Lucene search
RedHatRHSA-2005:535HistoryJun 29, 2005 - 12:00 a.m.
(RHSA-2005:535) sudo security update
2005-06-2900:00:00
access.redhat.com
15
EPSS
0.001
Percentile
27.0%
The sudo (superuser do) utility allows system administrators to give
certain users the ability to run commands as root with logging.
A race condition bug was found in the way sudo handles pathnames. It is
possible that a local user with limited sudo access could create
a race condition that would allow the execution of arbitrary commands as
the root user. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2005-1993 to this issue.
Users of sudo should update to this updated package, which contains a
backported patch and is not vulnerable to this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | any | ppc | sudo | < 1.6.7p5-1.1 | sudo-1.6.7p5-1.1.ppc.rpm |
| RedHat | any | s390x | sudo | < 1.6.7p5-30.1.1 | sudo-1.6.7p5-30.1.1.s390x.rpm |
| RedHat | any | s390 | sudo | < 1.6.7p5-30.1.1 | sudo-1.6.7p5-30.1.1.s390.rpm |
| RedHat | any | ia64 | sudo | < 1.6.7p5-30.1.1 | sudo-1.6.7p5-30.1.1.ia64.rpm |
| RedHat | any | i386 | sudo | < 1.6.7p5-1.1 | sudo-1.6.7p5-1.1.i386.rpm |
| RedHat | any | ia64 | sudo | < 1.6.7p5-1.1 | sudo-1.6.7p5-1.1.ia64.rpm |
| RedHat | any | ppc | sudo | < 1.6.7p5-30.1.1 | sudo-1.6.7p5-30.1.1.ppc.rpm |
| RedHat | any | x86_64 | sudo | < 1.6.7p5-1.1 | sudo-1.6.7p5-1.1.x86_64.rpm |
| RedHat | any | i386 | sudo | < 1.6.7p5-30.1.1 | sudo-1.6.7p5-30.1.1.i386.rpm |
| RedHat | any | x86_64 | sudo | < 1.6.7p5-30.1.1 | sudo-1.6.7p5-30.1.1.x86_64.rpm |
Related
debian
debian
[SECURITY] [DSA 735-1] New sudo packages fix pathname validation race
2005-07-01 01:42:53
[SECURITY] [DSA 735-1] New sudo packages fix pathname validation race
2005-07-01 01:42:53
[SECURITY] [DSA 735-2] New sudo packages fix pathname validation race
2005-07-08 01:16:12
altlinux
altlinux
Security fix for the ALT Linux 8 package sudo version 1:1.6.7p5-alt5
2005-06-21 00:00:00
Security fix for the ALT Linux 5 package sudo version 1:1.6.7p5-alt5
2005-06-21 00:00:00
Security fix for the ALT Linux 6 package sudo version 1:1.6.7p5-alt5
2005-06-21 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200506-22 (sudo)
2008-09-24 00:00:00
SLES9: Security update for sudo
2009-10-10 00:00:00
Debian: Security Advisory (DSA-735-2)
2008-01-17 00:00:00
nessus
nessus
Fedora Core 3 : sudo-1.6.7p5-30.3 (2005-472)
2005-06-22 00:00:00
Mandrake Linux Security Advisory : sudo (MDKSA-2005:103)
2005-06-23 00:00:00
RHEL 4 : sudo (RHSA-2005:535)
2005-06-29 00:00:00
cvelist
cvelist
CVE-2005-1993
2005-06-20 04:00:00
ubuntu
ubuntu
sudo vulnerability
2005-06-21 00:00:00
freebsd
freebsd
sudo -- local race condition vulnerability
2005-06-20 00:00:00
ubuntucve
ubuntucve
CVE-2005-1993
2005-06-20 00:00:00
debiancve
debiancve
CVE-2005-1993
2005-06-20 04:00:00
cve
cve
CVE-2005-1993
2005-06-20 04:00:00
nvd
nvd
CVE-2005-1993
2005-06-20 04:00:00
centos
centos
sudo security update
2005-06-29 23:22:57
sudo security update
2005-06-29 16:58:32
suse
suse
race condition, arbitrary code execution in sudo
2005-06-24 12:44:43