lp://qastaging/~ubuntu-branches/ubuntu/raring/sudo/raring-201211161512
- Get this branch:
- bzr branch lp://qastaging/~ubuntu-branches/ubuntu/raring/sudo/raring-201211161512
Branch merges
- Ubuntu branches: Pending requested
-
Diff: 1477 lines (+1418/-14) (has conflicts)4 files modified.pc/applied-patches (+7/-0)
debian/patches/fix_sssd_build.patch (+43/-0)
plugins/sudoers/sssd.c (+1336/-0)
plugins/sudoers/sudo_nss.c (+32/-14)
Branch information
- Owner:
- Ubuntu branches
- Status:
- Development
Recent revisions
- 59. By Tyler Hicks
-
* Merge from debian/testing (LP: #1024154), remaining changes:
- debian/patches/ keep_home_ by_default. patch:
+ Set HOME in initial_keepenv_ table.
- debian/rules:
+ compile with --without-lecture --with-tty-tickets (Ubuntu specific)
+ install man/man8/sudo_root. 8 in both flavours (Ubuntu specific)
+ install apport hooks
+ The ubuntu-sudo-as- admin-successfu l.patch was taken upstream by
Debian however it requires a --enable-admin-flag configure flag to
actually enable it in both flavours.
- debian/control:
+ Mark Debian Vcs-* as XS-Debian-Vcs-*
+ update debian/control
- debian/sudoers:
+ grant admin group sudo access
- debian/source_ sudo.py, debian/ sudo-ldap. dirs, debian/sudo.dirs:
+ add usr/share/apport/ package- hooks
- debian/sudo.pam:
+ Use pam_env to read /etc/environment and /etc/default/locale
environment files. Reading ~/.pam_environment is not permitted due to
security reasons.
* Dropped changes:
- debian/patches/ lp927828- fix-abort- in-pam- modules- when-timestamp- valid.patch
+ Fixed upstream in 1.8.5
- debian/patches/ CVE-2012- 2337.patch:
+ Fixed upstream in 1.8.4p5
- debian/patches/ pam_env_ merge.patch:
+ Feature released upstream in 1.8.5
- debian/{sudo,sudo- ldap}.{ preinst, postinst, postrm} :
+ Drop Ubuntu-specific sudoers file migration code because the only
upgrade path to quantal is from precise. All necessary sudoers file
migration will have already been done by the time this version of the
sudo package is installed. - 58. By Steve Langasek
-
* debian/
patches/ pam_env_ merge.patch: Merge the PAM environment into the
user environment (LP: #982684)
* debian/sudo.pam: Use pam_env to read /etc/environment and
/etc/default/ locale environment files. Reading ~/.pam_environment is not
permitted due to security reasons. - 56. By Tyler Hicks
-
* SECURITY UPDATE: Properly handle netmasks in sudoers Host and Host_List
values (LP: #1000276)
- debian/patches/ CVE-2012- 2337.patch: Don't perform IPv6 checks on IPv4
addresses. Based on upstream patch.
- CVE-2012-2337 - 55. By TJ (Ubuntu Contributions)
-
Fix Abort in some PAM modules when timestamp is valid. (LP: #927828)
- 54. By Marc Deslauriers
-
* SECURITY UPDATE: permissions bypass via format string
- debian/patches/ CVE-2012- 0809.patch: fix format string vulnerability
in src/sudo.c.
- CVE-2012-0809
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp://qastaging/ubuntu/raring/sudo