Hi, thank you for your report. I've already spent a good amount of time analyzing the potential impact of this flaw, but I would like to refrain from further public comments until I have discussed this with security@d.o.
Thanks, Christian On 2015-12-27 19:57, Cron Daemon Use-After-Free Vulnerability May Cause Local Root Privilege Escalation wrote: > Package: cron > Version: 3.0pl1-127+deb8u1 > Severity: critical > Tags: security > Justification: root security hole > > > Hi Debian Security Team: > > I recently started to read the source code of Cron / Crontab and I think I > found a vulnerability in that. [...]
signature.asc
Description: OpenPGP digital signature
