-
Thu Nov 24 2016 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-25
- Update noexec syscall blacklist
- Fixes CVE-2016-7032 and CVE-2016-7076
Resolves: rhbz#1391937
-
Tue Mar 01 2016 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-24
- RHEL-6.8 erratum
- fixed a bug causing that non-root users can list privileges of
other users
Resolves: rhbz#1312481
-
Thu Feb 25 2016 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-23
- RHEL-6.8 erratum
- fixed handling of closefrom_override defaults option
Resolves: rhbz#1309976
-
Wed Jan 20 2016 Radovan Sroka <rsroka@redhat.com> - 1.8.6p3-22
- RHEL-6.8 erratum
- fixed potential getcwd failure, resulting in Null pointer exception
Resolves: rhbz#1284886
-
Tue Dec 15 2015 Radovan Sroka <rsroka@redhat.com> - 1.8.6p3-21
- RHEL-6.8 erratum
- fixed sssd's detection of user with zero rules
Resolves: rhbz#1220480
-
Mon Dec 14 2015 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-21
- RHEL-6.8 erratum
- search also by user id when fetching rules from LDAP
Resolves: rhbz#1135531
-
Tue Dec 08 2015 Radovan Sroka <rsroka@redhat.com> - 1.8.6p3-21
- RHEL-6.8 erratum
- fixed ldap's and sssd's sudoOption value and remove quotes
- fixed ldap's and sssd's sudoOption whitespaces parse problem
Resolves: rhbz#1144422
Resolves: rhbz#1279447
-
Tue Dec 08 2015 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-21
- RHEL-6.8 erratum
- removed defaults option requiretty from /etc/sudoers
- backported pam_service and pam_login_service defaults options
- implemented a new defaults option for changing netgroup processing
semantics
- fixed visudo's quiet cli option
Resolves: rhbz#1248695
Resolves: rhbz#1247231
Resolves: rhbz#1241896
Resolves: rhbz#1197885
Resolves: rhbz#1233205
-
Wed Jul 29 2015 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-20
- added patch to re-introduce old group processing behaviour
Resolves: rhbz#1075836
-
Tue May 05 2015 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-19
- RHEL-6.7 erratum
- modified the authlogicfix patch to fix #1144448
- fixed a bug in the ldapusermatchfix patch
Resolves: rhbz#1144448
Resolves: rhbz#1142122
-
Thu Apr 16 2015 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-18
- RHEL-6.7 erratum
- fixed the mantypos-ldap.patch
Resolves: rhbz#1138267
-
Tue Mar 31 2015 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-17
- RHEL-6.7 erratum
- added patch for CVE-2014-9680
- added BuildRequires for tzdata
Resolves: rhbz#1200253
-
Wed Mar 04 2015 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-16
- RHEL-6.7 erratum
- added zlib-devel build required to enable zlib compression support
- fixed two typos in the sudoers.ldap man page
- fixed a hang when duplicate nss entries are specified in nsswitch.conf
- SSSD: implemented sorting of the result entries according to the
sudoOrder attribute
- LDAP: fixed logic handling the computation of the "user matched" flag
- fixed restoring of the SIGPIPE signal in the tgetpass function
- fixed listpw, verifypw + authenticate option logic in LDAP/SSSD
Resolves: rhbz#1106433
Resolves: rhbz#1138267
Resolves: rhbz#1147498
Resolves: rhbz#1138581
Resolves: rhbz#1142122
Resolves: rhbz#1094548
Resolves: rhbz#1144448
-
Thu Jul 31 2014 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-15
- RHEL-6.6 erratum
- SSSD: dropped the ipahostnameshort patch, as it is not
needed. rhbz#1033703 is a configuration issue.
Related: rhbz#1033703
-
Wed Jul 30 2014 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-14
- RHEL-6.6 erratum
- SSSD: fixed netgroup filter patch
- SSSD: dropped serparate patch for #1006463, the fix is now part
of the netgroup filter patch
Resolves: rhbz#1006463
Resolves: rhbz#1083064
-
Mon May 19 2014 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-13
- RHEL-6.6 erratum
- don't retry authentication when ctrl-c pressed
- fix double-quote processing in Defaults options
- fix sesh login shell argv[0]
- handle the "(none)" hostname correctly
- SSSD: fix ipa_hostname handling
- SSSD: fix sudoUser netgroup specification filtering
- SSSD: list correct user when -U <user> -l specified
- SSSD: show rule names on long listing (-ll)
Resolves: rhbz#1065415
Resolves: rhbz#1078338
Resolves: rhbz#1052940
Resolves: rhbz#1083064
Resolves: rhbz#1033703
Resolves: rhbz#1006447
Resolves: rhbz#1006463
Resolves: rhbz#1070952
-
Mon Oct 07 2013 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-12
- added patches for CVE-2013-1775 CVE-2013-2777 CVE-2013-2776
Resolves: rhbz#1015355
-
Thu Sep 05 2013 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-11
- sssd: fixed a bug in ipa_hostname processing
Resolves: rhbz#853542
-
Thu Aug 15 2013 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-10
- sssd: fixed buffer size for the ipa_hostname value
Resolves: rhbz#853542
-
Wed Aug 14 2013 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-9
- sssd: match against ipa_hostname from sssd.conf too when
checking sudoHost
Resolves: rhbz#853542
-
Wed Aug 14 2013 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-8
- updated man-page
- fixed handling of RLIMIT_NPROC resource limit
- fixed alias cycle detection code
- added debug messages for tracing of netgroup matching
- fixed aborting on realloc when displaying allowed commands
- show the SUDO_USER in logs, if running commands as root
- sssd: filter netgroups in the sudoUser attribute
Resolves: rhbz#856901
Resolves: rhbz#947276
Resolves: rhbz#886648
Resolves: rhbz#994563
Resolves: rhbz#848111
Resolves: rhbz#994626
Resolves: rhbz#973228
Resolves: rhbz#880150
-
Wed Jan 23 2013 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-7
- fixed potential stack overflow in visudo
Resolves: rhbz#903020
-
Thu Nov 29 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-6
- added patches to address a number of issues in ldap & sssd plugins
- fixed README.LDAP updating in the spec file
Resolves: rhbz#860397
Resolves: rhbz#876208
Resolves: rhbz#876578
Resolves: rhbz#879675
Resolves: rhbz#879633
-
Wed Nov 07 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-5
- Include just one sample plugin in the documentation for the -devel
subpackage. Don't include architecture specific files.
- patch: Do not inform the user that the command was not permitted by
the policy if they do not successfully authenticate.
Resolves: rhbz#759480
Resolves: rhbz#871303
Resolves: rhbz#872740
-
Wed Sep 26 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-4
- removed %doc since sudo installs the files anyway
Resolves: rhbz#759480
-
Wed Sep 26 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-3
- added SHLIB_MODE=755 to get striping to work again
Resolves: rhbz#759480
-
Wed Sep 26 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-2
- extended the default sudo-ldap.conf file
- corrected default file permissions on sudo.conf, sudo-ldap.conf
- added patch that introduces the cmnd_no_wait Defaults option
Resolves: rhbz#840980 - sudo creates a new parent process
Resolves: rhbz#860397 - new /etc/sudo-ldap.conf configuration file problems
-
Mon Sep 24 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p3-1
- rebase to 1.8.6p3
- new -devel subpackage
- new configuration file: /etc/sudo.conf
Resolves: rhbz#852045 - ulimit -c got Operation not permitted
Resolves: rhbz#804123 - sudo does not call pam_close_session() or pam_end()
Resolves: rhbz#828707 - sudo fails to report error correctly when execv(3) fails
Resolves: rhbz#844691 - Cannot set RLIMIT_NPROC to unlimited via pam_limits when running sudo
Resolves: rhbz#759480 - Rebase sudo to 1.8 in RHEL 6.4
Resolves: rhbz#846117 - Sudo interpretation of wildcard command arguments is more lenient providing a security risk
Resolves: rhbz#789937 - [RFE] Add ability to treat files authoritatively in sudoers.ldap
Resolves: rhbz#836242 - sudo -s -u USERNAME can't change ulimit -c
-
Tue Jul 17 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-13
- fixed job control
Resolves: rhbz#823993
-
Fri Jun 29 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-12
- added patch for CVE-2012-2337
Resolves: rhbz#829757
-
Wed May 16 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-11
- use SIG_SETMASK when resetting signal mask instead of SIG_UNBLOCK (#821976)
Resolves: rhbz#821976
-
Fri May 04 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-10.1
- backported ldap code modifications that fix an issue with tls_checkpeer (#810372)
Resolves: rhbz#810372
-
Mon Apr 16 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-10
- fixed bug in Runas_Spec group matching (#810147)
- disable `sudo -l' output word wrapping if the output
is piped (#810326)
- fixed `sudo -i' command escaping (#806095)
Resolves: rhbz#806095
Resolves: rhbz#810147
Resolves: rhbz#810326
-
Mon Apr 16 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-9
- fixed uninitialized value warning introduced with the sudoedit-selinux patch
Resolves: rhbz#806386
-
Thu Mar 01 2012 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-8
- created a separate ldap configuration file, sudo-ldap.conf
- visudo: mark unused aliases as warnings, not errors
- backported signal handling from 1.7.5
- don't disable coredumping from the code, rely on /proc/sys/fs/suid_dumpable
- use correct SELinux context when editing files with sudoedit
- fixed visudo syntax checks
- fixed typos and inconsistencies in documentation
- switched to an updated -getgrouplist patch to fix sudo -l -U <user> behavior
Resolves: rhbz#760843
Resolves: rhbz#736030
Resolves: rhbz#697775
Resolves: rhbz#726634
Resolves: rhbz#708515
Resolves: rhbz#736653
Resolves: rhbz#667120
Resolves: rhbz#769701
Resolves: rhbz#751680
Resolves: rhbz#604297
Resolves: rhbz#797511
-
Thu Jul 21 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-7
- set ldap configuration file to nslcd.conf
Resolves: rhbz#709235
-
Thu Jul 14 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-6
- removed the --with-ldap-*conf options
- added RELRO flags
Resolves: rhbz#709235
Resolves: rhbz#709859
-
Tue Apr 19 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-5
- patch: log failed user role changes
Resolves: rhbz#665131
-
Wed Mar 23 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-4
- added #includedir /etc/sudoers.d to sudoers
Resolves: rhbz#615087
-
Tue Mar 22 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-3
- added !visiblepw option to sudoers
Resolves: rhbz#688640
-
Fri Feb 04 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-2
- added patch for rhbz#665131
Resolves: rhbz#665131
-
Thu Jan 13 2011 Daniel Kopecek <dkopecek@redhat.com> - 1.7.4p5-1
- rebase to latest stable version
- sudo now uses /var/db/sudo for timestamps
- new command available: sudoreplay
- use native audit support
- sync configuration paths with the nss_ldap package
Resolves: rhbz#615087
Resolves: rhbz#652726
Resolves: rhbz#634159
Resolves: rhbz#603823
-
Wed Sep 01 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-9
- added patch for CVE-2010-2956 (#628628)
Resolves: rhbz#629054
-
Tue Aug 03 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-8
- sudoers change: always set $HOME to the target user home directory
Resolves: rhbz#619293
-
Thu Jul 15 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-7
- move the sudo_end* calls before closefrom()
- close audit_fd before exec
- fixed typo in Makefile.in
Resolves: rhbz#569313
-
Tue Jun 08 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-6
- fixed segfault when #include directive is used in cycles
Resolves: rhbz#598363
-
Tue Jun 01 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-5
- added patch that fixes insufficient environment sanitization issue (#598154)
Resolves: rhbz#598383
-
Tue Apr 13 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-4
- added second patch for CVE-2010-0426 (#580441)
Resolves: rhbz#580527
-
Wed Feb 24 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-3
- added patch for CVE-2010-0426 (#567337)
Resolves: rhbz#567675
-
Wed Jan 27 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-2
- changed the License: value to ISC
Related: rhbz#543948
-
Wed Jan 13 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.2p2-1
- new upstream version
Resolves: rhbz#554321
- drop *.pod man page duplicates from docs
- commented out unused aliases in sudoers to make visudo happy (#550239)
-
Tue Jan 12 2010 Daniel Kopecek <dkopecek@redhat.com> - 1.7.1-8
- Rebuild for new libaudit
Related: rhbz#543948
-
Fri Aug 21 2009 Tomas Mraz <tmraz@redhat.com> - 1.7.1-7
- rebuilt with new audit
-
Thu Aug 20 2009 Daniel Kopecek <dkopecek@redhat.com> 1.7.1-6
- moved secure_path from compile-time option to sudoers file (#517428)
-
Sun Jul 26 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.7.1-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
-
Thu Jul 09 2009 Daniel Kopecek <dkopecek@redhat.com> 1.7.1-4
- moved the closefrom() call before audit_help_open() (sudo-1.7.1-auditfix.patch)
- epoch number sync
-
Mon Jun 22 2009 Daniel Kopecek <dkopecek@redhat.com> 1.7.1-1
- updated sudo to version 1.7.1
- fixed small bug in configure.in (sudo-1.7.1-conffix.patch)
-
Tue Feb 24 2009 Daniel Kopecek <dkopecek@redhat.com> 1.6.9p17-6
- fixed building with new libtool
- fix for incorrect handling of groups in Runas_User
- added /usr/local/sbin to secure-path
-
Tue Jan 13 2009 Daniel Kopecek <dkopecek@redhat.com> 1.6.9p17-3
- build with sendmail installed
- Added /usr/local/bin to secure-path
-
Tue Sep 02 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p17-2
- adjust audit patch, do not scream when kernel is
compiled without audit netlink support (#401201)
-
Fri Jul 04 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p17-1
- upgrade
-
Wed Jun 18 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-7
- build with newer autoconf-2.62 (#449614)
-
Tue May 13 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-6
- compiled with secure path (#80215)
-
Mon May 05 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-5
- fix path to updatedb in /etc/sudoers (#445103)
-
Mon Mar 31 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-4
- include ldap files in rpm package (#439506)
-
Thu Mar 13 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-3
- include [sudo] in password prompt (#437092)
-
Tue Mar 04 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-2
- audit support improvement
-
Thu Feb 21 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p13-1
- upgrade to the latest upstream release
-
Wed Feb 06 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p12-1
- upgrade to the latest upstream release
- add selinux support
-
Sat Feb 02 2008 Dennis Gilmore <dennis@ausil.us> 1.6.9p4-6
- sparc64 needs to be in the -fPIE list with s390
-
Mon Jan 07 2008 Peter Vrabec <pvrabec@redhat.com> 1.6.9p4-5
- fix complains about audit_log_user_command(): Connection
refused (#401201)
-
Wed Dec 05 2007 Release Engineering <rel-eng at fedoraproject dot org> - 1.6.9p4-4
- Rebuild for deps
-
Wed Dec 05 2007 Release Engineering <rel-eng at fedoraproject dot org> - 1.6.9p4-3
- Rebuild for openssl bump
-
Thu Aug 30 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.9p4-2
- fix autotools stuff and add audit support
-
Mon Aug 20 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.9p4-1
- upgrade to upstream release
-
Thu Apr 12 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-14
- also use getgrouplist() to determine group membership (#235915)
-
Mon Feb 26 2007 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-13
- fix some spec file issues
-
Thu Dec 14 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-12
- fix rpmlint issue
-
Thu Oct 26 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-11
- fix typo in sudoers file (#212308)
-
Sun Oct 01 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-10
- rebuilt for unwind info generation, broken in gcc-4.1.1-21
-
Thu Sep 21 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-9
- fix sudoers file, X apps didn't work (#206320)
-
Tue Aug 08 2006 Peter Vrabec <pvrabec@redhat.com> 1.6.8p12-8
- use Red Hat specific default sudoers file
-
Sun Jul 16 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-7
- fix #198755 - make login processes (sudo -i) initialise session keyring
(thanks for PAM config files to David Howells)
- add IPv6 support (patch by Milan Zazrivec)
-
Wed Jul 12 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-6.1
- rebuild
-
Mon May 29 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-6
- fix #190062 - "ssh localhost sudo su" will show the password in clear
-
Tue May 23 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-5
- add LDAP support (#170848)
-
Fri Feb 10 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-4.1
- bump again for double-long bug on ppc(64)
-
Wed Feb 08 2006 Karel Zak <kzak@redhat.com> 1.6.8p12-4
- reset env. by default
-
Tue Feb 07 2006 Jesse Keating <jkeating@redhat.com> - 1.6.8p12-3.1
- rebuilt for new gcc4.1 snapshot and glibc changes
-
Mon Jan 23 2006 Dan Walsh <dwalsh@redhat.com> 1.6.8p12-3
- Remove selinux patch. It has been decided that the SELinux patch for sudo is
- no longer necessary. In tageted policy it had no effect. In strict/MLS policy
- We require the person using sudo to execute newrole before using sudo.
-
Fri Dec 09 2005 Jesse Keating <jkeating@redhat.com>
- rebuilt
-
Fri Nov 25 2005 Karel Zak <kzak@redhat.com> 1.6.8p12-1
- new upstream version 1.6.8p12
-
Tue Nov 08 2005 Karel Zak <kzak@redhat.com> 1.6.8p11-1
- new upstream version 1.6.8p11
-
Thu Oct 13 2005 Tomas Mraz <tmraz@redhat.com> 1.6.8p9-6
- use include instead of pam_stack in pam config
-
Tue Oct 11 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-5
- enable interfaces in selinux patch
- merge sudo-1.6.8p8-sesh-stopsig.patch to selinux patch
-
Mon Sep 19 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-4
- fix debuginfo
-
Mon Sep 19 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-3
- fix #162623 - sesh hangs when child suspends
-
Mon Aug 01 2005 Dan Walsh <dwalsh@redhat.com> 1.6.8p9-2
- Add back in interfaces call, SELinux has been fixed to work around
-
Tue Jun 21 2005 Karel Zak <kzak@redhat.com> 1.6.8p9-1
- new version 1.6.8p9 (resolve #161116 - CAN-2005-1993 sudo trusted user arbitrary command execution)
-
Tue May 24 2005 Karel Zak <kzak@redhat.com> 1.6.8p8-2
- fix #154511 - sudo does not use limits.conf
-
Mon Apr 04 2005 Thomas Woerner <twoerner@redhat.com> 1.6.8p8-1
- new version 1.6.8p8: new sudoedit and sudo_noexec
-
Wed Feb 09 2005 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-31
- rebuild
-
Mon Oct 04 2004 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-30.1
- added missing BuildRequires for libselinux-devel (#132883)
-
Wed Sep 29 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-30
- Fix missing param error in sesh
-
Mon Sep 27 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-29
- Remove full patch check from sesh
-
Thu Jul 08 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-28
- Fix selinux patch to switch to root user
-
Tue Jun 15 2004 Elliot Lee <sopwith@redhat.com>
- rebuilt
-
Tue Apr 13 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-26
- Eliminate tty handling from selinux
-
Thu Apr 01 2004 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-25
- fixed spec file: sesh in file section with selinux flag (#119682)
-
Tue Mar 30 2004 Colin Walters <walters@redhat.com> 1.6.7p5-24
- Enhance sesh.c to fork/exec children itself, to avoid
having sudo reap all domains.
- Only reinstall default signal handlers immediately before
exec of child with SELinux patch
-
Thu Mar 18 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-23
- change to default to sysadm_r
- Fix tty handling
-
Thu Mar 18 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-22
- Add /bin/sesh to run selinux code.
- replace /bin/bash -c with /bin/sesh
-
Tue Mar 16 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-21
- Hard code to use "/bin/bash -c" for selinux
-
Tue Mar 16 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-20
- Eliminate closing and reopening of terminals, to match su.
-
Mon Mar 15 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-19
- SELinux fixes to make transitions work properly
-
Fri Mar 05 2004 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-18
- pied sudo
-
Fri Feb 13 2004 Elliot Lee <sopwith@redhat.com>
- rebuilt
-
Tue Jan 27 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-16
- Eliminate interfaces call, since this requires big SELinux privs
- and it seems to be useless.
-
Tue Jan 27 2004 Karsten Hopp <karsten@redhat.de> 1.6.7p5-15
- visudo requires vim-minimal or setting EDITOR to something useful (#68605)
-
Mon Jan 26 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-14
- Fix is_selinux_enabled call
-
Tue Jan 13 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-13
- Clean up patch on failure
-
Tue Jan 06 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-12
- Remove sudo.te for now.
-
Fri Jan 02 2004 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-11
- Fix usage message
-
Mon Dec 22 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-10
- Clean up sudo.te to not blow up if pam.te not present
-
Thu Dec 18 2003 Thomas Woerner <twoerner@redhat.com>
- added missing BuildRequires for groff
-
Tue Dec 16 2003 Jeremy Katz <katzj@redhat.com> 1.6.7p5-9
- remove left-over debugging code
-
Tue Dec 16 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-8
- Fix terminal handling that caused Sudo to exit on non selinux machines.
-
Mon Dec 15 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-7
- Remove sudo_var_run_t which is now pam_var_run_t
-
Fri Dec 12 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-6
- Fix terminal handling and policy
-
Thu Dec 11 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-5
- Fix policy
-
Thu Nov 13 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-4.sel
- Turn on SELinux support
-
Tue Jul 29 2003 Dan Walsh <dwalsh@redhat.com> 1.6.7p5-3
- Add support for SELinux
-
Wed Jun 04 2003 Elliot Lee <sopwith@redhat.com>
- rebuilt
-
Mon May 19 2003 Thomas Woerner <twoerner@redhat.com> 1.6.7p5-1
* Wed Jan 22 2003 Tim Powers <timp@redhat.com>
- rebuilt
-
Tue Nov 12 2002 Nalin Dahyabhai <nalin@redhat.com> 1.6.6-2
- remove absolute path names from the PAM configuration, ensuring that the
right modules get used for whichever arch we're built for
- don't try to install the FAQ, which isn't there any more
-
Thu Jun 27 2002 Bill Nottingham <notting@redhat.com> 1.6.6-1
- update to 1.6.6
-
Fri Jun 21 2002 Tim Powers <timp@redhat.com>
- automated rebuild
-
Thu May 23 2002 Tim Powers <timp@redhat.com>
- automated rebuild
-
Thu Apr 18 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5p2-2
- Fix bug #63768
-
Thu Mar 14 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5p2-1
- 1.6.5p2
-
Fri Jan 18 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5p1-1
- 1.6.5p1
- Hope this "a new release per day" madness stops ;)
-
Thu Jan 17 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.5-1
- 1.6.5
-
Tue Jan 15 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.4p1-1
- 1.6.4p1
-
Mon Jan 14 2002 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.4-1
- Update to 1.6.4
-
Mon Jul 23 2001 Bernhard Rosenkraenzer <bero@redhat.com> 1.6.3p7-2
- Add build requirements (#49706)
- s/Copyright/License/
- bzip2 source
-
Sat Jun 16 2001 Than Ngo <than@redhat.com>
- update to 1.6.3p7
- use %{_tmppath}
-
Fri Feb 23 2001 Bernhard Rosenkraenzer <bero@redhat.com>
- 1.6.3p6, fixes buffer overrun
-
Tue Oct 10 2000 Bernhard Rosenkraenzer <bero@redhat.com>
- 1.6.3p5
-
Wed Jul 12 2000 Prospector <bugzilla@redhat.com>
- automatic rebuild
-
Tue Jun 06 2000 Karsten Hopp <karsten@redhat.de>
- fixed owner of sudo and visudo
-
Thu Jun 01 2000 Nalin Dahyabhai <nalin@redhat.com>
- modify PAM setup to use system-auth
- clean up buildrooting by using the makeinstall macro
-
Tue Apr 11 2000 Bernhard Rosenkraenzer <bero@redhat.com>
- initial build in main distrib
- update to 1.6.3
- deal with compressed man pages
-
Tue Dec 14 1999 Preston Brown <pbrown@redhat.com>
- updated to 1.6.1 for Powertools 6.2
- config files are now noreplace.
-
Thu Jul 22 1999 Tim Powers <timp@redhat.com>
- updated to 1.5.9p2 for Powertools 6.1
-
Wed May 12 1999 Bill Nottingham <notting@redhat.com>
- sudo is configured with pam. There's no pam.d file. Oops.
-
Mon Apr 26 1999 Preston Brown <pbrown@redhat.com>
- upgraded to 1.59p1 for powertools 6.0
-
Tue Oct 27 1998 Preston Brown <pbrown@redhat.com>
- fixed so it doesn't find /usr/bin/vi first, but instead /bin/vi (always installed)
-
Thu Oct 08 1998 Michael Maher <mike@redhat.com>
- built package for 5.2
-
Mon May 18 1998 Michael Maher <mike@redhat.com>
- updated SPEC file
-
Thu Jan 29 1998 Otto Hammersmith <otto@redhat.com>
- updated to 1.5.4
-
Tue Nov 18 1997 Otto Hammersmith <otto@redhat.com>
- built for glibc, no problems
-
Fri Apr 25 1997 Michael Fulbright <msf@redhat.com>
- Fixed for 4.2 PowerTools
- Still need to be pamified
- Still need to move stmp file to /var/log
-
Mon Feb 17 1997 Michael Fulbright <msf@redhat.com>
- First version for PowerCD.