[sudo-commits] sudo changeset 10295:c2e36a80a279
Todd C. Miller
Todd.Miller at courtesan.com
Mon Jan 11 09:40:21 MST 2016
changeset: 10295:c2e36a80a279 in /media/repos/sudo
details: https://www.sudo.ws/repos/sudo/rev/c2e36a80a279
user: Todd C. Miller <Todd.Miller at courtesan.com>
date: Sun Jan 10 18:31:29 2016 -0700
Log Message:
Rewritten sudoedit_checkdir support that checks all the dirs in the
path and refuses to follow symlinks in writable directories.
This is a better fix for CVE-2015-5602.
Adapted from a diff by Ben Hutchings. Bug #707
diffstat:
doc/CONTRIBUTORS | 1 +
doc/UPGRADE | 9 ++
doc/sudoers.cat | 17 ++-
doc/sudoers.man.in | 16 ++-
doc/sudoers.mdoc.in | 16 ++-
include/sudo_compat.h | 2 +
src/sudo_edit.c | 196 ++++++++++++++++++++++++++++++++++++-------------
7 files changed, 186 insertions(+), 71 deletions(-)
More information about the sudo-commits
mailing list