Source: libmsn Version: 4.0-2 Severity: important Tags: patch security Hi,
Given libmsn's nature and some bugs found on the library it would be convenient to build it with some hardening flags. Attached patch does this by the means of the hardening-wrapper package. If you know how to properly pass options to the linker then you could use the hardening-includes package instead. Cheers, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net
diff -urpN libmsn-4.0-2.orig/debian/control libmsn-4.0-2/debian/control --- libmsn-4.0-2.orig/debian/control 2010-02-07 20:02:25.000000000 -0600 +++ libmsn-4.0-2/debian/control 2010-02-07 20:10:32.000000000 -0600 @@ -1,7 +1,7 @@ Source: libmsn Priority: optional Maintainer: Pau Garcia i Quiles <pgqui...@elpauer.org> -Build-Depends: debhelper (>= 6.0.7), cmake, libssl-dev +Build-Depends: debhelper (>= 6.0.7), cmake, libssl-dev, hardening-wrapper Standards-Version: 3.8.3.0 Section: libs Homepage: http://libmsn.sourceforge.net diff -urpN libmsn-4.0-2.orig/debian/rules libmsn-4.0-2/debian/rules --- libmsn-4.0-2.orig/debian/rules 2010-02-07 20:02:25.000000000 -0600 +++ libmsn-4.0-2/debian/rules 2010-02-07 20:10:36.000000000 -0600 @@ -9,6 +9,12 @@ # Uncomment this to turn on verbose mode. #export DH_VERBOSE=1 +# enable the hardening wrapper +DEB_BUILD_HARDENING = 1 +# but disable PIE +DEB_BUILD_HARDENING_PIE = 0 +export DEB_BUILD_HARDENING DEB_BUILD_HARDENING_PIE + builddir/Makefile: dh_testdir mkdir -p builddir
signature.asc
Description: This is a digitally signed message part.
