← back
CVE-2015-8239

CVE-2015-8239

EPSS 0.5%
The SHA-2 digest support in the sudoers plugin in sudo after 1.8.7 allows local users with write permissions to parts of the called command to replace them before it is executed.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.redhat.com/show_bug.cgi?id=1283635https://www.sudo.ws/repos/sudo/rev/0cd3cc8fa195https://www.sudo.ws/repos/sudo/rev/24a3d9215c64https://www.sudo.ws/repos/sudo/rev/397722cdd7echttp://www.openwall.com/lists/oss-security/2015/11/18/22