| Revision Date: | 2012-11-01 | Version: | 1 | | Title: | CVE-2008-3067 | | Description: |
sudo in SUSE openSUSE 10.3 does not clear the stdin buffer when password entry times out, which might allow local users to obtain a password by reading stdin from the parent process after a sudo child process exits.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2008-3067
| | Platform(s): | openSUSE 10.3
| Product(s): | | | Definition Synopsis | | suse103 is installed AND sudo less than 1.6.9p2-23.2
|
|