https://bugzilla.redhat.com/show_bug.cgi?id=2139911 Login [x] * Log in using an account from: Fedora Account System Red Hat Associate Red Hat Customer Or login using a Red Hat Bugzilla account [ ] [ ] [Log in] * Forgot Password Login: [ ] [Reset Password] Hide Forgot * Create an Account Red Hat Bugzilla - Bug 2139911 * [ ] [Search] [?] * * New * + Simple Search + Advanced Search * My Links + Browse + Requests + Reports o Current State # Search # Tabular reports # Graphical reports # Duplicates o Other Reports # User Changes o Plotly Reports # Bug Status # Bug Severity # Non-Defaults + | Product Dashboard * Help + Page Help! + Bug Writing Guidelines + What's new + Browser Support Policy + 5.0.4.rh80 Release notes + FAQ + Guides index + User guide + Web Services + Contact + Legal This site requires JavaScript to be enabled to function correctly, please enable it. * * * * * * Bug 2139911 (CVE-2022-43995) - CVE-2022-43995 sudo: heap-based overflow with very small passwords Summary: CVE-2022-43995 sudo: heap-based overflow with very small passwords Keywords: [*]Security Status: CLOSED NOTABUG Alias: CVE-2022-43995 Product: Security Reported: 2022-11-03 19:33 UTC Response by Marco Benatto Classification: Other Modified: 2022-11-04 20:45 UTC Component: vulnerability (History) 3 users (show) Sub Component: [---] Version: unspecified CC List: Hardware: All [ ]bishop OS: Linux [ ]dapospis Priority: high [ ]rsroka Severity: high Fixed In Target --- Version: Milestone: Doc Type: If docs needed, set a Red Hat value Assignee: Product Doc Text: Security Clone Of: QA Contact: Environment: Docs Contact: Last Closed: 2022-11-04 20:45:25 URL: UTC Whiteboard: Depends On: 2140224 Blocks: 2139600 TreeView+ depends on / blocked --------------------------------------------------------------------- Attachments (Terms of Use) Add an attachment (proposed patch, testcase, etc.) Description Marco Benatto 2022-11-03 19:33:12 UTC Sudo 1.8.0 through 1.9.12, with the crypt() password backend, contains a plugins/sudoers/auth/passwd.c array-out-of-bounds error that can result in a heap-based buffer over-read. This can be triggered by arbitrary local users with access to Sudo by entering a password of seven characters or fewer. The impact could vary depending on the compiler and processor architecture. Comment 4 Marco Benatto 2022-11-04 20:44:10 UTC Created sudo tracking bugs for this issue: Affects: fedora-all [bug 2140224] --------------------------------------------------------------------- Note You need to log in before you can comment on or make changes to this bug. --------------------------------------------------------------------- * * * * * * * + [ ] [Search] [?]