rpms/sudo
5
0
Fork 0
Code Issues Pull Requests Releases Activity

Fix secure_path

Browse Source
This commit is contained in:
Zoltan Fridrich 2021-02-08 16:33:39 +01:00
parent ccd27694cc
commit ee39e908f2
2 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
sudo.spec
View File

@ -1,7 +1,7 @@
Summary: Allows restricted root access for specified users Summary: Allows restricted root access for specified users
Name: sudo Name: sudo
Version: 1.9.5p2 Version: 1.9.5p2
Release: 1%{?dist} Release: 2%{?dist}
License: ISC License: ISC
URL: https://www.sudo.ws URL: https://www.sudo.ws
Source0: %{url}/dist/%{name}-%{version}.tar.gz Source0: %{url}/dist/%{name}-%{version}.tar.gz
@ -230,6 +230,10 @@ EOF
%attr(0644,root,root) %{_libexecdir}/sudo/python_plugin.so %attr(0644,root,root) %{_libexecdir}/sudo/python_plugin.so
%changelog %changelog
* Mon Feb 08 2021 Zoltan Fridrich <zfridric@redhat.com> - 1.9.5p2-2
- remove /usr/local/* from secure_path
Resolves: rhbz#1908923
* Tue Jan 26 2021 Matthew Miller <mattdm@fedoraproject.org> - 1.9.5p2-1 * Tue Jan 26 2021 Matthew Miller <mattdm@fedoraproject.org> - 1.9.5p2-1
- rebase to 1.9.5p2 - rebase to 1.9.5p2
Resolves: rhbz#1920611 Resolves: rhbz#1920611

2
sudoers
View File

@ -85,7 +85,7 @@ Defaults env_keep += "LC_TIME LC_ALL LANGUAGE LINGUAS _XKB_CHARSET XAUTHORITY
# #
# Defaults env_keep += "HOME" # Defaults env_keep += "HOME"
Defaults secure_path = /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/var/lib/snapd/snap/bin Defaults secure_path = /usr/sbin:/usr/bin:/sbin:/bin
## Next comes the main part: which users can run what software on ## Next comes the main part: which users can run what software on
## which machines (the sudoers file can be shared between multiple ## which machines (the sudoers file can be shared between multiple