sudo is vulnerable to Information Disclosure. The vulnerability exists due to the library does not properly escape the control characters in sudoreplay
output of log messages, which allows an attacker to gain sensitive information
git://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2023-28487
github.com/sudo-project/sudo/commit/334daf92b31b79ce68ed75e2ee14fca265f029ca
github.com/sudo-project/sudo/releases/tag/SUDO_1_9_13
lists.debian.org/debian-lts-announce/2024/02/msg00002.html
security.gentoo.org/glsa/202309-12
security.netapp.com/advisory/ntap-20230420-0002/