debcrafters-packages team mailing list archive

Thread
Date

[Bug 2125486] Re: [FFe] Please merge sudo 1.9.17p2-1 into questing

To: debcrafters-packages@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <2125486@xxxxxxxxxxxxxxxxxx>
Date: Thu, 02 Oct 2025 16:02:26 -0000
Reply-to: Bug 2125486 <2125486@xxxxxxxxxxxxxxxxxx>
Sender: noreply@xxxxxxxxxxxxx

This bug was fixed in the package sudo - 1.9.17p2-1ubuntu1

---------------
sudo (1.9.17p2-1ubuntu1) questing; urgency=medium

  * Merge with Debian unstable (LP: #2125486). Remaining changes:
    - debian/sudo[-ldap].init: delete init scripts, as they are no longer
      necessary.
    - debian/etc/pam.d/sudo[-i]:
      + Use pam_env to read /etc/environment and /etc/default/locale
        environment files. Reading ~/.pam_environment is not permitted due
        to security reasons.
    - debian/etc/sudoers:
      + also grant admin group sudo access
      + include /snap/bin in the secure_path
    - debian/tests/04-getroot-sssd:
      + Check if the slapd daemon is ready before proceeding.
      In some situations, the next command (ldapmodify) runs before
      the service is ready. See LP#2026888
    - set alternatives (LP #2111419)
    - remove sudo-ldap package (LP #2115781)
  * Drop Changes:
    - patches merges upstream CVE-2025-32463, CVE-2025-32462
    - man/man8/sudo_root.8, no longer required

sudo (1.9.17p2-1) unstable; urgency=medium

  [ Otto Kekäläinen ]
  * New upstream release

  [ Marc Haber ]
  * add debian/upstream/metadata.
    Thanks to Otto Kekäläinen
  * add debian/gbp.conf (to reflect new repo structure)
    Thanks to Otto Kekäläinen
  * split Build-Depends to Build-Depends-Arch
  * run wrap-and-sort

sudo (1.9.17p1-1) experimental; urgency=medium

  * New upstream version 1.9.17p1
    * this includes the upstream fixes for
      CVE-2025-32462 and CVE-2025-32463.
  * Add new italian debconf translation.
    Thanks to Ceppo (Closes: #1108208)

 -- Ravi Kant Sharma <ravi.kant.sharma@xxxxxxxxxxxxx>  Thu, 25 Sep 2025
14:47:20 +0200

** Changed in: sudo (Ubuntu)
       Status: Triaged => Fix Released

** CVE added: https://cve.org/CVERecord?id=CVE-2025-32462

** CVE added: https://cve.org/CVERecord?id=CVE-2025-32463

-- 
You received this bug notification because you are a member of
Debcrafters packages, which is subscribed to sudo in Ubuntu.
https://bugs.launchpad.net/bugs/2125486

Title:
  [FFe] Please merge sudo 1.9.17p2-1  into questing

Status in sudo package in Ubuntu:
  Fix Released

Bug description:
  I don't have a good rational other than that we are switching to sudo-
  rs by default, users should be able to test and compare their use
  cases against the latest version of sudo. The release has some new
  features and a lot of bug fixes https://github.com/sudo-
  project/sudo/releases/tag/v1.9.17.

  ❯ seeded-in-ubuntu sudo
  sudo (from sudo) is seeded in:
    edubuntu: daily-live, daily-preinstalled
    kubuntu: daily-live
    lubuntu: daily-live
    ubuntu-budgie: daily-live
    ubuntu-core-installer: daily-live
    ubuntu-mate: daily-live
    ubuntu-server: daily-live, daily-preinstalled
    ubuntu-unity: daily-live
    ubuntu-wsl: daily-live
    ubuntu: daily-dangerous, daily-live, daily-preinstalled
    ubuntucinnamon: daily-live
    ubuntukylin: daily-live
    ubuntustudio: daily-live
    xubuntu: daily-live, daily-minimal

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/2125486/+subscriptions

References

[Bug 2125486] [NEW] [FFe] Please merge sudo 1.9.17p2-1 into questing
From: Ravi Kant Sharma, 2025-09-23