-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Mon, 20 Mar 2006 22:56:30 +0100 Source: sudo Binary: sudo Architecture: source i386 Version: 1.6.8p7-1.4 Distribution: stable-security Urgency: medium Maintainer: Martin Schulze <joey@debian.org> Changed-By: Martin Schulze <joey@infodrom.org> Description: sudo - Provide limited super user privileges to specific users Changes: sudo (1.6.8p7-1.4) stable-security; urgency=medium . * Non-maintainer upload by the Security Team * Reworked the former patch to limit environment variables from being passed through, set env_reset as default instead [sudo.c, env.c, sudoers.pod, Bug#342948, CVE-2005-4158] * env_reset is now set by default * env_reset will preserve only HOME, LOGNAME, PATH, SHELL, TERM, DISPLAY, XAUTHORITY, XAUTHORIZATION, LANG, LANGUAGE, LC_*, and USER (in addition to the SUDO_* variables) * Rebuild sudoers.man.in from the POD file * Added README.Debian Files: 40676c986431100eef088b1f3b3c1e03 573 admin optional sudo_1.6.8p7-1.4.dsc 6cf5325a202a70e62c2a662e9de3d6c5 21602 admin optional sudo_1.6.8p7-1.4.diff.gz 9eda34ab034ad6ab65e4f3ea1876015e 160676 admin optional sudo_1.6.8p7-1.4_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFEKh+hW5ql+IAeqTIRAmvgAKCy/CKH4OCNLqLicFYuUY+LRoATwACgrmo1 4W9Xp7JuFb+4vV8RNEXPBSs= =L5x/ -----END PGP SIGNATURE----- Accepted: sudo_1.6.8p7-1.4.diff.gz to pool/main/s/sudo/sudo_1.6.8p7-1.4.diff.gz sudo_1.6.8p7-1.4.dsc to pool/main/s/sudo/sudo_1.6.8p7-1.4.dsc sudo_1.6.8p7-1.4_i386.deb to pool/main/s/sudo/sudo_1.6.8p7-1.4_i386.deb