On Tue, May 30, 2017 at 12:18:51PM -0000, Christian Stadelmann wrote: > Are you sure about that? in my opinion, any security update is high priority. Well, consider CVE-2017-1000367. This lets users with limited sudo access escalate to full root. That's very, very problematic and high priority in certain situations — but on the other hand, our default configuration is to either not use sudo at all (no `wheel` users) or to grant full root-equivalent access *anyway*. -- Matthew Miller <mattdm@xxxxxxxxxxxxxxxxx> Fedora Project Leader _______________________________________________ desktop mailing list -- desktop@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to desktop-leave@xxxxxxxxxxxxxxxxxxxxxxx
