* [gentoo-user] checkrestart security fix
@ 2007-09-01 21:32 Steen Eugen Poulsen
0 siblings, 0 replies; only message in thread
From: Steen Eugen Poulsen @ 2007-09-01 21:32 UTC (permalink / raw
To: gentoo-user
[-- Attachment #1: Type: text/plain, Size: 604 bytes --]
Thomas de Grenier de Latour found a codeing mistake in checkrestart,
that allowed a shell user to trick checkrestart into running code.
This bug exist in debian-goodies at least as far back as 0.23 and I
inherited it into my modified version of checkrestart that I announced here.
I've implemented Thomas'es fix in my version.
http://www.arcdraco.net/~dragon/checkrestart
I had hoped my code would be merged into debian-goodies by now, but
since that doesn't seem to be happening, everyone interested in news
about the tool, can use this RSS to keep up to date:
http://www.arcdraco.net/crss/node/2
[-- Attachment #2: S/MIME Cryptographic Signature --]
[-- Type: application/x-pkcs7-signature, Size: 3412 bytes --]
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2007-09-01 21:43 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2007-09-01 21:32 [gentoo-user] checkrestart security fix Steen Eugen Poulsen
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox