CVE-2013-1776

描述

sudo 1.3.5 through 1.7.10 and 1.8.0 through 1.8.5, when the tty_tickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to connecting to the standard input, output, and error file descriptors of another terminal. NOTE: this is one of three closely-related vulnerabilities that were originally assigned CVE-2013-1776, but they have been SPLIT because of different affected versions.

如何修補 CVE-2013-1776

要修補 CVE-2013-1776,請將受影響套件升級到下列已修補版本。

• Debian/sudo—升級至 1.8.5p2-1+nmu1 或更新版本

CVE-2013-1776 正在被利用嗎?

低 — EPSS 為 0.1%,目前沒有觀察到大規模利用活動。

受影響套件(1)

• from 0, < 1.8.5p2-1+nmu1

參考連結(1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2013-1776