ports/115442: [patch] security/sudo: workaround a bug in configure.in
Vasil Dimov
vd at FreeBSD.org
Sun Aug 12 12:00:11 UTC 2007
>Number: 115442
>Category: ports
>Synopsis: [patch] security/sudo: workaround a bug in configure.in
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Sun Aug 12 12:00:07 GMT 2007
>Closed-Date:
>Last-Modified:
>Originator: Vasil Dimov
>Release: FreeBSD 6.2-STABLE i386
>Organization:
N/A
>Environment:
6.2-STABLE FreeBSD 6.2-STABLE #2: Sat Aug 11 10:36:45 EEST 2007
>Description:
When using the NOEXEC option I get this error:
/libexec/ld-elf.so.1: Cannot open "/usr/local/libexec/sudo_noexec"
this is because for some reason the shrext variable in configure.in is
empty, thus sudo_noexec.so becomes sudo_noexec
The patch is just a workaround.
>How-To-Repeat:
Use sudo with NOEXEC option in sudoers.
>Fix:
--- sudo_noexec.diff begins here ---
--- sudo/Makefile.orig 2007-08-12 14:42:57.000000000 +0300
+++ sudo/Makefile 2007-08-12 14:46:43.000000000 +0300
@@ -7,7 +7,7 @@
PORTNAME= sudo
PORTVERSION= 1.6.9.3
-PORTREVISION= 1
+PORTREVISION= 2
CATEGORIES= security
MASTER_SITES= http://www.sudo.ws/sudo/dist/ \
http://probsd.org/sudoftp/ \
@@ -33,7 +33,8 @@
--with-env-editor \
--with-logincap \
--with-long-otp-prompt \
- --with-pam
+ --with-pam \
+ --with-noexec=${PREFIX}/libexec/sudo_noexec.so
OPTIONS= LDAP "With LDAP support" off \
INSULTS "With all insults" off \
--- sudo_noexec.diff ends here ---
--
Vasil Dimov
moc.elcaro at vomid.lisav Software Developer @ Oracle/Innobase Oy
gro.DSBeerF at dv Committer @ FreeBSD.org
gro.d5v at dv Home @ Sofia, Bulgaria
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list