Comment 1 Julia Bremer 2021-08-04 10:45:03 CEST

Thank you for your bug report.

As far as I know, this issue isn't fixed upstream yet, but our patches are still active.
Was this only reproducible after the upgrade or did you notice this issue with UCS4 as well?

It was not a problem on ucs 4 .I only just upgraded to ucs 5.0.0 on the 31/07/21 and then i notice the problem when adding a printer. There is a very small possibility that it occurred when i updated all the errata on ucs 4 before upgrading to 5 but i think this is very unlikely as there was very few patches/ errata to apply. 
I use ucs in a kvm guest on a ubuntu kvm server.I took a backup image of kvm img just before upgrade and i still have this.I could setup lab with this image but it would take me some time.

Comment 3 Julia Bremer 2021-08-05 13:56:17 CEST

I just checked our patches, and it seems like the changes we made for Bug #50601 (clone of Bug #49747) were not applied to the UCS5 version of samba. 
(diff svn/patches/samba/5.0-0-0-ucs/2\:4.13.0-1/99_bug49747.quilt svn/patches/samba/4.4-0-0-ucs/2\:4.10.18-1-errata4.4-8/99_bug49747.quilt) 

This means the crashes are only fixed for S-1-22*, but not for S-1-15*, S-1-16*, S-1-17* and S-1-18*.

We should apply the complete patch again and check if more patches beside this one are outdated.

Comment 4 Florian Best 2021-09-28 12:22:31 CEST

Created attachment 10834 [details]
svn history

this bug is still present at errata 164

Thank you for your support, I upgraded to 5.0-1 errata 187 and the bug is still present :(

Whenever you look at the security tab, even with an admin user explorer.exe crashes.

Is there a manual fix that I could patch?
Please help us with these fixes, they create a bad perception of your great project

Thanks in advance

José

Comment 7 Julia Bremer 2022-01-25 10:58:08 CET

Successful build
Package: samba
Version: 2:4.13.13-1A~5.0.0.202201242102
Branch: ucs_5.0-0
Scope: errata5.0-1

r19507 | jbremer | Bug #53629: Add well-known-sid

I reapplied the patch we used in 4.4 to mitigate the crashing explorer.

Thank you Julia for the effort, I have two question.
I'm already up to date with all the packages:


univention-samba-local-config/errata501,now 14.0.5-4A~5.0.0.202201102049 all [installed,automatic]
univention-samba4-sysvol-sync/errata501,now 9.0.6-8A~5.0.0.202201181446 all [installed,automatic]
univention-samba4/errata501,now 9.0.6-8A~5.0.0.202201181446 amd64 [installed]


how do I force the patched package install?
Or should I wait for the next package errata to be released?
Thanks

José

Comment 9 Julia Bremer 2022-01-26 16:31:34 CET

(In reply to José Echeverría from comment #8)
> Thank you Julia for the effort, I have two question.
> I'm already up to date with all the packages:
> 
> 
> univention-samba-local-config/errata501,now 14.0.5-4A~5.0.0.202201102049 all
> [installed,automatic]
> univention-samba4-sysvol-sync/errata501,now 9.0.6-8A~5.0.0.202201181446 all
> [installed,automatic]
> univention-samba4/errata501,now 9.0.6-8A~5.0.0.202201181446 amd64 [installed]
> 
> 
> how do I force the patched package install?
> Or should I wait for the next package errata to be released?
> Thanks
> 
> José

Hi José,
Sorry for taking so long.
I applied the patch  internally. The status resolved fixed means that the QA is still pending. Hopefully the package can be released next week. Then, the status will be set to closed fixed. You will have to wait until then.
Best regards,
Julia

OK, don't worry thank you Julia ;)

José

Comment 11 Erik Damrose 2022-01-31 14:55:02 CET

OK: Fixed patch 98_bug49747.quilt
OK: No more explorer crashes when affected SIDs are in use
OK: yaml
Verified

Comment 12 Erik Damrose 2022-01-31 15:17:13 CET

<https://errata.software-univention.de/#/?erratum=5.0x200>