| Revision Date: | 2022-05-20 | Version: | 1 |
| Title: | CVE-2016-7091 |
| Description: |
sudo: It was discovered that the default sudo configuration on Red Hat Enterprise Linux and possibly other Linux implementations preserves the value of INPUTRC which could lead to information disclosure. A local user with sudo access to a restricted program that uses readline could use this flaw to read content from specially formatted files with elevated privileges provided by sudo.
|
| Family: | unix | Class: | vulnerability |
| Status: | | Reference(s): | Mitre CVE-2016-7091
SUSE CVE-2016-7091
|
| Platform(s): | SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP1 is installed AND sudo is not affected
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 11 SP4 is installed
AND sudo is not affected
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1 is installed
AND sudo is not affected
|
| Definition Synopsis |
| Release Information
SUSE Linux Enterprise Desktop 12 SP1 is installed
OR SUSE Linux Enterprise Server 12 SP1 is installed
OR SUSE Linux Enterprise Software Development Kit 12 is installed
OR SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
AND sudo is not affected
|