Please merge sudo (main) 1.8.20p2-1 from Debian unstable (main)

Bug #1697587 reported by Balint Reczey on 2017-06-13
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
sudo (Ubuntu)
High
Unassigned

Bug Description

It fixes LP: #1686803 and contains new upstream releases.

CVE References

Balint Reczey (rbalint) on 2017-06-13
Changed in sudo (Ubuntu):
assignee: nobody → Balint Reczey (rbalint)
status: New → In Progress
Balint Reczey (rbalint) wrote :

Changes:
 sudo (1.8.20p2-1ubuntu1) artful; urgency=low
 .
   * Merge from Debian unstable. (LP: #1697587)
     Remaining changes:
     - Use tmpfs location to store timestamp files
       + debian/rules: change --with-rundir to /var/run/sudo
       + debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
         shipping init script and service file, as they are no longer
         necessary.
       + debian/*.preinst, debian/*.postinst, debian/*.postrm: remove old
         init script with dpkg-maintscript-helper.
       + debian/*.postinst: remove old /var/run/sudo to /var/lib/sudo
         transition code, remove old /var/lib/sudo/ts timestamp directory.
     - debian/rules:
       + compile with --without-lecture --with-tty-tickets --enable-admin-flag
       + install man/man8/sudo_root.8 in both flavours
       + install apport hooks
     - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
       + add usr/share/apport/package-hooks
     - debian/sudo.pam:
       + Use pam_env to read /etc/environment and /etc/default/locale
         environment files. Reading ~/.pam_environment is not permitted due to
         security reasons.
     - debian/sudoers:
       + also grant admin group sudo access
       + include /snap/bin in the secure_path
     - debian/control, debian/rules:
       + use dh-autoreconf
     - Remaining patches:
       + keep_home_by_default.patch: Keep HOME in the default environment
     - Dropped patches no longer needed:
       + CVE-2017-1000367.patch
 .
 sudo (1.8.20p2-1) unstable; urgency=medium
 .
   * new upstream version
 .
 sudo (1.8.20p1-1.1) unstable; urgency=high
 .
   * Non-maintainer upload.
   * Use /proc/self consistently on Linux
   * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)
 .
 sudo (1.8.20p1-1) unstable; urgency=high
 .
   * New upstream version with fix for CVE-2017-1000367, closes: #863731
 .
 sudo (1.8.20-1) unstable; urgency=medium
 .
   * New upstream version
   * patch from Helmut Grohne to fix cross-building issues, closes: #847131
     + Let dh_auto_configure pass --host to configure
     + Honour DEB_BUILD_OPTIONS=nocheck
 .

Balint Reczey (rbalint) wrote :
Balint Reczey (rbalint) wrote :
Changed in sudo (Ubuntu):
status: In Progress → Confirmed
assignee: Balint Reczey (rbalint) → nobody
Balint Reczey (rbalint) on 2017-06-13
tags: added: patch
Bhavani Shankar (bhavi) on 2017-06-13
Changed in sudo (Ubuntu):
importance: Undecided → High
description: updated
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package sudo - 1.8.20p2-1ubuntu1

---------------
sudo (1.8.20p2-1ubuntu1) artful; urgency=low

  * Merge from Debian unstable. (LP: #1697587)
    Remaining changes:
    - Use tmpfs location to store timestamp files
      + debian/rules: change --with-rundir to /var/run/sudo
      + debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop
        shipping init script and service file, as they are no longer
        necessary.
      + debian/*.preinst, debian/*.postinst, debian/*.postrm: remove old
        init script with dpkg-maintscript-helper.
      + debian/*.postinst: remove old /var/run/sudo to /var/lib/sudo
        transition code, remove old /var/lib/sudo/ts timestamp directory.
    - debian/rules:
      + compile with --without-lecture --with-tty-tickets --enable-admin-flag
      + install man/man8/sudo_root.8 in both flavours
      + install apport hooks
    - debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
      + add usr/share/apport/package-hooks
    - debian/sudo.pam:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due to
        security reasons.
    - debian/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/control, debian/rules:
      + use dh-autoreconf
    - Remaining patches:
      + keep_home_by_default.patch: Keep HOME in the default environment
    - Dropped patches no longer needed:
      + CVE-2017-1000367.patch

sudo (1.8.20p2-1) unstable; urgency=medium

  * new upstream version

sudo (1.8.20p1-1.1) unstable; urgency=high

  * Non-maintainer upload.
  * Use /proc/self consistently on Linux
  * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)

sudo (1.8.20p1-1) unstable; urgency=high

  * New upstream version with fix for CVE-2017-1000367, closes: #863731

sudo (1.8.20-1) unstable; urgency=medium

  * New upstream version
  * patch from Helmut Grohne to fix cross-building issues, closes: #847131
    + Let dh_auto_configure pass --host to configure
    + Honour DEB_BUILD_OPTIONS=nocheck

 -- Balint Reczey <email address hidden> Mon, 12 Jun 2017 21:51:31 +0200

Changed in sudo (Ubuntu):
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers