Debian Security Update DSA-5321 sudo - security update

Thread starter LinuxBot
Start date Jan 18, 2023

LinuxBot

Member

Jan 18, 2023

#1

Matthieu Barjole and Victor Cutillas discovered that sudoedit in sudo, a program designed to provide limited super user privileges to specific users, does not properly handle '--' to separate the editor and arguments from files to edit. A local user permitted to edit certain files can take advantage of this flaw to edit a file not permitted by the security policy, resulting in privilege escalation.

Continue reading...

You must log in or register to reply here.

Similar threads

Debian Security Update DSA-5954-1 sudo - security update

Replies: 0

Views: 281

Jun 30, 2025

LinuxBot

Debian Security Update DSA-6221-1 ntfs-3g - security update

Replies: 0

Views: 122

Apr 21, 2026

LinuxBot

Debian Security Update DSA-6292-1 haveged - security update

Replies: 0

Views: 89

May 23, 2026

LinuxBot

Debian Security Update DSA-6321-1 ceph - security update

Replies: 0

Views: 54

Jun 4, 2026

LinuxBot

Debian Security Update DSA-6283-1 firefox-esr - security update

Replies: 0

Views: 75

May 20, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Staff online

Brickwizard
Super Moderator
f33dm3bits
Super Moderator

Members online

Total: 1,836 (members: 6, guests: 1,830)

Latest posts

Linux Mint - can't access terminal
- Latest: Gerb
- 51 minutes ago
Getting Started
What are Your Takes On "GNU Purism"
- Latest: amalxloop
- Today at 3:59 PM
General Computing
Update Chrome ASAP to Protect Yourself From This Active ExploitIf you use Chrome, you're vulnerable until you install this update. Jun 11, 2026
- Latest: craigevil
- Today at 12:55 PM
Linux Security
Fresh Installation of MX Linux ver 25 XFCE
- Latest: kc1di
- Today at 11:06 AM
Getting Started
Linux on a Mac?
- Latest: Skybear
- Today at 10:07 AM
Laptops / Netbooks

Top