[Pkg-utopia-maintainers] Bug#812512: Bug#812512: pkexec tty hijacking via TIOCSTI ioctl
Michael Biebl
biebl at debian.org
Sun Jun 13 14:14:43 BST 2021
Am 13.06.2021 um 04:24 schrieb argv minus one:
> Upstream has decided not to fix this vulnerability [1]. Apparently
> they're using a Linux kernel patch that makes TIOCSTI require
> CAP_SYS_ADMIN [2]
> [2] https://bugzilla.redhat.com/show_bug.cgi?id=1299955#c1
> <https://bugzilla.redhat.com/show_bug.cgi?id=1299955#c1>
Hm, I'm not seeing a patch there. Do you maybe have link to this kernel
patch?
Regards,
Michael
More information about the Pkg-utopia-maintainers
mailing list