summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorMarcin Juszkiewicz <hrw@openembedded.org>2005-11-22 15:00:10 +0000
committerOpenEmbedded Project <openembedded-devel@lists.openembedded.org>2005-11-22 15:00:10 +0000
commit521f9e0029d97055d7cd8cade39924b76718ff41 (patch)
tree1f883e62ae71d4d76b532ec9e205b5c104010bb5
parent124f2ee8215b7570476a83168b1f57e1ea981c8d (diff)
sudo: upgrade to 1.6.8p12 due to CVE-2005-1993
- Race condition in sudo 1.3.1 up to 1.6.8p8, when the ALL pseudo-command is used after a user entry in the sudoers file, allows local users to gain privileges via a symlink attack. - Thanks to Jamie Lenehan for notice - close #486
-rw-r--r--packages/sudo/sudo_1.6.8p12.bb (renamed from packages/sudo/sudo_1.6.8p8.bb)1
1 files changed, 0 insertions, 1 deletions
diff --git a/packages/sudo/sudo_1.6.8p8.bb b/packages/sudo/sudo_1.6.8p12.bb
index cc8ae4081c..f9d55411f8 100644
--- a/packages/sudo/sudo_1.6.8p8.bb
+++ b/packages/sudo/sudo_1.6.8p12.bb
@@ -5,4 +5,3 @@ SRC_URI = "http://ftp.sudo.ws/sudo/dist/sudo-${PV}.tar.gz \
file://noexec-link.patch;patch=1"
include sudo.inc
-PR = "r4"