CVE-2021-23240
published 2021-01-12CVE-2021-23240: selinux_edit_copy_tfiles in sudoedit in Sudo before 1.9.5 allows a local unprivileged user to gain file ownership and escalate privileges by replacing a…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
selinux_edit_copy_tfiles in sudoedit in Sudo before 1.9.5 allows a local unprivileged user to gain file ownership and escalate privileges by replacing a temporary file with a symlink to an arbitrary file target. This affects SELinux RBAC support in permissive mode. Machines without SELinux are not vulnerable.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | sudo | < sudo 1.9.5-1 (bookworm) | sudo 1.9.5-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| msrc | sudo-1.9.5p2-2.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm | — | — |
| msrc | sudo-1.9.5p2-2.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64 | — | — |
| msrc | sudo-debuginfo-1.9.5p2-2.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm | — | — |
| msrc | sudo-debuginfo-1.9.5p2-2.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64 | — | — |
| sudo_project | sudo | < 1.8.32 | 1.8.32 |
| sudo_project | sudo | >= 0 < 1.9.5-1 | 1.9.5-1 |
| sudo_project | sudo | >= 0 < 1.9.5-1 | 1.9.5-1 |
| sudo_project | sudo | >= 0 < 1.9.5-1 | 1.9.5-1 |
| sudo_project | sudo | >= 0 < 1.9.5-1 | 1.9.5-1 |
| sudo_project | sudo | >= 1.9.0 < 1.9.5 | 1.9.5 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH