Hi Ross, This seems to be fixed in master. I checked the code.
//Sona From: Burton, Ross [mailto:[email protected]] Sent: den 9 augusti 2016 13:54 To: Sona Sarmadi <[email protected]> Cc: OE-core <[email protected]> Subject: Re: [OE-core] [PATCH][krogoth] sudo: CVE-2015-8239 On 9 August 2016 at 12:04, Sona Sarmadi <[email protected]<mailto:[email protected]>> wrote: Fixes race condition when checking digests in sudoers. Reference: http://seclists.org/oss-sec/2015/q4/327 Reference to upstream fixes: https://www.sudo.ws/repos/sudo/raw-rev/397722cdd7ec https://www.sudo.ws/repos/sudo/raw-rev/0cd3cc8fa195 Is this applicable to master too, and should be backport it jethro? Ross
-- _______________________________________________ Openembedded-core mailing list [email protected] http://lists.openembedded.org/mailman/listinfo/openembedded-core
