Hi As a long-time Ubuntu user (work machines for programming and on servers) and heavy user of the programming language picolisp, I would greatly wish for a up-to-date picolisp package in Ubuntu.
The isse here seems to be the rather simple change of Ubuntu having switched to always pass the PIE flag when building. picolisp is an interpreter virtual machine, the picolisp language itself allows no access to pointers, as the concept of pointers as native memory address is completely lacking in this lisp language. The category of bugs and security vulnerabilities against which PIE protects are not possible with picolisp by concept (other types of vulnerabilities - introduced by negligent application programmers - are of course well possible). SBCL (another lisp implementation) had the same PIE-issue with yakkety, where it was solved by providing -no-pie flags to GCC to disable -fPIE. See: http://changelogs.ubuntu.com/changelogs/pool/universe/s/sbcl/sbcl_1.3.3-1ubuntu2/changelog The same was the case with picolisp on debian, which it was resolved by using the -no-pie flags. Please apply the same solution to this picolisp package in Ubuntu. Thanks for your support. Any questions regarding picolisp and picolisp security measurements are warmly welcome. Regards, beneroth -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1606142 Title: Version outdated To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/picolisp/+bug/1606142/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
