DSA-5321-1 sudo -- sudoID: oval:org.secpod.oval:def:610353 | Date: (C)2023-01-19 (M)2024-02-06 |
Class: PATCH | Family: unix |
Matthieu Barjole and Victor Cutillas discovered that sudoedit in sudo, a program designed to provide limited super user privileges to specific users, does not properly handle "--" to separate the editor and arguments from files to edit. A local user permitted to edit certain files can take advantage of this flaw to edit a file not permitted by the security policy, resulting in privilege escalation. Details can be found in the upstream advisory at https://www.sudo.ws/security/advisories/sudoedit_any/ .