CVE-2021-3156: Heap-Based Buffer Overflow in Sudo (Baron Samedit)

Arun

Active Member
Jan 28, 2006
29
1
153

Just came across this new vulnerability but couldn't find a discussion here. I have tried sudoedit -s / to check this on a random cPanel server with CentOS 7 and it does seem to show the vulnerability as mentioned in the FAQ there:

[email protected] [~]# sudoedit -s /
sudoedit: effective uid is not 0, is /usr/bin/sudoedit on a file system with the 'nosuid' option set or an NFS file system without root privileges?
 
Last edited by a moderator:
  • Like
Reactions: kawasakai

vacancy

Well-Known Member
Sep 20, 2012
474
165
93
Turkey
cPanel Access Level
Root Administrator
Sudo packages are being updated in the last cpanel update. My servers are updated automatically.

If you want to update manually, you can use the yum -y upgrade command.

The package in which the vulnerability was fixed.
sudo.x86_64 0: 1.8.23-10.el7_9.1 (redhat - centos 7)
 
Last edited:
  • Like
Reactions: kawasakai

chposter

Active Member
May 9, 2011
40
1
58
Cloudlinux however has not still updated the package.
I am changing the perms of /usr/bin/sudo to 000 until update.