First Last Prev Next    This bug is not in your last search results.
Bug 743143 - virtualbox: setuid binaries need to be position independent
virtualbox: setuid binaries need to be position independent
Status: VERIFIED FIXED
Classification: openSUSE
Product: openSUSE 12.2
Classification: openSUSE
Component: Other
Factory
All Linux
: P5 - None : Normal (vote)
: ---
Assigned To: Michal Seben
E-mail List
:
Depends on:
Blocks: 744091
  Show dependency treegraph
 
Reported: 2012-01-24 15:50 UTC by Ludwig Nussel
Modified: 2015-02-19 11:30 UTC (History)
1 user (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Ludwig Nussel 2012-01-24 15:50:50 UTC 
virtualbox triggered the rpmlint check
"non-position-independent-executable" which means there are one or
more binaries that need to be compiled as position independent
executable.

To fix the issue add -fPIE to CFLAGS and -pie to LDFLAGS of the
binaries in question.
Comment 1 Ludwig Nussel 2012-02-27 13:41:36 UTC 
the package will fail to build next month due to this
Comment 2 Bernhard Wiedemann 2012-03-24 18:00:11 UTC 
This is an autogenerated message for OBS integration:
This bug (743143) was mentioned in
https://build.opensuse.org/request/show/110919 Factory / virtualbox
Comment 3 Michal Seben 2012-03-28 07:27:53 UTC 
fix is now in Factory, so closing as fixed
Comment 4 Swamp Workflow Management 2012-10-10 08:09:15 UTC 
openSUSE-SU-2012:1323-1: An update that solves three vulnerabilities and has two fixes is now available.

Category: security (low)
Bug References: 737525,742115,743143,761923,780711
CVE References: CVE-2011-3571,CVE-2012-0105,CVE-2012-0111
Sources used:
openSUSE 12.2 (src):    virtualbox-4.1.22-1.6.1
openSUSE 12.1 (src):    virtualbox-4.1.22-3.5.1
openSUSE 11.4 (src):    virtualbox-4.0.12-0.48.1
First Last Prev Next    This bug is not in your last search results.