc/fstab all devices get... | Unconfirmed | |
Task Description
Description:
I have tried all combinations, but despite “noauto” specified in /etc/fstab all devices get mounted at boot.
Who can help me, not to mount a device during boot?
|
|
Packages | Any | Implementation Request | Very Low | High | [glom]: should depend on libgda | Unconfirmed | |
Task Description
Description:
glom cannot run without libgda, so it should depend on libgda package
|