Red Hat Product Errata RHSA-2026:13891 - Security Advisory Issued: 2026-05-06 Updated: 2026-05-06 RHSA-2026:13891 - Security Advisory Overview Updated Packages Synopsis Important: sudo security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for sudo is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fix(es): sudo: Sudo: Privilege escalation due to failure in privilege drop calls (CVE-2026-35535) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server - AUS 9.2 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.2 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.2 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.2 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.2 s390x Fixes BZ - 2454714 - CVE-2026-35535 sudo: Sudo: Privilege escalation due to failure in privilege drop calls CVEs CVE-2026-35535 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server - AUS 9.2 SRPM sudo-1.9.5p2-9.el9_2.4.src.rpm SHA-256: b80d931b880a66d4eb6299a872caadea5504884a72aff5b20e511a2967ce1f44 x86_64 sudo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: fa0081a45515841b596bf1c201605e834afc1ec7e76d55141dafb602f4fa788a sudo-debuginfo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 63bb3fec1b5f78a93bd5d7113f9e0b6668f80e00fd1785035044570db09eccaf sudo-debuginfo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 63bb3fec1b5f78a93bd5d7113f9e0b6668f80e00fd1785035044570db09eccaf sudo-debugsource-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: c811936036cfc2dd8e70ebf12d27f4c504ed22fc663b308a911a5183491f628e sudo-debugsource-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: c811936036cfc2dd8e70ebf12d27f4c504ed22fc663b308a911a5183491f628e sudo-python-plugin-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 239c9e3908e7b2a7c72f58f4a71d75be1ae05efda9a83a4a6722dca5b2e307ca sudo-python-plugin-debuginfo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 5b056730d91de0d63a338587ca631e5b6e3fc483332a52b7376bf0ce9a3c4ad8 sudo-python-plugin-debuginfo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 5b056730d91de0d63a338587ca631e5b6e3fc483332a52b7376bf0ce9a3c4ad8 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 SRPM sudo-1.9.5p2-9.el9_2.4.src.rpm SHA-256: b80d931b880a66d4eb6299a872caadea5504884a72aff5b20e511a2967ce1f44 ppc64le sudo-1.9.5p2-9.el9_2.4.ppc64le.rpm SHA-256: 926d20d3dcf6261aab7529c2754e0acbc40a86aeaf343a76af67ce57b4f1aa88 sudo-debuginfo-1.9.5p2-9.el9_2.4.ppc64le.rpm SHA-256: 0c93f6689c1988706d1a9702878e46b22c89577b651d71ee748241cf4c9c78ed sudo-debuginfo-1.9.5p2-9.el9_2.4.ppc64le.rpm SHA-256: 0c93f6689c1988706d1a9702878e46b22c89577b651d71ee748241cf4c9c78ed sudo-debugsource-1.9.5p2-9.el9_2.4.ppc64le.rpm SHA-256: eeed5a9b5386ce256297cd22d6030dfcff4fc2651004dc1313b0c2227d47856e sudo-debugsource-1.9.5p2-9.el9_2.4.ppc64le.rpm SHA-256: eeed5a9b5386ce256297cd22d6030dfcff4fc2651004dc1313b0c2227d47856e sudo-python-plugin-1.9.5p2-9.el9_2.4.ppc64le.rpm SHA-256: 14bc649cf1de07916fead007d335b903b1f54e41163a60c29fca8f1219692c54 sudo-python-plugin-debuginfo-1.9.5p2-9.el9_2.4.ppc64le.rpm SHA-256: 8d60a96a0a092b6648962b75c31aa5a20369a7b06d467d1d0b5bffeac3f17e9c sudo-python-plugin-debuginfo-1.9.5p2-9.el9_2.4.ppc64le.rpm SHA-256: 8d60a96a0a092b6648962b75c31aa5a20369a7b06d467d1d0b5bffeac3f17e9c Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 SRPM sudo-1.9.5p2-9.el9_2.4.src.rpm SHA-256: b80d931b880a66d4eb6299a872caadea5504884a72aff5b20e511a2967ce1f44 x86_64 sudo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: fa0081a45515841b596bf1c201605e834afc1ec7e76d55141dafb602f4fa788a sudo-debuginfo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 63bb3fec1b5f78a93bd5d7113f9e0b6668f80e00fd1785035044570db09eccaf sudo-debuginfo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 63bb3fec1b5f78a93bd5d7113f9e0b6668f80e00fd1785035044570db09eccaf sudo-debugsource-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: c811936036cfc2dd8e70ebf12d27f4c504ed22fc663b308a911a5183491f628e sudo-debugsource-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: c811936036cfc2dd8e70ebf12d27f4c504ed22fc663b308a911a5183491f628e sudo-python-plugin-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 239c9e3908e7b2a7c72f58f4a71d75be1ae05efda9a83a4a6722dca5b2e307ca sudo-python-plugin-debuginfo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 5b056730d91de0d63a338587ca631e5b6e3fc483332a52b7376bf0ce9a3c4ad8 sudo-python-plugin-debuginfo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 5b056730d91de0d63a338587ca631e5b6e3fc483332a52b7376bf0ce9a3c4ad8 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 SRPM sudo-1.9.5p2-9.el9_2.4.src.rpm SHA-256: b80d931b880a66d4eb6299a872caadea5504884a72aff5b20e511a2967ce1f44 aarch64 sudo-1.9.5p2-9.el9_2.4.aarch64.rpm SHA-256: 8e0dabe476ae4969a1bdeece67b3ece59842c19a2c062a65c30b54f7298a79cc sudo-debuginfo-1.9.5p2-9.el9_2.4.aarch64.rpm SHA-256: 1f75f6842541617e823bb91d8e9420a1df04f73cb3cc9db9887f697abf9a2a63 sudo-debuginfo-1.9.5p2-9.el9_2.4.aarch64.rpm SHA-256: 1f75f6842541617e823bb91d8e9420a1df04f73cb3cc9db9887f697abf9a2a63 sudo-debugsource-1.9.5p2-9.el9_2.4.aarch64.rpm SHA-256: 945122fc57ef9ec0e2fbcadb00b943d57fd6b810a79003fd581ffa41d98b29a5 sudo-debugsource-1.9.5p2-9.el9_2.4.aarch64.rpm SHA-256: 945122fc57ef9ec0e2fbcadb00b943d57fd6b810a79003fd581ffa41d98b29a5 sudo-python-plugin-1.9.5p2-9.el9_2.4.aarch64.rpm SHA-256: 6dd48b6bd66f16d01452c5b2836ba6d6d42ba4af3a2a9f4ab6feb492d21d96e8 sudo-python-plugin-debuginfo-1.9.5p2-9.el9_2.4.aarch64.rpm SHA-256: c7c0c3d5986928465027a2db4d439c1905a3d2c516eac758a52854b1cd3f477a sudo-python-plugin-debuginfo-1.9.5p2-9.el9_2.4.aarch64.rpm SHA-256: c7c0c3d5986928465027a2db4d439c1905a3d2c516eac758a52854b1cd3f477a Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 SRPM sudo-1.9.5p2-9.el9_2.4.src.rpm SHA-256: b80d931b880a66d4eb6299a872caadea5504884a72aff5b20e511a2967ce1f44 s390x sudo-1.9.5p2-9.el9_2.4.s390x.rpm SHA-256: d1a0896280ecb8291d85adeedaf8ca7bc7186c433c9c606a966f1ffe2d3141d0 sudo-debuginfo-1.9.5p2-9.el9_2.4.s390x.rpm SHA-256: 5d47a8b42dabeef0def987d8ed71d0a85a2d2164a3ec48202fa0659a3a15a8f8 sudo-debuginfo-1.9.5p2-9.el9_2.4.s390x.rpm SHA-256: 5d47a8b42dabeef0def987d8ed71d0a85a2d2164a3ec48202fa0659a3a15a8f8 sudo-debugsource-1.9.5p2-9.el9_2.4.s390x.rpm SHA-256: 7decd84c7648f1cdba4f04973561ce50b69367853a59d87d1e81e32f295ae28c sudo-debugsource-1.9.5p2-9.el9_2.4.s390x.rpm SHA-256: 7decd84c7648f1cdba4f04973561ce50b69367853a59d87d1e81e32f295ae28c sudo-python-plugin-1.9.5p2-9.el9_2.4.s390x.rpm SHA-256: 8a9acf9ee5bb0461d6ab057d6de4d5f78256eeb614b85ec1f4e29fab2999f57a sudo-python-plugin-debuginfo-1.9.5p2-9.el9_2.4.s390x.rpm SHA-256: bab74f43520cf14f3381cd1367805cf3674b3f7779b02321dc1a41424e0b0858 sudo-python-plugin-debuginfo-1.9.5p2-9.el9_2.4.s390x.rpm SHA-256: bab74f43520cf14f3381cd1367805cf3674b3f7779b02321dc1a41424e0b0858 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.2 SRPM sudo-1.9.5p2-9.el9_2.4.src.rpm SHA-256: b80d931b880a66d4eb6299a872caadea5504884a72aff5b20e511a2967ce1f44 x86_64 sudo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: fa0081a45515841b596bf1c201605e834afc1ec7e76d55141dafb602f4fa788a sudo-debuginfo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 63bb3fec1b5f78a93bd5d7113f9e0b6668f80e00fd1785035044570db09eccaf sudo-debuginfo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 63bb3fec1b5f78a93bd5d7113f9e0b6668f80e00fd1785035044570db09eccaf sudo-debugsource-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: c811936036cfc2dd8e70ebf12d27f4c504ed22fc663b308a911a5183491f628e sudo-debugsource-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: c811936036cfc2dd8e70ebf12d27f4c504ed22fc663b308a911a5183491f628e sudo-python-plugin-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 239c9e3908e7b2a7c72f58f4a71d75be1ae05efda9a83a4a6722dca5b2e307ca sudo-python-plugin-debuginfo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 5b056730d91de0d63a338587ca631e5b6e3fc483332a52b7376bf0ce9a3c4ad8 sudo-python-plugin-debuginfo-1.9.5p2-9.el9_2.4.x86_64.rpm SHA-256: 5b056730d91de0d63a338587ca631e5b6e3fc483332a52b7376bf0ce9a3c4ad8 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.2 SRPM sudo-1.9.5p2-9.el9_2.4.src.rpm SHA-256: b80d931b880a66d4eb6299a872caadea5504884a72aff5b20e511a2967ce1f44 aarch64 sudo-1.9.5p2-9.el9_2.4.aarch64.rpm SHA-256: 8e0dabe476ae4969a1bdeece67b3ece59842c19a2c062a65c30b54f7298a79cc sudo-debuginfo-1.9.5p2-9.el9_2.4.aarch64.rpm SHA-256: 1f75f6842541617e823bb91d8e9420a1df04f73cb3cc9db9887f697abf9a2a63 sudo-debuginfo-1.9.5p2-9.el9_2.4.aarch64.rpm SHA-256: 1f75f6842541617e823bb91d8e9420a1df04f73cb3cc9db9887f697abf9a2a63 sudo-debugsource-1.9.5p2-9.el9_2.4.aarch64.rpm SHA-256: 945122fc57ef9ec0e2fbcadb00b943d57fd6b810a79003fd581ffa41d98b