Ubuntu: (Multiple Advisories) (CVE-2023-28486): Sudo vulnerabilities

Ubuntu: (Multiple Advisories) (CVE-2023-28486): Sudo vulnerabilities

Severity

5

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

03/16/2023

Created

05/05/2023

Added

04/17/2023

Modified

01/28/2025

Description

Sudo before 1.9.13 does not escape control characters in log messages.

Solution(s)

• ubuntu-pro-upgrade-sudo
• ubuntu-pro-upgrade-sudo-ldap

References

• https://attackerkb.com/topics/cve-2023-28486
• CVE - 2023-28486
• USN-6005-1
• USN-6005-2