Description of problem:
http://fedoraproject.org/wiki/Packaging:Guidelines#PIE says that "you MUST
enable the PIE compiler flags if your package is long running ...".
However, currently wesnoth is not being built with PIE flags. This is a
clear violation of the packaging guidelines.
This issue (in its wider scope) is being discussed at,
Version-Release number of selected component (if applicable):
You can use following programs to check if a package is hardened:
Steps to Reproduce:
Get scanner.py from https://github.com/kholia/checksec
$ ./scanner.py wesnoth-server-1.10.6-1.fc19.x86_64.rpm
Interesting. First line of wesnoth.spec.
%global _hardened_build 1
Can you confirm?
Please use correct LDFLAGS. See attachment in https://bugzilla.redhat.com/show_bug.cgi?id=955446 for hints.
Looks good, thanks!
wesnoth-1.10.6-3.fc19 has been submitted as an update for Fedora 19.
* should fix your issue,
* was pushed to the Fedora 19 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=updates-testing wesnoth-1.10.6-3.fc19'
as soon as you are able to.
Please go to the following url:
then log in and leave karma (feedback).
wesnoth-1.10.6-3.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report.