sudo: upgrade 1.9.17 -> 1.9.17p1 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Praveen Kumar <praveen.kumar@windriver.com>	2025-07-09 11:36:34 +0530
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2025-07-10 10:47:31 +0100
commit	8f27a8f156265d6b89eb4d77ebedf776681899b2 (patch)
tree	8f207d37d8ddd7fbc965179419a731cd0720daed /documentation/sdk-manual/using.rst
parent	b92f52ef2737e7cc9a0f56b5d7de6f413e134823 (diff)
download	poky-8f27a8f156265d6b89eb4d77ebedf776681899b2.tar.gz

sudo: upgrade 1.9.17 -> 1.9.17p1

Changelog: =========== * Fixed CVE-2025-32462. Sudo's -h (--host) option could be specified when running a command or editing a file. This could enable a local privilege escalation attack if the sudoers file allows the user to run commands on a different host. * Fixed CVE-2025-32463. An attacker can leverage sudo's -R (--chroot) option to run arbitrary commands as root, even if they are not listed in the sudoers file. The chroot support has been deprecated an will be removed entirely in a future release. (From OE-Core rev: 4ac42eefe6c1b5895a3334d7f90004fdc8a3267f) Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'documentation/sdk-manual/using.rst')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: