CVE-2021-3156 - Sudo before 1.9.5p2 has a Heap-based Buffer Overflow, allowing privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.
For more information please see the National Vulnerability Database or the Common Vulnerabilities and Exposures entries.
Is Safeguard Authentication Services or Safeguard for Sudo affected by this defect?
RESOLUTION:
The products Safeguard Authentication Services and Safeguard for Sudo either provide tools for managing Sudoers entries or tracking input and output logging for auditing purposes. Both products work within existing Sudo installations, extending their functionality and security. One Identity does not provide the Sudo product itself and therefore the vulnerability does not exist within these One Identity products.
One Identity recommends working with your Operating System vendor or Sudo vendor to ensure you have the latest patched version of Sudo for your environment.
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center