Thursday, June 1, 2017

High-Severity Linux Sudo Flaw Allows Users to Gain Root Privileges [feedly]

High-Severity Linux Sudo Flaw Allows Users to Gain Root Privileges
http://thehackernews.com/2017/05/linux-sudo-root-hack.html

-- via my feedly newsfeed

A high-severity vulnerability has been reported in Linux that could be exploited by a low privilege attacker to gain full root access on an affected system.|
 The vulnerability, identified as CVE-2017-1000367, was discovered by researchers at Qualys Security in Sudo's "get_process_ttyname()" function for Linux that could allow a user with Sudo privileges to run commands as root or elevate