Your message dated Mon, 24 Feb 2020 00:49:53 +0000
with message-id <e1j61wx-0007mg...@fasolo.debian.org>
and subject line Bug#897855: fixed in sarg 2.4.0-1
has caused the Debian Bug report #897855,
regarding sarg: ftbfs with GCC-8
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
897855: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=897855
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: src:sarg
Version: 2.3.11-1
Severity: normal
Tags: sid buster
User: debian-...@lists.debian.org
Usertags: ftbfs-gcc-8
Please keep this issue open in the bug tracker for the package it
was filed for. If a fix in another package is required, please
file a bug for the other package (or clone), and add a block in this
package. Please keep the issue open until the package can be built in
a follow-up test rebuild.
The package fails to build in a test rebuild on at least amd64 with
gcc-8/g++-8, but succeeds to build with gcc-7/g++-7. The
severity of this report will be raised before the buster release.
The full build log can be found at:
http://aws-logs.debian.net/2018/05/01/gcc8/sarg_2.3.11-1_unstable_gcc8.log.gz
The last lines of the build log are at the end of this report.
To build with GCC 8, either set CC=gcc-8 CXX=g++-8 explicitly,
or install the gcc, g++, gfortran, ... packages from experimental.
apt-get -t=experimental install g++
Common build failures are new warnings resulting in build failures with
-Werror turned on, or new/dropped symbols in Debian symbols files.
For other C/C++ related build failures see the porting guide at
http://gcc.gnu.org/gcc-8/porting_to.html
[...]
return __builtin___snprintf_chk (__s, __n, __USE_FORTIFY_LEVEL - 1,
^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
__bos (__s), __fmt, __va_arg_pack ());
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
util.c:980:49: error: '—' directive output may be truncated writing 7
bytes into a region of size between 1 and 40 [-Werror=format-truncation=]
snprintf(period->html,sizeof(period->html),"%s—%s",text1,text2);
^~~~~~~
In file included from /usr/include/stdio.h:862,
from include/conf.h:9,
from util.c:30:
/usr/include/x86_64-linux-gnu/bits/stdio2.h:64:10: note:
'__builtin___snprintf_chk' output between 8 and 86 bytes into a destination of
size 40
return __builtin___snprintf_chk (__s, __n, __USE_FORTIFY_LEVEL - 1,
^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
__bos (__s), __fmt, __va_arg_pack ());
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
util.c: In function 'vrfydir':
util.c:1151:23: error: '%d' directive writing between 1 and 10 bytes into a
region of size between 0 and 19999 [-Werror=format-overflow=]
sprintf(wdir,"%s.%d",dirname2,num);
^~
util.c:1151:19: note: directive argument in the range [1, 2147483647]
sprintf(wdir,"%s.%d",dirname2,num);
^~~~~~~
In file included from /usr/include/stdio.h:862,
from include/conf.h:9,
from util.c:30:
/usr/include/x86_64-linux-gnu/bits/stdio2.h:33:10: note:
'__builtin___sprintf_chk' output between 3 and 20011 bytes into a destination
of size 20000
return __builtin___sprintf_chk (__s, __USE_FORTIFY_LEVEL - 1,
^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
__bos (__s), __fmt, __va_arg_pack ());
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
util.c:1128:23: error: '%d' directive writing between 1 and 10 bytes into a
region of size between 0 and 19999 [-Werror=format-overflow=]
sprintf(wdir,"%s.%d",outdirname,num);
^~
util.c:1128:19: note: directive argument in the range [1, 2147483647]
sprintf(wdir,"%s.%d",outdirname,num);
^~~~~~~
In file included from /usr/include/stdio.h:862,
from include/conf.h:9,
from util.c:30:
/usr/include/x86_64-linux-gnu/bits/stdio2.h:33:10: note:
'__builtin___sprintf_chk' output between 3 and 20011 bytes into a destination
of size 20000
return __builtin___sprintf_chk (__s, __USE_FORTIFY_LEVEL - 1,
^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
__bos (__s), __fmt, __va_arg_pack ());
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
cc1: some warnings being treated as errors
make[1]: *** [Makefile:55: util.o] Error 1
make[1]: Leaving directory '/<<PKGBUILDDIR>>'
dh_auto_build: make -j1 returned exit code 2
make: *** [debian/rules:17: build-arch] Error 2
dpkg-buildpackage: error: debian/rules build-arch subprocess returned exit
status 2
--- End Message ---
--- Begin Message ---
Source: sarg
Source-Version: 2.4.0-1
Done: Luigi Gangitano <lu...@debian.org>
We believe that the bug you reported is fixed in the latest version of
sarg, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 897...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Luigi Gangitano <lu...@debian.org> (supplier of updated sarg package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 24 Feb 2020 00:27:10 +0100
Source: sarg
Architecture: source
Version: 2.4.0-1
Distribution: unstable
Urgency: medium
Maintainer: Luigi Gangitano <lu...@debian.org>
Changed-By: Luigi Gangitano <lu...@debian.org>
Closes: 897855 940124 951390
Changes:
sarg (2.4.0-1) unstable; urgency=medium
.
* New upstream version 2.4.0
- Fixes local privilege escalation vulnerability (Closes: #951390)
(Ref: CVE-2019-18932)
- Fixes FTBFS with gcc-8 (Closes: #897855)
.
* debian/control
- Remove Xs-Vcs-Git field
- Bumped Standard-Version to 4.5.0 (no change needed)
.
* debian/patches/0003-Fix-FTCBFS.patch
- Fix FTCBFS, thanks to Helmut Grohne (Closes: #940124)
Checksums-Sha1:
7b94204382cf15816b7f16676973cb4a29c419eb 1794 sarg_2.4.0-1.dsc
1cd127597f9c1cfbb7175004807afdf122fcc735 1366934 sarg_2.4.0.orig.tar.gz
8bdfc8bca95dec4b1052b0cae7bb281eb3da173c 22060 sarg_2.4.0-1.debian.tar.xz
3e849ab85e39cc725ef987c42e920bdb89f6b3a2 7416 sarg_2.4.0-1_amd64.buildinfo
Checksums-Sha256:
e16a3b528920e26c6a681cebfe6c604be21b5ac943aded5c9070a32b1f0aaf38 1794
sarg_2.4.0-1.dsc
c952501ee0b6c4f6abe47833e971cdb781cdd06717a4f3a10e07e221c751a5f8 1366934
sarg_2.4.0.orig.tar.gz
1f776625d53c8bf9d2722a225766c49b527c8067f8e02fd76cf571d8794b4a9b 22060
sarg_2.4.0-1.debian.tar.xz
03540cc9a6dfaa167b1ac59731a7adc50123b4c155c2831016a6f58bf3f746fc 7416
sarg_2.4.0-1_amd64.buildinfo
Files:
6254d00cb7ed93b4c056d849b6ae213d 1794 web optional sarg_2.4.0-1.dsc
0236aca351ef572c6d8ddf178ea964b3 1366934 web optional sarg_2.4.0.orig.tar.gz
795a643ea9cc71c667dbb6910a2ac187 22060 web optional sarg_2.4.0-1.debian.tar.xz
a90bb42fb2fc91927575346a8086236e 7416 web optional sarg_2.4.0-1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEjUhaNf8ebreQ5Q9tAoTyDCupfO0FAl5TFooACgkQAoTyDCup
fO2boRAAnk8MUH5vSF5YOX/s4NqA9w1bN1ujVR5/nBWyBBjRRTCVu4RSrnlPUiCM
udIXdVHGIcmMIFDhzAkThZQkKEkIaeTBIH1D/qrcVIo7IDbTgbkcu/0O+fqVhaEC
zzCyQOeMnAOYsP9JeVsN2+Cdi4jsS5N6ov9NCsvphPX4IEkQJOERMAiyKftZAZ1v
T3Rdlka33Ay5lfB1fDoz6d2KyK23688A+N2xK2BJGTmoViwrVp3WXrC2SMkSkEf2
NLm9HcId0274TIMH7wJGbFRpeIsr3naBIrd3mBTSYLgXq2UMVkKH+gnAZ+NVtYls
Dlrk7YqdN2jG74Va5UoQ0L4/a7GRINv3RW3N39MJMtnd2NPPtk7GT4oiJcNJ2ywd
XAhTMFxcD3w+/xGszvrwPIOXdmUAaEuOnUxQEWxfb76DMosBp/sOqiNY8G3e08nu
bNKQ2Ot8Ra1w58MZSJD9yD8Sb2L5/gaJ9nonFrxXBU/lEklX8wImGqfFSCLNHneL
wRXf7wZ4LzECtZ+cs1LHdmJAPKU8soPQJJa7XWyUQ1o87tS2XWoThtZ4aRsZo+3X
cNA6Ywj2sBofgF6qs+3Oy79aT9VaBMVutceBQZ6eG/3Gm/18FYUkAsX/Uf5f1C/F
IOkWKLGMnDOUSgVxXkbo5B2THTiFOH13JIvAwfrDPpgLWxEvZ90=
=NGNF
-----END PGP SIGNATURE-----
--- End Message ---