File _patchinfo of Package patchinfo.280

<patchinfo incident="sudo">
  <packager>lijews</packager>
  <issue tracker="cve" id="CVE-2014-0106"></issue>
  <issue tracker="bnc" id="866503">VUL-1: CVE-2014-0106: sudo: flaw without env_reset in older versions</issue>
  <category>security</category>
  <rating>moderate</rating>
  <summary>sudo: flaw without env_reset</summary>
  <description>The following security issue was fixed: If the env_reset option is disabled in the sudoers file, a malicious user with sudo permissions may be able to run arbitrary commands with elevated privileges by manipulating the environment of a command the user is legitimately allowed to run.</description>
</patchinfo>