sudo-ldap - Provide limited super user privileges to specific users

Sudo is a program designed to allow a sysadmin to give limited root privileges to users and log root activity. The basic philosophy is to give as few privileges as possible but still allow people to get their work done.
This version is built with LDAP support, which allows an equivalent of the sudoers database to be distributed via LDAP. Authentication is still performed via pam.

Original maintainer	Bdale Garbee
Homepage	http://www.sudo.ws/

Ubuntu 20.04

Debian 10.0

Ubuntu 19.04

Ubuntu 19.10

Ubuntu 18.10

Ubuntu 18.04 LTS

Ubuntu 17.10

Debian 9.0

Ubuntu 16.04 LTS

Distribution		Version	Since	Package	Installed	Packager
Debian 10.0 buster/main	deb	1.8.27-1+deb10u2	2020-02-08	1.22 MiB	3.77 MiB	Bdale Garbee
Debian 9.0 stretch/main	deb	1.8.19p1-2.1+deb9u2	2020-02-08	1.03 MiB	3.01 MiB	Bdale Garbee
Ubuntu 17.10 artful/universe	deb	1.8.20p2-1ubuntu1	2017-11-10	435 kiB	1.7 MiB	Ubuntu Developers
Ubuntu 18.04 LTS bionic/universe	deb	1.8.21p2-3ubuntu1	2018-01-27	458 kiB	1.76 MiB	Ubuntu Developers
Ubuntu 18.04 LTS bionic-security/universe	deb	1.8.21p2-3ubuntu1.2	2020-02-03	457 kiB	1.76 MiB	Ubuntu Developers
Ubuntu 18.04 LTS bionic-updates/universe	deb	1.8.21p2-3ubuntu1.2	2020-02-03	457 kiB	1.76 MiB	Ubuntu Developers
Ubuntu 18.10 cosmic/universe	deb	1.8.23-2ubuntu1	2019-01-14	516 kiB	2.09 MiB	Ubuntu Developers
Ubuntu 19.04 disco/universe	deb	1.8.27-1ubuntu1	2019-02-19	526 kiB	2.14 MiB	Ubuntu Developers
Ubuntu 19.04 disco-security/universe	deb	1.8.27-1ubuntu1.1	2019-10-14	525 kiB	2.14 MiB	Ubuntu Developers
Ubuntu 19.04 disco-updates/universe	deb	1.8.27-1ubuntu1.1	2019-10-14	525 kiB	2.14 MiB	Ubuntu Developers
Ubuntu 19.10 eoan/universe	deb	1.8.27-1ubuntu4	2019-10-15	525 kiB	2.16 MiB	Ubuntu Developers
Ubuntu 19.10 eoan-security/universe	deb	1.8.27-1ubuntu4.1	2020-02-03	526 kiB	2.16 MiB	Ubuntu Developers
Ubuntu 19.10 eoan-updates/universe	deb	1.8.27-1ubuntu4.1	2020-02-03	526 kiB	2.16 MiB	Ubuntu Developers
Ubuntu 20.04 focal/universe	deb	1.8.31-1ubuntu1	2020-02-10	537 kiB	2.23 MiB	Ubuntu Developers
Ubuntu 16.04 LTS xenial/universe	deb	1.8.16-0ubuntu1	2017-11-10	410 kiB	1.61 MiB	Ubuntu Developers
Ubuntu 16.04 LTS xenial-security/universe	deb	1.8.16-0ubuntu1.9	2020-02-03	410 kiB	1.61 MiB	Ubuntu Developers
Ubuntu 16.04 LTS xenial-updates/universe	deb	1.8.16-0ubuntu1.9	2020-02-03	410 kiB	1.61 MiB	Ubuntu Developers

Manual pages

cvtsudoers(1)

cvtsudoers - convert between sudoers file formats

sudo.conf(5)

sudo.conf - configuration for sudo front end

sudoers(5)

sudoers - default sudo security policy plugin

sudoers.ldap(5)

sudoers.ldap - sudo LDAP configuration

sudoers_timestamp(5)

sudoers_timestamp - Sudoers Time Stamp Format

sudo(8)

sudo, sudoedit - execute a command as another user

sudoers.ldap(8)

sudoers.ldap - sudo LDAP configuration

sudoreplay(8)

sudoreplay - replay sudo session logs

sudo_plugin(8)

sudo_plugin - Sudo Plugin API

sudo_root(8)

sudo_root - How to run administrative commands

visudo(8)

visudo - edit the sudoers file

Latest updates

Ubuntu 20.04 focal-proposed/universe: Version 1.8.31-1ubuntu1 removed

2020-02-10

Ubuntu 20.04 focal/universe: Updated from 1.8.29-1ubuntu1 to 1.8.31-1ubuntu1

2020-02-10

Merge from Debian unstable. Remaining changes:
- debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop shipping init script and service file, as they are no longer necessary.
- debian/rules:
  - compile with --without-lecture --with-tty-tickets --enable-admin-flag
  - install man/man8/sudo_root.8 in both flavours
  - install apport hooks
- debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
  - add usr/share/apport/package-hooks
- debian/sudo.pam:
  - Use pam_env to read /etc/environment and /etc/default/locale environment files. Reading ~/.pam_environment is not permitted due to security reasons.
- debian/sudoers:
  - also grant admin group sudo access
  - include /snap/bin in the secure_path
- debian/control, debian/rules:
  - use dh-autoreconf

Debian 10.0 buster-proposed-updates/main: Version 1.8.27-1+deb10u2 removed

2020-02-08

Debian 10.0 buster/main: Updated from 1.8.27-1+deb10u1 to 1.8.27-1+deb10u2

2020-02-08

Non-maintainer upload.
Fix a buffer overflow when pwfeedback is enabled and input is a not a tty (CVE-2019-18634) (Closes: #950371)

Debian 9.0 stretch-proposed-updates/main: Version 1.8.19p1-2.1+deb9u2 removed

2020-02-08

Debian 9.0 stretch/main: Updated from 1.8.19p1-2.1 to 1.8.19p1-2.1+deb9u2

2020-02-08

Non-maintainer upload by the Security Team.
Fix a buffer overflow when pwfeedback is enabled and input is a not a tty (CVE-2019-18634) (Closes: #950371)

Ubuntu 20.04 focal-proposed/universe: Version 1.8.31-1ubuntu1 introduced

2020-02-03

Merge from Debian unstable. Remaining changes:
- debian/rules, debian/sudo.service, debian/sudo.sudo.init: stop shipping init script and service file, as they are no longer necessary.
- debian/rules:
  - compile with --without-lecture --with-tty-tickets --enable-admin-flag
  - install man/man8/sudo_root.8 in both flavours
  - install apport hooks
- debian/source_sudo.py, debian/sudo-ldap.dirs, debian/sudo.dirs:
  - add usr/share/apport/package-hooks
- debian/sudo.pam:
  - Use pam_env to read /etc/environment and /etc/default/locale environment files. Reading ~/.pam_environment is not permitted due to security reasons.
- debian/sudoers:
  - also grant admin group sudo access
  - include /snap/bin in the secure_path
- debian/control, debian/rules:
  - use dh-autoreconf

Ubuntu 16.04 LTS xenial-security/universe: Updated from 1.8.16-0ubuntu1.8 to 1.8.16-0ubuntu1.9

2020-02-03

SECURITY UPDATE: buffer overflow in sudo when pwfeedback is enabled
- debian/patches/CVE-2019-18634.patch: fix overflow in src/tgetpass.c.
- CVE-2019-18634

Ubuntu 18.04 LTS bionic-updates/universe: Updated from 1.8.21p2-3ubuntu1.1 to 1.8.21p2-3ubuntu1.2

2020-02-03

SECURITY UPDATE: buffer overflow in sudo when pwfeedback is enabled
- debian/patches/CVE-2019-18634.patch: fix overflow in src/tgetpass.c.
- CVE-2019-18634

Ubuntu 19.10 eoan-updates/universe: Version 1.8.27-1ubuntu4.1 introduced

2020-02-03

SECURITY UPDATE: buffer overflow in sudo when pwfeedback is enabled
- debian/patches/CVE-2019-18634.patch: fix overflow in src/tgetpass.c.
- CVE-2019-18634

Ubuntu 19.10 eoan-security/universe: Version 1.8.27-1ubuntu4.1 introduced

2020-02-03

SECURITY UPDATE: buffer overflow in sudo when pwfeedback is enabled
- debian/patches/CVE-2019-18634.patch: fix overflow in src/tgetpass.c.
- CVE-2019-18634

Ubuntu 16.04 LTS xenial-updates/universe: Updated from 1.8.16-0ubuntu1.8 to 1.8.16-0ubuntu1.9

2020-02-03

SECURITY UPDATE: buffer overflow in sudo when pwfeedback is enabled
- debian/patches/CVE-2019-18634.patch: fix overflow in src/tgetpass.c.
- CVE-2019-18634

Ubuntu 18.04 LTS bionic-security/universe: Updated from 1.8.21p2-3ubuntu1.1 to 1.8.21p2-3ubuntu1.2

2020-02-03

SECURITY UPDATE: buffer overflow in sudo when pwfeedback is enabled
- debian/patches/CVE-2019-18634.patch: fix overflow in src/tgetpass.c.
- CVE-2019-18634

Debian 10.0 buster-proposed-updates/main: Version 1.8.27-1+deb10u2 introduced

2020-02-02

Non-maintainer upload.
Fix a buffer overflow when pwfeedback is enabled and input is a not a tty (CVE-2019-18634) (Closes: #950371)

Debian 9.0 stretch-proposed-updates/main: Updated from 1.8.19p1-2.1+deb9u1 to 1.8.19p1-2.1+deb9u2

2020-02-02

Non-maintainer upload by the Security Team.
Fix a buffer overflow when pwfeedback is enabled and input is a not a tty (CVE-2019-18634) (Closes: #950371)

Ubuntu 20.04 focal/universe: Version 1.8.29-1ubuntu1 introduced

2020-01-07

Debian 10.0 buster-proposed-updates/main: Version 1.8.27-1+deb10u1 removed

2019-11-16

Debian 10.0 buster/main: Updated from 1.8.27-1 to 1.8.27-1+deb10u1

2019-11-16

Debian 10.0 buster-proposed-updates/main: Version 1.8.27-1+deb10u1 introduced

2019-10-19

Debian 9.0 stretch-proposed-updates/main: Version 1.8.19p1-2.1+deb9u1 introduced

2019-10-19

Related packages

sudo - Give certain users the ability to run some commands as root