-
sudo (1.7.4p6-1ubuntu2.2) oneiric-security; urgency=low
* SECURITY UPDATE: authentication bypass via clock set to epoch
- debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
set to epoch in check.c.
- CVE-2013-1775
-- Marc Deslauriers <email address hidden> Wed, 27 Feb 2013 13:38:01 -0500
-
sudo (1.7.4p6-1ubuntu2.1) oneiric-security; urgency=low
* SECURITY UPDATE: Properly handle multiple netmasks in sudoers Host and
Host_List values
- debian/patches/CVE-2012-2337.patch: Don't perform IPv6 checks on IPv4
addresses. Based on upstream patch.
- CVE-2012-2337
-- Tyler Hicks <email address hidden> Tue, 15 May 2012 23:28:04 -0500
-
sudo (1.7.4p6-1ubuntu2) oneiric; urgency=low
* debian/patches/enable_badpass.patch: turn on "mail_badpass" by default:
- attempting sudo without knowing a login password is as bad as not
being listed in the sudoers file, especially if getting the password
wrong means doing the access-check-email-notification never happens
(Closes: 641218).
-- Kees Cook <email address hidden> Sun, 11 Sep 2011 10:29:08 -0700
-
sudo (1.7.4p6-1ubuntu1) oneiric; urgency=low
* Merge from debian/unstable, remaining changes:
- debian/patches/keep_home_by_default.patch:
+ Set HOME in initial_keepenv_table.
- debian/rules:
+ compile with --without-lecture --with-tty-tickets (Ubuntu specific)
+ install man/man8/sudo_root.8 (Ubuntu specific)
+ install apport hooks
- debian/sudoers:
+ grant admin group sudo access
- debian/sudo-ldap.dirs, debian/sudo.dirs:
+ add usr/share/apport/package-hooks
* drop debian/patches/CVE-2011-0010.patch, applied upstream now
sudo (1.7.4p6-1) unstable; urgency=low
* new upstream version
* touch the right stamp name after configuring, closes: #611287
* patch from Svante Signell to fix build problem on Hurd, closes: #611290
sudo (1.7.4p4-6) unstable; urgency=low
* update /etc/sudoers.d/README now that sudoers is a conffile
* patch from upstream to fix special case in password checking code
when only the gid is changing, closes: #609641
-- Michael Vogt <email address hidden> Mon, 23 May 2011 09:50:37 +0200
-
sudo (1.7.4p4-5ubuntu8) oneiric; urgency=low
* debian/sudo.preinst:
- if well-known ec2 vmbuilder file is found, write a file in
sudoers.d for the 'ubuntu' user (LP: #768625)
-- Scott Moser <email address hidden> Thu, 21 Apr 2011 18:04:34 -0400
-
sudo (1.7.4p4-5ubuntu7) natty; urgency=low
* debian/sudo.preinst:
- do not consider the ec2 vmbuilder default sudoers file
verbatim as its actually customized (LP: #761689)
-- Michael Vogt <email address hidden> Fri, 15 Apr 2011 16:40:10 +0200