CVE-2010-1646

NameCVE-2010-1646
DescriptionThe secure path feature in env.c in sudo 1.3.1 through 1.6.9p22 and 1.7.0 through 1.7.2p6 does not properly handle an environment that contains multiple PATH variables, which might allow local users to gain privileges via a crafted value of the last PATH variable.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-2062-1
Debian Bugs585394

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
sudo (PTS)bullseye1.9.5p2-3+deb11u1fixed
bullseye (security)1.9.5p2-3+deb11u2fixed
bookworm1.9.13p3-1+deb12u1fixed
bookworm (security)1.9.13p3-1+deb12u2fixed
trixie, sid1.9.16p2-3fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
sudosourcelenny1.6.9p17-3DSA-2062-1
sudosource(unstable)1.7.2p7-1585394
Search for package or bug name: Reporting problems