Debian Package Tracker

From: Ben Hutchings <ben@decadent.org.uk>
To: <debian-changes@lists.debian.org>
Subject: Accepted sudo 1.8.10p3-1+deb8u3 (source) into proposed-updates->stable-new, proposed-updates
Date: Thu, 14 Jan 2016 23:17:09 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 05 Jan 2016 19:37:34 +0000
Source: sudo
Binary: sudo sudo-ldap
Architecture: source
Version: 1.8.10p3-1+deb8u3
Distribution: jessie-security
Urgency: medium
Maintainer: Bdale Garbee <bdale@gag.com>
Changed-By: Ben Hutchings <ben@decadent.org.uk>
Description:
 sudo       - Provide limited super user privileges to specific users
 sudo-ldap  - Provide limited super user privileges to specific users
Closes: 804149
Changes:
 sudo (1.8.10p3-1+deb8u3) jessie-security; urgency=medium
 .
   * Non-maintainer upload
   * Disable editing of files via user-controllable symlinks
     (Closes: #804149) (CVE-2015-5602)
     - sudoedit path restriction bypass using symlinks
     - Change warning when user tries to sudoedit a symbolic link
     - Open sudoedit files with O_NONBLOCK and fail if they are not regular files
     - Remove S_ISREG check from sudo_edit_open(), it is already done in the
       caller
     - Add directory writability checks for sudoedit
     - Fix directory writability checks for sudoedit
     - Enable sudoedit directory writability checks by default
Checksums-Sha1:
 a78ae5edd23eab94de70c67b43814e950fd2548a 1999 sudo_1.8.10p3-1+deb8u3.dsc
 ed45b25da17c82e0d2cfed98cb4bfd45617c91d9 2262370 sudo_1.8.10p3.orig.tar.gz
 0f8cde331547cef187863b701d3dc133bf6c0c40 100872 sudo_1.8.10p3-1+deb8u3.debian.tar.xz
Checksums-Sha256:
 3b45c5c5ded8b9884302bf86d759e0997fccd386ee7003a90463c77a1d0ba9f2 1999 sudo_1.8.10p3-1+deb8u3.dsc
 6eda135fa68163108f1c24de6975de5ddb09d75730bb62d6390bda7b04345400 2262370 sudo_1.8.10p3.orig.tar.gz
 5b365f9ebec1a79a76aa6d72b83b14232abe493de106c38cb46504b896e6ed8c 100872 sudo_1.8.10p3-1+deb8u3.debian.tar.xz
Files:
 bdd0efc63d3b83294baa4a8e4e29781d 1999 admin optional sudo_1.8.10p3-1+deb8u3.dsc
 fcd8d0d9f9f0397d076ee901e242ed39 2262370 admin optional sudo_1.8.10p3.orig.tar.gz
 de8a725b548cffd954c6990f3f24becd 100872 admin optional sudo_1.8.10p3-1+deb8u3.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=Zwf9
-----END PGP SIGNATURE-----
News for package sudo
