[v2.2] Vulnerability in sudo < 1.8.3p2 allow local privilege escalation
http://www.sudo.ws/sudo/alerts/sudo\_debug.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=2012-0809
Please note the exploitation of the bug does not require that the
attacker be listed in the sudoers file.
Exploit is public.
Solution:
- Upgrade to v1.8.3p2
(from redmine: issue id 1005, created on 2012-02-12, closed on 2012-02-16)
- Changesets:
- Revision 0fda40c8 by Natanael Copa on 2012-02-14T14:33:54Z:
main/sudo: security upgrade to 1.8.3_p2 (CVE-2012-0809)
fixes #1005