[pkg-firebird-general] Bug#663914: firebird2.5: Hardening flags partially missing

Simon Ruderich simon at ruderich.org
Mon Mar 26 18:49:05 UTC 2012

On Mon, Mar 26, 2012 at 08:44:32PM +0300, Damyan Ivanov wrote:
> The two binaries that the patch fixes are used only during the build
> process and aren't shipped in the resulting binary packages. The first
> part of the patch is about the program that creates ibase.h header
> file, and the other is the custom-built syntax parser that is later
> used during the build.
> Both of these never see user input or any external data. Their only
> input is what the build system gives them.
> Is there any proof that the missing hardening flags are a real
> problem?

In that case it's not a real (security) problem. Sorry for the
wrong severity, I didn't check if they are just used during the

But it should be fixed anyway to make automatic checks to detect
missing (hardening) flags of build logs possible and to prevent
problems in the future.

+ privacy is necessary
+ using gnupg http://gnupg.org
+ public key id: 0x92FEFDB7E44C32F9
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-firebird-general/attachments/20120326/80ec6135/attachment.pgp>

More information about the pkg-firebird-general mailing list