Re: samba security update - workaround does not start

To: debian-security <debian-security@lists.debian.org>
Subject: Re: samba security update - workaround does not start
From: Vladislav Kurz <vladislav.kurz@webstep.net>
Date: Tue, 13 Mar 2018 16:20:59 +0100
Message-id: <[🔎] 4403451c-98c1-c373-e6bb-1704e5f7d51d@webstep.net>
In-reply-to: <rt-4.2.8-30456-1520934918-40.90290-4-0@uran.webstep.net>
References: <RT-Ticket-90290@uran.webstep.net> <E1evgYz-0002ho-3u@seger.debian.org> <rt-4.2.8-30456-1520934918-40.90290-4-0@uran.webstep.net>

Hello all,

I wanted to run the workaround script from
https://wiki.samba.org/index.php/CVE-2018-1057

But it fails with:

# ./samba_CVE-2018-1057_helper --lock-pwchange
Temporarily overriding 'dsdb:schema update allowed' setting
Traceback (most recent call last):
  File "./samba_CVE-2018-1057_helper", line 139, in <module>
    sd_helper.modify_sd_on_dn(msg.dn, new_desc)
  File "/usr/lib/python2.7/dist-packages/samba/sd_utils.py", line 40, in
modify_sd_on_dn
    m.dn = Dn(self.ldb, object_dn)
TypeError: argument 2 must be string, not ldb.Dn
A transaction is still active in ldb context [0x228cc20] on
tdb:///var/lib/samba/private/sam.ldb


--dry-dun runs nicely, listing all users from LDAP.

Has anyone idea what's wrong? Maybe some python modules?


-- 
Best Regards
        Vladislav Kurz

Reply to:

Prev by Date: Re: Upcoming stable point release (9.4)
Next by Date: Unstable Wayland in Debian Testing
Previous by thread: Re: Upcoming stable point release (9.4)
Next by thread: Unstable Wayland in Debian Testing
Index(es):
- Date
- Thread