Emergency security update due a very critical bug in sudo
https://www.helpnetsecurity.com/2021/01/27/cve-2021-3156/
https://blog.qualys.com/vulnerabili...p-based-buffer-overflow-in-sudo-baron-samedit
https://illumos.topicbox.com/groups...ecurity-update-r36m-r34am-r30cm-baron-samedit
I suggest all to update as soon as possible (update OS if no fix is available)
For OmniOS (151030-151036) a fix is available now.
To install the update enter the following
# pkg update sudo omnios-userland entire
To test if you are affected by the bug:
enter "sudoedit -s /"
if you are affected, the answer should begin with "sudoedit:" (what I have read)
https://www.helpnetsecurity.com/2021/01/27/cve-2021-3156/
https://blog.qualys.com/vulnerabili...p-based-buffer-overflow-in-sudo-baron-samedit
https://illumos.topicbox.com/groups...ecurity-update-r36m-r34am-r30cm-baron-samedit
I suggest all to update as soon as possible (update OS if no fix is available)
For OmniOS (151030-151036) a fix is available now.
To install the update enter the following
# pkg update sudo omnios-userland entire
To test if you are affected by the bug:
enter "sudoedit -s /"
if you are affected, the answer should begin with "sudoedit:" (what I have read)
Last edited: