Some time ago I mentioned a big mess
in debian's sudo regarding the environment cleanup.
The mess is even worse: run
sudo env and you'll either get
a single PATH that is SECURE_PATH (and thus not yours) or you'll get two bad PATHes for the price of one! Hurry! This offer ends soon! ahem
Guess what is implied by the env_reset/env_keep fix for losing all your other variables... The problem affects all the 1.6.8's, that means sarge/security's p7-1.3 is as borked as sid's p12. p7-1.2 didn't force you to use env_reset so you didn't feel the problem as badly.