BugZero | Red Hat BugID RHEL-92633 - ksh reports /usr/bin/ksh as "$0" instead of script...

Red Hat - Defect ID: RHEL-92633

ksh reports /usr/bin/ksh as "$0" instead of script name, when script executes under sudo + checksum verification

Red Hat - Defect ID: RHEL-92633

ksh reports /usr/bin/ksh as "$0" instead of script name, when script executes under sudo + checksum verification

Last updated on December 8th, 2025

BugZero Risk Score
9.2 High

Overall: 9.2

Severity: 10.0

Community: 6.0

Lifecycle: 7.3

What is the BugZero Risk Score?

Red Hat Integration

Learn more about where this data comes from

Red Hat Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Bug Details

Priority: Blocker
Status: In Progress
Impact Category: ksh
Views: 1

Description

Issue

When executing a ksh script under sudo and sudo has a line to verify the checksum, then the $0 is reported as /usr/bin/ksh instead of script being interpreted: ksh script /usr/local/bin/script.ksh #!/usr/bin/ksh echo "\$0: $0" configure sudo to verify the checksum # echo "kshuser ALL=NOPASSWD: sha256:$(sha256sum /usr/local/bin/script.ksh)" > /etc/sudoers.d/kshuser execute the script under sudo (kshuser) $ sudo /usr/local/bin/script.ksh $0: /usr/bin/ksh The root cause is likely due to having a execveat() being used by sudo to execute the script, instead of "regular" execve(), as seen with stracing: 5129 11:25:59.445250 execve("/usr/bin/sudo", ["sudo", "/usr/local/bin/script.ksh"], ... : 5131 11:25:59.489322 execveat(6</usr/local/bin/script.ksh>, "", ["/usr/local/bin/script.ksh"], ..., AT_EMPTY_PATH) = 0 The execveat() is done on purpose to make sure the script was not altered. Due to this bug, it's impossible to know which script is currently executing.

Release Notes

No. of Comments

Resolution

Unresolved

Change history

2025-08-04 Added: 9.6, 8.10, 10.0

Links

Relevant Products

Click on a version to see all relevant bugs

Affected versions:8.10, 9.6, 10.0

Fixed versions: No known fixed versions

Relevant Products

Click on a version to see all relevant bugs

Affected versions:8.10, 9.6, 10.0

Fixed versions: No known fixed versions

Top Red Hat Defects

9.2Defect ID: RHEL-131697
Live migration after workload update fails with operation failed: guest CPU doesn't match specification: missing features: pdcm
9.2Defect ID: RHEL-103384
[virtio-win][WHQL][GPU] 'DXGI Gamma Ramps' couldn't be filtered
9.2Defect ID: RHEL-92633
ksh reports /usr/bin/ksh as "$0" instead of script name, when script executes under sudo + checksum verification
9.1Defect ID: RHEL-131100
leapp-rhui-aws package is not available yet in some regions
9.0Defect ID: RHEL-129143
[RHEL10][Lenovo P16 Gen3 Aster] [Hybrid][Nvidia][RTX Pro 5000 Blackwell] External Monitor Could Not Be Detected With Nouveau Driver

Ready to prevent the next vendor outage?

Get a demo

Red Hat - Defect ID: RHEL-92633

ksh reports /usr/bin/ksh as "$0" instead of script name, when script executes under sudo + checksum verification

Red Hat - Defect ID: RHEL-92633

ksh reports /usr/bin/ksh as "$0" instead of script name, when script executes under sudo + checksum verification

Last updated on December 8th, 2025

BugZero Risk Score9.2 High

Bug Details

Issue

Release Notes

No. of Comments

Resolution

Links

Top Red Hat Defects

Ready to prevent the next vendor outage?

BugZero Risk Score
9.2 High