|
Any | Bug Report | Very Low | Medium | [python-pafy] Like/dislike ratio and category not displ ... | Closed | |
Task Description
Tried browsing videos in other YouTube client(s) such as mps-youtube. Minor problems, like/dislike ratio and category aren’t displaying of video metadata.
|
|
Any | Implementation Request | Very Low | Low | [python-cheat] add package | Closed | |
Task Description
Hello,
Could it be possible to add this package :
python-cheat
“Cheat allows you to create and view interactive cheatsheets on the command-line.”
https://aur.archlinux.org/packages/python-cheat/
https://github.com/chrisallenlane/cheat
License : GPL3
Thanks
|
|
Any | Privacy Issue | Very Low | Low | [purple-plugin-pack] Provides Napster support which is ... | Closed | |
Task Description
purple-plugin-pack provides access to Napster which is only useful with a single company and sever (as far as I could tell).
|
|
Any | Implementation Request | Very Low | Medium | [purple-matrix] Please add package | Closed | |
Task Description
Package is a libpurple plugin for the Matrix protocol which is consistent with Hyperbola’s social contract as Matrix is a federated protocol.
Source code can be found here licensed under GPLv2:
https://github.com/matrix-org/purple-matrix
PKGBUILD for git version is available here (last stable release is from two years ago so git version is probably the best version to use):
https://aur.archlinux.org/packages/purple-matrix-git/
|
|
Any | Update Request | Very Low | High | [proj]: please update to latest version | Closed | |
Task Description
Description:
https://proj4.org/index.html
This package have valuable geodetic applications, and I intend to present Hyperbola GNU/Linux-libre soon in universities and schools in East Africa.
The coordinate system there is not WGS84 and this package only in new version is providing the conversion from East African geographic coordinates to WGS84, and will be very usable in many industrial and private applications.
|
|
Any | Implementation Request | Very Low | Low | [powerpill] add package | Closed | |
Task Description
Hello,
Could it be possible to add this package :
powerpill
“Pacman wrapper for faster downloads.”
https://aur.archlinux.org/packages/powerpill/
https://xyne.archlinux.ca/projects/powerpill
License : GPL
Thanks
|
|
Stable | Bug Report | Very Low | Medium | [postgrey] has systemd service and no OpenRC init scrip ... | Closed | |
Task Description
Description:
The title says everything
Also, it doesn’t follow the FHS (/usr/bin/postgrey should be in /usr/sbin)
Additional info:
* postgrey-1.37-1
|
|
Stable | Bug Report | Very Low | Very Low | [postfix] has different directory permissions than 'fil... | Deferred | |
Task Description
Description:
The /usr/sbin directory in postfix has permissions 755
https://git.hyperbola.info:50100/packages/extra.git/tree/postfix/PKGBUILD#n115
And ‘filesystem’ sets it to 750
https://git.hyperbola.info:50100/packages/core.git/tree/filesystem/PKGBUILD#n135
So when installing postfix, pacman throws a warning
warning: directory permissions differ on /usr/sbin/
filesystem: 750 package: 755
Additional info:
* postfix-3.2.2-1.hyperbola6
|
|
Any | Implementation Request | Very Low | Low | [plymouth] add package | Closed | |
Task Description
Plymouth is an application that runs very early in the boot process (even before the root filesystem is mounted!) that provides a graphical boot animation while the boot process happens in the background.
Please implement plymouth as an optional package.
|
|
Any | Freedom Issue | Very Low | Low | [pkgdiff]: using kernel name instead of operating syste ... | Closed | |
Task Description
Description:
community/pkgdiff 1.7.1-1
A tool for analyzing changes in Linux software packages
See:
https://www.gnu.org/philosophy/words-to-avoid.html#Linux
|
|
Any | Freedom Issue | Very Low | Low | [pinta] mentioning proprietary software Paint.NET | Closed | |
Task Description
Description:
The description of the package need to be changed to accommodate:
https://www.gnu.org/philosophy/words-to-avoid.html
community/pinta 1.6-2 [installed]
Drawing/editing program modeled after Paint.NET. It's goal is to provide a simplified alternative to GIMP for casual users
I am not quite sure what the policy is in Hyperbola on this one. I am referring to the reference to the proprietary software Paint.NET. That is for me steering users to verify what is Paint.NET – we shall not be doing it. It should be removed from description.
I am fine if authors have in documentation something explaining how they started software project. But I am not fine in descriptions which are public and accessible on Internet to have such references to illegitimate proprietary software.
Just to clarify, the word “alternative” is just fine in this description and need not be removed.
|
|
Any | Update Request | Very Low | High | [php] update to old stable PHP 7.1.32 | Closed | |
Task Description
Description:
Version 7.1.32
29 Aug 2019
mbstring:
* Fixed CVE-2019-13224 (don’t allow different encodings for onig_new_deluxe) (stas)
* pcre: Fixed bug #75457 (heap use-after-free in pcrelib) (cmb)
|
|
Any | Freedom Issue | Very Low | Low | [pflask]: using kernel name instead of operating system ... | Closed | |
Task Description
Description:
community/pflask 0.2.20151217-1
Lightweight process containers for Linux
See:
https://www.gnu.org/philosophy/words-to-avoid.html#Linux
|
|
Any | Implementation Request | Very Low | Medium | [peertube] Add new Package | Closed | |
Task Description
Description:
Hi guys. Could they add PeerTube to Hyperbola?
It’s on AUR.
Under the AGPLv3 license
Additional info:
I see that the PeerTube help configuration with an init.d
|
|
Any | Security Issue | Very Low | Medium | [patch] CVE-2018-6951 - NULL pointer DoS | Closed | |
Task Description
An issue was discovered in GNU patch through 2.7.6. There is a segmentation fault, associated with a NULL pointer dereference, leading to a denial of service in the intuit_diff_type function in pch.c, aka a “mangled rename” issue.
https://security-tracker.debian.org/tracker/CVE-2018-6951
|
|
Any | Implementation Request | Very Low | Medium | [pagamigo] please package this Python script for PayPal ... | Closed | |
Task Description
This Python script enables users to use PayPal without proprietary JavaScript. The package requires newer Python modules than those provided by Hyperbola.
requests>=2.18.1
lxml>=4.2.3
cssselect>=1.0.3
The source code can be found here, licensed under the GPL.
https://notabug.org/alyssa/pagamigo
Pagamigo was also covered on tech news website soylentnews recently.
https://soylentnews.org/article.pl?sid=18/11/09/0446226
|
|
Any | Implementation Request | Very Low | Low | [pacpl] Add package | Closed | |
Task Description
Hello,
Could it be possible to add this package :
pacpl
“Convert multiple audio types from one format to another.”
https://aur.archlinux.org/packages/pacpl/
License : GPL
Dependencies needed (and currently missing in Hyperbola repo) :
perl-ogg-vorbis-header perl-mp4-info perl-mp3-tag perl-audio-flac-header perl-audio-musepack perl-parallel-forkmanager perl-cddb
|
|
Any | Bug Report | Very Low | Low | [pacman] warnings after migration | Closed | |
Task Description
When updating packages this warning appears:
warning: directory permissions differ on /usr/sbin/
filesystem: 750 package: 755
|
|
Any | Freedom Issue | Very Low | Low | [packeth]: using kernel name instead of operating syste ... | Closed | |
Task Description
Description:
community/packeth 1.8.1-1
A Linux GUI packet generator tool for ethernet.
See:
https://www.gnu.org/philosophy/words-to-avoid.html#Linux
|
|
Stable | Drop Request | Very Low | Critical | [osdbattery] Unmaintained and unsupportable | Closed | |
Task Description
osdbattery is (probably) useless and broken so Conky did compete because It is still unmaintained and unsupported over 14 years ago (last released version 1.4 on August 23, 2005), and should be removed per anti-abandonware rule at the packaging guidelines.
Also, the default config file contains non-libre/free Microsoft font Verdana as X11 font format property in font variable.
|
|
Any | Freedom Issue | Very Low | Low | [oprofile]: using kernel name instead of operating syst ... | Closed | |
Task Description
Description:
community/oprofile 1.1.0-3
System-wide profiler for Linux systems
See:
https://www.gnu.org/philosophy/words-to-avoid.html#Linux
|
|
Any | Bug Report | Very Low | Low | [openssl-1.0] Newer version required for plowshare MEGA ... | Closed | |
Task Description
As per this bug report the MEGA plugin cannot be compiled using the OpenSSL version provided in hyperbola.
https://github.com/mcrapet/plowshare-module-mega/issues/18
This described solution works (I successfully upgraded the package to version 1.0.2r).
Install the openssl-1.0 package.
Run ./configure with the following arguments:
./configure –enable-local OPENSSL_LIBS=’-L/usr/lib/openssl-1.0 -lssl -lcrypto’ OPENSSL_CFLAGS=’-I/usr/include/openssl-1.0’
run make
Unfortunately this solution (upgrading openssl-1.0) breaks some other packages such as phantomjs and avidemux, so it would be great if the package could be upgraded by Hyperbola’s developers alongside all its dependencies.
|
|
Any | Security Issue | Very Low | Critical | [opensmtpd] CVE-2020-8794 | Closed | |
Task Description
Description: https://www.openwall.com/lists/oss-security/2020/02/24/5 https://www.bleepingcomputer.com/news/security/new-critical-rce-bug-in-openbsd-smtp-server-threatens-linux-distros/
Qualys Security Advisory
LPE and RCE in OpenSMTPD’s default install (CVE-2020-8794)
Summary
Analysis
...
Acknowledgments
We discovered a vulnerability in OpenSMTPD, OpenBSD’s mail server. This
vulnerability, an out-of-bounds read introduced in December 2015 (commit
80c6a60c, “when peer outputs a multi-line response ...”), is exploitable
remotely and leads to the execution of arbitrary shell commands: either
as root, after May 2018 (commit a8e22235, “switch smtpd to new
grammar”); or as any non-root user, before May 2018.
Because this vulnerability resides in OpenSMTPD’s client-side code
(which delivers mail to remote SMTP servers), we must consider two
different scenarios:
- Client-side exploitation: This vulnerability is remotely exploitable
in OpenSMTPD's (and hence OpenBSD's) default configuration. Although
OpenSMTPD listens on localhost only, by default, it does accept mail
from local users and delivers it to remote servers. If such a remote
server is controlled by an attacker (either because it is malicious or
compromised, or because of a man-in-the-middle, DNS, or BGP attack --
SMTP is not TLS-encrypted by default), then the attacker can execute
arbitrary shell commands on the vulnerable OpenSMTPD installation.
- Server-side exploitation: First, the attacker must connect to the
OpenSMTPD server (which accepts external mail) and send a mail that
creates a bounce. Next, when OpenSMTPD connects back to their mail
server to deliver this bounce, the attacker can exploit OpenSMTPD's
client-side vulnerability. Last, for their shell commands to be
executed, the attacker must (to the best of our knowledge) crash
OpenSMTPD and wait until it is restarted (either manually by an
administrator, or automatically by a system update or reboot).
We developed a simple exploit for this vulnerability and successfully
tested it against OpenBSD 6.6 (the current release), OpenBSD 5.9 (the
first vulnerable release), Debian 10 (stable), Debian 11 (testing), and
Fedora 31.
The fix is delivered in OpenSMTPD 6.6.4p1, available here, which the developer recommends installing “AS SOON AS POSSIBLE.”
|
|
Any | Bug Report | Very Low | High | [openrc] scripts in /etc/local.d seem ignored | Closed | |
Task Description
Description:
Since the latest update of openrc, I am under the impression that the scripts in /etc/local.d are not executed anymore upon boot or shutdown. rc.log shows nothing though.
Additional info:
* openrc 0.28-18
Steps to reproduce:
Write a dummy script which says hello in /etc/local.d, make it executable and see that it is discarded.
|
|
Any | Bug Report | Very Low | Medium | [openrc] cannot load fuse at boot | Closed | |
Task Description
I added
<quote>modules=”fs-fuse”</quote>
to /etc/conf.d/modules (and also “fuse” instead).
I looked in /var/log/rc.log and I see this line
<quote>modprobe: FATAL: Module fs-fusetun not found in directory /lib/modules/4.9.194-gnu-1-lts</quote>
It looks like modprobe added “tun” to the filename which prevents loading the module.
|
|
Any | Bug Report | Very Low | Low | [openrc] agetty.tty loads in default runlevel only and ... | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [openmw]: referring to assets in description | Closed | |
|
|
Any | Feature Request | Very Low | Critical | [openldap] needs OpenRC init script | Closed | |
|
|
Any | Feature Request | Very Low | High | [opendmarc] needs OpenRC init script and contains syste ... | Closed | |
|
|
Any | Feature Request | Very Low | Low | [opendkim] needs OpenRC init script and contains system ... | Closed | |
|
|
Stable | Replace Request | Very Low | Critical | [opendkim] includes dependencies for systemd | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [open-isns]: using kernel name instead of operating sys ... | Closed | |
|
|
Stable | Bug Report | Very Low | Low | [octopi][octopi-notifier] "Aborting notifier as 'pacman ... | Closed | |
|
|
Any | Security Issue | Very Low | High | [octopi] requires su | Closed | |
|
|
Any | Implementation Request | Very Low | Low | [octopi] add package | Closed | |
|
|
Any | Implementation Request | Very Low | Low | [obmenu-generator] add package | Closed | |
|
|
Any | Bug Report | Very Low | Very Low | [ntfs-3g] ldconfig: File [...] is empty, not checked | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [nss_ldap]: referring to kernel name as operating syste ... | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [notepadqq]: using kernel name instead of operating sys ... | Closed | |
|
|
Any | Implementation Request | Very Low | Medium | [nnn] package request | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [nmon]: using kernel name without operating system name | Closed | |
|
|
Any | Bug Report | Very Low | High | [nginx]: cannot start if NetworkManager is not started | Closed | |
|
|
Stable | Bug Report | Very Low | High | [nftables] init service ERROR: nftables failed to start | Closed | |
|
|
Stable | Bug Report | Very Low | Medium | [nfs-utils] missing idmapd.conf | Closed | |
|
|
Any | Feature Request | Very Low | Low | [nextcloud-client] add package | Closed | |
|
|
Any | Feature Request | Very Low | Low | [newsboat] Package Request | Closed | |
|
|
Any | Implementation Request | Very Low | Low | [multipath-tools] add package | Closed | |
|
|
Any | Bug Report | Very Low | Critical | [msmtp] needs libressl | Closed | |
|
|
Testing | Bug Report | Very Low | Critical | [msmtp] needs libressl | Closed | |
|
|
Any | Update Request | Very Low | High | [mpv] request for package bump | Closed | |
|
