[website] r1666 - in html/trunk/blfs/errata: 10.0 10.0-systemd

Tue, 26 Jan 2021 18:05:29 -0800 

Author: renodr
Date: Tue Jan 26 18:05:18 2021
New Revision: 1666

Log:
Errata: Update errata for sudo

Modified:
   html/trunk/blfs/errata/10.0-systemd/index.html
   html/trunk/blfs/errata/10.0/index.html

Modified: html/trunk/blfs/errata/10.0-systemd/index.html
==============================================================================
--- html/trunk/blfs/errata/10.0-systemd/index.html      Tue Jan 26 13:36:04 
2021        (r1665)
+++ html/trunk/blfs/errata/10.0-systemd/index.html      Tue Jan 26 18:05:18 
2021        (r1666)
@@ -263,10 +263,12 @@
            this vulnerability, update to poppler-21.01.0 or higher using the
            instructions in
            <a 
href="../../view/systemd/general/poppler.html">poppler-21.01.0</a>.</li>
-       <li>After release, multiple security vulnerabilities were discovered in 
-           Sudo before 1.9.5p1. To fix these vulnerabilities, update to
-           Sudo-1.9.5p1 or later using the instructions in
-           <a 
href="../../view/systemd/postlfs/sudo.html">sudo-1.9.5p1</a>.</li>
+       <li>After release, multiple security vulnerabilities were discovered in
+           Sudo before 1.9.5p2. One of these allows for an unprivileged user to
+           gain root access via the sudoedit command. To fix these 
+           vulnerabilities, update to Sudo-1.9.5p2 or later using the 
+           instructions in
+           <a 
href="../../view/systemd/postlfs/sudo.html">sudo-1.9.5p2</a>.</li>
        <li>Various vulnerabilities in ImageMagick were found, including various
            things leading to a Denial of Service (crash), and also the
            possibility to inject additional shell commands when accessing a

Modified: html/trunk/blfs/errata/10.0/index.html
==============================================================================
--- html/trunk/blfs/errata/10.0/index.html      Tue Jan 26 13:36:04 2021        
(r1665)
+++ html/trunk/blfs/errata/10.0/index.html      Tue Jan 26 18:05:18 2021        
(r1666)
@@ -256,9 +256,11 @@
            instructions in
            <a 
href="../../view/svn/general/poppler.html">poppler-21.01.0</a>.</li>
        <li>After release, multiple security vulnerabilities were discovered in
-           Sudo before 1.9.5p1. To fix these vulnerabilities, update to
-           Sudo-1.9.5p1 or later using the instructions in
-           <a href="../../view/svn/postlfs/sudo.html">sudo-1.9.5p1</a>.</li>
+           Sudo before 1.9.5p2. One of these allows for an unprivileged user to
+           gain root access via the sudoedit command. To fix these 
+           vulnerabilities, update to Sudo-1.9.5p2 or later using the 
+           instructions in
+           <a href="../../view/svn/postlfs/sudo.html">sudo-1.9.5p2</a>.</li>
        <li>Various vulnerabilities in ImageMagick were found, including various
            things leading to a Denial of Service (crash), and also the
            possibility to inject additional shell commands when accessing a
-- 
http://lists.linuxfromscratch.org/listinfo/website
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page

Reply via email to