Gentoo Linux Security Advisory 201006-9 – A flaw in sudo’s -e option may allow local attackers to execute arbitrary commands. The command matching functionality does not properly handle when a file in the current working directory has the same name as a pseudo-command in the sudoers file and the PATH contains an entry for a period. Versions less than 1.7.2_p6 are affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/90176/glsa-201006-09.txt
Source: https://packetstormsecurity.com/files/90176/Gentoo-Linux-Security-Advisory-201006-9.html