[ubuntu/lucid-security] sudo 1.7.2p1-1ubuntu5.4 (Accepted)
Tyler Hicks
tyhicks at canonical.com
Wed May 16 18:33:39 UTC 2012
sudo (1.7.2p1-1ubuntu5.4) lucid-security; urgency=low
* SECURITY UPDATE: Properly handle multiple netmasks in sudoers Host and
Host_List values
- match.c: Prevent IPv6 netmask-based address matching logic from
incorrectly being applied to IPv4 addresses. Based on upstream patch
written by Todd C. Miller.
- CVE-2012-2337
Date: Tue, 15 May 2012 23:28:04 -0500
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/sudo/1.7.2p1-1ubuntu5.4
-------------- next part --------------
Format: 1.8
Date: Tue, 15 May 2012 23:28:04 -0500
Source: sudo
Binary: sudo sudo-ldap
Architecture: source
Version: 1.7.2p1-1ubuntu5.4
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Description:
sudo - Provide limited super user privileges to specific users
sudo-ldap - Provide limited super user privileges to specific users
Changes:
sudo (1.7.2p1-1ubuntu5.4) lucid-security; urgency=low
.
* SECURITY UPDATE: Properly handle multiple netmasks in sudoers Host and
Host_List values
- match.c: Prevent IPv6 netmask-based address matching logic from
incorrectly being applied to IPv4 addresses. Based on upstream patch
written by Todd C. Miller.
- CVE-2012-2337
Checksums-Sha1:
969ff7d9cd1723f05556f5766168dd795f528ddc 1766 sudo_1.7.2p1-1ubuntu5.4.dsc
408dfab4c9d7ddba88ec540964da81a6d428be00 28039 sudo_1.7.2p1-1ubuntu5.4.diff.gz
Checksums-Sha256:
3d74cd3b263610d4a1511256ba8c5b7a509c45142990d010f3634826880dcc6c 1766 sudo_1.7.2p1-1ubuntu5.4.dsc
0e4e4f50da1da0b72861b2ea4fb31e1217db86fb6eedbaf19a5296ba6442f8c5 28039 sudo_1.7.2p1-1ubuntu5.4.diff.gz
Files:
3599af999d90fdc42a2d3576285c4961 1766 admin optional sudo_1.7.2p1-1ubuntu5.4.dsc
9f4787e5ab9e3c7c5e87534c4362201f 28039 admin optional sudo_1.7.2p1-1ubuntu5.4.diff.gz
Original-Maintainer: Bdale Garbee <bdale at gag.com>
More information about the Lucid-changes
mailing list