CVE-2009-0034 (retired)

Priority
Description
parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret a
system group (aka %group) in the sudoers file during authorization
decisions for a user who belongs to that group, which allows local users to
leverage an applicable sudoers file and gain root privileges via a sudo
command.
Assigned-to
kees
Package
Source: sudo (LP Ubuntu Debian)
Upstream:needs-triage
More Information

Updated: 2019-03-26 11:46:50 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)