Your message dated Fri, 23 Dec 2011 14:50:38 +0000
with message-id <e1re6se-0001ay...@franck.debian.org>
and subject line Bug#653001: fixed in njplot 2.3-4
has caused the Debian Bug report #653001,
regarding njplot: FTBFS with -Werror=format-security
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
653001: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=653001
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: njplot
Version: 2.3-3
Severity: serious
Tags: upstream patch
Justification: fails to build from source (but built successfully in the past)
User: debian...@lists.debian.org
Usertags: hardening-format-security
njplot fails to build with -Werror=format-security compiler option.
gcc -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat
-Wformat-security -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat
-Wformat-security -Werror=format-security -Wall -c -I/usr/include/ncbi -DNO_PDF
-DWIN_MOTIF -DHELPFILENAME=\"/usr/share/njplot/njplot.help\" njplot-vib.c
njplot-vib.c: In function 'process_args':
njplot-vib.c:1979:3: error: format not a string literal and no format arguments
[-Werror=format-security]
njplot-vib.c: In function 'dir_lineto':
njplot-vib.c:2455:7: warning: unused variable 'p' [-Wunused-variable]
njplot-vib.c: In function 'unrootedset':
njplot-vib.c:3184:1: warning: label 'problem' defined but not used
[-Wunused-label]
njplot-vib.c: In function 'tty_plot':
njplot-vib.c:4297:8: warning: variable 'erreur' set but not used
[-Wunused-but-set-variable]
njplot-vib.c: In function 'Nlm_GetFontData':
njplot-vib.c:4377:5: warning: statement with no effect [-Wunused-value]
cc1: some warnings being treated as errors
Build log in Ubuntu:
https://launchpadlibrarian.net/87346162/buildlog_ubuntu-precise-armhf.njplot_2.3-3_FAILEDTOBUILD.txt.gz
See also:
http://wiki.debian.org/Hardening
http://lists.debian.org/debian-devel-announce/2011/09/msg00001.html
Patch from Ubuntu attached.
https://launchpad.net/ubuntu/+source/njplot/2.3-3ubuntu1
-- System Information:
Debian Release: wheezy/sid
APT prefers oneiric-updates
APT policy: (500, 'oneiric-updates'), (500, 'oneiric-security'), (500,
'oneiric-proposed'), (500, 'oneiric'), (100, 'oneiric-backports')
Architecture: i386 (i686)
Kernel: Linux 3.0.0-15-generic (SMP w/2 CPU cores)
Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Description: fix FTBFS with -Werror=format-security.
Author: Ilya Barygin <randomact...@ubuntu.com>
--- njplot-2.3.orig/njplot-vib.c
+++ njplot-2.3/njplot-vib.c
@@ -1976,7 +1976,7 @@ PDFONLY" no window interface, just
#else
fprintf(stderr,
#endif
- message);
+ "%s", message);
exit(0);
}
}
--- End Message ---
--- Begin Message ---
Source: njplot
Source-Version: 2.3-4
We believe that the bug you reported is fixed in the latest version of
njplot, which is due to be installed in the Debian FTP archive:
njplot_2.3-4.debian.tar.gz
to main/n/njplot/njplot_2.3-4.debian.tar.gz
njplot_2.3-4.dsc
to main/n/njplot/njplot_2.3-4.dsc
njplot_2.3-4_amd64.deb
to main/n/njplot/njplot_2.3-4_amd64.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 653...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andreas Tille <ti...@debian.org> (supplier of updated njplot package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Fri, 23 Dec 2011 13:58:26 +0100
Source: njplot
Binary: njplot
Architecture: source amd64
Version: 2.3-4
Distribution: unstable
Urgency: low
Maintainer: Debian Med Packaging Team
<debian-med-packag...@lists.alioth.debian.org>
Changed-By: Andreas Tille <ti...@debian.org>
Description:
njplot - phylogenetic tree drawing program
Closes: 653001
Changes:
njplot (2.3-4) unstable; urgency=low
.
* Fix FTBFS with -Werror=format-security (Thanks for the
patch to Ilya Barygin <randomact...@ubuntu.com>)
Closes: #653001
* debian/control:
- Standards-Version: 3.9.2 (no changes needed)
- Fixed Vcs fields
- Removed article in short description
* Debhelper 8 (control+compat)
Checksums-Sha1:
8c0d4e2c6748f2fd53af0e093553124bbcf0e9b3 1398 njplot_2.3-4.dsc
cb7144d762cfcda8f5c75d37a0ddcf6bf81828d1 6043 njplot_2.3-4.debian.tar.gz
0f32d2d4591ee5f11891a03f3fc0e0370165845c 124196 njplot_2.3-4_amd64.deb
Checksums-Sha256:
87505edeb564864e417ebc97200e89fef4fac9b2859098ba42ad2ad001d07954 1398
njplot_2.3-4.dsc
895f0f081b34324457bafebc5395d6818b00f7e8b1dd80527afcffd63ed68800 6043
njplot_2.3-4.debian.tar.gz
d527745a9eca8373bef4bc5168fe365f0081da3ec509512bef3000efb52b5a67 124196
njplot_2.3-4_amd64.deb
Files:
947ea563fb82743e6593ed09ce406714 1398 science optional njplot_2.3-4.dsc
ce2fcbb6c537cadcbe4747e434cb1d04 6043 science optional
njplot_2.3-4.debian.tar.gz
881a3def85ac734281b0e328df0c7e04 124196 science optional njplot_2.3-4_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
iEYEARECAAYFAk70i44ACgkQYDBbMcCf01pqcwCeJUPjd3Mi5c85LY7wqU0C4hid
/sEAniTQia0HrizpZ2VQIYqob/aNZfuB
=IzjT
-----END PGP SIGNATURE-----
--- End Message ---
