Accepted sudo 1.6.8p12-5ubuntu1 (source)

Martin Pitt martin.pitt at ubuntu.com
Mon May 21 07:10:12 BST 2007 

Accepted:
 OK: sudo_1.6.8p12-5ubuntu1.dsc
     -> Component: main Section: admin
 OK: sudo_1.6.8p12-5ubuntu1.diff.gz

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Fri, 18 May 2007 17:23:53 +0200
Source: sudo
Binary: sudo-ldap sudo
Architecture: source
Version: 1.6.8p12-5ubuntu1
Distribution: gutsy
Urgency: low
Maintainer: Martin Pitt <martin.pitt at ubuntu.com>
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
Description: 
 sudo       - Provide limited super user privileges to specific users
 sudo-ldap  - Provide limited super user privileges to specific users
Closes: 296605 316249 368746 374509 382122 401366
Changes: 
 sudo (1.6.8p12-5ubuntu1) gutsy; urgency=low
 .
   * Merge to Debian unstable. Remaining Ubuntu changes:
     - parse.{h,c,yacc}, sudo.tab.cc, sudo.h, ldap.c, env.c, sudo.c:
       Clean up environment variable handling to fix vulns like CVE-2005-4158 and
       CVE-2006-0151 once and for all: Only keep known-good variables if user has
       limited sudo privileges (blacklist -> whitelist) and keep them all for
       users with unlimited command privileges (to not drive admins and
       developers up the wall which actually need to pass env variables from time
       to time). See 1.6.8p12-1ubuntu1 changelog for details.
     - sudoers: Add some explanatory text why it is a REALLY good idea to use
       visudo. (LP #11620)
     - debian/control, debian/rules: Enable krb5 support, add libkrb5-dev build
       dependency. (LP #35001)
     - debian/postinst: Disable lecture, enable tty_tickets in default sudoers.
     - debian/postinst, debian/sudo-ldap.postinst, debian/rules: Disable init
       script, since in Ubuntu /var/run is a tmpfs.
     - Add debian/sudo_root.8: Explanation of root handling through sudo.
       Install it in debian/rules.
     - auth/pam.c: Abort immediately if the user presses ^C at the password
       prompt instead of waiting three seconds. (LP #38810, in upstream CVS)
     - debian/prerm: Abort package removal if there is no root password.
   * debian/control: Set myself as Ubuntu maintainer.
 .
 sudo (1.6.8p12-5) unstable; urgency=low
 .
   * update debian/copyright to reflect new upstream URL, closes: #368746
   * add sandwich cartoon URL to the README.Debian
   * don't remove sudoers on purge.  can cause problems when moving between
     sudo and sudo-ldap.  leaving sudoers around on purge seems like the least
     evil choice for now, closes: #401366
   * also preserve XAPPLRESDIR, XFILESEARCHPATH, and XUSERFILESEARCHPATH,
     closes: #374509
   * accept patch that improves debian/rules from Ted Percival, closes: #382122
   * no longer build with --with-exempt=sudo, provide an example entry in the
     default sudoers file instead, closes: #296605
   * add --with-devel to configure and augment build dependencies so that flex
     and yacc files get re-generated on every build, closes: #316249
Files: 
 245fbd86315de1070ccc2ab0b25f618c 702 admin optional sudo_1.6.8p12-5ubuntu1.dsc
 d64c9708e03c9c179861d311cdf8b239 47028 admin optional sudo_1.6.8p12-5ubuntu1.diff.gz
Original-Maintainer: Bdale Garbee <bdale at gag.com>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFGUTa/DecnbV4Fd/IRAscUAKCD5hjn2RvStK6m/h3VrYxxQX1IqACdFlb9
iuWHi/KzXulAn+y4Rd/7/IU=
=USHv
-----END PGP SIGNATURE-----

More information about the gutsy-changes mailing list