Wind River Support Network

HomeDefectsLIN1023-2592
Acknowledged

LIN1023-2592 : Security Advisory - sudo - CVE-2023-42465

Created: Nov 7, 2023    Updated: Jan 6, 2026
Resolved Date: Dec 5, 2023
Found In Version: 10.23.30.1
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Userspace

Description

The sudoers plugin has been modified to make it more resilient to ROWHAMMER attacks on authentication and policy matching.

Potential fix

https://github.com/sudo-project/sudo/commit/7873f8334c8d31031f8cfa83bd97ac6029309e4f

CREATE(Triage):(User=admin) CVE-2023-42465 (https://nvd.nist.gov/vuln/detail/CVE-2023-42465)
  • Linkedin
  • Facebook
  • Twitter
  • Youtube