Sudo '/src/ttyname.c' Local Privilege Escalation Vulnerability

Bugtraq ID: 98745
Class: Design Error
CVE: CVE-2017-1000367
Remote: No
Local: Yes
Published: May 30 2017 12:00AM
Updated: Jun 21 2017 06:03PM
Credit: Qualys Security
Vulnerable: Todd Miller Sudo 1.8.20
Todd Miller Sudo 1.8.19
Todd Miller Sudo 1.8.17
Todd Miller Sudo 1.8.16
Todd Miller Sudo 1.8.11
Todd Miller Sudo 1.8.6p7
Todd Miller Sudo 1.8.19p2
Todd Miller Sudo 1.8.19p1
Todd Miller Sudo 1.8.18p1
Todd Miller Sudo 1.8.15
Todd Miller Sudo 1.8.14
Todd Miller Sudo 1.8.12
SuSE Linux Enterprise Software Development Kit 12 SP2
SuSE Linux Enterprise Software Development Kit 12 SP1
SuSE Linux Enterprise Software Development Kit 12
SuSE Linux Enterprise Server for SAP 12
SuSE Linux Enterprise Server for Raspberry Pi 12-SP2
SuSE Linux Enterprise Server 12-SP2
SuSE Linux Enterprise Server 12-LTSS
SuSE Linux Enterprise Server 12 SP1
SuSE Linux Enterprise Desktop 12-SP2
SuSE Linux Enterprise Desktop 12-SP1
Redhat Enterprise Linux Workstation Optional 7
Redhat Enterprise Linux Workstation 7
Redhat Enterprise Linux Server Optional 7
Redhat Enterprise Linux Server 7
Redhat Enterprise Linux Server 5
Redhat Enterprise Linux ComputeNode Optional 7
Redhat Enterprise Linux ComputeNode 7
Redhat Enterprise Linux 7
Redhat Enterprise Linux 6
+ Trustix Secure Enterprise Linux 2.0
+ Trustix Secure Linux 2.2
+ Trustix Secure Linux 2.1
+ Trustix Secure Linux 2.0
Redhat Enterprise Linux 5
Oracle VM Server for x86 3.4
Oracle VM Server for x86 3.3
Oracle Linux 7
Oracle Enterprise Linux 5
openSUSE Leap 42.2
OpenStack Cloud Magnum Orchestration 7
Gentoo Linux
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 ia-30
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
CentOS CentOS 6
Not Vulnerable: Todd Miller Sudo 1.8.20p1


 

Privacy Statement
Copyright 2010, SecurityFocus