Your message dated Sat, 15 Dec 2012 22:17:36 +0000 with message-id <[email protected]> and subject line Bug#661398: fixed in libdata-alias-perl 1.16-2 has caused the Debian Bug report #661398, regarding libdata-alias-perl: FTBFS with hardening flags enabled: -Werror=format-security to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 661398: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=661398 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Source: libdata-alias-perl Severity: normal Version: 1.16-1 With hardening flags enabled, this package FTBFS: Alias.xs: In function 'DataAlias_pp_rv2sv': Alias.xs:783:4: error: format not a string literal and no format arguments [-Werror=format-security] cc1: some warnings being treated as errors (this is the first error of this type seen: it's possible that there could be others once this is fixed). A likely fix is to change croak(var) to croak("%s", var)[1]. Note that I haven't verified whether an externally-controlled string is used; if so, it would be appropriate to upgrade this bug RC severity with the security tag[2]. This was found during testing of perl 5.14.2-8 in experimental; however, since that version was prepared, it has been decided not to export those build flags in Config_heay.pl. Nevertheless, it is likely that at some point, either in debhelper 9 or 10, the hardening flags will be enabled for all perl modules. Thanks, Dominic. [1] <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=657853#92> [2] <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=657853#117> -- Dominic Hargreaves | http://www.larted.org.uk/~dom/ PGP key 5178E2A5 from the.earth.li (keyserver,web,email)
--- End Message ---
--- Begin Message ---Source: libdata-alias-perl Source-Version: 1.16-2 We believe that the bug you reported is fixed in the latest version of libdata-alias-perl, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [email protected], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. gregor herrmann <[email protected]> (supplier of updated libdata-alias-perl package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [email protected]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sat, 15 Dec 2012 23:14:13 +0100 Source: libdata-alias-perl Binary: libdata-alias-perl Architecture: source amd64 Version: 1.16-2 Distribution: unstable Urgency: low Maintainer: Debian Perl Group <[email protected]> Changed-By: gregor herrmann <[email protected]> Description: libdata-alias-perl - module to create aliases instead of copies Closes: 661398 Changes: libdata-alias-perl (1.16-2) unstable; urgency=low . [ Dominic Hargreaves ] * Bump debhelper compat level to 9 * Apply patch from Niko Tyni fixing FTBFS with -Werror=format-security (Closes: #661398) . [ gregor herrmann ] * Use debhelper 9.20120312 to get all hardening flags. * debian/copyright: update to Copyright-Format 1.0. * Bump Standards-Version to 3.9.4 (no changes). * Update years of packaging copyright. Checksums-Sha1: 6138697a600e7f5af9457467c6692a6448f19dd6 2333 libdata-alias-perl_1.16-2.dsc 75580792d8d465aafc3b3c459a6fdc9fa273e66b 3535 libdata-alias-perl_1.16-2.debian.tar.gz f0b69e737ab6dd19b560f9d980b3d1394b256aec 39162 libdata-alias-perl_1.16-2_amd64.deb Checksums-Sha256: 4b23bcf95e140abcdabf5d5a8fa5b840da1d78d34c730bfe40f8f10c6d607ba5 2333 libdata-alias-perl_1.16-2.dsc 789ca48da5aeaaf26ba4435ee87839b9a88fc5a25968a971f6f6e93bb74e955c 3535 libdata-alias-perl_1.16-2.debian.tar.gz 88c0b91e94761424a53b66d574a6cba43c12112c5cb9d086670dd87397158d0d 39162 libdata-alias-perl_1.16-2_amd64.deb Files: d161b0bf7bcfa10afa2b1b722ed942f6 2333 perl optional libdata-alias-perl_1.16-2.dsc 73b0e833c3fb600a5d8376ff3fc29302 3535 perl optional libdata-alias-perl_1.16-2.debian.tar.gz ed27dad938c27041e0194cbf379630ef 39162 perl optional libdata-alias-perl_1.16-2_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQIcBAEBCAAGBQJQzPZeAAoJELs6aAGGSaoGGwsP/0NqfDqx8RB1UOSTHjpi0Ql2 sbOx/PnCKTWSTJZC1vSDM4PJn1kbSQysLRm4DaEY5bGt1315CsMvVTrjj4cjFxcG +XERxgDZaKSkzz61onPbQdeCxoU685WH31YjM8ppjP91jZrlCn1vbw0zoVbEwSaF uWR/ndH/8WvzDOleSVpIQ2YziP7xaIi0tDd8M/70olIBe8p2fErlL394U7XJYQmw JvLtIcV1zU2G3lEMtzxbcpVyhZOWJzpBlg+9ZsuhtyMXhuonAxPqHSSdF1MkkWPp sRHS0NZW+cXUeGNcs2OnaRxow73zmYtIDLVMF4yVf3JIvnsdqmLp6wJNiCZQ4iXf 2iUPJW3FrZjWcKF730NIxtOd6nAG2vNoxHsY91bIV6qse6nsmyshmniY599Zu3R4 JApTTLCKmU8tq8Tj3CouZABx+x5W0c8otpe9aB8F0FYBDZ2Zd5S6JGULydvW1Kwx Iutfljnj1rBQwgcd9+HZ07c4dxcVIPHAU9RmW6DmDX5CknHYyCGUKbeRLbO8c3vj IWbHku4YV16qAyiVGu6PtVEUqXScRBZ94W6ujjVSOAQc5eFZCKD8Baj0Ra+MwdWb fWThHt3kUiCnMTjNpkfqu+9CWFgZ4udjYXAcOEIeWR81OjUbPnCq7wtJiMtxQV+Y OeeLROWLWCLY1K5/lLIq =RQ4R -----END PGP SIGNATURE-----
--- End Message ---
