thr3ads.net - Adduser devel - Bug#214546: adduser complains about insecure PATH setting when running setuid [Jun 2007]

If this information is useful, please help other people find it:
Share via:

Christoph Berg

2007-Jun-28 21:00 UTC

Bug#214546: adduser complains about insecure PATH setting when running setuid

found 214546 3.103
thanks

Re: Joerg Hoh 2007-06-24
<200706241150.14134.joerg@joerghoh.de>> Since the rewrite some time ago (and the introduction of "use
strict") the
> usage of the perl security features in adduser has been improved. Is this 
> problem still valid? 
Just tried it, still doesn''t work:

$ tail -1 /etc/super.tab 
adduser /usr/sbin/adduser cb env=PATH

$ super adduser foo
Adding user `foo'' ...
Adding new group `foo'' (1012) ...
Insecure $ENV{PATH} while running setuid at
/usr/share/perl5/Debian/AdduserCommon.pm line 161.

[exit 2]

Christoph
-- 
cb@df7cb.de | http://www.df7cb.de/

Debian Bug Tracking System

2007-Jun-28 21:03 UTC

head link

[Adduser-devel] Processed: Re: Bug#214546: adduser complains about insecure PATH setting when running setuid

Processing commands for control at bugs.debian.org:
> found 214546 3.103Bug#214546: adduser complains about insecure PATH setting when running setuid
Bug marked as found in version 3.103.
> thanksStopping processing here.

Please contact me if you need assistance.

Debian bug tracking system administrator
(administrator, Debian Bugs database)

Adduser devel - Jun 2007 - Bug#214546: adduser complains about insecure PATH setting when running setuid

Bug#214546: adduser complains about insecure PATH setting when running setuid

[Adduser-devel] Processed: Re: Bug#214546: adduser complains about insecure PATH setting when running setuid