Update, and if possible don’t use sudo.
What common distros ship with this version of sudo?
Sudo versions affected:
Sudo versions 1.9.14 to 1.9.17 inclusive are affected.
well I guess it’s roundabout time, logging into root and updating
A critical Linux vulnerability (CVE-2025-32463) in Sudo lets any local unprivileged user gain root via the --chroot (-R) option
Affects default configs on Ubuntu, Fedora & others — no Sudo rules needed
Fix: Update to Sudo 1.9.17p1+ (no workarounds)
CVSS: 9.8 (Critical)
[1]
related: fedora is currently in the middle of a datacenter move and so package updates are currently in freeze: https://www.fedorastatus.org/
it should hopefully complete soon and updates resume
Wouldn’t someone using Run0 prevent an attacker to gain root access in this case?
Also, I believe that if you have AIDE and chkrootkit it could detect the aftermath and if not too late take some action.