[Bug 2042665] Re: package libc6-dev 2.38-1ubuntu6 failed to install/upgrade: trying to overwrite '/usr/lib/x86_64-linux-gnu/audit/sotruss-lib.so', which is also in package libc6:amd64 2.37-0ubuntu2.1

Launchpad Bug Tracker 2042665 at bugs.launchpad.net
Thu Feb 22 20:46:19 UTC 2024 

This bug was fixed in the package glibc - 2.39-0ubuntu1

---------------
glibc (2.39-0ubuntu1) noble; urgency=medium

  * New upstream release
    Contains fixes for the following CVEs:
    - CVE-2023-6246: Heap buffer overflow in __vsyslog_internal()
    - CVE-2023-6779: Heap buffer overflow in __vsyslog_internal()
    - CVE-2023-6780: Integer overflow in __vsyslog_internal()
    Patches:
    - Several patches refreshed
    - d/p/localedata/lv_LV-current.patch: dropped, applied upstream
    - d/p/lp{2031495,2032624}: dropped, applied upstream
    - d/p/any/git-c-utf-8-language.diff: dropped, applied upstream
  * d/p/ubuntu/submitted-tests-gracefully-handle-AppArmor-userns-containment.patch:
    Fix the tests in recent apparmor environments (LP: #2048375)
  * Drop libnss-nis and libnss-nisplus to Suggests (LP: #2045241)
  * Fix Replaces version for libsotruss.so file move (LP: #2042665)
  * Remove libc6-dev dependency on libtirpc-dev (LP: #2045763)
  * Dropped a lot of Ubuntu-specific xfails that are now passing.
  * Drop the -prof variant to instead use frame pointers on all 64-bit
    architectures by default to match the rest of the distro (LP: #2042790)

 -- Simon Chopin <schopin at ubuntu.com>  Thu, 01 Feb 2024 09:44:24 +0100

** Changed in: glibc (Ubuntu Noble)
       Status: In Progress => Fix Released

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-6246

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-6779

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-6780

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to glibc in Ubuntu.
https://bugs.launchpad.net/bugs/2042665

Title:
  package libc6-dev 2.38-1ubuntu6 failed to install/upgrade: trying to
  overwrite '/usr/lib/x86_64-linux-gnu/audit/sotruss-lib.so', which is
  also in package libc6:amd64 2.37-0ubuntu2.1

Status in glibc package in Ubuntu:
  Fix Released
Status in glibc source package in Mantic:
  Won't Fix
Status in glibc source package in Noble:
  Fix Released

Bug description:
  [Issue]
  The file sotruss-lib.so has been moved from libc6 to libc6-dev in the 2.38 merge without the proper Replace statement being filed. This is normally not a problem during a standard upgrade process as ubuntu-release-upgrader adds --force-overwrite to the dpkg options to prevent this kind of issues from breaking upgrades.

  However, if the upgrade breaks for unrelated reasons, the user will be
  left trying to upgrade manually via `apt full-upgrade`, which will
  trigger the issue.

  [Workaround]
  When invoking `apt full-upgrade` manually, do it with the following option:

  apt full-upgrade -o Dpkg::Options::="--force-overwrite"

  [Original Report]
  I am unable to install ubuntu 23.10 ,

  ProblemType: PackageDistroRelease: Ubuntu 23.10
  Package: libc6-dev 2.38-1ubuntu6
  ProcVersionSignature: Ubuntu 6.2.0-36.37-generic 6.2.16
  Uname: Linux 6.2.0-36-generic x86_64
  ApportVersion: 2.27.0-0ubuntu5
  Architecture: amd64
  CasperMD5CheckResult: pass
  Date: Fri Nov  3 18:49:58 2023
  DuplicateSignature:
   package:libc6-dev:2.38-1ubuntu6
   Unpacking libc6-dev:amd64 (2.38-1ubuntu6) over (2.37-0ubuntu2.1) ...
   dpkg: error processing archive /var/cache/apt/archives/libc6-dev_2.38-1ubuntu6_amd64.deb (--unpack):
    trying to overwrite '/usr/lib/x86_64-linux-gnu/audit/sotruss-lib.so', which is also in package libc6:amd64 2.37-0ubuntu2.1
  ErrorMessage: trying to overwrite '/usr/lib/x86_64-linux-gnu/audit/sotruss-lib.so', which is also in package libc6:amd64 2.37-0ubuntu2.1
  InstallationDate: Installed on 2023-02-08 (269 days ago)
  InstallationMedia: Ubuntu 22.04.1 LTS "Jammy Jellyfish" - Release amd64 (20220809.1)
  Python3Details: /usr/bin/python3.11, Python 3.11.6, python3-minimal, 3.11.4-5
  PythonDetails: N/A
  RebootRequiredPkgs: Error: path contained symlinks.
  RelatedPackageVersions:
   dpkg 1.22.0ubuntu1
   apt  2.7.3SourcePackage: glibc
  Title: package libc6-dev 2.38-1ubuntu6 failed to install/upgrade: trying to overwrite '/usr/lib/x86_64-linux-gnu/audit/sotruss-lib.so', which is also in package libc6:amd64 2.37-0ubuntu2.1
  UpgradeStatus: Upgraded to mantic on 2023-11-03 (0 days ago)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/glibc/+bug/2042665/+subscriptions

More information about the foundations-bugs mailing list