From 1b5dbce3e933096986ea61ef199057c46de1fc18 Mon Sep 17 00:00:00 2001
From: Kevin Daudt <kdaudt@alpinelinux.org>
Date: Tue, 26 Jan 2021 18:41:19 +0000
Subject: main/sudo: security upgrade to 1.9.5p2

Fixes:

- CVE-2021-3156
- CVE-2021-23239
- CVE-2021-23240

See: #12356 #12294
---
 main/sudo/APKBUILD | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/main/sudo/APKBUILD b/main/sudo/APKBUILD
index 487172ac21a..62beebe9195 100644
--- a/main/sudo/APKBUILD
+++ b/main/sudo/APKBUILD
@@ -2,7 +2,7 @@
 # Contributor: Łukasz Jendrysik <scadu@yandex.com>
 # Maintainer: Natanael Copa <ncopa@alpinelinux.org>
 pkgname=sudo
-pkgver=1.9.0
+pkgver=1.9.5p2
 if [ "${pkgver%_*}" != "$pkgver" ]; then
 	_realver=${pkgver%_*}${pkgver#*_}
 else
@@ -22,6 +22,11 @@ source="https://www.sudo.ws/dist/sudo-$_realver.tar.gz
 options="suid"
 
 # secfixes:
+#   1.9.5p2-r0:
+#     - CVE-2021-3156
+#   1.9.5-r0:
+#     - CVE-2021-23239
+#     - CVE-2021-23240
 #   1.8.31-r0:
 #     - CVE-2019-18634
 #   1.8.28-r0:
@@ -62,6 +67,6 @@ package() {
 	rm -rf "$pkgdir"/var/run
 }
 
-sha512sums="f2a191ea5fc65865718b110d4aca187cb5e2cd55c9c891fab32f21401e56f825f34c373e346c55c64fa49cec4d802efb63ccebf3d4a4e31d9a433077daf013b1  sudo-1.9.0.tar.gz
+sha512sums="f0fe914963c31a6f8ab6c86847ff6cdd125bd5a839b27f46dcae03963f4fc413b3d4cca54c1979feb825c8479b44c7df0642c07345c941eecf6f9f1e03ea0e27  sudo-1.9.5p2.tar.gz
 f0f462f40502da2194310fe4a72ec1a16ba40f95a821ba9aa6aabaa423d28c4ab26b684afa7fb81c2407cf60de9327bdab01de51b878c5d4de49b0d62645f53c  fix-cross-compile.patch
 1f81f85f9dea6ee7e66d9b180611115cf8945f01cde19f5666ac09c759ae0c9a49fb464672650ec216e43d9159ff97c9ba786d5cae5917642ab1f31c29af8546  SIGUNUSED.patch"
-- 
cgit v1.2.3