Red Hat Product Errata RHSA-2026:13888 - Security Advisory Issued: 2026-05-06 Updated: 2026-05-06 RHSA-2026:13888 - Security Advisory Overview Updated Packages Synopsis Important: sudo security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for sudo is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fix(es): sudo: Sudo: Privilege escalation due to failure in privilege drop calls (CVE-2026-35535) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 s390x Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0 x86_64 Fixes BZ - 2454714 - CVE-2026-35535 sudo: Sudo: Privilege escalation due to failure in privilege drop calls CVEs CVE-2026-35535 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 SRPM sudo-1.9.15-8.p5.el10_0.3.src.rpm SHA-256: a43017c3450926cd3f698cd7c7e257f30e8f935401c74aae612ce6ef62d05eca x86_64 sudo-1.9.15-8.p5.el10_0.3.x86_64.rpm SHA-256: 662e921bb271ff997303e45b6446dc4c3cbd5562147a1297d76527e696352b63 sudo-debuginfo-1.9.15-8.p5.el10_0.3.x86_64.rpm SHA-256: 828d798c20a66a33dfefa377209e965c9e90b0317e87f69f593d9469a5d9e6c8 sudo-debuginfo-1.9.15-8.p5.el10_0.3.x86_64.rpm SHA-256: 828d798c20a66a33dfefa377209e965c9e90b0317e87f69f593d9469a5d9e6c8 sudo-debugsource-1.9.15-8.p5.el10_0.3.x86_64.rpm SHA-256: 249fd0d05090b72c3205add127fe523cd6c6c51950665f328dd5571656191211 sudo-debugsource-1.9.15-8.p5.el10_0.3.x86_64.rpm SHA-256: 249fd0d05090b72c3205add127fe523cd6c6c51950665f328dd5571656191211 sudo-python-plugin-1.9.15-8.p5.el10_0.3.x86_64.rpm SHA-256: 85a6d617df536a8d65d3a588a223461aa2b419cc7de6bd408ec25b2f7ee133c5 sudo-python-plugin-debuginfo-1.9.15-8.p5.el10_0.3.x86_64.rpm SHA-256: faa38d1f27442d8da062144396e309579413b86e8c714c8baa0d76bfbcb60474 sudo-python-plugin-debuginfo-1.9.15-8.p5.el10_0.3.x86_64.rpm SHA-256: faa38d1f27442d8da062144396e309579413b86e8c714c8baa0d76bfbcb60474 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 SRPM sudo-1.9.15-8.p5.el10_0.3.src.rpm SHA-256: a43017c3450926cd3f698cd7c7e257f30e8f935401c74aae612ce6ef62d05eca s390x sudo-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: 49c9ec84fe6fc9abde1a2a2eb93330fed172195ebf1ab0cc67159da20fe39264 sudo-debuginfo-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: ec1044f274d42c4af75b92bffee13acb2f402632acbf3adfe8817c0f39754f1c sudo-debuginfo-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: ec1044f274d42c4af75b92bffee13acb2f402632acbf3adfe8817c0f39754f1c sudo-debugsource-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: b3484a82faef440987fefb359ef858a563d168b31643b2ae127cf50b3980c455 sudo-debugsource-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: b3484a82faef440987fefb359ef858a563d168b31643b2ae127cf50b3980c455 sudo-python-plugin-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: e371c84c695edd410fb5ea0affd9e721ed43b21bdb70567e9d8193bfd2705a3c sudo-python-plugin-debuginfo-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: 07dd11045b30aa68d76d7936205f7174e7dfc0d325e85cf00142a3762731cd34 sudo-python-plugin-debuginfo-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: 07dd11045b30aa68d76d7936205f7174e7dfc0d325e85cf00142a3762731cd34 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 SRPM sudo-1.9.15-8.p5.el10_0.3.src.rpm SHA-256: a43017c3450926cd3f698cd7c7e257f30e8f935401c74aae612ce6ef62d05eca ppc64le sudo-1.9.15-8.p5.el10_0.3.ppc64le.rpm SHA-256: 5d7531e50363eb869180a3790b2788c9d229c05efc39de3de04482329d1de7fa sudo-debuginfo-1.9.15-8.p5.el10_0.3.ppc64le.rpm SHA-256: 7b6c8b3bc2af08f74701d78ffcaccdd077d6b8d082333c995d0e974f9a40502f sudo-debuginfo-1.9.15-8.p5.el10_0.3.ppc64le.rpm SHA-256: 7b6c8b3bc2af08f74701d78ffcaccdd077d6b8d082333c995d0e974f9a40502f sudo-debugsource-1.9.15-8.p5.el10_0.3.ppc64le.rpm SHA-256: 9f926eff2742841469809c03e109e3e3a454b1a4ac6351920d4ce3df4250fdfd sudo-debugsource-1.9.15-8.p5.el10_0.3.ppc64le.rpm SHA-256: 9f926eff2742841469809c03e109e3e3a454b1a4ac6351920d4ce3df4250fdfd sudo-python-plugin-1.9.15-8.p5.el10_0.3.ppc64le.rpm SHA-256: 78d778f3cbc3dbaa27557c3953006061eb6e14af1ece0e2584727f75fb884172 sudo-python-plugin-debuginfo-1.9.15-8.p5.el10_0.3.ppc64le.rpm SHA-256: c53390440be588c177612c102b9d63d41ed9543089e35697cbb32f5939a33a2b sudo-python-plugin-debuginfo-1.9.15-8.p5.el10_0.3.ppc64le.rpm SHA-256: c53390440be588c177612c102b9d63d41ed9543089e35697cbb32f5939a33a2b Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 SRPM sudo-1.9.15-8.p5.el10_0.3.src.rpm SHA-256: a43017c3450926cd3f698cd7c7e257f30e8f935401c74aae612ce6ef62d05eca aarch64 sudo-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: 6c61e82399642cfd238d23a370f06f7d917ea32ec888834ad2366a5a508d64ba sudo-debuginfo-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: c7118bdcae34b9cfcc77d37cfeb700daeff889577b9871777b4c63c7771bf628 sudo-debuginfo-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: c7118bdcae34b9cfcc77d37cfeb700daeff889577b9871777b4c63c7771bf628 sudo-debugsource-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: b6eeb575f283513f0492e67f1a4f9eb6fdd3130ee84b841b9161ae6367a2f323 sudo-debugsource-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: b6eeb575f283513f0492e67f1a4f9eb6fdd3130ee84b841b9161ae6367a2f323 sudo-python-plugin-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: 78bf49719726ac912deaa5898861ca4f9f7b0e10621eb46b6195231cae333984 sudo-python-plugin-debuginfo-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: faf4b1580cce9ca82db2da77a0e516539a652d6b26fcd1468c6d6a730dd7b459 sudo-python-plugin-debuginfo-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: faf4b1580cce9ca82db2da77a0e516539a652d6b26fcd1468c6d6a730dd7b459 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 SRPM sudo-1.9.15-8.p5.el10_0.3.src.rpm SHA-256: a43017c3450926cd3f698cd7c7e257f30e8f935401c74aae612ce6ef62d05eca aarch64 sudo-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: 6c61e82399642cfd238d23a370f06f7d917ea32ec888834ad2366a5a508d64ba sudo-debuginfo-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: c7118bdcae34b9cfcc77d37cfeb700daeff889577b9871777b4c63c7771bf628 sudo-debuginfo-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: c7118bdcae34b9cfcc77d37cfeb700daeff889577b9871777b4c63c7771bf628 sudo-debugsource-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: b6eeb575f283513f0492e67f1a4f9eb6fdd3130ee84b841b9161ae6367a2f323 sudo-debugsource-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: b6eeb575f283513f0492e67f1a4f9eb6fdd3130ee84b841b9161ae6367a2f323 sudo-python-plugin-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: 78bf49719726ac912deaa5898861ca4f9f7b0e10621eb46b6195231cae333984 sudo-python-plugin-debuginfo-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: faf4b1580cce9ca82db2da77a0e516539a652d6b26fcd1468c6d6a730dd7b459 sudo-python-plugin-debuginfo-1.9.15-8.p5.el10_0.3.aarch64.rpm SHA-256: faf4b1580cce9ca82db2da77a0e516539a652d6b26fcd1468c6d6a730dd7b459 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 SRPM sudo-1.9.15-8.p5.el10_0.3.src.rpm SHA-256: a43017c3450926cd3f698cd7c7e257f30e8f935401c74aae612ce6ef62d05eca s390x sudo-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: 49c9ec84fe6fc9abde1a2a2eb93330fed172195ebf1ab0cc67159da20fe39264 sudo-debuginfo-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: ec1044f274d42c4af75b92bffee13acb2f402632acbf3adfe8817c0f39754f1c sudo-debuginfo-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: ec1044f274d42c4af75b92bffee13acb2f402632acbf3adfe8817c0f39754f1c sudo-debugsource-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: b3484a82faef440987fefb359ef858a563d168b31643b2ae127cf50b3980c455 sudo-debugsource-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: b3484a82faef440987fefb359ef858a563d168b31643b2ae127cf50b3980c455 sudo-python-plugin-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: e371c84c695edd410fb5ea0affd9e721ed43b21bdb70567e9d8193bfd2705a3c sudo-python-plugin-debuginfo-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: 07dd11045b30aa68d76d7936205f7174e7dfc0d325e85cf00142a3762731cd34 sudo-python-plugin-debuginfo-1.9.15-8.p5.el10_0.3.s390x.rpm SHA-256: 07dd11045b30aa68d76d7936205f7174e7dfc0d325e85cf00142a3762731cd34 Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 SRPM sudo-1.9.15-8.p5.el10_0.3.src.rpm SHA-256: a43017c3450926cd3f698cd7c7e257f30e8f935401c74aae612ce6ef62d05eca ppc64le sudo-1.9.15-8.p5.el10_0.3.ppc64le.rpm SHA-256: 5d7531e50363eb869180a3790b2788c9d229c05efc39de3de04482329d1de7fa sudo-debuginfo-1.9.15-8.p5.el10_0.3.ppc64le.rpm SHA-256: 7b6c8b3bc2af08f74701d78ffcaccdd077d6b8d082333c995d0e974f9a40502f sudo-debuginfo-1.9.15-8.p5.el10_0.3.ppc64le.rpm SHA-256: 7b6c8b3bc2af08f74701d78ffc