Package: totem
Version: 2.30.2-2
Severity: normal
Tags: patch
User: [email protected]
Usertags: origin-ubuntu natty ubuntu-patch
In Ubuntu, the attached patch was applied to achieve the following:
* debian/{control{,.in},rules}: enable PIE build for security hardening.
Since totem deals with media files, it should be hardened against potential
malicious attacks. This patch enables the hardening features in the toolchain.
Thanks for considering the patch.
-Kees
-- System Information:
Debian Release: squeeze/sid
APT prefers natty
APT policy: (500, 'natty')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.38-3-generic (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
totem-gstreamer depends on no packages.
diff -u totem-2.32.0/debian/control totem-2.32.0/debian/control
--- totem-2.32.0/debian/control
+++ totem-2.32.0/debian/control
@@ -10,6 +10,7 @@
XSBC-Original-Maintainer: Sebastien Bacher <[email protected]>
Uploaders: Debian GNOME Maintainers <[email protected]>
Build-Depends: debhelper (>= 5.0.51~),
+ hardening-wrapper,
cdbs,
gnome-common,
quilt,
diff -u totem-2.32.0/debian/rules totem-2.32.0/debian/rules
--- totem-2.32.0/debian/rules
+++ totem-2.32.0/debian/rules
@@ -2,6 +2,7 @@
#-*- makefile -*-
#export DH_VERBOSE=1
+export DEB_BUILD_HARDENING=1
include /usr/share/cdbs/1/rules/debhelper.mk
include /usr/share/cdbs/1/class/gnome.mk
diff -u totem-2.32.0/debian/changelog totem-2.32.0/debian/changelog
diff -u totem-2.32.0/debian/control.in totem-2.32.0/debian/control.in
--- totem-2.32.0/debian/control.in
+++ totem-2.32.0/debian/control.in
@@ -5,6 +5,7 @@
XSBC-Original-Maintainer: Sebastien Bacher <[email protected]>
Uploaders: @GNOME_TEAM@
Build-Depends: debhelper (>= 5.0.51~),
+ hardening-wrapper,
cdbs,
gnome-common,
quilt,
