Package sudo: Information

Source package: sudo
Version: 1.9.12p1-alt1
Latest version according to Repology
Build time:  Nov 7, 2022, 03:24 AM in the task #309589
Category: System/Base
Report package bug
Gear: https://git.altlinux.org/gears/s/sudo.git?a=tree;hb=ea415bd1a8c3…
Home page: https://www.sudo.ws
License: ISC
Summary: Allows command execution as another user
Description: 
Sudo is a program designed to allow a sysadmin to give limited root
privileges to users and log root activity.  The basic philosophy is
to give as few privileges as possible but still allow people to get
their work done.
List of rpms provided by this srpm:
sudo (x86_64, ppc64le, i586, armh, aarch64)
sudo-debuginfo (x86_64, ppc64le, i586, armh, aarch64)
sudo-devel (noarch)
sudo-logsrvd (x86_64, ppc64le, i586, armh, aarch64)
sudo-logsrvd-debuginfo (x86_64, ppc64le, i586, armh, aarch64)
sudo-python (x86_64, ppc64le, i586, armh, aarch64)
sudo-python-debuginfo (x86_64, ppc64le, i586, armh, aarch64)
Maintainer: Evgeny Sinelnikov
List of contributors:
Evgeny Sinelnikov
Nikolai Kostrigin
Vitaly Kuznetsov
Dmitry V. Levin
qa-robot
ACL:
Evgeny Sinelnikov
    1. /usr/bin/nroff
    2. libpam-devel
    3. libcap-devel
    4. python3-dev
    5. libselinux-devel
    6. flex
    7. perl-podlators
    8. libaudit-devel

Last changed

Nov. 7, 2022 Evgeny Sinelnikov 1:1.9.12p1-alt1
- Update to latest stable bugfix and security release (fixes: CVE-2022-43995).
- Major improvements from latest Sisyphus release:
 + For ptrace-based intercept mode, sudo will now attempt to verify that the
   command path name, arguments and environment have not changed from the time
   when they were authorized by the security policy. The new intercept_verify
   sudoers setting can be used to control this behavior.
 + Sudo now supports passing the execve(2) system call the NULL pointer for the
   argv and/or envp arguments when in intercept mode. Linux treats a NULL pointer
   like an empty array.
 + Neovim has been added to the list of visudo editors that support passing the
   line number on the command line.
 + Added a new -N (no-update) command line option to sudo which can be used to
   prevent sudo from updating the user's cached credentials.
 + PAM approval modules are no longer invoked when running sub-commands in
   intercept mode unless the intercept_authenticate option is set. There is a
   substantial performance penalty for calling into PAM for each command run.
   PAM approval modules are still called for the initial command.
 + Intercept mode on Linux now uses process_vm_readv(2) and process_vm_writev(2)
   if available.
 + The XDG_CURRENT_DESKTOP environment variable is now preserved by default.
   This makes it possible for graphical applications to choose the correct theme
   when run via sudo.
 + The cvtsudoers manual now documents the JSON and CSV output formats.
 + The new log_stdin, log_stdout, log_stderr, log_ttyin, and log_ttyout sudoers
   settings can be used to support more fine-grained I/O logging. The sudo
   front-end no longer allocates a pseudo-terminal when running a command if the
   I/O logging plugin requests logging of stdin, stdout, or stderr but not
   terminal input/output.
 + Added the -I option to visudo which only edits the main sudoers file.
   Include files are not edited unless a syntax error is found.
Nov. 7, 2022 Evgeny Sinelnikov 1:1.9.11p3-alt4
- Rebuild with upstream sources from https://github.com/sudo-project/sudo
  (manual import of archives no more needed).
Oct. 24, 2022 Evgeny Sinelnikov 1:1.9.11p3-alt3
- Add sudopw control with rule Defaults for user, root, target or runas type
  of user account password credentials that are verified during authentication.
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.4.2
Back to top