Open Source Forge - www.osforge.com [ Debian Security Advisory: sudo ]

Root
Contribute News
Learning Corner
Linux Distributions
Linux Common FAQ's
Discussion Forums
Community Gallery
Links Directory
Search OSForge

Networking
Industry Updates
Linux & Open Source
Opinions
Press Release
Programming
Security
Web Development
White Paper

Plat'Home Unveils Winners of “Will Linux Work?” Contest

Zenoss Core Recognized as Best Open Source Network Monitoring Solution

LinMin™ Joins Intel® Certified Software Solutions Program

xTuple™ ERP 3.0 Wins “Best Business Application” At LinuxWorld Conference & Exp

Holland Computing Center - Rocks+Moab Provides Windows/Linux Cluster Solution

LogMeIn Launches Mobile Plug-in for Linux

FuseMail Selects Funambol’s Open Source Push Email and PIM Sync Solution

Zenoss Expands IT Management Solution for Managed Service Providers

Moab Workload Manager Claims Title as World’s First Petaflop Scheduler

View More �

Debian Security Advisory: sudo

By : Eric Lim [www]

on Security
Friday the 26th, April 2002 at 01:07 AM (EDT)

Readers TalkBack (0) - 554 Reads

Printable format
Foward to Email

Debian Security Advisory: sudo

- ------------------------------------------------------------------------
Debian Security Advisory DSA-128-1                   security@debian.org
http://www.debian.org/security/                         Wichert Akkerman
April 26, 2002
- ------------------------------------------------------------------------

Package        : sudo
Problem type   : buffer overflow
Debian-specific: no

fc found a buffer overflow in the variable expansion code
used by sudo for its prompt. Since sudo is necessarily installed suid
root a local user can use this to gain root access.

This has been fixed in version 1.6.2-2.2 and we recommend that you upgrade
your sudo package immediately.

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

Debian GNU/Linux 2.2 alias potato
- ---------------------------------

Potato was released for alpha, arm, i386, m68k, powerpc and sparc.

Source archives:
    http://security.debian.org/dists/stable/updates/main/source/sudo_1.6.2p2-2.2.diff.gz
      MD5 checksum: 958560c409b43bd13463b3d380fc534a
    http://security.debian.org/dists/stable/updates/main/source/sudo_1.6.2p2-2.2.dsc
      MD5 checksum: 7323f0f3614513156120ccc4772524f8
    http://security.debian.org/dists/stable/updates/main/source/sudo_1.6.2p2.orig.tar.gz
      MD5 checksum: dd5944c880fd5cc56bc0f0199e92d2b4

Alpha architecture:
    http://security.debian.org/dists/stable/updates/main/binary-alpha/sudo_1.6.2p2-2.2_alpha.deb
      MD5 checksum: 66cb0d4f730560fddba65e44dd78c34d

ARM architecture:
    http://security.debian.org/dists/stable/updates/main/binary-arm/sudo_1.6.2p2-2.2_arm.deb
      MD5 checksum: f74bae46ebd07bd8f430261153d13f90

Intel IA-32 architecture:
    http://security.debian.org/dists/stable/updates/main/binary-i386/sudo_1.6.2p2-2.2_i386.deb
      MD5 checksum: 9ac9b91818dd7b2f2888aa39aac0da98

Motorola 680x0 architecture:
    http://security.debian.org/dists/stable/updates/main/binary-m68k/sudo_1.6.2p2-2.2_m68k.deb
      MD5 checksum: 46f6d595363d23c96701cd303511e1a5

PowerPC architecture:
    http://security.debian.org/dists/stable/updates/main/binary-powerpc/sudo_1.6.2p2-2.2_powerpc.deb
      MD5 checksum: 66c23d2544e9a8f19c57c919a4a751c9

Sun Sparc architecture:
    http://security.debian.org/dists/stable/updates/main/binary-sparc/sudo_1.6.2p2-2.2_sparc.deb
      MD5 checksum: 9654ecac0230abe0f28524469fb5887e

These packages will be moved into the stable distribution on its next
revision.

Reader Rating from 1-5

Talkback

Post Your Talkback | View All Talkback (0 Posted)

Currently there are no Talkback posted on "Debian Security Advisory: sudo", Click here to be the first to post a talkback.


About \| Term of Use \| Privacy \| Contact us \| Tell a Friend \| Advertise	OSForge News RSS Feed