Since security vendors recently disclosed the existence of Sudo vulnerabilities in the Linux system , Red Hat , SUSE, Debian, Ubuntu and other related releases have successively launched update patches for Linux Sudo vulnerabilities to prevent the local system from being shut down due to Sudo vulnerabilities. The highest authority is at risk.
Sudo is a linux system management command. It is a tool that allows system administrators to let ordinary users execute some or all root commands , such as halt, reboot, su, etc. This will reduce the login and management time of the root user, but Sudo is not a replacement for the shell , it is for each command .
Security researchers explained that if the system is enabled with SELinux (Linux kernel security module) and supports Sudo, users with Sudo privileges can use this vulnerability to overwrite the system with arbitrary files or obtain the highest privileges of the system.
It is reported that the vulnerability affects Sudo 1.8.6p7 to Sudo 1.8.20 versions, and the released Sudo 1.8.20p1 is currently available to patch the vulnerability.