Опубликовано: 14 фев. 2024
Источник: oracle-oval
Платформа: Oracle Linux 8
Платформа: Oracle Linux 9
Описание
ELSA-2024-0811: sudo security update (MODERATE)
RHEL 9.3.0.Z ERRATUM [1.9.5p2-10]
- CVE-2023-28487 sudo: Sudo does not escape control characters in sudoreplay output Resolves: RHEL-21834
- CVE-2023-28486 sudo: Sudo does not escape control characters in log messages Resolves: RHEL-21828
- CVE-2023-42465 sudo: Targeted Corruption of Register and Stack Variables Resolves: RHEL-21821
RHEL 8.9.0.Z ERRATUM [1.9.5p2-1]
- Rebase to 1.9.5p2
- CVE-2023-28486 sudo: Sudo does not escape control characters in log messages Resolves: RHEL-21825
- CVE-2023-28487 sudo: Sudo does not escape control characters in sudoreplay output Resolves: RHEL-21831
- CVE-2023-42465 sudo: Targeted Corruption of Register and Stack Variables Resolves: RHEL-21820
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
sudo
1.9.5p2-1.el8_9
Oracle Linux x86_64
sudo
1.9.5p2-1.el8_9
Oracle Linux 9
Oracle Linux aarch64
sudo
1.9.5p2-10.el9_3
sudo-python-plugin
1.9.5p2-10.el9_3
Oracle Linux x86_64
sudo
1.9.5p2-10.el9_3
sudo-python-plugin
1.9.5p2-10.el9_3
