KeyHelp Community

Das offizielle KeyHelp Forum der Keyweb AG / The official KeyHelp forum of Keyweb AG
https://community.keyhelp.de/

New Exploit in "sudo" allows users to gain root privileges

https://community.keyhelp.de/viewtopic.php?t=10282

Page 1 of 1

New Exploit in "sudo" allows users to gain root privileges

Posted: Tue 26. Jan 2021, 23:39
by Tony20
A local user may be able to exploit sudo to elevate privileges to root as long as the sudoers file (usually /etc/sudoers) is present

Sudo versions affected:
"Sudo versions 1.8.2 through 1.8.31p2 and 1.9.0 through 1.9.5p1 are affected."


https://www.sudo.ws/alerts/unescape_overflow.html

Re: New Exploit in "sudo" allows users to gain root privileges

Posted: Wed 27. Jan 2021, 11:18
by andromeda
Fixed by update routine (if auto updates are enabled), chroot envoiurment is not affected, e.g. reply by Alexander here (in german): viewtopic.php?f=2&p=27694#p27694
All times are UTC+02:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited