From mboxrd@z Thu Jan 1 00:00:00 1970 MIME-Version: 1.0 In-Reply-To: <20141203234918.GA27533@free.fr> References: <20141203234918.GA27533@free.fr> Date: Sun, 7 Dec 2014 18:35:53 +0100 Message-ID: Subject: Re: Debian bug 737206 - rc shell uses insecurely /tmp From: anselm@garbe.us To: =?UTF-8?Q?St=C3=A9phane_Aulery?= Cc: rsc@swtch.com, 9trouble@plan9.bell-labs.com, Fans of the OS Plan 9 from Bell Labs <9fans@9fans.net> Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Topicbox-Message-UUID: 35a3cd2c-ead9-11e9-9d60-3106f5b1d025 Hi there, On 4 December 2014 at 00:49, St=C3=A9phane Aulery wrote: > I make you pass an open bug report on the Debian bts about rc. > I do not know to whom I should speak. The code comes from 9base, who > just plan9port, etc. Here is the report [1]: > > Package: 9base > Version: 1:6-6 > Severity: important > Tags: security thanks for passing this issue on. I intend to address this issue in the upcoming 9base-7 release. Out of curiosity, does anybody know if current p9p is still affected by this? Presumablyit is just 9base-6, as it is based on a 4 year old p9p pull... BR, Anselm