Gentoo Linux Security Advisory 201606-13 - sudo is vulnerable to an escalation of privileges via a symlink attack. Versions less than 1.8.15-r1 are affected.
ded337a5c37a4a4988b8a6954f7c27a1e14d6b846df65915b30d360b982181eeDebian Linux Security Advisory 3440-1 - When sudo is configured to allow a user to edit files under a directory that they can already write to without using sudo, they can actually edit (read and write) arbitrary files. Daniel Svartman reported that a configuration like this might be introduced unintentionally if the editable files are specified using wildcards, for example.
b7fd5c1572210ca6ee5a1990251b1e0e570a22591356acc8311a24238db62710
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed