sudo-1.8.23-10.el7.1

エラータID: AXSA:2021-1325:02

Release date: 
Wednesday, January 27, 2021 - 00:48
Subject: 
sudo-1.8.23-10.el7.1
Affected Channels: 
Asianux Server 7 for x86_64
Severity: 
High
Description: 

The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root.

Security Fix(es):

* sudo: Heap buffer overflow in argument parsing (CVE-2021-3156)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2021-3156
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Solution: 

Update packages.

Additional Info: 

N/A

Download: 

SRPMS
  1. sudo-1.8.23-10.el7.1.src.rpm
    MD5: 115658cf314ee3ef2a032e5394382f26
    SHA-256: 11e0409dca6eb2bbccf4d071293adc73bb97e1e097899c6ea282f544b840b93d
    Size: 3.07 MB

Asianux Server 7 for x86_64
  1. sudo-1.8.23-10.el7.1.x86_64.rpm
    MD5: a0aa4adc48a6e05c2b1b10ef8a23b73f
    SHA-256: 38e3ccc118ad68e0c85123366013d3ae689f18cfa9737ddb0578c9c770acff59
    Size: 841.69 kB