Bug#878484: libsdl2-2.0-0: ibus-mozc doesn't work

[Gianfranco Costamagna]

Hello Sam,

>I haven’t heard a bug like this reported, but there is a bug in SDL 2.0.6 dbus handling.


if you refer to the dbus calling patch, I already backported this in the latest -3 upload,
and if the regression went from -2 to -3 (not 2.0.6 in general), this is probably the
culprit for the regression, or the CVE fix)

see the changelog:
[ Gianfranco Costamagna ]
* debian/patches/dc7245e3d1f2.patch:
- backport upstream fix for dbus error.
LP: #1721907
thanks LGB [Gábor Lénárt] (lgb) for the report!
.
[ Felix Geyer ]
* Fix CVE-2017-2888: Integer overflow while creating a new RGB surface.
- Add d/patches/CVE-2017-2888.patch
- Closes: #878264


so, if we confirm the -3 upload is the first "bad", we need to dig into the CVE patch
or the dbus error one

cheers,


G.

> On Oct 15, 2017, at 1:17 AM, Gianfranco Costamagna <locutusofborg at debian.org> wrote:

> 

> control: tags -1 moreinfo

> 

>> On Sat, 14 Oct 2017 09:09:16 +0900 michiaki ookawa <ookawa.michiaki at gmail.com> wrote:

>> Package: libsdl2-2.0-0

>> Version: 2.0.6+dfsg1-3

>> Severity: normal

>> 

>> Dear Maintainer,

>> At recent SDL(at least from 2.0.6+dfsg1-2), SDL-ime cannot handle ibus-mozc.

>> 

>> 1. run testime

>> 2. toggle input mode to "Hiragana"

>> 3. type a

>> 

>> TOBE: event "SDL_TEXTEDITING" occurs and shows "あ"

>> ASIS: event "SDL_TEXDTINPUT" occurs and shows "a"

>> 

> 

> sorry but I can't reproduce if you don't tell *exactly* what to install, and where to click.

> I don't know what mozc is, and I never used such locales.

> I would like to understand if the CVE fixes in -3 release introduced such regression, in 

> case we should ask upstream

> 

> Maybe Sam is already aware of such issue

> 

> thanks

> 

> Gianfranco

>