Security update for sudo SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:02179-1 Final 1 1 2025-06-30T17:54:12Z current 2025-06-30T17:54:12Z 2025-06-30T17:54:12Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for sudo This update for sudo fixes the following issues: - CVE-2025-32462: Fixed a possible local privilege escalation via the --host option (bsc#1245274). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Container suse/sle-micro/5.5:latest-2025-2179,SUSE-2025-2179,SUSE-SLE-Micro-5.5-2025-2179,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-2179,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-2179,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-2179,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-2179 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-202502179-1/ Link for SUSE-SU-2025:02179-1 https://lists.suse.com/pipermail/sle-updates/2025-June/040566.html E-Mail link for SUSE-SU-2025:02179-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1245274 SUSE Bug 1245274 https://www.suse.com/security/cve/CVE-2025-32462/ SUSE CVE CVE-2025-32462 page Container suse/sle-micro/5.5:latest SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS SUSE Linux Enterprise Micro 5.5 SUSE Linux Enterprise Server 15 SP5-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP5 sudo-1.9.12p1-150500.7.13.1 sudo-devel-1.9.12p1-150500.7.13.1 sudo-plugin-python-1.9.12p1-150500.7.13.1 sudo-test-1.9.12p1-150500.7.13.1 sudo-1.9.12p1-150500.7.13.1 as a component of Container suse/sle-micro/5.5:latest sudo-1.9.12p1-150500.7.13.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS sudo-devel-1.9.12p1-150500.7.13.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS sudo-plugin-python-1.9.12p1-150500.7.13.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS sudo-1.9.12p1-150500.7.13.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS sudo-devel-1.9.12p1-150500.7.13.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS sudo-plugin-python-1.9.12p1-150500.7.13.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS sudo-1.9.12p1-150500.7.13.1 as a component of SUSE Linux Enterprise Micro 5.5 sudo-1.9.12p1-150500.7.13.1 as a component of SUSE Linux Enterprise Server 15 SP5-LTSS sudo-devel-1.9.12p1-150500.7.13.1 as a component of SUSE Linux Enterprise Server 15 SP5-LTSS sudo-plugin-python-1.9.12p1-150500.7.13.1 as a component of SUSE Linux Enterprise Server 15 SP5-LTSS sudo-1.9.12p1-150500.7.13.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP5 sudo-devel-1.9.12p1-150500.7.13.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP5 sudo-plugin-python-1.9.12p1-150500.7.13.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP5 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVE-2025-32462 Container suse/sle-micro/5.5:latest:sudo-1.9.12p1-150500.7.13.1 SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:sudo-1.9.12p1-150500.7.13.1 SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:sudo-devel-1.9.12p1-150500.7.13.1 SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:sudo-plugin-python-1.9.12p1-150500.7.13.1 SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:sudo-1.9.12p1-150500.7.13.1 SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:sudo-devel-1.9.12p1-150500.7.13.1 SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:sudo-plugin-python-1.9.12p1-150500.7.13.1 SUSE Linux Enterprise Micro 5.5:sudo-1.9.12p1-150500.7.13.1 SUSE Linux Enterprise Server 15 SP5-LTSS:sudo-1.9.12p1-150500.7.13.1 SUSE Linux Enterprise Server 15 SP5-LTSS:sudo-devel-1.9.12p1-150500.7.13.1 SUSE Linux Enterprise Server 15 SP5-LTSS:sudo-plugin-python-1.9.12p1-150500.7.13.1 SUSE Linux Enterprise Server for SAP Applications 15 SP5:sudo-1.9.12p1-150500.7.13.1 SUSE Linux Enterprise Server for SAP Applications 15 SP5:sudo-devel-1.9.12p1-150500.7.13.1 SUSE Linux Enterprise Server for SAP Applications 15 SP5:sudo-plugin-python-1.9.12p1-150500.7.13.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502179-1/ https://www.suse.com/security/cve/CVE-2025-32462.html CVE-2025-32462 https://bugzilla.suse.com/1245274 SUSE Bug 1245274