Opened 5 months ago

Closed 5 months ago

#20716 closed enhancement (fixed)

sudo-1.9.16p2

Reported by: Bruce Dubbs Owned by: thomas
Priority: normal Milestone: 12.3
Component: BOOK Version: git
Severity: normal Keywords:
Cc:

Description

New patch version.

Change History (2)

comment:1 by thomas, 5 months ago

Owner: changed from blfs-book to thomas
Status: newassigned
  • 2024-11-25 Todd C. Miller
    • NEWS, configure, configure.ac:

Sudo 1.9.16p2 [568fe8e4e386]

  • 2024-11-18 Todd C. Miller
    • plugins/sudoers/sudoreplay.c: Work around a bug in UBSan that is causing CI failures.

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=116834 [44f078101f66]

  • 2024-11-17 Todd C. Miller
    • lib/util/setgroups.c, plugins/sudoers/sudo_printf.c, src/conversation.c:

Add some casts to quiet -Wconversion [fb1af4a05d82]

  • plugins/sudoers/cvtsudoers_pwutil.c, plugins/sudoers/pwutil_impl.c:

Avoid multiple calls to sysonf() via the MAX macro.

The expansion of MAX would result in multiple calls to sysconf(). It is less error-prone to store the result of sysconf() in a long. [3f38162aebb4]

  • 2024-11-16 Todd C. Miller
    • lib/util/regress/parse_gids/parse_gids_test.c:

Use NULL, not false, in the terminating entry of test_data[]. [67f1ffea52d9]

  • include/sudo_plugin.h, plugins/sudoers/policy.c, src/hooks.c:

Cast hook functions to sudo_hook_fn_t to fix C23 compile error.

The sudo plugin API defines sudo_hook_fn_t as a function with unspecified arguments. This is no longer supported in C23 so use a variadic function for sudo_hook_fn_t instead. Moving to a union may be a better long-term fix. GitHub issue #420. [4a4b001eba09]

  • plugins/sudoers/cvtsudoers_ldif.c:

Pass NULL, not false, to sudoers_format_default_line(). [32103ea85e25]

  • lib/util/ttyname_dev.c:

sudo_ttyname_dev: On Linux try to use /proc/self/fd/{0,1,2} if possible.

If one of std{in,out,err} matches the specified device, try to resolve it to a path by using /proc/self/fd/{0,1,2}. This avoids searching all of /dev and works in a chroot where /proc is mounted but /dev/pts is not. GitHub issue #421. [2a77c7832b1e]

  • 2024-11-15 Todd C. Miller
    • src/sudo.c, src/ttyname.c:

get_process_ttyname: always return the terminal device if we find one.

If sudo cannot map the device number to a device file, set name to the empty string. The caller now checks for an empty name and only passes the tty path to the plugin if it is non-empty. This allows sudo to run without warnings in a chroot() jail where the terminal device files are not present. GitHub issue #421. [7e479d2b32b1]

comment:2 by thomas, 5 months ago

Resolution: fixed
Status: assignedclosed

Fixed in [547652fa]

Note: See TracTickets for help on using tickets.