Vulnerability CVE-2019-18634: Information
Description
In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged sudo process. (pwfeedback is a default setting in Linux Mint and elementary OS; however, it is NOT the default for upstream and many other packages, and would exist only if enabled by an administrator.) The attacker needs to deliver a long string to the stdin of getln() in tgetpass.c.
Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
sudo | sisyphus | 1.8.26-alt1 | 1.9.15p5-alt1 | ALT-PU-2018-2804-1 | 217471 | Fixed |
sudo | p10 | 1.8.26-alt1 | 1.9.15p1-alt1 | ALT-PU-2018-2804-1 | 217471 | Fixed |
sudo | p9 | 1.8.31p2-alt1 | 1.9.13p2-alt1 | ALT-PU-2020-2731-1 | 257035 | Fixed |
sudo | p8 | 1.8.28-alt1 | 1.9.5p2-alt0.M80P.1 | ALT-PU-2019-3064-1 | 240030 | Fixed |
sudo | c10f1 | 1.8.26-alt1 | 1.9.15p1-alt1 | ALT-PU-2018-2804-1 | 217471 | Fixed |
sudo | c9f2 | 1.8.31p2-alt1 | 1.9.15p5-alt0.c9f2.1 | ALT-PU-2020-2731-1 | 257035 | Fixed |
sudo | p11 | 1.8.26-alt1 | 1.9.15p5-alt1 | ALT-PU-2018-2804-1 | 217471 | Fixed |