fixed 582057 1.7.2p6-1 thanks
On Tue, 18 May 2010 00:32:52 +0200, Moritz Naumann <bugs.debian....@moritz-naumann.com> wrote: > Package: sudo > Version: 1.6.9p17-2+lenny1 > Severity: important > > When invoking sudo with -u, passing an invalid (or valid but not > matching/existing) UID value, it segfaults. > > r...@pepper:~# sudo -u \#-1 > Segmentation fault > r...@pepper:~#
For what it's worth, this does not happen with the much-newer sudo version 1.7.2p6-1 that is in unstable and testing. > Please ensure this is not a security issue. This version is not one that I uploaded, it was apparently built and uploaded by Giuseppe Iuculano on behalf of the security team in March of this year. Adding him to the CC list to see if there's any interest in chasing this further. Bdale
pgpAgQr0Pcgjs.pgp
Description: PGP signature
