Your message dated Fri, 01 Mar 2024 13:09:49 +0000
with message-id <e1rg2e5-00glj2...@fasolo.debian.org>
and subject line Bug#1063185: fixed in readpe 0.82-3.1
has caused the Debian Bug report #1063185,
regarding readpe: NMU diff for 64-bit time_t transition
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
1063185: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1063185
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: readpe
Version: 0.82-3
Severity: serious
Tags: patch pending sid trixie
Justification: library ABI skew on upgrade
User: debian-...@lists.debian.org
Usertags: time-t
NOTICE: these changes must not be uploaded to unstable yet!
Dear maintainer,
As part of the 64-bit time_t transition required to support 32-bit
architectures in 2038 and beyond
(https://wiki.debian.org/ReleaseGoals/64bit-time), we have identified
readpe as a source package shipping runtime libraries whose ABI
either is affected by the change in size of time_t, or could not be
analyzed via abi-compliance-checker (and therefore to be on the safe
side we assume is affected).
To ensure that inconsistent combinations of libraries with their
reverse-dependencies are never installed together, it is necessary to
have a library transition, which is most easily done by renaming the
runtime library package.
Since turning on 64-bit time_t is being handled centrally through a change
to the default dpkg-buildflags (https://bugs.debian.org/1037136), it is
important that libraries affected by this ABI change all be uploaded close
together in time. Therefore I have prepared a 0-day NMU for readpe
which will initially be uploaded to experimental if possible, then to
unstable after packages have cleared binary NEW.
Please find the patch for this NMU attached.
If you have any concerns about this patch, please reach out ASAP. Although
this package will be uploaded to experimental immediately, there will be a
period of several days before we begin uploads to unstable; so if information
becomes available that your package should not be included in the transition,
there is time for us to amend the planned uploads.
-- System Information:
Debian Release: trixie/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 6.5.0-14-generic (SMP w/12 CPU threads; PREEMPT)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_OOT_MODULE
Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
diff -Nru readpe-0.82/debian/changelog readpe-0.82/debian/changelog
--- readpe-0.82/debian/changelog 2023-09-08 22:48:02.000000000 +0000
+++ readpe-0.82/debian/changelog 2024-02-05 16:15:33.000000000 +0000
@@ -1,3 +1,10 @@
+readpe (0.82-3.1) experimental; urgency=medium
+
+ * Non-maintainer upload.
+ * Rename libraries for 64-bit time_t transition.
+
+ -- Steve Langasek <vor...@debian.org> Mon, 05 Feb 2024 16:15:33 +0000
+
readpe (0.82-3) unstable; urgency=medium
* debian/tests/control:
diff -Nru readpe-0.82/debian/control readpe-0.82/debian/control
--- readpe-0.82/debian/control 2023-09-08 22:48:02.000000000 +0000
+++ readpe-0.82/debian/control 2024-02-05 16:15:33.000000000 +0000
@@ -24,7 +24,7 @@
Replaces: pev (<< 0.82-1~)
Breaks: pev (<< 0.82-1~)
Architecture: any
-Depends: libpe1, ${misc:Depends}, ${shlibs:Depends}
+Depends: libpe1t64, ${misc:Depends}, ${shlibs:Depends}
Description: command-line tools to manipulate Windows PE files
readpe is a toolkit designed to analyze Microsoft Windows PE (Portable
Executable) binary files. Its tools can parse and compare PE32/PE32+
@@ -43,12 +43,15 @@
This package provides the ofs2rva, pedis, pehash, peldd, pepack, peres,
pescan, pesec, pestr, readpe and rva2ofs commands.
-Package: libpe1
+Package: libpe1t64
+Provides: ${t64:Provides}
+Replaces: libpe1
+Breaks: libpe1 (<< ${source:Version})
Section: libs
Architecture: any
Depends: ${misc:Depends}, ${shlibs:Depends}
Description: library to read Windows PE files
- The libpe1 package provides a shared library which allows reading PE 32 and
+ The libpe1t64 package provides a shared library which allows reading PE 32 and
64-bit files. Third party programs depend on this package to read internals of
PE files.
.
@@ -57,9 +60,9 @@
Package: libpe-dev
Section: libdevel
Architecture: any
-Depends: libpe1 (= ${binary:Version}), ${misc:Depends}
+Depends: libpe1t64 (= ${binary:Version}), ${misc:Depends}
Description: library to read Windows PE files (development files)
- The libpe1 package provides a shared library which allows reading PE 32 and
+ The libpe1t64 package provides a shared library which allows reading PE 32 and
64-bit files. Third party programs depend on this package to read internals of
PE files.
.
diff -Nru readpe-0.82/debian/libpe1.install readpe-0.82/debian/libpe1.install
--- readpe-0.82/debian/libpe1.install 2023-09-08 22:48:02.000000000 +0000
+++ readpe-0.82/debian/libpe1.install 1970-01-01 00:00:00.000000000 +0000
@@ -1,2 +0,0 @@
-#!/usr/bin/dh-exec
-usr/lib/libpe.so.* usr/lib/${DEB_HOST_MULTIARCH}/
diff -Nru readpe-0.82/debian/libpe1.symbols readpe-0.82/debian/libpe1.symbols
--- readpe-0.82/debian/libpe1.symbols 2023-09-08 22:48:02.000000000 +0000
+++ readpe-0.82/debian/libpe1.symbols 1970-01-01 00:00:00.000000000 +0000
@@ -1,83 +0,0 @@
-libpe.so.1 libpe1 #MINVER#
-* Build-Depends-Package: libpe1-dev
- cpl_analysis@Base 0.82
- edit_distn@Base 0.82
- fuzzy_compare@Base 0.82
- fuzzy_digest@Base 0.82
- fuzzy_free@Base 0.82
- fuzzy_hash_buf@Base 0.82
- fuzzy_hash_file@Base 0.82
- fuzzy_hash_filename@Base 0.82
- fuzzy_hash_stream@Base 0.82
- fuzzy_new@Base 0.82
- fuzzy_update@Base 0.82
- oleaut32_arr@Base 0.82
- pe_calculate_entropy_file@Base 0.82
- pe_can_read@Base 0.82
- pe_check_fake_entrypoint@Base 0.82
- pe_coff@Base 0.82
- pe_directories@Base 0.82
- pe_directories_count@Base 0.82
- pe_directory_by_entry@Base 0.82
- pe_directory_name@Base 0.82
- pe_dos@Base 0.82
- pe_error_msg@Base 0.82
- pe_error_print@Base 0.82
- pe_exports@Base 0.82
- pe_exports_dealloc@Base 0.82
- pe_filesize@Base 0.82
- pe_fpu_trick@Base 0.82
- pe_get_cpl_analysis@Base 0.82
- pe_get_file_hash@Base 0.82
- pe_get_headers_hashes@Base 0.82
- pe_get_sections_hash@Base 0.82
- pe_get_tls_callback@Base 0.82
- pe_get_tls_directory@Base 0.82
- pe_has_fake_entrypoint@Base 0.82
- pe_hash_dealloc@Base 0.82
- pe_hash_headers_dealloc@Base 0.82
- pe_hash_raw_data@Base 0.82
- pe_hash_recommended_size@Base 0.82
- pe_hash_sections_dealloc@Base 0.82
- pe_image_characteristic_name@Base 0.82
- pe_image_dllcharacteristic_name@Base 0.82
- pe_imphash@Base 0.82
- pe_imports@Base 0.82
- pe_imports_dealloc@Base 0.82
- pe_is_dll@Base 0.82
- pe_is_loaded@Base 0.82
- pe_is_pe@Base 0.82
- pe_load_file@Base 0.82
- pe_load_file_ext@Base 0.82
- pe_machine_type_name@Base 0.82
- pe_ofs2rva@Base 0.82
- pe_optional@Base 0.82
- pe_parse@Base 0.82
- pe_resource_entry_info_lookup@Base 0.82
- pe_resource_find_node_by_type_and_level@Base 0.82
- pe_resource_find_parent_node_by_type_and_level@Base 0.82
- pe_resource_last_child_node@Base 0.82
- pe_resource_parse_string_u@Base 0.82
- pe_resource_root_node@Base 0.82
- pe_resource_search_nodes@Base 0.82
- pe_resources@Base 0.82
- pe_resources_dealloc@Base 0.82
- pe_resources_dealloc_node_search_result@Base 0.82
- pe_rva2ofs@Base 0.82
- pe_rva2section@Base 0.82
- pe_section_by_name@Base 0.82
- pe_section_characteristic_name@Base 0.82
- pe_section_name@Base 0.82
- pe_sections@Base 0.82
- pe_sections_count@Base 0.82
- pe_unload@Base 0.82
- pe_utils_get_homedir@Base 0.82
- pe_utils_is_file_readable@Base 0.82
- pe_utils_str_array_join@Base 0.82
- pe_utils_str_ends_with@Base 0.82
- pe_utils_str_inplace_ltrim@Base 0.82
- pe_utils_str_inplace_rtrim@Base 0.82
- pe_utils_str_inplace_trim@Base 0.82
- pe_utils_str_widechar2ascii@Base 0.82
- pe_windows_subsystem_name@Base 0.82
- ws2_32_arr@Base 0.82
diff -Nru readpe-0.82/debian/libpe1t64.install
readpe-0.82/debian/libpe1t64.install
--- readpe-0.82/debian/libpe1t64.install 1970-01-01 00:00:00.000000000
+0000
+++ readpe-0.82/debian/libpe1t64.install 2023-09-08 22:48:02.000000000
+0000
@@ -0,0 +1,2 @@
+#!/usr/bin/dh-exec
+usr/lib/libpe.so.* usr/lib/${DEB_HOST_MULTIARCH}/
diff -Nru readpe-0.82/debian/libpe1t64.lintian-overrides
readpe-0.82/debian/libpe1t64.lintian-overrides
--- readpe-0.82/debian/libpe1t64.lintian-overrides 1970-01-01
00:00:00.000000000 +0000
+++ readpe-0.82/debian/libpe1t64.lintian-overrides 2024-02-05
16:15:33.000000000 +0000
@@ -0,0 +1 @@
+libpe1t64: package-name-doesnt-match-sonames libpe1
diff -Nru readpe-0.82/debian/libpe1t64.symbols
readpe-0.82/debian/libpe1t64.symbols
--- readpe-0.82/debian/libpe1t64.symbols 1970-01-01 00:00:00.000000000
+0000
+++ readpe-0.82/debian/libpe1t64.symbols 2024-02-05 16:15:33.000000000
+0000
@@ -0,0 +1,83 @@
+libpe.so.1 libpe1t64 #MINVER#
+* Build-Depends-Package: libpe1-dev
+ cpl_analysis@Base 0.82
+ edit_distn@Base 0.82
+ fuzzy_compare@Base 0.82
+ fuzzy_digest@Base 0.82
+ fuzzy_free@Base 0.82
+ fuzzy_hash_buf@Base 0.82
+ fuzzy_hash_file@Base 0.82
+ fuzzy_hash_filename@Base 0.82
+ fuzzy_hash_stream@Base 0.82
+ fuzzy_new@Base 0.82
+ fuzzy_update@Base 0.82
+ oleaut32_arr@Base 0.82
+ pe_calculate_entropy_file@Base 0.82
+ pe_can_read@Base 0.82
+ pe_check_fake_entrypoint@Base 0.82
+ pe_coff@Base 0.82
+ pe_directories@Base 0.82
+ pe_directories_count@Base 0.82
+ pe_directory_by_entry@Base 0.82
+ pe_directory_name@Base 0.82
+ pe_dos@Base 0.82
+ pe_error_msg@Base 0.82
+ pe_error_print@Base 0.82
+ pe_exports@Base 0.82
+ pe_exports_dealloc@Base 0.82
+ pe_filesize@Base 0.82
+ pe_fpu_trick@Base 0.82
+ pe_get_cpl_analysis@Base 0.82
+ pe_get_file_hash@Base 0.82
+ pe_get_headers_hashes@Base 0.82
+ pe_get_sections_hash@Base 0.82
+ pe_get_tls_callback@Base 0.82
+ pe_get_tls_directory@Base 0.82
+ pe_has_fake_entrypoint@Base 0.82
+ pe_hash_dealloc@Base 0.82
+ pe_hash_headers_dealloc@Base 0.82
+ pe_hash_raw_data@Base 0.82
+ pe_hash_recommended_size@Base 0.82
+ pe_hash_sections_dealloc@Base 0.82
+ pe_image_characteristic_name@Base 0.82
+ pe_image_dllcharacteristic_name@Base 0.82
+ pe_imphash@Base 0.82
+ pe_imports@Base 0.82
+ pe_imports_dealloc@Base 0.82
+ pe_is_dll@Base 0.82
+ pe_is_loaded@Base 0.82
+ pe_is_pe@Base 0.82
+ pe_load_file@Base 0.82
+ pe_load_file_ext@Base 0.82
+ pe_machine_type_name@Base 0.82
+ pe_ofs2rva@Base 0.82
+ pe_optional@Base 0.82
+ pe_parse@Base 0.82
+ pe_resource_entry_info_lookup@Base 0.82
+ pe_resource_find_node_by_type_and_level@Base 0.82
+ pe_resource_find_parent_node_by_type_and_level@Base 0.82
+ pe_resource_last_child_node@Base 0.82
+ pe_resource_parse_string_u@Base 0.82
+ pe_resource_root_node@Base 0.82
+ pe_resource_search_nodes@Base 0.82
+ pe_resources@Base 0.82
+ pe_resources_dealloc@Base 0.82
+ pe_resources_dealloc_node_search_result@Base 0.82
+ pe_rva2ofs@Base 0.82
+ pe_rva2section@Base 0.82
+ pe_section_by_name@Base 0.82
+ pe_section_characteristic_name@Base 0.82
+ pe_section_name@Base 0.82
+ pe_sections@Base 0.82
+ pe_sections_count@Base 0.82
+ pe_unload@Base 0.82
+ pe_utils_get_homedir@Base 0.82
+ pe_utils_is_file_readable@Base 0.82
+ pe_utils_str_array_join@Base 0.82
+ pe_utils_str_ends_with@Base 0.82
+ pe_utils_str_inplace_ltrim@Base 0.82
+ pe_utils_str_inplace_rtrim@Base 0.82
+ pe_utils_str_inplace_trim@Base 0.82
+ pe_utils_str_widechar2ascii@Base 0.82
+ pe_windows_subsystem_name@Base 0.82
+ ws2_32_arr@Base 0.82
--- End Message ---
--- Begin Message ---
Source: readpe
Source-Version: 0.82-3.1
Done: Benjamin Drung <bdr...@debian.org>
We believe that the bug you reported is fixed in the latest version of
readpe, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1063...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Benjamin Drung <bdr...@debian.org> (supplier of updated readpe package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 01 Mar 2024 12:44:00 +0000
Source: readpe
Architecture: source
Version: 0.82-3.1
Distribution: unstable
Urgency: medium
Maintainer: Debian Security Tools <team+pkg-secur...@tracker.debian.org>
Changed-By: Benjamin Drung <bdr...@debian.org>
Closes: 1063185
Changes:
readpe (0.82-3.1) unstable; urgency=medium
.
* Non-maintainer upload.
* Rename libraries for 64-bit time_t transition. Closes: #1063185
Checksums-Sha1:
ea861fd2a7dee4feabcd8d7703d2adeeac56608c 2171 readpe_0.82-3.1.dsc
db2c796ef4558e48ef13bfb14131debc739fb6f1 9356 readpe_0.82-3.1.debian.tar.xz
00548e38ed0486deacc7de5533a601b96831fbc4 6275 readpe_0.82-3.1_source.buildinfo
Checksums-Sha256:
671df9cb77d0382260df8d21057fffd162cf0797abcaaa659b9251ec415c5e05 2171
readpe_0.82-3.1.dsc
764a8aab02e5378cf8d50d9bae0b8132b3e2fdae8573743b13949ee84cb8811a 9356
readpe_0.82-3.1.debian.tar.xz
a2a7caf386fe46fd319df2e1b1fda24d12bddb2ecf31054a60b4735babb2fd73 6275
readpe_0.82-3.1_source.buildinfo
Files:
31d3e04e648cdf849852d1a750310f1c 2171 utils optional readpe_0.82-3.1.dsc
c4d6356c2a0775a3a01b43d8da3bea64 9356 utils optional
readpe_0.82-3.1.debian.tar.xz
86e214bfa68871140294b49d34dd0dbb 6275 utils optional
readpe_0.82-3.1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=pFqO
-----END PGP SIGNATURE-----
pgpttovgnLbS3.pgp
Description: PGP signature
--- End Message ---
