Bug#815922: runuser tty hijacking via TIOCSTI ioctl

Stanislav Brabec Thu, 03 Mar 2016 06:18:25 -0800

I just opened a discussion on the upstream util-linux list:
http://marc.info/?t=145694748900001&r=1&w=2


Discussion there proposes to fix it in the kernel:

Disallow the use of TIOCSTI to unprivileged users unless the caller hasCAP_SYS_ADMIN.


--
Best Regards / S pozdravem,

Stanislav Brabec
software developer
---------------------------------------------------------------------
SUSE LINUX, s. r. o.                         e-mail: [email protected]
Lihovarská 1060/12                            tel: +49 911 7405384547
190 00 Praha 9                                 fax:  +420 284 084 001
Czech Republic                                    http://www.suse.cz/
PGP: 830B 40D5 9E05 35D8 5E27 6FA3 717C 209F A04F CD76

Bug#815922: runuser tty hijacking via TIOCSTI ioctl

Reply via email to