The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Sudo

Sudo: privilege escalation via pwfeedback
An attacker can bypass restrictions via pwfeedback of Sudo, in order to escalate his privileges...
CVE-2019-18634, DLA-2094-1, DSA-4614-1, FEDORA-2020-8b563bc5f4, HT210919, openSUSE-SU-2020:0244-1, RHSA-2020:0487-01, RHSA-2020:0509-01, RHSA-2020:0540-01, RHSA-2020:0726-01, SSA:2020-031-01, SUSE-SU-2020:0390-1, SUSE-SU-2020:0406-1, SUSE-SU-2020:0407-1, SUSE-SU-2020:0408-1, SUSE-SU-2020:0409-1, USN-4263-1, USN-4263-2, VIGILANCE-VUL-31480
Sudo: privilege escalation via Blocked User
An attacker can bypass restrictions via Blocked User of Sudo, in order to escalate his privileges...
bulletinapr2020, CVE-2019-19234, FEDORA-2020-8b563bc5f4, VIGILANCE-VUL-31206
Sudo: privilege escalation via Runas User -1
An attacker can bypass restrictions via Runas User -1 of Sudo, in order to escalate his privileges...
CVE-2019-14287, DLA-1964-1, DSA-2019-201, DSA-4543-1, FEDORA-2019-72755db9c7, FEDORA-2019-9cb221f2be, openSUSE-SU-2019:2316-1, openSUSE-SU-2019:2333-1, RHSA-2019:3197-01, RHSA-2019:3204-01, RHSA-2019:3205-01, RHSA-2019:3209-01, RHSA-2019:3219-01, RHSA-2019:3278-01, RHSA-2019:3694-01, RHSA-2019:3754-01, RHSA-2019:3755-01, RHSA-2019:3895-01, RHSA-2019:4191-01, RHSA-2020:0388-01, SSA:2019-287-01, SUSE-SU-2019:14193-1, SUSE-SU-2019:2656-1, SUSE-SU-2019:2666-1, SUSE-SU-2019:2667-1, SUSE-SU-2019:2668-1, USN-4154-1, VIGILANCE-VUL-30611
GRSecurity/PaX: memory corruption via Stack Clash
An attacker can generate a memory corruption via Stack Clash of Sudo on GRSecurity/PaX, in order to trigger a denial of service, and possibly to run code...
CVE-2017-1000377, VIGILANCE-VUL-23013
sudo: privilege escalation via the parsing of /proc/pid/stat
A local attacker can tamper with the parsing of /proc/[pid]/stat by sudo, in order to escalate his privileges...
1117723, CERTFR-2017-AVI-238, CERTFR-2017-AVI-365, CVE-2017-1000367, CVE-2017-1000368, DLA-1011-1, DLA-970-1, DSA-3867-1, FEDORA-2017-54580efa82, FEDORA-2017-8b250ebe97, FEDORA-2017-facd994774, JSA10824, JSA10826, openSUSE-SU-2017:1455-1, openSUSE-SU-2017:1697-1, RHSA-2017:1381-01, RHSA-2017:1382-01, RHSA-2017:1574-01, SB10205, SSA:2017-150-01, SUSE-SU-2017:1446-1, SUSE-SU-2017:1450-1, SUSE-SU-2017:1626-1, SUSE-SU-2017:1627-1, SUSE-SU-2017:1778-1, Synology-SA-17:19, USN-3304-1, USN-3968-1, USN-3968-2, VIGILANCE-VUL-22865
sudo: file reading via TZ
A local privileged attacker can set the TZ environment variable before calling sudo, in order to force the opening of a file, or a denial of service if this file is blocking...
CVE-2014-9680, DSA-3167-1, FEDORA-2015-2247, FEDORA-2015-2281, MDVSA-2015:126, openSUSE-SU-2015:1913-1, openSUSE-SU-2016:2983-1, openSUSE-SU-2016:3004-1, RHSA-2015:1409-01, SSA:2015-047-03, USN-2533-1, VIGILANCE-VUL-16137
sudo: privilege escalation via env_reset
When env_reset is disabled, an attacker can use the LD_PRELOAD environment variable on the sudo command line, in order to escalate his privileges...
CVE-2014-0106, openSUSE-SU-2014:0737-1, RHSA-2014:0266-01, SSA:2014-064-01, SUSE-SU-2014:0475-1, USN-2146-1, VIGILANCE-VUL-14365
Sudo: authenticating via ttyname
A local attacker, who used Sudo during the last 5 minutes, can use Sudo on another terminal without authenticating, even if "tty_tickets" is configured...
BID-58207, CERTA-2013-AVI-190, CERTA-2013-AVI-387, CERTFR-2014-AVI-112, CVE-2013-1776, CVE-2013-2776, CVE-2013-2777, DSA-2642-1, FEDORA-2013-3270, FEDORA-2013-3297, MDVSA-2013:026, MDVSA-2013:054, openSUSE-SU-2013:0495-1, openSUSE-SU-2013:0503-1, RHSA-2013:1353-01, RHSA-2013:1701-02, SSA:2013-065-01, VIGILANCE-VUL-12472
Sudo: authenticating by changing time
A local attacker, who previously used Sudo, can change the system time, in order to use Sudo without authenticating...
BID-58203, CERTA-2013-AVI-190, CERTA-2013-AVI-387, CERTFR-2014-AVI-112, CVE-2013-1775, DSA-2642-1, FEDORA-2013-3270, FEDORA-2013-3297, MDVSA-2013:026, MDVSA-2013:054, openSUSE-SU-2013:0495-1, openSUSE-SU-2013:0503-1, RHSA-2013:1353-01, RHSA-2013:1701-02, SSA:2013-065-01, VIGILANCE-VUL-12471
Our database contains other pages. You can request a free trial to read them.

Display information about Sudo: