slackware-current

1301 commits 8 branches 2378 tags 489 MiB

Author	SHA1	Message	Date
Patrick J Volkerding	206ee03fe7	Tue Nov 7 19:57:12 UTC 2023 patches/packages/sudo-1.9.15-x86_64-1_slack15.0.txz: Upgraded. The sudoers plugin has been modified to make it more resilient to ROWHAMMER attacks on authentication and policy matching. The sudoers plugin now constructs the user time stamp file path name using the user-ID instead of the user name. This avoids a potential problem with user names that contain a path separator ('/') being interpreted as part of the path name. For more information, see: https://www.cve.org/CVERecord?id=CVE-2023-42465 https://www.cve.org/CVERecord?id=CVE-2023-42456 (* Security fix *)	2023-11-08 13:30:36 +01:00
Patrick J Volkerding	1b65c2bfe3	Mon Jul 17 19:17:19 UTC 2023 patches/packages/sudo-1.9.14p2-x86_64-1_slack15.0.txz: Upgraded. This is a bugfix release.	2023-07-18 13:30:35 +02:00

Author

SHA1

Message

Date

Patrick J Volkerding

206ee03fe7

Tue Nov 7 19:57:12 UTC 2023

patches/packages/sudo-1.9.15-x86_64-1_slack15.0.txz:  Upgraded.
  The sudoers plugin has been modified to make it more resilient to ROWHAMMER
  attacks on authentication and policy matching.
  The sudoers plugin now constructs the user time stamp file path name using
  the user-ID instead of the user name. This avoids a potential problem with
  user names that contain a path separator ('/') being interpreted as part of
  the path name.
  For more information, see:
    https://www.cve.org/CVERecord?id=CVE-2023-42465
    https://www.cve.org/CVERecord?id=CVE-2023-42456
  (* Security fix *)

2023-11-08 13:30:36 +01:00

Patrick J Volkerding

1b65c2bfe3

Mon Jul 17 19:17:19 UTC 2023

patches/packages/sudo-1.9.14p2-x86_64-1_slack15.0.txz:  Upgraded.
  This is a bugfix release.

2023-07-18 13:30:35 +02:00

Renamed from patches/packages/sudo-1.9.14p1-x86_64-1_slack15.0.txt (Browse further)

2 commits