AVG-1504 log

Package opendoas
Status Fixed
Severity High
Type privilege escalation
Affected 6.6.1-2
Fixed 6.8.1-2
Current 6.8.1-3 [community]
Ticket None
Created Fri Jan 29 08:20:14 2021
Issue Severity Remote Type Description
CVE-2019-25016 High No Privilege escalation
A security issue has been found in OpenDoas before 6.8.1, where rules that allowed the user to execute any command would inherit the executing user's PATH...
Date Advisory Package Type
06 Feb 2021 ASA-202102-8 opendoas privilege escalation
References
https://github.com/Duncaen/OpenDoas/releases/tag/v6.8.1