Bug 145439

Summary: Contains insecure RPATHs
Product: [Fedora] Fedora Reporter: Enrico Scholz <rh-bugzilla>
Component: gphoto2Assignee: Tim Waugh <twaugh>
Status: CLOSED RAWHIDE QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: rawhideCC: wtogami
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: 2.1.5-6 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2005-03-24 14:27:03 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
Fix for RPATH build problem (it causes some unpackaged files, which can be solved easily)
none
proposed spec fix none

Description Enrico Scholz 2005-01-18 15:25:47 UTC
Description of problem:

See
http://www.securityfocus.com/archive/1/351758/2004-01-27/2004-02-02/0
https://www.redhat.com/archives/fedora-devel-list/2004-March/msg00492.html

| + /usr/lib/rpm/check-rpaths
| WARNING: file '/usr/lib/gphoto2_port/0.5.1/libgphoto2_port_serial.so' contains an invalid rpath '/var/tmp/gphoto2-2.1.5-root/usr/lib' in [/var/tmp/gphoto2-2.1.5-root/usr/lib]
| WARNING: file '/usr/lib/gphoto2_port/0.5.1/libgphoto2_port_usb.so' contains an invalid rpath '/var/tmp/gphoto2-2.1.5-root/usr/lib' in [/var/tmp/gphoto2-2.1.5-root/usr/lib]

or

| $ readelf -d /usr/lib/gphoto2/*/libgphoto2_agfa_cl20.so
| 0x0000000f (RPATH)                      Library rpath: [/usr/src/build/467105-i386/install/usr/lib]




Version-Release number of selected component (if applicable):

gphoto2-2.1.5-3

Comment 1 Tim Waugh 2005-03-24 11:07:40 UTC
*** Bug 152008 has been marked as a duplicate of this bug. ***

Comment 2 Enrico Scholz 2005-03-24 12:34:11 UTC
Created attachment 112288 [details]
Fix for RPATH build problem (it causes some unpackaged files, which can be solved easily)

Fix is trivial and can be described by the following words: "Never use
%makeinstall, 'make DESTDIR=$RPM_BUILD_ROOT' is the better solution".

Comment 3 Michael Schwendt 2005-03-24 12:39:49 UTC
Created attachment 112289 [details]
proposed spec fix

Attached patch fixes it. On Rawhide, however, OpenJade causes a fatal error, so
I've only done a test-build on FC3.

Comment 4 Tim Waugh 2005-03-24 14:27:03 UTC
Thanks, I used the patch from comment #3.