Radovan Sroka
d9475dd3d9
Update to 1.9.11p3
...
Resolves: rhbz#2047541
Resolves: rhbz#2062150
Signed-off-by: Radovan Sroka <rsroka@redhat.com>
2022-06-22 15:57:57 +02:00
Matthew Miller
bf29ad1a05
Update to 1.9.8p2, and include new sudo_intercept.so
2021-10-03 15:51:02 -04:00
Matthew Miller
36f24bedc6
update to 1.9.5p2 to address bug 1920618 - CVE-2021-3156 sudo: Heap buffer overflow in argument parsing
2021-01-26 14:00:13 -05:00
Radovan Sroka
a0dc0e6d59
Rebase to 1.9.5p1
...
Resolves: rhbz#1902758
- fixed double free in sss_to_sudoers
Resolves: rhbz#1885874
- fixed CVE-2021-23239 sudo: possible directory existence test due to race condition in sudoedit
Resolves: rhbz#1915055
- fixed CVE-2021-23240 sudo: symbolic link attack in SELinux-enabled sudoedit
Resolves: rhbz#1915054
Signed-off-by: Radovan Sroka <rsroka@redhat.com>
2021-01-18 21:07:57 +01:00
Radovan Sroka
68203ed1a2
Rebase to 1.9.3p1
...
Signed-off-by: Radovan Sroka <rsroka@redhat.com>
2020-10-05 15:33:02 +02:00
Radovan Sroka
35c555c44a
Rebase to 1.9.2
...
Resolves: rhbz#1859577
- added logsrvd subpackage
- added openssl-devel buildrequires
Resolves: rhbz#1860653
- fixed sudo runstatedir path
- it was generated as /sudo instead of /run/sudo
Resolves: rhbz#1868215
- added /var/lib/snapd/snap/bin to secure_path variable
Resolves: rhbz#1691996
Signed-off-by: Radovan Sroka <rsroka@redhat.com>
2020-09-15 16:49:29 +02:00
alakatos
306df891f5
Rebase to 1.9.1
...
Resolves: rhbz#1848788
- fix rpmlint warnings
Resolves: rhbz#1817139
2020-07-10 09:44:22 +02:00
alakatos
8fc22fffbc
Update to latest development version 1.9.0b4
...
Resolves: rhbz#1816593
2020-03-25 16:47:47 +01:00
Cropi
19b1d360de
Update to latest development version 1.9.0b1
2020-03-03 13:48:35 +01:00
Radovan Sroka
514d3fed7f
Rebase to 1.8.29
...
Resolves: rhbz#1766233
2019-11-11 15:58:05 +01:00
Radovan Sroka
aebc79494c
Rebase to 1.8.28p1
...
Resolves: rhbz#176235
2019-10-22 14:18:32 +02:00
Radovan Sroka
4e850fe054
Rebase to 1.8.28
...
Resolves: rhbz#1761533
- set always_set_home by default
Resolves: rhbz#1728687
- Sync sudoers options from rhel8 to fedora
Resolves: rhbz#1761781
- CVE-2019-14287
Resolves: rhbz#1761584
2019-10-15 13:56:35 +02:00
Radovan Sroka
906c92082e
Rebase sudo to 1.8.27
2019-03-11 12:32:44 +01:00
Radovan Sroka
44df529c96
Rebase sudo to 1.8.25p1
2018-10-01 12:55:58 +02:00
Radovan Sroka
4f41fcf52f
Rebase sudo to latest stable version
...
- install /etc/dnf/protected.d/sudo instead of /etc/yum/protected.d/sudo (1626968)
2018-09-10 13:19:02 +02:00
Daniel Kopeček
9d54237c1d
update to 1.8.23
2018-05-09 13:48:35 +02:00
Daniel Kopeček
81b76510d4
update to 1.8.23b3
2018-04-18 12:54:42 +02:00
Radovan Sroka
ddbf4e5ddd
Update to 1.8.22b1
...
- Added /usr/local/sbin and /usr/local/bin to secure path
rhbz#1166185
2017-12-14 12:08:51 +01:00
Marek Tamaskovic
0c12737f71
Update to sudo-1.8.21p2
...
Fix changelog
2017-10-04 12:03:18 +02:00
Daniel Kopeček
e0f60ff106
update to 1.8.20p2
2017-06-01 12:33:48 +02:00
Daniel Kopeček
ababf7ba8f
update to 1.8.20p1
...
fixes CVE-2017-1000367
Resolves: rhbz#1456884
2017-05-31 09:05:44 +02:00
Jiri Vymazal
e43103946c
* Fri Apr 07 2017 Jiri Vymazal <jvymazal@redhat.com> - 1.8.20-0.1.b1
...
- update to latest development version 1.8.20b1
- added sudo to dnf/yum protected packages
Resolves: rhbz#1418756
2017-04-07 16:01:56 +02:00
Tomas Sykora
e05aa772e6
update to 1.8.19p2
2017-02-13 12:49:39 +01:00
Daniel Kopecek
e07c54ccee
update to latest development version
...
- fixes CVE-2016-7076
2016-11-08 12:46:14 +01:00
Radovan Sroka
ab266a825d
"update" to 1.8.19-0.1.20160923git90e4538
...
- this commit changes only version, nothing else
- we were not able to update from rc and beta versions to stable
one in fedora rawhide
- so this is a new snapshot package which resolves it
2016-09-23 16:21:17 +02:00
Radovan Sroka
68760bc5c7
update to 1.8.18
2016-09-21 16:40:11 +02:00
Radovan Sroka
bc3371c40d
update to 1.8.18rc4
2016-09-16 09:20:46 +02:00
Radovan Sroka
4884b56d12
update to 1.8.18rc2
...
- dropped sudo-1.8.14p1-ldapconfpatch.patch
upstreamed --> https://www.sudo.ws/pipermail/sudo-workers/2016-September/001006.html
2016-09-14 15:02:53 +02:00
Radovan Sroka
3859d5ec51
update to 1.8.18b2
...
- added --disable-root-mailer as configure option
Resolves: rhbz#1324091
2016-08-26 14:21:48 +02:00
Daniel Kopecek
932e467d11
update to 1.8.17p1
...
- install the /var/db/sudo/lectured
Resolves: rhbz#1321414
2016-06-24 16:22:57 +02:00
Daniel Kopecek
ffcdc7d630
Track the default sudoers file in git
2016-05-31 12:22:54 +02:00
Daniel Kopecek
df8acf06e9
update to 1.8.16
2016-04-05 12:52:51 +02:00
Daniel Kopecek
2306938c7f
update to 1.8.15
...
- fixes CVE-2015-5602
2015-11-05 09:50:31 +01:00
Radovan Sroka
09c50775bb
Update to 1.8.14p3
2015-07-27 13:16:01 +02:00
Radovan Sroka
febf08760c
update to 1.8.14p1
2015-07-21 14:59:30 +02:00
Radovan Sroka
9047d526fd
Update to 1.8.14b4
...
- Add own %{_tmpfilesdir}/sudo.conf
2015-07-13 10:01:05 +02:00
Daniel Kopecek
200fa94028
update to 1.8.12
...
- fixes CVE-2014-9680
2015-02-18 10:32:39 +01:00
Daniel Kopecek
7719973d9b
update to 1.8.11p2
...
- added patch to fix upstream bug #671 -- exiting immediately
when audit is disabled
2014-11-03 13:23:04 +01:00
Daniel Kopecek
af463d53b2
Added the sudo-1.8.11 tarball -- now for real
2014-09-30 15:57:08 +02:00
Daniel Kopecek
fbec0ab1c9
Minor update
...
- remove bundled copy of zlib before compilation
- drop the requiretty Defaults setting from sudoers
2014-03-12 12:29:34 +01:00
Daniel Kopecek
8729726fc1
update to 1.8.8
...
- major changes & fixes:
- LDAP SASL support now works properly with Kerberos
- root may no longer change its SELinux role without entering a password
- user messages are now always displayed in the user's locale, even when
the same message is being logged or mailed in a different locale.
- log files created by sudo now explicitly have the group set to group
ID 0 rather than relying on BSD group semantics
- sudo now stores its libexec files in a sudo subdirectory instead of in
libexec itself
- system_group and group_file sudoers group provider plugins are now
installed by default
- the paths to ldap.conf and ldap.secret may now be specified as arguments
to the sudoers plugin in the sudo.conf file
- ...and many new features and settings. See the upstream ChangeLog for the
full list.
- several sssd support fixes
- added patch to make uid/gid specification parsing more strict (don't accept
an invalid number as uid/gid)
- use the _pkgdocdir macro
(see https://fedoraproject.org/wiki/Changes/UnversionedDocdirs )
- fixed several bugs found by the clang static analyzer
- added %post dependency on chmod
2013-10-01 00:09:16 +02:00
Daniel Kopecek
392812324b
update to 1.8.6p7
...
- fixes CVE-2013-1775 and CVE-2013-1776
- fixed several packaging issues (thanks to ville.skytta@iki.fi )
- build with system zlib.
- let rpmbuild strip libexecdir/*.so.
- own the %{_docdir}/sudo-* dir.
- fix some rpmlint warnings (spaces vs tabs, unescaped macros).
- fix bogus %changelog dates.
2013-02-28 13:47:01 +01:00
Daniel Kopecek
a9963cd1b9
update to 1.8.6p3
...
- drop -pipelist patch (fixed in upstream)
2012-09-25 12:37:55 +02:00
Daniel Kopecek
41b07d49de
Update to 1.8.6
...
- dropped SSSD patches as they are now part of the upstream source code
- use the upstream version of -pipelist patch
2012-09-06 14:41:27 +02:00
Daniel Kopecek
a03aed0f10
Updated sources
2012-05-17 14:20:22 +02:00
Daniel Kopecek
0894814a99
update to 1.8.3p1
...
disable output word wrapping if the output is piped
2011-11-10 10:22:56 +01:00
Daniel Kopecek
269d3c7dce
rebase to 1.8.1p2
...
removed .sudoi patch
fixed typo: RELPRO -> RELRO
added -devel subpackage for the sudo_plugin.h header file
use default ldap configuration files again
2011-07-12 13:20:39 +02:00
Daniel Kopecek
92c68ba926
- rebase to 1.7.4p5
...
- fixed sudo-1.7.4p4-getgrouplist.patch
- fixes CVE-2011-0008, CVE-2011-0010
2011-01-17 11:23:52 +01:00
Daniel Kopecek
d12db81253
- anybody in the wheel group has now root access (using password) (rhbz#656873)
...
- sync configuration paths with the nss_ldap package (rhbz#652687)
2010-11-30 12:16:25 +01:00
dnk
520e07da9c
- update to new upstream version
...
- new command available: sudoreplay
- use native audit support
- corrected license field value: BSD -> ISC
2010-09-07 16:28:31 +02:00