Update sudo to 1.8.31:

* Fixed CVE-2019-18634, a buffer overflow when the "pwfeedback" sudoers option is enabled on systems with uni-directional pipes. * The "sudoedit_checkdir" option now treats a user-owned directory as writable, even if it does not have the write bit set at the time of check. Symbolic links will no longer be followed by sudoedit in any user-owned directory. Bug #912 * Fixed sudoedit on macOS 10.15 and above where the root file system is mounted read-only. Bug #913. * Fixed a crash introduced in sudo 1.8.30 when suspending sudo at the password prompt. Bug #914. * Fixed compilation on systems where the mmap MAP_ANON flag is not available. Bug #915.
2020-01-30 18:47:11 +00:00 · 2020-01-30 18:47:11 +00:00 · 8fec1b1efc
commit 8fec1b1efc
parent bfad729920
2 changed files with 4 additions and 4 deletions
--- a/security/sudo/Makefile
+++ b/security/sudo/Makefile
@ -1,8 +1,8 @@
-# $OpenBSD: Makefile,v 1.37 2019/12/31 21:54:25 millert Exp $
+# $OpenBSD: Makefile,v 1.38 2020/01/30 18:47:11 millert Exp $

 COMMENT=	execute a command as another user

-DISTNAME=	sudo-1.8.30
+DISTNAME=	sudo-1.8.31
 CATEGORIES=	security

 MAINTAINER=	Todd C. Miller <millert@openbsd.org>
--- a/security/sudo/distinfo
+++ b/security/sudo/distinfo
@ -1,2 +1,2 @@
-SHA256 (sudo-1.8.30.tar.gz) = o1rT3cdGVwPgQZDT/wuNeN7ZJGdJvs+aAU3LnDHFeec=
-SIZE (sudo-1.8.30.tar.gz) = 3349455
+SHA256 (sudo-1.8.31.tar.gz) = fqjZejzuTIROCIfqehvYDrVMyY/XeWZ3bLGoBlOtRU8=
+SIZE (sudo-1.8.31.tar.gz) = 3350674