Scientific Linux Security Update : sudo on SL6.x, SL7.x i386/x86_64
Medium Nessus Plugin ID 95871
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionSecurity Fix(es) :
- It was discovered that the sudo noexec restriction could have been bypassed if application run via sudo executed system(), popen(), or wordexp() C library functions with a user-supplied argument. A local user permitted to run such application via sudo with noexec restriction could use these flaws to execute arbitrary commands with elevated privileges. (CVE-2016-7032, CVE-2016-7076)
These issues were discovered by Florian Weimer (Red Hat).
SolutionUpdate the affected sudo, sudo-debuginfo and / or sudo-devel packages.