Bug#835149: dpkg: please adapt setting the default pie hardening flag to gcc's new defaults

Hi! On Wed, 2016-10-26 at 05:08:52 +0200, Guillem Jover wrote: > On Wed, 2016-09-07 at 00:48:17 +0200, Bálint Réczey wrote: > > 2016-09-04 3:03 GMT+02:00 Balint Reczey : > > > Many packages fail to build due to gcc ... -shared -no-pie ... failing. > > > I have reported the issue to GCC but they do

Bug#835149: dpkg: please adapt setting the default pie hardening flag to gcc's new defaults

Hi! On Wed, 2016-09-07 at 00:48:17 +0200, Bálint Réczey wrote: > 2016-09-04 3:03 GMT+02:00 Balint Reczey : > > Many packages fail to build due to gcc ... -shared -no-pie ... failing. > > I have reported the issue to GCC but they don't seem to fix that: > > https://gcc.gnu.org/bugzilla/show_bug.cgi

Bug#835146: dpkg: please enable bindow hardening flag by default

Hi! On Thu, 2016-10-20 at 03:20:59 +0200, Bálint Réczey wrote: > For the record gcc-6/6.2.0-7 enabled bindnow for the architectures where > PIE is enabled by default. I think enabling bindnow from dpkg would be > better through the hardening flags because packages could disable it > in a nicer and

Bug#586572: libdpkg-dev: libdpkg is not built position-independent (-fPIC)

Control: affects -1 - debsig-verify Hi! On Sun, 2016-09-11 at 14:44:58 +0200, Balint Reczey wrote: > Control: affects -1 debsig-verify > Recent discussion on debian devel suggests that it is a better > practice to use -fPIC even for static libraries: > https://lists.debian.org/debian-devel/2016/

Bug#842004: dpkg: segfaults installing safe-rm

Hi! On Tue, 2016-10-25 at 09:24:15 +0200, Sven Joachim wrote: > Package: dpkg > Version: 1.18.10 > Severity: normal > > Installing the safe-rm package in a freshly bootstrapped chroot where > /bin is a symlink to /usr/bin (the merged-/usr feature implemented in > debootstrap 1.0.85) causes dpkg t

Processed: Re: Bug#586572: libdpkg-dev: libdpkg is not built position-independent (-fPIC)

Processing control commands: > affects -1 - debsig-verify Bug #586572 [libdpkg-dev] libdpkg-dev: Please provide a libdpkg shared library Removed indication that 586572 affects debsig-verify -- 586572: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=586572 Debian Bug Tracking System Contact ow..

Bug#842004: dpkg: segfaults installing safe-rm

Package: dpkg Version: 1.18.10 Severity: normal Installing the safe-rm package in a freshly bootstrapped chroot where /bin is a symlink to /usr/bin (the merged-/usr feature implemented in debootstrap 1.0.85) causes dpkg to segfault. , | # apt-get install safe-rm | [...] | Selecting previously