[sudo-users] sudo v1.7.1 runas group allows runas any user
Blazejewski Marcin-AMB107
marcin.blazejewski at motorola.com
Mon May 11 04:39:30 EDT 2009
>
> This is a bug that was introduced in sudo 1.7.1. The following diff
> fixes it.
>
Thanks for quick response, but the patch still doesn't fix the problem.
I've looked at the code and I've come up with the diff below. It seems
to work, but its the first time I'm working with sudo code, so I'm not
sure if that's the right way to solve it.
Regards,
Marcin
--- match.c 2009-05-11 10:30:48.000000000 +0200
+++ /lab/sudo-1.7.1/match.c 2009-05-11 10:21:41.000000000 +0200
@@ -211,6 +211,7 @@
if (matched != UNSPEC)
break;
}
+ if (matched != ALLOW) return matched;
}
if (runas_gr != NULL) {
More information about the sudo-users
mailing list