sudo security update for Wheezy LTS (wrong subject was: Re: wireshark security update for Wheezy LTS)
2016-11-13 19:11 GMT+01:00 Balint Reczey <firstname.lastname@example.org>:
> I have prepared an update for sudo in Wheezy.
> Please see the diff to previous version and a small test program attached.
> sudo (1.8.5p2-1+nmu3+deb7u2) wheezy-security; urgency=medium
> * LTS Team upload.
> * Fix noexec bypass via system() and popen() (CVE-2016-7032)
> * Fix noexec bypass via wordexp() (CVE-2016-7076) (Closes: #842507)
> I plan uploading the package tomorrow around 18:00 UTC.
> The binary packages for amd64 are also available for testing here:
> deb https://people.debian.org/~rbalint/ppa/wheezy-lts UNRELEASED/