FS#52560 - [shadow] Need a cherry-pick fixing suid binary issues

Attached to Project: Arch Linux
Opened by Shane Chen (ss1h2a3tw) - Sunday, 15 January 2017, 12:48 GMT
Last edited by Dave Reisner (falconindy) - Thursday, 10 August 2017, 16:59 GMT
Task Type Bug Report
Category Upstream Bugs
Status Closed
Assigned To Dave Reisner (falconindy)
Architecture All
Severity Very Low
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No

Details

Description:
Need cherry-pick on 61abb4645cb0c4911eea0a7ce63a9c7d37cabe8f
The patch fixes newuidmap/newgidmap is not setuid

The newuidmap newgidmap is setuid in shadow 4.2
Because this bug is fixed after 4.4 , we need to cherry-pick it to make newuidmap/newgidmap work again.

Additional info:

Steps to reproduce:
/usr/bin/newuidmap /usr/bin/newgidmap is not setuid
This task depends upon

Closed by  Dave Reisner (falconindy)
Thursday, 10 August 2017, 16:59 GMT
Reason for closing:  Fixed
Additional comments about closing:  shadow 4.5 is in testing
Comment by Jakub Klinkovský (lahwaacz) - Thursday, 10 August 2017, 16:48 GMT
The referenced commit 61abb4645cb0c4911eea0a7ce63a9c7d37cabe8f does not seem to exist in the shadow repository: https://github.com/shadow-maint/shadow
Please provide a link to the patch.

Also, the shadow package is is at 4.4 since October 2016, which is the version which was supposed to fix the bug, but this was reported in 2017 saying that shadow is 4.2?
Comment by Dave Reisner (falconindy) - Thursday, 10 August 2017, 16:59 GMT
$ git tag --contains 61abb4645cb0c4911eea0a7ce63a9c7d37cabe8f
4.5

$ expac -S '%r/%n %v' shadow
testing/shadow 4.5-2
core/shadow 4.4-3

Loading...