Hi Tyler Hicks.
There's been discussions about moving over to util-linux eject on the
Debian side in https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=737658
Is there anything that still uses dmcrypt-get-device as shipped as a
not-from-upstream addition in the current eject package?
This bug was fixed in the package eject -
2.1.5+deb1+cvs20081104-13.1ubuntu1
---
eject (2.1.5+deb1+cvs20081104-13.1ubuntu1) zesty; urgency=medium
* SECURITY UPDATE: Improper check for dropped privileges (LP: #1673627)
- dmcrypt-get-device.c: Ensure that setgid() and setuid()
Stable Ubuntu releases have been fixed:
https://www.ubuntu.com/usn/usn-3246-1/
This bug will get auto-closed when my upload to Zesty lands.
** Changed in: eject (Ubuntu)
Status: In Progress => Fix Committed
--
You received this bug notification because you are a member of Kernel
Debian wasn't interested in an embargo. I'm now making this bug public
and will be releasing security updates shortly.
** Information type changed from Private Security to Public Security
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to
4 matches
Mail list logo
