ubuntu/+source/sudo:debian/wheezy

Last commit made on 2016-04-02
Get this branch:
git clone -b debian/wheezy https://git.launchpad.net/ubuntu/+source/sudo
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
debian/wheezy
Repository:
lp:ubuntu/+source/sudo

Recent commits

10eadab... by Ben Hutchings on 2016-01-05

Import patches-unapplied version 1.8.5p2-1+nmu3+deb7u1 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: e1c94c2542343fdfac7c17b7f9a5a90bc2be945c

New changelog entries:
  * Non-maintainer upload
  * Fix CVE-2014-9680-{1,2}.patch to edit sudoers.pod, not just the
    generated docs
  * Disable editing of files via user-controllable symlinks
    (Closes: #804149) (CVE-2015-5602)
    - sudoedit path restriction bypass using symlinks
    - Change warning when user tries to sudoedit a symbolic link
    - Open sudoedit files with O_NONBLOCK and fail if they are not regular files
    - Remove S_ISREG check from sudo_edit_open(), it is already done in the
      caller
    - Add directory writability checks for sudoedit
    - Fix directory writability checks for sudoedit
    - Enable sudoedit directory writability checks by default

e1c94c2... by Andreas Beckmann on 2015-04-30

Import patches-unapplied version 1.8.5p2-1+nmu3 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 69932c89089d31bbbfdece32c5902b3e4bfd4af0

New changelog entries:
  * Non-maintainer upload with maintainer approval.
  * Backport from 1.8.7-1: "recognize lenny and squeeze unmodified sudoers" to
    avoid dpkg questions about modified conffiles on upgrades to wheezy.
    (Closes: #660594)
  * *.preinst: Recognize the unmodified /etc/sudoers from sudo-ldap/lenny.
  * Non-maintainer upload by the Security Team.
  * Add CVE-2014-9680-1.patch patch.
    CVE-2014-9680: unsafe handling of TZ environment variable. (Closes: #772707)
  * Add CVE-2014-9680-2.patch patch.
    Documents that a leading ':' is skipped when checking TZ for a
    fully-qualified path name.

69932c8... by Michael Gilbert <email address hidden> on 2013-03-01

Import patches-unapplied version 1.8.5p2-1+nmu1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: a00f27807da8e0e0dc70d22c7ed3113c41c20400

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Fix cve-2013-1775: authentication bypass when the clock is set to the UNIX
    epoch [00:00:00 UTC on 1 January 1970] (closes: #701838).
  * Fix cve-2013-1776: session id hijacking from another authorized tty
    (closes: #701839).

a00f278... by Bdale Garbee on 2012-06-28

Import patches-unapplied version 1.8.5p2-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: b9ed34d38b8da03df7d6d6c75eea95b1e8663708

New changelog entries:
  * new upstream version
  * patch to use flock on hurd, run autoconf in rules, closes: #655883
  * patch to avoid calling unlink with null pointer on hurd, closes: #655948
  * patch to actually use hardening build flags, closes: #655417
  * fix sudo-ldap.postinst syntax issue, closes: #669576

b9ed34d... by Bdale Garbee on 2012-01-30

Import patches-unapplied version 1.8.3p2-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 0e91a45a902b5d7ac2d81f47f3a05df93f5543c3

New changelog entries:
  * new upstream version, closes: #657985 (CVE-2012-0809)
  * patch from Pino Toscano to only use selinux on Linux, closes: #655894

0e91a45... by Bdale Garbee on 2012-01-11

Import patches-unapplied version 1.8.3p1-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 7acc17b7079027e7b1462edac45be60ca29f42c3

New changelog entries:
  * patch from Moritz Muehlenhoff enables hardened build flags, closes: #655417
  * replacement postinst script from Mike Beattie using shell instead of Perl
  * include systemd service file from Michael Stapelberg, closes: #639633
  * add init.d status support, closes: #641782
  * make sudo-ldap package manage a sudoers entry in nsswitch.conf,
    closes: #610600, #639530
  * enable mail_badpass in the default sudoers file, closes: #641218
  * enable selinux support, closes: #655510

7acc17b... by Bdale Garbee on 2011-11-12

Import patches-unapplied version 1.8.3p1-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: c4e739921351d54be100375a2e0690569b461a3b

New changelog entries:
  * if upgrading from squeeze, and the sudoers file is unmodified, avoid
    the packaging system prompting the user about a change they didn't make
    now that sudoers is a conffile, closes: #612532, #636049
  * add a recommendation for the use of visudo to the sudoers.d/README file,
    closes: #648104

c4e7399... by Bdale Garbee on 2011-10-26

Import patches-unapplied version 1.8.3p1-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 09387619bbc659f34e8001aec1674573a105aff7

New changelog entries:
  * new upstream version, closes: #646478

0938761... by Bdale Garbee on 2011-10-23

Import patches-unapplied version 1.8.3-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 475d331b1a015582abaa61a87c8bd2eeeb747871

New changelog entries:
  * new upstream version, closes: #639391, #639568

475d331... by Bdale Garbee on 2011-09-27

Import patches-unapplied version 1.8.2-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: cf9e48a9f4339bb0e6df6de4cea6029b8962bcb4

New changelog entries:
  [ Luca Capello ]
  * debian/rules improvements, closes: #642535
    + mv upstream sample.* files to the examples folder.
    - do not call dh_installexamples.
  [ Bdale Garbee ]
  * patch from upstream for SIGBUS on sparc64, closes: #640304
  * use common-session-noninteractive in the pam config to reduce log noise
    when sudo is used in cron, etc, closes: #519700
  * patch from Steven McDonald to fix segfault on startup under certain
    conditions, closes: #639568
  * add a NEWS entry regarding the secure_path change made in 1.8.2-1,
    closes: #639336