Lucene search
SuseOPENSUSE-SU-2017:1697-1HistoryJun 27, 2017 - 12:09 a.m.
Security update for sudo (important)
2017-06-2700:09:23
lists.opensuse.org
30
0.002 Low
EPSS
Percentile
58.2%
This update for sudo fixes the following security issue:
- CVE-2017-1000368: A follow-up fix to CVE-2017-1000367, the Linux process
name could also contain a newline, which could be used to trick sudo to
read/write to an arbitrary open terminal. (bsc#1042146)
Also the following non security bug was fixed:
- Link the "system_group" plugin with sudo_util library to resolve the
missing sudo_dso_findsym symbol (bsc#1034560)
This update was imported from the SUSE:SLE-12-SP2:Update update project.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 42.2 | x86_64 | sudo-debuginfo | < 1.8.10p3-9.6.1 | sudo-debuginfo-1.8.10p3-9.6.1.x86_64.rpm |
| openSUSE Leap | 42.2 | i586 | sudo-test | < 1.8.10p3-9.6.1 | sudo-test-1.8.10p3-9.6.1.i586.rpm |
| openSUSE Leap | 42.2 | i586 | sudo-debuginfo | < 1.8.10p3-9.6.1 | sudo-debuginfo-1.8.10p3-9.6.1.i586.rpm |
| openSUSE Leap | 42.2 | x86_64 | sudo-test | < 1.8.10p3-9.6.1 | sudo-test-1.8.10p3-9.6.1.x86_64.rpm |
| openSUSE Leap | 42.2 | x86_64 | sudo-devel | < 1.8.10p3-9.6.1 | sudo-devel-1.8.10p3-9.6.1.x86_64.rpm |
| openSUSE Leap | 42.2 | i586 | sudo-debugsource | < 1.8.10p3-9.6.1 | sudo-debugsource-1.8.10p3-9.6.1.i586.rpm |
| openSUSE Leap | 42.2 | i586 | sudo-devel | < 1.8.10p3-9.6.1 | sudo-devel-1.8.10p3-9.6.1.i586.rpm |
| openSUSE Leap | 42.2 | x86_64 | sudo | < 1.8.10p3-9.6.1 | sudo-1.8.10p3-9.6.1.x86_64.rpm |
| openSUSE Leap | 42.2 | i586 | sudo | < 1.8.10p3-9.6.1 | sudo-1.8.10p3-9.6.1.i586.rpm |
| openSUSE Leap | 42.2 | x86_64 | sudo-debugsource | < 1.8.10p3-9.6.1 | sudo-debugsource-1.8.10p3-9.6.1.x86_64.rpm |
Related
nessus
nessus
Virtuozzo 6 : sudo / sudo-devel (VZLSA-2017-1574)
2017-07-13 00:00:00
Amazon Linux AMI : sudo (ALAS-2017-855)
2017-07-07 00:00:00
CentOS 6 / 7 : sudo (CESA-2017:1574)
2017-06-23 00:00:00
suse
suse
Security update for sudo (important)
2017-06-20 18:10:44
Security update for sudo (important)
2017-06-20 18:10:00
Security update for sudo (important)
2017-07-04 21:22:28
openvas
openvas
Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2017-1120)
2020-01-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:1626-1)
2021-04-19 00:00:00
Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2019-1449)
2020-01-23 00:00:00
ibm
ibm
redhatcve
redhatcve
CVE-2017-1000368
2017-06-06 12:49:37
CVE-2017-1000367
2017-05-30 15:48:50
redhat
redhat
(RHSA-2017:1574) Moderate: sudo security update
2017-06-22 17:25:15
(RHSA-2017:1381) Important: sudo security update
2017-05-30 00:00:00
(RHSA-2017:1382) Important: sudo security update
2017-05-30 15:55:46
amazon
amazon
debian
debian
[SECURITY] [DLA 1011-1] sudo security update
2017-07-03 15:30:41
[SECURITY] [DSA 3867-1] sudo security update
2017-05-30 15:37:59
[SECURITY] [DSA 3867-1] sudo security update
2017-05-30 15:38:16
centos
centos
sudo security update
2017-06-22 20:51:03
sudo security update
2017-05-31 14:06:33
f5
f5
K23151384 : Sudo vulnerabilities CVE-2017-1000367 and CVE-2017-1000368
2017-06-13 00:00:00
sudo vulnerability CVE-2017-1000367
2017-06-13 21:52:00
prion
prion
Design/Logic Flaw
2017-06-05 16:29:00
Design/Logic Flaw
2017-06-05 14:29:00
oraclelinux
oraclelinux
sudo security update
2017-06-23 00:00:00
sudo security update
2017-06-01 00:00:00
sudo security update
2017-05-30 00:00:00
osv
osv
CVE-2017-1000368
2017-06-05 16:29:00
sudo - security update
2017-07-03 00:00:00
CVE-2017-1000367
2017-06-05 14:29:00
gentoo
gentoo
sudo: Privilege escalation
2017-10-08 00:00:00
sudo: Privilege escalation
2017-05-30 00:00:00
cve
cve
CVE-2017-1000368
2017-06-05 16:29:00
CVE-2017-1000367
2017-06-05 14:29:00
veracode
veracode
Arbitrary Command Execution
2019-01-15 09:18:06
Privilege Escalation
2019-01-15 09:17:30
alpinelinux
alpinelinux
CVE-2017-1000368
2017-06-05 16:29:00
ubuntu
ubuntu
Sudo vulnerability
2019-05-29 00:00:00
Sudo vulnerability
2017-05-30 00:00:00
Sudo vulnerabilities
2019-05-06 00:00:00
exploitpack
exploitpack
Sudo 1.8.20 - get_process_ttyname() Local Privilege Escalation
2017-06-14 00:00:00
thn
thn
High-Severity Linux Sudo Flaw Allows Users to Gain Root Privileges
2017-05-31 21:28:00
fedora
fedora
[SECURITY] Fedora 25 Update: sudo-1.8.20p2-1.fc25
2017-06-03 02:37:39
[SECURITY] Fedora 24 Update: sudo-1.8.20p2-1.fc24
2017-06-08 06:53:51
[SECURITY] Fedora 26 Update: sudo-1.8.20p2-1.fc26
2017-06-09 20:21:45
archlinux
archlinux
[ASA-201705-25] sudo: access restriction bypass
2017-05-30 00:00:00
ubuntucve
ubuntucve
CVE-2017-1000368
2017-06-05 00:00:00
CVE-2017-1000367
2017-05-30 00:00:00
debiancve
debiancve
CVE-2017-1000368
2017-06-05 16:29:00
CVE-2017-1000367
2017-06-05 14:29:00
altlinux
altlinux
Security fix for the ALT Linux 8 package sudo version 1:1.8.20p1-alt1
2017-05-31 00:00:00
seebug
seebug
CVE-2017-1000367 in Sudo's get_process_ttyname() for Linux
2017-05-31 00:00:00
mageia
mageia
Updated sudo packages fix security vulnerability
2017-07-13 12:10:46
packetstorm
packetstorm
Sudo get_process_ttyname() Race Condition
2017-06-02 00:00:00
threatpost
threatpost
Patches Available for Linux Sudo Vulnerability
2017-05-31 13:55:30
cloudfoundry
cloudfoundry
USN-3304-1: Sudo vulnerability | Cloud Foundry
2017-06-12 00:00:00
USN-3968-1: Sudo vulnerabilities | Cloud Foundry
2019-05-20 00:00:00
slackware
slackware
[slackware-security] sudo
2017-05-30 17:42:26
exploitdb
exploitdb
Sudo 1.8.20 - 'get_process_ttyname()' Local Privilege Escalation
2017-06-14 00:00:00
myhack58
myhack58
photon
photon
qualysblog
qualysblog
The Stack Clash
2017-06-19 15:14:57
kitploit
kitploit