Univention Bugzilla – Bug 43410
fix setuid in keytab listener
Last modified: 2017-04-04 18:29:11 CEST
/usr/lib/univention-directory-listener/system/keytab.py calls listener.setuid(0) in the globale scope. This is potentially harmful as the listener does currently not drop privileges after the import (see Bug #43409). Also there is are listener.setuid(0) listener.unsetuid() calls in the handler function without try: finally:
r76382 | Bug #43410 heimdal: Fix credential leak Package: univention-heimdal Version: 10.0.0-2A~4.2.0.201702031419 Version: 10.0.0-3A~4.2.0.201702031452 Branch: ucs_4.2-0
Ok.
UCS 4.2 has been released: https://docs.software-univention.de/release-notes-4.2-0-en.html https://docs.software-univention.de/release-notes-4.2-0-de.html If this error occurs again, please use "Clone This Bug".