-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 05 Jan 2016 18:48:03 +0000 Source: sudo Binary: sudo sudo-ldap Architecture: source Version: 1.8.5p2-1+nmu3+deb7u1 Distribution: wheezy-security Urgency: medium Maintainer: Bdale Garbee <bdale@gag.com> Changed-By: Ben Hutchings <ben@decadent.org.uk> Description: sudo - Provide limited super user privileges to specific users sudo-ldap - Provide limited super user privileges to specific users Closes: 804149 Changes: sudo (1.8.5p2-1+nmu3+deb7u1) wheezy-security; urgency=medium . * Non-maintainer upload * Fix CVE-2014-9680-{1,2}.patch to edit sudoers.pod, not just the generated docs * Disable editing of files via user-controllable symlinks (Closes: #804149) (CVE-2015-5602) - sudoedit path restriction bypass using symlinks - Change warning when user tries to sudoedit a symbolic link - Open sudoedit files with O_NONBLOCK and fail if they are not regular files - Remove S_ISREG check from sudo_edit_open(), it is already done in the caller - Add directory writability checks for sudoedit - Fix directory writability checks for sudoedit - Enable sudoedit directory writability checks by default Checksums-Sha1: 3eff89c542097326b8ff7e11ce97f25f52f14528 1959 sudo_1.8.5p2-1+nmu3+deb7u1.dsc 95194417f876b27f53559b4df6fbd639763fbbd4 95564 sudo_1.8.5p2-1+nmu3+deb7u1.debian.tar.xz Checksums-Sha256: 663ade0adb880e4693d8b0be936f274f9308c42978e0f8113efd92b72badf0d2 1959 sudo_1.8.5p2-1+nmu3+deb7u1.dsc 3011009364604bf9adccab4bcd65b1551b4cf398bef698d9ab3dd6f75efc2380 95564 sudo_1.8.5p2-1+nmu3+deb7u1.debian.tar.xz Files: 6fa73e4b848b9cbc8cd05eeb7922351a 1959 admin optional sudo_1.8.5p2-1+nmu3+deb7u1.dsc db482baf1d123b4f78aa10cf7103b5cb 95564 admin optional sudo_1.8.5p2-1+nmu3+deb7u1.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBVowbIue/yOyVhhEJAQq1zxAAiz4TEHIo/gzeccu9yG73vNvbQ38igY9b y/AeMG7tQHM1XbR4Ki9QiqMuJhWDz5MSbgE6Ub4EKuEX4ZByZ1VJhWGUl99JRcj9 uI15FlISH+MvMmSJHXgKb0pIUpwvxI1NXE//fy5hfmVg4UkLHrNVmciK4o0B6jEw n3UAF4yfEPo0wWJ41l1eLzD4OMGsRGcAV9MK92AenkYOKlM3Nf3vgBDKk2vnnYcU hpxLobz+lEV9eiWLUWyrcRgg1H8f7cFAcA69158Ul95MTeGbroIadtnz9YeQiL2p iWuLZAI/+IlC87vR0dRkHjyKKwKXXRRaCljeaXJVGS6lTd0BO9JRVi1T4rnVyTEw EZnofLf4W/ONmRRWeTxMZuRqQuSHa0nsVFumUpo2Qj6QY9WU7lCUvOsxRV/OEQwh 0IXcJkPcK9yOI1sb77E6YXiSGEgXfUXXpbhHhTfg6hVWBPMSSBgIDbpUY77uLHO2 HZOZhkh1YFYprammoIx8XvFxv3fyFLe8Meya7LLO25e83JZ+1j5fPMaYVvXAxCWd N+Vt/p8svnLHqwWJMQrk6k/89f6fBaNNF2+Tvlz0M14+P/7ThZ2CIXjXHpFZkEmG gxLIpm1N0OY9HKZmR8ZOLiDh/mBPfh1xzuIwnlap+p+UJJ4Rpcz+Gp8FsyfJBAQx lExOrGiMh9I= =/BZX -----END PGP SIGNATURE-----