Author: Ubuntu Git Importer
Author Date: 2019-02-19 10:10:18 UTC

DSC file for 1.8.27-1ubuntu1

Author: Balint Reczey
Author Date: 2019-02-19 08:30:21 UTC

Import patches-unapplied version 1.8.27-1ubuntu1 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 5c1a80c31f50de69bab122f92082ea47f511bc9c

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Balint Reczey
Author Date: 2019-02-19 08:30:21 UTC

Import patches-unapplied version 1.8.27-1ubuntu1 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 5c1a80c31f50de69bab122f92082ea47f511bc9c

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Balint Reczey
Author Date: 2019-02-19 08:30:21 UTC

Import patches-unapplied version 1.8.27-1ubuntu1 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 5c1a80c31f50de69bab122f92082ea47f511bc9c

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Balint Reczey
Author Date: 2019-02-19 08:30:21 UTC

Import patches-unapplied version 1.8.27-1ubuntu1 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 5c1a80c31f50de69bab122f92082ea47f511bc9c

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Ubuntu Git Importer
Author Date: 2019-01-12 22:54:41 UTC

DSC file for 1.8.27-1

Author: Bdale Garbee
Author Date: 2019-01-12 18:10:05 UTC

Import patches-applied version 1.8.27-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 4e30a58cce7f24a8b1f76ab14b3e25c5e2614655
Unapplied parent: 07495aa2f16a5ea7591cd83de8f1a82ed9de2c89

New changelog entries:
  * new upstream version

Author: Bdale Garbee
Author Date: 2019-01-12 18:10:05 UTC

Import patches-unapplied version 1.8.27-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: c159f76edd07fb589ce6f210d828a740bda29377

New changelog entries:
  * new upstream version

Author: Bdale Garbee
Author Date: 2019-01-12 18:10:05 UTC

Import patches-unapplied version 1.8.27-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: c159f76edd07fb589ce6f210d828a740bda29377

New changelog entries:
  * new upstream version

Author: Bdale Garbee
Author Date: 2019-01-12 18:10:05 UTC

Import patches-applied version 1.8.27-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 4e30a58cce7f24a8b1f76ab14b3e25c5e2614655
Unapplied parent: 07495aa2f16a5ea7591cd83de8f1a82ed9de2c89

New changelog entries:
  * new upstream version

Author: Balint Reczey
Author Date: 2018-08-23 17:36:40 UTC

Import patches-unapplied version 1.8.23-2ubuntu1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: d6050205eaf465b6c652835754200ffb4c117d80

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Balint Reczey
Author Date: 2018-08-23 17:36:40 UTC

Import patches-unapplied version 1.8.23-2ubuntu1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: d6050205eaf465b6c652835754200ffb4c117d80

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Balint Reczey
Author Date: 2018-08-23 17:36:40 UTC

Import patches-unapplied version 1.8.23-2ubuntu1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: d6050205eaf465b6c652835754200ffb4c117d80

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Ubuntu Git Importer
Author Date: 2018-03-07 09:46:12 UTC

pristine-tar data for sudo_1.8.21p2.orig.tar.gz

Author: Ubuntu Git Importer
Author Date: 2018-03-07 09:02:52 UTC

pristine-tar data for sudo_1.8.21p2.orig.tar.gz

Author: Balint Reczey
Author Date: 2018-01-18 00:08:16 UTC

Import patches-unapplied version 1.8.21p2-3ubuntu1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 7bf71a2a9a6c149f9273aea10121a766aa43a0f8

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Balint Reczey
Author Date: 2018-01-18 00:08:16 UTC

Import patches-unapplied version 1.8.21p2-3ubuntu1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 7bf71a2a9a6c149f9273aea10121a766aa43a0f8

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Balint Reczey
Author Date: 2018-01-18 00:08:16 UTC

Import patches-unapplied version 1.8.21p2-3ubuntu1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 7bf71a2a9a6c149f9273aea10121a766aa43a0f8

New changelog entries:
  * Merge from Debian unstable.
    Remaining changes:
    - debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
      shipping init script and service file, as they are no longer
      necessary.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment

Author: Salvatore Bonaccorso
Author Date: 2017-08-08 19:44:31 UTC

Import patches-unapplied version 1.8.10p3-1+deb8u5 to debian/jessie

Imported using git-ubuntu import.

Changelog parent: fdb825b4f4712e8427631d738b31408d0e225954

New changelog entries:
  * Non-maintainer upload.
  * Use /proc/self consistently on Linux
  * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)

Author: Salvatore Bonaccorso
Author Date: 2017-08-08 19:44:31 UTC

Import patches-applied version 1.8.10p3-1+deb8u5 to applied/debian/jessie

Imported using git-ubuntu import.

Changelog parent: b45531608ec00d92e3d4a28d9601b3a7845f3993
Unapplied parent: 224663cdb39577e8a11a1ad85a76f05467eca73e

New changelog entries:
  * Non-maintainer upload.
  * Use /proc/self consistently on Linux
  * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)

Author: Balint Reczey
Author Date: 2017-06-13 09:10:50 UTC

Import patches-unapplied version 1.8.16-0ubuntu1.5 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 28e14c1587c5250c4b348034268999c16de35acb

New changelog entries:
  * Terminate with the same signal as the command (LP: #1686803)
    This fixes a regression introduced in sudo 1.8.15 changeset
    10229:153f016db8f1.

Author: Balint Reczey
Author Date: 2017-06-13 09:10:50 UTC

Import patches-unapplied version 1.8.16-0ubuntu1.5 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 28e14c1587c5250c4b348034268999c16de35acb

New changelog entries:
  * Terminate with the same signal as the command (LP: #1686803)
    This fixes a regression introduced in sudo 1.8.15 changeset
    10229:153f016db8f1.

Author: Balint Reczey
Author Date: 2017-06-13 09:00:03 UTC

Import patches-unapplied version 1.8.16-0ubuntu3.3 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 884c87bb6f70a1677645af75faaf5d69eb0fdf59

New changelog entries:
  * Terminate with the same signal as the command (LP: #1686803)
    This fixes a regression introduced in sudo 1.8.15 changeset
    10229:153f016db8f1.

Author: Balint Reczey
Author Date: 2017-06-13 09:00:03 UTC

Import patches-unapplied version 1.8.16-0ubuntu3.3 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 884c87bb6f70a1677645af75faaf5d69eb0fdf59

New changelog entries:
  * Terminate with the same signal as the command (LP: #1686803)
    This fixes a regression introduced in sudo 1.8.15 changeset
    10229:153f016db8f1.

Author: Balint Reczey
Author Date: 2017-06-13 09:10:50 UTC

Import patches-unapplied version 1.8.16-0ubuntu1.5 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 28e14c1587c5250c4b348034268999c16de35acb

New changelog entries:
  * Terminate with the same signal as the command (LP: #1686803)
    This fixes a regression introduced in sudo 1.8.15 changeset
    10229:153f016db8f1.

Author: Balint Reczey
Author Date: 2017-06-13 08:00:00 UTC

Import patches-unapplied version 1.8.19p1-1ubuntu1.2 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 1cb82a26b159212ef4a78078753910ca05f636c1

New changelog entries:
  * Terminate with the same signal as the command (LP: #1686803)
    This fixes a regression introduced in sudo 1.8.15 changeset
    10229:153f016db8f1.

Author: Balint Reczey
Author Date: 2017-06-13 08:00:00 UTC

Import patches-unapplied version 1.8.19p1-1ubuntu1.2 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 1cb82a26b159212ef4a78078753910ca05f636c1

New changelog entries:
  * Terminate with the same signal as the command (LP: #1686803)
    This fixes a regression introduced in sudo 1.8.15 changeset
    10229:153f016db8f1.

Author: Balint Reczey
Author Date: 2017-06-13 08:00:00 UTC

Import patches-unapplied version 1.8.19p1-1ubuntu1.2 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 1cb82a26b159212ef4a78078753910ca05f636c1

New changelog entries:
  * Terminate with the same signal as the command (LP: #1686803)
    This fixes a regression introduced in sudo 1.8.15 changeset
    10229:153f016db8f1.

Author: Balint Reczey
Author Date: 2017-06-12 19:51:31 UTC

Import patches-unapplied version 1.8.20p2-1ubuntu1 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: c6e3579614487b217162f678aef89164b9f5bd62

New changelog entries:
  * Merge from Debian unstable. (LP: #1697587)
    Remaining changes:
    - Use tmpfs location to store timestamp files
      + debian/rules: change --with-rundir to /var/run/sudo
      + debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
        shipping init script and service file, as they are no longer
        necessary.
      + debian/*.preinst, debian/*.postinst, debian/*.postrm: remove old
        init script with dpkg-maintscript-helper.
      + debian/*.postinst: remove old /var/run/sudo to /var/lib/sudo
        transition code, remove old /var/lib/sudo/ts timestamp directory.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment
    - Dropped patches no longer needed:
      + CVE-2017-1000367.patch

Author: Balint Reczey
Author Date: 2017-06-12 19:51:31 UTC

Import patches-unapplied version 1.8.20p2-1ubuntu1 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: c6e3579614487b217162f678aef89164b9f5bd62

New changelog entries:
  * Merge from Debian unstable. (LP: #1697587)
    Remaining changes:
    - Use tmpfs location to store timestamp files
      + debian/rules: change --with-rundir to /var/run/sudo
      + debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
        shipping init script and service file, as they are no longer
        necessary.
      + debian/*.preinst, debian/*.postinst, debian/*.postrm: remove old
        init script with dpkg-maintscript-helper.
      + debian/*.postinst: remove old /var/run/sudo to /var/lib/sudo
        transition code, remove old /var/lib/sudo/ts timestamp directory.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment
    - Dropped patches no longer needed:
      + CVE-2017-1000367.patch

Author: Balint Reczey
Author Date: 2017-06-12 19:51:31 UTC

Import patches-unapplied version 1.8.20p2-1ubuntu1 to ubuntu/artful-proposed

Imported using git-ubuntu import.

Changelog parent: c6e3579614487b217162f678aef89164b9f5bd62

New changelog entries:
  * Merge from Debian unstable. (LP: #1697587)
    Remaining changes:
    - Use tmpfs location to store timestamp files
      + debian/rules: change --with-rundir to /var/run/sudo
      + debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
        shipping init script and service file, as they are no longer
        necessary.
      + debian/*.preinst, debian/*.postinst, debian/*.postrm: remove old
        init script with dpkg-maintscript-helper.
      + debian/*.postinst: remove old /var/run/sudo to /var/lib/sudo
        transition code, remove old /var/lib/sudo/ts timestamp directory.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment
    - Dropped patches no longer needed:
      + CVE-2017-1000367.patch

Author: Salvatore Bonaccorso
Author Date: 2017-06-05 12:22:55 UTC

Import patches-unapplied version 1.8.19p1-2.1 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: 95400b288d5de18f230baefed4f23e1e9efbecf7

New changelog entries:
  * Non-maintainer upload.
  * Use /proc/self consistently on Linux
  * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)

Author: Salvatore Bonaccorso
Author Date: 2017-06-05 12:22:55 UTC

Import patches-applied version 1.8.19p1-2.1 to applied/debian/stretch

Imported using git-ubuntu import.

Changelog parent: 5f85faa45b28342d8070dd9130546f8cc5f2b250
Unapplied parent: 21f786e80a5df9ad61516d276ea49c6b01209c17

New changelog entries:
  * Non-maintainer upload.
  * Use /proc/self consistently on Linux
  * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)

Author: Steve Beattie
Author Date: 2017-05-29 10:17:46 UTC

Import patches-unapplied version 1.8.16-0ubuntu1.4 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 038bded9b7e254d25b1a6210af0fc4eba0159154

New changelog entries:
  * SECURITY UPDATE: /proc/self/stat parsing confusion
    - debian/patches/CVE-2017-1000367.patch: adjust parsing to
      find ttyname
    - CVE-2017-1000367

Author: Steve Beattie
Author Date: 2017-05-29 10:25:14 UTC

Import patches-unapplied version 1.8.19p1-1ubuntu1.1 to ubuntu/zesty-security

Imported using git-ubuntu import.

Changelog parent: bcfb2c324dd70a1b3408316f20a04930c1bbedd2

New changelog entries:
  * SECURITY UPDATE: /proc/self/stat parsing confusion
    - debian/patches/CVE-2017-1000367.patch: adjust parsing to
      find ttyname
    - CVE-2017-1000367

Author: Steve Beattie
Author Date: 2017-05-29 10:24:16 UTC

Import patches-unapplied version 1.8.16-0ubuntu3.2 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: 4f469fa11cbf95f5ef6f6d93bce3470bb2c3d816

New changelog entries:
  * SECURITY UPDATE: /proc/self/stat parsing confusion
    - debian/patches/CVE-2017-1000367.patch: adjust parsing to
      find ttyname
    - CVE-2017-1000367

Author: Steve Beattie
Author Date: 2017-05-29 10:24:16 UTC

Import patches-unapplied version 1.8.16-0ubuntu3.2 to ubuntu/yakkety-security

Imported using git-ubuntu import.

Changelog parent: 4f469fa11cbf95f5ef6f6d93bce3470bb2c3d816

New changelog entries:
  * SECURITY UPDATE: /proc/self/stat parsing confusion
    - debian/patches/CVE-2017-1000367.patch: adjust parsing to
      find ttyname
    - CVE-2017-1000367

Author: Steve Beattie
Author Date: 2017-05-29 08:05:33 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu1.4 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 5576f22c10d342b4aa28748487e797514a7956bd

New changelog entries:
  * SECURITY UPDATE: /proc/self/stat parsing confusion
    - debian/patches/CVE-2017-1000367.patch: adjust parsing to
      find ttyname
    - CVE-2017-1000367

Author: Steve Beattie
Author Date: 2017-05-29 08:05:33 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu1.4 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 5576f22c10d342b4aa28748487e797514a7956bd

New changelog entries:
  * SECURITY UPDATE: /proc/self/stat parsing confusion
    - debian/patches/CVE-2017-1000367.patch: adjust parsing to
      find ttyname
    - CVE-2017-1000367

Author: Steve Beattie
Author Date: 2017-05-29 08:05:33 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu1.4 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 5576f22c10d342b4aa28748487e797514a7956bd

New changelog entries:
  * SECURITY UPDATE: /proc/self/stat parsing confusion
    - debian/patches/CVE-2017-1000367.patch: adjust parsing to
      find ttyname
    - CVE-2017-1000367

Author: Timo Aaltonen
Author Date: 2017-01-13 23:41:17 UTC

Import patches-unapplied version 1.8.19p1-1ubuntu1 to ubuntu/zesty-proposed

Imported using git-ubuntu import.

Changelog parent: 1cdae8042761a52d7aa7441cd203d441195d9c78

New changelog entries:
  * Merge from Debian unstable. (LP: #1607666)
    Remaining changes:
    - Use tmpfs location to store timestamp files
      + debian/rules: change --with-rundir to /var/run/sudo
      + debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
        shipping init script and service file, as they are no longer
        necessary.
      + debian/*.preinst, debian/*.postinst, debian/*.postrm: remove old
        init script with dpkg-maintscript-helper.
      + debian/*.postinst: remove old /var/run/sudo to /var/lib/sudo
        transition code, remove old /var/lib/sudo/ts timestamp directory.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment
    - Dropped patches no longer needed:
      + debian/patches/lp1565567.patch: upstream.
      + debian/patches/also_check_sudo_group.diff: upstream.

Author: Michael Vogt
Author Date: 2016-10-10 08:10:46 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu1.3 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 30666d15e325c0b2034b9aca8d3af2d87802b009

New changelog entries:
  * debian/sudoers:
    - include /snap/bin in the secure_path (LP: #1595558)

Author: Michael Vogt
Author Date: 2016-08-15 16:08:34 UTC

Import patches-unapplied version 1.8.16-0ubuntu3 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: be278ba26aa1dcb40549e27bc110c70e4f69fc39

New changelog entries:
  * debian/sudoers:
    - include /snap/bin in the secure_path (LP: #1595558)

Author: Ben Hutchings
Author Date: 2016-01-05 18:48:03 UTC

Import patches-unapplied version 1.8.5p2-1+nmu3+deb7u1 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: e1c94c2542343fdfac7c17b7f9a5a90bc2be945c

New changelog entries:
  * Non-maintainer upload
  * Fix CVE-2014-9680-{1,2}.patch to edit sudoers.pod, not just the
    generated docs
  * Disable editing of files via user-controllable symlinks
    (Closes: #804149) (CVE-2015-5602)
    - sudoedit path restriction bypass using symlinks
    - Change warning when user tries to sudoedit a symbolic link
    - Open sudoedit files with O_NONBLOCK and fail if they are not regular files
    - Remove S_ISREG check from sudo_edit_open(), it is already done in the
      caller
    - Add directory writability checks for sudoedit
    - Fix directory writability checks for sudoedit
    - Enable sudoedit directory writability checks by default

Author: Ben Hutchings
Author Date: 2016-01-05 18:48:03 UTC

Import patches-applied version 1.8.5p2-1+nmu3+deb7u1 to applied/debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 7eba7ed075b65dba7abe53613ff768d7142562ff
Unapplied parent: 4435a0496702fccdba9f71f942a1a0abc92d8cfe

New changelog entries:
  * Non-maintainer upload
  * Fix CVE-2014-9680-{1,2}.patch to edit sudoers.pod, not just the
    generated docs
  * Disable editing of files via user-controllable symlinks
    (Closes: #804149) (CVE-2015-5602)
    - sudoedit path restriction bypass using symlinks
    - Change warning when user tries to sudoedit a symbolic link
    - Open sudoedit files with O_NONBLOCK and fail if they are not regular files
    - Remove S_ISREG check from sudo_edit_open(), it is already done in the
      caller
    - Add directory writability checks for sudoedit
    - Fix directory writability checks for sudoedit
    - Enable sudoedit directory writability checks by default

Author: Marc Deslauriers
Author Date: 2016-03-30 12:03:52 UTC

Import patches-unapplied version 1.8.16-0ubuntu1 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 042d941ec39a7eb692354e73980c914bdc61a71d

New changelog entries:
  * Update to new upstream version 1.8.16. (LP: #1563825)
    - Dropped patches no longer needed:
      + CVE-2015-5602-6.patch
      + CVE-2015-5602-7.patch
  * Merge from Debian unstable. Remaining changes:
    - Use tmpfs location to store timestamp files
      + debian/rules: change --with-rundir to /var/run/sudo
      + debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
        shipping init script and service file, as they are no longer
        necessary.
      + debian/*.preinst, debian/*.postinst, debian/*.postrm: remove old
        init script with dpkg-maintscript-helper.
      + debian/*.postinst: remove old /var/run/sudo to /var/lib/sudo
        transition code, remove old /var/lib/sudo/ts timestamp directory.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/sudoers:
      + also grant admin group sudo access
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/control:
      + dh-autoreconf dependency fixes missing-build-dependency-for-dh_-command
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment
      + debian/patches/also_check_sudo_group.diff: also check the sudo group
        in plugins/sudoers/sudoers.c to create the admin flag file. Leave the
        admin group check for backwards compatibility.
    - Dropped patches no longer needed:
      + debian/patches/pam_check_untranslated_prompt.patch: upstream.

Author: Mathieu Trudel-Lapierre
Author Date: 2015-09-22 15:57:43 UTC

Import patches-unapplied version 1.8.12-1ubuntu3 to ubuntu/wily-proposed

Imported using git-ubuntu import.

Changelog parent: 5556432ebc881b9b31733feb9546730a2c145346

New changelog entries:
  * debian/patches/pam_check_untranslated_prompt.patch: also check the un-
    translated version of the prompt when checking if the PAM prompt matches
    "Password:". Patch from Joel Pelaez Jorge. (LP: #1414303)

Author: Mathieu Trudel-Lapierre
Author Date: 2015-09-22 15:57:43 UTC

Import patches-unapplied version 1.8.12-1ubuntu3 to ubuntu/wily-proposed

Imported using git-ubuntu import.

Changelog parent: 5556432ebc881b9b31733feb9546730a2c145346

New changelog entries:
  * debian/patches/pam_check_untranslated_prompt.patch: also check the un-
    translated version of the prompt when checking if the PAM prompt matches
    "Password:". Patch from Joel Pelaez Jorge. (LP: #1414303)

Author: Mathieu Trudel-Lapierre
Author Date: 2015-09-22 15:57:43 UTC

Import patches-unapplied version 1.8.12-1ubuntu3 to ubuntu/wily-proposed

Imported using git-ubuntu import.

Changelog parent: 5556432ebc881b9b31733feb9546730a2c145346

New changelog entries:
  * debian/patches/pam_check_untranslated_prompt.patch: also check the un-
    translated version of the prompt when checking if the PAM prompt matches
    "Password:". Patch from Joel Pelaez Jorge. (LP: #1414303)

Author: Marc Deslauriers
Author Date: 2015-03-12 15:20:35 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu2.1 to ubuntu/utopic-security

Imported using git-ubuntu import.

Changelog parent: 7d90dbb237a3325d0c5b7fe8438a92aa44c6db13

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.ac, doc/sudoers.cat, doc/sudoers.man.in,
      doc/sudoers.mdoc.in, m4/sudo.m4, pathnames.h.in,
      plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 15:20:35 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu2.1 to ubuntu/utopic-security

Imported using git-ubuntu import.

Changelog parent: 7d90dbb237a3325d0c5b7fe8438a92aa44c6db13

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.ac, doc/sudoers.cat, doc/sudoers.man.in,
      doc/sudoers.mdoc.in, m4/sudo.m4, pathnames.h.in,
      plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 15:20:35 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu2.1 to ubuntu/utopic-security

Imported using git-ubuntu import.

Changelog parent: 7d90dbb237a3325d0c5b7fe8438a92aa44c6db13

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.ac, doc/sudoers.cat, doc/sudoers.man.in,
      doc/sudoers.mdoc.in, m4/sudo.m4, pathnames.h.in,
      plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 16:21:20 UTC

Import patches-unapplied version 1.7.2p1-1ubuntu5.8 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 14d47378dfff3c89f5db84122f1f85278b5a98f7

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - configure, configure.in, doc/sudoers.cat, doc/sudoers.man.in,
      pathnames.h.in, plugins/sudoers/env.c: sanity check TZ env variable.
    - http://www.sudo.ws/repos/sudo/rev/650ac6938b59
    - http://www.sudo.ws/repos/sudo/rev/ac1467f71ac0
    - http://www.sudo.ws/repos/sudo/rev/91859f613b88
    - http://www.sudo.ws/repos/sudo/rev/579b02f0dbe0
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 15:32:42 UTC

Import patches-unapplied version 1.8.3p1-1ubuntu3.7 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 1ff87b50c0608fc4bf07dd3996237b694d7f6174

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.in, doc/sudoers.cat, doc/sudoers.man.in,
      pathnames.h.in, plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 16:21:20 UTC

Import patches-unapplied version 1.7.2p1-1ubuntu5.8 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 14d47378dfff3c89f5db84122f1f85278b5a98f7

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - configure, configure.in, doc/sudoers.cat, doc/sudoers.man.in,
      pathnames.h.in, plugins/sudoers/env.c: sanity check TZ env variable.
    - http://www.sudo.ws/repos/sudo/rev/650ac6938b59
    - http://www.sudo.ws/repos/sudo/rev/ac1467f71ac0
    - http://www.sudo.ws/repos/sudo/rev/91859f613b88
    - http://www.sudo.ws/repos/sudo/rev/579b02f0dbe0
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 16:21:20 UTC

Import patches-unapplied version 1.7.2p1-1ubuntu5.8 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 14d47378dfff3c89f5db84122f1f85278b5a98f7

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - configure, configure.in, doc/sudoers.cat, doc/sudoers.man.in,
      pathnames.h.in, plugins/sudoers/env.c: sanity check TZ env variable.
    - http://www.sudo.ws/repos/sudo/rev/650ac6938b59
    - http://www.sudo.ws/repos/sudo/rev/ac1467f71ac0
    - http://www.sudo.ws/repos/sudo/rev/91859f613b88
    - http://www.sudo.ws/repos/sudo/rev/579b02f0dbe0
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 15:32:42 UTC

Import patches-unapplied version 1.8.3p1-1ubuntu3.7 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 1ff87b50c0608fc4bf07dd3996237b694d7f6174

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.in, doc/sudoers.cat, doc/sudoers.man.in,
      pathnames.h.in, plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 15:32:42 UTC

Import patches-unapplied version 1.8.3p1-1ubuntu3.7 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 1ff87b50c0608fc4bf07dd3996237b694d7f6174

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.in, doc/sudoers.cat, doc/sudoers.man.in,
      pathnames.h.in, plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 14:45:21 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu5 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: c132dddbccb8f41f91a8c624ff5d976e80799d19

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.ac, doc/sudoers.cat, doc/sudoers.man.in,
      doc/sudoers.mdoc.in, m4/sudo.m4, pathnames.h.in,
      plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 14:45:21 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu5 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: c132dddbccb8f41f91a8c624ff5d976e80799d19

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.ac, doc/sudoers.cat, doc/sudoers.man.in,
      doc/sudoers.mdoc.in, m4/sudo.m4, pathnames.h.in,
      plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Marc Deslauriers
Author Date: 2015-03-12 14:45:21 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu5 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: c132dddbccb8f41f91a8c624ff5d976e80799d19

New changelog entries:
  * SECURITY UPDATE: arbitrary file access via TZ
    - debian/patches/CVE-2014-9680.patch: sanity check TZ env variable in
      configure, configure.ac, doc/sudoers.cat, doc/sudoers.man.in,
      doc/sudoers.mdoc.in, m4/sudo.m4, pathnames.h.in,
      plugins/sudoers/env.c.
    - CVE-2014-9680

Author: Andrey Bondarenko
Author Date: 2014-08-22 19:18:05 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu2 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 4d2d1a11b887c1f4fd3f3534d2b64d1a46e293f5

New changelog entries:
  * debian/sudo_root.8: mention sudo group instead of deprecated group
    admin (LP: #1130643)

Author: Andrey Bondarenko
Author Date: 2014-08-22 19:18:05 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu2 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 4d2d1a11b887c1f4fd3f3534d2b64d1a46e293f5

New changelog entries:
  * debian/sudo_root.8: mention sudo group instead of deprecated group
    admin (LP: #1130643)

Author: Marc Deslauriers
Author Date: 2014-03-11 12:00:06 UTC

Import patches-unapplied version 1.8.6p3-0ubuntu3.1 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 4cfd4b7aa364bcae15500b47d7d9ece4f44ddcce

New changelog entries:
  * debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
    epoch in init scripts so they are properly invalidated. (LP: #1223297)

Author: Marc Deslauriers
Author Date: 2014-03-11 12:00:06 UTC

Import patches-unapplied version 1.8.6p3-0ubuntu3.1 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 4cfd4b7aa364bcae15500b47d7d9ece4f44ddcce

New changelog entries:
  * debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
    epoch in init scripts so they are properly invalidated. (LP: #1223297)

Author: Marc Deslauriers
Author Date: 2014-03-11 11:58:51 UTC

Import patches-unapplied version 1.8.5p2-1ubuntu1.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: 190ec5cd0b51711f7fb0c3fceb4594d43b836da9

New changelog entries:
  * debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
    epoch in init scripts so they are properly invalidated. (LP: #1223297)

Author: Marc Deslauriers
Author Date: 2014-03-11 11:58:51 UTC

Import patches-unapplied version 1.8.5p2-1ubuntu1.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: 190ec5cd0b51711f7fb0c3fceb4594d43b836da9

New changelog entries:
  * debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
    epoch in init scripts so they are properly invalidated. (LP: #1223297)

Author: Marc Deslauriers
Author Date: 2014-03-11 11:58:51 UTC

Import patches-unapplied version 1.8.5p2-1ubuntu1.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: 190ec5cd0b51711f7fb0c3fceb4594d43b836da9

New changelog entries:
  * debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
    epoch in init scripts so they are properly invalidated. (LP: #1223297)

Author: Marc Deslauriers
Author Date: 2014-03-11 12:00:06 UTC

Import patches-unapplied version 1.8.6p3-0ubuntu3.1 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 4cfd4b7aa364bcae15500b47d7d9ece4f44ddcce

New changelog entries:
  * debian/sudo.sudo.init, debian/sudo-ldap.sudo.init: Set timestamps to
    epoch in init scripts so they are properly invalidated. (LP: #1223297)

Author: Chris J Arges
Author Date: 2014-02-10 18:21:53 UTC

Import patches-unapplied version 1.8.9p5-1ubuntu1 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: f5c2087f211cc92de1124909dc3b01901b45bc87

New changelog entries:
  * Merge from Debian unstable. Remaining changes:
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/sudoers:
      + also grant admin group sudo access
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/control:
      + dh-autoreconf dependency fixes missing-build-dependency-for-dh_-command
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment
      + actually-use-buildflags: Pass LDFLAGS everywhere
      + add_probe_interfaces_setting.diff: option to disable network inf probe
  * add_probe_interfaces_setting.diff: fix to not modify NEWS file.

Author: Bdale Garbee
Author Date: 2013-12-30 04:36:12 UTC

Import patches-unapplied version 1.8.9~rc1-1 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: a2dc504a566577fefbf06927da84e037fc46916b

New changelog entries:
  * upstream release candidate

Author: Bdale Garbee
Author Date: 2013-12-30 04:36:12 UTC

Import patches-applied version 1.8.9~rc1-1 to applied/debian/experimental

Imported using git-ubuntu import.

Changelog parent: b1b37e8b6d67b03486fa65e8c4378ed8824ded63
Unapplied parent: d7bff29cda880bc8e38ba9c09d9a9a62d6b2e302

New changelog entries:
  * upstream release candidate

Author: Michael Gilbert
Author Date: 2013-03-06 18:41:15 UTC

Import patches-unapplied version 1.7.4p4-2.squeeze.4 to debian/squeeze

Imported using git-ubuntu import.

Changelog parent: c4d9653f282953a6f3b0e639066f21339aa449bb

New changelog entries:
  * Fix cve-2013-1775: authentication bypass when the clock is set to the UNIX
    epoch [00:00:00 UTC on 1 January 1970] (closes: #701838).
  * Fix cve-2013-1776: session id hijacking from another authorized tty
    (closes: #701839).

Author: Michael Gilbert
Author Date: 2013-03-06 18:41:15 UTC

Import patches-applied version 1.7.4p4-2.squeeze.4 to applied/debian/squeeze

Imported using git-ubuntu import.

Changelog parent: 2f8370b7e8f7372f54c7aa3d690010bfb0095d73
Unapplied parent: 1322cad5c309b0d68d2bc94a1b053e1f532f2c05

New changelog entries:
  * Fix cve-2013-1775: authentication bypass when the clock is set to the UNIX
    epoch [00:00:00 UTC on 1 January 1970] (closes: #701838).
  * Fix cve-2013-1776: session id hijacking from another authorized tty
    (closes: #701839).

Author: Marc Deslauriers
Author Date: 2013-02-27 18:26:26 UTC

Import patches-unapplied version 1.8.6p3-0ubuntu3 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 050d0116b677ba7bfbfcf40d58938cebfb34aafb

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in plugins/sudoers/check.c.
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 18:26:26 UTC

Import patches-unapplied version 1.8.6p3-0ubuntu3 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 050d0116b677ba7bfbfcf40d58938cebfb34aafb

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in plugins/sudoers/check.c.
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 18:26:26 UTC

Import patches-unapplied version 1.8.6p3-0ubuntu3 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 050d0116b677ba7bfbfcf40d58938cebfb34aafb

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in plugins/sudoers/check.c.
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 18:26:26 UTC

Import patches-unapplied version 1.8.6p3-0ubuntu3 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 050d0116b677ba7bfbfcf40d58938cebfb34aafb

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in plugins/sudoers/check.c.
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 18:38:01 UTC

Import patches-unapplied version 1.7.4p6-1ubuntu2.2 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: 9f82fc36089f57bbc52a023949cc56c83bfb3478

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in check.c.
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 18:38:01 UTC

Import patches-unapplied version 1.7.4p6-1ubuntu2.2 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: 9f82fc36089f57bbc52a023949cc56c83bfb3478

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in check.c.
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 18:38:01 UTC

Import patches-unapplied version 1.7.4p6-1ubuntu2.2 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: 9f82fc36089f57bbc52a023949cc56c83bfb3478

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in check.c.
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 19:28:45 UTC

Import patches-unapplied version 1.6.9p10-1ubuntu3.10 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 3d0a9db1af4ac7f91afe294dffec5cb47fabd182

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in check.c.
    - backported from ddf399e3e306ca238f6f1cda8153889b15bba12e
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 19:28:45 UTC

Import patches-unapplied version 1.6.9p10-1ubuntu3.10 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 3d0a9db1af4ac7f91afe294dffec5cb47fabd182

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in check.c.
    - backported from ddf399e3e306ca238f6f1cda8153889b15bba12e
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2013-02-27 19:28:45 UTC

Import patches-unapplied version 1.6.9p10-1ubuntu3.10 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 3d0a9db1af4ac7f91afe294dffec5cb47fabd182

New changelog entries:
  * SECURITY UPDATE: authentication bypass via clock set to epoch
    - debian/patches/CVE-2013-1775.patch: ignore time stamp file if it is
      set to epoch in check.c.
    - backported from ddf399e3e306ca238f6f1cda8153889b15bba12e
    - CVE-2013-1775

Author: Marc Deslauriers
Author Date: 2012-11-22 21:08:01 UTC

Import patches-unapplied version 1.7.2p1-1ubuntu5.5 to ubuntu/lucid-proposed

Imported using git-ubuntu import.

Changelog parent: 73af2ef010f38cf1fb57e6921b8acf34819b3b74

New changelog entries:
  * toke.{cl}: avoid duplicate fclose() of the sudoers file (LP: #553786)
    - http://www.sudo.ws/repos/sudo/rev/164d39108dde

Author: Tyler Hicks
Author Date: 2012-07-16 12:01:42 UTC

Import patches-unapplied version 1.8.5p2-1ubuntu1 to ubuntu/quantal

Imported using git-ubuntu import.

Changelog parent: a00f27807da8e0e0dc70d22c7ed3113c41c20400

New changelog entries:
  * Merge from debian/testing (LP: #1024154), remaining changes:
    - debian/patches/keep_home_by_default.patch:
      + Set HOME in initial_keepenv_table.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets (Ubuntu specific)
      + install man/man8/sudo_root.8 in both flavours (Ubuntu specific)
      + install apport hooks
      + The ubuntu-sudo-as-admin-successful.patch was taken upstream by
        Debian however it requires a --enable-admin-flag configure flag to
        actually enable it in both flavours.
    - debian/control:
      + Mark Debian Vcs-* as XS-Debian-Vcs-*
      + update debian/control
    - debian/sudoers:
      + grant admin group sudo access
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
  * Dropped changes:
    - debian/patches/lp927828-fix-abort-in-pam-modules-when-timestamp-valid.patch
      + Fixed upstream in 1.8.5
    - debian/patches/CVE-2012-2337.patch:
      + Fixed upstream in 1.8.4p5
    - debian/patches/pam_env_merge.patch:
      + Feature released upstream in 1.8.5
    - debian/{sudo,sudo-ldap}.{preinst,postinst,postrm}:
      + Drop Ubuntu-specific sudoers file migration code because the only
        upgrade path to quantal is from precise. All necessary sudoers file
        migration will have already been done by the time this version of the
        sudo package is installed.

Author: Tyler Hicks
Author Date: 2012-05-21 05:48:10 UTC

Import patches-unapplied version 1.8.3p1-1ubuntu3.3 to ubuntu/precise-proposed

Imported using git-ubuntu import.

Changelog parent: fb39f00ca6f9abc0c56edd2d3cdfce3b9cdea376

New changelog entries:
  * debian/patches/pam_env_merge.patch: Merge the PAM environment into the
    user environment (LP: #982684)
  * debian/sudo.pam: Use pam_env to read /etc/environment and
    /etc/default/locale environment files. Reading ~/.pam_environment is not
    permitted due to security reasons.

Author: Tyler Hicks
Author Date: 2012-05-16 04:28:04 UTC

Import patches-unapplied version 1.7.4p4-5ubuntu7.2 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 726934a92568cf3ed6174123701cb374d8c330f9

New changelog entries:
  * SECURITY UPDATE: Properly handle multiple netmasks in sudoers Host and
    Host_List values
    - debian/patches/CVE-2012-2337.patch: Don't perform IPv6 checks on IPv4
      addresses. Based on upstream patch.
    - CVE-2012-2337

Author: Tyler Hicks
Author Date: 2012-05-16 04:28:04 UTC

Import patches-unapplied version 1.7.4p4-5ubuntu7.2 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 726934a92568cf3ed6174123701cb374d8c330f9

New changelog entries:
  * SECURITY UPDATE: Properly handle multiple netmasks in sudoers Host and
    Host_List values
    - debian/patches/CVE-2012-2337.patch: Don't perform IPv6 checks on IPv4
      addresses. Based on upstream patch.
    - CVE-2012-2337

Author: Tyler Hicks
Author Date: 2012-05-16 04:28:04 UTC

Import patches-unapplied version 1.7.4p4-5ubuntu7.2 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 726934a92568cf3ed6174123701cb374d8c330f9

New changelog entries:
  * SECURITY UPDATE: Properly handle multiple netmasks in sudoers Host and
    Host_List values
    - debian/patches/CVE-2012-2337.patch: Don't perform IPv6 checks on IPv4
      addresses. Based on upstream patch.
    - CVE-2012-2337

Author: Marc Deslauriers
Author Date: 2012-01-31 15:25:52 UTC

Import patches-unapplied version 1.8.3p1-1ubuntu3 to ubuntu/precise

Imported using git-ubuntu import.

Changelog parent: 368ba98919c0e97f8b9cbb5d9a1ad2a83cfdd859

New changelog entries:
  * SECURITY UPDATE: permissions bypass via format string
    - debian/patches/CVE-2012-0809.patch: fix format string vulnerability
      in src/sudo.c.
    - CVE-2012-0809

Author: Kees Cook
Author Date: 2011-09-11 17:29:08 UTC

Import patches-unapplied version 1.7.4p6-1ubuntu2 to ubuntu/oneiric

Imported using git-ubuntu import.

Changelog parent: e5cfca908650932a1869e71470b6a3069b41d23e

New changelog entries:
  * debian/patches/enable_badpass.patch: turn on "mail_badpass" by default:
    - attempting sudo without knowing a login password is as bad as not
      being listed in the sudoers file, especially if getting the password
      wrong means doing the access-check-email-notification never happens
      (Closes: 641218).

Author: Scott Moser
Author Date: 2011-04-21 22:04:34 UTC

Import patches-unapplied version 1.7.4p4-5ubuntu7.1 to ubuntu/natty-proposed

Imported using git-ubuntu import.

Changelog parent: eafeee2a9ec49fc6a39893a066be45aaf8eaec34

New changelog entries:
  * debian/sudo.preinst:
    - if well-known ec2 vmbuilder file is found, write a file in
      sudoers.d for the 'ubuntu' user (LP: #768625)

Author: Michael Vogt
Author Date: 2011-04-15 14:40:10 UTC

Import patches-unapplied version 1.7.4p4-5ubuntu7 to ubuntu/natty

Imported using git-ubuntu import.

Changelog parent: 9b5bc23bda39ad443a859ec9555faab6137408df

New changelog entries:
  * debian/sudo.preinst:
    - do not consider the ec2 vmbuilder default sudoers file
      verbatim as its actually customized (LP: #761689)

Author: Jamie Strandboge
Author Date: 2011-01-19 16:46:05 UTC

Import patches-unapplied version 1.7.0-1ubuntu2.6 to ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: d5e6281047001baa6196e5aca33249310b91a8b6

New changelog entries:
  * SECURITY UPDATE: privilege escalation via -g when using group Runas_List
    - pwutil.c, sudo.h: add user_in_group(), backported from upstream commits
      48ca8c2eddf8, 72df368a8a0e and 6ebc55d4716b. This is intended to be used
      only with check.c to fix CVE-2011-0010 instead of doing the refactoring.
      Going forward, will need to look at this code also if a flaw is found in
      this refactored code. If needed, the refactoring work is in 48ca8c2eddf8
      and 6ebc55d4716b.
    - check.c: prompt for password when the user is running sudo as himself
      but as a different group. Based on fe8a94f96542.
    - CVE-2011-0010

Author: Jamie Strandboge
Author Date: 2011-01-19 16:46:05 UTC

Import patches-unapplied version 1.7.0-1ubuntu2.6 to ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: d5e6281047001baa6196e5aca33249310b91a8b6

New changelog entries:
  * SECURITY UPDATE: privilege escalation via -g when using group Runas_List
    - pwutil.c, sudo.h: add user_in_group(), backported from upstream commits
      48ca8c2eddf8, 72df368a8a0e and 6ebc55d4716b. This is intended to be used
      only with check.c to fix CVE-2011-0010 instead of doing the refactoring.
      Going forward, will need to look at this code also if a flaw is found in
      this refactored code. If needed, the refactoring work is in 48ca8c2eddf8
      and 6ebc55d4716b.
    - check.c: prompt for password when the user is running sudo as himself
      but as a different group. Based on fe8a94f96542.
    - CVE-2011-0010

Author: Jamie Strandboge
Author Date: 2011-01-19 16:30:27 UTC

Import patches-unapplied version 1.7.2p7-1ubuntu2.1 to ubuntu/maverick-security

Imported using git-ubuntu import.

Changelog parent: f25d3d31e1891a8cd8f38fff765285abe20ef9ca

New changelog entries:
  * SECURITY UPDATE: privilege escalation via -g when using group Runas_List
    - debian/patches/user_in_group.patch: add user_in_group(), backported from
      upstream
    - debian/patches/CVE-2011-0010.patch: prompt for password when the user is
      running sudo as himself but as a different group
    - CVE-2011-0010

Author: Jamie Strandboge
Author Date: 2011-01-19 16:30:27 UTC

Import patches-unapplied version 1.7.2p7-1ubuntu2.1 to ubuntu/maverick-security

Imported using git-ubuntu import.

Changelog parent: f25d3d31e1891a8cd8f38fff765285abe20ef9ca

New changelog entries:
  * SECURITY UPDATE: privilege escalation via -g when using group Runas_List
    - debian/patches/user_in_group.patch: add user_in_group(), backported from
      upstream
    - debian/patches/CVE-2011-0010.patch: prompt for password when the user is
      running sudo as himself but as a different group
    - CVE-2011-0010

Author: Jamie Strandboge
Author Date: 2011-01-19 16:30:27 UTC

Import patches-unapplied version 1.7.2p7-1ubuntu2.1 to ubuntu/maverick-security

Imported using git-ubuntu import.

Changelog parent: f25d3d31e1891a8cd8f38fff765285abe20ef9ca

New changelog entries:
  * SECURITY UPDATE: privilege escalation via -g when using group Runas_List
    - debian/patches/user_in_group.patch: add user_in_group(), backported from
      upstream
    - debian/patches/CVE-2011-0010.patch: prompt for password when the user is
      running sudo as himself but as a different group
    - CVE-2011-0010

Author: Jamie Strandboge
Author Date: 2011-01-19 16:46:05 UTC

Import patches-unapplied version 1.7.0-1ubuntu2.6 to ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: d5e6281047001baa6196e5aca33249310b91a8b6

New changelog entries:
  * SECURITY UPDATE: privilege escalation via -g when using group Runas_List
    - pwutil.c, sudo.h: add user_in_group(), backported from upstream commits
      48ca8c2eddf8, 72df368a8a0e and 6ebc55d4716b. This is intended to be used
      only with check.c to fix CVE-2011-0010 instead of doing the refactoring.
      Going forward, will need to look at this code also if a flaw is found in
      this refactored code. If needed, the refactoring work is in 48ca8c2eddf8
      and 6ebc55d4716b.
    - check.c: prompt for password when the user is running sudo as himself
      but as a different group. Based on fe8a94f96542.
    - CVE-2011-0010