Your message dated Wed, 04 Jan 2017 17:34:08 +0000
with message-id <[email protected]>
and subject line Bug#810873: fixed in pam 1.1.8-3.5
has caused the Debian Bug report #810873,
regarding pam_getenv: "Unescaped left brace in regex" with Perl 5.22
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
810873: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=810873
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: libpam-runtime
Version: 1.1.8-3.2
Severity: minor
Tags: patch

Dear Maintainer,

Perl 5.22 now warns about unescaped left curly brackets in regular
expressions.[1]  This results in pam_getenv printing the following
warning on stderr on every invocation:

Unescaped left brace in regex is deprecated, passed through in regex; marked by 
<-- HERE in m/(?<!\\)\${ <-- HERE ([^}]+)}/ at /usr/sbin/pam_getenv line 78.

The fix is trivial, but I've attached a patch anyway, for clarity.

Best regards,
Kevin

P.S.  I tried to check that this isn't in the current development
versions (if there are any) but the Vcs-Bzr control field points to
https://bzr.debian.org/bzr/pkg-pam/debian/sid/ which returns 404 and I
didn't see it on https://anonscm.debian.org/cgit/.

1.  
http://search.cpan.org/dist/perl-5.22.0/pod/perldelta.pod#A_literal_%22{%22_should_now_be_escaped_in_a_pattern


-- System Information:
Debian Release: stretch/sid
  APT prefers testing
  APT policy: (990, 'testing'), (500, 'unstable'), (101, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.3.3+kevinoid1+ (SMP w/4 CPU cores)
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages libpam-runtime depends on:
ii  debconf [debconf-2.0]  1.5.58
ii  libpam-modules         1.1.8-3.2

libpam-runtime recommends no packages.

libpam-runtime suggests no packages.

-- debconf information:
  libpam-runtime/no_profiles_chosen:
* libpam-runtime/profiles: unix, systemd, consolekit, capability
  libpam-runtime/title:
  libpam-runtime/conflicts:
  libpam-runtime/override: false
diff -Nru pam-1.1.8.orig/debian/local/pam_getenv pam-1.1.8/debian/local/pam_getenv
--- pam-1.1.8.orig/debian/local/pam_getenv	2016-01-12 20:59:37.867325442 -0800
+++ pam-1.1.8/debian/local/pam_getenv	2016-01-12 20:59:52.907461453 -0800
@@ -75,7 +75,7 @@
   my ($val) = @_;
 return undef unless $val;
 	die "Cannot handle PAM items\n" if /(?<!\\)\@/;
-  $val =~ s/(?<!\\)\${([^}]+)}/$ENV{$1}||""/eg;
+  $val =~ s/(?<!\\)\$\{([^}]+)\}/$ENV{$1}||""/eg;
   return $val;
 }
 

--- End Message ---
--- Begin Message ---
Source: pam
Source-Version: 1.1.8-3.5

We believe that the bug you reported is fixed in the latest version of
pam, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Adam Borowski <[email protected]> (supplier of updated pam package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 30 Dec 2016 14:37:29 +0100
Source: pam
Binary: libpam0g libpam-modules libpam-modules-bin libpam-runtime libpam0g-dev 
libpam-cracklib libpam-doc
Architecture: source
Version: 1.1.8-3.5
Distribution: unstable
Urgency: medium
Maintainer: Steve Langasek <[email protected]>
Changed-By: Adam Borowski <[email protected]>
Description:
 libpam-cracklib - PAM module to enable cracklib support
 libpam-doc - Documentation of PAM
 libpam-modules - Pluggable Authentication Modules for PAM
 libpam-modules-bin - Pluggable Authentication Modules for PAM - helper binaries
 libpam-runtime - Runtime support for the PAM library
 libpam0g   - Pluggable Authentication Modules library
 libpam0g-dev - Development files for PAM
Closes: 810873 846459
Changes:
 pam (1.1.8-3.5) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Build-Depend on libfl-dev:native as well, for cross builds.
     Re-closes: #846459
   * Fix "Unescaped left brace in regex" with Perl 5.22. Closes: #810873
Checksums-Sha1:
 b08cab4dec1b5fd88173e967b4d26a43f87642c2 2572 pam_1.1.8-3.5.dsc
 715d9de4ec59b028011642828be5bd085f6f3d35 139150 pam_1.1.8-3.5.diff.gz
Checksums-Sha256:
 9f7dff8ae2e0a20e4d7ad267d2843aefed721b06c56276e9308a276e1a04c6d0 2572 
pam_1.1.8-3.5.dsc
 6991af2b57eeffbe35a176c48e6c926631886eba4b8e33ae2eaffda44d7eb98e 139150 
pam_1.1.8-3.5.diff.gz
Files:
 7c831751c2621d9c1c1db2bc8380c083 2572 libs optional pam_1.1.8-3.5.dsc
 7d64335c8d91ba29320b65b18fbdc0ab 139150 libs optional pam_1.1.8-3.5.diff.gz

-----BEGIN PGP SIGNATURE-----
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=spsb
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to