Lucene search
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.FEDORA_2020-8B563BC5F4.NASLHistoryMar 06, 2020 - 12:00 a.m.
Fedora 31 : sudo (2020-8b563bc5f4)
2020-03-0600:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
20
8.4 High
AI Score
Confidence
High
-
update to latest development version 1.9.0b1
-
added sudo_logsrvd and sudo_sendlog to files and their appropriate man pages Resolves: rhbz#1787823
-
Stack based buffer overflow in when pwfeedback is enabled Resolves: rhbz#1796945
-
fixes: CVE-2019-18634
-
By using ! character in the shadow file instead of a password hash can access to a run as all sudoer account Resolves: rhbz#1786709
-
fixes CVE-2019-19234
-
attacker with access to a Runas ALL sudoer account can impersonate a nonexistent user Resolves: rhbz#1786705
-
fixes CVE-2019-19232
-
setrlimit(RLIMIT_CORE): Operation not permitted warning message fix Resolves: rhbz#1773148
-
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Fedora Security Advisory FEDORA-2020-8b563bc5f4.
#
include('compat.inc');
if (description)
{
script_id(134253);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/03/25");
script_cve_id("CVE-2019-18634", "CVE-2019-19232", "CVE-2019-19234");
script_xref(name:"FEDORA", value:"2020-8b563bc5f4");
script_name(english:"Fedora 31 : sudo (2020-8b563bc5f4)");
script_set_attribute(attribute:"synopsis", value:
"The remote Fedora host is missing a security update.");
script_set_attribute(attribute:"description", value:
"- update to latest development version 1.9.0b1
- added sudo_logsrvd and sudo_sendlog to files and their
appropriate man pages Resolves: rhbz#1787823
- Stack based buffer overflow in when pwfeedback is
enabled Resolves: rhbz#1796945
- fixes: CVE-2019-18634
- By using ! character in the shadow file instead of a
password hash can access to a run as all sudoer account
Resolves: rhbz#1786709
- fixes CVE-2019-19234
- attacker with access to a Runas ALL sudoer account can
impersonate a nonexistent user Resolves: rhbz#1786705
- fixes CVE-2019-19232
- setrlimit(RLIMIT_CORE): Operation not permitted warning
message fix Resolves: rhbz#1773148
Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as
possible without introducing additional issues.");
script_set_attribute(attribute:"see_also", value:"https://bodhi.fedoraproject.org/updates/FEDORA-2020-8b563bc5f4");
script_set_attribute(attribute:"solution", value:
"Update the affected sudo package.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-19234");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2019-18634");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/12/19");
script_set_attribute(attribute:"patch_publication_date", value:"2020/03/06");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/03/06");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:sudo");
script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:31");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Fedora Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = pregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! preg(pattern:"^31([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 31", "Fedora " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);
flag = 0;
if (rpm_check(release:"FC31", reference:"sudo-1.9.0-0.1.b1.fc31")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "sudo");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fedoraproject | fedora | sudo | p-cpe:/a:fedoraproject:fedora:sudo |
| fedoraproject | fedora | 31 | cpe:/o:fedoraproject:fedora:31 |
Related
openvas
openvas
Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2020-1662)
2020-06-16 00:00:00
Fedora: Security Advisory for sudo (FEDORA-2020-8b563bc5f4)
2020-03-06 00:00:00
Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2020-1564)
2020-04-30 00:00:00
nessus
nessus
EulerOS 2.0 SP3 : sudo (EulerOS-SA-2020-1435)
2020-04-15 00:00:00
EulerOS Virtualization for ARM 64 3.0.2.0 : sudo (EulerOS-SA-2020-1564)
2020-05-01 00:00:00
EulerOS Virtualization 3.0.6.0 : sudo (EulerOS-SA-2020-1785)
2020-07-01 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: sudo-1.9.0-0.1.b1.fc31
2020-03-06 02:26:46
[SECURITY] Fedora 32 Update: sudo-1.9.0-0.1.b1.fc32
2020-03-16 20:47:21
redhat
redhat
(RHSA-2020:1804) Moderate: sudo security, bug fix, and enhancement update
2020-04-28 09:18:31
(RHSA-2020:0509) Important: sudo security update
2020-02-13 19:00:11
(RHSA-2020:0726) Important: sudo security update
2020-03-05 12:33:40
altlinux
altlinux
Security fix for the ALT Linux 8 package sudo version 1:1.9.2-alt1
2020-08-30 00:00:00
Security fix for the ALT Linux 8 package sudo version 1:1.8.31p2-alt1
2020-08-30 00:00:00
mageia
mageia
Updated sudo packages fix security vulnerability
2020-06-11 01:26:12
Updated sudo packages fix security vulnerability
2020-02-09 22:13:40
oraclelinux
oraclelinux
sudo security, bug fix, and enhancement update
2020-05-05 00:00:00
sudo security update
2020-02-13 00:00:00
sudo security update
2020-02-19 00:00:00
cve
cve
ubuntucve
ubuntucve
prion
prion
Design/Logic Flaw
2019-12-19 21:15:00
Authentication flaw
2019-12-19 21:15:00
Stack overflow
2020-01-29 18:15:00
debiancve
debiancve
redhatcve
redhatcve
photon
photon
Important Photon OS Security Update - PHSA-2020-0051
2020-01-23 00:00:00
Important Photon OS Security Update - PHSA-2020-3.0-0051
2020-01-23 00:00:00
Important Photon OS Security Update - PHSA-2020-0200
2020-01-14 00:00:00
osv
osv
CVE-2019-18634
2020-01-29 18:15:12
sudo - security update
2020-02-01 00:00:00
sudo - security update
2020-02-01 00:00:00
githubexploit
githubexploit
Exploit for Out-of-bounds Write in Sudo Project Sudo
2021-04-25 18:53:17
Exploit for Out-of-bounds Write in Sudo Project Sudo
2021-08-01 10:50:55
Exploit for Out-of-bounds Write in Sudo Project Sudo
2020-02-13 11:57:38
amazon
amazon
Important: sudo
2020-03-16 21:29:00
Important: sudo
2020-03-16 20:58:00
thn
thn
Sudo Bug Lets Non-Privileged Linux and macOS Users Run Commands as Root
2020-02-03 15:35:00
f5
f5
K91327225 : Linux sudo process vulnerability CVE-2019-18634
2020-02-24 00:00:00
zdt
zdt
Sudo 1.8.25p - Buffer Overflow Exploit
2020-02-04 00:00:00
Sudo 1.8.25p - (pwfeedback) Buffer Overflow Exploit
2020-02-05 00:00:00
centos
centos
sudo security update
2020-03-10 20:33:30
sudo security update
2020-02-18 22:21:38
debian
debian
[SECURITY] [DSA 4614-1] sudo security update
2020-02-01 12:45:56
[SECURITY] [DSA 4614-1] sudo security update
2020-02-01 12:45:56
[SECURITY] [DLA 2094-1] sudo security update
2020-02-01 22:56:58
packetstorm
packetstorm
Sudo 1.8.25p Buffer Overflow
2020-02-04 00:00:00
archlinux
archlinux
[ASA-202002-2] sudo: privilege escalation
2020-02-06 00:00:00
slackware
slackware
[slackware-security] sudo
2020-01-31 21:15:53
freebsd
freebsd
sudo -- Potential bypass of Runas user restrictions
2020-01-30 00:00:00
exploitpack
exploitpack
Sudo 1.8.25p - pwfeedback Buffer Overflow (PoC)
2020-02-04 00:00:00
cloudfoundry
cloudfoundry
USN-4263-1: Sudo vulnerability | Cloud Foundry
2020-02-20 00:00:00
ubuntu
ubuntu
Sudo vulnerability
2020-02-03 00:00:00
Sudo vulnerability
2020-02-05 00:00:00
suse
suse
Security update for sudo (important)
2020-02-25 00:00:00
alpinelinux
alpinelinux
CVE-2019-18634
2020-01-29 18:15:00
exploitdb
exploitdb
Sudo 1.8.25p - 'pwfeedback' Buffer Overflow (PoC)
2020-02-04 00:00:00
attackerkb
attackerkb
CVE-2019-18634
2020-01-29 00:00:00
kitploit
kitploit
gentoo
gentoo
sudo: Multiple vulnerabilities
2020-03-14 00:00:00
ibm
ibm
apple
apple
About the security content of macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra
2020-01-28 00:00:00