CVE-2014-9680

NameCVE-2014-9680
Descriptionsudo before 1.8.12 does not ensure that the TZ environment variable is associated with a zoneinfo file, which allows local users to open arbitrary files for read access (but not view file contents) by running a program within an sudo session, as demonstrated by interfering with terminal output, discarding kernel-log messages, or repositioning tape drives.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDLA-160-1, DSA-3167-1
NVD severitylow (attack range: local)
Debian Bugs772707

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
sudo (PTS)wheezy1.8.5p2-1+nmu3+deb7u1fixed
wheezy (security)1.8.5p2-1+nmu3+deb7u4fixed
jessie1.8.10p3-1+deb8u3fixed
jessie (security)1.8.10p3-1+deb8u4fixed
stretch1.8.19p1-2.1fixed
buster, sid1.8.20p2-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
sudosource(unstable)1.8.12-1low772707
sudosourcejessie1.8.10p3-1+deb8u2low
sudosourcesqueeze1.7.4p4-2.squeeze.5lowDLA-160-1
sudosourcewheezy1.8.5p2-1+nmu2lowDSA-3167-1

Notes

http://www.openwall.com/lists/oss-security/2014/10/15/24
http://www.sudo.ws/repos/sudo/rev/650ac6938b59 (1.8.x)
http://www.sudo.ws/repos/sudo/rev/ac1467f71ac0 (typos)
http://www.sudo.ws/repos/sudo/rev/91859f613b88 (description)
http://www.sudo.ws/repos/sudo/rev/579b02f0dbe0 (improved description)
http://www.openwall.com/lists/oss-security/2015/02/09/12

Search for package or bug name: Reporting problems