Package: curlftpfs Version: 0.9.2-8 Severity: serious The latest version of curlftpfs is misbuilding on 64-bit architectures, due to a missing prototype for the getpass() function:
ftpfs.c: In function 'checkpasswd':
ftpfs.c:1691:5: warning: implicit declaration of function 'getpass'
[-Wimplicit-function-declaration]
passwd = getpass(prompt);
^
ftpfs.c:1691:12: warning: assignment makes pointer from integer without a cast
[enabled by default]
passwd = getpass(prompt);
^
(https://buildd.debian.org/status/fetch.php?pkg=curlftpfs&arch=s390x&ver=0.9.2-8&stamp=1400148134)
This error was detected by the Ubuntu buildds, where such wrong casts are
treated as fatal errors, but the problem is present on Debian as well.
I'm not sure why this problem was not seen in version 0.9.2-7, but it's
definitely a new issue between -7 and -8. So either this is a regression
in the curlftpfs source or a regression caused by a change in behavior of
the system headers.
I'm filing this bug at severity: serious because this is a latent crasher
bug (truncating a pointer and then dereferencing it will give a segfault,
and this will happen on at least some 64-bit architectures). However, it's
possible that the particular crash is in an uncommon code path in which case
you may prefer to downgrade the bug severity.
--
Steve Langasek Give me a lever long enough and a Free OS
Debian Developer to set it on, and I can move the world.
Ubuntu Developer http://www.debian.org/
[email protected] [email protected]
signature.asc
Description: Digital signature
