On Fri, 13 Sep 2013 12:44:45 +0200, Donovan Watteau wrote: > Am I right thinking that sudo in base is still vulnerable to > CVE-2013-1776 for those who enable tty_tickets?
Yes, but the situation is no worse than with tty_tickets disabled. If you are really worried about this you can simply disable the time stamp files by setting timestamp_timeout to 0. This makes sudo a lot less convenient to use though. - todd
