Hi! At the moment, the lock file usage in winkeydaemon is useless since there is never a test if the lock file does exist.
In my opinion, the vulnerability should be solved by using routines from LockFile::Simple (package liblockfile-simple-perl) and creating the files directly in /tmp/. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org