Bug#643390: marked as done (glabels: FTBFS: plessey.c:151:9: error: format not a string literal and no format arguments [-Werror=format-security])
Your message dated Mon, 19 Dec 2011 18:18:17 +0000
with message-id <E1Rchmz-0006cK-1s@franck.debian.org>
and subject line Bug#643390: fixed in glabels 2.2.8-3
has caused the Debian Bug report #643390,
regarding glabels: FTBFS: plessey.c:151:9: error: format not a string literal and no format arguments [-Werror=format-security]
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)
--
643390: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=643390
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
- To: submit@bugs.debian.org
- Subject: glabels: FTBFS: plessey.c:151:9: error: format not a string literal and no format arguments [-Werror=format-security]
- From: Didier Raboud <odyx@debian.org>
- Date: Tue, 27 Sep 2011 14:28:31 +0200
- Message-id: <20110927122831.GA19419@Tamino>
Source: glabels
Version: 2.2.8-2
Severity: serious
Tags: wheezy sid
User: debian-qa@lists.debian.org
Usertags: qa-ftbfs-20110923 qa-ftbfs hardening-format-security hardening
Justification: FTBFS on amd64
Hi,
During a rebuild of all packages in sid, your package failed to build on
amd64.
Relevant part:
> /bin/bash ../libtool --tag=CC --mode=compile gcc -DHAVE_CONFIG_H -I. -I.. -pthread -DORBIT2=1 -D_REENTRANT -DCAMEL_HAVE_NSS -DCAMEL_HAVE_SSL -I/usr/include/gtk-2.0 -I/usr/lib/x86_64-linux-gnu/gtk-2.0/include -I/usr/include/atk-1.0 -I/usr/include/gdk-pixbuf-2.0 -I/usr/include/pango-1.0 -I/usr/include/pixman-1 -I/usr/include/freetype2 -I/usr/include/libpng12 -I/usr/include/gail-1.0 -I/usr/include/nss -I/usr/include/nspr -I/usr/include/glib-2.0 -I/usr/lib/glib-2.0/include -I/usr/include/cairo -I/usr/include/gio-unix-2.0/ -I/usr/include/libgnome-2.0 -I/usr/include/orbit-2.0 -I/usr/include/gconf/2 -I/usr/include/gnome-vfs-2.0 -I/usr/lib/gnome-vfs-2.0/include -I/usr/include/libbonobo-2.0 -I/usr/include/bonobo-activation-2.0 -I/usr/include/libgnomeui-2.0 -I/usr/include/libart-2.0 -I/usr/include/gnome-keyring-1 -I/usr/include/libbonoboui-2.0 -I/usr/include/libgnomecanvas-2.0 -I/usr/include/libxml2 -I/usr/include/libglade-2.0 -I/usr/include/evolution-data-server-3.0 -I/usr/include/libsoup-2.4 -g -O2 -fstack-protector --param=ssp-buffer-size=4 -D_FORTIFY_SOURCE=2 -Wformat -Wformat-security -Werror=format-security -Wall -c -o plessey.lo plessey.c
> libtool: compile: gcc -DHAVE_CONFIG_H -I. -I.. -pthread -DORBIT2=1 -D_REENTRANT -DCAMEL_HAVE_NSS -DCAMEL_HAVE_SSL -I/usr/include/gtk-2.0 -I/usr/lib/x86_64-linux-gnu/gtk-2.0/include -I/usr/include/atk-1.0 -I/usr/include/gdk-pixbuf-2.0 -I/usr/include/pango-1.0 -I/usr/include/pixman-1 -I/usr/include/freetype2 -I/usr/include/libpng12 -I/usr/include/gail-1.0 -I/usr/include/nss -I/usr/include/nspr -I/usr/include/glib-2.0 -I/usr/lib/glib-2.0/include -I/usr/include/cairo -I/usr/include/gio-unix-2.0/ -I/usr/include/libgnome-2.0 -I/usr/include/orbit-2.0 -I/usr/include/gconf/2 -I/usr/include/gnome-vfs-2.0 -I/usr/lib/gnome-vfs-2.0/include -I/usr/include/libbonobo-2.0 -I/usr/include/bonobo-activation-2.0 -I/usr/include/libgnomeui-2.0 -I/usr/include/libart-2.0 -I/usr/include/gnome-keyring-1 -I/usr/include/libbonoboui-2.0 -I/usr/include/libgnomecanvas-2.0 -I/usr/include/libxml2 -I/usr/include/libglade-2.0 -I/usr/include/evolution-data-server-3.0 -I/usr/include/libsoup-2.4 -g -O2 -fstack-protector --param=ssp-buffer-size=4 -D_FORTIFY_SOURCE=2 -Wformat -Wformat-security -Werror=format-security -Wall -c plessey.c -fPIC -DPIC -o .libs/plessey.o
> plessey.c: In function 'Barcode_pls_verify':
> plessey.c:48:5: warning: pointer targets in passing argument 1 of 'strlen' differ in signedness [-Wpointer-sign]
> /usr/include/string.h:399:15: note: expected 'const char *' but argument is of type 'unsigned char *'
> plessey.c: In function 'Barcode_pls_encode':
> plessey.c:151:9: error: format not a string literal and no format arguments [-Werror=format-security]
> cc1: some warnings being treated as errors
>
> make[3]: *** [plessey.lo] Error 1
The full build log is available from:
http://people.debian.org/~lucas/logs/2011/09/23/glabels_2.2.8-2_lsid64.buildlog
This happened because since dpkg 1.16.0 [0], hardening flags are enabled
under various conditions.
[0] http://lists.debian.org/debian-devel-announce/2011/09/msg00001.html
A list of current common problems and possible solutions is available at
http://wiki.debian.org/qa.debian.org/FTBFS . You're welcome to contribute!
About the archive rebuild: The rebuild was done on about 50 AMD64 nodes
of the Grid'5000 platform, using a clean chroot. Internet was not
accessible from the build systems.
--- End Message ---
--- Begin Message ---
Source: glabels
Source-Version: 2.2.8-3
We believe that the bug you reported is fixed in the latest version of
glabels, which is due to be installed in the Debian FTP archive:
glabels-data_2.2.8-3_all.deb
to main/g/glabels/glabels-data_2.2.8-3_all.deb
glabels-dev_2.2.8-3_i386.deb
to main/g/glabels/glabels-dev_2.2.8-3_i386.deb
glabels_2.2.8-3.debian.tar.gz
to main/g/glabels/glabels_2.2.8-3.debian.tar.gz
glabels_2.2.8-3.dsc
to main/g/glabels/glabels_2.2.8-3.dsc
glabels_2.2.8-3_i386.deb
to main/g/glabels/glabels_2.2.8-3_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 643390@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
gregor herrmann <gregoa@debian.org> (supplier of updated glabels package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Mon, 19 Dec 2011 19:00:44 +0100
Source: glabels
Binary: glabels glabels-data glabels-dev
Architecture: source all i386
Version: 2.2.8-3
Distribution: unstable
Urgency: low
Maintainer: Debian QA Group <packages@qa.debian.org>
Changed-By: gregor herrmann <gregoa@debian.org>
Description:
glabels - label, business card and media cover creation program for GNOME
glabels-data - data files for gLabels
glabels-dev - development documentation and library files for gLabels
Closes: 643390
Changes:
glabels (2.2.8-3) unstable; urgency=low
.
* QA upload.
* Fix "FTBFS: plessey.c:151:9: error: format not a string literal and
no format arguments [-Werror=format-security]": new patch
30_Werror-format-security.patch: add format argument to sprintf call.
(Closes: #643390)
* New patch 40_linker.patch: add '-lm' to linker arguments, otherwise the
build fails with binutils-gold or --no-add-needed.
Checksums-Sha1:
b8c9132ba01244cbb3e434bbe6ca3dd1c048e308 2274 glabels_2.2.8-3.dsc
52f9520292aff69d6ff9806509594ba7daf0c3b5 12973 glabels_2.2.8-3.debian.tar.gz
c01406878cb21bf24b87406d3ec1c02675bad664 2495072 glabels-data_2.2.8-3_all.deb
a7a9f81d29c4b4454fb47f57e029b884525b9a5d 408686 glabels_2.2.8-3_i386.deb
4794de4036414c11cbe8f413c6a2c36a107dda96 92674 glabels-dev_2.2.8-3_i386.deb
Checksums-Sha256:
eb5b4c531b1da572d86a4f3ab244a22be04fa6fd04e20a191634e9be0ad7d77b 2274 glabels_2.2.8-3.dsc
f2e9f02ec1b0f958108da39a99a66db3d4c0f4a50a7644342782aae59c6f351d 12973 glabels_2.2.8-3.debian.tar.gz
14d493371cf7fe29d7ee980ccb29a9ced7b2143eea0e109d8e679a7f703374a2 2495072 glabels-data_2.2.8-3_all.deb
caabbf527fc38049c97937284c34db64afc1d98fe5e1f34636d02ffabba71334 408686 glabels_2.2.8-3_i386.deb
146df5d51079502d57bb56027a00f7b6d3f2eab5977f75430a334db86ffbf63b 92674 glabels-dev_2.2.8-3_i386.deb
Files:
0578f15d3bbb26c01baeafa3e0a2e5cd 2274 gnome optional glabels_2.2.8-3.dsc
2d93ebbef3ae41ab6fa4ee5a49a21ae6 12973 gnome optional glabels_2.2.8-3.debian.tar.gz
dc30551e850f9f25840a8f66154834cc 2495072 gnome optional glabels-data_2.2.8-3_all.deb
4887c2b5e34f293efb425bc2ea18f69a 408686 gnome optional glabels_2.2.8-3_i386.deb
886269e68f8bd95251cf604b626206f2 92674 devel optional glabels-dev_2.2.8-3_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)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=hU+D
-----END PGP SIGNATURE-----
--- End Message ---
Reply to: