Sudo Security Update Advisory (CVE-2025-32463)

Jul 04 2025

Overview

we have released a security update that addresses a vulnerability in sudo. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2025-32463

Sudo Versions: 1.9.14 and above and 1.9.17p1 and below

Resolved Vulnerabilities

Root privilege escalation vulnerability via user-controlled directory settings in the –chroot option of the Sudo command (CVE-2025-32463)

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-32463

Sudo version: Apply the patches provided by the Referenced Sites [2][3][4][5][6][7]

References
[1] Local Privilege Escalation via chroot option
https://www.sudo.ws/security/advisories/
[2] cve-2025-32463
https://access.redhat.com/security/cve/cve-2025-32463
[3] Bug 959314 (CVE-2025-32462, CVE-2025-32463) – <app-admin/sudo-1.9.17_p1: two local privilege escalation vulnerabilities
https://bugs.gentoo.org/show_bug.cgi?id=CVE-2025-32463
[4] cve-2025-32463
https://explore.alas.aws.amazon.com/CVE-2025-32463.html
[5] cve-2025-32463
https://security-tracker.debian.org/tracker/CVE-2025-32463
[6] USN-7604-1: Sudo vulnerabilities
https://ubuntu.com/security/notices/USN-7604-1
[7] cve-2025-32463
https://www.suse.com/security/cve/CVE-2025-32463.html

Sudo Security Update Advisory (CVE-2025-32463)

Apache Tomcat July Vulnerability Security Update Advisory

GitLab Product Security Update Advisory

Tags:

Apache Tomcat July Vulnerability Security Update Advisory

GitLab Product Security Update Advisory