sudo init script should set date to epoch, not 1985-01-01
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| sudo (Debian) |
Fix Released
|
Unknown
|
|||
| sudo (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
| Lucid |
Invalid
|
Undecided
|
Marc Deslauriers | ||
| Precise |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
| Quantal |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
| Saucy |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
| Trusty |
Fix Released
|
Medium
|
Unassigned | ||
Bug Description
Sudo treats filestamps set to epoch as invalid, so the init script should set the contents of /var/lib/sudo to epoch, and not 19850101.
ie:
find /var/lib/sudo -exec touch -d @0 '{}' \;
instead of:
find /var/lib/sudo -exec touch -t 198501010000 '{}' \;
ProblemType: Bug
DistroRelease: Ubuntu 13.10
Package: sudo 1.8.6p3-0ubuntu3
ProcVersionSign
Uname: Linux 3.11.0-4-generic x86_64
ApportVersion: 2.12.1-0ubuntu3
Architecture: amd64
Date: Tue Sep 10 07:25:04 2013
InstallationDate: Installed on 2012-11-13 (300 days ago)
InstallationMedia: Ubuntu 12.10 "Quantal Quetzal" - Release amd64 (20121017.5)
MarkForUpload: True
SourcePackage: sudo
UpgradeStatus: Upgraded to saucy on 2013-08-19 (21 days ago)
modified.
modified.
CVE References
| Marc Deslauriers (mdeslaur) wrote | #1 |
| Changed in sudo (Ubuntu): | |
| status: | New → Confirmed |
| Changed in sudo (Debian): | |
| status: | Unknown → New |
| Changed in sudo (Debian): | |
| status: | New → Fix Released |
| Changed in sudo (Ubuntu): | |
| status: | Confirmed → Fix Committed |
| importance: | Undecided → Medium |
| Brian Murray (brian-murray) wrote | #2 |
| Changed in sudo (Ubuntu): | |
| status: | Fix Committed → Fix Released |
| Changed in sudo (Ubuntu Lucid): | |
| status: | New → Confirmed |
| Changed in sudo (Ubuntu Quantal): | |
| status: | New → Confirmed |
| Changed in sudo (Ubuntu Lucid): | |
| assignee: | nobody → Marc Deslauriers (mdeslaur) |
| Changed in sudo (Ubuntu Precise): | |
| status: | New → Confirmed |
| Changed in sudo (Ubuntu Saucy): | |
| status: | New → Confirmed |
| Changed in sudo (Ubuntu Precise): | |
| assignee: | nobody → Marc Deslauriers (mdeslaur) |
| Changed in sudo (Ubuntu Quantal): | |
| assignee: | nobody → Marc Deslauriers (mdeslaur) |
| Changed in sudo (Ubuntu Saucy): | |
| assignee: | nobody → Marc Deslauriers (mdeslaur) |
| Launchpad Janitor (janitor) wrote | #3 |
| Changed in sudo (Ubuntu Precise): | |
| status: | Confirmed → Fix Released |
| Launchpad Janitor (janitor) wrote | #4 |
| Changed in sudo (Ubuntu Quantal): | |
| status: | Confirmed → Fix Released |
| Launchpad Janitor (janitor) wrote | #5 |
| Changed in sudo (Ubuntu Saucy): | |
| status: | Confirmed → Fix Released |
| Changed in sudo (Ubuntu Lucid): | |
| status: | Confirmed → Invalid |
This is fixed in Trusty:
sudo (1.8.8-2ubuntu1) trusty; urgency=low
* Merge from Debian unstable. Remaining changes:
- debian/rules:
+ compile with --without-lecture --with-tty-tickets --enable-admin-flag
+ install man/man8/
+ install apport hooks
- debian/sudoers:
+ also grant admin group sudo access
- debian/
+ add usr/share/
- debian/sudo.pam:
+ Use pam_env to read /etc/environment and /etc/default/locale
environment files. Reading ~/.pam_environment is not permitted due to
security reasons.
- Remaining patches:
+ keep_home_
+ actually-
-- Stéphane Graber <email address hidden> Tue, 22 Oct 2013 17:43:37 -0400
sudo (1.8.8-2) unstable; urgency=low
* fix touch errors on boot, closes: #725193
-- Bdale Garbee <email address hidden> Tue, 08 Oct 2013 20:11:38 -0600
sudo (1.8.8-1) unstable; urgency=low
* new upstream release
-- Bdale Garbee <email address hidden> Mon, 30 Sep 2013 23:08:49 -0600
sudo (1.8.8~rc1-1) experimental; urgency=low
* upstream release candidate with several of our patches folded in
* set filestamps to epoch instead of an arbitrary old date in the init
fragment, closes: #722335