CVE-2010-0427

Published: 23 February 2010

sudo 1.6.x before 1.6.9p21, when the runas_default option is used, does not properly set group memberships, which allows local users to gain privileges via a sudo command.

Priority

Medium

Status

Package Release Status
sudo
Launchpad, Ubuntu, Debian
Upstream
Released (1.6.9p21)
Patches:
Upstream: http://sudo.ws/repos/sudo/rev/aa0b6c01c462