CVE-2022-43995

Name of the Vulnerable Software and Affected Versions Sudo versions 1.8.0 through 1.9.12

Description The issue is related to an array-out-of-bounds error in the plugins/sudoers/auth/passwd.c file of the Sudo program when using the crypt() password backend. This error can result in a heap-based buffer over-read, potentially allowing an attacker to cause a denial of service. The impact can vary depending on system libraries, compiler, and processor architecture. The issue can be triggered by arbitrary local users with access to Sudo by entering a password of seven characters or fewer.

Recommendations For Sudo versions 1.8.0 through 1.9.12, consider disabling the crypt() password backend as a temporary workaround until a patch is available. Restrict access to the plugins/sudoers/auth/passwd.c file to minimize the risk of exploitation. Avoid using passwords of seven characters or fewer in the affected Sudo versions until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.