[sudo-workers] sudo 1.8.13rc2 released

Todd C. Miller Todd.Miller at courtesan.com
Tue Mar 17 16:32:27 MDT 2015

Hash: SHA1

The second release candidate of sudo 1.8.13 is now available.  Unless
a major issue is found, sudo 1.8.13 will be released at the end of
the week.

Sudo 1.8.13 is primarily a bug fix release.  The most notable new
feature is support for fine-grained control over whether mail will
be sent when a user runs a specific command.


SHA256 checksum:
MD5 checksum:

Binary packages:

For a list of download mirror sites, see:

Sudo web site:

Sudo web site mirrors:

Major changes between sudo 1.8.13rc2 and 1.8.13rc1:

 * For sudoedit, run the editor with the user's original environment
   as per the documentation (and as in sudo 1.7.x).  Bug #688

 * Updated translations from translationproject.org.

Major changes between sudo 1.8.13rc1 and 1.8.13b4:

 * Fixed a compilation problem with sha2.c on some platforms.

 * Updated translations from translationproject.org.

Major changes between sudo 1.8.13b4 and 1.8.13b3:

 * Fixed a symbol name collision with systems that have their own
   sha2 implementation.  This fixes a problem where PAM could use
   the wrong sha2 implementation on Solaris systems configured to
   use SHA512 for passwords.

 * Updated translations from translationproject.org.

 * Added --disable-weak-symbols configure option to disable the use
   of weak symbols in libsudo_util.

Major changes between sudo 1.8.13b3 and 1.8.13b2:

 * Fixed a typo that prevented the SIGPIPE handler from being
   restored before returning from tgetpass().

 * Fixed the logic for verifypw/listpw all in sudoers LDAP and sssd.

 * Sudo now uses futimens() and utimensat() instead of futimes()
   and utimes().

Major changes between sudo 1.8.13b2 and 1.8.13b1:

 * Updated sudo's snprintf() replacement for C99.

 * On AIX, the value of auth_type in /etc/security/login.cfg is
   used to determine whether to use LAM or PAM unless either the
   --with-pam or --with-aixauth configure flags were specified.

 * Fixed a "PAM conversation error" message on AIX when the user
   presses ^C at the Password: prompt.

 * Sudo now checks the return value of the clock_gettime() function
   and falls back to gettimeofday() if the former fails.

Major changes between sudo 1.8.13b1 and 1.8.12:

 * The examples directory is now a subdirectory of the doc dir to
   conform to Debian guidelines.  Bug #682.

 * Fixed a compilation error for siglist.c and signame.c on some
   systems.  Bug #686

 * Weak symbols are now used for sudo_warn_gettext() and
   sudo_warn_strerror() in libsudo_util to avoid link errors
   when -Wl,--no-undefined is used in LDFLAGS.

 * Fixed a bug in sudo's mkstemps() replacement function that
   prevented the file extension from being preserved in sudoedit.

 * A new mail_all_cmnds sudoers flag will send mail when a user runs
   a command (or tries to). The behavior of the mail_always flag has
   been restored to always send mail when sudo is run.

 * New "MAIL" and "NOMAIL" command tags have been added to toggle
   mail sending behavior on a per-command (or Cmnd_Alias) basis.

 * Fixed matching of empty passwords when sudo is configured to
   use passwd (or shadow) file authentication on systems where the
   crypt() function returns NULL for invalid salts.
Version: GnuPG v1


More information about the sudo-workers mailing list