ubuntu/+source/sudo:applied/debian/wheezy

Last commit made on 2016-04-02
Get this branch:
git clone -b applied/debian/wheezy https://git.launchpad.net/ubuntu/+source/sudo
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/debian/wheezy
Repository:
lp:ubuntu/+source/sudo

Recent commits

85f1275... by Ben Hutchings on 2016-01-05

Import patches-applied version 1.8.5p2-1+nmu3+deb7u1 to applied/debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 7eba7ed075b65dba7abe53613ff768d7142562ff
Unapplied parent: 4435a0496702fccdba9f71f942a1a0abc92d8cfe

New changelog entries:
  * Non-maintainer upload
  * Fix CVE-2014-9680-{1,2}.patch to edit sudoers.pod, not just the
    generated docs
  * Disable editing of files via user-controllable symlinks
    (Closes: #804149) (CVE-2015-5602)
    - sudoedit path restriction bypass using symlinks
    - Change warning when user tries to sudoedit a symbolic link
    - Open sudoedit files with O_NONBLOCK and fail if they are not regular files
    - Remove S_ISREG check from sudo_edit_open(), it is already done in the
      caller
    - Add directory writability checks for sudoedit
    - Fix directory writability checks for sudoedit
    - Enable sudoedit directory writability checks by default

4435a04... by Ben Hutchings on 2016-01-05

CVE-2015-5602: Enable sudoedit directory writability checks by default

Gbp-Pq: CVE-2015-5602-7.patch.

4d18a16... by Ben Hutchings on 2016-01-05

CVE-2015-5602: Fix directory writability checks for sudoedit.

Gbp-Pq: CVE-2015-5602-6.patch.

ef2ddca... by Ben Hutchings on 2016-01-05

CVE-2015-5602: sudoedit path restriction bypass using symlinks

Gbp-Pq: CVE-2015-5602-5-generated.patch.

5770b93... by Ben Hutchings on 2016-01-05

CVE-2015-5602: Add directory writability checks for sudoedit.

Gbp-Pq: CVE-2015-5602-5.patch.

479544f... by Ben Hutchings on 2016-01-05

Remove S_ISREG check from sudo_edit_open(), it is already done in the caller.

Gbp-Pq: CVE-2015-5602-4.patch.

0580351... by Ben Hutchings on 2016-01-05

Open sudoedit files with O_NONBLOCK and fail if they are not regular files.

Gbp-Pq: CVE-2015-5602-3.patch.

9cd6d47... by Ben Hutchings on 2016-01-05

Change warning when user tries to sudoedit a symbolic link.

Gbp-Pq: CVE-2015-5602-2-generated.patch.

93fe2e0... by Ben Hutchings on 2016-01-05

Change warning when user tries to sudoedit a symbolic link.

Gbp-Pq: CVE-2015-5602-2.patch.

0d3210b... by Ben Hutchings on 2016-01-05

CVE-2015-5602: sudoedit path restriction bypass using symlinks

Gbp-Pq: CVE-2015-5602-1-generated.patch.