Red Hat Product Errata RHBA-2025:23384 - Bug Fix Advisory
Issued:
2025-12-16
Updated:
2025-12-18

RHBA-2025:23384 - Bug Fix Advisory

Synopsis

sudo bug fix and enhancement update

Type/Severity

Bug Fix Advisory

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for sudo is now available for Red Hat Enterprise Linux 8.

Description

The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root.

Bug Fix(es) and Enhancement(s):

  • sudo passes SHELL environment variable twice to the shell being executed [rhel-8] (JIRA:RHEL-127360)

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 8 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 8 s390x
  • Red Hat Enterprise Linux for Power, little endian 8 ppc64le
  • Red Hat Enterprise Linux for ARM 64 8 aarch64
  • Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10 x86_64
  • Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 8.10 aarch64
  • Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 8.10 ppc64le
  • Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 8.10 s390x

Fixes

  • RHEL-127360 - sudo passes SHELL environment variable twice to the shell being executed [rhel-8]

CVEs

(none)

References

(none)

Red Hat Enterprise Linux for x86_64 8

SRPM
sudo-1.9.5p2-1.el8_10.3.src.rpm SHA-256: 84bd90df8fa2965175fd0d5ac7428750aaa52df704c08594c2bd6db917623fa8
x86_64
sudo-1.9.5p2-1.el8_10.3.x86_64.rpm SHA-256: 3b9d1fbb3b9c70abfd5d52efae1c4b97b244cef5aae0686f4d89d83949f9e38c
sudo-debuginfo-1.9.5p2-1.el8_10.3.x86_64.rpm SHA-256: 0264fdfaf4bb0bcf8e835348bf458599fd7a6a8e76c1c4a0cdd0970207028311
sudo-debugsource-1.9.5p2-1.el8_10.3.x86_64.rpm SHA-256: f06982334bfc5b5d237d23749ed141dde43461ac2ab51d664f9f3568479f8efa

Red Hat Enterprise Linux for IBM z Systems 8

SRPM
sudo-1.9.5p2-1.el8_10.3.src.rpm SHA-256: 84bd90df8fa2965175fd0d5ac7428750aaa52df704c08594c2bd6db917623fa8
s390x
sudo-1.9.5p2-1.el8_10.3.s390x.rpm SHA-256: 385921a1145128a2b84e59787e066a5be265f151dc2a3ed5a1f7184dee16cc6b
sudo-debuginfo-1.9.5p2-1.el8_10.3.s390x.rpm SHA-256: 887d8ef3db1874ae307a5e5846940f46d776e1e7108c7df9c4c53064c048a3a8
sudo-debugsource-1.9.5p2-1.el8_10.3.s390x.rpm SHA-256: f1c94e4e2faa8ab267107448f366ce05edb983cc592f932cd86d8e27caa2928a

Red Hat Enterprise Linux for Power, little endian 8

SRPM
sudo-1.9.5p2-1.el8_10.3.src.rpm SHA-256: 84bd90df8fa2965175fd0d5ac7428750aaa52df704c08594c2bd6db917623fa8
ppc64le
sudo-1.9.5p2-1.el8_10.3.ppc64le.rpm SHA-256: 6acb6052826170dc919736e9f88e377ebeb0da2c79e1d3e3450425025d3ebdee
sudo-debuginfo-1.9.5p2-1.el8_10.3.ppc64le.rpm SHA-256: 7871d1ef7fe97c3e818ef59d29f5ab307d7c770592543551fa34ba2316c9ac0e
sudo-debugsource-1.9.5p2-1.el8_10.3.ppc64le.rpm SHA-256: b680141ec53f4db408f9c4715f9474871a77c55a0a221820c29c84ab1be0dff6

Red Hat Enterprise Linux for ARM 64 8

SRPM
sudo-1.9.5p2-1.el8_10.3.src.rpm SHA-256: 84bd90df8fa2965175fd0d5ac7428750aaa52df704c08594c2bd6db917623fa8
aarch64
sudo-1.9.5p2-1.el8_10.3.aarch64.rpm SHA-256: 38196ba28943f29194e81287fc98063654a8cb32cbea4e4218a7de78ddc6796d
sudo-debuginfo-1.9.5p2-1.el8_10.3.aarch64.rpm SHA-256: 2ec4bcb4673fd2af68ce81e9df59e1dde317eff9ff226172fae13e3eef6f79fb
sudo-debugsource-1.9.5p2-1.el8_10.3.aarch64.rpm SHA-256: 55b00f90f8f8a8f7a590e632b582b286258f21a1defb45727e3002a55db49a5a

Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10

SRPM
sudo-1.9.5p2-1.el8_10.3.src.rpm SHA-256: 84bd90df8fa2965175fd0d5ac7428750aaa52df704c08594c2bd6db917623fa8
x86_64
sudo-1.9.5p2-1.el8_10.3.x86_64.rpm SHA-256: 3b9d1fbb3b9c70abfd5d52efae1c4b97b244cef5aae0686f4d89d83949f9e38c
sudo-debuginfo-1.9.5p2-1.el8_10.3.x86_64.rpm SHA-256: 0264fdfaf4bb0bcf8e835348bf458599fd7a6a8e76c1c4a0cdd0970207028311
sudo-debugsource-1.9.5p2-1.el8_10.3.x86_64.rpm SHA-256: f06982334bfc5b5d237d23749ed141dde43461ac2ab51d664f9f3568479f8efa

Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 8.10

SRPM
sudo-1.9.5p2-1.el8_10.3.src.rpm SHA-256: 84bd90df8fa2965175fd0d5ac7428750aaa52df704c08594c2bd6db917623fa8
aarch64
sudo-1.9.5p2-1.el8_10.3.aarch64.rpm SHA-256: 38196ba28943f29194e81287fc98063654a8cb32cbea4e4218a7de78ddc6796d
sudo-debuginfo-1.9.5p2-1.el8_10.3.aarch64.rpm SHA-256: 2ec4bcb4673fd2af68ce81e9df59e1dde317eff9ff226172fae13e3eef6f79fb
sudo-debugsource-1.9.5p2-1.el8_10.3.aarch64.rpm SHA-256: 55b00f90f8f8a8f7a590e632b582b286258f21a1defb45727e3002a55db49a5a

Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 8.10

SRPM
sudo-1.9.5p2-1.el8_10.3.src.rpm SHA-256: 84bd90df8fa2965175fd0d5ac7428750aaa52df704c08594c2bd6db917623fa8
ppc64le
sudo-1.9.5p2-1.el8_10.3.ppc64le.rpm SHA-256: 6acb6052826170dc919736e9f88e377ebeb0da2c79e1d3e3450425025d3ebdee
sudo-debuginfo-1.9.5p2-1.el8_10.3.ppc64le.rpm SHA-256: 7871d1ef7fe97c3e818ef59d29f5ab307d7c770592543551fa34ba2316c9ac0e
sudo-debugsource-1.9.5p2-1.el8_10.3.ppc64le.rpm SHA-256: b680141ec53f4db408f9c4715f9474871a77c55a0a221820c29c84ab1be0dff6

Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 8.10

SRPM
sudo-1.9.5p2-1.el8_10.3.src.rpm SHA-256: 84bd90df8fa2965175fd0d5ac7428750aaa52df704c08594c2bd6db917623fa8
s390x
sudo-1.9.5p2-1.el8_10.3.s390x.rpm SHA-256: 385921a1145128a2b84e59787e066a5be265f151dc2a3ed5a1f7184dee16cc6b
sudo-debuginfo-1.9.5p2-1.el8_10.3.s390x.rpm SHA-256: 887d8ef3db1874ae307a5e5846940f46d776e1e7108c7df9c4c53064c048a3a8
sudo-debugsource-1.9.5p2-1.el8_10.3.s390x.rpm SHA-256: f1c94e4e2faa8ab267107448f366ce05edb983cc592f932cd86d8e27caa2928a

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.