FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2011-0010

This CVE name corresponds to:

Entered Topic
2011-01-13 sudo -- local privilege escalation

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2011-0010 at cve.mitre.org

Details

Type Candidate
Name CVE-2011-0010
Phase Assigned(20101207)

Description

check.c in sudo 1.7.x before 1.7.4p5, when a Runas group is configured, does not require a password for command execution that involves a gid change but no uid change, which allows local users to bypass an intended authentication requirement via the -g option to a sudo command.

References

Source Reference
MLIST [oss-security] 20110111 CVE request: sudo does not ask for password on GID changes
MLIST [oss-security] 20110112 Re: CVE request: sudo does not ask for password on GID changes
MLIST [oss-security] 20110112 Re: CVE request: sudo does not ask for password on GID changes
MISC http://www.sudo.ws/repos/sudo/rev/07d1b0ce530e
CONFIRM http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=609641
CONFIRM http://www.sudo.ws/repos/sudo/rev/fe8a94f96542
CONFIRM http://www.sudo.ws/sudo/alerts/runas_group_pw.html
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=668879
FEDORA FEDORA-2011-0470
FEDORA FEDORA-2011-0455
MANDRIVA MDVSA-2011:018
REDHAT RHSA-2011:0599
SLACKWARE SSA:2011-041-05
SUSE SUSE-SR:2011:002
UBUNTU USN-1046-1
BID 45774
OSVDB 70400
SECUNIA 42886
SECUNIA 42968
SECUNIA 42949
SECUNIA 43068
SECUNIA 43282
VUPEN ADV-2011-0089
VUPEN ADV-2011-0182
VUPEN ADV-2011-0195
VUPEN ADV-2011-0199
VUPEN ADV-2011-0212
VUPEN ADV-2011-0362
XF sudo-groupid-privilege-escalation(64636)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.