~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Gentoo Weekly Newsletter
http://www.gentoo.org/news/en/gwn/20070409-newsletter.xml
This is the Gentoo Weekly Newsletter for the week of 9 April 2007.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
========================
1. Developer of the Week
========================
Camille Huot, aka cam
---------------------
Figure 1.1: Camille Huot, aka cam
http://www.gentoo.org/images/gwn/20070409_cam.jpg
26 year old Camille Huot[1] is one of our French developers. He lives and
works in Paris, France, but was born in La Ciotat, which is near Marseilles
in southern France. Camille lives together with his brother, who has
recently finished school and started working as a C++ developer.
1. cam@gentoo.org
Cam studied at the University of Montpellier, and graduated with a Bachelor
in 'Telecommunications and Network'. Later on he completed his studies with
a Masters degree. He was employed some time back as Linux Systems
Administrator, but got promoted recently to Oracle DB Administration. He's
currently in charge of ~150 servers at the Wanadoo hosting platform.
Camille learned Linux (Red Hat and Debian) at school. Later on, he switched
to FreeBSD, which he kept for some years, but finally 'had' to come back to
Linux due to a DSL driver. Gérald Fenoy[2] convinced Camille to try Gentoo,
and he liked it :-)
2. djay@gentoo.org
Within Gentoo, Camille leads the French translation team. They currently
have a well-oiled team, and translate quite a few documents. He's also
interested in joining the Gentoo/FreeBSD team. Camille was recruited in
January '04 by Xavier Neys[3], who has recently turned over the torch of
French Lead translator to Camille.
3. neysx@gentoo.org
When Camille fires up his desktop, he uses: openbox, psi, opera, urxvt,
claws-mail, mplayer, gvim and some Google apps.
==================
2. Tips and Tricks
==================
Removing Specific Dependencies
------------------------------
Have you ever installed something with a lot of dependencies? Have you ever
wanted to remove that package along with all of its dependencies? Instinct
may tell us that we can run emerge --depclean, however there is a different,
perhaps better way.
Lets say that we want to compare OpenOffice.org and koffice. Our plan is to
install both, try them out, and remove one of them. First, do:
+--------------------------------------------------------------------------------+
| Code Listing 2.1 |
| Creating .deps files |
+--------------------------------------------------------------------------------+
| # emerge openoffice -p | sed -ne \ |
| '/^\[ebuild[^]]*N[^]]*\]/{s/^\[ebuild[^]]\+\] \([^[:space:]]\+\).*$/=\1/;p}' \ |
| > openoffice.deps |
| # emerge koffice-meta -p | sed -ne \ |
| '/^\[ebuild[^]]*N[^]]*\]/{s/^\[ebuild[^]]\+\] \([^[:space:]]\+\).*$/=\1/;p}' \ |
| > koffice.deps |
+--------------------------------------------------------------------------------+
This will ensure that we do not record any packages that are being updated.
Proceed to install and try the programs. Once you chose which one you want
to keep, simply do the following:
+---------------------------------------------------------------------------+
| Code Listing 2.2 |
| Removing unused package/dependencies |
+---------------------------------------------------------------------------+
| # emerge -aC $(<openoffice.deps) |
+---------------------------------------------------------------------------+
This week's Tips and Tricks was inspired by the following posting on the
forums:
* http://forums.gentoo.org/viewtopic-t-531232.html
=========================
3. Gentoo developer moves
=========================
Moves
-----
The following developers recently left the Gentoo project:
* Alec Warner (antarus)
* Simon Stelling (blubb)
Adds
----
The following developers recently joined the Gentoo project:
* none this week
Changes
-------
The following developers recently changed roles within the Gentoo project:
* none this week
==================
4. Gentoo security
==================
Asterisk: Two SIP Denial of Service vulnerabilities
---------------------------------------------------
Asterisk is vulnerable to two Denial of Service issues in the SIP channel.
For more information, please see the GLSA Announcement[4]
4. http://www.gentoo.org/security/en/glsa/glsa-200704-01.xml
MIT Kerberos 5: Arbitrary remote code execution
-----------------------------------------------
Multiple vulnerabilities in MIT Kerberos 5 could potentially result in
unauthenticated remote root code execution.
For more information, please see the GLSA Announcement[5]
5. http://www.gentoo.org/security/en/glsa/glsa-200704-02.xml
OpenAFS: Privilege escalation
-----------------------------
OpenAFS is subject to a design flaw that could allow privilege escalation on
the client.
For more information, please see the GLSA Announcement[6]
6. http://www.gentoo.org/security/en/glsa/glsa-200704-03.xml
OpenPBS: Multiple vulnerabilities
---------------------------------
OpenPBS contains unspecified vulnerabilities which may allow for the remote
execution of arbitrary code or a Denial of Service.
For more information, please see the GLSA Announcement[7]
7. http://www.gentoo.org/security/en/glsa/glsa-200704-04.xml
zziplib: Buffer Overflow
------------------------
The zziplib library contains a buffer overflow vulnerability that could lead
to user-assisted remote execution of arbitrary code.
For more information, please see the GLSA Announcement[8]
8. http://www.gentoo.org/security/en/glsa/glsa-200704-05.xml
Evince: Stack overflow in included gv code
------------------------------------------
Evince improperly handles user-supplied data possibly allowing for the
execution of arbitrary code.
For more information, please see the GLSA Announcement[9]
9. http://www.gentoo.org/security/en/glsa/glsa-200704-06.xml
libwpd: Multiple vulnerabilities
--------------------------------
libwpd is vulnerable to several heap overflows and an integer overflow.
For more information, please see the GLSA Announcement[10]
10. http://www.gentoo.org/security/en/glsa/glsa-200704-07.xml
=======================
5. Gentoo package moves
=======================
This section lists packages that have either been moved or added to the tree
and packages that have had their "last rites" announcement given to be
removed in the future. The package removals come from many locations,
including the Treecleaners[11] and various developers. Most packages which
are listed under the Last Rites section are in need of some love and care
and can remain in the tree if proper maintainership is established.
11. http://www.gentoo.org/proj/en/qa/treecleaners
Removals:
---------
Package: Removal date: Contact:
games-board/pysol-cardsets 02 Apr 2007 Alfredo Tupone[12]
net-news/hellanzb 05 Apr 2007 Alexis Ballier[13]
x11-misc/klineakconfig 06 Apr 2007 Stefan Schweizer[14]
net-print/foomatic 07 Apr 2007 Stefan Schweizer[14]
dev-util/ecletex 07 Apr 2007 Petteri Räty[15]
dev-util/eclipse-cdt 07 Apr 2007 Petteri Räty[15]
12. tupone@gentoo.org
13. aballier@gentoo.org
14. genstef@gentoo.org
15. betelgeuse@gentoo.org
Additions:
----------
Package: Addition date: Contact:
games-sports/toycars[16] 02 Apr 2007 Alfredo Tupone[12]
dev-util/duma[17] 03 Apr 2007 Steve Arnold[18]
perl-core/Math-BigRat[19] 03 Apr 2007 Michael Cummings[20]
perl-core/bignum[21] 03 Apr 2007 Michael Cummings[20]
net-misc/italc[22] 03 Apr 2007 Markus Ullmann[23]
net-nntp/hellanzb[24] 05 Apr 2007 Alexis Ballier[13]
media-video/mplayerthumbs[25] 06 Apr 2007 Stefan Schweizer[14]
net-wireless/aircrack-ptw[26] 06 Apr 2007 Lars Weiler[27]
net-misc/x-lite[28] 07 Apr 2007 Markus Ullmann[23]
kde-misc/metamonitor[29] 07 Apr 2007 Markus Ullmann[23]
sys-auth/pam_abl[30] 07 Apr 2007 Markus Ullmann[23]
sys-auth/pam_sha512[31] 07 Apr 2007 Markus Ullmann[23]
net-analyzer/zniper[32] 07 Apr 2007 Markus Ullmann[23]
dev-libs/liblazy[33] 08 Apr 2007 Stefan Schweizer[14]
dev-python/pkipplib[34] 08 Apr 2007 Bryan Østergaard[35]
12. tupone@gentoo.org
13. aballier@gentoo.org
14. genstef@gentoo.org
16. http://packages.gentoo.org/packages/?category=games-sports;name=toycars
17. http://packages.gentoo.org/packages/?category=dev-util;name=duma
18. nerdboy@gentoo.org
19. http://packages.gentoo.org/packages/?category=perl-core;name=Math-BigRat
20. mcummings@gentoo.org
21. http://packages.gentoo.org/packages/?category=perl-core;name=bignum
22. http://packages.gentoo.org/packages/?category=net-misc;name=italc
23. jokey@gentoo.org
24. http://packages.gentoo.org/packages/?category=net-nntp;name=hellanzb
25. http://packages.gentoo.org/packages/?category=media-video;name=mplayerthumbs
26. http://packages.gentoo.org/packages/?category=net-wireless;name=aircrack-ptw
27. pylon@gentoo.org
28. http://packages.gentoo.org/packages/?category=net-misc;name=x-lite
29. http://packages.gentoo.org/packages/?category=kde-misc;name=metamonitor
30. http://packages.gentoo.org/packages/?category=sys-auth;name=pam_abl
31. http://packages.gentoo.org/packages/?category=sys-auth;name=pam_sha512
32. http://packages.gentoo.org/packages/?category=net-analyzer;name=zniper
33. http://packages.gentoo.org/packages/?category=dev-libs;name=liblazy
34. http://packages.gentoo.org/packages/?category=dev-python;name=pkipplib
35. kloeri@gentoo.org
Last Rites:
-----------
Package: Removal date: Contact:
dev-java/aterm-java[36] 06 May 2007 Petteri Räty[15]
dev-db/c-jdbc[37] 08 May 2007 Petteri Räty[15]
15. betelgeuse@gentoo.org
36. http://packages.gentoo.org/packages/?category=dev-java;name=aterm-java
37. http://packages.gentoo.org/packages/?category=dev-db;name=c-jdbc
===========
6. Bugzilla
===========
Summary
-------
* Statistics
* Closed bug ranking
* New bug rankings
Statistics
----------
The Gentoo community uses Bugzilla (bugs.gentoo.org[38]) to record and track
bugs, notifications, suggestions and other interactions with the development
team. Between 01 April 2007 and 08 April 2007, activity on the site has
resulted in:
38. http://bugs.gentoo.org
* 513 new bugs during this period
* 441 bugs closed or resolved during this period
* 23 previously closed bugs were reopened this period
* 161 closed as NEEDINFO/WONTFIX/CANTFIX/INVALID/UPSTREAM during this
period
* 87 bugs marked as duplicates during this period
Of the 10000 currently open bugs: 14 are labeled 'blocker', 97 are labeled
'critical', and 353 are labeled 'major'.
Closed bug rankings
-------------------
The developers and teams who have closed the most bugs during this period
are:
* Java team[39], with 22 closed bugs[40]
* Gentoo KDE team[41], with 21 closed bugs[42]
* Gentoo Security[43], with 15 closed bugs[44]
* Gentoo's Team for Core System packages[45], with 15 closed bugs[46]
* Printing Team[47], with 14 closed bugs[48]
* TeX herd[49], with 12 closed bugs[50]
* Hanno Boeck[51], with 12 closed bugs[52]
* Development Tools Herd[53], with 12 closed bugs[54]
39. java@gentoo.org
40. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=java@gentoo.org
41. kde@gentoo.org
42. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=kde@gentoo.org
43. security@gentoo.org
44. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=security@gentoo.org
45. base-system@gentoo.org
46. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=base-system@gentoo.org
47. printing@gentoo.org
48. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=printing@gentoo.org
49. tex@gentoo.org
50. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=tex@gentoo.org
51. hanno@gentoo.org
52. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=hanno@gentoo.org
53. dev-tools@gentoo.org
54. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=dev-tools@gentoo.org
New bug rankings
----------------
The developers and teams who have been assigned the most new bugs during
this period are:
* Default Assignee for New Packages[55], with 21 new bugs[56]
* Default Assignee for Orphaned Packages[57], with 9 new bugs[58]
* AMD64 Project[59], with 9 new bugs[60]
* PHP Bugs[61], with 5 new bugs[62]
* Alpha Porters[63], with 5 new bugs[64]
* Robin Johnson[65], with 4 new bugs[66]
* Gentoo Kernel Bug Wranglers and Kernel Maintainers[67], with 4 new
bugs[68]
* Java team[39], with 4 new bugs[69]
39. java@gentoo.org
55. maintainer-wanted@gentoo.org
56. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=maintainer-wanted@gentoo.org
57. maintainer-needed@gentoo.org
58. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=maintainer-needed@gentoo.org
59. amd64@gentoo.org
60. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=amd64@gentoo.org
61. php-bugs@gentoo.org
62. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=php-bugs@gentoo.org
63. alpha@gentoo.org
64. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=alpha@gentoo.org
65. robbat2@gentoo.org
66. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=robbat2@gentoo.org
67. kernel@gentoo.org
68. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=kernel@gentoo.org
69. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=java@gentoo.org
===============
7. GWN feedback
===============
The GWN is staffed by volunteers and members of the community who submit
ideas and articles. If you are interested in writing for the GWN, have
feedback on an article that we have posted, or just have an idea or article
that you would like to submit to the GWN, please send us your feedback[70]
and help make the GWN better.
70. gwn-feedback@gentoo.org
===============================
8. GWN subscription information
===============================
To subscribe to the Gentoo Weekly Newsletter, send a blank e-mail to
gentoo-gwn+subscribe@gentoo.org.
To unsubscribe to the Gentoo Weekly Newsletter, send a blank e-mail to
gentoo-gwn+unsubscribe@gentoo.org from the e-mail address you are subscribed
under.
==================
9. Other languages
==================
The Gentoo Weekly Newsletter is also available in the following languages:
* Chinese (Simplified)[71]
* Dutch[72]
* English[73]
* German[74]
* Greek[75]
* French[76]
* Korean[77]
* Japanese[78]
* Italian[79]
* Polish[80]
* Portuguese (Brazil)[81]
* Portuguese (Portugal)[82]
* Russian[83]
* Slovak[84]
* Spanish[85]
* Turkish[86]
71. http://www.gentoo.org/news/zh_cn/gwn/gwn.xml
72. http://www.gentoo.org/news/nl/gwn/gwn.xml
73. http://www.gentoo.org/news/en/gwn/gwn.xml
74. http://www.gentoo.org/news/de/gwn/gwn.xml
75. http://www.gentoo.org/news/el/gwn/gwn.xml
76. http://www.gentoo.org/news/fr/gwn/gwn.xml
77. http://www.gentoo.org/news/ko/gwn/gwn.xml
78. http://www.gentoo.org/news/ja/gwn/gwn.xml
79. http://www.gentoo.org/news/it/gwn/gwn.xml
80. http://www.gentoo.org/news/pl/gwn/gwn.xml
81. http://www.gentoo.org/news/pt_br/gwn/gwn.xml
82. http://www.gentoo.org/news/pt/gwn/gwn.xml
83. http://www.gentoo.org/news/ru/gwn/gwn.xml
84. http://www.gentoo.org/news/sk/gwn/gwn.xml
85. http://www.gentoo.org/news/es/gwn/gwn.xml
86. http://www.gentoo.org/news/tr/gwn/gwn.xml
Chris Gianelloni <wolf31o2@gentoo.org> - Editor
Dimitry Bradt <diox@gentoo.org> - Author
Andrey Falko <andrey@afalko.homelinux.net> - Author
--
gentoo-gwn@gentoo.org mailing list
Gentoo Weekly Newsletter
http://www.gentoo.org/news/en/gwn/20070409-newsletter.xml
This is the Gentoo Weekly Newsletter for the week of 9 April 2007.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
========================
1. Developer of the Week
========================
Camille Huot, aka cam
---------------------
Figure 1.1: Camille Huot, aka cam
http://www.gentoo.org/images/gwn/20070409_cam.jpg
26 year old Camille Huot[1] is one of our French developers. He lives and
works in Paris, France, but was born in La Ciotat, which is near Marseilles
in southern France. Camille lives together with his brother, who has
recently finished school and started working as a C++ developer.
1. cam@gentoo.org
Cam studied at the University of Montpellier, and graduated with a Bachelor
in 'Telecommunications and Network'. Later on he completed his studies with
a Masters degree. He was employed some time back as Linux Systems
Administrator, but got promoted recently to Oracle DB Administration. He's
currently in charge of ~150 servers at the Wanadoo hosting platform.
Camille learned Linux (Red Hat and Debian) at school. Later on, he switched
to FreeBSD, which he kept for some years, but finally 'had' to come back to
Linux due to a DSL driver. Gérald Fenoy[2] convinced Camille to try Gentoo,
and he liked it :-)
2. djay@gentoo.org
Within Gentoo, Camille leads the French translation team. They currently
have a well-oiled team, and translate quite a few documents. He's also
interested in joining the Gentoo/FreeBSD team. Camille was recruited in
January '04 by Xavier Neys[3], who has recently turned over the torch of
French Lead translator to Camille.
3. neysx@gentoo.org
When Camille fires up his desktop, he uses: openbox, psi, opera, urxvt,
claws-mail, mplayer, gvim and some Google apps.
==================
2. Tips and Tricks
==================
Removing Specific Dependencies
------------------------------
Have you ever installed something with a lot of dependencies? Have you ever
wanted to remove that package along with all of its dependencies? Instinct
may tell us that we can run emerge --depclean, however there is a different,
perhaps better way.
Lets say that we want to compare OpenOffice.org and koffice. Our plan is to
install both, try them out, and remove one of them. First, do:
+--------------------------------------------------------------------------------+
| Code Listing 2.1 |
| Creating .deps files |
+--------------------------------------------------------------------------------+
| # emerge openoffice -p | sed -ne \ |
| '/^\[ebuild[^]]*N[^]]*\]/{s/^\[ebuild[^]]\+\] \([^[:space:]]\+\).*$/=\1/;p}' \ |
| > openoffice.deps |
| # emerge koffice-meta -p | sed -ne \ |
| '/^\[ebuild[^]]*N[^]]*\]/{s/^\[ebuild[^]]\+\] \([^[:space:]]\+\).*$/=\1/;p}' \ |
| > koffice.deps |
+--------------------------------------------------------------------------------+
This will ensure that we do not record any packages that are being updated.
Proceed to install and try the programs. Once you chose which one you want
to keep, simply do the following:
+---------------------------------------------------------------------------+
| Code Listing 2.2 |
| Removing unused package/dependencies |
+---------------------------------------------------------------------------+
| # emerge -aC $(<openoffice.deps) |
+---------------------------------------------------------------------------+
This week's Tips and Tricks was inspired by the following posting on the
forums:
* http://forums.gentoo.org/viewtopic-t-531232.html
=========================
3. Gentoo developer moves
=========================
Moves
-----
The following developers recently left the Gentoo project:
* Alec Warner (antarus)
* Simon Stelling (blubb)
Adds
----
The following developers recently joined the Gentoo project:
* none this week
Changes
-------
The following developers recently changed roles within the Gentoo project:
* none this week
==================
4. Gentoo security
==================
Asterisk: Two SIP Denial of Service vulnerabilities
---------------------------------------------------
Asterisk is vulnerable to two Denial of Service issues in the SIP channel.
For more information, please see the GLSA Announcement[4]
4. http://www.gentoo.org/security/en/glsa/glsa-200704-01.xml
MIT Kerberos 5: Arbitrary remote code execution
-----------------------------------------------
Multiple vulnerabilities in MIT Kerberos 5 could potentially result in
unauthenticated remote root code execution.
For more information, please see the GLSA Announcement[5]
5. http://www.gentoo.org/security/en/glsa/glsa-200704-02.xml
OpenAFS: Privilege escalation
-----------------------------
OpenAFS is subject to a design flaw that could allow privilege escalation on
the client.
For more information, please see the GLSA Announcement[6]
6. http://www.gentoo.org/security/en/glsa/glsa-200704-03.xml
OpenPBS: Multiple vulnerabilities
---------------------------------
OpenPBS contains unspecified vulnerabilities which may allow for the remote
execution of arbitrary code or a Denial of Service.
For more information, please see the GLSA Announcement[7]
7. http://www.gentoo.org/security/en/glsa/glsa-200704-04.xml
zziplib: Buffer Overflow
------------------------
The zziplib library contains a buffer overflow vulnerability that could lead
to user-assisted remote execution of arbitrary code.
For more information, please see the GLSA Announcement[8]
8. http://www.gentoo.org/security/en/glsa/glsa-200704-05.xml
Evince: Stack overflow in included gv code
------------------------------------------
Evince improperly handles user-supplied data possibly allowing for the
execution of arbitrary code.
For more information, please see the GLSA Announcement[9]
9. http://www.gentoo.org/security/en/glsa/glsa-200704-06.xml
libwpd: Multiple vulnerabilities
--------------------------------
libwpd is vulnerable to several heap overflows and an integer overflow.
For more information, please see the GLSA Announcement[10]
10. http://www.gentoo.org/security/en/glsa/glsa-200704-07.xml
=======================
5. Gentoo package moves
=======================
This section lists packages that have either been moved or added to the tree
and packages that have had their "last rites" announcement given to be
removed in the future. The package removals come from many locations,
including the Treecleaners[11] and various developers. Most packages which
are listed under the Last Rites section are in need of some love and care
and can remain in the tree if proper maintainership is established.
11. http://www.gentoo.org/proj/en/qa/treecleaners
Removals:
---------
Package: Removal date: Contact:
games-board/pysol-cardsets 02 Apr 2007 Alfredo Tupone[12]
net-news/hellanzb 05 Apr 2007 Alexis Ballier[13]
x11-misc/klineakconfig 06 Apr 2007 Stefan Schweizer[14]
net-print/foomatic 07 Apr 2007 Stefan Schweizer[14]
dev-util/ecletex 07 Apr 2007 Petteri Räty[15]
dev-util/eclipse-cdt 07 Apr 2007 Petteri Räty[15]
12. tupone@gentoo.org
13. aballier@gentoo.org
14. genstef@gentoo.org
15. betelgeuse@gentoo.org
Additions:
----------
Package: Addition date: Contact:
games-sports/toycars[16] 02 Apr 2007 Alfredo Tupone[12]
dev-util/duma[17] 03 Apr 2007 Steve Arnold[18]
perl-core/Math-BigRat[19] 03 Apr 2007 Michael Cummings[20]
perl-core/bignum[21] 03 Apr 2007 Michael Cummings[20]
net-misc/italc[22] 03 Apr 2007 Markus Ullmann[23]
net-nntp/hellanzb[24] 05 Apr 2007 Alexis Ballier[13]
media-video/mplayerthumbs[25] 06 Apr 2007 Stefan Schweizer[14]
net-wireless/aircrack-ptw[26] 06 Apr 2007 Lars Weiler[27]
net-misc/x-lite[28] 07 Apr 2007 Markus Ullmann[23]
kde-misc/metamonitor[29] 07 Apr 2007 Markus Ullmann[23]
sys-auth/pam_abl[30] 07 Apr 2007 Markus Ullmann[23]
sys-auth/pam_sha512[31] 07 Apr 2007 Markus Ullmann[23]
net-analyzer/zniper[32] 07 Apr 2007 Markus Ullmann[23]
dev-libs/liblazy[33] 08 Apr 2007 Stefan Schweizer[14]
dev-python/pkipplib[34] 08 Apr 2007 Bryan Østergaard[35]
12. tupone@gentoo.org
13. aballier@gentoo.org
14. genstef@gentoo.org
16. http://packages.gentoo.org/packages/?category=games-sports;name=toycars
17. http://packages.gentoo.org/packages/?category=dev-util;name=duma
18. nerdboy@gentoo.org
19. http://packages.gentoo.org/packages/?category=perl-core;name=Math-BigRat
20. mcummings@gentoo.org
21. http://packages.gentoo.org/packages/?category=perl-core;name=bignum
22. http://packages.gentoo.org/packages/?category=net-misc;name=italc
23. jokey@gentoo.org
24. http://packages.gentoo.org/packages/?category=net-nntp;name=hellanzb
25. http://packages.gentoo.org/packages/?category=media-video;name=mplayerthumbs
26. http://packages.gentoo.org/packages/?category=net-wireless;name=aircrack-ptw
27. pylon@gentoo.org
28. http://packages.gentoo.org/packages/?category=net-misc;name=x-lite
29. http://packages.gentoo.org/packages/?category=kde-misc;name=metamonitor
30. http://packages.gentoo.org/packages/?category=sys-auth;name=pam_abl
31. http://packages.gentoo.org/packages/?category=sys-auth;name=pam_sha512
32. http://packages.gentoo.org/packages/?category=net-analyzer;name=zniper
33. http://packages.gentoo.org/packages/?category=dev-libs;name=liblazy
34. http://packages.gentoo.org/packages/?category=dev-python;name=pkipplib
35. kloeri@gentoo.org
Last Rites:
-----------
Package: Removal date: Contact:
dev-java/aterm-java[36] 06 May 2007 Petteri Räty[15]
dev-db/c-jdbc[37] 08 May 2007 Petteri Räty[15]
15. betelgeuse@gentoo.org
36. http://packages.gentoo.org/packages/?category=dev-java;name=aterm-java
37. http://packages.gentoo.org/packages/?category=dev-db;name=c-jdbc
===========
6. Bugzilla
===========
Summary
-------
* Statistics
* Closed bug ranking
* New bug rankings
Statistics
----------
The Gentoo community uses Bugzilla (bugs.gentoo.org[38]) to record and track
bugs, notifications, suggestions and other interactions with the development
team. Between 01 April 2007 and 08 April 2007, activity on the site has
resulted in:
38. http://bugs.gentoo.org
* 513 new bugs during this period
* 441 bugs closed or resolved during this period
* 23 previously closed bugs were reopened this period
* 161 closed as NEEDINFO/WONTFIX/CANTFIX/INVALID/UPSTREAM during this
period
* 87 bugs marked as duplicates during this period
Of the 10000 currently open bugs: 14 are labeled 'blocker', 97 are labeled
'critical', and 353 are labeled 'major'.
Closed bug rankings
-------------------
The developers and teams who have closed the most bugs during this period
are:
* Java team[39], with 22 closed bugs[40]
* Gentoo KDE team[41], with 21 closed bugs[42]
* Gentoo Security[43], with 15 closed bugs[44]
* Gentoo's Team for Core System packages[45], with 15 closed bugs[46]
* Printing Team[47], with 14 closed bugs[48]
* TeX herd[49], with 12 closed bugs[50]
* Hanno Boeck[51], with 12 closed bugs[52]
* Development Tools Herd[53], with 12 closed bugs[54]
39. java@gentoo.org
40. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=java@gentoo.org
41. kde@gentoo.org
42. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=kde@gentoo.org
43. security@gentoo.org
44. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=security@gentoo.org
45. base-system@gentoo.org
46. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=base-system@gentoo.org
47. printing@gentoo.org
48. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=printing@gentoo.org
49. tex@gentoo.org
50. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=tex@gentoo.org
51. hanno@gentoo.org
52. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=hanno@gentoo.org
53. dev-tools@gentoo.org
54. http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2007-04-01&chfieldto=2007-04-08&resolution=FIXED&assigned_to=dev-tools@gentoo.org
New bug rankings
----------------
The developers and teams who have been assigned the most new bugs during
this period are:
* Default Assignee for New Packages[55], with 21 new bugs[56]
* Default Assignee for Orphaned Packages[57], with 9 new bugs[58]
* AMD64 Project[59], with 9 new bugs[60]
* PHP Bugs[61], with 5 new bugs[62]
* Alpha Porters[63], with 5 new bugs[64]
* Robin Johnson[65], with 4 new bugs[66]
* Gentoo Kernel Bug Wranglers and Kernel Maintainers[67], with 4 new
bugs[68]
* Java team[39], with 4 new bugs[69]
39. java@gentoo.org
55. maintainer-wanted@gentoo.org
56. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=maintainer-wanted@gentoo.org
57. maintainer-needed@gentoo.org
58. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=maintainer-needed@gentoo.org
59. amd64@gentoo.org
60. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=amd64@gentoo.org
61. php-bugs@gentoo.org
62. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=php-bugs@gentoo.org
63. alpha@gentoo.org
64. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=alpha@gentoo.org
65. robbat2@gentoo.org
66. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=robbat2@gentoo.org
67. kernel@gentoo.org
68. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=kernel@gentoo.org
69. http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2007-04-01&chfieldto=2007-04-08&assigned_to=java@gentoo.org
===============
7. GWN feedback
===============
The GWN is staffed by volunteers and members of the community who submit
ideas and articles. If you are interested in writing for the GWN, have
feedback on an article that we have posted, or just have an idea or article
that you would like to submit to the GWN, please send us your feedback[70]
and help make the GWN better.
70. gwn-feedback@gentoo.org
===============================
8. GWN subscription information
===============================
To subscribe to the Gentoo Weekly Newsletter, send a blank e-mail to
gentoo-gwn+subscribe@gentoo.org.
To unsubscribe to the Gentoo Weekly Newsletter, send a blank e-mail to
gentoo-gwn+unsubscribe@gentoo.org from the e-mail address you are subscribed
under.
==================
9. Other languages
==================
The Gentoo Weekly Newsletter is also available in the following languages:
* Chinese (Simplified)[71]
* Dutch[72]
* English[73]
* German[74]
* Greek[75]
* French[76]
* Korean[77]
* Japanese[78]
* Italian[79]
* Polish[80]
* Portuguese (Brazil)[81]
* Portuguese (Portugal)[82]
* Russian[83]
* Slovak[84]
* Spanish[85]
* Turkish[86]
71. http://www.gentoo.org/news/zh_cn/gwn/gwn.xml
72. http://www.gentoo.org/news/nl/gwn/gwn.xml
73. http://www.gentoo.org/news/en/gwn/gwn.xml
74. http://www.gentoo.org/news/de/gwn/gwn.xml
75. http://www.gentoo.org/news/el/gwn/gwn.xml
76. http://www.gentoo.org/news/fr/gwn/gwn.xml
77. http://www.gentoo.org/news/ko/gwn/gwn.xml
78. http://www.gentoo.org/news/ja/gwn/gwn.xml
79. http://www.gentoo.org/news/it/gwn/gwn.xml
80. http://www.gentoo.org/news/pl/gwn/gwn.xml
81. http://www.gentoo.org/news/pt_br/gwn/gwn.xml
82. http://www.gentoo.org/news/pt/gwn/gwn.xml
83. http://www.gentoo.org/news/ru/gwn/gwn.xml
84. http://www.gentoo.org/news/sk/gwn/gwn.xml
85. http://www.gentoo.org/news/es/gwn/gwn.xml
86. http://www.gentoo.org/news/tr/gwn/gwn.xml
Chris Gianelloni <wolf31o2@gentoo.org> - Editor
Dimitry Bradt <diox@gentoo.org> - Author
Andrey Falko <andrey@afalko.homelinux.net> - Author
--
gentoo-gwn@gentoo.org mailing list