Stay Connected:

ELSA-2013-1701

ELSA-2013-1701 - sudo security, bug fix and enhancement update

Type:SECURITY
Severity:LOW
Release Date:2013-11-25

Description


[1.8.6p3-12]
- added patches for CVE-2013-1775 CVE-2013-2777 CVE-2013-2776
Resolves: rhbz#1015355

[1.8.6p3-11]
- sssd: fixed a bug in ipa_hostname processing
Resolves: rhbz#853542

[1.8.6p3-10]
- sssd: fixed buffer size for the ipa_hostname value
Resolves: rhbz#853542

[1.8.6p3-9]
- sssd: match against ipa_hostname from sssd.conf too when
checking sudoHost
Resolves: rhbz#853542

[1.8.6p3-8]
- updated man-page
- fixed handling of RLIMIT_NPROC resource limit
- fixed alias cycle detection code
- added debug messages for tracing of netgroup matching
- fixed aborting on realloc when displaying allowed commands
- show the SUDO_USER in logs, if running commands as root
- sssd: filter netgroups in the sudoUser attribute
Resolves: rhbz#856901
Resolves: rhbz#947276
Resolves: rhbz#886648
Resolves: rhbz#994563
Resolves: rhbz#848111
Resolves: rhbz#994626
Resolves: rhbz#973228
Resolves: rhbz#880150


Related CVEs


CVE-2013-1775
CVE-2013-2776
CVE-2013-2777

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 6 (i386) sudo-1.8.6p3-12.el6.src.rpm828f16cb65c88176d0d14e6a7df24a65ELSA-2021-9169
sudo-1.8.6p3-12.el6.i686.rpm8335e0ca04847ed880b86709f7730e46ELSA-2021-9169
sudo-devel-1.8.6p3-12.el6.i686.rpm9adab7e3caf228999f994c0e21f605b3ELSA-2021-9169
Oracle Linux 6 (x86_64) sudo-1.8.6p3-12.el6.src.rpm828f16cb65c88176d0d14e6a7df24a65ELSA-2021-9169
sudo-1.8.6p3-12.el6.x86_64.rpm395d7fa7c75cb73b246895c636abe807ELSA-2021-9169
sudo-devel-1.8.6p3-12.el6.i686.rpm9adab7e3caf228999f994c0e21f605b3ELSA-2021-9169
sudo-devel-1.8.6p3-12.el6.x86_64.rpm27cd441b6ec9ec16e747c1d3b729ab7aELSA-2021-9169



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights