On Fri, Apr 4, 2014 at 11:07 AM, Seth Arnold wrote:
> - 2 executables are not compiled PIE
According to lintian, this is because of fopen(). I can patch it to
use fopen64() if needed.
> I would like to know why the 25 object files don't have Fortify source
> turned on, and why 53 of 56 object files didn't get stack protection
> turned on.
AFAICS, all g++ calls have correct hardening flags. I think Matthias
is right, and these are false positives.
On Fri, Apr 4, 2014 at 11:07 AM, Seth Arnold wrote:
> - 2 executables are not compiled PIE
According to lintian, this is because of fopen(). I can patch it to
use fopen64() if needed.
> I would like to know why the 25 object files don't have Fortify source
> turned on, and why 53 of 56 object files didn't get stack protection
> turned on.
AFAICS, all g++ calls have correct hardening flags. I think Matthias
is right, and these are false positives.