CVS commit: pkgsrc/security/sudo

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/security/sudo
From: Takahiro Kambe <taca%netbsd.org@localhost>
Date: Fri, 16 Apr 2010 15:33:52 +0000

Module Name:    pkgsrc
Committed By:   taca
Date:           Fri Apr 16 15:33:52 UTC 2010

Modified Files:
        pkgsrc/security/sudo: Makefile distinfo
        pkgsrc/security/sudo/patches: patch-aa

Log Message:
Update sudo package from sudo-1.7.2p4 to sudo-1.7.2p6.

Sudo versions 1.7.2p6 and 1.6.9p22 are now available.  These releases
fix a privilege escalation bug in the sudoedit functionality.

Summary:
    A flaw exists in sudo's -e option (aka sudoedit) in sudo versions
    1.6.8 through 1.7.2p5 that may give a user with permission to
    run sudoedit the ability to run arbitrary commands.  This bug
    is related to, but distinct from, CVE 2010-0426.

Sudo versions affected:
    1.6.8 through 1.7.2p5 inclusive.


To generate a diff of this commit:
cvs rdiff -u -r1.119 -r1.120 pkgsrc/security/sudo/Makefile
cvs rdiff -u -r1.61 -r1.62 pkgsrc/security/sudo/distinfo
cvs rdiff -u -r1.22 -r1.23 pkgsrc/security/sudo/patches/patch-aa

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/mail
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/mail
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index