|
Any | Freedom Issue | Medium | Low | [openssl-1.0] vague terminology "Open Source" in descri ... | Closed | |
Task Description
This package contains vague terminology “Open Source”:
extra/openssl-1.0 1.0.2.k-3
The Open Source toolkit for Secure Sockets Layer and Transport Layer Security
According to:
https://www.gnu.org/distros/free-system-distribution-guidelines.html
We shall avoid vague terminology such as “Open Source”, please see here:
https://www.gnu.org/philosophy/words-to-avoid.html#Open
It would be good example to set to have proper description of packages without using “Open Source”.
eg.
The Free Software toolkit for Secure Sockets Layer and Transport Layer Security
|
|
Any | Bug Report | Very Low | Low | [openssl-1.0] Newer version required for plowshare MEGA ... | Closed | |
Task Description
As per this bug report the MEGA plugin cannot be compiled using the OpenSSL version provided in hyperbola.
https://github.com/mcrapet/plowshare-module-mega/issues/18
This described solution works (I successfully upgraded the package to version 1.0.2r).
Install the openssl-1.0 package.
Run ./configure with the following arguments:
./configure –enable-local OPENSSL_LIBS=’-L/usr/lib/openssl-1.0 -lssl -lcrypto’ OPENSSL_CFLAGS=’-I/usr/include/openssl-1.0’
run make
Unfortunately this solution (upgrading openssl-1.0) breaks some other packages such as phantomjs and avidemux, so it would be great if the package could be upgraded by Hyperbola’s developers alongside all its dependencies.
|
|
Any | Security Issue | Very Low | Critical | [opensmtpd] CVE-2020-8794 | Closed | |
Task Description
Description: https://www.openwall.com/lists/oss-security/2020/02/24/5 https://www.bleepingcomputer.com/news/security/new-critical-rce-bug-in-openbsd-smtp-server-threatens-linux-distros/
Qualys Security Advisory
LPE and RCE in OpenSMTPD’s default install (CVE-2020-8794)
Summary
Analysis
...
Acknowledgments
We discovered a vulnerability in OpenSMTPD, OpenBSD’s mail server. This
vulnerability, an out-of-bounds read introduced in December 2015 (commit
80c6a60c, “when peer outputs a multi-line response ...”), is exploitable
remotely and leads to the execution of arbitrary shell commands: either
as root, after May 2018 (commit a8e22235, “switch smtpd to new
grammar”); or as any non-root user, before May 2018.
Because this vulnerability resides in OpenSMTPD’s client-side code
(which delivers mail to remote SMTP servers), we must consider two
different scenarios:
- Client-side exploitation: This vulnerability is remotely exploitable
in OpenSMTPD's (and hence OpenBSD's) default configuration. Although
OpenSMTPD listens on localhost only, by default, it does accept mail
from local users and delivers it to remote servers. If such a remote
server is controlled by an attacker (either because it is malicious or
compromised, or because of a man-in-the-middle, DNS, or BGP attack --
SMTP is not TLS-encrypted by default), then the attacker can execute
arbitrary shell commands on the vulnerable OpenSMTPD installation.
- Server-side exploitation: First, the attacker must connect to the
OpenSMTPD server (which accepts external mail) and send a mail that
creates a bounce. Next, when OpenSMTPD connects back to their mail
server to deliver this bounce, the attacker can exploit OpenSMTPD's
client-side vulnerability. Last, for their shell commands to be
executed, the attacker must (to the best of our knowledge) crash
OpenSMTPD and wait until it is restarted (either manually by an
administrator, or automatically by a system update or reboot).
We developed a simple exploit for this vulnerability and successfully
tested it against OpenBSD 6.6 (the current release), OpenBSD 5.9 (the
first vulnerable release), Debian 10 (stable), Debian 11 (testing), and
Fedora 31.
The fix is delivered in OpenSMTPD 6.6.4p1, available here, which the developer recommends installing “AS SOON AS POSSIBLE.”
|
|
Any | Bug Report | Very Low | High | [openrc] scripts in /etc/local.d seem ignored | Closed | |
Task Description
Description:
Since the latest update of openrc, I am under the impression that the scripts in /etc/local.d are not executed anymore upon boot or shutdown. rc.log shows nothing though.
Additional info:
* openrc 0.28-18
Steps to reproduce:
Write a dummy script which says hello in /etc/local.d, make it executable and see that it is discarded.
|
|
Any | Bug Report | Very Low | Medium | [openrc] cannot load fuse at boot | Closed | |
Task Description
I added
<quote>modules=”fs-fuse”</quote>
to /etc/conf.d/modules (and also “fuse” instead).
I looked in /var/log/rc.log and I see this line
<quote>modprobe: FATAL: Module fs-fusetun not found in directory /lib/modules/4.9.194-gnu-1-lts</quote>
It looks like modprobe added “tun” to the filename which prevents loading the module.
|
|
Any | Freedom Issue | Very Low | Low | [openmw]: referring to assets in description | Closed | |
Task Description
Description:
The description of the package need to be changed to accommodate:
https://www.gnu.org/philosophy/words-to-avoid.html
To refer to published works as “assets”, or “digital assets”, is even worse than calling them “content” — it presumes they have no value to society except commercial value.
community/openmw 0.41.0-3.hyperbola1
A libre engine reimplementation for Morrowind-based role-playing games, without wizard installation support to install nonfree assets from Morrowind to run Morrowind
|
|
Any | Feature Request | Very Low | Critical | [openldap] needs OpenRC init script | Closed | |
Task Description
pacman -Si openldap
Repository : core
Name : openldap
Version : 2.4.44-4.hyperbola3
Description : Lightweight Directory Access Protocol (LDAP) client and
server, with OpenRC support
Architecture : x86_64
URL : https://www.openldap.org/ Licenses : custom
Groups : None
Provides : None
Depends On : libldap>=2.4.44 libltdl unixodbc
Optional Deps : None
Conflicts With : None
Replaces : None
Download Size : 1282.52 KiB
Installed Size : 3990.00 KiB
Packager : André Silva emulatorman@hyperbola.info Build Date : Wed 21 Feb 2018 08:09:38 PM CET
Validated By : MD5 Sum SHA-256 Sum Signature
pacman -Ql openldap | grep /usr/lib/
openldap /usr/lib/
openldap /usr/lib/openldap/
openldap /usr/lib/openldap/accesslog-2.4.so.2
openldap /usr/lib/openldap/accesslog-2.4.so.2.10.7
openldap /usr/lib/openldap/accesslog.so
openldap /usr/lib/openldap/auditlog-2.4.so.2
openldap /usr/lib/openldap/auditlog-2.4.so.2.10.7
openldap /usr/lib/openldap/auditlog.so
openldap /usr/lib/openldap/collect-2.4.so.2
openldap /usr/lib/openldap/collect-2.4.so.2.10.7
openldap /usr/lib/openldap/collect.so
openldap /usr/lib/openldap/constraint-2.4.so.2
openldap /usr/lib/openldap/constraint-2.4.so.2.10.7
openldap /usr/lib/openldap/constraint.so
openldap /usr/lib/openldap/dds-2.4.so.2
openldap /usr/lib/openldap/dds-2.4.so.2.10.7
openldap /usr/lib/openldap/dds.so
openldap /usr/lib/openldap/deref-2.4.so.2
openldap /usr/lib/openldap/deref-2.4.so.2.10.7
openldap /usr/lib/openldap/deref.so
openldap /usr/lib/openldap/dyngroup-2.4.so.2
openldap /usr/lib/openldap/dyngroup-2.4.so.2.10.7
openldap /usr/lib/openldap/dyngroup.so
openldap /usr/lib/openldap/dynlist-2.4.so.2
openldap /usr/lib/openldap/dynlist-2.4.so.2.10.7
openldap /usr/lib/openldap/dynlist.so
openldap /usr/lib/openldap/memberof-2.4.so.2
openldap /usr/lib/openldap/memberof-2.4.so.2.10.7
openldap /usr/lib/openldap/memberof.so
openldap /usr/lib/openldap/nssov.so
openldap /usr/lib/openldap/nssov.so.0
openldap /usr/lib/openldap/nssov.so.0.0.0
openldap /usr/lib/openldap/pcache-2.4.so.2
openldap /usr/lib/openldap/pcache-2.4.so.2.10.7
openldap /usr/lib/openldap/pcache.so
openldap /usr/lib/openldap/ppolicy-2.4.so.2
openldap /usr/lib/openldap/ppolicy-2.4.so.2.10.7
openldap /usr/lib/openldap/ppolicy.so
openldap /usr/lib/openldap/refint-2.4.so.2
openldap /usr/lib/openldap/refint-2.4.so.2.10.7
openldap /usr/lib/openldap/refint.so
openldap /usr/lib/openldap/retcode-2.4.so.2
openldap /usr/lib/openldap/retcode-2.4.so.2.10.7
openldap /usr/lib/openldap/retcode.so
openldap /usr/lib/openldap/rwm-2.4.so.2
openldap /usr/lib/openldap/rwm-2.4.so.2.10.7
openldap /usr/lib/openldap/rwm.so
openldap /usr/lib/openldap/seqmod-2.4.so.2
openldap /usr/lib/openldap/seqmod-2.4.so.2.10.7
openldap /usr/lib/openldap/seqmod.so
openldap /usr/lib/openldap/sssvlv-2.4.so.2
openldap /usr/lib/openldap/sssvlv-2.4.so.2.10.7
openldap /usr/lib/openldap/sssvlv.so
openldap /usr/lib/openldap/syncprov-2.4.so.2
openldap /usr/lib/openldap/syncprov-2.4.so.2.10.7
openldap /usr/lib/openldap/syncprov.so
openldap /usr/lib/openldap/translucent-2.4.so.2
openldap /usr/lib/openldap/translucent-2.4.so.2.10.7
openldap /usr/lib/openldap/translucent.so
openldap /usr/lib/openldap/unique-2.4.so.2
openldap /usr/lib/openldap/unique-2.4.so.2.10.7
openldap /usr/lib/openldap/unique.so
openldap /usr/lib/openldap/valsort-2.4.so.2
openldap /usr/lib/openldap/valsort-2.4.so.2.10.7
openldap /usr/lib/openldap/valsort.so
openldap /usr/lib/slapd
|
|
Any | Freedom Issue | Medium | Low | [openjpeg] vague terminology "Open Source" in descripti ... | Closed | |
Task Description
This package contains vague terminology “Open Source”:
extra/openjpeg 1.5.2-1
An open source JPEG 2000 codec
According to:
https://www.gnu.org/distros/free-system-distribution-guidelines.html
We shall avoid vague terminology such as “Open Source”, please see here:
https://www.gnu.org/philosophy/words-to-avoid.html#Open
It would be good example to set to have proper description of packages without using “Open Source”.
eg.
A free software JPEG 2000 codec
|
|
Any | Freedom Issue | Medium | Low | [openjdk8-src] vague terminology "Open Source" in descr ... | Closed | |
Task Description
no task description |
|
Any | Freedom Issue | Medium | Low | [openjdk7-src] vague terminology "Open Source" in descr ... | Closed | |
Task Description
no task description |
|
Any | Bug Report | High | High | [openRC] cowardly refusing to concatenate a logfile int ... | Closed | |
Task Description
Message error:
Cowardly refusing to concatenate a logfile into self.
Please change rc_log_path to something other than /var/log/rc.log to get rid of this message
|
|
Any | Freedom Issue | Very Low | Low | [open-isns]: using kernel name instead of operating sys ... | Closed | |
Task Description
Description:
community/open-isns 0.97-3
iSNS server and client for Linux
See:
https://www.gnu.org/philosophy/words-to-avoid.html#Linux
|
|
Any | Security Issue | Very Low | High | [octopi] requires su | Closed | |
Task Description
would it be possible to make it use sudo instead?
From what I know, sudo is safer. Let me know if you agree this is a problem.
|
|
Any | Implementation Request | Very Low | Low | [obmenu-generator] add package | Closed | |
Task Description
Could it be possible to add :
obmenu-generator
A fast pipe/static menu generator for the Openbox Window Manager (with icons support)
License : GPL3
https://github.com/trizen/obmenu-generator https://www.parabola.nu/packages/pcr/x86_64/obmenu-generator/
Thanks
|
|
Any | Freedom Issue | Very Low | Low | [nss_ldap]: referring to kernel name as operating syste ... | Closed | |
Task Description
extra/nss_ldap 265-6
The nss_ldap module provides the means for Linux and Solaris workstations to resolve the ent ities defined in RFC 2307 from LDAP directories.
See:
https://www.gnu.org/philosophy/words-to-avoid.html#Linux
Description is referring to operating system, and not to the kernel itself (Linux). It shall be amended.
|
|
Any | Feature Request | Low | Low | [npapi-vlc] package from git source | Closed | |
Task Description
Description: As mentioned in Bug #18, our VLC plugin was not maintained in some time and the deprecated addon was removed. However, upstream is actively working on the plugin as per: https://code.videolan.org/videolan/npapi-vlc/tree/master
We should build this from source and re-package.
|
|
Any | Freedom Issue | Very Low | Low | [notepadqq]: using kernel name instead of operating sys ... | Closed | |
Task Description
Description:
community/notepadqq 1.0.1-1
Notepad++-like text editor for Linux
See:
https://www.gnu.org/philosophy/words-to-avoid.html#Linux
|
|
Any | Implementation Request | Very Low | Medium | [nnn] package request | Closed | |
Task Description
This is a request to package nnn - a full-featured terminal file manager for low-end devices and the regular desktop.
nnn is available on Debian, Ubuntu (and family), Fedora, OpenSUSE and Arch Linux.
Homepage: https://github.com/jarun/nnn License: BSD 2-Clause
I would highly appreciate if nnn can be added to the repository.
|
|
Any | Freedom Issue | Very Low | Low | [nmon]: using kernel name without operating system name | Closed | |
Task Description
Description:
community/nmon 16g-1
AIX & Linux Performance Monitoring tool
See:
https://www.gnu.org/philosophy/words-to-avoid.html#Linux
|
|
Stable | Bug Report | Very Low | Medium | [nfs-utils] missing idmapd.conf | Closed | |
Task Description
Hello,
When mounting an NFS share, I get a warning about missing idmpad.conf
rpc.idmapd: Skipping configuration file "/etc/idmapd.conf": No such file or directory
4341: * Stopping idmapd ...
Debian includes a default config file for idmap :
[General]
Verbosity = 0
Pipefs-Directory = /run/rpc_pipefs
# set your own domain here, if id differs from FQDN minus hostname
# Domain = localdomain
[Mapping]
Nobody-User = nobody
Nobody-Group = nogroup
|
|
Any | Feature Request | Very Low | Low | [nextcloud-client] add package | Closed | |
Task Description
I use Nextcloud for syncing, although, I would normally not ask for this, due to Nextcloud’s appimage being available, but for some reason the latest version doesn’t work on hyperbola. So... yeah.
Usually Nextcloud’s appimage works regardless of what packages you have, so I guess in essence... add Nextcloud-client package to this system is my request.
|
|
Any | Feature Request | Very Low | Low | [newsboat] Package Request | Closed | |
Task Description
Description: Newsboat is an ncursers RSS/Atom feedreader. RSS and Atom are a number of widely-used XML formats to transmit, publish and syndicate articles, for example news or blog articles. Newsboat is designed to be used on text terminals on Unix or Unix-like systems such as GNU/Linux, FreeBSD or macOS.
Newsboat is a fork of Newsbeuter. The only difference is that Newsboat is actively maintained while Newsbeuter isn’t.
Additional info: Official Website: https://newsboat.org/
License(s): custom: MIT
Version: newsboat 2.13-1
https://www.archlinux.org/packages/community/x86_64/newsboat/
Reason of Request Less bloat than Liferea and easy to maintenance. Sites news are more ethical and decentralized than read the “news” on centralized Social Networks (Bubbles).
https://en.wikipedia.org/wiki/Social_media_bubble
|
|
Any | Security Issue | Very High | Critical | [networkmanager] CVE-2018-1111: DHCP client script code ... | Closed | |
Task Description
A malicious DHCP server, or an attacker on the local network able to spoof DHCP responses, could use this flaw to execute arbitrary commands with root privileges on systems using NetworkManager which is configured to obtain network configuration using the DHCP protocol.
|
|
Any | Bug Report | Very Low | Critical | [msmtp] needs libressl | Closed | |
Task Description
Description:
I may be wrong for I did not migrate to 0.3 as of yet, but I think that `msmtp` has been forgotten and needs to be recompiled with `libressl`.
Please remove this report if I am mistaken.
|
|
Testing | Bug Report | Very Low | Critical | [msmtp] needs libressl | Closed | |
Task Description
Description:
I may be wrong for I did not migrate to 0.3 as of yet, but I think that `msmtp` has been forgotten and needs to be recompiled with `libressl`.
Please remove this report if I am mistaken.
|
|
Any | Freedom Issue | Very Low | Low | [mp3wrap] mentioning in description to be "alternative" ... | Closed | |
|
|
Any | Freedom Issue | Very Low | Medium | [mongodb] needs OpenRC init script | Closed | |
|
|
Any | Implementation Request | Very Low | Low | [moloch] add package | Closed | |
|
|
Any | Feature Request | Very Low | Medium | [minidlna] remove systemd file and add openrc support | Closed | |
|
|
Any | Implementation Request | Very Low | Medium | [midori] please re-add new releases | Closed | |
|
|
Any | Update Request | Very Low | Medium | [mesa] needs update | Closed | |
|
|
Any | Implementation Request | Very Low | Low | [menulibre] add package | Closed | |
|
|
Any | Implementation Request | Very High | Medium | [mediagoblin] add GNU MediaGoblin package | Closed | |
|
|
Stable | Implementation Request | Medium | Medium | [materia-theme] add package | Closed | |
|
|
Any | Bug Report | Very Low | Medium | [mate-panel] country flags for keyboard layouts are mis ... | Closed | |
|
|
Stable | Security Issue | Very Low | Critical | [lts-kernel][sec] filter /dev/mem access & restrict acc ... | Closed | |
|
|
Stable | Feature Request | Very Low | Low | [linux-libre-lts-xtreme] add package | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [linssid]: using kernel name instead of operating syste ... | Closed | |
|
|
Stable | Bug Report | Very Low | Low | [lightdm] Wrong locale displayed | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [libva]: referring to operating system by using kernel ... | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [libspnav] extra/libspnav 0.2.3-1, mentions "alternativ ... | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [libsmf]: referring to "BSD-licensed" in description | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [libiodbc]: using kernel name instead of operating syst ... | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [libimobiledevice]: referring to operating system by us ... | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [libgpod]: using "contents" in description | Closed | |
|
|
Any | Bug Report | Very Low | Low | [lbreakout2]: Write permission for '/var/games/lbreakou ... | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [ladspa]: referring to operating system by using kernel ... | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [kpackage]: referring to assets in description | Closed | |
|
|
Stable | Bug Report | Very Low | Medium | [kodi-addons-visualization] addons don't work | Closed | |
|
|
Any | Freedom Issue | Very Low | Low | [kobodeluxe]: segmentation fault | Closed | |
|
