Debian
libgd2 package

FTBFS in Artful on i386

Bug #1717016 reported by Balint Reczey
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
libgd2 (Debian)
Fix Released
Unknown
libgd2 (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

Libgd2 2.2.5-1 fails to build on several architectures due to test failures:
https://launchpadlibrarian.net/336371489/buildlog_ubuntu-artful-i386.libgd2_2.2.5-1_BUILDING.txt.gz :
...

gdimagerotate/bug00067.c:46: Total pixels changed: 14143 with a maximum channel difference of 255.
gdimagerotate/bug00067.c:47: comparing rotated image to ./gdimagerotate/bug00067_150_exp.png failed.
FAIL gdimagerotate/bug00067 (exit status: 1)

============================================================================
Testsuite summary for GD 2.2.5
============================================================================
# TOTAL: 164
# PASS: 162
# SKIP: 0
# XFAIL: 0
# FAIL: 2
# XPASS: 0
# ERROR: 0
============================================================================
See tests/test-suite.log
Please report to https://github.com/libgd/libgd/issues
============================================================================
Makefile:3984: recipe for target 'test-suite.log' failed
make[4]: *** [test-suite.log] Error 1
make[4]: Leaving directory '/<<PKGBUILDDIR>>/tests'
Makefile:4090: recipe for target 'check-TESTS' failed
make[3]: *** [check-TESTS] Error 2
make[3]: Leaving directory '/<<PKGBUILDDIR>>/tests'
Makefile:5304: recipe for target 'check-am' failed
make[2]: *** [check-am] Error 2
make[2]: Leaving directory '/<<PKGBUILDDIR>>/tests'
Makefile:419: recipe for target 'check-recursive' failed
make[1]: *** [check-recursive] Error 1
make[1]: Leaving directory '/<<PKGBUILDDIR>>'
dh_auto_test: make -j1 check VERBOSE=1 returned exit code 2
debian/rules:23: recipe for target 'build-arch' failed
make: *** [build-arch] Error 2
dpkg-buildpackage: error: debian/rules build-arch gave error exit status 2
...

Tags: ftbfs

CVE References

Revision history for this message
Balint Reczey (rbalint) wrote :

The fix is committed to Debian's packaging repository already.

Bug Watch Updater (bug-watch-updater)
Changed in libgd2 (Debian):
status: Unknown → New
Revision history for this message
Balint Reczey (rbalint) wrote :

I pinged the Debian maintainers about the prospects of a new upload to Debian to sync it to Ubuntu, but got no response. Adding this small delta may be needed to get the package fixed for Artful.

Revision history for this message
dino99 (9d9) wrote :

Looks like that issue is already fixed:

libgd2 (2.2.5-2) unstable; urgency=medium

  * Fix OOB read due to crafted GD/GD2 images
  * Disable gdimagecopyresampled/bug00201 that makes some platforms to FTBFS

 -- Ondřej Surý <email address hidden> Mon, 04 Sep 2017 09:43:31 +0200

libgd2 (2.2.5-1) unstable; urgency=high

  * New upstream version 2.2.5
   + [CVE-2017-6362]: Double-free in gdImagePngPtr().
   + [CVE-2017-7890]: Buffer over-read into uninitialized memory.
  * Update d/watch for the github releases
  * Refresh patches for the 2.2.5 release

 -- Ondřej Surý <email address hidden> Wed, 30 Aug 2017 14:21:43 +0200

Revision history for this message
dino99 (9d9) wrote :

Only fails on i386:
https://launchpadlibrarian.net/337048253/buildlog_ubuntu-artful-i386.libgd2_2.2.5-2_BUILDING.txt.gz

Balint Reczey (rbalint)
summary: - FTBFS in Artful
+ FTBFS in Artful on i386
Revision history for this message
Jeremy Bícha (jbicha) wrote :

Thank you. I have uploaded this for you and unsubscribed ubuntu-sponsors. Please feel to resubscribe if you have something else that needs sponsoring.

Changed in libgd2 (Ubuntu):
status: New → Fix Committed
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package libgd2 - 2.2.5-2ubuntu1

---------------
libgd2 (2.2.5-2ubuntu1) artful; urgency=medium

  [ Ondřej Surý ]
  * Disable gdimagerotate/bug00067 because it FTBFS on i386 (LP: #1717016)

 -- Balint Reczey <email address hidden> Wed, 13 Sep 2017 22:03:26 +0200

Changed in libgd2 (Ubuntu):
status: Fix Committed → Fix Released
Bug Watch Updater (bug-watch-updater)
Changed in libgd2 (Debian):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.