From mboxrd@z Thu Jan 1 00:00:00 1970 Delivery-date: Wed, 02 Jul 2025 15:49:53 +0200 Received: from metis.whiteo.stw.pengutronix.de ([2a0a:edc0:2:b01:1d::104]) by lore.white.stw.pengutronix.de with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96) (envelope-from ) id 1uWxqS-00DJfH-3A for lore@lore.pengutronix.de; Wed, 02 Jul 2025 15:49:52 +0200 Received: from localhost ([127.0.0.1] helo=metis.whiteo.stw.pengutronix.de) by metis.whiteo.stw.pengutronix.de with esmtp (Exim 4.92) (envelope-from ) id 1uWxqS-0007s5-PZ; Wed, 02 Jul 2025 15:49:52 +0200 Received: from mail-ej1-x62a.google.com ([2a00:1450:4864:20::62a]) by metis.whiteo.stw.pengutronix.de with esmtps (TLS1.3:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.92) (envelope-from ) id 1uWxqE-0007rM-KG for ptxdist@pengutronix.de; Wed, 02 Jul 2025 15:49:38 +0200 Received: by mail-ej1-x62a.google.com with SMTP id a640c23a62f3a-ae0c4945c76so648013666b.3 for ; Wed, 02 Jul 2025 06:49:38 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1751464178; x=1752068978; darn=pengutronix.de; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:from:to:cc:subject:date:message-id:reply-to; bh=kQySBob3tLuRjt/ELUoIwLqOatbAheduDOHM3aqhsAQ=; b=hAal8YSBys3fJdS9lVwpaHVUNfMoS+jZIlEAXytiG1TfR/59PWlIsIw7jHoM0R6dKC dW2BBT3zpyif3v+vOzEJCFveTE/qdunZS4+dOm97QBbupDpqjwNb43wyMR0U0iA2HVKS eBIFU1YbK6SAOVGHWEFPRB9Q8mMWduZWwp/VAy13a15gkm+T+9tB3IBDN4moi/0T5X2L qQRKk2MkO0Ay7sFEYpnpVWHYaT6hGSx5xDYgNA3boLdw3SnMx/7luHaLcXS0dfksezNJ XDKd2UKe1frfT+or8+wqSFYHRMgnbWuP3O+s37YNgDkX5R+Ml8f72BhdcCCJ1F29R9JR 08gQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1751464178; x=1752068978; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=kQySBob3tLuRjt/ELUoIwLqOatbAheduDOHM3aqhsAQ=; b=It6lySfEW94ChSajaIe+jvVge5+NZFn3T318OS48KUx9JehpN1wJP7eUAaTwv7q/xJ 7XU/TCvAUeHLB5w7qLP9QcZXI2VrPOLbiVdavseQiMZBzf7N23hSDBl+KDnWdnklbRcw bkL7+zqI1CRP7QKW+Fo21IEKe4nBAQ7b6R/AZX8Jhj44TvuApMW5C/i40GxZlr58QdBO 6zIdbqJGl6sGMCPexZ0opCunjkrWuEo+tYQRwqk8uTCNG2T/h+FQIYNwSPzf9Wb3WYvE GHDoyrtsMJKcKfVcKJXw85rJCLJJHQh6kLHkfeSGBXPgWSLHHTBQm75I9dzSOlrEptd1 PGYA== X-Gm-Message-State: AOJu0Yx2cWMQ+zd/goZZ24z6YXEjhQkOReAOl6zxA1qzPr4mkww0jg3O 1aNV/7a8mB3CnWszzhmld6GJHLP0poTbL5uQRcxx9y7Vju62fp39UEv1//LxGA== X-Gm-Gg: ASbGncszlpxYnPQDDuqmTMFYmJCLXHMh/MWWmpFDtUtvw9QGprYypgZnKmS6Ol3nTeB pT+QshYGsN975MbbTftfirwa/34XomjvRTJd0i5G5a1YEUuWrTzUiKEeyouque2jSIGocWPcETW mbCnz+AEzd4xeZKYaPaIGKD3vRqPRUU6EcWygjAamJyjf9vnm3oG9wF0NevOA7RQm4KSsGl9RPF m+5EMa2lJufFytT0fe4MbKqRyu04qc394RFzqO0W0g7hHfN3hcifkh9gWQIBpYlXC4mwTCRU7gN wpgoWEQYkgOU2jcRUalreer3roYjM0DOrEZ+poNzMjMbvREAgXWqPYVoNSkVznXIPXXuzc6+KOM 8WK8EGwMrfzuu3PUy6jAtp9X4UnXPVk7gE+KOpkBV9H2b1K4Kf4rNQQ== X-Google-Smtp-Source: AGHT+IHxSUZC22Je4EbYtynikf6P0Ml+8sKerkOlX2hKqXxIywRtHe649zHbf2HTNj/nKM4OTOkWYA== X-Received: by 2002:a17:907:2d09:b0:ae0:d1f3:f7f4 with SMTP id a640c23a62f3a-ae3c2a963d8mr353346666b.13.1751464177396; Wed, 02 Jul 2025 06:49:37 -0700 (PDT) Received: from fedora.tux.internal (85.191.78.244.dynamic.dhcp.aura-net.dk. [85.191.78.244]) by smtp.gmail.com with ESMTPSA id a640c23a62f3a-ae353c6bb85sm1059372366b.126.2025.07.02.06.49.36 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 02 Jul 2025 06:49:36 -0700 (PDT) From: Bruno Thomsen To: ptxdist@pengutronix.de Date: Wed, 2 Jul 2025 15:49:33 +0200 Message-ID: <20250702134933.6035-1-bruno.thomsen@gmail.com> X-Mailer: git-send-email 2.50.0 MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on metis.whiteo.stw.pengutronix.de X-Spam-Level: X-Spam-Status: No, score=-2.1 required=4.0 tests=AWL,BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,FREEMAIL_FROM, RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS autolearn=ham autolearn_force=no version=3.4.2 Subject: [ptxdist] [PATCH v2] sudo: version bump 1.9.15p5 -> 1.9.17p1 X-BeenThere: ptxdist@pengutronix.de X-Mailman-Version: 2.1.29 Precedence: list List-Id: PTXdist Development Mailing List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: ptxdist@pengutronix.de Cc: bruno.thomsen@gmail.com Sender: "ptxdist" X-SA-Exim-Connect-IP: 127.0.0.1 X-SA-Exim-Mail-From: ptxdist-bounces@pengutronix.de X-SA-Exim-Scanned: No (on metis.whiteo.stw.pengutronix.de); SAEximRunCond expanded to false Sudo insults are now included by default, but disabled unless the --with-insults configure option is specified or the insults sudoers option is enabled. Fixes CVE-2025-32462 and CVE-2025-32463. Copyright year update in license file. Changelog: https://www.sudo.ws/releases/stable/#1.9.17p1 Signed-off-by: Bruno Thomsen --- v1-v2: License file contain update to years. rules/sudo.make | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/rules/sudo.make b/rules/sudo.make index 83c3e7f8e..94234a3f4 100644 --- a/rules/sudo.make +++ b/rules/sudo.make @@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_SUDO) += sudo # # Paths and names # -SUDO_VERSION := 1.9.15p5 -SUDO_MD5 := 4166279cb188ecb6641c7a2ba5f68270 +SUDO_VERSION := 1.9.17p1 +SUDO_MD5 := 231106344ffe541fa8e0bd4caf322497 SUDO := sudo-$(SUDO_VERSION) SUDO_SUFFIX := tar.gz SUDO_URL := \ @@ -25,7 +25,7 @@ SUDO_URL := \ SUDO_SOURCE := $(SRCDIR)/$(SUDO).$(SUDO_SUFFIX) SUDO_DIR := $(BUILDDIR)/$(SUDO) SUDO_LICENSE := ISC AND BSD-3-Clause AND BSD-2-Clause-NetBSD AND Zlib -SUDO_LICENSE_FILES := file://LICENSE.md;md5=5100e20d35f9015f9eef6bdb27ba194f +SUDO_LICENSE_FILES := file://LICENSE.md;md5=2841c822e587db145364ca95e9be2ffa # ---------------------------------------------------------------------------- # Prepare @@ -73,7 +73,6 @@ SUDO_CONF_OPT := \ --disable-tmpfiles.d \ --disable-devsearch \ --disable-sasl \ - --disable-offensive-insults \ --disable-package-build \ --disable-gss-krb5-ccache-name \ --disable-pvs-studio \ -- 2.50.0