** No longer affects: eglibc (Ubuntu)
** No longer affects: libnss-ldap (Ubuntu)
** No longer affects: sudo (Ubuntu)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to libnss-ldap in Ubuntu.
https://bugs.launchpad.net/bugs/423252
Thanks Howard,
I'll get this reviewed and tested this week.
Adam
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to libnss-ldap in Ubuntu.
https://bugs.launchpad.net/bugs/423252
Title:
NSS using LDAP+SSL breaks setuid applications
Public bug reported:
1. Description of the problem:
On 12.04, for package 'puppet', the fix (contained in version
2.7.11-1ubuntu2.1) for CVE-2012-3867 [1] involves validating TLS
certificate CSR field (Common Name) for “weird” characters. However, the
check is too restrictive and is causing
After reviewing this bug again I've outlined a possible course of
action:
a) Revert global_init patch in all supported distro's
b) Lucid users continue to use the nscd workaround.
c) Precise, Quantal, etc - rebuild gnutls without --with-libgcrypt in order to
make use of nettle.
Unfortunately,
It doesn't look like your OID is correct, below is the one used for NET-
SNMP-EXTEND-MIB:
zef@lucid:~$ snmpwalk -v1 -c stokescanonical localhost .1.3.6.1.4.1.8072.1.3.2
NET-SNMP-EXTEND-MIB::nsExtendNumEntries.0 = INTEGER: 1
NET-SNMP-EXTEND-MIB::nsExtendCommand.top_lists = STRING: /bin/sh
For now I'll set this to invalid as I've had no issues getting external
scripts to execute through NET-SNMP-EXTEND-MIB
** Changed in: net-snmp (Ubuntu)
Status: Confirmed = Fix Released
** Tags added: verification-done-lucid
--
You received this bug notification because you are a member
This problem needs additional patches that can be found in my related
branch. My understanding is that testing with that patched autofs5 is
proven positive. I will have an SRU written up once I receive a final
confirmation today.
** Branch linked: lp:~adam-stokes/ubuntu/lucid/autofs5/null-cache
The merge proposal has been confirmed and verified on lucid.
** Description changed:
Binary package hint: autofs5
+
+ [Impact]
+ Running reload autofs on a release with this issue creates automount maps and
can cause the automounter to hang. This will prevent logins via ssh for users
(due
Michael,
You could alter your previous query to resemble something like the
following:
zef@lucid:/tmp$ snmpget -v1 -c stokescanonical localhost
'NET-SNMP-EXTEND-MIB::nsExtendResult.top_lists'
NET-SNMP-EXTEND-MIB::nsExtendResult.top_lists = INTEGER: 9
Thanks,
Adam
--
You received this bug
** Changed in: lsb (Ubuntu)
Milestone: None = ubuntu-12.04.1
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to bind9 in Ubuntu.
https://bugs.launchpad.net/bugs/683640
Title:
status_of_proc is returning incorrect error code
To
** No longer affects: bind9 (Ubuntu Lucid)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to bind9 in Ubuntu.
https://bugs.launchpad.net/bugs/683640
Title:
status_of_proc is returning incorrect error code
To manage notifications
** No longer affects: dovecot (Ubuntu Lucid)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to bind9 in Ubuntu.
https://bugs.launchpad.net/bugs/683640
Title:
status_of_proc is returning incorrect error code
To manage notifications
** No longer affects: bind9 (Ubuntu Natty)
** No longer affects: bind9 (Ubuntu Oneiric)
** No longer affects: bind9 (Ubuntu Precise)
** No longer affects: bind9 (Ubuntu Quantal)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to bind9
** No longer affects: dovecot (Ubuntu Natty)
** No longer affects: dovecot (Ubuntu Oneiric)
** No longer affects: dovecot (Ubuntu Precise)
** No longer affects: dovecot (Ubuntu Quantal)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed
** No longer affects: openbsd-inetd (Ubuntu Oneiric)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to bind9 in Ubuntu.
https://bugs.launchpad.net/bugs/683640
Title:
status_of_proc is returning incorrect error code
To manage
** No longer affects: openbsd-inetd (Ubuntu Lucid)
** No longer affects: openbsd-inetd (Ubuntu Natty)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to bind9 in Ubuntu.
https://bugs.launchpad.net/bugs/683640
Title:
status_of_proc is
** No longer affects: openbsd-inetd (Ubuntu Precise)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to bind9 in Ubuntu.
https://bugs.launchpad.net/bugs/683640
Title:
status_of_proc is returning incorrect error code
To manage
** No longer affects: openbsd-inetd (Ubuntu Quantal)
** No longer affects: openvpn (Ubuntu Lucid)
** No longer affects: openvpn (Ubuntu Natty)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to bind9 in Ubuntu.
** No longer affects: spamassassin (Ubuntu Precise)
** No longer affects: openvpn (Ubuntu Oneiric)
** No longer affects: openvpn (Ubuntu Precise)
** No longer affects: openvpn (Ubuntu Quantal)
** No longer affects: rsync (Ubuntu Lucid)
** No longer affects: rsync (Ubuntu Natty)
** No longer
I'm not able to reproduce your issue exactly, but here is information
which shows that the snmp extend functionality is available in latest
lucid.
zef@lucid:/tmp$ ps -ef |grep nfsd
root 1152 2 0 13:29 ?00:00:00 [nfsd4]
root 1156 2 0 13:29 ?00:00:00 [nfsd]
root
Michael,
Let me do some more investigating on this and I'll get back to you.
Thanks for testing
Adam
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to net-snmp in Ubuntu.
https://bugs.launchpad.net/bugs/496922
Title:
Ubuntu snmpd
Lucid-proposed debiff
** Patch added: libgcrypt11_1.4.4-5ubuntu2.1.lucid.debdiff
https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/423252/+attachment/3161716/+files/libgcrypt11_1.4.4-5ubuntu2.1.lucid.debdiff
--
You received this bug notification because you are a member of Ubuntu
Server
** Patch added: Oneiric-proposed debdiff
https://bugs.launchpad.net/ubuntu/+source/libgcrypt11/+bug/423252/+attachment/3150693/+files/libgcrypt11_1.5.0-1ubuntu0.1.oneiric.debdiff
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to
natty-proposed debdiff
** Patch added: libgcrypt11_1.4.6-4ubuntu2.1.natty.debdiff
https://bugs.launchpad.net/ubuntu/+source/libgcrypt11/+bug/423252/+attachment/3150719/+files/libgcrypt11_1.4.6-4ubuntu2.1.natty.debdiff
--
You received this bug notification because you are a member of Ubuntu
Precise debdiff for SRU
** Patch added: libgcrypt11_1.5.0-3ubuntu1.precise.debdiff
https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/423252/+attachment/3149496/+files/libgcrypt11_1.5.0-3ubuntu1.precise.debdiff
--
You received this bug notification because you are a member of Ubuntu
Server
** Description changed:
- On Karmic (alpha 4 plus updates), changing the nsswitch.conf 'passwd'
- field to anything with 'ldap' as the first item breaks the ability to
- become root using 'su' and 'sudo' as anyone but root.
+ SRU Request:
+
+ [Impact]
+ As heavily outlined in the amount of
** Description changed:
SRU Request:
[Impact]
As heavily outlined in the amount of comments in this bug the impact is
detrimental to both community and enterprise users alike.
[Development Fix]
- Howard Chu released a patch in #73 which was later confirmed in #106 #108
as a
** Branch linked: lp:~adam-stokes/ubuntu/quantal/libgcrypt11/libgcrypt-
fix-423252
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to libnss-ldap in Ubuntu.
https://bugs.launchpad.net/bugs/423252
Title:
NSS using LDAP+SSL breaks setuid
Hi,
Could the people affected please explain what is not working? Using
'exec' is deprecated and should be replaced with 'extend'. Was this
option tried and you still failed to see results?
Also attaching some example configurations using the 'extend' feature
would be helpful in pinpointing this
re #108 (cdmiller)
Is this fix still a workable solution for you and have you run into any
issues not yet experienced on this bug?
Thanks
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to libnss-ldap in Ubuntu.
Output of autofs5-dbgsym
dpkg -L autofs5-dbgsym
/.
/usr
/usr/lib
/usr/lib/debug
/usr/lib/debug/usr
/usr/lib/debug/usr/sbin
/usr/lib/debug/usr/sbin/automount
/usr/lib/debug/usr/lib
/usr/lib/debug/usr/lib/autofs
/usr/lib/debug/usr/lib/autofs/mount_ext2.so
This patch puts all stripped executables and shared libraries into their
relevant -dbg packages.
** Patch added: autofs5_5.0.6-0ubuntu3.unstable.debdiff
https://bugs.launchpad.net/ubuntu/+source/autofs5/+bug/924002/+attachment/2728194/+files/autofs5_5.0.6-0ubuntu3.unstable.debdiff
--
You
101 - 132 of 132 matches
Mail list logo