RSS
Jan 27, 2021 1:08:21 PM
Inessa Atmachian
Inessa Atmachian
Inessa Atmachian, Technical Writer at CloudLinux. Crafting comprehensive product documentation and keeping users informed with release notes and updates.

A new sudo package with the CVE-2021-3156 fix for CloudLinux 7 and CloudLinux 8 released

update

A new sudo package with the CVE-2021-3156 fix for CloudLinux 7 and CloudLinux 8 is now available for download from our production repository.

Changelog

CloudLinux 8: sudo-1.8.29-6.el8_3.1
CloudLinux 7: sudo-1.8.23-10.el7_9.1

  • Fixed Heap-based buffer overflow in Sudo (CVE-2021-3156)

Update command

yum update sudo*

CVE-2021-3156 description

Sudo before 1.9.5p2 has a Heap-based Buffer Overflow, allowing privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.

A new sudo package with the CVE-2021-3156 fix for CloudLinux 7 and CloudLinux 8 released

Jan 27, 2021 1:08:21 PM
Inessa Atmachian

update

A new sudo package with the CVE-2021-3156 fix for CloudLinux 7 and CloudLinux 8 is now available for download from our production repository.

Changelog

CloudLinux 8: sudo-1.8.29-6.el8_3.1
CloudLinux 7: sudo-1.8.23-10.el7_9.1

  • Fixed Heap-based buffer overflow in Sudo (CVE-2021-3156)

Update command

yum update sudo*

CVE-2021-3156 description

Sudo before 1.9.5p2 has a Heap-based Buffer Overflow, allowing privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.
imunify-logo

WEB SERVER SECURITY BLOG

READ MORE ABOUT WEB SERVER SECURITY

Subscribe to CloudLinux Newsletter

aicpa soc
pci-dss
eu gdpr compliant
© All rights reserved. CloudLinux Inc.
Terms of Use | Privacy Policy | Vulnerability Reporting | Legal | Do Not Sell My Personal Data

Call Sales at +1 (800) 231-7307
Email sales@cloudlinux.com