Author: Ubuntu Git Importer
Author Date: 2019-11-27 12:35:47 UTC

DSC file for 1.8.29-1ubuntu1

Author: Marc Deslauriers
Author Date: 2019-11-26 18:13:21 UTC

Import patches-unapplied version 1.8.29-1ubuntu1 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 5cbbd0b408b49896c6eee5c6d2dcaff92a24786e

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
  * Removed patches included in new version:
    - debian/patches/CVE-2019-14287.patch
    - debian/patches/CVE-2019-14287-2.patch

Author: Marc Deslauriers
Author Date: 2019-11-26 18:13:21 UTC

Import patches-unapplied version 1.8.29-1ubuntu1 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 5cbbd0b408b49896c6eee5c6d2dcaff92a24786e

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
  * Removed patches included in new version:
    - debian/patches/CVE-2019-14287.patch
    - debian/patches/CVE-2019-14287-2.patch

Author: Marc Deslauriers
Author Date: 2019-11-26 18:13:21 UTC

Import patches-unapplied version 1.8.29-1ubuntu1 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 5cbbd0b408b49896c6eee5c6d2dcaff92a24786e

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
  * Removed patches included in new version:
    - debian/patches/CVE-2019-14287.patch
    - debian/patches/CVE-2019-14287-2.patch

Author: Ubuntu Git Importer
Author Date: 2019-11-16 11:37:33 UTC

DSC file for 1.8.27-1+deb10u1

Author: Salvatore Bonaccorso
Author Date: 2019-10-12 13:49:01 UTC

Import patches-applied version 1.8.27-1+deb10u1 to applied/debian/buster

Imported using git-ubuntu import.

Changelog parent: 7fbed3d044216f5b27f5bf6805a3b1b36487372b
Unapplied parent: 0d7c59e6424d17f96163cb1c4456e69976888136

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Treat an ID of -1 as invalid since that means "no change" (CVE-2019-14287)
  * Fix test failure in plugins/sudoers/regress/testsudoers/test5.sh

Author: Salvatore Bonaccorso
Author Date: 2019-10-12 13:49:01 UTC

Import patches-unapplied version 1.8.27-1+deb10u1 to debian/buster

Imported using git-ubuntu import.

Changelog parent: 5c1a80c31f50de69bab122f92082ea47f511bc9c

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Treat an ID of -1 as invalid since that means "no change" (CVE-2019-14287)
  * Fix test failure in plugins/sudoers/regress/testsudoers/test5.sh

Author: Bdale Garbee
Author Date: 2019-10-29 01:27:42 UTC

Import patches-unapplied version 1.8.29-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: c5b12a03b54b5f9f66d703f3b5e2ce4028a7e4fc

New changelog entries:
  * new upstream version
  * make --libexecdir use /usr/lib instead of /usr/lib/sudo, closes: #943313

Author: Bdale Garbee
Author Date: 2019-10-29 01:27:42 UTC

Import patches-applied version 1.8.29-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 9736edee9c6a73529cac0824cb69bdf5b9233d61
Unapplied parent: 76669b1b31f6c3e201e31cab971e7f877da48086

New changelog entries:
  * new upstream version
  * make --libexecdir use /usr/lib instead of /usr/lib/sudo, closes: #943313

Author: Marc Deslauriers
Author Date: 2019-10-15 11:09:02 UTC

Import patches-unapplied version 1.8.27-1ubuntu4 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: d2355f4db68599a2d9e5069f30fc7cb81bf1419c

New changelog entries:
  * SECURITY UPDATE: privilege escalation via UID -1
    - debian/patches/CVE-2019-14287.patch: treat an ID of -1 as invalid
      in lib/util/strtoid.c.
    - debian/patches/CVE-2019-14287-2.patch: fix and add to tests in
      lib/util/regress/atofoo/atofoo_test.c,
      plugins/sudoers/regress/testsudoers/test5.out.ok,
      plugins/sudoers/regress/testsudoers/test5.sh.
    - CVE-2019-14287

Author: Marc Deslauriers
Author Date: 2019-10-15 11:09:02 UTC

Import patches-unapplied version 1.8.27-1ubuntu4 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: d2355f4db68599a2d9e5069f30fc7cb81bf1419c

New changelog entries:
  * SECURITY UPDATE: privilege escalation via UID -1
    - debian/patches/CVE-2019-14287.patch: treat an ID of -1 as invalid
      in lib/util/strtoid.c.
    - debian/patches/CVE-2019-14287-2.patch: fix and add to tests in
      lib/util/regress/atofoo/atofoo_test.c,
      plugins/sudoers/regress/testsudoers/test5.out.ok,
      plugins/sudoers/regress/testsudoers/test5.sh.
    - CVE-2019-14287

Author: Marc Deslauriers
Author Date: 2019-10-15 11:09:02 UTC

Import patches-unapplied version 1.8.27-1ubuntu4 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: d2355f4db68599a2d9e5069f30fc7cb81bf1419c

New changelog entries:
  * SECURITY UPDATE: privilege escalation via UID -1
    - debian/patches/CVE-2019-14287.patch: treat an ID of -1 as invalid
      in lib/util/strtoid.c.
    - debian/patches/CVE-2019-14287-2.patch: fix and add to tests in
      lib/util/regress/atofoo/atofoo_test.c,
      plugins/sudoers/regress/testsudoers/test5.out.ok,
      plugins/sudoers/regress/testsudoers/test5.sh.
    - CVE-2019-14287

Author: Marc Deslauriers
Author Date: 2019-10-15 11:09:02 UTC

Import patches-unapplied version 1.8.27-1ubuntu4 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: d2355f4db68599a2d9e5069f30fc7cb81bf1419c

New changelog entries:
  * SECURITY UPDATE: privilege escalation via UID -1
    - debian/patches/CVE-2019-14287.patch: treat an ID of -1 as invalid
      in lib/util/strtoid.c.
    - debian/patches/CVE-2019-14287-2.patch: fix and add to tests in
      lib/util/regress/atofoo/atofoo_test.c,
      plugins/sudoers/regress/testsudoers/test5.out.ok,
      plugins/sudoers/regress/testsudoers/test5.sh.
    - CVE-2019-14287

Author: Marc Deslauriers
Author Date: 2019-10-10 18:29:24 UTC

Import patches-unapplied version 1.8.27-1ubuntu1.1 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 8b4d1754020a0418cac2a92e0c9004744ee05613

New changelog entries:
  * SECURITY UPDATE: privilege escalation via UID -1
    - debian/patches/CVE-2019-14287.patch: treat an ID of -1 as invalid
      in lib/util/strtoid.c.
    - debian/patches/CVE-2019-14287-2.patch: fix and add to tests in
      lib/util/regress/atofoo/atofoo_test.c,
      plugins/sudoers/regress/testsudoers/test5.out.ok,
      plugins/sudoers/regress/testsudoers/test5.sh.
    - CVE-2019-14287

Author: Marc Deslauriers
Author Date: 2019-10-10 18:47:22 UTC

Import patches-unapplied version 1.8.16-0ubuntu1.8 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: b4cd4179c1623927f53767ceec0378763964c398

New changelog entries:
  * SECURITY UPDATE: privilege escalation via UID -1
    - debian/patches/CVE-2019-14287.patch: treat an ID of -1 as invalid
      in lib/util/strtoid.c.
    - CVE-2019-14287
    - debian/patches/CVE-2019-14287-2.patch: fix and add to tests in
      lib/util/regress/atofoo/atofoo_test.c,
      plugins/sudoers/regress/testsudoers/test5.out.ok,
      plugins/sudoers/regress/testsudoers/test5.sh.
    - CVE-2019-14287

Author: Marc Deslauriers
Author Date: 2019-10-10 18:47:22 UTC

Import patches-unapplied version 1.8.16-0ubuntu1.8 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: b4cd4179c1623927f53767ceec0378763964c398

New changelog entries:
  * SECURITY UPDATE: privilege escalation via UID -1
    - debian/patches/CVE-2019-14287.patch: treat an ID of -1 as invalid
      in lib/util/strtoid.c.
    - CVE-2019-14287
    - debian/patches/CVE-2019-14287-2.patch: fix and add to tests in
      lib/util/regress/atofoo/atofoo_test.c,
      plugins/sudoers/regress/testsudoers/test5.out.ok,
      plugins/sudoers/regress/testsudoers/test5.sh.
    - CVE-2019-14287

Author: Marc Deslauriers
Author Date: 2019-10-10 18:32:59 UTC

Import patches-unapplied version 1.8.21p2-3ubuntu1.1 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 9963603a127ee431d456867f717fa43e72f64347

New changelog entries:
  * SECURITY UPDATE: privilege escalation via UID -1
    - debian/patches/CVE-2019-14287.patch: treat an ID of -1 as invalid
      in lib/util/strtoid.c.
    - CVE-2019-14287
    - debian/patches/CVE-2019-14287-2.patch: fix and add to tests in
      lib/util/regress/atofoo/atofoo_test.c,
      plugins/sudoers/regress/testsudoers/test5.out.ok,
      plugins/sudoers/regress/testsudoers/test5.sh.
    - CVE-2019-14287

Author: Marc Deslauriers
Author Date: 2019-10-10 18:47:22 UTC

Import patches-unapplied version 1.8.16-0ubuntu1.8 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: b4cd4179c1623927f53767ceec0378763964c398

New changelog entries:
  * SECURITY UPDATE: privilege escalation via UID -1
    - debian/patches/CVE-2019-14287.patch: treat an ID of -1 as invalid
      in lib/util/strtoid.c.
    - CVE-2019-14287
    - debian/patches/CVE-2019-14287-2.patch: fix and add to tests in
      lib/util/regress/atofoo/atofoo_test.c,
      plugins/sudoers/regress/testsudoers/test5.out.ok,
      plugins/sudoers/regress/testsudoers/test5.sh.
    - CVE-2019-14287

Author: Marc Deslauriers
Author Date: 2019-10-10 18:32:59 UTC

Import patches-unapplied version 1.8.21p2-3ubuntu1.1 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 9963603a127ee431d456867f717fa43e72f64347

New changelog entries:
  * SECURITY UPDATE: privilege escalation via UID -1
    - debian/patches/CVE-2019-14287.patch: treat an ID of -1 as invalid
      in lib/util/strtoid.c.
    - CVE-2019-14287
    - debian/patches/CVE-2019-14287-2.patch: fix and add to tests in
      lib/util/regress/atofoo/atofoo_test.c,
      plugins/sudoers/regress/testsudoers/test5.out.ok,
      plugins/sudoers/regress/testsudoers/test5.sh.
    - CVE-2019-14287

Author: Marc Deslauriers
Author Date: 2019-10-10 18:29:24 UTC

Import patches-unapplied version 1.8.27-1ubuntu1.1 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 8b4d1754020a0418cac2a92e0c9004744ee05613

New changelog entries:
  * SECURITY UPDATE: privilege escalation via UID -1
    - debian/patches/CVE-2019-14287.patch: treat an ID of -1 as invalid
      in lib/util/strtoid.c.
    - debian/patches/CVE-2019-14287-2.patch: fix and add to tests in
      lib/util/regress/atofoo/atofoo_test.c,
      plugins/sudoers/regress/testsudoers/test5.out.ok,
      plugins/sudoers/regress/testsudoers/test5.sh.
    - CVE-2019-14287

Author: Marc Deslauriers
Author Date: 2019-10-10 18:29:24 UTC

Import patches-unapplied version 1.8.27-1ubuntu1.1 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 8b4d1754020a0418cac2a92e0c9004744ee05613

New changelog entries:
  * SECURITY UPDATE: privilege escalation via UID -1
    - debian/patches/CVE-2019-14287.patch: treat an ID of -1 as invalid
      in lib/util/strtoid.c.
    - debian/patches/CVE-2019-14287-2.patch: fix and add to tests in
      lib/util/regress/atofoo/atofoo_test.c,
      plugins/sudoers/regress/testsudoers/test5.out.ok,
      plugins/sudoers/regress/testsudoers/test5.sh.
    - CVE-2019-14287

Author: Marc Deslauriers
Author Date: 2019-10-10 18:32:59 UTC

Import patches-unapplied version 1.8.21p2-3ubuntu1.1 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 9963603a127ee431d456867f717fa43e72f64347

New changelog entries:
  * SECURITY UPDATE: privilege escalation via UID -1
    - debian/patches/CVE-2019-14287.patch: treat an ID of -1 as invalid
      in lib/util/strtoid.c.
    - CVE-2019-14287
    - debian/patches/CVE-2019-14287-2.patch: fix and add to tests in
      lib/util/regress/atofoo/atofoo_test.c,
      plugins/sudoers/regress/testsudoers/test5.out.ok,
      plugins/sudoers/regress/testsudoers/test5.sh.
    - CVE-2019-14287

Author: Balint Reczey
Author Date: 2019-02-19 08:30:21 UTC

Import patches-unapplied version 1.8.27-1ubuntu1 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 5c1a80c31f50de69bab122f92082ea47f511bc9c

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Balint Reczey
Author Date: 2019-02-19 08:30:21 UTC

Import patches-unapplied version 1.8.27-1ubuntu1 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 5c1a80c31f50de69bab122f92082ea47f511bc9c

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Balint Reczey
Author Date: 2018-08-23 17:36:40 UTC

Import patches-unapplied version 1.8.23-2ubuntu1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: d6050205eaf465b6c652835754200ffb4c117d80

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Balint Reczey
Author Date: 2018-08-23 17:36:40 UTC

Import patches-unapplied version 1.8.23-2ubuntu1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: d6050205eaf465b6c652835754200ffb4c117d80

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Balint Reczey
Author Date: 2018-08-23 17:36:40 UTC

Import patches-unapplied version 1.8.23-2ubuntu1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: d6050205eaf465b6c652835754200ffb4c117d80

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Ubuntu Git Importer
Author Date: 2018-03-07 09:46:12 UTC

pristine-tar data for sudo_1.8.21p2.orig.tar.gz

Author: Ubuntu Git Importer
Author Date: 2018-03-07 09:02:52 UTC

pristine-tar data for sudo_1.8.21p2.orig.tar.gz

Author: Balint Reczey
Author Date: 2018-01-18 00:08:16 UTC

Import patches-unapplied version 1.8.21p2-3ubuntu1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 7bf71a2a9a6c149f9273aea10121a766aa43a0f8

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Balint Reczey
Author Date: 2018-01-18 00:08:16 UTC

Import patches-unapplied version 1.8.21p2-3ubuntu1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 7bf71a2a9a6c149f9273aea10121a766aa43a0f8

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Salvatore Bonaccorso
Author Date: 2017-08-08 19:44:31 UTC

Import patches-applied version 1.8.10p3-1+deb8u5 to applied/debian/jessie

Imported using git-ubuntu import.

Changelog parent: b45531608ec00d92e3d4a28d9601b3a7845f3993
Unapplied parent: 224663cdb39577e8a11a1ad85a76f05467eca73e

New changelog entries:
  * Non-maintainer upload.
  * Use /proc/self consistently on Linux
  * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)

Author: Salvatore Bonaccorso
Author Date: 2017-08-08 19:44:31 UTC

Import patches-unapplied version 1.8.10p3-1+deb8u5 to debian/jessie

Imported using git-ubuntu import.

Changelog parent: fdb825b4f4712e8427631d738b31408d0e225954

New changelog entries:
  * Non-maintainer upload.
  * Use /proc/self consistently on Linux
  * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)

Author: Balint Reczey
Author Date: 2017-06-13 09:00:03 UTC

Import patches-unapplied version 1.8.16-0ubuntu3.3 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 884c87bb6f70a1677645af75faaf5d69eb0fdf59

New changelog entries:
  * Terminate with the same signal as the command (LP: #1686803)
    This fixes a regression introduced in sudo 1.8.15 changeset
    10229:153f016db8f1.

Author: Balint Reczey
Author Date: 2017-06-13 09:10:50 UTC

Import patches-unapplied version 1.8.16-0ubuntu1.5 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 28e14c1587c5250c4b348034268999c16de35acb

New changelog entries:
  * Terminate with the same signal as the command (LP: #1686803)
    This fixes a regression introduced in sudo 1.8.15 changeset
    10229:153f016db8f1.

Author: Balint Reczey
Author Date: 2017-06-13 09:00:03 UTC

Import patches-unapplied version 1.8.16-0ubuntu3.3 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 884c87bb6f70a1677645af75faaf5d69eb0fdf59

New changelog entries:
  * Terminate with the same signal as the command (LP: #1686803)
    This fixes a regression introduced in sudo 1.8.15 changeset
    10229:153f016db8f1.

Author: Balint Reczey
Author Date: 2017-06-13 08:00:00 UTC

Import patches-unapplied version 1.8.19p1-1ubuntu1.2 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 1cb82a26b159212ef4a78078753910ca05f636c1

New changelog entries:
  * Terminate with the same signal as the command (LP: #1686803)
    This fixes a regression introduced in sudo 1.8.15 changeset
    10229:153f016db8f1.

Author: Balint Reczey
Author Date: 2017-06-13 08:00:00 UTC

Import patches-unapplied version 1.8.19p1-1ubuntu1.2 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 1cb82a26b159212ef4a78078753910ca05f636c1

New changelog entries:
  * Terminate with the same signal as the command (LP: #1686803)
    This fixes a regression introduced in sudo 1.8.15 changeset
    10229:153f016db8f1.

Author: Balint Reczey
Author Date: 2017-06-13 08:00:00 UTC

Import patches-unapplied version 1.8.19p1-1ubuntu1.2 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 1cb82a26b159212ef4a78078753910ca05f636c1

New changelog entries:
  * Terminate with the same signal as the command (LP: #1686803)
    This fixes a regression introduced in sudo 1.8.15 changeset
    10229:153f016db8f1.

Author: Balint Reczey
Author Date: 2017-06-12 19:51:31 UTC

Import patches-unapplied version 1.8.20p2-1ubuntu1 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: c6e3579614487b217162f678aef89164b9f5bd62

New changelog entries:
  * Merge from Debian unstable. (LP: #1697587)
    Remaining changes:
    - Use tmpfs location to store timestamp files
      + debian/rules: change --with-rundir to /var/run/sudo
      + debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
        shipping init script and service file, as they are no longer
        necessary.
      + debian/*.preinst, debian/*.postinst, debian/*.postrm: remove old
        init script with dpkg-maintscript-helper.
      + debian/*.postinst: remove old /var/run/sudo to /var/lib/sudo
        transition code, remove old /var/lib/sudo/ts timestamp directory.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment
    - Dropped patches no longer needed:
      + CVE-2017-1000367.patch

Author: Balint Reczey
Author Date: 2017-06-12 19:51:31 UTC

Import patches-unapplied version 1.8.20p2-1ubuntu1 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: c6e3579614487b217162f678aef89164b9f5bd62

New changelog entries:
  * Merge from Debian unstable. (LP: #1697587)
    Remaining changes:
    - Use tmpfs location to store timestamp files
      + debian/rules: change --with-rundir to /var/run/sudo
      + debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
        shipping init script and service file, as they are no longer
        necessary.
      + debian/*.preinst, debian/*.postinst, debian/*.postrm: remove old
        init script with dpkg-maintscript-helper.
      + debian/*.postinst: remove old /var/run/sudo to /var/lib/sudo
        transition code, remove old /var/lib/sudo/ts timestamp directory.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment
    - Dropped patches no longer needed:
      + CVE-2017-1000367.patch

Author: Balint Reczey
Author Date: 2017-06-12 19:51:31 UTC

Import patches-unapplied version 1.8.20p2-1ubuntu1 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: c6e3579614487b217162f678aef89164b9f5bd62

New changelog entries:
  * Merge from Debian unstable. (LP: #1697587)
    Remaining changes:
    - Use tmpfs location to store timestamp files
      + debian/rules: change --with-rundir to /var/run/sudo
      + debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
        shipping init script and service file, as they are no longer
        necessary.
      + debian/*.preinst, debian/*.postinst, debian/*.postrm: remove old
        init script with dpkg-maintscript-helper.
      + debian/*.postinst: remove old /var/run/sudo to /var/lib/sudo
        transition code, remove old /var/lib/sudo/ts timestamp directory.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment
    - Dropped patches no longer needed:
      + CVE-2017-1000367.patch

Author: Salvatore Bonaccorso
Author Date: 2017-06-05 12:22:55 UTC

Import patches-unapplied version 1.8.19p1-2.1 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: 95400b288d5de18f230baefed4f23e1e9efbecf7

New changelog entries:
  * Non-maintainer upload.
  * Use /proc/self consistently on Linux
  * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)

Author: Salvatore Bonaccorso
Author Date: 2017-06-05 12:22:55 UTC

Import patches-applied version 1.8.19p1-2.1 to applied/debian/stretch

Imported using git-ubuntu import.

Changelog parent: 5f85faa45b28342d8070dd9130546f8cc5f2b250
Unapplied parent: 21f786e80a5df9ad61516d276ea49c6b01209c17

New changelog entries:
  * Non-maintainer upload.
  * Use /proc/self consistently on Linux
  * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)

Author: Steve Beattie
Author Date: 2017-05-29 08:05:33 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu1.4 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 5576f22c10d342b4aa28748487e797514a7956bd

New changelog entries:
  * SECURITY UPDATE: /proc/self/stat parsing confusion
    - debian/patches/CVE-2017-1000367.patch: adjust parsing to
      find ttyname
    - CVE-2017-1000367

Author: Steve Beattie
Author Date: 2017-05-29 08:05:33 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu1.4 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 5576f22c10d342b4aa28748487e797514a7956bd

New changelog entries:
  * SECURITY UPDATE: /proc/self/stat parsing confusion
    - debian/patches/CVE-2017-1000367.patch: adjust parsing to
      find ttyname
    - CVE-2017-1000367

Author: Steve Beattie
Author Date: 2017-05-29 10:24:16 UTC

Import patches-unapplied version 1.8.16-0ubuntu3.2 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: 4f469fa11cbf95f5ef6f6d93bce3470bb2c3d816

New changelog entries:
  * SECURITY UPDATE: /proc/self/stat parsing confusion
    - debian/patches/CVE-2017-1000367.patch: adjust parsing to
      find ttyname
    - CVE-2017-1000367

Author: Steve Beattie
Author Date: 2017-05-29 10:24:16 UTC

Import patches-unapplied version 1.8.16-0ubuntu3.2 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: 4f469fa11cbf95f5ef6f6d93bce3470bb2c3d816

New changelog entries:
  * SECURITY UPDATE: /proc/self/stat parsing confusion
    - debian/patches/CVE-2017-1000367.patch: adjust parsing to
      find ttyname
    - CVE-2017-1000367

Author: Steve Beattie
Author Date: 2017-05-29 08:05:33 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu1.4 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 5576f22c10d342b4aa28748487e797514a7956bd

New changelog entries:
  * SECURITY UPDATE: /proc/self/stat parsing confusion
    - debian/patches/CVE-2017-1000367.patch: adjust parsing to
      find ttyname
    - CVE-2017-1000367

Author: Steve Beattie
Author Date: 2017-05-29 10:25:14 UTC

Import patches-unapplied version 1.8.19p1-1ubuntu1.1 to ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: bcfb2c324dd70a1b3408316f20a04930c1bbedd2

New changelog entries:
  * SECURITY UPDATE: /proc/self/stat parsing confusion
    - debian/patches/CVE-2017-1000367.patch: adjust parsing to
      find ttyname
    - CVE-2017-1000367

Author: Timo Aaltonen
Author Date: 2017-01-13 23:41:17 UTC

Import patches-unapplied version 1.8.19p1-1ubuntu1 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 1cdae8042761a52d7aa7441cd203d441195d9c78

New changelog entries:
  * Merge from Debian unstable. (LP: #1607666)
    Remaining changes:
    - Use tmpfs location to store timestamp files
      + debian/rules: change --with-rundir to /var/run/sudo
      + debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
        shipping init script and service file, as they are no longer
        necessary.
      + debian/*.preinst, debian/*.postinst, debian/*.postrm: remove old
        init script with dpkg-maintscript-helper.
      + debian/*.postinst: remove old /var/run/sudo to /var/lib/sudo
        transition code, remove old /var/lib/sudo/ts timestamp directory.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment
    - Dropped patches no longer needed:
      + debian/patches/lp1565567.patch: upstream.
      + debian/patches/also_check_sudo_group.diff: upstream.

Author: Michael Vogt
Author Date: 2016-10-10 08:10:46 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu1.3 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 30666d15e325c0b2034b9aca8d3af2d87802b009

New changelog entries:
  * debian/sudoers:
    - include /snap/bin in the secure_path (LP: #1595558)

Author: Michael Vogt
Author Date: 2016-08-15 16:08:34 UTC

Import patches-unapplied version 1.8.16-0ubuntu3 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: be278ba26aa1dcb40549e27bc110c70e4f69fc39

New changelog entries:
  * debian/sudoers:
    - include /snap/bin in the secure_path (LP: #1595558)

Author: Ben Hutchings
Author Date: 2016-01-05 18:48:03 UTC

Import patches-unapplied version 1.8.5p2-1+nmu3+deb7u1 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: e1c94c2542343fdfac7c17b7f9a5a90bc2be945c

New changelog entries:
  * Non-maintainer upload
  * Fix CVE-2014-9680-{1,2}.patch to edit sudoers.pod, not just the
    generated docs
  * Disable editing of files via user-controllable symlinks
    (Closes: #804149) (CVE-2015-5602)
    - sudoedit path restriction bypass using symlinks
    - Change warning when user tries to sudoedit a symbolic link
    - Open sudoedit files with O_NONBLOCK and fail if they are not regular files
    - Remove S_ISREG check from sudo_edit_open(), it is already done in the
      caller
    - Add directory writability checks for sudoedit
    - Fix directory writability checks for sudoedit
    - Enable sudoedit directory writability checks by default

Author: Ben Hutchings
Author Date: 2016-01-05 18:48:03 UTC

Import patches-applied version 1.8.5p2-1+nmu3+deb7u1 to applied/debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 7eba7ed075b65dba7abe53613ff768d7142562ff
Unapplied parent: 4435a0496702fccdba9f71f942a1a0abc92d8cfe

New changelog entries:
  * Non-maintainer upload
  * Fix CVE-2014-9680-{1,2}.patch to edit sudoers.pod, not just the
    generated docs
  * Disable editing of files via user-controllable symlinks
    (Closes: #804149) (CVE-2015-5602)
    - sudoedit path restriction bypass using symlinks
    - Change warning when user tries to sudoedit a symbolic link
    - Open sudoedit files with O_NONBLOCK and fail if they are not regular files
    - Remove S_ISREG check from sudo_edit_open(), it is already done in the
      caller
    - Add directory writability checks for sudoedit
    - Fix directory writability checks for sudoedit
    - Enable sudoedit directory writability checks by default

Author: Marc Deslauriers
Author Date: 2016-03-30 12:03:52 UTC

Import patches-unapplied version 1.8.16-0ubuntu1 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 042d941ec39a7eb692354e73980c914bdc61a71d

New changelog entries:
  * Update to new upstream version 1.8.16. (LP: #1563825)
    - Dropped patches no longer needed:
      + CVE-2015-5602-6.patch
      + CVE-2015-5602-7.patch
  * Merge from Debian unstable. Remaining changes:
    - Use tmpfs location to store timestamp files
      + debian/rules: change --with-rundir to /var/run/sudo
      + debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
        shipping init script and service file, as they are no longer
        necessary.
      + debian/*.preinst, debian/*.postinst, debian/*.postrm: remove old
        init script with dpkg-maintscript-helper.
      + debian/*.postinst: remove old /var/run/sudo to /var/lib/sudo
        transition code, remove old /var/lib/sudo/ts timestamp directory.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/sudoers:
      + also grant admin group sudo access
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/control:
      + dh-autoreconf dependency fixes missing-build-dependency-for-dh_-command
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment
      + debian/patches/also_check_sudo_group.diff: also check the sudo group
        in plugins/sudoers/sudoers.c to create the admin flag file. Leave the
        admin group check for backwards compatibility.
    - Dropped patches no longer needed:
      + debian/patches/pam_check_untranslated_prompt.patch: upstream.

Author: Mathieu Trudel-Lapierre
Author Date: 2015-09-22 15:57:43 UTC

Import patches-unapplied version 1.8.12-1ubuntu3 to ubuntu/wily-proposed

Imported using git-ubuntu import.

Changelog parent: 5556432ebc881b9b31733feb9546730a2c145346

New changelog entries:
  * debian/patches/pam_check_untranslated_prompt.patch: also check the un-
    translated version of the prompt when checking if the PAM prompt matches
    "Password:". Patch from Joel Pelaez Jorge. (LP: #1414303)

Author: Mathieu Trudel-Lapierre
Author Date: 2015-09-22 15:57:43 UTC

Import patches-unapplied version 1.8.12-1ubuntu3 to ubuntu/wily-proposed

Imported using git-ubuntu import.

Changelog parent: 5556432ebc881b9b31733feb9546730a2c145346

New changelog entries:
  * debian/patches/pam_check_untranslated_prompt.patch: also check the un-
    translated version of the prompt when checking if the PAM prompt matches
    "Password:". Patch from Joel Pelaez Jorge. (LP: #1414303)

Author: Mathieu Trudel-Lapierre
Author Date: 2015-09-22 15:57:43 UTC

Import patches-unapplied version 1.8.12-1ubuntu3 to ubuntu/wily-proposed

Imported using git-ubuntu import.

Changelog parent: 5556432ebc881b9b31733feb9546730a2c145346

New changelog entries:
  * debian/patches/pam_check_untranslated_prompt.patch: also check the un-
    translated version of the prompt when checking if the PAM prompt matches
    "Password:". Patch from Joel Pelaez Jorge. (LP: #1414303)

Author: Marc Deslauriers
Author Date: 2015-03-12 15:20:35 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu2.1 to ubuntu/utopic-security

Imported using git-ubuntu import.

Changelog parent: 7d90dbb237a3325d0c5b7fe8438a92aa44c6db13

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.ac, doc/sudoers.cat, doc/sudoers.man.in,
      doc/sudoers.mdoc.in, m4/sudo.m4, pathnames.h.in,
      plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 16:21:20 UTC

Import patches-unapplied version 1.7.2p1-1ubuntu5.8 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 14d47378dfff3c89f5db84122f1f85278b5a98f7

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - configure, configure.in, doc/sudoers.cat, doc/sudoers.man.in,
      pathnames.h.in, plugins/sudoers/env.c: sanity check TZ env variable.
    - http://www.sudo.ws/repos/sudo/rev/650ac6938b59
    - http://www.sudo.ws/repos/sudo/rev/ac1467f71ac0
    - http://www.sudo.ws/repos/sudo/rev/91859f613b88
    - http://www.sudo.ws/repos/sudo/rev/579b02f0dbe0
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 16:21:20 UTC

Import patches-unapplied version 1.7.2p1-1ubuntu5.8 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 14d47378dfff3c89f5db84122f1f85278b5a98f7

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - configure, configure.in, doc/sudoers.cat, doc/sudoers.man.in,
      pathnames.h.in, plugins/sudoers/env.c: sanity check TZ env variable.
    - http://www.sudo.ws/repos/sudo/rev/650ac6938b59
    - http://www.sudo.ws/repos/sudo/rev/ac1467f71ac0
    - http://www.sudo.ws/repos/sudo/rev/91859f613b88
    - http://www.sudo.ws/repos/sudo/rev/579b02f0dbe0
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 16:21:20 UTC

Import patches-unapplied version 1.7.2p1-1ubuntu5.8 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 14d47378dfff3c89f5db84122f1f85278b5a98f7

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - configure, configure.in, doc/sudoers.cat, doc/sudoers.man.in,
      pathnames.h.in, plugins/sudoers/env.c: sanity check TZ env variable.
    - http://www.sudo.ws/repos/sudo/rev/650ac6938b59
    - http://www.sudo.ws/repos/sudo/rev/ac1467f71ac0
    - http://www.sudo.ws/repos/sudo/rev/91859f613b88
    - http://www.sudo.ws/repos/sudo/rev/579b02f0dbe0
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 15:32:42 UTC

Import patches-unapplied version 1.8.3p1-1ubuntu3.7 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 1ff87b50c0608fc4bf07dd3996237b694d7f6174

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.in, doc/sudoers.cat, doc/sudoers.man.in,
      pathnames.h.in, plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 15:32:42 UTC

Import patches-unapplied version 1.8.3p1-1ubuntu3.7 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 1ff87b50c0608fc4bf07dd3996237b694d7f6174

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.in, doc/sudoers.cat, doc/sudoers.man.in,
      pathnames.h.in, plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 15:32:42 UTC

Import patches-unapplied version 1.8.3p1-1ubuntu3.7 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 1ff87b50c0608fc4bf07dd3996237b694d7f6174

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.in, doc/sudoers.cat, doc/sudoers.man.in,
      pathnames.h.in, plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 15:20:35 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu2.1 to ubuntu/utopic-security

Imported using git-ubuntu import.

Changelog parent: 7d90dbb237a3325d0c5b7fe8438a92aa44c6db13

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.ac, doc/sudoers.cat, doc/sudoers.man.in,
      doc/sudoers.mdoc.in, m4/sudo.m4, pathnames.h.in,
      plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 15:20:35 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu2.1 to ubuntu/utopic-security

Imported using git-ubuntu import.

Changelog parent: 7d90dbb237a3325d0c5b7fe8438a92aa44c6db13

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.ac, doc/sudoers.cat, doc/sudoers.man.in,
      doc/sudoers.mdoc.in, m4/sudo.m4, pathnames.h.in,
      plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 14:45:21 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu5 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: c132dddbccb8f41f91a8c624ff5d976e80799d19

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.ac, doc/sudoers.cat, doc/sudoers.man.in,
      doc/sudoers.mdoc.in, m4/sudo.m4, pathnames.h.in,
      plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 14:45:21 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu5 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: c132dddbccb8f41f91a8c624ff5d976e80799d19

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.ac, doc/sudoers.cat, doc/sudoers.man.in,
      doc/sudoers.mdoc.in, m4/sudo.m4, pathnames.h.in,
      plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 14:45:21 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu5 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: c132dddbccb8f41f91a8c624ff5d976e80799d19

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.ac, doc/sudoers.cat, doc/sudoers.man.in,
      doc/sudoers.mdoc.in, m4/sudo.m4, pathnames.h.in,
      plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Andrey Bondarenko
Author Date: 2014-08-22 19:18:05 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu2 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 4d2d1a11b887c1f4fd3f3534d2b64d1a46e293f5

New changelog entries:
  * debian/sudo_root.8: mention sudo group instead of deprecated group
    admin (LP: #1130643)

Author: Andrey Bondarenko
Author Date: 2014-08-22 19:18:05 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu2 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 4d2d1a11b887c1f4fd3f3534d2b64d1a46e293f5

New changelog entries:
  * debian/sudo_root.8: mention sudo group instead of deprecated group
    admin (LP: #1130643)

Author: Marc Deslauriers
Author Date: 2014-03-11 11:58:51 UTC

Import patches-unapplied version 1.8.5p2-1ubuntu1.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: 190ec5cd0b51711f7fb0c3fceb4594d43b836da9

New changelog entries:
  * debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
    epoch in init scripts so they are properly invalidated. (LP: #1223297)

Author: Marc Deslauriers
Author Date: 2014-03-11 11:58:51 UTC

Import patches-unapplied version 1.8.5p2-1ubuntu1.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: 190ec5cd0b51711f7fb0c3fceb4594d43b836da9

New changelog entries:
  * debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
    epoch in init scripts so they are properly invalidated. (LP: #1223297)

Author: Marc Deslauriers
Author Date: 2014-03-11 12:00:06 UTC

Import patches-unapplied version 1.8.6p3-0ubuntu3.1 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 4cfd4b7aa364bcae15500b47d7d9ece4f44ddcce

New changelog entries:
  * debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
    epoch in init scripts so they are properly invalidated. (LP: #1223297)

Author: Marc Deslauriers
Author Date: 2014-03-11 12:00:06 UTC

Import patches-unapplied version 1.8.6p3-0ubuntu3.1 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 4cfd4b7aa364bcae15500b47d7d9ece4f44ddcce

New changelog entries:
  * debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
    epoch in init scripts so they are properly invalidated. (LP: #1223297)

Author: Marc Deslauriers
Author Date: 2014-03-11 12:00:06 UTC

Import patches-unapplied version 1.8.6p3-0ubuntu3.1 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 4cfd4b7aa364bcae15500b47d7d9ece4f44ddcce

New changelog entries:
  * debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
    epoch in init scripts so they are properly invalidated. (LP: #1223297)

Author: Marc Deslauriers
Author Date: 2014-03-11 11:58:51 UTC

Import patches-unapplied version 1.8.5p2-1ubuntu1.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: 190ec5cd0b51711f7fb0c3fceb4594d43b836da9

New changelog entries:
  * debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
    epoch in init scripts so they are properly invalidated. (LP: #1223297)

Author: Chris J Arges
Author Date: 2014-02-10 18:21:53 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu1 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: f5c2087f211cc92de1124909dc3b01901b45bc87

New changelog entries:
  * Merge from Debian unstable. Remaining changes:
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/sudoers:
      + also grant admin group sudo access
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/control:
      + dh-autoreconf dependency fixes missing-build-dependency-for-dh_-command
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment
      + actually-use-buildflags: Pass LDFLAGS everywhere
      + add_probe_interfaces_setting.diff: option to disable network inf probe
  * add_probe_interfaces_setting.diff: fix to not modify NEWS file.

Author: Bdale Garbee
Author Date: 2013-12-30 04:36:12 UTC

Import patches-applied version 1.8.9~rc1-1 to applied/debian/experimental

Imported using git-ubuntu import.

Changelog parent: b1b37e8b6d67b03486fa65e8c4378ed8824ded63
Unapplied parent: d7bff29cda880bc8e38ba9c09d9a9a62d6b2e302

New changelog entries:
  * upstream release candidate

Author: Bdale Garbee
Author Date: 2013-12-30 04:36:12 UTC

Import patches-unapplied version 1.8.9~rc1-1 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: a2dc504a566577fefbf06927da84e037fc46916b

New changelog entries:
  * upstream release candidate

Author: Michael Gilbert
Author Date: 2013-03-06 18:41:15 UTC

Import patches-unapplied version 1.7.4p4-2.squeeze.4 to debian/squeeze

Imported using git-ubuntu import.

Changelog parent: c4d9653f282953a6f3b0e639066f21339aa449bb

New changelog entries:
  * Fix cve-2013-1775: authentication bypass when the clock is set to the UNIX
    epoch [00:00:00 UTC on 1 January 1970] (closes: #701838).
  * Fix cve-2013-1776: session id hijacking from another authorized tty
    (closes: #701839).

Author: Michael Gilbert
Author Date: 2013-03-06 18:41:15 UTC

Import patches-applied version 1.7.4p4-2.squeeze.4 to applied/debian/squeeze

Imported using git-ubuntu import.

Changelog parent: 2f8370b7e8f7372f54c7aa3d690010bfb0095d73
Unapplied parent: 1322cad5c309b0d68d2bc94a1b053e1f532f2c05

New changelog entries:
  * Fix cve-2013-1775: authentication bypass when the clock is set to the UNIX
    epoch [00:00:00 UTC on 1 January 1970] (closes: #701838).
  * Fix cve-2013-1776: session id hijacking from another authorized tty
    (closes: #701839).

Author: Marc Deslauriers
Author Date: 2013-02-27 18:26:26 UTC

Import patches-unapplied version 1.8.6p3-0ubuntu3 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 050d0116b677ba7bfbfcf40d58938cebfb34aafb

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in plugins/sudoers/check.c.
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 18:26:26 UTC

Import patches-unapplied version 1.8.6p3-0ubuntu3 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 050d0116b677ba7bfbfcf40d58938cebfb34aafb

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in plugins/sudoers/check.c.
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 18:26:26 UTC

Import patches-unapplied version 1.8.6p3-0ubuntu3 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 050d0116b677ba7bfbfcf40d58938cebfb34aafb

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in plugins/sudoers/check.c.
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 18:26:26 UTC

Import patches-unapplied version 1.8.6p3-0ubuntu3 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 050d0116b677ba7bfbfcf40d58938cebfb34aafb

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in plugins/sudoers/check.c.
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 18:38:01 UTC

Import patches-unapplied version 1.7.4p6-1ubuntu2.2 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: 9f82fc36089f57bbc52a023949cc56c83bfb3478

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in check.c.
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 18:38:01 UTC

Import patches-unapplied version 1.7.4p6-1ubuntu2.2 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: 9f82fc36089f57bbc52a023949cc56c83bfb3478

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in check.c.
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 18:38:01 UTC

Import patches-unapplied version 1.7.4p6-1ubuntu2.2 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: 9f82fc36089f57bbc52a023949cc56c83bfb3478

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in check.c.
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 19:28:45 UTC

Import patches-unapplied version 1.6.9p10-1ubuntu3.10 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 3d0a9db1af4ac7f91afe294dffec5cb47fabd182

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in check.c.
    - backported from ddf399e3e306ca238f6f1cda8153889b15bba12e
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 19:28:45 UTC

Import patches-unapplied version 1.6.9p10-1ubuntu3.10 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 3d0a9db1af4ac7f91afe294dffec5cb47fabd182

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in check.c.
    - backported from ddf399e3e306ca238f6f1cda8153889b15bba12e
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 19:28:45 UTC

Import patches-unapplied version 1.6.9p10-1ubuntu3.10 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 3d0a9db1af4ac7f91afe294dffec5cb47fabd182

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in check.c.
    - backported from ddf399e3e306ca238f6f1cda8153889b15bba12e
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2012-11-22 21:08:01 UTC

Import patches-unapplied version 1.7.2p1-1ubuntu5.5 to ubuntu/lucid-proposed

Imported using git-ubuntu import.

Changelog parent: 73af2ef010f38cf1fb57e6921b8acf34819b3b74

New changelog entries:
  * toke.{cl}: avoid duplicate fclose() of the sudoers file (LP: #553786)
    - http://www.sudo.ws/repos/sudo/rev/164d39108dde

Author: Tyler Hicks
Author Date: 2012-07-16 12:01:42 UTC

Import patches-unapplied version 1.8.5p2-1ubuntu1 to ubuntu/quantal

Imported using git-ubuntu import.

Changelog parent: a00f27807da8e0e0dc70d22c7ed3113c41c20400

New changelog entries:
  * Merge from debian/testing (LP: #1024154), remaining changes:
    - debian/patches/keep_home_by_default.patch:
      + Set HOME in initial_keepenv_table.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets (Ubuntu specific)
      + install man/man8/sudo_root.8 in both flavours (Ubuntu specific)
      + install apport hooks
      + The ubuntu-sudo-as-admin-successful.patch was taken upstream by
        Debian however it requires a --enable-admin-flag configure flag to
        actually enable it in both flavours.
    - debian/control:
      + Mark Debian Vcs-* as XS-Debian-Vcs-*
      + update debian/control
    - debian/sudoers:
      + grant admin group sudo access
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
  * Dropped changes:
    - debian/patches/lp927828-fix-abort-in-pam-modules-when-timestamp-valid.patch
      + Fixed upstream in 1.8.5
    - debian/patches/CVE-2012-2337.patch:
      + Fixed upstream in 1.8.4p5
    - debian/patches/pam_env_merge.patch:
      + Feature released upstream in 1.8.5
    - debian/{sudo,sudo-ldap}.{preinst,postinst,postrm}:
      + Drop Ubuntu-specific sudoers file migration code because the only
        upgrade path to quantal is from precise. All necessary sudoers file
        migration will have already been done by the time this version of the
        sudo package is installed.

Author: Tyler Hicks
Author Date: 2012-05-21 05:48:10 UTC

Import patches-unapplied version 1.8.3p1-1ubuntu3.3 to ubuntu/precise-proposed

Imported using git-ubuntu import.

Changelog parent: fb39f00ca6f9abc0c56edd2d3cdfce3b9cdea376

New changelog entries:
  * debian/patches/pam_env_merge.patch: Merge the PAM environment into the
    user environment (LP: #982684)
  * debian/sudo.pam: Use pam_env to read /etc/environment and
    /etc/default/locale environment files. Reading ~/.pam_environment is not
    permitted due to security reasons.

Author: Tyler Hicks
Author Date: 2012-05-16 04:28:04 UTC

Import patches-unapplied version 1.7.4p4-5ubuntu7.2 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 726934a92568cf3ed6174123701cb374d8c330f9

New changelog entries:
  * SECURITY UPDATE: Properly handle multiple netmasks in sudoers Host and
    Host_List values
    - debian/patches/CVE-2012-2337.patch: Don't perform IPv6 checks on IPv4
      addresses. Based on upstream patch.
    - CVE-2012-2337

Author: Tyler Hicks
Author Date: 2012-05-16 04:28:04 UTC

Import patches-unapplied version 1.7.4p4-5ubuntu7.2 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 726934a92568cf3ed6174123701cb374d8c330f9

New changelog entries:
  * SECURITY UPDATE: Properly handle multiple netmasks in sudoers Host and
    Host_List values
    - debian/patches/CVE-2012-2337.patch: Don't perform IPv6 checks on IPv4
      addresses. Based on upstream patch.
    - CVE-2012-2337

Author: Tyler Hicks
Author Date: 2012-05-16 04:28:04 UTC

Import patches-unapplied version 1.7.4p4-5ubuntu7.2 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 726934a92568cf3ed6174123701cb374d8c330f9

New changelog entries:
  * SECURITY UPDATE: Properly handle multiple netmasks in sudoers Host and
    Host_List values
    - debian/patches/CVE-2012-2337.patch: Don't perform IPv6 checks on IPv4
      addresses. Based on upstream patch.
    - CVE-2012-2337