はてなブックマーク

Exploiting the bug requires that the user have sudo privileges that allow them to run commands with an arbitrary user ID. Typically, this means that the user’s sudoers entry has the special value ALL in the Runas specifier. Sudo supports running a command with a user-specified user name or user ID, if permitted by the sudoers policy. For example, the following sudoers entry allow the id command to

This vulnerability was initially assigned CVE-2017-1000367 in the Common Vulnerabilities and Exposures database. It was later discovered that the fix present in sudo 1.8.20p1 was incomplete as it did not address the problem of a command with a newline in the name. CVE-2017-1000368 was assigned for this additional issue. Exploiting the bug requires that the user already have sudo privileges. SELinu

About Sudo A Short Introduction A Brief History of Sudo Contributors Translations Sudo Plugins Sudo License Sudo Logo Export Controls Releases Stable Release Legacy Release Development Release ChangeLog Getting Sudo Source Repo Source Distribution Prebuilt Packages Download Mirrors Mirroring Sudo Documentation Manual Pages (latest) Cvtsudoers Manual Sudo Configuration Manual Sudo Log Client Manual

About Sudo A Short Introduction A Brief History of Sudo Contributors Translations Sudo Plugins Sudo License Sudo Logo Export Controls Releases Stable Release Legacy Release Development Release ChangeLog Getting Sudo Source Repo Source Distribution Prebuilt Packages Download Mirrors Mirroring Sudo Documentation Manual Pages (latest) Cvtsudoers Manual Sudo Configuration Manual Sudo Log Client Manual

About Sudo A Short Introduction A Brief History of Sudo Contributors Translations Sudo Plugins Sudo License Sudo Logo Export Controls Releases Stable Release Legacy Release Development Release ChangeLog Getting Sudo Source Repo Source Distribution Prebuilt Packages Download Mirrors Mirroring Sudo Documentation Manual Pages (latest) Cvtsudoers Manual Sudo Configuration Manual Sudo Log Client Manual

[-ABbEHnPS] [-a type] [-C num] [-c class] [-D directory] [-g group] [-h host] [-p prompt] [-R directory] [-r role] [-t type] [-T timeout] [-u user] [VAR=value] [-i | -s] [command [arg ...]] DESCRIPTION sudo allows a permitted user to execute a command as the superuser or another user, as specified by the security policy. The invoking user's real (not effective) user-ID is used to determine the use

About Sudo A Short Introduction A Brief History of Sudo Contributors Translations Sudo Plugins Sudo License Sudo Logo Export Controls Releases Stable Release Legacy Release Development Release ChangeLog Getting Sudo Source Repo Source Distribution Prebuilt Packages Download Mirrors Mirroring Sudo Documentation Manual Pages (latest) Cvtsudoers Manual Sudo Configuration Manual Sudo Log Client Manual