[Secure-testing-commits] r25064 - hardening
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Jan 6 18:18:02 UTC 2014
Author: jmm
Date: 2014-01-06 18:18:02 +0000 (Mon, 06 Jan 2014)
New Revision: 25064
Modified:
hardening/subgoal-dsa.txt
hardening/subgoal-important.txt
Log:
more pkgs checked
Modified: hardening/subgoal-dsa.txt
===================================================================
--- hardening/subgoal-dsa.txt 2014-01-06 10:26:27 UTC (rev 25063)
+++ hardening/subgoal-dsa.txt 2014-01-06 18:18:02 UTC (rev 25064)
@@ -10,7 +10,7 @@
future)
-Unfixed packages / requring further checks:
+Unfixed packages:
barnowl (653506)
eglibc (657528)
heartbeat (657840)
@@ -40,13 +40,18 @@
raptor (needed)
libotr (734115)
gridengine (needed)
-libupnp4
dhcpcd (needed)
plib (needed)
globus-gridftp-server (needed)
davfs2 (needed)
torque (needed)
nut (needed)
+unalz (needed)
+streamripper (needed, overrides CPPFLAGS in configure.ac)
+link-grammar (needed, LDFLAGS is set locally)
+ghostscript (needed)
+libproxy (needed)
+sword (needed)
@@ -54,7 +59,6 @@
-
Packages using Makefile.PL, can be fixed by switching to debhelper compat level 9
(as long as debhelper >= 9.20120312 is used)
wml
@@ -68,32 +72,14 @@
pyopenssl
-Apache modules, need additional research:
-libapache2-mod-authnz-external
-libapache2-mod-auth-pgsql
-libapache-mod-auth-kerb
-libapache2-mod-rpaf
-modsecurity-apache
-libapache2-mod-fcgid
-
-Packages using Scons, needs additional research:
-blender
-
-
Packages using qmake, needs additional research:
mumble
-Packages using cmake, needs additional research:
+Packages using cmake, needs additional research: (KDE-specific workaround, but apparently unfixed for plain cmake)
kde-baseapps
-kde4libs
-ktorrent
wesnoth-1.10
-sword
-weechat
-libssh
-libproxy
Ocaml packages, needs additional research:
@@ -102,14 +88,7 @@
camlimages
-Packages using cdbs, which need more changes:
-streamripper (overrides CPPFLAGS in configure.ac)
-unalz
-link-grammar (LDFLAGS is set locally)
-ghostscript
-
-
Fixed:
samba (2:3.5.11~dfsg-2)
mailman (1:2.1.14-3)
@@ -461,6 +440,22 @@
libxxf86vm (1:1.1.3-1)
wxwidgets2.8 (2.8.12.1-13)
eggdrop (1.6.20-2)
+kde4libs (4:4.10.4-1)
+ktorrent (4.3.1-2)
+libapache2-mod-fcgid (1:2.3.7-1)
+weechat (0.4.2-1)
+libssh (0.5.0-2)
+libapache2-mod-auth-pgsql (2.0.3-6)
+libapache2-mod-authnz-external (3.3.1-0.1)
+libapache-mod-auth-kerb (5.4-2.1)
+libapache2-mod-rpaf (0.6-6)
+blender (2.65a+svn53743-1)
+xfce4-terminal (0.6.2-1)
+evolution-data-server (3.2.1-1)
+aria2 (1.15.0-2)
+cups (1.5.2-6)
+modsecurity-apache (2.6.6-1)
+libupnp4 (1.8.0~svn20100507-1.2)
@@ -473,23 +468,19 @@
switching them over to dpkg-buildflags might be worthwhile later on):
strongswan (already uses dh)
graphicsmagick
-xfce4-terminal
evolution
tor
-evolution-data-server
cyrus-imapd-2.4
-aria2
mysql-5.5
-cups
ipsec-tools
nagios3
bind9
postfix
-pidgin
+pidgin (needed)
nagios-plugins
znc
cyrus-sasl2
-ldns
+ldns (needed)
nsd3
Modified: hardening/subgoal-important.txt
===================================================================
--- hardening/subgoal-important.txt 2014-01-06 10:26:27 UTC (rev 25063)
+++ hardening/subgoal-important.txt 2014-01-06 18:18:02 UTC (rev 25064)
@@ -69,7 +69,7 @@
Partially fixed:
-libept
+libept (relro missing)
mawk (656026)
More information about the Secure-testing-commits
mailing list