New Exploit in "sudo" allows users to gain root privileges

For topics beyond KeyHelp. / Für Themen jenseits von KeyHelp.
Post Reply
Tony20
Posts: 45
Joined: Tue 7. Apr 2020, 19:21

New Exploit in "sudo" allows users to gain root privileges

Post by Tony20 »

A local user may be able to exploit sudo to elevate privileges to root as long as the sudoers file (usually /etc/sudoers) is present

Sudo versions affected:
"Sudo versions 1.8.2 through 1.8.31p2 and 1.9.0 through 1.9.5p1 are affected."


https://www.sudo.ws/alerts/unescape_overflow.html
User avatar
andromeda
Posts: 83
Joined: Wed 25. Nov 2020, 13:49

Re: New Exploit in "sudo" allows users to gain root privileges

Post by andromeda »

Fixed by update routine (if auto updates are enabled), chroot envoiurment is not affected, e.g. reply by Alexander here (in german): viewtopic.php?f=2&p=27694#p27694
Post Reply