[Pkg-phototools-devel] Bug#658497: feh: Enable hardening flags

Simon Ruderich simon at ruderich.org
Fri Feb 3 14:26:20 UTC 2012 

Package: feh
Version: 2.3-1
Severity: important
Tags: patch

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Dear Maintainer,

Please enable hardening flags for feh (for more information see
[1] and [2]).

The attached patch increases compat to 9 which automatically
enables hardening flags; PIE is enabled (included in
hardening=+all) because feh may read untrusted data. If you don't
like to increase compat, other options to enable hardening flags
are listed in [2].

Regards,
Simon

[1]: https://wiki.debian.org/ReleaseGoals/SecurityHardeningBuildFlags
[2]: https://wiki.debian.org/Hardening

- -- System Information:
Debian Release: wheezy/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages feh depends on:
ii  giblib1       1.2.4-8
ii  libc6         2.13-26
ii  libcurl3      7.24.0-1
ii  libimlib2     1.4.4-1+b1
ii  libpng12-0    1.2.46-4
ii  libx11-6      2:1.4.4-4
ii  libxinerama1  2:1.1.1-3

Versions of packages feh recommends:
pn  libjpeg-progs  <none>

feh suggests no packages.

- -- no debconf information

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iQIcBAEBCAAGBQJPK+6HAAoJEJL+/bfkTDL50QYQALZS7sslvqM3739e4fKhk8BL
ThBn4kJznVC9CyDFtlaTWhA/fxXYExISds9kWPqz8W3x39vY3C39LUOSEH0WYY/8
5ow6MHvPHcbyWZcmkqtRZsXYPqvlX/i0STMNN3cSwbivBDeUcQ9cmoLpDuNDu/51
rTVC6DMOW8CxMroiJIfMSIn0EEeuUI0rHi5dG/tBrnEnnY1yiBG8akEf34+BI8cb
Unzsi7kiOLnu1hfDNb41AM56s8FmrYLvWkZKwrcHC+twy5L5OAEVSm1Og6sUOPrb
+RJNu57tfo0TEsuWKl12M179RmmgiZTb1owDB6CylCDbCJBSZR15fXfvLqIJRdaC
BQXoZuQ1fWo1k7qLIdBUIa29A5xm98iwJ5pDe/boqeHLw8y8RTpNKnIO93ttat1r
0rgCvsi7jxk0TJlaudZZxQd5d4U+R5mFYmUcvbLHvOn03NFdsrAthvteAGL2/OVa
5KoKg1A19ko+GEtEJaNk8+BvcDPgcGKPHMbMJoDxkus7JrrehTLnqz5/4HtS52Uo
kTL8w8adYltntC7WmXa7IwvkrcjqShRAK+D6Qnw1Q8tbfjGtuFazJaREdx4NR8/b
ECEMBKhpI4Hvmt6IFRX7eWEdl0wkQSxr1X/gWEQ99WbXKNPUG5MD5mhwxB3M+sR7
RAUll2AWNA79iRgUBcnt
=rVEn
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: hardening-flags.patch
Type: text/x-diff
Size: 1044 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-phototools-devel/attachments/20120203/4ed9fe76/attachment.patch>

More information about the Pkg-phototools-devel mailing list