projects / pkgsrc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a8883af) | patch
Pullup ticket 158 - requested by Quentin Garnier
authorsalo <salo>
Sat, 27 Nov 2004 16:43:19 +0000 (16:43 +0000)
committersalo <salo>
Sat, 27 Nov 2004 16:43:19 +0000 (16:43 +0000)
commitee385e3fc6548470c69bb765d575ad6f53bd001f
tree61901052050209be3a6dffe6ea28915b340f1b24tree | snapshot
parenta8883af7c787a6e29bd78ea0cbe9fdc67b418ae2commit | diff
Pullup ticket 158 - requested by Quentin Garnier
security fix for sudo

        Module Name: pkgsrc
        Committed By: cube
        Date: Fri Nov 26 16:23:57 UTC 2004

        Modified Files:
         pkgsrc/security/sudo: Makefile distinfo

        Log Message:
        sudo is nominated for crapware of the year.  Now at version 1.6.8pl4!

        Just as for pl2, changes are about environment sanitizing, meaning
        there are possible security issues with current versions.

        Changes:

        550) The CDPATH variable is now stripped from the environment passed
             to the program to be executed.
        551) Fix temp file generation on systems where the _PATH_VARTMP macro
             lacks a trailing slash.
        552) The KRB5CCNAME environment variable is preserved during sudo
             execution for password lookups that use GSSAPI.
security/sudo/Makefile diff | blob | blame | history
security/sudo/distinfo diff | blob | blame | history
DragonFly Project mirror of NetBSD pkgsrc GIT Source Repo