sudo 1.8.27-1ubuntu4 source package in Ubuntu
Changelog
sudo (1.8.27-1ubuntu4) eoan; urgency=medium
* SECURITY UPDATE: privilege escalation via UID -1
- debian/patches/CVE-2019-14287.patch: treat an ID of -1 as invalid
in lib/util/strtoid.c.
- debian/patches/CVE-2019-14287-2.patch: fix and add to tests in
lib/util/regress/atofoo/atofoo_test.c,
plugins/sudoers/regress/testsudoers/test5.out.ok,
plugins/sudoers/regress/testsudoers/test5.sh.
- CVE-2019-14287
-- Marc Deslauriers <email address hidden> Tue, 15 Oct 2019 07:09:02 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Eoan
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- admin
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| sudo_1.8.27.orig.tar.gz | 3.1 MiB | 7beb68b94471ef56d8a1036dbcdc09a7b58a949a68ffce48b83f837dd33e2ec0 |
| sudo_1.8.27-1ubuntu4.debian.tar.xz | 32.1 KiB | a22b0b149a7ae089c7f53a7b78f0bc7ff52a45947a7613d981cfc314a89196ba |
| sudo_1.8.27-1ubuntu4.dsc | 2.0 KiB | 765751e16b69c5adf318b7b05b06d59101a2cb5efa4020d9fc9a00ffe8d97aae |
Available diffs
Binary packages built by this source
- sudo: No summary available for sudo in ubuntu eoan.
No description available for sudo in ubuntu eoan.
- sudo-dbgsym: debug symbols for sudo
- sudo-ldap: Provide limited super user privileges to specific users
Sudo is a program designed to allow a sysadmin to give limited root
privileges to users and log root activity. The basic philosophy is to give
as few privileges as possible but still allow people to get their work done.
.
This version is built with LDAP support, which allows an equivalent of the
sudoers database to be distributed via LDAP. Authentication is still
performed via pam.
- sudo-ldap-dbgsym: No summary available for sudo-ldap-dbgsym in ubuntu eoan.
No description available for sudo-ldap-dbgsym in ubuntu eoan.
