Bug#732283: libproc-daemon-perl: Writes pidfile with mode 666
christian mock
cm at coretec.at
Sun Dec 15 19:33:59 UTC 2013
Package: libproc-daemon-perl
Version: 0.14-1
Severity: normal
Dear Maintainer,
Proc::Daemon, when instructed to write a pid file, does that with a
umask set to 0, so the pid file ends up with mode 666. This is a
rather stupid idea and may well be a security issue.
-- System Information:
Debian Release: 7.2
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.9-0.bpo.1-amd64 (SMP w/8 CPU cores)
Locale: LANG=C, LC_CTYPE=de_AT.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages libproc-daemon-perl depends on:
ii libproc-processtable-perl 0.45-6
ii perl 5.14.2-21+deb7u1
libproc-daemon-perl recommends no packages.
libproc-daemon-perl suggests no packages.
-- no debconf information
More information about the pkg-perl-maintainers
mailing list