rpms/sudo
3
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
215 Commits 34 Branches 140 Tags 518 KiB
571662fc2e
Commit Graph

199 Commits

Author SHA1 Message Date
Matthew Miller
571662fc2e update rhbz entries in changelog 2021-01-26 14:52:06 -05:00
Matthew Miller
36f24bedc6 update to 1.9.5p2 to address bug 1920618 - CVE-2021-3156 sudo: Heap buffer overflow in argument parsing 2021-01-26 14:00:13 -05:00
Radovan Sroka
a0dc0e6d59
Rebase to 1.9.5p1 
Resolves: rhbz#1902758

- fixed double free in sss_to_sudoers
Resolves: rhbz#1885874
- fixed CVE-2021-23239 sudo: possible directory existence test due to race condition in sudoedit
Resolves: rhbz#1915055
- fixed CVE-2021-23240 sudo: symbolic link attack in SELinux-enabled sudoedit
Resolves: rhbz#1915054

Signed-off-by: Radovan Sroka <rsroka@redhat.com>
 2021-01-18 21:07:57 +01:00
Jonathan Lebon
e30e387ccf Split out -python-plugin subpackage 
This will allow environments where Python is not desirable to still make
use of sudo, such as Fedora CoreOS and other variants which value
minimalism.

Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1909299
 2021-01-14 09:05:22 +00:00
Tom Stellard
f6041d82cf Add BuildRequires: make 
https://fedoraproject.org/wiki/Changes/Remove_make_from_BuildRoot
 2021-01-08 22:03:13 +00:00
Michel Alexandre Salim
47a5b50ae2
Update sudo URL 
http://www.courtesan.com/sudo/ redirects to https://www.sudo.ws/sudo/ (which is identical to https://www.sudo.ws).

The latter is also the website referenced in the tarball's README.

Signed-off-by: Michel Alexandre Salim <salimma@fedoraproject.org>
 2020-12-03 16:10:49 -08:00
Radovan Sroka
68203ed1a2
Rebase to 1.9.3p1 
Signed-off-by: Radovan Sroka <rsroka@redhat.com>
 2020-10-05 15:33:02 +02:00
Radovan Sroka
35c555c44a
Rebase to 1.9.2 
Resolves: rhbz#1859577

- added logsrvd subpackage
- added openssl-devel buildrequires
Resolves: rhbz#1860653
- fixed sudo runstatedir path
- it was generated as /sudo instead of /run/sudo
Resolves: rhbz#1868215
- added /var/lib/snapd/snap/bin to secure_path variable
Resolves: rhbz#1691996

Signed-off-by: Radovan Sroka <rsroka@redhat.com>
 2020-09-15 16:49:29 +02:00
Fedora Release Engineering
845456e9a7 - Second attempt - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2020-08-01 09:14:45 +00:00
Fedora Release Engineering
c5932df566 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2020-07-29 11:37:20 +00:00
alakatos
306df891f5
Rebase to 1.9.1 
Resolves: rhbz#1848788
- fix rpmlint warnings
Resolves: rhbz#1817139
 2020-07-10 09:44:22 +02:00
Jens Petersen
72a557140c upstream patch for setrlimit(RLIMIT_CORE) rootless container warnings (#1773148) 2020-03-26 18:53:44 +08:00
Jens Petersen
5d1ef1f39f remove trailing whitespaces 2020-03-26 18:53:05 +08:00
alakatos
8fc22fffbc
Update to latest development version 1.9.0b4 
Resolves: rhbz#1816593
 2020-03-25 16:47:47 +01:00
alakatos
bb269d08fa
Revert "update to 1.9.0b4" 
This reverts commit 94269e7c20.
 2020-03-25 16:10:12 +01:00
Jens Petersen
94269e7c20 update to 1.9.0b4 2020-03-24 17:24:41 +08:00
Cropi
19b1d360de
Update to latest development version 1.9.0b1 2020-03-03 13:48:35 +01:00
Fedora Release Engineering
709fe6b2d8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2020-01-31 00:29:35 +00:00
Radovan Sroka
514d3fed7f
Rebase to 1.8.29 
Resolves: rhbz#1766233
 2019-11-11 15:58:05 +01:00
Radovan Sroka
aebc79494c Rebase to 1.8.28p1 
Resolves: rhbz#176235
 2019-10-22 14:18:32 +02:00
Radovan Sroka
4e850fe054 Rebase to 1.8.28 
Resolves: rhbz#1761533

- set always_set_home by default
  Resolves: rhbz#1728687

- Sync sudoers options from rhel8 to fedora
  Resolves: rhbz#1761781

- CVE-2019-14287
  Resolves: rhbz#1761584
 2019-10-15 13:56:35 +02:00
Radovan Sroka
80a319a607 Merge #7 Drop legacy %post chmod /etc/sudoers 2019-10-15 11:03:05 +00:00
Fedora Release Engineering
14fb2d7432 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2019-07-27 00:22:59 +00:00
Marek Tamaskovic
5ee35457d5 Edit sudoers 
resolves rhbz#1676925
 2019-04-01 11:11:41 +02:00
Radovan Sroka
906c92082e Rebase sudo to 1.8.27 2019-03-11 12:32:44 +01:00
Fedora Release Engineering
bd4c63f292 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2019-02-03 08:47:43 +00:00
Igor Gnatenko
9bdb7bba3b Remove obsolete BuildRoot tag 
Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
 2019-01-29 05:36:33 +01:00
Igor Gnatenko
977357a694 Remove obsolete Group tag 
References: https://fedoraproject.org/wiki/Changes/Remove_Group_Tag
 2019-01-28 20:24:51 +01:00
Radovan Sroka
44df529c96 Rebase sudo to 1.8.25p1 2018-10-01 12:55:58 +02:00
Radovan Sroka
4f41fcf52f Rebase sudo to latest stable version 
- install /etc/dnf/protected.d/sudo instead of /etc/yum/protected.d/sudo (1626968)
 2018-09-10 13:19:02 +02:00
Fedora Release Engineering
5d1426712a - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2018-07-14 06:51:35 +00:00
Matthew Miller
126b2225b3 defattr no longer needed https://fedoraproject.org/wiki/Packaging:Guidelines#File_Permissions 2018-07-03 16:12:49 -04:00
Daniel Kopeček
9d54237c1d update to 1.8.23 2018-05-09 13:48:35 +02:00
Daniel Kopeček
81b76510d4 update to 1.8.23b3 2018-04-18 12:54:42 +02:00
Igor Gnatenko
9bb27fa63d
Remove %clean section 
None of currently supported distributions need that.
Last one was EL5 which is EOL for a while.

Signed-off-by: Igor Gnatenko <ignatenkobrain@fedoraproject.org>
 2018-02-14 08:52:13 +01:00
Fedora Release Engineering
41ef6145c0 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2018-02-09 17:52:13 +00:00
Colin Walters
29adaddcb8 Drop legacy %post chmod /etc/sudoers 
The RPM permissions have been set at `0440` for a long, long time.  This
`%post` invocation dates beyond the import from CVS in 2004.  Further,
this change will actually *undo* local admin changes to use e.g. `0600`
or something if they want to harden it further.

This is similar to: https://src.fedoraproject.org/rpms/nfs-utils/pull-request/1
I'm just making this change as it shows up as error spew when doing
`rpm-ostree compose tree`.
 2017-12-14 10:38:30 -05:00
Radovan Sroka
ddbf4e5ddd
Update to 1.8.22b1 
- Added /usr/local/sbin and /usr/local/bin to secure path
  rhbz#1166185
 2017-12-14 12:08:51 +01:00
Marek Tamaskovic
0c12737f71 Update to sudo-1.8.21p2 
Fix changelog
 2017-10-04 12:03:18 +02:00
Matthew Miller
3e6b39b185 Replace file-based requirements with package-level ones: 
- /etc/pam.d/system-auth to 'pam'
- /bin/chmod to 'coreutils' (bug #1488934)
- /usr/bin/vi to vim-minimal
- ... and make vim-minimal "recommends" instead of "requires", because
  other editors can be configured.
 2017-09-06 12:53:03 -04:00
Fedora Release Engineering
185e4548ca - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild 2017-08-03 08:56:24 +00:00
Fedora Release Engineering
7769b86dd9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild 2017-07-27 19:27:35 +00:00
Daniel Kopeček
e0f60ff106 update to 1.8.20p2 2017-06-01 12:33:48 +02:00
Daniel Kopeček
ababf7ba8f update to 1.8.20p1 
fixes CVE-2017-1000367
  Resolves: rhbz#1456884
 2017-05-31 09:05:44 +02:00
Jiri Vymazal
e43103946c * Fri Apr 07 2017 Jiri Vymazal <jvymazal@redhat.com> - 1.8.20-0.1.b1 
- update to latest development version 1.8.20b1
- added sudo to dnf/yum protected packages
  Resolves: rhbz#1418756
 2017-04-07 16:01:56 +02:00
Tomas Sykora
e05aa772e6 update to 1.8.19p2 2017-02-13 12:49:39 +01:00
Fedora Release Engineering
4a9e2fc28e - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild 2017-02-11 14:05:57 +00:00
Daniel Kopecek
e07c54ccee update to latest development version 
- fixes CVE-2016-7076
 2016-11-08 12:46:14 +01:00
Radovan Sroka
ab266a825d "update" to 1.8.19-0.1.20160923git90e4538 
- this commit changes only version, nothing else
- we were not able to update from rc and beta versions to stable
  one in fedora rawhide
- so this is a new snapshot package which resolves it
 2016-09-23 16:21:17 +02:00
Radovan Sroka
a4bd4c5ee7 Minor update 
- fix source link
 2016-09-21 17:27:54 +02:00