ELSA-2024-0811

ULN >
Oracle Linux Errata repository >
ELSA-2024-0811

ELSA-2024-0811 - sudo security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2024-02-14

Description

RHEL 9.3.0.Z ERRATUM
[1.9.5p2-10]
- CVE-2023-28487 sudo: Sudo does not escape control characters in sudoreplay output
Resolves: RHEL-21834
- CVE-2023-28486 sudo: Sudo does not escape control characters in log messages
Resolves: RHEL-21828
- CVE-2023-42465 sudo: Targeted Corruption of Register and Stack Variables
Resolves: RHEL-21821

RHEL 8.9.0.Z ERRATUM
[1.9.5p2-1]
- Rebase to 1.9.5p2
- CVE-2023-28486 sudo: Sudo does not escape control characters in log messages
Resolves: RHEL-21825
- CVE-2023-28487 sudo: Sudo does not escape control characters in sudoreplay output
Resolves: RHEL-21831
- CVE-2023-42465 sudo: Targeted Corruption of Register and Stack Variables
Resolves: RHEL-21820

Related CVEs

CVE-2023-28487

CVE-2023-28486

CVE-2023-42465

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	sudo-1.9.5p2-1.el8_9.src.rpm	1274b56f4ba67858e50fb8ac5bc4b9b6	-	ol8_aarch64_baseos_latest
	sudo-1.9.5p2-1.el8_9.src.rpm	1274b56f4ba67858e50fb8ac5bc4b9b6	-	ol8_aarch64_u9_baseos_patch
	sudo-1.9.5p2-1.el8_9.aarch64.rpm	1c9bfe11e0f0c4a26a0be290cebf1555	-	ol8_aarch64_baseos_latest
	sudo-1.9.5p2-1.el8_9.aarch64.rpm	1c9bfe11e0f0c4a26a0be290cebf1555	-	ol8_aarch64_u9_baseos_patch

Oracle Linux 8 (x86_64)	sudo-1.9.5p2-1.el8_9.src.rpm	1274b56f4ba67858e50fb8ac5bc4b9b6	-	ol8_x86_64_baseos_latest
	sudo-1.9.5p2-1.el8_9.src.rpm	1274b56f4ba67858e50fb8ac5bc4b9b6	-	ol8_x86_64_u9_baseos_patch
	sudo-1.9.5p2-1.el8_9.x86_64.rpm	114c3efdb01d5c86069707abb613ef89	-	ol8_x86_64_baseos_latest
	sudo-1.9.5p2-1.el8_9.x86_64.rpm	114c3efdb01d5c86069707abb613ef89	-	ol8_x86_64_u9_baseos_patch

Oracle Linux 9 (aarch64)	sudo-1.9.5p2-10.el9_3.src.rpm	f12545c74a43324001a07db46e9b1eaa	-	ol9_aarch64_appstream
	sudo-1.9.5p2-10.el9_3.src.rpm	f12545c74a43324001a07db46e9b1eaa	-	ol9_aarch64_baseos_latest
	sudo-1.9.5p2-10.el9_3.aarch64.rpm	d96773398671aea36f177544db58087b	-	ol9_aarch64_baseos_latest
	sudo-python-plugin-1.9.5p2-10.el9_3.aarch64.rpm	3d55c724976360ace13eb7b693a8b338	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	sudo-1.9.5p2-10.el9_3.src.rpm	f12545c74a43324001a07db46e9b1eaa	-	ol9_x86_64_appstream
	sudo-1.9.5p2-10.el9_3.src.rpm	f12545c74a43324001a07db46e9b1eaa	-	ol9_x86_64_baseos_latest
	sudo-1.9.5p2-10.el9_3.x86_64.rpm	d0f631c3a56b843f0a6d3033b98d79f0	-	ol9_x86_64_baseos_latest
	sudo-python-plugin-1.9.5p2-10.el9_3.x86_64.rpm	1e3821895b38b41a888a8f405e0ebdbd	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691