Mandriva: Subject: [Security Announce] [ MDVA-2009:086 ] sudo
Posted by Benjamin D. Thomas   
Mandrake The version of sudo shipped with 2009.1 has an incorrect path to /etc/ldap.conf compiled in. This means that users who have their sudo config supplied by their ldap server will find their rules no longer apply. This updated package uses the correct /etc/ldap.conf file. See http://www.sudo.ws/sudo/readme_ldap.html for more information on configuring sudo with ldap.
 _______________________________________________________________________

 Mandriva Linux Advisory                                   MDVA-2009:086
 http://www.mandriva.com/security/
 _______________________________________________________________________

 Package : sudo
 Date    : May 31, 2009
 Affected: 2009.1
 _______________________________________________________________________

 Problem Description:

 The version of sudo shipped with 2009.1 has an incorrect path to
 /etc/ldap.conf compiled in. This means that users who have their
 sudo config supplied by their ldap server will find their rules no
 longer apply.
 
 This updated package uses the correct /etc/ldap.conf file.
 
 See http://www.sudo.ws/sudo/readme_ldap.html for more information on
 configuring sudo with ldap.
 _______________________________________________________________________

 Updated Packages:

 Mandriva Linux 2009.1:
 66bdcdd9ded5798cd9d3d8f37557adb1  2009.1/i586/sudo-1.7.0-1.2mdv2009.1.i586.rpm 
 68fad539270b57ce19c3ff13be050636  2009.1/SRPMS/sudo-1.7.0-1.2mdv2009.1.src.rpm

 Mandriva Linux 2009.1/X86_64:
 6c817e1d7c2fcaacbc5a1a2d13c86eff  2009.1/x86_64/sudo-1.7.0-1.2mdv2009.1.x86_64.rpm 
 68fad539270b57ce19c3ff13be050636  2009.1/SRPMS/sudo-1.7.0-1.2mdv2009.1.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team