AVG-1431 log

Package	sudo
Status	Fixed
Severity	Critical
Type	multiple issues
Affected	1.9.4.p2-2
Fixed	1.9.5.p2-1
Current	1.9.16.p1-1 [core-testing] 1.9.16-1 [core]
Ticket	None
Created	Mon Jan 11 14:08:35 2021

Issue	Severity	Remote	Type	Description
CVE-2021-23239	Low	No	Information disclosure	A security issue was found in sudo before version 1.9.5. A race condition in sudoedit could have allowed an attacker to test for the existence of...
CVE-2021-3156	Critical	No	Privilege escalation	A serious heap-based buffer overflow has been discovered in sudo before version 1.9.5p2 that is exploitable by any local user. It has been given the name...

Issue

Severity

Remote

Type

Description

CVE-2021-23239

Low

Information disclosure

A security issue was found in sudo before version 1.9.5. A race condition in sudoedit could have allowed an attacker to test for the existence of...

CVE-2021-3156

Critical

Privilege escalation

A serious heap-based buffer overflow has been discovered in sudo before version 1.9.5p2 that is exploitable by any local user. It has been given the name...

Date	Advisory	Package	Type
20 Jan 2021	ASA-202101-25	sudo	multiple issues

References
https://www.openwall.com/lists/oss-security/2021/01/11/2