Skip to navigation

Bug Fix Advisory sudo bug fix and enhancement update

Advisory: RHBA-2013:0363-1
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2013-02-20
Last updated on: 2013-02-20
Affected Products: Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Workstation (v. 6)
CVEs (cve.mitre.org): CVE-2013-1776

Details

Updated sudo packages that fix several bugs and add various enhancements are now
available for Red Hat Enterprise Linux 6.

The sudo (super user do) utility allows system administrators to give certain
users the ability to run commands as root.

The updated sudo packages include numerous bug fixes and enhancements. Space
precludes documenting all of these changes in this advisory. Users are directed
to the Red Hat Enterprise Linux 6.4 Technical Notes for information on the most
significant of these changes:

https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.4_Technical_Notes/sudo.html

Users of sudo are advised to upgrade to these updated packages, which fix these
bugs and add these enhancements.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258

Updated packages

Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
sudo-1.8.6p3-7.el6.src.rpm
File outdated by:  RHSA-2013:1701
    MD5: b255a3359b9ddbccdf858f4e74f23b67
SHA-256: 2cf38e2d20225605405468d2538abf7b1243e7d5b723d9b5c7a33b6bc658bfbc
 
IA-32:
sudo-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 92833eae3aabf7d47114beb7a272d238
SHA-256: d6bc43e8e4c2d9f7408f8f05e8e223d5600421adf84868382e5153e111523853
sudo-debuginfo-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 35c99fd421778ddc9e4c4a6385fc7d36
SHA-256: 723abd43573bce4705328a06e16786ea00b25ede2a5310c99465eebe056c10a8
sudo-devel-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 182985e36b03b61f7ac6926f189aef62
SHA-256: 532008feca3d140a98ae2c47141f6de6d7335d12f45698205d0689c80bd554c5
 
x86_64:
sudo-1.8.6p3-7.el6.x86_64.rpm
File outdated by:  RHSA-2013:1701
    MD5: f4be513cf1a8ed5dbbe5f0487dd8cb80
SHA-256: 23e3c9a62e6a997da98dfc61dc3d6382f6de30cb8d699760317ae66e761d9958
sudo-debuginfo-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 35c99fd421778ddc9e4c4a6385fc7d36
SHA-256: 723abd43573bce4705328a06e16786ea00b25ede2a5310c99465eebe056c10a8
sudo-debuginfo-1.8.6p3-7.el6.x86_64.rpm
File outdated by:  RHSA-2013:1701
    MD5: f28ec19bbd55c19b53cce3dc8fd3512f
SHA-256: 4a8925aec520fc1c665df0826777f3d1438b3bbf94640545f626b64c4aae845b
sudo-devel-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 182985e36b03b61f7ac6926f189aef62
SHA-256: 532008feca3d140a98ae2c47141f6de6d7335d12f45698205d0689c80bd554c5
sudo-devel-1.8.6p3-7.el6.x86_64.rpm
File outdated by:  RHSA-2013:1701
    MD5: 77e02c54ed7dceb041912ff5f56c67e6
SHA-256: 5a845176ff0c0c9d49ad6457574e54767b76523ab04defa015064b11c560cee0
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
sudo-1.8.6p3-7.el6.src.rpm
File outdated by:  RHSA-2013:1701
    MD5: b255a3359b9ddbccdf858f4e74f23b67
SHA-256: 2cf38e2d20225605405468d2538abf7b1243e7d5b723d9b5c7a33b6bc658bfbc
 
x86_64:
sudo-1.8.6p3-7.el6.x86_64.rpm
File outdated by:  RHSA-2013:1701
    MD5: f4be513cf1a8ed5dbbe5f0487dd8cb80
SHA-256: 23e3c9a62e6a997da98dfc61dc3d6382f6de30cb8d699760317ae66e761d9958
sudo-debuginfo-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 35c99fd421778ddc9e4c4a6385fc7d36
SHA-256: 723abd43573bce4705328a06e16786ea00b25ede2a5310c99465eebe056c10a8
sudo-debuginfo-1.8.6p3-7.el6.x86_64.rpm
File outdated by:  RHSA-2013:1701
    MD5: f28ec19bbd55c19b53cce3dc8fd3512f
SHA-256: 4a8925aec520fc1c665df0826777f3d1438b3bbf94640545f626b64c4aae845b
sudo-devel-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 182985e36b03b61f7ac6926f189aef62
SHA-256: 532008feca3d140a98ae2c47141f6de6d7335d12f45698205d0689c80bd554c5
sudo-devel-1.8.6p3-7.el6.x86_64.rpm
File outdated by:  RHSA-2013:1701
    MD5: 77e02c54ed7dceb041912ff5f56c67e6
SHA-256: 5a845176ff0c0c9d49ad6457574e54767b76523ab04defa015064b11c560cee0
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
sudo-1.8.6p3-7.el6.src.rpm
File outdated by:  RHSA-2013:1701
    MD5: b255a3359b9ddbccdf858f4e74f23b67
SHA-256: 2cf38e2d20225605405468d2538abf7b1243e7d5b723d9b5c7a33b6bc658bfbc
 
IA-32:
sudo-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 92833eae3aabf7d47114beb7a272d238
SHA-256: d6bc43e8e4c2d9f7408f8f05e8e223d5600421adf84868382e5153e111523853
sudo-debuginfo-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 35c99fd421778ddc9e4c4a6385fc7d36
SHA-256: 723abd43573bce4705328a06e16786ea00b25ede2a5310c99465eebe056c10a8
sudo-devel-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 182985e36b03b61f7ac6926f189aef62
SHA-256: 532008feca3d140a98ae2c47141f6de6d7335d12f45698205d0689c80bd554c5
 
PPC:
sudo-1.8.6p3-7.el6.ppc64.rpm
File outdated by:  RHSA-2013:1701
    MD5: ec1d5c0ff4fb284a143f4a2e414b2d49
SHA-256: 8dbc7044778e8a56951f0a638bd39d0c8535c5621fa03858c77c09c8e042eef2
sudo-debuginfo-1.8.6p3-7.el6.ppc.rpm
File outdated by:  RHSA-2013:1701
    MD5: 40e0464ed7e451eaa6c729381da84c62
SHA-256: 0b22d5774943ce5c7f6f07c1e495c1f677974e20a70f0ac79c518ab3a1b770ca
sudo-debuginfo-1.8.6p3-7.el6.ppc64.rpm
File outdated by:  RHSA-2013:1701
    MD5: 1f1ed2e0db6407f823c5a4f17c3c5674
SHA-256: 6aff6f29523baad70b78d255277678a2c26081884a8880c5e74d2729af8284a7
sudo-devel-1.8.6p3-7.el6.ppc.rpm
File outdated by:  RHSA-2013:1701
    MD5: 4087b07bfa0687c5e68d6b86dc56a7b3
SHA-256: 047a18a8b231a7a83137e12e72a4482619818d1cfd69597cbe2a28cd181797f9
sudo-devel-1.8.6p3-7.el6.ppc64.rpm
File outdated by:  RHSA-2013:1701
    MD5: dc6ae348608e49b25d51e407db63bee9
SHA-256: 760ba3277b14a10d89ce838e1e5a2f1458f8e4c3572b83645df7a2628bde6caf
 
s390x:
sudo-1.8.6p3-7.el6.s390x.rpm
File outdated by:  RHSA-2013:1701
    MD5: 74a228861e858e09ffaebd89f3750e8e
SHA-256: 44e67e8ca949632c92a3e933b5490277bb1cb50654e82294810500681c91e6f6
sudo-debuginfo-1.8.6p3-7.el6.s390.rpm
File outdated by:  RHSA-2013:1701
    MD5: b803642823c27043955cd6270627e4d9
SHA-256: 6c3254409aa3b3a970141bc4c11318b74c4ceed811df56f797e5c88c0e05a03f
sudo-debuginfo-1.8.6p3-7.el6.s390x.rpm
File outdated by:  RHSA-2013:1701
    MD5: 66d815cc9991a6e1bc456cd164ec0991
SHA-256: 4cd66b5478730ec49f3194ca21d21e2d770249f18648a0d56cb196885984496d
sudo-devel-1.8.6p3-7.el6.s390.rpm
File outdated by:  RHSA-2013:1701
    MD5: 591ed0e09d5f5a7e0595a0f06e6f04a3
SHA-256: 70a61a937075986a332df218ffcc72876344c971453fd3359ab4f4b43b6e1560
sudo-devel-1.8.6p3-7.el6.s390x.rpm
File outdated by:  RHSA-2013:1701
    MD5: c1e83d303bba9ff691510a09fcd3c887
SHA-256: 7d018b8ddc49f0898e9b08e9d207bec576d5e634dc2e916485918ebdbd6843b6
 
x86_64:
sudo-1.8.6p3-7.el6.x86_64.rpm
File outdated by:  RHSA-2013:1701
    MD5: f4be513cf1a8ed5dbbe5f0487dd8cb80
SHA-256: 23e3c9a62e6a997da98dfc61dc3d6382f6de30cb8d699760317ae66e761d9958
sudo-debuginfo-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 35c99fd421778ddc9e4c4a6385fc7d36
SHA-256: 723abd43573bce4705328a06e16786ea00b25ede2a5310c99465eebe056c10a8
sudo-debuginfo-1.8.6p3-7.el6.x86_64.rpm
File outdated by:  RHSA-2013:1701
    MD5: f28ec19bbd55c19b53cce3dc8fd3512f
SHA-256: 4a8925aec520fc1c665df0826777f3d1438b3bbf94640545f626b64c4aae845b
sudo-devel-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 182985e36b03b61f7ac6926f189aef62
SHA-256: 532008feca3d140a98ae2c47141f6de6d7335d12f45698205d0689c80bd554c5
sudo-devel-1.8.6p3-7.el6.x86_64.rpm
File outdated by:  RHSA-2013:1701
    MD5: 77e02c54ed7dceb041912ff5f56c67e6
SHA-256: 5a845176ff0c0c9d49ad6457574e54767b76523ab04defa015064b11c560cee0
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
sudo-1.8.6p3-7.el6.src.rpm
File outdated by:  RHSA-2013:1701
    MD5: b255a3359b9ddbccdf858f4e74f23b67
SHA-256: 2cf38e2d20225605405468d2538abf7b1243e7d5b723d9b5c7a33b6bc658bfbc
 
IA-32:
sudo-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 92833eae3aabf7d47114beb7a272d238
SHA-256: d6bc43e8e4c2d9f7408f8f05e8e223d5600421adf84868382e5153e111523853
sudo-debuginfo-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 35c99fd421778ddc9e4c4a6385fc7d36
SHA-256: 723abd43573bce4705328a06e16786ea00b25ede2a5310c99465eebe056c10a8
sudo-devel-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 182985e36b03b61f7ac6926f189aef62
SHA-256: 532008feca3d140a98ae2c47141f6de6d7335d12f45698205d0689c80bd554c5
 
x86_64:
sudo-1.8.6p3-7.el6.x86_64.rpm
File outdated by:  RHSA-2013:1701
    MD5: f4be513cf1a8ed5dbbe5f0487dd8cb80
SHA-256: 23e3c9a62e6a997da98dfc61dc3d6382f6de30cb8d699760317ae66e761d9958
sudo-debuginfo-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 35c99fd421778ddc9e4c4a6385fc7d36
SHA-256: 723abd43573bce4705328a06e16786ea00b25ede2a5310c99465eebe056c10a8
sudo-debuginfo-1.8.6p3-7.el6.x86_64.rpm
File outdated by:  RHSA-2013:1701
    MD5: f28ec19bbd55c19b53cce3dc8fd3512f
SHA-256: 4a8925aec520fc1c665df0826777f3d1438b3bbf94640545f626b64c4aae845b
sudo-devel-1.8.6p3-7.el6.i686.rpm
File outdated by:  RHSA-2013:1701
    MD5: 182985e36b03b61f7ac6926f189aef62
SHA-256: 532008feca3d140a98ae2c47141f6de6d7335d12f45698205d0689c80bd554c5
sudo-devel-1.8.6p3-7.el6.x86_64.rpm
File outdated by:  RHSA-2013:1701
    MD5: 77e02c54ed7dceb041912ff5f56c67e6
SHA-256: 5a845176ff0c0c9d49ad6457574e54767b76523ab04defa015064b11c560cee0
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

759480 - Rebase sudo to 1.8 in RHEL 6.4
789937 - [RFE] Add ability to treat files authoritatively in sudoers.ldap
804123 - sudo does not call pam_close_session() or pam_end()
852045 - ulimit -c got Operation not permitted
860397 - new /etc/sudo-ldap.conf configuration file problems
872740 - SPACE INVADES SUDO!
876208 - sudoRunAsUser #uid specification doesn't work
876578 - erealloc3 error on sssd sudoHost netgroup mismatch
879633 - sudo + sssd + local user sends e-mail to administrator
903020 - sudoers containing specially crafted aliases causes segfault of visudo


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/