CVE-2021-3156

CVSS7.8High severity
Published: 01/26/2021
CWE: 193 (Off-by-one Error)
NVD

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.

OS
Any OS
Version
Any Version
Type
Any Type

54 fixes found:

Version Update
(RHSA-2021:0395) Important: RHV-H security, bug fix, enhancement update (redhat-virtualization-host) 4.3.13
Published Date:Feb 3, 2021
Updated Date:Feb 3, 2021
Source:RedHat7
Affected Packages:
vdsm-hook-checkips-4.30.51, vdsm-hook-cpuflags-4.30.51, redhat-virtualization-host-image-update-placeholder-4.3.13, redhat-release-virtualization-host-4.3.13, vdsm-hook-localdisk-4.30.51, vdsm-yajsonrpc-4.30.51, vdsm-hook-vmfex-dev-4.30.51, vdsm-hook-openstacknet-4.30.51, vdsm-hook-fcoe-4.30.51, vdsm-python-4.30.51, vdsm-hook-macspoof-4.30.51, vdsm-common-4.30.51, vdsm-network-4.30.51, vdsm-gluster-4.30.51, vdsm-hook-extra-ipv4-addrs-4.30.51, redhat-virtualization-host-4.3.13, vdsm-hook-vhostmd-4.30.51, vdsm-api-4.30.51, vdsm-4.30.51, vdsm-hook-nestedvt-4.30.51, vdsm-client-4.30.51, vdsm-jsonrpc-4.30.51, redhat-virtualization-host-image-update-4.3.13, vdsm-hook-ethtool-options-4.30.51, vdsm-http-4.30.51
Version Update
(RHSA-2021:0401) Important: Red Hat Virtualization Host security bug fix and enhancement update [ovirt-4.4.4]
Published Date:Feb 3, 2021
Updated Date:Feb 3, 2021
Source:RedHat8
Affected Packages:
python3-imgbased-1.2.16, libsss_idmap-debuginfo-2.3.0, python3-libsss_nss_idmap-2.3.0, sssd-ad-2.3.0, libsss_simpleifp-2.3.0, sssd-ad-debuginfo-2.3.0, libsss_certmap-2.3.0, libsss_sudo-debuginfo-2.3.0, sssd-dbus-debuginfo-2.3.0, libipa_hbac-2.3.0, sssd-kcm-2.3.0, redhat-virtualization-host-4.4.4, libsmbclient-debuginfo-4.12.3, sssd-libwbclient-2.3.0, sssd-krb5-common-debuginfo-2.3.0, libsss_simpleifp-debuginfo-2.3.0, redhat-virtualization-host-image-update-placeholder-4.4.4, sssd-nfs-idmap-debuginfo-2.3.0, cockpit-ovirt-dashboard-0.14.17, sssd-ipa-debuginfo-2.3.0, redhat-virtualization-host-image-update-4.4.4, sssd-dbus-2.3.0, sssd-common-pac-2.3.0, sssd-ldap-2.3.0, libsss_sudo-2.3.0, libsss_certmap-debuginfo-2.3.0, samba-4.12.3, python3-libipa_hbac-debuginfo-2.3.0, redhat-release-virtualization-host-4.4.4, sssd-tools-debuginfo-2.3.0, sssd-proxy-2.3.0, sssd-krb5-debuginfo-2.3.0, libsss_autofs-2.3.0, libsss_nss_idmap-2.3.0, sssd-client-2.3.0, sssd-debugsource-2.3.0, python3-sssdconfig-2.3.0, sssd-krb5-2.3.0, sssd-ipa-2.3.0, sssd-ldap-debuginfo-2.3.0, libsss_nss_idmap-devel-2.3.0, libsss_autofs-debuginfo-2.3.0, libsmbclient-4.12.3, python3-sss-murmur-debuginfo-2.3.0, sssd-proxy-debuginfo-2.3.0, sssd-winbind-idmap-2.3.0, sssd-common-debuginfo-2.3.0, sssd-polkit-rules-2.3.0, python3-sss-debuginfo-2.3.0, python3-sss-2.3.0, samba-debuginfo-4.12.3, imgbased-1.2.16, sssd-tools-2.3.0, sssd-2.3.0, sssd-kcm-debuginfo-2.3.0, sssd-libwbclient-debuginfo-2.3.0, sssd-nfs-idmap-2.3.0, cockpit-ovirt-0.14.17, sssd-client-debuginfo-2.3.0, python3-libipa_hbac-2.3.0, sssd-krb5-common-2.3.0, libipa_hbac-debuginfo-2.3.0, python3-sss-murmur-2.3.0, libsss_idmap-2.3.0, libsss_nss_idmap-debuginfo-2.3.0, python3-libsss_nss_idmap-debuginfo-2.3.0, sssd-common-2.3.0, sssd-winbind-idmap-debuginfo-2.3.0, sssd-debuginfo-2.3.0, sssd-common-pac-debuginfo-2.3.0, samba-debugsource-4.12.3
Version Update
(RHSA-2021:0218) Important: sudo security update
Published Date:Jan 26, 2021
Updated Date:Jan 27, 2021
Source:RedHat8
Affected Packages:
sudo-debuginfo-1.8.29, sudo-debugsource-1.8.29, sudo-1.8.29
Version Update
(RHSA-2021:0219) Important: sudo security update
Published Date:Jan 26, 2021
Updated Date:Jan 27, 2021
Source:RedHat8
Affected Packages:
sudo-debuginfo-1.8.29, sudo-debugsource-1.8.29, sudo-1.8.29
Version Update
(RHSA-2021:0220) Important: sudo security update
Published Date:Jan 26, 2021
Updated Date:Jan 27, 2021
Source:RedHat8
Affected Packages:
sudo-debuginfo-1.8.25p1, sudo-1.8.25p1, sudo-debugsource-1.8.25p1
Version Update
(RHSA-2021:0221) Important: sudo security update
Published Date:Jan 26, 2021
Updated Date:Jan 27, 2021
Source:RedHat7
Affected Packages:
sudo-devel-1.8.23, sudo-debuginfo-1.8.23, sudo-1.8.23
Version Update
(RHSA-2021:0222) Important: sudo security update
Published Date:Jan 26, 2021
Updated Date:Jan 27, 2021
Source:RedHat7
Affected Packages:
sudo-devel-1.8.23, sudo-debuginfo-1.8.23, sudo-1.8.23
Version Update
(RHSA-2021:0223) Important: sudo security update
Published Date:Jan 27, 2021
Updated Date:Jan 27, 2021
Source:RedHat7
Affected Packages:
sudo-devel-1.8.23, sudo-debuginfo-1.8.23, sudo-1.8.23

CVE-2021-3156

54 fixes found:

(RHSA-2021:0395) Important: RHV-H security, bug fix, enhancement update (redhat-virtualization-host) 4.3.13

(RHSA-2021:0401) Important: Red Hat Virtualization Host security bug fix and enhancement update [ovirt-4.4.4]

(RHSA-2021:0218) Important: sudo security update

(RHSA-2021:0219) Important: sudo security update

(RHSA-2021:0220) Important: sudo security update

(RHSA-2021:0221) Important: sudo security update

(RHSA-2021:0222) Important: sudo security update

(RHSA-2021:0223) Important: sudo security update