ELSA-2025-10110

Опубликовано: 01 июл. 2025

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2025-10110: sudo security update (IMPORTANT)

[1.9.5p2-1.0.1]

Fixes sudo -s unclosed sessions when use_pty option used [Orabug: 36952911]

[1.9.5p2-10.1] RHEL 8.10.0.Z ERRATUM

CVE-2025-32462 sudo: LPE via host option Resolves: RHEL-100014

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

sudo

1.9.5p2-1.0.1.el8_10.1

Oracle Linux x86_64

sudo

1.9.5p2-1.0.1.el8_10.1

Связанные CVE

CVE-2025-32462

Ссылки на источники

Связанные уязвимости

CVE-2025-32462

CVSS3: 2.8

ubuntu

16 дней назад

Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.

CVE-2025-32462

CVSS3: 7

redhat

17 дней назад

Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.

CVE-2025-32462

CVSS3: 2.8

nvd

16 дней назад

Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.

CVE-2025-32462

CVSS3: 2.8

msrc

6 дней назад

Описание отсутствует

CVE-2025-32462

CVSS3: 2.8

debian

16 дней назад

Sudo before 1.9.17p1, when used with a sudoers file that specifies a h ...