Описание
ELSA-2011-0599: sudo security and bug fix update (LOW)
[1.7.4p5-5]
- patch: log failed user role changes Resolves: rhbz#665131
[1.7.4p5-4]
- added #includedir /etc/sudoers.d to sudoers Resolves: rhbz#615087
[1.7.4p5-3]
- added !visiblepw option to sudoers Resolves: rhbz#688640
[1.7.4p5-2]
- added patch for rhbz#665131 Resolves: rhbz#665131
[1.7.4p5-1]
- rebase to latest stable version
- sudo now uses /var/db/sudo for timestamps
- new command available: sudoreplay
- use native audit support
- sync configuration paths with the nss_ldap package Resolves: rhbz#615087 Resolves: rhbz#652726 Resolves: rhbz#634159 Resolves: rhbz#603823
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
sudo
1.7.4p5-5.el6
Oracle Linux i686
sudo
1.7.4p5-5.el6
Связанные CVE
Связанные уязвимости
check.c in sudo 1.7.x before 1.7.4p5, when a Runas group is configured, does not require a password for command execution that involves a gid change but no uid change, which allows local users to bypass an intended authentication requirement via the -g option to a sudo command.
check.c in sudo 1.7.x before 1.7.4p5, when a Runas group is configured, does not require a password for command execution that involves a gid change but no uid change, which allows local users to bypass an intended authentication requirement via the -g option to a sudo command.
check.c in sudo 1.7.x before 1.7.4p5, when a Runas group is configured, does not require a password for command execution that involves a gid change but no uid change, which allows local users to bypass an intended authentication requirement via the -g option to a sudo command.
check.c in sudo 1.7.x before 1.7.4p5, when a Runas group is configured ...
check.c in sudo 1.7.x before 1.7.4p5, when a Runas group is configured, does not require a password for command execution that involves a gid change but no uid change, which allows local users to bypass an intended authentication requirement via the -g option to a sudo command.