Package: libfreerdp3-3 Version: 3.11.1+dfsg-1 Severity: serious Tags: upstream patch
libfreerdp 3.11 introduced SSE4.1 optimizations but the runtime check is implemented incorrectly, leading to SIGILL on machines without SSE4.1. A fix is scheduled for 3.12 in [1]. I did a local rebuild with those 3 commits applied via d/patches and it solves the issue. Note that the runtime check was wrong on all platforms, but maybe others were lucky enough to not have those optimized instructions being emitted *before* the check. So while this issue showed on amd64, arm could be affected as well. [1] https://github.com/FreeRDP/FreeRDP/pull/11163 Cheers, sur5r -- System Information: Debian Release: trixie/sid APT prefers testing APT policy: (501, 'testing'), (500, 'stable-updates'), (500, 'stable-security'), (500, 'proposed-updates'), (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 6.12.11-amd64 (SMP w/4 CPU threads; PREEMPT) Kernel taint flags: TAINT_WARN, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages libfreerdp3-3 depends on: ii libavcodec61 7:7.1-3+b2 ii libavutil59 7:7.1-3+b2 ii libc6 2.40-6 ii libssl3t64 3.4.0-2 ii libswresample5 7:7.1-3+b2 ii libswscale8 7:7.1-3+b2 ii libwinpr3-3 3.11.1+dfsg-1 ii libx11-6 2:1.8.10-2 ii libxkbfile1 1:1.1.0-1+b4 ii zlib1g 1:1.3.dfsg+really1.3.1-1+b1 libfreerdp3-3 recommends no packages. Versions of packages libfreerdp3-3 suggests: ii freerdp3-x11 3.11.1+dfsg-1 -- no debconf information -- ceterum censeo microsoftem esse delendam.
pgpkZ_xJPoP5b.pgp
Description: OpenPGP digital signature
