*** This bug is a security vulnerability *** You have been subscribed to a public security bug by Kees Cook (kees):
glibc's SSP implementation is using only the static 0xff0a0000 guard value. Fedora has been carrying an unupstreamed glibc patch for 3 years to make this relatively random. (see _dl_setup_stack_chk_guard): http://cvs.fedora.redhat.com/viewvc/devel/glibc/glibc-fedora.patch?revision=1.283&view=markup ** Affects: glibc (Ubuntu) Importance: Undecided Status: New -- stack protector guard value uses a static sentinel https://bugs.edge.launchpad.net/bugs/275493 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
