[pkg-gnupg-maint] Bug#878952: Bug#878952: scdaemon: avoid ptrace on scdaemon?
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Fri Oct 27 05:44:18 UTC 2017
Control: tags 878952 + confirmed pending
On Wed 2017-10-25 16:46:51 +0900, NIIBE Yutaka wrote:
> Daniel Kahn Gillmor <dkg at fifthhorseman.net> wrote:
>> Package: scdaemon
>> Version: 2.2.1-2
>> Severity: normal
> [...]
>> Should we add a similar "prctl(PR_SET_DUMPABLE, 0)" to scdaemon as
>> well?
>
> I think we should. Or else, someone might confuse as if the specific
> attack condition is somehow different for scdaemon.
Thanks for the confirmation, i'll look into making this change shortly.
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 832 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnupg-maint/attachments/20171027/be87fd35/attachment.sig>
More information about the pkg-gnupg-maint
mailing list