Bookmem Posted January 27, 2021 Share Posted January 27, 2021 (edited) I just read an article from ZDNet about a bug in sudo that let's anyone who gains access to get root priveleges. Normally, by time a bug like this gets reported, it has already been patched. Does anyone know if that's the case with this one? Not that I'm worried because no one but me has access to my computers anyway. edit: Closer reading answers my question. Quote was patched earlier today with the release of Sudo v1.9.5p2 Edited January 27, 2021 by Bookmem Quote Link to comment Share on other sites More sharing options...
V.T. Eric Layton Posted January 27, 2021 Share Posted January 27, 2021 Yup. Already patched in Slackware (2 days ago) and most other Linux distributions, by now. Quote Link to comment Share on other sites More sharing options...
securitybreach Posted January 27, 2021 Share Posted January 27, 2021 Yup, it was patched the day of the announcement. Quote Link to comment Share on other sites More sharing options...
securitybreach Posted January 27, 2021 Share Posted January 27, 2021 That's the beauty of opensource, we get things fixed pretty fast. 1 Quote Link to comment Share on other sites More sharing options...
wa4chq Posted January 27, 2021 Share Posted January 27, 2021 (edited) Quote The following versions of sudo are affected: 1.8.2 through 1.8.31p2 and 1.9.0 through 1.9.5p1. So mine is 1.8.19p1...I reckon that means only a select few can gain access to my root. Edited January 27, 2021 by wa4chq Quote Link to comment Share on other sites More sharing options...
securitybreach Posted January 27, 2021 Share Posted January 27, 2021 53 minutes ago, wa4chq said: So mine is 1.8.19p1-2.1+deb9u3...I reckon that means only a select few can gain access to my root. Have you checked for updates as someone else said they got the update on MX Linux? Quote Link to comment Share on other sites More sharing options...
wa4chq Posted January 27, 2021 Share Posted January 27, 2021 I didn't see anything on the MXLinux site. I did a reinstall of sudo and it gave one upgrade (not sure what I originally had) and what I posted above is what they upgraded to.... Quote Link to comment Share on other sites More sharing options...
securitybreach Posted January 27, 2021 Share Posted January 27, 2021 Odd Quote Link to comment Share on other sites More sharing options...
securitybreach Posted January 27, 2021 Share Posted January 27, 2021 I tried earlier to look up their software repos list or mirror earlier but I got busy at work. Quote Link to comment Share on other sites More sharing options...
sunrat Posted January 27, 2021 Share Posted January 27, 2021 Fixed in Debian January 26. See NEW UPDATES Debian topic. 1 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.