CLSA-2023-1688678678

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2023-1688678678.json
JSON Data
https://api.test.osv.dev/v1/vulns/CLSA-2023-1688678678
Upstream
Published
2023-07-06T21:24:43Z
Modified
2026-06-04T09:45:55.852259493Z
Summary
Fix CVE(s): CVE-2021-23240
Details
  • SECURITY UPDATE: privilege escalation via symlinks
    • debian/patches/CVE-2021-23240.patch: fix opportunity for local unprivileged user to gain file ownership via symlinks.
    • CVE-2021-23240
References

Affected packages

TuxCare:Ubuntu:18.04 / sudo

Package

Name
sudo
Purl
pkg:deb/tuxcare/sudo?distro=ubuntu-18.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.21p2-3ubuntu1.6+tuxcare.els1

Database specific

source
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2023-1688678678.json"

TuxCare:Ubuntu:18.04 / sudo-ldap

Package

Name
sudo-ldap
Purl
pkg:deb/tuxcare/sudo-ldap?distro=ubuntu-18.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.21p2-3ubuntu1.6+tuxcare.els1

Database specific

source
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2023-1688678678.json"