SUSE-SU-2017:1626-1 -- SLES sudoID: oval:org.secpod.oval:def:89044767 | Date: (C)2021-07-20 (M)2023-12-07 |
Class: PATCH | Family: unix |
This update for sudo fixes the following security issue: - CVE-2017-1000368: A follow-up fix to CVE-2017-1000367, the Linux process name could also contain a newline, which could be used to trick sudo to read/write to an arbitrary open terminal. Also the following non security bug was fixed: - Link the system_group plugin with sudo_util library to resolve the missing sudo_dso_findsym symbol
Platform: |
SUSE Linux Enterprise Server 12 SP2 |