Ubuntu
sudo package

lp:~vorlon/ubuntu/natty/sudo/keep_home_by_default

  1. Natty (11.04)
  2. keep_home_by_default
Created by Steve Langasek and last modified
Get this branch:
bzr branch lp:~vorlon/ubuntu/natty/sudo/keep_home_by_default
Only Steve Langasek can upload to this branch. If you are Steve Langasek please log in for upload directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Steve Langasek
Status:
Development

Recent revisions

46. By Steve Langasek

add bug reference

45. By Steve Langasek

debian/patches/keep_home_by_default.patch: Set HOME in
initial_keepenv_table.

44. By Michael Vogt

* debian/sudo.preinst:
  - avoid conffile prompt by checking for known default /etc/sudoers
    and if found installing the correct default /etc/sudoers file
    (LP: #690873)

43. By Bryce Harrington

debian/rules: The ubuntu-sudo-as-admin-successful.patch was taken
upstream by Debian however it requires a --enable-admin-flag configure
flag to actually enable it.
(LP: #706045)

42. By Jamie Strandboge

* SECURITY UPDATE: privilege escalation via -g when using group Runas_List
  - debian/patches/CVE-2011-0010.patch: prompt for password when the user is
    running sudo as himself but as a different group
  - CVE-2011-0010

41. By Kees Cook

debian/sudoers: temporarily workaround LP #690873 by adding %admin
into the default sudoers file in case people just say "yes" to the
dpkg conffile prompt.

40. By Lorenzo De Liso

* Merge from debian unstable (LP: #689025), remaining changes:
  - debian/rules:
    + compile with --without-lecture --with-tty-tickets (Ubuntu specific)
    + install man/man8/sudo_root.8 (Ubuntu specific)
    + install apport hooks
  - debian/sudo-ldap.dirs, debian/sudo.dirs: add
    usr/share/apport/package-hooks
* This upload also fixes: LP: #609645

39. By Martin Pitt

No-change upload to drop sizable upstream changelog.

38. By Jamie Strandboge

* SECURITY UPDATE: privilege escalation via '-g' option when using
  'user:group' in Runas_Spec
  - debian/patches/CVE-2010-2956.patch: update match.c to verify both user
    and group match sudoers when using '-g'
  - CVE-2010-2956

37. By Jamie Strandboge

* Merge from debian unstable. Remaining changes:
 - debian/rules:
   - compile with --without-lecture --with-tty-tickets (Ubuntu specific)
   - install man/man8/sudo_root.8 (Ubuntu specific)
   - install apport hooks
 - debian/sudo-ldap.dirs, debian/sudo.dirs: add
   usr/share/apport/package-hooks
 - debian/patches/ubuntu-sudo-as-admin-successful.patch: adjust sudo.c so
   that if the user successfully authenticated and he is in the 'admin'
   group, then create a stamp ~/.sudo_as_admin_successful. Our default bash
   profile checks for this and displays a short intro about sudo if the flag
   is not present
* Dropped the following, now included upstream:
  - fix for CVE-2010-1163
  - fix for CVE-2010-0426
  - debian/sudo.postinst, debian/sudo-ldap.postinst: update description to
    match behavior in sudoers file
  - don't install init script. Debian moved to /var/lib/sudo from
    /var/run/sudo, so Ubuntu's tmpfs usage won't clean those out
    automatically any more, so we now need the initscript.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/natty/sudo
This branch contains Public information 
Everyone can see this information.

Subscribers