sudo 1.8.31-1ubuntu1.5 source package in Ubuntu
Changelog
sudo (1.8.31-1ubuntu1.5) focal-security; urgency=medium
* SECURITY UPDATE: does not escape control characters
- debian/patches/CVE-2023-2848x-1.patch: escape control characters in
log messages and sudoreplay output in docs/sudoers.man.in,
docs/sudoers.mdoc.in, docs/sudoreplay.man.in,
docs/sudoreplay.mdoc.in, include/sudo_compat.h, include/sudo_lbuf.h,
lib/util/lbuf.c, lib/util/util.exp.in, plugins/sudoers/logging.c,
plugins/sudoers/sudoreplay.c.
- debian/patches/CVE-2023-2848x-2.patch: fix regression in
plugins/sudoers/logging.c.
- CVE-2023-28486
- CVE-2023-28487
-- Marc Deslauriers <email address hidden> Tue, 04 Apr 2023 07:56:28 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- admin
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Focal | updates | main | admin | |
| Focal | security | main | admin |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| sudo_1.8.31.orig.tar.gz | 3.2 MiB | 7ea8d97a3cee4c844e0887ea7a1bd80eb54cc98fd77966776cb1a80653ad454f |
| sudo_1.8.31-1ubuntu1.5.debian.tar.xz | 41.7 KiB | 1a11461a84aab7b17a55955c9b065bfca7e0f8f83f18573f8251b74add893d0d |
| sudo_1.8.31-1ubuntu1.5.dsc | 2.0 KiB | f1086eef242593bc9d6ce9ba1957b0684b7469eedb706d1eb5c558bf44fa97b5 |
Available diffs
Binary packages built by this source
- sudo: Provide limited super user privileges to specific users
Sudo is a program designed to allow a sysadmin to give limited root
privileges to users and log root activity. The basic philosophy is to give
as few privileges as possible but still allow people to get their work done.
.
This version is built with minimal shared library dependencies, use the
sudo-ldap package instead if you need LDAP support for sudoers.
- sudo-dbgsym: debug symbols for sudo
- sudo-ldap: Provide limited super user privileges to specific users
Sudo is a program designed to allow a sysadmin to give limited root
privileges to users and log root activity. The basic philosophy is to give
as few privileges as possible but still allow people to get their work done.
.
This version is built with LDAP support, which allows an equivalent of the
sudoers database to be distributed via LDAP. Authentication is still
performed via pam.
- sudo-ldap-dbgsym: debug symbols for sudo-ldap
