Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#58102 - [beep] CVE-2018-0492
Attached to Project:
Arch Linux
Opened by Anonymous (reallybmn) - Wednesday, 04 April 2018, 15:44 GMT
Last edited by Doug Newgard (Scimmia) - Wednesday, 04 April 2018, 17:43 GMT
Opened by Anonymous (reallybmn) - Wednesday, 04 April 2018, 15:44 GMT
Last edited by Doug Newgard (Scimmia) - Wednesday, 04 April 2018, 17:43 GMT
|
DetailsDescription: Johnathan Nightingale beep through 1.3.4, if setuid, has a race condition that allows local privilege escalation.
https://security-tracker.debian.org/tracker/CVE-2018-0492 Discussion and Patch: https://github.com/johnath/beep/issues/11 |
This task depends upon
Closed by Doug Newgard (Scimmia)
Wednesday, 04 April 2018, 17:43 GMT
Reason for closing: Not a bug
Additional comments about closing: It's not setuid on Arch
Wednesday, 04 April 2018, 17:43 GMT
Reason for closing: Not a bug
Additional comments about closing: It's not setuid on Arch