Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 14 Mar 2023 12:01:17 +0100
From: Hanno Böck <>
Subject: Re: TTY pushback vulnerabilities / TIOCSTI

On Tue, 14 Mar 2023 11:46:33 +0100
Peter Bex <> wrote:

> Indeed, opendoas (the portable version of OpenBSD's "doas") has this
> exact bug as well:

Though some context is relevant here: doas is a tool from OpenBSD.
According to the Linux kernel commit message [1] OpenBSD has fixed this
already 3 years ago by entirely removing TIOCSTI [2][3].


Hanno Böck

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.