3 matches found
Slackware Linux 14.0 / 14.1 / 14.2 / 15.0 / current sudo Multiple Vulnerabilities (SSA:2023-311-01)
The version of sudo installed on the remote host is prior to 1.9.15. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2023-311-01 advisory. - Sudo-rs, a memory safe implementation of sudo and su, allows users to not have to enter authentication at every sudo attempt...
Slackware: Security Advisory (SSA:2023-311-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-42456
CVE-2023-42456 describes a path traversal vulnerability in the Rust-based sudo-rs implementation. In versions before 0.2.1, session timestamps for sudo authentication were stored per-origin-user in /var/run/sudo-rs/ts using the origin username to form the file path. An attacker who can create a c...