OESA-2025-1736

See a problem?
Please try reporting it to the source first.
Source
https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1736
Import Source
https://repo.openeuler.org/security/data/osv/OESA-2025-1736.json
JSON Data
https://api.test.osv.dev/v1/vulns/OESA-2025-1736
Upstream
Published
2025-07-04T14:43:46Z
Modified
2025-08-12T05:50:33.363799Z
Summary
sudo security update
Details

Sudo is a program designed to allow a sysadmin to give limited root privileges to users and log root activity. The basic philosophy is to give as few privileges as possible but still allow people to get their work done.

Security Fix(es):

Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.(CVE-2025-32462)

A vulnerability has been found in Todd Miller sudo 1.9.14/1.9.15/1.9.16/1.9.17 (Operating System Utility Software) and classified as critical.The manipulation of the argument -R/--chroot with an unknown input leads to a unknown weakness. The CWE definition for the vulnerability is CWE-284. The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.As an impact it is known to affect confidentiality, integrity, and availability.Applying the patch 1.9.17p1 is able to eliminate this problem.(CVE-2025-32463)

Database specific 
{
    "severity": "Critical"
}
References

Affected packages

openEuler:24.03-LTS-SP1 / sudo

Package

Name
sudo
Purl
pkg:rpm/openEuler/sudo&distro=openEuler-24.03-LTS-SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.9.15p5-4.oe2403sp1

Ecosystem specific 

{
    "noarch": [
        "sudo-help-1.9.15p5-4.oe2403sp1.noarch.rpm"
    ],
    "src": [
        "sudo-1.9.15p5-4.oe2403sp1.src.rpm"
    ],
    "x86_64": [
        "sudo-1.9.15p5-4.oe2403sp1.x86_64.rpm",
        "sudo-debuginfo-1.9.15p5-4.oe2403sp1.x86_64.rpm",
        "sudo-debugsource-1.9.15p5-4.oe2403sp1.x86_64.rpm",
        "sudo-devel-1.9.15p5-4.oe2403sp1.x86_64.rpm"
    ],
    "aarch64": [
        "sudo-1.9.15p5-4.oe2403sp1.aarch64.rpm",
        "sudo-debuginfo-1.9.15p5-4.oe2403sp1.aarch64.rpm",
        "sudo-debugsource-1.9.15p5-4.oe2403sp1.aarch64.rpm",
        "sudo-devel-1.9.15p5-4.oe2403sp1.aarch64.rpm"
    ]
}