sudo-1.8.6p3-19.AXS4
エラータID: AXSA:2015-227:01
Sudo (superuser do) allows a system administrator to give certain
users (or groups of users) the ability to run some (or all) commands
as root while logging all commands and arguments. Sudo operates on a
per-command basis. It is not a replacement for the shell. Features
include: the ability to restrict what commands a user may run on a
per-host basis, copious logging of each command (providing a clear
audit trail of who did what), a configurable timeout of the sudo
command, and the ability to use the same configuration file (sudoers)
on many different machines.
Security issues fixed with this release:
CVE-2014-9680
Fixed bugs:
* Previously, the sudo utility child processes could sometimes become unresponsive because they ignored the SIGPIPE signal. With this update, fixed it.
* Previously, the order in which sudo rules were processed did not honor the user-defined sudoOrder attribute. So, sudo rules were processed in an undefined order even when the user defined the order in sudoOrder. The implementation of SSSD support in sudo has been modified to sort the rules according to the sudoOrder value, and sudo rules are now sorted in the order defined by the user in sudoOrder.
* Previously, sudo became unresponsive after the user issued a command when a sudoers source was mentioned multiple times in the /etc/nsswitch.conf file. The problem occurred when nsswitch.conf contained, for example, the "sudoers: files sss sss" entry. The sudoers source processing code has been fixed to correctly handle multiple instances of the same sudoers source. With this update, fixed it.
Enhancements:
* The sudo utility now supports I/O logs compressed using the zlib library. With this update, sudo can generate zlib compressed I/O logs and also process zlib compressed I/O logs generated by other versions of sudo with zlib support.
Update packages.
sudo before 1.8.12 does not ensure that the TZ environment variable is associated with a zoneinfo file, which allows local users to open arbitrary files for read access (but not view file contents) by running a program within an sudo session, as demonstrated by interfering with terminal output, discarding kernel-log messages, or repositioning tape drives.
N/A
SRPMS
- sudo-1.8.6p3-19.AXS4.src.rpm
MD5: 4909fb1231fb29d6f6c2686fe8421a0f
SHA-256: 8cfb8cb36264612216aaabe0e2c01e5695cc9267b1de9f114216ce8e8a7549d2
Size: 1.85 MB
Asianux Server 4 for x86
- sudo-1.8.6p3-19.AXS4.i686.rpm
MD5: c7fbe46cf26bb9fd91129adf954fc504
SHA-256: 9880e7f15ece6792218492f7b4ab8d34516e9e992fc41900184f20c9d60ee8bb
Size: 699.43 kB
Asianux Server 4 for x86_64
- sudo-1.8.6p3-19.AXS4.x86_64.rpm
MD5: f2acacfe97c588691d7c9624c22e0366
SHA-256: 3c77f506c9132ed0de34b4f0fc728997228cd3a9f8a97eb765adf21d6648a30f
Size: 706.32 kB