Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2023-0025)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2023.0025

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2023-0025)

Resumen: The remote host is missing an update for the 'sudo' package(s) announced via the MGASA-2023-0025 advisory.

Descripción: Summary:
The remote host is missing an update for the 'sudo' package(s) announced via the MGASA-2023-0025 advisory.

Vulnerability Insight:
In Sudo before 1.9.12p2, the sudoedit (aka -e) feature mishandles extra
arguments passed in the user-provided environment variables (SUDO_EDITOR,
VISUAL, and EDITOR), allowing a local attacker to append arbitrary entries
to the list of files to process. This can lead to privilege escalation.
Affected versions are 1.8.0 through 1.9.12.p1. The problem exists because
a user-specified editor may contain a '--' argument that defeats a
protection mechanism, e.g., an EDITOR='vim -- /path/to/extra/file'
value. (CVE-2023-22809)

Affected Software/OS:
'sudo' package(s) on Mageia 8.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:L/AC:L/Au:S/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2023-22809
Debian Security Information: DSA-5321 (Google Search)
https://www.debian.org/security/2023/dsa-5321
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/G4YNBTTKTRT2ME3NTSXAPTOKYUE47XHZ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2QDGFCGAV5QRJCE6IXRXIS4XJHS57DDH/
http://seclists.org/fulldisclosure/2023/Aug/21
https://security.gentoo.org/glsa/202305-12
http://packetstormsecurity.com/files/171644/sudo-1.9.12p1-Privilege-Escalation.html
http://packetstormsecurity.com/files/172509/Sudoedit-Extra-Arguments-Privilege-Escalation.html
http://packetstormsecurity.com/files/174234/Cisco-ThousandEyes-Enterprise-Agent-Virtual-Appliance-Arbitrary-File-Modification.html
https://www.synacktiv.com/sites/default/files/2023-01/sudo-CVE-2023-22809.pdf
https://lists.debian.org/debian-lts-announce/2023/01/msg00012.html
http://www.openwall.com/lists/oss-security/2023/01/19/1

Copyright Copyright (C) 2023 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2023.0025
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2023-0025)
Resumen:	The remote host is missing an update for the 'sudo' package(s) announced via the MGASA-2023-0025 advisory.
Descripción:	Summary: The remote host is missing an update for the 'sudo' package(s) announced via the MGASA-2023-0025 advisory. Vulnerability Insight: In Sudo before 1.9.12p2, the sudoedit (aka -e) feature mishandles extra arguments passed in the user-provided environment variables (SUDO_EDITOR, VISUAL, and EDITOR), allowing a local attacker to append arbitrary entries to the list of files to process. This can lead to privilege escalation. Affected versions are 1.8.0 through 1.9.12.p1. The problem exists because a user-specified editor may contain a '--' argument that defeats a protection mechanism, e.g., an EDITOR='vim -- /path/to/extra/file' value. (CVE-2023-22809) Affected Software/OS: 'sudo' package(s) on Mageia 8. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2023-22809 Debian Security Information: DSA-5321 (Google Search) https://www.debian.org/security/2023/dsa-5321 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/G4YNBTTKTRT2ME3NTSXAPTOKYUE47XHZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2QDGFCGAV5QRJCE6IXRXIS4XJHS57DDH/ http://seclists.org/fulldisclosure/2023/Aug/21 https://security.gentoo.org/glsa/202305-12 http://packetstormsecurity.com/files/171644/sudo-1.9.12p1-Privilege-Escalation.html http://packetstormsecurity.com/files/172509/Sudoedit-Extra-Arguments-Privilege-Escalation.html http://packetstormsecurity.com/files/174234/Cisco-ThousandEyes-Enterprise-Agent-Virtual-Appliance-Arbitrary-File-Modification.html https://www.synacktiv.com/sites/default/files/2023-01/sudo-CVE-2023-22809.pdf https://lists.debian.org/debian-lts-announce/2023/01/msg00012.html http://www.openwall.com/lists/oss-security/2023/01/19/1
Copyright	Copyright (C) 2023 Greenbone AG