Bug#1099697: initramfs-tools: please change default /dev/pts mode to 0600

To: 1099697@bugs.debian.org
Subject: Bug#1099697: initramfs-tools: please change default /dev/pts mode to 0600
From: Chris Hofstaedtler <zeha@debian.org>
Date: Fri, 7 Mar 2025 08:08:00 +0100
Message-id: <[🔎] Z8qbUFptujFW9PJ3@per.namespace.at>
Reply-to: Chris Hofstaedtler <zeha@debian.org>, 1099697@bugs.debian.org
In-reply-to: <[🔎] Z8oXqcvhtbqv_oZ0@per.namespace.at>
References: <[🔎] Z8oXqcvhtbqv_oZ0@per.namespace.at> <[🔎] Z8oXqcvhtbqv_oZ0@per.namespace.at>

On Thu, Mar 06, 2025 at 10:46:17PM +0100, Chris Hofstaedtler wrote:
> in the past there were security concerns (and security issues 
> raised) around other users writing to each others terminals. Some of 
> this was workarounded in util-linux, cf. CVE-2024-28085.
> 
> A fuller fix is to disallow writing unrelated users to each other's 
> terminals by default.
[..]
> Please find a patch attached
> following the change from 0620 to 0600 for initramfs-tools.
[..]

Salsa merge request:
https://salsa.debian.org/kernel-team/initramfs-tools/-/merge_requests/161

Best,
Chris

Reply to:

References:
- Bug#1099697: initramfs-tools: please change default /dev/pts mode to 0600
  - From: Chris Hofstaedtler <zeha@debian.org>

Prev by Date: Bug#1099722: linux: Please consider adding zstd Build-Depends on loong64
Next by Date: linux-signed-arm64_6.1.129+1_source.changes ACCEPTED into proposed-updates
Previous by thread: Bug#1099697: initramfs-tools: please change default /dev/pts mode to 0600
Next by thread: Bug#1099697: initramfs-tools: please change default /dev/pts mode to 0600
Index(es):
- Date
- Thread