oss-sec mailing list archives
Re: TTY pushback vulnerabilities / TIOCSTI
From: Jan Engelhardt <jengelh () inai de>
Date: Wed, 15 Mar 2023 10:44:37 +0100 (CET)
On Wednesday 2023-03-15 10:03, Dave Horsfall wrote:
On Wed, 15 Mar 2023, Fabian Keil wrote:In ElectroBSD I removed TIOCSTI support in 2017 [0] and haven't noticed any problems.I hate tossing out functionality; would you not make it a privileged operation instead?
But also: "Perfection is achieved, not when there is nothing more to add, but when there is nothing left to take away", and it would appear TIOCSTI does not have https://xkcd.com/2347/ -criticality.
Current thread:
- Re: TTY pushback vulnerabilities / TIOCSTI, (continued)
- Re: TTY pushback vulnerabilities / TIOCSTI Christos Zoulas (Mar 18)
- Re: TTY pushback vulnerabilities / TIOCSTI Eric Ashley (Mar 18)
- Re: TTY pushback vulnerabilities / TIOCSTI Peter Bex (Mar 14)
- Re: TTY pushback vulnerabilities / TIOCSTI Hanno Böck (Mar 14)
- Re: TTY pushback vulnerabilities / TIOCSTI Peter Bex (Mar 14)
- Re: TTY pushback vulnerabilities / TIOCSTI Hanno Böck (Mar 14)
- Re: TTY pushback vulnerabilities / TIOCSTI Shawn Webb (Mar 14)
- Re: TTY pushback vulnerabilities / TIOCSTI Fabian Keil (Mar 15)
- Re: TTY pushback vulnerabilities / TIOCSTI Dave Horsfall (Mar 15)
- Re: TTY pushback vulnerabilities / TIOCSTI Casper Dik (Mar 15)
- Re: TTY pushback vulnerabilities / TIOCSTI Hanno Böck (Mar 15)
- Re: TTY pushback vulnerabilities / TIOCSTI Jan Engelhardt (Mar 15)
- Re: TTY pushback vulnerabilities / TIOCSTI Ed Maste (Mar 17)
- Re: TTY pushback vulnerabilities / TIOCSTI Fabian Keil (Mar 15)