OracleVM 3.2 : sudo (OVMSA-2016-0079)

Medium Nessus Plugin ID 91755


The remote OracleVM host is missing a security update.


The remote OracleVM system is missing necessary patches to address critical security updates :

- added patch for CVE-2014-0106: certain environment variables not sanitized when env_reset is disabled Resolves: rhbz#1072210

- backported fixes for CVE-2013-1775 CVE-2013-1776 (CVE-2013-2776) CVE-2013-2777 Resolves: rhbz#968221

- visudo: fixed incorrect warning and parse error regarding undefined aliases which were in fact defined Resolves: rhbz#849679 Resolves: rhbz#905624

- updated sudoers man-page to clarify the behavior of the user negation operator and the behavior of wildcard matching in command specifications Resolves: rhbz#846118 Resolves: rhbz#856902

- fixed regression in escaping of sudo -i arguments Resolves: rhbz#853203

- bump release number

- Fixed caching of user and group names

- Backported RFC 4515 escaping of LDAP queries Resolves:
rhbz#855836 Resolves: rhbz#869287

- Add the -c option to sed commands in post/postun scripts Resolves: rhbz#818585

- Implement a new sudoers Defaults option to restore old command exec behavior Resolves: rhbz#840971

- Add ability to treat files authoritatively in sudoers.ldap Resolves: rhbz#840097

- Changed policycoreutils dependency to a context specific dependency (post & postun) Resolves: rhbz#846694

- don't use a temporary file when modifying nsswitch.conf

- fix permissions on nsswitch.conf, if needed Resolves:

- added a workaround for a race condition in handling child processes Resolves: rhbz#829263

- use safe temporary files in post/postun scripts

- corrected postun script Resolves: rhbz#841070

- corrected release number

- call restorecon after modifying nsswitch.conf in the postun scriplet

- added policycoreutils dependency Resolves: rhbz#818585

- fixed `sudo -i' command escaping (#806073)

- fixed multiple sudoHost LDAP attr. handlng (#740884) Resolves: rhbz#740884 Resolves: rhbz#806073


Update the affected sudo package.

See Also

Plugin Details

Severity: Medium

ID: 91755

File Name: oraclevm_OVMSA-2016-0079.nasl

Version: $Revision: 2.3 $

Type: local

Published: 2016/06/22

Modified: 2017/02/14

Dependencies: 12634

Risk Information

Risk Factor: Medium


Base Score: 6.9

Temporal Score: 5.4

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:POC/RL:OF/RC:C

Vulnerability Information

CPE: p-cpe:/a:oracle:vm:sudo, cpe:/o:oracle:vm_server:3.2

Required KB Items: Host/local_checks_enabled, Host/OracleVM/release, Host/OracleVM/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2016/06/21

Exploitable With


Core Impact

Metasploit (Mac OS X Sudo Password Bypass)

Reference Information

CVE: CVE-2013-1775, CVE-2013-1776, CVE-2013-2776, CVE-2013-2777, CVE-2014-0106

BID: 58203, 58207, 62741, 65997

OSVDB: 90661, 90677, 104086