Project

General

Profile

Actions

Architecture #13812

closed

Improve hardening flags for our C dependencies

Added by Alexis Mousset about 6 years ago. Updated about 3 years ago.

Status:
Released
Priority:
N/A
Category:
Security
Target version:
Effort required:
Name check:
Fix check:
Regression:

Description

  • Use -fstack-protector-strong when possible
  • Use -D_FORTIFY_SOURCE=2 when possible

these are used by Debian, Ubuntu and Fedora, should be safe.


Subtasks 1 (0 open1 closed)

Bug #18941: Configure script fails to run on debianReleasedAlexis MoussetActions
Actions #1

Updated by Alexis Mousset about 6 years ago

  • Subject changed from Use fstack-protector-strong whe available to Use fstack-protector-strong when available
  • Target version changed from 5.0.3 to 4.3.7
Actions #2

Updated by Alexis Mousset about 6 years ago

  • Status changed from New to In progress
  • Assignee set to Alexis Mousset
Actions #3

Updated by Alexis Mousset about 6 years ago

  • Status changed from In progress to New
  • Assignee deleted (Alexis Mousset)
  • Target version changed from 4.3.7 to 5.0.3
Actions #4

Updated by Alexis Mousset about 6 years ago

  • Status changed from New to In progress
  • Assignee set to Alexis Mousset
Actions #5

Updated by Alexis Mousset about 6 years ago

  • Status changed from In progress to New
Actions #6

Updated by Vincent MEMBRÉ almost 6 years ago

  • Target version changed from 5.0.3 to 5.0.4
Actions #7

Updated by Vincent MEMBRÉ almost 6 years ago

  • Target version changed from 5.0.4 to 5.0.5
Actions #8

Updated by Alexis Mousset almost 6 years ago

  • Target version changed from 5.0.5 to 5.0.6
Actions #9

Updated by Vincent MEMBRÉ almost 6 years ago

  • Target version changed from 5.0.6 to 5.0.7
Actions #10

Updated by François ARMAND over 5 years ago

  • Target version changed from 5.0.7 to 5.0.9
Actions #11

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 5.0.9 to 5.0.10
Actions #12

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 5.0.10 to 5.0.11
Actions #13

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 5.0.11 to 5.0.12
Actions #14

Updated by Vincent MEMBRÉ over 5 years ago

  • Target version changed from 5.0.12 to 5.0.13
Actions #15

Updated by Vincent MEMBRÉ about 5 years ago

  • Target version changed from 5.0.13 to 5.0.14
Actions #16

Updated by Vincent MEMBRÉ about 5 years ago

  • Target version changed from 5.0.14 to 5.0.15
Actions #17

Updated by Vincent MEMBRÉ almost 5 years ago

  • Target version changed from 5.0.15 to 5.0.16
Actions #18

Updated by Alexis Mousset almost 5 years ago

  • Target version changed from 5.0.16 to 5.0.17
Actions #19

Updated by Vincent MEMBRÉ over 4 years ago

  • Target version changed from 5.0.17 to 5.0.18
Actions #20

Updated by Benoît PECCATTE over 4 years ago

  • Target version changed from 5.0.18 to 6.2.0~beta1
Actions #21

Updated by Vincent MEMBRÉ about 4 years ago

  • Target version changed from 6.2.0~beta1 to 6.2.0~rc1
Actions #22

Updated by François ARMAND about 4 years ago

  • Category changed from Packaging to Security
  • Target version changed from 6.2.0~rc1 to 7.0.0~beta1
Actions #23

Updated by Alexis Mousset almost 4 years ago

  • Subject changed from Use fstack-protector-strong when available to Improve hardening flags for our C dependencies
  • Description updated (diff)
Actions #24

Updated by Alexis Mousset almost 4 years ago

  • Status changed from New to In progress
Actions #25

Updated by Alexis Mousset almost 4 years ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from Alexis Mousset to Benoît PECCATTE
  • Pull Request set to https://github.com/Normation/rudder-packages/pull/2415
Actions #26

Updated by Alexis Mousset almost 4 years ago

  • Status changed from Pending technical review to Pending release
Actions #27

Updated by Vincent MEMBRÉ about 3 years ago

  • Status changed from Pending release to Released

This bug has been fixed in Rudder 7.0.0~beta1 which was released today.

Actions

Also available in: Atom PDF