A subset of users with sudo access could have run commands restricted to root users by leveraging a discovered exploit in a function return call that changes the user ID in Linux and Unix systems.
Linux-distros RSS
Microsoft is set to join the private linux-distros mailing list between now and August 8th. The list is used to discuss security vulnerabilities before they're announced to the wider public.