The vulnerability of the `stdin getln` function in the system administration software Sudo, which allows a hacker to escalate their privileges.

The vulnerability of the stdin getln function in the system administration program Sudo is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to increase their privileges...

CVE-2019-18634

In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged sudo process. pwfeedback is a default setting in Linux Mint and elementary OS; however, it is NOT the default for upstream and many other packages, and would exist on...

PT-2020-1637 · Todd Miller +5 · Sudo +5

Name of the Vulnerable Software and Affected Versions: Sudo versions prior to 1.8.31 Description: The issue is related to a stack-based buffer overflow in the privileged sudo process when the pwfeedback option is enabled in /etc/sudoers. This option is a default setting in Linux Mint and elementa...