[ol7_optional_archive] sudo-devel-1.8.6p7-23.el7_3.x86_64

The sudo-devel package contains header files developing sudo
plugins that use sudo.

Changelog (Show File list) (Show related packages)

• Wed Jun 07 2017 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p7-23

  - Fixes CVE-2017-1000367
    Resolves: rhbz#1459410

• Mon May 29 2017 Radovan Sroka <rsroka@redhat.com> - 1.8.6p7-22

  - Fixes CVE-2017-1000367 sudo: Privilege escalation in via improper get_process_ttyname() parsing [rhel-7.3.z]
    Resolves: rhbz#1455401

• Wed Nov 23 2016 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p7-21

  - Update noexec syscall blacklist
  - Fixes CVE-2016-7032 and CVE-2016-7076
    Resolves: rhbz#1391939

• Tue Jul 19 2016 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p7-20

  - RHEL 7.3 erratum
    - fixed visudo's -q flag
    Resolves: rhbz#1350828

• Tue Jun 14 2016 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p7-19

  - RHEL 7.3 erratum
    - removed INPUTRC from env_keep to prevent a potential info leak
    Resolves: rhbz#1340700

• Wed May 11 2016 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p7-18

  - RHEL 7.3 erratum
    - removed requiretty flag from the default sudoers policy
    - backported pam_service and pam_login_service defaults options
    - implemented netgroup_tuple defaults option for changing netgroup
      processing semantics
    - fixed user matching logic in the LDAP nss backend
    - don't allow visudo to accept an invalid sudoers file
    - fixed a bug causing that non-root users can list privileges of
      other users
    - modified digest check documentation to mention the raciness of
      the checking mechanism
    Resolves: rhbz#1196451
    Resolves: rhbz#1247230
    Resolves: rhbz#1334331
    Resolves: rhbz#1334360
    Resolves: rhbz#1261998
    Resolves: rhbz#1313364
    Resolves: rhbz#1312486
    Resolves: rhbz#1268958
    Resolves: rhbz#1335039
    Resolves: rhbz#1335042
    Resolves: rhbz#1335045
    Resolves: rhbz#1273243
    Resolves: rhbz#1299883

• Mon Feb 15 2016 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p7-17

  - fixed bug in closefrom_override defaults option
    Resolves: rhbz#1297062

• Tue Sep 01 2015 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p7-16

  - RHEL 7.2 erratum
    - show the digest type in warning messages
    Resolves: rhbz#1183818

• Tue Sep 01 2015 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p7-15

  - RHEL 7.2 erratum
    - fixed compilation of testing binaries during make check
    - added legacy group processing patch
    - replaced buggy base64 decoder with a public domain implementation
    Resolves: rhbz#1254621
    Resolves: rhbz#1183818
    Resolves: rhbz#1247591

• Tue Jul 07 2015 Daniel Kopecek <dkopecek@redhat.com> - 1.8.6p7-14

  - RHEL 7.2 erratum
    - backported command digest specification
    - fixed CVE-2014-9680 sudo: unsafe handling of TZ environment variable
    - fixed typos in sudoers.ldap man page
    - fixed handling of double-quoted sudoOption values in ldap, sssd sources
    - fixed numeric uid specification support in ldap source
    - fixed authentication flag logic in ldap source
    - added the systemctl command to the SERVICES alias in the default sudoers file
    Resolves: rhbz#1144446
    Resolves: rhbz#1235570
    Resolves: rhbz#1138259
    Resolves: rhbz#1183818
    Resolves: rhbz#1233607
    Resolves: rhbz#1144419
    Resolves: rhbz#1135539
    Resolves: rhbz#1215400