Launchpad has imported 6 comments from the remote bug at http://bugs.exim.org/show_bug.cgi?id=2738.
If you reply to an imported comment from within Launchpad, your comment will be sent to the remote bug automatically. Read more about Launchpad's inter-bugtracker facilities at https://help.launchpad.net/InterBugTracking. ------------------------------------------------------------------------ On 2021-05-07T08:41:18+00:00 Timothy Allen wrote: Since the latest release, no PID file is created in /run/exim4/exim.pid when Exim is run. No local configuration changes have been made between the working and non-working versions. The command line arguments are '/usr/sbin/exim4 -bd -q30m', and there are no PID-related configuration arguments set. I presume this is related to the fix for CVE-2020-28014: 'An attacker who obtained the privileges of the "exim" user can abuse the -oP override_pid_file_path option to create (or overwrite) an arbitrary file, as root'. If this new behaviour is intentional, then the documentation may need updating. This is on Ubuntu 20.04, exim version 4.93-13ubuntu1.5. Version 4.93-13ubuntu1.1 (released in May 2020) works correctly. Thanks! Reply at: https://bugs.launchpad.net/ubuntu/+source/exim4/+bug/1927725/comments/0 ------------------------------------------------------------------------ On 2021-05-07T10:47:43+00:00 Lena-t wrote: Under FreeBSD I see /var/run/exim.pid with the same PID as Exim process. Reply at: https://bugs.launchpad.net/ubuntu/+source/exim4/+bug/1927725/comments/1 ------------------------------------------------------------------------ On 2021-05-07T11:21:43+00:00 Exim wrote: Ubuntu 20.10 #apt show exim4 Package: exim4 Version: 4.94-15ubuntu1.2 Priority: optional Section: mail Origin: Ubuntu Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> Original-Maintainer: Exim4 Maintainers <pkg-exim4-maintain...@lists.alioth.debian.org> .... # sudo service exim4 stop # sudo rm -rf /run/exim4 # ls -lRau /run/exim4 ls: cannot access '/run/exim4': No such file or directory # sudo service exim4 start # ls -lRau /run/exim4 /run/exim4: total 4 drwxr-x--- 2 Debian-exim Debian-exim 60 May 7 12:15 ./ drwxr-xr-x 43 root root 1400 May 7 12:09 ../ -rw-r--r-- 1 root Debian-exim 8 May 7 12:14 exim.pid # cat /run/exim4/exim.pid 2841396 # cat /proc/2841396/cmdline /usr/sbin/exim4-oP/run/exim4/exim.pid-q30m # # Note the "-oP/run/exim4/exim.pid" option (there is a hidden '\000' before each '-'), which suggests this issue is about how the daemon is started in Ubuntu 20.04. Reply at: https://bugs.launchpad.net/ubuntu/+source/exim4/+bug/1927725/comments/2 ------------------------------------------------------------------------ On 2021-05-07T11:25:16+00:00 Exim wrote: > Note the "-oP/run/exim4/exim.pid" option > (there is a hidden '\000' before each '-'), #hexdump -C /proc/2841396/cmdline 00000000 2f 75 73 72 2f 73 62 69 6e 2f 65 78 69 6d 34 00 |/usr/sbin/exim4.| 00000010 2d 6f 50 00 2f 72 75 6e 2f 65 78 69 6d 34 2f 65 |-oP./run/exim4/e| 00000020 78 69 6d 2e 70 69 64 00 2d 71 33 30 6d 00 |xim.pid.-q30m.| 0000002e So there is a hidden null after each '-' and between 'P' and '/'. Reply at: https://bugs.launchpad.net/ubuntu/+source/exim4/+bug/1927725/comments/4 ------------------------------------------------------------------------ On 2021-05-07T11:30:35+00:00 Jgh146exb wrote: That null seems normal, for a command line that has been split into an argv[]. I see similar for a random process on f32. Reply at: https://bugs.launchpad.net/ubuntu/+source/exim4/+bug/1927725/comments/5 ------------------------------------------------------------------------ On 2021-05-07T11:34:26+00:00 Timothy Allen wrote: Thank you both. There seems to have been some issue during the upgrade that blocked the creation of the PID file. Manually killing the exim process and re-starting it seems to have fixed the issue. Apologies for the noise! Reply at: https://bugs.launchpad.net/ubuntu/+source/exim4/+bug/1927725/comments/6 ** Changed in: exim Status: Unknown => Invalid ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-28014 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1927725 Title: PID file no longer created To manage notifications about this bug go to: https://bugs.launchpad.net/exim/+bug/1927725/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
