mailing list archives
CVE Request: Proc::Daemon writes pidfile with mode 666
From: Salvatore Bonaccorso <carnil () debian org>
Date: Mon, 16 Dec 2013 22:34:59 +0100
christian mock <cm () coretec at> has reported that Proc::Daemon, when
instructed to write a pid file, does that with a umask set to 0, so
the pid file ends up with world-writable permissions.
Upstream bugreport is at .
Axel Beckert has commited a patch to the Debian packaging and
forwarded it to upstream.
Could a CVE be assigend for this issue?
Regards and thanks in advance,
Description: Digital signature
- CVE Request: Proc::Daemon writes pidfile with mode 666 Salvatore Bonaccorso (Dec 16)