18 matches found
[SECURITY] Fedora 44 Update: sudo-1.9.17-8.p2.fc44
Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict...
[SECURITY] Fedora 43 Update: sudo-1.9.17-7.p2.fc43
Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict...
Fedora 36 : sudo (2023-cb5df36beb)
The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-cb5df36beb advisory. Security fix for CVE-2023-27320 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...
OESA-2023-1172 sudo security update
Sudo is a program designed to allow a sysadmin to give limited root privileges to users and log root activity. The basic philosophy is to give as few privileges as possible but still allow people to get their work done. Security Fixes: Sudo before 1.9.13p2 has a double free in the per-command...
OESA-2023-1160 sudo security update
Sudo is a program designed to allow a sysadmin to give limited root privileges to users and log root activity. The basic philosophy is to give as few privileges as possible but still allow people to get their work done. Security Fixes: Sudo before 1.9.13p2 has a double free in the per-command...
Double Free
sudo is vulnerable to Double Free. An attacker can trigger a double free in the per-command chroot feature...
Sudo before 1.9.13p2 has a double free in the per-command chroot feature.
...
SUSE CVE-2023-27320
Sudo before 1.9.13p2 has a double free in the per-command chroot feature...
Fedora 37 : sudo (2023-d2d6ec2a32)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-d2d6ec2a32 advisory. Security fix for CVE-2023-27320 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...
USN-5908-1 sudo vulnerability
It was discovered that Sudo incorrectly handled the per-command chroot feature. In certain environments where Sudo is configured with a rule that contains a CHROOT setting, a local attacker could use this issue to cause Sudo to crash, resulting in a denial of service, or possibly escalate...
CVE-2023-27320
A double-free vulnerability was found in Sudo in the per-command chroot feature. This flaw exists due to a boundary error when matching a sudoer rule that contains a per-command chroot directive CHROOT=dir. By sending a specially-crafted request, a local privileged attacker can elevate privileges...
CVE-2023-27320
Sudo before 1.9.13p2 has a double free in the per-command chroot feature...
AZL-13784 CVE-2023-27320 affecting package sudo for versions less than 1.9.13p3-1
Sudo before 1.9.13p2 has a double free in the per-command chroot feature...
DEBIAN-CVE-2023-27320
Sudo before 1.9.13p2 has a double free in the per-command chroot feature...
UBUNTU-CVE-2023-27320
Sudo before 1.9.13p2 has a double free in the per-command chroot feature...
CVE-2023-27320
Sudo before 1.9.13p2 has a double free in the per-command chroot feature...
CVE-2023-27320
Sudo before 1.9.13p2 has a double free in the per-command chroot feature...
[SECURITY] Fedora 22 Update: sudo-1.8.15-1.fc22
Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict...