587 matches found
[SECURITY] [DLA 4614-1] sudo security update
Debian LTS Advisory DLA-4614-1 [email protected] https://www.debian.org/lts/security/ Andreas Henriksson June 04, 2026 https://wiki.debian.org/LTS Package : sudo Version : 1.9.5p2-3+deb11u4 CVE ID : CVE-2026-35535 Debian Bug : 1130593 Qualys released an advisory called CrackArmor...
Fedora 44 : pie (2026-e5d5fc359d)
The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-e5d5fc359d advisory. Version 1.4.5 This release contains vulnerability fixes for the following security advisories: - GHSA-h842-vjwg-pxxx - Sudo-elevated arbitrary file deletion...
Important: Red Hat Security Advisory: OpenShift Container Platform 4.18.43 bug fix and security update
Red Hat OpenShift Container Platform release 4.18.43 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.18. Red Hat Product Security has rated this update as having a...
RockyLinux 10 : sudo (RLSA-2026:19067)
The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:19067 advisory. sudo: Sudo: Privilege escalation due to failure in privilege drop calls CVE-2026-35535 Tenable has extracted the preceding description block directly from the...
RockyLinux 9 : sudo (RLSA-2026:19220)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:19220 advisory. sudo: Sudo: Privilege escalation due to failure in privilege drop calls CVE-2026-35535 Tenable has extracted the preceding description block directly from the...
TencentOS Server 3: sudo (TSSA-2026:0349)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0349 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
Astra Linux - уязвимость в sudo
The “sudoedit” personality of Sudo before version 1.9.5 might allow a local unprivileged user to perform arbitrary directory existence tests by exploiting a race condition in the “sudoedit.c” code, which allows a user-controlled directory to be replaced with a symlink pointing to an arbitrary pat...
Astra Linux - уязвимость в sudo
Before version 1.9.13, Sudo did not escape control characters in log messages...
Astra Linux - уязвимость в sudo
In Sudo version 1.8.29, the fact that a user has been blocked for example, by using the “!” character in the shadow file instead of a password hash was not taken into consideration. This allows an attacker who has access to a Runas ALL sudoer account to impersonate any blocked user. NOTE: The...
Astra Linux - уязвимость в sudo
In Sudo version 1.8.29, an attacker with access to a Runas ALL sudoer account can impersonate a nonexistent user by executing sudo with a numerical UID that is not associated with any user. NOTE: The software maintainer believes that this is not a vulnerability, as executing a command via sudo as...
RHEL 10 : sudo (RHSA-2026:19067)
The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:19067 advisory. The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged...
RHEL 9 : sudo (RHSA-2026:19220)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:19220 advisory. The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged...
Exploit for Inclusion of Functionality from Untrusted Control Sphere in Sudo_Project Sudo
CVE-2025-32463 - No gcc required Privilege escalation to root vi...
RHEL 8 : sudo (RHSA-2026:14228)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:14228 advisory. The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged...
sudo: Sudo: Privilege escalation due to failure in privilege drop calls
A flaw was found in Sudo. A local user could exploit a failure in the setuid, setgid, or setgroups calls, which are used to drop privileges before running the mailer. This oversight allows for privilege escalation, enabling the user to gain elevated access on the system...
RHEL 7 : sudo (RHSA-2026:13895)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:13895 advisory. The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged...
RHEL 6 : sudo (RHSA-2026:13896)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:13896 advisory. The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged...
RHEL 10 : sudo (RHSA-2026:13888)
The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:13888 advisory. The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged...
RHEL 9 : sudo (RHSA-2026:13891)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:13891 advisory. The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged...
RHEL 8 : sudo (RHSA-2026:13892)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:13892 advisory. The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged...