gnupg executable stack fix
Bug #49323 reported by
John Moser
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
gnupg (Debian) |
Fix Released
|
Unknown
|
|||
gnupg (Ubuntu) |
Fix Released
|
Low
|
Unassigned |
Bug Description
Binary package hint: gnupg
Same bug as bug #49192, same solution, run the below script in the root of the source tree:
e="/* Add these three lines to get us a PT_GNU_STACK header */
#ifdef __ELF__
.section .note.GNU-
#endif"
for i in `find . -name \*.S`; do echo "$e" >> "$i"; done
Bug upstream once you fix it, use Ubuntu as an example of "yes this really works," reference to nice hardened gentoo documentation[1], yes I actually did a quick check for stack execution (grep for esp and look for jmp or branches into esp+somebytes), etc etc. You get the idea by now.
Related branches
Changed in gnupg: | |
importance: | Undecided → Low |
Changed in gnupg (Debian): | |
status: | Unknown → New |
Changed in gnupg (Debian): | |
status: | New → Fix Committed |
Changed in gnupg (Debian): | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Confirmed, at least for 1.4.2.2-1ubuntu2.2.
$ execstack -q /usr/bin/gpg
X /usr/bin/gpg