%general-entities; ]> What's new since the last release In the 11.3 release, --enable-default-pie and --enable-default-ssp are enabled for GCC. These techniques can mitigate some malicious attacks, but they do not provide perfect security. Note that some textbooks assume these options are disabled, so that if you run examples from such a textbook on an LFS system, you may need to disable PIE and SSP with the GCC options -fno-pie -no-pie -fno-stack-protection. Here is a list of the packages updated since the previous release of LFS. Upgraded to: Bash &bash-version; Bc &bc-version; D-Bus-&dbus-version; Expat-&expat-version; File-&file-version; Gawk-&gawk-version; Gettext-&gettext-version; Grep-&grep-version; IANA-Etc-&iana-etc-version; IPRoute2-&iproute2-version; Less-&less-version; Libcap-&libcap-version; Libffi-&libffi-version; Linux-&linux-version; Man-pages-&man-pages-version; Meson-&meson-version; Ninja-&ninja-version; Python-&python-version; Readline-&readline-version; Shadow-&shadow-version; Tzdata-&tzdata-version; Vim-&vim-version; XZ-Utils-&xz-version; Zlib-&zlib-version; Added: &bash-fixes-patch; &readline-fixes-patch; Removed: