PublicDateAtUSN: 2013-02-27
Candidate: CVE-2013-1775
PublicDate: 2013-03-05 21:38:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1775
 http://www.openwall.com/lists/oss-security/2013/02/27/22
 https://ubuntu.com/security/notices/USN-1754-1
Description:
 sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local
 users or physically proximate attackers to bypass intended time
 restrictions and retain privileges without re-authenticating by setting the
 system clock and sudo user timestamp to the epoch.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: high
Discovered-by: Marco Schoepl
Assigned-to: mdeslaur
CVSS: 

Patches_sudo:
 upstream: http://www.sudo.ws/repos/sudo/rev/ddf399e3e306 (1.7)
 upstream: http://www.sudo.ws/repos/sudo/rev/ebd6cc75020f (1.8)
upstream_sudo: released (1.7.10p7, 1.8.6p7)
hardy_sudo: released (1.6.9p10-1ubuntu3.10)
lucid_sudo: released (1.7.2p1-1ubuntu5.6)
oneiric_sudo: released (1.7.4p6-1ubuntu2.2)
precise_sudo: released (1.8.3p1-1ubuntu3.4)
quantal_sudo: released (1.8.5p2-1ubuntu1.1)
devel_sudo: released (1.8.6p3-0ubuntu3)