PublicDateAtUSN: 2019-10-14 15:00:00 UTC
Candidate: CVE-2019-14287
CRD: 2019-10-14 15:00:00 UTC
PublicDate: 2019-10-17 18:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14287
 https://ubuntu.com/security/notices/USN-4154-1
 https://www.sudo.ws/alerts/minus_1_uid.html
Description:
 In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer
 account can bypass certain policy blacklists and session PAM modules, and
 can cause incorrect logging, by invoking sudo with a crafted user ID. For
 example, this allows bypass of !root configuration, and USER= logging, for
 a "sudo -u \#$((0xffffffff))" command.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942322
Priority: medium
Discovered-by: Joe Vennix
Assigned-to: mdeslaur
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H [8.8 HIGH]


Patches_sudo:
upstream_sudo: released (1.8.28)
precise/esm_sudo: released (1.8.3p1-1ubuntu3.8)
trusty_sudo: ignored (out of standard support)
trusty/esm_sudo: released (1.8.9p5-1ubuntu1.5+esm2)
xenial_sudo: released (1.8.16-0ubuntu1.8)
esm-infra/xenial_sudo: released (1.8.16-0ubuntu1.8)
bionic_sudo: released (1.8.21p2-3ubuntu1.1)
disco_sudo: released (1.8.27-1ubuntu1.1)
devel_sudo: released (1.8.27-1ubuntu4)