ELBA-2017-2017

ELBA-2017-2017 - sudo bug fix and enhancement update

Type:BUG
Severity:NA
Release Date:2017-08-08

Description


[1.8.19p2-10]
- RHEL 7.4 erratum
- Fix CVE-2017-1000368
Resolves: rhbz#1459411

[1.8.19p2-9]
- RHEL 7.4 erratum
- removed patch for output truncation (1454571) which introduced regression
Resolves: rhbz#1360687

[1.8.19p2-8]
- RHEL 7.4 erratum
- Fixes CVE-2017-1000367: Privilege escalation in via improper get_process_ttyname() parsing
Resolves: rhbz#1455402

[1.8.19p2-7]
- RHEL 7.4 erratum
- added patch to fix output truncation (in some cases) when log_output
option is enabled
Resolves: rhbz#1454571

[1.8.19p2-6]
- RHEL 7.4 erratum
- added patch that fixes lecture option used as bolean
Resolves rhbz#1360687

[1.8.19p2-5]
- RHEL 7.4 erratum
- added doc patch about sudo lookup issue
Resolves: rhbz#1293306
- added test suite patch
Resolves: rhbz#1360687
- fixed use after free fqdn problem
Resolves: rhbz#1360687

[1.8.19p2-4]
- RHEL 7.4 erratum
- fixed cmnd_no_wait patch
- backported iolog_flush sudoers default
Resolves: rhbz#1369856
Resolves: rhbz#1425853

[1.8.19p2-3]
- RHEL 7.4 eratum
- Fixes semicolon typo in digest backport patch from the previous build
Resolves: rhbz#1360687

[1.8.19p2-2]
- RHEL 7.4 erratum
- Fixes coverity scan issues created by our patches:
- fixed resource leaks and a compiler warning in digest backport patch
- removed needless code from cmnd_no_wait patch causing clang warning
- format of the last changelog message causes problems to rhpkg push,
so don't use that as a commit message
Resolves: rhbz#1360687

[1.8.19p2-1]
- RHEL 7.4 erratum
- Resolves: rhbz#1360687 - rebase to 1.8.19p2
- Resolves: rhbz#1123526 - performance improvement
- Resolves: rhbz#1308789 - add MAIL and NOMAIL tags
- Resolves: rhbz#1348504 - sudo now parses sudoers with sudoers locale
- Resolves: rhbz#1374417 - 'sudo -l command' indicated that the command
was runnable even if denied by sudoers when using LDAP or SSSD backend.
- Resolves: rhbz#1387303 - add ignore_iolog_errors option
- Resolves: rhbz#1389360 - wrong log file group ownership
- Resolves: rhbz#1389735 - add iolog_group, iolog_mode, iolog_user options
- Resolves: rhbz#1397169 - maxseq and ignore_iolog_errors options
- Resolves: rhbz#1403051 - add support for querying netgroups directly via LDAP
- Resolves: rhbz#1410086 - race condition while creating /var/log/sudo-io dir
- Resolves: rhbz#1413160 - add ignore_unknown_defaults flag
- Resolves: rhbz#1254772 - ability to export sudoers in json format
- Resolves: rhbz#1417187 - wrong reference to config file in systax error message
- Resolves: rhbz#1424575 - visudo was not printing severity of error/warning message




Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete