Format: 1.8
Date: Tue, 19 Jan 2021 09:48:09 -0500
Source: sudo
Binary: sudo sudo-ldap
Architecture: arm64 arm64_translations
Version: 1.8.16-0ubuntu1.10
Distribution: xenial
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-arm64-034.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 sudo       - Provide limited super user privileges to specific users
 sudo-ldap  - Provide limited super user privileges to specific users
Changes:
 sudo (1.8.16-0ubuntu1.10) xenial-security; urgency=medium
 .
   * SECURITY UPDATE: dir existence issue via sudoedit race
     - debian/patches/CVE-2021-23239.patch: fix potential directory existing
       info leak in sudoedit in src/sudo_edit.c.
     - CVE-2021-23239
   * SECURITY UPDATE: heap-based buffer overflow
     - debian/patches/CVE-2021-3156-pre1.patch: check lock record size in
       plugins/sudoers/timestamp.c.
     - debian/patches/CVE-2021-3156-pre2.patch: sanity check size when
       converting the first record to TS_LOCKEXCL in
       plugins/sudoers/timestamp.c.
     - debian/patches/CVE-2021-3156-1.patch: reset valid_flags to
       MODE_NONINTERACTIVE for sudoedit in src/parse_args.c.
     - debian/patches/CVE-2021-3156-2.patch: add sudoedit flag checks in
       plugin in plugins/sudoers/policy.c.
     - debian/patches/CVE-2021-3156-3.patch: fix potential buffer overflow
       when unescaping backslashes in plugins/sudoers/sudoers.c.
     - debian/patches/CVE-2021-3156-4.patch: fix the memset offset when
       converting a v1 timestamp to TS_LOCKEXCL in
       plugins/sudoers/timestamp.c.
     - debian/patches/CVE-2021-3156-5.patch: don't assume that argv is
       allocated as a single flat buffer in src/parse_args.c.
     - CVE-2021-3156
Checksums-Sha1:
 2bdf963b7a572e5e730b771b2b65d3233afe4111 458254 sudo-dbgsym_1.8.16-0ubuntu1.10_arm64.ddeb
 76bd540c32bfd6145b7152fee1ff3a5fcbfffff4 477370 sudo-ldap-dbgsym_1.8.16-0ubuntu1.10_arm64.ddeb
 4e4df44938e3ac2b97d0ce8a8fb4cc23f6bfe5c7 375700 sudo-ldap_1.8.16-0ubuntu1.10_arm64.deb
 e3175ebe1fcc62d77e2354a2c7c6755c6fea3097 346906 sudo_1.8.16-0ubuntu1.10_arm64.deb
 ffe43a858d09306f90ccadce90f6b000a09b95c1 1445144 sudo_1.8.16-0ubuntu1.10_arm64_translations.tar.gz
Checksums-Sha256:
 e7d8c28ddf4d5ab8d844185036ac0c339f87b02a205ebf9cb6f592f673371c31 458254 sudo-dbgsym_1.8.16-0ubuntu1.10_arm64.ddeb
 31b333fb10e48a8808e164f996dd1e65204f26d6d6e2dc62f60a77e56874c4cb 477370 sudo-ldap-dbgsym_1.8.16-0ubuntu1.10_arm64.ddeb
 2124ed7a89dcdcb816a04f4b2522b73504f046da8b61ecf585cfbf311de0134b 375700 sudo-ldap_1.8.16-0ubuntu1.10_arm64.deb
 d8a9ed83dcbdb793094ec0952e7286ead8b368ffea69eb75c19432cda362d82b 346906 sudo_1.8.16-0ubuntu1.10_arm64.deb
 6ad5bf2103b11b22d781a8d352ab1965f18391efb25935aa36acffcb38e21697 1445144 sudo_1.8.16-0ubuntu1.10_arm64_translations.tar.gz
Files:
 f23374f43c79a98736f275bed19a56ea 458254 admin extra sudo-dbgsym_1.8.16-0ubuntu1.10_arm64.ddeb
 7cb588662645fa0f22048f63faaefdbe 477370 admin extra sudo-ldap-dbgsym_1.8.16-0ubuntu1.10_arm64.ddeb
 af214bfa86f99462d2128e68b810d535 375700 admin optional sudo-ldap_1.8.16-0ubuntu1.10_arm64.deb
 7b67b8e15c2fd3bf73ff742c4c7cc19d 346906 admin optional sudo_1.8.16-0ubuntu1.10_arm64.deb
 9954386c2e4e2b8601a6f2dcaf8577cd 1445144 raw-translations - sudo_1.8.16-0ubuntu1.10_arm64_translations.tar.gz
Original-Maintainer: Bdale Garbee <bdale@gag.com>