[Bug 1223297] Re: sudo init script should set date to epoch, not 1985-01-01

Thu Mar 13 14:00:42 UTC 2014

This bug was fixed in the package sudo - 1.8.3p1-1ubuntu3.6

---------------
sudo (1.8.3p1-1ubuntu3.6) precise-security; urgency=medium

  * SECURITY UPDATE: security policy bypass when env_reset is disabled
    - debian/patches/CVE-2014-0106.patch: fix logic inversion in
      plugins/sudoers/env.c.
    - CVE-2014-0106
  * debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
    epoch in init scripts so they are properly invalidated. (LP: #1223297)
 -- Marc Deslauriers <marc.deslauriers at ubuntu.com>   Tue, 11 Mar 2014 07:56:53 -0400

** Changed in: sudo (Ubuntu Precise)
       Status: Confirmed => Fix Released

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2014-0106

** Changed in: sudo (Ubuntu Quantal)
       Status: Confirmed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to sudo in Ubuntu.
https://bugs.launchpad.net/bugs/1223297

Title:
  sudo init script should set date to epoch, not 1985-01-01

Status in “sudo” package in Ubuntu:
  Fix Released
Status in “sudo” source package in Lucid:
  Confirmed
Status in “sudo” source package in Precise:
  Fix Released
Status in “sudo” source package in Quantal:
  Fix Released
Status in “sudo” source package in Saucy:
  Fix Released
Status in “sudo” source package in Trusty:
  Fix Released
Status in “sudo” package in Debian:
  Fix Released

Bug description:
  Sudo treats filestamps set to epoch as invalid, so the init script
  should set the contents of /var/lib/sudo to epoch, and not 19850101.

  ie:

  find /var/lib/sudo -exec touch -d @0 '{}' \;

  instead of:

  find /var/lib/sudo -exec touch -t 198501010000 '{}' \;

  ProblemType: Bug
  DistroRelease: Ubuntu 13.10
  Package: sudo 1.8.6p3-0ubuntu3
  ProcVersionSignature: Ubuntu 3.11.0-4.9-generic 3.11.0-rc7
  Uname: Linux 3.11.0-4-generic x86_64
  ApportVersion: 2.12.1-0ubuntu3
  Architecture: amd64
  Date: Tue Sep 10 07:25:04 2013
  InstallationDate: Installed on 2012-11-13 (300 days ago)
  InstallationMedia: Ubuntu 12.10 "Quantal Quetzal" - Release amd64 (20121017.5)
  MarkForUpload: True
  SourcePackage: sudo
  UpgradeStatus: Upgraded to saucy on 2013-08-19 (21 days ago)
  modified.conffile..etc.sudoers: [inaccessible: [Errno 13] Permission denied: '/etc/sudoers']
  modified.conffile..etc.sudoers.d.README: [inaccessible: [Errno 13] Permission denied: '/etc/sudoers.d/README']

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/1223297/+subscriptions