CVE-2016-7091 Oracle Enterprise Linux Security Update for sudo (ELSA-2016-2593)

漏洞类别:OEL

漏洞等级:

漏洞信息

Oracle Enterprise Linux has released security update for sudo to fix the vulnerabilities.

Affected Products:
Oracle Linux 7

漏洞危害

A local user with sudo access to a restricted program that uses readline could use this flaw to read content from specially formatted files with elevated privileges provided by sudo

解决方案

To resolve this issue, upgrade to the latest packages which contain a patch. Refer to Oracle Enterprise Linux advisoryOracle Linux 7 for updates and patch information.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

ELSA-2016-2593: Oracle Linux 7

0day

发表评论