sudo (1.8.3p1-1ubuntu3.4) precise-security; urgency=low
* SECURITY UPDATE: authentication bypass via clock set to epoch
- debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
set to epoch in plugins/sudoers/check.c.
- CVE-2013-1775
sudo (1.8.3p1-1ubuntu3.3) precise-proposed; urgency=low
* debian/patches/pam_env_merge.patch: Merge the PAM environment into the
user environment (LP: #982684)
* debian/sudo.pam: Use pam_env to read /etc/environment and
/etc/default/locale environment files. Reading ~/.pam_environment is not
permitted due to security reasons.
Date: 2013-02-27 18:50:16.596918+00:00
Changed-By: Marc Deslauriers <[email protected]>
https://launchpad.net/ubuntu/precise/+source/sudo/1.8.3p1-1ubuntu3.4
Sorry, changesfile not available.
--
Precise-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/precise-changes