Joined: 12 May 2004
|Posted: Mon Jul 09, 2012 11:26 pm Post subject: [ GLSA 201207-01 ] sudo: Privilege escalation
|Gentoo Linux Security Advisory
Title: sudo: Privilege escalation (GLSA 201207-01)
Date: July 09, 2012
A vulnerability has been found in sudo which may allow local users
to gain escalated privileges.
sudo allows a system administrator to give users the ability to run
commands as other users. Access to commands may also be granted on a
range to hosts.
Vulnerable: < 1.8.5_p1
Unaffected: >= 1.8.5_p1
Architectures: All supported architectures
An error in sudo may allow unintended IPv4 hosts to be granted access to
A local attacker could gain escalated privileges.
There is no known workaround at this time.
All sudo users should upgrade to the latest version:
|# emerge --sync
# emerge --ask --oneshot --verbose ">=app-admin/sudo-1.8.5_p1"
Last edited by GLSA on Tue Apr 09, 2013 4:31 am; edited 2 times in total