Bug#673766: marked as done (CVE-2012-2337: IP addresses in sudoers with netmask may match additional hosts)

[Debian Bug Tracking System]

Your message dated Thu, 24 May 2012 21:09:40 +0000
with message-id <e1sxfhw-0001q1...@franck.debian.org>
and subject line Bug#673766: fixed in sudo 1.8.3p2-1.1
has caused the Debian Bug report #673766,
regarding CVE-2012-2337: IP addresses in sudoers with netmask may match 
additional hosts
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
673766: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=673766
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Package: sudo
Severity: grave
Tags: security

Please see http://www.sudo.ws/sudo/alerts/netmask.html

Cheers,
        Moritz

--- End Message ---

--- Begin Message ---

Source: sudo
Source-Version: 1.8.3p2-1.1

We believe that the bug you reported is fixed in the latest version of
sudo, which is due to be installed in the Debian FTP archive:

sudo-ldap_1.8.3p2-1.1_amd64.deb
  to main/s/sudo/sudo-ldap_1.8.3p2-1.1_amd64.deb
sudo_1.8.3p2-1.1.debian.tar.gz
  to main/s/sudo/sudo_1.8.3p2-1.1.debian.tar.gz
sudo_1.8.3p2-1.1.dsc
  to main/s/sudo/sudo_1.8.3p2-1.1.dsc
sudo_1.8.3p2-1.1_amd64.deb
  to main/s/sudo/sudo_1.8.3p2-1.1_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 673...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Dmitrijs Ledkovs <x...@debian.org> (supplier of updated sudo package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 22 May 2012 12:23:00 +0100
Source: sudo
Binary: sudo sudo-ldap
Architecture: source amd64
Version: 1.8.3p2-1.1
Distribution: unstable
Urgency: high
Maintainer: Bdale Garbee <bd...@gag.com>
Changed-By: Dmitrijs Ledkovs <x...@debian.org>
Description: 
 sudo       - Provide limited super user privileges to specific users
 sudo-ldap  - Provide limited super user privileges to specific users
Closes: 673766
Changes: 
 sudo (1.8.3p2-1.1) unstable; urgency=high
 .
   * Non-maintainer upload.
   * SECURITY UPDATE: Properly handle netmasks in sudoers Host and Host_List
     values (LP: #1000276, Closes: #673766, CVE-2012-2337)
     - debian/patches/CVE-2012-2337.patch: Don't perform IPv6 checks on IPv4
       addresses. Based on upstream patch.
Checksums-Sha1: 
 d64a4d0d9600401479ff991f043ef7ea6c9aa170 1873 sudo_1.8.3p2-1.1.dsc
 3009fb7249cdc71330518370ace2d2747226a62a 22640 sudo_1.8.3p2-1.1.debian.tar.gz
 e53578ce82d0c0ac42ecfaca09899df72b4606d4 681172 sudo_1.8.3p2-1.1_amd64.deb
 18c11dddfb813dd521e02a13c3f253363dbfdef5 707290 sudo-ldap_1.8.3p2-1.1_amd64.deb
Checksums-Sha256: 
 47d4a2e1096fbd4316d0c6dd55f0c3a8694cab38606566ae305ec2d1bc8a5ced 1873 
sudo_1.8.3p2-1.1.dsc
 3987b471b0b93ca3bf9c75221a8a1dea88de570bf4c357fd23b89843458f0fa2 22640 
sudo_1.8.3p2-1.1.debian.tar.gz
 5eb1c80261f67bd4dfa93b0455b9104c73f1efa8b410ec740e3431b0a1296d55 681172 
sudo_1.8.3p2-1.1_amd64.deb
 5d25914386d3a4778972a393f613e146f244ecd90de64d7e9b283d2b933122ca 707290 
sudo-ldap_1.8.3p2-1.1_amd64.deb
Files: 
 73c50a9c9c05f3586ec2fea48db7fe92 1873 admin optional sudo_1.8.3p2-1.1.dsc
 11bd4c9f1f275fe05a240964aff6bb91 22640 admin optional 
sudo_1.8.3p2-1.1.debian.tar.gz
 03f6b2045610e3c46f98f535fb9ea4e5 681172 admin optional 
sudo_1.8.3p2-1.1_amd64.deb
 9d7f365e762ec2f353ff846a89b2bbac 707290 admin optional 
sudo-ldap_1.8.3p2-1.1_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
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=ykBa
-----END PGP SIGNATURE-----

--- End Message ---