Project

General

Profile

Actions

Architecture #13812

closed

Improve hardening flags for our C dependencies

Added by Alexis MOUSSET over 3 years ago. Updated 8 months ago.

Status:
Released
Priority:
N/A
Category:
Security
Target version:
Effort required:

Description

  • Use -fstack-protector-strong when possible
  • Use -D_FORTIFY_SOURCE=2 when possible

these are used by Debian, Ubuntu and Fedora, should be safe.


Subtasks 1 (0 open1 closed)

Bug #18941: Configure script fails to run on debianReleasedAlexis MOUSSETActions
Actions #1

Updated by Alexis MOUSSET over 3 years ago

  • Subject changed from Use fstack-protector-strong whe available to Use fstack-protector-strong when available
  • Target version changed from 5.0.3 to 4.3.7
Actions #2

Updated by Alexis MOUSSET over 3 years ago

  • Status changed from New to In progress
  • Assignee set to Alexis MOUSSET
Actions #3

Updated by Alexis MOUSSET over 3 years ago

  • Status changed from In progress to New
  • Assignee deleted (Alexis MOUSSET)
  • Target version changed from 4.3.7 to 5.0.3
Actions #4

Updated by Alexis MOUSSET over 3 years ago

  • Status changed from New to In progress
  • Assignee set to Alexis MOUSSET
Actions #5

Updated by Alexis MOUSSET over 3 years ago

  • Status changed from In progress to New
Actions #6

Updated by Vincent MEMBRÉ over 3 years ago

  • Target version changed from 5.0.3 to 5.0.4
Actions #7

Updated by Vincent MEMBRÉ over 3 years ago

  • Target version changed from 5.0.4 to 5.0.5
Actions #8

Updated by Alexis MOUSSET over 3 years ago

  • Target version changed from 5.0.5 to 5.0.6
Actions #9

Updated by Vincent MEMBRÉ over 3 years ago

  • Target version changed from 5.0.6 to 5.0.7
Actions #10

Updated by François ARMAND about 3 years ago

  • Target version changed from 5.0.7 to 5.0.9
Actions #11

Updated by Vincent MEMBRÉ about 3 years ago

  • Target version changed from 5.0.9 to 5.0.10
Actions #12

Updated by Vincent MEMBRÉ about 3 years ago

  • Target version changed from 5.0.10 to 5.0.11
Actions #13

Updated by Vincent MEMBRÉ almost 3 years ago

  • Target version changed from 5.0.11 to 5.0.12
Actions #14

Updated by Vincent MEMBRÉ almost 3 years ago

  • Target version changed from 5.0.12 to 5.0.13
Actions #15

Updated by Vincent MEMBRÉ over 2 years ago

  • Target version changed from 5.0.13 to 5.0.14
Actions #16

Updated by Vincent MEMBRÉ over 2 years ago

  • Target version changed from 5.0.14 to 5.0.15
Actions #17

Updated by Vincent MEMBRÉ over 2 years ago

  • Target version changed from 5.0.15 to 5.0.16
Actions #18

Updated by Alexis MOUSSET over 2 years ago

  • Target version changed from 5.0.16 to 5.0.17
Actions #19

Updated by Vincent MEMBRÉ about 2 years ago

  • Target version changed from 5.0.17 to 5.0.18
Actions #20

Updated by Benoît PECCATTE about 2 years ago

  • Target version changed from 5.0.18 to 6.2.0~beta1
Actions #21

Updated by Vincent MEMBRÉ over 1 year ago

  • Target version changed from 6.2.0~beta1 to 6.2.0~rc1
Actions #22

Updated by François ARMAND over 1 year ago

  • Category changed from Packaging to Security
  • Target version changed from 6.2.0~rc1 to 7.0.0~beta1
Actions #23

Updated by Alexis MOUSSET over 1 year ago

  • Subject changed from Use fstack-protector-strong when available to Improve hardening flags for our C dependencies
  • Description updated (diff)
Actions #24

Updated by Alexis MOUSSET over 1 year ago

  • Status changed from New to In progress
Actions #25

Updated by Alexis MOUSSET over 1 year ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from Alexis MOUSSET to Benoît PECCATTE
  • Pull Request set to https://github.com/Normation/rudder-packages/pull/2415
Actions #26

Updated by Alexis MOUSSET about 1 year ago

  • Status changed from Pending technical review to Pending release
Actions #27

Updated by Vincent MEMBRÉ 8 months ago

  • Status changed from Pending release to Released

This bug has been fixed in Rudder 7.0.0~beta1 which was released today.

Actions

Also available in: Atom PDF