sudo 1.8.10p3-1+deb8u3 source package in Debian
Changelog
sudo (1.8.10p3-1+deb8u3) jessie-security; urgency=medium
* Non-maintainer upload
* Disable editing of files via user-controllable symlinks
(Closes: #804149) (CVE-2015-5602)
- sudoedit path restriction bypass using symlinks
- Change warning when user tries to sudoedit a symbolic link
- Open sudoedit files with O_NONBLOCK and fail if they are not regular files
- Remove S_ISREG check from sudo_edit_open(), it is already done in the
caller
- Add directory writability checks for sudoedit
- Fix directory writability checks for sudoedit
- Enable sudoedit directory writability checks by default
-- Ben Hutchings <email address hidden> Tue, 05 Jan 2016 19:37:34 +0000
Upload details
- Uploaded by:
- Bdale Garbee
- Uploaded to:
- Jessie
- Original maintainer:
- Bdale Garbee
- Architectures:
- any
- Section:
- admin
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| sudo_1.8.10p3-1+deb8u3.dsc | 2.0 KiB | 3b45c5c5ded8b9884302bf86d759e0997fccd386ee7003a90463c77a1d0ba9f2 |
| sudo_1.8.10p3.orig.tar.gz | 2.2 MiB | 6eda135fa68163108f1c24de6975de5ddb09d75730bb62d6390bda7b04345400 |
| sudo_1.8.10p3-1+deb8u3.debian.tar.xz | 98.5 KiB | 5b365f9ebec1a79a76aa6d72b83b14232abe493de106c38cb46504b896e6ed8c |
No changes file available.
