SUSE-SU-2022:4240-1 -- SLES sudoID: oval:org.secpod.oval:def:89047974 | Date: (C)2022-12-05 (M)2023-11-23 |
Class: PATCH | Family: unix |
This update for sudo fixes the following issues: Security fixes: - CVE-2022-43995: Fixed a potential heap-based buffer over-read when entering a password of seven characters or fewer and using the crypt password backend . Other: - Make sure SIGCHLD is not ignored when sudo is executed; fixes race condition . - Change sudo-ldap schema from ASCII to UTF8 .
Platform: |
SUSE Linux Enterprise Server 12 SP3 |
SUSE Linux Enterprise Server 12 SP4 |