Bug#751907: marked as done (libffi6: cannot enable executable stack as shared object requires: Permission denied)

To: Yves-Alexis Perez <corsac@debian.org>
Subject: Bug#751907: marked as done (libffi6: cannot enable executable stack as shared object requires: Permission denied)
From: owner@bugs.debian.org (Debian Bug Tracking System)
Date: Sat, 24 Jun 2017 21:21:12 +0000
Message-id: <[🔎] handler.751907.D751907.14983391117114.ackdone@bugs.debian.org>
References: <E1dOsRo-0000LN-7U@fasolo.debian.org> <20140617181311.7194.16334.reportbug@i.ctrlc.hu>

Your message dated Sat, 24 Jun 2017 21:18:28 +0000
with message-id <E1dOsRo-0000LN-7U@fasolo.debian.org>
and subject line Bug#751907: fixed in libffi 3.1-2+deb8u1
has caused the Debian Bug report #751907,
regarding libffi6: cannot enable executable stack as shared object requires: Permission denied
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
751907: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=751907
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: libffi6: cannot enable executable stack as shared object requires: Permission denied
From: stef <4mwpqeni@ctrlc.hu>
Date: Tue, 17 Jun 2014 20:13:11 +0200
Message-id: <20140617181311.7194.16334.reportbug@i.ctrlc.hu>

Package: libffi6
Version: 3.1-2
Severity: critical
Tags: security patch
Justification: breaks the whole system

when using grsecurity/pax protections on debian unstable, the newest libffi6
breaks almost everything.

some examples:
> # emacs
> emacs: error while loading shared libraries: libffi.so.6: cannot enable executable stack as shared object requires: Permission denied
> # mutt
> mutt: error while loading shared libraries: libffi.so.6: cannot enable executable stack as shared object requires: Permission denied

similarly ck-session-launch, gsettings, and other binaries are affected.

patch should be available from:

http://git.overlays.gentoo.org/gitweb/?p=proj/hardened-dev.git;a=blob;f=dev-libs/libffi/files/libffi-3.0.12-emutramp_pax.patch;h=4799b227e8510c3a254a97355f341d7f8af404f0;hb=6eeb6a6c620ee84e411f989cc246212422e8b636

-- System Information:
Debian Release: jessie/sid
Architecture: i386 (x86_64)

Kernel: Linux 3.12.6-grsec (SMP w/2 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages libffi6 depends on:
ii  libc6              2.19-2
ii  multiarch-support  2.19-2

libffi6 recommends no packages.

libffi6 suggests no packages.

-- no debconf information

--- End Message ---

--- Begin Message ---

To: 751907-close@bugs.debian.org
Subject: Bug#751907: fixed in libffi 3.1-2+deb8u1
From: Yves-Alexis Perez <corsac@debian.org>
Date: Sat, 24 Jun 2017 21:18:28 +0000
Message-id: <E1dOsRo-0000LN-7U@fasolo.debian.org>

Source: libffi
Source-Version: 3.1-2+deb8u1

We believe that the bug you reported is fixed in the latest version of
libffi, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 751907@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Yves-Alexis Perez <corsac@debian.org> (supplier of updated libffi package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 15 Jun 2017 11:42:36 +0200
Source: libffi
Binary: libffi-dev libffi6 libffi6-dbg libffi6-udeb
Architecture: source amd64
Version: 3.1-2+deb8u1
Distribution: jessie-security
Urgency: high
Maintainer: Debian GCC Maintainers <debian-gcc@lists.debian.org>
Changed-By: Yves-Alexis Perez <corsac@debian.org>
Description:
 libffi-dev - Foreign Function Interface library (development files)
 libffi6    - Foreign Function Interface library runtime
 libffi6-dbg - Foreign Function Interface library runtime (debug symbols)
 libffi6-udeb - Foreign Function Interface library runtime (udeb)
Closes: 751907
Changes:
 libffi (3.1-2+deb8u1) jessie-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * debian/patches:
     - 01_add_missing_GNU_STACK_markings, fix requirement on an executable
       stack on x86_32 (CVE-2017-1000376)                        closes: #751907
   * debian/rules:
     - enable pax_emutramp
Checksums-Sha1:
 e289ccdd8113f8f0310826585dbd80bd88338be8 1691 libffi_3.1-2+deb8u1.dsc
 cb373ef2115ec7c57913b84ca72eee14b10ccdc3 937214 libffi_3.1.orig.tar.gz
 3c3c8bde8ee7d273940eaa3cceddf73904e065f8 8948 libffi_3.1-2+deb8u1.debian.tar.xz
 ae283065e679dedcd4cc907755ae8838bb8cd744 156714 libffi-dev_3.1-2+deb8u1_amd64.deb
 a609ca523b66d3982d6155250c73810876eb4d96 20200 libffi6_3.1-2+deb8u1_amd64.deb
 df7e97fa4ca77b5578f378da845beb4c1ac57bc6 28828 libffi6-dbg_3.1-2+deb8u1_amd64.deb
 3669d5ba59b80ba866af4e8cbea0aa73b4cf107d 14754 libffi6-udeb_3.1-2+deb8u1_amd64.udeb
Checksums-Sha256:
 db5a3fe5558d7858cb8d9cdc7e0cf5c1c51622c3b313c0a0ac64eb7ff5298a63 1691 libffi_3.1-2+deb8u1.dsc
 97feeeadca5e21870fa4433bc953d1b3af3f698d5df8a428f68b73cd60aef6eb 937214 libffi_3.1.orig.tar.gz
 71ab991f52edbdf0e19408b6c947650d92c766842581eb172ab9a44bf0ce3ab8 8948 libffi_3.1-2+deb8u1.debian.tar.xz
 0c4806abbf03d82864a085a0cee283ff8b12a083768d57ca04e2c540526e7126 156714 libffi-dev_3.1-2+deb8u1_amd64.deb
 100343fca79ff265abc62467c7085fca68b8764e8c2551302ab741c771e7f0aa 20200 libffi6_3.1-2+deb8u1_amd64.deb
 796aaba051baea49d4149e1cf677b92ee1f6005ad27048e7e645cfaee483fb83 28828 libffi6-dbg_3.1-2+deb8u1_amd64.deb
 1b571cf6077a0413632c09b25db66c67ce693182eb027b5df6b751951603f7c1 14754 libffi6-udeb_3.1-2+deb8u1_amd64.udeb
Files:
 1eb5a7aace0a7f37f9329d6d46b79c2c 1691 libs optional libffi_3.1-2+deb8u1.dsc
 f5898b29bbfd70502831a212d9249d10 937214 libs optional libffi_3.1.orig.tar.gz
 475503354a9f77a78bf65fb12e7c1901 8948 libs optional libffi_3.1-2+deb8u1.debian.tar.xz
 852ab6ff2875c3f2a7aec429511b9e55 156714 libdevel optional libffi-dev_3.1-2+deb8u1_amd64.deb
 35f1ce4d94d4e0b31428b89b78304192 20200 libs optional libffi6_3.1-2+deb8u1_amd64.deb
 c7c7d9fe98eaec5679f6b5c6f67dfd1a 28828 debug extra libffi6-dbg_3.1-2+deb8u1_amd64.deb
 b3a1c7785fcfd037ce2359273d843eb5 14754 debian-installer optional libffi6-udeb_3.1-2+deb8u1_amd64.udeb
Package-Type: udeb

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEEl0WwInMjgf6efq/1bdtT8qZ1wKUFAllGS+4ACgkQbdtT8qZ1
wKX6Twf/UmiDPV8yWchLTsDnKYWHZRGhbCqKVDAJxpVZ1X4w4ahIxvpUwhoaG8t7
KYsWqln6MPoVOGSY3MrN/abGaTKv3guwa7OlHDOkiqmmftrqFMXOwPgycLy6CWch
0b8UWhQvH7Wf61RfuS9GCKE6KQRoFT7rTaHoDsiNVnb6tLIj1IFxiCIDpyYx1zrQ
X/n55uyqsOmQR2cSYykeLm9cofAFAybDr7n41f/P3k5e6aR7uDFMBGemhtMylNWP
2y4apwJQ72vAGhLCln21lxvNdh9f2FoHOj1hgWfj9IoW4uAfpIRcBddNDg9ao/cY
7zWTbmO7yR/RE2rGK0E6bUSeakJPXA==
=iXUr
-----END PGP SIGNATURE-----

--- End Message ---

Reply to:

Prev by Date: Results for 8.0.0 20170618 (experimental) [trunk revision 249349] (Debian 20170618-1) testsuite on arm-unknown-linux-gnueabi
Next by Date: libffi_3.1-2+deb8u1_amd64.changes ACCEPTED into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
Previous by thread: Results for 8.0.0 20170618 (experimental) [trunk revision 249349] (Debian 20170618-1) testsuite on arm-unknown-linux-gnueabi
Next by thread: libffi_3.1-2+deb8u1_amd64.changes ACCEPTED into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
Index(es):
- Date
- Thread