[ubuntu/vivid-proposed] sudo 1.8.9p5-1ubuntu5 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Thu Mar 12 16:07:16 UTC 2015
sudo (1.8.9p5-1ubuntu5) vivid; urgency=medium
* SECURITY UPDATE: arbitrary file access via TZ
- debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
configure, configure.ac, doc/sudoers.cat, doc/sudoers.man.in,
doc/sudoers.mdoc.in, m4/sudo.m4, pathnames.h.in,
plugins/sudoers/env.c.
- CVE-2014-9680
Date: Thu, 12 Mar 2015 10:45:21 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/sudo/1.8.9p5-1ubuntu5
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 12 Mar 2015 10:45:21 -0400
Source: sudo
Binary: sudo sudo-ldap
Architecture: source
Version: 1.8.9p5-1ubuntu5
Distribution: vivid
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
sudo - Provide limited super user privileges to specific users
sudo-ldap - Provide limited super user privileges to specific users
Changes:
sudo (1.8.9p5-1ubuntu5) vivid; urgency=medium
.
* SECURITY UPDATE: arbitrary file access via TZ
- debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
configure, configure.ac, doc/sudoers.cat, doc/sudoers.man.in,
doc/sudoers.mdoc.in, m4/sudo.m4, pathnames.h.in,
plugins/sudoers/env.c.
- CVE-2014-9680
Checksums-Sha1:
4e1780d308edf2e6d7f80ad707b9a37c6ee870d7 2024 sudo_1.8.9p5-1ubuntu5.dsc
384d4bf4d746cb523cc4e4bd4b81a6529c088ea7 33332 sudo_1.8.9p5-1ubuntu5.debian.tar.xz
Checksums-Sha256:
318145d11fbb4a35981614e5a471a46e41c68b3d4535261e8aa3dba4d69cb15f 2024 sudo_1.8.9p5-1ubuntu5.dsc
a5decca0932f9729776e07855bc9dd82bd8d84a17bf36cb8683d50b34a9c82ac 33332 sudo_1.8.9p5-1ubuntu5.debian.tar.xz
Files:
d7d0be81c197ec145715fe902a11a1bc 2024 admin optional sudo_1.8.9p5-1ubuntu5.dsc
c00d56e3946f46ef6e9db152147a1655 33332 admin optional sudo_1.8.9p5-1ubuntu5.debian.tar.xz
Original-Maintainer: Bdale Garbee <bdale at gag.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=xymd
-----END PGP SIGNATURE-----
More information about the Vivid-changes
mailing list