Your message dated Thu, 18 Aug 2016 05:20:05 +0000 with message-id <e1bafkl-0002vy...@franck.debian.org> and subject line Bug#834367: fixed in systemd 231-4 has caused the Debian Bug report #834367, regarding systemctl daemon-reexec (as run on systemd upgrade) causes all keystrokes to go to text console in addition to X (including passwords) to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 834367: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=834367 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: systemd Version: 231-2 Severity: critical Tags: security [Severity and tag due to the likely possibility of exposing user passwords this way. If this occurs with the version in jessie as well, it'll require a security update.] After running "systemctl daemon-reexec" from within an X session, all keystrokes in the X session (including passwords) appear on the underlying text console as well. They show up during the shutdown process, or any other time X stops. Since systemd's postinst runs "systemctl daemon-reexec" on upgrades, this would occur in any session after upgrading the systemd package. I can reliably reproduce this, either by upgrading or downgrading the systemd package, or by running "systemctl daemon-reexec" (as root). This might potentially explain the mention in bug 819500 of seeing usernames and passwords on the console, as well. This would only happen in a session after upgrading systemd or otherwise running "systemctl daemon-reexec", which would explain not seeing it every time. -- Package-specific info: -- System Information: Debian Release: stretch/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 4.7.0-rc7-amd64 (SMP w/4 CPU cores) Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages systemd depends on: ii adduser 3.115 ii libacl1 2.2.52-3 ii libapparmor1 2.10.95-4 ii libaudit1 1:2.6.5-1 ii libblkid1 2.28-6 ii libc6 2.23-4 ii libcap2 1:2.25-1 ii libcap2-bin 1:2.25-1 ii libcryptsetup4 2:1.7.0-2 ii libgcrypt20 1.7.2-2 ii libgpg-error0 1.24-1 ii libidn11 1.33-1 ii libkmod2 22-1.1 ii liblzma5 5.1.1alpha+20120614-2.1 ii libmount1 2.28-6 ii libpam0g 1.1.8-3.3 ii libseccomp2 2.3.1-2 ii libselinux1 2.5-3 ii libsystemd0 231-2 ii mount 2.28-6 ii util-linux 2.28-6 Versions of packages systemd recommends: ii dbus 1.10.8-1 ii libpam-systemd 231-2 Versions of packages systemd suggests: ii policykit-1 0.105-16 pn systemd-container <none> pn systemd-ui <none> Versions of packages systemd is related to: ii udev 231-2 -- no debconf information
--- End Message ---
--- Begin Message ---Source: systemd Source-Version: 231-4 We believe that the bug you reported is fixed in the latest version of systemd, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 834...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Martin Pitt <mp...@debian.org> (supplier of updated systemd package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 18 Aug 2016 07:03:13 +0200 Source: systemd Binary: systemd systemd-sysv systemd-container systemd-journal-remote systemd-coredump libpam-systemd libnss-myhostname libnss-mymachines libnss-resolve libsystemd0 libsystemd-dev udev libudev1 libudev-dev udev-udeb libudev1-udeb Architecture: source Version: 231-4 Distribution: unstable Urgency: medium Maintainer: Debian systemd Maintainers <pkg-systemd-maintain...@lists.alioth.debian.org> Changed-By: Martin Pitt <mp...@debian.org> Description: libnss-myhostname - nss module providing fallback resolution for the current hostname libnss-mymachines - nss module to resolve hostnames for local container instances libnss-resolve - nss module to resolve names via systemd-resolved libpam-systemd - system and service manager - PAM module libsystemd-dev - systemd utility library - development files libsystemd0 - systemd utility library libudev-dev - libudev development files libudev1 - libudev shared library libudev1-udeb - libudev shared library (udeb) systemd - system and service manager systemd-container - systemd container/nspawn tools systemd-coredump - tools for storing and retrieving coredumps systemd-journal-remote - tools for sending and receiving remote journal logs systemd-sysv - system and service manager - SysV links udev - /dev/ and hotplug management daemon udev-udeb - /dev/ and hotplug management daemon (udeb) Closes: 834367 Changes: systemd (231-4) unstable; urgency=medium . * Revert "pid1: reconnect to the console before being re-executed" This unbreaks consoles after "daemon-reexec". (Closes: #834367) Checksums-Sha1: b6ac3a04410016d97150cb2791d814d2feb30cf9 4413 systemd_231-4.dsc ebda42424480d9817ff921d8a5dc301c2acfe30b 122396 systemd_231-4.debian.tar.xz Checksums-Sha256: ce8d40209d9adcf5f8ddd4f3f1cc3d717cf7869d0ff717fa195a55b5bf52a2be 4413 systemd_231-4.dsc de75e3b491e2bacd8930e5d1ba701487a383ee315f40575331bbfec27c427a72 122396 systemd_231-4.debian.tar.xz Files: 6471f6f9fb04d676b56a4d678e554ded 4413 admin optional systemd_231-4.dsc 0c12705870846e9299f81dc77a941265 122396 admin optional systemd_231-4.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJXtUG/AAoJENFO8V2v4RNH3aIQAK7VQvf7PzGVRFoImrkEPQcW ruS/66uddUM7+q6SeCSJKS17yKxwS3E/wLiwX8P8IDCubFI2JnY6EE7zIaSD57F4 WKj46K+TqjTdnm0Pp/s+vVNfIaRNMJ6m2HJELj5xhZ639POplcNFMpH69R4Q8Dze THRMTT3Q9AFXNOtwJSNqJNsd6fJs15i4PFjLOpETBuGq2DmoKgzbzFv+6rrZ6PVW 4eRRHtlb8CxGgDGHxq1atal1Jv8DlBSLG95flY0cZBewn6XVI+Ud6pRjex/fjhIM YW7bAqgtpHoV4uBiJ5YgiFAZb7S5w2jPhzs0KILnG8tJMZHmJ108xeMbpbsCP8uy weWfHiybrhQak+09SGH81IIS87L96NOjRbgaHT4oFyozpxSdcb/uigQzqySjppta YZK3RUsRLpTvE0HT/x3cF1MkFznxRNHqwIQP1xLGZuKkhNoU3Zr9l2ewE2mxYfyO yneP8+FvmRLwjtX1UBAJRnPbvAAVT4063I9N7rGfQZl262A8+0b5Iinbsd/35Ipg IJUHU+e5d7ejIebtcHnh1RFkZ7lnXnQFrFhUbyRsrJgvnwnSrGzCvIvjvAQR7Ctw MmdVOsX+7InrqJaIdKbzCVI+XQ+1l5MdIiuzLF/NYpaX802my7174CrY5RK5jvPN AH+n4993YohDFrJJ2wtA =nwRs -----END PGP SIGNATURE-----
--- End Message ---
