[Bug 1062] mmv pmda sensitive to malevolent data

To:	pcp@xxxxxxxxxxx
Subject:	[Bug 1062] mmv pmda sensitive to malevolent data
From:	bugzilla-daemon@xxxxxxxxxxx
Date:	Tue, 21 Jun 2016 23:48:12 +0000
Auto-submitted:	auto-generated
Delivered-to:	pcp@xxxxxxxxxxx
In-reply-to:	<bug-1062-835@xxxxxxxxxxxxxxxx/bugzilla/>
References:	<bug-1062-835@xxxxxxxxxxxxxxxx/bugzilla/>

Nathan Scott changed bug 1062

What	Removed	Added
Status	NEW	RESOLVED
Resolution	---	FIXED

Comment # 3 on bug 1062 from Nathan Scott

This is fixed upstream.  The installation section of the pmdammv(1) man page
has also been updated to describe the alternative mmv stats dir security
schemes.

Targetted fuzzing of mmv input data is left as an interesting future QA
extension.  At this stage noone has cycles to spend on it however (AFAIK? -
would love to see some work done on that) - it is less of an issue with use of
the group-based mmv stats dir access of course.

You are receiving this mail because:

You are on the CC list for the bug.

<Prev in Thread]	Current Thread	[Next in Thread>
[Bug 1062] mmv pmda sensitive to malevolent data, bugzilla-daemon <= [Bug 1062] mmv pmda sensitive to malevolent data, bugzilla-daemon

Previous by Date:	[pcp-announce] Whatâs new in Vector: Containers, Docker, and more., Martin Spier
Next by Date:	[Bug 1061] mmv pmda sensitive to TOCTOU for shmem metadata extraction, bugzilla-daemon
Previous by Thread:	[pcp-announce] Whatâs new in Vector: Containers, Docker, and more., Martin Spier
Next by Thread:	[Bug 1062] mmv pmda sensitive to malevolent data, bugzilla-daemon
Indexes:	[Date] [Thread] [Top] [All Lists]