summaryrefslogtreecommitdiffstats
path: root/meta/recipes-extended/sudo/sudo_1.9.17p1.bb
Commit message (Collapse)AuthorAgeFilesLines
* sudo: upgrade 1.9.17p1 -> 1.9.17p2Wang Mingyu2025-09-111-61/+0
| | | | | | | | (From OE-Core rev: 12e9ba655153a9cb7c2b79cf52a2300e19634dcf) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* sudo: upgrade 1.9.17 -> 1.9.17p1Praveen Kumar2025-07-101-0/+61
Changelog: =========== * Fixed CVE-2025-32462. Sudo's -h (--host) option could be specified when running a command or editing a file. This could enable a local privilege escalation attack if the sudoers file allows the user to run commands on a different host. * Fixed CVE-2025-32463. An attacker can leverage sudo's -R (--chroot) option to run arbitrary commands as root, even if they are not listed in the sudoers file. The chroot support has been deprecated an will be removed entirely in a future release. (From OE-Core rev: 4ac42eefe6c1b5895a3334d7f90004fdc8a3267f) Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2026-04-22 04:00:07 +0000