diff options
author | Mo Weng <alim0x@outlook.com> | 2019-10-15 17:24:12 +0800 |
---|---|---|
committer | Mo Weng <alim0x@outlook.com> | 2019-10-15 17:24:12 +0800 |
commit | a04646d9a3021ed11aab00bac1ed2866aa6a5b4a (patch) | |
tree | 4bc1a5f5f74ccca5c828401272565f03bb070ba2 /chinese/security | |
parent | 66dd7427952ddf948c77299edd718c8a19a65191 (diff) |
Translated dsa-4543 to chinese
Diffstat (limited to 'chinese/security')
-rw-r--r-- | chinese/security/2019/Makefile | 1 | ||||
-rw-r--r-- | chinese/security/2019/dsa-4543.wml | 23 |
2 files changed, 24 insertions, 0 deletions
diff --git a/chinese/security/2019/Makefile b/chinese/security/2019/Makefile new file mode 100644 index 00000000000..17f19c095e2 --- /dev/null +++ b/chinese/security/2019/Makefile @@ -0,0 +1 @@ +include $(subst webwml/chinese,webwml/english,$(CURDIR))/Makefile diff --git a/chinese/security/2019/dsa-4543.wml b/chinese/security/2019/dsa-4543.wml new file mode 100644 index 00000000000..f7d06f80bd9 --- /dev/null +++ b/chinese/security/2019/dsa-4543.wml @@ -0,0 +1,23 @@ +#use wml::debian::translation-check translation="66dd7427952ddf948c77299edd718c8a19a65191" +<define-tag description>安全更新</define-tag> +<define-tag moreinfo> +<p>Joe Vennix 发现 sudo,一款设计用于为特定用户提供受限的超级用户权限的程序,在通过 + ALL 关键字配置允许用户以任意用户身份,通过 RunAs 方式执行命令时,sudo 程序允许用户通 +过指定用户 ID 为 -1 或 4294967295,从而以 root 身份执行命令。这会使得用户即使在 + RunAs 方式明确禁止 root 权限的情况下,获得充分的 sudo 权限来以 root 身份执行命令。</p> + +<p>细节信息可以访问上游公告获取: +<a href="https://www.sudo.ws/alerts/minus_1_uid.html">https://www.sudo.ws/alerts/minus_1_uid.html</a>。</p> + +<p>对旧稳定版系统(stretch),该问题已在 1.8.19p1-2.1+deb9u1 版本中修复。</p> + +<p>F对旧稳定版系统(buster),该问题已在 1.8.27-1+deb10u1 版本中修复。</p> + +<p>我们推荐您升级您的 sudo 软件包。</p> + +<p>如需了解 sudo 的详细安全状态,请参考其安全追踪页面: +<a href="https://security-tracker.debian.org/tracker/sudo">https://security-tracker.debian.org/tracker/sudo</a></p> +</define-tag> + +# do not modify the following line +#include "$(ENGLISHDIR)/security/2019/dsa-4543.data" |