Security News

Cybersecurity news aggregator

🔄
HIGH Updates Red Hat Errata

RHSA-2026:19067: Important: sudo security update

rhelsudocve-2026-35091cve-2026-35535
This advisory addresses CVE-2026-35535 (CVSS 7.4 High), a privilege escalation vulnerability in the sudo utility where a failure in privilege drop calls could allow unauthorized privilege elevation. The update applies to Red Hat Enterprise Linux 10 and its Extended Update Support variants. Administrators should apply the provided sudo package updates immediately, referencing the linked Red Hat solution article for patching instructions.
Read Full Article →

Red Hat Product Errata RHSA-2026:19067 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:19067 - Security Advisory Overview Updated Packages Synopsis Important: sudo security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for sudo is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fix(es): sudo: Sudo: Privilege escalation due to failure in privilege drop calls (CVE-2026-35535) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 10 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 x86_64 Red Hat Enterprise Linux for IBM z Systems 10 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 s390x Red Hat Enterprise Linux for Power, little endian 10 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 ppc64le Red Hat Enterprise Linux for ARM 64 10 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.2 s390x Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 10.2 s390x Fixes BZ - 2454714 - CVE-2026-35535 sudo: Sudo: Privilege escalation due to failure in privilege drop calls CVEs CVE-2026-35535 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 10 SRPM sudo-1.9.17-4.p2.el10_2.src.rpm SHA-256: 2da9d0a19bf99817b42629e2729af8f0d8a32c895d01d80ac070971a3b1b7869 x86_64 sudo-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: c94e931bd718e6e68d2a8df3f5dc392af8e09eaa6330aa2f87e9a64267b81f16 sudo-debuginfo-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: 420c14df52d5f47b48f2dcb14a70f341d253e6a6640f77b56f8501150cd94e5d sudo-debuginfo-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: 420c14df52d5f47b48f2dcb14a70f341d253e6a6640f77b56f8501150cd94e5d sudo-debugsource-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: 39ecb43827fc888a8c40c37bc69bcc7750741c8e0e65524a7cda772cd0ed7e90 sudo-debugsource-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: 39ecb43827fc888a8c40c37bc69bcc7750741c8e0e65524a7cda772cd0ed7e90 sudo-python-plugin-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: b22520adbea8be975a0b9b075f73346671bdb59003cbfb0ae830f95aa1504769 sudo-python-plugin-debuginfo-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: 70cc6f6dd6c01a6aecb1225aefaa594fb7e90d67715b432eb883f7093e5f01fb sudo-python-plugin-debuginfo-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: 70cc6f6dd6c01a6aecb1225aefaa594fb7e90d67715b432eb883f7093e5f01fb Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 SRPM sudo-1.9.17-4.p2.el10_2.src.rpm SHA-256: 2da9d0a19bf99817b42629e2729af8f0d8a32c895d01d80ac070971a3b1b7869 x86_64 sudo-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: c94e931bd718e6e68d2a8df3f5dc392af8e09eaa6330aa2f87e9a64267b81f16 sudo-debuginfo-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: 420c14df52d5f47b48f2dcb14a70f341d253e6a6640f77b56f8501150cd94e5d sudo-debuginfo-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: 420c14df52d5f47b48f2dcb14a70f341d253e6a6640f77b56f8501150cd94e5d sudo-debugsource-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: 39ecb43827fc888a8c40c37bc69bcc7750741c8e0e65524a7cda772cd0ed7e90 sudo-debugsource-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: 39ecb43827fc888a8c40c37bc69bcc7750741c8e0e65524a7cda772cd0ed7e90 sudo-python-plugin-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: b22520adbea8be975a0b9b075f73346671bdb59003cbfb0ae830f95aa1504769 sudo-python-plugin-debuginfo-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: 70cc6f6dd6c01a6aecb1225aefaa594fb7e90d67715b432eb883f7093e5f01fb sudo-python-plugin-debuginfo-1.9.17-4.p2.el10_2.x86_64.rpm SHA-256: 70cc6f6dd6c01a6aecb1225aefaa594fb7e90d67715b432eb883f7093e5f01fb Red Hat Enterprise Linux for IBM z Systems 10 SRPM sudo-1.9.17-4.p2.el10_2.src.rpm SHA-256: 2da9d0a19bf99817b42629e2729af8f0d8a32c895d01d80ac070971a3b1b7869 s390x sudo-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: 9129033a57786ae16c8f8c75e0d3714e523f156e343e8fdb7acbfcaedcc5f83c sudo-debuginfo-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: 0ec1af2263db89618efb7e8e2685bfc813fdffe2c3d7e45b522b74f337f406bd sudo-debuginfo-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: 0ec1af2263db89618efb7e8e2685bfc813fdffe2c3d7e45b522b74f337f406bd sudo-debugsource-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: d6bb977f82f2bfe7469b1312ffb480e64bd2501814671448a3dc4369d56226f1 sudo-debugsource-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: d6bb977f82f2bfe7469b1312ffb480e64bd2501814671448a3dc4369d56226f1 sudo-python-plugin-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: c63d810402c91fa0ce52f28fd678b43fb57db47826b1f34abf9558ccb9726f0d sudo-python-plugin-debuginfo-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: 4a6d436d2ba3594d969d2d98db73a1dbac83546189964a917d23e1dcbda05d97 sudo-python-plugin-debuginfo-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: 4a6d436d2ba3594d969d2d98db73a1dbac83546189964a917d23e1dcbda05d97 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 SRPM sudo-1.9.17-4.p2.el10_2.src.rpm SHA-256: 2da9d0a19bf99817b42629e2729af8f0d8a32c895d01d80ac070971a3b1b7869 s390x sudo-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: 9129033a57786ae16c8f8c75e0d3714e523f156e343e8fdb7acbfcaedcc5f83c sudo-debuginfo-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: 0ec1af2263db89618efb7e8e2685bfc813fdffe2c3d7e45b522b74f337f406bd sudo-debuginfo-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: 0ec1af2263db89618efb7e8e2685bfc813fdffe2c3d7e45b522b74f337f406bd sudo-debugsource-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: d6bb977f82f2bfe7469b1312ffb480e64bd2501814671448a3dc4369d56226f1 sudo-debugsource-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: d6bb977f82f2bfe7469b1312ffb480e64bd2501814671448a3dc4369d56226f1 sudo-python-plugin-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: c63d810402c91fa0ce52f28fd678b43fb57db47826b1f34abf9558ccb9726f0d sudo-python-plugin-debuginfo-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: 4a6d436d2ba3594d969d2d98db73a1dbac83546189964a917d23e1dcbda05d97 sudo-python-plugin-debuginfo-1.9.17-4.p2.el10_2.s390x.rpm SHA-256: 4a6d436d2ba3594d969d2d98db73a1dbac83546189964a917d23e1dcbda05d97 Red Hat Enterprise Linux for Power, little endian 10 SRPM sudo-1.9.17-4.p2.el10_2.src.rpm SHA-256: 2da9d0a19bf99817b42629e2729af8f0d8a32c895d01d80ac070971a3b1b7869 ppc64le sudo-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: a34adcb0e8cb2e10e91763bf08fbdbd46fba7937cf2bdadcb5beb540bda1d89a sudo-debuginfo-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: 7e59860329e375e63a78500bd52e2d480e7064e7915d70647e81cc6f9a3873fc sudo-debuginfo-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: 7e59860329e375e63a78500bd52e2d480e7064e7915d70647e81cc6f9a3873fc sudo-debugsource-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: 4934e580a56c040f7d7ef8b4b5cdad153d2d539a33e7f2051f84af7868dcd93f sudo-debugsource-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: 4934e580a56c040f7d7ef8b4b5cdad153d2d539a33e7f2051f84af7868dcd93f sudo-python-plugin-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: d2c215d9e55338c6e67454ee813fd6a6490320ea55c64aa45d8bcffb7ed85c48 sudo-python-plugin-debuginfo-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: 308393d8a3f45fbf3c94aaf9e9c63275fd1219aaa1355bdb4b958955f9540c4c sudo-python-plugin-debuginfo-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: 308393d8a3f45fbf3c94aaf9e9c63275fd1219aaa1355bdb4b958955f9540c4c Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 SRPM sudo-1.9.17-4.p2.el10_2.src.rpm SHA-256: 2da9d0a19bf99817b42629e2729af8f0d8a32c895d01d80ac070971a3b1b7869 ppc64le sudo-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: a34adcb0e8cb2e10e91763bf08fbdbd46fba7937cf2bdadcb5beb540bda1d89a sudo-debuginfo-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: 7e59860329e375e63a78500bd52e2d480e7064e7915d70647e81cc6f9a3873fc sudo-debuginfo-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: 7e59860329e375e63a78500bd52e2d480e7064e7915d70647e81cc6f9a3873fc sudo-debugsource-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: 4934e580a56c040f7d7ef8b4b5cdad153d2d539a33e7f2051f84af7868dcd93f sudo-debugsource-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: 4934e580a56c040f7d7ef8b4b5cdad153d2d539a33e7f2051f84af7868dcd93f sudo-python-plugin-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: d2c215d9e55338c6e67454ee813fd6a6490320ea55c64aa45d8bcffb7ed85c48 sudo-python-plugin-debuginfo-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: 308393d8a3f45fbf3c94aaf9e9c63275fd1219aaa1355bdb4b958955f9540c4c sudo-python-plugin-debuginfo-1.9.17-4.p2.el10_2.ppc64le.rpm SHA-256: 308393d8a3f45fbf3c94aaf9e9c63275fd1219aaa1355bdb4b958955f9540c4c Red Hat Enterprise Linux for ARM 64 10 SRPM sudo-1.9.17-4.p2.el10_2.src.rpm SHA-256: 2da9d0a19bf99817b42629e2729af8f0d8a32c895d01d80ac070971a3b1b7869 aarch64 sudo-1.9.17-4.p2.el10_2.aarch64.rpm SHA-256: 91a40a

Related Articles

HIGH RHSA-2026:10758: Important: sudo security update Red Hat Errata INFO RHSA-2026:12310: Important: sudo security update Red Hat Errata INFO RHSA-2026:19220: Important: sudo security update Red Hat Errata MEDIUM RHSA-2026:19043: Moderate: corosync security update Red Hat Errata
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn