From version 1.8.6p7 to 1.8.20 Linux sudo command contains a security vulnerability CVE-2017-1000367, which allows the local user to get the root permission. Exploiting the bug requires that the user already have sudo privileges at least to run one command. The bug is fixed in the upstream version of 1.8.20p1 and the distribution has already started with the update.