sudo-1.7.6p2-0.5.1 RPM for x86_64

From OpenSuSE 11.3 updates for x86_64

Sudo is a command that allows users to execute some commands as root.
The /etc/sudoers file (edited with 'visudo') specifies which users have
access to sudo and which commands they can run. Sudo logs all its
activities to syslogd, so the system administrator can keep an eye on
things. Sudo asks for the password for initializing a check period of a
given time N (where N is defined at installation and is set to 5
minutes by default).



Authors:
--------
    Jeff Nieusma <nieusma@rootgroup.com>
    David Hieb <davehieb@rootgroup.com>
    Ian McCloghrie <ian@ucsd.edu>

Provides

• sudo
• libsudo_noexec.so()(64bit)
• sudo(x86-64)

Requires

• coreutils <=
• /bin/sh <=
• rpmlib(PayloadFilesHavePrefix)
• rpmlib(CompressedFileNames)
• /usr/bin/perl
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.11)(64bit)
• libc.so.6(GLIBC_2.2.5)(64bit)
• libc.so.6(GLIBC_2.3)(64bit)
• libc.so.6(GLIBC_2.3.4)(64bit)
• libc.so.6(GLIBC_2.4)(64bit)
• libc.so.6(GLIBC_2.8)(64bit)
• liblber-2.4.so.2()(64bit) <
• libldap-2.4.so.2()(64bit) >
• libpam.so.0()(64bit) =
• libpam.so.0(LIBPAM_1.0)(64bit) =
• libselinux.so.1()(64bit) <=
• libutil.so.1()(64bit) <
• libutil.so.1(GLIBC_2.2.5)(64bit) =
• libz.so.1()(64bit) <=
• rpmlib(PayloadIsLzma) < 4.4.6-1

License

BSD3c(or similar)

Changelog

* Tue Dec 13 2011 vcizek@suse.com
  - manpage claimed keeping DISPLAY environment variable (bnc#720181)
* Mon Aug 29 2011 puzel@suse.com
  - update to sudo-1.7.6p2 (bnc#681296)
    - see /usr/share/doc/packages/sudo/NEWS
  - added openldap schema file (bnc#667558)
* Fri Jan 14 2011 puzel@novell.com
  - add sudo-CVE-2011-0010.patch (bnc#663881)
* Wed Sep 01 2010 sbrabec@suse.cz
  - Fixed sudo privilege escalation (no support for -g, bnc#635843,
    CVE-2010-2956).
* Tue Jun 15 2010 pascal.bleser@opensuse.org
  - update to 1.7.2p7:
    * portability fixes
  - changes from 1.7.2p6:
    * Handle duplicate variables in the environment
    * visudo: fix a crash when checking a sudoers file that has aliases
      that reference themselves
    * aliases: fix use after free in error message when a duplicate
      alias exists
    * visudo: prevent NULL dereference in printf()
  - removed sudo-CVE-2010-1163.patch (merged upstream)
  - removed sudo-CVE-2010-1646.patch (merged upstream)
* Wed Jun 02 2010 puzel@novell.com
  - add sudo-CVE-2010-1646.patch (bnc#594738)
* Tue May 18 2010 puzel@novell.com
  - add sudo-CVE-2010-1163.patch (bnc#594738)
* Wed Feb 24 2010 prusnak@suse.cz
  - updated to 1.7.2p4
    * Fixed the expansion of the %h escape in #include file names
      introduced in sudo 1.7.1.
    * Fixed a a bug where the negation operator in a Cmnd_List
      was not being honored.
    * No longer produce a parse error when #includedir references
      a directory that contains no valid filenames.
    * The sudo.man.pl and sudoers.man.pl files are now included
      in the distribution for people who wish to regenerate the man pages.
    * Fixed the emulation of krb5_get_init_creds_opt_alloc() for MIT kerberos.
    * When authenticating via PAM, set PAM_RUSER and PAM_RHOST early
      so they can be used during authentication.
    * Fix printing of entries with multiple host entries on
      a single line.
    * Fix use after free when sending error messages via email.
    * Use setrlimit64(), if available, instead of setrlimit()
      when setting AIX resource limits since rlim_t is 32bits.
    * Fix size arg when realloc()ing include stack.
    * Avoid a duplicate fclose() of the sudoers file.
    * Fix a bug that could allow users with permission to run sudoedit
      to run arbitrary commands.
* Tue Jan 26 2010 jengelh@medozas.de
  - SPARC requires large PIE model
* Mon Jul 13 2009 prusnak@suse.cz
  - updated to 1.7.2
    * A new #includedir directive is available in sudoers.  This can be
      used to implement an /etc/sudo.d directory.  Files in an includedir
      are not edited by visudo unless they contain a syntax error.
    * The -g option did not work properly when only setting the group
      (and not the user).  Also, in -l mode the wrong user was displayed
      for sudoers entries where only the group was allowed to be set.
    * Fixed a problem with the alias checking in visudo which
      could prevent visudo from exiting.
    * Sudo will now correctly parse the shell-style /etc/environment
      file format used by pam_env on Linux.
    * When doing password and group database lookups, sudo will only
      cache an entry by name or by id, depending on how the entry was
      looked up.  Previously, sudo would cache by both name and id
      from a single lookup, but this breaks sites that have multiple
      password or group database names that map to the same uid or
      gid.
    * User and group names in sudoers may now be enclosed in double
      quotes to avoid having to escape special characters.
    * BSM audit fixes when changing to a non-root uid.
    * Experimental non-Unix group support.  Currently only works with
      Quest Authorization Services and allows Active Directory groups
      fixes for Minix-3.
    * For Netscape/Mozilla-derived LDAP SDKs the certificate and key
      paths may be specified as a directory or a file.  However, version
      5.0 of the SDK only appears to support using a directory (despite
      documentation to the contrary).  If SSL client initialization
      fails and the certificate or key paths look like they could be
      default file name, strip off the last path element and try again.
    * A setenv() compatibility fix for Linux systems, where a NULL
      value is treated the same as an empty string and the variable
      name is checked against the NULL pointer.
* Mon Apr 27 2009 prusnak@suse.cz
  - updated to 1.7.1
    * A new Defaults option "pwfeedback" will cause sudo to provide visual
      feedback when the user is entering a password.
    * A new Defaults option "fast_glob" will cause sudo to use the fnmatch()
      function for file name globbing instead of glob().  When this option
      is enabled, sudo will not check the file system when expanding wildcards.
      This is faster but a side effect is that relative paths with wildcard
      will no longer work.
    * The file name specified with the #include directive may now include
      a %h escape which is expanded to the short form of hostname.
    * The -k flag may now be specified along with a command, causing the
      user's timestamp file to be ignored.
    * The unused alias checks in visudo now handle the case of an alias
      referring to another alias.

Files

/etc/openldap
/etc/openldap/schema
/etc/openldap/schema/sudo.schema
/etc/pam.d/sudo
/etc/sudoers
/usr/bin/sudo
/usr/bin/sudoedit
/usr/bin/sudoreplay
/usr/lib/sudo
/usr/lib/sudo/sesh
/usr/lib/sudo/sudo_noexec.so
/usr/sbin/sudoers2ldif
/usr/sbin/visudo
/usr/share/doc/packages/sudo
/usr/share/doc/packages/sudo/ChangeLog
/usr/share/doc/packages/sudo/HISTORY
/usr/share/doc/packages/sudo/LICENSE
/usr/share/doc/packages/sudo/NEWS
/usr/share/doc/packages/sudo/PORTING
/usr/share/doc/packages/sudo/README
/usr/share/doc/packages/sudo/README.LDAP
/usr/share/doc/packages/sudo/README.SUSE
/usr/share/doc/packages/sudo/TROUBLESHOOTING
/usr/share/doc/packages/sudo/sudo.pod
/usr/share/doc/packages/sudo/sudoers.ldap.pod
/usr/share/doc/packages/sudo/sudoers.pod
/usr/share/doc/packages/sudo/sudoreplay.pod
/usr/share/doc/packages/sudo/visudo.pod
/usr/share/man/man5/sudoers.5.gz
/usr/share/man/man5/sudoers.ldap.5.gz
/usr/share/man/man8/sudo.8.gz
/usr/share/man/man8/sudoedit.8.gz
/usr/share/man/man8/sudoreplay.8.gz
/usr/share/man/man8/visudo.8.gz
/var/lib/sudo

Generated by rpm2html 1.8.1

Fabrice Bellet, Mon Jun 10 04:57:03 2013