Ubuntu 4.10 / 5.04 / 5.10 : sudo vulnerability (USN-235-2)

USN-235-1 fixed a vulnerability in sudo's handling of environment variables. Tavis Ormandy noticed that sudo did not filter out the PYTHONINSPECT environment variable, so that users with the limited privilege of calling a python script with sudo could still escalate their privileges. For referenc...

Mandrake Linux Security Advisory : sudo (MDKSA-2005:234)

Charles Morris discovered a vulnerability in sudo versions prior to 1.6.8p12 where, when the perl taint flag is off, sudo does not clear the PERLLIB, PERL5LIB, and PERL5OPT environment variables, which could allow limited local users to cause a perl script to include and execute arbitrary library...

[SA17534] Sudo Perl Environment Cleaning Privilege Escalation Vulnerability

TITLE: Sudo Perl Environment Cleaning Privilege Escalation Vulnerability SECUNIA ADVISORY ID: SA17534 VERIFY ADVISORY: http://secunia.com/advisories/17534/ CRITICAL: Less critical IMPACT: Privilege escalation WHERE: Local system SOFTWARE: Sudo 1.x http://secunia.com/product/3929/ DESCRIPTION: A...

USN-142-1: sudo vulnerability

Charles Morris discovered a race condition in sudo which could lead to privilege escalation. If /etc/sudoers allowed a user the execution of selected programs, and this was followed by another line containing the pseudo-command "ALL", that user could execute arbitrary commands with sudo by creati...