]> git.ipfire.org Git - ipfire-2.x.git/commit
projects / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 80b5bcd) | patch
sudo: Update to version 1.9.17p1
authorAdolf Belka <adolf.belka@ipfire.org>
Wed, 2 Jul 2025 11:00:55 +0000 (13:00 +0200)
committerArne Fitzenreiter <arne_f@ipfire.org>
Thu, 3 Jul 2025 06:46:23 +0000 (08:46 +0200)
commit1f28c8ad6e575c5663f3a4577d24b34a34670c88
tree791330ca599333693e0bc84febdc0afd428e5234tree | snapshot
parent80b5bcd5ed1c3dbad515e0835806999cdbe71e61commit | diff
sudo: Update to version 1.9.17p1

- Update from version 1.9.17 to 1.9.17p1
- Update of rootfile not required
- Changelog
    1.9.17p1
 * Fixed CVE-2025-32462.  Sudo's -h (--host) option could be specified
   when running a command or editing a file.  This could enable a
   local privilege escalation attack if the sudoers file allows the
   user to run commands on a different host.
 * Fixed CVE-2025-32463.  An attacker can leverage sudo's -R
   (--chroot) option to run arbitrary commands as root, even if
   they are not listed in the sudoers file.  The chroot support has
   been deprecated an will be removed entirely in a future release.

Signed-off-by: Adolf Belka <adolf.belka@ipfire.org>
Signed-off-by: Arne Fitzenreiter <arne_f@ipfire.org>
lfs/sudo diff | blob | blame | history
IPFire 2.x development tree