Ubuntu
sudo package

Please merge sudo (main) 1.8.20p2-1 from Debian unstable (main)

Bug #1697587 reported by Balint Reczey
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
sudo (Ubuntu)
Fix Released
High
Unassigned

Bug Description

It fixes LP: #1686803 and contains new upstream releases.

See original description
Tags: patch

CVE References

Balint Reczey (rbalint)
Changed in sudo (Ubuntu):
assignee: nobody → Balint Reczey (rbalint)
status: New → In Progress
Revision history for this message
Balint Reczey (rbalint) wrote :

Changes:
 sudo (1.8.20p2-1ubuntu1) artful; urgency=low
 .
   * Merge from Debian unstable. (LP: #1697587)
     Remaining changes:
     - Use tmpfs location to store timestamp files
       + debian/rules: change --with-rundir to /var/run/sudo
       + debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
         shipping init script and service file, as they are no longer
         necessary.
       + debian/*.preinst, debian/*.postinst, debian/*.postrm: remove old
         init script with dpkg-maintscript-helper.
       + debian/*.postinst: remove old /var/run/sudo to /var/lib/sudo
         transition code, remove old /var/lib/sudo/ts timestamp directory.
     - debian/rules:
       + compile with --without-lecture --with-tty-tickets --enable-admin-flag
       + install man/man8/sudo_root.8 in both flavours
       + install apport hooks
     - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
       + add usr/share/apport/package-hooks
     - debian/sudo.pam:
       + Use pam_env to read /etc/environment and /etc/default/locale
         environment files. Reading ~/.pam_environment is not permitted due to
         security reasons.
     - debian/sudoers:
       + also grant admin group sudo access
       + include /snap/bin in the secure_path
     - debian/control, debian/rules:
       + use dh-autoreconf
     - Remaining patches:
       + keep_home_by_default.patch: Keep HOME in the default environment
     - Dropped patches no longer needed:
       + CVE-2017-1000367.patch
 .
 sudo (1.8.20p2-1) unstable; urgency=medium
 .
   * new upstream version
 .
 sudo (1.8.20p1-1.1) unstable; urgency=high
 .
   * Non-maintainer upload.
   * Use /proc/self consistently on Linux
   * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)
 .
 sudo (1.8.20p1-1) unstable; urgency=high
 .
   * New upstream version with fix for CVE-2017-1000367, closes: #863731
 .
 sudo (1.8.20-1) unstable; urgency=medium
 .
   * New upstream version
   * patch from Helmut Grohne to fix cross-building issues, closes: #847131
     + Let dh_auto_configure pass --host to configure
     + Honour DEB_BUILD_OPTIONS=nocheck
 .

Revision history for this message
Balint Reczey (rbalint) wrote :
Revision history for this message
Balint Reczey (rbalint) wrote :
Changed in sudo (Ubuntu):
status: In Progress → Confirmed
assignee: Balint Reczey (rbalint) → nobody
Balint Reczey (rbalint)
tags: added: patch
Bhavani Shankar (bhavi)
Changed in sudo (Ubuntu):
importance: Undecided → High
Amr Ibrahim (amribrahim1987)
description: updated
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package sudo - 1.8.20p2-1ubuntu1

---------------
sudo (1.8.20p2-1ubuntu1) artful; urgency=low

  * Merge from Debian unstable. (LP: #1697587)
    Remaining changes:
    - Use tmpfs location to store timestamp files
      + debian/rules: change --with-rundir to /var/run/sudo
      + debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
        shipping init script and service file, as they are no longer
        necessary.
      + debian/*.preinst, debian/*.postinst, debian/*.postrm: remove old
        init script with dpkg-maintscript-helper.
      + debian/*.postinst: remove old /var/run/sudo to /var/lib/sudo
        transition code, remove old /var/lib/sudo/ts timestamp directory.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment
    - Dropped patches no longer needed:
      + CVE-2017-1000367.patch

sudo (1.8.20p2-1) unstable; urgency=medium

  * new upstream version

sudo (1.8.20p1-1.1) unstable; urgency=high

  * Non-maintainer upload.
  * Use /proc/self consistently on Linux
  * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)

sudo (1.8.20p1-1) unstable; urgency=high

  * New upstream version with fix for CVE-2017-1000367, closes: #863731

sudo (1.8.20-1) unstable; urgency=medium

  * New upstream version
  * patch from Helmut Grohne to fix cross-building issues, closes: #847131
    + Let dh_auto_configure pass --host to configure
    + Honour DEB_BUILD_OPTIONS=nocheck

 -- Balint Reczey <email address hidden> Mon, 12 Jun 2017 21:51:31 +0200

Changed in sudo (Ubuntu):
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.