Search for packages
| purl | pkg:deb/debian/sudo@1.9.13p3-1%2Bdeb12u1 |
| Next non-vulnerable version | 1.9.16p2-2 |
| Latest non-vulnerable version | 1.9.16p2-2 |
| Risk | 3.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-k8v6-njw9-aaad
Aliases: CVE-2023-42465 |
Sudo before 1.9.15 might allow row hammer attacks (for authentication bypass or privilege escalation) because application logic sometimes is based on not equaling an error value (instead of equaling a success value), and because the values do not resist flips of a single bit. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-32sj-ee49-aaaq | Sudo before 1.9.13 does not escape control characters in log messages. |
CVE-2023-28486
|
| VCID-kzs9-368t-aaar | Sudo before 1.9.13 does not escape control characters in sudoreplay output. |
CVE-2023-28487
|
| VCID-snd6-5dgv-aaap | Sudo 1.8.0 through 1.9.12, with the crypt() password backend, contains a plugins/sudoers/auth/passwd.c array-out-of-bounds error that can result in a heap-based buffer over-read. This can be triggered by arbitrary local users with access to Sudo by entering a password of seven characters or fewer. The impact could vary depending on the system libraries, compiler, and processor architecture. |
CVE-2022-43995
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T07:13:39.591911+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-21T06:44:05.987822+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | None | 36.1.3 |
| 2025-06-21T06:35:27.206393+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | None | 36.1.3 |
| 2025-06-21T04:26:37.184675+00:00 | Debian Importer | Affected by | VCID-k8v6-njw9-aaad | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-21T02:54:20.689413+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-20T21:05:08.018555+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | None | 36.1.3 |
| 2025-06-20T20:06:03.818108+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-05T14:07:49.888757+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | https://security-tracker.debian.org/tracker/data/json | 36.1.0 |
| 2025-04-05T04:29:53.783184+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-04-05T03:59:46.131951+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | None | 36.0.0 |
| 2025-04-05T03:50:52.740187+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | None | 36.0.0 |
| 2025-04-04T07:15:52.268336+00:00 | Debian Importer | Affected by | VCID-k8v6-njw9-aaad | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-04-04T05:41:20.827529+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-04-03T23:45:11.667042+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | None | 36.0.0 |
| 2025-04-03T23:06:57.396682+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-02-21T13:39:50.911040+00:00 | Debian Importer | Affected by | VCID-k8v6-njw9-aaad | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-21T10:31:22.362491+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | None | 35.1.0 |
| 2025-02-21T10:31:21.009555+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-21T10:31:07.644025+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | None | 35.1.0 |
| 2025-02-21T10:31:06.284519+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-21T04:18:14.991112+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | None | 35.1.0 |
| 2025-02-21T04:18:12.185191+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2024-11-24T02:41:30.623775+00:00 | Debian Importer | Affected by | VCID-k8v6-njw9-aaad | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-11-23T23:58:39.474945+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | None | 35.0.0 |
| 2024-11-23T23:58:38.082106+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-11-23T23:58:24.977308+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | None | 35.0.0 |
| 2024-11-23T23:58:23.602924+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-11-23T18:38:11.113256+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | None | 35.0.0 |
| 2024-11-23T18:38:08.886691+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-10-11T00:17:07.506752+00:00 | Debian Importer | Affected by | VCID-k8v6-njw9-aaad | https://security-tracker.debian.org/tracker/data/json | 34.0.2 |
| 2024-10-10T21:44:44.039310+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | None | 34.0.2 |
| 2024-10-10T21:44:43.322015+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | https://security-tracker.debian.org/tracker/data/json | 34.0.2 |
| 2024-10-10T21:44:32.060740+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | None | 34.0.2 |
| 2024-10-10T21:44:30.675943+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | https://security-tracker.debian.org/tracker/data/json | 34.0.2 |
| 2024-10-10T16:38:54.022801+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | None | 34.0.2 |
| 2024-10-10T16:38:52.563678+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | https://security-tracker.debian.org/tracker/data/json | 34.0.2 |
| 2024-09-20T04:50:50.985249+00:00 | Debian Importer | Affected by | VCID-k8v6-njw9-aaad | https://security-tracker.debian.org/tracker/data/json | 34.0.1 |
| 2024-09-20T02:39:52.530175+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | None | 34.0.1 |
| 2024-09-20T02:39:51.838206+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | https://security-tracker.debian.org/tracker/data/json | 34.0.1 |
| 2024-09-20T02:39:40.825356+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | None | 34.0.1 |
| 2024-09-20T02:39:39.158927+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | https://security-tracker.debian.org/tracker/data/json | 34.0.1 |
| 2024-09-19T22:14:29.484701+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | None | 34.0.1 |
| 2024-09-19T22:14:28.091050+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | https://security-tracker.debian.org/tracker/data/json | 34.0.1 |
| 2024-04-26T04:58:26.289690+00:00 | Debian Importer | Affected by | VCID-k8v6-njw9-aaad | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-26T02:39:18.413788+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | None | 34.0.0rc4 |
| 2024-04-26T02:39:17.622897+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-26T02:39:05.008348+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | None | 34.0.0rc4 |
| 2024-04-26T02:39:03.278177+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-25T21:30:50.627003+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | None | 34.0.0rc4 |
| 2024-04-25T21:30:48.952082+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-01-12T12:41:23.147273+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc2 |
| 2024-01-12T12:40:56.186155+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | None | 34.0.0rc2 |
| 2024-01-12T12:40:50.331375+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc2 |
| 2024-01-12T12:40:44.913266+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | None | 34.0.0rc2 |
| 2024-01-12T07:21:23.640109+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | None | 34.0.0rc2 |
| 2024-01-12T07:21:21.886374+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc2 |
| 2024-01-05T09:41:41.595584+00:00 | Debian Importer | Affected by | VCID-k8v6-njw9-aaad | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc1 |
| 2024-01-05T08:26:03.533291+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc1 |
| 2024-01-05T08:26:02.657515+00:00 | Debian Importer | Fixing | VCID-kzs9-368t-aaar | None | 34.0.0rc1 |
| 2024-01-05T08:25:58.392707+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc1 |
| 2024-01-05T08:25:54.258686+00:00 | Debian Importer | Fixing | VCID-32sj-ee49-aaaq | None | 34.0.0rc1 |
| 2024-01-05T05:40:55.929544+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | None | 34.0.0rc1 |
| 2024-01-05T05:40:55.129152+00:00 | Debian Importer | Fixing | VCID-snd6-5dgv-aaap | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc1 |