Accepted sudo 1.6.7p5-2ubuntu2 (source)
Martin Pitt
martin.pitt at canonical.com
Wed Nov 17 12:00:01 CST 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 17 Nov 2004 18:54:30 +0100
Source: sudo
Binary: sudo
Architecture: source
Version: 1.6.7p5-2ubuntu2
Distribution: hoary
Urgency: low
Maintainer: Bdale Garbee <bdale at gag.com>
Changed-By: Martin Pitt <martin.pitt at canonical.com>
Description:
sudo - Provide limited super user privileges to specific users
Changes:
sudo (1.6.7p5-2ubuntu2) hoary; urgency=low
.
* SECURITY UPDATE: fix input validation flaw
* env.c, rebuild_env(): skip variables with values beginnig with "()" to
ignore exported bash functions in the sudo environment; this prevents
introducing malicious functions with the name of commands that are
executed without full path
* References:
http://www.sudo.ws/sudo/alerts/bash_functions.html
Files:
29480018314ded15cd338e5d7afc99d6 581 admin optional sudo_1.6.7p5-2ubuntu2.dsc
391fdddf48ee4d73f6093f452e5bc165 19644 admin optional sudo_1.6.7p5-2ubuntu2.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFBm5CUDecnbV4Fd/IRAiYrAKC367NtFMQdGlqsuHCkrzabA28s2wCgkG8S
lCrOI+YRl98RQofuG3xlVTw=
=49oB
-----END PGP SIGNATURE-----
Accepted:
sudo_1.6.7p5-2ubuntu2.diff.gz
to pool/main/s/sudo/sudo_1.6.7p5-2ubuntu2.diff.gz
sudo_1.6.7p5-2ubuntu2.dsc
to pool/main/s/sudo/sudo_1.6.7p5-2ubuntu2.dsc
More information about the hoary-changes
mailing list