Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
Name: sudo | Distribution: CentOS |
Version: 1.8.29 | Vendor: CentOS |
Release: 9.el8 | Build date: Sat Jan 14 10:08:32 2023 |
Group: Applications/System | Build host: x86-01.mbox.centos.org |
Size: 3555682 | Source RPM: sudo-1.8.29-9.el8.src.rpm |
Packager: CentOS Buildsys <bugs@centos.org> | |
Url: https://www.sudo.ws/ | |
Summary: Allows restricted root access for specified users |
Sudo (superuser do) allows a system administrator to give certain users (or groups of users) the ability to run some (or all) commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict what commands a user may run on a per-host basis, copious logging of each command (providing a clear audit trail of who did what), a configurable timeout of the sudo command, and the ability to use the same configuration file (sudoers) on many different machines.
ISC
* Wed Jan 11 2023 Radovan Sroka <rsroka@redhat.com> - 1.8.29.9 RHEL 8.8.0 ERRATUM - sudo digest check fails incorrectly for certain file sizes (SHA512/SHA384) Resolves: rhbz#2114576 * Mon Dec 06 2021 Radovan Sroka <rsroka@redhat.com> - 1.8.29-8 RHEL 8.6.0 ERRATUM - sudoedit does not work with selinux args Resolves: rhbz#2029551 - Make sure SIGCHLD is not ignored when sudo is executed Resolves: rhbz#1999751 - [RFE] pass KRB5CCNAME to pam_authenticate environment if available Resolves: rhbz#1917379 - utmp resource leak in sudo Resolves: rhbz#1986572 * Tue Feb 02 2021 Radovan Sroka <rsroka@redhat.com> - 1.8.29-7 - RHEL 8.4 ERRATUM - CVE-2021-3156 Resolves: rhbz#1917734 - CVE-2021-23239 sudo: possible directory existence test due to race condition in sudoedit Resolves: rhzb#1916434 - CVE-2021-23240 sudo: symbolic link attack in SELinux-enabled sudoedit Resolves: rhbz#1917038 - updated upstream url Resolves: rhbz#1923825 * Tue Apr 28 2020 Radovan Sroka <rsroka@redhat.com> - 1.8.29-6 - RHEL 8.3 ERRATUM - sudo allows privilege escalation with expire password Resolves: rhbz#1815164 * Wed Feb 05 2020 Radovan Sroka <rsroka@redhat.com> - 1.8.29-5 - RHEL 8.2 ERRATUM - CVE-2019-18634 Resolves: rhbz#1798093 * Tue Jan 14 2020 Radovan Sroka <rsroka@redhat.com> - 1.8.29-4 - RHEL 8.2 ERRATUM - CVE-2019-19232 Resolves: rhbz#1786987 Resolves: rhbz#1796518 * Wed Oct 30 2019 Radovan Sroka <rsroka@redhat.com> - 1.8.29-2 - RHEL 8.2 ERRATUM - rebase to 1.8.29 Resolves: rhbz#1733961 Resolves: rhbz#1651662 * Fri Oct 25 2019 Radovan Sroka <rsroka@redhat.com> - 1.8.28p1-1 - RHEL 8.2 ERRATUM - rebase to 1.8.28p1 Resolves: rhbz#1733961 - fixed man page for always_set_home Resolves: rhbz#1576880 - sudo does not work with notbefore/after Resolves: rhbz#1679508 - NOTBEFORE showing value of sudoNotAfter Ldap attribute Resolves: rhbz#1715516 - CVE-2019-14287 sudo - Privilege escalation via 'Runas' specification with 'ALL' keyword Resolves: rhbz#1760697 * Fri Aug 16 2019 Radovan Sroka <rsroka@redhat.com> - 1.8.25-7 - RHEL 8.1 ERRATUM - sudo ipa_hostname not honored Resolves: rhbz#1738662 * Mon Aug 12 2019 Radovan Sroka <rsroka@redhat.com> - 1.8.25-6 - RHEL 8.1 ERRATUM - Fixed The LDAP backend which is not properly parsing sudoOptions, resulting in selinux roles not being applied Resolves: rhbz#1738326 * Tue May 28 2019 Radovan Sroka <rsroka@redhat.com> - 1.8.25-5 - RHEL 8.1 ERRATUM - Fixed problem with sudo-1.8.23 and 'who am i' Resolves: rhbz#1673886 - Backporting sudo bug with expired passwords Resolves: rhbz#1676819 * Tue Dec 11 2018 Radovan Sroka <rsroka@redhat.com> - 1.8.25-4 - Fix most of the man page scans problems - Resolves: rhbz#1613327 * Fri Oct 12 2018 Daniel Kopecek <dkopecek@redhat.com> - 1.8.25-3 - bump release for new build Resolves: rhbz#1625683 * Thu Oct 11 2018 Daniel Kopecek <dkopecek@redhat.com> - 1.8.25-2 - Depend explicitly on /usr/sbin/sendmail instead of sendmail (rhel-7 sync) - Simplified pam configuration file by removing duplicate pam stack entries Resolves: rhbz#1633144 * Wed Sep 26 2018 Radovan Sroka <rsroka@redhat.com> - 1.8.25-1 - rebase to the new upstream version 1.8.25p1 - sync patches with rhel-7.6 - sync sudoers with rhel-7.6 resolves: rhbz#1633144 * Mon Sep 10 2018 Radovan Sroka <rsroka@redhat.com> - 1.8.23-2 - install /etc/dnf/protected.d/sudo instead of /etc/yum/protected.d/sudo resolves: rhbz#1626972 * Thu May 17 2018 Daniel Kopecek <dkopecek@redhat.com> - 1.8.23-1 - Packaging update for RHEL 8.0 (sync with latest RHEL 7 state) * Fri Feb 09 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.22-0.2.b1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Thu Dec 14 2017 Radovan Sroka <rsroka@redhat.com> - 1.8.22b1-1 - update to 1.8.22b1 - Added /usr/local/sbin and /usr/local/bin to secure path rhbz#1166185 * Thu Sep 21 2017 Marek Tamaskovic <mtamasko@redhat.com> - 1.8.21p2-1 - update to 1.8.21p2 - Moved libsudo_util.so from the -devel sub-package to main package (1481225) * Wed Sep 06 2017 Matthew Miller <mattdm@fedoraproject.org> - 1.8.20p2-4 - replace file-based requirements with package-level ones: - /etc/pam.d/system-auth to 'pam' - /bin/chmod to 'coreutils' (bug #1488934) - /usr/bin/vi to vim-minimal - ... and make vim-minimal "recommends" instead of "requires", because other editors can be configured. * Thu Aug 03 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.20p2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild * Thu Jul 27 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.20p2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild * Thu Jun 01 2017 Daniel Kopecek <dkopecek@redhat.com> 1.8.20p2-1 - update to 1.8.20p2 * Wed May 31 2017 Daniel Kopecek <dkopecek@redhat.com> 1.8.20p1-1 - update to 1.8.20p1 - fixes CVE-2017-1000367 Resolves: rhbz#1456884 * Fri Apr 07 2017 Jiri Vymazal <jvymazal@redhat.com> - 1.8.20-0.1.b1 - update to latest development version 1.8.20b1 - added sudo to dnf/yum protected packages Resolves: rhbz#1418756 * Mon Feb 13 2017 Tomas Sykora <tosykora@redhat.com> - 1.8.19p2-1 - update to 1.8.19p2 * Sat Feb 11 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.19-0.3.20161108git738c3cb - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild * Tue Nov 08 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.19-0.2.20161108git738c3cb - update to latest development version - fixes CVE-2016-7076 * Fri Sep 23 2016 Radovan Sroka <rsroka@redhat.com> 1.8.19-0.1.20160923git90e4538 - we were not able to update from rc and beta versions to stable one - so this is a new snapshot package which resolves it * Wed Sep 21 2016 Radovan Sroka <rsroka@redhat.com> 1.8.18-1 - update to 1.8.18 * Fri Sep 16 2016 Radovan Sroka <rsroka@redhat.com> 1.8.18rc4-1 - update to 1.8.18rc4 * Wed Sep 14 2016 Radovan Sroka <rsroka@redhat.com> 1.8.18rc2-1 - update to 1.8.18rc2 - dropped sudo-1.8.14p1-ldapconfpatch.patch upstreamed --> https://www.sudo.ws/pipermail/sudo-workers/2016-September/001006.html * Fri Aug 26 2016 Radovan Sroka <rsroka@redhat.com> 1.8.18b2-1 - update to 1.8.18b2 - added --disable-root-mailer as configure option Resolves: rhbz#1324091 * Fri Jun 24 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.17p1-1 - update to 1.8.17p1 - install the /var/db/sudo/lectured Resolves: rhbz#1321414 * Tue May 31 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.16-4 - removed INPUTRC from env_keep to prevent a possible info leak Resolves: rhbz#1340701 * Fri May 13 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.16-3 - fixed upstream patch for rhbz#1328735 * Thu May 12 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.16-2 - fixed invalid sesh argument array construction * Mon Apr 04 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.16-1 - update to 1.8.16 * Fri Feb 05 2016 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.15-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild * Thu Nov 05 2015 Daniel Kopecek <dkopecek@redhat.com> 1.8.15-1 - update to 1.8.15 - fixes CVE-2015-5602 * Mon Aug 24 2015 Radovan Sroka <rsroka@redhat.com> 1.8.14p3-3 - enable upstream test suite * Mon Aug 24 2015 Radovan Sroka <rsroka@redhat.com> 1.8.14p3-2 - add patch that resolves initialization problem before sudo_strsplit call - add patch that resolves deadcode in visudo.c - add patch that removes extra while in visudo.c and sudoers.c * Mon Jul 27 2015 Radovan Sroka <rsroka@redhat.com> 1.8.14p3-1 - update to 1.8.14p3 * Mon Jul 20 2015 Radovan Sroka <rsroka@redhat.com> 1.8.14p1-1 - update to 1.8.14p1-1 - rebase sudo-1.8.14b3-ldapconfpatch.patch -> sudo-1.8.14p1-ldapconfpatch.patch - rebase sudo-1.8.14b4-docpassexpire.patch -> sudo-1.8.14p1-docpassexpire.patch * Tue Jul 14 2015 Radovan Sroka <rsroka@redhat.com> 1.8.12-2 - add patch3 sudo.1.8.14b4-passexpire.patch that makes change in documentation about timestamp_time - Resolves: rhbz#1162070 * Fri Jul 10 2015 Radovan Sroka <rsroka@redhat.com> - 1.8.14b4-1 - Update to 1.8.14b4 - Add own %{_tmpfilesdir}/sudo.conf * Fri Jun 19 2015 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.12-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Wed Feb 18 2015 Daniel Kopecek <dkopecek@redhat.com> - 1.8.12 - update to 1.8.12 - fixes CVE-2014-9680 * Mon Nov 03 2014 Daniel Kopecek <dkopecek@redhat.com> - 1.8.11p2-1 - update to 1.8.11p2 - added patch to fix upstream bug #671 -- exiting immediately when audit is disabled * Tue Sep 30 2014 Daniel Kopecek <dkopecek@redhat.com> - 1.8.11-1 - update to 1.8.11 - major changes & fixes: - when running a command in the background, sudo will now forward SIGINFO to the command - the passwords in ldap.conf and ldap.secret may now be encoded in base64. - SELinux role changes are now audited. For sudoedit, we now audit the actual editor being run, instead of just the sudoedit command. - it is now possible to match an environment variable's value as well as its name using env_keep and env_check - new files created via sudoedit as a non-root user now have the proper group id - sudoedit now works correctly in conjunction with sudo's SELinux RBAC support - it is now possible to disable network interface probing in sudo.conf by changing the value of the probe_interfaces setting - when listing a user's privileges (sudo -l), the sudoers plugin will now prompt for the user's password even if the targetpw, rootpw or runaspw options are set. - the new use_netgroups sudoers option can be used to explicitly enable or disable netgroups support - visudo can now export a sudoers file in JSON format using the new -x flag - added patch to read ldap.conf more closely to nss_ldap - require /usr/bin/vi instead of vim-minimal - include pam.d/system-auth in PAM session phase from pam.d/sudo - include pam.d/sudo in PAM session phase from pam.d/sudo-i * Tue Aug 05 2014 Tom Callaway <spot@fedoraproject.org> - 1.8.8-6 - fix license handling * Sun Jun 08 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.8-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sat May 31 2014 Peter Robinson <pbrobinson@fedoraproject.org> 1.8.8-4 - Drop ChangeLog, we ship NEWS * Mon Mar 10 2014 Daniel Kopecek <dkopecek@redhat.com> - 1.8.8-3 - remove bundled copy of zlib before compilation - drop the requiretty Defaults setting from sudoers * Sat Jan 25 2014 Ville Skyttä <ville.skytta@iki.fi> - 1.8.8-2 - Own the %{_libexecdir}/sudo dir. * Mon Sep 30 2013 Daniel Kopecek <dkopecek@redhat.com> - 1.8.8-1 - update to 1.8.8 - major changes & fixes: - LDAP SASL support now works properly with Kerberos - root may no longer change its SELinux role without entering a password - user messages are now always displayed in the user's locale, even when the same message is being logged or mailed in a different locale. - log files created by sudo now explicitly have the group set to group ID 0 rather than relying on BSD group semantics - sudo now stores its libexec files in a sudo subdirectory instead of in libexec itself - system_group and group_file sudoers group provider plugins are now installed by default - the paths to ldap.conf and ldap.secret may now be specified as arguments to the sudoers plugin in the sudo.conf file - ...and many new features and settings. See the upstream ChangeLog for the full list. - several sssd support fixes - added patch to make uid/gid specification parsing more strict (don't accept an invalid number as uid/gid) - use the _pkgdocdir macro (see https://fedoraproject.org/wiki/Changes/UnversionedDocdirs) - fixed several bugs found by the clang static analyzer - added %post dependency on chmod * Sun Aug 04 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.6p7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Thu Feb 28 2013 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p7-1 - update to 1.8.6p7 - fixes CVE-2013-1775 and CVE-2013-1776 - fixed several packaging issues (thanks to ville.skytta@iki.fi) - build with system zlib. - let rpmbuild strip libexecdir/*.so. - own the %{_docdir}/sudo-* dir. - fix some rpmlint warnings (spaces vs tabs, unescaped macros). - fix bogus %changelog dates. * Fri Feb 15 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.6p3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Mon Nov 12 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-2 - added upstream patch for a regression - don't include arch specific files in the -devel subpackage - ship only one sample plugin in the -devel subpackage * Tue Sep 25 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-1 - update to 1.8.6p3 - drop -pipelist patch (fixed in upstream) * Thu Sep 06 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6-1 - update to 1.8.6 * Thu Jul 26 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.5-4 - added patches that fix & improve SSSD support (thanks to pbrezina@redhat.com) - re-enabled SSSD support - removed libsss_sudo dependency * Tue Jul 24 2012 Bill Nottingham <notting@redhat.com> - 1.8.5-3 - flip sudoers2ldif executable bit after make install, not in setup * Sat Jul 21 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Thu May 17 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.5-1 - update to 1.8.5 - fixed CVE-2012-2337 - temporarily disabled SSSD support * Wed Feb 29 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-6 - fixed problems with undefined symbols (rhbz#798517) * Wed Feb 22 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-5 - SSSD patch update * Tue Feb 07 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-4 - added SSSD support * Thu Jan 26 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-3 - added patch for CVE-2012-0809 * Sat Jan 14 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.3p1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Thu Nov 10 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-1 - update to 1.8.3p1 - disable output word wrapping if the output is piped * Wed Sep 07 2011 Peter Robinson <pbrobinson@fedoraproject.org> - 1.8.1p2-2 - Remove execute bit from sample script in docs so we don't pull in perl * Tue Jul 12 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.8.1p2-1 - rebase to 1.8.1p2 - removed .sudoi patch - fixed typo: RELPRO -> RELRO - added -devel subpackage for the sudo_plugin.h header file - use default ldap configuration files again * Fri Jun 03 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-4 - build with RELRO * Wed Feb 09 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.7.4p5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild * Mon Jan 17 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-2 - rebase to 1.7.4p5 - fixed sudo-1.7.4p4-getgrouplist.patch - fixes CVE-2011-0008, CVE-2011-0010 * Tue Nov 30 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-5 - anybody in the wheel group has now root access (using password) (rhbz#656873) - sync configuration paths with the nss_ldap package (rhbz#652687) * Wed Sep 29 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-4 - added upstream patch to fix rhbz#638345 * Mon Sep 20 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-3 - added patch for #635250 - /var/run/sudo -> /var/db/sudo in .spec * Tue Sep 07 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-2 - sudo now uses /var/db/sudo for timestamps * Tue Sep 07 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-1 - update to new upstream version - new command available: sudoreplay - use native audit support - corrected license field value: BSD -> ISC * Wed Jun 02 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p6-2 - added patch that fixes insufficient environment sanitization issue (#598154) * Wed Apr 14 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p6-1 - update to new upstream version - merged .audit and .libaudit patch - added sudoers.ldap.5* to files * Mon Mar 01 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p5-2 - update to new upstream version * Tue Feb 16 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-5 - fixed no valid sudoers sources found (#558875) * Wed Feb 10 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-4 - audit related Makefile.in and configure.in corrections - added --with-audit configure option - removed call to libtoolize * Wed Feb 10 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-3 - fixed segfault when #include directive is used in cycles (#561336) * Fri Jan 08 2010 Ville Skyttä <ville.skytta@iki.fi> - 1.7.2p2-2 - Add /etc/sudoers.d dir and use it in default config (#551470). - Drop *.pod man page duplicates from docs. * Thu Jan 07 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-1 - new upstream version 1.7.2p2-1 - commented out unused aliases in sudoers to make visudo happy (#550239) * Fri Aug 21 2009 Tomas Mraz <tmraz@redhat.com> - 1.7.1-7 - rebuilt with new audit * Thu Aug 20 2009 Daniel Kopecek <dkopecek@redhat.com> 1.7.1-6 - moved secure_path from compile-time option to sudoers file (#517428) * Sun Jul 26 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.7.1-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Thu Jul 09 2009 Daniel Kopecek <dkopecek@redhat.com> 1.7.1-4 - moved the closefrom() call before audit_help_open() (sudo-1.7.1-auditfix.patch) - epoch number sync * Mon Jun 22 2009 Daniel Kopecek <dkopecek@redhat.com> 1.7.1-1 - updated sudo to version 1.7.1 - fixed small bug in configure.in (sudo-1.7.1-conffix.patch) * Tue Feb 24 2009 Daniel Kopecek <dkopecek@redhat.com> 1.6.9p17-6 - fixed building with new libtool - fix for incorrect handling of groups in Runas_User - added /usr/local/sbin to secure-path * Tue Jan 13 2009 Daniel Kopecek <dkopecek@redhat.com> 1.6.9p17-3 - build with sendmail installed - Added /usr/local/bin to secure-path * Tue Sep 02 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p17-2 - adjust audit patch, do not scream when kernel is compiled without audit netlink support (#401201) * Fri Jul 04 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p17-1 - upgrade * Wed Jun 18 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-7 - build with newer autoconf-2.62 (#449614) * Tue May 13 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-6 - compiled with secure path (#80215) * Mon May 05 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-5 - fix path to updatedb in /etc/sudoers (#445103) * Mon Mar 31 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-4 - include ldap files in rpm package (#439506) * Thu Mar 13 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-3 - include [sudo] in password prompt (#437092) * Tue Mar 04 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-2 - audit support improvement * Thu Feb 21 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-1 - upgrade to the latest upstream release * Wed Feb 06 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p12-1 - upgrade to the latest upstream release - add selinux support * Mon Feb 04 2008 Dennis Gilmore <dennis@ausil.us> 1.6.9p4-6 - sparc64 needs to be in the -fPIE list with s390 * Mon Jan 07 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p4-5 - fix complains about audit_log_user_command(): Connection refused (#401201) * Wed Dec 05 2007 Release Engineering <rel-eng at fedoraproject dot org> - 1.6.9p4-4 - Rebuild for deps * Wed Dec 05 2007 Release Engineering <rel-eng at fedoraproject dot org> - 1.6.9p4-3 - Rebuild for openssl bump * Thu Aug 30 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.9p4-2 - fix autotools stuff and add audit support * Mon Aug 20 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.9p4-1 - upgrade to upstream release * Thu Apr 12 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-14 - also use getgrouplist() to determine group membership (#235915) * Mon Feb 26 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-13 - fix some spec file issues * Thu Dec 14 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-12 - fix rpmlint issue * Thu Oct 26 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-11 - fix typo in sudoers file (#212308) * Sun Oct 01 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-10 - rebuilt for unwind info generation, broken in gcc-4.1.1-21 * Thu Sep 21 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-9 - fix sudoers file, X apps didn't work (#206320) * Tue Aug 08 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-8 - use Red Hat specific default sudoers file * Sun Jul 16 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-7 - fix #198755 - make login processes (sudo -i) initialise session keyring (thanks for PAM config files to David Howells) - add IPv6 support (patch by Milan Zazrivec) * Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-6.1 - rebuild * Mon May 29 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-6 - fix #190062 - "ssh localhost sudo su" will show the password in clear * Tue May 23 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-5 - add LDAP support (#170848) * Fri Feb 10 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-4.1 - bump again for double-long bug on ppc(64) * Wed Feb 08 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-4 - reset env. by default * Tue Feb 07 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-3.1 - rebuilt for new gcc4.1 snapshot and glibc changes * Mon Jan 23 2006 Dan Walsh <dwalsh@redhat.com> 1.6.8p12-3 - Remove selinux patch. It has been decided that the SELinux patch for sudo is - no longer necessary. In tageted policy it had no effect. In strict/MLS policy - We require the person using sudo to execute newrole before using sudo. * Fri Dec 09 2005 Jesse Keating <jkeating@redhat.com> - rebuilt * Fri Nov 25 2005 Karel Zak <kzak@redhat.com> 1.6.8p12-1 - new upstream version 1.6.8p12 * Tue Nov 08 2005 Karel Zak <kzak@redhat.com> 1.6.8p11-1 - new upstream version 1.6.8p11 * Thu Oct 13 2005 Tomas Mraz <tmraz@redhat.com> 1.6.8p9-6 - use include instead of pam_stack in pam config * Tue Oct 11 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-5 - enable interfaces in selinux patch - merge sudo-1.6.8p8-sesh-stopsig.patch to selinux patch * Mon Sep 19 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-4 - fix debuginfo * Mon Sep 19 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-3 - fix #162623 - sesh hangs when child suspends * Mon Aug 01 2005 Dan Walsh <dwalsh@redhat.com> 1.6.8p9-2 - Add back in interfaces call, SELinux has been fixed to work around * Tue Jun 21 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-1 - new version 1.6.8p9 (resolve #161116 - CAN-2005-1993 sudo trusted user arbitrary command execution) * Tue May 24 2005 Karel Zak <kzak@redhat.com> 1.6.8p8-2 - fix #154511 - sudo does not use limits.conf * Mon Apr 04 2005 Thomas Woerner <twoerner@redhat.com> 1.6.8p8-1 - new version 1.6.8p8: new sudoedit and sudo_noexec * Wed Feb 09 2005 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-31 - rebuild * Mon Oct 04 2004 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-30.1 - added missing BuildRequires for libselinux-devel (#132883) * Wed Sep 29 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-30 - Fix missing param error in sesh * Mon Sep 27 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-29 - Remove full patch check from sesh * Thu Jul 08 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-28 - Fix selinux patch to switch to root user * Tue Jun 15 2004 Elliot Lee <sopwith@redhat.com> - rebuilt * Tue Apr 13 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-26 - Eliminate tty handling from selinux * Thu Apr 01 2004 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-25 - fixed spec file: sesh in file section with selinux flag (#119682) * Tue Mar 30 2004 Colin Walters <walters@redhat.com> 1.6.7p5-24 - Enhance sesh.c to fork/exec children itself, to avoid having sudo reap all domains. - Only reinstall default signal handlers immediately before exec of child with SELinux patch * Thu Mar 18 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-23 - change to default to sysadm_r - Fix tty handling * Thu Mar 18 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-22 - Add /bin/sesh to run selinux code. - replace /bin/bash -c with /bin/sesh * Tue Mar 16 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-21 - Hard code to use "/bin/bash -c" for selinux * Tue Mar 16 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-20 - Eliminate closing and reopening of terminals, to match su. * Mon Mar 15 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-19 - SELinux fixes to make transitions work properly * Fri Mar 05 2004 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-18 - pied sudo * Fri Feb 13 2004 Elliot Lee <sopwith@redhat.com> - rebuilt * Tue Jan 27 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-16 - Eliminate interfaces call, since this requires big SELinux privs - and it seems to be useless. * Tue Jan 27 2004 Karsten Hopp <karsten@redhat.de> 1.6.7p5-15 - visudo requires vim-minimal or setting EDITOR to something useful (#68605) * Mon Jan 26 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-14 - Fix is_selinux_enabled call * Tue Jan 13 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-13 - Clean up patch on failure * Tue Jan 06 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-12 - Remove sudo.te for now. * Fri Jan 02 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-11 - Fix usage message * Mon Dec 22 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-10 - Clean up sudo.te to not blow up if pam.te not present * Thu Dec 18 2003 Thomas Woerner <twoerner@redhat.com> - added missing BuildRequires for groff * Tue Dec 16 2003 Jeremy Katz <katzj@redhat.com> 1.6.7p5-9 - remove left-over debugging code * Tue Dec 16 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-8 - Fix terminal handling that caused Sudo to exit on non selinux machines. * Mon Dec 15 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-7 - Remove sudo_var_run_t which is now pam_var_run_t * Fri Dec 12 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-6 - Fix terminal handling and policy * Thu Dec 11 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-5 - Fix policy * Thu Nov 13 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-4.sel - Turn on SELinux support * Tue Jul 29 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-3 - Add support for SELinux * Wed Jun 04 2003 Elliot Lee <sopwith@redhat.com> - rebuilt * Mon May 19 2003 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-1 * Wed Jan 22 2003 Tim Powers <timp@redhat.com> - rebuilt * Tue Nov 12 2002 Nalin Dahyabhai <nalin@redhat.com> 1.6.6-2 - remove absolute path names from the PAM configuration, ensuring that the right modules get used for whichever arch we're built for - don't try to install the FAQ, which isn't there any more * Thu Jun 27 2002 Bill Nottingham <notting@redhat.com> 1.6.6-1 - update to 1.6.6 * Fri Jun 21 2002 Tim Powers <timp@redhat.com> - automated rebuild * Thu May 23 2002 Tim Powers <timp@redhat.com> - automated rebuild * Thu Apr 18 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5p2-2 - Fix bug #63768 * Thu Mar 14 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5p2-1 - 1.6.5p2 * Fri Jan 18 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5p1-1 - 1.6.5p1 - Hope this "a new release per day" madness stops ;) * Thu Jan 17 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5-1 - 1.6.5 * Tue Jan 15 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.4p1-1 - 1.6.4p1 * Mon Jan 14 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.4-1 - Update to 1.6.4 * Mon Jul 23 2001 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.3p7-2 - Add build requirements (#49706) - s/Copyright/License/ - bzip2 source * Sat Jun 16 2001 Than Ngo <than@redhat.com> - update to 1.6.3p7 - use %{_tmppath} * Fri Feb 23 2001 Bernhard Rosenkraenzer <bero@redhat.com> - 1.6.3p6, fixes buffer overrun * Tue Oct 10 2000 Bernhard Rosenkraenzer <bero@redhat.com> - 1.6.3p5 * Wed Jul 12 2000 Prospector <bugzilla@redhat.com> - automatic rebuild * Tue Jun 06 2000 Karsten Hopp <karsten@redhat.de> - fixed owner of sudo and visudo * Thu Jun 01 2000 Nalin Dahyabhai <nalin@redhat.com> - modify PAM setup to use system-auth - clean up buildrooting by using the makeinstall macro * Tue Apr 11 2000 Bernhard Rosenkraenzer <bero@redhat.com> - initial build in main distrib - update to 1.6.3 - deal with compressed man pages * Tue Dec 14 1999 Preston Brown <pbrown@redhat.com> - updated to 1.6.1 for Powertools 6.2 - config files are now noreplace. * Thu Jul 22 1999 Tim Powers <timp@redhat.com> - updated to 1.5.9p2 for Powertools 6.1 * Wed May 12 1999 Bill Nottingham <notting@redhat.com> - sudo is configured with pam. There's no pam.d file. Oops. * Mon Apr 26 1999 Preston Brown <pbrown@redhat.com> - upgraded to 1.59p1 for powertools 6.0 * Tue Oct 27 1998 Preston Brown <pbrown@redhat.com> - fixed so it doesn't find /usr/bin/vi first, but instead /bin/vi (always installed) * Thu Oct 08 1998 Michael Maher <mike@redhat.com> - built package for 5.2 * Mon May 18 1998 Michael Maher <mike@redhat.com> - updated SPEC file * Thu Jan 29 1998 Otto Hammersmith <otto@redhat.com> - updated to 1.5.4 * Tue Nov 18 1997 Otto Hammersmith <otto@redhat.com> - built for glibc, no problems * Fri Apr 25 1997 Michael Fulbright <msf@redhat.com> - Fixed for 4.2 PowerTools - Still need to be pamified - Still need to move stmp file to /var/log * Mon Feb 17 1997 Michael Fulbright <msf@redhat.com> - First version for PowerCD.
/etc/dnf/protected.d/sudo.conf /etc/pam.d/sudo /etc/pam.d/sudo-i /etc/sudo-ldap.conf /etc/sudo.conf /etc/sudoers /etc/sudoers.d /usr/bin/cvtsudoers /usr/bin/sudo /usr/bin/sudoedit /usr/bin/sudoreplay /usr/lib/.build-id /usr/lib/.build-id/08 /usr/lib/.build-id/08/be9288ccc28ab5975eb25c3f1e0a534ee41e19 /usr/lib/.build-id/1d /usr/lib/.build-id/1d/0fff710620331415ba4ca9322737cc36899729 /usr/lib/.build-id/53 /usr/lib/.build-id/53/c0c4064e07048da5f1a6cbcc9c3c8de0db226d /usr/lib/.build-id/53/c784d619887014dd4ea74a593dd9f64b42267e /usr/lib/.build-id/9f /usr/lib/.build-id/9f/8036c7171a974c503b5c62db9b6accbd6a133d /usr/lib/.build-id/a7 /usr/lib/.build-id/a7/6de42af7acb1afcf120682f75eff27a02149aa /usr/lib/.build-id/b8 /usr/lib/.build-id/b8/3d8d9a28efd921409befaa084615147a26a94b /usr/lib/.build-id/b9 /usr/lib/.build-id/b9/1e056831235906db0c0f6ff3257f8b1c3dc7d2 /usr/lib/.build-id/bc /usr/lib/.build-id/bc/8643e680f224dcdcc847c3cbdcdd1e2ba5c6ea /usr/lib/.build-id/ea /usr/lib/.build-id/ea/218f3ef59f0eb6eed5a17c9770dbbe9f086748 /usr/lib/tmpfiles.d/sudo.conf /usr/libexec/sudo /usr/libexec/sudo/group_file.so /usr/libexec/sudo/libsudo_util.so /usr/libexec/sudo/libsudo_util.so.0 /usr/libexec/sudo/libsudo_util.so.0.0.0 /usr/libexec/sudo/sesh /usr/libexec/sudo/sudo_noexec.so /usr/libexec/sudo/sudoers.so /usr/libexec/sudo/system_group.so /usr/sbin/visudo /usr/share/doc/sudo /usr/share/doc/sudo/CONTRIBUTORS /usr/share/doc/sudo/HISTORY /usr/share/doc/sudo/NEWS /usr/share/doc/sudo/README /usr/share/doc/sudo/README.LDAP /usr/share/doc/sudo/TROUBLESHOOTING /usr/share/doc/sudo/UPGRADE /usr/share/doc/sudo/examples /usr/share/doc/sudo/examples/pam.conf /usr/share/doc/sudo/examples/sudo.conf /usr/share/doc/sudo/examples/sudoers /usr/share/doc/sudo/examples/syslog.conf /usr/share/doc/sudo/schema.ActiveDirectory /usr/share/doc/sudo/schema.OpenLDAP /usr/share/doc/sudo/schema.iPlanet /usr/share/doc/sudo/schema.olcSudo /usr/share/licenses/sudo /usr/share/licenses/sudo/LICENSE /usr/share/locale/ast/LC_MESSAGES/sudo.mo /usr/share/locale/ast/LC_MESSAGES/sudoers.mo /usr/share/locale/ca/LC_MESSAGES/sudo.mo /usr/share/locale/ca/LC_MESSAGES/sudoers.mo /usr/share/locale/cs/LC_MESSAGES/sudo.mo /usr/share/locale/cs/LC_MESSAGES/sudoers.mo /usr/share/locale/da/LC_MESSAGES/sudo.mo /usr/share/locale/da/LC_MESSAGES/sudoers.mo /usr/share/locale/de/LC_MESSAGES/sudo.mo /usr/share/locale/de/LC_MESSAGES/sudoers.mo /usr/share/locale/el/LC_MESSAGES/sudoers.mo /usr/share/locale/eo/LC_MESSAGES/sudo.mo /usr/share/locale/eo/LC_MESSAGES/sudoers.mo /usr/share/locale/es/LC_MESSAGES/sudo.mo /usr/share/locale/eu/LC_MESSAGES/sudo.mo /usr/share/locale/eu/LC_MESSAGES/sudoers.mo /usr/share/locale/fi/LC_MESSAGES/sudo.mo /usr/share/locale/fi/LC_MESSAGES/sudoers.mo /usr/share/locale/fr/LC_MESSAGES/sudo.mo /usr/share/locale/fr/LC_MESSAGES/sudoers.mo /usr/share/locale/fur/LC_MESSAGES/sudo.mo /usr/share/locale/fur/LC_MESSAGES/sudoers.mo /usr/share/locale/gl/LC_MESSAGES/sudo.mo /usr/share/locale/hr/LC_MESSAGES/sudo.mo /usr/share/locale/hr/LC_MESSAGES/sudoers.mo /usr/share/locale/hu/LC_MESSAGES/sudo.mo /usr/share/locale/hu/LC_MESSAGES/sudoers.mo /usr/share/locale/it/LC_MESSAGES/sudo.mo /usr/share/locale/it/LC_MESSAGES/sudoers.mo /usr/share/locale/ja/LC_MESSAGES/sudo.mo /usr/share/locale/ja/LC_MESSAGES/sudoers.mo /usr/share/locale/ko/LC_MESSAGES/sudo.mo /usr/share/locale/ko/LC_MESSAGES/sudoers.mo /usr/share/locale/lt/LC_MESSAGES/sudoers.mo /usr/share/locale/nb/LC_MESSAGES/sudo.mo /usr/share/locale/nb/LC_MESSAGES/sudoers.mo /usr/share/locale/nl/LC_MESSAGES/sudo.mo /usr/share/locale/nl/LC_MESSAGES/sudoers.mo /usr/share/locale/nn/LC_MESSAGES/sudo.mo /usr/share/locale/pl/LC_MESSAGES/sudo.mo /usr/share/locale/pl/LC_MESSAGES/sudoers.mo /usr/share/locale/pt/LC_MESSAGES/sudo.mo /usr/share/locale/pt/LC_MESSAGES/sudoers.mo /usr/share/locale/pt_BR/LC_MESSAGES/sudo.mo /usr/share/locale/pt_BR/LC_MESSAGES/sudoers.mo /usr/share/locale/ru/LC_MESSAGES/sudo.mo /usr/share/locale/ru/LC_MESSAGES/sudoers.mo /usr/share/locale/sk/LC_MESSAGES/sudo.mo /usr/share/locale/sk/LC_MESSAGES/sudoers.mo /usr/share/locale/sl/LC_MESSAGES/sudo.mo /usr/share/locale/sl/LC_MESSAGES/sudoers.mo /usr/share/locale/sr/LC_MESSAGES/sudo.mo /usr/share/locale/sr/LC_MESSAGES/sudoers.mo /usr/share/locale/sv/LC_MESSAGES/sudo.mo /usr/share/locale/sv/LC_MESSAGES/sudoers.mo /usr/share/locale/tr/LC_MESSAGES/sudo.mo /usr/share/locale/tr/LC_MESSAGES/sudoers.mo /usr/share/locale/uk/LC_MESSAGES/sudo.mo /usr/share/locale/uk/LC_MESSAGES/sudoers.mo /usr/share/locale/vi/LC_MESSAGES/sudo.mo /usr/share/locale/vi/LC_MESSAGES/sudoers.mo /usr/share/locale/zh_CN/LC_MESSAGES/sudo.mo /usr/share/locale/zh_CN/LC_MESSAGES/sudoers.mo /usr/share/locale/zh_TW/LC_MESSAGES/sudo.mo /usr/share/locale/zh_TW/LC_MESSAGES/sudoers.mo /usr/share/man/man1/cvtsudoers.1.gz /usr/share/man/man5/sudo-ldap.conf.5.gz /usr/share/man/man5/sudo.conf.5.gz /usr/share/man/man5/sudoers.5.gz /usr/share/man/man5/sudoers.ldap.5.gz /usr/share/man/man5/sudoers_timestamp.5.gz /usr/share/man/man8/sudo.8.gz /usr/share/man/man8/sudoedit.8.gz /usr/share/man/man8/sudoreplay.8.gz /usr/share/man/man8/visudo.8.gz /var/db/sudo /var/db/sudo/lectured
Generated by rpm2html 1.8.1
Fabrice Bellet, Wed May 29 02:15:30 2024