Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 22 Feb 2001 14:14:59 -0500
From:      Chris Faulhaber <jedgar@fxp.org>
To:        "Bruce A. Mah" <bmah@FreeBSD.ORG>
Cc:        Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>, freebsd-security@FreeBSD.ORG
Subject:   Re: Sudo version 1.6.3p6 now available (fwd)
Message-ID:  <20010222141459.A70502@peitho.fxp.org>
In-Reply-To: <200102221908.f1MJ8NY42653@bmah-freebsd-0.cisco.com>; from bmah@FreeBSD.ORG on Thu, Feb 22, 2001 at 11:08:23AM -0800
References:  <200102221627.f1MGRk149151@cwsys.cwsent.com> <200102221908.f1MJ8NY42653@bmah-freebsd-0.cisco.com>
next in thread | previous in thread | raw e-mail | index | archive | help 

--8t9RHnE3ZwKMSgU+
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Thu, Feb 22, 2001 at 11:08:23AM -0800, Bruce A. Mah wrote:
> If memory serves me right, Cy Schubert - ITSD Open Systems Group wrote:
> > As I don't have time to submit a PR for the sudo port morning, I'm=20
> > sending this to -security.
>=20
> [snip]
>=20
> > Sudo version 1.6.3p6 is now available (ftp sites listed at the end).
> > This fixes a *buffer overflow* in sudo which is a potential security
> > problem.  I don't know of any exploits that currently exist but I
> > suggest that you upgrade none the less.
>=20
> Someone already updated the version in the ports tree:
>=20
> bmah-freebsd-0:bmah% pkg_version -v | grep sudo
> sudo-1.6.3.6                =3D   up-to-date with port
>=20

Though the commit message is confusing:

  Update to 1.6.3p5

--=20
Chris D. Faulhaber - jedgar@fxp.org - jedgar@FreeBSD.org
--------------------------------------------------------
FreeBSD: The Power To Serve   -   http://www.FreeBSD.org

--8t9RHnE3ZwKMSgU+
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (FreeBSD)
Comment: FreeBSD: The Power To Serve

iEYEARECAAYFAjqVZTMACgkQObaG4P6BelDIJACfeYh5c6Pw+isR7vfA7nZGv2Sd
AnQAnA5rqU3X0K2cEStYa2Rv76/lhOys
=dHsR
-----END PGP SIGNATURE-----

--8t9RHnE3ZwKMSgU+--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010222141459.A70502>