Security update for sudo
This update for sudo fixes the following security issue:
- CVE-2017-1000368: A follow-up fix to CVE-2017-1000367, the Linux process name could also contain a
newline, which could be used to trick sudo to read/write to an
arbitrary open terminal. (bsc#1042146)
Also the following non security bug was fixed:
- Link the "system_group" plugin with sudo_util library to resolve the missing sudo_dso_findsym symbol (bsc#1034560)
This update was imported from the SUSE:SLE-12-SP2:Update update project.
- Submitted by Vítězslav Čížek (vitezslav_cizek)
Fixed bugs
bnc#1042146
VUL-0: CVE-2017-1000368: sudo: path traversal race conditions, follow up problem
bnc#1034560
sudo-1.8.10p3-1.62.x86_64.rpm sudo_dso_find_sym library incorrectly linked.