Bug#1008818: needrestart: creates root-owned .rpmdb in non-root user $HOME, possibly corrupting existing one
reassign 1008818 rpm found 1008818 4.16.1.2+dfsg1-3 affects 1008818 needrestart thanks Patrick Matthäi dixit: > Since this file also comes from rpm itself I think you agree this is not a bug > in needrestart? Not sure. On one side, “rpm -qa” will create the directory in my home directory as myself, but “sudo rpm -qa” will do the wrong thing. On the other hand, it’s needrestart that calls it… I agree it’s probably worth trying to reassign to rpm to get this fixed also for the normal “sudo rpm -qa” use case first, before adding extra workarounds in needrestart. (Unsure if either fix would make it into stable…) bye, //mirabilos -- Gestern Nacht ist mein IRC-Netzwerk explodiert. Ich hatte nicht damit gerechnet, darum bin ich blutverschmiert… wer konnte ahnen, daß SIE so reagier’n… gestern Nacht ist mein IRC-Netzwerk explodiert~~~ (as of 2021-06-15 The MirOS Project temporarily reconvenes on OFTC)
Processed: Re: Bug#1008818: needrestart: creates root-owned .rpmdb in non-root user $HOME, possibly corrupting existing one
Processing commands for cont...@bugs.debian.org: > reassign 1008818 rpm Bug #1008818 [needrestart] needrestart: creates root-owned .rpmdb in non-root user $HOME, possibly corrupting existing one Bug reassigned from package 'needrestart' to 'rpm'. No longer marked as found in versions needrestart/3.5-4. Ignoring request to alter fixed versions of bug #1008818 to the same values previously set > found 1008818 4.16.1.2+dfsg1-3 Bug #1008818 [rpm] needrestart: creates root-owned .rpmdb in non-root user $HOME, possibly corrupting existing one Marked as found in versions rpm/4.16.1.2+dfsg1-3. > affects 1008818 needrestart Bug #1008818 [rpm] needrestart: creates root-owned .rpmdb in non-root user $HOME, possibly corrupting existing one Added indication that 1008818 affects needrestart > thanks Stopping processing here. Please contact me if you need assistance. -- 1008818: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1008818 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#1008818: needrestart: creates root-owned .rpmdb in non-root user $HOME, possibly corrupting existing one
Patrick Matthäi dixit: > But how did it happened, that .rpmdb is owned by root in your own user > directory? rpm is installed, I run sudo apt-get something. > Same in my test, if I use $ sudo needrestart => .rpmdb of ~root/ is used Hmm. Maybe !env_reset in sudoers would do this… bye, //mirabilos -- (gnutls can also be used, but if you are compiling lynx for your own use, there is no reason to consider using that package) -- Thomas E. Dickey on the Lynx mailing list, about OpenSSL
Bug#1008818: needrestart: creates root-owned .rpmdb in non-root user $HOME, possibly corrupting existing one
Package: needrestart Version: 3.5-4 Severity: grave Justification: causes non-serious data loss X-Debbugs-Cc: t...@mirbsd.de I did notice root-owned .rpmdb directories in my user home and, after log inspection, was able to track it down to apt-get runs. Some reproducing and grepping later I found it’s needrestart which does that. -- Package-specific info: needrestart output: Your outdated processes: dbus-daemon[18689], dconf-service[25185], dirmngr[19601], lynx[690], mksh[13426, 2187, 19552], screen[2866, 2185], xdg-desktop-por[25155], xdg-document-po[25162], xdg-permission-[25166] -- System Information: Debian Release: 11.3 APT prefers stable-updates APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable-debug'), (500, 'oldstable-updates'), (500, 'oldoldstable'), (500, 'stable'), (500, 'oldstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.10.0-8-amd64 (SMP w/2 CPU threads) Kernel taint flags: TAINT_WARN Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /bin/lksh Init: sysvinit (via /sbin/init) Versions of packages needrestart depends on: ii binutils 2.35.2-2 ii dpkg 1.20.9 ii gettext-base 0.21-4 ii libintl-perl 1.26-3 ii libmodule-find-perl0.15-1 ii libmodule-scandeps-perl1.30-1 ii libproc-processtable-perl 0.59-2+b1 ii libsort-naturally-perl 1.03-2 ii libterm-readkey-perl 2.38-1+b2 ii perl 5.32.1-4+deb11u2 ii xz-utils 5.2.5-2 Versions of packages needrestart recommends: ii sysvinit-core 2.96-7+deb11u1 Versions of packages needrestart suggests: ii iucode-tool 2.3.1-1 pn needrestart-session | libnotify-bin -- no debconf information
