/[smeserver]/rpms/sudo/sme9/sudo.spec

Diff of /rpms/sudo/sme9/sudo.spec

-Revision 1.1 by jpp,
Thu Feb  4 19:44:49 2021 UTC
+Revision 1.2 by jpp,
Sat Feb  6 20:26:20 2021 UTC
 Line 1
  Summary: Allows restricted root access for specified users
  Name: sudo
  Version: 1.8.6p3
- Release: 29%{?dist}
+ Release: 30%{?dist}
  License: ISC
  Group: Applications/System
  URL: http://www.courtesan.com/sudo/
 Line 142 
 Patch55: sudo-1.8.6p3-noexec-update.patc
  Patch56: sudo-1.8.6p3-tty-parsing.patch
  # 1459408 - CVE-2017-1000368 sudo: Privilege escalation via improper get_process_ttyname() parsing (insufficient fix for CVE-2017-1000367) [rhel-6.9.z]
  Patch57: sudo-1.8.6p7-CVE-2017-1000368.patch
+ # 1917729 - EMBARGOED CVE-2021-3156 sudo: Heap-buffer overflow in argument parsing [rhel-7.9.z]
+ Patch58: sudo-1.8.6p3-CVE-2021-3156.patch
  %description
  Sudo (superuser do) allows a system administrator to give certain
-Line 224 
 plugins that use %{name}.
+Line 225 
 plugins that use %{name}.
  %patch55 -p1 -b .noexec-update
  %patch56 -p1 -b .tty-parsing
  %patch57 -p1 -b .CVE-2017-1000368
+ %patch58 -p1 -b .heap-buffer
  %build
  autoreconf -I m4 -fv --install
-Line 340 
 rm -rf $RPM_BUILD_ROOT
+Line 342 
 rm -rf $RPM_BUILD_ROOT
  %{_mandir}/man8/sudo_plugin.8*
  %changelog
+ * Thu Feb 04 2021 Jean-Philipe Pialasse <tests@pialasse.com> 1.8.6p3-30.sme
+ - fix CVE-2021-3156 [SME: 11339]
  * Wed Jun 07 2017 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-29
  - Fixes CVE-2017-1000368
    Resolves: rhbz#1459408

 Legend:



Removed lines/characters
 


Changed lines/characters


 
Added lines/characters
 Legend:



Removed lines/characters
 


Changed lines/characters


 
Added lines/characters
-Removed lines/characters
+Added lines/characters

admin@koozali.org	ViewVC Help
Powered by ViewVC 1.2.1