Ubuntu
sudo package

sudo 1.7.0-1ubuntu2.6 source package in Ubuntu

Changelog

sudo (1.7.0-1ubuntu2.6) karmic-security; urgency=low

  * SECURITY UPDATE: privilege escalation via -g when using group Runas_List
    - pwutil.c, sudo.h: add user_in_group(), backported from upstream commits
      48ca8c2eddf8, 72df368a8a0e and 6ebc55d4716b. This is intended to be used
      only with check.c to fix CVE-2011-0010 instead of doing the refactoring.
      Going forward, will need to look at this code also if a flaw is found in
      this refactored code. If needed, the refactoring work is in 48ca8c2eddf8
      and 6ebc55d4716b.
    - check.c: prompt for password when the user is running sudo as himself
      but as a different group. Based on fe8a94f96542.
    - CVE-2011-0010
 -- Jamie Strandboge <email address hidden>   Wed, 19 Jan 2011 10:46:05 -0600

Upload details

Uploaded by:
Jamie Strandboge
Uploaded to:
Karmic
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
admin
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
sudo_1.7.0.orig.tar.gz 726.9 KiB 5f7de94287f39c8b3b8d86aed147967e9286f45740412004233858b637391978
sudo_1.7.0-1ubuntu2.6.diff.gz 26.2 KiB 3914634dff3c68f94082303340f7b7bef27b166ff493ad91256ff06830533a18
sudo_1.7.0-1ubuntu2.6.dsc 1.7 KiB 8fed3d27452d841a94445c4213fee5425e9b2736a1d3e54a8aec998488f7c87f

View changes file

Binary packages built by this source

sudo: No summary available for sudo in ubuntu karmic.

No description available for sudo in ubuntu karmic.

sudo-ldap: No summary available for sudo-ldap in ubuntu karmic.

No description available for sudo-ldap in ubuntu karmic.