AIX Open Source

AIX Open Source

Share your experiences and connect with fellow developers to discover how to build and manage open source software for the AIX operating system

 View Only

  • 1.  sudo 1.9.17p2

    Posted 2 days ago

    Hello OSS Team,

    I ask you kindly to build the latest sudo version 1.9.17p2 because of the following fix:

    • Fixed a bug introduced in sudo 1.9.16 that could result in sudo sending SIGHUP to all processes on the system in certain rare cases. The bug could manifest if sudo is running a command in a pseudo-terminal, sudo terminates the command due to an internal error, and the user's terminal is revoked. GitHub issue #458. (https://www.sudo.ws/releases/stable/#1.9.17p2)

    Even though the bug manifests only in certain rare cases (could not find out more about it) the effect of the bug would certainly be considered "high impact"...



    ------------------------------
    ------------------------------
    Thanks and regards,
    Roman
    ------------------------------
    ------------------------------


  • 2.  RE: sudo 1.9.17p2

    Posted 17 hours ago

    Hello Team, hello Roman,

    thats what I just to wanna ask for, because we have an issue with sudo_ids-1.9.17p1-1.ppc too.
    In in AIX 7.3 TL3 SP1, with this version the "who am i" command is not working properly. We found out, that this version doesn't produce an entry in /var/adm/wtmp after a "sudo -i".
    So the "who am i" shows root instead of the logged in user.

    In TL1:

    root#id
uid=0(root) gid=0(system) groups=2(bin),3(sys),7(security),8(cron),10(audit),11(lp)
root#who am i
user1    pts/1       Aug 21 10:45


root#logname
user1

     

    in TL3:

    root#id
uid=0(root) gid=0(system) groups=2(bin),3(sys),7(security),8(cron),10(audit),11(lp)
root#who am i
root      pts/11
root#logname
user1

     

    This is a part of the truss output:

    truss of sudo in TL1:

    kioctl(14, 536900678, 0x0FFFFFFFFFFFEE70, 0x0000000000000000) = 0
    kioctl(14, 536900679, 0x0FFFFFFFFFFFEDC0, 0x0000000000000000) = 0
    kioctl(14, 22529, 0x0FFFFFFFFFFFE848, 0x0000000000000000) = 0
    statx("/dev/pts/2", 0x0FFFFFFFFFFFE968, 176, 0) = 0
    statx("/dev/pts/2", 0x0FFFFFFFFFFFEDC8, 176, 0) = 0
    kopen("/dev/pts/2", O_RDWR|O_NOCTTY) = 15
    chown("/dev/pts/2", 0, 4294967295) = 0
    kopen("/etc/utmp", O_RDWR|O_CREAT, S_IRUSR|S_IWUSR|S_IRGRP|S_IROTH) = 16
    kioctl(16, -2147195266, 0x0FFFFFFFFFFFE8A0, 0x0000000000000000) = 0
    kioctl(16, -2147195267, 0x0FFFFFFFFFFFE8A0, 0x0000000000000000) = 0

    And here in TL3:

    kioctl(14, 536900678, 0x0FFFFFFFFFFFEE70, 0x0000000000000000) = 0
    kioctl(14, 536900679, 0x0FFFFFFFFFFFEDC0, 0x0000000000000000) = 0
    kioctl(14, 22529, 0x0FFFFFFFFFFFE848, 0x0000000000000000) = 0
    statx("/dev/pts/3", 0x0FFFFFFFFFFFE968, 176, 0) = 0
    statx("/dev/pts/3", 0x0FFFFFFFFFFFEDC8, 176, 0) = 0
    kopen("/dev/pts/3", O_RDWR|O_NOCTTY) = 15
    chown("/dev/pts/3", 0, 4294967295) = 0
    kopen("", O_RDWR|O_CREAT, S_IRUSR|S_IWUSR|S_IRGRP|S_IROTH) Err#14 EFAULT
    _getpid() = 8061372
    kopen("", O_RDWR|O_CREAT, S_IRUSR|S_IWUSR|S_IRGRP|S_IROTH) Err#14 EFAULT
    socketpair(1, 1, 0, 0x0FFFFFFFFFFFF100) = 0
    kfcntl(16, F_SETFD, 0x0000000000000001) = 0
    kfcntl(17, F_SETFD, 0x0000000000000001) = 0

    kind regards,
    Joerg

    PS: Version 1.9.16p2-1 is working fine, but with the security issue.
    So we would need the new version as soon as possible.
    Many thanks in advance.

    Kind regards
    Joerg



    ------------------------------
    Joerg Kauke
    Unix Administrator
    COOP Switzerland
    ------------------------------

    Original Message


  • 3.  RE: sudo 1.9.17p2

    Posted 57 minutes ago

    Hi All,
    We are working on sudo 1.9.17p2. It will be available from AIX Toolbox in 1-2 weeks.



    ------------------------------
    RESHMA KUMAR
    ------------------------------

    Original Message


Related Content