control: severity -1 important On Wed, Mar 25, 2015 at 1:21 PM, Dominik George wrote: > This bug is possibly security relevant because the intention of the > script, namely separating user directories in /dev/shm, is entirely > defeated. As a matter of lucky fact, / is not writable by regular users. > However, this will break even more once root decides to use byobu and > succeeds in creating /cache.tmux (or whatever byobu will create for > other backends). Please find out whether this is exploitable in any way.
Poor behavior by apps running as root does not automatically imply security relevance. Best wishes, Mike -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org