Package: nslcd Version: 0.9.4-3+deb8u1 Severity: important Hi, the latest package update broke on my system:
---SNIP--- # apt-get -f install Reading package lists... Done Building dependency tree Reading state information... Done The following package was automatically installed and is no longer required: libicu48 Use 'apt-get autoremove' to remove it. 0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded. 3 not fully installed or removed. After this operation, 0 B of additional disk space will be used. Setting up nslcd (0.9.4-3+deb8u1) ... sed: -e expression #1, char 87: unterminated address regex dpkg: error processing package nslcd (--configure): subprocess installed post-installation script returned error exit status 1 dpkg: dependency problems prevent configuration of libnss-ldapd:amd64: libnss-ldapd:amd64 depends on nslcd (>= 0.9.0) | nslcd-2; however: Package nslcd is not configured yet. Package nslcd-2 is not installed. Package nslcd which provides nslcd-2 is not configured yet. dpkg: error processing package libnss-ldapd:amd64 (--configure): dependency problems - leaving unconfigured dpkg: dependency problems prevent configuration of libpam-ldapd:amd64: libpam-ldapd:amd64 depends on nslcd (>= 0.9.0) | nslcd-2; however: Package nslcd is not configured yet. Package nslcd-2 is not installed. Package nslcd which provides nslcd-2 is not configured yet. dpkg: error processing package libpam-ldapd:amd64 (--configure): dependency problems - leaving unconfigured Errors were encountered while processing: nslcd libnss-ldapd:amd64 libpam-ldapd:amd64 E: Sub-process /usr/bin/dpkg returned an error code (1) ---SNAP-- This seems to be because the postinst script uses sed to update the config file using sed, and my "bindpw" contains a ']' character. I am not sure what the best solution is here, since there are a number of characters which are interpreted as regex special characters. But the package upgrade failing like this doesn't seem an acceptable state either. I know it's a weird password character but the generator program I used at the time tried to be extra secure, I guess. ~David -- System Information: Debian Release: 8.4 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable') Architecture: amd64 (x86_64) Kernel: Linux 4.1.16-x86_64-jb1 (SMP w/3 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages nslcd depends on: ii adduser 3.113+nmu3 ii debconf [debconf-2.0] 1.5.56 ii libc6 2.19-18+deb8u4 ii libgssapi-krb5-2 1.12.1+dfsg-19+deb8u2 ii libldap-2.4-2 2.4.40+dfsg-1+deb8u2 Versions of packages nslcd recommends: ii bind9-host [host] 1:9.9.5.dfsg-9+deb8u6 ii ldap-utils 2.4.40+dfsg-1+deb8u2 iu libnss-ldapd [libnss-ldap] 0.9.4-3+deb8u1 iu libpam-ldapd [libpam-ldap] 0.9.4-3+deb8u1 pn nslcd-utils <none> ii unscd [nscd] 0.51-1+b2 Versions of packages nslcd suggests: pn kstart <none> -- debconf information: * nslcd/ldap-uris: ldap://localhost/ nslcd/xdm-needs-restart: nslcd/ldap-sasl-realm: nslcd/ldap-starttls: false nslcd/ldap-cacertfile: /etc/ssl/certs/ca-certificates.crt nslcd/ldap-binddn: uid=pam,ou=sysusers,dc=de,dc=mcbf,dc=net nslcd/ldap-reqcert: nslcd/ldap-auth-type: simple nslcd/ldap-sasl-mech: * libraries/restart-without-asking: false nslcd/ldap-sasl-authzid: * nslcd/ldap-base: dc=de,dc=mcbf,dc=net nslcd/ldap-sasl-krb5-ccname: /var/run/nslcd/nslcd.tkt * nslcd/restart-services: saslauthd postgresql exim4 dovecot danted cron nslcd/ldap-sasl-authcid: * nslcd/restart-failed: nslcd/disable-screensaver: nslcd/ldap-sasl-secprops: