Hi Salvatore, On Sun, Apr 30, 2023 at 06:14:37AM +0200, Salvatore Bonaccorso wrote: > On Sat, Apr 29, 2023 at 11:47:40PM +0200, Chris Hofstaedtler wrote: > > Dear Kernel Maintainers, Security Team, > > * Sam Morris <[email protected]>: > > > Linux 6.2 introduces a sysctl dev.tty.legacy_tiocsti sysctl which can be > > > used to disable TIOCSTI. The default value of the sysctl is set at build > > > time with CONFIG_LEGACY_TIOCSTI. > > > > > > <https://cateee.net/lkddb/web-lkddb/LEGACY_TIOCSTI.html> > > > > Maybe we can get this into 6.1?
[..] > > It is unlikely we are going to enable this in bookworm, even if the > change will be backported to 6.1.y, that is if the change would now be > backported, I assume we will need to stick with the default being > enabled. The time was too narrow before the > freeze. But we have #1033095[1] for the corresponding bug on src:linux > and to disable TIOCSTI it early in the trixie development cycle by > default (which comes automatically). > > [1]: https://bugs.debian.org/1033095 > > Hope this helps so far? I'd like to close #905745 now that this has(?) landed in trixie. Or do you think anything should still be done on the util-linux side? Best, Chris
