CVE-2023-42465

2023-12-2216:15:08

Debian Security Bug Tracker

security-tracker.debian.org

sudo

authentication bypass

privilege escalation

row hammer attacks

application logic

single bit flip

7 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

20.1%

JSON

Sudo before 1.9.15 might allow row hammer attacks (for authentication bypass or privilege escalation) because application logic sometimes is based on not equaling an error value (instead of equaling a success value), and because the values do not resist flips of a single bit.

OSVersionArchitecturePackageVersionFilename
Debian12allsudo<= 1.9.13p3-1+deb12u1sudo_1.9.13p3-1+deb12u1_all.deb
Debian11allsudo<= 1.9.5p2-3+deb11u1sudo_1.9.5p2-3+deb11u1_all.deb
Debian999allsudo< 1.9.15p2-2sudo_1.9.15p2-2_all.deb
Debian13allsudo< 1.9.15p2-2sudo_1.9.15p2-2_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	sudo	<= 1.9.13p3-1+deb12u1	sudo_1.9.13p3-1+deb12u1_all.deb
Debian	11	all	sudo	<= 1.9.5p2-3+deb11u1	sudo_1.9.5p2-3+deb11u1_all.deb
Debian	999	all	sudo	< 1.9.15p2-2	sudo_1.9.15p2-2_all.deb
Debian	13	all	sudo	< 1.9.15p2-2	sudo_1.9.15p2-2_all.deb