Package: x264 Severity: important X-Debbugs-Cc: a...@kernel.org Dear Maintainer,
When building x264 for the armhf architecture, the resulting package contains a build of libx264.so that has a PT_GNU_STACK ELF program header that identifies the shared object as requiring an executable stack. This is a bad idea from security pov, and only seems to affect the armhf build (the arm64 build is fine). -- System Information: Debian Release: 11.3 APT prefers stable-security APT policy: (500, 'stable-security'), (500, 'stable-debug'), (500, 'proposed-updates-debug'), (500, 'stable') Architecture: arm64 (aarch64) Foreign Architectures: armhf Kernel: Linux 5.18.3-wxn+ (SMP w/24 CPU threads; PREEMPT) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US:en Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) Versions of packages x264 depends on: ii libavcodec58 7:4.3.4-0+deb11u1 ii libavformat58 7:4.3.4-0+deb11u1 ii libavutil56 7:4.3.4-0+deb11u1 ii libc6 2.31-13+deb11u3 pn libffms2-4 <none> pn libgpac10 <none> ii libswscale5 7:4.3.4-0+deb11u1 ii libx264-160 2:0.160.3011+gitcde9a93-2.1 x264 recommends no packages. x264 suggests no packages.
