PT-2019-3519 · Todd Miller+5 · Sudo+5

Joe Vennix

·

Publicado

2019-10-14

·

Atualizado

2025-11-27

·

CVE-2019-14287

CVSS v2.0

9.0

Alta

VetorAV:N/AC:L/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Sudo versions prior to 1.8.28
Description The issue allows an attacker with access to a Runas ALL sudoer account to bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID, such as -1 or 4294967295. This can enable the execution of commands as root even when restricted. The vulnerability exists due to insufficient input validation in Sudo.
Recommendations For Sudo versions prior to 1.8.28, update to version 1.8.28 or later to resolve the issue. As a temporary workaround, consider restricting the use of the sudo command with crafted user IDs, such as -1 or 4294967295, to minimize the risk of exploitation.

Exploit

Correção

Improper Handling of Exceptional Conditions

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-755CWE-267

Identificadores relacionados

ALT-PU-2019-2942
ALT-PU-2019-2943
BDU:2019-03696
CESA-2019_3197
CESA-2019_3694
CESA-2019_3755
CVE-2019-14287
DLA-1964-1
DSA-4543-1
ELSA-2019-3694
ELSA-2019-3755
ELSA-2019-4821
ELSA-2019-4822
MGASA-2019-0298
OPENSUSE-SU-2019:2316-1
OPENSUSE-SU-2019:2333-1
OPENSUSE-SU-2019_2316-1
OPENSUSE-SU-2019_2333-1
OPENSUSE-SU-2024:11413-1
RHSA-2019:3197
RHSA-2019:3204
RHSA-2019:3205
RHSA-2019:3209
RHSA-2019:3219
RHSA-2019:3278
RHSA-2019:3694
RHSA-2019:3754
RHSA-2019:3755
RHSA-2019:3895
RHSA-2019:4191
RHSA-2019_3197
RHSA-2019_3694
RHSA-2019_3755
RHSA-2019_4191
RHSA-2020:0388
SUSE-SU-2019:14193-1
SUSE-SU-2019:2656-1
SUSE-SU-2019:2666-1
SUSE-SU-2019:2667-1
SUSE-SU-2019:2668-1
SUSE-SU-2019_14193-1
SUSE-SU-2019_2656-1
SUSE-SU-2019_2666-1
SUSE-SU-2019_2667-1
SUSE-SU-2019_2668-1
USN-4154-1

Produtos afetados

Alt Linux
Centos
Red Hat
Sudo
Suse
Ubuntu