14814 – Got notification message from PID xxxxx, but reception only permitted for main PID xxx

Bug 14814 - Got notification message from PID xxxxx, but reception only permitted for main PID xxx

Summary: Got notification message from PID xxxxx, but reception only permitted for mai...

Status:	NEW

Alias:	None

Product:	Samba 4.1 and newer
Classification:	Unclassified
Component:	AD: LDB/DSDB/SAMDB (show other bugs)
Version:	unspecified
Hardware:	All All

Importance:	P5 normal (vote)
Target Milestone:	---
Assignee:	Samba QA Contact
QA Contact:	Samba QA Contact

URL:
Keywords:

Depends on:
Blocks:

Reported:	2021-08-31 09:43 UTC by Louis
Modified:	2021-09-01 15:35 UTC (History)
CC List:	0 users

See Also:

Attachments
patch to fix service for samba-ad-dc after CVE on systemd (829 bytes, patch) 2021-08-31 10:24 UTC, Louis	no flags	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Louis 2021-08-31 09:43:14 UTC

On debian we got recent (CVE) systemd update causes Pid messages from Samba-AD-DC service. I dont know the implecations of it. 

Upstream debian BugNR : #993347 

I suspect its in all versions using recent systemd. 
The (debian) fix is adding : NotifyAccess=all to the samba-ad-dc.service file. 

i would like to see this in 4.15.0 before it gets out.

Comment 1 Louis 2021-08-31 10:24:51 UTC

Created attachment 16755 [details]
patch to fix service for samba-ad-dc after CVE on systemd

This patch reverts 1 of the changes in d1740fb3
Suggested by Debian Maintainer Matieu. 

Confirmed on samba list and me.