Ubuntu update for sudo - Secunia Advisories - Vulnerability Intelligence

Secunia Advisories

Advisories

Advisories by Product

Advisories by Vendor

Business Solutions Restricted

Partner Solutions Restricted

About

Ubuntu update for sudo
Secunia Advisory:	SA18308	Advisory Toolbox: Issue ticket Save in to-do list Mark as handled Exploit information Download as PDF Review actions Add comment
Release Date:	2006-01-06
Popularity:	4,822 views

Critical:	Less critical
Impact:	Privilege escalation
Where:	Local system
Solution Status:	Vendor Patch

OS:	Ubuntu Linux 4.10 Ubuntu Linux 5.04 Ubuntu Linux 5.10

Subscribe:	Instant alerts on relevant vulnerabilities

CVE reference:	CVE-2005-4158

Description: Ubuntu has issued an update for sudo. This fixes a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. For more information: SA17534 Solution: Apply updated packages. -- Ubuntu 4.10 -- Source archives: http://security.ubuntu.com/ubuntu/poo.../sudo/sudo_1.6.7p5-1ubuntu4.4.diff.gz Size/MD5: 28048 5218c513df9c959dd313c4be22aaa25b http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.7p5-1ubuntu4.4.dsc Size/MD5: 585 3f914d6d796048d161dda14c8de1e09f http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.7p5.orig.tar.gz Size/MD5: 349785 55d503e5c35bf1ea83d38244e0242aaf amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/poo...udo/sudo_1.6.7p5-1ubuntu4.4_amd64.deb Size/MD5: 156626 e425b3d24d561805a976fbd860addf90 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/poo...sudo/sudo_1.6.7p5-1ubuntu4.4_i386.deb Size/MD5: 146046 740822460f6711c889f331e6f63b3c3b powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/poo...o/sudo_1.6.7p5-1ubuntu4.4_powerpc.deb Size/MD5: 153604 995c81080a1eb4b5266bae6fa3bad812 -- Ubuntu 5.04 -- Source archives: http://security.ubuntu.com/ubuntu/poo.../sudo/sudo_1.6.8p5-1ubuntu2.3.diff.gz Size/MD5: 24291 cfa4cda75436030ce5c8b2a5778f3736 http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.8p5-1ubuntu2.3.dsc Size/MD5: 585 8a8e0849da19d006b46655bbfa57b593 http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.8p5.orig.tar.gz Size/MD5: 584832 03538d938b8593d6f1d66ec6c067b5b5 amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/poo...udo/sudo_1.6.8p5-1ubuntu2.3_amd64.deb Size/MD5: 170784 1da10690d4d5a3c3623e0b20282de467 i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/poo...sudo/sudo_1.6.8p5-1ubuntu2.3_i386.deb Size/MD5: 159012 be5ccb2125b6046ddc7b7b850d32812e powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/poo...o/sudo_1.6.8p5-1ubuntu2.3_powerpc.deb Size/MD5: 165848 9a2e4fbd41fc1cc8280c3a013ef3d3fb -- Ubuntu 5.10 -- Source archives: http://security.ubuntu.com/ubuntu/poo.../sudo/sudo_1.6.8p9-2ubuntu2.2.diff.gz Size/MD5: 22481 3b49d421cf10302c44e601946c029f06 http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.8p9-2ubuntu2.2.dsc Size/MD5: 585 10738797809673ab80a30ce1a2401ffd http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.8p9.orig.tar.gz Size/MD5: 585509 6d0346abd16914956bc7ea4f17fc85fb amd64 architecture (Athlon64, Opteron, EM64T Xeon) http://security.ubuntu.com/ubuntu/poo...udo/sudo_1.6.8p9-2ubuntu2.2_amd64.deb Size/MD5: 172686 466d5461ec58d669f5978ffe47e2ff1d i386 architecture (x86 compatible Intel/AMD) http://security.ubuntu.com/ubuntu/poo...sudo/sudo_1.6.8p9-2ubuntu2.2_i386.deb Size/MD5: 159106 5a4898a7ea752ae91b9113d5d8d5751c powerpc architecture (Apple Macintosh G3/G4/G5) http://security.ubuntu.com/ubuntu/poo...o/sudo_1.6.8p9-2ubuntu2.2_powerpc.deb Size/MD5: 167236 43125eeceec512ca67b03d30fc4d2484 Original Advisory: http://www.ubuntulinux.org/usn/usn-235-1 http://lists.ubuntu.com/archives/ubun...ity-announce/2006-January/000266.html Other References: SA17534: http://secunia.com/advisories/17534/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released. Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

Latest Advisories

8th Jan, 2009

New advisories:	24
New vulnerabilities:	99
Updated advisories:	26

Moderately // 270 views

Drupal Project Module File Upload and Cross-Site Scripting

Less // 282 views

SmbFTPD Long Command Processing Vulnerability

Less // 321 views

Drupal Project Issue Tracking Module Multiple Vulnerabilities

Less // 299 views

PHP-Fusion Members CV Module "sortby" SQL Injection Vulnerability

Moderately // 333 views

Lasso OpenSSL "DSA_verify()" Spoofing Vulnerability

Moderately // 284 views

Xdg-utils mailcap Command Execution Security Issue

Less // 313 views

FreeBSD update for lukemftpd

Less // 298 views

tnftpd Long Command Processing Vulnerability

Moderately // 425 views

Cisco Global Site Selector DNS Request Denial of Service

Less // 373 views

NTP OpenSSL "EVP_VerifyFinal()" Spoofing Vulnerability

Solutions | More...

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.