Package: libheimdal-kadm5-perl Version: 0.08-3+b2 Severity: grave Tags: upstream Justification: renders package unusable
The XS code for Heimdal::Kadm5 calls the _c_ internal functions directly rather than calling the public functions that are prototyped in the included header files. As a result, it doesn't get the benefit of any prototype checking and doesn't fail to build when prototypes change. The latest version of Heimdal has introduced new versions of at least the create_principal and chpass_principal interfaces. The public interfaces are unchanged (a new version is added via a different symbol), but the private internal functions were just modified to take a different number of arguments. As a result, the Heimdal::Kadm5 code calls those functions with random stack garbage as their new arguments, resulting in weird failures, segfaults, and other issues. This was originally reported by Samuel Cabrero in May in private email, but I didn't realize the severity of the issue at the time. I'm preparing a patch right now. -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 3.2.0-2-686-pae (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages libheimdal-kadm5-perl depends on: ii libc6 2.13-35 ii libkadm5clnt7-heimdal 1.6~git20120403+dfsg1-2 ii libkrb5-26-heimdal 1.6~git20120403+dfsg1-2 ii perl 5.14.2-12 ii perl-base [perlapi-5.14.2] 5.14.2-12 libheimdal-kadm5-perl recommends no packages. libheimdal-kadm5-perl suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
