Description
Sudo VISudo 1.6.8 and earlier allows local users to corrupt arbitrary files via a symlink attack on temporary files.
Affected products
- todd_miller / sudo1.5.6 – 1.5.6
- todd_miller / sudo1.5.7 – 1.5.7
- todd_miller / sudo1.5.8 – 1.5.8
- todd_miller / sudo1.5.9 – 1.5.9
- todd_miller / sudo1.6 – 1.6
- todd_miller / sudo1.6.1 – 1.6.1
- todd_miller / sudo1.6.2 – 1.6.2
- todd_miller / sudo1.6.3 – 1.6.3
- todd_miller / sudo1.6.3_p1 – 1.6.3_p1
- todd_miller / sudo1.6.3_p2 – 1.6.3_p2
- todd_miller / sudo1.6.3_p3 – 1.6.3_p3
- todd_miller / sudo1.6.3_p4 – 1.6.3_p4
- todd_miller / sudo1.6.3_p5 – 1.6.3_p5
- todd_miller / sudo1.6.3_p6 – 1.6.3_p6
- todd_miller / sudo1.6.3_p7 – 1.6.3_p7
- todd_miller / sudo1.6.4 – 1.6.4
- todd_miller / sudo1.6.4_p1 – 1.6.4_p1
- todd_miller / sudo1.6.4_p2 – 1.6.4_p2
- todd_miller / sudo1.6.5 – 1.6.5
- todd_miller / sudo1.6.5_p1 – 1.6.5_p1
- todd_miller / sudo1.6.5_p2 – 1.6.5_p2
- todd_miller / sudo1.6.6 – 1.6.6
- todd_miller / sudo1.6.7 – 1.6.7
- todd_miller / sudo1.6.7_p5 – 1.6.7_p5
- todd_miller / sudo1.6.8 – 1.6.8
- todd_miller / sudo1.6.8_p1 – 1.6.8_p1
- todd_miller / sudo1.6.8_p8 – 1.6.8_p8