Detections
Analytics

GLSA-200506-22 : sudo: Arbitrary command execution

medium Nessus Plugin ID 18549

Synopsis

The remote Gentoo host is missing one or more security-related patches.

Description

The remote host is affected by the vulnerability described in GLSA-200506-22 (sudo: Arbitrary command execution)

 The sudoers file is used to define the actions sudo users are permitted to perform. Charles Morris discovered that a specific layout of the sudoers file could cause the results of an internal check to be clobbered, leaving sudo vulnerable to a race condition.
 Impact :

 Successful exploitation would permit a local sudo user to execute arbitrary commands as another user.
 Workaround :

 Reorder the sudoers file using the visudo utility to ensure the 'ALL' pseudo-command precedes other command definitions.

Solution

All sudo users should upgrade to the latest version:
 # emerge --sync # emerge --ask --oneshot --verbose '>=app-admin/sudo-1.6.8_p9'

See Also

https://www.sudo.ws/sudo/alerts/path_race.html

https://security.gentoo.org/glsa/200506-22

Plugin Details

Severity: Medium

ID: 18549

File Name: gentoo_GLSA-200506-22.nasl

Version: 1.15

Type: local

Published: 6/23/2005

Updated: 1/6/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:gentoo:linux:sudo, cpe:/o:gentoo:linux

Required KB Items: Host/local_checks_enabled, Host/Gentoo/release, Host/Gentoo/qpkg-list

Patch Publication Date: 6/23/2005

Reference Information

GLSA: 200506-22