[sudo-commits] sudo changeset 13918:1b5f9ed2160a

Todd C. Miller Todd.Miller at sudo.ws
Mon May 2 20:02:28 MDT 2022


changeset:	13918:1b5f9ed2160a in /raid/repos/sudo
details:	https://www.sudo.ws/repos/sudo/rev/1b5f9ed2160a
user:		Todd C. Miller <Todd.Miller at sudo.ws>
date:		Mon May 02 18:14:30 2022 -0600

Log Message:
	Move intercept setid check out of do_stat() and into its own function.
	For command_matches_all() we should only perform the setid check
	if the file exists and intercept is enabled.  Otherwise, we can end
	up returning an error if the fully-qualified command does not exist.
	Fixes a regression introduced in sudo 1.9.0 with the support for
	digests in conjunction with "sudo ALL".

diffstat:

 plugins/sudoers/match_command.c |  65 ++++++++++++++++++++++++++++++----------
 1 files changed, 48 insertions(+), 17 deletions(-)



More information about the sudo-commits mailing list