From mboxrd@z Thu Jan 1 00:00:00 1970 Delivery-date: Sat, 05 Jul 2025 10:23:04 +0200 Received: from metis.whiteo.stw.pengutronix.de ([2a0a:edc0:2:b01:1d::104]) by lore.white.stw.pengutronix.de with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96) (envelope-from ) id 1uXyAq-00EGom-08 for lore@lore.pengutronix.de; Sat, 05 Jul 2025 10:23:04 +0200 Received: from localhost ([127.0.0.1] helo=metis.whiteo.stw.pengutronix.de) by metis.whiteo.stw.pengutronix.de with esmtp (Exim 4.92) (envelope-from ) id 1uXyAp-0005e9-Me; Sat, 05 Jul 2025 10:23:03 +0200 Received: from drehscheibe.grey.stw.pengutronix.de ([2a0a:edc0:0:c01:1d::a2]) by metis.whiteo.stw.pengutronix.de with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1uXyAD-0003hi-E5; Sat, 05 Jul 2025 10:22:25 +0200 Received: from dude05.red.stw.pengutronix.de ([2a0a:edc0:0:1101:1d::54]) by drehscheibe.grey.stw.pengutronix.de with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96) (envelope-from ) id 1uXyAD-006tl7-0m; Sat, 05 Jul 2025 10:22:25 +0200 Received: from mol by dude05.red.stw.pengutronix.de with local (Exim 4.96) (envelope-from ) id 1uXyAD-006Jtv-0c; Sat, 05 Jul 2025 10:22:25 +0200 From: Michael Olbrich To: ptxdist@pengutronix.de Date: Sat, 5 Jul 2025 10:22:25 +0200 Message-Id: <20250705082225.1506460-1-m.olbrich@pengutronix.de> X-Mailer: git-send-email 2.39.5 In-Reply-To: <20250702134933.6035-1-bruno.thomsen@gmail.com> References: <20250702134933.6035-1-bruno.thomsen@gmail.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Subject: Re: [ptxdist] [APPLIED] sudo: version bump 1.9.15p5 -> 1.9.17p1 X-BeenThere: ptxdist@pengutronix.de X-Mailman-Version: 2.1.29 Precedence: list List-Id: PTXdist Development Mailing List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: ptxdist@pengutronix.de Cc: Bruno Thomsen Sender: "ptxdist" X-SA-Exim-Connect-IP: 127.0.0.1 X-SA-Exim-Mail-From: ptxdist-bounces@pengutronix.de X-SA-Exim-Scanned: No (on metis.whiteo.stw.pengutronix.de); SAEximRunCond expanded to false Thanks, applied as 01e18e5b0683708b25e6a9b126d805d868e3c7a9. Michael [sent from post-receive hook] On Sat, 05 Jul 2025 10:22:25 +0200, Bruno Thomsen wrote: > Sudo insults are now included by default, but disabled unless > the --with-insults configure option is specified or the insults > sudoers option is enabled. > > Fixes CVE-2025-32462 and CVE-2025-32463. > > Copyright year update in license file. > > Changelog: https://www.sudo.ws/releases/stable/#1.9.17p1 > > Signed-off-by: Bruno Thomsen > Message-Id: <20250702134933.6035-1-bruno.thomsen@gmail.com> > Signed-off-by: Michael Olbrich > > diff --git a/rules/sudo.make b/rules/sudo.make > index 83c3e7f8e89b..94234a3f4ede 100644 > --- a/rules/sudo.make > +++ b/rules/sudo.make > @@ -15,8 +15,8 @@ PACKAGES-$(PTXCONF_SUDO) += sudo > # > # Paths and names > # > -SUDO_VERSION := 1.9.15p5 > -SUDO_MD5 := 4166279cb188ecb6641c7a2ba5f68270 > +SUDO_VERSION := 1.9.17p1 > +SUDO_MD5 := 231106344ffe541fa8e0bd4caf322497 > SUDO := sudo-$(SUDO_VERSION) > SUDO_SUFFIX := tar.gz > SUDO_URL := \ > @@ -25,7 +25,7 @@ SUDO_URL := \ > SUDO_SOURCE := $(SRCDIR)/$(SUDO).$(SUDO_SUFFIX) > SUDO_DIR := $(BUILDDIR)/$(SUDO) > SUDO_LICENSE := ISC AND BSD-3-Clause AND BSD-2-Clause-NetBSD AND Zlib > -SUDO_LICENSE_FILES := file://LICENSE.md;md5=5100e20d35f9015f9eef6bdb27ba194f > +SUDO_LICENSE_FILES := file://LICENSE.md;md5=2841c822e587db145364ca95e9be2ffa > > # ---------------------------------------------------------------------------- > # Prepare > @@ -73,7 +73,6 @@ SUDO_CONF_OPT := \ > --disable-tmpfiles.d \ > --disable-devsearch \ > --disable-sasl \ > - --disable-offensive-insults \ > --disable-package-build \ > --disable-gss-krb5-ccache-name \ > --disable-pvs-studio \