Oval Definition:oval:org.opensuse.security:def:55523
Revision Date:2023-03-29Version:1
Title:Security update for sudo (Moderate)
Description:

This update for sudo fixes the following issue:

Security issues:

- CVE-2023-28486: Fixed sudo does not escape control characters in log messages. (bsc#1209362) - CVE-2023-28487: Fixed sudo does not escape control characters in sudoreplay output. (bsc#1209361) - CVE-2023-27320: Fixed a potential security issue with a double free with per-command chroot sudoers rules (bsc#1208595).

Bug fixes:

- Fix a situation where 'sudo -U otheruser -l' would dereference a NULL pointer (bsc#1206483) - If NOPASSWD is specified, don't ask for password if command is not found (bsc#1206772). - Do not re-enable the reader when flushing the buffers as part of pty_finish() (bsc#1203201).
Family:unixClass:patch
Status:Reference(s):1009434
1011377
1011390
1011395
1011398
1011404
1011406
1011411
1011417
1014136
1026236
1027519
1031460
1034845
1036470
1037243
1042160
1042863
1042882
1042893
1042915
1042923
1042924
1042931
1042938
1043074
1043297
1045327
1052311
1052368
1057950
1079730
1098403
1108631
1108632
1111025
1111331
1120095
1129186
1130680
1133204
1133205
1133498
1133501
1134075
1135232
1135236
1136183
1136732
1138425
1138464
1153332
1203201
1206483
1206772
1208595
1209361
1209362
742546
904519
913678
915328
915329
928323
943216
956365
963415
968046
968048
968051
968053
968374
981252
988028
992038
992606
CVE-2009-5029
CVE-2012-0065
CVE-2012-2141
CVE-2012-4412
CVE-2013-0242
CVE-2013-1914
CVE-2013-2207
CVE-2013-4237
CVE-2013-4332
CVE-2013-4458
CVE-2013-7423
CVE-2014-0475
CVE-2014-2284
CVE-2014-2285
CVE-2014-3565
CVE-2014-4043
CVE-2014-5119
CVE-2014-6040
CVE-2014-7817
CVE-2014-8121
CVE-2014-9402
CVE-2015-1196
CVE-2015-1395
CVE-2015-1396
CVE-2015-1472
CVE-2015-1781
CVE-2015-3146
CVE-2015-3197
CVE-2015-5219
CVE-2015-5621
CVE-2016-0702
CVE-2016-0703
CVE-2016-0797
CVE-2016-0799
CVE-2016-0800
CVE-2016-7426
CVE-2016-7427
CVE-2016-7428
CVE-2016-7429
CVE-2016-7431
CVE-2016-7433
CVE-2016-7434
CVE-2016-9310
CVE-2016-9311
CVE-2017-1000112
CVE-2017-1000251
CVE-2017-10911
CVE-2017-10912
CVE-2017-10913
CVE-2017-10914
CVE-2017-10915
CVE-2017-10916
CVE-2017-10917
CVE-2017-10918
CVE-2017-10920
CVE-2017-10921
CVE-2017-10922
CVE-2017-12805
CVE-2017-12806
CVE-2017-15274
CVE-2017-8112
CVE-2017-8309
CVE-2017-8905
CVE-2017-9330
CVE-2017-9374
CVE-2017-9503
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-16301
CVE-2018-17097
CVE-2018-17098
CVE-2018-20815
CVE-2019-10131
CVE-2019-11091
CVE-2019-11470
CVE-2019-11472
CVE-2019-11505
CVE-2019-11506
CVE-2019-11597
CVE-2019-11598
CVE-2019-15165
CVE-2019-3838
CVE-2023-27320
CVE-2023-28486
CVE-2023-28487
SUSE-SU-2015:1019-1
SUSE-SU-2015:1707-2
SUSE-SU-2016:0631-1
SUSE-SU-2016:3195-1
SUSE-SU-2017:1812-1
SUSE-SU-2017:2439-1
SUSE-SU-2017:2782-1
SUSE-SU-2017:2783-1
SUSE-SU-2019:0096-1
SUSE-SU-2019:0719-1
SUSE-SU-2019:1712-1
SUSE-SU-2019:2669-1
SUSE-SU-2023:1665-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Micro 5.4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • MozillaFirefox-60.0-lp150.2 is installed
  • OR MozillaFirefox-translations-common-60.0-lp150.2 is installed
  • OR MozillaFirefox-translations-other-60.0-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • kernel-debug-4.12.14-lp151.28.7 is installed
  • OR kernel-debug-base-4.12.14-lp151.28.7 is installed
  • OR kernel-debug-devel-4.12.14-lp151.28.7 is installed
  • OR kernel-default-4.12.14-lp151.28.7 is installed
  • OR kernel-default-base-4.12.14-lp151.28.7 is installed
  • OR kernel-default-devel-4.12.14-lp151.28.7 is installed
  • OR kernel-devel-4.12.14-lp151.28.7 is installed
  • OR kernel-docs-4.12.14-lp151.28.7 is installed
  • OR kernel-docs-html-4.12.14-lp151.28.7 is installed
  • OR kernel-kvmsmall-4.12.14-lp151.28.7 is installed
  • OR kernel-kvmsmall-base-4.12.14-lp151.28.7 is installed
  • OR kernel-kvmsmall-devel-4.12.14-lp151.28.7 is installed
  • OR kernel-macros-4.12.14-lp151.28.7 is installed
  • OR kernel-obs-build-4.12.14-lp151.28.7 is installed
  • OR kernel-obs-qa-4.12.14-lp151.28.7 is installed
  • OR kernel-source-4.12.14-lp151.28.7 is installed
  • OR kernel-source-vanilla-4.12.14-lp151.28.7 is installed
  • OR kernel-syms-4.12.14-lp151.28.7 is installed
  • OR kernel-vanilla-4.12.14-lp151.28.7 is installed
  • OR kernel-vanilla-base-4.12.14-lp151.28.7 is installed
  • OR kernel-vanilla-devel-4.12.14-lp151.28.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND usbmuxd-1.0.7-5.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • compat-openssl097g-0.9.7g-146.22.41 is installed
  • OR compat-openssl097g-32bit-0.9.7g-146.22.41 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND patch-2.7.5-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • ghostscript-9.26a-23.22 is installed
  • OR ghostscript-x11-9.26a-23.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • xen-4.11.1_06-2.11 is installed
  • OR xen-libs-4.11.1_06-2.11 is installed
  • OR xen-libs-32bit-4.11.1_06-2.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Micro 5.4 is installed
  • AND sudo-1.9.9-150400.4.26.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • glibc-2.19-31 is installed
  • OR glibc-32bit-2.19-31 is installed
  • OR glibc-devel-2.19-31 is installed
  • OR glibc-devel-32bit-2.19-31 is installed
  • OR glibc-html-2.19-31 is installed
  • OR glibc-i18ndata-2.19-31 is installed
  • OR glibc-info-2.19-31 is installed
  • OR glibc-locale-2.19-31 is installed
  • OR glibc-locale-32bit-2.19-31 is installed
  • OR glibc-profile-2.19-31 is installed
  • OR glibc-profile-32bit-2.19-31 is installed
  • OR nscd-2.19-31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_45-default-4-2 is installed
  • OR kgraft-patch-3_12_74-60_64_45-xen-4-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_16-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libQt5Concurrent5-5.6.1-11 is installed
  • OR libQt5Core5-5.6.1-11 is installed
  • OR libQt5DBus5-5.6.1-11 is installed
  • OR libQt5Gui5-5.6.1-11 is installed
  • OR libQt5Network5-5.6.1-11 is installed
  • OR libQt5OpenGL5-5.6.1-11 is installed
  • OR libQt5PrintSupport5-5.6.1-11 is installed
  • OR libQt5Sql5-5.6.1-11 is installed
  • OR libQt5Sql5-mysql-5.6.1-11 is installed
  • OR libQt5Sql5-postgresql-5.6.1-11 is installed
  • OR libQt5Sql5-sqlite-5.6.1-11 is installed
  • OR libQt5Sql5-unixODBC-5.6.1-11 is installed
  • OR libQt5Test5-5.6.1-11 is installed
  • OR libQt5Widgets5-5.6.1-11 is installed
  • OR libQt5Xml5-5.6.1-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libexif-0.6.22-8.9 is installed
  • OR libexif12-0.6.22-8.9 is installed
  • OR libexif12-32bit-0.6.22-8.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_32-default-11-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_11-11-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • jakarta-taglibs-standard-1.1.1-255 is installed
  • OR jakarta-taglibs-standard-javadoc-1.1.1-255 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • glibc-2.22-62.22 is installed
  • OR glibc-32bit-2.22-62.22 is installed
  • OR glibc-devel-2.22-62.22 is installed
  • OR glibc-devel-32bit-2.22-62.22 is installed
  • OR glibc-html-2.22-62.22 is installed
  • OR glibc-i18ndata-2.22-62.22 is installed
  • OR glibc-info-2.22-62.22 is installed
  • OR glibc-locale-2.22-62.22 is installed
  • OR glibc-locale-32bit-2.22-62.22 is installed
  • OR glibc-profile-2.22-62.22 is installed
  • OR glibc-profile-32bit-2.22-62.22 is installed
  • OR nscd-2.22-62.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • glibc-2.22-62.22 is installed
  • OR glibc-32bit-2.22-62.22 is installed
  • OR glibc-devel-2.22-62.22 is installed
  • OR glibc-devel-32bit-2.22-62.22 is installed
  • OR glibc-html-2.22-62.22 is installed
  • OR glibc-i18ndata-2.22-62.22 is installed
  • OR glibc-info-2.22-62.22 is installed
  • OR glibc-locale-2.22-62.22 is installed
  • OR glibc-locale-32bit-2.22-62.22 is installed
  • OR glibc-profile-2.22-62.22 is installed
  • OR glibc-profile-32bit-2.22-62.22 is installed
  • OR nscd-2.22-62.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • gdm-3.10.0.1-54.6 is installed
  • OR gdm-lang-3.10.0.1-54.6 is installed
  • OR gdmflexiserver-3.10.0.1-54.6 is installed
  • OR libgdm1-3.10.0.1-54.6 is installed
  • OR typelib-1_0-Gdm-1_0-3.10.0.1-54.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • cups-1.7.5-20.17 is installed
  • OR cups-client-1.7.5-20.17 is installed
  • OR cups-libs-1.7.5-20.17 is installed
  • OR cups-libs-32bit-1.7.5-20.17 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • xen-4.5.5_12-22.18 is installed
  • OR xen-doc-html-4.5.5_12-22.18 is installed
  • OR xen-kmp-default-4.5.5_12_k3.12.74_60.64.45-22.18 is installed
  • OR xen-libs-4.5.5_12-22.18 is installed
  • OR xen-libs-32bit-4.5.5_12-22.18 is installed
  • OR xen-tools-4.5.5_12-22.18 is installed
  • OR xen-tools-domU-4.5.5_12-22.18 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • ghostscript-9.52-23.34 is installed
  • OR ghostscript-x11-9.52-23.34 is installed
  • OR libspectre-0.2.7-12.10 is installed
  • OR libspectre1-0.2.7-12.10 is installed
    • BACK