Vulnerability Affecting Sudoedit

Published on 19 Jan 2023

Updated on 19 Jan 2023

Sudo has released a security update to address a vulnerability (CVE-2023-22809) which allows a user who can run sudoedit to edit arbitrary files.

Successful exploitation of this vulnerability could allow an unprivileged attacker to edit privileged files.

The vulnerability affects Sudo versions 1.8.0 through 1.9.12p1.

Users and administrators of affected versions are advised to update to the latest version immediately.


More information is available here:

https://www.sudo.ws/security/advisories/sudoedit_any/