[SCM] Debian package checker branch, master, updated. 2.5.11-269-g4fa9095
The following commit has been merged in the master branch:
commit 60e1f1d6e71463d2120d7b56b2dd87da0e1a0b4f
Author: Niels Thykier <niels@thykier.net>
Date: Thu Apr 4 23:52:42 2013 +0200
c/shared-libs: Ignore maintscript that are symlinks
Signed-off-by: Niels Thykier <niels@thykier.net>
diff --git a/checks/shared-libs b/checks/shared-libs
index c9377a2..660cf03 100644
--- a/checks/shared-libs
+++ b/checks/shared-libs
@@ -593,7 +593,7 @@ if (keys %shlibs_control and keys %symbols_control) {
}
# 6th step: check pre- and post- control files
-if (-f $info->control('preinst')) {
+if (-f $info->control('preinst') and not -l $info->control('preinst')) {
local $_ = slurp_entire_file($info->control('preinst'));
if (/^[^\#]*\bldconfig\b/m) {
tag 'preinst-calls-ldconfig';
@@ -601,7 +601,7 @@ if (-f $info->control('preinst')) {
}
my $we_call_postinst=0;
-if (-f $info->control('postinst')) {
+if (-f $info->control('postinst') and not -l $info->control('postinst')) {
local $_ = slurp_entire_file($info->control('postinst'));
# Decide if we call ldconfig
@@ -625,14 +625,14 @@ if ($multiarch eq 'foreign' and $must_call_ldconfig) {
tag 'shlib-in-multi-arch-foreign-package', $must_call_ldconfig;
}
-if (-f $info->control('prerm')) {
+if (-f $info->control('prerm') and not -l $info->control('prerm')) {
local $_ = slurp_entire_file($info->control('prerm'));
if (/^[^\#]*\bldconfig\b/m) {
tag 'prerm-calls-ldconfig';
}
}
-if (-f $info->control('postrm')) {
+if (-f $info->control('postrm') and not -l $info->control('postrm')) {
local $_ = slurp_entire_file($info->control('postrm'));
# Decide if we call ldconfig
diff --git a/debian/changelog b/debian/changelog
index fadc1c4..301e76a 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -141,6 +141,8 @@ lintian (2.5.12) UNRELEASED; urgency=low
* checks/shared-libs:
+ [NT] Special case gcc packages when looking for dev symlinks.
gcc stores its dev symlinks in some special directories.
+ + [NT] Fix path traversal issue that could leak information
+ about the host system.
* checks/source-copyright{,.desc}:
+ [JW,NT] Add a separate tag for ambiguous DEP-5 paragraphs,
where Lintian cannot reliably figure out what is intended.
--
Debian package checker
Reply to: