Description: Local users can obtain keystroke timing through inotify on ptmx
References: http://www.openwall.com/lists/oss-security/2013/01/07/5
Notes:
Bugs:
upstream: released (3.10-rc1) [b0b885657b6c, b0de59b5733d, 37b7f3c76595]
2.6.32-upstream-stable: ignored "too intrusive to backport for too little gain"
sid: released (3.8.12-1)
2.6.32-squeeze-security: ignored "too intrusive to backport for too little gain"
3.2-upstream-stable: released (3.2.45) [cd945654552d978b84c0825c7206b2d0667a1272, c29ad805df8c54a9f5d74c66bf5d4a2d449bd99a, 0b28f5865ef23d2bcee122d75b4aea1e2f052624]
3.2-wheezy-security: released (3.2.41-2+deb7u1) [bugfix/all/TTY-do-not-update-atime-mtime-on-read-write.patch, bugfix/all/TTY-fix-atime-mtime-regression.patch, bugfix/all/tty-fix-up-atime-mtime-mess-take-three.patch]