GNU bug report logs - #8427
[SECURITY] sql.el -- comint process passwords are leaked to ps(1) listing

Previous Next

Package: emacs;

Reported by: Jari Aalto <jari.aalto <at> cante.net>

Date: Tue, 5 Apr 2011 11:28:01 UTC

Severity: normal

Tags: security

Found in version 23.2+1-7

Fixed in version 29.1

Done: Stefan Kangas <stefan <at> marxist.se>

Bug is archived. No further changes may be made.

Full log

Message #112 received at 8427 <at> debbugs.gnu.org (full text, mbox):

From: Eli Zaretskii <eliz <at> gnu.org>
To: Michael Mauger <mmauger <at> protonmail.com>
Cc: michael.albinus <at> gmx.de, larsi <at> gnus.org, 8427 <at> debbugs.gnu.org,
 stefan <at> marxist.se, ahyatt <at> gmail.com
Subject: Re: bug#8427: [SECURITY] sql.el -- comint process passwords are
 leaked to ps(1) listing
Date: Tue, 19 Oct 2021 14:58:11 +0300

> Date: Tue, 19 Oct 2021 04:37:23 +0000
> From: Michael Mauger <mmauger <at> protonmail.com>
> Cc: Eli Zaretskii <eliz <at> gnu.org>, larsi <at> gnus.org, michael.albinus <at> gmx.de, 8427 <at> debbugs.gnu.org, ahyatt <at> gmail.com
> 
> I've pushed to master for now. I'll test this week and decide then whether I push to emacs-28.

If you decide to backport to emacs-28, please cherry-pick from master,
instead of making a separate independent commit, because cherry-picks
are automatically skipped when emacs-28 branch is merged to master
(which happens almost daily these days).

Thanks.

This bug report was last modified 3 years and 201 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #8427 [SECURITY] sql.el -- comint process passwords are leaked to ps(1) listing

GNU bug report logs - #8427
[SECURITY] sql.el -- comint process passwords are leaked to ps(1) listing