Information on source package sudo

Available versions

ReleaseVersion
buster1.8.27-1+deb10u3
buster (security)1.8.27-1+deb10u5
bullseye1.9.5p2-3
bullseye (security)1.9.5p2-3+deb11u1
bookworm1.9.12p2-1
sid1.9.12p2-1

Open unimportant issues

BugbusterbullseyebookwormsidDescription
CVE-2022-43995vulnerablevulnerablevulnerablevulnerableSudo 1.8.0 through 1.9.12, with the crypt() password backend, contains ...
CVE-2021-23240vulnerablefixedfixedfixedselinux_edit_copy_tfiles in sudoedit in Sudo before 1.9.5 allows a loc ...
CVE-2019-19234vulnerablefixedfixedfixed** DISPUTED ** In Sudo through 1.8.29, the fact that a user has been b ...
CVE-2019-19232vulnerablefixedfixedfixed** DISPUTED ** In Sudo through 1.8.29, an attacker with access to a Ru ...
CVE-2005-1119vulnerablevulnerablevulnerablevulnerableSudo VISudo 1.6.8 and earlier allows local users to corrupt arbitrary ...

Resolved issues

BugDescription
CVE-2023-22809In Sudo before 1.9.12p2, the sudoedit (aka -e) feature mishandles extr ...
CVE-2021-23239The sudoedit personality of Sudo before 1.9.5 may allow a local unpriv ...
CVE-2021-3156Sudo before 1.9.5p2 contains an off-by-one error that can result in a ...
CVE-2019-18634In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users ...
CVE-2019-14287In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer a ...
CVE-2017-1000368Todd Miller's sudo version 1.8.20p1 and earlier is vulnerable to an in ...
CVE-2017-1000367Todd Miller's sudo version 1.8.20 and earlier is vulnerable to an inpu ...
CVE-2016-7091sudo: It was discovered that the default sudo configuration on Red Hat ...
CVE-2016-7076sudo before version 1.8.18p1 is vulnerable to a bypass in the sudo noe ...
CVE-2016-7032sudo_noexec.so in Sudo before 1.8.15 on Linux might allow local users ...
CVE-2015-8239The SHA-2 digest support in the sudoers plugin in sudo after 1.8.7 all ...
CVE-2015-5602sudoedit in Sudo before 1.8.15 allows local users to gain privileges v ...
CVE-2014-9680sudo before 1.8.12 does not ensure that the TZ environment variable is ...
CVE-2014-0106Sudo 1.6.9 before 1.8.5, when env_reset is disabled, does not properly ...
CVE-2013-2777sudo before 1.7.10p5 and 1.8.x before 1.8.6p6, when the tty_tickets op ...
CVE-2013-2776sudo 1.3.5 through 1.7.10p5 and 1.8.0 through 1.8.6p6, when running on ...
CVE-2013-1776sudo 1.3.5 through 1.7.10 and 1.8.0 through 1.8.5, when the tty_ticket ...
CVE-2013-1775sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows loca ...
CVE-2012-3440CVE-2012-3440 sudo: insecure temporary file use in RPM %postun script ...
CVE-2012-2337CVE-2012-2337 sudo: Multiple netmask values used in Host / Host_List c ...
CVE-2012-0809Format string vulnerability in the sudo_debug function in Sudo 1.8.0 t ...
CVE-2011-0010CVE-2011-0010 sudo: does not ask for password on GID changes ...
CVE-2011-0008A certain Fedora patch for parse.c in sudo before 1.7.4p5-1.fc14 on Fe ...
CVE-2010-2956CVE-2010-2956 sudo: incorrect handling of RunAs specification with bot ...
CVE-2010-1646CVE-2010-1646 sudo: insufficient environment sanitization issue ...
CVE-2010-1163CVE-2010-1163 sudo: incomplete fix for the sudoedit privilege escalati ...
CVE-2010-0427CVE-2010-0427 sudo: Fails to reset group permissions if runas_default ...
CVE-2010-0426CVE-2010-0426 sudo: sudoedit option can possibly allow for arbitrary c ...
CVE-2009-0034CVE-2009-0034 sudo: incorrect handling of groups in Runas_User ...
CVE-2008-3067sudo in SUSE openSUSE 10.3 does not clear the stdin buffer when passwo ...
CVE-2007-3149sudo, when linked with MIT Kerberos 5 (krb5), does not properly check ...
CVE-2006-0151sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environ ...
CVE-2005-4890There is a possible tty hijacking in shadow 4.x before 4.1.5 and sudo ...
CVE-2005-4158Sudo before 1.6.8 p12, when the Perl taint flag is off, does not clear ...
CVE-2005-2959Incomplete blacklist vulnerability in sudo 1.6.8 and earlier allows lo ...
CVE-2005-1993CVE-2005-1993 security flaw ...
CVE-2005-1831
CVE-2004-1689sudoedit (aka sudo -e) in sudo 1.6.8 opens a temporary file with root ...
CVE-2004-1051sudo before 1.6.8p2 allows local users to execute arbitrary commands b ...

Security announcements

DSA / DLADescription
DSA-5321-1sudo - security update
DLA-3272-1sudo - security update
DLA-3181-1sudo - security update
DSA-4839-1sudo - security update
DLA-2534-1sudo - security update
DSA-4614-1sudo - security update
DLA-2094-1sudo - security update
DLA-1964-1sudo - security update
DSA-4543-1sudo - security update
DLA-1011-1sudo - security update
DSA-3867-1sudo - security update
DLA-970-1sudo - security update
DLA-707-1sudo - security update
DSA-3440-1sudo - security update
DLA-382-1sudo - security update
DLA-160-1sudo - security update
DSA-3167-1sudo - security update
DSA-2642-1sudo - several issues
DSA-2478-1sudo - parsing error
DSA-2062-1sudo - environment sanitization bypass
DSA-2006-1sudo - several vulnerabilities
DSA-946-2sudo - missing input sanitising
DSA-870-1sudo - missing input sanitising
DSA-735-2sudo - pathname validation race
DSA-735-1sudo - pathname validation race
DSA-596-2sudo - missing input sanitising

Search for package or bug name: Reporting problems