Bug#1114928: libxslt: security update makes several packages in bookworm and trixie to FTBFS
Control: fixed -1 1.1.35-1.2 Control: found -1 1.1.35-1.2+deb13u1 Hi, On Mon, 6 Apr 2026 01:08:01 +0800 Aron Xu wrote: > > I have a patch for trixie's libxslt to appended to existing d/patches > series, which should have fixed this issue. If it's convenient, would > mind to help test it against the failing packages? > > Thanks, > Aron I have tested libxslt with compiling libzeep, and found that this bug also exists in trixie. The patch proposed by Aron can fix this bug in both bookworm and trixie. Cheers, Miao Wang
Bug#1114928: libxslt: security update makes several packages in bookworm and trixie to FTBFS
Hi, On Thu, 11 Sep 2025 19:27:59 +0200 Santiago Vila wrote: > Package: src:libxslt > Version: 1.1.35-1+deb12u2 > Severity: grave > Control: fixed -1 1.1.43-0.2 > Control: affects -1 src:boost1.83 src:boost1.88 src:libzeep src:tellico > src:boost1.74 src:boost1.81 src:erlang-p1-xml src:python-biopython > > Dear maintainer: > > During a rebuild of all packages in bookworm and trixie, the following > packages > in trixie failed to build: > > src:boost1.83 > src:boost1.88 > src:libzeep > src:tellico > > and the following packages in bookworm failed to build as well: > > src:boost1.74 > src:boost1.81 > src:erlang-p1-xml > src:libzeep > src:python-biopython > src:tellico > > I believe, but I'm not 100% sure, that the common reason for those build > failures is src:libxslt, so I'm filing a single report for all of them. > I have a patch for trixie's libxslt to appended to existing d/patches series, which should have fixed this issue. If it's convenient, would mind to help test it against the failing packages? Thanks, Aron 0021-generate-id-store-ids-out-of-band.patch Description: Binary data
Bug#1114928: libxslt: security update makes several packages in bookworm and trixie to FTBFS
Package: src:libxslt Version: 1.1.35-1+deb12u2 Severity: grave Control: fixed -1 1.1.43-0.2 Control: affects -1 src:boost1.83 src:boost1.88 src:libzeep src:tellico src:boost1.74 src:boost1.81 src:erlang-p1-xml src:python-biopython Dear maintainer: During a rebuild of all packages in bookworm and trixie, the following packages in trixie failed to build: src:boost1.83 src:boost1.88 src:libzeep src:tellico and the following packages in bookworm failed to build as well: src:boost1.74 src:boost1.81 src:erlang-p1-xml src:libzeep src:python-biopython src:tellico I believe, but I'm not 100% sure, that the common reason for those build failures is src:libxslt, so I'm filing a single report for all of them. For example, this is an excerpt from the boost1.83 build log in trixie: runtime error: file /<>/tools/boostbook/xsl/lookup.xsl line 215 element choose generate-id(): psvi already set error: file /<>/libs/logic/doc/tribool.boostbook xsltRunStylesheet : run failed I've put full build logs for the trixie build failures here: https://people.debian.org/~sanvila/build-logs/trixie/ About the archive rebuild: The build was made on virtual machines from AWS, using sbuild and a reduced chroot with only build-essential packages. If you could not reproduce the bug please contact me privately, as I am willing to provide ssh access to a virtual machine where the bug is fully reproducible. If this is really a bug in another package, please use reassign and keep the current affects. If the individual affected packages need to be fixed instead, please clone this bug as many times as required for all the affected packages (I would really hope this is not the case...). Thanks.
