sudo: Update to version 1.9.12p2
Commit Message
- Update from version 1.9.12p1 to 1.9.12p2
- Update of rootfile not required
- Changelog
1.9.12p2
Fixed a compilation error on Linux/aarch64. GitHub issue #197.
Fixed a potential crash introduced in the fix GitHub issue #134. If a user’s
sudoers entry did not have any RunAs user’s set, running sudo -U otheruser -l
would dereference a NULL pointer.
Fixed a bug introduced in sudo 1.9.12 that could prevent sudo from creating a
I/O files when the iolog_file sudoers setting contains six or more Xs.
Fixed a compilation issue on AIX with the native compiler. GitHub issue #231.
Fixed CVE-2023-22809, a flaw in sudo’s -e option (aka sudoedit) that could
allow a malicious user with sudoedit privileges to edit arbitrary files. For
more information, see https://www.sudo.ws/security/advisories/sudoedit_any
Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
---
lfs/sudo | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
Comments
Reviewed-by: Peter Müller <peter.mueller@ipfire.org>
> - Update from version 1.9.12p1 to 1.9.12p2
> - Update of rootfile not required
> - Changelog
> 1.9.12p2
> Fixed a compilation error on Linux/aarch64. GitHub issue #197.
> Fixed a potential crash introduced in the fix GitHub issue #134. If a user’s
> sudoers entry did not have any RunAs user’s set, running sudo -U otheruser -l
> would dereference a NULL pointer.
> Fixed a bug introduced in sudo 1.9.12 that could prevent sudo from creating a
> I/O files when the iolog_file sudoers setting contains six or more Xs.
> Fixed a compilation issue on AIX with the native compiler. GitHub issue #231.
> Fixed CVE-2023-22809, a flaw in sudo’s -e option (aka sudoedit) that could
> allow a malicious user with sudoedit privileges to edit arbitrary files. For
> more information, see https://www.sudo.ws/security/advisories/sudoedit_any
>
> Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
> ---
> lfs/sudo | 6 +++---
> 1 file changed, 3 insertions(+), 3 deletions(-)
>
> diff --git a/lfs/sudo b/lfs/sudo
> index 807169c5c..ddcddf225 100644
> --- a/lfs/sudo
> +++ b/lfs/sudo
> @@ -1,7 +1,7 @@
> ###############################################################################
> # #
> # IPFire.org - A linux based firewall #
> -# Copyright (C) 2007-2018 IPFire Team <info@ipfire.org> #
> +# Copyright (C) 2007-2023 IPFire Team <info@ipfire.org> #
> # #
> # This program is free software: you can redistribute it and/or modify #
> # it under the terms of the GNU General Public License as published by #
> @@ -24,7 +24,7 @@
>
> include Config
>
> -VER = 1.9.12p1
> +VER = 1.9.12p2
>
> THISAPP = sudo-$(VER)
> DL_FILE = $(THISAPP).tar.gz
> @@ -40,7 +40,7 @@ objects = $(DL_FILE)
>
> $(DL_FILE) = $(DL_FROM)/$(DL_FILE)
>
> -$(DL_FILE)_BLAKE2 = 976d00fb16b0d26b2714a188e379ccba102e0fa67b8ec6278e5435728af0cc9ba23d63db64a87d4e14d59cd52d3f62401943eb7c0f9c33317179ff764a9f950c
> +$(DL_FILE)_BLAKE2 = 79eac710b757acae7aa98e6e6f495a475e5236be456e4687fb1441345ee296672ff80a5a60902cffcd257aa81a01fbc3857f3c52e51bb46f56c060fd299e0c05
>
> install : $(TARGET)
>
@@ -1,7 +1,7 @@
###############################################################################
# #
# IPFire.org - A linux based firewall #
-# Copyright (C) 2007-2018 IPFire Team <info@ipfire.org> #
+# Copyright (C) 2007-2023 IPFire Team <info@ipfire.org> #
# #
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
@@ -24,7 +24,7 @@
include Config
-VER = 1.9.12p1
+VER = 1.9.12p2
THISAPP = sudo-$(VER)
DL_FILE = $(THISAPP).tar.gz
@@ -40,7 +40,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_BLAKE2 = 976d00fb16b0d26b2714a188e379ccba102e0fa67b8ec6278e5435728af0cc9ba23d63db64a87d4e14d59cd52d3f62401943eb7c0f9c33317179ff764a9f950c
+$(DL_FILE)_BLAKE2 = 79eac710b757acae7aa98e6e6f495a475e5236be456e4687fb1441345ee296672ff80a5a60902cffcd257aa81a01fbc3857f3c52e51bb46f56c060fd299e0c05
install : $(TARGET)