Red Hat Product Errata RHSA-2026:12310 - Security Advisory Issued: 2026-04-30 Updated: 2026-04-30 RHSA-2026:12310 - Security Advisory Overview Updated Packages Synopsis Important: sudo security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for sudo is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fix(es): sudo: Sudo: Privilege escalation due to failure in privilege drop calls (CVE-2026-35535) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Fixes BZ - 2454714 - CVE-2026-35535 sudo: Sudo: Privilege escalation due to failure in privilege drop calls CVEs CVE-2026-35535 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM sudo-1.9.5p2-15.el9_7.src.rpm SHA-256: f226e237e15a7870230100252bff2e34a515f00286050cc1efd405172fefdb3f x86_64 sudo-1.9.5p2-15.el9_7.x86_64.rpm SHA-256: ec1c96c5ec8086c012f947d9d5115864db326ff9102bd46cc9d3be65f879a209 sudo-debuginfo-1.9.5p2-15.el9_7.x86_64.rpm SHA-256: 1482637fa3b85204f179ff36bebcdea07f2e930f9e5571587452e8ca45e78273 sudo-debuginfo-1.9.5p2-15.el9_7.x86_64.rpm SHA-256: 1482637fa3b85204f179ff36bebcdea07f2e930f9e5571587452e8ca45e78273 sudo-debugsource-1.9.5p2-15.el9_7.x86_64.rpm SHA-256: 41585c8aec9069853a984e337bb7707bfccdc5bc2d1ced6902c07a68b4ecc26d sudo-debugsource-1.9.5p2-15.el9_7.x86_64.rpm SHA-256: 41585c8aec9069853a984e337bb7707bfccdc5bc2d1ced6902c07a68b4ecc26d sudo-python-plugin-1.9.5p2-15.el9_7.x86_64.rpm SHA-256: bb1000d48e078d27d2942714be3a1f30ea724ef9ef54f449de39217485fc54a8 sudo-python-plugin-debuginfo-1.9.5p2-15.el9_7.x86_64.rpm SHA-256: 4062c1cd3a714d4a5486adf63fa2d1f77aefaed9b29e6ed4f7800af04a805887 sudo-python-plugin-debuginfo-1.9.5p2-15.el9_7.x86_64.rpm SHA-256: 4062c1cd3a714d4a5486adf63fa2d1f77aefaed9b29e6ed4f7800af04a805887 Red Hat Enterprise Linux for IBM z Systems 9 SRPM sudo-1.9.5p2-15.el9_7.src.rpm SHA-256: f226e237e15a7870230100252bff2e34a515f00286050cc1efd405172fefdb3f s390x sudo-1.9.5p2-15.el9_7.s390x.rpm SHA-256: deebe9e847f1e4b6d5eed24b630490d46b891fcf52103ad81e89ec84d55e8941 sudo-debuginfo-1.9.5p2-15.el9_7.s390x.rpm SHA-256: 802ae650c9f21209e25401263bd767fd5ee8fb07609c6230e7f2743082f8cd5d sudo-debuginfo-1.9.5p2-15.el9_7.s390x.rpm SHA-256: 802ae650c9f21209e25401263bd767fd5ee8fb07609c6230e7f2743082f8cd5d sudo-debugsource-1.9.5p2-15.el9_7.s390x.rpm SHA-256: 025aa047f56ab462a0838255b9005dbc4a390474a41f535ff6fd2d89f16a62e8 sudo-debugsource-1.9.5p2-15.el9_7.s390x.rpm SHA-256: 025aa047f56ab462a0838255b9005dbc4a390474a41f535ff6fd2d89f16a62e8 sudo-python-plugin-1.9.5p2-15.el9_7.s390x.rpm SHA-256: 4c718069a286fc33dd046169219256e27e211c9b614127da9b7e4fd2a11faa3c sudo-python-plugin-debuginfo-1.9.5p2-15.el9_7.s390x.rpm SHA-256: 069b47bf90145e157b3d77dea0f6640d18649f528a49f53d7a4cbb8381a923a1 sudo-python-plugin-debuginfo-1.9.5p2-15.el9_7.s390x.rpm SHA-256: 069b47bf90145e157b3d77dea0f6640d18649f528a49f53d7a4cbb8381a923a1 Red Hat Enterprise Linux for Power, little endian 9 SRPM sudo-1.9.5p2-15.el9_7.src.rpm SHA-256: f226e237e15a7870230100252bff2e34a515f00286050cc1efd405172fefdb3f ppc64le sudo-1.9.5p2-15.el9_7.ppc64le.rpm SHA-256: 2b4bb40cb8094118310f18adb766bb22ce999923b9cd9748e1d315e2ec8a6dab sudo-debuginfo-1.9.5p2-15.el9_7.ppc64le.rpm SHA-256: 9336ebbd43d4439a019829bda763a8510d25badef004877ba9684e8f3d78bb65 sudo-debuginfo-1.9.5p2-15.el9_7.ppc64le.rpm SHA-256: 9336ebbd43d4439a019829bda763a8510d25badef004877ba9684e8f3d78bb65 sudo-debugsource-1.9.5p2-15.el9_7.ppc64le.rpm SHA-256: e88c05809433fcc9f16b81a18a8a32e9614941eb1244c391680d05ff4a951d83 sudo-debugsource-1.9.5p2-15.el9_7.ppc64le.rpm SHA-256: e88c05809433fcc9f16b81a18a8a32e9614941eb1244c391680d05ff4a951d83 sudo-python-plugin-1.9.5p2-15.el9_7.ppc64le.rpm SHA-256: 60e311a3c79e3a8f067d395a53ccf8a8f388ecd828a60e0fc9955088b06afe36 sudo-python-plugin-debuginfo-1.9.5p2-15.el9_7.ppc64le.rpm SHA-256: 4722ce7314bb893ff5f5c11f123ee3b157cb549fa1ea2226ed98c24f6e17adc5 sudo-python-plugin-debuginfo-1.9.5p2-15.el9_7.ppc64le.rpm SHA-256: 4722ce7314bb893ff5f5c11f123ee3b157cb549fa1ea2226ed98c24f6e17adc5 Red Hat Enterprise Linux for ARM 64 9 SRPM sudo-1.9.5p2-15.el9_7.src.rpm SHA-256: f226e237e15a7870230100252bff2e34a515f00286050cc1efd405172fefdb3f aarch64 sudo-1.9.5p2-15.el9_7.aarch64.rpm SHA-256: e0b3d82d9d21eceb51314fb87a028335fc4c0d7b2d87b8b6d8e7367ff2b3c373 sudo-debuginfo-1.9.5p2-15.el9_7.aarch64.rpm SHA-256: ec609b72aec442caf52ab1be44789858f59eb1ac17e03cbad2afaaef9b39e6b1 sudo-debuginfo-1.9.5p2-15.el9_7.aarch64.rpm SHA-256: ec609b72aec442caf52ab1be44789858f59eb1ac17e03cbad2afaaef9b39e6b1 sudo-debugsource-1.9.5p2-15.el9_7.aarch64.rpm SHA-256: f839f925e057107ecc014eb73001f56511641657fcb9b10e30045de4b7740b2e sudo-debugsource-1.9.5p2-15.el9_7.aarch64.rpm SHA-256: f839f925e057107ecc014eb73001f56511641657fcb9b10e30045de4b7740b2e sudo-python-plugin-1.9.5p2-15.el9_7.aarch64.rpm SHA-256: 6d1e54fd9b3806e84a14cd34b4306a6e3c2282d55a2bfe7c4fdfd2f1be199f2a sudo-python-plugin-debuginfo-1.9.5p2-15.el9_7.aarch64.rpm SHA-256: 3c8f4d25879f87ba81d894a408769e71d2eaac1b38f594e03f4a6e8f6dbfe6cd sudo-python-plugin-debuginfo-1.9.5p2-15.el9_7.aarch64.rpm SHA-256: 3c8f4d25879f87ba81d894a408769e71d2eaac1b38f594e03f4a6e8f6dbfe6cd The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .