lp:~xnox/ubuntu/quantal/sudo/merge

Branch merges

Propose for merging

No branches dependent on this one.

Merged into lp:ubuntu/quantal/sudo at revision 57

Ubuntu branches: Pending requested 2012-05-22

Steve Langasek: Pending requested 2012-05-22

Diff: 7378 lines (+370/-6300)

37 files modified

.pc/CVE-2012-0809.patch/src/sudo.c (+0/-1222)
.pc/applied-patches (+0/-2)
.pc/enable_badpass.patch/doc/sudoers.man.in (+0/-2035)
.pc/enable_badpass.patch/doc/sudoers.pod (+0/-1969)
.pc/enable_badpass.patch/plugins/sudoers/defaults.c (+0/-781)
ChangeLog (+14/-0)
NEWS (+6/-0)
configure (+9/-9)
configure.in (+1/-1)
debian/README (+0/-17)
debian/changelog (+66/-0)
debian/control (+3/-3)
debian/patches/CVE-2012-0809.patch (+0/-28)
debian/patches/enable_badpass.patch (+0/-42)
debian/patches/keep_home_by_default.patch (+3/-3)
debian/patches/lp927828-fix-abort-in-pam-modules-when-timestamp-valid.patch (+22/-14)
debian/patches/series (+0/-2)
debian/rules (+22/-9)
debian/source.lintian-overrides (+0/-2)
debian/sudo-ldap.dirs (+1/-0)
debian/sudo-ldap.lintian (+2/-0)
debian/sudo-ldap.postinst (+62/-45)
debian/sudo-ldap.postrm (+5/-0)
debian/sudo-ldap.sudo.init (+2/-2)
debian/sudo.dirs (+1/-0)
debian/sudo.lintian (+2/-0)
debian/sudo.postinst (+53/-42)
debian/sudo.preinst (+1/-0)
debian/sudo.service (+10/-0)
debian/sudo.sudo.init (+2/-2)
debian/sudoers (+1/-0)
doc/sudoers.man.in (+1/-1)
doc/sudoers.pod (+1/-1)
plugins/sudoers/defaults.c (+0/-1)
plugins/sudoers/po/sudoers.pot (+64/-64)
src/po/sudo.pot (+2/-2)
sudo.pp (+14/-1)

api

Related source package recipes

1 recipe using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

60. By Dimitri John Ledkov on 2012-05-22

* Merge security fix in.

59. By Dimitri John Ledkov on 2012-05-16

* Merge from debian/testing, remaining changes:
  - debian/rules
    + install man/man8/sudo_root.8 in both flavours (Ubuntu specific)
    + add --enable-admin-flag to both flavours.
  - debian/control:
    + Mark Debian Vcs-* as XS-Debian-Vcs-*
    + update debian/control

* Dropped changes:
  - debian/patches/CVE-2012-0809.patch:
    + droped, included in this new upstream release.
  - debian/patches/enable_badpass.patch:
    + droped as Debian chose to set this by default in the sudoers.

58. By Dimitri John Ledkov on 2012-05-16

Revert patch refresh

57. By Dimitri John Ledkov on 2012-05-02

fix up target release

56. By Dimitri John Ledkov on 2012-05-02

* Merge from debian/testing, remaining changes:
  - debian/patches/CVE-2012-0809.patch:
    + droped, included in this new upstream release.
  - debian/patches/enable_badpass.patch:
    + droped as Debian chose to set this by default in the sudoers.
  - debian/patches/keep_home_by_default.patch:
    + Set HOME in initial_keepenv_table. (rebased for 1.8.3p1)
  - debian/patches/lp927828-fix-abort-in-pam-modules-when-timestamp-valid.patch
    + Fix Abort in some PAM modules when timestamp is valid.
  - debian/rules:
    + compile with --without-lecture --with-tty-tickets (Ubuntu specific)
    + install man/man8/sudo_root.8 (Ubuntu specific)
    + install apport hooks
    + The ubuntu-sudo-as-admin-successful.patch was taken upstream by
      Debian however it requires a --enable-admin-flag configure flag to
      actually enable it.
  - debian/sudoers:
    + grant admin group sudo access
  - debian/sudo-ldap.dirs, debian/sudo.dirs:
    + add usr/share/apport/package-hooks
  - debian/sudo.preinst:
    + avoid conffile prompt by checking for known default /etc/sudoers
      and if found installing the correct default /etc/sudoers file.
      Modified for updated default sudoers. Aproach taken is different
      from Debian. Maybe this should now be dropped, since LTS was
      released.

55. By TJ (Ubuntu Contributions) on 2012-04-30

Fix Abort in some PAM modules when timestamp is valid. (LP: #927828)

54. By Marc Deslauriers on 2012-01-31

* SECURITY UPDATE: permissions bypass via format string
  - debian/patches/CVE-2012-0809.patch: fix format string vulnerability
    in src/sudo.c.
  - CVE-2012-0809

53. By Marc Deslauriers on 2011-11-24

* debian/sudo.preinst:
  - updated to avoid conffile prompt by migrating to the new sudoers file
    changes in Precise. (LP: #894410)

52. By Marc Deslauriers on 2011-11-20

* Merge from debian/testing, remaining changes:
  - debian/patches/keep_home_by_default.patch:
    + Set HOME in initial_keepenv_table. (rebased for 1.8.3p1)
  - debian/patches/enable_badpass.patch: turn on "mail_badpass" by default:
    + attempting sudo without knowing a login password is as bad as not
      being listed in the sudoers file, especially if getting the password
      wrong means doing the access-check-email-notification never happens
      (rebased for 1.8.3p1)
  - debian/rules:
    + compile with --without-lecture --with-tty-tickets (Ubuntu specific)
    + install man/man8/sudo_root.8 (Ubuntu specific)
    + install apport hooks
    + The ubuntu-sudo-as-admin-successful.patch was taken upstream by
      Debian however it requires a --enable-admin-flag configure flag to
      actually enable it.
  - debian/sudoers:
    + grant admin group sudo access
  - debian/sudo-ldap.dirs, debian/sudo.dirs:
    + add usr/share/apport/package-hooks
  - debian/sudo.preinst:
    + avoid conffile prompt by checking for known default /etc/sudoers
      and if found installing the correct default /etc/sudoers file

51. By Kees Cook on 2011-09-11

* debian/patches/enable_badpass.patch: turn on "mail_badpass" by default:
  - attempting sudo without knowing a login password is as bad as not
    being listed in the sudoers file, especially if getting the password
    wrong means doing the access-check-email-notification never happens
    (Closes: 641218).