Change log : sudo package : Debian

1.9.15p5-3

Published in sid-release on 2024-01-27

sudo (1.9.15p5-3) unstable; urgency=medium

  * add --with-devel configure option.
    Thanks to Bastien Roucariès (Closes: #1061272)

 -- Marc Haber <email address hidden>  Fri, 26 Jan 2024 21:10:13 +0100

1.9.15p5-2

Superseded in sid-release on 2024-01-27

sudo (1.9.15p5-2) unstable; urgency=medium

  * switch Build-Depends from systemd to systemd-dev
    Thanks to Michael Biebl (Closes: #1060511)
  * set Multi-Arch: foreign on sudo and sudo-ldap.
    Thanks to Andreas Rottmann (Closes: #1060445)
  * add debian/copyright clause for source_sudo.py.
    Oops.

 -- Marc Haber <email address hidden>  Sat, 13 Jan 2024 21:59:56 +0100

1.9.15p5-1

Superseded in sid-release on 2024-01-14

sudo (1.9.15p5-1) unstable; urgency=medium

  * new upstream version 1.9.15p5
    * This is supposed to properly malloc on hurd.
      Thanks to Martin-Éric Racine (Closes: #1057833)
  * add durch debconf translation.
    Thanks to Frans Spiesschaert (Closes: #1059567)

 -- Marc Haber <email address hidden>  Wed, 03 Jan 2024 21:40:38 +0100

1.9.15p4-2

Superseded in sid-release on 2024-01-04

sudo (1.9.15p4-2) unstable; urgency=medium

  * upload to unstable
  * use pkg-config to place systemd units.
    Thanks to Chris Hofstaedtler (Closes: #1059063)
  * Add french debconf translation.
    Thanks to bubu (Closes: #1058939)
  * fix typo in NEWS.Debian.
    Thanks to Vincent Danjean (Closes: #1058925)
  * add persian debconf translation.
    Thanks to Danial Behzadi
  * add spanish debconf translation.
    Thanks to Camaleón (Closes: #1059460)

 -- Marc Haber <email address hidden>  Wed, 27 Dec 2023 17:53:13 +0100

1.9.15p4-1

Deleted in experimental-release (Reason: None provided.)

sudo (1.9.15p4-1) experimental; urgency=medium

  * new upstream version 1.9.15p4
  * add de.po template translation.
    Thanks to Christoph Brinkhaus (Closes: #1058762)
  * Enable AppArmor (MR 15, manually apṕlied)
    Thanks to Will Shand
  * remove legacy debian/rules.predh7

 -- Marc Haber <email address hidden>  Fri, 15 Dec 2023 22:57:27 +0100

1.9.15p3-1

Superseded in sid-release on 2023-12-28

sudo (1.9.15p3-1) unstable; urgency=medium

  * new upstream version 1.9.15p3

 -- Marc Haber <email address hidden>  Thu, 14 Dec 2023 20:22:51 +0100

1.9.15p2-2

Superseded in sid-release on 2023-12-20

sudo (1.9.15p2-2) unstable; urgency=medium

  * upload to unstable

 -- Marc Haber <email address hidden>  Fri, 08 Dec 2023 18:31:14 +0100

1.9.15p2-1

Deleted in experimental-release (Reason: None provided.)

sudo (1.9.15p2-1) experimental; urgency=medium

  * the #DENOG15 release
  * New upstream version 1.9.15p2
  * mark sudo-ldap as deprecated.

 -- Marc Haber <email address hidden>  Mon, 20 Nov 2023 14:15:22 +0100

1.9.13p3-1+deb12u1

Published in bookworm-release on 2023-07-22

sudo (1.9.13p3-1+deb12u1) bookworm; urgency=medium

  * add upstream patch to fix event log format.
    Thanks to Kimmo Suominen (Closes: #1039557)

 -- Marc Haber <email address hidden>  Tue, 27 Jun 2023 13:45:00 +0200

1.9.14p2-1

Superseded in sid-release on 2023-12-13

sudo (1.9.14p2-1) unstable; urgency=medium

  * new upstream version

 -- Marc Haber <email address hidden>  Thu, 20 Jul 2023 00:31:52 +0200

1.9.13p3-3

Superseded in sid-release on 2023-07-21

sudo (1.9.13p3-3) unstable; urgency=medium

  * fix wrong patch to fix event log format
    (added wrongly in 1.9.13p3-2)

 -- Marc Haber <email address hidden>  Tue, 27 Jun 2023 11:43:07 +0200

1.9.5p2-3+deb11u1

Published in bullseye-release on 2023-04-29

sudo (1.9.5p2-3+deb11u1) bullseye-security; urgency=high

  * Non-maintainer upload by the Security Team.
  * sudoedit: do not permit editor arguments to include "--" (CVE-2023-22809)

 -- Salvatore Bonaccorso <email address hidden>  Sat, 14 Jan 2023 14:29:53 +0100

1.9.13p3-1

Superseded in bookworm-release on 2023-07-22

Superseded in sid-release on 2023-06-28

sudo (1.9.13p3-1) unstable; urgency=medium

  * new upstream version:
    * Fix potential double free for CHROOT= rules
      CVE-2023-27320. (Closes: #1032163)
    * Fix --enable-static-sudoers regression
    * check for overflow as result of fuzzing efforts
    * Fix parser regression disallowing rules for user "list"
    * Fix eventloop hang if there is /dev/tty data
    * Fix sudo -l command args regression
    * Fix sudo -l -U someuser regression
    * Fix list privs regression

 -- Marc Haber <email address hidden>  Wed, 08 Mar 2023 21:17:05 +0100

1.9.13p1-1

Superseded in sid-release on 2023-03-09

sudo (1.9.13p1-1) unstable; urgency=medium

  * new upstream version 1.9.13p1
    * remove unnecessary changelog creation patch
  * remove lsb-base from dependencies

 -- Marc Haber <email address hidden>  Sat, 18 Feb 2023 13:03:19 +0100

1.9.12p2-1

Superseded in sid-release on 2023-02-18

sudo (1.9.12p2-1) unstable; urgency=high

  * new upstream version 1.9.12p2
  * this fixes CVE-2023-22809:
    Sudoedit can edit arbitrary files

 -- Marc Haber <email address hidden>  Wed, 18 Jan 2023 16:19:23 +0100

1.9.12p1-1

Superseded in sid-release on 2023-01-19

sudo (1.9.12p1-1) unstable; urgency=low

  * new upstream version 1.9.12p1
  * update patches
  * update debian/copyright
  * Add upstream patch to silence libgcrypt error message.
    Thanks to Francesco P. Lovergine (Closes: #1019428)
  * Standards-Version: 4.6.2 (no changes necessary)
  * clean out obsolete lintian overrides
  * Add patch to disable regeneration of upstream ChangeLog from git.
    Thanks to Gioele Barabucci (Closes: #1025740)
  * remove extra whitespace from debconf-get-selections output.
  * add autopkgtest for sudo with sssd (Closes: #1004910)

  [ Niels Thykier ]
  * Support building sudo without (fake)root.

  [ Gioele Barabucci ]
  * Use dh_installnss to add ldap to sudoers NSS database
  * Add libnss-sudo package. (Closes: #1023524)

 -- Marc Haber <email address hidden>  Sun, 15 Jan 2023 13:58:48 +0100

1.9.11p3-2

Superseded in sid-release on 2023-01-17

sudo (1.9.11p3-2) unstable; urgency=medium

  * Add upstream patch to silence libgcrypt error message.
    Thanks to Francesco P. Lovergine (Closes: #1019428)
  * Standards-Version: 4.6.1 (no changes necessary)
  * clean out obsolete lintian overrides

 -- Marc Haber <email address hidden>  Mon, 10 Oct 2022 13:25:05 +0200

1.9.11p3-1

Superseded in sid-release on 2022-10-10

sudo (1.9.11p3-1) unstable; urgency=low

  * new upstream version 1.9.11p3

 -- Marc Haber <email address hidden>  Wed, 23 Mar 2022 10:50:16 +0100

1.9.10-3

Superseded in sid-release on 2022-08-17

sudo (1.9.10-3) unstable; urgency=medium

  * some changes to 03-getroot-ldap autopkgtest to find out
    about ppc64el failure

 -- Marc Haber <email address hidden>  Wed, 23 Mar 2022 10:38:39 +0100

1.9.10-2

Superseded in sid-release on 2022-03-23

sudo (1.9.10-2) unstable; urgency=medium

  * upload to unstable (fixed autopkgtest is needed to allow
    adduser to migrate)

 -- Marc Haber <email address hidden>  Mon, 21 Mar 2022 11:49:06 +0100

1.9.10-1

Deleted in experimental-release (Reason: None provided.)

sudo (1.9.10-1) experimental; urgency=medium

  * new upstream version
    * unverified upstream changelog
    * implement workaround if /proc/self/stat is invalid.
      (Closes: #940533)
    * Fix compilation problem on kFreeBSD. (Closes: #1004909)
      (different fix than the Debian patch, disable Debian patch)
    * get rid of e-mails "problem with defaults entries" in sss
      configurations. (Closes: #793660)
    * regular expression support for sudoers. (Closes: #945366)
    * handle /proc/self/fd in qemu.
    * Apply Upstream Patch to allow test suite with non-english LANG
      https://bugzilla.sudo.ws/show_bug.cgi?id=1025
    * Apply Upstream Patch to allow test suite with faketime
  * re-introduce MVPROG patch that got lost in dh migration.
    Thanks to Vagrant Cascadian (Closes: #976307)
  * revert back to directly shipping the mask symlink in the package.
    Thanks to Michael Biebl (Closes: #1004730)
  * adopt configure changes from Ubuntu
    --without-lecture --with-tty-tickets --enable-admin-flag (Closes: #1006273)
  * fix wrong handling of --with-systemd-tmpfiles.d
  * bring OPTIONS up to date.
  * have upstream install docs directly to correct directory
  * let debhelper handle the upstream changelog
  * remove LICENSE.md in both packages
  * autopkgtest: send deluser stderr to null in cleanup
  * Add cron to autopkgtest 03-getroot-ldap dependencies
  * improve lintian overrides

 -- Marc Haber <email address hidden>  Fri, 18 Mar 2022 14:31:30 +0100

1.9.9-1

Superseded in sid-release on 2022-03-21

sudo (1.9.9-1) unstable; urgency=medium

  * new upstream version
    * audit plugin now handles unresolvable hostname better
      Thanks to Sven Mueller (Closes: #1001969)
    * better document environment handling.
      Thanks to Arnout Engelen (Closes: #659101)
    * README files now come as markdown
    * schemas are now in docs subdirectory
    * LICENSE is now LICENSE.md

  [ Marc Haber ]
  * refresh patches
    * mark paths-in-samples.diff expicitly as not forwarded
  * have systemd-tmpfiles clean up /run/sudo on boot
  * lintian overrides:
    * improve 'em in various places
    * give better explanations
    * override long line warnings
    * override typo warning for a literal film quote
    * use correct lintian tag for override init script without unit
  * init script / systemd units
    * guarantee init script no-op on systemd systems
    * mask sysv init script on systemd systems in postinst
      instead of debian/rules
    * actually remove masking of service in postrm
  * maintainer scripts
    * document when .dist file removal was added to that
      it can be eventually removed
    * document when alternative removal was added to that
      it can be eventually removed
  * add a test to check for presence of #1003969
  * Standards-Version: 4.6.0 (no changes)
  * use uscan version 4
  * honor nocheck DEB_BUILD_OPTION

  [ Hilko Bengen ]
  * More improvement for Lintian overrides
  * Convert debian/copyright to machine-readable format, using
    information from upstream-provided LICENSE.md file

 -- Marc Haber <email address hidden>  Mon, 31 Jan 2022 20:19:55 +0100

1.9.8p2-1

Superseded in sid-release on 2022-02-01

sudo (1.9.8p2-1) unstable; urgency=medium

  * add more autopkgtests (especially for LDAP)
  * improve existing autopkgtests
  * debian/patches:
    * Remove typo-in-classic-insults.diff, reflectinc upstream's decision
      to not fix the typo as a way of remembering Evi Nemeth.
    * remove unneeded sudo-success_return. patch
    * mark debian/patches/sudo-ldap-docs as Forwarded: not-needed
    * add DEP3 headers
  * mention #1001858 in sudo.prerm
  * comment some lintian-overrides with unclear results

 -- Marc Haber <email address hidden>  Sat, 18 Dec 2021 14:55:08 +0100

1.9.8p2-1~exp1

Deleted in experimental-release (Reason: None provided.)

sudo (1.9.8p2-1~exp1) experimental; urgency=medium

  [ Marc Haber ]
  * new upstream version 1.9.8p2-1
    * this correctly handles double defined alases (Closes: #985412)
    * improve sudoers.ldap.manpage. Thanks to Dennis Filder and
      Eric Brun (Closes: #981190)
    * refresh patches
  * remove prompting for wrong sudo group id (Closes: #605576)
  * give better docs for LDAP success behavior.
    Thanks to Dennis Filder (Closes: 981190)
  * remove unneeded mandoc from Build-Depends.
    Thanks to Ingo Schwarze
  * Restore inclusion of pam_limits.so PAM module.
    Thanks to Salvatore Bonaccorso (Closes: 518464)
  * Use @includedir in sudoers.d/README (Closes: #993815)
  * Other improvements for sudoers.d/README.
    Thanks to Josh Triplett (Closes: #994962)
  * add some (simple) autopkgtests
  * better short description for sudo-ldap
  * use https in debian/watch
  * some changes to patch headers for Lintian
  * manually remove executable bit from shared libs
  * explicitly write set -e in maintainer scripts
  * debian/control: set Rules-Requires-Root: binary-targets
  * add first/trivial autopkgtests

  [ Hilko Bengen ]
  * Update lintian-overrides files
  * Remove group sudo / gid=27 check from postinst scripts

  [ Otto Kekäläinen ]
  * Add basic Salsa-CI for project quality assurance

 -- Marc Haber <email address hidden>  Sun, 12 Dec 2021 22:45:15 +0100

1.9.6-1~exp2

Superseded in experimental-release on 2021-12-13

sudo (1.9.6-1~exp2) experimental; urgency=low

  [ Marc Haber ]
  * add use_pty to default configuration, fixing CVE-2005-4890.
    Thanks to Daniel Kahn Gillmor (Closes: #657784)
  * Add group specific defaults for environment variables (commented out)
    Thanks to Josh Triplett
  * remove --disable-setresuid from sudo-ldap as well.
    Thanks to Dennis Filder (Closes: #985307)

  [ Hilko Bengen ]
  * Add PAM config for interactive login use (Closes: #690044)
  * Actually configure sudo to use pam / sudo-i

 -- Marc Haber <email address hidden>  Fri, 02 Apr 2021 18:15:21 +0200

1.9.6-1~exp1

Superseded in experimental-release on 2021-04-02

sudo (1.9.6-1~exp1) experimental; urgency=medium

  * new upstream version
  * add upstream signature
  * refresh patches
  * remove NO_ROOT_MAILER patch (incorporated upstream)

 -- Marc Haber <email address hidden>  Fri, 12 Mar 2021 22:06:59 +0100

1.9.5p2-3+exp1

Superseded in experimental-release on 2021-03-15

sudo (1.9.5p2-3+exp1) experimental; urgency=medium

  [ Marc Haber ]
  * convert package to dh
    * rename init scripts to be picked up by new debhelper
    * rename and update lintian overrides
    * let /run directory be created by systemd
    * remove documentation files that are installed by upstream scripts
    * clear dependency path in .la files
  * add Pre-Depends: ${misc:Pre-Depends}
  * override package-has-unnecessary-activation-of-ldconfig-trigger

  [ Bastian Blank ]
  * Move stuff to /usr/libexec.
  * Use dpkg provided make snippets
  * Provide build-flags via environment
  * Use easier to read multi-line variables
  * Remove not require prefix override
  * Move stuff to /usr/libexec

  [ Hilko Bengen ]
  * Remove unneeded Built-Using
  * Simplify dh_auto_* overrides
  * Further simplification
  * debian/rules: Remove another unneeded variable
  * Don't ship *.la files
  * Add Apport script

 -- Marc Haber <email address hidden>  Fri, 12 Mar 2021 20:48:13 +0100

1.9.5p2-3

Superseded in bullseye-release on 2023-04-29

Superseded in sid-release on 2021-12-18

sudo (1.9.5p2-3) unstable; urgency=medium

  * new maintainer team and uploaders (Closes: #976244)
    * sudo is now team maintained
    * add Uploaders field
    * move salsa repo to team-sudo group
  * refresh patches
  * Adapt README.LDAP to the actual state of sudo-ldap (Closes: #442871)
  * add Apport hook.
    Thanks to Balint Reczey (Closes: 881671)

 -- Marc Haber <email address hidden>  Sat, 27 Feb 2021 09:28:03 +0100

1.8.27-1+deb10u3

Published in buster-release on 2021-02-06

sudo (1.8.27-1+deb10u3) buster-security; urgency=high

  * Non-maintainer upload by the Security Team.
  * Sanity check size when converting the first record to TS_LOCKEXCL
  * Heap-based buffer overflow (CVE-2021-3156)
    - Reset valid_flags to MODE_NONINTERACTIVE for sudoedit
    - Add sudoedit flag checks in plugin that are consistent with front-end
    - Fix potential buffer overflow when unescaping backslashes in user_args
    - Fix the memset offset when converting a v1 timestamp to TS_LOCKEXCL
    - Don't assume that argv is allocated as a single flat buffer

 -- Salvatore Bonaccorso <email address hidden>  Wed, 20 Jan 2021 13:26:17 +0100

1.9.5p2-2

Superseded in sid-release on 2021-02-28

sudo (1.9.5p2-2) unstable; urgency=medium

  * patch from upstream repo to fix NO_ROOT_MAILER

 -- Bdale Garbee <email address hidden>  Fri, 29 Jan 2021 18:12:32 -0700

1.9.5p2-1

Superseded in sid-release on 2021-01-30

sudo (1.9.5p2-1) unstable; urgency=high

  * new upstream version, addresses CVE-2021-3156

 -- Bdale Garbee <email address hidden>  Tue, 26 Jan 2021 21:20:05 -0700

1.9.5p1-1.1

Superseded in sid-release on 2021-01-27

sudo (1.9.5p1-1.1) unstable; urgency=high

  * Non-maintainer upload.
  * Heap-based buffer overflow (CVE-2021-3156)
    - Reset valid_flags to MODE_NONINTERACTIVE for sudoedit
    - Add sudoedit flag checks in plugin that are consistent with front-end
    - Fix potential buffer overflow when unescaping backslashes in user_args
    - Fix the memset offset when converting a v1 timestamp to TS_LOCKEXCL
    - Don't assume that argv is allocated as a single flat buffer

 -- Salvatore Bonaccorso <email address hidden>  Wed, 20 Jan 2021 10:11:47 +0100

1.9.5p1-1

Superseded in sid-release on 2021-01-26

sudo (1.9.5p1-1) unstable; urgency=medium

  * new upstream version, closes: #980028

 -- Bdale Garbee <email address hidden>  Wed, 13 Jan 2021 01:09:19 -0700

1.9.5-1

Superseded in sid-release on 2021-01-13

sudo (1.9.5-1) unstable; urgency=medium

  * new upstream version

 -- Bdale Garbee <email address hidden>  Mon, 11 Jan 2021 15:15:48 -0700

1.9.4p2-2

Superseded in sid-release on 2021-01-12

sudo (1.9.4p2-2) unstable; urgency=medium

  * always use /bin/mv to ensure reproducible builds whether built on a
    usrmerge or non-usrmerge system, closes: #976307

 -- Bdale Garbee <email address hidden>  Sun, 03 Jan 2021 09:11:13 -0700

1.9.4p2-1

Superseded in sid-release on 2021-01-04

sudo (1.9.4p2-1) unstable; urgency=medium

  * new upstream version

 -- Bdale Garbee <email address hidden>  Sun, 20 Dec 2020 17:43:54 -0700

1.9.4p1-1

Superseded in sid-release on 2020-12-21

sudo (1.9.4p1-1) unstable; urgency=medium

  * new upstream version

 -- Bdale Garbee <email address hidden>  Thu, 17 Dec 2020 17:35:55 -0700

1.9.4-1

Superseded in sid-release on 2020-12-18

sudo (1.9.4-1) unstable; urgency=medium

  * new upstream version

 -- Bdale Garbee <email address hidden>  Tue, 01 Dec 2020 22:10:03 -0500

1.9.3p1-1

Superseded in sid-release on 2020-12-02

sudo (1.9.3p1-1) unstable; urgency=medium

  * new upstream version

 -- Bdale Garbee <email address hidden>  Thu, 24 Sep 2020 11:10:02 -0600

1.9.3-1

Superseded in sid-release on 2020-09-24

sudo (1.9.3-1) unstable; urgency=medium

  * new upstream version
  * make the comment match the text in default sudoers, closes: #964922
  * enable zlib, closes: #846077

 -- Bdale Garbee <email address hidden>  Mon, 21 Sep 2020 17:11:30 -0600

1.9.1-2

Superseded in sid-release on 2020-09-22

sudo (1.9.1-2) unstable; urgency=medium

  * change # to @ on includedir in default sudoers to reduce confusion with
    a comment, such as in 964922

 -- Bdale Garbee <email address hidden>  Sun, 12 Jul 2020 09:52:08 -0600

1.9.1-1

Superseded in sid-release on 2020-07-12

sudo (1.9.1-1) unstable; urgency=medium

  * new upstream version

 -- Bdale Garbee <email address hidden>  Fri, 19 Jun 2020 15:44:09 -0600

1.9.0-1

Superseded in sid-release on 2020-06-20

sudo (1.9.0-1) unstable; urgency=medium

  * new upstream version, closes: #669687, #571621, #734752

 -- Bdale Garbee <email address hidden>  Wed, 13 May 2020 18:34:59 -0600

1.8.31p1-1

Superseded in sid-release on 2020-05-14

sudo (1.8.31p1-1) unstable; urgency=medium

  * new upstream version

 -- Bdale Garbee <email address hidden>  Thu, 19 Mar 2020 15:47:17 -0600

1.8.19p1-2.1+deb9u2

Published in stretch-release on 2020-02-08

sudo (1.8.19p1-2.1+deb9u2) stretch-security; urgency=high

  * Non-maintainer upload by the Security Team.
  * Fix a buffer overflow when pwfeedback is enabled and input is a not a tty
    (CVE-2019-18634) (Closes: #950371)

 -- Salvatore Bonaccorso <email address hidden>  Fri, 31 Jan 2020 22:10:55 +0100

1.8.27-1+deb10u2

Superseded in buster-release on 2021-02-06

sudo (1.8.27-1+deb10u2) buster; urgency=medium

  * Non-maintainer upload.
  * Fix a buffer overflow when pwfeedback is enabled and input is a not a tty
    (CVE-2019-18634) (Closes: #950371)

 -- Salvatore Bonaccorso <email address hidden>  Sun, 02 Feb 2020 08:41:42 +0100

1.8.31-1

Superseded in sid-release on 2020-03-22

sudo (1.8.31-1) unstable; urgency=medium

  * new upstream version

 -- Bdale Garbee <email address hidden>  Sat, 01 Feb 2020 23:07:09 -0800

1.8.27-1+deb10u1

Superseded in buster-release on 2020-02-08

sudo (1.8.27-1+deb10u1) buster-security; urgency=high

  * Non-maintainer upload by the Security Team.
  * Treat an ID of -1 as invalid since that means "no change" (CVE-2019-14287)
  * Fix test failure in plugins/sudoers/regress/testsudoers/test5.sh

 -- Salvatore Bonaccorso <email address hidden>  Sat, 12 Oct 2019 15:49:01 +0200

1.8.29-1

Superseded in sid-release on 2020-02-02

sudo (1.8.29-1) unstable; urgency=medium

  * new upstream version
  * make --libexecdir use /usr/lib instead of /usr/lib/sudo, closes: #943313

 -- Bdale Garbee <email address hidden>  Mon, 28 Oct 2019 19:27:42 -0600

1.8.28p1-1

Superseded in sid-release on 2019-10-29

sudo (1.8.28p1-1) unstable; urgency=medium

  * new upstream version

 -- Bdale Garbee <email address hidden>  Tue, 22 Oct 2019 16:13:34 -0600

1.8.27-1.1

Superseded in sid-release on 2019-10-23

sudo (1.8.27-1.1) unstable; urgency=high

  * Non-maintainer upload.
  * Treat an ID of -1 as invalid since that means "no change" (CVE-2019-14287)
    (Closes: #942322)
  * Fix test failure in plugins/sudoers/regress/testsudoers/test5.sh

 -- Salvatore Bonaccorso <email address hidden>  Mon, 14 Oct 2019 21:10:58 +0200

1.8.27-1

Superseded in buster-release on 2019-11-16

Superseded in sid-release on 2019-10-17

sudo (1.8.27-1) unstable; urgency=medium

  * new upstream version

 -- Bdale Garbee <email address hidden>  Sat, 12 Jan 2019 11:10:05 -0700

1.8.26-2

Superseded in buster-release on 2019-01-18

Superseded in sid-release on 2019-01-19

sudo (1.8.26-2) unstable; urgency=medium

  * patch from upstream to fix man page truncation, closes: #914469

 -- Bdale Garbee <email address hidden>  Fri, 23 Nov 2018 14:59:17 -0700

1.8.26-1

Superseded in buster-release on 2018-11-29

Superseded in sid-release on 2018-11-27

sudo (1.8.26-1) unstable; urgency=medium

  [Bdale Garbee]
  * new upstream version

  [Ondřej Nový]
  * d/changelog: Remove trailing whitespaces
  * d/control: Remove trailing whitespaces
  * d/rules: Remove trailing whitespaces

 -- Bdale Garbee <email address hidden>  Mon, 19 Nov 2018 00:32:06 -1000

1.8.23-2

Superseded in buster-release on 2018-11-24

Superseded in sid-release on 2018-11-20

sudo (1.8.23-2) unstable; urgency=high

  * fix FTBFS due to earlier sudoers2ldif removal, closes: #903415

 -- Bdale Garbee <email address hidden>  Sat, 21 Jul 2018 11:22:37 -0600

1.8.23-1

Superseded in buster-release on 2018-07-24

Superseded in sid-release on 2018-07-24

sudo (1.8.23-1) unstable; urgency=medium

  * new upstream version

 -- Bdale Garbee <email address hidden>  Mon, 30 Apr 2018 20:55:10 -0600

1.8.21p2-3

Superseded in buster-release on 2018-05-06

Superseded in sid-release on 2018-05-03

sudo (1.8.21p2-3) unstable; urgency=medium

  * include sssd support in the sudo-ldap build too, closes: #884741

 -- Bdale Garbee <email address hidden>  Mon, 18 Dec 2017 21:55:18 -0700

1.8.10p3-1+deb8u5

Published in jessie-release on 2017-12-09

sudo (1.8.10p3-1+deb8u5) jessie; urgency=medium

  * Non-maintainer upload.
  * Use /proc/self consistently on Linux
  * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)

 -- Salvatore Bonaccorso <email address hidden>  Tue, 08 Aug 2017 21:44:31 +0200

1.8.21p2-2

Superseded in buster-release on 2017-12-24

Superseded in sid-release on 2018-04-18

sudo (1.8.21p2-2) unstable; urgency=medium

  * work harder to clean up mess left by sudo-ldap using /etc/init.d/sudo 
    prior to version 1.8.7-1, closes: #877516

 -- Bdale Garbee <email address hidden>  Mon, 02 Oct 2017 13:02:27 -0600

1.8.21p2-1

Superseded in buster-release on 2017-10-08

Superseded in sid-release on 2017-10-03

sudo (1.8.21p2-1) unstable; urgency=medium

  * new upstream version, closes: #873623, #873600, #874000
  * remove legacy /etc/sudoers.dist we no longer deliver, closes: #873561

 -- Bdale Garbee <email address hidden>  Thu, 07 Sep 2017 10:42:19 -0600

1.8.21-1

Superseded in sid-release on 2017-09-08

sudo (1.8.21-1) unstable; urgency=medium

  [ Bdale Garbee ]
  * new upstream version
  * don't deliver /etc/sudoers.dist, closes: #862309
  * whitelist DPKG_COLORS env var, closes: #823368

  [ Laurent Bigonville ]
  * debian/sudo*.postinst: Drop /var/run/sudo -> /var/lib/sudo migration code,
    this migration happened in 2010 and that code is not necessary anymore
  * Move timestamp files to /run/sudo, with systemd the directory is
    created/cleaned by tmpfiles.d now, the sudo initscript/service is not
    doing anything in that case anymore (Closes: #786555)
  * debian/sudo*.postinst: Move the debhelper marker before the creation of
    the sudo group, this way the snippets added by debhelper will be executed
    even if the group already exists. (Closes: #870456)

 -- Bdale Garbee <email address hidden>  Mon, 28 Aug 2017 09:44:06 -0600

1.8.10p3-1+deb8u4

Superseded in jessie-release on 2017-12-09

sudo (1.8.10p3-1+deb8u4) jessie-security; urgency=high

  * Non-maintainer upload by the Security Team.
  * CVE-2017-1000367: Fix parsing of /proc/[pid]/stat

 -- Salvatore Bonaccorso <email address hidden>  Sun, 28 May 2017 13:25:43 +0200

1.8.20p2-1

Superseded in buster-release on 2017-09-13

Superseded in sid-release on 2017-08-30

sudo (1.8.20p2-1) unstable; urgency=medium

  * new upstream version

 -- Bdale Garbee <email address hidden>  Thu, 08 Jun 2017 11:57:02 -0600

1.8.19p1-2.1

Superseded in stretch-release on 2020-02-08

sudo (1.8.19p1-2.1) stretch; urgency=high

  * Non-maintainer upload.
  * Use /proc/self consistently on Linux
  * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)

 -- Salvatore Bonaccorso <email address hidden>  Mon, 05 Jun 2017 14:22:55 +0200

1.8.20p1-1.1

Superseded in sid-release on 2017-06-09

sudo (1.8.20p1-1.1) unstable; urgency=high

  * Non-maintainer upload.
  * Use /proc/self consistently on Linux
  * CVE-2017-1000368: Arbitrary terminal access (Closes: #863897)

 -- Salvatore Bonaccorso <email address hidden>  Mon, 05 Jun 2017 14:19:33 +0200

1.8.19p1-2

Superseded in stretch-release on 2017-06-06

sudo (1.8.19p1-2) stretch; urgency=high

  * patch from upstream to fix CVE-2017-1000367, closes: #863731

 -- Bdale Garbee <email address hidden>  Tue, 30 May 2017 22:35:01 -0600

1.8.20p1-1

Superseded in sid-release on 2017-06-05

sudo (1.8.20p1-1) unstable; urgency=high

  * New upstream version with fix for CVE-2017-1000367, closes: #863731

 -- Bdale Garbee <email address hidden>  Tue, 30 May 2017 14:41:58 -0600

1.8.20-1

Superseded in sid-release on 2017-05-31

sudo (1.8.20-1) unstable; urgency=medium

  * New upstream version

 -- Bdale Garbee <email address hidden>  Wed, 10 May 2017 10:25:46 -0600

1.8.19p1-1

Superseded in stretch-release on 2017-06-04

Superseded in sid-release on 2017-05-15

sudo (1.8.19p1-1) unstable; urgency=medium

  * new upstream version

 -- Bdale Garbee <email address hidden>  Fri, 13 Jan 2017 11:12:49 -0700

1.8.19-1

Superseded in stretch-release on 2017-01-24

Superseded in sid-release on 2017-01-14

sudo (1.8.19-1) unstable; urgency=medium

  * new upstream version

 -- Bdale Garbee <email address hidden>  Mon, 19 Dec 2016 13:00:21 -0700

1.8.18p1-2

Superseded in sid-release on 2016-12-22

sudo (1.8.18p1-2) unstable; urgency=medium

  * merge work done by Balint Reczey in parallel / conflict with my offline work

 -- Bdale Garbee <email address hidden>  Thu, 15 Dec 2016 19:08:46 -0700

1.8.17p1-2

Superseded in stretch-release on 2016-12-31

Superseded in sid-release on 2016-12-16

sudo (1.8.17p1-2) unstable; urgency=medium

  * merge 1.8.15-1.1 NMU changes 

 -- Bdale Garbee <email address hidden>  Tue, 05 Jul 2016 16:01:55 +0200

1.8.17p1-1

Superseded in sid-release on 2016-07-06

sudo (1.8.17p1-1) unstable; urgency=low

  * new upstream version, closes: #805563
  * build-depend on the new mandoc package so we can rebuild man pages 
    properly if needed, closes: #809984

 -- Bdale Garbee <email address hidden>  Tue, 05 Jul 2016 16:01:55 +0200

1.8.5p2-1+nmu3+deb7u1

Published in wheezy-release on 2016-04-02

sudo (1.8.5p2-1+nmu3+deb7u1) wheezy-security; urgency=medium

  * Non-maintainer upload
  * Fix CVE-2014-9680-{1,2}.patch to edit sudoers.pod, not just the
    generated docs
  * Disable editing of files via user-controllable symlinks
    (Closes: #804149) (CVE-2015-5602)
    - sudoedit path restriction bypass using symlinks
    - Change warning when user tries to sudoedit a symbolic link
    - Open sudoedit files with O_NONBLOCK and fail if they are not regular files
    - Remove S_ISREG check from sudo_edit_open(), it is already done in the
      caller
    - Add directory writability checks for sudoedit
    - Fix directory writability checks for sudoedit
    - Enable sudoedit directory writability checks by default

 -- Ben Hutchings <email address hidden>  Tue, 05 Jan 2016 18:48:03 +0000

1.8.10p3-1+deb8u3

Superseded in jessie-release on 2017-07-22

sudo (1.8.10p3-1+deb8u3) jessie-security; urgency=medium

  * Non-maintainer upload
  * Disable editing of files via user-controllable symlinks
    (Closes: #804149) (CVE-2015-5602)
    - sudoedit path restriction bypass using symlinks
    - Change warning when user tries to sudoedit a symbolic link
    - Open sudoedit files with O_NONBLOCK and fail if they are not regular files
    - Remove S_ISREG check from sudo_edit_open(), it is already done in the
      caller
    - Add directory writability checks for sudoedit
    - Fix directory writability checks for sudoedit
    - Enable sudoedit directory writability checks by default

 -- Ben Hutchings <email address hidden>  Tue, 05 Jan 2016 19:37:34 +0000

Debian
sudo package

Change log for sudo package in Debian

Debiansudo package

Change log for sudo package in Debian

Debian
sudo package