crp 823 Posted January 28 Share Posted January 28 A real , legit security bug in Linux. (maybe this should be crossposted to Security forum?) a regular user can do a buffer overflow and do superuser stuff. https://blog.qualys.com/vulnerabilities-research/2021/01/26/cve-2021-3156-heap-based-buffer-overflow-in-sudo-baron-samedit 1 Link to post Share on other sites
securitybreach 11,431 Posted January 28 Share Posted January 28 Yeah it was announced and patched the same day a few days ago. Link to post Share on other sites
securitybreach 11,431 Posted January 28 Share Posted January 28 We talked about it in Bookmem's post yesterday but your link does have a lot more detail: Most distros have offered the sudo patch for a day or two now. Link to post Share on other sites
abarbarian 3,455 Posted January 29 Share Posted January 29 I use sudoedit all the time as it allows me to alter files that are root protected. Link to post Share on other sites
securitybreach 11,431 Posted January 29 Share Posted January 29 32 minutes ago, abarbarian said: I use sudoedit all the time as it allows me to alter files that are root protected. I've do not recall using sudoedit as I always either sudo or su to root for things, depending on the file or what needs to be escalated. Link to post Share on other sites
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now