3.3 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
6.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:S/C:C/I:C/A:C
This update fixes the CVEs described below.
For the oldstable distribution (squeeze), these problems have been fixed
in version 1.7.4p4-2.squeeze.5.
For the stable distribution (wheezy), they have been fixed in version
1.8.5p2-1+nmu2.
We recommend that you upgrade your sudo packages.
CPE | Name | Operator | Version |
---|---|---|---|
sudo | eq | 1.7.4p4-2.squeeze.1 | |
sudo | eq | 1.7.4p4-2.squeeze.4 | |
sudo | eq | 1.7.4p4-2.squeeze.3 | |
sudo | eq | 1.7.4p4-2.squeeze.2 |
3.3 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
6.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:S/C:C/I:C/A:C