Detections
Analytics

RHEL 7 : sudo (RHSA-2016:2593)

medium Nessus Plugin ID 94556

Language:

Synopsis

The remote Red Hat host is missing a security update.

Description

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2016:2593 advisory.

 The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root.

 Security Fix(es):

 * It was discovered that the default sudo configuration preserved the value of INPUTRC from the user's environment, which could lead to information disclosure. A local user with sudo access to a restricted program that uses readline could use this flaw to read content from specially formatted files with elevated privileges provided by sudo. (CVE-2016-7091)

 Note: With this update, INPUTRC was removed from the env_keep list in /etc/sudoers to avoid having sudo preserve the value of this variable when invoking privileged commands.

 Red Hat would like to thank Grisha Levit for reporting this issue.

 Additional Changes:

 For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.3 Release Notes linked from the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected sudo and / or sudo-devel packages.

See Also

http://www.nessus.org/u?4165441c

http://www.nessus.org/u?d33a6196

https://access.redhat.com/errata/RHSA-2016:2593

https://access.redhat.com/security/updates/classification/#low

https://bugzilla.redhat.com/show_bug.cgi?id=1196451

https://bugzilla.redhat.com/show_bug.cgi?id=1261998

https://bugzilla.redhat.com/show_bug.cgi?id=1268958

https://bugzilla.redhat.com/show_bug.cgi?id=1334360

https://bugzilla.redhat.com/show_bug.cgi?id=1339935

https://bugzilla.redhat.com/show_bug.cgi?id=1350828

Plugin Details

Severity: Medium

ID: 94556

File Name: redhat-RHSA-2016-2593.nasl

Version: 2.14

Type: local

Agent: unix

Published: 11/4/2016

Updated: 4/15/2025

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

Vendor

Vendor Severity: Low

CVSS v2

Risk Factor: Medium

Base Score: 4.9

Temporal Score: 3.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:N/A:N

CVSS Score Source: CVE-2016-7091

CVSS v3

Risk Factor: Medium

Base Score: 4.4

Temporal Score: 3.9

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:redhat:enterprise_linux:sudo-devel, p-cpe:/a:redhat:enterprise_linux:sudo, cpe:/o:redhat:enterprise_linux:7

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu

Exploit Ease: No known exploits are available

Patch Publication Date: 11/3/2016

Vulnerability Publication Date: 12/22/2016

Reference Information

CVE: CVE-2016-7091

RHSA: 2016:2593