Commit Graph

72 Commits

Author SHA1 Message Date
Radovan Sroka
35c555c44a
Rebase to 1.9.2
Resolves: rhbz#1859577

- added logsrvd subpackage
- added openssl-devel buildrequires
Resolves: rhbz#1860653
- fixed sudo runstatedir path
- it was generated as /sudo instead of /run/sudo
Resolves: rhbz#1868215
- added /var/lib/snapd/snap/bin to secure_path variable
Resolves: rhbz#1691996

Signed-off-by: Radovan Sroka <rsroka@redhat.com>
2020-09-15 16:49:29 +02:00
alakatos
306df891f5
Rebase to 1.9.1
Resolves: rhbz#1848788
- fix rpmlint warnings
Resolves: rhbz#1817139
2020-07-10 09:44:22 +02:00
alakatos
8fc22fffbc
Update to latest development version 1.9.0b4
Resolves: rhbz#1816593
2020-03-25 16:47:47 +01:00
Cropi
19b1d360de
Update to latest development version 1.9.0b1 2020-03-03 13:48:35 +01:00
Radovan Sroka
514d3fed7f
Rebase to 1.8.29
Resolves: rhbz#1766233
2019-11-11 15:58:05 +01:00
Radovan Sroka
aebc79494c Rebase to 1.8.28p1
Resolves: rhbz#176235
2019-10-22 14:18:32 +02:00
Radovan Sroka
4e850fe054 Rebase to 1.8.28
Resolves: rhbz#1761533

- set always_set_home by default
  Resolves: rhbz#1728687

- Sync sudoers options from rhel8 to fedora
  Resolves: rhbz#1761781

- CVE-2019-14287
  Resolves: rhbz#1761584
2019-10-15 13:56:35 +02:00
Radovan Sroka
906c92082e Rebase sudo to 1.8.27 2019-03-11 12:32:44 +01:00
Radovan Sroka
44df529c96 Rebase sudo to 1.8.25p1 2018-10-01 12:55:58 +02:00
Radovan Sroka
4f41fcf52f Rebase sudo to latest stable version
- install /etc/dnf/protected.d/sudo instead of /etc/yum/protected.d/sudo (1626968)
2018-09-10 13:19:02 +02:00
Daniel Kopeček
9d54237c1d update to 1.8.23 2018-05-09 13:48:35 +02:00
Daniel Kopeček
81b76510d4 update to 1.8.23b3 2018-04-18 12:54:42 +02:00
Radovan Sroka
ddbf4e5ddd
Update to 1.8.22b1
- Added /usr/local/sbin and /usr/local/bin to secure path
  rhbz#1166185
2017-12-14 12:08:51 +01:00
Marek Tamaskovic
0c12737f71 Update to sudo-1.8.21p2
Fix changelog
2017-10-04 12:03:18 +02:00
Daniel Kopeček
e0f60ff106 update to 1.8.20p2 2017-06-01 12:33:48 +02:00
Daniel Kopeček
ababf7ba8f update to 1.8.20p1
fixes CVE-2017-1000367
  Resolves: rhbz#1456884
2017-05-31 09:05:44 +02:00
Jiri Vymazal
e43103946c * Fri Apr 07 2017 Jiri Vymazal <jvymazal@redhat.com> - 1.8.20-0.1.b1
- update to latest development version 1.8.20b1
- added sudo to dnf/yum protected packages
  Resolves: rhbz#1418756
2017-04-07 16:01:56 +02:00
Tomas Sykora
e05aa772e6 update to 1.8.19p2 2017-02-13 12:49:39 +01:00
Daniel Kopecek
e07c54ccee update to latest development version
- fixes CVE-2016-7076
2016-11-08 12:46:14 +01:00
Radovan Sroka
ab266a825d "update" to 1.8.19-0.1.20160923git90e4538
- this commit changes only version, nothing else
- we were not able to update from rc and beta versions to stable
  one in fedora rawhide
- so this is a new snapshot package which resolves it
2016-09-23 16:21:17 +02:00
Radovan Sroka
68760bc5c7 update to 1.8.18 2016-09-21 16:40:11 +02:00
Radovan Sroka
bc3371c40d update to 1.8.18rc4 2016-09-16 09:20:46 +02:00
Radovan Sroka
4884b56d12 update to 1.8.18rc2
- dropped sudo-1.8.14p1-ldapconfpatch.patch
   upstreamed --> https://www.sudo.ws/pipermail/sudo-workers/2016-September/001006.html
2016-09-14 15:02:53 +02:00
Radovan Sroka
3859d5ec51 update to 1.8.18b2
- added --disable-root-mailer as configure option
  Resolves: rhbz#1324091
2016-08-26 14:21:48 +02:00
Daniel Kopecek
932e467d11 update to 1.8.17p1
- install the /var/db/sudo/lectured
  Resolves: rhbz#1321414
2016-06-24 16:22:57 +02:00
Daniel Kopecek
ffcdc7d630 Track the default sudoers file in git 2016-05-31 12:22:54 +02:00
Daniel Kopecek
df8acf06e9 update to 1.8.16 2016-04-05 12:52:51 +02:00
Daniel Kopecek
2306938c7f update to 1.8.15
- fixes CVE-2015-5602
2015-11-05 09:50:31 +01:00
Radovan Sroka
09c50775bb Update to 1.8.14p3 2015-07-27 13:16:01 +02:00
Radovan Sroka
febf08760c update to 1.8.14p1 2015-07-21 14:59:30 +02:00
Radovan Sroka
9047d526fd Update to 1.8.14b4
- Add own %{_tmpfilesdir}/sudo.conf
2015-07-13 10:01:05 +02:00
Daniel Kopecek
200fa94028 update to 1.8.12
- fixes CVE-2014-9680
2015-02-18 10:32:39 +01:00
Daniel Kopecek
7719973d9b update to 1.8.11p2
- added patch to fix upstream bug #671 -- exiting immediately
  when audit is disabled
2014-11-03 13:23:04 +01:00
Daniel Kopecek
af463d53b2 Added the sudo-1.8.11 tarball -- now for real 2014-09-30 15:57:08 +02:00
Daniel Kopecek
fbec0ab1c9 Minor update
- remove bundled copy of zlib before compilation
  - drop the requiretty Defaults setting from sudoers
2014-03-12 12:29:34 +01:00
Daniel Kopecek
8729726fc1 update to 1.8.8
- major changes & fixes:
  - LDAP SASL support now works properly with Kerberos
  - root may no longer change its SELinux role without entering a password
  - user messages are now always displayed in the user's locale, even when
    the same message is being logged or mailed in a different locale.
  - log files created by sudo now explicitly have the group set to group
    ID 0 rather than relying on BSD group semantics
  - sudo now stores its libexec files in a sudo subdirectory instead of in
    libexec itself
  - system_group and group_file sudoers group provider plugins are now
    installed by default
  - the paths to ldap.conf and ldap.secret may now be specified as arguments
    to the sudoers plugin in the sudo.conf file
  - ...and many new features and settings. See the upstream ChangeLog for the
    full list.
- several sssd support fixes
- added patch to make uid/gid specification parsing more strict (don't accept
  an invalid number as uid/gid)
- use the _pkgdocdir macro
  (see https://fedoraproject.org/wiki/Changes/UnversionedDocdirs)
- fixed several bugs found by the clang static analyzer
- added %post dependency on chmod
2013-10-01 00:09:16 +02:00
Daniel Kopecek
392812324b update to 1.8.6p7
- fixes CVE-2013-1775 and CVE-2013-1776
- fixed several packaging issues (thanks to ville.skytta@iki.fi)
  - build with system zlib.
  - let rpmbuild strip libexecdir/*.so.
  - own the %{_docdir}/sudo-* dir.
  - fix some rpmlint warnings (spaces vs tabs, unescaped macros).
  - fix bogus %changelog dates.
2013-02-28 13:47:01 +01:00
Daniel Kopecek
a9963cd1b9 update to 1.8.6p3
- drop -pipelist patch (fixed in upstream)
2012-09-25 12:37:55 +02:00
Daniel Kopecek
41b07d49de Update to 1.8.6
- dropped SSSD patches as they are now part of the upstream source code
 - use the upstream version of -pipelist patch
2012-09-06 14:41:27 +02:00
Daniel Kopecek
a03aed0f10 Updated sources 2012-05-17 14:20:22 +02:00
Daniel Kopecek
0894814a99 update to 1.8.3p1
disable output word wrapping if the output is piped
2011-11-10 10:22:56 +01:00
Daniel Kopecek
269d3c7dce rebase to 1.8.1p2
removed .sudoi patch
fixed typo: RELPRO -> RELRO
added -devel subpackage for the sudo_plugin.h header file
use default ldap configuration files again
2011-07-12 13:20:39 +02:00
Daniel Kopecek
92c68ba926 - rebase to 1.7.4p5
- fixed sudo-1.7.4p4-getgrouplist.patch
- fixes CVE-2011-0008, CVE-2011-0010
2011-01-17 11:23:52 +01:00
Daniel Kopecek
d12db81253 - anybody in the wheel group has now root access (using password) (rhbz#656873)
- sync configuration paths with the nss_ldap package (rhbz#652687)
2010-11-30 12:16:25 +01:00
dnk
520e07da9c - update to new upstream version
- new command available: sudoreplay
- use native audit support
- corrected license field value: BSD -> ISC
2010-09-07 16:28:31 +02:00
Daniel Kopeček
ac43db5783 - update to new upstream version
- merged .audit and .libaudit patch
- added sudoers.ldap.5* to files
2010-04-14 13:49:58 +00:00
Daniel Kopeček
d3f6d25f13 forgot to update sources... 2010-03-01 11:59:20 +00:00
Daniel Kopeček
a9a317e7d0 - Add /etc/sudoers.d dir and use it in default config (#551470).
- Drop *.pod man page duplicates from docs.
2010-01-12 13:17:31 +00:00
Daniel Kopeček
7a4ce764b3 - new upstream version 1.7.2p2-1
- commented out unused aliases in sudoers to make visudo happy (#550239)
2010-01-07 15:24:53 +00:00
Daniel Kopeček
1c09726f73 new sources 2009-08-20 12:46:32 +00:00