In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged sudo process. (pwfeedback is a default setting in Linux Mint and elementary OS; however, it is NOT the default for upstream and many other packages, and would exist only if enabled by an administrator.) The attacker needs to deliver a long string to the stdin of getln() in tgetpass.c.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-01-29T17:23:26
Updated: 2020-03-16T23:06:02
Reserved: 2019-10-30T00:00:00
Link: CVE-2019-18634
JSON object: View
NVD Information
Status : Modified
Published: 2020-01-29T18:15:12.247
Modified: 2023-11-07T03:06:53.197
Link: CVE-2019-18634
JSON object: View
Redhat Information
No data.
CWE