CVE-2005-2959

Name	CVE-2005-2959
Description	Incomplete blacklist vulnerability in sudo 1.6.8 and earlier allows local users to gain privileges via the (1) SHELLOPTS and (2) PS4 environment variables before executing a bash script on behalf of another user, which are not cleared even though other variables are.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DSA-870-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
sudo (PTS)	jessie, jessie (lts)	1.8.10p3-1+deb8u9	fixed
	stretch (security)	1.8.19p1-2.1+deb9u3	fixed
	stretch (lts), stretch	1.8.19p1-2.1+deb9u6	fixed
	buster	1.8.27-1+deb10u3	fixed
	buster (security)	1.8.27-1+deb10u6	fixed
	bullseye (security), bullseye	1.9.5p2-3+deb11u1	fixed
	bookworm	1.9.13p3-1+deb12u1	fixed
	sid, trixie	1.9.15p5-3	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
sudo	source	woody	1.6.6-1.4		DSA-870-1
sudo	source	sarge	1.6.8p7-1.2		DSA-870-1
sudo	source	(unstable)	1.6.8p9-3	medium