Debian Bug report logs - #435433
drupal5: settings.php not upgraded with 5.2

Toggle useless messages

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Dave Allen Barker Jr <email@1.0ne.org>

To: Debian Bug Tracking System <submit@bugs.debian.org>

Subject: drupal5: settings.php not upgraded with 5.2

Date: Tue, 31 Jul 2007 13:56:41 -0400

Package: drupal5
Version: 5.2-1
Severity: grave
Tags: security
Justification: user security hole

The settings.php (/etc/drupal/5/sites/default/settings.php) provided in
the Debian Drupal 5.2 package is not up to date (CVS version 1.27 vs.
1.39.2.3 in the Drupal 5.2 tarball from Drupal).  Because this file is
part of the 5.2 security update (see the "Important note" at
<http://drupal.org/drupal-5.2>), I marked this bug as serious.

-- System Information:
Debian Release: lenny/sid
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: i386 (i686)

Kernel: Linux 2.6.18-4-k7 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages drupal5 depends on:
ii  apache2                       2.2.3-5    Next generation, scalable, extenda
ii  apache2-mpm-prefork [httpd]   2.2.3-5    Traditional model for Apache HTTPD
ii  curl                          7.16.4-1   Get a file from an HTTP, HTTPS or 
ii  dbconfig-common               1.8.35     common framework for packaging dat
ii  debconf                       1.5.13     Debian configuration management sy
ii  exim4                         4.67-7     meta-package to ease Exim MTA (v4)
ii  exim4-daemon-light [mail-tran 4.67-7     lightweight Exim MTA (v4) daemon
ii  mysql-client-5.0 [mysql-clien 5.0.45-1   MySQL database client binaries
ii  php5                          5.2.3-1    server-side, HTML-embedded scripti
ii  php5-gd                       5.2.3-1+b1 GD module for php5
ii  php5-mysql                    5.2.3-1+b1 MySQL module for php5
ii  wwwconfig-common              0.0.48     Debian web auto configuration

Versions of packages drupal5 recommends:
ii  mysql-server                  5.0.45-1   MySQL database server (meta packag
ii  mysql-server-5.0 [mysql-serve 5.0.45-1   MySQL database server binaries

-- debconf information:
  drupal5/pgsql/changeconf: false
* drupal5/db/app-user: drupal5
  drupal5/pgsql/authmethod-admin: ident
* drupal5/mysql/admin-user: root
* drupal5/webserver: apache2
* drupal5/mysql/method: unix socket
  drupal5/install-error: abort
  drupal5/passwords-do-not-match:
* drupal5/database-type: mysql
  drupal5/pgsql/method: unix socket
  drupal5/upgrade-backup: true
  drupal5/dbconfig-reinstall: false
  drupal5/pgsql/admin-user: postgres
  drupal5/internal/reconfiguring: false
  drupal5/remote/host:
  drupal5/dbconfig-remove:
  drupal5/db/basepath:
* drupal5/dbconfig-install: true
  drupal5/internal/skip-preseed: false
  drupal5/pgsql/manualconf:
  drupal5/pgsql/no-empty-passwords:
  drupal5/pgsql/authmethod-user:
  drupal5/remote/newhost:
  drupal5/dbconfig-upgrade: true
  drupal5/remove-error: abort
  drupal5/purge: false
* drupal5/db/dbname: drupal5
  drupal5/missing-db-package-error: abort
  drupal5/upgrade-error: abort
  drupal5/remote/port:

Message #10 received at 435433-close@bugs.debian.org (full text, mbox, reply):

From: Luigi Gangitano <luigi@debian.org>

To: 435433-close@bugs.debian.org

Subject: Bug#435433: fixed in drupal5 5.2-2

Date: Thu, 23 Aug 2007 14:02:03 +0000

Source: drupal5
Source-Version: 5.2-2

We believe that the bug you reported is fixed in the latest version of
drupal5, which is due to be installed in the Debian FTP archive:

drupal5_5.2-2.diff.gz
  to pool/main/d/drupal5/drupal5_5.2-2.diff.gz
drupal5_5.2-2.dsc
  to pool/main/d/drupal5/drupal5_5.2-2.dsc
drupal5_5.2-2_all.deb
  to pool/main/d/drupal5/drupal5_5.2-2_all.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 435433@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Luigi Gangitano <luigi@debian.org> (supplier of updated drupal5 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Fri, 27 Jul 2007 02:12:20 +0200
Source: drupal5
Binary: drupal5
Architecture: source all
Version: 5.2-2
Distribution: unstable
Urgency: low
Maintainer: Luigi Gangitano <luigi@debian.org>
Changed-By: Luigi Gangitano <luigi@debian.org>
Description: 
 drupal5    - a fully-featured content management framework
Closes: 435433
Changes: 
 drupal5 (5.2-2) unstable; urgency=low
 .
   * debian/README.Debian
     - Fixed references to configuration directory
 .
   * debian/etc/settings.php
     - Apply fixes from upstream version (Closes: #435433)
Files: 
 bc3e0ad7883e3073e05ba6da0ec4cc17 700 web extra drupal5_5.2-2.dsc
 70054fc013075588eaff38a2398718bc 24971 web extra drupal5_5.2-2.diff.gz
 4ee4d0a72cff57c7ac96d5a859b5b384 768282 web extra drupal5_5.2-2_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFGzY9Y8ZumGJJMDCYRAoAWAJ48hzSvDnmESQvSQj53mgXo7PuQSACffcsK
gZJaszL+U1+R5cE4pb2xaK0=
=l+vM
-----END PGP SIGNATURE-----

Send a report that this bug log contains spam.