Mock Version: 5.5 Mock Version: 5.5 Mock Version: 5.5 ENTER ['do_with_status'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --noclean --target x86_64 --nodeps /builddir/build/SPECS/tigervnc.spec'], chrootPath='/var/lib/mock/dist-an23.3-build-484489-74331/root'env={'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOME': '/builddir', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;\\007"', 'PS1': ' \\s-\\v\\$ ', 'LANG': 'C.UTF-8'}shell=Falselogger=timeout=86400uid=990gid=135user='mockbuild'nspawn_args=['--capability=cap_ipc_lock', '--bind=/tmp/mock-resolv.hovx93cz:/etc/resolv.conf', '--bind=/dev/mapper/control', '--bind=/dev/fuse', '--bind=/dev/loop-control', '--bind=/dev/loop0', '--bind=/dev/loop1', '--bind=/dev/loop2', '--bind=/dev/loop3', '--bind=/dev/loop4', '--bind=/dev/loop5', '--bind=/dev/loop6', '--bind=/dev/loop7', '--bind=/dev/loop8', '--bind=/dev/loop9', '--bind=/dev/loop10', '--bind=/dev/loop11']unshare_net=TrueprintOutput=False) Using nspawn with args ['--capability=cap_ipc_lock', '--bind=/tmp/mock-resolv.hovx93cz:/etc/resolv.conf', '--bind=/dev/mapper/control', '--bind=/dev/fuse', '--bind=/dev/loop-control', '--bind=/dev/loop0', '--bind=/dev/loop1', '--bind=/dev/loop2', '--bind=/dev/loop3', '--bind=/dev/loop4', '--bind=/dev/loop5', '--bind=/dev/loop6', '--bind=/dev/loop7', '--bind=/dev/loop8', '--bind=/dev/loop9', '--bind=/dev/loop10', '--bind=/dev/loop11'] Executing command: ['/usr/bin/systemd-nspawn', '-q', '-M', '79241194b0a4483184cb02120fcba0bf', '-D', '/var/lib/mock/dist-an23.3-build-484489-74331/root', '-a', '-u', 'mockbuild', '--capability=cap_ipc_lock', '--bind=/tmp/mock-resolv.hovx93cz:/etc/resolv.conf', '--bind=/dev/mapper/control', '--bind=/dev/fuse', '--bind=/dev/loop-control', '--bind=/dev/loop0', '--bind=/dev/loop1', '--bind=/dev/loop2', '--bind=/dev/loop3', '--bind=/dev/loop4', '--bind=/dev/loop5', '--bind=/dev/loop6', '--bind=/dev/loop7', '--bind=/dev/loop8', '--bind=/dev/loop9', '--bind=/dev/loop10', '--bind=/dev/loop11', '--setenv=TERM=vt100', '--setenv=SHELL=/bin/bash', '--setenv=HOME=/builddir', '--setenv=HOSTNAME=mock', '--setenv=PATH=/usr/bin:/bin:/usr/sbin:/sbin', '--setenv=PROMPT_COMMAND=printf "\\033]0;\\007"', '--setenv=PS1= \\s-\\v\\$ ', '--setenv=LANG=C.UTF-8', '--resolv-conf=off', 'bash', '--login', '-c', '/usr/bin/rpmbuild -bs --noclean --target x86_64 --nodeps /builddir/build/SPECS/tigervnc.spec'] with env {'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOME': '/builddir', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;\\007"', 'PS1': ' \\s-\\v\\$ ', 'LANG': 'C.UTF-8', 'SYSTEMD_NSPAWN_TMPFS_TMP': '0', 'SYSTEMD_SECCOMP': '0'} and shell False sh: line 1: xserver-sdk-abi-requires: command not found sh: line 1: xserver-sdk-abi-requires: command not found warning: %patchN is deprecated (4 usages found), use %patch N (or %patch -P N) Building target platforms: x86_64 Building for target x86_64 setting SOURCE_DATE_EPOCH=1762905600 Wrote: /builddir/build/SRPMS/tigervnc-1.13.1-6.an23.src.rpm RPM build warnings: %patchN is deprecated (4 usages found), use %patch N (or %patch -P N) Child return code was: 0 ENTER ['do_with_status'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bb --noclean --target x86_64 --nodeps /builddir/build/SPECS/tigervnc.spec'], chrootPath='/var/lib/mock/dist-an23.3-build-484489-74331/root'env={'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOME': '/builddir', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;\\007"', 'PS1': ' \\s-\\v\\$ ', 'LANG': 'C.UTF-8'}shell=Falselogger=timeout=86400uid=990gid=135user='mockbuild'nspawn_args=['--capability=cap_ipc_lock', '--bind=/tmp/mock-resolv.hovx93cz:/etc/resolv.conf', '--bind=/dev/mapper/control', '--bind=/dev/fuse', '--bind=/dev/loop-control', '--bind=/dev/loop0', '--bind=/dev/loop1', '--bind=/dev/loop2', '--bind=/dev/loop3', '--bind=/dev/loop4', '--bind=/dev/loop5', '--bind=/dev/loop6', '--bind=/dev/loop7', '--bind=/dev/loop8', '--bind=/dev/loop9', '--bind=/dev/loop10', '--bind=/dev/loop11']unshare_net=TrueprintOutput=False) Using nspawn with args ['--capability=cap_ipc_lock', '--bind=/tmp/mock-resolv.hovx93cz:/etc/resolv.conf', '--bind=/dev/mapper/control', '--bind=/dev/fuse', '--bind=/dev/loop-control', '--bind=/dev/loop0', '--bind=/dev/loop1', '--bind=/dev/loop2', '--bind=/dev/loop3', '--bind=/dev/loop4', '--bind=/dev/loop5', '--bind=/dev/loop6', '--bind=/dev/loop7', '--bind=/dev/loop8', '--bind=/dev/loop9', '--bind=/dev/loop10', '--bind=/dev/loop11'] Executing command: ['/usr/bin/systemd-nspawn', '-q', '-M', 'a5021b33c53141b196c47535c7229adf', '-D', '/var/lib/mock/dist-an23.3-build-484489-74331/root', '-a', '-u', 'mockbuild', '--capability=cap_ipc_lock', '--bind=/tmp/mock-resolv.hovx93cz:/etc/resolv.conf', '--bind=/dev/mapper/control', '--bind=/dev/fuse', '--bind=/dev/loop-control', '--bind=/dev/loop0', '--bind=/dev/loop1', '--bind=/dev/loop2', '--bind=/dev/loop3', '--bind=/dev/loop4', '--bind=/dev/loop5', '--bind=/dev/loop6', '--bind=/dev/loop7', '--bind=/dev/loop8', '--bind=/dev/loop9', '--bind=/dev/loop10', '--bind=/dev/loop11', '--setenv=TERM=vt100', '--setenv=SHELL=/bin/bash', '--setenv=HOME=/builddir', '--setenv=HOSTNAME=mock', '--setenv=PATH=/usr/bin:/bin:/usr/sbin:/sbin', '--setenv=PROMPT_COMMAND=printf "\\033]0;\\007"', '--setenv=PS1= \\s-\\v\\$ ', '--setenv=LANG=C.UTF-8', '--resolv-conf=off', 'bash', '--login', '-c', '/usr/bin/rpmbuild -bb --noclean --target x86_64 --nodeps /builddir/build/SPECS/tigervnc.spec'] with env {'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOME': '/builddir', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;\\007"', 'PS1': ' \\s-\\v\\$ ', 'LANG': 'C.UTF-8', 'SYSTEMD_NSPAWN_TMPFS_TMP': '0', 'SYSTEMD_SECCOMP': '0'} and shell False warning: %patchN is deprecated (4 usages found), use %patch N (or %patch -P N) Building target platforms: x86_64 Building for target x86_64 setting SOURCE_DATE_EPOCH=1762905600 Executing(%prep): /bin/sh -e /var/tmp/rpm-tmp.w705Yw + umask 022 + cd /builddir/build/BUILD + cd /builddir/build/BUILD + rm -rf tigervnc-1.13.1 + /usr/lib/rpm/rpmuncompress -x /builddir/build/SOURCES/tigervnc-1.13.1.tar.gz + STATUS=0 + '[' 0 -ne 0 ']' + cd tigervnc-1.13.1 + /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w . + echo 'Patch #50 (tigervnc-vncsession-restore-script-systemd-service.patch):' Patch #50 (tigervnc-vncsession-restore-script-systemd-service.patch): + /usr/bin/patch --no-backup-if-mismatch -f -p1 -b --suffix .vncsession-restore-script-systemd-service --fuzz=0 patching file unix/vncserver/CMakeLists.txt patching file unix/vncserver/vncserver@.service.in patching file unix/vncserver/vncsession-restore.in + cp -r /usr/share/xorg-x11-server-source/GL /usr/share/xorg-x11-server-source/Makefile.am /usr/share/xorg-x11-server-source/Xext /usr/share/xorg-x11-server-source/Xi /usr/share/xorg-x11-server-source/aclocal.m4 /usr/share/xorg-x11-server-source/composite /usr/share/xorg-x11-server-source/config /usr/share/xorg-x11-server-source/configure.ac /usr/share/xorg-x11-server-source/damageext /usr/share/xorg-x11-server-source/dbe /usr/share/xorg-x11-server-source/devbook.am /usr/share/xorg-x11-server-source/dix /usr/share/xorg-x11-server-source/doc /usr/share/xorg-x11-server-source/docbook.am /usr/share/xorg-x11-server-source/dri3 /usr/share/xorg-x11-server-source/exa /usr/share/xorg-x11-server-source/fb /usr/share/xorg-x11-server-source/glamor /usr/share/xorg-x11-server-source/glx /usr/share/xorg-x11-server-source/hw /usr/share/xorg-x11-server-source/include /usr/share/xorg-x11-server-source/m4 /usr/share/xorg-x11-server-source/man /usr/share/xorg-x11-server-source/manpages.am /usr/share/xorg-x11-server-source/meson_options.txt /usr/share/xorg-x11-server-source/mi /usr/share/xorg-x11-server-source/miext /usr/share/xorg-x11-server-source/os /usr/share/xorg-x11-server-source/present /usr/share/xorg-x11-server-source/pseudoramiX /usr/share/xorg-x11-server-source/randr /usr/share/xorg-x11-server-source/record /usr/share/xorg-x11-server-source/render /usr/share/xorg-x11-server-source/test /usr/share/xorg-x11-server-source/xfixes /usr/share/xorg-x11-server-source/xkb /usr/share/xorg-x11-server-source/xorg-server.m4 /usr/share/xorg-x11-server-source/xorg-server.pc.in /usr/share/xorg-x11-server-source/xserver.ent.in unix/xserver + pushd unix/xserver ~/build/BUILD/tigervnc-1.13.1/unix/xserver ~/build/BUILD/tigervnc-1.13.1 ++ find . -type f -perm -001 + echo 'Patch #100 (tigervnc-xserver120.patch):' Patch #100 (tigervnc-xserver120.patch): + /usr/bin/patch --no-backup-if-mismatch -f -p1 -b --suffix .xserver120-rebased --fuzz=0 patching file configure.ac Hunk #1 succeeded at 71 (offset -3 lines). Hunk #2 succeeded at 1738 (offset -126 lines). Hunk #3 succeeded at 1777 (offset -126 lines). Hunk #4 succeeded at 1993 (offset -130 lines). Hunk #5 succeeded at 2530 (offset -167 lines). patching file hw/Makefile.am patching file mi/miinitext.c patching file include/os.h Hunk #1 succeeded at 635 (offset 14 lines). + echo 'Patch #101 (101-bugfix-for-CVE-2024-21885.patch):' Patch #101 (101-bugfix-for-CVE-2024-21885.patch): + /usr/bin/patch --no-backup-if-mismatch -f -p1 -b --suffix .101-bugfix-for-CVE-2024-21885 --fuzz=0 patching file Xi/xichangehierarchy.c Hunk #1 succeeded at 416 (offset 76 lines). Hunk #2 succeeded at 470 (offset 76 lines). Hunk #3 succeeded at 481 (offset 76 lines). Hunk #4 succeeded at 492 (offset 76 lines). Patch #102 (102-bugfix-for-CVE-2025-62230.patch): + echo 'Patch #102 (102-bugfix-for-CVE-2025-62230.patch):' + /usr/bin/patch --no-backup-if-mismatch -f -p1 -b --suffix .102-bugfix-for-CVE-2025-62230 --fuzz=0 can't find file to patch at input line 70 Perhaps you used the wrong -p or --strip option? The text leading up to this was: -------------------------- |From 1abca0b9b5b019cda32aa92466a760660ebd952d Mon Sep 17 00:00:00 2001 |From: Olivier Fourdan |Date: Wed, 10 Sep 2025 15:58:57 +0200 |Subject: [PATCH xserver 3/4] xkb: Free the XKB resource when freeing | XkbInterest |MIME-Version: 1.0 |Content-Type: text/plain; charset=UTF-8 |Content-Transfer-Encoding: 8bit | |XkbRemoveResourceClient() would free the XkbInterest data associated |with the device, but not the resource associated with it. | |As a result, when the client terminates, the resource delete function |gets called and accesses already freed memory: | | | Invalid read of size 8 | | at 0x5BC0C0: XkbRemoveResourceClient (xkbEvents.c:1047) | | by 0x5B3391: XkbClientGone (xkb.c:7094) | | by 0x4DF138: doFreeResource (resource.c:890) | | by 0x4DFB50: FreeClientResources (resource.c:1156) | | by 0x4A9A59: CloseDownClient (dispatch.c:3550) | | by 0x5E0A53: ClientReady (connection.c:601) | | by 0x5E4FEF: ospoll_wait (ospoll.c:657) | | by 0x5DC834: WaitForSomething (WaitFor.c:206) | | by 0x4A1BA5: Dispatch (dispatch.c:491) | | by 0x4B0070: dix_main (main.c:277) | | by 0x4285E7: main (stubmain.c:34) | | Address 0x1893e278 is 184 bytes inside a block of size 928 free'd | | at 0x4842E43: free (vg_replace_malloc.c:989) | | by 0x49C1A6: CloseDevice (devices.c:1067) | | by 0x49C522: CloseOneDevice (devices.c:1193) | | by 0x49C6E4: RemoveDevice (devices.c:1244) | | by 0x5873D4: remove_master (xichangehierarchy.c:348) | | by 0x587921: ProcXIChangeHierarchy (xichangehierarchy.c:504) | | by 0x579BF1: ProcIDispatch (extinit.c:390) | | by 0x4A1D85: Dispatch (dispatch.c:551) | | by 0x4B0070: dix_main (main.c:277) | | by 0x4285E7: main (stubmain.c:34) | | Block was alloc'd at | | at 0x48473F3: calloc (vg_replace_malloc.c:1675) | | by 0x49A118: AddInputDevice (devices.c:262) | | by 0x4A0E58: AllocDevicePair (devices.c:2846) | | by 0x5866EE: add_master (xichangehierarchy.c:153) | | by 0x5878C2: ProcXIChangeHierarchy (xichangehierarchy.c:493) | | by 0x579BF1: ProcIDispatch (extinit.c:390) | | by 0x4A1D85: Dispatch (dispatch.c:551) | | by 0x4B0070: dix_main (main.c:277) | | by 0x4285E7: main (stubmain.c:34) | |To avoid that issue, make sure to free the resources when freeing the |device XkbInterest data. | |CVE-2025-62230, ZDI-CAN-27545 | |This vulnerability was discovered by: |Jan-Niklas Sohn working with Trend Micro Zero Day Initiative | |Signed-off-by: Olivier Fourdan |Reviewed-by: Michel Dänzer |(cherry picked from commit 10c94238bdad17c11707e0bdaaa3a9cd54c504be) | |Part-of: | xkb/xkbEvents.c | 2 ++ | 1 file changed, 2 insertions(+) | |diff --git a/unix/xserver/xkb/xkbEvents.c b/unix/xserver/xkb/xkbEvents.c |index f8f65d4a7..7c669c93e 100644 |--- a/unix/xserver/xkb/xkbEvents.c |+++ b/unix/xserver/xkb/xkbEvents.c -------------------------- No file to patch. Skipping patch. 2 out of 2 hunks ignored RPM build warnings: RPM build errors: error: Bad exit status from /var/tmp/rpm-tmp.w705Yw (%prep) %patchN is deprecated (4 usages found), use %patch N (or %patch -P N) Bad exit status from /var/tmp/rpm-tmp.w705Yw (%prep) Child return code was: 1 EXCEPTION: [Error('Command failed: \n # /usr/bin/systemd-nspawn -q -M a5021b33c53141b196c47535c7229adf -D /var/lib/mock/dist-an23.3-build-484489-74331/root -a -u mockbuild --capability=cap_ipc_lock --bind=/tmp/mock-resolv.hovx93cz:/etc/resolv.conf --bind=/dev/mapper/control --bind=/dev/fuse --bind=/dev/loop-control --bind=/dev/loop0 --bind=/dev/loop1 --bind=/dev/loop2 --bind=/dev/loop3 --bind=/dev/loop4 --bind=/dev/loop5 --bind=/dev/loop6 --bind=/dev/loop7 --bind=/dev/loop8 --bind=/dev/loop9 --bind=/dev/loop10 --bind=/dev/loop11 --setenv=TERM=vt100 --setenv=SHELL=/bin/bash --setenv=HOME=/builddir --setenv=HOSTNAME=mock --setenv=PATH=/usr/bin:/bin:/usr/sbin:/sbin \'--setenv=PROMPT_COMMAND=printf "\\033]0;\\007"\' \'--setenv=PS1= \\s-\\v\\$ \' --setenv=LANG=C.UTF-8 --resolv-conf=off bash --login -c \'/usr/bin/rpmbuild -bb --noclean --target x86_64 --nodeps /builddir/build/SPECS/tigervnc.spec\'\n', 1)] Traceback (most recent call last): File "/usr/lib/python3.6/site-packages/mockbuild/trace_decorator.py", line 93, in trace result = func(*args, **kw) File "/usr/lib/python3.6/site-packages/mockbuild/util.py", line 612, in do_with_status raise exception.Error("Command failed: \n # %s\n%s" % (cmd_pretty(command, env), output), child.returncode) mockbuild.exception.Error: Command failed: # /usr/bin/systemd-nspawn -q -M a5021b33c53141b196c47535c7229adf -D /var/lib/mock/dist-an23.3-build-484489-74331/root -a -u mockbuild --capability=cap_ipc_lock --bind=/tmp/mock-resolv.hovx93cz:/etc/resolv.conf --bind=/dev/mapper/control --bind=/dev/fuse --bind=/dev/loop-control --bind=/dev/loop0 --bind=/dev/loop1 --bind=/dev/loop2 --bind=/dev/loop3 --bind=/dev/loop4 --bind=/dev/loop5 --bind=/dev/loop6 --bind=/dev/loop7 --bind=/dev/loop8 --bind=/dev/loop9 --bind=/dev/loop10 --bind=/dev/loop11 --setenv=TERM=vt100 --setenv=SHELL=/bin/bash --setenv=HOME=/builddir --setenv=HOSTNAME=mock --setenv=PATH=/usr/bin:/bin:/usr/sbin:/sbin '--setenv=PROMPT_COMMAND=printf "\033]0;\007"' '--setenv=PS1= \s-\v\$ ' --setenv=LANG=C.UTF-8 --resolv-conf=off bash --login -c '/usr/bin/rpmbuild -bb --noclean --target x86_64 --nodeps /builddir/build/SPECS/tigervnc.spec'