Advisories » MGASA-2019-0298

Updated sudo packages fix security vulnerability

Publication date: 16 Oct 2019
Modification date: 16 Oct 2019
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-14287

Description

The updated packages fix a security vulnerability:

Potential bypass of Runas user restrictions. (CVE-2019-14287)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=25568
• https://www.sudo.ws/alerts/minus_1_uid.html
• https://www.sudo.ws/stable.html#1.8.28
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14287

SRPMS

7/core

• sudo-1.8.28-1.mga7