Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-gwn

From: Ulrich Plate <plate@g.o>
To: gentoo-gwn@××××××××××××.org
Subject: [gentoo-gwn] Gentoo Weekly Newsletter 7 February 2005
Date: Mon, 07 Feb 2005 02:44:59
Message-Id: 20050207034909.73ef3c34.plate@gentoo.org
1 ---------------------------------------------------------------------------
2 Gentoo Weekly Newsletter
3 http://www.gentoo.org/news/en/gwn/current.xml
4 This is the Gentoo Weekly Newsletter for the week of 7 February 2005.
5 ---------------------------------------------------------------------------
6
7 ==============
8 1. Gentoo News
9 ==============
10
11 Gentoo at the Linux World Expo, Boston edition
12 ----------------------------------------------
13
14 With just a week to go before the U.S. east coast version of the LWE[1]
15 opens its gates, the Gentoo line-up is complete. Gentoo developers manning
16 the booth will include Mike Frysinger, Chris Gianelloni, Dylan Carlson,
17 Daniel Ostrow, Luke Macken, Jeffrey Forman, Rajiv Aaron Manglani and Chris
18 Aniszczyk, aided by local organiser Andrew Fant who's been busy preparing
19 everything to go smoothly at booth #6 on the exhibition floor at Boston's
20 Hynes Convention Center. Visitors to the Gentoo stand will find Sparcs and
21 x86, and a Mac Mini running Gentoo Linux/PPC among the architectures on
22 display. The exhibition starts on Tuesday 15 February and lasts until
23 Thursday 17, open daily from 10:00 to 17:00 (16:00 on Thursday).
24 1. http://www.linuxworldexpo.com
25
26 Two million posts
27 -----------------
28
29 Yet another record for the Gentoo Forums: The 2,000,000th post since the
30 creation of Gentoo's phpBB user support forum was registered last Monday.
31 While dozens of Forum regulars were watching the total post count move up
32 towards the magic number, Naib[2] from Birmingham in the United Kingdom
33 finally hit the submit button at exactly the right time. His post,
34 combining both clarity of expression and snotty Brum poetry, was in reply
35 to someone asking for fullscreen capabilities in terminal programs. Naib's
36 answer, scheduled for immortality: "Ctrl-Alt-F1"[3]
37 2. http://forums.gentoo.org/profile.php?mode=viewprofile&u=56608
38 3. http://forums.gentoo.org/viewtopic.php?p=2041272#2041272
39
40 Figure 1.1: Post counter on forums.gentoo.org, 31 January 2005 at around
41 20:15 UTC
42 http://www.gentoo.org/images/gwn/20050207_forum.png
43
44 New IRC channel, mailing list for Gentoo media packages
45 -------------------------------------------------------
46
47 Jan Brinkmann[4] announced two new support platforms for the evergrowing
48 number of packages in Portage dealing with audio and video applications.
49 #gentoo-media is a new channel on irc.freenode.net where media package
50 maintainers congregate, and a new mailing list, gentoo-media@g.o,
51 has also been created to improve the communication between the developers
52 in media related herds. "We also intended to make it easier for desktop
53 users to get in touch with maintainers of software which is related to
54 these herds," says Jan Brinkmann, hoping both the new IRC channel and
55 mailing list will soon become both "popular and populated," especially in
56 view of recruiting additional developers for the understaffed media herds.
57 To subscribe to the mailing list, send a blank email to
58 gentoo-media-subscribe@g.o. If you would like to help with
59 development on sound and video applications, contact Jan Brinkmann
60 directly.
61 4. luckyduck@g.o
62
63 ==============
64 2. Future Zone
65 ==============
66
67 Gentoo/FreeBSD
68 --------------
69
70 The Gentoo/FreeBSD project officially started in August 2004 as a set of
71 system ebuilds based on FreeBSD 5.2.1 and a portage overlay provided by
72 Grant Goodyear (g2boojum). As the release of FreeBSD 5.3 became imminent,
73 the project slowly ported base system ebuilds to this new version, which
74 is the actual base for our project.
75
76 The Gentoo/FreeBSD project, as its name implies, is an effort to have the
77 whole set of Gentoo components running on top of a FreeBSD base system.
78 This means that, for example, instead of having a Linux kernel and GNU
79 LibC, one will have FreeBSD's kernel and FreeBSD's LibC. In addition, the
80 project is also working on porting baselayout to Gentoo/FreeBSD in such a
81 way that makes the management of startup services as easy as in Gentoo
82 Linux.
83
84 Although this project is fairly young, a fair amount of progress has been
85 achieved. The most important accomplishments include:
86
87 * Portage now runs without needing to be patched.
88 * the set of ebuilds that downloads and install specific FreeBSD system
89 packages is now almost stable and the process of building it is, in
90 general, painless.
91 * we have defined a system profile as well as some non-FreeBSD packages
92 that should be available.
93
94 At this moment, we are working on stabilizing the content of source
95 tarballs in such a way that they provide all the reasonable things for
96 their category (system sources tarballs, in Gentoo/FreeBSD are separated
97 by category, like freebsd-lib, freebsd-usbin, etc).
98
99 Our efforts with baselayout have mainly been oriented towards getting
100 Gentoo's dependency-based init system working with FreeBSD's userland.
101 Unsurprisingly, certain parts (mainly involving gawk) have been
102 problematic, but we currently have a package that can bring up a
103 functional FreeBSD system, and should allow the initscripts in the main
104 Portage tree to work unchanged. More work is needed to write initscripts
105 for the less common parts of the FreeBSD system, and possibly to update
106 the system to baselayout 1.11 when that becomes stable.
107
108 Goals for the immediate future include a set of stages that will be used
109 to install Gentoo/FreeBSD, completion of the baselayout port, and finally,
110 a release.
111
112 In a separate effort we are also looking into porting the glibc and GNU
113 userland to the FreeBSD kernel. If you are interested in working on this,
114 contact Dylan Carlson[5]. (see also the post by Robert Millan to the
115 gentoo-dev mailing list referenced below).
116 5. absinthe@g.o
117
118 ==================
119 3. Gentoo security
120 ==================
121
122 Gallery: Cross-site scripting vulnerability
123 -------------------------------------------
124
125 Gallery is vulnerable to cross-site scripting attacks.
126
127 For more information, please see the GLSA Announcement[6]
128 6. http://www.gentoo.org/security/en/glsa/glsa-200501-45.xml
129
130 ClamAV: Multiple issues
131 -----------------------
132
133 ClamAV contains two vulnerabilities that could lead to Denial of Service
134 and evasion of virus scanning.
135
136 For more information, please see the GLSA Announcement[7]
137 7. http://www.gentoo.org/security/en/glsa/glsa-200501-46.xml
138
139 ncpfs: Multiple vulnerabilities
140 -------------------------------
141
142 The ncpfs utilities contain multiple flaws, potentially resulting in the
143 remote execution of arbitrary code or local file access with elevated
144 privileges.
145
146 For more information, please see the GLSA Announcement[8]
147 8. http://www.gentoo.org/security/en/glsa/glsa-200501-44.xml
148
149 FireHOL: Insecure temporary file creation
150 -----------------------------------------
151
152 FireHOL is vulnerable to symlink attacks, potentially allowing a local
153 user to overwrite arbitrary files.
154
155 For more information, please see the GLSA Announcement[9]
156 9. http://www.gentoo.org/security/en/glsa/glsa-200502-01.xml
157
158 UW IMAP: CRAM-MD5 authentication bypass
159 ---------------------------------------
160
161 UW IMAP contains a vulnerability in the code handling CRAM-MD5
162 authentication allowing authentication bypass.
163
164 For more information, please see the GLSA Announcement[10]
165 10. http://www.gentoo.org/security/en/glsa/glsa-200502-02.xml
166
167 enscript: Multiple vulnerabilities
168 ----------------------------------
169
170 enscript suffers from vulnerabilities and design flaws, potentially
171 resulting in the execution of arbitrary code.
172
173 For more information, please see the GLSA Announcement[11]
174 11. http://www.gentoo.org/security/en/glsa/glsa-200502-03.xml
175
176 Squid: Multiple vulnerabilities
177 -------------------------------
178
179 Squid contains vulnerabilities in the code handling WCCP, HTTP and LDAP
180 which could lead to Denial of Service, access control bypass, web cache
181 and log poisoning.
182
183 For more information, please see the GLSA Announcement[12]
184 12. http://www.gentoo.org/security/en/glsa/glsa-200502-04.xml
185
186 Newspost: Buffer overflow vulnerability
187 ---------------------------------------
188
189 A buffer overflow can be exploited to crash Newspost remotely and
190 potentially execute arbitrary code.
191
192 For more information, please see the GLSA Announcement[13]
193 13. http://www.gentoo.org/security/en/glsa/glsa-200502-05.xml
194
195 LessTif: Multiple vulnerabilities in libXpm
196 -------------------------------------------
197
198 Multiple vulnerabilities have been discovered in libXpm, which is included
199 in LessTif, that can potentially lead to remote code execution.
200
201 For more information, please see the GLSA Announcement[14]
202 14. http://www.gentoo.org/security/en/glsa/glsa-200502-06.xml
203
204 =========================
205 4. Heard in the community
206 =========================
207
208 gentoo-dev
209 ----------
210
211 Gentoo/kFreeBSD
212
213 Visiting Debian developer Robert Millan[15] posted to announce his work on
214 porting the glibc and GNU userland to the FreeBSD kernel: "I started from
215 the existing Gentoo FreeBSD system and gradually migrated it to Glibc."
216 15. rmh@××××××.org
217
218 * Gentoo GNU/kFreeBSD[16]
219 16. http://thread.gmane.org/gmane.linux.gentoo.devel/24990
220
221 GWN independence?
222
223 Grant Goodyear[17] tries to come to terms with the status of the Gentoo
224 Weekly Newsletter: "Is the GWN an official Gentoo newsletter that promotes
225 Gentoo, or is it a quasi-independent newsletter that is free to criticize
226 as well as evangelize?" How much influence should developers have on its
227 content?
228 17. g2boojum@g.o
229
230 * GWN independence?[18]
231 18. http://thread.gmane.org/gmane.linux.gentoo.devel/25156
232
233 Proper if/else blocks in bash
234
235 Once again, Ciaran McCreesh[19] gives some important info on bash syntax.
236 This should be especially interesting for those among you that contribute
237 ebuilds. Also, he does not point us at the not existing draft of the
238 doc[20] which, if it existed, would be a good ressource for all ebuild
239 questions.
240 19. ciaranm@g.o
241 20. http://dev.gentoo.org/~ciaranm/docs/IGNORE_the-doc/#multiple-selection
242
243 * Proper if/else blocks in bash[21]
244 21. http://thread.gmane.org/gmane.linux.gentoo.devel/25115
245
246 gcc-4 support in Gentoo
247
248 For all Gentooists who like new ans shiny toys, Mike Frysinger[22] has
249 added gcc-4 ebuilds to portage. They are masked at the moment and totally
250 unsupported, so if you wish to use them it's at your own risk! First
251 reports are quite mixed, from random segfaults to flawless working
252 everything seems to be possible. Enjoy!
253 22. vapier@g.o
254 * gcc-4 support in Gentoo[23]
255 23. http://thread.gmane.org/gmane.linux.gentoo.devel/25098
256
257 autotools confusion
258
259 Some time ago, the autoconf / automake / libtool ebuilds were modified.
260 Many users now complain that portage wants to install all available
261 versions, but as Mike Frysinger[24] explains: "The old ebuilds
262 (autoconf-2.59-r5 / automake-1.8.5-r1 / libtool-1.5.2-r7) actually
263 downloaded and installed multiple versions of each package. You thought
264 you had just one autoconf, but boy oh boy were you wrong !"
265 24. vapier@g.o
266
267 * autotools confusion[25]
268 25. http://thread.gmane.org/gmane.linux.gentoo.devel/25020
269
270 =======================
271 5. Gentoo International
272 =======================
273
274 Germany: Oberhausen GUM on Friday 11 February
275 ---------------------------------------------
276
277 Oberhausen, home to the "Friends of Gentoo e.V." and several active
278 developers, is again the venue for a Gentoo User Meeting at the Gasthof
279 Harlos, itself on the way to become an institution in the German Gentoo
280 microcosmos. This week, preparations for the FOSDEM conference in Belgium
281 later this month are on the agenda, as is the notorious Schnitzelplatte, a
282 copious amount of meat traditionally served at Oberhausen GUMs. The
283 organisers are also trying to bring one of the used Sun Blade 100[26] that
284 have been bought recently by several German developers from a Swiss
285 university to the meeting, which is going to take place on 11 February,
286 starting at around 19:00 CET.
287 26.
288 http://sunsolve.sun.com/handbook_pub/Systems/SunBlade100/SunBlade100.html
289
290 ======================
291 6. Gentoo in the press
292 ======================
293
294 Linux Magazin (Issue 3/2005)
295 ----------------------------
296
297 The German Linux Magazin carries an article by Gentoo developer Michael
298 Kohl[27] in its latest number. Michael explains the catalyst release
299 engineering tool and the release process for Gentoo Linux on three pages
300 full of interesting details, mentioning examples for using catalyst to
301 create variant LiveCDs like the German "Fizzle Wizzle" release that
302 includes a complete KDE environment running Knoppix-like from the CD
303 without the need to install on the harddisk. The printed magazine is
304 available at newsstands in Germany since Thursday last week, and also
305 includes an additional Gentoo installation rundown by editor Oliver
306 Frommel.
307 27. citizen428
308
309 David Berlind's blog (31 January 2005)
310 --------------------------------------
311
312 CNET columnist David Berlind posted a clarification to his earlier article
313 on Gentoo and OpenSolaris we referenced last week[28]. In his new article
314 "Gentoo: We're not the Napster of Open Source"[29] he quotes from mails
315 going back and forth between Gentoo developer Pieter Van den Abeele and
316 himself, acknowledging that "the folks at Gentoo are disputing my
317 characterization of their Portaris and Portage technologies as being
318 Napster-like facilitators that can grease the wheels of open source
319 license violation."
320 28. http://www.gentoo.org/news/en/20050131-newsletter.xml#doc_chap5
321 29. http://blogs.zdnet.com/BTL/index.php?p=988
322
323 ===========
324 7. Bugzilla
325 ===========
326
327 Summary
328 -------
329
330 * Statistics
331 * Closed bug ranking
332 * New bug rankings
333
334 Statistics
335 ----------
336
337 The Gentoo community uses Bugzilla (bugs.gentoo.org[30]) to record and
338 track bugs, notifications, suggestions and other interactions with the
339 development team. Between 31 January 2005 and 07 February 2005, activity
340 on the site has resulted in:
341 30. http://bugs.gentoo.org
342
343 * 875 new bugs during this period
344 * 661 bugs closed or resolved during this period
345 * 28 previously closed bugs were reopened this period
346
347 Of the 8006 currently open bugs: 105 are labeled 'blocker', 245 are
348 labeled 'critical', and 601 are labeled 'major'.
349
350 Closed bug rankings
351 -------------------
352
353 The developers and teams who have closed the most bugs during this period
354 are:
355
356 * osx porters[31], with 173 closed bugs[32]
357 * AMD64 Porting Team[33], with 33 closed bugs[34]
358 * Gentoo's Team for Core System packages[35], with 30 closed bugs[36]
359 * media-video herd[37], with 23 closed bugs[38]
360 * Java team[39], with 21 closed bugs[40]
361 * Gentoo KDE team[41], with 20 closed bugs[42]
362 * Gentoo Security[43], with 19 closed bugs[44]
363 * Xavier Neys[45], with 16 closed bugs[46]
364 31. osx@g.o
365 32.
366 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2005-01-31&chfieldto=2005-02-07&resolution=FIXED&assigned_to=osx@g.o
367 33. amd64@g.o
368 34.
369 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2005-01-31&chfieldto=2005-02-07&resolution=FIXED&assigned_to=amd64@g.o
370 35. base-system@g.o
371 36.
372 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2005-01-31&chfieldto=2005-02-07&resolution=FIXED&assigned_to=base-system@g.o
373 37. media-video@g.o
374 38.
375 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2005-01-31&chfieldto=2005-02-07&resolution=FIXED&assigned_to=media-video@g.o
376 39. java@g.o
377 40.
378 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2005-01-31&chfieldto=2005-02-07&resolution=FIXED&assigned_to=java@g.o
379 41. kde@g.o
380 42.
381 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2005-01-31&chfieldto=2005-02-07&resolution=FIXED&assigned_to=kde@g.o
382 43. security@g.o
383 44.
384 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2005-01-31&chfieldto=2005-02-07&resolution=FIXED&assigned_to=security@g.o
385 45. neysx@g.o
386 46.
387 http://bugs.gentoo.org/buglist.cgi?bug_status=RESOLVED&bug_status=CLOSED&chfield=bug_status&chfieldfrom=2005-01-31&chfieldto=2005-02-07&resolution=FIXED&assigned_to=neysx@g.o
388
389 New bug rankings
390 ----------------
391
392 The developers and teams who have been assigned the most new bugs during
393 this period are:
394
395 * AMD64 Porting Team[47], with 37 new bugs[48]
396 * Gentoo X-windows packagers[49], with 21 new bugs[50]
397 * Gentoo Sound Team[51], with 17 new bugs[52]
398 * media-video herd[53], with 15 new bugs[54]
399 * Gentoo's Team for Core System packages[55], with 15 new bugs[56]
400 * Mozilla Gentoo Team[57], with 13 new bugs[58]
401 * marduk[59], with 11 new bugs[60]
402 * XFCE Team[61], with 7 new bugs[62]
403 47. amd64@g.o
404 48.
405 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2005-01-31&chfieldto=2005-02-07&assigned_to=amd64@g.o
406 49. x11@g.o
407 50.
408 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2005-01-31&chfieldto=2005-02-07&assigned_to=x11@g.o
409 51. sound@g.o
410 52.
411 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2005-01-31&chfieldto=2005-02-07&assigned_to=sound@g.o
412 53. media-video@g.o
413 54.
414 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2005-01-31&chfieldto=2005-02-07&assigned_to=media-video@g.o
415 55. base-system@g.o
416 56.
417 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2005-01-31&chfieldto=2005-02-07&assigned_to=base-system@g.o
418 57. mozilla@g.o
419 58.
420 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2005-01-31&chfieldto=2005-02-07&assigned_to=mozilla@g.o
421 59. marduk@g.o
422 60.
423 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2005-01-31&chfieldto=2005-02-07&assigned_to=marduk@g.o
424 61. xfce@g.o
425 62.
426 http://bugs.gentoo.org/buglist.cgi?bug_status=NEW&bug_status=ASSIGNED&bug_status=REOPENED&chfield=assigned_to&chfieldfrom=2005-01-31&chfieldto=2005-02-07&assigned_to=xfce@g.o
427
428 ===========================
429 8. Moves, adds, and changes
430 ===========================
431
432 Moves
433 -----
434
435 The following developers recently left the Gentoo team:
436
437 * Alexander Gabert
438 * Andrew Bevitt (temporary leave)
439
440 Adds
441 ----
442
443 The following developers recently joined the Gentoo Linux team:
444
445 * Stefano Rossi (so) - Documentation
446 * Andreas Pokorny (DieMumiee) - AMD64
447 * Shigehiro Idani (idani) - Japanese translation
448
449 Changes
450 -------
451
452 The following developers recently changed roles within the Gentoo Linux
453 project:
454
455 * Chris Gianelloni (wolf31o2) - Changed from Release Engineering
456 Operational to Strategic Lead
457 * Tim Yamin (plasmaroo) - New Release Engineering Operational Lead
458
459 ====================
460 9. Contribute to GWN
461 ====================
462
463 Interested in contributing to the Gentoo Weekly Newsletter? Send us an
464 email[63].
465 63. gwn-feedback@g.o
466
467 ================
468 10. GWN feedback
469 ================
470
471 Please send us your feedback[64] and help make the GWN better.
472 64. gwn-feedback@g.o
473
474 ================================
475 11. GWN subscription information
476 ================================
477
478 To subscribe to the Gentoo Weekly Newsletter, send a blank email to
479 gentoo-gwn-subscribe@g.o.
480
481 To unsubscribe to the Gentoo Weekly Newsletter, send a blank email to
482 gentoo-gwn-unsubscribe@g.o from the email address you are
483 subscribed under.
484
485 ===================
486 12. Other languages
487 ===================
488
489 The Gentoo Weekly Newsletter is also available in the following languages:
490
491 * Danish[65]
492 * Dutch[66]
493 * English[67]
494 * German[68]
495 * French[69]
496 * Japanese[70]
497 * Italian[71]
498 * Polish[72]
499 * Portuguese (Brazil)[73]
500 * Portuguese (Portugal)[74]
501 * Russian[75]
502 * Spanish[76]
503 * Turkish[77]
504 65. http://www.gentoo.org/news/da/gwn/gwn.xml
505 66. http://www.gentoo.org/news/nl/gwn/gwn.xml
506 67. http://www.gentoo.org/news/en/gwn/gwn.xml
507 68. http://www.gentoo.org/news/de/gwn/gwn.xml
508 69. http://www.gentoo.org/news/fr/gwn/gwn.xml
509 70. http://www.gentoo.org/news/ja/gwn/gwn.xml
510 71. http://www.gentoo.org/news/it/gwn/gwn.xml
511 72. http://www.gentoo.org/news/pl/gwn/gwn.xml
512 73. http://www.gentoo.org/news/pt_br/gwn/gwn.xml
513 74. http://www.gentoo.org/news/pt/gwn/gwn.xml
514 75. http://www.gentoo.org/news/ru/gwn/gwn.xml
515 76. http://www.gentoo.org/news/es/gwn/gwn.xml
516 77. http://www.gentoo.org/news/tr/gwn/gwn.xml
517
518 Ulrich Plate <plate@g.o> - Editor
519 Stephen Bennett <spb@g.o> - Author
520 Dylan Carlson <absinthe@g.o> - Author
521 Patrick Lauer <patrick@g.o> - Author
522 Otavio R. Piske <angusyoung@g.o> - Author
523
524 --
525 gentoo-gwn@g.o mailing list
Report Message
Find on MARC Find on Google Groups