[Bug 2089779] Re: Buffer overflow in autopkgtest of wesnoth
Christian Ehrhardt
2089779 at bugs.launchpad.net
Thu Nov 28 12:31:57 UTC 2024
The only reasonable thing in there with a function is the lib itself.
$ find good
good
good/usr
good/usr/share
good/usr/share/doc
good/usr/share/doc/libsdl2-2.0-0
good/usr/share/doc/libsdl2-2.0-0/README.md
good/usr/share/doc/libsdl2-2.0-0/CREDITS.txt
good/usr/share/doc/libsdl2-2.0-0/changelog.gz
good/usr/share/doc/libsdl2-2.0-0/BUGS.txt
good/usr/share/doc/libsdl2-2.0-0/changelog.Debian.gz
good/usr/share/doc/libsdl2-2.0-0/copyright
good/usr/share/doc/libsdl2-2.0-0/README-SDL.txt
good/usr/lib
good/usr/lib/x86_64-linux-gnu
good/usr/lib/x86_64-linux-gnu/libSDL2-2.0.so.0
good/usr/lib/x86_64-linux-gnu/libSDL2-2.0.so.0.3000.9
Same size:
$ ll bad/usr/lib/x86_64-linux-gnu/libSDL2-2.0.so.0.3000.9 good/usr/lib/x86_64-linux-gnu/libSDL2-2.0.so.0.3000.9
-rw-r--r-- 1 ubuntu ubuntu 2622832 Nov 4 18:12 bad/usr/lib/x86_64-linux-gnu/libSDL2-2.0.so.0.3000.9
-rw-r--r-- 1 ubuntu ubuntu 2622832 Nov 28 10:35 good/usr/lib/x86_64-linux-gnu/libSDL2-2.0.so.0.3000.9
Different chcksum:
$ md5sum bad/usr/lib/x86_64-linux-gnu/libSDL2-2.0.so.0.3000.9 good/usr/lib/x86_64-linux-gnu/libSDL2-2.0.so.0.3000.9
1ce1ada3b1d5498bcd486a94c3e74888 bad/usr/lib/x86_64-linux-gnu/libSDL2-2.0.so.0.3000.9
66415cf3dca73fa4a9a1feda615ac7e5 good/usr/lib/x86_64-linux-gnu/libSDL2-2.0.so.0.3000.9
$ readelf -a bad/usr/lib/x86_64-linux-gnu/libSDL2-2.0.so.0.3000.9 > bad.elf
$ readelf -a good/usr/lib/x86_64-linux-gnu/libSDL2-2.0.so.0.3000.9 > good.elf
$ diff -Naur bad.elf good.elf
...
=> Only some offsets differ here
OK, this might be too huge but objdump + vimdiff ...
A bunch of offsets moved in SDL_DYNAPI_entry references
Later a few calls more/less but all context except to SDL_DYNAPI_entry stayed the same
$ diff -Naur good.objdump bad.objdump | head -n 80
--- good.objdump 2024-11-28 13:17:30.390472506 +0100
+++ bad.objdump 2024-11-28 13:17:36.750521793 +0100
@@ -1,5 +1,5 @@
-good/usr/lib/x86_64-linux-gnu/libSDL2-2.0.so.0.3000.9: file format elf64-x86-64
+bad/usr/lib/x86_64-linux-gnu/libSDL2-2.0.so.0.3000.9: file format elf64-x86-64
Disassembly of section .init:
@@ -2333,7 +2333,7 @@
32050: 48 8b 04 25 00 00 00 mov 0x0,%rax
32057: 00
32058: 0f 0b ud2
- 3205a: 48 8d 3d 23 90 1f 00 lea 0x1f9023(%rip),%rdi # 22b084 <SDL_DYNAPI_entry@@Base+0x1c72c4>
+ 3205a: 48 8d 3d 13 90 1f 00 lea 0x1f9013(%rip),%rdi # 22b074 <SDL_DYNAPI_entry@@Base+0x1c72b4>
32061: e8 8a f5 ff ff call 315f0 <perror at plt>
32066: e9 10 de 03 00 jmp 6fe7b <SDL_DYNAPI_entry@@Base+0xc0bb>
3206b: 49 8b 74 24 08 mov 0x8(%r12),%rsi
@@ -2351,56 +2351,56 @@
32098: c6 04 25 00 00 00 00 movb $0x0,0x0
3209f: 00
320a0: 0f 0b ud2
- 320a2: 48 8d 3d 15 b8 1f 00 lea 0x1fb815(%rip),%rdi # 22d8be <SDL_DYNAPI_entry@@Base+0x1c9afe>
+ 320a2: 48 8d 3d 05 b8 1f 00 lea 0x1fb805(%rip),%rdi # 22d8ae <SDL_DYNAPI_entry@@Base+0x1c9aee>
320a9: e8 42 f5 ff ff call 315f0 <perror at plt>
- 320ae: 48 8d 3d 23 d6 1d 00 lea 0x1dd623(%rip),%rdi # 20f6d8 <SDL_DYNAPI_entry@@Base+0x1ab918>
+ 320ae: 48 8d 3d 13 d6 1d 00 lea 0x1dd613(%rip),%rdi # 20f6c8 <SDL_DYNAPI_entry@@Base+0x1ab908>
320b5: 31 c0 xor %eax,%eax
320b7: e8 74 67 00 00 call 38830 <__isoc23_strtol at plt+0x6830>
320bc: e9 c3 12 15 00 jmp 183384 <SDL_DYNAPI_entry@@Base+0x11f5c4>
- 320c1: 48 8d 3d 77 b8 1f 00 lea 0x1fb877(%rip),%rdi # 22d93f <SDL_DYNAPI_entry@@Base+0x1c9b7f>
+ 320c1: 48 8d 3d 67 b8 1f 00 lea 0x1fb867(%rip),%rdi # 22d92f <SDL_DYNAPI_entry@@Base+0x1c9b6f>
320c8: e8 23 f5 ff ff call 315f0 <perror at plt>
320cd: e9 90 16 15 00 jmp 183762 <SDL_DYNAPI_entry@@Base+0x11f9a2>
- 320d2: 48 8d 3d 38 b8 1f 00 lea 0x1fb838(%rip),%rdi # 22d911 <SDL_DYNAPI_entry@@Base+0x1c9b51>
+ 320d2: 48 8d 3d 28 b8 1f 00 lea 0x1fb828(%rip),%rdi # 22d901 <SDL_DYNAPI_entry@@Base+0x1c9b41>
320d9: e8 12 f5 ff ff call 315f0 <perror at plt>
- 320de: 48 8d 3d 3d b8 1f 00 lea 0x1fb83d(%rip),%rdi # 22d922 <SDL_DYNAPI_entry@@Base+0x1c9b62>
+ 320de: 48 8d 3d 2d b8 1f 00 lea 0x1fb82d(%rip),%rdi # 22d912 <SDL_DYNAPI_entry@@Base+0x1c9b52>
320e5: 31 c0 xor %eax,%eax
320e7: e8 44 67 00 00 call 38830 <__isoc23_strtol at plt+0x6830>
320ec: e9 93 12 15 00 jmp 183384 <SDL_DYNAPI_entry@@Base+0x11f5c4>
- 320f1: 48 8d 3d 05 b8 1f 00 lea 0x1fb805(%rip),%rdi # 22d8fd <SDL_DYNAPI_entry@@Base+0x1c9b3d>
+ 320f1: 48 8d 3d f5 b7 1f 00 lea 0x1fb7f5(%rip),%rdi # 22d8ed <SDL_DYNAPI_entry@@Base+0x1c9b2d>
320f8: e8 f3 f4 ff ff call 315f0 <perror at plt>
- 320fd: 48 8d 3d 24 d6 1d 00 lea 0x1dd624(%rip),%rdi # 20f728 <SDL_DYNAPI_entry@@Base+0x1ab968>
+ 320fd: 48 8d 3d 14 d6 1d 00 lea 0x1dd614(%rip),%rdi # 20f718 <SDL_DYNAPI_entry@@Base+0x1ab958>
32104: 31 c0 xor %eax,%eax
32106: e8 25 67 00 00 call 38830 <__isoc23_strtol at plt+0x6830>
3210b: e9 74 12 15 00 jmp 183384 <SDL_DYNAPI_entry@@Base+0x11f5c4>
- 32110: 48 8d 3d ba b7 1f 00 lea 0x1fb7ba(%rip),%rdi # 22d8d1 <SDL_DYNAPI_entry@@Base+0x1c9b11>
+ 32110: 48 8d 3d aa b7 1f 00 lea 0x1fb7aa(%rip),%rdi # 22d8c1 <SDL_DYNAPI_entry@@Base+0x1c9b01>
32117: e8 d4 f4 ff ff call 315f0 <perror at plt>
- 3211c: 48 8d 3d c0 b7 1f 00 lea 0x1fb7c0(%rip),%rdi # 22d8e3 <SDL_DYNAPI_entry@@Base+0x1c9b23>
+ 3211c: 48 8d 3d b0 b7 1f 00 lea 0x1fb7b0(%rip),%rdi # 22d8d3 <SDL_DYNAPI_entry@@Base+0x1c9b13>
32123: 31 c0 xor %eax,%eax
32125: e8 06 67 00 00 call 38830 <__isoc23_strtol at plt+0x6830>
3212a: e9 55 12 15 00 jmp 183384 <SDL_DYNAPI_entry@@Base+0x11f5c4>
- 3212f: 48 8d 3d 20 b8 1f 00 lea 0x1fb820(%rip),%rdi # 22d956 <SDL_DYNAPI_entry@@Base+0x1c9b96>
+ 3212f: 48 8d 3d 10 b8 1f 00 lea 0x1fb810(%rip),%rdi # 22d946 <SDL_DYNAPI_entry@@Base+0x1c9b86>
32136: e8 b5 f4 ff ff call 315f0 <perror at plt>
3213b: 48 89 df mov %rbx,%rdi
3213e: 48 8b 5d f8 mov -0x8(%rbp),%rbx
32142: c9 leave
32143: e9 e8 0a 01 00 jmp 42c30 <__isoc23_strtol at plt+0x10c30>
- 32148: 48 8d 3d 61 5f 1d 00 lea 0x1d5f61(%rip),%rdi # 2080b0 <SDL_DYNAPI_entry@@Base+0x1a42f0>
+ 32148: 48 8d 3d 51 5f 1d 00 lea 0x1d5f51(%rip),%rdi # 2080a0 <SDL_DYNAPI_entry@@Base+0x1a42e0>
3214f: 31 c0 xor %eax,%eax
32151: e8 da 66 00 00 call 38830 <__isoc23_strtol at plt+0x6830>
32156: 48 8b 04 25 60 00 00 mov 0x60,%rax
3215d: 00
3215e: 0f 0b ud2
- 32160: 48 8d 3d 0d 77 1f 00 lea 0x1f770d(%rip),%rdi # 229874 <SDL_DYNAPI_entry@@Base+0x1c5ab4>
+ 32160: 48 8d 3d fd 76 1f 00 lea 0x1f76fd(%rip),%rdi # 229864 <SDL_DYNAPI_entry@@Base+0x1c5aa4>
32167: 31 c0 xor %eax,%eax
32169: e8 c2 66 00 00 call 38830 <__isoc23_strtol at plt+0x6830>
3216e: eb e6 jmp 32156 <__isoc23_strtol at plt+0x156>
- 32170: 48 8d 3d fd 76 1f 00 lea 0x1f76fd(%rip),%rdi # 229874 <SDL_DYNAPI_entry@@Base+0x1c5ab4>
+ 32170: 48 8d 3d ed 76 1f 00 lea 0x1f76ed(%rip),%rdi # 229864 <SDL_DYNAPI_entry@@Base+0x1c5aa4>
32177: 31 c0 xor %eax,%eax
Build dependencies show some updated, but nothing too weird.
new libc maybe?
--- bad.txt 2024-11-28 13:29:20.134317287 +0100
+++ good.build 2024-11-28 13:29:30.395394688 +0100
@@ -3,9 +3,9 @@
automake (= 1:1.16.5-1.3ubuntu1),
autopoint (= 0.22.5-2),
autotools-dev (= 20220109.1),
- base-files (= 13.5ubuntu2),
+ base-files (= 13.5ubuntu3),
base-passwd (= 3.6.5),
- bash (= 5.2.32-1ubuntu1),
+ bash (= 5.2.32-1ubuntu2),
binutils (= 2.43.1-4ubuntu1),
binutils-common (= 2.43.1-4ubuntu1),
binutils-x86-64-linux-gnu (= 2.43.1-4ubuntu1),
@@ -21,14 +21,14 @@
cpp-14-x86-64-linux-gnu (= 14.2.0-8ubuntu1),
cpp-x86-64-linux-gnu (= 4:14.1.0-2ubuntu1),
dash (= 0.5.12-9ubuntu1),
- debconf (= 1.5.86ubuntu1),
+ debconf (= 1.5.87ubuntu1),
debhelper (= 13.20ubuntu1),
- debianutils (= 5.20),
+ debianutils (= 5.21),
debugedit (= 1:5.1-1),
dh-autoreconf (= 20),
dh-strip-nondeterminism (= 1.14.0-1),
diffutils (= 1:3.10-1build1),
- doxygen (= 1.9.8+ds-2ubuntu1),
+ doxygen (= 1.9.8+ds-2ubuntu2),
dpkg (= 1.22.11ubuntu3),
dpkg-dev (= 1.22.11ubuntu3),
dwz (= 0.15-1build6),
@@ -55,21 +55,21 @@
gettext (= 0.22.5-2),
gettext-base (= 0.22.5-2),
gir1.2-fcitx-1.0 (= 1:4.2.9.9-2build2),
- gir1.2-glib-2.0 (= 2.82.2-2),
- gir1.2-ibus-1.0 (= 1.5.31~rc1-1),
- girepository-tools (= 2.82.2-2),
+ gir1.2-glib-2.0 (= 2.82.2-3),
+ gir1.2-ibus-1.0 (= 1.5.31-1),
+ girepository-tools (= 2.82.2-3),
graphviz (= 2.42.4-2build3),
grep (= 3.11-4build1),
groff-base (= 1.23.0-5),
gzip (= 1.12-1.1ubuntu1),
- hostname (= 3.23+nmu2ubuntu2),
- init-system-helpers (= 1.66ubuntu1),
+ hostname (= 3.25),
+ init-system-helpers (= 1.67ubuntu1),
intltool-debian (= 0.35.0+20060710.6),
- libabsl20230802 (= 20230802.1-4ubuntu1),
+ libabsl20230802 (= 20230802.1-4ubuntu2),
libacl1 (= 2.3.2-2),
libann0 (= 1.1.2+doc-9build1),
- libaom3 (= 3.10.0-1),
- libapparmor1 (= 4.1.0~beta1-0ubuntu3),
+ libaom3 (= 3.11.0-1),
+ libapparmor1 (= 4.1.0~beta1-0ubuntu4),
libarchive-zip-perl (= 1.68-1),
libasan8 (= 14.2.0-8ubuntu1),
libasound2-data (= 1.2.12-1),
@@ -78,12 +78,12 @@
libasyncns0 (= 0.8-6build4),
libatomic1 (= 14.2.0-8ubuntu1),
libattr1 (= 1:2.5.2-2),
- libaudit-common (= 1:4.0.1-1ubuntu2),
- libaudit1 (= 1:4.0.1-1ubuntu2),
+ libaudit-common (= 1:4.0.2-2ubuntu1),
+ libaudit1 (= 1:4.0.2-2ubuntu1),
libbinutils (= 2.43.1-4ubuntu1),
libblkid-dev (= 2.40.2-1ubuntu1),
libblkid1 (= 2.40.2-1ubuntu1),
- libbrotli1 (= 1.1.0-2build2),
+ libbrotli1 (= 1.1.0-2build3),
libbsd0 (= 0.12.2-2),
libbz2-1.0 (= 1.0.8-6),
libc-bin (= 2.40-1ubuntu3),
@@ -91,7 +91,7 @@
libc6 (= 2.40-1ubuntu3),
libc6-dev (= 2.40-1ubuntu3),
libcairo2 (= 1.18.2-2),
- libcap-ng0 (= 0.8.5-3),
+ libcap-ng0 (= 0.8.5-3build1),
libcap2 (= 1:2.66-5ubuntu3),
libcc1-0 (= 14.2.0-8ubuntu1),
libcdt5 (= 2.42.4-2build3),
@@ -108,8 +108,8 @@
libde265-0 (= 1.0.15-1build4),
libdebconfclient0 (= 0.272ubuntu1),
libdebhelper-perl (= 13.20ubuntu1),
- libdecor-0-0 (= 0.2.2-1build2),
- libdecor-0-dev (= 0.2.2-1build2),
+ libdecor-0-0 (= 0.2.2-2),
+ libdecor-0-dev (= 0.2.2-2),
libdeflate0 (= 1.22-1),
libdpkg-perl (= 1.22.11ubuntu3),
libdrm-amdgpu1 (= 2.4.123-1),
@@ -125,7 +125,7 @@
libegl-mesa0 (= 24.2.3-1ubuntu1),
libegl1 (= 1.7.0-1build1),
libelf1t64 (= 0.192-4),
- libexpat1 (= 2.6.3-2),
+ libexpat1 (= 2.6.4-1),
libfcitx-config4 (= 1:4.2.9.9-2build2),
libfcitx-core0 (= 1:4.2.9.9-2build2),
libfcitx-gclient1 (= 1:4.2.9.9-2build2),
@@ -134,7 +134,7 @@
libffi8 (= 3.4.6-1build1),
libfile-stripnondeterminism-perl (= 1.14.0-1),
libflac12t64 (= 1.4.3+ds-2.1ubuntu2),
- libfmt9 (= 9.1.0+ds1-2),
+ libfmt10 (= 10.1.1+ds1-4),
libfontconfig1 (= 2.15.0-1.1ubuntu2),
libfreetype6 (= 2.13.3+dfsg-1),
libfribidi0 (= 1.0.15-1),
@@ -147,9 +147,9 @@
libgdbm-compat4t64 (= 1.24-2),
libgdbm6t64 (= 1.24-2),
libgettextpo0 (= 0.22.5-2),
- libgio-2.0-dev (= 2.82.2-2),
- libgio-2.0-dev-bin (= 2.82.2-2),
- libgirepository-2.0-0 (= 2.82.2-2),
+ libgio-2.0-dev (= 2.82.2-3),
+ libgio-2.0-dev-bin (= 2.82.2-3),
+ libgirepository-2.0-0 (= 2.82.2-3),
libgl-dev (= 1.7.0-1build1),
libgl1 (= 1.7.0-1build1),
libgl1-mesa-dri (= 24.2.3-1ubuntu1),
@@ -157,11 +157,11 @@
libgles-dev (= 1.7.0-1build1),
libgles1 (= 1.7.0-1build1),
libgles2 (= 1.7.0-1build1),
- libglib2.0-0t64 (= 2.82.2-2),
- libglib2.0-bin (= 2.82.2-2),
- libglib2.0-data (= 2.82.2-2),
- libglib2.0-dev (= 2.82.2-2),
- libglib2.0-dev-bin (= 2.82.2-2),
+ libglib2.0-0t64 (= 2.82.2-3),
+ libglib2.0-bin (= 2.82.2-3),
+ libglib2.0-data (= 2.82.2-3),
+ libglib2.0-dev (= 2.82.2-3),
+ libglib2.0-dev-bin (= 2.82.2-3),
libglvnd0 (= 1.7.0-1build1),
libglx-dev (= 1.7.0-1build1),
libglx-mesa0 (= 24.2.3-1ubuntu1),
@@ -175,12 +175,12 @@
libgvc6 (= 2.42.4-2build3),
libgvpr2 (= 2.42.4-2build3),
libharfbuzz0b (= 10.0.1-1),
- libheif-plugin-aomdec (= 1.19.1-1),
- libheif-plugin-libde265 (= 1.19.1-1),
- libheif1 (= 1.19.1-1),
+ libheif-plugin-aomdec (= 1.19.3-1),
+ libheif-plugin-libde265 (= 1.19.3-1),
+ libheif1 (= 1.19.3-1),
libhwasan0 (= 14.2.0-8ubuntu1),
- libibus-1.0-5 (= 1.5.31~rc1-1),
- libibus-1.0-dev (= 1.5.31~rc1-1),
+ libibus-1.0-5 (= 1.5.31-1),
+ libibus-1.0-dev (= 1.5.31-1),
libice-dev (= 2:1.1.1-1),
libice6 (= 2:1.1.1-1),
libicu74 (= 74.2-1ubuntu4),
@@ -189,14 +189,14 @@
libitm1 (= 14.2.0-8ubuntu1),
libjansson4 (= 2.14-2build2),
libjbig0 (= 2.1-6.1ubuntu2),
- libjpeg-turbo8 (= 2.1.5-2ubuntu2),
+ libjpeg-turbo8 (= 2.1.5-3ubuntu2),
libjpeg8 (= 8c-2ubuntu11),
libk5crypto3 (= 1.21.3-3),
libkeyutils1 (= 1.6.3-4ubuntu2),
libkrb5-3 (= 1.21.3-3),
libkrb5support0 (= 1.21.3-3),
liblab-gamut1 (= 2.42.4-2build3),
- liblerc4 (= 4.0.0+ds-4ubuntu2),
+ liblerc4 (= 4.0.0+ds-5ubuntu1),
libllvm19 (= 1:19.1.2-1ubuntu1),
liblsan0 (= 14.2.0-8ubuntu1),
libltdl7 (= 2.4.7-8),
@@ -209,15 +209,15 @@
libmp3lame0 (= 3.100-6build1),
libmpc3 (= 1.3.1-1build2),
libmpfr6 (= 4.2.1-1build2),
- libmpg123-0t64 (= 1.32.8-1),
+ libmpg123-0t64 (= 1.32.9-1),
libncursesw6 (= 6.5-2),
libnsl2 (= 1.3.0-3build3),
libogg0 (= 1.3.5-3build1),
libopus0 (= 1.5.2-2),
- libpam-modules (= 1.5.3-7ubuntu2),
- libpam-modules-bin (= 1.5.3-7ubuntu2),
- libpam-runtime (= 1.5.3-7ubuntu2),
- libpam0g (= 1.5.3-7ubuntu2),
+ libpam-modules (= 1.5.3-7ubuntu4),
+ libpam-modules-bin (= 1.5.3-7ubuntu4),
+ libpam-runtime (= 1.5.3-7ubuntu4),
+ libpam0g (= 1.5.3-7ubuntu4),
libpango-1.0-0 (= 1.54.0+ds-3),
libpangocairo-1.0-0 (= 1.54.0+ds-3),
libpangoft2-1.0-0 (= 1.54.0+ds-3),
@@ -229,27 +229,27 @@
libpcre2-8-0 (= 10.42-4ubuntu3),
libpcre2-dev (= 10.42-4ubuntu3),
libpcre2-posix3 (= 10.42-4ubuntu3),
- libperl5.40 (= 5.40.0-6),
+ libperl5.40 (= 5.40.0-8),
libpipeline1 (= 1.5.8-1),
- libpipewire-0.3-0t64 (= 1.2.6-1),
- libpipewire-0.3-dev (= 1.2.6-1),
- libpixman-1-0 (= 0.42.2-1build1),
+ libpipewire-0.3-0t64 (= 1.2.6-1build1),
+ libpipewire-0.3-dev (= 1.2.6-1build1),
+ libpixman-1-0 (= 0.44.0-3),
libpkgconf3 (= 1.8.1-4),
libpng16-16t64 (= 1.6.44-2),
libpulse-dev (= 1:16.1+dfsg1-5.1ubuntu1),
libpulse-mainloop-glib0 (= 1:16.1+dfsg1-5.1ubuntu1),
libpulse0 (= 1:16.1+dfsg1-5.1ubuntu1),
libpython3-stdlib (= 3.12.6-0ubuntu1),
- libpython3.12-minimal (= 3.12.7-1),
- libpython3.12-stdlib (= 3.12.7-1),
+ libpython3.12-minimal (= 3.12.7-3),
+ libpython3.12-stdlib (= 3.12.7-3),
libquadmath0 (= 14.2.0-8ubuntu1),
libraqm0 (= 0.10.1-1build1),
libreadline8t64 (= 8.2-5),
libsamplerate0 (= 0.2.2-4build1),
libsamplerate0-dev (= 0.2.2-4build1),
- libseccomp2 (= 2.5.5-1ubuntu4),
- libselinux1 (= 3.5-2ubuntu5),
- libselinux1-dev (= 3.5-2ubuntu5),
+ libseccomp2 (= 2.5.5-1ubuntu5),
+ libselinux1 (= 3.7-3ubuntu1),
+ libselinux1-dev (= 3.7-3ubuntu1),
libsensors-config (= 1:3.6.0-10),
libsensors5 (= 1:3.6.0-10),
libsepol-dev (= 3.7-1),
@@ -262,13 +262,13 @@
libsndfile1 (= 1.2.2-1ubuntu5),
libsndio-dev (= 1.10.0-0.1),
libsndio7.0 (= 1.10.0-0.1),
- libspa-0.2-dev (= 1.2.6-1),
- libspa-0.2-modules (= 1.2.6-1),
+ libspa-0.2-dev (= 1.2.6-1build1),
+ libspa-0.2-modules (= 1.2.6-1build1),
libsqlite3-0 (= 3.46.1-1),
libssl3t64 (= 3.3.1-2ubuntu2),
libstdc++-14-dev (= 14.2.0-8ubuntu1),
libstdc++6 (= 14.2.0-8ubuntu1),
- libsysprof-capture-4-dev (= 47.0-2),
+ libsysprof-capture-4-dev (= 47.1-1),
libsystemd0 (= 256.5-2ubuntu4),
libthai-data (= 0.1.29-2build1),
libthai0 (= 0.1.29-2build1),
@@ -296,10 +296,10 @@
libwayland-server0 (= 1.23.0-1),
libwebp7 (= 1.4.0-0.1),
libwebrtc-audio-processing-1-3 (= 1.3-0ubuntu4),
- libx11-6 (= 2:1.8.10-1),
- libx11-data (= 2:1.8.10-1),
- libx11-dev (= 2:1.8.10-1),
- libx11-xcb1 (= 2:1.8.10-1),
+ libx11-6 (= 2:1.8.10-2),
+ libx11-data (= 2:1.8.10-2),
+ libx11-dev (= 2:1.8.10-2),
+ libx11-xcb1 (= 2:1.8.10-2),
libxapian30 (= 1.4.25-1),
libxau-dev (= 1:1.0.11-1),
libxau6 (= 1:1.0.11-1),
@@ -327,9 +327,9 @@
libxi6 (= 2:1.8.2-1),
libxinerama-dev (= 2:1.1.4-3build1),
libxinerama1 (= 2:1.1.4-3build1),
- libxkbcommon-dev (= 1.6.0-1build1),
- libxkbcommon0 (= 1.6.0-1build1),
- libxml2 (= 2.12.7+dfsg+really2.9.14-0.1),
+ libxkbcommon-dev (= 1.7.0-1),
+ libxkbcommon0 (= 1.7.0-1),
+ libxml2 (= 2.12.7+dfsg-3),
libxmu6 (= 2:1.1.3-3build2),
libxpm4 (= 1:3.5.17-1build2),
libxrandr-dev (= 2:1.5.4-1),
@@ -346,8 +346,8 @@
libxxf86vm-dev (= 1:1.1.4-1build4),
libxxf86vm1 (= 1:1.1.4-1build4),
libzstd1 (= 1.5.6+dfsg-1),
- linux-libc-dev (= 6.11.0-9.9),
- lto-disabled-list (= 53),
+ linux-libc-dev (= 6.11.0-8.8),
+ lto-disabled-list (= 54),
m4 (= 1.4.19-4build1),
make (= 4.3-4.1build2),
man-db (= 2.13.0-1),
@@ -359,17 +359,17 @@
ncurses-bin (= 6.5-2),
netbase (= 6.4),
patch (= 2.7.6-7build3),
- perl (= 5.40.0-6),
- perl-base (= 5.40.0-6),
- perl-modules-5.40 (= 5.40.0-6),
+ perl (= 5.40.0-8),
+ perl-base (= 5.40.0-8),
+ perl-modules-5.40 (= 5.40.0-8),
pkgconf (= 1.8.1-4),
pkgconf-bin (= 1.8.1-4),
po-debconf (= 1.0.21+nmu1),
python3 (= 3.12.6-0ubuntu1),
python3-minimal (= 3.12.6-0ubuntu1),
- python3-packaging (= 24.1-1),
- python3.12 (= 3.12.7-1),
- python3.12-minimal (= 3.12.7-1),
+ python3-packaging (= 24.2-1),
+ python3.12 (= 3.12.7-3),
+ python3.12-minimal (= 3.12.7-3),
readline-common (= 8.2-5),
rpcsvc-proto (= 1.4.2-0ubuntu7),
sed (= 4.9-2build1),
@@ -391,9 +391,9 @@
zlib1g (= 1:1.3.dfsg+really1.3.1-1ubuntu1),
zlib1g-dev (= 1:1.3.dfsg+really1.3.1-1ubuntu1)
Environment:
- DEB_BUILD_OPTIONS="parallel=4"
+ DEB_BUILD_OPTIONS="noautodbgsym parallel=4"
DEB_BUILD_PROFILES="noudeb"
LANG="C.UTF-8"
LC_COLLATE="C.UTF-8"
LC_CTYPE="C.UTF-8"
- SOURCE_DATE_EPOCH="1730740341"
+ SOURCE_DATE_EPOCH="1732786502
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to python3-defaults in Ubuntu.
https://bugs.launchpad.net/bugs/2089779
Title:
Buffer overflow in autopkgtest of wesnoth
Status in boost1.83 package in Ubuntu:
Fix Released
Status in libsdl2 package in Ubuntu:
Confirmed
Status in python3-defaults package in Ubuntu:
Fix Released
Status in wesnoth package in Ubuntu:
Triaged
Status in wesnoth-1.18 package in Ubuntu:
Triaged
Bug description:
https://objectstorage.prodstack5.canonical.com/swift/v1/AUTH_0f9aae918d5b4744bf7b827671c86842/autopkgtest-
plucky/plucky/amd64/w/wesnoth-1.18/20241127_064901_ac814@/log.gz
Repeats on reruns triggered by others.
Blocks multiple migrations, atm
- libsdl2
- python3-defaults
- boost1.83
Unblocking all of these is surely worth it :-)
I'll have a look tomorrow.
229s autopkgtest [06:48:46]: test command1: /usr/games/wesnoth-1.18 -m --controller 1:ai --controller 2:ai --nogui
229s autopkgtest [06:48:46]: test command1: [-----------------------
229s Battle for Wesnoth v1.18.3 x86_64
229s Started on Wed Nov 27 06:48:46 2024
229s
229s Automatically found a possible data directory at: /tmp/autopkgtest.kgIWzV/build.Cyz/src
229s
229s Data directory: /tmp/autopkgtest.kgIWzV/build.Cyz/src
229s User configuration directory: /home/USER/.config/wesnoth-1.18
229s User data directory: /home/USER/.config/wesnoth-1.18
229s Cache directory: /home/USER/.config/wesnoth-1.18/cache
229s
229s
229s error: XDG_RUNTIME_DIR is invalid or not set in the environment.
229s *** buffer overflow detected ***: terminated
230s Aborted (core dumped)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/boost1.83/+bug/2089779/+subscriptions
More information about the foundations-bugs
mailing list