Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

sudo-1.8.29-10.el8 RPM for aarch64

From CentOS 8-stream BaseOS for aarch64 / Packages

Name: sudo Distribution: CentOS
Version: 1.8.29 Vendor: CentOS
Release: 10.el8 Build date: Tue Jan 24 20:58:35 2023
Group: Applications/System Build host: aarch64-04.mbox.centos.org
Size: 3966170 Source RPM: sudo-1.8.29-10.el8.src.rpm
Packager: CentOS Buildsys <bugs@centos.org>
Url: https://www.sudo.ws/
Summary: Allows restricted root access for specified users
Sudo (superuser do) allows a system administrator to give certain
users (or groups of users) the ability to run some (or all) commands
as root while logging all commands and arguments. Sudo operates on a
per-command basis.  It is not a replacement for the shell.  Features
include: the ability to restrict what commands a user may run on a
per-host basis, copious logging of each command (providing a clear
audit trail of who did what), a configurable timeout of the sudo
command, and the ability to use the same configuration file (sudoers)
on many different machines.

Provides

Requires

License

ISC

Changelog

* Wed Jan 11 2023 Radovan Sroka <rsroka@redhat.com> - 1.8.29.9
  RHEL 8.8.0 ERRATUM
  - CVE-2023-22809 sudo: arbitrary file write with privileges of the RunAs user
  Resolves: rhbz#2161221
  - sudo digest check fails incorrectly for certain file sizes (SHA512/SHA384)
  Resolves: rhbz#2114576
* Mon Dec 06 2021 Radovan Sroka <rsroka@redhat.com> - 1.8.29-8
  RHEL 8.6.0 ERRATUM
  - sudoedit does not work with selinux args
  Resolves: rhbz#2029551
  - Make sure SIGCHLD is not ignored when sudo is executed
  Resolves: rhbz#1999751
  - [RFE] pass KRB5CCNAME to pam_authenticate environment if available
  Resolves: rhbz#1917379
  - utmp resource leak in sudo
  Resolves: rhbz#1986572
* Tue Feb 02 2021 Radovan Sroka <rsroka@redhat.com> - 1.8.29-7
  - RHEL 8.4 ERRATUM
  - CVE-2021-3156
  Resolves: rhbz#1917734
  - CVE-2021-23239 sudo: possible directory existence test due to race condition in sudoedit
  Resolves: rhzb#1916434
  - CVE-2021-23240 sudo: symbolic link attack in SELinux-enabled sudoedit
  Resolves: rhbz#1917038
  - updated upstream url
  Resolves: rhbz#1923825
* Tue Apr 28 2020 Radovan Sroka <rsroka@redhat.com> - 1.8.29-6
  - RHEL 8.3 ERRATUM
  - sudo allows privilege escalation with expire password
  Resolves: rhbz#1815164
* Wed Feb 05 2020 Radovan Sroka <rsroka@redhat.com> - 1.8.29-5
  - RHEL 8.2 ERRATUM
  - CVE-2019-18634
  Resolves: rhbz#1798093
* Tue Jan 14 2020 Radovan Sroka <rsroka@redhat.com> - 1.8.29-4
  - RHEL 8.2 ERRATUM
  - CVE-2019-19232
  Resolves: rhbz#1786987
  Resolves: rhbz#1796518
* Wed Oct 30 2019 Radovan Sroka <rsroka@redhat.com> - 1.8.29-2
  - RHEL 8.2 ERRATUM
  - rebase to 1.8.29
  Resolves: rhbz#1733961
  Resolves: rhbz#1651662
* Fri Oct 25 2019 Radovan Sroka <rsroka@redhat.com> - 1.8.28p1-1
  - RHEL 8.2 ERRATUM
  - rebase to 1.8.28p1
  Resolves: rhbz#1733961
  - fixed man page for always_set_home
  Resolves: rhbz#1576880
  - sudo does not work with notbefore/after
  Resolves: rhbz#1679508
  - NOTBEFORE showing value of sudoNotAfter Ldap attribute
  Resolves: rhbz#1715516
  - CVE-2019-14287 sudo
  - Privilege escalation via 'Runas' specification with 'ALL' keyword
  Resolves: rhbz#1760697
* Fri Aug 16 2019 Radovan Sroka <rsroka@redhat.com> - 1.8.25-7
  - RHEL 8.1 ERRATUM
  - sudo ipa_hostname not honored
  Resolves: rhbz#1738662
* Mon Aug 12 2019 Radovan Sroka <rsroka@redhat.com> - 1.8.25-6
  - RHEL 8.1 ERRATUM
  - Fixed The LDAP backend which is not properly parsing sudoOptions,
    resulting in selinux roles not being applied
  Resolves: rhbz#1738326
* Tue May 28 2019 Radovan Sroka <rsroka@redhat.com> - 1.8.25-5
  - RHEL 8.1 ERRATUM
  - Fixed problem with sudo-1.8.23 and 'who am i'
  Resolves: rhbz#1673886
  - Backporting sudo bug with expired passwords
  Resolves: rhbz#1676819
* Tue Dec 11 2018 Radovan Sroka <rsroka@redhat.com> - 1.8.25-4
  - Fix most of the man page scans problems
  - Resolves: rhbz#1613327
* Fri Oct 12 2018 Daniel Kopecek <dkopecek@redhat.com> - 1.8.25-3
  - bump release for new build
  Resolves: rhbz#1625683
* Thu Oct 11 2018 Daniel Kopecek <dkopecek@redhat.com> - 1.8.25-2
  - Depend explicitly on /usr/sbin/sendmail instead of sendmail (rhel-7 sync)
  - Simplified pam configuration file by removing duplicate pam stack entries
  Resolves: rhbz#1633144
* Wed Sep 26 2018 Radovan Sroka <rsroka@redhat.com> - 1.8.25-1
  - rebase to the new upstream version 1.8.25p1
  - sync patches with rhel-7.6
  - sync sudoers with rhel-7.6
    resolves: rhbz#1633144
* Mon Sep 10 2018 Radovan Sroka <rsroka@redhat.com> - 1.8.23-2
  - install /etc/dnf/protected.d/sudo instead of /etc/yum/protected.d/sudo
    resolves: rhbz#1626972
* Thu May 17 2018 Daniel Kopecek <dkopecek@redhat.com> - 1.8.23-1
  - Packaging update for RHEL 8.0 (sync with latest RHEL 7 state)
* Fri Feb 09 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.22-0.2.b1
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Dec 14 2017 Radovan Sroka <rsroka@redhat.com> - 1.8.22b1-1
  - update to 1.8.22b1
  - Added /usr/local/sbin and /usr/local/bin to secure path rhbz#1166185
* Thu Sep 21 2017 Marek Tamaskovic <mtamasko@redhat.com> - 1.8.21p2-1
  - update to 1.8.21p2
  - Moved libsudo_util.so from the -devel sub-package to main package (1481225)
* Wed Sep 06 2017 Matthew Miller <mattdm@fedoraproject.org> - 1.8.20p2-4
  - replace file-based requirements with package-level ones:
  - /etc/pam.d/system-auth to 'pam'
  - /bin/chmod to 'coreutils' (bug #1488934)
  - /usr/bin/vi to vim-minimal
  - ... and make vim-minimal "recommends" instead of "requires", because
    other editors can be configured.
* Thu Aug 03 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.20p2-3
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
* Thu Jul 27 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.20p2-2
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Thu Jun 01 2017 Daniel Kopecek <dkopecek@redhat.com> 1.8.20p2-1
  - update to 1.8.20p2
* Wed May 31 2017 Daniel Kopecek <dkopecek@redhat.com> 1.8.20p1-1
  - update to 1.8.20p1
  - fixes CVE-2017-1000367
    Resolves: rhbz#1456884
* Fri Apr 07 2017 Jiri Vymazal <jvymazal@redhat.com> - 1.8.20-0.1.b1
  - update to latest development version 1.8.20b1
  - added sudo to dnf/yum protected packages
    Resolves: rhbz#1418756
* Mon Feb 13 2017 Tomas Sykora <tosykora@redhat.com> - 1.8.19p2-1
  - update to 1.8.19p2
* Sat Feb 11 2017 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.19-0.3.20161108git738c3cb
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
* Tue Nov 08 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.19-0.2.20161108git738c3cb
  - update to latest development version
  - fixes CVE-2016-7076
* Fri Sep 23 2016 Radovan Sroka <rsroka@redhat.com> 1.8.19-0.1.20160923git90e4538
  - we were not able to update from rc and beta versions to stable one
  - so this is a new snapshot package which resolves it
* Wed Sep 21 2016 Radovan Sroka <rsroka@redhat.com> 1.8.18-1
  - update to 1.8.18
* Fri Sep 16 2016 Radovan Sroka <rsroka@redhat.com> 1.8.18rc4-1
  - update to 1.8.18rc4
* Wed Sep 14 2016 Radovan Sroka <rsroka@redhat.com> 1.8.18rc2-1
  - update to 1.8.18rc2
  - dropped sudo-1.8.14p1-ldapconfpatch.patch
    upstreamed --> https://www.sudo.ws/pipermail/sudo-workers/2016-September/001006.html
* Fri Aug 26 2016 Radovan Sroka <rsroka@redhat.com> 1.8.18b2-1
  - update to 1.8.18b2
  - added --disable-root-mailer as configure option
    Resolves: rhbz#1324091
* Fri Jun 24 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.17p1-1
  - update to 1.8.17p1
  - install the /var/db/sudo/lectured
    Resolves: rhbz#1321414
* Tue May 31 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.16-4
  - removed INPUTRC from env_keep to prevent a possible info leak
    Resolves: rhbz#1340701
* Fri May 13 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.16-3
  - fixed upstream patch for rhbz#1328735
* Thu May 12 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.16-2
  - fixed invalid sesh argument array construction
* Mon Apr 04 2016 Daniel Kopecek <dkopecek@redhat.com> 1.8.16-1
  - update to 1.8.16
* Fri Feb 05 2016 Fedora Release Engineering <releng@fedoraproject.org> - 1.8.15-2
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
* Thu Nov 05 2015 Daniel Kopecek <dkopecek@redhat.com> 1.8.15-1
  - update to 1.8.15
  - fixes CVE-2015-5602
* Mon Aug 24 2015 Radovan Sroka <rsroka@redhat.com> 1.8.14p3-3
  - enable upstream test suite
* Mon Aug 24 2015 Radovan Sroka <rsroka@redhat.com> 1.8.14p3-2
  - add patch that resolves initialization problem before sudo_strsplit call
  - add patch that resolves deadcode in visudo.c
  - add patch that removes extra while in visudo.c and sudoers.c
* Mon Jul 27 2015 Radovan Sroka <rsroka@redhat.com> 1.8.14p3-1
  - update to 1.8.14p3
* Mon Jul 20 2015 Radovan Sroka <rsroka@redhat.com> 1.8.14p1-1
  - update to 1.8.14p1-1
  - rebase sudo-1.8.14b3-ldapconfpatch.patch -> sudo-1.8.14p1-ldapconfpatch.patch
  - rebase sudo-1.8.14b4-docpassexpire.patch -> sudo-1.8.14p1-docpassexpire.patch
* Tue Jul 14 2015 Radovan Sroka <rsroka@redhat.com> 1.8.12-2
  - add patch3 sudo.1.8.14b4-passexpire.patch that makes change in documentation about timestamp_time
  - Resolves: rhbz#1162070
* Fri Jul 10 2015 Radovan Sroka <rsroka@redhat.com> - 1.8.14b4-1
  - Update to 1.8.14b4
  - Add own %{_tmpfilesdir}/sudo.conf
* Fri Jun 19 2015 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.12-2
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
* Wed Feb 18 2015 Daniel Kopecek <dkopecek@redhat.com> - 1.8.12
  - update to 1.8.12
  - fixes CVE-2014-9680
* Mon Nov 03 2014 Daniel Kopecek <dkopecek@redhat.com> - 1.8.11p2-1
  - update to 1.8.11p2
  - added patch to fix upstream bug #671 -- exiting immediately
    when audit is disabled
* Tue Sep 30 2014 Daniel Kopecek <dkopecek@redhat.com> - 1.8.11-1
  - update to 1.8.11
  - major changes & fixes:
    - when running a command in the background, sudo will now forward
      SIGINFO to the command
    - the passwords in ldap.conf and ldap.secret may now be encoded in base64.
    - SELinux role changes are now audited. For sudoedit, we now audit
      the actual editor being run, instead of just the sudoedit command.
    - it is now possible to match an environment variable's value as well as
      its name using env_keep and env_check
    - new files created via sudoedit as a non-root user now have the proper group id
    - sudoedit now works correctly in conjunction with sudo's SELinux RBAC support
    - it is now possible to disable network interface probing in sudo.conf by
      changing the value of the probe_interfaces setting
    - when listing a user's privileges (sudo -l), the sudoers plugin will now prompt
      for the user's password even if the targetpw, rootpw or runaspw options are set.
    - the new use_netgroups sudoers option can be used to explicitly enable or disable
      netgroups support
    - visudo can now export a sudoers file in JSON format using the new -x flag
  - added patch to read ldap.conf more closely to nss_ldap
  - require /usr/bin/vi instead of vim-minimal
  - include pam.d/system-auth in PAM session phase from pam.d/sudo
  - include pam.d/sudo in PAM session phase from pam.d/sudo-i
* Tue Aug 05 2014 Tom Callaway <spot@fedoraproject.org> - 1.8.8-6
  - fix license handling
* Sun Jun 08 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.8-5
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Sat May 31 2014 Peter Robinson <pbrobinson@fedoraproject.org> 1.8.8-4
  - Drop ChangeLog, we ship NEWS
* Mon Mar 10 2014 Daniel Kopecek <dkopecek@redhat.com> - 1.8.8-3
  - remove bundled copy of zlib before compilation
  - drop the requiretty Defaults setting from sudoers
* Sat Jan 25 2014 Ville Skyttä <ville.skytta@iki.fi> - 1.8.8-2
  - Own the %{_libexecdir}/sudo dir.
* Mon Sep 30 2013 Daniel Kopecek <dkopecek@redhat.com> - 1.8.8-1
  - update to 1.8.8
  - major changes & fixes:
    - LDAP SASL support now works properly with Kerberos
    - root may no longer change its SELinux role without entering a password
    - user messages are now always displayed in the user's locale, even when
      the same message is being logged or mailed in a different locale.
    - log files created by sudo now explicitly have the group set to group
      ID 0 rather than relying on BSD group semantics
    - sudo now stores its libexec files in a sudo subdirectory instead of in
      libexec itself
    - system_group and group_file sudoers group provider plugins are now
      installed by default
    - the paths to ldap.conf and ldap.secret may now be specified as arguments
      to the sudoers plugin in the sudo.conf file
    - ...and many new features and settings. See the upstream ChangeLog for the
      full list.
  - several sssd support fixes
  - added patch to make uid/gid specification parsing more strict (don't accept
    an invalid number as uid/gid)
  - use the _pkgdocdir macro
    (see https://fedoraproject.org/wiki/Changes/UnversionedDocdirs)
  - fixed several bugs found by the clang static analyzer
  - added %post dependency on chmod
* Sun Aug 04 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.6p7-2
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Thu Feb 28 2013 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p7-1
  - update to 1.8.6p7
  - fixes CVE-2013-1775 and CVE-2013-1776
  - fixed several packaging issues (thanks to ville.skytta@iki.fi)
    - build with system zlib.
    - let rpmbuild strip libexecdir/*.so.
    - own the %{_docdir}/sudo-* dir.
    - fix some rpmlint warnings (spaces vs tabs, unescaped macros).
    - fix bogus %changelog dates.
* Fri Feb 15 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.6p3-3
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Mon Nov 12 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-2
  - added upstream patch for a regression
  - don't include arch specific files in the -devel subpackage
  - ship only one sample plugin in the -devel subpackage
* Tue Sep 25 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-1
  - update to 1.8.6p3
  - drop -pipelist patch (fixed in upstream)
* Thu Sep 06 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6-1
  - update to 1.8.6
* Thu Jul 26 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.5-4
  - added patches that fix & improve SSSD support (thanks to pbrezina@redhat.com)
  - re-enabled SSSD support
  - removed libsss_sudo dependency
* Tue Jul 24 2012 Bill Nottingham <notting@redhat.com> - 1.8.5-3
  - flip sudoers2ldif executable bit after make install, not in setup
* Sat Jul 21 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.5-2
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Thu May 17 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.5-1
  - update to 1.8.5
  - fixed CVE-2012-2337
  - temporarily disabled SSSD support
* Wed Feb 29 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-6
  - fixed problems with undefined symbols (rhbz#798517)
* Wed Feb 22 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-5
  - SSSD patch update
* Tue Feb 07 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-4
  - added SSSD support
* Thu Jan 26 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-3
  - added patch for CVE-2012-0809
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.3p1-2
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Thu Nov 10 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.8.3p1-1
  - update to 1.8.3p1
  - disable output word wrapping if the output is piped
* Wed Sep 07 2011 Peter Robinson <pbrobinson@fedoraproject.org> - 1.8.1p2-2
  - Remove execute bit from sample script in docs so we don't pull in perl
* Tue Jul 12 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.8.1p2-1
  - rebase to 1.8.1p2
  - removed .sudoi patch
  - fixed typo: RELPRO -> RELRO
  - added -devel subpackage for the sudo_plugin.h header file
  - use default ldap configuration files again
* Fri Jun 03 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-4
  - build with RELRO
* Wed Feb 09 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.7.4p5-3
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Mon Jan 17 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-2
  - rebase to 1.7.4p5
  - fixed sudo-1.7.4p4-getgrouplist.patch
  - fixes CVE-2011-0008, CVE-2011-0010
* Tue Nov 30 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-5
  - anybody in the wheel group has now root access (using password) (rhbz#656873)
  - sync configuration paths with the nss_ldap package (rhbz#652687)
* Wed Sep 29 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-4
  - added upstream patch to fix rhbz#638345
* Mon Sep 20 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-3
  - added patch for #635250
  - /var/run/sudo -> /var/db/sudo in .spec
* Tue Sep 07 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-2
  - sudo now uses /var/db/sudo for timestamps
* Tue Sep 07 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p4-1
  - update to new upstream version
  - new command available: sudoreplay
  - use native audit support
  - corrected license field value: BSD -> ISC
* Wed Jun 02 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p6-2
  - added patch that fixes insufficient environment sanitization issue (#598154)
* Wed Apr 14 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p6-1
  - update to new upstream version
  - merged .audit and .libaudit patch
  - added sudoers.ldap.5* to files
* Mon Mar 01 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p5-2
  - update to new upstream version
* Tue Feb 16 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-5
  - fixed no valid sudoers sources found (#558875)
* Wed Feb 10 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-4
  - audit related Makefile.in and configure.in corrections
  - added --with-audit configure option
  - removed call to libtoolize
* Wed Feb 10 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-3
  - fixed segfault when #include directive is used in cycles (#561336)
* Fri Jan 08 2010 Ville Skyttä <ville.skytta@iki.fi> - 1.7.2p2-2
  - Add /etc/sudoers.d dir and use it in default config (#551470).
  - Drop *.pod man page duplicates from docs.
* Thu Jan 07 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-1
  - new upstream version 1.7.2p2-1
  - commented out unused aliases in sudoers to make visudo happy (#550239)
* Fri Aug 21 2009 Tomas Mraz <tmraz@redhat.com> - 1.7.1-7
  - rebuilt with new audit
* Thu Aug 20 2009 Daniel Kopecek <dkopecek@redhat.com> 1.7.1-6
  - moved secure_path from compile-time option to sudoers file (#517428)
* Sun Jul 26 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.7.1-5
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
* Thu Jul 09 2009 Daniel Kopecek <dkopecek@redhat.com> 1.7.1-4
  - moved the closefrom() call before audit_help_open() (sudo-1.7.1-auditfix.patch)
  - epoch number sync
* Mon Jun 22 2009 Daniel Kopecek <dkopecek@redhat.com> 1.7.1-1
  - updated sudo to version 1.7.1
  - fixed small bug in configure.in (sudo-1.7.1-conffix.patch)
* Tue Feb 24 2009 Daniel Kopecek <dkopecek@redhat.com> 1.6.9p17-6
  - fixed building with new libtool
  - fix for incorrect handling of groups in Runas_User
  - added /usr/local/sbin to secure-path
* Tue Jan 13 2009 Daniel Kopecek <dkopecek@redhat.com> 1.6.9p17-3
  - build with sendmail installed
  - Added /usr/local/bin to secure-path
* Tue Sep 02 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p17-2
  - adjust audit patch, do not scream when kernel is
    compiled without audit netlink support (#401201)
* Fri Jul 04 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p17-1
  - upgrade
* Wed Jun 18 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-7
  - build with newer autoconf-2.62 (#449614)
* Tue May 13 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-6
  - compiled with secure path (#80215)
* Mon May 05 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-5
  - fix path to updatedb in /etc/sudoers (#445103)
* Mon Mar 31 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-4
  - include ldap files in rpm package (#439506)
* Thu Mar 13 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-3
  - include [sudo] in password prompt (#437092)
* Tue Mar 04 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-2
  - audit support improvement
* Thu Feb 21 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-1
  - upgrade to the latest upstream release
* Wed Feb 06 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p12-1
  - upgrade to the latest upstream release
  - add selinux support
* Mon Feb 04 2008 Dennis Gilmore <dennis@ausil.us> 1.6.9p4-6
  - sparc64 needs to be in the -fPIE list with s390
* Mon Jan 07 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p4-5
  - fix complains about audit_log_user_command(): Connection
    refused (#401201)
* Wed Dec 05 2007 Release Engineering <rel-eng at fedoraproject dot org> - 1.6.9p4-4
  - Rebuild for deps
* Wed Dec 05 2007 Release Engineering <rel-eng at fedoraproject dot org> - 1.6.9p4-3
  - Rebuild for openssl bump
* Thu Aug 30 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.9p4-2
  - fix autotools stuff and add audit support
* Mon Aug 20 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.9p4-1
  - upgrade to upstream release
* Thu Apr 12 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-14
  - also use getgrouplist() to determine group membership (#235915)
* Mon Feb 26 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-13
  - fix some spec file issues
* Thu Dec 14 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-12
  - fix rpmlint issue
* Thu Oct 26 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-11
  - fix typo in sudoers file (#212308)
* Sun Oct 01 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-10
  - rebuilt for unwind info generation, broken in gcc-4.1.1-21
* Thu Sep 21 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-9
  - fix sudoers file, X apps didn't work (#206320)
* Tue Aug 08 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-8
  - use Red Hat specific default sudoers file
* Sun Jul 16 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-7
  - fix #198755 - make login processes (sudo -i) initialise session keyring
    (thanks for PAM config files to David Howells)
  - add IPv6 support (patch by Milan Zazrivec)
* Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-6.1
  - rebuild
* Mon May 29 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-6
  - fix #190062 - "ssh localhost sudo su" will show the password in clear
* Tue May 23 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-5
  - add LDAP support (#170848)
* Fri Feb 10 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-4.1
  - bump again for double-long bug on ppc(64)
* Wed Feb 08 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-4
  - reset env. by default
* Tue Feb 07 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-3.1
  - rebuilt for new gcc4.1 snapshot and glibc changes
* Mon Jan 23 2006 Dan Walsh <dwalsh@redhat.com> 1.6.8p12-3
  - Remove selinux patch.  It has been decided that the SELinux patch for sudo is
  - no longer necessary.  In tageted policy it had no effect.  In strict/MLS policy
  - We require the person using sudo to execute newrole before using sudo.
* Fri Dec 09 2005 Jesse Keating <jkeating@redhat.com>
  - rebuilt
* Fri Nov 25 2005 Karel Zak <kzak@redhat.com> 1.6.8p12-1
  - new upstream version 1.6.8p12
* Tue Nov 08 2005 Karel Zak <kzak@redhat.com> 1.6.8p11-1
  - new upstream version 1.6.8p11
* Thu Oct 13 2005 Tomas Mraz <tmraz@redhat.com> 1.6.8p9-6
  - use include instead of pam_stack in pam config
* Tue Oct 11 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-5
  - enable interfaces in selinux patch
  - merge sudo-1.6.8p8-sesh-stopsig.patch to selinux patch
* Mon Sep 19 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-4
  - fix debuginfo
* Mon Sep 19 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-3
  - fix #162623 - sesh hangs when child suspends
* Mon Aug 01 2005 Dan Walsh <dwalsh@redhat.com> 1.6.8p9-2
  - Add back in interfaces call, SELinux has been fixed to work around
* Tue Jun 21 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-1
  - new version 1.6.8p9 (resolve #161116 - CAN-2005-1993 sudo trusted user arbitrary command execution)
* Tue May 24 2005 Karel Zak <kzak@redhat.com> 1.6.8p8-2
  - fix #154511 - sudo does not use limits.conf
* Mon Apr 04 2005 Thomas Woerner <twoerner@redhat.com> 1.6.8p8-1
  - new version 1.6.8p8: new sudoedit and sudo_noexec
* Wed Feb 09 2005 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-31
  - rebuild
* Mon Oct 04 2004 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-30.1
  - added missing BuildRequires for libselinux-devel (#132883)
* Wed Sep 29 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-30
  - Fix missing param error in sesh
* Mon Sep 27 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-29
  - Remove full patch check from sesh
* Thu Jul 08 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-28
  - Fix selinux patch to switch to root user
* Tue Jun 15 2004 Elliot Lee <sopwith@redhat.com>
  - rebuilt
* Tue Apr 13 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-26
  - Eliminate tty handling from selinux
* Thu Apr 01 2004 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-25
  - fixed spec file: sesh in file section with selinux flag (#119682)
* Tue Mar 30 2004 Colin Walters <walters@redhat.com> 1.6.7p5-24
  - Enhance sesh.c to fork/exec children itself, to avoid
    having sudo reap all domains.
  - Only reinstall default signal handlers immediately before
    exec of child with SELinux patch
* Thu Mar 18 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-23
  - change to default to sysadm_r
  - Fix tty handling
* Thu Mar 18 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-22
  - Add /bin/sesh to run selinux code.
  - replace /bin/bash -c with /bin/sesh
* Tue Mar 16 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-21
  - Hard code to use "/bin/bash -c" for selinux
* Tue Mar 16 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-20
  - Eliminate closing and reopening of terminals, to match su.
* Mon Mar 15 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-19
  - SELinux fixes to make transitions work properly
* Fri Mar 05 2004 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-18
  - pied sudo
* Fri Feb 13 2004 Elliot Lee <sopwith@redhat.com>
  - rebuilt
* Tue Jan 27 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-16
  - Eliminate interfaces call, since this requires big SELinux privs
  - and it seems to be useless.
* Tue Jan 27 2004 Karsten Hopp <karsten@redhat.de> 1.6.7p5-15
  - visudo requires vim-minimal or setting EDITOR to something useful (#68605)
* Mon Jan 26 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-14
  - Fix is_selinux_enabled call
* Tue Jan 13 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-13
  - Clean up patch on failure
* Tue Jan 06 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-12
  - Remove sudo.te for now.
* Fri Jan 02 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-11
  - Fix usage message
* Mon Dec 22 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-10
  - Clean up sudo.te to not blow up if pam.te not present
* Thu Dec 18 2003 Thomas Woerner <twoerner@redhat.com>
  - added missing BuildRequires for groff
* Tue Dec 16 2003 Jeremy Katz <katzj@redhat.com> 1.6.7p5-9
  - remove left-over debugging code
* Tue Dec 16 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-8
  - Fix terminal handling that caused Sudo to exit on non selinux machines.
* Mon Dec 15 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-7
  - Remove sudo_var_run_t which is now pam_var_run_t
* Fri Dec 12 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-6
  - Fix terminal handling and policy
* Thu Dec 11 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-5
  - Fix policy
* Thu Nov 13 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-4.sel
  - Turn on SELinux support
* Tue Jul 29 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-3
  - Add support for SELinux
* Wed Jun 04 2003 Elliot Lee <sopwith@redhat.com>
  - rebuilt
* Mon May 19 2003 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-1
  * Wed Jan 22 2003 Tim Powers <timp@redhat.com>
  - rebuilt
* Tue Nov 12 2002 Nalin Dahyabhai <nalin@redhat.com> 1.6.6-2
  - remove absolute path names from the PAM configuration, ensuring that the
    right modules get used for whichever arch we're built for
  - don't try to install the FAQ, which isn't there any more
* Thu Jun 27 2002 Bill Nottingham <notting@redhat.com> 1.6.6-1
  - update to 1.6.6
* Fri Jun 21 2002 Tim Powers <timp@redhat.com>
  - automated rebuild
* Thu May 23 2002 Tim Powers <timp@redhat.com>
  - automated rebuild
* Thu Apr 18 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5p2-2
  - Fix bug #63768
* Thu Mar 14 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5p2-1
  - 1.6.5p2
* Fri Jan 18 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5p1-1
  - 1.6.5p1
  - Hope this "a new release per day" madness stops ;)
* Thu Jan 17 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5-1
  - 1.6.5
* Tue Jan 15 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.4p1-1
  - 1.6.4p1
* Mon Jan 14 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.4-1
  - Update to 1.6.4
* Mon Jul 23 2001 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.3p7-2
  - Add build requirements (#49706)
  - s/Copyright/License/
  - bzip2 source
* Sat Jun 16 2001 Than Ngo <than@redhat.com>
  - update to 1.6.3p7
  - use %{_tmppath}
* Fri Feb 23 2001 Bernhard Rosenkraenzer <bero@redhat.com>
  - 1.6.3p6, fixes buffer overrun
* Tue Oct 10 2000 Bernhard Rosenkraenzer <bero@redhat.com>
  - 1.6.3p5
* Wed Jul 12 2000 Prospector <bugzilla@redhat.com>
  - automatic rebuild
* Tue Jun 06 2000 Karsten Hopp <karsten@redhat.de>
  - fixed owner of sudo and visudo
* Thu Jun 01 2000 Nalin Dahyabhai <nalin@redhat.com>
  - modify PAM setup to use system-auth
  - clean up buildrooting by using the makeinstall macro
* Tue Apr 11 2000 Bernhard Rosenkraenzer <bero@redhat.com>
  - initial build in main distrib
  - update to 1.6.3
  - deal with compressed man pages
* Tue Dec 14 1999 Preston Brown <pbrown@redhat.com>
  - updated to 1.6.1 for Powertools 6.2
  - config files are now noreplace.
* Thu Jul 22 1999 Tim Powers <timp@redhat.com>
  - updated to 1.5.9p2 for Powertools 6.1
* Wed May 12 1999 Bill Nottingham <notting@redhat.com>
  - sudo is configured with pam. There's no pam.d file. Oops.
* Mon Apr 26 1999 Preston Brown <pbrown@redhat.com>
  - upgraded to 1.59p1 for powertools 6.0
* Tue Oct 27 1998 Preston Brown <pbrown@redhat.com>
  - fixed so it doesn't find /usr/bin/vi first, but instead /bin/vi (always installed)
* Thu Oct 08 1998 Michael Maher <mike@redhat.com>
  - built package for 5.2
* Mon May 18 1998 Michael Maher <mike@redhat.com>
  - updated SPEC file
* Thu Jan 29 1998 Otto Hammersmith <otto@redhat.com>
  - updated to 1.5.4
* Tue Nov 18 1997 Otto Hammersmith <otto@redhat.com>
  - built for glibc, no problems
* Fri Apr 25 1997 Michael Fulbright <msf@redhat.com>
  - Fixed for 4.2 PowerTools
  - Still need to be pamified
  - Still need to move stmp file to /var/log
* Mon Feb 17 1997 Michael Fulbright <msf@redhat.com>
  - First version for PowerCD.

Files

/etc/dnf/protected.d/sudo.conf
/etc/pam.d/sudo
/etc/pam.d/sudo-i
/etc/sudo-ldap.conf
/etc/sudo.conf
/etc/sudoers
/etc/sudoers.d
/usr/bin/cvtsudoers
/usr/bin/sudo
/usr/bin/sudoedit
/usr/bin/sudoreplay
/usr/lib/.build-id
/usr/lib/.build-id/51
/usr/lib/.build-id/51/fea9a988d6e665ce4af5cd9e90b4cbd5e50cab
/usr/lib/.build-id/55
/usr/lib/.build-id/55/f533118a188712951ba764381ed013b0a0d9e8
/usr/lib/.build-id/7f
/usr/lib/.build-id/7f/df972be69b93b3564389098fc077629f6adbc4
/usr/lib/.build-id/83
/usr/lib/.build-id/83/8c55236c27d4273a9e09a4c81b9d393fc2f396
/usr/lib/.build-id/91
/usr/lib/.build-id/91/9f5c634cc3853bd9dab93ac7f6c024a253f2c7
/usr/lib/.build-id/9a
/usr/lib/.build-id/9a/0d870b8a7e3983a387099079f02a170809eaa2
/usr/lib/.build-id/b6
/usr/lib/.build-id/b6/8e63493b88c9fcad811c445b9603aa9afc659d
/usr/lib/.build-id/d1
/usr/lib/.build-id/d1/21df151df8b062eb5c774fa03cce7a8044c948
/usr/lib/.build-id/db
/usr/lib/.build-id/db/ad19917d72f7d81e54ed115dcf4798bab7a9cb
/usr/lib/.build-id/df
/usr/lib/.build-id/df/5dd708ac566e0825572559ca3b7ac1083b5648
/usr/lib/tmpfiles.d/sudo.conf
/usr/libexec/sudo
/usr/libexec/sudo/group_file.so
/usr/libexec/sudo/libsudo_util.so
/usr/libexec/sudo/libsudo_util.so.0
/usr/libexec/sudo/libsudo_util.so.0.0.0
/usr/libexec/sudo/sesh
/usr/libexec/sudo/sudo_noexec.so
/usr/libexec/sudo/sudoers.so
/usr/libexec/sudo/system_group.so
/usr/sbin/visudo
/usr/share/doc/sudo
/usr/share/doc/sudo/CONTRIBUTORS
/usr/share/doc/sudo/HISTORY
/usr/share/doc/sudo/NEWS
/usr/share/doc/sudo/README
/usr/share/doc/sudo/README.LDAP
/usr/share/doc/sudo/TROUBLESHOOTING
/usr/share/doc/sudo/UPGRADE
/usr/share/doc/sudo/examples
/usr/share/doc/sudo/examples/pam.conf
/usr/share/doc/sudo/examples/sudo.conf
/usr/share/doc/sudo/examples/sudoers
/usr/share/doc/sudo/examples/syslog.conf
/usr/share/doc/sudo/schema.ActiveDirectory
/usr/share/doc/sudo/schema.OpenLDAP
/usr/share/doc/sudo/schema.iPlanet
/usr/share/doc/sudo/schema.olcSudo
/usr/share/licenses/sudo
/usr/share/licenses/sudo/LICENSE
/usr/share/locale/ast/LC_MESSAGES/sudo.mo
/usr/share/locale/ast/LC_MESSAGES/sudoers.mo
/usr/share/locale/ca/LC_MESSAGES/sudo.mo
/usr/share/locale/ca/LC_MESSAGES/sudoers.mo
/usr/share/locale/cs/LC_MESSAGES/sudo.mo
/usr/share/locale/cs/LC_MESSAGES/sudoers.mo
/usr/share/locale/da/LC_MESSAGES/sudo.mo
/usr/share/locale/da/LC_MESSAGES/sudoers.mo
/usr/share/locale/de/LC_MESSAGES/sudo.mo
/usr/share/locale/de/LC_MESSAGES/sudoers.mo
/usr/share/locale/el/LC_MESSAGES/sudoers.mo
/usr/share/locale/eo/LC_MESSAGES/sudo.mo
/usr/share/locale/eo/LC_MESSAGES/sudoers.mo
/usr/share/locale/es/LC_MESSAGES/sudo.mo
/usr/share/locale/eu/LC_MESSAGES/sudo.mo
/usr/share/locale/eu/LC_MESSAGES/sudoers.mo
/usr/share/locale/fi/LC_MESSAGES/sudo.mo
/usr/share/locale/fi/LC_MESSAGES/sudoers.mo
/usr/share/locale/fr/LC_MESSAGES/sudo.mo
/usr/share/locale/fr/LC_MESSAGES/sudoers.mo
/usr/share/locale/fur/LC_MESSAGES/sudo.mo
/usr/share/locale/fur/LC_MESSAGES/sudoers.mo
/usr/share/locale/gl/LC_MESSAGES/sudo.mo
/usr/share/locale/hr/LC_MESSAGES/sudo.mo
/usr/share/locale/hr/LC_MESSAGES/sudoers.mo
/usr/share/locale/hu/LC_MESSAGES/sudo.mo
/usr/share/locale/hu/LC_MESSAGES/sudoers.mo
/usr/share/locale/it/LC_MESSAGES/sudo.mo
/usr/share/locale/it/LC_MESSAGES/sudoers.mo
/usr/share/locale/ja/LC_MESSAGES/sudo.mo
/usr/share/locale/ja/LC_MESSAGES/sudoers.mo
/usr/share/locale/ko/LC_MESSAGES/sudo.mo
/usr/share/locale/ko/LC_MESSAGES/sudoers.mo
/usr/share/locale/lt/LC_MESSAGES/sudoers.mo
/usr/share/locale/nb/LC_MESSAGES/sudo.mo
/usr/share/locale/nb/LC_MESSAGES/sudoers.mo
/usr/share/locale/nl/LC_MESSAGES/sudo.mo
/usr/share/locale/nl/LC_MESSAGES/sudoers.mo
/usr/share/locale/nn/LC_MESSAGES/sudo.mo
/usr/share/locale/pl/LC_MESSAGES/sudo.mo
/usr/share/locale/pl/LC_MESSAGES/sudoers.mo
/usr/share/locale/pt/LC_MESSAGES/sudo.mo
/usr/share/locale/pt/LC_MESSAGES/sudoers.mo
/usr/share/locale/pt_BR/LC_MESSAGES/sudo.mo
/usr/share/locale/pt_BR/LC_MESSAGES/sudoers.mo
/usr/share/locale/ru/LC_MESSAGES/sudo.mo
/usr/share/locale/ru/LC_MESSAGES/sudoers.mo
/usr/share/locale/sk/LC_MESSAGES/sudo.mo
/usr/share/locale/sk/LC_MESSAGES/sudoers.mo
/usr/share/locale/sl/LC_MESSAGES/sudo.mo
/usr/share/locale/sl/LC_MESSAGES/sudoers.mo
/usr/share/locale/sr/LC_MESSAGES/sudo.mo
/usr/share/locale/sr/LC_MESSAGES/sudoers.mo
/usr/share/locale/sv/LC_MESSAGES/sudo.mo
/usr/share/locale/sv/LC_MESSAGES/sudoers.mo
/usr/share/locale/tr/LC_MESSAGES/sudo.mo
/usr/share/locale/tr/LC_MESSAGES/sudoers.mo
/usr/share/locale/uk/LC_MESSAGES/sudo.mo
/usr/share/locale/uk/LC_MESSAGES/sudoers.mo
/usr/share/locale/vi/LC_MESSAGES/sudo.mo
/usr/share/locale/vi/LC_MESSAGES/sudoers.mo
/usr/share/locale/zh_CN/LC_MESSAGES/sudo.mo
/usr/share/locale/zh_CN/LC_MESSAGES/sudoers.mo
/usr/share/locale/zh_TW/LC_MESSAGES/sudo.mo
/usr/share/locale/zh_TW/LC_MESSAGES/sudoers.mo
/usr/share/man/man1/cvtsudoers.1.gz
/usr/share/man/man5/sudo-ldap.conf.5.gz
/usr/share/man/man5/sudo.conf.5.gz
/usr/share/man/man5/sudoers.5.gz
/usr/share/man/man5/sudoers.ldap.5.gz
/usr/share/man/man5/sudoers_timestamp.5.gz
/usr/share/man/man8/sudo.8.gz
/usr/share/man/man8/sudoedit.8.gz
/usr/share/man/man8/sudoreplay.8.gz
/usr/share/man/man8/visudo.8.gz
/var/db/sudo
/var/db/sudo/lectured


Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Mar 26 04:16:39 2024