Linux security alert: Bug in sudo's get_process_ttyname() [ CVE-2017-1000367 ]

May 31, 2017, 12:00 (0 Talkback[s])
(Other stories by Anonymous)

There is a serious vulnerability in sudo command that grants root access to anyone with a shell account. It works on SELinux enabled systems such as CentOS/RHEL and others too. A local user with privileges to execute commands via sudo could use this flaw to escalate their privileges to root. Patch your system as soon as possible.