CVE-2010-1646
The secure path feature in env.c in sudo 1.3.1 through 1.6.9p22 and 1.7.0 through 1.7.2p6 does not properly handle an environment that contains multiple PATH variables, which might allow local users to gain privileges via a crafted value of the last PATH variable.
| Software | From | Fixed in |
|---|---|---|
| todd_miller / sudo | 1.6.3p1 | 1.6.3p1.x |
| todd_miller / sudo | 1.6.9p1 | 1.6.9p1.x |
| todd_miller / sudo | 1.6.8p1 | 1.6.8p1.x |
| todd_miller / sudo | 1.6.3p3 | 1.6.3p3.x |
| todd_miller / sudo | 1.3.1 | 1.3.1.x |
| todd_miller / sudo | 1.7.2p4 | 1.7.2p4.x |
| todd_miller / sudo | 1.6.6 | 1.6.6.x |
| todd_miller / sudo | 1.6.3p2 | 1.6.3p2.x |
| todd_miller / sudo | 1.6.9p14 | 1.6.9p14.x |
| todd_miller / sudo | 1.6.9p17 | 1.6.9p17.x |
| todd_miller / sudo | 1.7.0 | 1.7.0.x |
| todd_miller / sudo | 1.6.8p5 | 1.6.8p5.x |
| todd_miller / sudo | 1.6.7p3 | 1.6.7p3.x |
| todd_miller / sudo | 1.6.8p8 | 1.6.8p8.x |
| todd_miller / sudo | 1.6.3 | 1.6.3.x |
| todd_miller / sudo | 1.6.8p2 | 1.6.8p2.x |
| todd_miller / sudo | 1.6.1 | 1.6.1.x |
| todd_miller / sudo | 1.6.9p15 | 1.6.9p15.x |
| todd_miller / sudo | 1.6.7p1 | 1.6.7p1.x |
| todd_miller / sudo | 1.6.9p20 | 1.6.9p20.x |
| todd_miller / sudo | 1.7.1 | 1.7.1.x |
| todd_miller / sudo | 1.7.2p2 | 1.7.2p2.x |
| todd_miller / sudo | 1.7.2p7 | 1.7.2p7.x |
| todd_miller / sudo | 1.7.2 | 1.7.2.x |
| todd_miller / sudo | 1.6.8p6 | 1.6.8p6.x |
| todd_miller / sudo | 1.6.2 | 1.6.2.x |
| todd_miller / sudo | 1.6.9p22 | 1.6.9p22.x |
| todd_miller / sudo | 1.6.9p6 | 1.6.9p6.x |
| todd_miller / sudo | 1.6.8 | 1.6.8.x |
| todd_miller / sudo | 1.6.9p7 | 1.6.9p7.x |
| todd_miller / sudo | 1.6.9p9 | 1.6.9p9.x |
| todd_miller / sudo | 1.6.9p8 | 1.6.9p8.x |
| todd_miller / sudo | 1.6.8p10 | 1.6.8p10.x |
| todd_miller / sudo | 1.6.4p1 | 1.6.4p1.x |
| todd_miller / sudo | 1.6.8p3 | 1.6.8p3.x |
| todd_miller / sudo | 1.6.5p2 | 1.6.5p2.x |
| todd_miller / sudo | 1.6.2p1 | 1.6.2p1.x |
| todd_miller / sudo | 1.6.9p10 | 1.6.9p10.x |
| todd_miller / sudo | 1.6.5 | 1.6.5.x |
| todd_miller / sudo | 1.7.2p1 | 1.7.2p1.x |
| todd_miller / sudo | 1.6.2p2 | 1.6.2p2.x |
| todd_miller / sudo | 1.6.9 | 1.6.9.x |
| todd_miller / sudo | 1.7.2p3 | 1.7.2p3.x |
| todd_miller / sudo | 1.6.9p4 | 1.6.9p4.x |
| todd_miller / sudo | 1.6.7p2 | 1.6.7p2.x |
| todd_miller / sudo | 1.6.9p19 | 1.6.9p19.x |
| todd_miller / sudo | 1.6.3p4 | 1.6.3p4.x |
| todd_miller / sudo | 1.6.3p6 | 1.6.3p6.x |
| todd_miller / sudo | 1.6.3p7 | 1.6.3p7.x |
| todd_miller / sudo | 1.6.9p18 | 1.6.9p18.x |
| todd_miller / sudo | 1.6.9p12 | 1.6.9p12.x |
| todd_miller / sudo | 1.6.7p4 | 1.6.7p4.x |
| todd_miller / sudo | 1.6.7p5 | 1.6.7p5.x |
| todd_miller / sudo | 1.6.9p13 | 1.6.9p13.x |
| todd_miller / sudo | 1.6 | 1.6.x |
| todd_miller / sudo | 1.6.4 | 1.6.4.x |
| todd_miller / sudo | 1.6.8p7 | 1.6.8p7.x |
| todd_miller / sudo | 1.6.8p11 | 1.6.8p11.x |
| todd_miller / sudo | 1.6.9p3 | 1.6.9p3.x |
| todd_miller / sudo | 1.6.9p21 | 1.6.9p21.x |
| todd_miller / sudo | 1.6.7 | 1.6.7.x |
| todd_miller / sudo | 1.6.8p9 | 1.6.8p9.x |
| todd_miller / sudo | 1.6.3p5 | 1.6.3p5.x |
| todd_miller / sudo | 1.6.9p5 | 1.6.9p5.x |
| todd_miller / sudo | 1.6.9p2 | 1.6.9p2.x |
| todd_miller / sudo | 1.7.2p5 | 1.7.2p5.x |
| todd_miller / sudo | 1.6.8p12 | 1.6.8p12.x |
| todd_miller / sudo | 1.6.4p2 | 1.6.4p2.x |
| todd_miller / sudo | 1.6.5p1 | 1.6.5p1.x |
| todd_miller / sudo | 1.6.9p16 | 1.6.9p16.x |
| todd_miller / sudo | 1.6.8p4 | 1.6.8p4.x |
| todd_miller / sudo | 1.7.2p6 | 1.7.2p6.x |
| todd_miller / sudo | 1.6.9p11 | 1.6.9p11.x |
| todd_miller / sudo | 1.6.2p3 | 1.6.2p3.x |
- http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042838.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043012.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043026.html
- http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
- http://secunia.com/advisories/40002
- http://secunia.com/advisories/40188
- http://secunia.com/advisories/40215
- http://secunia.com/advisories/40508
- http://secunia.com/advisories/43068
- http://security.gentoo.org/glsa/glsa-201009-03.xml
- http://wiki.rpath.com/Advisories:rPSA-2010-0075
- http://www.debian.org/security/2010/dsa-2062
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:118
- http://www.osvdb.org/65083
- http://www.redhat.com/support/errata/RHSA-2010-0475.html
- http://www.securityfocus.com/archive/1/514489/100/0/threaded
- http://www.securityfocus.com/bid/40538
- http://www.securitytracker.com/id?1024101
- http://www.sudo.ws/repos/sudo/rev/3057fde43cf0
- http://www.sudo.ws/repos/sudo/rev/a09c6812eaec
- http://www.sudo.ws/sudo/alerts/secure_path.html
- http://www.vupen.com/english/advisories/2010/1452
- http://www.vupen.com/english/advisories/2010/1478
- http://www.vupen.com/english/advisories/2010/1518
- http://www.vupen.com/english/advisories/2010/1519
- http://www.vupen.com/english/advisories/2011/0212
- https://bugzilla.redhat.com/show_bug.cgi?id=598154
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10580
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7338
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime