Emergency security update due a very critical bug in sudo

_Gea

2[H]4U
Joined
Dec 5, 2010
Messages
3,999
Emergency security update due a very critical bug in sudo

https://www.helpnetsecurity.com/2021/01/27/cve-2021-3156/

https://blog.qualys.com/vulnerabili...p-based-buffer-overflow-in-sudo-baron-samedit

https://illumos.topicbox.com/groups...ecurity-update-r36m-r34am-r30cm-baron-samedit

I suggest all to update as soon as possible (update OS if no fix is available)
For OmniOS (151030-151036) a fix is available now.

To install the update enter the following
# pkg update sudo omnios-userland entire

To test if you are affected by the bug:
enter "sudoedit -s /"

if you are affected, the answer should begin with "sudoedit:" (what I have read)
 
Last edited:
Top