[00:00] is DD the best way to backup an image of a live server? [00:22] RomanaMentalis: not, it isnt [00:23] dd will copy used and unused data blocks, so if you have a 100GB partition with only 10G usage, you willl backup the whole 100G, even when the remaining 90G are empy [00:26] and I dont recommend to backup a partition on a live server, you can get inconsistent data [00:26] * jmedina loves LVM snapshots [00:28] jmedina - let's say I have to backup a live server (because I need backups in case it goes down) what is the best thing to do? [00:31] RomanaMentalis: I would open a mainteinance window, shutdown the server and then make the images [00:31] I like clonezilla to do it === BlueT__ is now known as BlueT_ [01:35] ScottK: http://paste.ubuntu.com/79576/ [01:42] New bug: #304623 in openssh (main) "ssh client disconnected after successful login" [Undecided,New] https://launchpad.net/bugs/304623 [01:47] anyone know how to compile rtorrent & xml-rpc-c? i'm trying to use the advanced branch so the xml-rpc calls are proper (ie for torrents larger than 4gb.) [01:53] leonel: Looking [01:54] leonel: I know virtually nothing about C, so I'm not the right guy to ask. I'd suggest use the Debian version and mention it in the bug when you upload the debdiff. If the security team wants to adjust it, they can. [01:55] this is because if you not use { } only the next statement is executed so [01:56] if we go with debian only the close(s) will be executed if the if is true [02:03] leonel: OK. Then I'd say do it right. [02:03] Leonel, we should discuss it with Debian too. [02:03] ScottK: what channel ? [02:04] leonel: OFTC #debian-clamav [02:04] moving [02:14] leonel: yeah, that original patch isn't right -- it needs the {}s if the indenting is to be believed. :) [02:16] how do turn on journaled quota ? [02:16] ScottK: kees looking at the trunk code for clamav http://svn.clamav.net/websvn/filedetails.php?repname=clamav-devel&path=%2Ftrunk%2Flibclamav%2Fothers.c&rev=0&sc=0 [02:16] has the {} [02:17] Then go with it. [02:17] leonel: I'd paste that on #debian-clamav too. [02:17] ok [02:17] patching .. [02:18] kirkland: I can't run bogosec on a dsc file? [02:18] kees: you should be able to ... i tested that ... [02:19] kees: do you have dpkg-source ? [02:19] bogosec /var/cache/debmirror/pool/universe/c/ciso/ciso_1.0.0-0ubuntu1.dsc [02:19] Error: unable to extract /var/cache/debmirror/pool/universe/c/ciso/ciso_1.0.0-0ubuntu1.dsc [02:21] kees: oh, i think it needs the rest of the source stuff too [02:21] kees: the orig tarball and such [02:21] hrm, no, it need write access to the current directory? [02:21] cd / [02:21] *fails* [02:22] hmm, I installed linux-source-2.6.27, but it's nowhere close to the source of the binary kernel that I'm running [02:22] I'm using 8.10 intrepid ibex server edition, and I need the exact source of the running kernel for some telephony drivers to compile and insert into the running kernel correctly [02:22] kees: ah, sure enough [02:22] kees: okay, i can fix that [02:23] 2.6.27-9 is the binary kernel i'm running, but the source from apt-get is 2.6.27.2 [02:23] any ideas? [02:23] x86: you want just "linux" [02:23] (for the source) [02:24] for headers, just install linux-headers [02:24] kirkland: what do you suggest for doing bogosec data storage and graphing? [02:25] x86: Do you have deb-src lines for intrepid-security and intrepid-updates in /etc/apt/sources.list? [02:26] kees: the graphs i generated http://www-128.ibm.com/developerworks/linux/library/l-bogosec.html?ca=dgr-lnxw02BogoSec were from OpenOffice Calc [02:26] kees: i wrote various wrapper scripts to write out space-delimitted output files [02:26] kees: and then just imported those into OO.o [02:27] kirkland: okay, so you parsed the bogosec output? [02:28] kees: see if /usr/bin/bogosec_wrapper gets you closer to what you want [02:28] ScottK: yes [02:28] kees: cat the file [02:28] anyone know how to compile xml-rpc-c advanced into rtorrent? i'm getting an error when compiling rtorrent. [02:28] x86: No idea then. [02:29] kees: i haven't run that wrapper in *ages* [02:29] kees: "linux" looks like all kinds of images (binary) [02:29] kees: but that's more or less what we used to run on RedHat/SUSE iso's [02:29] kees: patches welcome ;-) [02:30] kees: http://pastebin.ca/1274501 [02:30] ScottK: hmm [02:30] ScottK: what's the apt-get package name? [02:30] ScottK: linux-source right? [02:30] I think so. [02:30] ScottK: do you have a .deb I could grab of it? [02:31] I thought you wanted the source? [02:32] x86: if you want the source, use "apt-get source linux" [02:32] x86: if you want headers so you can compile out-of-tree stuff, use "apt-get install linux-headers" [02:32] apt-get source eh? cool [02:33] x86: you may want to spend some time here, too: https://wiki.ubuntu.com/KernelTeam/KnowledgeBase [02:33] kees: does that help at all? [02:34] kirkland: yawp, I'm going to run to get some runs running tonight. :) [02:34] kees: nice, i've been meaning to do that myself, but haven't had any time :-/ [02:39] kees: that's linux-meta? [02:40] kees: it doesn't add a source tree in /usr/src for sure... [02:40] (it's only a few KB, not the ~20-30MB of a kernel source tree either) [02:40] x86: Apt-get source downloads to your current dir. [02:40] ah! [02:40] wait [02:40] i was in /usr/src when I ran it [02:41] Did the user you ran it as have write permission there? [02:41] there is a /usr/src/linux-meta-2.6.7.9.13 (which I think is the correct version of my kernel) [02:41] ScottK: root :) [02:41] OK. Just checking. [02:42] and no source in the linux-meta directory [02:43] kees: any other ideas? [02:44] aha! [02:44] apt-get source linux-image-2.6.27-9-server [02:45] w00t :) [02:45] thanks guys [02:52] ok, that installed version 2.6.27.2 somehow [02:52] NOT 2.6.27-9... WTF [02:52] man this sucks :( [02:52] almost tempted to go back to gentoo :( [02:53] leonel: Did you determine if 0.92.1 is vulnerable to the jpeg recursion issue fixed in 0.94.2? [02:54] x86: I believe I have seen (but don't recall exactly where) a good page on rolling your own kernel on wiki.ubuntu.com. [02:54] i don't want to roll my own [02:54] I just need the damn source tree for the stock kernel i'm running! [02:55] ScottK: I can try an exploit but I guess it is since the changes from trunk to 0.92.1 applies fine [02:55] x86: Right, but then aren't you going to compile it? [02:55] IIRC it talks about getting the right source. [02:55] leonel: OK. It's probably there then. [02:55] apt-get install linux-source [02:56] jmedina: good one... [02:56] jmedina: if that worked I would have never come here in the first place ;) [02:56] :D [02:56] which kernel? [02:56] jmedina: I'm running 2.6.27-9-server, and apt-get install linux-source keeps grabbing 2.6.27.2 [02:57] ScottK: no, not going to compile it [02:57] ScottK: i'm going to compile modules for it [02:57] I see. [02:57] ScottK: which require you compile against the same kernel source tree as the kernel you're running [02:57] Right. [02:58] afaik you only need kernel-headers to compile modules not the whole source [03:04] x86: http://packages.ubuntu.com/intrepid/linux-image-2.6.27-9-server [03:04] there is a link to the source package [03:05] I hink -9-server is the ubuntu EXTRAVERSION [03:06] it is the release part, or the ninth comile for 2.6.27.2 [03:07] jmedina: problem is that it doesn't specify that in the config file [03:07] http://packages.ubuntu.com/intrepid/all/linux-source-2.6.27/download [03:07] the package is [03:07] http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-source-2.6.27_2.6.27-9.19_all.deb [03:08] i.e. make menuconfig says "2.6.27.2" at the top, not "2.6.27-9-server" like uname -r says [03:08] and when i try to compile my modules against it, it says "invalid module format" [03:08] x86: is that .deb the same you downloaded from apt? [03:09] don't think so, checking it out now [03:09] not sure what the .19 is all about... [03:09] the debian release [03:09] no, this .deb is 10MB smaller than the one apt-get got [03:10] looks promising... still downloading though [03:10] it is not the a vanilla kernel, probably with some debian patches [03:11] ... [03:11] is it the stock intrepid ibex source tree? [03:12] not sure, never used intrepid :D [03:13] but the package page http://packages.ubuntu.com/intrepid/linux-image-2.6.27-9-server says the source package is: the las link I sent you [03:13] Actually our kernel packages are unrelated to Debian's. [03:13] x86: You may have more luck in #ubuntu-kernel. [03:14] ScottK: maybe I misunderstood this message [03:14] Original Maintainer (usually from Debian): [03:15] I'm not sure what it is for kernel packages. I know we do our own separate from Debian. [03:15] jmedina: seems that .deb file only contained the vanilla .tar.bz2 tarball of 2.6.27 [03:15] * x86 shakes fist [03:16] x86: yes but also de diffs [03:16] the difss :D [03:17] inside the tarball? [03:17] nop [03:18] then no, does not include diffs [03:19] yeah what you just gave me is again 2.6.27.2 [03:20] this is beyond nuts... I'm going to install gentoo again methinks [03:20] x86: Kernel packages are different. Which is why none of us really can help you. [03:20] x86: I'd suggest try #ubuntu-kernel during the US/European work day. [03:20] i'm asking in #ubuntu-kernel, and no answers yet [03:21] that's not possible for me [03:21] It tends to be pretty dead this time of day. [03:21] i work during the day, with no IRC access [03:21] That spread covers about 16 hours. [03:22] unfortunately none of that is now ;) [03:25] Yes. Maybe you'll get lucky. [03:27] x86: https://wiki.ubuntu.com/KernelTeam/KnowledgeBase under "User info" is how to build custom kernels, etc. [03:27] x86, have you tried the freenode java webchat? [03:27] x86: what are you trying to get? [03:28] there is a lot of web interfaces for freenode :D, for those who are restricted [03:29] x86: you want to compile modules against the _headers_ package, not the full source. [03:29] apt-get install linux-headers-server [03:29] x86: have you tried http://java.freenode.net/ [03:29] (but as mentioned earlier, #ubuntu-kernel is the best place for this) [03:30] a ssh tunnel to your home :D [03:36] x86: what is your timezone? [03:37] i use to use CGI::IRC [03:37] there is always one open [04:18] Hi there. Anyone awake who might be able to help me with a (hopefully simple) MySQL problem? [04:18] It quit working out of the blue (not sure what happened) but its throwing me this error and won't start the daemon: [04:18] Dec 2 22:15:30 eliza mysqld[20924]: 081202 22:15:30 [ERROR] Fatal error: Can't open and lock privilege tables: Table 'mysql.host' doesn't exist [04:19] I just want to get it running so I can back up a certain database then Im going to reinstall the OS. It's an ancient install. [04:50] nilson: the data you want to back up is on this server or you want to use this server to back up to? === lamont` is now known as lamont [05:24] ropetin, well the data wasnt that important... I went ahead and wiped the server already [05:26] 7 [05:28] kirkland: $ /home/kees/bin/bogosec-run intrepid/main [05:28] * kees rubs his hands together [05:28] kees: :-) [05:28] kees: your own cooked wrapper? [05:29] kirkland: http://pastebin.osuosl.org/22745 [05:29] kees: neat [05:29] and this is bogosec-single: http://pastebin.osuosl.org/22746 [05:30] kees: ah, cool [05:30] it's not really accurate since a correct source check would see the patched source, but then lintian won't scan it right any more. [05:30] kees: i'll fix the "cd /tmp" problem :-/ sorry about that [05:30] * kirkland blows the dust off of bogosec [05:30] kirkland: no problemo :) [05:31] kees: very true to your last point [05:31] I'm enjoying the xargs -P4 part. ;) [05:31] :-) [05:31] kees: is there a regular method i could use to apply all patches? [05:31] kees: by running ./debian/rules $FOO ? [05:31] once this runs, I'll try with just lintian on the dsc, and then do a manual unpack+"u-patch" and run the other plugins on the unpacked&patched tree [05:32] kirkland: there is no "regular" way, but I wrote a script that tries its best: http://pastebin.osuosl.org/22747 [05:33] kees: :-) that's fuzzy [05:33] deeeeply [05:33] works nearly all the time, though. [05:33] kees: wow [05:33] as no surprise, OO.o doesn't. [05:33] :-) [05:33] so i'm trying to recover from a *very* boneheaded mistake i made earlier tonight .... [05:34] uh-oh... [05:34] i was trying to backup my /etc dir off of my main home server [05:34] and i screwed up the rsync [05:34] * kees starts to cringe [05:34] and sync'd another machine's /etc to my /etc [05:34] owwww [05:34] D'oh [05:34] yeeeeaaaaahhhh [05:34] Restore from backup? :) [05:34] it's too late tonight to solve this, i think [05:35] yay Debian system-id-#s-are-based-on-installation-order [05:35] hads: right, that's what i would normally do [05:35] hads: unfortuanately, i backed up that b0rken /etc to my backup server, before i noticed :-o [05:36] so, i'm going to take advantage of this "opportunity" [05:36] kirkland: while this doesn't save you at all in this situation, I use "dirvish" to maintain a week's worth of backups without using extra disk space (hardlink trees) [05:36] kees: nice... i think i'm going to try etckeeper [05:36] I use rdiff-backup for something similar. [05:37] that helps too [05:37] i'm also going to try and eat some dogfood [05:37] hads: yeah, I've wanted to try rdiff-backup to be able to compare it to dirvish (I've only ever used dirvish) [05:37] i'm moving all of my services to a couple of VM's [05:38] but that requires bridged networking, which I'm presently strugginling with [05:38] anyway, those are problems to be solved on the morrow [05:39] The only thing I'd like rdiff-backup to do is delete specific revisions, I believe you can only delete before a certain point. [05:47] kirkland: well... here's seeing if I can fill 9G of drive space with bogosec logs from intrepid/main... /me goes to sleep === roaksoax is now known as RoAk === RoAk is now known as RoAkSoAx [06:46] hello mdz [06:46] hi [07:59] moin [09:50] hello..... [09:52] somebody already has this problem ???? http://pastebin.com/m94dc023 [09:53] what problem? [09:58] Kamping_Kaiser, I change the arp address to host [09:58] and I would "dont ping it".... right ? [09:58] i dont see why. espeically if its the same host. [09:59] arp -s 192.168.1.186 0 [09:59] this would block the host.... [10:00] I'm in my gateway ..... (192.168.1.1) and I execute arp -s 192.168.1.186 0 ..... [10:00] I would like know why this isn't working to me :/ [10:01] For the Ethernet class, this is 6 bytes in hexadecimal, separated by [10:01] colons. [10:01] This is not good practice, but is supported by older kernels because it [10:01] can be useful. [10:02] sounds like its A. wrong format, and B, not supported now. [10:03] Kamping_Kaiser, ok ok.... I already make this..... [10:03] arp -s 192.168.1.186 00:00:00:00:00:00 [10:04] both commands set the arp entry [10:05] Kamping_Kaiser, see http://pastebin.com/m39dbaa3e [10:43] I wonder - where can I find info on how to change the default umasks for logs created by sysklogd? Please inform me if this is off-topic. [10:48] Kamping_Kaiser, idea ? [10:49] ccesario, i suspect its no longer suppoted, but i dont know [10:50] Kamping_Kaiser, what isnt supported ? the MAC control ? or arp command ? [10:50] ccesario, -s [10:51] arp -s address hw_addr is used to set up a new table entry. ......... [11:46] hiho [11:47] i'm searching now since a while, i'm looking for the include path declaration for PHP5, but in the php.ini the include_path is commented, so it must be somewhere else, but where? [11:48] does phpinfo() tell you? [11:50] phpinfo tells me only the include_path itself, but not where it is declared [11:51] i'm guessing its compiled [11:52] well, then i'll change it in the php.ini... [12:38] hi all [12:38] is there any easy way to install nagios3 in my ubuntu server [12:38] i'm using ubuntu server 8.04 [12:39] i already try using sudo apt-get install nagios3, but not working at all.. [12:39] cannot find any package [12:39] any suggestion?? [12:42] use nagios2? :) [12:43] why??? i like to try the new one [12:45] because only nagios2 is packaged for hardy ;) [12:45] and sticking to packages is usually wise :) [12:53] SpunkMeYeR: upgrade your server to 8.10 [12:57] One can have stable and tested. One can have the latest and greatest. Wanting both is common. Getting it is very rare. [13:01] ok [13:02] how do i check my ubuntu server version ?? [13:03] lsb_release -a [13:04] SpunkMeYeR: you can always backport [13:05] i'm trying to upgrade my ubuntu server from 8.04 to 8.10 [13:05] i'm using this command : sudo do-release-upgrade [13:06] but it cannot find new release [13:06] any other option how to upgrade? [13:07] read the instructions on the website, you need to modify the cfg to allow upgrades to non-LTS releases [13:07] thanks Deeps [15:28] hi all [15:28] i have a problem with !one! slave zone. Inside my daemon.log bind tells me: dumping master file: slave/tmp-lOJ5h86YdJ: open: file not found === liberfiasco is now known as liberpissedoff === liberpissedoff is now known as libervisco [16:29] milestone: do you have in your zones folder for this particular zone a .jnl (or similar) file? [17:03] I'm having an issue getting SugarCRM to communicate with my MySQL database -- says that either the username/pass are wrong or that it cannot connect to the server. Does anyone have an idea what to do? [17:06] Oh, and I'm running server 8.10 (i386) with kernel 2.6.26-7-server SMP. [17:09] Hi! could anybody get ldap authentication work in server 8.10? [17:09] merula: I would first look in the logs for any detail. [17:10] I get stucked here: auth-client-config -a -p lac_ldap [17:10] kmarc_: ldap authentication in what environment? I've got my server running in active directory. [17:10] zoopster1: alright -- the logs should be under /var, right? [17:11] merula: ok, I have got a hypervisor minimal system, set up openldap, and inside this system I have my other server, which users I would like to get authenticated from the hypervisors ldap server [17:12] both os's are ubuntu 8.10 [17:12] kmarc_: hmm. I am out of my depth on that. Anybody else have an idea? [17:12] merula: /var/log [17:12] zoopster1: just found it. ^_^ Thanks. [17:13] it seems that modssl is buggy in hardy... damn that's bad :'( [17:13] zoopster1: I have nothing in the mysql.log [17:14] OK, now if I try auth-client-config -a -p ldap_example, it seems to work [17:14] is his the proper way? [17:15] kmarc_: I honestly don't know -- I haven't bothered configuring LDAP - I just used the automatic AD client (likewise-open-gui) [17:16] merula: nevermind, thanks for answering [17:16] kmarc_: not a problem. [17:18] hah. I fixedi t. [17:19] fixed it* -- I just changed the hostname to 127.0.0.1 and it processed. [17:22] merula: yes...if both are on the same box...use localhost === zoopster1 is now known as zoopster [17:23] zoopster: yeah, it worked fine [17:25] merula: cool. [17:28] kmarc_: intrepid or hardy? [17:28] 8.10, it;s intrepid [17:32] kmarc_: yes...look here - https://launchpad.net/auth-client-config [17:33] hmm... this web page either doesn't contain the word 'ldap' [17:45] OK, now it seems working, I'am a bit confused about that ldap_example vs. lac_ldap problem [17:45] does anybody know what they mean? [17:51] Hey guys. I was having issues with my server yesterday - it was becoming unresponsive for no reason, with no output to screen etc. I tried a fresh install last night, and it worked for quite a while, but then failed again, this time with errors on screen: "xxxxxxx end_request: I/O error, dev sda, sector xxxxxxx", with x being numerical [17:57] shoot^: It's -very- likely that's a drive fault. [17:58] gammy, ah. When I ran smartctl no issues showed up... but I shall try that again [17:59] shoot^: it could also be a controller or wiring problem [17:59] gammy, Google turns up a load of info on 'irqpoll' fixes... would you know anything about that? [17:59] shoot^: if I were you I'd remove the drive and perform more tests. [17:59] gammy, more tests on a different box? [17:59] shoot^: your error message is very very commonly a real fault resulting in data loss [18:00] shoot^: well, I'd take that drive out of production use and replace it with a new one [18:01] gammy, aye... sounds like the most simple fix [18:01] gammy, I'll have to wait until payday for that though :-/ [18:01] shoot^: I am assuming that loss of data is the most important thing here. [18:02] gammy, in the short term, i'll do a backup [18:02] and try the irqpoll fix? [18:02] I don't see how this is related to irqpoll [18:04] Since no-one in #apache seems to know: Any way to direct Listen eth0:*:80 in /etc/apache2/ports.conf or similar? I'd like apache2 to listen on multiple IP not on same ranges which are attached to aliases of an adapter. [18:05] can't you put several listen genii ? [18:05] I have Listen 80 and Listen 443 :) [18:06] gammy, http://backports.ubuntuforums.com/showthread.php?p=6015745 [18:08] shoot^: do you get this DID_BAD_TARGET crap? [18:08] shoot^: or do you only see the message you posted here? [18:08] genii: I think the default is "Listen 80" in /etc/apache2/ports.conf and that should listen on *all* IPs on port 80... I don't know of a way to restrict by interface name. [18:09] gammy, only the error i mentioned above. I haven't posted in that thread... [18:10] shoot^: Mm. I don't think it's related. [18:11] shoot^: that message you get is almost always bad news. [18:11] jmarsden: Since you can also do like: Listen 10.0.0.10:80 syntax, figured there might be some way [18:11] shoot^: And it's extremely indicative of drive failure. [18:11] jmarsden|work: ^ [18:11] gammy, ok... poo :-( [18:12] shoot^: it *can* be other things, but that message is pretty clear though :). [18:28] hello all [18:30] Can you help me plz : I have config my server with ip fxe. But when i have ping other computer ==> Destination host unreachable [18:31] ScottK: Al last we got pbuilder finished those bugss .. [18:31] ScottK: testing [18:31] badboys: what you mean with "ip fxe"? [18:32] ip static excuse me :D [18:33] badboys: is there any new message in "dmesg"? [18:33] is this another machine in the same LAN/segment? [18:33] can you ping your own ip? [18:33] leonel: Did you see the discussion on pkg-clamav ml about CVE-2008-1389. Was that one we covered? [18:33] ScottK: libclamav/chmunpack.c in the chm-parser in ClamAV before 0.94 allows remote attackers to cause a denial of service (application crash) via a malformed CHM file, related to an "invalid memory access." (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1389) [18:33] do you already have link? try ethtool eth0 and look at the last line [18:34] ScottK: bug #271546 [18:34] leonel: sgran confirmed you were right about the {}, btw. Good catch. [18:34] I Can't ping other computer [18:34] Launchpad bug 271546 in clamav "[hardy] Multiple unfixed CVEs" [Undecided,New] https://launchpad.net/bugs/271546 [18:34] * ScottK looks [18:34] It's msg who i have hen i want ping other computer [18:35] leonel: Debian is going to include the patch in their next update for Etch. I think we ought to include it too. [18:36] ScottK: ok when will it be ?? I have ready the patch for those cves and the new recursion bug [18:36] leonel: They are discussing it last night and today on pkg-clamav ML. That's all I really know. [18:36] ok [18:37] leonel: Please give me a debdiff or a link to a .dsc for Hardy and I'll test. [18:37] so do you recommend to wait or roll the patches I have [18:37] ok [18:37] Do you have CVE-2008-1389 [18:37] ScottK: libclamav/chmunpack.c in the chm-parser in ClamAV before 0.94 allows remote attackers to cause a denial of service (application crash) via a malformed CHM file, related to an "invalid memory access." (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1389) [18:38] leonel: If you don't, clamav svn commit 3749 has the patch. [18:39] I don't make that patch because I've tested one file for the test case and the ubuntu version we have didn't crash [18:39] ScottK: let me take a look and include [18:40] leonel: Thanks. I really appreciate all the hard work you're putting in on this. [18:40] ScottK: sorry for the delay suddenly and gracefull I got a bunch of new work that's why I took this time to fix this .. [18:40] now let's back on track [18:52] ScottK: for clamav but 1089 I've found this : http://svn.clamav.net/websvn/diff.php?repname=clamav-devel&path=%2Ftrunk%2Flibclamav%2Fchmunpack.c&rev=4157&sc=1 [18:52] ScottK: wich is CVE-2008-1389 [18:52] leonel: libclamav/chmunpack.c in the chm-parser in ClamAV before 0.94 allows remote attackers to cause a denial of service (application crash) via a malformed CHM file, related to an "invalid memory access." (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1389) [18:57] * ScottK looks [18:57] http://int21.de/cve/CVE-2008-1389-clamav-chd.html <-- there are the samples I've tested and Just did it again and no error shown [18:57] leonel: libclamav/chmunpack.c in the chm-parser in ClamAV before 0.94 allows remote attackers to cause a denial of service (application crash) via a malformed CHM file, related to an "invalid memory access." (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1389) [19:02] leonel: That should be it. It corresponds to clamav bug 1089 in the svn log. [19:02] Launchpad bug 1089 in turck-mmcache "Doesn't install apache2/php config" [Medium,Fix released] https://launchpad.net/bugs/1089 [19:03] soren: Could you teach uvirtbot about the clamav bugzilla? [19:04] ScottK: even if we are not affected do you think the patch must be done ?? [19:05] leonel: I think yes. I think it's low/no risk and so maybe that particular PoC exploit didn't trigger it, but why leave the hole open for maybe a slightly different one. [19:05] ok [19:06] leonel: Also it's easier to sell "yes, it's fixed" than "we didn't need to fix it because it's not a problem" when people ask. [19:06] working on it [19:06] good point [19:07] ScottK: we got cve assigned CVE-2008-5314 [19:07] For which? [19:07] the jpeg recursion [19:07] Ah. [19:17] ScottK: for chmunpack.c only found the 1st change the second I can't find where to edit [19:23] ScottK: I'll check with debian what they did [19:36] <|turuburu|> v [19:50] marc-andre i am going to double check that [20:02]