| Errata ID | 409 |
|---|---|
| Date | 2016-03-08 |
| Source package | sudo |
| Fixed in version | 1.7.4p4-2.squeeze.6.43.201602292008 |
| Description | This update fixes the following issue: * sudoedit allowed local uses to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers (CVE-2015-5602) |
| Additional notes | |
| CVE ID | CVE-2015-5602 |
| UCS Bug number | #40366 |
