You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa sudo

Sigurnosni nedostaci programskog paketa sudo

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2019-10-31 01:52:32.621469

Name : sudo
Product : Fedora 29
Version : 1.8.28
Release : 1.fc29
Summary : Allows restricted root access for specified users
Description :
Sudo (superuser do) allows a system administrator to give certain
users (or groups of users) the ability to run some (or all) commands
as root while logging all commands and arguments. Sudo operates on a
per-command basis. It is not a replacement for the shell. Features
include: the ability to restrict what commands a user may run on a
per-host basis, copious logging of each command (providing a clear
audit trail of who did what), a configurable timeout of the sudo
command, and the ability to use the same configuration file (sudoers)
on many different machines.

Update Information:

* Rebase to 1.8.28 * Fixed CVE-2019-14287

* Tue Oct 15 2019 Radovan Sroka <> – 1.8.28-1
– rebase to 1.8.28
Resolves: rhbz#1761533
– fixes CVE-2019-14287
– Privilege escalation via ‘Runas’ specification with ‘ALL’ keyword
Resolves: rhbz#1761584
* Mon Mar 11 2019 Radovan Sroka <> – 1.8.27-1
– rebase sudo to 1.8.27
* Mon Sep 10 2018 Radovan Sroka <> 1.8.25-1
– rebase sudo to latest stawble version
– install /etc/dnf/protected.d/sudo instead of /etc/yum/protected.d/sudo (1626968)

[ 1 ] Bug #1761533 – sudo-1.8.28 is available
[ 2 ] Bug #1761584 – CVE-2019-14287 sudo: Privilege escalation via ‘Runas’ specification with ‘ALL’ keyword [fedora-all]

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2019-72755db9c7’ at the command
line. For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to
Fedora Code of Conduct:
List Guidelines:
List Archives:

AutorToni Vugdelija
Cert idNCERT-REF-2019-10-0001-ADV
More in Preporuke
Sigurnosni nedostatak programskog paketa php

Otkriven je sigurnosni nedostatak u programskom paketu php za operacijski sustav Fedora. Otkriveni nedostatak potencijalnim napadačima omogućuje izvršavanje proizvoljnog programskog...