Source: getfem++ Source-Version: 4.1.1-6 Severity: serious Tags: wheezy Control: fixed -1 4.2.1~beta1~svn4422~dfsg-1
Hi! This package contains a bogus patch, which makes latest dpkg-source in stable to be unable to correctly unpack the source, due to more strict parsing of patches required to disallow path traversal vulnerabilities. The broken patch has a stray @@ patch hunk marker. Here's a simple patch fixing this. It would be nice if this could be fixed in stable, otherwise the source cannot be unpacked normally. I'm ready to help with such release if needed, given that the “regression” was caused by the dpkg update. (Unstable is unaffected.) This was found by David Suárez in an archive-wide check: <https://lists.debian.org/debian-dpkg/2014/07/msg00002.html> Thanks, Guillem
diff -Nru getfem++-4.1.1+dfsg1/debian/changelog getfem++-4.1.1+dfsg1/debian/changelog --- getfem++-4.1.1+dfsg1/debian/changelog 2012-11-17 23:12:43.000000000 +0100 +++ getfem++-4.1.1+dfsg1/debian/changelog 2014-07-05 23:12:45.000000000 +0200 @@ -1,3 +1,10 @@ +getfem++ (4.1.1+dfsg1-11.1) UNRELEASED; urgency=low + + * Non-maintainer upload. + * Fix broken patch headers. + + -- Guillem Jover <guil...@debian.org> Sat, 05 Jul 2014 23:12:45 +0200 + getfem++ (4.1.1+dfsg1-11) unstable; urgency=low [ Anton Gladky ] diff -Nru getfem++-4.1.1+dfsg1/debian/patches/ld-no-add-needed.patch getfem++-4.1.1+dfsg1/debian/patches/ld-no-add-needed.patch --- getfem++-4.1.1+dfsg1/debian/patches/ld-no-add-needed.patch 2012-11-17 22:40:46.000000000 +0100 +++ getfem++-4.1.1+dfsg1/debian/patches/ld-no-add-needed.patch 2014-07-05 23:09:18.000000000 +0200 @@ -3,7 +3,6 @@ Author: Matthias Klose <d...@ubuntu.com> Last-Update: 2012-01-18 -@@ -0,0 +1,44 @@ --- a/tests/Makefile.in +++ b/tests/Makefile.in @@ -562,7 +562,7 @@
