Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Debian Linux: Unauthenticated Remote Code Execution in Sudo Package
DEBIAN-CVE-2026-5277
Summary
Debian Linux users can be affected if they use the Sudo package, which can allow attackers to execute malicious code on the system without a password. This can happen if the Sudo package is not kept up to date, and an attacker can exploit this to gain access to sensitive data or take control of the system. To protect your system, update the Sudo package to the latest version as soon as possible.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| debian | chromium | All versions | – |
| debian | chromium | All versions | – |
| debian | chromium | All versions | – |
| debian | chromium | All versions | – |
Original title
DEBIAN-CVE-2026-5277
- https://security-tracker.debian.org/tracker/CVE-2026-5277 Vendor Advisory
Published: 1 Apr 2026 · Updated: 1 Apr 2026 · First seen: 1 Apr 2026