[ubuntu/precise-security] sudo 1.8.3p1-1ubuntu3.4 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Thu Feb 28 12:53:13 UTC 2013
sudo (1.8.3p1-1ubuntu3.4) precise-security; urgency=low
* SECURITY UPDATE: authentication bypass via clock set to epoch
- debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
set to epoch in plugins/sudoers/check.c.
- CVE-2013-1775
sudo (1.8.3p1-1ubuntu3.3) precise-proposed; urgency=low
* debian/patches/pam_env_merge.patch: Merge the PAM environment into the
user environment (LP: #982684)
* debian/sudo.pam: Use pam_env to read /etc/environment and
/etc/default/locale environment files. Reading ~/.pam_environment is not
permitted due to security reasons.
Date: 2013-02-27 18:50:16.596918+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/precise/+source/sudo/1.8.3p1-1ubuntu3.4
-------------- next part --------------
Sorry, changesfile not available.
More information about the Precise-changes
mailing list