Bug#910394: sqlcipher: Crashes on running any SQL Statement (with a key)
Oh, this is already known upstream: https://github.com/sqlcipher/sqlcipher/issues/196 so it should be "merely" a matter of getting the sid version into stretch-backports.
Bug#910394: sqlcipher: Crashes on running any SQL Statement (with a key)
Freshly installed to test this: i-meant-that$ dpkg --status sqlcipher|grep Version Version: 3.2.0-2 i-meant-that$ sqlcipher mydata.db SQLCipher version 3.8.6 2014-08-15 11:46:33 Enter ".help" for instructions Enter SQL statements terminated with a ";" sqlite> pragma key = 'passphrase'; sqlite> create table memos(text, priority INTEGER); Segmentation fault ie. one line from https://www.zetetic.net/sqlcipher/sqlcipher-api/ about actually setting a key, plus the first line of the man page example. (Bonus points for maybe adding any mention at all of "pragma key" to the man page :-) i-meant-that$ gdb --quiet -ex run --args sqlcipher mydata.db SQLCipher version 3.8.6 2014-08-15 11:46:33 sqlite> pragma key = 'passphrase'; sqlite> create table memos(text, priority INTEGER); Program received signal SIGSEGV, Segmentation fault. 0x76fc195f in EVP_EncryptUpdate () from /usr/lib/x86_64-linux-gnu/libcrypto.so.1.1 (gdb) where #0 0x76fc195f in EVP_EncryptUpdate () from /usr/lib/x86_64-linux-gnu/libcrypto.so.1.1 #1 0x77b22e3b in sqlcipher_openssl_cipher (ctx=0x5579c238, mode=, key=0x5579c258 "\352U\243\236\375\266\026\037\242\247\370\232\215\323\063O\362-w\367\223c\242ɑ^W_]\254#)", key_sz=, iv=0x55797f98 "+\372\032\331\003O\271\246\201>\210\210\360\375W\034\253p\227\303\315\331Y\210@\252\233\\\212<\032y\177\334\330\030\231\213F\177.\365\032\222\360\063\361\067q", in=0x5579d1b8 "\004", in_sz=960, out=0x55797bd8 "") at sqlite3.c:16517 #2 0x77b3347e in sqlcipher_page_cipher (ctx=ctx@entry=0x55797b38, for_ctx=, pgno=1, mode=1, page_sz=, in=0x5579d1b8 "\004", out=0x55797bd8 "") at sqlite3.c:15696 #3 0x77b45104 in sqlite3Codec (iCtx=0x55797b38, data=0x5579d1a8, pgno=1, mode=6) at sqlite3.c:14389 #4 0x77b53799 in pager_write_pagelist (pPager=pPager@entry=0x55785a78, pList=0x5579d5e0) at sqlite3.c:48086 #5 0x77b5b5fa in sqlite3PagerCommitPhaseOne (pPager=0x55785a78, zMaster=zMaster@entry=0x0, noSync=noSync@entry=0) at sqlite3.c:50033 #6 0x77b5b7cf in sqlite3PagerCommitPhaseOne (noSync=0, zMaster=0x0, pPager=) at sqlite3.c:49932 #7 sqlite3BtreeCommitPhaseOne (p=0x55785558, zMaster=zMaster@entry=0x0) at sqlite3.c:57764 #8 0x77b5f421 in sqlite3BtreeCommitPhaseOne (zMaster=0x0, p=) at sqlite3.c:89551 #9 vdbeCommit (p=0x5579cb48, db=0x5576ec58) at sqlite3.c:1586 #10 sqlite3VdbeHalt (p=p@entry=0x5579cb48) at sqlite3.c:1993 #11 0x77b8e926 in sqlite3VdbeExec (p=p@entry=0x5579cb48) at sqlite3.c:71867 #12 0x77b8f8cf in sqlite3Step (p=0x5579cb48) at sqlite3.c:69631 #13 sqlite3_step (pStmt=) at sqlite3.c:4161 #14 0xa9d3 in shell_exec (db=0x5576ec58, zSql=0x5576ebc0 "create table memos(text, priority INTEGER);", pArg=0x7fffd2d0, pzErrMsg=0x7fffd138, xCallback=0x9a90 ) at ./src/shell.c:1360 #15 0xbbdf in process_input (p=0x7fffd2d0, in=0x0) at ./src/shell.c:3613 #16 0x7406 in main (argc=, argv=) at ./src/shell.c:4129
Bug#515118: CVE-2009-0363: multiple buffer overflows that can be remotely triggered
FYI I've just heard back from kretch and he's testing a new release, so we should be able to kick out a new package within the week. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Bug#515118: CVE-2009-0363: multiple buffer overflows that can be remotely triggered
I'll take a look at those patches and also see if upstream is at all interested. (Last resort would be a self-immolating use-barnowl-instead package.) -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Bug#476013: owl: FTBFS: configure: error: installation or configuration problem: C compiler cannot create executables.
Do you keep config.log from these? (Although in this case it's libfaim/config.log I guess.) The report doesn't actually give enough information to figure out what the bug is... -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#304526: subversion: FTBFS: cdbs has no patchsys-quilt.mk
Package: subversion Version: 1.1.3-1 Severity: serious subversion's debian/rules line 13: include /usr/share/cdbs/1/rules/patchsys-quilt.mk subversion's debian/control build-depends: cdbs (>=0.4.26) cdbs 0.4.27-3 changelog.Debian, ChangeLog, and changelog make no mention of quilt. There is a /usr/share/cdbs/1/rules/simple-patchsys.mk but I have no idea if that's a valid substitute... -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.4.27 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages subversion depends on: ii db4.2-util 4.2.52-18 Berkeley v4.2 Database Utilities ii libapr0 2.0.53-4the Apache Portable Runtime ii libc62.3.2.ds1-20GNU C Library: Shared libraries an ii libdb4.2 4.2.52-18 Berkeley v4.2 Database Libraries [ ii libexpat11.95.8-1XML parsing C library - runtime li ii libldap2 2.1.30-3OpenLDAP libraries ii libneon240.24.7.dfsg-0.2 An HTTP and WebDAV client library ii libssl0.9.7 0.9.7e-3SSL shared libraries ii libsvn0 1.1.3-1 shared libraries used by Subversio ii libxml2 2.6.16-2GNOME XML library ii patch2.5.9-2 Apply a diff file to an original ii zlib1g 1:1.2.2-4 compression library - runtime -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
