sudo: Privilege escalation via 'Runas' specification with 'ALL' keyword

A flaw was found in the way sudo implemented running commands with arbitrary user ID. If a sudoers entry is written to allow the attacker to run a command as any user except root, this flaw can be used by the attacker to bypass that restriction...

The vulnerability of the system administration program Sudo arises due to insufficient validation of input data. It allows arbitrary commands to be executed with root privileges.

The vulnerability of the system administration program Sudo exists due to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary commands with root privileges, using the user ID “-1” or “4294967295”...

CVE-2019-12147

The Sangoma Session Border Controller SBC 2.3.23-119 GA web interface is vulnerable to Argument Injection via special characters in the username field. Upon successful exploitation, a remote unauthenticated user can create a local system user with sudo privileges, and use that user to login to th...

CVE-2019-12147

The Sangoma Session Border Controller SBC 2.3.23-119 GA web interface is vulnerable to Argument Injection via special characters in the username field. Upon successful exploitation, a remote unauthenticated user can create a local system user with sudo privileges, and use that user to login to th...

Design/Logic Flaw

The Sangoma Session Border Controller SBC 2.3.23-119 GA web interface is vulnerable to Argument Injection via special characters in the username field. Upon successful exploitation, a remote unauthenticated user can create a local system user with sudo privileges, and use that user to login to th...

CVE-2019-12147

The Sangoma Session Border Controller SBC 2.3.23-119 GA web interface is vulnerable to Argument Injection via special characters in the username field. Upon successful exploitation, a remote unauthenticated user can create a local system user with sudo privileges, and use that user to login to th...

Photon OS 1.0: Sudo PHSA-2019-1.0-0254

An update of the sudo package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-1.0-0254. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid130108;...

Photon OS 2.0: Sudo PHSA-2019-2.0-0183

An update of the sudo package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-2.0-0183. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid130107;...

Photon OS 3.0: Sudo PHSA-2019-3.0-0035

An update of the sudo package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-3.0-0035. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid130105;...

Fedora 31 : sudo (2019-67998e9f7e)

Rebase to 1.8.28 - Fixed CVE-2019-14287 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable...

[SECURITY] Fedora 31 Update: sudo-1.8.28-1.fc31

Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict...

SUSE-SU-2019:14193-1 Security update for sudo

This update for sudo fixes the following issues: - CVE-2019-14287: Fixed an issue where a user with sudo privileges that allowed them to run commands with an arbitrary uid, could run commands as root, despite being forbidden to do so in sudoers bsc1153674...

Exploit for Improper Handling of Exceptional Conditions in Sudo_Project Sudo

Sudo-Security-Bypass-CVE-2019-14287 ==========================...

Critical Photon OS Security Update - PHSA-2019-0035

Updates of 'unbound', 'python2', 'subversion', 'httpd', 'openjdk8', 'sudo' packages of Photon OS have been released...

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-1.0-0254

An update of 'rsyslog', 'subversion', 'sudo' packages of Photon OS has been released...

Important Photon OS Security Update - PHSA-2019-0254

Updates of 'sudo', 'subversion' packages of Photon OS have been released...

Critical Photon OS Security Update - PHSA-2019-3.0-0035

Updates of 'httpd', 'openjdk8', 'subversion', 'sudo', 'python2', 'unbound' packages of Photon OS have been released...

Important Photon OS Security Update - PHSA-2019-0183

Updates of 'sudo' packages of Photon OS have been released...

openSUSE Security Update : sudo (openSUSE-2019-2333)

This update for sudo fixes the following issue : - CVE-2019-14287: Fixed an issue where a user with sudo privileges that allowed them to run commands with an arbitrary uid, could run commands as root, despite being forbidden to do so in sudoers bsc1153674. This update was imported from the...

Debian: Security Advisory (DLA-1964-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...