Bug 454398 (CVE-2008-3067)
| Summary: | CVE-2008-3067 sudo: does not flush stdin buffer on password timeout | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Tomas Hoger <thoger> |
| Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
| Status: | CLOSED NOTABUG | QA Contact: | |
| Severity: | low | Docs Contact: | |
| Priority: | low | ||
| Version: | unspecified | CC: | kzak, pvrabec |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| URL: | http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3067 | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2010-12-23 21:30:37 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Tomas Hoger
2008-07-08 08:58:44 UTC
According to upstream (Todd C. Miller), the issue was introduced in in version 1.6.9 when the TCSAFLUSH was changed to TCSADRAIN. Issue was fixed upstream in 1.6.9p12. Steps to reproduce: $ sudo some_cmd On password prompt, type your password, but not enter. Wait for passwd_timeout (5min by default). After sudo times-out, entered password appears on the shell command line. Confirmed on Fedora 8, which is the only affected version. Fedora 9 and later is based on fixed upstream version. This issue did not affect the versions of sudo as shipped with Red Hat Enterprise Linux 2.1, 3, 4, or 5, as they are based on old, unaffected version. |