Astra Linux - уязвимость в sudo

A flaw was discovered in sudo’s handling of ipahostname. In this process, the ipahostname value from /etc/sssd/sssd.conf was not propagated to sudo. As a result, this leads to a privilege management vulnerability in applications, where client hosts retain privileges even after those privileges ha...

The vulnerability in the sudo system administration program relates to improper privilege management. This allows a malicious actor to bypass existing security restrictions and retain their privileges after they are revoked.

The vulnerability in the sudo system administration program relates to improper privilege management when processing ipahostname. In this case, ipahostname, which is located in /etc/sssd/sssd.conf, was not propagated to sudo. Exploiting this vulnerability allows a malicious actor to bypass existi...

SUSE CVE-2023-7090

A flaw was found in sudo in the handling of ipahostname, where ipahostname from /etc/sssd/sssd.conf was not propagated in sudo. Therefore, it leads to privilege mismanagement vulnerability in applications, where client hosts retain privileges even after retracting them...

DEBIAN-CVE-2023-7090

A flaw was found in sudo in the handling of ipahostname, where ipahostname from /etc/sssd/sssd.conf was not propagated in sudo. Therefore, it leads to privilege mismanagement vulnerability in applications, where client hosts retain privileges even after retracting them...

PT-2023-8568 · Sudo +2 · Sudo +2

Name of the Vulnerable Software and Affected Versions: sudo affected versions not specified Description: A flaw was found in sudo in the handling of ipa hostname, where ipa hostname from /etc/sssd/sssd.conf was not propagated in sudo. This leads to a privilege mismanagement issue in applications,...