Hello community, here is the log from the commit of package sudo for openSUSE:Factory checked in at 2020-09-14 12:03:54 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/sudo (Old) and /work/SRC/openSUSE:Factory/.sudo.new.4249 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "sudo" Mon Sep 14 12:03:54 2020 rev:115 rq:833520 version:1.9.2 Changes: -------- --- /work/SRC/openSUSE:Factory/sudo/sudo.changes 2020-09-01 20:05:43.524546312 +0200 +++ /work/SRC/openSUSE:Factory/.sudo.new.4249/sudo.changes 2020-09-14 12:05:30.651760510 +0200 @@ -1,0 +2,7 @@ +Mon Sep 7 08:01:05 UTC 2020 - Marco Varlese <marco.varl...@suse.com> + +- Modified the secure_path to include the other two default paths + which are commonly available to $user. This will offer a better + and more consistent UX. + +------------------------------------------------------------------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ sudo-sudoers.patch ++++++ --- /var/tmp/diff_new_pack.sOLckM/_old 2020-09-14 12:05:31.367761246 +0200 +++ /var/tmp/diff_new_pack.sOLckM/_new 2020-09-14 12:05:31.367761246 +0200 @@ -34,7 +34,7 @@ +## unexpected or harmful way (CVE-2005-2959, CVE-2005-4158, CVE-2006-0151) +Defaults always_set_home +## Path that will be used for every command run from sudo -+Defaults secure_path="/usr/sbin:/usr/bin:/sbin:/bin" ++Defaults secure_path="/usr/sbin:/usr/bin:/sbin:/bin:/usr/local/bin:/usr/local/sbin" +Defaults env_reset +## Change env_reset to !env_reset in previous line to keep all environment variables +## Following list will no longer be necessary after this change