Your message dated Tue, 11 Apr 2006 08:32:08 -0700
with message-id <[EMAIL PROTECTED]>
and subject line Bug#359127: fixed in flex 2.5.33-3
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: flex
Version: 2.5.33-2
Severity: minor
Tags: patch
For INN snapshot generation, I compile with extensive warnings and -Werror
to catch any compiler warnings or mistakes before a release. After the
upgrade to flex in testing, this started failing with:
flex configfile.l
mv lex.yy.c config_l.c
bison -y -d configfile.y
mv y.tab.h config_y.h
mv y.tab.c config_y.c
gcc -g -O -DDEBUG=1 -Wall -W -Wendif-labels -Wpointer-arith -Wbad-function-cast
-Wcast-align -Wwrite-strings -Wstrict-prototypes -Wmissing-prototypes
-Wnested-externs -Werror -g -O2 -I../include -c -o config_l.o config_l.c
cc1: warnings being treated as errors
lex.yy.c: In function 'yy_get_next_buffer':
lex.yy.c:1290: warning: comparison between signed and unsigned
The attached patch adds a cast to the generated code to silence this
warning. Visual inspection of the code shows that num_to_read cannot
be negative at the point of this cast, so it shouldn't introduce any
errors. flex passes its test suite with this change.
Thanks!
-- System Information:
Debian Release: testing/unstable
APT prefers testing
APT policy: (990, 'testing'), (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.15-1-686
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Versions of packages flex depends on:
ii debconf [debconf-2.0] 1.4.71 Debian configuration management sy
ii libc6 2.3.6-3 GNU C Library: Shared libraries an
ii m4 1.4.4-1 a macro processing language
Versions of packages flex recommends:
ii gcc [c-compiler] 4:4.0.2-2 The GNU C compiler
ii gcc-3.3 [c-compiler] 1:3.3.6-10 The GNU C compiler
ii gcc-4.0 [c-compiler] 4.0.3-1 The GNU C compiler
-- debconf information:
flex/upgrade/pre_2.5.5: false
--- flex.skl.orig 2006-03-26 10:27:46.000000000 -0800
+++ flex.skl 2006-03-26 10:25:23.000000000 -0800
@@ -1627,7 +1627,7 @@
/* Read in more data. */
YY_INPUT( (&YY_CURRENT_BUFFER_LVALUE->yy_ch_buf[number_to_move]),
- YY_G(yy_n_chars), num_to_read );
+ YY_G(yy_n_chars), (size_t) num_to_read );
YY_CURRENT_BUFFER_LVALUE->yy_n_chars = YY_G(yy_n_chars);
}
--- End Message ---
--- Begin Message ---
Source: flex
Source-Version: 2.5.33-3
We believe that the bug you reported is fixed in the latest version of
flex, which is due to be installed in the Debian FTP archive:
flex-doc_2.5.33-3_all.deb
to pool/main/f/flex/flex-doc_2.5.33-3_all.deb
flex_2.5.33-3.diff.gz
to pool/main/f/flex/flex_2.5.33-3.diff.gz
flex_2.5.33-3.dsc
to pool/main/f/flex/flex_2.5.33-3.dsc
flex_2.5.33-3_i386.deb
to pool/main/f/flex/flex_2.5.33-3_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Manoj Srivastava <[EMAIL PROTECTED]> (supplier of updated flex package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 11 Apr 2006 10:12:51 -0500
Source: flex
Binary: flex-doc flex
Architecture: source i386 all
Version: 2.5.33-3
Distribution: unstable
Urgency: low
Maintainer: Manoj Srivastava <[EMAIL PROTECTED]>
Changed-By: Manoj Srivastava <[EMAIL PROTECTED]>
Description:
flex - A fast lexical analyzer generator.
flex-doc - Documentation for flex (a fast lexical analyzer generator)
Closes: 357515 357525 359127 359876
Changes:
flex (2.5.33-3) unstable; urgency=low
.
* Bug fix: "cannot purge", thanks to Sebastian Rittau. Fix the package
name var in doc.postrm (Closes: #357525).
* Bug fix: "flex: project web page location doesn't work", thanks to
Martin Dorey. The sourceforge project name was changed from lex to
flex recently. (Closes: #357515).
* Updated copyright file as well, and updated the years for the
copyright.
* Please note that the CVE-2006-0459 bug with buffer overflows in
parsers generated with REJECT rules and/or trailing contexts does not
apply to flex 2.5.33
* Bug fix: "incorrect catalan translation", thanks to Carles Pina i
Estany (Closes: #359876).
* Bug fix: "flex: comparison between signed and unsigned in generated
scanner", thanks to Russ Allbery (Closes: #359127).
Files:
9447711a3aa0e4d094f6e18b0794ff64 677 devel standard flex_2.5.33-3.dsc
27ead0749fce8ae17be771d7ab5b29d4 192667 devel standard flex_2.5.33-3.diff.gz
03592bf5e395d123c15dd262f0bcb98f 152336 doc optional flex-doc_2.5.33-3_all.deb
b002532c0a11e6e3d54b6b4f7e0290e2 305810 devel standard flex_2.5.33-3_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
iD8DBQFEO8o9Ibrau78kQkwRAuX5AKCi6k31Gz9IlHOVuBV37ti8KgMiHwCgwPsM
Q7YfaOHXz75mn8lz7lNfx6k=
=+Vkn
-----END PGP SIGNATURE-----
--- End Message ---
