|
Packages | Any | Implementation Request | Very Low | Low | [wekan] add package | Unconfirmed | |
Task Description
Hello,
Would it be possible to add this package :
wekan
“Wekan is an completely Open Source and Free software collaborative kanban board application”
https://github.com/wekan/wekan
License : MIT
Thanks
|
|
Packages | Any | Implementation Request | Very Low | Low | [moloch] add package | Unconfirmed | |
Task Description
Hello,
Would it be possible to add this package :
moloch
“ Moloch is an open source, large scale, full packet capturing, indexing, and database system.”
http://molo.ch
https://github.com/aol/moloch
License : Apache2
Thanks
|
|
Packages | Any | Implementation Request | Medium | Low | Scid vs. PC – PGN Reader/ChessBase | Unconfirmed | |
Task Description
http://scidvspc.sourceforge.net/
|
|
Packages | Any | Implementation Request | Medium | Low | Stockfish Chess Engine | Unconfirmed | |
Task Description
«Unlike most chess engines, Stockfish is open source (GPL license). That means you can read the code, modify it, contribute back, and even use it in your own projects.» I do not know if it is libre. If it is, together with Scid, Hyperbola is one step closer for every chess lover out there who also loves freedom! https://stockfishchess.org/
|
|
Packages | Any | Implementation Request | Very Low | Low | [powerpill] add package | Unconfirmed | |
Task Description
Hello,
Could it be possible to add this package :
powerpill
“Pacman wrapper for faster downloads.”
https://aur.archlinux.org/packages/powerpill/
https://xyne.archlinux.ca/projects/powerpill
License : GPL
Thanks
|
|
Packages | Any | Implementation Request | Very Low | Low | [flacon] add package | Unconfirmed | |
Task Description
Hello,
Could it be possible to add this package :
flacon
“Extracts individual tracks from one big audio file containing the entire album of music and saves them as separate audio files.”
https://aur.archlinux.org/packages/flacon/
https://flacon.github.io/
License : LGPL2.1
Thanks
|
|
Packages | Any | Implementation Request | Very Low | Low | [gogs] add package | Unconfirmed | |
Task Description
Hello,
It would be great to add this package :
gogs
“Self Hosted Git Service written in Go”
https://aur.archlinux.org/packages/gogs
openrc init scripts : https://aur.archlinux.org/packages/gogs-openrc
License : GPL
Thanks
|
|
Packages | Any | Implementation Request | Very Low | Low | [gimagereader] add package | Unconfirmed | |
Task Description
Hello,
Could it be possible to add this package :
gimagereader
“A graphical frontend to tesseract-ocr”
https://aur.archlinux.org/packages/gimagereader
License : GPL3
Thanks
|
|
Installation | General | Implementation Request | Very Low | Low | To make installation instructions and get use of live I... | Unconfirmed | |
Task Description
I have installed multiple times Hyperbola, 4 times on 4 different notebooks.
What I have noticed is that the live ISO is quite huge in relation to the task that should be done. Namely. the live ISO shall at least contain some first packages, so that they do not need to be downloaded online.
Best would be if the live ISO can be copied straight and that system can run from ISO/DVD without having Internet. At least one simple graphical environment shall be included.
Further, I have noticed that there is only network instructions as HTML file.
I would rather call it installation-instructions.html to make it clear for people what it is. Or simply: INSTALL.html so that people understand what it is.
It says just network.html if I remember well.
Then there is absolutely no point or link or reference to the installation instructions.
Each time I got a network I had to go to either duckduckgo search engine or to hyperbola.info website and then I tried with lynx to find installation instructions.
It is not straight, not quite clearly in open, it is in Wiki, but that is quite hard to find.
We have to put ourselves in the shoes of those in need of free software. Millions of people need free software.
Many of us live in a developed western countries.
Yet millions of people in need of this software live in South America, Africa, Asia, Eastern Europe.
There are millions of students that could advance their study, and that could progress faster with free software.
In those countries Internet is often non-existent, universities may be located in poor network areas, Internet is being fetched by using mobile phones.
So if there is a live distribution, such shall at least contain basic software, which really can fit onto any DVD, and that as such can be copied on the computer without using Internet. Upgrades could be fetched by using Internet.
And there shall be clear reference, link or file about installation. There shall be no need to go to Internet to install the software.
|
|
Services | Flyspray Issue | Implementation Request | Very Low | Low | Setting avatar picture on flyspry at issues.hyperbola.i... | Unconfirmed | |
Task Description
So avatar uploading is not working well, and picture is getting minimized to nothing.
|
|
Packages | Any | Implementation Request | Very Low | Low | [exifread] add package | Unconfirmed | |
Task Description
Hello,
Could it be possible to add this package :
exifread
“Python library to extract EXIF data from tiff and jpeg files”
https://aur.archlinux.org/packages/exifread/
Thanks
|
|
Software Development | Iceweasel-UXP | Implementation Request | Defer | Low | Swiftweasel-UXP theme for Iceweasel-UXP | Unconfirmed | |
Task Description
Description: Historically, Swiftweasel was a Firefox-based application built on XUL platform around 2007 and abandoned in 2010. It was optimized for several architectures using the following methods such as the Profile-Guided Optimization (PGO) and binary code optimization for computers with limited resources.
Since there are users encouraging us develop a Palemoon-based application , and Swiftweasel contains non-trademarked graphics and logos, we could port Swiftweasel to UXP platform as theme for Iceweasel-UXP.
|
|
Software Development | Icedove-UXP | Implementation Request | Defer | Low | Swiftdove-UXP theme for Icedove-UXP | Unconfirmed | |
Task Description
Description: Historically, Swiftdove was a Thunderbird-based application built on XUL platform around 2007 and abandoned in 2010. It was optimized for several architectures using the following methods such as the Profile-Guided Optimization (PGO) and binary code optimization for computers with limited resources.
Since FossaMail may potentially be revived on UXP in the future [0] and Swiftdove contains non-trademarked graphics and logos, we could port Swiftdove to UXP platform as theme for Icedove-UXP.
|
|
Packages | Any | Implementation Request | Very Low | Low | [obmenu-generator] add package | Unconfirmed | |
Task Description
Could it be possible to add :
obmenu-generator
A fast pipe/static menu generator for the Openbox Window Manager (with icons support)
License : GPL3
https://github.com/trizen/obmenu-generator https://www.parabola.nu/packages/pcr/x86_64/obmenu-generator/
Thanks
|
|
Packages | Any | Implementation Request | Very Low | Low | [sayonara] add package | Unconfirmed | |
Task Description
Hello,
I stumbled upon this music player recently, it is very promising and fully free (GPL3)
“Sayonara is a small, clear and fast audio player for Linux written in C++, supported by the Qt framework. It uses GStreamer as audio backend. Sayonara is open source and uses the GPLv3 license. One of Sayonara’s goals is intuitive and easy usablility. Currently, it is only available for Linux and BSD.
Although Sayonara can be considered as a lightweight player, it holds a lot of features in order to organize even big music collections.”
Latest version is 1.1.1 and it is very stable on my hyperbola system. I think it would be a great addition to Hyperbola repo.
https://sayonara-player.com/
A PKGBUILD is available here :
https://sayonara-player.com/sw/arch_linux/PKGBUILD
|
|
Packages | Stable | Implementation Request | Very Low | Low | [materia-theme] add package | Unconfirmed | |
Task Description
A Material-like flat theme for GTK+ 2/3, and GNOME shell, released under a GNU General Public Licence (GNU GPL) 2 and later.
|
|
Packages | Any | Implementation Request | Very Low | Low | [mkv-extractor-qt] add package | Unconfirmed | |
Task Description
Could it be possible to add :
mkv-extractor-qt
“Graphical MKV demultiplexer”
https://aur.archlinux.org/packages/mkv-extractor-qt/
License: GPL3
Thanks
|
|
Packages | Any | Implementation Request | Very Low | Low | [vidcutter] add package | Unconfirmed | |
Task Description
Could it be possible to add :
vidcutter
“A modern, simple to use, constantly evolving and hella fast MEDIA CUTTER + JOINER w/ frame-accurate SmartCut technology + Qt5, libmpv, FFmpeg and MediaInfo powering the backend.”
License : GPL3
https://aur.archlinux.org/packages/vidcutter/
https://vidcutter.ozmartians.com/
|
|
Packages | Any | Implementation Request | Very Low | Low | [qarte] add package | Unconfirmed | |
Task Description
Request for :
qarte
“Allow you to browse into the archive of arte+7 & arteLiveWeb sites and to record your prefered videos.”
https://aur.archlinux.org/packages/qarte
License : GPL3
|
|
Packages | Any | Implementation Request | Low | Low | [opmsg] add new package | Researching | |
Task Description
Description: opmsg is a replacement for gpg which can encrypt/sign/verify your mails or create/verify detached signatures of local files. Even though the opmsg output looks similar, the concept is entirely different.
Additional info: https://aur.archlinux.org/packages/opmsg/
|
|
Packages | Any | Implementation Request | Very Low | Low | [xfce4-alsa-plugin] add package | Unconfirmed | |
Task Description
Please add xfce4-alsa-plugin (to get rid of pulseaudio plugin on xfce)
License: GPL3
https://aur.archlinux.org/packages/xfce4-alsa-plugin/ https://github.com/equeim/xfce4-alsa-plugin
|
|
Packages | Stable | Implementation Request | Very Low | Low | [xfe] Add Opus audio file type support | Unconfirmed | |
Task Description
A format is not known or recognized in the original code base. To add a string into at the audio section in xferc.in:
opus = "<audioplayer>,<audioplayer>,audacity;Opus Audio;mp3_32x32.png;mp3_16x16.png;;"
|
|
Packages | Any | Implementation Request | Very Low | Low | [emacs-exwm] add package | Assigned | |
Task Description
Some users use emacs as a tiling window manager. Please add EXWM[0]
[0]: https://github.com/ch11ng/exwm
|
|
Packages | Any | Implementation Request | Very Low | Low | [SafeEyes] add new package | Assigned | |
Task Description
Safe Eyes is a program to manage breaks in front of the computer. It has many features that help us adapt it to our needs.
|
|
Packages | Stable | Implementation Request | Very Low | Low | [codelite] Adding new package | Unconfirmed | |
Task Description
The IDE codelite is an excellent development environment, continuously updated, has a clear vision and active support. Would be nice to have this one within the repositories in upcoming releases, perhaps 0.5?
|
|
Packages | Any | Implementation Request | Very Low | Low | [chdkptp] please add package to repos | Unconfirmed | |
Task Description
CHDKPTP is part of CHDK project - a free software firmware add-on for Canon cameras. It enables controlling Canon cameras via the computer.
Attached is a modified iup PKGBUILD (Lua 5.3 build was removed as it failed to compile) and configuration files for chdkptp.
Code is available via svn:
$ svn co http://subversion.assembla.com/svn/chdkptp/trunk chdkptp
Copy chdkptp.sh and config.mk files to source tree then compile via make. Requires root privileges to connect to a camera.
|
|
Packages | Any | Privacy Issue | Very Low | Critical | [bleachbit] needs to be adapted to UXP applications | Assigned | |
Task Description
The current version of BleachBit needs to be adapted so it can clean the new .cache/hyperbola/ directory.
|
|
Packages | Any | Privacy Issue | Very Low | Medium | [avahi] avahi publishes the hostname by default | Unconfirmed | |
Task Description
By default, the ‘disable-publishing’ parameter in the [publish] section of avahi-daemon.conf is set to ‘no’, which can be seen in my opinion as a privacy issue as avahi broadcasts the hostname without the user’s consent even though this has been explicitly disabled in the settings of networkmanager.
|
|
Packages | Any | Privacy Issue | Very Low | Low | [purple-plugin-pack] Provides Napster support which is ... | Unconfirmed | |
Task Description
purple-plugin-pack provides access to Napster which is only useful with a single company and sever (as far as I could tell).
|
|
Packages | Any | Privacy Issue | Very Low | Low | [github] check github-related packages | Researching | |
Task Description
We should check if the following packages run any non-free JS (like youtube-dl) or access a proprietary API:
- hub - python-pygithub - python2-pygithub
I haven’t check them, but they look fishy. Take it as a reminder, this is far from being urgent IMO.
|
|
Packages | Any | Replace Request | Defer | Critical | [bzr] replace deprecated GNU Bazaar to Brezy | Deferred | |
Task Description
Description:
replace deprecated GNU Bazaar to Brezy for Canis Major
Additional info:
bzr 2.7.0-2
GNU Bazaar will be unmaintained (for now, there are only bug fixes)
GNU Bazaar only supports Python 2.
-
-
-
Note: It needs a provide: bazaar and brezy
Steps to reproduce:
|
|
Packages | Stable | Replace Request | Very Low | Medium | Package ossp has got systemd dependencies | Unconfirmed | |
Task Description
Description: Concurrent package ossp in version 1.3.2-15 has got dependencies to systemd, which is contradicting the whole distribution and the used INIT-system. Therefore my request to port this to OpenRC!
Additional info: * package version(s) 1.3.2-15
|
|
Packages | Testing | Replace Request | Very Low | Medium | replace request: NetworkManager with wpa_cute | Unconfirmed | |
Task Description
https://github.com/loh-tar/wpa-cute/releases
I know there are plans to remove NetworkManager. I wondered if we could replace it in 0.4 with Wpa_Cute. seen in the above link.
I haven’t been able to compile it, but it has been updated as recent as 2018 december (stable)
or 2019 january. :)
WPA_GUI doesn’t seem to work well for me, it runs into weird errors when I start it. Long story short, I run into this issue with wpa_supplicant when i do it manually:
https://wiki.archlinux.org/index.php/Wpa_supplicant:
Password-related problems
wpa_supplicant may not work properly if directly passed via stdin particularly long or complex passphrases which include special characters. This may lead to errors such as failed 4-way WPA handshake, PSK may be wrong when launching wpa_supplicant.
In order to solve this try using here strings wpa_passphrase <MYSSID> «< “<passphrase>” or passing a file to the -c flag instead:
# wpa_supplicant -i <interface> -c /etc/wpa_supplicant/example.conf
In some instances it was found that storing the passphrase cleartext in the psk key of the wpa_supplicant.conf network block gave positive results (see [2]). However, this approach is rather insecure. Using wpa_cli to create this file instead of manually writing it gives the best results most of the time and therefore is the recommended way to proceed. Problems with eduroam and other MSCHAPv2 connections
This is my issue with wpa_supplicant sadly... and I do not know how to workaround that without a GUI.
but Wpa_Supplicant_gui does not fix it either, it doesn’t even load properly on my other laptop.
It says it cannot get the status of wpa_supplicant when I load it.
This could be an issue if you get rid of NetworkManager for some users.
So yeah, please take a look at my request okay? Wait for 0.3 to be released to add this if possible. I know you guys are overworked, etc... and it doesn’t need to be done now anyhow. ;)
|
|
Packages | Any | Replace Request | Low | Low | [appmenu-qt4] replace with appmenu-qt (qt5) | Deferred | |
Task Description
“appmenu-qt4”[0][2] is a deprecated package (release in 2012)[1] and use qt4 unsupported/non-lts software[3], but “appmenu-qt5” not contains any release source code[2]
$ pacman -Si appmenu-qt4 Repository : community Name : appmenu-qt4 Version : 0.2.6-1 Description : Export Qt4 applications menus over D-Bus Architecture : x86_64 URL : https://launchpad.net/appmenu-qt Licenses : GPL Groups : None Provides : None Depends On : libdbusmenu-qt4 Optional Deps : None Conflicts With : appmenu-qt Replaces : appmenu-qt Download Size : 16.55 KiB Installed Size : 48.00 KiB Packager : Antonio Rojas arojas@archlinux.org Build Date : Tue 28 Feb 2017 05:59:31 AM -03 Validated By : MD5 Sum SHA-256 Sum Signature
[0]:https://launchpad.net/appmenu-qt (qt4) [1]:https://launchpad.net/appmenu-qt/+download [2]:https://launchpad.net/appmenu-qt5 [3]:https://en.wikipedia.org/wiki/Qt_5.6_LTS
|
|
Packages | Any | Security Issue | Very High | Critical | [avahi] blacklist package since it's a zeroconf impleme... | In Progress | |
Task Description
Avahi is a zero-configuration networking implementation that contains critical security issues because mDNS operates under a different trust model than unicast DNS trusting the entire network rather than a designated DNS server, it is vulnerable to spoofing attacks by any system within the multicast IP range. Like SNMP and many other network management protocols, it can also be used by attackers to quickly gain detailed knowledge of the network and its machines. [0]
Since it violates the Hyperbola Social Contract , Avahi should be blacklisted.
|
|
Packages | Any | Security Issue | Medium | Critical | [libjpeg-turbo] CVE-2019-2201 | Researching | |
Task Description
In generate_jsimd_ycc_rgb_convert_neon of jsimd_arm64_neon.S, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution in an unprivileged process with no additional execution privileges needed. User interaction is needed for exploitation
https://security-tracker.debian.org/tracker/CVE-2019-2201
Patch: https://github.com/libjpeg-turbo/libjpeg-turbo/issues/388
|
|
Packages | Any | Security Issue | Very Low | Critical | [unbound] Multiple CVEs | Assigned | |
Task Description
https://ostif.org/our-audit-of-unbound-dns-by-x41-d-sec-full-results/
[Critical] https://security-tracker.debian.org/tracker/CVE-2019-18934
|
|
Packages | Stable | Security Issue | Very Low | Critical | [lts-kernel][sec] filter /dev/mem access & restrict acc... | Unconfirmed | |
Task Description
These two options could be enabled :
Kernel hacking → [*] Filter access to /dev/mem [*] Filter I/O access to /dev/mem
Security options → [*] Restrict unprivileged access to the kernel syslog
|
|
Packages | Any | Security Issue | Very Low | Critical | [opensmtpd] CVE-2020-8794 | Unconfirmed | |
Task Description
Description: https://www.openwall.com/lists/oss-security/2020/02/24/5 https://www.bleepingcomputer.com/news/security/new-critical-rce-bug-in-openbsd-smtp-server-threatens-linux-distros/
Qualys Security Advisory
LPE and RCE in OpenSMTPD’s default install (CVE-2020-8794)
Summary Analysis ... Acknowledgments
We discovered a vulnerability in OpenSMTPD, OpenBSD’s mail server. This vulnerability, an out-of-bounds read introduced in December 2015 (commit 80c6a60c, “when peer outputs a multi-line response ...”), is exploitable remotely and leads to the execution of arbitrary shell commands: either as root, after May 2018 (commit a8e22235, “switch smtpd to new grammar”); or as any non-root user, before May 2018.
Because this vulnerability resides in OpenSMTPD’s client-side code (which delivers mail to remote SMTP servers), we must consider two different scenarios:
- Client-side exploitation: This vulnerability is remotely exploitable
in OpenSMTPD's (and hence OpenBSD's) default configuration. Although
OpenSMTPD listens on localhost only, by default, it does accept mail
from local users and delivers it to remote servers. If such a remote
server is controlled by an attacker (either because it is malicious or
compromised, or because of a man-in-the-middle, DNS, or BGP attack --
SMTP is not TLS-encrypted by default), then the attacker can execute
arbitrary shell commands on the vulnerable OpenSMTPD installation.
- Server-side exploitation: First, the attacker must connect to the
OpenSMTPD server (which accepts external mail) and send a mail that
creates a bounce. Next, when OpenSMTPD connects back to their mail
server to deliver this bounce, the attacker can exploit OpenSMTPD's
client-side vulnerability. Last, for their shell commands to be
executed, the attacker must (to the best of our knowledge) crash
OpenSMTPD and wait until it is restarted (either manually by an
administrator, or automatically by a system update or reboot).
We developed a simple exploit for this vulnerability and successfully tested it against OpenBSD 6.6 (the current release), OpenBSD 5.9 (the first vulnerable release), Debian 10 (stable), Debian 11 (testing), and Fedora 31.
The fix is delivered in OpenSMTPD 6.6.4p1, available here, which the developer recommends installing “AS SOON AS POSSIBLE.”
|
|
Packages | Any | Security Issue | Very High | Critical | [grub2] UEFI SecureBoot vulnerability + multiple flaws ... | Unconfirmed | |
Task Description
https://www.debian.org/security/2020-GRUB-UEFI-SecureBoot/
https://9to5linux.com/grub2-boot-failure-issues-fixed-in-debian-and-ubuntu-update-now
|
|
Packages | Any | Security Issue | Very Low | High | [octopi] requires su | Unconfirmed | |
Task Description
would it be possible to make it use sudo instead?
From what I know, sudo is safer. Let me know if you agree this is a problem.
|
|
Packages | Any | Security Issue | Very Low | High | [tigervnc] Multiple CVE | Researching | |
Task Description
https://www.openwall.com/lists/oss-security/2019/12/20/2
“This is a security release to fix a number of issues that were found by Kaspersky Lab. These issues affect both the client and server and could theoretically allow an malicious peer to take control over the software on the other side.”
|
|
Services | Mail Service Issue | Security Issue | Very Low | High | Please "support" TLS 1.2 instead of requiring it for em... | Unconfirmed | |
Task Description
The requirement for TLS 1.2 in email effectively isolated us from internet, and yelling for change isn’t working even in communications with other free/libre system distributions and mailing lists related to free/libre software (both for software and for discussions related to the movement itself). :)
Many mailing lists at gnu.org, fsf.org, fsfla.org, libreplanet.org, and also in other free/libre system distributions aren’t accessible (e.g.: Trisquel).
|
|
Packages | Any | Security Issue | Medium | Medium | [cinepaint] unmaintained and unsupportable | In Progress | |
Task Description
Remove “cinepaint” package since it’s unmaintained and unsupportable. Also, it doesn’t contains any file format support in the latest version (previous version supported multiple file formats).
I suggest use Krita (or Gimp 2.10) to edit 16bit and 32bit file formats or convert with imagemagick/graphicsmagick.
$ pacman -Si cinepaint
Repository : community
Name : cinepaint
Version : 1:1.0.4-5
Description : Sophisticated graphics manipulation programm supporting > 8bit pictures
Architecture : x86_64
URL : http://www.cinepaint.org
Licenses : LGPL GPL MIT
Groups : None
Provides : None
Depends On : gtk2 openexr lcms libxpm fltk ftgl libxxf86vm
Optional Deps : python2: for python plug-ins
gutenprint: for print plug-ins
ghostscript: for pdf plug-ins
Conflicts With : None
Replaces : None
Download Size : 3.75 MiB
Installed Size : 13.91 MiB
Packager : Christian Hesse <arch@eworm.de>
Build Date : Thu 28 Apr 2016 05:17:05 AM -03
Validated By : MD5 Sum SHA-256 Sum Signature
|
|
Packages | Any | Security Issue | Medium | Medium | [openssh] CVE-2018-15919 | Researching | |
Task Description
Remotely observable behavior in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states ‘We understand that the OpenSSH developers do not want to treat such a username enumeration (or “oracle”) as a vulnerability.’ https://security-tracker.debian.org/tracker/CVE-2018-15919
|
|
Packages | Any | Security Issue | Very Low | Medium | [patch] CVE-2018-6951 - NULL pointer DoS | Assigned | |
Task Description
An issue was discovered in GNU patch through 2.7.6. There is a segmentation fault, associated with a NULL pointer dereference, leading to a denial of service in the intuit_diff_type function in pch.c, aka a “mangled rename” issue.
https://security-tracker.debian.org/tracker/CVE-2018-6951
|
|
Packages | Any | Security Issue | Very Low | Medium | [qemu] Multiple CVE | Unconfirmed | |
Task Description
CVE-2018-20123 QEMU: pvrdma: memory leakage in device hotplug https://www.openwall.com/lists/oss-security/2018/12/13/4
CVE-2018-16872 Qemu: usb-mtp: path traversal by host filesystem manipulation in Media Transfer Protocol (MTP) https://www.openwall.com/lists/oss-security/2018/12/13/11
Patches included at above URLs.
|
|
Packages | Any | Security Issue | Very Low | Medium | Download debian-fixes instead of relying on external so... | Unconfirmed | |
Task Description
It happened already with minetest and again with prosody: When trying to build own packages with makepkg there are patches downloaded from the Debian-project. But the given HTTP(S)-sources are no longer available, concrete example within prosody to be found: https://deb.debian.org/debian/pool/main/p/prosody/prosody_0.10.2-1~bpo9+1.debian.tar.xz (not available)
Please don’t rely on those external sources when creating PKGBUILD-files or just give users the possibility for a secure and granted download. Therefore I cannot build prosody on my own now!
|
|
Packages | Stable | Security Issue | Very Low | Medium | [git] Multiple CVEs | Unconfirmed | |
Task Description
CVE-2020-5260 has been fixed very recently in Debian, so I thought I would apply this patch. However, I found out that security patches have not been applied for quite a while (I could account for at least 6 CVEs).
Considering that the version in Debian stretch (2.11.0) is the nearest version with security patches released by Debian and that git project oldest supported version is 2.17, I have used patches from Debian stretch to apply on 2.12.2 currently in Milky Way.
But I have the following error on check():
| *** prove ***
|
| Test Summary Report
| -------------------
| t5570-git-daemon.sh (Wstat: 256 Tests: 20 Failed: 10)
| Failed tests: 3-7, 15-19
| Non-zero exit status: 1
| t5811-proto-disable-git.sh (Wstat: 256 Tests: 26 Failed: 16)
| Failed tests: 2-6, 9-11, 15-19, 21-23
| Non-zero exit status: 1
| Files=769, Tests=14137, 1101 wallclock secs ( 8.08 usr 1.12 sys + 144.48 cusr 63.42 csys = 217.10 CPU)
| Result: FAIL
| make[1]: *** [Makefile:45: prove] Error 1
| make[1]: Leaving directory '/build/git/src/git-2.12.2/t'
| make: *** [Makefile:2291: test] Error 2
| ==> ERROR: A failure occurred in check().
| Aborting...
This does not seem to be related to my change as the current version in Milky Way produces the same error (IOW the package currently in Milky Way is not rebuidable).
|
|
Packages | Any | Security Issue | Very Low | Medium | mount.davfs: unknown file system davfs due to paths cha... | Unconfirmed | |
Task Description
This is same issue as on: https://bugzilla.redhat.com/show_bug.cgi?id=1151273
The paths changed and trying to mount davfs file system defined in /etc/fstab fails with error: unknown file system davfs
To remedy, I made symlink in /sbin to mount.davfs
The transition of paths had to take that in account as many mounted remote disks failed after upgrade.
|