Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Ubuntu 19.10 Security Notice: USN-4263-1 Addresses Sudo Access Bug

ubuntu
Calendar Grey February 3, 2020
Dist Ubuntu Esm H88
Uncover the insights of the Ubuntu security notice USN-4263-1 regarding the sudo flaw impacting user permissions.
Sudo could allow unintended access to the administrator account.

Summary

Sudo could allow unintended access to the administrator account.

Software Description:

- sudo: Provide limited super user privileges to specific users

Details:

Joe Vennix discovered that Sudo incorrectly handled memory operations when

the pwfeedback option is enabled. A local attacker could possibly use this

issue to obtain unintended access to the administrator account.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 19.10:
  sudo                            1.8.27-1ubuntu4.1
  sudo-ldap                       1.8.27-1ubuntu4.1

Ubuntu 18.04 LTS:
  sudo                            1.8.21p2-3ubuntu1.2
  sudo-ldap                       1.8.21p2-3ubuntu1.2

Ubuntu 16.04 LTS:
  sudo                            1.8.16-0ubuntu1.9
  sudo-ldap                       1.8.16-0ubuntu1.9

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-4263-1

CVE-2019-18634

Severity
critical
Lowest
Low
Medium
High
Critical

February 03, 2020

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here