Local Privilege Escalation via chroot option

Update, and if possible don’t use sudo.

1 Like

What common distros ship with this version of sudo?

Sudo versions affected:

Sudo versions 1.9.14 to 1.9.17 inclusive are affected.

External Image

1 Like

well I guess it’s roundabout time, logging into root and updating

A critical Linux vulnerability (CVE-2025-32463) in Sudo lets any local unprivileged user gain root via the --chroot (-R) option

:locked: Affects default configs on Ubuntu, Fedora & others — no Sudo rules needed
:hammer_and_wrench: Fix: Update to Sudo 1.9.17p1+ (no workarounds)
:eyes: CVSS: 9.8 (Critical)
[1]


  1. knoppix: "A critical Linux vulnerability (CVE-2025-32463) i…" - Mastodon ↩︎

related: fedora is currently in the middle of a datacenter move and so package updates are currently in freeze: https://www.fedorastatus.org/
it should hopefully complete soon and updates resume

1 Like

Wouldn’t someone using Run0 prevent an attacker to gain root access in this case?

Also, I believe that if you have AIDE and chkrootkit it could detect the aftermath and if not too late take some action.