Package: libruby2.1 Version: 2.1.5-1 Severity: normal As far as I understand mkmf.rb merges the LDFLAGS that ruby is built with into the flags for building the extension. Currently these are
╭─ maritornes:~/tmp ╰─% ruby -e "puts RbConfig::CONFIG['LDFLAGS']" -L. -Wl,-z,relro -L/build/ruby2.1-64qTCU/ruby2.1-2.1.5/debian/lib -fstack-protector -rdynamic -Wl,-export-dynamic Obviously that temp directory is not too useful. In the (somewhat unlikely) scenario that /build is world writable this has security implications, that's the only thing that makes me think this might deserve higher severity than wishlist, but it's your call. -- System Information: Debian Release: 8.0 APT prefers testing APT policy: (900, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages libruby2.1 depends on: ii libc6 2.19-13 ii libffi6 3.1-2+b2 ii libgdbm3 1.8.3-13.1 ii libgmp10 2:6.0.0+dfsg-6 ii libncurses5 5.9+20140913-1+b1 ii libreadline6 6.3-8+b2 ii libssl1.0.0 1.0.1j-1 ii libtinfo5 5.9+20140913-1+b1 ii libyaml-0-2 0.1.6-2 ii zlib1g 1:1.2.8.dfsg-2+b1 libruby2.1 recommends no packages. libruby2.1 suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
