Mailing List Archive: Gentoo: GWN

Gentoo Weekly Newsletter 9 April 2007

Index | Next | Previous | View Threaded

wolf31o2 at gentoo

Apr 17, 2007, 6:25 AM

Post #1 of 1 (1846 views)
Permalink

Gentoo Weekly Newsletter 9 April 2007

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Gentoo Weekly Newsletter
http://www.gentoo.org/news/en/gwn/20070409-newsletter.xml
This is the Gentoo Weekly Newsletter for the week of 9 April 2007.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

========================
1. Developer of the Week
========================

Camille Huot, aka cam
---------------------

Figure 1.1: Camille Huot, aka cam
http://www.gentoo.org/images/gwn/20070409_cam.jpg

26 year old Camille Huot[1] is one of our French developers. He lives and
works in Paris, France, but was born in La Ciotat, which is near Marseilles
in southern France. Camille lives together with his brother, who has
recently finished school and started working as a C++ developer.

1. cam [at] gentoo

Cam studied at the University of Montpellier, and graduated with a Bachelor
in 'Telecommunications and Network'. Later on he completed his studies with
a Masters degree. He was employed some time back as Linux Systems
Administrator, but got promoted recently to Oracle DB Administration. He's
currently in charge of ~150 servers at the Wanadoo hosting platform.

Camille learned Linux (Red Hat and Debian) at school. Later on, he switched
to FreeBSD, which he kept for some years, but finally 'had' to come back to
Linux due to a DSL driver. Gérald Fenoy[2] convinced Camille to try Gentoo,
and he liked it :-)

2. djay [at] gentoo

Within Gentoo, Camille leads the French translation team. They currently
have a well-oiled team, and translate quite a few documents. He's also
interested in joining the Gentoo/FreeBSD team. Camille was recruited in
January '04 by Xavier Neys[3], who has recently turned over the torch of
French Lead translator to Camille.

3. neysx [at] gentoo

When Camille fires up his desktop, he uses: openbox, psi, opera, urxvt,
claws-mail, mplayer, gvim and some Google apps.

==================
2. Tips and Tricks
==================

Removing Specific Dependencies
------------------------------

Have you ever installed something with a lot of dependencies? Have you ever
wanted to remove that package along with all of its dependencies? Instinct
may tell us that we can run emerge --depclean, however there is a different,
perhaps better way.

Lets say that we want to compare OpenOffice.org and koffice. Our plan is to
install both, try them out, and remove one of them. First, do:

+--------------------------------------------------------------------------------+
| Code Listing 2.1 |
| Creating .deps files |
+--------------------------------------------------------------------------------+
| # emerge openoffice -p | sed -ne \ |
| '/^\[ebuild[^]]*N[^]]*\]/{s/^\[ebuild[^]]\+\] $[^[:space:]]\+$.*$/=\1/;p}' \ |
| > openoffice.deps |
| # emerge koffice-meta -p | sed -ne \ |
| '/^\[ebuild[^]]*N[^]]*\]/{s/^\[ebuild[^]]\+\] $[^[:space:]]\+$.*$/=\1/;p}' \ |
| > koffice.deps |
+--------------------------------------------------------------------------------+

This will ensure that we do not record any packages that are being updated.
Proceed to install and try the programs. Once you chose which one you want
to keep, simply do the following:

+---------------------------------------------------------------------------+
| Code Listing 2.2 |
| Removing unused package/dependencies |
+---------------------------------------------------------------------------+
| # emerge -aC $(<openoffice.deps) |
+---------------------------------------------------------------------------+

This week's Tips and Tricks was inspired by the following posting on the
forums:

* http://forums.gentoo.org/viewtopic-t-531232.html

=========================
3. Gentoo developer moves
=========================

Moves
-----

The following developers recently left the Gentoo project:

* Alec Warner (antarus)
* Simon Stelling (blubb)

Adds
----

The following developers recently joined the Gentoo project:

* none this week

Changes
-------

The following developers recently changed roles within the Gentoo project:

* none this week

==================
4. Gentoo security
==================

Asterisk: Two SIP Denial of Service vulnerabilities
---------------------------------------------------

Asterisk is vulnerable to two Denial of Service issues in the SIP channel.

For more information, please see the GLSA Announcement[4]

4. http://www.gentoo.org/security/en/glsa/glsa-200704-01.xml

MIT Kerberos 5: Arbitrary remote code execution
-----------------------------------------------

Multiple vulnerabilities in MIT Kerberos 5 could potentially result in
unauthenticated remote root code execution.

For more information, please see the GLSA Announcement[5]

5. http://www.gentoo.org/security/en/glsa/glsa-200704-02.xml

OpenAFS: Privilege escalation
-----------------------------

OpenAFS is subject to a design flaw that could allow privilege escalation on
the client.

For more information, please see the GLSA Announcement[6]

6. http://www.gentoo.org/security/en/glsa/glsa-200704-03.xml

OpenPBS: Multiple vulnerabilities
---------------------------------

OpenPBS contains unspecified vulnerabilities which may allow for the remote
execution of arbitrary code or a Denial of Service.

For more information, please see the GLSA Announcement[7]

7. http://www.gentoo.org/security/en/glsa/glsa-200704-04.xml

zziplib: Buffer Overflow
------------------------

The zziplib library contains a buffer overflow vulnerability that could lead
to user-assisted remote execution of arbitrary code.

For more information, please see the GLSA Announcement[8]

8. http://www.gentoo.org/security/en/glsa/glsa-200704-05.xml

Evince: Stack overflow in included gv code
------------------------------------------

Evince improperly handles user-supplied data possibly allowing for the
execution of arbitrary code.

For more information, please see the GLSA Announcement[9]

9. http://www.gentoo.org/security/en/glsa/glsa-200704-06.xml

libwpd: Multiple vulnerabilities
--------------------------------

libwpd is vulnerable to several heap overflows and an integer overflow.

For more information, please see the GLSA Announcement[10]

10. http://www.gentoo.org/security/en/glsa/glsa-200704-07.xml

=======================
5. Gentoo package moves
=======================

This section lists packages that have either been moved or added to the tree
and packages that have had their "last rites" announcement given to be
removed in the future. The package removals come from many locations,
including the Treecleaners[11] and various developers. Most packages which
are listed under the Last Rites section are in need of some love and care
and can remain in the tree if proper maintainership is established.

11. http://www.gentoo.org/proj/en/qa/treecleaners

Removals:
---------

Package: Removal date: Contact:
games-board/pysol-cardsets 02 Apr 2007 Alfredo Tupone[12]
net-news/hellanzb 05 Apr 2007 Alexis Ballier[13]
x11-misc/klineakconfig 06 Apr 2007 Stefan Schweizer[14]
net-print/foomatic 07 Apr 2007 Stefan Schweizer[14]
dev-util/ecletex 07 Apr 2007 Petteri Räty[15]
dev-util/eclipse-cdt 07 Apr 2007 Petteri Räty[15]

12. tupone [at] gentoo
13. aballier [at] gentoo
14. genstef [at] gentoo
15. betelgeuse [at] gentoo

Additions:
----------

Package: Addition date: Contact:
games-sports/toycars[16] 02 Apr 2007 Alfredo Tupone[12]
dev-util/duma[17] 03 Apr 2007 Steve Arnold[18]
perl-core/Math-BigRat[19] 03 Apr 2007 Michael Cummings[20]
perl-core/bignum[21] 03 Apr 2007 Michael Cummings[20]
net-misc/italc[22] 03 Apr 2007 Markus Ullmann[23]
net-nntp/hellanzb[24] 05 Apr 2007 Alexis Ballier[13]
media-video/mplayerthumbs[25] 06 Apr 2007 Stefan Schweizer[14]
net-wireless/aircrack-ptw[26] 06 Apr 2007 Lars Weiler[27]
net-misc/x-lite[28] 07 Apr 2007 Markus Ullmann[23]
kde-misc/metamonitor[29] 07 Apr 2007 Markus Ullmann[23]
sys-auth/pam_abl[30] 07 Apr 2007 Markus Ullmann[23]
sys-auth/pam_sha512[31] 07 Apr 2007 Markus Ullmann[23]
net-analyzer/zniper[32] 07 Apr 2007 Markus Ullmann[23]
dev-libs/liblazy[33] 08 Apr 2007 Stefan Schweizer[14]
dev-python/pkipplib[34] 08 Apr 2007 Bryan Østergaard[35]

12. tupone [at] gentoo
13. aballier [at] gentoo
14. genstef [at] gentoo
16. http://packages.gentoo.org/packages/?category=games-sports;name=toycars
17. http://packages.gentoo.org/packages/?category=dev-util;name=duma
18. nerdboy [at] gentoo
19. http://packages.gentoo.org/packages/?category=perl-core;name=Math-BigRat
20. mcummings [at] gentoo
21. http://packages.gentoo.org/packages/?category=perl-core;name=bignum
22. http://packages.gentoo.org/packages/?category=net-misc;name=italc
23. jokey [at] gentoo
24. http://packages.gentoo.org/packages/?category=net-nntp;name=hellanzb
25. http://packages.gentoo.org/packages/?category=media-video;name=mplayerthumbs
26. http://packages.gentoo.org/packages/?category=net-wireless;name=aircrack-ptw
27. pylon [at] gentoo
28. http://packages.gentoo.org/packages/?category=net-misc;name=x-lite
29. http://packages.gentoo.org/packages/?category=kde-misc;name=metamonitor
30. http://packages.gentoo.org/packages/?category=sys-auth;name=pam_abl
31. http://packages.gentoo.org/packages/?category=sys-auth;name=pam_sha512
32. http://packages.gentoo.org/packages/?category=net-analyzer;name=zniper
33. http://packages.gentoo.org/packages/?category=dev-libs;name=liblazy
34. http://packages.gentoo.org/packages/?category=dev-python;name=pkipplib
35. kloeri [at] gentoo

Last Rites:
-----------

Package: Removal date: Contact:
dev-java/aterm-java[36] 06 May 2007 Petteri Räty[15]
dev-db/c-jdbc[37] 08 May 2007 Petteri Räty[15]

15. betelgeuse [at] gentoo
36. http://packages.gentoo.org/packages/?category=dev-java;name=aterm-java
37. http://packages.gentoo.org/packages/?category=dev-db;name=c-jdbc

===========
6. Bugzilla
===========

Summary
-------

* Statistics
* Closed bug ranking
* New bug rankings

Statistics
----------

The Gentoo community uses Bugzilla (bugs.gentoo.org[38]) to record and track
bugs, notifications, suggestions and other interactions with the development
team. Between 01 April 2007 and 08 April 2007, activity on the site has
resulted in:

38. http://bugs.gentoo.org

* 513 new bugs during this period
* 441 bugs closed or resolved during this period
* 23 previously closed bugs were reopened this period
* 161 closed as NEEDINFO/WONTFIX/CANTFIX/INVALID/UPSTREAM during this
period
* 87 bugs marked as duplicates during this period

Of the 10000 currently open bugs: 14 are labeled 'blocker', 97 are labeled
'critical', and 353 are labeled 'major'.

Closed bug rankings
-------------------

The developers and teams who have closed the most bugs during this period
are:

* Java team[39], with 22 closed bugs[40]
* Gentoo KDE team[41], with 21 closed bugs[42]
* Gentoo Security[43], with 15 closed bugs[44]
* Gentoo's Team for Core System packages[45], with 15 closed bugs[46]
* Printing Team[47], with 14 closed bugs[48]
* TeX herd[49], with 12 closed bugs[50]
* Hanno Boeck[51], with 12 closed bugs[52]
* Development Tools Herd[53], with 12 closed bugs[54]

39. java [at] gentoo
40. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=java [at] gentoo
41. kde [at] gentoo
42. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=kde [at] gentoo
43. security [at] gentoo
44. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=security [at] gentoo
45. base-system [at] gentoo
46. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=base-system [at] gentoo
47. printing [at] gentoo
48. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=printing [at] gentoo
49. tex [at] gentoo
50. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=tex [at] gentoo
51. hanno [at] gentoo
52. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=hanno [at] gentoo
53. dev-tools [at] gentoo
54. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=dev-tools [at] gentoo

New bug rankings
----------------

The developers and teams who have been assigned the most new bugs during
this period are:

* Default Assignee for New Packages[55], with 21 new bugs[56]
* Default Assignee for Orphaned Packages[57], with 9 new bugs[58]
* AMD64 Project[59], with 9 new bugs[60]
* PHP Bugs[61], with 5 new bugs[62]
* Alpha Porters[63], with 5 new bugs[64]
* Robin Johnson[65], with 4 new bugs[66]
* Gentoo Kernel Bug Wranglers and Kernel Maintainers[67], with 4 new
bugs[68]
* Java team[39], with 4 new bugs[69]

39. java [at] gentoo
55. maintainer-wanted [at] gentoo
56. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=maintainer-wanted [at] gentoo
57. maintainer-needed [at] gentoo
58. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=maintainer-needed [at] gentoo
59. amd64 [at] gentoo
60. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=amd64 [at] gentoo
61. php-bugs [at] gentoo
62. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=php-bugs [at] gentoo
63. alpha [at] gentoo
64. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=alpha [at] gentoo
65. robbat2 [at] gentoo
66. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=robbat2 [at] gentoo
67. kernel [at] gentoo
68. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=kernel [at] gentoo
69. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=java [at] gentoo

===============
7. GWN feedback
===============

The GWN is staffed by volunteers and members of the community who submit
ideas and articles. If you are interested in writing for the GWN, have
feedback on an article that we have posted, or just have an idea or article
that you would like to submit to the GWN, please send us your feedback[70]
and help make the GWN better.

70. gwn-feedback [at] gentoo

===============================
8. GWN subscription information
===============================

To subscribe to the Gentoo Weekly Newsletter, send a blank e-mail to
gentoo-gwn+subscribe [at] gentoo

To unsubscribe to the Gentoo Weekly Newsletter, send a blank e-mail to
gentoo-gwn+unsubscribe [at] gentoo from the e-mail address you are subscribed
under.

==================
9. Other languages
==================

The Gentoo Weekly Newsletter is also available in the following languages:

* Chinese (Simplified)[71]
* Dutch[72]
* English[73]
* German[74]
* Greek[75]
* French[76]
* Korean[77]
* Japanese[78]
* Italian[79]
* Polish[80]
* Portuguese (Brazil)[81]
* Portuguese (Portugal)[82]
* Russian[83]
* Slovak[84]
* Spanish[85]
* Turkish[86]

71. http://www.gentoo.org/news/zh_cn/gwn/gwn.xml
72. http://www.gentoo.org/news/nl/gwn/gwn.xml
73. http://www.gentoo.org/news/en/gwn/gwn.xml
74. http://www.gentoo.org/news/de/gwn/gwn.xml
75. http://www.gentoo.org/news/el/gwn/gwn.xml
76. http://www.gentoo.org/news/fr/gwn/gwn.xml
77. http://www.gentoo.org/news/ko/gwn/gwn.xml
78. http://www.gentoo.org/news/ja/gwn/gwn.xml
79. http://www.gentoo.org/news/it/gwn/gwn.xml
80. http://www.gentoo.org/news/pl/gwn/gwn.xml
81. http://www.gentoo.org/news/pt_br/gwn/gwn.xml
82. http://www.gentoo.org/news/pt/gwn/gwn.xml
83. http://www.gentoo.org/news/ru/gwn/gwn.xml
84. http://www.gentoo.org/news/sk/gwn/gwn.xml
85. http://www.gentoo.org/news/es/gwn/gwn.xml
86. http://www.gentoo.org/news/tr/gwn/gwn.xml

Chris Gianelloni <wolf31o2 [at] gentoo> - Editor
Dimitry Bradt <diox [at] gentoo> - Author
Andrey Falko <andrey [at] afalko> - Author

--
gentoo-gwn [at] gentoo mailing list

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads