Your message dated Sun, 02 Apr 2006 15:02:19 -0700
with message-id <[EMAIL PROTECTED]>
and subject line Bug#350776: fixed in sudo 1.6.8p12-2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: ess
Version: 5.2.6-1
Severity: normal
After sudo was upgraded to 1.6.8p7-1.3 due to a security fix it does
not seem to set SHELL environment variable anymore. This breaks "sudo
apt-get install ess". I am not sure if this should be seen as a bug in
ess or sudo so please feel free to reassign.
Steps to reproduce:
1) unset SHELL; apt-get install ess
OR
sudo apt-get install ess
Expected results:
1) ess should be installed.
Actual results:
1) ess installation fails with the following messages:
Reading Package Lists... Done
Building Dependency Tree... Done
Suggested packages:
xlispstat r-base pspp
The following NEW packages will be installed:
ess
0 upgraded, 1 newly installed, 0 to remove and 1 not upgraded.
Need to get 786kB of archives.
After unpacking 4366kB of additional disk space will be used.
Get:1 http://kurp.hut.fi sarge/main ess 5.2.6-1 [786kB]
Fetched 786kB in 0s (11.6MB/s)
Selecting previously deselected package ess.
(Reading database ... 127460 files and directories currently installed.)
Unpacking ess (from .../archives/ess_5.2.6-1_all.deb) ...
Setting up ess (5.2.6-1) ...
install/ess: Handling install for emacsen flavor emacs21
loading 'ess-emcs ..
loading 'ess-cust ..
loading 'ess ..
loading 'ess-site ..
[ess-site:] after (eval-and-compile ..)
[ess-site:] Before requiring dialect 'essd-** ....
[ess-site:] require 'essd-r ...
[essd-r:] (require 'essl-s)
[essl-s:] (def** ) only ...
[essd-r:] (autoload ..) & (def** ..)
[ess-site:] require 'essd-sp3 ...
[ess-site:] require 'essd-sp5 ...
[ess-site:] require 'essd-sp6 ...
[ess-site:] require 'essd-sta ...
[ess-site:] require 'essd-xls ...
[ess-site:] require 'essd-vst ...
[ess-site:] require 'essd-arc ...
[ess-site:] require 'essd-sas ...
[essd-sas:] require 'comint & 'shell ...
[essd-sas:] require 'essl-sas ...
[essl-sas:] (require 'ess) ...
[essl-sas:] (require 'ess-mode) ...
[essl-sas:] (autoload ..) (def** ..) etc ...
Wrong type argument: stringp, nil
emacs-package-install: /usr/lib/emacsen-common/packages/install/ess emacs21
emacs21 failed at /usr/lib/emacsen-common/emacs-package-install line 30,
<TSORT> line 1.
dpkg: error processing ess (--configure):
subprocess post-installation script returned error exit status 255
Errors were encountered while processing:
ess
E: Sub-process /usr/bin/dpkg returned an error code (1)
Proposed fix:
A simple fix is to assume SHELL=/bin/sh if (getenv "SHELL") fails:
--- /usr/share/emacs/site-lisp/ess/essa-sas.el~ 2005-03-22 15:48:24.000000000
+0200
+++ /usr/share/emacs/site-lisp/ess/essa-sas.el 2006-01-31 16:09:44.504163232
+0200
@@ -220,7 +220,9 @@
;; this should avoid the necessity of each user needing to set this
;; variable correctly based on the shell that they use and provide
;; an environment where all shells are treated equally
- (let* ((temp-shell (getenv "SHELL"))
+ (let* ((temp-shell (if (getenv "SHELL")
+ (getenv "SHELL")
+ "/bin/sh"))
(temp-char (string-match "/" temp-shell)))
(while temp-char
-- System Information:
Debian Release: 3.1
Architecture: i386 (i686)
Kernel: Linux 2.4.27-2-k7
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Versions of packages ess depends on:
ii emacs21 [emacsen] 21.4a-1 The GNU Emacs editor
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: sudo
Source-Version: 1.6.8p12-2
We believe that the bug you reported is fixed in the latest version of
sudo, which is due to be installed in the Debian FTP archive:
sudo-ldap_1.6.8p12-2_i386.deb
to pool/main/s/sudo/sudo-ldap_1.6.8p12-2_i386.deb
sudo_1.6.8p12-2.diff.gz
to pool/main/s/sudo/sudo_1.6.8p12-2.diff.gz
sudo_1.6.8p12-2.dsc
to pool/main/s/sudo/sudo_1.6.8p12-2.dsc
sudo_1.6.8p12-2_i386.deb
to pool/main/s/sudo/sudo_1.6.8p12-2_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Bdale Garbee <[EMAIL PROTECTED]> (supplier of updated sudo package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Sun, 2 Apr 2006 14:26:20 -0700
Source: sudo
Binary: sudo-ldap sudo
Architecture: source i386
Version: 1.6.8p12-2
Distribution: unstable
Urgency: low
Maintainer: Bdale Garbee <[EMAIL PROTECTED]>
Changed-By: Bdale Garbee <[EMAIL PROTECTED]>
Description:
sudo - Provide limited super user privileges to specific users
sudo-ldap - Provide limited super user privileges to specific users
Closes: 161012 203874 220808 228551 292833 314949 315115 315718 346325 349085
349129 349196 349549 349587 349729 350776 354431
Changes:
sudo (1.6.8p12-2) unstable; urgency=low
.
* fix typos in init scripts, closes: #346325
* update to debhelper compat level 5
* build depend on autotools-dev to ensure config.sub/guess are fresh
* accept patch from Martin Schulze developed for 1.6.8p7-1.4 in stable, and
use it here as well. Thanks to Martin and the debian-security team.
closes: #349196, #349549, #349587, #349729, #349129, #350776, #349085
closes: #315115, #315718, #203874
* Non-maintainer upload by the Security Team
* Reworked the former patch to limit environment variables from being
passed through, set env_reset as default instead [sudo.c, env.c,
sudoers.pod, Bug#342948, CVE-2005-4158]
* env_reset is now set by default
* env_reset will preserve only HOME, LOGNAME, PATH, SHELL, TERM,
DISPLAY, XAUTHORITY, XAUTHORIZATION, LANG, LANGUAGE, LC_*, and USER
(in addition to the SUDO_* variables)
* Rebuild sudoers.man.in from the POD file
* Added README.Debian
* patch from Alexander Zangerl to fix duplicated PATH issue, closes: #354431
* simplify rules file by using more of Makefile, despite having to override
default directories with more arguments to configure, closes: #292833
* update sudo man page to reflect use of SECURE_PATH, closes: #228551
* inconsistencies in sudoers man page resolved, closes: #220808, #161012
* patch from Jeroen van Wolffelaar to improve behavior when FQDNs are
unresolveable (requires adding bison as build dep), closes: #314949
Files:
73d77951ae86e88e906d28d0f94abb33 615 admin optional sudo_1.6.8p12-2.dsc
b3205e53c871e64824c6b338c9fa8a35 33108 admin optional sudo_1.6.8p12-2.diff.gz
22698e7f33a3f7179ec3ab59d24e4fec 161506 admin optional sudo_1.6.8p12-2_i386.deb
d2418ccc65a98154b15c7b3c1342462b 173910 admin optional
sudo-ldap_1.6.8p12-2_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
iD8DBQFEMEhZZKfAp/LPAagRAkw0AJwJq5L7amKiN48J0ldHRH3Sv29yFACbBi1b
LP3jMinYQ8qNMfE81BL1G9U=
=NSf8
-----END PGP SIGNATURE-----
--- End Message ---
