Package: feh Version: 2.3-1 Severity: important Tags: patch -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
Dear Maintainer, Please enable hardening flags for feh (for more information see [1] and [2]). The attached patch increases compat to 9 which automatically enables hardening flags; PIE is enabled (included in hardening=+all) because feh may read untrusted data. If you don't like to increase compat, other options to enable hardening flags are listed in [2]. Regards, Simon [1]: https://wiki.debian.org/ReleaseGoals/SecurityHardeningBuildFlags [2]: https://wiki.debian.org/Hardening - -- System Information: Debian Release: wheezy/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-1-amd64 (SMP w/8 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages feh depends on: ii giblib1 1.2.4-8 ii libc6 2.13-26 ii libcurl3 7.24.0-1 ii libimlib2 1.4.4-1+b1 ii libpng12-0 1.2.46-4 ii libx11-6 2:1.4.4-4 ii libxinerama1 2:1.1.1-3 Versions of packages feh recommends: pn libjpeg-progs <none> feh suggests no packages. - -- no debconf information -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iQIcBAEBCAAGBQJPK+6HAAoJEJL+/bfkTDL50QYQALZS7sslvqM3739e4fKhk8BL ThBn4kJznVC9CyDFtlaTWhA/fxXYExISds9kWPqz8W3x39vY3C39LUOSEH0WYY/8 5ow6MHvPHcbyWZcmkqtRZsXYPqvlX/i0STMNN3cSwbivBDeUcQ9cmoLpDuNDu/51 rTVC6DMOW8CxMroiJIfMSIn0EEeuUI0rHi5dG/tBrnEnnY1yiBG8akEf34+BI8cb Unzsi7kiOLnu1hfDNb41AM56s8FmrYLvWkZKwrcHC+twy5L5OAEVSm1Og6sUOPrb +RJNu57tfo0TEsuWKl12M179RmmgiZTb1owDB6CylCDbCJBSZR15fXfvLqIJRdaC BQXoZuQ1fWo1k7qLIdBUIa29A5xm98iwJ5pDe/boqeHLw8y8RTpNKnIO93ttat1r 0rgCvsi7jxk0TJlaudZZxQd5d4U+R5mFYmUcvbLHvOn03NFdsrAthvteAGL2/OVa 5KoKg1A19ko+GEtEJaNk8+BvcDPgcGKPHMbMJoDxkus7JrrehTLnqz5/4HtS52Uo kTL8w8adYltntC7WmXa7IwvkrcjqShRAK+D6Qnw1Q8tbfjGtuFazJaREdx4NR8/b ECEMBKhpI4Hvmt6IFRX7eWEdl0wkQSxr1X/gWEQ99WbXKNPUG5MD5mhwxB3M+sR7 RAUll2AWNA79iRgUBcnt =rVEn -----END PGP SIGNATURE-----
diff --git a/debian/compat b/debian/compat index 2f95459..ec63514 100644 --- a/debian/compat +++ b/debian/compat @@ -1,2 +1 @@ -8 - +9 diff --git a/debian/control b/debian/control index 01c4f44..9aee857 100644 --- a/debian/control +++ b/debian/control @@ -5,7 +5,7 @@ Maintainer: Debian PhotoTools Maintainers <[email protected] Uploaders: Andreas Tille <[email protected]> DM-Upload-Allowed: yes Build-Depends: libx11-dev, libxt-dev, libimlib2-dev (>= 1.4.2-8), giblib-dev, libxinerama-dev, - debhelper (>= 8), quilt (>= 0.47), perl-modules, libtest-command-perl, + debhelper (>= 9), quilt (>= 0.47), perl-modules, libtest-command-perl, libcurl4-openssl-dev | libcurl-dev Standards-Version: 3.9.2 Homepage: http://feh.finalrewind.org/ diff --git a/debian/rules b/debian/rules index 3003866..91c2003 100755 --- a/debian/rules +++ b/debian/rules @@ -2,6 +2,8 @@ #DEB_MAKE_INVOKE += LDFLAGS="-Wl,--as-needed" #sloppy_but_works_hrmmm_... +export DEB_BUILD_MAINT_OPTIONS = hardening=+all + %: dh $@ --with quilt
_______________________________________________ Pkg-phototools-devel mailing list [email protected] http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-phototools-devel
