AIX Open Source

Share your experiences and connect with fellow developers to discover how to build and manage open source software for the AIX operating system

View Only

Back to discussions

Expand all | Collapse all

CVE-2025-32463 in sudo - Fixed in 1.9.17p1

1. CVE-2025-32463 in sudo - Fixed in 1.9.17p1

Like
Niklas Vosskoetter

IBM Champion
Posted Tue July 01, 2025 01:47 PM

Reply
Hey OSS-Team,

we need sudo in version 1.9.17p1, because the the CVE-2025-32463 is rated with a 9,3 and we have to fix that asap.

Please check: https://nvd.nist.gov/vuln/detail/CVE-2025-32463

Many thanks in advance

------------------------------
Niklas Vosskoetter
Deputy Team Lead & System Engineer Unix and Cloud Service Power
------------------------------
2. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

Like
RESHMA KUMAR
Posted 30 days ago

Reply
Hi Niklas,
Thanks for reporting. We are working on updating to this version of sudo.

------------------------------
RESHMA KUMAR
------------------------------

Original Message
3. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

Like
Peter Schlafmann
Posted 30 days ago

Reply
Thanks Reshma for the update - any timeline available for the fix/update?

------------------------------
Peter Schlafmann
------------------------------

Original Message
4. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

Like
RESHMA KUMAR
Posted 30 days ago

Reply
Hi Peter,
We will make it available by next week.

------------------------------
RESHMA KUMAR
------------------------------

Original Message
5. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

Like
Robert John
Posted 26 days ago

Reply
Thanks Reshma for the update - would you pls.- also provide a new "sudo_ids" package, which solves that CVE?
Thanks + Regards, Robert John

------------------------------
Robert John
------------------------------

Original Message
6. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

Like
Peter Schlafmann
Posted 22 days ago

Reply
Hi Reshma, any update on this - my customer is urgently waiting for the fixed version.

kind regards Peter

------------------------------
Peter Schlafmann
------------------------------

Original Message
7. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

Like
Don brodie
Posted 22 days ago

Reply
Hello, Is there a date set for availability of this?

Thanks,

Don Brodie

------------------------------
Don brodie
------------------------------

Original Message
8. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

Like
RESHMA KUMAR
Posted 22 days ago

Reply
Hi All,
Sudo 1.9.17p1 is now available in AIX Toolbox. Please use DNF to update to this version.
sudo-1.9.17p1-1.aix7.1.ppc.rpm
sudo_ids-1.9.17p1-1.aix7.1.ppc.rpm
sudo_noldap-1.9.17p1-1.aix7.1.ppc.rpm

------------------------------
RESHMA KUMAR
------------------------------

Original Message
9. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

Like
Boost unix
Posted 17 days ago

Reply
Hi Reshma,

not able to download the pkg sudo-1.9.17p1-1.aix7.1.ppc.rpm

Regards

Venkata B

------------------------------
Boost unix
------------------------------

Original Message
10. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

Like
Niklas Vosskoetter

IBM Champion
Posted 11 days ago

Reply
Hey OSS-Team,

many thanks for the new packages. Tests were successful and the rollout was started.

------------------------------
Niklas Vosskoetter
Deputy Team Lead & System Engineer Unix and Cloud Service Power
------------------------------

Original Message

AIX Open Source

AIX Open Source

CVE-2025-32463 in sudo - Fixed in 1.9.17p1

Niklas VosskoetterTue July 01, 2025 01:47 PM

RESHMA KUMAR30 days ago

Peter Schlafmann30 days ago

RESHMA KUMAR30 days ago

Robert John26 days ago

Peter Schlafmann22 days ago

Don brodie22 days ago

RESHMA KUMAR22 days ago

Boost unix17 days ago

Niklas Vosskoetter11 days ago

1. CVE-2025-32463 in sudo - Fixed in 1.9.17p1

2. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

3. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

4. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

5. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

6. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

7. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

8. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

9. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

10. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

Additional
Resources

Office

Quick Links

AIX Open Source

AIX Open Source

CVE-2025-32463 in sudo - Fixed in 1.9.17p1

Niklas VosskoetterTue July 01, 2025 01:47 PM

RESHMA KUMAR30 days ago

Peter Schlafmann30 days ago

RESHMA KUMAR30 days ago

Robert John26 days ago

Peter Schlafmann22 days ago

Don brodie22 days ago

RESHMA KUMAR22 days ago

Boost unix17 days ago

Niklas Vosskoetter11 days ago

1. CVE-2025-32463 in sudo - Fixed in 1.9.17p1

2. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

3. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

4. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

5. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

6. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

7. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

8. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

9. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

10. RE: CVE-2025-32463 in sudo - Fixed in 1.9.17p1

Related Content

Update of vim required (CVE-2023-5344)

Different ulimits with sudo and su

AIX Toolbox rpm packages signature

Problem installing ca-certificates-2024.2.66-1.aix7.1.ppc.rpm prerequisite curl-8.9.1-1.aix7.1.ppc.rpm on AIX 7300-02-03-2446

Re: SUDO 1.8.27 vulnerable to CVE-2019-14287 - Fixed in 1.8.28

Additional Resources

Office

Quick Links

Additional
Resources