Package: linux Version: 3.14.13-2 Severity: wishlist
Hi, the Linux kernel in Debian is currently not protected against stack attacks: $ grep STACKPROTECTOR /boot/config-3.14-2-amd64 CONFIG_HAVE_CC_STACKPROTECTOR=y # CONFIG_CC_STACKPROTECTOR is not set CONFIG_CC_STACKPROTECTOR_NONE=y # CONFIG_CC_STACKPROTECTOR_REGULAR is not set # CONFIG_CC_STACKPROTECTOR_STRONG is not set Here is a good reference on the topic: https://lkml.org/lkml/2013/12/20/180 So could you please activate one of those options ? CONFIG_CC_STACKPROTECTOR_REGULAR can be activated now with gcc 4.8. CONFIG_CC_STACKPROTECTOR_STRONG can be activated once gcc 4.9 is used the compile the kernel. -- Laurent. -- To UNSUBSCRIBE, email to debian-kernel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/53de03fd.8040...@laposte.net
