CVE-2021-3156: Linux OS Sudo Security Bug

Vendor: VMware

Product: Linux

Component: Sudo

Date: 26th January 2021

Target: IT Managers, SysOps

What's new

Any user with login access to a Linux OS can utilise a Buffer Overflow to gain administrative access to the system using Sudo.

How does this affect me?

If you are running the following version of Sudo then you are affected: -

All legacy versions from 1.8.2 to 1.8.31p2

All stable versions from 1.9.0 to 1.9.5p1

What do I need to do?

As per Qualys's instructions, to test if your system is vulnerable, login as a non-root user and run command: -

 sudoedit -s /

If the system is vulnerable, it will respond with an error that starts with “sudoedit:”

If the system is patched, it will respond with an error that starts with “usage:”

If you are vulnerable update Sudo or your OS.

References

CVE-2021-3156

https://blog.qualys.com/vulnerabilities-research/2021/01/26/cve-2021-3156-heap-based-buffer-overflow-in-sudo-baron-samedit

Get in touch

Call us on 0333 000 3210 or Email us solutions@datcom.co.uk

Latest news...

Working from home – are you there for the long term?

With a lot of us now working from home for the majority of the week, it’s a good time to have a think about what equipment we have around us and if it’s fit for long-term use. Here are our top 10 things to consider.

Read More

Getting the most out of your Teams Telephony

Whether you’re talking to colleagues two floors up, or 200 miles away, Teams is a great collaboration tool. Even the free version can help people communicate and collaborate – either within, or across, organisations. So why should you add Teams Telephony to your package?

Read More

What is the most secure MFA method?

MFA stands for Multi-factor Authentication. It means users have to provide two or more verification factors to access a resource, such as an application, online account, or VPN. If you have MFA on all your business and personal online accounts, then you are already more secure than 85% of businesses. Let’s compare the various MFA methods available and see how we can make your account even more secure.

Read More

Our long-standing business as commercial property advisors have for many years totally relied on Datcom for trusted IT support and computing solutions. These have included new installations, upgrades and general computing support in a prompt, professional and highly competent way by their resident IT experts.

Orchard House

Senior Partner
For many years now Datcom have been supporting our IT systems and providing up-to-date, bespoke solutions to meet our demands and keep us safe and secure. Their team of engineers are highly skilled and no challenge has been too great so far, including a new server, cloud solutions and Cyber Essentials Plus accreditation. I would strongly recommend them.

Finance Director

Ramco Ltd
Datcom provide IT support and solutions. They deliver a professional and prompt service and are always available to provide assistance and expertise.

EH Thorne

Director
Datcom have reliably provided us with first-class IT support, expertise and solutions for over ten years. Their prompt and professional service gives us complete peace of mind and allows us to focus on our core business.

Director

Korbond
Datcom provide all our IT solutions and support. They deliver a quality, professional and prompt service, and are always available to provide assistance when required.

Managing Director

Castlegate Financial Management