[Bug 1664320] Re: xbrlapi loopback interface abuse
Samuel thibault
samuel.thibault at ens-lyon.org
Mon Feb 13 18:45:42 UTC 2017
Hello,
This was reported in debian http://bugs.debian.org/851623 , and that led
to upstream fix
https://github.com/brltty/brltty/commit/0a5341121ba8f4de24407ce2a4d5369dadf5d099
** Bug watch added: Debian Bug tracker #851623
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851623
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to brltty in Ubuntu.
https://bugs.launchpad.net/bugs/1664320
Title:
xbrlapi loopback interface abuse
Status in brltty package in Ubuntu:
New
Bug description:
Xbrlapi creates new TCP connections in port 4101 at loopback interface. These are closed instantly because there is no service listening at 4101 on the lo interface.
Xbrlapi should not do that if there is no braille device.
This might pose a security risk, but I have not verified it.
ProblemType: Bug
DistroRelease: Ubuntu 16.10
Package: xbrlapi 5.4-0ubuntu4
ProcVersionSignature: Ubuntu 4.8.0-37.39-generic 4.8.16
Uname: Linux 4.8.0-37-generic x86_64
ApportVersion: 2.20.3-0ubuntu8.2
Architecture: amd64
CurrentDesktop: Unity
Date: Mon Feb 13 19:25:58 2017
InstallationDate: Installed on 2015-07-31 (562 days ago)
InstallationMedia: Ubuntu 14.04.2 LTS "Trusty Tahr" - Release amd64 (20150218.1)
SourcePackage: brltty
UpgradeStatus: Upgraded to yakkety on 2016-11-01 (103 days ago)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/brltty/+bug/1664320/+subscriptions
More information about the foundations-bugs
mailing list