Heap-Based Buffer Overflow in Sudo

Heap-Based Buffer Overflow in Sudo

Feb 01, 2021

Disclosure Timeline CVE-2021-3156

  • 2021-01-13: Advisory sent to Todd.Miller@sudo

  • 2021-01-19: Advisory and patches sent to distros@openwall

  • 2021-01-26: Coordinated Release Date (6:00 PM UTC)

Solution

Given the breadth of the attack surface for this vulnerability, Qualys recommends users apply patches for this vulnerability immediately.

Enjoy this post?

Buy Feno ANDRIAMPARANY a coffee

More from Feno ANDRIAMPARANY