Linux Sudo Vulnerability (CVE-2019-18634)

Contents of The Article hide

5 References to Advisories, Solutions and Tools

Overview

Linux Sudo Vulnerability (CVE-2019-18634): “In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged sudo process.”

Description

Sudo is one of the most important, powerful and commonly used utilities that comes as a core command pre-installed on almost every Linux based operating system. Sudo program allows users to run programs with the security privileges of another user, by default the superuser.

In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged sudo process. (pwfeedback is a default setting in Linux Mint and elementary OS; however, it is NOT the default for upstream and many other packages, and would exist only if enabled by an administrator.)

The Linux Sudo vulnerability (CVE-2019-18634) can be triggered even by users not listed in the sudoers file. The exploitation takes place by passing a large input to sudo via a pipe when it prompts for a password.

Impact

An attacker can trigger a stack-based buffer overflow in the privileged sudo process.

Impact Summary

Category: Buffer Overflow (Stack-Based)
CVSS 3.1 Base Score: 7.8 High
CVSS 3.1 Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Solution (Patch/Workaround)

To defend against possible attacks due to the Linux Sudo vulnerability, sudoers configuration file needs to be checked and reconfigured securely (by changing “Defaults pwfeedback” to “Defaults !pwfeedback” in the sudoers configuration file.).

To determine if a sudoers configuration is affected, “sudo -l” command be run on Linux or MacOS terminals to find whether the “pwfeedback” option is enabled.

Quote by David Bernstein — Quote by *David Bernstein*

For every lock, there is someone out there trying to pick it or break in.
David Bernstein

Read more educational and inspirational cyber quotes at our page 100+ Best Cyber Security & Hacker Quotes.

References to Advisories, Solutions and Tools

To learn more about other Linux Sudo vulnerabilities, you could also read our articles:

You could also read our popular articles What is a Security Vulnerability? or What is Vulnerability Scanning?

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Linux Sudo Vulnerability (CVE-2019-18634)

Overview

Description

Impact

Solution (Patch/Workaround)

References to Advisories, Solutions and Tools

Zero-Day Vulnerabilities in Google Chrome in 2022

Microsoft Patches 55 CVEs and 6 Zero-Days with November 2021 Updates

Static SSH Keys Vulnerability in Cisco Policy Suite (CVE-2021-40119)

Multiple Vulnerabilities on Cisco Catalyst PON Series Switches (CVE-2021-34795, CVE-2021-40113)

Google Patches 2 Zero-Days in Chrome Browser (CVE-2021-38000, CVE-2021-38003)

Adblock Detected!

Please consider allowing adds to support our free services.