[Pkg-openssl-devel] Bug#663977: libssl1.0.0: execmod failure on 1.0.0h-1 but not on 1.0.0g-1
Russell Coker
russell at coker.com.au
Wed Mar 14 14:10:00 UTC 2012
Package: libssl1.0.0
Version: 1.0.0h-1
Severity: normal
# eu-findtextrel /usr/lib/i386-linux-gnu/i686/cmov/libcrypto.so.1.0.0
either the file containing the function 'OPENSSL_DIR_end' or the file
containing the function 'OPENSSL_cleanse' is not compiled with -fpic/-fPIC
either the file containing the function 'OPENSSL_DIR_end' or the file
containing the function 'OPENSSL_cleanse' is not compiled with -fpic/-fPIC
either the file containing the function 'OPENSSL_DIR_end' or the file
containing the function 'OPENSSL_cleanse' is not compiled with -fpic/-fPIC
The above shows one of the symptoms. With the way this library is compiled
on i386 applications which use it must have more access to memory, my blog
post at the following URL has the details:
http://etbe.coker.com.au/2008/09/11/execmod-and-se-linux-i386-must-die/
This doesn't just affect SE Linux. I will try and provide a patch for this
shortly.
-- System Information:
Debian Release: wheezy/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 3.2.0-2-686-pae (SMP w/1 CPU core)
Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages libssl1.0.0 depends on:
ii debconf [debconf-2.0] 1.5.41
ii libc6 2.13-27
ii multiarch-support 2.13-27
ii zlib1g 1:1.2.6.dfsg-2
libssl1.0.0 recommends no packages.
libssl1.0.0 suggests no packages.
-- debconf information excluded
More information about the Pkg-openssl-devel
mailing list