CVE-2021-3156: Linux OS Sudo Security Bug

Vendor: VMware

Product: Linux

Component: Sudo

Date: 26th January 2021

Target: IT Managers, SysOps

What's new

Any user with login access to a Linux OS can utilise a Buffer Overflow to gain administrative access to the system using Sudo.

How does this affect me?

If you are running the following version of Sudo then you are affected: -

All legacy versions from 1.8.2 to 1.8.31p2

All stable versions from 1.9.0 to 1.9.5p1

What do I need to do?

As per Qualys's instructions, to test if your system is vulnerable, login as a non-root user and run command: -

 sudoedit -s /

If the system is vulnerable, it will respond with an error that starts with “sudoedit:”

If the system is patched, it will respond with an error that starts with “usage:”

If you are vulnerable update Sudo or your OS.

References

CVE-2021-3156

https://blog.qualys.com/vulnerabilities-research/2021/01/26/cve-2021-3156-heap-based-buffer-overflow-in-sudo-baron-samedit

Get in touch

Call us on 0333 000 3210 or Email us solutions@datcom.co.uk

Latest news...

Router vs Firewall

Many businesses nowadays require users to access resources remotely. That could mean a remote-access VPN for users in the field, a website hosted on a server within the network, or a remote desktop solution for people working from home. All of these systems are a potential target for attackers. Upgrading your standard issue ISP router will greatly improve your security.

Skipathon Raises £2000

Why you should ditch paper and switch to Microsoft Forms

Are you still using paper forms to collect data – from customer satisfaction surveys to employee feedback? It’s time to make the switch to digital.

Our experience using Datcom has been excellent. Not only have they provided us with IT and solutions, they have delivered the service in a highly professional and timely fashion.

Business Manager

Mather Jamie Ltd
Datcom have been our IT partners for many years, providing reliable support for our network, backups and client PCs and laptops. Due to the nature of our business, a lot of our team are remote or home workers, so having someone on hand to get our people quickly back up and running if they have a problem is a real asset to our business.

RFMW

Director of Finance
Our long-standing business as commercial property advisors have for many years totally relied on Datcom for trusted IT support and computing solutions. These have included new installations, upgrades and general computing support in a prompt, professional and highly competent way by their resident IT experts.

Orchard House

Senior Partner
Datcom provide all our IT solutions and support. They deliver a quality, professional and prompt service, and are always available to provide assistance when required.

Managing Director

Castlegate Financial Management
Datcom have provided Beaumont Leys School with IT system management and solutions advice over the past four years. We have received a high quality and friendly service at all levels and always in a prompt and professional manner. I have always felt at ease with running our school network knowing that the Datcom team are there to offer support when required.

Beaumont Leys School

Manager