Added check for CVE-2023-22809

diego-treitos / linux-smart-enumeration

Linux enumeration tool for pentesting and CTFs with verbosity levels

GNU General Public License v3.0

3.45k stars 574 forks source link

Added check for CVE-2023-22809 #74

Closed exploide closed 1 year ago

exploide commented 1 year ago

Added a check for CVE-2023-22809 (Sudoedit bypass in Sudo <= 1.9.12p1).

I also fixed a bug in lse_get_pkg_version. A package installed with dpkg can be set to hold in order to exclude it from future updates. This is exactly a situation that might lead to a vulnerable version being present on the system. So also match this case.

diego-treitos commented 1 year ago

Thank you very much @exploide and sorry for the delay on the merge