[Bug 423252] nss-ldap, SUID executables, gcrypt
Ansgar Burchardt
ansgar at debian.org
Tue Apr 24 18:50:07 UTC 2012
Thorsten Glaser <423252 at bugs.launchpad.net> writes:
> Why not do a readline and provide *two* versions of the
> OpenLDAP client libraries, keep libldap-2.4-2 linked
> against gnutls26 and add another shared library plus
> development package (with at least the two shared library
> packages coïnstallable) to link against gnutls28 and build
> these BOTH from the SAME source package at the SAME time,
> so an upload of OpenLDAP will not need another package to
> be (re-)built to stay in sync.
>
> Did anyone think of it already and will shoot this idea
> down immediately? Or could it work?
I proposed this with openssl in Debian before (#579647), but it looks
like it was merged with my original bug report in gcrypt later and then
got lost.
Regards,
Ansgar
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to libnss-ldap in Ubuntu.
https://bugs.launchpad.net/bugs/423252
Title:
NSS using LDAP+SSL breaks setuid applications like su, sudo, apache2
suexec, and atd
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu-release-notes/+bug/423252/+subscriptions
More information about the Ubuntu-server-bugs
mailing list