CVE-2011-0008
First published: Tue Jan 11 2011(Updated: )
A certain Fedora patch for parse.c in sudo before 1.7.4p5-1.fc14 on Fedora 14 does not properly interpret a system group (aka %group) in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command. NOTE: this vulnerability exists because of a CVE-2009-0034 regression.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sudo | <=1.7.4p5 | |
| Sudo | =1.3.1 | |
| Sudo | =1.5 | |
| Sudo | =1.5.2 | |
| Sudo | =1.5.3 | |
| Sudo | =1.5.6 | |
| Sudo | =1.5.7 | |
| Sudo | =1.5.8 | |
| Sudo | =1.5.9 | |
| Sudo | =1.6 | |
| Sudo | =1.6.1 | |
| Sudo | =1.6.2 | |
| Sudo | =1.6.2p1 | |
| Sudo | =1.6.2p2 | |
| Sudo | =1.6.2p3 | |
| Sudo | =1.6.3 | |
| Sudo | =1.6.3_p1 | |
| Sudo | =1.6.3_p2 | |
| Sudo | =1.6.3_p3 | |
| Sudo | =1.6.3_p4 | |
| Sudo | =1.6.3_p5 | |
| Sudo | =1.6.3_p6 | |
| Sudo | =1.6.3_p7 | |
| Sudo | =1.6.3p1 | |
| Sudo | =1.6.3p2 | |
| Sudo | =1.6.3p3 | |
| Sudo | =1.6.3p4 | |
| Sudo | =1.6.3p5 | |
| Sudo | =1.6.3p6 | |
| Sudo | =1.6.3p7 | |
| Sudo | =1.6.4 | |
| Sudo | =1.6.4_p1 | |
| Sudo | =1.6.4_p2 | |
| Sudo | =1.6.4p1 | |
| Sudo | =1.6.4p2 | |
| Sudo | =1.6.5 | |
| Sudo | =1.6.5_p1 | |
| Sudo | =1.6.5_p2 | |
| Sudo | =1.6.5p1 | |
| Sudo | =1.6.5p2 | |
| Sudo | =1.6.6 | |
| Sudo | =1.6.7 | |
| Sudo | =1.6.7_p5 | |
| Sudo | =1.6.7p1 | |
| Sudo | =1.6.7p2 | |
| Sudo | =1.6.7p3 | |
| Sudo | =1.6.7p4 | |
| Sudo | =1.6.7p5 | |
| Sudo | =1.6.8 | |
| Sudo | =1.6.8_p1 | |
| Sudo | =1.6.8_p2 | |
| Sudo | =1.6.8_p5 | |
| Sudo | =1.6.8_p7 | |
| Sudo | =1.6.8_p8 | |
| Sudo | =1.6.8_p9 | |
| Sudo | =1.6.8_p12 | |
| Sudo | =1.6.8p1 | |
| Sudo | =1.6.8p2 | |
| Sudo | =1.6.8p3 | |
| Sudo | =1.6.8p4 | |
| Sudo | =1.6.8p5 | |
| Sudo | =1.6.8p6 | |
| Sudo | =1.6.8p7 | |
| Sudo | =1.6.8p8 | |
| Sudo | =1.6.8p9 | |
| Sudo | =1.6.8p10 | |
| Sudo | =1.6.8p11 | |
| Sudo | =1.6.8p12 | |
| Sudo | =1.6.9 | |
| Sudo | =1.6.9_p17 | |
| Sudo | =1.6.9_p18 | |
| Sudo | =1.6.9_p19 | |
| Sudo | =1.6.9_p20 | |
| Sudo | =1.6.9_p21 | |
| Sudo | =1.6.9_p22 | |
| Sudo | =1.6.9p1 | |
| Sudo | =1.6.9p2 | |
| Sudo | =1.6.9p3 | |
| Sudo | =1.6.9p4 | |
| Sudo | =1.6.9p5 | |
| Sudo | =1.6.9p6 | |
| Sudo | =1.6.9p7 | |
| Sudo | =1.6.9p8 | |
| Sudo | =1.6.9p9 | |
| Sudo | =1.6.9p10 | |
| Sudo | =1.6.9p11 | |
| Sudo | =1.6.9p12 | |
| Sudo | =1.6.9p13 | |
| Sudo | =1.6.9p14 | |
| Sudo | =1.6.9p15 | |
| Sudo | =1.6.9p16 | |
| Sudo | =1.6.9p17 | |
| Sudo | =1.6.9p18 | |
| Sudo | =1.6.9p19 | |
| Sudo | =1.6.9p20 | |
| Sudo | =1.6.9p21 | |
| Sudo | =1.6.9p22 | |
| Sudo | =1.6.9p23 | |
| Sudo | =1.7.0 | |
| Sudo | =1.7.1 | |
| Sudo | =1.7.2 | |
| Sudo | =1.7.2p1 | |
| Sudo | =1.7.2p2 | |
| Sudo | =1.7.2p3 | |
| Sudo | =1.7.2p4 | |
| Sudo | =1.7.2p5 | |
| Sudo | =1.7.2p6 | |
| Sudo | =1.7.2p7 | |
| Sudo | =1.7.3b1 | |
| Sudo | =1.7.4 | |
| Sudo | =1.7.4p1 | |
| Sudo | =1.7.4p2 | |
| Sudo | =1.7.4p3 | |
| Sudo | =1.7.4p4 | |
| Fedora | =14 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi?id=668843
- http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053263.html
- http://secunia.com/advisories/42968
- http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053341.html
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:018
- http://www.vupen.com/english/advisories/2011/0199
- http://www.vupen.com/english/advisories/2011/0195
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64965
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=235915
- https://access.redhat.com/security/cve/CVE-2009-0034
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=472949&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=472949&action=edit
Frequently Asked Questions
What is the severity of CVE-2011-0008?
CVE-2011-0008 is considered a critical vulnerability that allows local users to gain unauthorized root access.
How do I fix CVE-2011-0008?
To mitigate CVE-2011-0008, it is recommended to upgrade to a patched version of sudo such as 1.7.4p5 or later.
What systems are affected by CVE-2011-0008?
CVE-2011-0008 affects various versions of the sudo utility, particularly those prior to 1.7.4p5 on Fedora 14.
Can CVE-2011-0008 be exploited remotely?
No, CVE-2011-0008 requires local user access to exploit the vulnerability.
What implications does CVE-2011-0008 have for system security?
CVE-2011-0008 poses a significant risk as it allows local users to elevate their privileges, leading to potential system compromises.
- collector/nvd-historical
- agent/references
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2011-0008
- agent/remedy
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- agent/author
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- vendor/todd miller
- canonical/sudo
- version/sudo/1.7.4p5
- version/sudo/1.3.1
- version/sudo/1.5
- version/sudo/1.5.2
- version/sudo/1.5.3
- version/sudo/1.5.6
- version/sudo/1.5.7
- version/sudo/1.5.8
- version/sudo/1.5.9
- version/sudo/1.6
- version/sudo/1.6.1
- version/sudo/1.6.2
- version/sudo/1.6.2p1
- version/sudo/1.6.2p2
- version/sudo/1.6.2p3
- version/sudo/1.6.3
- version/sudo/1.6.3_p1
- version/sudo/1.6.3_p2
- version/sudo/1.6.3_p3
- version/sudo/1.6.3_p4
- version/sudo/1.6.3_p5
- version/sudo/1.6.3_p6
- version/sudo/1.6.3_p7
- version/sudo/1.6.3p1
- version/sudo/1.6.3p2
- version/sudo/1.6.3p3
- version/sudo/1.6.3p4
- version/sudo/1.6.3p5
- version/sudo/1.6.3p6
- version/sudo/1.6.3p7
- version/sudo/1.6.4
- version/sudo/1.6.4_p1
- version/sudo/1.6.4_p2
- version/sudo/1.6.4p1
- version/sudo/1.6.4p2
- version/sudo/1.6.5
- version/sudo/1.6.5_p1
- version/sudo/1.6.5_p2
- version/sudo/1.6.5p1
- version/sudo/1.6.5p2
- version/sudo/1.6.6
- version/sudo/1.6.7
- version/sudo/1.6.7_p5
- version/sudo/1.6.7p1
- version/sudo/1.6.7p2
- version/sudo/1.6.7p3
- version/sudo/1.6.7p4
- version/sudo/1.6.7p5
- version/sudo/1.6.8
- version/sudo/1.6.8_p1
- version/sudo/1.6.8_p2
- version/sudo/1.6.8_p5
- version/sudo/1.6.8_p7
- version/sudo/1.6.8_p8
- version/sudo/1.6.8_p9
- version/sudo/1.6.8_p12
- version/sudo/1.6.8p1
- version/sudo/1.6.8p2
- version/sudo/1.6.8p3
- version/sudo/1.6.8p4
- version/sudo/1.6.8p5
- version/sudo/1.6.8p6
- version/sudo/1.6.8p7
- version/sudo/1.6.8p8
- version/sudo/1.6.8p9
- version/sudo/1.6.8p10
- version/sudo/1.6.8p11
- version/sudo/1.6.8p12
- version/sudo/1.6.9
- version/sudo/1.6.9_p17
- version/sudo/1.6.9_p18
- version/sudo/1.6.9_p19
- version/sudo/1.6.9_p20
- version/sudo/1.6.9_p21
- version/sudo/1.6.9_p22
- version/sudo/1.6.9p1
- version/sudo/1.6.9p2
- version/sudo/1.6.9p3
- version/sudo/1.6.9p4
- version/sudo/1.6.9p5
- version/sudo/1.6.9p6
- version/sudo/1.6.9p7
- version/sudo/1.6.9p8
- version/sudo/1.6.9p9
- version/sudo/1.6.9p10
- version/sudo/1.6.9p11
- version/sudo/1.6.9p12
- version/sudo/1.6.9p13
- version/sudo/1.6.9p14
- version/sudo/1.6.9p15
- version/sudo/1.6.9p16
- version/sudo/1.6.9p17
- version/sudo/1.6.9p18
- version/sudo/1.6.9p19
- version/sudo/1.6.9p20
- version/sudo/1.6.9p21
- version/sudo/1.6.9p22
- version/sudo/1.6.9p23
- version/sudo/1.7.0
- version/sudo/1.7.1
- version/sudo/1.7.2
- version/sudo/1.7.2p1
- version/sudo/1.7.2p2
- version/sudo/1.7.2p3
- version/sudo/1.7.2p4
- version/sudo/1.7.2p5
- version/sudo/1.7.2p6
- version/sudo/1.7.2p7
- version/sudo/1.7.3b1
- version/sudo/1.7.4
- version/sudo/1.7.4p1
- version/sudo/1.7.4p2
- version/sudo/1.7.4p3
- version/sudo/1.7.4p4
- vendor/redhat
- canonical/fedora
- version/fedora/14