-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 02 Mar 2010 15:22:43 +0100 Source: sudo Binary: sudo sudo-ldap Architecture: source i386 Version: 1.6.9p17-2+lenny1 Distribution: stable-security Urgency: high Maintainer: Bdale Garbee <bdale@gag.com> Changed-By: Giuseppe Iuculano <iuculano@debian.org> Description: sudo - Provide limited super user privileges to specific users sudo-ldap - Provide limited super user privileges to specific users Closes: 570737 Changes: sudo (1.6.9p17-2+lenny1) stable-security; urgency=high . * Non-maintainer upload by the Security Team. * Fixed CVE-2010-0426: verify path for the 'sudoedit' pseudo-command (Closes: #570737) * Fixed CVE-2010-0427: When changing the runas user, reset any aux runas groups we have cached. Checksums-Sha1: bd1ab3e7bd362f06cca074fb1e7e0f33e3f87c6f 1032 sudo_1.6.9p17-2+lenny1.dsc 576a584eee413e12294cbd2ca6f445e51a1cb103 593534 sudo_1.6.9p17.orig.tar.gz 1be755452d4f19fab4907307e3ec93c0150716cd 22997 sudo_1.6.9p17-2+lenny1.diff.gz 757f693d9510d24defcc58a1becc2801990b1e92 175988 sudo_1.6.9p17-2+lenny1_i386.deb 42c03a061da577a60b306682047833fe257574d8 187528 sudo-ldap_1.6.9p17-2+lenny1_i386.deb Checksums-Sha256: 6d1c4ffcf41c0d29110e49b00691e57875b35ca6f9ec4482ec8c3b7d4a780dce 1032 sudo_1.6.9p17-2+lenny1.dsc 1e2cd4ff684c6f542b7e392010021f36b201d074620dad4d7689da60f9c74596 593534 sudo_1.6.9p17.orig.tar.gz 59993cd27e8051c99f8ed48ec2afb6ce192c8da18f982c23868fb20a0654fac5 22997 sudo_1.6.9p17-2+lenny1.diff.gz 4c0418934e2671125b1ebce3aa0db78cd4458e6ae379bab1f2da13243441f7e2 175988 sudo_1.6.9p17-2+lenny1_i386.deb 0ca4c94c80245ad2c754f0d1a0e199ef542325241535f901f22ee8b09df9bd03 187528 sudo-ldap_1.6.9p17-2+lenny1_i386.deb Files: fc42a6b45a2e2c114c14cba892635d22 1032 admin optional sudo_1.6.9p17-2+lenny1.dsc 60daf18f28e2c1eb7641c4408e244110 593534 admin optional sudo_1.6.9p17.orig.tar.gz 9980866e257817e8281fd036141ccbd0 22997 admin optional sudo_1.6.9p17-2+lenny1.diff.gz 3d63bc2bc801dbc5ad696a002a250c1f 175988 admin optional sudo_1.6.9p17-2+lenny1_i386.deb 70c225149240e5b20eae98ba82404de7 187528 admin optional sudo-ldap_1.6.9p17-2+lenny1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAkuNNZQACgkQNxpp46476apPWACfWHRt3Z0r9bw0fl3W31bEy3Mw hCgAmgPcl9nZYTdSsMDDXPbLv3UDjPhW =NaFZ -----END PGP SIGNATURE----- Accepted: sudo-ldap_1.6.9p17-2+lenny1_i386.deb to main/s/sudo/sudo-ldap_1.6.9p17-2+lenny1_i386.deb sudo_1.6.9p17-2+lenny1.diff.gz to main/s/sudo/sudo_1.6.9p17-2+lenny1.diff.gz sudo_1.6.9p17-2+lenny1.dsc to main/s/sudo/sudo_1.6.9p17-2+lenny1.dsc sudo_1.6.9p17-2+lenny1_i386.deb to main/s/sudo/sudo_1.6.9p17-2+lenny1_i386.deb