Control: retitle -1 adequate: CVE-2013-6409: privilege escalation via tty
hijacking
Hi Jakub,
On Thu, Nov 28, 2013 at 10:53:13AM +0100, Jakub Wilk wrote:
> Package: adequate
> Version: 0.4
> Severity: serious
> Tags: security
> Justification: user security hole
>
> If root uses the --user optio
Processing control commands:
> retitle -1 adequate: CVE-2013-6409: privilege escalation via tty hijacking
Bug #730691 [adequate] adequate: privilege escalation via tty hijacking
Changed Bug title to 'adequate: CVE-2013-6409: privilege escalation via tty
hijacking' from 'adequate: privilege escala
Package: adequate
Version: 0.4
Severity: serious
Tags: security
Justification: user security hole
If root uses the --user option, then the user can hijack the tty with the
TIOCSTI ioctl.
This is similar to CVE-2005-4890.
--
Jakub Wilk
--
To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists
3 matches
Mail list logo