4721 matches found
CVE-2025-32463
A flaw was found in Sudo. This flaw allows a local attacker to escalate their privileges by tricking Sudo into loading an arbitrary shared library using the user-specified root directory via the -R --chroot option. An attacker can run arbitrary commands as root on systems that support...
PT-2025-27465
Name of the Vulnerable Software and Affected Versions: Sudo versions 1.8.8 through 1.9.17 Description: Sudo, a program designed to provide limited super user privileges, contains a vulnerability due to incorrect handling of the host -h or --host option. This flaw allows a local user to potentiall...
CVE-2025-32463
Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option...
Important Photon OS Security Update - PHSA-2025-5.0-0544
Updates of 'sudo' packages of Photon OS have been released...
PT-2025-27466
Name of the Vulnerable Software and Affected Versions Sudo versions prior to 1.9.17p1 Description Local users can obtain root access and execute arbitrary commands by exploiting the inclusion of functionality from an untrusted control sphere. This occurs when the --chroot or -R option is used,...
CVE-2025-32463
Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option...
Sudo ๅฎๅ จๆผๆด
Sudo is a program used on Unix-like systems that allows users to execute commands with special privileges in a secure manner. A security vulnerability exists in Sudo versions prior to 1.9.17p1, which stems from the fact that using /etc/nsswitch.conf in the user control directory may result in...
EUVD-2025-20867
Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines...
sudo security update
1.9.5p2-10.1 RHEL 9.6.0.Z ERRATUM - CVE-2025-32462 sudo: LPE via host option Resolves: RHEL-100016...
CVE-2025-32463
CVE-2025-32463 affects the sudo utility prior to 1.9.17p1. The vulnerability arises when /etc/nsswitch.conf is sourced from a user-controlled directory via the --chroot option, enabling local users to obtain root access. Connected sources also describe related behavior where a sudoers entry that ...
ALSA-2025:9978 Important: sudo security update
The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fixes: sudo: LPE via host option CVE-2025-32462 For...
Debian dsa-5954 : libnss-sudo - security update
The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5954 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5954-1 [email protected] https://www.debian.org/security/...
Sudo ๅฎๅ จๆผๆด
Sudo is a program used on Unix-like systems that allows users to execute commands with special privileges in a secure manner. A security vulnerability exists in versions of Sudo prior to 1.9.17p1 that stems from allowing listed users to execute commands on unintended machines...
CVE-2025-32462
Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines...
CVE-2025-32462
Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines...
Important: sudo security update
The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fixes: sudo: LPE via host option CVE-2025-32462 For...
CVE-2025-32462
Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines...
DSA-5954-1 sudo - security update
Bulletin has no description...
Important Photon OS Security Update - PHSA-2025-4.0-0824
Updates of 'sudo' packages of Photon OS have been released...
CVE-2025-32462
CVE-2025-32462 affects sudo prior to 1.9.17p1. When used with a sudoers entry that specifies a host neither the current host nor ALL, listed users can execute commands on unintended machines. The Astra Linux bulletin reiterates this description. Connected advisories indicate a patched version is ...