Lucene search
Ubuntu.comUB:CVE-2016-7091HistoryDec 22, 2016 - 12:00 a.m.
CVE-2016-7091
2016-12-2200:00:00
ubuntu.com
ubuntu.com
5
0.0004 Low
EPSS
Percentile
5.2%
sudo: It was discovered that the default sudo configuration on Red Hat
Enterprise Linux and possibly other Linux implementations preserves the
value of INPUTRC which could lead to information disclosure. A local user
with sudo access to a restricted program that uses readline could use this
flaw to read content from specially formatted files with elevated
privileges provided by sudo.
Notes
| Author | Note |
|---|---|
| mdeslaur | INPUTRC isn’t included in debian/ubuntu, rh-specific |
Related
nessus
nessus
Oracle Linux 7 : sudo (ELSA-2016-2593)
2016-11-11 00:00:00
CentOS 7 : sudo (CESA-2016:2593)
2016-11-28 00:00:00
EulerOS 2.0 SP1 : sudo (EulerOS-SA-2016-1055)
2017-05-01 00:00:00
ibm
ibm
Security Bulletin: A vulnerability in sudo affects PowerKVM (CVE-2016-7091)
2018-06-18 01:34:14
openvas
openvas
Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2016-1055)
2020-01-23 00:00:00
RedHat Update for sudo RHSA-2016:2593-02
2016-11-04 00:00:00
cve
cve
CVE-2016-7091
2016-12-22 21:59:00
debiancve
debiancve
CVE-2016-7091
2016-12-22 21:59:00
cvelist
cvelist
CVE-2016-7091
2016-12-22 21:00:00
redhat
redhat
(RHSA-2016:2593) Low: sudo security, bug fix, and enhancement update
2016-11-03 06:07:15
oraclelinux
oraclelinux
sudo security, bug fix, and enhancement update
2016-11-09 00:00:00
centos
centos
sudo security update
2016-11-25 15:48:47
redhatcve
redhatcve
CVE-2016-7091
2016-08-26 00:48:46
prion
prion
Information disclosure
2016-12-22 21:59:00