[CLSA-2023:1675985375] Fix CVE(s): CVE-2023-22809

Type:

security

Severity:

Important

Release date:

2023-02-09 23:29:35 UTC

Description:

   * SECURITY UPDATE: edit a file not permitted by the security policy
     - debian/patches/CVE-2023-22809.patch: do not permit editor
       arguments to include "--"
     - CVE-2023-22809

Updated packages:

sudo_1.8.16-0ubuntu1.11+tuxcare.els1_amd64.deb
sha:00cda837bec5a2024f19d1473b6aec117aa51039
sudo-ldap_1.8.16-0ubuntu1.11+tuxcare.els1_amd64.deb
sha:a179ac9aa6ae321fc4a68ee610dcc22f27a73f1d

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.