Source: bc Version: 1.06.95-9 Severity: wishlist Tags: patch User: hardening-disc...@lists.alioth.debian.org Usertag: goal-hardening
Hi!
bc and dc provides ELF executables that are not compiled as a position
independent executable (PIE). PIE is required for fully enabling Address
Space Layout Randomization (ASLR), which makes "Return-oriented" attacks
more difficult.
I have successfully rebuilt bc adding the following line in
debian/rules:
export DEB_BUILD_MAINT_OPTIONS = hardening=+all
I did some quick tests and the package seemed to work fine. Please
consider this easy way to improve the security of Debian users.
Thanks,
--
Lunar .''`.
lu...@debian.org : :Ⓐ : # apt-get install anarchism
`. `'`
`-
signature.asc
Description: Digital signature
