Thanks for the bug report and helping to make Ubuntu better! You can look at /proc/$pid/maps too instead of going through gdb. What you're seeing is the fact that the pidgin maintainer has not chosen to build pidgin as a "PIE" binary. This is required for the text segment (main program area) to be ASLR.
For more details, see: https://wiki.ubuntu.com/Security/Features#exec-aslr https://wiki.ubuntu.com/Security/Features#pie ** Visibility changed to: Public ** This bug is no longer flagged as a security vulnerability ** Summary changed: - ASLR does not work properly on pidgin (perhaps other packages too) + pidgin not built PIE ** Changed in: pidgin (Ubuntu) Status: New => Triaged -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/847381 Title: pidgin not built PIE To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pidgin/+bug/847381/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
