[prev in list] [next in list] [prev in thread] [next in thread] 

List:       gentoo-hardened
Subject:    [gentoo-hardened] hardened-gcc mission critical update 1.5
From:       Alexander Gabert <pappy () gentoo ! org>
Date:       2003-08-17 16:03:17
[Download RAW message or body]

Hi Dominik, 

hi lists,

the new hardened-gcc-1.5 package contains a new softlink behaviour
pointing to the /lib/ld compiled into the interpreter section.

this is the old behaviour which will bring massive problems when glibc
is updated:
17:56:24 pappy@crusade pappy $ readelf -a /bin/ping | grep -i interp
  INTERP         0x00a328 0x0000a328 0x0000a328 0x00011 0x00011 R   0x1
      [Requesting program interpreter: /lib/ld-2.3.2.so]

the new update-proof behaviour:
17:56:29 pappy@crusade pappy $ readelf -a /usr/bin/ssh | grep -i interp
  INTERP         0x0000f4 0x000000f4 0x000000f4 0x00026 0x00026 R   0x1
      [Requesting program interpreter: /lib/ld-linux.so.2]

Remember that on hppa the softlink is not the same but the ebuild will
take care once hppa is getting another glibc bug fixed concerning %r19.

Every user of hardened-gcc should emerge the new hardened-gcc and then
emerge --emptytree --update --verbose world to make sure no single
program is using the old interpreter link any more.

this is a "forward bug" warning which will have no effect until the
glibc and the ld stays the same - but please take care.


Alex



--
gentoo-hardened@gentoo.org mailing list

[prev in list] [next in list] [prev in thread] [next in thread]