Sudo Security Alerts
About Sudo
Getting Sudo
Documentation
Sudo Resources
Other
![[Powered by OpenBSD]](/images/openbsd_pb.gif){kind=small}
-
July 17, 2007
A security issue has been discovered with the Kerberos 5 authentication that allows a malicious user to avoid authenticating with sudo. -
November 8, 2005
A security issue has been discovered that allows a malicious user with permission to run a perl shell script to execute arbitrary perl code. -
October 27, 2005
A security issue has been discovered that allows a malicious user with permission to run a bash shell script to execute arbitrary commands. -
June 20, 2005
A race condition has been discovered that could allow a malicious user with sudo privileges to execute arbitrary commands. -
November 11, 2004
A security issue has been discovered that allows a malicious user with permission to run a bash shell script to execute arbitrary commands. -
September 15, 2004
A bug in sudoedit has been discovered that allows a malicious user to read files that would otherwise be unreadable. -
April 25, 2002
A buffer overflow bug has been discovered in sudo's prompt expansion code. -
Jan 14, 2002
A security issue that could allow an attacker to to gain root privileges via sudo if the Postfix mailer is installed has been discovered. -
Feb 22, 2001
A heap corruption bug has been discovered in sudo's logging functions.