This patch will upgrade Sudo version 1.7.2 patchlevel 3 to Sudo version 1.7.2 patchlevel 4. To apply: $ cd sudo-1.7.2p3 $ patch -p1 < sudo-1.7.2p4.patch diff -urNa sudo-1.7.2p3/ChangeLog sudo-1.7.2p4/ChangeLog --- sudo-1.7.2p3/ChangeLog Sat Feb 13 07:50:56 2010 +++ sudo-1.7.2p4/ChangeLog Mon Feb 22 20:09:54 2010 @@ -1,4 +1,11 @@ +2010-02-22 Todd C. Miller + + * match.c: Check for pseudo-command by looking at the first + character of the command in sudoers instead of checking the + user-supplied command for a slash. + 2010-02-09 Todd C. Miller + * toke.l: Fix size arg when realloc()ing include stack. From Daniel Kopecek diff -urNa sudo-1.7.2p3/configure sudo-1.7.2p4/configure --- sudo-1.7.2p3/configure Sat Feb 6 15:18:15 2010 +++ sudo-1.7.2p4/configure Mon Feb 22 20:06:49 2010 @@ -1,6 +1,6 @@ #! /bin/sh # Guess values for system-dependent variables and create Makefiles. -# Generated by GNU Autoconf 2.61 for sudo 1.7.2p3. +# Generated by GNU Autoconf 2.61 for sudo 1.7.2p4. # # Report bugs to . # @@ -724,8 +724,8 @@ # Identity of this package. PACKAGE_NAME='sudo' PACKAGE_TARNAME='sudo' -PACKAGE_VERSION='1.7.2p3' -PACKAGE_STRING='sudo 1.7.2p3' +PACKAGE_VERSION='1.7.2p4' +PACKAGE_STRING='sudo 1.7.2p4' PACKAGE_BUGREPORT='http://www.sudo.ws/bugs/' # Factoring default headers for most tests. @@ -1417,7 +1417,7 @@ # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF -\`configure' configures sudo 1.7.2p3 to adapt to many kinds of systems. +\`configure' configures sudo 1.7.2p4 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... @@ -1482,7 +1482,7 @@ if test -n "$ac_init_help"; then case $ac_init_help in - short | recursive ) echo "Configuration of sudo 1.7.2p3:";; + short | recursive ) echo "Configuration of sudo 1.7.2p4:";; esac cat <<\_ACEOF @@ -1684,7 +1684,7 @@ test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF -sudo configure 1.7.2p3 +sudo configure 1.7.2p4 generated by GNU Autoconf 2.61 Copyright (C) 1992, 1993, 1994, 1995, 1996, 1998, 1999, 2000, 2001, @@ -1698,7 +1698,7 @@ This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. -It was created by sudo $as_me 1.7.2p3, which was +It was created by sudo $as_me 1.7.2p4, which was generated by GNU Autoconf 2.61. Invocation command line was $ $0 $@ @@ -24558,7 +24558,7 @@ # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" -This file was extended by sudo $as_me 1.7.2p3, which was +This file was extended by sudo $as_me 1.7.2p4, which was generated by GNU Autoconf 2.61. Invocation command line was CONFIG_FILES = $CONFIG_FILES @@ -24607,7 +24607,7 @@ _ACEOF cat >>$CONFIG_STATUS <<_ACEOF ac_cs_version="\\ -sudo config.status 1.7.2p3 +sudo config.status 1.7.2p4 configured by $0, generated by GNU Autoconf 2.61, with options \\"`echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`\\" diff -urNa sudo-1.7.2p3/configure.in sudo-1.7.2p4/configure.in --- sudo-1.7.2p3/configure.in Sat Feb 6 15:18:01 2010 +++ sudo-1.7.2p4/configure.in Mon Feb 22 20:06:38 2010 @@ -4,7 +4,7 @@ dnl dnl Copyright (c) 1994-1996,1998-2009 Todd C. Miller dnl -AC_INIT([sudo], [1.7.2p3], [http://www.sudo.ws/bugs/], [sudo]) +AC_INIT([sudo], [1.7.2p4], [http://www.sudo.ws/bugs/], [sudo]) AC_CONFIG_HEADER(config.h pathnames.h) dnl dnl This won't work before AC_INIT diff -urNa sudo-1.7.2p3/match.c sudo-1.7.2p4/match.c --- sudo-1.7.2p3/match.c Mon Nov 23 19:59:27 2009 +++ sudo-1.7.2p4/match.c Mon Feb 22 17:31:21 2010 @@ -379,7 +379,7 @@ char *sudoers_args; { /* Check for pseudo-commands */ - if (strchr(user_cmnd, '/') == NULL) { + if (sudoers_cmnd[0] != '/') { /* * Return true if both sudoers_cmnd and user_cmnd are "sudoedit" AND * a) there are no args in sudoers OR diff -urNa sudo-1.7.2p3/sudo.cat sudo-1.7.2p4/sudo.cat --- sudo-1.7.2p3/sudo.cat Thu Dec 17 10:05:02 2009 +++ sudo-1.7.2p4/sudo.cat Tue Feb 23 06:31:59 2010 @@ -61,7 +61,7 @@ -1.7.2p3 November 24, 2009 1 +1.7.2p4 February 22, 2010 1 @@ -127,7 +127,7 @@ -1.7.2p3 November 24, 2009 2 +1.7.2p4 February 22, 2010 2 @@ -193,7 +193,7 @@ -1.7.2p3 November 24, 2009 3 +1.7.2p4 February 22, 2010 3 @@ -259,7 +259,7 @@ -1.7.2p3 November 24, 2009 4 +1.7.2p4 February 22, 2010 4 @@ -325,7 +325,7 @@ -1.7.2p3 November 24, 2009 5 +1.7.2p4 February 22, 2010 5 @@ -391,7 +391,7 @@ -1.7.2p3 November 24, 2009 6 +1.7.2p4 February 22, 2010 6 @@ -457,7 +457,7 @@ -1.7.2p3 November 24, 2009 7 +1.7.2p4 February 22, 2010 7 @@ -523,7 +523,7 @@ -1.7.2p3 November 24, 2009 8 +1.7.2p4 February 22, 2010 8 @@ -589,7 +589,7 @@ -1.7.2p3 November 24, 2009 9 +1.7.2p4 February 22, 2010 9 @@ -655,6 +655,6 @@ -1.7.2p3 November 24, 2009 10 +1.7.2p4 February 22, 2010 10 diff -urNa sudo-1.7.2p3/sudo.man.in sudo-1.7.2p4/sudo.man.in --- sudo-1.7.2p3/sudo.man.in Thu Dec 17 10:04:16 2009 +++ sudo-1.7.2p4/sudo.man.in Tue Feb 23 06:31:00 2010 @@ -145,7 +145,7 @@ .\" ======================================================================== .\" .IX Title "SUDO @mansectsu@" -.TH SUDO @mansectsu@ "November 24, 2009" "1.7.2p3" "MAINTENANCE COMMANDS" +.TH SUDO @mansectsu@ "February 22, 2010" "1.7.2p4" "MAINTENANCE COMMANDS" .\" For nroff, turn off justification. Always turn off hyphenation; it makes .\" way too many mistakes in technical documents. .if n .ad l diff -urNa sudo-1.7.2p3/sudoers.cat sudo-1.7.2p4/sudoers.cat --- sudo-1.7.2p3/sudoers.cat Thu Dec 17 10:05:06 2009 +++ sudo-1.7.2p4/sudoers.cat Tue Feb 23 06:32:00 2010 @@ -61,7 +61,7 @@ -1.7.2p3 November 24, 2009 1 +1.7.2p4 February 22, 2010 1 @@ -127,7 +127,7 @@ -1.7.2p3 November 24, 2009 2 +1.7.2p4 February 22, 2010 2 @@ -193,7 +193,7 @@ -1.7.2p3 November 24, 2009 3 +1.7.2p4 February 22, 2010 3 @@ -259,7 +259,7 @@ -1.7.2p3 November 24, 2009 4 +1.7.2p4 February 22, 2010 4 @@ -325,7 +325,7 @@ -1.7.2p3 November 24, 2009 5 +1.7.2p4 February 22, 2010 5 @@ -391,7 +391,7 @@ -1.7.2p3 November 24, 2009 6 +1.7.2p4 February 22, 2010 6 @@ -457,7 +457,7 @@ -1.7.2p3 November 24, 2009 7 +1.7.2p4 February 22, 2010 7 @@ -523,7 +523,7 @@ -1.7.2p3 November 24, 2009 8 +1.7.2p4 February 22, 2010 8 @@ -589,7 +589,7 @@ -1.7.2p3 November 24, 2009 9 +1.7.2p4 February 22, 2010 9 @@ -655,7 +655,7 @@ -1.7.2p3 November 24, 2009 10 +1.7.2p4 February 22, 2010 10 @@ -721,7 +721,7 @@ -1.7.2p3 November 24, 2009 11 +1.7.2p4 February 22, 2010 11 @@ -787,7 +787,7 @@ -1.7.2p3 November 24, 2009 12 +1.7.2p4 February 22, 2010 12 @@ -853,7 +853,7 @@ -1.7.2p3 November 24, 2009 13 +1.7.2p4 February 22, 2010 13 @@ -919,7 +919,7 @@ -1.7.2p3 November 24, 2009 14 +1.7.2p4 February 22, 2010 14 @@ -985,7 +985,7 @@ -1.7.2p3 November 24, 2009 15 +1.7.2p4 February 22, 2010 15 @@ -1051,7 +1051,7 @@ -1.7.2p3 November 24, 2009 16 +1.7.2p4 February 22, 2010 16 @@ -1117,7 +1117,7 @@ -1.7.2p3 November 24, 2009 17 +1.7.2p4 February 22, 2010 17 @@ -1183,7 +1183,7 @@ -1.7.2p3 November 24, 2009 18 +1.7.2p4 February 22, 2010 18 @@ -1249,7 +1249,7 @@ -1.7.2p3 November 24, 2009 19 +1.7.2p4 February 22, 2010 19 @@ -1315,7 +1315,7 @@ -1.7.2p3 November 24, 2009 20 +1.7.2p4 February 22, 2010 20 @@ -1381,7 +1381,7 @@ -1.7.2p3 November 24, 2009 21 +1.7.2p4 February 22, 2010 21 @@ -1447,7 +1447,7 @@ -1.7.2p3 November 24, 2009 22 +1.7.2p4 February 22, 2010 22 @@ -1513,7 +1513,7 @@ -1.7.2p3 November 24, 2009 23 +1.7.2p4 February 22, 2010 23 @@ -1579,7 +1579,7 @@ -1.7.2p3 November 24, 2009 24 +1.7.2p4 February 22, 2010 24 @@ -1645,6 +1645,6 @@ -1.7.2p3 November 24, 2009 25 +1.7.2p4 February 22, 2010 25 diff -urNa sudo-1.7.2p3/sudoers.ldap.cat sudo-1.7.2p4/sudoers.ldap.cat --- sudo-1.7.2p3/sudoers.ldap.cat Thu Dec 17 10:05:11 2009 +++ sudo-1.7.2p4/sudoers.ldap.cat Tue Feb 23 06:32:00 2010 @@ -61,7 +61,7 @@ -1.7.2p3 June 11, 2009 1 +1.7.2p4 February 22, 2010 1 @@ -127,7 +127,7 @@ -1.7.2p3 June 11, 2009 2 +1.7.2p4 February 22, 2010 2 @@ -193,7 +193,7 @@ -1.7.2p3 June 11, 2009 3 +1.7.2p4 February 22, 2010 3 @@ -259,7 +259,7 @@ -1.7.2p3 June 11, 2009 4 +1.7.2p4 February 22, 2010 4 @@ -325,7 +325,7 @@ -1.7.2p3 June 11, 2009 5 +1.7.2p4 February 22, 2010 5 @@ -391,7 +391,7 @@ -1.7.2p3 June 11, 2009 6 +1.7.2p4 February 22, 2010 6 @@ -457,7 +457,7 @@ -1.7.2p3 June 11, 2009 7 +1.7.2p4 February 22, 2010 7 @@ -523,7 +523,7 @@ -1.7.2p3 June 11, 2009 8 +1.7.2p4 February 22, 2010 8 @@ -589,7 +589,7 @@ -1.7.2p3 June 11, 2009 9 +1.7.2p4 February 22, 2010 9 @@ -655,7 +655,7 @@ -1.7.2p3 June 11, 2009 10 +1.7.2p4 February 22, 2010 10 @@ -721,7 +721,7 @@ -1.7.2p3 June 11, 2009 11 +1.7.2p4 February 22, 2010 11 @@ -787,6 +787,6 @@ -1.7.2p3 June 11, 2009 12 +1.7.2p4 February 22, 2010 12 diff -urNa sudo-1.7.2p3/sudoers.ldap.man.in sudo-1.7.2p4/sudoers.ldap.man.in --- sudo-1.7.2p3/sudoers.ldap.man.in Thu Dec 17 10:04:35 2009 +++ sudo-1.7.2p4/sudoers.ldap.man.in Tue Feb 23 06:31:14 2010 @@ -149,7 +149,7 @@ .\" ======================================================================== .\" .IX Title "SUDOERS.LDAP @mansectform@" -.TH SUDOERS.LDAP @mansectform@ "June 11, 2009" "1.7.2p3" "MAINTENANCE COMMANDS" +.TH SUDOERS.LDAP @mansectform@ "February 22, 2010" "1.7.2p4" "MAINTENANCE COMMANDS" .\" For nroff, turn off justification. Always turn off hyphenation; it makes .\" way too many mistakes in technical documents. .if n .ad l diff -urNa sudo-1.7.2p3/sudoers.man.in sudo-1.7.2p4/sudoers.man.in --- sudo-1.7.2p3/sudoers.man.in Thu Dec 17 10:04:40 2009 +++ sudo-1.7.2p4/sudoers.man.in Tue Feb 23 06:31:31 2010 @@ -145,7 +145,7 @@ .\" ======================================================================== .\" .IX Title "SUDOERS @mansectform@" -.TH SUDOERS @mansectform@ "November 24, 2009" "1.7.2p3" "MAINTENANCE COMMANDS" +.TH SUDOERS @mansectform@ "February 22, 2010" "1.7.2p4" "MAINTENANCE COMMANDS" .\" For nroff, turn off justification. Always turn off hyphenation; it makes .\" way too many mistakes in technical documents. .if n .ad l diff -urNa sudo-1.7.2p3/visudo.cat sudo-1.7.2p4/visudo.cat --- sudo-1.7.2p3/visudo.cat Thu Dec 17 10:05:14 2009 +++ sudo-1.7.2p4/visudo.cat Tue Feb 23 06:32:00 2010 @@ -61,7 +61,7 @@ -1.7.2p3 June 11, 2009 1 +1.7.2p4 February 22, 2010 1 @@ -127,7 +127,7 @@ -1.7.2p3 June 11, 2009 2 +1.7.2p4 February 22, 2010 2 @@ -193,6 +193,6 @@ -1.7.2p3 June 11, 2009 3 +1.7.2p4 February 22, 2010 3 diff -urNa sudo-1.7.2p3/visudo.man.in sudo-1.7.2p4/visudo.man.in --- sudo-1.7.2p3/visudo.man.in Thu Dec 17 10:04:58 2009 +++ sudo-1.7.2p4/visudo.man.in Tue Feb 23 06:31:47 2010 @@ -153,7 +153,7 @@ .\" ======================================================================== .\" .IX Title "VISUDO @mansectsu@" -.TH VISUDO @mansectsu@ "June 11, 2009" "1.7.2p3" "MAINTENANCE COMMANDS" +.TH VISUDO @mansectsu@ "February 22, 2010" "1.7.2p4" "MAINTENANCE COMMANDS" .\" For nroff, turn off justification. Always turn off hyphenation; it makes .\" way too many mistakes in technical documents. .if n .ad l