sudo vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the sudo package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
H Off-by-one Error	<1.8.19p1-2.1+deb9u3
L Link Following	*
L Link Following	*
H Out-of-bounds Write	<1.8.19p1-2.1+deb9u2
L CVE-2019-19234	*
L CVE-2019-19232	*
H Improper Handling of Exceptional Conditions	<1.8.19p1-2.1+deb9u1
L Improper Input Validation	<1.7.4p4
H Arbitrary Command Injection	<1.8.18p1-1
H Race Condition	<1.8.17p1-1
H Improper Input Validation	<1.8.19p1-2.1
M Race Condition	<1.8.19p1-2
L Information Exposure	<1.8.12-1
H Improper Access Control	<1.8.15-1
H Access Restriction Bypass	<1.8.15-1.1
L Improper Input Validation	<1.8.5p2-1
M Access Restriction Bypass	<1.8.5p2-1+nmu1
M Access Restriction Bypass	<1.8.5p2-1+nmu1
M Access Restriction Bypass	<1.8.5p2-1+nmu1
H Access Restriction Bypass	<1.8.5p2-1+nmu1
H Access Restriction Bypass	<1.8.3p2-1.1
H Use of Externally-Controlled Format String	<1.8.3p2-1
M Access Restriction Bypass	<1.7.4p4-6
H CVE-2010-2956	<1.7.4p4-1
H Access Restriction Bypass	<1.7.2p7-1
H Improper Input Validation	<1.7.2p6-1
M Access Restriction Bypass	<1.7.0-1
H Access Restriction Bypass	<1.7.2p1-1.2
M Access Restriction Bypass	<1.6.9p17-2
M Credentials Management	<1.6.9p12-1
M CVE-2006-0151	<1.6.8p12-1
M CVE-2005-4158	<1.6.8p12-1
M Access Restriction Bypass	<1.6.8p9-3
M CVE-2005-1993	<1.6.8p9-1
L CVE-2005-1119	*
H CVE-2004-1051	<1.6.8p3-1
M CVE-2004-1689	<1.6.8p3-1