lp://qastaging/~ubuntu-branches/ubuntu/raring/sudo/raring-201211161512

Branch merges

Propose for merging

No branches dependent on this one.

Rejected for merging into lp://qastaging/ubuntu/raring/sudo

Ubuntu branches: Pending requested 2012-11-16

Diff: 1477 lines (+1418/-14) (has conflicts)

4 files modified

.pc/applied-patches (+7/-0)
debian/patches/fix_sssd_build.patch (+43/-0)
plugins/sudoers/sssd.c (+1336/-0)
plugins/sudoers/sudo_nss.c (+32/-14)

api

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

63. By Stéphane Graber on 2012-11-16

releasing version 1.8.6p3-0ubuntu1

62. By Stéphane Graber on 2012-11-15

Build with sssd, drop specific manpage installation steps.

61. By Stéphane Graber on 2012-11-15

Add patch to allow building with sssd support

60. By Stéphane Graber on 2012-11-15

Merge new upstream release 1.8.6p3

59. By Tyler Hicks on 2012-07-16

* Merge from debian/testing (LP: #1024154), remaining changes:
  - debian/patches/keep_home_by_default.patch:
    + Set HOME in initial_keepenv_table.
  - debian/rules:
    + compile with --without-lecture --with-tty-tickets (Ubuntu specific)
    + install man/man8/sudo_root.8 in both flavours (Ubuntu specific)
    + install apport hooks
    + The ubuntu-sudo-as-admin-successful.patch was taken upstream by
      Debian however it requires a --enable-admin-flag configure flag to
      actually enable it in both flavours.
  - debian/control:
    + Mark Debian Vcs-* as XS-Debian-Vcs-*
    + update debian/control
  - debian/sudoers:
    + grant admin group sudo access
  - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
    + add usr/share/apport/package-hooks
  - debian/sudo.pam:
    + Use pam_env to read /etc/environment and /etc/default/locale
      environment files. Reading ~/.pam_environment is not permitted due to
      security reasons.
* Dropped changes:
  - debian/patches/lp927828-fix-abort-in-pam-modules-when-timestamp-valid.patch
    + Fixed upstream in 1.8.5
  - debian/patches/CVE-2012-2337.patch:
    + Fixed upstream in 1.8.4p5
  - debian/patches/pam_env_merge.patch:
    + Feature released upstream in 1.8.5
  - debian/{sudo,sudo-ldap}.{preinst,postinst,postrm}:
    + Drop Ubuntu-specific sudoers file migration code because the only
      upgrade path to quantal is from precise. All necessary sudoers file
      migration will have already been done by the time this version of the
      sudo package is installed.

58. By Steve Langasek on 2012-05-23

* debian/patches/pam_env_merge.patch: Merge the PAM environment into the
  user environment (LP: #982684)
* debian/sudo.pam: Use pam_env to read /etc/environment and
  /etc/default/locale environment files. Reading ~/.pam_environment is not
  permitted due to security reasons.

57. By Steve Langasek on 2012-05-23

Merge version 1.8.3p2-1

56. By Tyler Hicks on 2012-05-16

* SECURITY UPDATE: Properly handle netmasks in sudoers Host and Host_List
  values (LP: #1000276)
  - debian/patches/CVE-2012-2337.patch: Don't perform IPv6 checks on IPv4
    addresses. Based on upstream patch.
  - CVE-2012-2337

55. By TJ (Ubuntu Contributions) on 2012-04-30

Fix Abort in some PAM modules when timestamp is valid. (LP: #927828)

54. By Marc Deslauriers on 2012-01-31

* SECURITY UPDATE: permissions bypass via format string
  - debian/patches/CVE-2012-0809.patch: fix format string vulnerability
    in src/sudo.c.
  - CVE-2012-0809