Greetings. Packages currently using the _hardened_build macro that also use libtool may have been built only with "partial" RELRO instead of full RELRO protections. https://fedoraproject.org/wiki/Security_Features_Matrix#Built_with_RELRO
A workaround has been added today to the redhat-rpm-config package in rawhide to fix this issue. Maintainers are encouraged to check their _hardened_build packages to confirm that they rebuild correctly with full RELRO protections. Additionally since this change is in the %configure macro used by many packages, maintainers that find regressions due to this change should file bugs on the redhat-rpm-macros package or note them in https://bugzilla.redhat.com/show_bug.cgi?id=978949 You can check your package for RELRO by unpacking it and running the hardening-check tool from the hardening-check package over it's libraries. Thanks, kevin
signature.asc
Description: PGP signature
_______________________________________________ devel-announce mailing list devel-annou...@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel-announce
-- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
