Bug#699593: marked as done (login: wrong egid)

To: Petr Salinger <Petr.Salinger@seznam.cz>
Subject: Bug#699593: marked as done (login: wrong egid)
From: owner@bugs.debian.org (Debian Bug Tracking System)
Date: Wed, 22 May 2013 04:21:08 +0000
Message-id: <[🔎] handler.699593.D699593.136919618728397.ackdone@bugs.debian.org>
References: <alpine.LNX.2.00.1305220612550.13087@contest.felk.cvut.cz> <20130202085347.12567.72967.reportbug@server.miklcct.csproject.org>

Your message dated Wed, 22 May 2013 06:16:06 +0200 (CEST)
with message-id <alpine.LNX.2.00.1305220612550.13087@contest.felk.cvut.cz>
and subject line fixed by upload of eglibc 2.17
has caused the Debian Bug report #699593,
regarding login: wrong egid
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
699593: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699593
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: login: wrong egid
From: Michael Tsang <miklcct@gmail.com>
Date: Sat, 02 Feb 2013 16:53:47 +0800
Message-id: <20130202085347.12567.72967.reportbug@server.miklcct.csproject.org>

Package: login
Version: 1:4.1.5.1-1
Severity: grave
Tags: security
Justification: user security hole

Dear Maintainer,

Debian GNU/kFreeBSD logs me with a wrong egid. I did the following steps:

1. Install a new copy of Debian GNU/kFreeBSD
2. Configure the system to use LDAP authentication
3. Add an LDAP user to a local group (e.g. sudo)
4. Log into that user

Then, I found that bash does not read the configuration files since gid and
egid are different. This is wrong. The egid should be the same as the primary
gid when logging in. Refer to #698102 for more details.

Regards,
Michael



-- System Information:
Debian Release: 7.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.2.0-4-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_HK.UTF-8, LC_CTYPE=en_HK.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages login depends on:
ii  libc6           2.13-37
ii  libpam-modules  1.1.3-7.1
ii  libpam-runtime  1.1.3-7.1
ii  libpam0g        1.1.3-7.1

login recommends no packages.

login suggests no packages.

-- no debconf information

--- End Message ---

--- Begin Message ---

To: 699593-close@bugs.debian.org, 704598-close@bugs.debian.org

Subject: fixed by upload of eglibc 2.17

From: Petr Salinger <Petr.Salinger@seznam.cz>

Date: Wed, 22 May 2013 06:16:06 +0200 (CEST)

Message-id: <alpine.LNX.2.00.1305220612550.13087@contest.felk.cvut.cz>
Version: 2.17-1

eglibc (2.13-39) UNRELEASED; urgency=low

  [ Petr Salinger ]
  * patches/kfreebsd/local-initgroups-order.diff: always put supplied extra
    gid as the first entry of group list in setgroups(). Closes: #699593.
  * inline is not keyword in c89 mode, use __inline. Closes: #704598.
--- End Message ---

Reply to:

Prev by Date: Re: Bug#699818: pre-approval for unblock: eglibc change restricted for GNU/kFreeBSD
Next by Date: Bug#698102: marked as done (eglibc: initgroups changes egid on kfreebsd)
Previous by thread: Bug#699593: marked as done (login: wrong egid)
Next by thread: Bug#701422: marked as done (cifs-utils: ftbfs with eglibc-2.17)
Index(es):
- Date
- Thread