Sudo insults are now included by default, but disabled unless the --with-insults configure option is specified or the insults sudoers option is enabled.
Fixes CVE-2025-32462 and CVE-2025-32463. Changelog: https://www.sudo.ws/releases/stable/#1.9.17p1 Signed-off-by: Bruno Thomsen <[email protected]> --- rules/sudo.make | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/rules/sudo.make b/rules/sudo.make index 83c3e7f8e..0b4bcc81c 100644 --- a/rules/sudo.make +++ b/rules/sudo.make @@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_SUDO) += sudo # # Paths and names # -SUDO_VERSION := 1.9.15p5 -SUDO_MD5 := 4166279cb188ecb6641c7a2ba5f68270 +SUDO_VERSION := 1.9.17p1 +SUDO_MD5 := 231106344ffe541fa8e0bd4caf322497 SUDO := sudo-$(SUDO_VERSION) SUDO_SUFFIX := tar.gz SUDO_URL := \ @@ -73,7 +73,6 @@ SUDO_CONF_OPT := \ --disable-tmpfiles.d \ --disable-devsearch \ --disable-sasl \ - --disable-offensive-insults \ --disable-package-build \ --disable-gss-krb5-ccache-name \ --disable-pvs-studio \ -- 2.50.0
