Local Privilege Escalation via chroot option

asanyan · July 3, 2025, 7:15pm

Update, and if possible don’t use sudo.

CarefulMouse · July 3, 2025, 7:17pm

What common distros ship with this version of sudo?

Sudo versions affected:

Sudo versions 1.9.14 to 1.9.17 inclusive are affected.

SkewedZeppelin · July 3, 2025, 7:23pm

External Image

GorujoCY · July 3, 2025, 7:52pm

well I guess it’s roundabout time, logging into root and updating

micdan · July 4, 2025, 4:31pm

A critical Linux vulnerability (CVE-2025-32463) in Sudo lets any local unprivileged user gain root via the --chroot (-R) option

Affects default configs on Ubuntu, Fedora & others — no Sudo rules needed
Fix: Update to Sudo 1.9.17p1+ (no workarounds)
CVSS: 9.8 (Critical)
^[1]

knoppix: "A critical Linux vulnerability (CVE-2025-32463) i…" - Mastodon ↩︎

SkewedZeppelin · July 4, 2025, 5:00pm

related: fedora is currently in the middle of a datacenter move and so package updates are currently in freeze: https://www.fedorastatus.org/
it should hopefully complete soon and updates resume

Cyber-Typhoon · July 4, 2025, 5:30pm

Wouldn’t someone using Run0 prevent an attacker to gain root access in this case?

Also, I believe that if you have AIDE and chkrootkit it could detect the aftermath and if not too late take some action.

Topic		Replies	Views
Adopting sudo-rs By Default in Ubuntu 25.10 General article , software	4	478	May 13, 2025
Parallels root privilege escalation patch circumvented in new public 0-day vulnerability General software	0	205	February 21, 2025
Kicksecure now has sudoless user by default General website	10	846	May 29, 2025
Linux Hardening and Sandboxing Tips and Tools General software	2	419	June 30, 2025
Sudo-rs or opendoas? Questions software	4	432	May 23, 2025

Local Privilege Escalation via chroot option

Sudo versions affected:

Related topics