[Bug 49323] Re: gnupg executable stack fix

[Bug Watch Updater]

** Changed in: gnupg (Debian)
       Status: Fix Committed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to gnupg in Ubuntu.
https://bugs.launchpad.net/bugs/49323

Title:
  gnupg executable stack fix

Status in “gnupg” package in Ubuntu:
  Fix Released
Status in “gnupg” package in Debian:
  Fix Released

Bug description:
  Binary package hint: gnupg

  Same bug as bug #49192, same solution, run the below script in the
  root of the source tree:

  e="/* Add these three lines to get us a PT_GNU_STACK header */
  #ifdef __ELF__
  .section .note.GNU-stack,\"\",%progbits
  #endif"
  for i in `find . -name \*.S`; do echo "$e" >> "$i"; done

  Bug upstream once you fix it, use Ubuntu as an example of "yes this
  really works," reference to nice hardened gentoo documentation[1], yes
  I actually did a quick check for stack execution (grep for esp and
  look for jmp or branches into esp+somebytes), etc etc.  You get the
  idea by now.

  [1] http://www.gentoo.org/proj/en/hardened/gnu-stack.xml

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/gnupg/+bug/49323/+subscriptions