sudo (1.7.2p7-1ubuntu1) maverick; urgency=low
* Merge from debian unstable. Remaining changes:
- debian/rules:
- compile with --without-lecture --with-tty-tickets (Ubuntu specific)
- install man/man8/sudo_root.8 (Ubuntu specific)
- install apport hooks
- debian/sudo-ldap.dirs, debian/sudo.dirs: add
usr/share/apport/package-hooks
- debian/patches/ubuntu-sudo-as-admin-successful.patch: adjust sudo.c so
that if the user successfully authenticated and he is in the 'admin'
group, then create a stamp ~/.sudo_as_admin_successful. Our default bash
profile checks for this and displays a short intro about sudo if the flag
is not present
* Dropped the following, now included upstream:
- fix for CVE-2010-1163
- fix for CVE-2010-0426
- debian/sudo.postinst, debian/sudo-ldap.postinst: update description to
match behavior in sudoers file
- don't install init script. Debian moved to /var/lib/sudo from
/var/run/sudo, so Ubuntu's tmpfs usage won't clean those out
automatically any more, so we now need the initscript.
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-0426
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-1163
** Changed in: sudo (Ubuntu Maverick)
Status: Fix Committed => Fix Released
--
Circumvention of sudo's secure path option
https://bugs.launchpad.net/bugs/588928
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
