Source: libdumb
Severity: important
Tags: patch
Please enable hardened build flags through dpkg-buildflags.
Patch attached. (dpkg-buildflags abides "noopt" from DEB_BUILD_OPTIONS)
Cheers,
Moritz
diff -Naur libdumb-0.9.3.harden/debian/patches/110-hardening.diff libdumb-0.9.3/debian/patches/110-hardening.diff
--- libdumb-0.9.3.harden/debian/patches/110-hardening.diff 1970-01-01 01:00:00.000000000 +0100
+++ libdumb-0.9.3/debian/patches/110-hardening.diff 2012-02-06 23:53:22.000000000 +0100
@@ -0,0 +1,18 @@
+diff -aur libdumb-0.9.3.orig/Makefile libdumb-0.9.3/Makefile
+--- libdumb-0.9.3.orig/Makefile 2012-02-06 23:51:26.000000000 +0100
++++ libdumb-0.9.3/Makefile 2012-02-06 23:52:17.000000000 +0100
+@@ -231,10 +231,10 @@
+ endif
+ endif
+
+-CFLAGS_RELEASE := -Iinclude $(WFLAGS) $(OFLAGS) $(CFLAGS_EXTRA)
+-CFLAGS_DEBUG := -Iinclude $(WFLAGS) $(DBGFLAGS) $(CFLAGS_EXTRA)
++CFLAGS_RELEASE := -Iinclude $(WFLAGS) $(OFLAGS) $(CFLAGS_EXTRA) `dpkg-buildflags --get CFLAGS` `dpkg-buildflags --get CPPFLAGS`
++CFLAGS_DEBUG := -Iinclude $(WFLAGS) $(DBGFLAGS) $(CFLAGS_EXTRA) `dpkg-buildflags --get CFLAGS` `dpkg-buildflags --get CPPFLAGS`
+
+-LDFLAGS := -s
++LDFLAGS := -s `dpkg-buildflags --get LDFLAGS`
+
+
+ CORE_EXAMPLES_OBJ := $(addprefix examples/, $(notdir $(patsubst %.c, %.o, $(CORE_EXAMPLES))))
+Nur in libdumb-0.9.3: Makefile~.
diff -Naur libdumb-0.9.3.harden/debian/patches/series libdumb-0.9.3/debian/patches/series
--- libdumb-0.9.3.harden/debian/patches/series 2012-02-06 23:53:11.000000000 +0100
+++ libdumb-0.9.3/debian/patches/series 2012-02-06 23:53:31.000000000 +0100
@@ -1,2 +1,3 @@
010_extra_flags.diff -p1
100_CVE-2006-3668.diff
+110-hardening.diff
