Red Hat Bugzilla – Bug 155230
flash-plugin disables execshield in mozilla
Last modified: 2013-03-01 00:14:50 EST
Description of problem:
due to a mislabeling of the stack protections of the flash plugin, using this
plugin causes mozilla to run with executable stack and heap. Not Good(tm)
This is easy to fix (prelink has execstack program which can relabel .so files)
and I think it is important for us that the binary we ship has this done.
I am proposing that we use "execstack -c libflashplayer.so" in order to solve
this issue in addition to the 7.0.61 security errata coming soon in Bug #172731.
I need to talk to Macromedia in order to confirm a license exemption in this
trivial modifcation of their binary.
We're promised this will be fixed upstream therefore removing the need to binary
Despite installing the RPM named "flash-plugin-7.0.61-1", flash support
is not available on a freshly installed rawhide system which is
apparently due to the executable stack protection.
Joachim, your issue is a separate issue where Flash Plugin internally uses text
relocation, which is bad. Only Macromedia can solve this issue.
Fixed in flash-plugin-7.0.63+