AIX Open Source

AIX Open Source

Share your experiences and connect with fellow developers to discover how to build and manage open source software for the AIX operating system


#Operatingsystems
#Opensource
#AIX
#AIX Open Source
 View Only

  • 1.  CVE-2021-3156 Sudo Vulnerability on Aix servers

    Posted Fri February 26, 2021 11:16 AM
    below is the output from sudoedit -s / command , server is at 7100-05-05-1939 version, please let me know if sudo is vulnerable or not.

    # sudoedit -s /
    sudoedit: /opt/quest/lib64/libsudo_vas.so: A file or directory in the path name does not exist.
    sudoedit: /: not a regular file



    ------------------------------
    Cenovus AIX
    ------------------------------


  • 2.  RE: CVE-2021-3156 Sudo Vulnerability on Aix servers

    Posted Mon March 01, 2021 01:37 AM
    Here is a blog that describe about vulnerability.
    https://blog.aquasec.com/cve-2021-3156-sudo-vulnerability-allows-root-privileges

    Summary from blog if you run following command and get segmentation fault then you are vulnerable, if you get usage error you are not. 

    # sudoedit -s '\' `perl -e 'print "A" x 65536'`



    ------------------------------
    SANKET RATHI
    ------------------------------

    Original Message