[olug] Update Sudo
Jeff Hinrichs - DM&T
jeffh at dundeemt.com
Wed Jan 27 20:14:29 CST 2021
ubuntu 18.04.5 -passed
raspbian 9.13 - vuln
freebsd11.4-RELEASE - passed
On Wed, Jan 27, 2021 at 2:54 PM Anthony Kava <karver at forensic.coffee> wrote:
> If you want to do a quick test (might have some false negatives) try this:
>
> sudoedit -s '\' `perl -e 'print "A" x 65536'`
>
> Should segfault if vulnerable, return Usage message if not. Again, not
> sure if 100% but worked in anecdotal testing with Ubuntu 16.04, 20.4,
> Raspbian, and CentOS 6 and 7.
>
> On Wed, Jan 27, 2021 at 2:24 PM Jon Larsen <jon at jonlarsen.us> wrote:
>
> > 10-year-old Sudo Bug Lets Linux Users Gain Root-Level Access
> >
> >
> https://linux.slashdot.org/story/21/01/27/1820205/10-year-old-sudo-bug-lets-linux-users-gain-root-level-access
> > _______________________________________________
> > OLUG mailing list
> > OLUG at olug.org
> > https://www.olug.org/mailman/listinfo/olug
> >
>
>
> --
> Kava
> _______________________________________________
> OLUG mailing list
> OLUG at olug.org
> https://www.olug.org/mailman/listinfo/olug
>
--
Best,
Jeff Hinrichs
402.320.0821
More information about the OLUG
mailing list