Release date:
2026-05-06 14:38:51 UTC
Description:
- CVE-2026-35535: drop group privileges and supplementary groups before
running the mailer in exec_mailer(), make setuid/setgid/setgroups failures
fatal, and pass user gid alongside uid when NO_ROOT_MAILER is defined
Updated packages:
-
sudo-1.9.5p2-10.el9_6.2.tuxcare.els1.x86_64.rpm
sha:3ca396f0ec781e1bb3bb30552a6bafaf80bc30a00c1bc97d50981f3e29a27390
-
sudo-devel-1.9.5p2-10.el9_6.2.tuxcare.els1.x86_64.rpm
sha:745d0e218a62fab91e64daf271849b8a77266590fe807ce9b1e87ce1e67fe94f
-
sudo-python-plugin-1.9.5p2-10.el9_6.2.tuxcare.els1.x86_64.rpm
sha:025ae3e3ba5c5e7ad4f81a6bbad5c8ff87e35c0f59cf93602cecdf471919969a
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
