gnupg executable stack fix
Bug #49323 reported by
John Moser
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| gnupg (Debian) |
Fix Released
|
Unknown
|
|||
| gnupg (Ubuntu) |
Fix Released
|
Low
|
Unassigned | ||
Bug Description
Binary package hint: gnupg
Same bug as bug #49192, same solution, run the below script in the root of the source tree:
e="/* Add these three lines to get us a PT_GNU_STACK header */
#ifdef __ELF__
.section .note.GNU-
#endif"
for i in `find . -name \*.S`; do echo "$e" >> "$i"; done
Bug upstream once you fix it, use Ubuntu as an example of "yes this really works," reference to nice hardened gentoo documentation[1], yes I actually did a quick check for stack execution (grep for esp and look for jmp or branches into esp+somebytes), etc etc. You get the idea by now.
Related branches
Revision history for this message
| Micah Cowan (micahcowan) wrote | #1 |
| Changed in gnupg: | |
| status: | Unconfirmed → Confirmed |
| Changed in gnupg: | |
| importance: | Undecided → Low |
Revision history for this message
| Daniel Leidert (dleidert-deactivatedaccount) wrote | #2 |
| Changed in gnupg (Debian): | |
| status: | Unknown → New |
Revision history for this message
| Launchpad Janitor (janitor) wrote | #3 |
| Changed in gnupg (Ubuntu): | |
| status: | Confirmed → Fix Released |
| Changed in gnupg (Debian): | |
| status: | New → Fix Committed |
| Changed in gnupg (Debian): | |
| status: | Fix Committed → Fix Released |
To post a comment you must log in.
Confirmed, at least for 1.4.2.2-1ubuntu2.2.
$ execstack -q /usr/bin/gpg
X /usr/bin/gpg