Source: libimager-perl Version: 1.020+dfsg-1 Severity: serious Tags: ftbfs Control: block 1055955 with -1 X-Debbugs-Cc: t...@packages.debian.org
This package fails to build from source on current sid. It regressed with tiff_4.5.1+git230720-2 which is currently blocked from migrating to trixie because libimager-perl autopkgtests are failing too. Changes: tiff (4.5.1+git230720-2) unstable; urgency=high . * Backport security fix for CVE-2023-6277, passing a crafted tiff file to TIFFOpen() API may allow a remote attacker to cause a denial of service (closes: #1056751). I see libimager-perl upstream has released 1.021 with some tiff related changes. I haven't checked if those fix the issue, or whether libtiff is actually broken. Feel free to reassign as needed. I'm marking this as a blocker for the Perl 5.38 transition as we need to be able to rebuild libimager-perl for that. >From the build log: # libtiff release 4.5.1 # Failed test 'read low-level' # at t/t10tiff.t line 49. Use of uninitialized value in subroutine entry at t/t10tiff.t line 53. Use of uninitialized value in subroutine entry at t/t10tiff.t line 53. im2 is not of type Imager::ImgRaw at t/t10tiff.t line 53. # Looks like your test exited with 25 just after 4. t/t10tiff.t .. 1..247 ok 1 - use Imager::File::TIFF; ok 2 - extract library version ok 3 - write low level not ok 4 - read low-level Dubious, test returned 25 (wstat 6400, 0x1900) Failed 244/247 subtests Test Summary Report ------------------- t/t10tiff.t (Wstat: 6400 (exited 25) Tests: 4 Failed: 1) Failed test: 4 Non-zero exit status: 25 Parse errors: Bad plan. You planned 247 tests but ran 4. Files=1, Tests=4, 0 wallclock secs ( 0.01 usr 0.01 sys + 0.10 cusr 0.02 csys = 0.14 CPU) Result: FAIL A full build log is at http://perl.debian.net/rebuild-logs/sid/libimager-perl_1.020%2Bdfsg-1/libimager-perl_1.020%2Bdfsg-1_amd64-2023-12-02T11%3A49%3A48Z.build -- Niko Tyni nt...@debian.org