Warning messages about unsandboxed downloads
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
apt (Debian) |
Fix Released
|
Unknown
|
|||
apt (Ubuntu) |
Fix Released
|
Low
|
Unassigned | ||
Hirsute |
Fix Released
|
Low
|
Unassigned | ||
aptitude (Debian) |
Fix Released
|
Unknown
|
|||
aptitude (Ubuntu) |
Fix Released
|
Low
|
Unassigned | ||
Xenial |
Confirmed
|
Low
|
Unassigned | ||
Hirsute |
Fix Released
|
Low
|
Unassigned | ||
synaptic (Debian) |
New
|
Unknown
|
|||
synaptic (Ubuntu) |
Triaged
|
Low
|
Unassigned | ||
Xenial |
Confirmed
|
Low
|
Unassigned | ||
Hirsute |
Won't Fix
|
Low
|
Unassigned | ||
update-notifier (Ubuntu) |
Fix Released
|
Medium
|
Julian Andres Klode | ||
Xenial |
Fix Released
|
Medium
|
Julian Andres Klode | ||
Hirsute |
Fix Released
|
Medium
|
Julian Andres Klode |
Bug Description
READ ME FIRST
=============
This is only a regression on a cosmetic level. Previous versions of apt did not have any sandboxing whatsoever, so this means apt reverted back to that old behavior.
update-notifier SRU
-------------------
[Impact]
Cosmetic. Warnings when installing packages using update-notifier downloading stuff
[Test case]
Install flashplugin-
W: Can't drop privileges for downloading as file '...' couldn't be accessed by user '_apt'
[Regression Potential]
It just chowns /var/lib/
Original report
---------------
Recently we got new versions for synaptic 0.82+build1 & apt 1.1.3, but now get that error when installing/
Setting up libc6-dbg:amd64 (2.21-0ubuntu5) ...
Processing triggers for libc-bin (2.21-0ubuntu5) ...
W: Can't drop privileges for downloading as file '/root/
From nautilus, i'm seeing a /root/ folder locked (x on its icon) and the folder is empty (no /.synaptic/ sub-folder or file), so the above error.
oem@u64:~$ ls -l .synaptic
total 4
-rw-rw-r-- 1 oem oem 0 Aug 25 11:19 options
-rw-rw-r-- 1 oem oem 236 Aug 25 11:19 synaptic.conf
oem@u64:~$ ls -l /var/lib/apt/lists/
....
-rw-r----- 1 root root 0 Sep 20 06:36 lock
drwx------ 2 _apt root 16384 Sep 24 15:25 partial
......
oem@u64:~$ sudo ls -l /var/lib/
.....
drwxr-xr-x 2 _apt root 4096 Sep 22 23:33 partial
ProblemType: Bug
DistroRelease: Ubuntu 16.04
Package: synaptic 0.82+build1
ProcVersionSign
Uname: Linux 4.3.0-1-generic x86_64
NonfreeKernelMo
ApportVersion: 2.19.2-0ubuntu8
Architecture: amd64
CurrentDesktop: GNOME
Date: Fri Dec 4 05:23:25 2015
SourcePackage: synaptic
UpgradeStatus: No upgrade log present (probably fresh install)
Changed in synaptic (Ubuntu): | |
importance: | Undecided → High |
importance: | High → Medium |
Changed in apt (Ubuntu): | |
importance: | Undecided → Critical |
Changed in synaptic (Ubuntu): | |
importance: | Medium → Critical |
Changed in synaptic (Ubuntu): | |
status: | Confirmed → Invalid |
Changed in synaptic (Ubuntu): | |
status: | Invalid → Triaged |
importance: | Critical → Low |
summary: |
- /root/.synaptic/ not created + /root/.synaptic/ not created due to locking status |
Changed in synaptic (Debian): | |
status: | Unknown → New |
tags: |
added: regression-update removed: regression |
tags: | added: yakkety |
description: | updated |
description: | updated |
summary: |
- /root/.synaptic/ not created due to locking status + Can't drop privileges for downloading : _apt user not created |
no longer affects: | synaptic (Ubuntu) |
no longer affects: | apt (Ubuntu) |
description: | updated |
summary: |
- Can't drop privileges for downloading : _apt user not created + Can't drop privileges for downloading : _apt user not allowed |
Changed in dpkg (Ubuntu): | |
importance: | Undecided → Critical |
importance: | Critical → Medium |
description: | updated |
Changed in apt (Ubuntu): | |
importance: | Undecided → Medium |
tags: | added: zesty |
Changed in apt (Debian): | |
status: | Unknown → New |
Changed in msttcorefonts (Ubuntu): | |
status: | New → Invalid |
no longer affects: | msttcorefonts (Ubuntu) |
Changed in apt (Debian): | |
status: | New → Fix Committed |
summary: |
- Can't drop privileges for downloading : _apt user not allowed + Needless scary warning: Can't drop privileges for downloading : _apt + user not allowed |
Changed in apt (Debian): | |
status: | Fix Committed → Fix Released |
Changed in apt (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in apt (Ubuntu): | |
status: | Fix Released → New |
summary: |
- Needless scary warning: Can't drop privileges for downloading : _apt + Needless scary warning: Download is performed unsandboxed as root: _apt user not allowed |
no longer affects: | dpkg (Ubuntu) |
Changed in apt (Ubuntu): | |
status: | New → Confirmed |
Changed in apt (Ubuntu): | |
status: | Confirmed → Fix Released |
summary: |
- Needless scary warning: Download is performed unsandboxed as root: _apt - user not allowed + Warning messages about unsandboxed downloads |
affects: | flashplugin-nonfree (Ubuntu) → update-notifier (Ubuntu) |
Changed in update-notifier (Ubuntu): | |
status: | New → Confirmed |
no longer affects: | msttcorefonts (Ubuntu) |
Changed in update-notifier (Ubuntu): | |
status: | New → Confirmed |
Changed in update-notifier (Ubuntu): | |
importance: | Undecided → Medium |
no longer affects: | update-notifier (Ubuntu Xenial) |
no longer affects: | apt (Ubuntu Xenial) |
Changed in synaptic (Debian): | |
importance: | Unknown → Undecided |
status: | New → Invalid |
Changed in update-notifier (Ubuntu): | |
status: | Confirmed → Incomplete |
no longer affects: | apt (Ubuntu) |
Changed in apt (Ubuntu): | |
status: | New → Fix Released |
importance: | Undecided → Low |
Changed in update-notifier (Ubuntu): | |
status: | Incomplete → Triaged |
affects: | synaptic (Debian) → synaptic (Ubuntu) |
Changed in synaptic (Ubuntu): | |
status: | Invalid → Confirmed |
importance: | Undecided → Medium |
status: | Confirmed → Triaged |
no longer affects: | synaptic (Debian) |
Changed in aptitude (Debian): | |
status: | Unknown → Fix Released |
Changed in update-notifier (Ubuntu): | |
assignee: | nobody → Julian Andres Klode (juliank) |
Changed in aptitude (Ubuntu): | |
status: | New → Fix Released |
Changed in update-notifier (Ubuntu): | |
status: | Triaged → Fix Committed |
Changed in synaptic (Debian): | |
status: | Unknown → New |
Changed in update-notifier (Ubuntu): | |
status: | Fix Committed → Fix Released |
tags: |
added: artful bionic removed: yakkety |
tags: | removed: zesty |
description: | updated |
Changed in synaptic (Ubuntu): | |
importance: | Medium → Low |
description: | updated |
description: | updated |
description: | updated |
Changed in synaptic (Ubuntu Xenial): | |
importance: | Undecided → Low |
Changed in aptitude (Ubuntu): | |
importance: | Undecided → Low |
Changed in aptitude (Ubuntu Xenial): | |
importance: | Undecided → Low |
tags: | removed: regression-update |
tags: |
added: focal hirsute impish removed: artful |
tags: |
added: jammy removed: hirsute |
Status changed to 'Confirmed' because the bug affects multiple users.