2 matches found
EUVD-2020-29311
Malware in sbrugna...
sudo: Sudo does not escape control characters in log messages
A flaw was found in the sudo package, shipped with Red Hat Enterprise Linux 8 and 9, where sudo improperly escapes terminal control characters during logging operations. As sudo's log messages may contain user-controlled strings, this may allow an attacker to inject terminal control commands,...