See http://bugs.debian.org/368297 http://bugs.debian.org/658896 for an alternative patch to fix this bug that don't introduced any regression (LP: #1013798).
The patch applied to libgcrypt (no-global-init-thread-callbacks.diff) should be reverted and the following patch http://bugs.debian.org/cgi- bin/bugreport.cgi?msg=135;filename=fix-dropping-privileges-by-libgcrypt- secmem.diff;att=2;bug=368297 should be applied to OpenLDAP. ** Bug watch added: Debian Bug tracker #368297 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=368297 ** Bug watch added: Debian Bug tracker #658896 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=658896 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/423252 Title: NSS using LDAP+SSL breaks setuid applications like su, sudo, apache2 suexec, and atd To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu-release-notes/+bug/423252/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
