[Pkg-systemd-maintainers] Bug#743158: systemd: sends private information without confirmation
Norbert Preining
preining at logic.at
Mon Mar 31 02:33:19 BST 2014
Package: systemd
Version: 204-8
Severity: grave
Tags: security
Justification: user security hole
Sending /etc/fstab without asking the user is not acceptable,
as there might be passwords saved in there.
Please stop this.
Norbert
-- Package-specific info:
-- System Information:
Debian Release: jessie/sid
APT prefers unstable
APT policy: (500, 'unstable'), (200, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 3.14.0-rc8+ (SMP w/4 CPU cores; PREEMPT)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages systemd depends on:
ii acl 2.2.52-1
ii adduser 3.113+nmu3
ii initscripts 2.88dsf-51
ii libacl1 2.2.52-1
ii libaudit1 1:2.3.4-1
ii libc6 2.18-4
ii libcap2 1:2.22-1.2
ii libcap2-bin 1:2.22-1.2
ii libcryptsetup4 2:1.6.4-4
ii libdbus-1-3 1.8.0-3
ii libgcrypt11 1.5.3-4
ii libkmod2 16-2
ii liblzma5 5.1.1alpha+20120614-2
ii libpam0g 1.1.8-2
ii libselinux1 2.2.2-1
ii libsystemd-daemon0 204-8
ii libsystemd-journal0 204-8
ii libsystemd-login0 204-8
ii libudev1 204-8
ii libwrap0 7.6.q-25
ii sysv-rc 2.88dsf-51
ii udev 204-8
ii util-linux 2.20.1-5.7
Versions of packages systemd recommends:
ii libpam-systemd 204-8
Versions of packages systemd suggests:
pn systemd-ui <none>
-- no debconf information
More information about the Pkg-systemd-maintainers
mailing list