RHSA-2023:0280: Important: sudo security update
The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root.Security Fix(es): sudo: arbitrary file write with privileges of the RunAs user (CVE-2023-22809) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Software
Remediation
Event History
Frequently Asked Questions
What is the severity of RHSA-2023:0280?
The severity of RHSA-2023:0280 is classified as important.
How do I fix RHSA-2023:0280?
To fix RHSA-2023:0280, upgrade the sudo package to version 1.8.25p1-8.el8_1.3 or later.
Which systems are affected by RHSA-2023:0280?
RHSA-2023:0280 affects Red Hat systems with the sudo package prior to version 1.8.25p1-8.el8_1.3.
What type of vulnerability is addressed by RHSA-2023:0280?
RHSA-2023:0280 addresses an arbitrary file access vulnerability in the sudo utility.
Is there a specific package requirement for RHSA-2023:0280?
Yes, RHSA-2023:0280 specifically applies to the sudo and related packages on Red Hat Enterprise Linux.