[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#1011624: marked as done (kdesu: kdesu fails to authenticate with sudo from testing/unstable)



Your message dated Wed, 01 Jun 2022 10:05:05 +0000
with message-id <E1nwLDt-0007XA-A1@fasolo.debian.org>
and subject line Bug#1011624: fixed in kdesu 5.94.0-2
has caused the Debian Bug report #1011624,
regarding kdesu: kdesu fails to authenticate with sudo from testing/unstable
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
1011624: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1011624
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
Package: kdesu
Version: 5.93.0-1
Severity: serious

kdesu fails to authenticate with sudo from testing/unstable.

Examples: launching ksystemlog from the main menu, or trying to run krusader root mode option via its 'Tools > Start Krusader Root Mode' menu entry. Assuming that the current user is a member of the sudo group.

On entering the correct password authentication is refused, stating that possibly an incorrect password has been entered.

It appears that kdesu fails to cope with the sudo config CVE fix in this commit:

https://salsa.debian.org/sudo-team/sudo/-/commit/59db341d46aa4c26b54c1270e69f2562e7f3d751

KDE bug: https://bugs.kde.org/show_bug.cgi?id=452532

The issue can be worked around by adding /etc/sudoers.d/kdesu with the contents

Defaults!/usr/lib/*/libexec/kf5/kdesu_stub !use_pty

--- End Message ---
--- Begin Message ---
Source: kdesu
Source-Version: 5.94.0-2
Done: Aurélien COUDERC <coucouf@debian.org>

We believe that the bug you reported is fixed in the latest version of
kdesu, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1011624@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Aurélien COUDERC <coucouf@debian.org> (supplier of updated kdesu package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 01 Jun 2022 11:20:21 +0200
Source: kdesu
Architecture: source
Version: 5.94.0-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Qt/KDE Maintainers <debian-qt-kde@lists.debian.org>
Changed-By: Aurélien COUDERC <coucouf@debian.org>
Closes: 1011624
Changes:
 kdesu (5.94.0-2) unstable; urgency=medium
 .
   [ Rik Mills ]
   * Disable use of sudo 'Defaults use_pty' for kdesu. (Closes: #1011624)
   * Improve short description for libkf5su5.
Checksums-Sha1:
 98d61d7d14b89beb010bcac45004a1cfa88ecf6f 2850 kdesu_5.94.0-2.dsc
 cb6241bd4787396ca351d940a5cd49ade6f96040 11812 kdesu_5.94.0-2.debian.tar.xz
 764073cb20419d429748c95e8c8b787eaf6f87a2 12966 kdesu_5.94.0-2_source.buildinfo
Checksums-Sha256:
 acadef19775fdcc9e867ba1fe51d213efdd34271669d37c219f9454f8d8f1463 2850 kdesu_5.94.0-2.dsc
 f6858c2d3d475d61f2a33eb5c5a7a8eeb06e3ad87ef6b20ba77cd56e2b3e15e5 11812 kdesu_5.94.0-2.debian.tar.xz
 409c65014cbf153b8de74f276d44b5fe55357e0c51e127cec48f87a406057bac 12966 kdesu_5.94.0-2_source.buildinfo
Files:
 a8d44013d0331db34e35b57d570b648d 2850 libs optional kdesu_5.94.0-2.dsc
 2c673600b8f338359605a9e06554953d 11812 libs optional kdesu_5.94.0-2.debian.tar.xz
 178a55ace3d6c0270a6587b9b160a839 12966 libs optional kdesu_5.94.0-2_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQJHBAEBCgAxFiEEIW//QAAaDgcOKDsfcaflM/KRoyQFAmKXMjUTHGNvdWNvdWZA
ZGViaWFuLm9yZwAKCRBxp+Uz8pGjJC4GEACyBavTsVSERx021iHeksyPWjG17meY
682oPmZfv4ngZnUHCG0tsEUteb9HRyKuWv6u3p9ZjmSj90prQK2ljG6nJx65HRCh
7PqjclUsHfQcIy677FpnMWXmKoUiM5PPqFMXnjKvgBffXPK0AAhWMoTEInfhszE7
zRS8tRWEi1kLdW9XCyFYD09LsiTIs1pSSolNEKCUhI0Gs4knnNHh+l5YLKRtL6Zs
j5udG3+gERSOB5iLSfcz0pPc7mGinCRnrFL+0PrFef/D8xbGXBFSPfDsVBtF8i5f
Gwf/UhiD6XLYrj5pppTtLpw+4hatOpfL761+Z4vbCpNUzunioPHvAMnNEYPAdUb3
3AODVp6HYg8aHKrdjLPCgt/y/V5J2kujSHf4WJq1wFqNamvyPz4jAmwxO83iz2EJ
mZt0IQ92Fzb9YgFCGuWca5gYHcw255sN3lyja+k6BjH8CtU3AP8LWYnrtP5ncs4c
DAE5p8kBy4mkR7k3n1QaiTuwEVcFxeIscWLNMrB0L4au+TlGpgTJfwIQ6hFVHmhm
PG7Xn+3z0zxmjkKXUPJmd7t6JFHm0zpl3cEUytIL6IFSIr86b3GLbQUdM0V4BvWB
4gBw/TqaqHHZNElOzPu+USkzbTI/CiBa/jGFfgq3KwSwGMV1LaEaa8nGCcSTjClU
RXui+80swkuDuQ==
=WwbR
-----END PGP SIGNATURE-----

--- End Message ---

Reply to: