sudo 1.8.3p1-1ubuntu3.10 source package in Ubuntu
Changelog
sudo (1.8.3p1-1ubuntu3.10) precise-security; urgency=medium
* SECURITY UPDATE: heap-based buffer overflow
- debian/patches/CVE-2021-3156-1.patch: reset valid_flags to
MODE_NONINTERACTIVE for sudoedit in src/parse_args.c.
- debian/patches/CVE-2021-3156-2.patch: add sudoedit flag checks in
plugin in plugins/sudoers/sudoers.c.
- debian/patches/CVE-2021-3156-3.patch: fix potential buffer overflow
when unescaping backslashes in plugins/sudoers/sudoers.c.
- debian/patches/CVE-2021-3156-5.patch: don't assume that argv is
allocated as a single flat buffer in src/parse_args.c.
- CVE-2021-3156
-- Leonidas Da Silva Barbosa <email address hidden> Wed, 27 Jan 2021 08:49:33 -0300
Upload details
- Uploaded by:
- Leonidas S. Barbosa
- Uploaded to:
- Precise
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- admin
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Precise | updates | main | admin | |
| Precise | security | main | admin |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| sudo_1.8.3p1.orig.tar.gz | 1.5 MiB | 1a22635bc5a0a84df273a893c624d45f628c78668317c5bc442dac11db55bb82 |
| sudo_1.8.3p1-1ubuntu3.10.debian.tar.gz | 40.9 KiB | 48e26dedf6596a4ca80a76619d988a3e73fd03ad291b74aae6f0addcc8a8d215 |
| sudo_1.8.3p1-1ubuntu3.10.dsc | 1.9 KiB | 7bc4e6b7a7baf570fe66f9f84a18974bf2dc2cf967b6c3234c2c7fe7aa09fc25 |
Available diffs
Binary packages built by this source
- sudo: Provide limited super user privileges to specific users
Sudo is a program designed to allow a sysadmin to give limited root
privileges to users and log root activity. The basic philosophy is to give
as few privileges as possible but still allow people to get their work done.
.
This version is built with minimal shared library dependencies, use the
sudo-ldap package instead if you need LDAP support for sudoers.
- sudo-dbgsym: debug symbols for package sudo
Sudo is a program designed to allow a sysadmin to give limited root
privileges to users and log root activity. The basic philosophy is to give
as few privileges as possible but still allow people to get their work done.
.
This version is built with minimal shared library dependencies, use the
sudo-ldap package instead if you need LDAP support for sudoers.
- sudo-ldap: Provide limited super user privileges to specific users
Sudo is a program designed to allow a sysadmin to give limited root
privileges to users and log root activity. The basic philosophy is to give
as few privileges as possible but still allow people to get their work done.
.
This version is built with LDAP support, which allows an equivalent of the
sudoers database to be distributed via LDAP. Authentication is still
performed via pam.
- sudo-ldap-dbgsym: debug symbols for package sudo-ldap
Sudo is a program designed to allow a sysadmin to give limited root
privileges to users and log root activity. The basic philosophy is to give
as few privileges as possible but still allow people to get their work done.
.
This version is built with LDAP support, which allows an equivalent of the
sudoers database to be distributed via LDAP. Authentication is still
performed via pam.
