Bug#812512: [Pkg-utopia-maintainers] Bug#812512: pkexec tty hijacking via TIOCSTI ioctl

Sun, 13 Jun 2021 06:15:22 -0700 

Am 13.06.2021 um 04:24 schrieb argv minus one:
Upstream has decided not to fix this vulnerability [1]. Apparently they're using a Linux kernel patch that makes TIOCSTI require CAP_SYS_ADMIN [2] 


[2] https://bugzilla.redhat.com/show_bug.cgi?id=1299955#c1 
<https://bugzilla.redhat.com/show_bug.cgi?id=1299955#c1>



Hm, I'm not seeing a patch there. Do you maybe have link to this kernel 
patch?


Regards,
Michael























					Reply via email to