Two vulnerabilities in the Sudo utility (CVE-2025-32462 and CVE-2025-32463) allow local Linux users to gain root access, with one flaw (CVSS 9.3) exploiting the --chroot option to execute arbitrary commands. These affect major Linux distros and have now been patched in Sudo 1.9.17p1. Users are urged to update immediately to mitigate risk.