SUSE-SU-2022:4240-1

This update for sudo fixes the following issues:

Security fixes:

CVE-2022-43995: Fixed a potential heap-based buffer over-read when entering a password of seven characters or fewer and using the crypt() password backend (bsc#1204986).

Other:

Make sure SIGCHLD is not ignored when sudo is executed; fixes race condition (bsc#1203201).
Change sudo-ldap schema from ASCII to UTF8 (bsc#1197998).

SUSE:Linux Enterprise Server 12 SP3-BCLsudo

Fixed in:

1.8.20p2-3.33.1

SUSE:Linux Enterprise Server 12 SP4-LTSSsudo

Fixed in:

1.8.20p2-3.33.1

SUSE:Linux Enterprise Server for SAP Applications 12 SP4sudo

Fixed in:

1.8.20p2-3.33.1

SUSE:OpenStack Cloud 9sudo

Fixed in:

1.8.20p2-3.33.1

SUSE:OpenStack Cloud Crowbar 9sudo

Fixed in:

1.8.20p2-3.33.1