sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by "/home///file.txt."
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_name": "sudo", "binary_version": "1.8.16-0ubuntu1" }, { "binary_name": "sudo-dbgsym", "binary_version": "1.8.16-0ubuntu1" }, { "binary_name": "sudo-ldap", "binary_version": "1.8.16-0ubuntu1" }, { "binary_name": "sudo-ldap-dbgsym", "binary_version": "1.8.16-0ubuntu1" } ] }