From dcdcdf182d0ede5e6a3986ae0bb2705e2ec2b0cc60ddc36df1c73dc547b700a3 Mon Sep 17 00:00:00 2001
From: Kristyna Streitova <kstreitova@suse.com>
Date: Wed, 12 May 2021 15:43:09 +0000
Subject: [PATCH] Accepting request 892541 from
 home:kstreitova:branches:Base:System

- update to 1.9.7
  * The "fuzz" Makefile target now runs all the fuzzers for 8192
    passes (can be overridden via the FUZZ_RUNS variable).  This makes
    it easier to run the fuzzers in-tree.  To run a fuzzer indefinitely,
    set FUZZ_RUNS=-1, e.g. "make FUZZ_RUNS=-1 fuzz".
  * Fixed fuzzing on FreeBSD where the ld.lld linker returns an
    error by default when a symbol is multiply-defined.
  * Added support for determining local IPv6 addresses on systems
    that lack the getifaddrs() function.  This now works on AIX,
    HP-UX and Solaris (at least).  Bug #969.
  * Fixed a bug introduced in sudo 1.9.6 that caused "sudo -V" to
    report a usage error.  Also, when invoked as sudoedit, sudo now
    allows a more restricted set of options that matches the usage
    statement and documentation.  GitHub issue #95.
  * Fixed a crash in sudo_sendlog when the specified certificate
    or key does not exist or is invalid.  Bug #970
  * Fixed a compilation error when sudo is configured with the
    --disable-log-client option.
  * Sudo's limited support for SUCCESS=return entries in nsswitch.conf
    is now documented.  Bug #971.
  * Sudo now requires autoconf 2.70 or higher to regenerate the
    configure script.  Bug #972.
  * sudo_logsrvd now has a relay mode which can be used to create
    a hierarchy of log servers.  By default, when a relay server is
    defined, messages from the client are forwarded immediately to
    the relay.  However, if the "store_first" setting is enabled,
    the log will be stored locally until the command completes and
    then relayed.  Bug #965.
  * Sudo now links with OpenSSL by default if it is available unless
    the --disable-openssl configure option is used or both the

OBS-URL: https://build.opensuse.org/request/show/892541
OBS-URL: https://build.opensuse.org/package/show/Base:System/sudo?expand=0&rev=198
---
 sudo-1.9.6p1.tar.gz     |   3 --
 sudo-1.9.6p1.tar.gz.sig | Bin 566 -> 0 bytes
 sudo-1.9.7.tar.gz       |   3 ++
 sudo-1.9.7.tar.gz.sig   | Bin 0 -> 566 bytes
 sudo.changes            |  65 ++++++++++++++++++++++++++++++++++++++++
 sudo.spec               |   2 +-
 6 files changed, 69 insertions(+), 4 deletions(-)
 delete mode 100644 sudo-1.9.6p1.tar.gz
 delete mode 100644 sudo-1.9.6p1.tar.gz.sig
 create mode 100644 sudo-1.9.7.tar.gz
 create mode 100644 sudo-1.9.7.tar.gz.sig

diff --git a/sudo-1.9.6p1.tar.gz b/sudo-1.9.6p1.tar.gz
deleted file mode 100644
index f976e45..0000000
--- a/sudo-1.9.6p1.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:a9e9cdc058fafeb9cd3ebfb864c81755e524d98aa022152763f25bce8ca3ca90
-size 4119888
diff --git a/sudo-1.9.6p1.tar.gz.sig b/sudo-1.9.6p1.tar.gz.sig
deleted file mode 100644
index f56ea5e2ec07ee284d7c3a328e96175b26a5aca2fdc63cd384d88631f7816d65..0000000000000000000000000000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 566
zcmV-60?GY}0y6{v0SEvc79j*#(do>(D>r8Z{nJ~i^uQs`q;UHM0$@*)G5`t*5UKRQ
zA<m?5`{COV0F)X}239nEOshRitwEfF@l)mFwrR_sT_4etW>adlKM0QDZJ{kfcM_-*
z-Qj_Db-<-Xs+qx$6P&lV(ZuRFw&E`I2$y@wp>Z*#;xap`iSe9ANz~ToOiBQQ3CKZG
z`TIe54xoc(H&ign;$pQemg+vcMNZnv+@y<>YDWaUzBtz{ba?wizSE<X@UV4BY+o`g
zCDSl(g8^NoG#piQ&kiwFyD*<KE9{Y#s(+I$(W6ej=F7#h&}l6R3)FH6mM>7mtfb|%
zTOYJ_Y__sseenmIU|oH?!pdUIoYSi23)3rc=a{`M41K@dPylZmUN;pg5ek^ZPSaoa
zl~$;*dF&!pmGBKlC_3DMBXMU`%qKxRf%s=zz|Nt<1Is#-p|UY84;=mvyY2Mmb`AwY
z42UD6H}T9`LqEUj{ssY%oeq<)N~)-+gybc2(3>%`#bRf8-D1e5%lipVa|5?G4GI8{
z_~J~sAFkXFo2G5ltvSMEQg+s35F+1TmS2Uu^T=`-`2+tOXMbwJFkO#Sw-!%@tRC1!
z{w~VeO*(yCLq*y_*##qN+=hnZSNGhR%g$z<5en4(3s^rK;Z%vAt)L<{vvZi%#V9ju
zD54lI@P;w)voHc(0$|qYaS>-BYzyuIr~N`ldA_~g*x=}oE@}Q|^D$4}PXp{n`ZbTS
E?Ug1IA^-pY

diff --git a/sudo-1.9.7.tar.gz b/sudo-1.9.7.tar.gz
new file mode 100644
index 0000000..4698b82
--- /dev/null
+++ b/sudo-1.9.7.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:2bbe7c2d6699b84d950ef9a43f09d4d967b8bc244b73bc095c4202068ddbe549
+size 4194242
diff --git a/sudo-1.9.7.tar.gz.sig b/sudo-1.9.7.tar.gz.sig
new file mode 100644
index 0000000000000000000000000000000000000000000000000000000000000000..0a1ddccc7c2f4b82788ccf50366f91e076824a6a563e1ca792e7d3798068d55e
GIT binary patch
literal 566
zcmV-60?GY}0y6{v0SEvc79j*#(do>(D>r8Z{nJ~i^uQs`q;UHM0$`g6mjDV05UKRQ
zA<m?5`&lgy`v>cV{@NH)%5j|~xJjuHH<<s>DPep8u6W$aI9@S3-L9@u6WSWdisH|*
z=5y%OdQuVnC~qZ-)|M@o1DsZWd&Sn1XTsqX^vTTTrg!+R0bhbj4dO0{r=88ATnx8N
zw+TGAS^Ks+T~X8#X`Yf3^~Wuw#HmYO^(TOC_z_AMwsR>pfUZT58Nl*;elM6Bp6%}m
zWSi&CqcO+BTm`ss(kCwM6U==Vnhz@)`UtSsX26jrku$1-rG72SQ^mpV^bq9CJB1_W
zpauarH7>kc-!j8<{V<Qonbns%tqS#E5B>Dt5P%Qwf)HnHELG-@YGi(N$}Yskat={%
zmUvItMXtD8kblYctJ_rCmndlj5@S2}|JmRIk-t|V;eeM+S!jWP51$F70m9)G`Ru4-
zNa}Li0PDay_}`bY?>cU%>QZM0+FXXPXeto6^U@gT{GVp|{cUp|MAqaaE?j3vdDl4?
z=q(6~HLzcTd8Z=*EpTMBItKW@F<=Btw89tQN_l&Ss=qpnC}@kmEcWzn6Ah;Yl`$B`
zC+n2Ga&f^2T@KkRLCq>Ge<|SJB$3|RnoGA_`|Z&*li?%4+DS7VNWn1g$Ih2h`CEBg
zbZ(a`=4NdMWP7Ni=_#%9Tkj-x`2N4U3?>6#3pjJ^)?*&5Asqlri!y4MP7ajw<0J|D
EHAz<$3;+NC

literal 0
HcmV?d00001

diff --git a/sudo.changes b/sudo.changes
index cb7078c..d965e2a 100644
--- a/sudo.changes
+++ b/sudo.changes
@@ -1,3 +1,68 @@
+-------------------------------------------------------------------
+Wed May 12 15:22:11 UTC 2021 - Kristyna Streitova <kstreitova@suse.com>
+
+- update to 1.9.7
+  * The "fuzz" Makefile target now runs all the fuzzers for 8192
+    passes (can be overridden via the FUZZ_RUNS variable).  This makes
+    it easier to run the fuzzers in-tree.  To run a fuzzer indefinitely,
+    set FUZZ_RUNS=-1, e.g. "make FUZZ_RUNS=-1 fuzz".
+  * Fixed fuzzing on FreeBSD where the ld.lld linker returns an
+    error by default when a symbol is multiply-defined.
+  * Added support for determining local IPv6 addresses on systems
+    that lack the getifaddrs() function.  This now works on AIX,
+    HP-UX and Solaris (at least).  Bug #969.
+  * Fixed a bug introduced in sudo 1.9.6 that caused "sudo -V" to
+    report a usage error.  Also, when invoked as sudoedit, sudo now
+    allows a more restricted set of options that matches the usage
+    statement and documentation.  GitHub issue #95.
+  * Fixed a crash in sudo_sendlog when the specified certificate
+    or key does not exist or is invalid.  Bug #970
+  * Fixed a compilation error when sudo is configured with the
+    --disable-log-client option.
+  * Sudo's limited support for SUCCESS=return entries in nsswitch.conf
+    is now documented.  Bug #971.
+  * Sudo now requires autoconf 2.70 or higher to regenerate the
+    configure script.  Bug #972.
+  * sudo_logsrvd now has a relay mode which can be used to create
+    a hierarchy of log servers.  By default, when a relay server is
+    defined, messages from the client are forwarded immediately to
+    the relay.  However, if the "store_first" setting is enabled,
+    the log will be stored locally until the command completes and
+    then relayed.  Bug #965.
+  * Sudo now links with OpenSSL by default if it is available unless
+    the --disable-openssl configure option is used or both the
+    --disable-log-client and --disable-log-server configure options
+    are specified.
+  * Fixed configure's Python version detection when the version minor
+    number is more than a single digit, for example Python 3.10.
+  * The sudo Python module tests now pass for Python 3.10.
+  * Sudo will now avoid changing the datasize resource limit
+    as long as the existing value is at least 1GB.  This works around
+    a problem on 64-bit HP-UX where it is not possible to exactly
+    restore the original datasize limit.  Bug #973.
+  * Fixed a race condition that could result in a hang when sudo is
+    executed by a process where the SIGCHLD handler is set to SIG_IGN.
+    This fixes the bug described by GitHub PR #98.
+  * Fixed an out-of-bounds read in sudoedit and visudo when the
+    EDITOR, VISUAL or SUDO_EDITOR environment variables end in an
+    unescaped backslash.  Also fixed the handling of quote characters
+    that are escaped by a backslash.  GitHub issue #99.
+  * Fixed a bug that prevented the "log_server_verify" sudoers option
+    from taking effect.
+  * The sudo_sendlog utility has a new -s option to cause it to stop
+    sending I/O records after a user-specified elapsed time.  This
+    can be used to test the I/O log restart functionality of sudo_logsrvd.
+  * Fixed a crash introduced in sudo 1.9.4 in sudo_logsrvd when
+    attempting to restart an interrupted I/O log transfer.
+  * The TLS connection timeout in the sudoers log client was previously
+    hard-coded to 10 seconds.  It now uses the value of log_server_timeout.
+  * The configure script now outputs a summary of the user-configurable
+    options at the end, separate from output of configure script tests.
+    Bug #820.
+  * Corrected the description of which groups may be specified via the
+    -g option in the Runas_Spec section.  Bug #975.
+ 
+ 
 -------------------------------------------------------------------
 Sat Mar 20 18:25:12 UTC 2021 - Dirk Müller <dmueller@suse.com>
 
diff --git a/sudo.spec b/sudo.spec
index 0c5c796..1b1d101 100644
--- a/sudo.spec
+++ b/sudo.spec
@@ -22,7 +22,7 @@
 %define use_usretc 1
 %endif
 Name:           sudo
-Version:        1.9.6p1
+Version:        1.9.7
 Release:        0
 Summary:        Execute some commands as root
 License:        ISC