|
Stable | Freedom Issue | Very Low | High | GNU Privacy Assistant (GPA) | Closed | |
Task Description
Hello Hyperbola!
GPA gives out the following errors upon opening the app.
First:
``` The GPGME library returned an unexpected error at confdialog.c:1459. The error was:
Unsupported protocol
This is either an installation problem or a bug in GPA. GPA will now try to recover from this error. ```
Second:
``` Fatal Error in GPGME library (invoked from file options.c, line 302):
Unsupported protocol
The application will be terminated
What can I do to overcome these errors? ``` As this issue makes gpa app completely unusable, I have set this bug report’s severity as high.
I also request the admin to set priority to high due to it’s severity.
Thank you!
Regards, RG.
|
|
Any | Bug Report | Very Low | High | groff: package not built with URW fonts properly or suc ... | Closed | |
Task Description
Description:
groff is typesetting system similar to TeX/LaTeX however, it is very small and very usable. It is not built properly with URW fonts, or such are missing, I cannot know all details. Overall groff package is basically somehow broken.
It shall depend on proper fonts, and such fonts should already be built, including their Unicode versions.
Package is only partially built.
|
|
Any | Implementation Request | Very Low | High | Add MPTCP (MultiPath TCP) to Hyperbola | Closed | |
Task Description
https://aur.archlinux.org/packages/linux-mptcp/
Kernel Patch for 4.9 : http://multipath-tcp.org/patches/mptcp-v4.9-c88d1d56809e.patch
Compile : https://multipath-tcp.org/pmwiki.php/Users/DoItYourself
|
|
Stable | Bug Report | Very Low | High | [gufw] error response to PolicyKit daemon | Closed | |
Task Description
Description:
Additional info: * package version(s)
$ pacman -Si gufw
Repositorio : community
Nombre : gufw
Versión : 17.04.1-3.hyperbola1
Descripción : Uncomplicated way to manage your GNU/Linux firewall
Arquitectura : any
URL : https://gufw.org/
Licencias : GPL-3
Grupos : Nada
Provee : Nada
Depende de : gtk3 polkit python-gobject ufw webkit2gtk net-tools desktop-file-utils gtk-update-icon-cache
Dependencias opcionales : Nada
En conflicto con : Nada
Remplaza a : Nada
Tamaño de la descarga : 886,27 KiB
Tamaño de la instalación : 3827,00 KiB
Encargado : HyperBuilder <hyperbuilder@hyperbola.info>
Fecha de creación : mar 01 oct 2019 14:35:51 -05
Validado por : Suma MD5 Suma SHA-256 Firma
* config and/or log files etc.
==== AUTHENTICATING FOR com.ubuntu.pkexec.gufw ===
Authentication is required to run the Firewall Configuration
Authenticating as: freedom
Password:
polkit-agent-helper-1: error response to PolicyKit daemon: GDBus.Error:org.freedesktop.PolicyKit1.Error.Failed: No session for cookie
==== AUTHENTICATION FAILED ===
Error executing command as another user: Not authorized
This incident has been reported.
Steps to reproduce: - install gufw
|
|
Stable | Bug Report | Very Low | High | [firewalld] Failed to read file "/proc/sys/net/netfilte ... | Closed | |
Task Description
Additional info: * package version(s)
# pacman -Si firewalld
Repositorio : community
Nombre : firewalld
Versión : 0.4.4.4-1.hyperbola1
Descripción : Firewall daemon with D-Bus interface, with OpenRC support
Arquitectura : any
URL : https://github.com/t-woerner/firewalld
Licencias : GPL2
Grupos : Nada
Provee : Nada
Depende de : dbus-glib dconf ebtables hicolor-icon-theme ipset iptables
python-slip
Dependencias opcionales : bash-completion: bash completion
gtk3: firewall-config
libnm-glib: firewall-config and firewall-applet
libnotify: firewall-applet
python-pyqt5: firewall-applet
En conflicto con : Nada
Remplaza a : Nada
Tamaño de la descarga : 532,05 KiB
Tamaño de la instalación : 4865,00 KiB
Encargado : André Silva <emulatorman@hyperbola.info>
Fecha de creación : lun 25 sep 2017 21:00:50 -05
Validado por : Suma MD5 Suma SHA-256 Firma
* config and/or log files etc.
# tail -F /var/log/firewalld
2019-10-02 22:09:45 DEBUG1: Loading zone file ‘/usr/lib/firewalld/zones/internal.xml’ 2019-10-02 22:09:45 DEBUG1: Loading zone file ‘/usr/lib/firewalld/zones/public.xml’ 2019-10-02 22:09:45 DEBUG1: Loading zone file ‘/usr/lib/firewalld/zones/trusted.xml’ 2019-10-02 22:09:45 DEBUG1: Loading zone file ‘/usr/lib/firewalld/zones/work.xml’ 2019-10-02 22:09:45 DEBUG1: Using default zone ‘public’ 2019-10-02 22:09:45 ERROR: Failed to read file “/proc/sys/net/netfilter/nf_conntrack_helper”: [Errno 2] No existe el fichero o el directorio: ‘/proc/sys/net/netfilter/nf_conntrack_helper’ 2019-10-02 22:09:45 WARNING: Failed to get and parse nf_conntrack_helper setting 2019-10-02 22:09:45 FATAL ERROR: No IPv4 and IPv6 firewall. 2019-10-02 22:09:45 ERROR: Raising SystemExit in run_server
Steps to reproduce:
- Install package - rc-service firewalld start - firewalld –debug
|
|
Stable | Bug Report | Very Low | High | [vlc] DVB : cache_block stream error: cannot pre fill b ... | Closed | |
Task Description
Current VLC version (3.0.4-3.hyperbola1.backports1) fails to play DVB stream using a RTL2832 usb dongle.
I start the playlist like this :
vlc channels.conf
but it returns the following error :
cache_block stream error: cannot pre fill buffer
Also, it asks the user to be in “video” group to access DVB device, this was not needed before with Hyperbola 0.2.9. User being in “wheel” was enough. Anyway, even after adding my user to video group, it still fails with “cache_block stream error: cannot pre fill buffer”
This is not an issue with my DVB adapter or driver. rtl2832 is correctly loaded. And I can play the channels.conf playlist just fine with “mpv” or “mplayer”. Also, the channels.conf used works just fine with a more recent version of VLC on an other system (Manjaro) so something is broken with the current VLC used.
Maybe a package bump would fix the issue.
|
|
Any | Bug Report | Very Low | High | [vhba] Kernel module could not be loaded | Closed | |
Task Description
After installing and adding it to the configuration under /etc/conf.d/modules the concurrent module won’t be loaded at all.
|
|
Any | Bug Report | Very Low | High | [rubyripper] GUI doesn't work | Closed | |
Task Description
rrip_gui does not work. The fix is to install cairo-gobject which is not in the repos. Attached is a working PKGBUILD adapted from the official one.
|
|
Any | Freedom Issue | Very Low | High | Synergy en teclado en español no tiene tildes ni ñ | Closed | |
Task Description
Description: Share a single mouse and keyboard between multiple computers, with libressl and OpenRC support
Issue: Synergy no es capas de trasmitir tildes ni eñes y demás caracteres del español españa
Additional info: * package version(s): community/synergy 1.8.8-2.hyperbola1 * config and/or log files etc.
Steps to reproduce: instalarar synergy en 2 PCs con hyperbola 0.3, he intentar escribir tildes, no funcionará…
|
|
Any | Security Issue | Very High | Critical | [networkmanager] CVE-2018-1111: DHCP client script code ... | Closed | |
Task Description
A malicious DHCP server, or an attacker on the local network able to spoof DHCP responses, could use this flaw to execute arbitrary commands with root privileges on systems using NetworkManager which is configured to obtain network configuration using the DHCP protocol.
|
|
Any | Feature Request | Very Low | Critical | [openldap] needs OpenRC init script | Closed | |
Task Description
pacman -Si openldap Repository : core Name : openldap Version : 2.4.44-4.hyperbola3 Description : Lightweight Directory Access Protocol (LDAP) client and
server, with OpenRC support
Architecture : x86_64 URL : https://www.openldap.org/ Licenses : custom Groups : None Provides : None Depends On : libldap>=2.4.44 libltdl unixodbc Optional Deps : None Conflicts With : None Replaces : None Download Size : 1282.52 KiB Installed Size : 3990.00 KiB Packager : André Silva emulatorman@hyperbola.info Build Date : Wed 21 Feb 2018 08:09:38 PM CET Validated By : MD5 Sum SHA-256 Sum Signature
pacman -Ql openldap | grep /usr/lib/ openldap /usr/lib/ openldap /usr/lib/openldap/ openldap /usr/lib/openldap/accesslog-2.4.so.2 openldap /usr/lib/openldap/accesslog-2.4.so.2.10.7 openldap /usr/lib/openldap/accesslog.so openldap /usr/lib/openldap/auditlog-2.4.so.2 openldap /usr/lib/openldap/auditlog-2.4.so.2.10.7 openldap /usr/lib/openldap/auditlog.so openldap /usr/lib/openldap/collect-2.4.so.2 openldap /usr/lib/openldap/collect-2.4.so.2.10.7 openldap /usr/lib/openldap/collect.so openldap /usr/lib/openldap/constraint-2.4.so.2 openldap /usr/lib/openldap/constraint-2.4.so.2.10.7 openldap /usr/lib/openldap/constraint.so openldap /usr/lib/openldap/dds-2.4.so.2 openldap /usr/lib/openldap/dds-2.4.so.2.10.7 openldap /usr/lib/openldap/dds.so openldap /usr/lib/openldap/deref-2.4.so.2 openldap /usr/lib/openldap/deref-2.4.so.2.10.7 openldap /usr/lib/openldap/deref.so openldap /usr/lib/openldap/dyngroup-2.4.so.2 openldap /usr/lib/openldap/dyngroup-2.4.so.2.10.7 openldap /usr/lib/openldap/dyngroup.so openldap /usr/lib/openldap/dynlist-2.4.so.2 openldap /usr/lib/openldap/dynlist-2.4.so.2.10.7 openldap /usr/lib/openldap/dynlist.so openldap /usr/lib/openldap/memberof-2.4.so.2 openldap /usr/lib/openldap/memberof-2.4.so.2.10.7 openldap /usr/lib/openldap/memberof.so openldap /usr/lib/openldap/nssov.so openldap /usr/lib/openldap/nssov.so.0 openldap /usr/lib/openldap/nssov.so.0.0.0 openldap /usr/lib/openldap/pcache-2.4.so.2 openldap /usr/lib/openldap/pcache-2.4.so.2.10.7 openldap /usr/lib/openldap/pcache.so openldap /usr/lib/openldap/ppolicy-2.4.so.2 openldap /usr/lib/openldap/ppolicy-2.4.so.2.10.7 openldap /usr/lib/openldap/ppolicy.so openldap /usr/lib/openldap/refint-2.4.so.2 openldap /usr/lib/openldap/refint-2.4.so.2.10.7 openldap /usr/lib/openldap/refint.so openldap /usr/lib/openldap/retcode-2.4.so.2 openldap /usr/lib/openldap/retcode-2.4.so.2.10.7 openldap /usr/lib/openldap/retcode.so openldap /usr/lib/openldap/rwm-2.4.so.2 openldap /usr/lib/openldap/rwm-2.4.so.2.10.7 openldap /usr/lib/openldap/rwm.so openldap /usr/lib/openldap/seqmod-2.4.so.2 openldap /usr/lib/openldap/seqmod-2.4.so.2.10.7 openldap /usr/lib/openldap/seqmod.so openldap /usr/lib/openldap/sssvlv-2.4.so.2 openldap /usr/lib/openldap/sssvlv-2.4.so.2.10.7 openldap /usr/lib/openldap/sssvlv.so openldap /usr/lib/openldap/syncprov-2.4.so.2 openldap /usr/lib/openldap/syncprov-2.4.so.2.10.7 openldap /usr/lib/openldap/syncprov.so openldap /usr/lib/openldap/translucent-2.4.so.2 openldap /usr/lib/openldap/translucent-2.4.so.2.10.7 openldap /usr/lib/openldap/translucent.so openldap /usr/lib/openldap/unique-2.4.so.2 openldap /usr/lib/openldap/unique-2.4.so.2.10.7 openldap /usr/lib/openldap/unique.so openldap /usr/lib/openldap/valsort-2.4.so.2 openldap /usr/lib/openldap/valsort-2.4.so.2.10.7 openldap /usr/lib/openldap/valsort.so openldap /usr/lib/slapd
|
|
Stable | Security Issue | Very High | Critical | [iceweasel-uxp] Issue with HTTPS websites | Closed | |
Task Description
With latest iceweasel-uxp, I can’t connect to some HTTPS websites :
For example :
https://pkgs.fedoraproject.org/ is an example
SEC_ERROR_UNKNOWN_ISSUER
|
|
Any | Security Issue | Very Low | Critical | [toxcore] Memory leak bug | Closed | |
Task Description
Description: https://blog.tox.chat/2018/10/memory-leak-bug-and-new-toxcore-release-fixing-it/
The bug is fixed in TokTok c-toxcore v0.2.8. The bug is also fixed in the master branch of irungentoo’s toxcore, in commit bf69b54f64003d160d759068f4816b2d9b2e1e21. As a general reminder, if you are still using irungentoo’s toxcore, we strongly encourage you to switch to using TokTok c-toxcore instead as it’s a lot more actively developed and maintained.
|
|
Any | Bug Report | Very Low | Critical | [msmtp] needs libressl | Closed | |
Task Description
Description:
I may be wrong for I did not migrate to 0.3 as of yet, but I think that `msmtp` has been forgotten and needs to be recompiled with `libressl`.
Please remove this report if I am mistaken.
|
|
Testing | Bug Report | Very Low | Critical | [msmtp] needs libressl | Closed | |
Task Description
Description:
I may be wrong for I did not migrate to 0.3 as of yet, but I think that `msmtp` has been forgotten and needs to be recompiled with `libressl`.
Please remove this report if I am mistaken.
|
|
Stable | Security Issue | Very Low | Critical | [lts-kernel][sec] filter /dev/mem access & restrict acc ... | Closed | |
Task Description
These two options could be enabled :
Kernel hacking → [*] Filter access to /dev/mem [*] Filter I/O access to /dev/mem
Security options → [*] Restrict unprivileged access to the kernel syslog
|
|
Any | Security Issue | Very Low | Critical | [opensmtpd] CVE-2020-8794 | Closed | |
Task Description
Description: https://www.openwall.com/lists/oss-security/2020/02/24/5 https://www.bleepingcomputer.com/news/security/new-critical-rce-bug-in-openbsd-smtp-server-threatens-linux-distros/
Qualys Security Advisory
LPE and RCE in OpenSMTPD’s default install (CVE-2020-8794)
Summary Analysis ... Acknowledgments
We discovered a vulnerability in OpenSMTPD, OpenBSD’s mail server. This vulnerability, an out-of-bounds read introduced in December 2015 (commit 80c6a60c, “when peer outputs a multi-line response ...”), is exploitable remotely and leads to the execution of arbitrary shell commands: either as root, after May 2018 (commit a8e22235, “switch smtpd to new grammar”); or as any non-root user, before May 2018.
Because this vulnerability resides in OpenSMTPD’s client-side code (which delivers mail to remote SMTP servers), we must consider two different scenarios:
- Client-side exploitation: This vulnerability is remotely exploitable
in OpenSMTPD's (and hence OpenBSD's) default configuration. Although
OpenSMTPD listens on localhost only, by default, it does accept mail
from local users and delivers it to remote servers. If such a remote
server is controlled by an attacker (either because it is malicious or
compromised, or because of a man-in-the-middle, DNS, or BGP attack --
SMTP is not TLS-encrypted by default), then the attacker can execute
arbitrary shell commands on the vulnerable OpenSMTPD installation.
- Server-side exploitation: First, the attacker must connect to the
OpenSMTPD server (which accepts external mail) and send a mail that
creates a bounce. Next, when OpenSMTPD connects back to their mail
server to deliver this bounce, the attacker can exploit OpenSMTPD's
client-side vulnerability. Last, for their shell commands to be
executed, the attacker must (to the best of our knowledge) crash
OpenSMTPD and wait until it is restarted (either manually by an
administrator, or automatically by a system update or reboot).
We developed a simple exploit for this vulnerability and successfully tested it against OpenBSD 6.6 (the current release), OpenBSD 5.9 (the first vulnerable release), Debian 10 (stable), Debian 11 (testing), and Fedora 31.
The fix is delivered in OpenSMTPD 6.6.4p1, available here, which the developer recommends installing “AS SOON AS POSSIBLE.”
|