Subject: Hardening setuid related code in ecryptfs-utils Package: ecryptfs-utils Version: 83-4+squeeze1 Severity: normal
Discussion about this in here: http://seclists.org/oss-sec/2012/q3/28 References: https://bugzilla.novell.com/show_bug.cgi?id=740110 https://bugs.launchpad.net/ecryptfs/+bug/1020904 This does not seem to be security issue at the moment, but Debian packages should still be hardened. Please target wheezy. -- System Information: Debian Release: 6.0.5 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 3.4.1 (SMP w/8 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8) Shell: /bin/sh linked to /bin/dash -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
