Oracle alert ELSA-2013-1701 (sudo)

From:
    	     
 
Errata Announcements for Oracle Linux <el-errata@oss.oracle.com> 
To:
    	     
 
el-errata@oss.oracle.com 
Subject:
    	     
 
[El-errata] ELSA-2013-1701 Low: Oracle Linux 6 sudo security, bug fix and enhancement update 
Date:
    	     
 
Tue, 26 Nov 2013 06:45:34 -0800
Message-ID:
    	     
 
<5294B40E.3030803@oracle.com>

Oracle Linux Security Advisory ELSA-2013-1701

https://rhn.redhat.com/errata/RHSA-2013-1701.html

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

i386:
sudo-1.8.6p3-12.el6.i686.rpm
sudo-devel-1.8.6p3-12.el6.i686.rpm

x86_64:
sudo-1.8.6p3-12.el6.x86_64.rpm
sudo-devel-1.8.6p3-12.el6.i686.rpm
sudo-devel-1.8.6p3-12.el6.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/sudo-1.8.6p3-12.e...



Description of changes:

[1.8.6p3-12]
- added patches for CVE-2013-1775 CVE-2013-2777 CVE-2013-2776
   Resolves: rhbz#1015355

[1.8.6p3-11]
- sssd: fixed a bug in ipa_hostname processing
   Resolves: rhbz#853542

[1.8.6p3-10]
- sssd: fixed buffer size for the ipa_hostname value
   Resolves: rhbz#853542

[1.8.6p3-9]
- sssd: match against ipa_hostname from sssd.conf too when
   checking sudoHost
   Resolves: rhbz#853542

[1.8.6p3-8]
- updated man-page
- fixed handling of RLIMIT_NPROC resource limit
- fixed alias cycle detection code
- added debug messages for tracing of netgroup matching
- fixed aborting on realloc when displaying allowed commands
- show the SUDO_USER in logs, if running commands as root
- sssd: filter netgroups in the sudoUser attribute
   Resolves: rhbz#856901
   Resolves: rhbz#947276
   Resolves: rhbz#886648
   Resolves: rhbz#994563
   Resolves: rhbz#848111
   Resolves: rhbz#994626
   Resolves: rhbz#973228
   Resolves: rhbz#880150


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata