---

Critical Sudo Vulnerability Now Patched in CentOS 7 and RHEL 7

A critical vulnerability (CVE-2019-18634) was discovered earlier this month by Joe Vennix in the Sudo package, a program that lets users run programs in a UNIX system with the security privileges of another user. The flaw could allow an unprivileged user to obtain full root privileges. As of February 18th, the Red Hat Product Security team released patches for all supported Red Hat Enterprise Linux (RHEL) 7 releases to address the security vulnerability in the Sudo package. Of course, these patches also landed in the stable repositories of the CentOS Linux 7 operating system, which is based on RHEL 7.