Control: found 878952 2.1.18-8~deb9u1
On Wed 2017-10-25 16:46:51 +0900, NIIBE Yutaka wrote:
> Daniel Kahn Gillmor wrote:
>> Package: scdaemon
>> Version: 2.2.1-2
>> Severity: normal
> [...]
>> Should we add a similar "prctl(PR_SET_DUMPABLE, 0)" to scdaemon as
>> well?
>
> I think we should. Or e
Control: tags 878952 + confirmed pending
On Wed 2017-10-25 16:46:51 +0900, NIIBE Yutaka wrote:
> Daniel Kahn Gillmor wrote:
>> Package: scdaemon
>> Version: 2.2.1-2
>> Severity: normal
> [...]
>> Should we add a similar "prctl(PR_SET_DUMPABLE, 0)" to scdaemon as
>> well?
>
> I think we should. O
Daniel Kahn Gillmor wrote:
> Package: scdaemon
> Version: 2.2.1-2
> Severity: normal
[...]
> Should we add a similar "prctl(PR_SET_DUMPABLE, 0)" to scdaemon as
> well?
I think we should. Or else, someone might confuse as if the specific
attack condition is somehow different for scdaemon.
--
Package: scdaemon
Version: 2.2.1-2
Severity: normal
Debian currently ships with
debian/patches/block-ptrace-on-agent/Avoid-simple-memory-dumps-via-ptrace.patch,
which blocks a simple attack where any process running as the same
user can trace its system calls and memory. This isn't bulletproof,
b
4 matches
Mail list logo
