Fedora 39: FEDORA-2024-cdccda4f62 critical: sudo stack corruption issue
fedora
January 28, 2024
Rabase to 1.9.15p5
Summary
Sudo (superuser do) allows a system administrator to give certain
users (or groups of users) the ability to run some (or all) commands
as root while logging all commands and arguments. Sudo operates on a
per-command basis. It is not a replacement for the shell. Features
include: the ability to restrict what commands a user may run on a
per-host basis, copious logging of each command (providing a clear
audit trail of who did what), a configurable timeout of the sudo
command, and the ability to use the same configuration file (sudoers)
on many different machines.
Update Information:
Rabase to 1.9.15p5
Topics Covered
Change Log
* Wed Jan 24 2024 Radovan Sroka
References
[ 1 ] Bug #2248505 - sudo-1_9_15p5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2248505
[ 2 ] Bug #2255569 - TRIAGE CVE-2023-42465 sudo: Targeted Corruption of Register and Stack Variables [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2255569
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-cdccda4f62' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: sudo
Product: Fedora 39
Version: 1.9.15
Release: 1.p5.fc39
URL: Summary : Allows restricted root access for specified users
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!