Source: ipv6calc Version:0.90.0-1 Severity: normal User: [email protected] Usertags: hardening-format-security hardening
the package ipv6calc fails to compile with the new hardened compiler flags dpkg-buildflag outputs [0]. The problematic flag is: -Werror=format-security See the ubuntu buildlog: https://launchpadlibrarian.net/83031349/buildlog_ubuntu-precise-i386.ipv6calc_0.90.0-1_FAILEDTOBUILD.txt.gz Snippet: x86_64-linux-gnu-gcc -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Wformat-security -Werror=format-security -g -O2 -fstack-protector --param=ssp-buffer-size=4 -Wformat -Wformat-security -Werror=format-security -I../ -I../lib/ -D__EXTENSIONS__ -c ipv6logconv.c ipv6logconv.c: In function 'converttoken': ipv6logconv.c:380:5: error: format not a string literal and no format arguments [-Werror=format-security] ipv6logconv.c:380:5: error: format not a string literal and no format arguments [-Werror=format-security] ipv6logconv.c:393:8: error: format not a string literal and no format arguments [-Werror=format-security] ipv6logconv.c:393:8: error: format not a string literal and no format arguments [-Werror=format-security] ipv6logconv.c:408:8: error: format not a string literal and no format arguments [-Werror=format-security] ipv6logconv.c:408:8: error: format not a string literal and no format arguments [-Werror=format-security] ipv6logconv.c:682:3: error: format not a string literal and no format arguments [-Werror=format-security] ipv6logconv.c:682:3: error: format not a string literal and no format arguments [-Werror=format-security] ipv6logconv.c:684:3: error: format not a string literal and no format arguments [-Werror=format-security] ipv6logconv.c:684:3: error: format not a string literal and no format arguments [-Werror=format-security] The buildflags are not exported in debian, but can be enabled e.g. by adding this to debian/rules: DPKG_EXPORT_BUILDFLAGS = 1 include /usr/share/dpkg/buildflags.mk Please fix the issues and maybe also enable the hardened build in debian. [0] http://lists.debian.org/debian-devel-announce/2011/09/msg00001.html
signature.asc
Description: OpenPGP digital signature
