Flaw exists in versions of sudo going back nearly 10 years; USCYBERCOM recommends organizations patch immediately.