diff options
| author | adrianp <adrianp@pkgsrc.org> | 2005-11-12 14:17:45 +0000 |
|---|---|---|
| committer | adrianp <adrianp@pkgsrc.org> | 2005-11-12 14:17:45 +0000 |
| commit | 8382f588a5ffc3ee51bc87a5321c75d57067b433 (patch) | |
| tree | 9c6d27ef6262804c7df992c7a009d664074e1839 /security/sudo | |
| parent | aaa6de591a73c53466c31a7fa7cdd75e047903a9 (diff) | |
| download | pkgsrc-8382f588a5ffc3ee51bc87a5321c75d57067b433.tar.gz | |
Update sudo to nb2 to address the recent secuity issue:
- http://www.sudo.ws/sudo/alerts/perl_env.html
- Add "PERLLIB", "PERL5LIB" and the "PERL5OPT" to the list of
environment variables to be cleaned.
Diffstat (limited to 'security/sudo')
| -rw-r--r-- | security/sudo/Makefile | 4 | ||||
| -rw-r--r-- | security/sudo/distinfo | 4 | ||||
| -rw-r--r-- | security/sudo/patches/patch-ah | 14 |
3 files changed, 16 insertions, 6 deletions
diff --git a/security/sudo/Makefile b/security/sudo/Makefile index 170cfaddd8f..a6dc0672c1a 100644 --- a/security/sudo/Makefile +++ b/security/sudo/Makefile @@ -1,9 +1,9 @@ -# $NetBSD: Makefile,v 1.82 2005/10/25 22:05:55 cube Exp $ +# $NetBSD: Makefile,v 1.83 2005/11/12 14:17:45 adrianp Exp $ # DISTNAME= sudo-1.6.8p9 PKGNAME= sudo-1.6.8pl9 -PKGREVISION= 1 +PKGREVISION= 2 CATEGORIES= security MASTER_SITES= http://www.courtesan.com/sudo/dist/ \ ftp://ftp.courtesan.com/pub/sudo/ \ diff --git a/security/sudo/distinfo b/security/sudo/distinfo index 310d5da5aa5..42a544db467 100644 --- a/security/sudo/distinfo +++ b/security/sudo/distinfo @@ -1,4 +1,4 @@ -$NetBSD: distinfo,v 1.31 2005/10/25 22:05:55 cube Exp $ +$NetBSD: distinfo,v 1.32 2005/11/12 14:17:45 adrianp Exp $ SHA1 (sudo-1.6.8p9.tar.gz) = f264d1ad9f197920f2e69614db7935b35ca51672 RMD160 (sudo-1.6.8p9.tar.gz) = c1c719504476ab9ac11e0421716d149120463e33 @@ -6,4 +6,4 @@ Size (sudo-1.6.8p9.tar.gz) = 585509 bytes SHA1 (patch-aa) = a4f29f2c228eb3b4af0872cf04a00ffdf41c603c SHA1 (patch-af) = 245761812dc600b3d2752fa135ba367bb0223370 SHA1 (patch-ag) = 87c3263674ec98ccc9cc33f2108a2456eddaecc5 -SHA1 (patch-ah) = a08e73c0a20d50a432e01740a9d27b330a1c1998 +SHA1 (patch-ah) = 6210bca36fa7fc87ef179b7bf92109828390bea0 diff --git a/security/sudo/patches/patch-ah b/security/sudo/patches/patch-ah index cb44d76c9a9..5758493ed57 100644 --- a/security/sudo/patches/patch-ah +++ b/security/sudo/patches/patch-ah @@ -1,6 +1,6 @@ -$NetBSD: patch-ah,v 1.1 2005/10/25 22:05:55 cube Exp $ +$NetBSD: patch-ah,v 1.2 2005/11/12 14:17:46 adrianp Exp $ ---- env.c.orig 2005-02-06 16:37:01.000000000 +0100 +--- env.c.orig 2005-02-06 15:37:01.000000000 +0000 +++ env.c @@ -89,6 +89,8 @@ static char *format_env __P((char *, .. static const char *initial_badenv_table[] = { @@ -11,3 +11,13 @@ $NetBSD: patch-ah,v 1.1 2005/10/25 22:05:55 cube Exp $ "LOCALDOMAIN", "RES_OPTIONS", "HOSTALIASES", +@@ -124,6 +126,9 @@ static const char *initial_badenv_table[ + "TERMCAP", /* XXX - only if it starts with '/' */ + "ENV", + "BASH_ENV", ++ "PERLLIB", ++ "PERL5LIB", ++ "PERL5OPT", + NULL + }; + |