After web research is seems that the bug is introduced by the schange of the login package from 1:4.1.4.2 (presice/quantal) to 1:4.1.5.1 (raring/saucy)
> shadow (1:4.1.5-1) unstable; urgency=low
>
> * The "Charolais" release.
>
> [ Nicolas FRANCOIS (Nekral) ]
> * New upstream release:
> - su: Fix possible tty hijacking by dropping the controlling terminal when
> executing a command (CVE-2005-4890). Closes: #628843
> ...
After web research is seems that the bug is introduced by the schange of the login package from 1:4.1.4.2 (presice/quantal) to 1:4.1.5.1 (raring/saucy)
> shadow (1:4.1.5-1) unstable; urgency=low
>
> * The "Charolais" release.
>
> [ Nicolas FRANCOIS (Nekral) ]
> * New upstream release:
> - su: Fix possible tty hijacking by dropping the controlling terminal when
> executing a command (CVE-2005-4890). Closes: #628843
> ...
--- wiki.ubuntu. com/BugSquad
Ubuntu Bug Squad volunteer triager
http://