CVSROOT: /cvs Module name: ports Changes by: st...@cvs.openbsd.org 2020/01/30 16:03:27
Modified files: security/sudo : Tag: OPENBSD_6_6 Makefile distinfo Log message: Update to sudo-1.8.31 in -stable, ok millert Changes include: * Fixed CVE-2019-18634, a buffer overflow when the "pwfeedback" sudoers option is enabled on systems with uni-directional pipes. * The "sudoedit_checkdir" option now treats a user-owned directory as writable, even if it does not have the write bit set at the time of check. Symbolic links will no longer be followed by sudoedit in any user-owned directory. Bug #912