Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -3 articles for you...
100
security advisorymoderatesecurity updateSUSE: 2023:888-1 Moderate: Sudo Security Fix in Toolbox
The container suse/sle-micro/5.1/toolbox was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sle-micro/5.1/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:888-1 Container Tags : suse/sle-micro/5.1/toolbox:11.1 , suse/sle-micro/5.1/toolbox:11.1-2.2.365 , suse/sle-micro/5.1/toolbox:latest Container Release : 2.2.365 Severity : moderate Type : security References : 1203201 1206483 1209361 1209362 CVE-2023-28486 CVE-2023-28487 ----------------------------------------------------------------- The container suse/sle-micro/5.1/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:1698-1 Released: Thu Mar 30 12:16:57 2023 Summary: Security update for sudo Type: security Severity: moderate References: 1203201,1206483,1209361,1209362,CVE-2023-28486,CVE-2023-28487 This update for sudo fixes the following issue: Security fixes: - CVE-2023-28486: Fixed missing control characters escaping in log messages (bsc#1209362). - CVE-2023-28487: Fixed missing control characters escaping in sudoreplay output (bsc#1209361). Other fixes: - Fix a situation where 'sudo -U otheruser -l' would dereference a NULL pointer (bsc#1206483). - Do not re-enable the reader when flushing the buffers as part of pty_finish() (bsc#1203201). The following package changes have been done: - sudo-1.9.5p2-150300.3.24.1 updated . SUSE Container Release Notice: suse/sle-micro/5.1/toolbox has been updated with vital security patches addressing vulnerabilities in sudo.. SUSE Container Update, Toolbox Security, SLE Micro Updates. . LinuxSecurity.com Team
Mar 31, 2023
SuSE
202
security advisorycritical issuebuffer overflowopenSUSE Leap 15.2: 2021:0170-1 Critical: Sudo Memory Leak
An update that solves three vulnerabilities and has one errata is now available. . openSUSE Security Update: Security update for sudo ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:0170-1 Rating: important References: #1180684 #1180685 #1180687 #1181090 Cross-References: CVE-2021-23239 CVE-2021-23240 CVE-2021-3156 Affected Products: openSUSE Leap 15.2 ______________________________________________________________________________ An update that solves three vulnerabilities and has one errata is now available. Description: This update for sudo fixes the following issues: - A Heap-based buffer overflow in sudo could be exploited to allow a user to gain root privileges [bsc#1181090,CVE-2021-3156] - It was possible for a user to test for the existence of a directory due to a Race Condition in `sudoedit` [bsc#1180684,CVE-2021-23239] - A Possible Symlink Attack vector existed in `sudoedit` if SELinux was running in permissive mode [bsc#1180685, CVE-2021-23240] - It was possible for a User to enable Debug Settings not Intended for them [bsc#1180687] This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2021-170=1 Package List: - openSUSE Leap 15.2 (i586 x86_64): sudo-1.8.22-lp152.8.6.1 sudo-debuginfo-1.8.22-lp152.8.6.1 sudo-debugsource-1.8.22-lp152.8.6.1 sudo-devel-1.8.22-lp152.8.6.1 sudo-test-1.8.22-lp152.8.6.1 References: https://www.suse.com/security/cve/CVE-2021-23239.html https://www.suse.com/security/cve/CVE-2021-23240.html https://www.suse.com/security/cve/CVE-2021-3156.html https://bugzilla.suse.com/1180684 https://bugzilla.suse.com/1180685 https://bugzilla.suse.com/1180687 https://bugzilla.suse.com/1181090 . A significant Fedora refresh for sudo addresses multiple severe vulnerabilities to improve overall system integrity. Discover more!. openSUSE Security,Sudo Update,Security Fixes,System Protection. . Severity: Important. LinuxSecurity.com Team
Jan 27, 2021
•Important
OpenSUSE
99
security advisorycritical issuebuffer overflowSlackware 14.2: 2021-026-01 Critical Sudo Buffer Overflow Fix
New sudo packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] sudo (SSA:2021-026-01) New sudo packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: +--------------------------+ patches/packages/sudo-1.9.5p2-i586-1_slack14.2.txz: Upgraded. When invoked as sudoedit, the same set of command line options are now accepted as for "sudo -e". The -H and -P options are now rejected for sudoedit and "sudo -e" which matches the sudo 1.7 behavior. This is part of the fix for CVE-2021-3156. Fixed a potential buffer overflow when unescaping backslashes in the command's arguments. Normally, sudo escapes special characters when running a command via a shell (sudo -s or sudo -i). However, it was also possible to run sudoedit with the -s or -i flags in which case no escaping had actually been done, making a buffer overflow possible. This fixes CVE-2021-3156. For more information, see: https://www.cve.org/CVERecord?id=CVE-2021-3156 (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you. Updated package for Slackware 14.0: Updated package for Slackware x86_64 14.0: Updated package for Slackware 14.1: Updated package for Slackware x86_64 14.1: Updated package for Slackware 14.2: Updated package for Slackware x86_64 14.2: Updated package for Slackware -current: Updated package for Slackware x86_64 -current: MD5 signatures: +-------------+ Slackware 14.0 package: 047bb22ce157548126d16430c3a374ef sudo-1.9.5p2-i486-1_slack14.0.txz Slackware x86_64 14.0package: 7fbd3e885d8cc9b3cee66cdefeeba9e3 sudo-1.9.5p2-x86_64-1_slack14.0.txz Slackware 14.1 package: 261ca55be2533f11b224e806e1acd554 sudo-1.9.5p2-i486-1_slack14.1.txz Slackware x86_64 14.1 package: 0a261cd2ba3aa541d294d69f4bed5c2f sudo-1.9.5p2-x86_64-1_slack14.1.txz Slackware 14.2 package: 00df3b1ea402b263fbf63bd411f99a77 sudo-1.9.5p2-i586-1_slack14.2.txz Slackware x86_64 14.2 package: 4f29ad52ed440334c591ee530362e384 sudo-1.9.5p2-x86_64-1_slack14.2.txz Slackware -current package: 90296d19fb80c3fab70158febfba1d54 ap/sudo-1.9.5p2-i586-1.txz Slackware x86_64 -current package: a3c31d280a60d4ea59922a60410072d9 ap/sudo-1.9.5p2-x86_64-1.txz Installation instructions: +------------------------+ Upgrade the package as root: # upgradepkg sudo-1.9.5p2-i586-1_slack14.2.txz +-----+ . Fresh sudo extensions released for Slackware, targeting security flaws such as buffer overflow vulnerabilities and patches for various exploits.. Slackware Sudo Update, Package Update, Security Advisories, Critical Fixes. . Severity: Critical. LinuxSecurity.com Team
Jan 26, 2021
•Critical
Slackware
98
security advisorysecurity issuebug fixRed Hat Enterprise Linux 5 RHSA-2012:1149-01 Moderate Sudo Security Fix
An updated sudo package that fixes one security issue and several bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: sudo security and bug fix update Advisory ID: RHSA-2012:1149-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2012:1149.html Issue date: 2012-08-07 CVE Names: CVE-2012-3440 ==================================================================== 1. Summary: An updated sudo package that fixes one security issue and several bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 3. Description: The sudo (superuser do) utility allows system administrators to give certain users the ability to run commands as root. An insecure temporary file use flaw was found in the sudo package's post-uninstall script. A local attacker could possibly use this flaw to overwrite an arbitrary file via a symbolic link attack, or modify the contents of the "/etc/nsswitch.conf" file during the upgrade or removal of the sudo package. (CVE-2012-3440) This update also fixes the following bugs: * Previously, sudo escaped non-alphanumeric characters in commands using "sudo -s" or "sudo -" at the wrong place and interfered with the authorization process. Some valid commands were not permitted.Now, non-alphanumeric characters escape immediately before the command is executed and no longer interfere with the authorization process. (BZ#844418) * Prior to this update, the sudo utility could, under certain circumstances, fail to receive the SIGCHLD signal when it was executed from a process that blocked the SIGCHLD signal. As a consequence, sudo could become suspended and fail to exit. This update modifies the signal process mask so that sudo can exit and sends the correct output. (BZ#844419) * The sudo update RHSA-2012:0309 introduced a regression that caused the Security-Enhanced Linux (SELinux) context of the "/etc/nsswitch.conf" file to change during the installation or upgrade of the sudo package. This could cause various services confined by SELinux to no longer be permitted to access the file. In reported cases, this issue prevented PostgreSQL and Postfix from starting. (BZ#842759) * Updating the sudo package resulted in the "sudoers" line in "/etc/nsswitch.conf" being removed. This update corrects the bug in the sudo package's post-uninstall script that caused this issue. (BZ#844420) * Prior to this update, a race condition bug existed in sudo. When a program was executed with sudo, the program could possibly exit successfully before sudo started waiting for it. In this situation, the program would be left in a zombie state and sudo would wait for it endlessly, expecting it to still be running. (BZ#844978) All users of sudo are advised to upgrade to this updated package, which contains backported patches to correct these issues. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258 5. Bugs fixed (http://bugzilla.redhat.com/): 842759 - selinux blocks postgresql startup 844420 - sudo 1.7.2p1-14.el5_8 removed sudoers line from nsswitch.conf 844442 -CVE-2012-3440 sudo: insecure temporary file use in RPM %postun script 844978 - Sudo has racecondition leaving sudo with its zombie child running forever 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: i386: sudo-1.7.2p1-14.el5_8.2.i386.rpm sudo-debuginfo-1.7.2p1-14.el5_8.2.i386.rpm x86_64: sudo-1.7.2p1-14.el5_8.2.x86_64.rpm sudo-debuginfo-1.7.2p1-14.el5_8.2.x86_64.rpm Red Hat Enterprise Linux (v. 5 server): Source: i386: sudo-1.7.2p1-14.el5_8.2.i386.rpm sudo-debuginfo-1.7.2p1-14.el5_8.2.i386.rpm ia64: sudo-1.7.2p1-14.el5_8.2.ia64.rpm sudo-debuginfo-1.7.2p1-14.el5_8.2.ia64.rpm ppc: sudo-1.7.2p1-14.el5_8.2.ppc.rpm sudo-debuginfo-1.7.2p1-14.el5_8.2.ppc.rpm s390x: sudo-1.7.2p1-14.el5_8.2.s390x.rpm sudo-debuginfo-1.7.2p1-14.el5_8.2.s390x.rpm x86_64: sudo-1.7.2p1-14.el5_8.2.x86_64.rpm sudo-debuginfo-1.7.2p1-14.el5_8.2.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2012-3440 https://access.redhat.com/security/updates/classification#moderate https://access.redhat.com/errata/RHSA-2012:0309.html 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2012 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFQIV18XlSAg2UNWIIRArUrAJ0bm2PNKgJGSC2Yk3Dpab/NJwAL8gCcC2lm N31JTQuqRSRZhGCgiXKUwyg=rPWG -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Aug 07, 2012
Red Hat
99
security advisorycriticalprivilege escalationSlackware 13.1 SSA:2010-257-02 Critical Privilege Escalation Fix
New sudo packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix a security issue. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] sudo (SSA:2010-257-02) New sudo packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix a security issue. Here are the details from the Slackware 13.1 ChangeLog: +--------------------------+ patches/packages/sudo-1.7.4p4-i486-1_slack13.1.txz: Upgraded. This fixes a flaw that could lead to privilege escalation. For more information, see: https://www.cve.org/CVERecord?id=CVE-2010-2956 (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading directly from ftp.slackware.com. Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating additional FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you. Updated package for Slackware 8.1: Updated package for Slackware 9.0: Updated package for Slackware 9.1: Updated package for Slackware 10.0: Updated package for Slackware 10.1: Updated package for Slackware 10.2: Updated package for Slackware 11.0: Updated package for Slackware 12.0: Updated package for Slackware 12.1: Updated package for Slackware 12.2: Updated package for Slackware 13.0: Updated package for Slackware x86_64 13.0: Updated package for Slackware 13.1: Updated package for Slackware x86_64 13.1: Updated package for Slackware -current: Updated package for Slackware x86_64 -current: MD5 signatures: +-------------+ Slackware 8.1 package: 0020792ca37f1950dc990008d75b0f3d sudo-1.7.4p4-i386-1_slack8.1.tgz Slackware9.0 package: 350d64e2419f3352e0136f92623dc583 sudo-1.7.4p4-i386-1_slack9.0.tgz Slackware 9.1 package: 623499bc7fec7a89842c230cc1e84082 sudo-1.7.4p4-i486-1_slack9.1.tgz Slackware 10.0 package: fe868c844e0d6f8e4a4e60d565f04a3f sudo-1.7.4p4-i486-1_slack10.0.tgz Slackware 10.1 package: 900568d7a79ffe2772dd1f27caad0212 sudo-1.7.4p4-i486-1_slack10.1.tgz Slackware 10.2 package: f8ac4ed69142b4f3ff25969047e7a58d sudo-1.7.4p4-i486-1_slack10.2.tgz Slackware 11.0 package: 0c863b24b251fbffc8838a2eba69eb50 sudo-1.7.4p4-i486-1_slack11.0.tgz Slackware 12.0 package: f2ba9e4c37ef4c37e34b6146645a6347 sudo-1.7.4p4-i486-1_slack12.0.tgz Slackware 12.1 package: b62dded6da8f591c1d3a5d6046391c8a sudo-1.7.4p4-i486-1_slack12.1.tgz Slackware 12.2 package: b8a823c4e0a8981a234a74399aec4455 sudo-1.7.4p4-i486-1_slack12.2.tgz Slackware 13.0 package: 04bb8ef4ae1bd88314a784848ac52808 sudo-1.7.4p4-i486-1_slack13.0.txz Slackware x86_64 13.0 package: 00b2632ec3f5c8a338a7ddca22ec6304 sudo-1.7.4p4-x86_64-1_slack13.0.txz Slackware 13.1 package: 6da326f6cfd388d87de5c1853d8eb3ff sudo-1.7.4p4-i486-1_slack13.1.txz Slackware x86_64 13.1 package: 9adb750d7ec6682c9dc397cb11afb33a sudo-1.7.4p4-x86_64-1_slack13.1.txz Slackware -current package: 81bacc8344d247049702296af84a2903 ap/sudo-1.7.4p4-i486-1.txz Slackware x86_64 -current package: 9b2fa535f361d32cbbca67df23e88d20 ap/sudo-1.7.4p4-x86_64-1.txz Installation instructions: +------------------------+ Upgrade the package as root: # upgradepkg sudo-1.7.4p4-i486-1_slack13.1.txz +-----+ . Recent updates for sudo on Slackware address a vital security flaw allowing privilege escalation. Ensure your system is upgraded promptly for improved protection.. Slackware Update,Sudo Package,Privilege Escalation Fix. . Severity: Critical. LinuxSecurity.com Team
Sep 15, 2010
•Critical
Slackware
98
security advisorycommand executionmoderate impactRed Hat Enterprise Linux 5: RHSA-2010:0475-01 Moderate: Sudo Security Issue
An updated sudo package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: sudo security update Advisory ID: RHSA-2010:0475-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2010:0475.html Issue date: 2010-06-15 CVE Names: CVE-2010-1646 ==================================================================== 1. Summary: An updated sudo package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 3. Description: The sudo (superuser do) utility allows system administrators to give certain users the ability to run commands as root. A flaw was found in the way sudo handled the presence of duplicated environment variables. A local user authorized to run commands using sudo could use this flaw to set additional values for the environment variables set by sudo, which could result in those values being used by the executed command instead of the values set by sudo. This could possibly lead to certain intended restrictions being bypassed, such as the secure_path setting. (CVE-2010-1646) Red Hat would like to thank Anders Kaseorg and Evan Broder of Ksplice, Inc. for responsibly reporting this issue. Users of sudo should upgrade to this updatedpackage, which contains a backported patch to correct this issue. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at 5. Bugs fixed (http://bugzilla.redhat.com/): 598154 - CVE-2010-1646 sudo: insufficient environment sanitization issue 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: i386: sudo-1.7.2p1-7.el5_5.i386.rpm sudo-debuginfo-1.7.2p1-7.el5_5.i386.rpm x86_64: sudo-1.7.2p1-7.el5_5.x86_64.rpm sudo-debuginfo-1.7.2p1-7.el5_5.x86_64.rpm Red Hat Enterprise Linux (v. 5 server): Source: i386: sudo-1.7.2p1-7.el5_5.i386.rpm sudo-debuginfo-1.7.2p1-7.el5_5.i386.rpm ia64: sudo-1.7.2p1-7.el5_5.ia64.rpm sudo-debuginfo-1.7.2p1-7.el5_5.ia64.rpm ppc: sudo-1.7.2p1-7.el5_5.ppc.rpm sudo-debuginfo-1.7.2p1-7.el5_5.ppc.rpm s390x: sudo-1.7.2p1-7.el5_5.s390x.rpm sudo-debuginfo-1.7.2p1-7.el5_5.s390x.rpm x86_64: sudo-1.7.2p1-7.el5_5.x86_64.rpm sudo-debuginfo-1.7.2p1-7.el5_5.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2010-1646 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2010 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFMGBXsXlSAg2UNWIIRAnukAJ0UoCVPSqzBoJY7roEO7U67yMxvOACgipz2 S8841RyUm0eSGVXz2tJv6d8=ermd -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Jun 16, 2010
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!