Important: Red Hat Security Advisory: sudo security update

An update for sudo is now available for Red Hat Enterprise Linux 7.5 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

The vulnerability of the system administration program Sudo arises due to insufficient validation of input data. It allows arbitrary commands to be executed with root privileges.

The vulnerability of the system administration program Sudo exists due to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary commands with root privileges, using the user ID “-1” or “4294967295”...

CVE-2019-12147

The Sangoma Session Border Controller SBC 2.3.23-119 GA web interface is vulnerable to Argument Injection via special characters in the username field. Upon successful exploitation, a remote unauthenticated user can create a local system user with sudo privileges, and use that user to login to th...

CVE-2019-12147

The Sangoma Session Border Controller SBC 2.3.23-119 GA web interface is vulnerable to Argument Injection via special characters in the username field. Upon successful exploitation, a remote unauthenticated user can create a local system user with sudo privileges, and use that user to login to th...

Design/Logic Flaw

The Sangoma Session Border Controller SBC 2.3.23-119 GA web interface is vulnerable to Argument Injection via special characters in the username field. Upon successful exploitation, a remote unauthenticated user can create a local system user with sudo privileges, and use that user to login to th...

CVE-2019-12147

The Sangoma Session Border Controller SBC 2.3.23-119 GA web interface is vulnerable to Argument Injection via special characters in the username field. Upon successful exploitation, a remote unauthenticated user can create a local system user with sudo privileges, and use that user to login to th...

Photon OS 3.0: Sudo PHSA-2019-3.0-0035

An update of the sudo package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-3.0-0035. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid130105;...

Photon OS 2.0: Sudo PHSA-2019-2.0-0183

An update of the sudo package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-2.0-0183. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid130107;...

Photon OS 1.0: Sudo PHSA-2019-1.0-0254

An update of the sudo package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-1.0-0254. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid130108;...

Fedora 31 : sudo (2019-67998e9f7e)

Rebase to 1.8.28 - Fixed CVE-2019-14287 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable...

[SECURITY] Fedora 31 Update: sudo-1.8.28-1.fc31

Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict...

SUSE-SU-2019:14193-1 Security update for sudo

This update for sudo fixes the following issues: - CVE-2019-14287: Fixed an issue where a user with sudo privileges that allowed them to run commands with an arbitrary uid, could run commands as root, despite being forbidden to do so in sudoers bsc1153674...

Exploit for Improper Handling of Exceptional Conditions in Sudo_Project Sudo

Sudo-Security-Bypass-CVE-2019-14287 ==========================...

Important Photon OS Security Update - PHSA-2019-0183

Updates of 'sudo' packages of Photon OS have been released...

Critical Photon OS Security Update - PHSA-2019-3.0-0035

Updates of 'subversion', 'openjdk8', 'httpd', 'unbound', 'sudo', 'python2' packages of Photon OS have been released...

Important Photon OS Security Update - PHSA-2019-0254

Updates of 'sudo', 'subversion' packages of Photon OS have been released...

openSUSE Security Update : sudo (openSUSE-2019-2333)

This update for sudo fixes the following issue : - CVE-2019-14287: Fixed an issue where a user with sudo privileges that allowed them to run commands with an arbitrary uid, could run commands as root, despite being forbidden to do so in sudoers bsc1153674. This update was imported from the...

Debian DLA-1964-1 : sudo security update

In sudo, a program that provides limited super user privileges to specific users, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID. For example, this allows...

Debian: Security Advisory (DLA-1964-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for sudo (openSUSE-SU-2019:2333-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...