2010年4月13日

[installer 2334] sudo-1.7.2p6, 1.6.9p22

sudo-1.7.2p6, 1.6.9p22 出ています。

☆ sudo-1.7.2p6
http://www.sudo.ws/
http://www.sudo.ws/sudo/dist/sudo-1.7.2p6.tar.gz
ftp://ftp.sudo.ws/pub/sudo/sudo-1.7.2p6.tar.gz

2010-04-09 Todd C. Miller <Todd.Miller@xxxxx>


* configure, configure.in: Fix installation of sudoers.ldap
in "make install" when --with-ldap was specified without a
directory. From Prof. Dr. Andreas Mueller

2010-04-09 Todd C. Miller <Todd.Miller@xxxxx>

* find_path.c: Qualify the command even if it is in the
current working directory, e.g. "./foo" instead of just
returning "foo". This removes an ambiguity between real
commands and possible pseudo-commands in command matching.

2010-04-07 Todd C. Miller <Todd.Miller@xxxxx>

* sudoers.cat, sudoers.man.in, sudoers.pod: Add a note about
the security implications of the fast_glob option.

* memrchr.c: Remove duplicate includes

2010-03-10 Todd C. Miller <Todd.Miller@xxxxx>

* sudo.c: Fix a bug introduced with def_closefrom. The value
of def_closefrom already includes the +1.

2010-03-09 Todd C. Miller <Todd.Miller@xxxxx>

* match.c: When doing a glob match, short circuit if
gl.gl_pathc is 0. From Mark Kettenis.


☆ sudo-1.6.9p22
http://www.sudo.ws/
http://www.sudo.ws/sudo/dist/sudo-1.6.9p22.tar.gz
ftp://ftp.sudo.ws/pub/sudo/sudo-1.6.9p22.tar.gz

686) When doing a glob match, short circuit if gl.gl_pathc is 0.
From Mark Kettenis

687) Documented the security implications of the fast_glob sudoers option.

688) Sudo will now add the path component to the command even if it simply
"./". This removes an ambiguity between real commands and
possible pseudo-commands in command matching

Sudo 1.6.9p22 released.

----
こがよういちろう


投稿者 xml-rpc : 2010年4月13日 10:57
役に立ちました?:
過去のフィードバック 平均:(0) 総合:(0) 投票回数:(0)
本記事へのTrackback: http://hoop.euqset.org/blog/mt-tb2006.cgi/95020
トラックバック
コメント
コメントする




画像の中に見える文字を入力してください。