Fluid Attacks Database

Description

sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by "/home///file.txt."

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 14	sudo	>=0 <1.8.15-1.1	1.8.15-1.1
debian 13	sudo	>=0 <1.8.15-1.1	1.8.15-1.1
debian 11	sudo	>=0 <1.8.15-1.1	1.8.15-1.1
debian 12	sudo	>=0 <1.8.15-1.1	1.8.15-1.1
rpm rhel7	sudo	-	-
rpm rhel5	sudo	-	-
rpm rhel6	sudo	-	-

Aliases

1. CVE-2015-56022. NVD-2015-56023. OSV-DEBIAN-2015-56024. OSV-2015-56025. SECURITY-TRACKER-CVE-2015-5602

References

1. https://www.exploit-db.com/exploits/377102. https://github.com/t0kx/privesc-CVE-2015-5602

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.