[Pkg-acpi-devel] Bug#663249: Bug#663249: acpid: fcntl(fd, F_SETFD, O_NONBLOCK) should be fcntl(fd, F_SETFL, O_NONBLOCK)
Moritz Mühlenhoff
jmm at inutil.org
Wed Mar 21 20:50:53 UTC 2012
On Tue, Mar 13, 2012 at 10:06:53AM +0100, Michael Meskes wrote:
> On Mon, Mar 12, 2012 at 10:28:14PM +0100, Luciano Bello wrote:
> > Is it a security problem?
>
> Well, define security problem. The apparently wrong patch came into the package
> in a security release and was supposed to fix a security problem. Now with the
> patch being incomplete I doubt the problem is fixed.
Sorry for the typo/broken backport, my bad.
Yes, the problem is still unfixed in Squeeze. However, It was only fixed
along with the more serious issues in the powerbtn.sh script the the
privilege escalation due to the incorrect umask and didn't warrant an
update on it's own.
As such, I'll update the Security Tracker to mark it as unfixed in
Squeeze. We keep fix it along in a potential future acpid DSA or
through a point update.
Cheers,
Moritz
More information about the Pkg-acpi-devel
mailing list