Descriptionsudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows limited local users to gain privileges via a Python script, a variant of CVE-2005-4158.
Overall state of this security issue: Resolved
This issue is currently rated as having important severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SR:2006:002, published Fri, 20 Jan 2006 15:00:00 +0000
SUSE Timeline for this CVECVE page created: Fri Jun 28 01:21:19 2013
CVE page last modified: Fri Oct 7 12:45:32 2022