Accepted sudo 1.8.10p3-1+deb8u3 (source) into proposed-updates->stable-new, proposed-updates
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 05 Jan 2016 19:37:34 +0000
Source: sudo
Binary: sudo sudo-ldap
Architecture: source
Version: 1.8.10p3-1+deb8u3
Distribution: jessie-security
Urgency: medium
Maintainer: Bdale Garbee <bdale@gag.com>
Changed-By: Ben Hutchings <ben@decadent.org.uk>
Description:
sudo - Provide limited super user privileges to specific users
sudo-ldap - Provide limited super user privileges to specific users
Closes: 804149
Changes:
sudo (1.8.10p3-1+deb8u3) jessie-security; urgency=medium
.
* Non-maintainer upload
* Disable editing of files via user-controllable symlinks
(Closes: #804149) (CVE-2015-5602)
- sudoedit path restriction bypass using symlinks
- Change warning when user tries to sudoedit a symbolic link
- Open sudoedit files with O_NONBLOCK and fail if they are not regular files
- Remove S_ISREG check from sudo_edit_open(), it is already done in the
caller
- Add directory writability checks for sudoedit
- Fix directory writability checks for sudoedit
- Enable sudoedit directory writability checks by default
Checksums-Sha1:
a78ae5edd23eab94de70c67b43814e950fd2548a 1999 sudo_1.8.10p3-1+deb8u3.dsc
ed45b25da17c82e0d2cfed98cb4bfd45617c91d9 2262370 sudo_1.8.10p3.orig.tar.gz
0f8cde331547cef187863b701d3dc133bf6c0c40 100872 sudo_1.8.10p3-1+deb8u3.debian.tar.xz
Checksums-Sha256:
3b45c5c5ded8b9884302bf86d759e0997fccd386ee7003a90463c77a1d0ba9f2 1999 sudo_1.8.10p3-1+deb8u3.dsc
6eda135fa68163108f1c24de6975de5ddb09d75730bb62d6390bda7b04345400 2262370 sudo_1.8.10p3.orig.tar.gz
5b365f9ebec1a79a76aa6d72b83b14232abe493de106c38cb46504b896e6ed8c 100872 sudo_1.8.10p3-1+deb8u3.debian.tar.xz
Files:
bdd0efc63d3b83294baa4a8e4e29781d 1999 admin optional sudo_1.8.10p3-1+deb8u3.dsc
fcd8d0d9f9f0397d076ee901e242ed39 2262370 admin optional sudo_1.8.10p3.orig.tar.gz
de8a725b548cffd954c6990f3f24becd 100872 admin optional sudo_1.8.10p3-1+deb8u3.debian.tar.xz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=Zwf9
-----END PGP SIGNATURE-----
Reply to: