sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by "/home///file.txt."
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.8.16-0ubuntu1", "binary_name": "sudo" }, { "binary_version": "1.8.16-0ubuntu1", "binary_name": "sudo-dbgsym" }, { "binary_version": "1.8.16-0ubuntu1", "binary_name": "sudo-ldap" }, { "binary_version": "1.8.16-0ubuntu1", "binary_name": "sudo-ldap-dbgsym" } ] }