diff options
author | Todd C. Miller <Todd.Miller@courtesan.com> | 2010-06-01 14:26:27 -0400 |
---|---|---|
committer | Todd C. Miller <Todd.Miller@courtesan.com> | 2010-06-01 14:26:27 -0400 |
commit | b865bd322511009f60c41150cf4a23dfb01f4b2b (patch) | |
tree | 8d5edaf47996950c489c8715dd1d20c3b2d2edde | |
parent | 89b7244381a9675557340a519b128f7c129aad9f (diff) | |
download | sudo-b865bd322511009f60c41150cf4a23dfb01f4b2b.tar.gz |
Add missing entries for 1.7.2p7
-rw-r--r-- | ChangeLog | 56 |
1 files changed, 36 insertions, 20 deletions
@@ -1,45 +1,61 @@ 2010-05-28 Todd C. Miller <Todd.Miller@courtesan.com> - * env.c: Handle duplicate variables in the environment. - For unsetenv(), keep looking even after remove the first instance. - For sudo_putenv(), check for and remove dupes after we replace an - existing value. + * env.c: Handle duplicate variables in the environment. + For unsetenv(), keep looking even after remove the first instance. + For sudo_putenv(), check for and remove dupes after we replace an + existing value. + +2010-04-29 Todd C. Miller <Todd.Miller@courtesan.com> + + * visudo.c: Fix a crash when checking a sudoers file that has aliases + that reference themselves. Based on a diff from David Wood. + +2010-04-15 Todd C. Miller <Todd.Miller@courtesan.com> + + * alias.c: Fix use after free in error message when a duplicate + alias exists. + +2010-04-14 Todd C. Miller <Todd.Miller@courtesan.com> + + * visudo.c: Set errorfile to the sudoers path if we set parse_error + manually. This prevents a NULL dereference in printf() when + checking a sudoers file in strict mode when alias errors are present. 2010-04-09 Todd C. Miller <Todd.Miller@courtesan.com> - * configure, configure.in: Fix installation of sudoers.ldap - in "make install" when --with-ldap was specified without a - directory. From Prof. Dr. Andreas Mueller + * configure, configure.in: Fix installation of sudoers.ldap + in "make install" when --with-ldap was specified without a + directory. From Prof. Dr. Andreas Mueller 2010-04-09 Todd C. Miller <Todd.Miller@courtesan.com> - * find_path.c: Qualify the command even if it is in the - current working directory, e.g. "./foo" instead of just - returning "foo". This removes an ambiguity between real - commands and possible pseudo-commands in command matching. + * find_path.c: Qualify the command even if it is in the + current working directory, e.g. "./foo" instead of just + returning "foo". This removes an ambiguity between real + commands and possible pseudo-commands in command matching. 2010-04-07 Todd C. Miller <Todd.Miller@courtesan.com> - * sudoers.cat, sudoers.man.in, sudoers.pod: Add a note about - the security implications of the fast_glob option. + * sudoers.cat, sudoers.man.in, sudoers.pod: Add a note about + the security implications of the fast_glob option. * memrchr.c: Remove duplicate includes 2010-03-10 Todd C. Miller <Todd.Miller@courtesan.com> - * sudo.c: Fix a bug introduced with def_closefrom. The value - of def_closefrom already includes the +1. + * sudo.c: Fix a bug introduced with def_closefrom. The value + of def_closefrom already includes the +1. 2010-03-09 Todd C. Miller <Todd.Miller@courtesan.com> - * match.c: When doing a glob match, short circuit if - gl.gl_pathc is 0. From Mark Kettenis. + * match.c: When doing a glob match, short circuit if + gl.gl_pathc is 0. From Mark Kettenis. 2010-02-22 Todd C. Miller <Todd.Miller@courtesan.com> - * match.c: Check for pseudo-command by looking at the first - character of the command in sudoers instead of checking the - user-supplied command for a slash. + * match.c: Check for pseudo-command by looking at the first + character of the command in sudoers instead of checking the + user-supplied command for a slash. 2010-02-09 Todd C. Miller <Todd.Miller@courtesan.com> |