From mboxrd@z Thu Jan  1 00:00:00 1970
From: Adolf Belka <adolf.belka@ipfire.org>
To: development@lists.ipfire.org
Subject: [PATCH] sudo: Update to 1.9.6p1
Date: Wed, 17 Mar 2021 22:42:22 +0100
Message-ID: <20210317214222.40830-1-adolf.belka@ipfire.org>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============3824017517480018910=="
List-Id: <development.lists.ipfire.org>

--===============3824017517480018910==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

- Update from 1.9.5p2 to 1.9.6p1
- Update not required for rootfile
- Changelog
Major changes between version 1.9.6p1 and 1.9.6:
    Fixed a regression introduced in sudo 1.9.6 that resulted in an error mes=
sage instead of a usage message when sudo is run with no arguments.
Major changes between version 1.9.6 and 1.9.5p2:
    Fixed a sudo_sendlog compilation problem with the AIX xlC compiler.
    Fixed a regression introduced in sudo 1.9.4 where the --disable-root-mail=
er configure option had no effect.
    Added a --disable-leaks configure option that avoids some memory leaks on=
 exit that would otherwise occur. This is intended to be used with developmen=
t tools that measure memory leaks. It is not safe to use in production at thi=
s time.
    Plugged some memory leaks identified by oss-fuzz and ASAN.
    Fixed the handling of sudoOptions for an LDAP sudoRole that contains mult=
iple sudoCommands. Previously, some of the options would only be applied to t=
he first sudoCommand.
    Fixed a potential out of bounds read in the parsing of NOTBEFORE and NOTA=
FTER sudoers command options (and their LDAP equivalents).
    The parser used for reading I/O log JSON files is now more resilient when=
 processing invalid JSON.
    Fixed typos that prevented make uninstall from working. GitHub issue #87.
    Fixed a regression introduced in sudo 1.9.4 where the last line in a sudo=
ers file might not have a terminating NUL character added if no newline was p=
resent.
    Integrated oss-fuzz and LLVM's libFuzzer with sudo. The new --enable-fuzz=
er configure option can be combined with the --enable-sanitizer option to bui=
ld sudo with fuzzing support. Multiple fuzz targets are available for fuzzing=
 different parts of sudo. Fuzzers are built and tested via make fuzz or as pa=
rt of make check (even when sudo is not built with fuzzing support). Fuzzing =
support currently requires the LLVM clang compiler (not gcc).
    Fixed the --enable-static-sudoers configure option. GitHub issue #92.
    Fixed a potential out of bounds read sudo when is run by a user with more=
 groups than the value of max_groups in sudo.conf.
    Added an admin_flag sudoers option to make the use of the ~/.sudo_as_admi=
n_successful file configurable on systems where sudo is build with the --enab=
le-admin-flag configure option. This mostly affects Ubuntu and its derivative=
s. GitHub issue #56.
    The max_groups setting in sudo.conf is now limited to 1024. This setting =
is obsolete and should no longer be needed.
    Fixed a bug in the tilde expansion of CHROOT=3Ddir and CWD=3Ddir sudoers =
command options. A path ~/foo was expanded to /home/userfoo instead of /home/=
user/foo. This also affects the runchroot and runcwd Defaults settings.
    Fixed a bug on systems without a native getdelim(3) function where very l=
ong lines could cause parsing of the sudoers file to end prematurely. Bug #96=
0.
    Fixed a potential integer overflow when converting the timestamp_timeout =
and passwd_timeout sudoers settings to a timespec struct.
    The default for the group_source setting in sudo.conf is now dynamic on m=
acOS. Recent versions of macOS do not reliably return all of a user's non-loc=
al groups via getgroups(2), even when _DARWIN_UNLIMITED_GETGROUPS is defined.=
 Bug #946.
    Fixed a potential use-after-free in the PAM conversation function. Bug #9=
67.
    Fixed potential redefinition of sys/stat.h macros in sudo_compat.h. Bug #=
968.

Signed-off-by: Adolf Belka <adolf.belka(a)ipfire.org>
---
 lfs/sudo | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/lfs/sudo b/lfs/sudo
index bb2279e8f..6c09fac10 100644
--- a/lfs/sudo
+++ b/lfs/sudo
@@ -24,7 +24,7 @@
=20
 include Config
=20
-VER        =3D 1.9.5p2
+VER        =3D 1.9.6p1
=20
 THISAPP    =3D sudo-$(VER)
 DL_FILE    =3D $(THISAPP).tar.gz
@@ -40,7 +40,7 @@ objects =3D $(DL_FILE)
=20
 $(DL_FILE) =3D $(DL_FROM)/$(DL_FILE)
=20
-$(DL_FILE)_MD5 =3D e6bc4c18c06346e6b3431637a2b5f3d5
+$(DL_FILE)_MD5 =3D 334f8337d497f2f5df2db72448bd259d
=20
 install : $(TARGET)
=20
--=20
2.30.2


--===============3824017517480018910==--