Bug#686177: libauthen-tacacsplus-perl: Hardening flags missing
Simon Ruderich
simon at ruderich.org
Wed Aug 29 14:58:45 UTC 2012
Package: libauthen-tacacsplus-perl
Version: 0.23-1
Severity: normal
Dear Maintainer,
Some hardening flags are missing because they are not passed
correctly to the Makefile in tacpluslib/:
$ blhc libauthen-tacacsplus-perl-build-log
CFLAGS missing (--param=ssp-buffer-size=4 -Wformat -Werror=format-security): cc -c -D_REENTRANT -D_GNU_SOURCE -DDEBIAN -fstack-protector -fno-strict-aliasing -pipe -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -O2 -g -DVERSION=\"\" -DXS_VERSION=\"\" -fPIC "-I/usr/lib/perl/5.14/CORE" -DLINUX encrypt.c
CPPFLAGS missing (-D_FORTIFY_SOURCE=2): cc -c -D_REENTRANT -D_GNU_SOURCE -DDEBIAN -fstack-protector -fno-strict-aliasing -pipe -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -O2 -g -DVERSION=\"\" -DXS_VERSION=\"\" -fPIC "-I/usr/lib/perl/5.14/CORE" -DLINUX encrypt.c
CFLAGS missing (--param=ssp-buffer-size=4 -Wformat -Werror=format-security): cc -c -D_REENTRANT -D_GNU_SOURCE -DDEBIAN -fstack-protector -fno-strict-aliasing -pipe -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -O2 -g -DVERSION=\"\" -DXS_VERSION=\"\" -fPIC "-I/usr/lib/perl/5.14/CORE" -DLINUX md5.c
CPPFLAGS missing (-D_FORTIFY_SOURCE=2): cc -c -D_REENTRANT -D_GNU_SOURCE -DDEBIAN -fstack-protector -fno-strict-aliasing -pipe -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -O2 -g -DVERSION=\"\" -DXS_VERSION=\"\" -fPIC "-I/usr/lib/perl/5.14/CORE" -DLINUX md5.c
CFLAGS missing (--param=ssp-buffer-size=4 -Wformat -Werror=format-security): cc -c -D_REENTRANT -D_GNU_SOURCE -DDEBIAN -fstack-protector -fno-strict-aliasing -pipe -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -O2 -g -DVERSION=\"\" -DXS_VERSION=\"\" -fPIC "-I/usr/lib/perl/5.14/CORE" -DLINUX tac_client.c
CPPFLAGS missing (-D_FORTIFY_SOURCE=2): cc -c -D_REENTRANT -D_GNU_SOURCE -DDEBIAN -fstack-protector -fno-strict-aliasing -pipe -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -O2 -g -DVERSION=\"\" -DXS_VERSION=\"\" -fPIC "-I/usr/lib/perl/5.14/CORE" -DLINUX tac_client.c
CFLAGS missing (--param=ssp-buffer-size=4 -Wformat -Werror=format-security): cc -c -D_REENTRANT -D_GNU_SOURCE -DDEBIAN -fstack-protector -fno-strict-aliasing -pipe -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -O2 -g -DVERSION=\"\" -DXS_VERSION=\"\" -fPIC "-I/usr/lib/perl/5.14/CORE" -DLINUX utils.c
CPPFLAGS missing (-D_FORTIFY_SOURCE=2): cc -c -D_REENTRANT -D_GNU_SOURCE -DDEBIAN -fstack-protector -fno-strict-aliasing -pipe -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -O2 -g -DVERSION=\"\" -DXS_VERSION=\"\" -fPIC "-I/usr/lib/perl/5.14/CORE" -DLINUX utils.c
I don't have any experience with MakeMaker thus I don't know the
proper way to pass the flags.
Regards,
Simon
--
+ privacy is necessary
+ using gnupg http://gnupg.org
+ public key id: 0x92FEFDB7E44C32F9
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-perl-maintainers/attachments/20120829/14346dfd/attachment.pgp>
More information about the pkg-perl-maintainers
mailing list