Descriptionsudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows limited local users to gain privileges via a Python script, a variant of CVE-2005-4158.
Overall state of this security issue: Ignore
This issue is currently rated as having important severity.
|National Vulnerability Database|
- SUSE-SR:2006:002, published Fri, 20 Jan 2006 15:00:00 +0000