Accepted lintian 2.3.2~bpo50+1 (source all)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Wed, 27 Jan 2010 11:05:22 -0600
Source: lintian
Binary: lintian
Architecture: source all
Version: 2.3.2~bpo50+1
Distribution: lenny-backports
Urgency: high
Maintainer: Debian Lintian Maintainers <lintian-maint@debian.org>
Changed-By: Raphael Geissert <geissert@debian.org>
Description:
lintian - Debian package checker
Closes: 528367 546174 548640 548819 548844 550594 551793 552200 553264 554025 554617 555408 555667 556022 556456 557120 557353 557449 557511 557530 557717 557786 557883 557971 558214 558649 559208 559625 560005 560053 560149 561720 562608 562630 562788 562875 563039 563126 563185 563370 563571 563585 564017 564523 564740 564900
Changes:
lintian (2.3.2~bpo50+1) lenny-backports; urgency=high
.
* Rebuild for lenny-backports.
.
lintian (2.3.2) unstable; urgency=high
.
* Summary of tag changes:
+ Added:
- conflicting-negation-in-source-relation
.
* checks/{control-files,files,menu-format,menus}:
+ [RG] Fix CVE-2009-4014: format string vulnerabilities.
* checks/{fields,patch-systems}:
+ [RG] Fix CVE-2009-4013: missing control files sanitation.
* checks/{files,patch-systems,po-debconf}:
+ [RG] Fix CVE-2009-4015: arbitrary command execution.
* checks/changelog-file:
+ [RA] Avoid Perl warning when the NEWS file ends immediately after
the most recent entry. (Closes: #563585)
* checks/copyright-file:
+ [RA] Relax the regex for matching dh-make-perl boilerplate to catch
the current text. Thanks, gregor herrmann. (Closes: #563571)
* checks/fields{,.desc}:
+ [RA] Reject "all" and "any" in architecture qualifications for build
dependencies. Thanks, Jonathan Yu.
+ [RA] Warn if some architectures in a build relation are negated and
others are not.
* checks/files.desc:
+ [JP] Fix outdated reference in file-in-usr-lib-site-python.
* checks/infofiles:
+ [RA] Pass LOCPATH to subprocesses.
+ [ADB] Don't flag info files with filenames of info-N.gz as having an
incorrect extension if N contains multiple digits. (Closes: #564900)
* checks/manpages:
+ [RA] Pass LOCPATH to subprocesses.
.
* collection/objdump-info:
+ [RG] Fix CVE-2009-4015: arbitrary command execution.
* collection/source-control-file:
+ [RG] Fix CVE-2009-4013: missing control files sanitation.
.
* data/output/manual-references:
+ [JP] Refresh reference data against Policy 3.8.3, doc-base 0.9.5,
developers-reference 3.4.3, and Python Policy 0.9.0.
.
* debian/control:
+ [RA] Depend on locales.
* debian/prerm:
+ [RA] Remove /var/lib/lintian/locale on any removal except upgrades.
* debian/postinst:
+ [RA] Generate an en_US.UTF-8 locale in /var/lib/lintian/locale for
use for tests, particularly man page tests. (Closes: #555408)
.
* frontend/lintian:
+ [RA] Set LOCPATH to LINTIAN_ROOT/locale or /var/lib/lintian/locale,
whichever exist.
+ [RG] Fix CVE-2009-4013: missing control files sanitation.
.
* lib/Lintian/Collect.pm:
+ [ADB] Update the documentation to reflect the existence of
Lintian::Collect::Binary.
* lib/Lintian/Collect/Binary.pm:
+ [ADB] Correct a reference in the documentation indicating that the
module collects data for source packages.
* lib/Lintian/Schedule.pm:
+ [RG] Fix CVE-2009-4013: missing control files sanitation.
+ [RG] Fix CVE-2009-4014: format string vulnerabilities.
* lib/Spelling.pm:
+ [RA] Add additional spelling corrections.
+ [RA] Remove spelling correction for parameterize. This is the
correct US spelling. Thanks, Jonathan Yu. (Closes: #564523)
+ [RA] Remove spelling correction for useable, a variant permitted
by the OED. Thanks, Vagrant Cascadian. (Closes: #564740)
+ [RG] Add more spelling corrections.
* lib/Util.pm:
+ [RA] Pass LOCPATH to subprocesses.
+ [RG] Fix CVE-2009-4015: arbitrary command execution.
.
* man/lintian.1:
+ [RA] Spelling fix. Thanks, A. Costa. (Closes: #564017)
.
* private/refresh-manual-refs:
+ [RG] Fix CVE-2009-4015: arbitrary command execution.
.
* reporting/{config,html_reports}:
+ [JP] Make it possible to keep a record of statistics of previous
archive-wide Lintian executions.
* reporting/templates/maintainer.tmpl:
+ [RA] Really fix the logic to optionally display the archive area of
additional package entries under the same source package.
.
* unpack/unpack-{bin,src}pkg-l1:
+ [RG] Fix CVE-2009-4013: missing control files sanitation.
.
lintian (2.3.1) unstable; urgency=low
.
The "goodbye to unpack level 2" release.
.
* Summary of tag changes:
+ Added:
- init.d-script-missing-start
- debian-news-entry-has-unknown-version
- debian-news-entry-uses-asterisk
- debian-news-entry-without-blank-line
- non-native-package-with-native-version
- udev-rule-in-etc
.
* {checks,collection}/*.desc:
+ [RG] Remove Unpack-Level fields and depend on the 'unpacked'
collection script as needed.
* checks/binaries:
+ [RG] Recognise hppa64 binaries and ignore them on the
binary-from-other-architecture check for hppa.
Thanks, Matthias Klose. (Closes: #562788)
* checks/changelog-file{,.desc}:
+ [RA] Per devref, recommend against NEWS.Debian entries formatted
with asterisks like changelog entries.
+ [RA] Check that the most recent NEWS.Debian entry is followed by a
blank line for apt-listchanges. Thanks, Adeodato Simó. (Addresses
the Lintian part of #523436)
+ [RA] Warn if the version of the latest NEWS.Debian entry doesn't
appear in the changelog. Thanks, Christoph Berg. (Closes: #550594)
* checks/control-file:
+ [RA] Fix parsing of dependencies for weak-library-dev-dependency
when the content of Depends begins with a newline. Thanks, Julien
Cristau. (Closes: #563370)
* checks/cruft:
+ [RA] Fix the regex to properly ignore CMakeCache.txt in the debian
directory. Thanks, Aaron M. Ucko. (Closes: #553264)
+ [RA] Check for a non-native package with a native version. Thanks,
Andreas Beckmann.
* checks/debhelper:
+ [RA] Always warn if debhelper is in use but no ${misc:Depends}
dependency is present rather than checking which specific debhelper
commands use it. Any debhelper command may start adding
dependencies to ${misc:Depends} at any time. Lower the certainty to
possible, since a missing ${misc:Depends} may not cause problems.
* checks/fields.desc:
+ [RA] Fix spelling error in dfsg-version-with-period tag description.
Thanks, Jakub Wilk. (Closes: #563185)
* checks/files{,.desc}:
+ [RG] Add a missing 'it' to the description of duplicate-font-file.
+ [RG] Add detection of nusoap to the embedded PHP libraries check.
+ [RG] Check that udev rules are not installed in /etc/udev/rules.d.
Thanks, Marco d'Itri. (Closes: #559208)
* checks/init.d{,.desc}:
+ [RG] Bump severity of init.d-script-sourcing-without-test to serious.
+ [RG] Lower the severity of init.d-script-does-not-provide-itself
to minor.
+ [RG] Fix a init.d-script-possible-missing-stop false positive when
stopping on runlevels 2-5.
+ [RG] Mention 'killprocs' in init.d-script-possible-missing-stop's
description. Thanks, Kurt Roeckx. (Closes: #562608)
+ [RG] Warn about init scripts with incomplete start runlevels.
+ [RG] Tighten check for missing dependency on local_fs or remote_fs
when using files with a name of 'var*' or 'usr*'.
+ [RG] Also recognise the use of the -r test as a file test, and
the test command when determining whether a /etc/default file is
being sourced unconditionally.
+ [RG] Correct the description of the
missing-dependency-on-{remote,local_fs} tags where 'is' was meant
to be used instead of 'are'.
* checks/manpages.desc:
+ [RA] Downgrade spelling-error-in-manpage to minor severity.
(Closes: #563039)
* checks/patch-systems:
+ [RA] Avoid false positives for patches modifying files in debian/*
when the parent directory in which the patch was created is named
debian. Thanks, Mark Brown. (Closes: #562875)
.
* collection/ar-info:
+ [RA] Skip *.a files that are dangling symlinks and discard error
output from ar. Correctly handle file names that contain shell
metacharacters.
* collection/unpacked{,.desc}:
+ [RG] New scripts to replace the unpack level 2.
.
* frontend/lintian:
+ [RG] Deprecate and replace unpack levels with the use of
collection scripts.
+ [ADB] Remove an unused variable declaration.
.
* lib/Spelling.pm:
+ [ADB] Add corrections for "nam" (name) and "nams" (names).
+ [RG] Add some more spelling errors.
+ [RG] Uppercase every character of the correction if every
character of the original word is too.
+ [RA] Superceded is an acceptable alternative spelling of superseded.
.
* man/lintian.1:
+ [RG] Document deprecation of unpack levels.
+ [ADB] Add the new "unpacked" collection script to the list of such
scripts.
+ [ADB] Correct the documentation of --tags-from-file to indicate that
the file contains tags to issue, not suppress.
.
* reporting/html_reports:
+ [RA] Sort the tags so that the maintainer view will group repeated
instances of the same tag and display extra information in sorted
order. (Closes: #563126)
+ [RA] Better handle missing information for packages in the package
lists and default the package area to main.
* reporting/templates/maintainer.tmpl:
+ [RA] Fix the logic to optionally display the archive area of
additional package entries under the same source package.
.
* unpack/unpack-{src,bin}pkg-l2:
+ [RG] Dropped in favour of collection/unpacked.
.
lintian (2.3.0) unstable; urgency=low
.
The "welcome Raphael Geissert!" release.
.
* Summary of tag changes:
+ Added:
- capitalization-error-in-description
(split from spelling-error-in-description)
- debian-rules-automatically-updates-control
- duplicate-in-relation-field (pedantic)
- duplicated-compressed-file
- init.d-script-missing-dependency-on-local_fs (experimental)
- init.d-script-missing-dependency-on-remote_fs (experimental)
- obsolete-relation-form-in-source
- ocaml-dangling-cmi
- ocaml-dangling-cmx
- ocaml-dangling-cmxa
- ocaml-dangling-cmxs
- ocaml-dev-file-in-nondev-package (pedantic)
- ocaml-dev-file-not-in-usr-lib-ocaml (pedantic)
- ocaml-meta-without-suggesting-findlib (pedantic)
- ocaml-stray-cmo
- spelling-error-in-manpage
+ Removed:
- build-depends-without-arch-dep
.
* checks/*:
+ [RA] Use Lintian::Tags instead of Tags.
* checks/binaries{,.desc}:
+ [RA] Allow any RPATH containing $ORIGIN or ${ORIGIN}, not just the
literal value $ORIGIN. (Closes: #557511)
+ [ADB] Exempt all binary packages built from the zlib source from
the embedded-zlib test, not just those with binary package names
matching zlib.+. Thanks, Mark Brown.
+ [RA] Spelling errors are no longer normalized to lowercase.
* checks/changelog-file:
+ [RA] Suppress latest-debian-changelog-entry-without-new-date if the
distribution is UNRELEASED. Thanks, Raphaël Hertzog.
(Closes: #560149)
+ [RA] Also ignore too-long lines that consist of "See" followed by an
unbreakable word. Thanks, Jari Aalto. (Closes: #560005)
+ [RA] Downgrade spelling tags to severity: minor.
* checks/control-file{,.desc}:
+ [RA] Check for < and > version dependencies in debian/control since
dpkg-source helpfully rewrites and fixes them in binary packages.
Thanks, Jakub Wilk. (Closes: #557971)
+ [RA] Add a pedantic check for duplicates in relation fields in
debian/control prior to the fixes applied by dpkg-dev. Thanks,
Nelson A. de Oliveira. (Closes: #548819)
+ [RA] Fix a typo that skipped checks on the Build-Conflicts field.
+ [RA] Rework weak-library-dev-dependency to allow more approaches to
bounding the shared library version. Skip complex cases with or'd
dependencies and assume the maintainer knows what they're doing.
Add more explanation to the long tag description. Thanks, Reinhard
Tartler and Mike Hommey. (Closes: #557449)
* checks/copyright-file.desc:
+ [RA] Downgrade spelling-error-in-copyright to minor and mention
false positive possibilities and an override in the tag description.
* checks/cruft:
+ [RA] Allow an automake or libtool dependency in Build-Depends-Indep
to also satisfy the check for outdated helper files. Thanks,
Guillaume Delacour. (Closes: #557530)
+ [RA] Ignore files in .pc, created by unpacking 3.0 (quilt) packages.
Thanks, Ahmed El-Mahmoudy. (Closes: #556022)
* checks/debian-readme.desc:
+ [RA] Downgrade spelling tag to severity: minor.
* checks/description{,.desc}:
+ [RA] Downgrade spelling tag to severity: minor.
+ [RA] Split capitalization-error-in-description to a separate tag and
downgrade its certainty to wild-guess.
* checks/fields{,.desc}:
+ [ADB] Re-order the fields of build-depends-on-build-essential so that
all of the descriptive text is included. Thanks, Jonathan Wiltshire.
(Closes: #557786)
+ [RA] For lib-recommends-documentation, exclude packages ending in
-tools or -bin. Thanks, Jay Berkenbilt. (Closes: #557883)
+ [RA] Warn of build dependencies on python*-dev if no architecture-
dependent packages are being built. Patch from Luca Falavigna.
(Closes: #551793)
+ [RA] Add emacs22 to obsolete emacs versions. Thanks, Sven Joachim.
(Closes: #560053)
* checks/files{,.desc}:
+ [RA] New check for files present in both compressed and uncompressed
form. Patch from Raphael Geissert. (Closes: #546174)
+ [RA] Allow /etc/sudoers.d files to be mode 0440 as recommended by
sudo. Thanks, Thijs Kinkhorst. (Closes: #557353)
* checks/huge-usr-share{,.desc}:
+ [RA] Increase the thresholds to 2MB (over 50%) and 4MB (any
percentage), and mention the thresholds in the tag description.
Thanks, Christoph Egger. (Closes: #561720)
* checks/init.d{,.desc}:
+ [RA] Add checks for missing dependencies on $local_fs or $remote_fs
based on what files appear to be used in the init scripts. Patch
from Raphael Geissert. (Partly addresses #405454)
* checks/manpages{,.desc}:
+ [RG] Check for spelling errors in English manpages.
* checks/manpages.desc:
+ [RA] Clarify the long description of hyphen-used-as-minus-sign.
Note that Debian groff is currently patched to avoid this problem,
but hopefully that divergence can be removed. Reference
groff-base's README.Debian for more information. (Closes: #548844)
* checks/menus.desc:
+ [RA] Change spelling tags to severity: minor and certainty: certain
since there are few false positives but minor is the correct
severity.
* checks/ocaml{,.desc}:
+ [RA] New checks for OCaml packaging. Contributed by Stéphane
Glondu. (Closes: #528367)
* checks/patch-systems{,.desc}:
+ [RA] Recommend DEP-3 in {dpatch,quilt}-patch-missing-description and
reference the document. Thanks, Raphaël Hertzog. (Closes: #554025)
+ [RA] Allow DEP-3 headers in dpatch patches to satisfy the
description requirement. Thanks, Paul Gevers. (Closes: #548640)
* checks/rules{,.desc}:
+ [RA] Remove build-depends-without-arch-dep. If the package only
builds architecture-independent packages, the distinction between
Build-Depends and Build-Depends-Indep is meaningless and there's no
reason, even pedantically, to worry about the separation. Thanks,
Charles Plessy. (Closes: #552200, #555667)
+ [RA] Add a new check for DEB_AUTO_UPDATE_DEBIAN_CONTROL = yes.
Thanks, Nelson A. de Oliveira. (Closes: #557120)
.
* collection/ar-info{,.desc}:
+ [RA] Collects the results of ar t on all *.a files, used by the new
OCaml checks. Contributed by Stéphane Glondu.
* collection/override-file:
+ [RA] Check debian/source/lintian-overrides before
debian/source.lintian-overrides for source package overrides.
Thanks, martin f krafft. (Closes: #554617)
.
* data/debhelper/*:
+ [ADB] Refresh against unstable.
* data/fields/{perl-provides,virtual-packages}:
+ [ADB] Refresh against unstable.
* data/files/fonts:
+ [ADB] Refresh against unstable.
* data/output/ftp-master-{non,}fatal:
+ [RA] New data files listing tags that may result in an automated
upload reject.
.
* doc/lintian.sgml:
+ [RA] Document debian/source/lintian-overrides as the new preferred
location for source overrides.
.
* debian/control:
+ [RG] Add Raphael Geissert to Uploaders.
+ [RA] Add ${misc:Depends} to dependencies.
* debian/copyright:
+ [RG] Add Raphael Geissert to maintainers.
.
* frontend/lintian:
+ [RA] Add options --suppress-tags and --suppress-tags-from-file to
completely suppress the given tags.
+ [RA] Support comments and blank lines in --tags-from-file files.
+ [RA] Run the check modules in sorted order.
+ [RA] Create a global Lintian::Tags object and use it instead of
setting variables in the Tags namespace. Move display level code
from here to Lintian::Tags. Adjust calls for the new Lintian::Tags
module.
+ [RA] Add option -F or --ftp-master-rejects which only checks tags
that could result in an automatic upload reject.
* frontend/lintian-info:
+ [RA] Add -h/--help option. Patch from gregor herrmann.
(Closes: #558214)
.
* lib/Lintian/Check.pm:
+ [RA] Use Lintian::Tags instead of Tags.
* lib/Lintian/Output.pm:
+ [RA] print_tag() now takes an additional argument containing
override data and expects a Lintian::Tag::Info object as the tag
info instead of a hash.
+ [RA] Adjust for the renaming of pkg in the file information hash.
* lib/Lintian/Output/*.pm:
+ [RA] Adjust for print_tag() and file information hash changes.
* lib/Lintian/Output/XML.pm:
+ [RA] Rewrite to be more readable and fix the tags attribute for
overridden experimental tags.
* lib/Lintian/Relation.pm:
+ [RA] Fix bugs in unparse() and duplicates() that caused duplicates()
to crash when processing duplicates between an alternative and a
regular package. Thanks, Jonathan Yu. (Closes: #559625)
* lib/Lintian/Tag/Info.pm:
+ [RA] Add a code method that returns the tag code corresponding to
the severity and certainty for a tag, based on get_tag_code from
Tags.pm.
+ [RA] Add certainty, severity, and tag accessor methods.
+ [RA] Add a method saying whether a tag is experimental.
+ [RA] Record the check script corresponding to each tag and add an
accessor method for it.
+ [RA] Add a sources method returning a list of sources referenced by
a tag, based on the get_tag_source method from Tags.pm.
* lib/Lintian/Tags.pm:
+ [RA] New module in a proper namespace replacing Tags.pm. A global
Lintian::Tags object replaces the static variables in the Tags
namespace, with new accessor functions, except for the tag metadata
functions (which have moved to Lintian::Tag::Info). All handling of
display levels is now here instead of in frontend/lintian.
+ [RA] Support suppressing a list of tags.
+ [RA] Suppress calling Lintian::Output::print_end_pkg for changes
files, where we don't call print_start_pkg. This fixes an unmatched
closing tag in the experimental XML output.
* lib/Spelling.pm:
+ [RA] Use Lintian::Tags instead of Tags.
+ [RA] Ignore all-caps words of five characters or less for spelling
corrections, since they are probably acronyms. Thanks, Michal
Čihař. (Closes: #556456)
+ [RA] Report the original word in spelling errors rather than the
normalized form.
+ [RG] Detect some multi-word spelling errors.
+ [RA] Remove the als to also correction. This is a word in several
European languages, and the many hits on the archive are nearly all
false positives.
* lib/Tags.pm:
+ [RA] Removed in favor of Lintian::Tags.
* lib/Util.pm:
+ [RA] Consume all output from extracting the control file of a binary
package before closing the pipe.
.
* man/lintian.1:
+ [RA] Document --suppress-tags and --suppress-tags-from-file.
+ [RA] Document format of --tags-from-file.
+ [RA] Document -F (--ftp-master-rejects).
+ [RA] Add ocaml checker script.
+ [RA] Add ar-info collection script.
+ [RA] Document the override locations in the FILES section. Thanks,
Jakub Wilk. (Closes: #558649)
+ [RA] Remove obsolete spelling checker script.
+ [RA] Mention /usr/share/lintian/data under FILES.
+ [RA] Clarify that errors are not necessarily policy violations.
+ [RA] Remove bug that Lintian doesn't handle packages with different
binary and source versions correctly. I don't believe this is still
an issue.
* man/lintian-info.1:
+ [RA] Add -h (--help).
+ [RA] lintian -i no longer pipes output through lintian-info. Adjust
the man page accordingly.
.
* private/refresh-ftp-master-tags:
+ [RA] Script to refresh data about automatic package rejects.
.
* reporting/html_reports:
+ [RA] Never use O as the code for the tag on the per-tag page even if
all instances in the archive are overridden. (Closes: #562630)
.
* t/runtests:
+ [RA] Unwrap the Options field so that it can be continued.
+ [RA] Replace TESTSET in Options with the root of the test suite so
that lintian options referring to files can be tested with files in
the test suite directory.
+ [RA] Support a new Sort: no field in package test metadata to
suppress sorting of lintian output, for testing output formatting.
+ [RA] Use Lintian::Command::spawn to run Lintian for package tests so
that the lintian options may contain shell metacharacters.
+ [RA] Put all error output from lintian unsorted before the regular
output, making it easier to diagnose errors.
+ [RA] Suppress checking the syntax of the lintian output if neither
Test-For nor Test-Against are set and Sort: no is set.
.
* unpack/list-{bin,src,udeb}pkg:
+ [RA] Support multiple versions of a package in the archive and
include only the latest version in the Lintian package list.
* unpack/unpack-binpkg-l2:
+ [RA] Report errors from dpkg-deb or tar on stderr if either exit
with non-zero status.
* unpack/unpack-srcpkg-l2:
+ [RA] Report errors from dpkg-source -x on stderr if it exits with
non-zero status. (Closes: #557717)
Checksums-Sha1:
38df5db1d958e8e2bd40675f00b5858c387eed7e 1236 lintian_2.3.2~bpo50+1.dsc
20b7bda1969c3043d247d60416a83c91eeee397a 781628 lintian_2.3.2~bpo50+1.tar.gz
301debaf0cdbd9789d605c430ba218e8002daa3a 501412 lintian_2.3.2~bpo50+1_all.deb
Checksums-Sha256:
5d266b3e0bb8ff8ac1b4997700c1497753737716161ba3423cf1969772abbe99 1236 lintian_2.3.2~bpo50+1.dsc
b5759264ac57c9dcae2f196090490cb01c4645c45c9d9289b785d35e056fd387 781628 lintian_2.3.2~bpo50+1.tar.gz
b49ea1b164e1dc80a0ef79bfb49046d48cbbcb168062c74a88f43b88b5a64f94 501412 lintian_2.3.2~bpo50+1_all.deb
Files:
beef897e896c1f343ac1f14d31e544f3 1236 devel optional lintian_2.3.2~bpo50+1.dsc
a5335a7378bbc480e3c828482660785a 781628 devel optional lintian_2.3.2~bpo50+1.tar.gz
4e393e3baa1c206e5afe567f1f5e7f44 501412 devel optional lintian_2.3.2~bpo50+1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAktgc0sACgkQYy49rUbZzlq1HwCeNyZUE4vLrv7IUyuPD2jLcENN
XvwAnie8WQcFCJJyyU9jzGzqlqSiEt5D
=lg/Z
-----END PGP SIGNATURE-----
Accepted:
lintian_2.3.2~bpo50+1.dsc
to pool/main/l/lintian/lintian_2.3.2~bpo50+1.dsc
lintian_2.3.2~bpo50+1.tar.gz
to pool/main/l/lintian/lintian_2.3.2~bpo50+1.tar.gz
lintian_2.3.2~bpo50+1_all.deb
to pool/main/l/lintian/lintian_2.3.2~bpo50+1_all.deb
Reply to: