Lucene search
Gentoo FoundationMGASA-2023-0133HistoryApr 11, 2023 - 10:02 p.m.
Updated sudo packages fix security vulnerability
2023-04-1122:02:20
Gentoo Foundation
advisories.mageia.org
16
sudo
security vulnerability
update
control characters
log messages
cve-2023-28486
sudoreplay
output
cve-2023-28487
unix
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
0.001 Low
EPSS
Percentile
33.5%
Sudo before 1.9.13 does not escape control characters in log messages. (CVE-2023-28486) Sudo before 1.9.13 does not escape control characters in sudoreplay output. (CVE-2023-28487)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 8 | noarch | sudo | < 1.9.5p2-2.3 | sudo-1.9.5p2-2.3.mga8 |
Related
openvas
openvas
Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2023-1813)
2023-05-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:1700-1)
2023-03-31 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:1699-1)
2023-03-31 00:00:00
ubuntucve
ubuntucve
CVE-2023-28487
2023-03-16 00:00:00
CVE-2023-28486
2023-03-16 00:00:00
nessus
nessus
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Sudo vulnerabilities (USN-6005-1)
2023-04-12 00:00:00
SUSE SLES15 Security Update : sudo (SUSE-SU-2023:1699-1)
2023-03-31 00:00:00
EulerOS 2.0 SP11 : sudo (EulerOS-SA-2023-2712)
2024-01-16 00:00:00
ubuntu
ubuntu
Sudo vulnerabilities
2023-05-29 00:00:00
Sudo vulnerabilities
2023-04-11 00:00:00
osv
osv
sudo vulnerabilities
2023-05-29 11:02:51
sudo vulnerabilities
2023-04-11 14:19:40
sudo - security update
2024-02-03 00:00:00
amazon
amazon
Medium: sudo
2023-10-12 15:09:00
cloudfoundry
cloudfoundry
USN-6005-1: Sudo vulnerabilities | Cloud Foundry
2023-04-24 00:00:00
debian
debian
[SECURITY] [DLA 3732-1] sudo security update
2024-02-03 09:27:24
gentoo
gentoo
sudo: Multiple Vulnerabilities
2023-09-29 00:00:00
redhat
redhat
oraclelinux
oraclelinux
sudo security update
2024-02-14 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2023-3.0-0627
2023-08-04 00:00:00
Moderate Photon OS Security Update - PHSA-2023-4.0-0446
2023-08-04 00:00:00
almalinux
almalinux
Moderate: sudo security update
2024-02-14 00:00:00
prion
prion
Code injection
2023-03-16 01:15:00
Code injection
2023-03-16 01:15:00
cve
cve
CVE-2023-28486
2023-03-16 01:15:47
CVE-2023-28487
2023-03-16 01:15:47
alpinelinux
alpinelinux
CVE-2023-28486
2023-03-16 01:15:00
CVE-2023-28487
2023-03-16 01:15:00
cvelist
cvelist
CVE-2023-28486
2023-03-16 00:00:00
CVE-2023-28487
2023-03-16 00:00:00
veracode
veracode
Information Disclosure
2023-03-24 15:41:20
Information Disclosure
2023-03-24 15:41:21
redhatcve
redhatcve
CVE-2023-28486
2023-03-17 08:12:57
CVE-2023-28487
2023-03-17 08:13:07
redos
redos
ROS-20240328-17
2024-03-28 00:00:00
ROS-20240410-06
2024-04-10 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-28486 affecting package sudo 1.9.12p2-1
2023-04-07 04:59:55
CVE-2023-28487 affecting package sudo 1.9.12p2-1
2023-04-07 04:59:55
nvd
nvd
CVE-2023-28487
2023-03-16 01:15:47
CVE-2023-28486
2023-03-16 01:15:47
debiancve
debiancve
CVE-2023-28487
2023-03-16 01:15:47
CVE-2023-28486
2023-03-16 01:15:47
ibm
ibm
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
0.001 Low
EPSS
Percentile
33.5%
Related for MGASA-2023-0133