sudo 보안 업데이트
업데이트 : 2015.08.16
이름 : sudo-1:1.8.6p3-20.an2
벤더 : AnNyung Packaging Team
설명 :
Sudo (superuser do) allows a system administrator to give certain
users (or groups of users) the ability to run some (or all) commands
as root while logging all commands and arguments. Sudo operates on a
per-command basis. It is not a replacement for the shell. Features
include: the ability to restrict what commands a user may run on a
per-host basis, copious logging of each command (providing a clear
audit trail of who did what), a configurable timeout of the sudo
command, and the ability to use the same configuration file (sudoers)
on many different machines.
변경사항
- security issues
. CVE-2014-9680 unsafe handling of TZ environment variable
- RHEL-6.7 erratum
- added zlib-devel build required to enable zlib compression support
- fixed two typos in the sudoers.ldap man page
- fixed a hang when duplicate nss entries are specified in nsswitch.conf
- SSSD: implemented sorting of the result entries according to the
sudoOrder attribute
- LDAP: fixed logic handling the computation of the "user matched" flag
- fixed restoring of the SIGPIPE signal in the tgetpass function
- fixed listpw, verifypw authenticate option logic in LDAP/SSSD
Resolves: rhbz#1106433
Resolves: rhbz#1138267
Resolves: rhbz#1147498
Resolves: rhbz#1138581
Resolves: rhbz#1142122
Resolves: rhbz#1094548
Resolves: rhbz#1144448
- RHEL-6.7 erratum
- added BuildRequires for tzdata
Resolves: rhbz#1200253
- RHEL-6.7 erratum
- fixed the mantypos-ldap.patch
Resolves: rhbz#1138267
- RHEL-6.7 erratum
- modified the authlogicfix patch to fix #1144448
- fixed a bug in the ldapusermatchfix patch
Resolves: rhbz#1144448
Resolves: rhbz#1142122
- added patch to re-introduce old group processing behaviour
Resolves: rhbz#1075836
업데이트 패키지
SRPMS:
. sudo-1.8.6p3-20.an2.src.rpm
x86_64:
. sudo-devel-1.8.6p3-20.an2.x86_64.rpm
. sudo-1.8.6p3-20.an2.x86_64.rpm
i686:
. sudo-1.8.6p3-20.an2.i686.rpm
. sudo-devel-1.8.6p3-20.an2.i686.rpm
|