sudoedit (aka sudo -e) in sudo 1.6.8 opens a temporary file with root privileges, which allows local users to read arbitrary files via a symlink attack on the temporary file before quitting sudoedit.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Sudo | Todd_miller | 1.6.8 (including) | 1.6.8 (including) |