Package: release.debian.org Severity: normal User: release.debian....@packages.debian.org Usertags: unblock
Please unblock package puredata to fix RC bug #690410. As discussed in the bug log, the upstream source does strange things with buffers that cause crashes when built with _FORTIFY_SOURCE. This is probably an upstream bug, but this package isn't security-critical and _FORTIFY_SOURCE isn't yet an archive requirement, so take the path of least resistance for the wheezy release and disable it for now. unblock puredata/0.43.2-5 -- System Information: Debian Release: 7.0 APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 3.2.0-4-686-pae (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash
diff -Nru puredata-0.43.2/debian/changelog puredata-0.43.2/debian/changelog --- puredata-0.43.2/debian/changelog 2012-06-21 00:46:39.000000000 -0700 +++ puredata-0.43.2/debian/changelog 2013-03-04 15:15:27.000000000 -0800 @@ -1,3 +1,10 @@ +puredata (0.43.2-5) unstable; urgency=low + + * Disabled FORTIFY_SOURCE for now (Closes: #690410) + * Added lintian-overrides due to FORTIFY_SOURCE removal + + -- IOhannes m zmoelnig (gpg-key at iem) <zmoel...@iem.at> Mon, 04 Mar 2013 18:05:15 +0100 + puredata (0.43.2-4) unstable; urgency=low * Fixed out-of-bounds table access (Closes: #678306) diff -Nru puredata-0.43.2/debian/puredata-core.lintian-overrides puredata-0.43.2/debian/puredata-core.lintian-overrides --- puredata-0.43.2/debian/puredata-core.lintian-overrides 1969-12-31 16:00:00.000000000 -0800 +++ puredata-0.43.2/debian/puredata-core.lintian-overrides 2013-03-04 15:15:27.000000000 -0800 @@ -0,0 +1,3 @@ +## FORTIFY_SOURCE triggers spurious crashes +## so it's disabled for now +puredata-core: hardening-no-fortify-functions diff -Nru puredata-0.43.2/debian/puredata-extra.lintian-overrides puredata-0.43.2/debian/puredata-extra.lintian-overrides --- puredata-0.43.2/debian/puredata-extra.lintian-overrides 1969-12-31 16:00:00.000000000 -0800 +++ puredata-0.43.2/debian/puredata-extra.lintian-overrides 2013-03-04 15:15:27.000000000 -0800 @@ -0,0 +1,3 @@ +## FORTIFY_SOURCE triggers spurious crashes +## so it's disabled for now +puredata-extra: hardening-no-fortify-functions diff -Nru puredata-0.43.2/debian/puredata-utils.lintian-overrides puredata-0.43.2/debian/puredata-utils.lintian-overrides --- puredata-0.43.2/debian/puredata-utils.lintian-overrides 1969-12-31 16:00:00.000000000 -0800 +++ puredata-0.43.2/debian/puredata-utils.lintian-overrides 2013-03-04 15:15:27.000000000 -0800 @@ -0,0 +1,3 @@ +## FORTIFY_SOURCE triggers spurious crashes +## so it's disabled for now +puredata-utils: hardening-no-fortify-functions diff -Nru puredata-0.43.2/debian/rules puredata-0.43.2/debian/rules --- puredata-0.43.2/debian/rules 2012-06-11 03:27:53.000000000 -0700 +++ puredata-0.43.2/debian/rules 2013-03-04 15:15:27.000000000 -0800 @@ -1,8 +1,10 @@ #!/usr/bin/make -f # -*- makefile -*- -## use hardening flags +## use hardening some flags DPKG_EXPORT_BUILDFLAGS = 1 +DEB_BUILD_MAINT_OPTIONS=hardening=+format,-fortify,+stackprotector,+relro +export DEB_BUILD_MAINT_OPTIONS include /usr/share/dpkg/buildflags.mk ## only link what is needed @@ -70,4 +72,3 @@ override_dh_compress: dh_compress -X.pd -X.wav -X.aiff -X.txt -
