Bug #2130623 “Update to address two moderate vulnerabilities” : Bugs : rust-sudo-rs package : Ubuntu

summary:

- Please Fix Bug
+ Update to address two moderate vulnerabilities

Revision history for this message

We have been in contact with Marc Schoolderman <email address hidden> from upstream.

Marc Deslauriers <email address hidden> from security has been notified.

Revision history for this message

The fixes have been released and I am preparing a security SRU.

Revision history for this message

I am preparing the questing security upload in the security team PPA now.

Revision history for this message

This bug was fixed in the package rust-sudo-rs - 0.2.8-1ubuntu5.2

---------------
rust-sudo-rs (0.2.8-1ubuntu5.2) questing-security; urgency=high

  * SECURITY UPDATE: multiple security fixes (LP: #2130623)
    - debian/patches/lp-2130623-GHSA-q428-6v73-fc4q-*.patch
    - debian/patches/lp-2130623-GHSA-c978-wq47-pvvw-*.patch
    - CVE numbers pending

-- Simon Johnsson <email address hidden> Mon, 10 Nov 2025 16:12:00 +0100

Changed in rust-sudo-rs (Ubuntu Questing):
status:	New → Fix Released

Revision history for this message

I am making this bug public since the two commits are now in the upstream repo and listed in the changes file.

information type:

Private Security → Public Security

Revision history for this message

The attachment "lp-2130623-GHSA-c978-wq47-pvvw.patch" seems to be a patch. If it isn't, please remove the "patch" flag from the attachment, remove the "patch" tag, and if you are a member of the ~ubuntu-reviewers, unsubscribe the team.

[This is an automated message performed by a Launchpad user owned by ~brian-murray, for any issues please contact him.]

Revision history for this message

Changed in rust-sudo-rs (Ubuntu):
status:	New → Fix Released
Changed in rust-sudo-rs (Ubuntu Plucky):
status:	New → Confirmed

To post a comment you must log in.