[Bug 1091802] New: openldap2: incomplete macro expansion(?) in script
http://bugzilla.opensuse.org/show_bug.cgi?id=1091802 Bug ID: 1091802 Summary: openldap2: incomplete macro expansion(?) in script Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Network Assignee: GuoHouzuo@gmail.com Reporter: jengelh@inai.de QA Contact: qa-bugs@suse.de CC: mpluskal@suse.com, varkoly@suse.com Found By: --- Blocker: --- The following product is going to be upgraded: openSUSE Tumbleweed 20180427-0 -> 20180501-0 x86_64 base openSUSE (38/73) Installing: openldap2-2.4.46-33.1.x86_64 ...................................................[done] Additional rpm output: /usr/sbin/openldap_update_modules_path.sh: line 1: s: command not found Updating /etc/sysconfig/openldap ... -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1091802 http://bugzilla.opensuse.org/show_bug.cgi?id=1091802#c1 --- Comment #1 from Jan Engelhardt <jengelh@inai.de> --- 12:32 a4:../Factory/openldap2 > head -n5 openldap_update_modules_path.sh s script has been created to update the OpenLDAP modules path in cn=config # For details of changing the configuration items' location read these: # https://www.openldap.org/lists/openldap-software/200812/msg00080.html # This script writes over the config entry of backend databases location, which files are necessary to run LDAP. The procedure has been created upon this description: # https://serverfault.com/questions/863274/modify-openldap-cn-config-without-s... So yeah, that's that. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1091802 http://bugzilla.opensuse.org/show_bug.cgi?id=1091802#c2 Richard Warner <rick@microway.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |rick@microway.com --- Comment #2 from Richard Warner <rick@microway.com> --- This is broken in openSuse 15.1: https://build.opensuse.org/package/view_file/openSUSE:Leap:15.1/openldap2/op... -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=1091802 http://bugzilla.opensuse.org/show_bug.cgi?id=1091802#c3 Jan Engelhardt <jengelh@inai.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution|--- |FIXED QA Contact|qa-bugs@suse.de |jengelh@inai.de --- Comment #3 from Jan Engelhardt <jengelh@inai.de> --- this was resolved with Tue Oct 27 01:01:54 UTC 2020 - William Brown <william.brown@suse.com> - bsc#1175568 CVE-2020-8027 openldap_update_modules_path.sh has a number of issues in it's design that lead to security issues. This file has been removed, -- You are receiving this mail because: You are on the CC list for the bug.
participants (2)
-
bugzilla_noreply@novell.com -
bugzilla_noreply@suse.com