[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Debian Weekly News - January 25th, 2005

Debian Weekly News
Debian Weekly News - January 25th, 2005

Welcome to this year's 4th issue of DWN, the weekly newsletter for the
Debian community. Marc Haber [1]announced experimental packages of
[2]Exim4 linked against db4.2 for later inclusion in to sarge/sid.
OSNews has a [3]guideline on using the new [4]debian-installer to
install Debian by Luis Lima.

 1. http://lists.debian.org/debian-devel/2005/01/msg01327.html
 2. http://packages.debian.org/exim4
 3. http://www.osnews.com/story.php?news_id=9271
 4. http://www.debian.org/devel/debian-installer/

Sarge Release Progress Update. Steve Langasek sent in an [5]update on
the release progress for Debian 3.1. He reported that KDE 3.3 has been
added to sarge and a porter upload for perl had taken place, which
dropped the release critical bug count about 60 bugs. He also stated
that progress in testing-proposed updates and testing-security has
been made but is still waiting for infrastructure.

 5. http://lists.debian.org/debian-devel-announce/2005/01/msg00011.html

Status Update for volatile Archive. Andreas Barth [6]reported about
the status of [7]debian-volatile. This unofficial archive aims at
supporting fast moving packages for the stable Debian release like
spam filter, virus scanner and the like. He and his team have set up
the infrastructure and [8]mirrors for it. A first package, [9]whois
has been accepted for debian-volatile's section of woody.

 6. http://lists.debian.org/debian-devel-announce/2005/01/msg00012.html
 7. http://volatile.debian.net/
 8. http://volatile.debian.net/mirrors.html
 9. http://volatile.debian.net/debian-volatile/pool/main/w/whois/

Renaming Binary Packages. Jay Berkenbilt [10]wanted to rename a
package in order to loose the version in the package name. To achieve
this he planned to create a new source package and convert the old
package into transitional packages only. Anthony Towns [11]explained
that the name of a library name does not have to match its soname and
believes that no transitional packages need to be provided when
Conflicts, Provides and Replaces fields are carefully crafted.

 10. http://lists.debian.org/debian-devel/2005/01/msg01047.html
 11. http://lists.debian.org/debian-devel/2005/01/msg01061.html

Support for DevFS? Russell Coker [12]stated that devfs is regarded as
obsolete in the kernel source and will be [13]removed in July 2005.
However, the new [14]installer is [15]based on it. Joey Hess
[16]asserted that Debian will not destabilise the installer by
beginning to make large changes to it, like not using devfs, until
sarge is released.

 12. http://lists.debian.org/debian-devel/2005/01/msg01067.html
 13. http://lists.debian.org/debian-devel/2005/01/msg01072.html
 14. http://www.debian.org/devel/debian-installer/
 15. http://lists.debian.org/debian-devel/2005/01/msg01070.html
 16. http://lists.debian.org/debian-devel/2005/01/msg01129.html

Changing the Architecture of a Package. Jay Berkenbilt [17]wondered if
the change from any to all in a Debian package would require manual
intervention. Santiago Vila [18]asserted that such a package could
enter the archive even faster, since it is built for 11 architectures

 17. http://lists.debian.org/debian-devel/2005/01/msg01049.html
 18. http://lists.debian.org/debian-devel/2005/01/msg01053.html

Debian Women IRC meeting. The Debian Women group held an [19]IRC
meeting on January 16th. The topic discussed was "How to best convey
the purpose and goals of the Debian Women project to those who have
questions about it." Prior to the meeting, Jérémy Bobbio [20]raised
the question of the best way to organise and moderate IRC meetings,
especially when non-native English speakers are present. The meeting
was well attended and provoked lively discussions. [21]Minutes were
[22]taken by Colleen Hatfield.

 19. http://lists.debian.org/debian-women/2005/01/msg00050.html
 20. http://lists.debian.org/debian-women/2005/01/msg00093.html
 21. http://women.alioth.debian.org/wiki/index.php/English/IRC16January2005
 22. http://lists.debian.org/debian-women/2005/01/msg00093.html

Spurious Permissions Changes. Otto Wyss [23]noticed that permissions
on a program he added the setuid flag were changed back permanently.
Peter Sammuelson [24]contributed the proper dpkg-statoverride command
and Maciej Dems [25]added that it would be better to use [26]sudo.

 23. http://lists.debian.org/debian-devel/2005/01/msg01124.html
 24. http://lists.debian.org/debian-devel/2005/01/msg01125.html
 25. http://lists.debian.org/debian-devel/2005/01/msg01155.html
 26. http://packages.debian.org/sudo

Depending on a particular Kernel Package. Martin Kittel [27]wondered
if it is sensible to declare a dependency on a kernel image package
since arguments were raised in a former [28]discussion that not all
users have the Debian kernel installed. Antti-Juhani Kaijanaho
[29]explained that the job of a dependency is to make sure that
another package is installed so its provided content can be used. The
kernel is a different case.

 27. http://lists.debian.org/debian-devel/2005/01/msg01277.html
 28. http://lists.debian.org/debian-devel/2005/01/msg01236.html
 29. http://lists.debian.org/debian-devel/2005/01/msg01309.html

Mozilla Foundation Trademark Proposal. Gervase Markham from the
Mozilla Foundation [30]proposed a trademark agreement for Debian
Firebird and Thunderbird packages. Walter Landry [31]pointed out that
people outside of Debian would still be unable to legally modify and
redistribute packages.

 30. http://lists.debian.org/debian-legal/2005/01/msg00503.html
 31. http://lists.debian.org/debian-legal/2005/01/msg00596.html

Security Updates. You know the drill. Please make sure that you update
your systems if you have any of these packages installed.

 * DSA 645: [32]cupsys -- Arbitrary code execution.
 * DSA 646: [33]imagemagick -- Arbitrary code execution.
 * DSA 647: [34]mysql -- Insecure temporary files.
 * DSA 648: [35]xpdf -- Arbitrary code execution.
 * DSA 649: [36]xtrlock -- Authentication bypass.
 * DSA 650: [37]sword -- Arbitrary code execution.
 * DSA 651: [38]squid -- Denial of service.
 * DSA 652: [39]unarj -- Several vulnerabilities.
 * DSA 653: [40]ethereal -- Several vulnerabilities.
 * DSA 654: [41]enscript -- Several vulnerabilities.
 * DSA 655: [42]zhcon -- Unauthorised file access.
 * DSA 656: [43]vdr -- Insecure file access.
 * DSA 657: [44]xine-lib -- Arbitrary code execution.
 * DSA 658: [45]libdbi-perl -- Insecure temporary file.

 32. http://www.debian.org/security/2005/dsa-645
 33. http://www.debian.org/security/2005/dsa-646
 34. http://www.debian.org/security/2005/dsa-647
 35. http://www.debian.org/security/2005/dsa-648
 36. http://www.debian.org/security/2005/dsa-649
 37. http://www.debian.org/security/2005/dsa-650
 38. http://www.debian.org/security/2005/dsa-651
 39. http://www.debian.org/security/2005/dsa-652
 40. http://www.debian.org/security/2005/dsa-653
 41. http://www.debian.org/security/2005/dsa-654
 42. http://www.debian.org/security/2005/dsa-655
 43. http://www.debian.org/security/2005/dsa-656
 44. http://www.debian.org/security/2005/dsa-657
 45. http://www.debian.org/security/2005/dsa-658

New or Noteworthy Packages. The following package was added to the
unstable Debian archive [46]recently or contain important updates.

 46. http://packages.debian.org/unstable/newpkg_main

 * [47]hplip -- HP Linux Printing and Imaging System.

 47. http://packages.debian.org/unstable/utils/hplip

Orphaned Packages. 4 packages were orphaned this week and require a
new maintainer. This makes a total of 242 orphaned packages. Many
thanks to the previous maintainers who contributed to the Free
Software community. Please see the [48]WNPP pages for the full list,
and please add a note to the bug report and retitle it to ITA: if you
plan to take over a package.

 48. http://www.debian.org/devel/wnpp/

 * [49]binstats -- Statistics tool for installed programs.
 * [51]goats -- Sticky-note type program for Gnome 2.
 * [53]hanterm-classic -- Another X terminal emulator with Hangul
   support. ([54]Bug#290921)
 * [55]hanterm-xf -- X terminal emulator with Hangul support.

 49. http://packages.debian.org/unstable/utils/binstats
 50. http://bugs.debian.org/292019
 51. http://packages.debian.org/unstable/gnome/goats
 52. http://bugs.debian.org/290920
 53. http://packages.debian.org/unstable/x11/hanterm-classic
 54. http://bugs.debian.org/290921
 55. http://packages.debian.org/unstable/x11/hanterm-xf
 56. http://bugs.debian.org/290919

Want to continue reading DWN? Please help us create this newsletter.
We still need more volunteer writers who watch the Debian community
and report about what is going on. Please see the [57]contributing
page to find out how to help. We're looking forward to receiving your
mail at [58]dwn@debian.org.

 57. http://www.debian.org/News/weekly/contributing
 58. mailto:dwn@debian.org

Reply to: