mirror/initramfs-tools
1
0
Fork 0
mirror of https://salsa.debian.org/kernel-team/initramfs-tools.git synced 2026-01-26 07:37:54 +00:00
Code Issues Packages Projects Releases Wiki Activity

Tighten /dev/pts permissions

Browse Source 
Apply a fuller fix for CVE-2024-28085 and remove g+w from
pseudo-terminals by default.

Signed-off-by: Chris Hofstaedtler <zeha@debian.org>
This commit is contained in:
Chris Hofstaedtler 2025-03-06 22:44:01 +01:00
parent 81f2063c45
commit 319cdc98f1
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
init
View File

@ -42,7 +42,7 @@ mount -t devtmpfs -o nosuid,mode=0755 udev /dev
[ ! -h /dev/stderr ] && ln -s /proc/self/fd/2 /dev/stderr
mkdir /dev/pts
mount -t devpts -o noexec,nosuid,gid=5,mode=0620 devpts /dev/pts || true
mount -t devpts -o noexec,nosuid,gid=5,mode=0600 devpts /dev/pts || true
# Export the dpkg architecture
export DPKG_ARCH=