wok rev 21988
Up sudo (1.8.28) CVE-2019-14287
| author | Pascal Bellard <pascal.bellard@slitaz.org> |
|---|---|
| date | Tue Oct 15 10:14:15 2019 +0200 (2019-10-15) |
| parents | 7cba46a07853 |
| children | 40d959c94738 |
| files | linld/stuff/src/JUMP.ASM sudo-pam/receipt sudo/receipt |
line diff
1.1 --- a/linld/stuff/src/JUMP.ASM Tue Oct 15 08:46:53 2019 +0200 1.2 +++ b/linld/stuff/src/JUMP.ASM Tue Oct 15 10:14:15 2019 +0200 1.3 @@ -191,14 +191,13 @@ 1.4 jne @@notelks 1.5 xchg ax,si 1.6 endif 1.7 - push es 1.8 - pop ss 1.9 - mov cx,120h ; CS=0120 1.10 - push cx 1.11 + mov cx,100h ; DS=ES=SS=0100 1.12 + mov ss,cx 1.13 + mov es,cx 1.14 + mov ax,120h ; CS=0120 1.15 + push ax 1.16 push si ; IP=0000 1.17 - mov cl,0 ; DS=ES=SS=0100 1.18 - mov es,cx 1.19 - mov ch,05h ; 500h mini 1.20 + mov ch,040h ; 500h mini 1.21 rep 1.22 movsw 1.23 @@notelks:
2.1 --- a/sudo-pam/receipt Tue Oct 15 08:46:53 2019 +0200 2.2 +++ b/sudo-pam/receipt Tue Oct 15 10:14:15 2019 +0200 2.3 @@ -1,7 +1,7 @@ 2.4 # SliTaz package receipt. 2.5 2.6 PACKAGE="sudo-pam" 2.7 -VERSION="1.8.27" 2.8 +VERSION="1.8.28" 2.9 CATEGORY="security" 2.10 SHORT_DESC="Allows command execution as root for specified users using PAM." 2.11 MAINTAINER="erjo@slitaz.org"
3.1 --- a/sudo/receipt Tue Oct 15 08:46:53 2019 +0200 3.2 +++ b/sudo/receipt Tue Oct 15 10:14:15 2019 +0200 3.3 @@ -1,7 +1,7 @@ 3.4 # SliTaz package receipt. 3.5 3.6 PACKAGE="sudo" 3.7 -VERSION="1.8.27" 3.8 +VERSION="1.8.28" 3.9 CATEGORY="security" 3.10 SHORT_DESC="Allows command execution as root for specified users." 3.11 MAINTAINER="erjo@slitaz.org"