CVE-2021-3156: Heap-Based Buffer Overflow in Sudo (Baron Samedit)

[Arun]

CVE-2021-3156: Heap-Based Buffer Overflow in Sudo (Baron Samedit) | Qualys Security Blog

Update Feb 3, 2021: It has been reported that macOS, AIX, and Solaris are also vulnerable to CVE-2021-3156, and that others may also still be vulnerable. Qualys has not independently verified the…

blog.qualys.com

Just came across this new vulnerability but couldn't find a discussion here. I have tried sudoedit -s / to check this on a random cPanel server with CentOS 7 and it does seem to show the vulnerability as mentioned in the FAQ there:

[email protected] [~]# sudoedit -s /
sudoedit: effective uid is not 0, is /usr/bin/sudoedit on a file system with the 'nosuid' option set or an NFS file system without root privileges?

 

[vacancy]

Sudo packages are being updated in the last cpanel update. My servers are updated automatically.

If you want to update manually, you can use the yum -y upgrade command.

The package in which the vulnerability was fixed.
sudo.x86_64 0: 1.8.23-10.el7_9.1 (redhat - centos 7)

 

[chposter]

Cloudlinux however has not still updated the package.
I am changing the perms of /usr/bin/sudo to 000 until update.

 

[cPRex]

Hey hey! CentOS already has this resolved, and CloudLinux has said they'll have a patch within the next 1-3 days :D

 

[vacancy]

Cloudlinux published update.

You can update with the command below.

yum clean all
yum -y update sudo*

A new sudo package with the CVE-2021-3156 fix for CloudLinux 7 and CloudLinux 8 released

A new sudo package with the CVE-2021-3156 fix for CloudLinux 7 and CloudLinux 8 released

blog.cloudlinux.com

 

[cPRex]

That came out even quicker than they told me this morning :D