pkgsrc-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/pkgsrc-2004Q3]: pkgsrc/security/sudo Pullup ticket 140 - requested by...



details:   https://anonhg.NetBSD.org/pkgsrc/rev/0d822ac4703c
branches:  pkgsrc-2004Q3
changeset: 480741:0d822ac4703c
user:      salo <salo%pkgsrc.org@localhost>
date:      Mon Nov 15 08:02:54 2004 +0000

description:
Pullup ticket 140 - requested by Quentin Garnier
security fix for sudo

        Module Name:    pkgsrc
        Committed By:   cube
        Date:           Fri Nov 12 16:47:31 UTC 2004

        Modified Files:
                pkgsrc/security/sudo: Makefile PLIST.NetBSD PLIST.SunOS distinfo

        Log Message:
        Update to version 1.6.8pl2.  Fixes a security flaw for the sad people using
        bash-as-sh (and people allowing bash scripts to be run through sudo).  The
        user could override commands by functions of her own.

        ChangeLog:

        549) Bash exported functions and the CDPATH variable are now stripped from
             the environment passed to the program to be executed.

diffstat:

 security/sudo/Makefile     |  7 ++++---
 security/sudo/PLIST.NetBSD |  3 ++-
 security/sudo/PLIST.SunOS  |  3 ++-
 security/sudo/distinfo     |  6 +++---
 4 files changed, 11 insertions(+), 8 deletions(-)

diffs (50 lines):

diff -r 3af09414ed82 -r 0d822ac4703c security/sudo/Makefile
--- a/security/sudo/Makefile    Wed Nov 10 21:04:18 2004 +0000
+++ b/security/sudo/Makefile    Mon Nov 15 08:02:54 2004 +0000
@@ -1,8 +1,9 @@
-# $NetBSD: Makefile,v 1.70 2004/09/17 09:45:02 agc Exp $
+# $NetBSD: Makefile,v 1.70.2.1 2004/11/15 08:02:54 salo Exp $
 #
 
-DISTNAME=              sudo-1.6.8p1
-PKGNAME=               sudo-1.6.8pl1
+DISTNAME=              sudo-1.6.8p2
+PKGNAME=               sudo-1.6.8pl2
+PKGREVISION=           #
 CATEGORIES=            security
 MASTER_SITES=          http://www.courtesan.com/sudo/dist/ \
                        ftp://ftp.courtesan.com/pub/sudo/ \
diff -r 3af09414ed82 -r 0d822ac4703c security/sudo/PLIST.NetBSD
--- a/security/sudo/PLIST.NetBSD        Wed Nov 10 21:04:18 2004 +0000
+++ b/security/sudo/PLIST.NetBSD        Mon Nov 15 08:02:54 2004 +0000
@@ -1,4 +1,5 @@
-@comment $NetBSD: PLIST.NetBSD,v 1.1 2002/12/25 12:26:46 grant Exp $
+@comment $NetBSD: PLIST.NetBSD,v 1.1.10.1 2004/11/15 08:02:54 salo Exp $
 man/man5/sudoers.5
 man/man8/sudo.8
+man/man8/sudoedit.8
 man/man8/visudo.8
diff -r 3af09414ed82 -r 0d822ac4703c security/sudo/PLIST.SunOS
--- a/security/sudo/PLIST.SunOS Wed Nov 10 21:04:18 2004 +0000
+++ b/security/sudo/PLIST.SunOS Mon Nov 15 08:02:54 2004 +0000
@@ -1,4 +1,5 @@
-@comment $NetBSD: PLIST.SunOS,v 1.1 2002/12/25 12:26:46 grant Exp $
+@comment $NetBSD: PLIST.SunOS,v 1.1.10.1 2004/11/15 08:02:54 salo Exp $
 man/man1m/sudo.1m
+man/man1m/sudoedit.1m
 man/man1m/visudo.1m
 man/man4/sudoers.4
diff -r 3af09414ed82 -r 0d822ac4703c security/sudo/distinfo
--- a/security/sudo/distinfo    Wed Nov 10 21:04:18 2004 +0000
+++ b/security/sudo/distinfo    Mon Nov 15 08:02:54 2004 +0000
@@ -1,7 +1,7 @@
-$NetBSD: distinfo,v 1.23 2004/09/17 09:25:18 cube Exp $
+$NetBSD: distinfo,v 1.23.2.1 2004/11/15 08:02:54 salo Exp $
 
-SHA1 (sudo-1.6.8p1.tar.gz) = a093e6ec91ecd964a4901184ae19a3096fb98eed
-Size (sudo-1.6.8p1.tar.gz) = 583464 bytes
+SHA1 (sudo-1.6.8p2.tar.gz) = eb4d49207036109080f41edff941c069da2566dd
+Size (sudo-1.6.8p2.tar.gz) = 583690 bytes
 SHA1 (patch-aa) = a4f29f2c228eb3b4af0872cf04a00ffdf41c603c
 SHA1 (patch-af) = 870a0f0504449dbb839c8b8c2dfe6505a9c9ec68
 SHA1 (patch-ag) = 3703932e134ae90281179d0a4ae4760fa420264b



Home | Main Index | Thread Index | Old Index