opendoas - Debian Package Tracker

1 security issue in sid high

1 important issue:

CVE-2023-28339: OpenDoas through 6.8.2, when TIOCSTI is available, allows privilege escalation because of sharing a terminal with the original session. NOTE: TIOCSTI is unavailable in OpenBSD 6.0 and later, and can be made unavailable in the Linux kernel 6.2 and later.

Created: 2023-03-15 Last update: 2025-04-21 16:00

1 new commit since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit d4418cdd43d37ca3791966989b5a91fdc856a8ec
Author: Scupake <scupake@riseup.net>
Date:   Sat Mar 18 21:45:17 2023 +0100

    change "as root" to "any user" in the example file

Created: 2023-03-18 Last update: 2025-05-18 02:33

No known security issue in bookworm wishlist

There is 1 open security issue in bookworm.

1 ignored issue:

CVE-2023-28339: OpenDoas through 6.8.2, when TIOCSTI is available, allows privilege escalation because of sharing a terminal with the original session. NOTE: TIOCSTI is unavailable in OpenBSD 6.0 and later, and can be made unavailable in the Linux kernel 6.2 and later.

Created: 2023-06-10 Last update: 2025-04-21 16:00

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.2 instead of 4.6.1).

Created: 2022-12-17 Last update: 2025-02-27 13:24