USN-8092-1

Details

It was discovered that Sudo incorrectly checked return codes when dropping privileges to run the mailer. A local attacker could possibly use this issue to escalate privileges.

Affected Packages

sudo

Ubuntu 22.04 LTS

Fixed in:

1.9.9-1ubuntu2.6

sudo

Ubuntu 24.04 LTS

Fixed in:

1.9.15p5-3ubuntu5.24.04.2

sudo

Ubuntu 25.10

Fixed in:

1.9.17p2-1ubuntu1.1

References

REPORT

https://launchpad.net/bugs/2143042

ADVISORY

https://ubuntu.com/security/notices/USN-8092-1