rpms/sudo
7
0
Fork 0
Code Issues Pull Requests Releases Activity
248 Commits 7 Branches 34 Tags 473 KiB
imports/c10s/sudo-1.9.15-8.p5.el10
Commit Graph

248 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Troy Dawson
5364ccc7b7 Bump release for October 2024 mass rebuild: 
Resolves: RHEL-64018
 2024-10-29 09:15:32 -07:00
Radovan Sroka
d4a9729056 RHEL 10.0 ERRATUM 
- sudo-1.9.15-2.p5.el10: RHEL SAST Automation: address 4 High impact true positive(s)
Resolves: RHEL-44436
- sudo subpackage sudo-logsrvd should not be built
Resolves: RHEL-52864

Signed-off-by: Radovan Sroka <rsroka@redhat.com>
 2024-08-21 10:35:32 +02:00
Radovan Sroka
5f2cd4f939 RHEL 10.0 ERRATUM 
- sudo-1.9.15-2.p5.el10: RHEL SAST Automation: address 4 High impact true positive(s)
Resolves: RHEL-44436
- sudo subpackage sudo-logsrvd should not be built
Resolves: RHEL-52864
 2024-08-19 14:49:10 +02:00
Radovan Sroka
8469017bb7 RHEL 10.0 ERRATUM 
- sudo-1.9.15-2.p5.el10: RHEL SAST Automation: address 4 High impact true positive(s)
Resolves: RHEL-44436
- sudo subpackage sudo-logsrvd should not be built
Resolves: RHEL-52864
 2024-08-19 07:21:14 +02:00
Troy Dawson
f089015077 Bump release for June 2024 mass rebuild 2024-06-24 09:25:50 -07:00
koncpa
27cd531ff0 Enable RHEL gating for sudo 
Resolves: RHEL-38986

Signed-off-by: Patrik Koncity <pkoncity@redhat.com>
 2024-05-28 14:32:51 +02:00
Yaakov Selkowitz
df275faead Avoid sendmail build dependency 
sudo should be compatible with any MTA, any of which in Fedora provide
/usr/sbin/sendmail, and is used at build time only to determine its
location.  Instead of generalizing the build requirement (e.g. for RHEL
10 which includes only postfix), we can just tell sudo its location
during configure, in which case it is not needed at all to build.

However, doing so uncovered that systemd's presence was being relied
upon without being specified.  This too can be avoided by using the
macros to define the proper tmpfiles location during configure.
 2024-02-08 16:46:56 -05:00
Radovan Sroka
462f43c97a Rabase to 1.9.15p5 
- sudo-1_9_15p5 is available
Resolves: rhbz#2248505
- TRIAGE CVE-2023-42465 sudo: Targeted Corruption of Register and Stack
Variables
Resolves: rhbz#2255569

Signed-off-by: Radovan Sroka <rsroka@redhat.com>
 2024-01-24 11:05:13 +01:00
Yaakov Selkowitz
da01b87507 Rebase to 1.9.14p3 
- sudo-1_9_14p2 is available
Resolves: rhbz#2175672
- sudo fails to build with Python 3.12: FAILED: testcase check_example_group_plugin_is_able_to_debug()
Resolves: rhbz#2186412

Signed-off-by: Yaakov Selkowitz <yselkowi@redhat.com>
 2023-07-24 22:08:49 -04:00
Fedora Release Engineering
347c83287d Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2023-07-22 02:42:07 +00:00
Leigh Scott
328503ded5 Rebuilt for Python 3.12 2023-07-06 14:20:50 +01:00
Radovan Sroka
06544f1ab2
- migrated to SPDX license 
Signed-off-by: Radovan Sroka <rsroka@redhat.com>
 2023-06-20 15:00:57 +02:00
Python Maint
85dfa5defb Rebuilt for Python 3.12 2023-06-13 20:59:29 +02:00
Florian Weimer
025901c345 Port configure script to C99 
Related to:

  <https://fedoraproject.org/wiki/Changes/PortingToModernC>
  <https://fedoraproject.org/wiki/Toolchain/PortingToModernC>
 2023-04-26 12:08:16 +02:00
Radovan Sroka
8d3c03b4da
Rebase to sudo 1.9.13p2 
- sudo-1.9.13p2 is available
Resolves: rhbz#2169840
- sudo: double free with per-command chroot sudoers rules
Resolves: CVE-2023-27320

Signed-off-by: Radovan Sroka <rsroka@redhat.com>
 2023-03-01 17:45:33 +01:00
Radovan Sroka
61dacac7f9 Rebase to sudo 1.9.12p2 
- sudo-1.9.12p2 is available
Resolves: rhbz#2137775
- sudo: arbitrary file write with privileges of the RunAs user
Resolves: CVE-2023-22809

Signed-off-by: Radovan Sroka <rsroka@redhat.com>
 2023-01-19 14:19:32 +01:00
Fedora Release Engineering
e56d19d93d Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2022-07-23 09:34:59 +00:00
Radovan Sroka
d9475dd3d9 Update to 1.9.11p3 
Resolves: rhbz#2047541
Resolves: rhbz#2062150

Signed-off-by: Radovan Sroka <rsroka@redhat.com>
 2022-06-22 15:57:57 +02:00
Python Maint
7a172559a3 Rebuilt for Python 3.11 2022-06-13 15:38:33 +02:00
Matthew Miller
4a2b9f551b recommend system-default-editor instead of nano specifically 2022-06-06 12:54:31 -04:00
Fedora Release Engineering
23fd9b0822 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2022-01-22 01:48:40 +00:00
Radovan Sroka
c3febb3692
Rebuild. previously built with wrong version 
Signed-off-by: Radovan Sroka <rsroka@redhat.com>
 2021-10-06 19:17:44 +02:00
Radovan Sroka
206108fe35
Set up update workflow with %autorelease macro 
- removed stri patch that was not relevant

- intercept feature is not compatible with selinux rbac support so we
  do not build it anymore

Signed-off-by: Radovan Sroka <rsroka@redhat.com>
 2021-10-06 17:15:52 +02:00
Matthew Miller
b9a4f24d95 rhbz#1328973 -- make nano the default with fallback to vim and vi in that order 
and make nano the "Recommends" instead of vim-minimal.
 2021-10-03 16:18:20 -04:00
Matthew Miller
bf29ad1a05 Update to 1.9.8p2, and include new sudo_intercept.so 2021-10-03 15:51:02 -04:00
Sahana Prasad
9c56ac9403 Rebuilt with OpenSSL 3.0.0 2021-09-14 19:15:57 +02:00
Matthew Miller
f02ed1c65e enable rpmautospec (https://docs.pagure.org/Fedora-Infra.rpmautospec/) 2021-08-25 11:03:18 -04:00
Matthew Miller
d2dc2ddaf7 drop obsolete requirement for post script that doesn't exist anymore (thanks @scfc) 
remove commented-out lines from prior PR
 2021-08-07 12:50:43 -04:00
Matthew Miller
442af28d89 - drop obsolete requirement for post script that doesn't exist anymore 
(thanks @scfc)
- remove commented-out lines from prior PR
 2021-08-07 12:49:06 -04:00
Matthew Miller
dd1363faa3 update sources file for previous PR 2021-08-07 12:43:08 -04:00
Peter Czanik
d8c0683b91 - update to 1.9.7p2 
- follow up path change in strip patch
- added --enable-zlib=system configure parameter, so sudo uses system zlib,
  autoconf is no more needed

Signed-off-by: Peter Czanik <peter@czanik.hu>
 2021-08-05 08:25:56 +02:00
Fedora Release Engineering
e9983f0902 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2021-07-23 18:25:32 +00:00
Python Maint
5590a6628d Rebuilt for Python 3.10 2021-06-04 21:15:47 +02:00
Matthew Miller
571662fc2e update rhbz entries in changelog 2021-01-26 14:52:06 -05:00
Matthew Miller
36f24bedc6 update to 1.9.5p2 to address bug 1920618 - CVE-2021-3156 sudo: Heap buffer overflow in argument parsing 2021-01-26 14:00:13 -05:00
Radovan Sroka
a0dc0e6d59
Rebase to 1.9.5p1 
Resolves: rhbz#1902758

- fixed double free in sss_to_sudoers
Resolves: rhbz#1885874
- fixed CVE-2021-23239 sudo: possible directory existence test due to race condition in sudoedit
Resolves: rhbz#1915055
- fixed CVE-2021-23240 sudo: symbolic link attack in SELinux-enabled sudoedit
Resolves: rhbz#1915054

Signed-off-by: Radovan Sroka <rsroka@redhat.com>
 2021-01-18 21:07:57 +01:00
Jonathan Lebon
e30e387ccf Split out -python-plugin subpackage 
This will allow environments where Python is not desirable to still make
use of sudo, such as Fedora CoreOS and other variants which value
minimalism.

Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1909299
 2021-01-14 09:05:22 +00:00
Tom Stellard
f6041d82cf Add BuildRequires: make 
https://fedoraproject.org/wiki/Changes/Remove_make_from_BuildRoot
 2021-01-08 22:03:13 +00:00
Michel Alexandre Salim
47a5b50ae2
Update sudo URL 
http://www.courtesan.com/sudo/ redirects to https://www.sudo.ws/sudo/ (which is identical to https://www.sudo.ws).

The latter is also the website referenced in the tarball's README.

Signed-off-by: Michel Alexandre Salim <salimma@fedoraproject.org>
 2020-12-03 16:10:49 -08:00
Radovan Sroka
68203ed1a2
Rebase to 1.9.3p1 
Signed-off-by: Radovan Sroka <rsroka@redhat.com>
 2020-10-05 15:33:02 +02:00
Radovan Sroka
35c555c44a
Rebase to 1.9.2 
Resolves: rhbz#1859577

- added logsrvd subpackage
- added openssl-devel buildrequires
Resolves: rhbz#1860653
- fixed sudo runstatedir path
- it was generated as /sudo instead of /run/sudo
Resolves: rhbz#1868215
- added /var/lib/snapd/snap/bin to secure_path variable
Resolves: rhbz#1691996

Signed-off-by: Radovan Sroka <rsroka@redhat.com>
 2020-09-15 16:49:29 +02:00
Fedora Release Engineering
845456e9a7 - Second attempt - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2020-08-01 09:14:45 +00:00
Fedora Release Engineering
c5932df566 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild 
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
 2020-07-29 11:37:20 +00:00
alakatos
306df891f5
Rebase to 1.9.1 
Resolves: rhbz#1848788
- fix rpmlint warnings
Resolves: rhbz#1817139
 2020-07-10 09:44:22 +02:00
Jens Petersen
72a557140c upstream patch for setrlimit(RLIMIT_CORE) rootless container warnings (#1773148) 2020-03-26 18:53:44 +08:00
Jens Petersen
5d1ef1f39f remove trailing whitespaces 2020-03-26 18:53:05 +08:00
alakatos
8fc22fffbc
Update to latest development version 1.9.0b4 
Resolves: rhbz#1816593
 2020-03-25 16:47:47 +01:00
alakatos
bb269d08fa
Revert "update to 1.9.0b4" 
This reverts commit 94269e7c20.
 2020-03-25 16:10:12 +01:00
Jens Petersen
94269e7c20 update to 1.9.0b4 2020-03-24 17:24:41 +08:00
Cropi
19b1d360de
Update to latest development version 1.9.0b1 2020-03-03 13:48:35 +01:00