Debian Security Advisory 5321-1
Debian Linux Security Advisory 5321-1 - Matthieu Barjole and Victor
Cutillas discovered that sudoedit in sudo, a program designed to provide limited super user privileges to specific users, does not properly handle
'--' to separate the editor and arguments from files to edit. A local user permitted to edit certain files can take advantage of this flaw to edit a
file not permitted by the security policy, resulting in privilege
escalation.
https://packetstormsecurity.com/files/170593/dsa-5321-1.txt
Wed, 18 Jan 2023 17:19:11 GMT
________________________________
--- The information is for inforamtional purposes only.
* Origin: Read us with
http://winpoint.org JID:
rs@captflint.com