漏洞编号：CVE-2017-1000367 Ubuntu Security Notification for Sudo Vulnerability (USN-3304-1)

It was discovered that Sudo did not properly parse the contents of /proc/[pid]/stat when attempting to determine its controlling tty.

A local attacker in some configurations could possibly use this to overwrite any file on the filesystem, bypassing intended permissions.

Refer to Ubuntu advisory USN-3304-1 for affected packages and patching details, or update with your package manager.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

USN-3304-1: 16.10 (Yakkety) on src (sudo)

USN-3304-1: 16.04 (Xenial) on src (sudo-ldap)

USN-3304-1: 17.04 (zesty) on src (sudo-ldap)

USN-3304-1: 17.04 (zesty) on src (sudo)

USN-3304-1: 14.04 (Kylin) on src (sudo)

USN-3304-1: 14.04 (Kylin) on src (sudo-ldap)

USN-3304-1: 16.10 (Yakkety) on src (sudo-ldap)

USN-3304-1: 16.04 (Xenial) on src (sudo)