Search for packages
| purl | pkg:alpm/archlinux/sudo@1.8.20-1 |
| Next non-vulnerable version | 1.8.20.p1-1 |
| Latest non-vulnerable version | 1.9.5.p2-1 |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-jupb-c4dd-aaap
Aliases: CVE-2017-1000367 |
Todd Miller's sudo version 1.8.20 and earlier is vulnerable to an input validation (embedded spaces) in the get_process_ttyname() function resulting in information disclosure and command execution. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:46:59.039855+00:00 | Arch Linux Importer | Affected by | VCID-jupb-c4dd-aaap | https://security.archlinux.org/AVG-282 | 36.0.0 |
| 2024-12-17T23:22:03.119044+00:00 | Arch Linux Importer | Affected by | VCID-jupb-c4dd-aaap | https://security.archlinux.org/AVG-282 | 35.0.0 |
| 2024-09-18T02:02:20.836035+00:00 | Arch Linux Importer | Affected by | VCID-jupb-c4dd-aaap | https://security.archlinux.org/AVG-282 | 34.0.1 |
| 2024-01-10T10:23:56.445224+00:00 | Arch Linux Importer | Affected by | VCID-jupb-c4dd-aaap | https://security.archlinux.org/AVG-282 | 34.0.0rc2 |
| 2024-01-03T22:28:22.463320+00:00 | Arch Linux Importer | Affected by | VCID-jupb-c4dd-aaap | https://security.archlinux.org/AVG-282 | 34.0.0rc1 |