Nixpkgs Security Tracker

Login with GitHub

Suggestions search

Untriaged

Filter by:

With package: sudo-rs

Found 1 matching suggestions

Permalink CVE-2023-7090

created 4 months, 3 weeks ago

Sudo: improper handling of ipa_hostname leads to privilege mismanagement

A flaw was found in sudo in the handling of ipa_hostname, where ipa_hostname from /etc/sssd/sssd.conf was not propagated in sudo. Therefore, it leads to privilege mismanagement vulnerability in applications, where client hosts retain privileges even after retracting them.

Affected products

sudo

==1.8.28

freeipa

Matching in nixpkgs

pkgs.sudo

Command to run commands as root

nixos-unstable -
- nixpkgs-unstable 1.9.17p2

pkgs.qsudo

Graphical sudo utility from Project Trident

nixos-unstable -
- nixpkgs-unstable 2020.03.27

pkgs.freeipa

Identity, Policy and Audit system

nixos-unstable -
- nixpkgs-unstable 4.12.4

pkgs.sudo-rs

Memory safe implementation of sudo and su

nixos-unstable -
- nixpkgs-unstable 0.2.8

pkgs.psudohash

Password list generator for orchestrating brute force attacks and cracking hashes

nixos-unstable -
- nixpkgs-unstable 1.1.0

pkgs.sudo-font

Font for programmers and command line users

nixos-unstable -
- nixpkgs-unstable 3.3

pkgs.darwin.sudo

None

nixos-unstable -
- nixpkgs-unstable

pkgs.gnome-sudoku

Test your logic skills in this number grid puzzle

nixos-unstable -
- nixpkgs-unstable 48.1

pkgs.doas-sudo-shim

Shim for the sudo command that utilizes doas

nixos-unstable -
- nixpkgs-unstable 0.1.2

pkgs.lxqt.lxqt-sudo

GUI frontend for sudo/su

nixos-unstable -
- nixpkgs-unstable 2.2.0

pkgs.yaziPlugins.sudo

Call `sudo` in yazi

nixos-unstable -
- nixpkgs-unstable 0-unstable-2025-02-08

pkgs.kdePackages.ksudoku

KSudoku is a logic-based symbol placement puzzle

nixos-unstable -
- nixpkgs-unstable 25.08.1

pkgs.fishPlugins.plugin-sudope

Fish plugin to quickly put 'sudo' in your command

nixos-unstable -
- nixpkgs-unstable 0-unstable-2021-04-11

Package maintainers

@dani0854 Danil Suetin <suetin085+nixpkgs@protonmail.com>
@Anomalocaridid Duncan Russell <duncan@anomalocaris.xyz>
@s1341 Shmarya Rubenstein <s1341@shmarya.net>
@benley Benjamin Staffin <benley@gmail.com>
@hedning Tor Hedin Brønner <torhedinbronner@gmail.com>
@bobby285271 Bobby Rong <rjl931189261@126.com>
@jtojnar Jan Tojnar <jtojnar@gmail.com>
@dasj19 Daniel Șerbănescu <daniel@serbanescu.dk>
@ttuegel Thomas Tuegel <ttuegel@mailbox.org>
@NickCao Nick Cao <nickcao@nichi.co>
@SuperSandro2000 Sandro Jäckel <sandro.jaeckel@gmail.com>
@ilya-fedin Ilya Fedin <fedin-ilja2010@ya.ru>
@mjm Matt Moriarity <matt@mattmoriarity.com>
@K900 Ilya K. <me@0upti.me>
@LunNova Luna Nova <nixpkgs-maintainer@lunnova.dev>
@romildo José Romildo Malaquias <malaquias@gmail.com>
@exploitoverload Asier Armenteros <nix@exploitoverload.com>
@rhendric Ryan Hendrickson
@nicoonoclaste nicoo <nicoo@debian.org>
@R-VdP Ramses <ramses@well-founded.dev>
@khaneliman Austin Horstman <khaneliman12@gmail.com>

1