Josef Schlehofer
bee91a9d88
sudo: backport patches for CVE-2021-3156
...
This security vulnerability is known as Baron Samedit [1] and there is a
research by Qualys [2] and they discovered it. Unfortunately or
fortunately, there isn't present sudoedit on OpenWrt.
Two patches were applied cleanly and the other two required manual
intervention. Those were backported from version 1.9.5p2
[1] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3156
[2] https://blog.qualys.com/vulnerabilities-research/2021/01/26/cve-2021-3156-heap-based-buffer-overflow-in-sudo-baron-samedit
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
2021-01-28 10:09:00 -10:00
Josef Schlehofer
1c04ac8ece
sudo: Update to version 1.8.28p1
...
- Refreshed patches
- Remove inactive maintainer
Fixes: CVE-2019-14287
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
(cherry-picked from commit 35b215dfff
2019-10-19 23:04:48 +02:00
Josef Schlehofer
633bdf8009
sudo: update to version 1.8.27
...
Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
2019-03-25 01:11:55 +01:00
Rosen Penev
892153cd91
sudo: Update to 1.8.26
...
Signed-off-by: Rosen Penev <rosenp@gmail.com>
2018-11-26 21:02:10 -08:00
Rosen Penev
afcddb0287
sudo: Update to 1.8.25p1
...
Signed-off-by: Rosen Penev <rosenp@gmail.com>
2018-10-20 14:54:08 -07:00
Rosen Penev
8ce9f30c42
sudo: Update to 1.8.24
...
Changed URLs to HTTPS
Rearranged Makefile for consistency.
Added PKG_BUILD_PARALLEL for faster compilation.
Added PKG_CPE_ID for CVE tracking.
Signed-off-by: Rosen Penev <rosenp@gmail.com>
2018-08-19 14:21:33 -07:00
Gergely Kiss
ddc8b334d0
sudo: update to 1.8.21p2
...
Signed-off-by: Gergely Kiss <mail.gery@gmail.com>
2017-10-17 00:56:29 +02:00
Etienne Champetier
4006865ae8
treewide: run "make check FIXUP=1"
...
fix Makefile chmod (644)
replace MD5SUM with HASH
add PKG_MIRROR_HASH when PKG_SOURCE_PROTO:=git
(PKG_SOURCE_PROTO:=svn tarballs are not reproducible for now)
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
2017-08-29 21:41:14 -07:00
Matthias Schiffer
4a984a8d60
treewide: replace $(STAGING_DIR)/host and $(HOST_BUILD_PREFIX) with $(STAGING_DIR_HOSTPKG)
...
As both LEDE and OpenWrt have STAGING_DIR_HOSTPKG now, we can start to rely
on it. See 73b7f55424
2017-01-10 18:25:54 +01:00
Matthias Schiffer
5ea3543680
sudo: use default host install prefix
...
Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
2016-10-04 00:41:44 +02:00
Felix Fietkau
9f8e5aca34
treewide: use $(STAGING_DIR)/host instead of $(STAGING_DIR_HOST), sync with changes in trunk
...
Signed-off-by: Felix Fietkau <nbd@openwrt.org>
2016-01-20 21:56:03 +01:00
Gergely Kiss
5ea128e62d
sudo: upgrade to version 1.8.14p3
...
Signed-off-by: Gergely Kiss <mail.gery@gmail.com>
2015-08-30 19:00:08 +02:00
Alexander Tsoy
5c8fe00d61
sudo: preserve sudoers.d during sysupgrade
...
Signed-off-by: Alexander Tsoy <alexander@tsoy.me>
2015-07-01 19:26:30 +03:00
Gergely Kiss
62c97cd90c
sudo: updated to 1.8.13
...
Signed-off-by: Gergely Kiss <mail.gery@gmail.com>
2015-03-23 21:11:15 +01:00
Gergely Kiss
5b8a84b350
sudo: update to version 1.8.12
...
Signed-off-by: Gergely Kiss <mail.gery@gmail.com>
2015-02-14 22:33:46 +01:00
Julen Landa Alustiza
912744785b
sudo: use hardcoded /var/lib instead of getting from compiling host Signed-off-by: Julen Landa Alustiza <julen@zokormazo.info>
2014-12-17 14:45:07 +01:00
Gergely Kiss
983d20ee86
sudo: imported from oldpackages repo, updated to version 1.8.11p2
...
Signed-off-by: Gergely Kiss <mail.gery@gmail.com>
Tested-by: Gergely Kiss <mail.gery@gmail.com>
2014-12-16 08:39:13 +01:00
