ELSA-2017-1382

Опубликовано: 30 мая 2017

Источник: oracle-oval

Платформа: Oracle Linux 6

Платформа: Oracle Linux 7

Описание

ELSA-2017-1382: sudo security update (IMPORTANT)

[1.8.6p3-28]

Fixes CVE-2017-1000367 Resolves: rhbz#1455399

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

sudo

1.8.6p3-28.el6_9

sudo-devel

1.8.6p3-28.el6_9

Oracle Linux i686

sudo

1.8.6p3-28.el6_9

sudo-devel

1.8.6p3-28.el6_9

Oracle Linux sparc64

sudo

1.8.6p3-28.el6_9

sudo-devel

1.8.6p3-28.el6_9

Oracle Linux 7

Oracle Linux x86_64

sudo

1.8.6p7-22.el7_3

sudo-devel

1.8.6p7-22.el7_3

Связанные CVE

CVE-2017-1000367

Ссылки на источники

Связанные уязвимости

CVE-2017-1000367

CVSS3: 6.4

ubuntu

больше 8 лет назад

Todd Miller's sudo version 1.8.20 and earlier is vulnerable to an input validation (embedded spaces) in the get_process_ttyname() function resulting in information disclosure and command execution.

CVE-2017-1000367

CVSS3: 7.8

redhat

больше 8 лет назад

Todd Miller's sudo version 1.8.20 and earlier is vulnerable to an input validation (embedded spaces) in the get_process_ttyname() function resulting in information disclosure and command execution.

CVE-2017-1000367

CVSS3: 6.4

nvd

больше 8 лет назад

Todd Miller's sudo version 1.8.20 and earlier is vulnerable to an input validation (embedded spaces) in the get_process_ttyname() function resulting in information disclosure and command execution.

CVE-2017-1000367

CVSS3: 6.4

debian

больше 8 лет назад

Todd Miller's sudo version 1.8.20 and earlier is vulnerable to an inpu ...

openSUSE-SU-2017:1455-1

suse-cvrf

больше 8 лет назад

Security update for sudo