#57787 – Необходимо запускать сервис от непривелегированного пользователя

Bug 57787 - Необходимо запускать сервис от непривелегированного пользователя

Summary: Необходимо запускать сервис от непривелегированного пользователя

Status:	CLOSED FIXED

Alias:	None

Product:	Sisyphus
Classification:	Development
Component:	keycloak (show other bugs)
Version:	unstable
Hardware:	all Linux

Importance:	P5 critical
Assignee:	Andrey Cherepanov
QA Contact:	qa-sisyphus

URL:
Keywords:

Depends on:
Blocks:

Reported:	2026-02-06 19:05 MSK by Alexey Shabalin
Modified:	2026-02-23 10:35 MSK (History)
CC List:	1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Alexey Shabalin 2026-02-06 19:05:02 MSK

Запуск сервиса от root опасен.

Comment 1 Repository Robot 2026-02-23 10:35:30 MSK

keycloak-26.5.4-alt1 -> sisyphus:

Sun Feb 22 2026 Andrey Cherepanov <cas@altlinux> 26.5.4-alt1
- New version (fixes: CVE-2026-1190, CVE-2026-0707, CVE-2025-5416,
  CVE-2026-2575, CVE-2026-2733).
- Run service under non-privileged user (ALT #57787).
- Used certificates from /etc/keycloak/ssl.