Need to install sudo 1.9.5p2 on all AIX server due to vulnerability

View Only

Expand all | Collapse all

Need to install sudo 1.9.5p2 on all AIX server due to vulnerability

1. Need to install sudo 1.9.5p2 on all AIX server due to vulnerability

0 Like
Manoj Kumar
Posted Thu February 25, 2021 11:01 AM

Reply
Hi Team,

We are getting high score vulnerability identified in sudo running version before 1.9.5p2 on UNIX servers (CVE-2021-3156).
So for that first we need to install sudo 1.9.5p2 on all AIX servers. So just wanted to know how we should proceed?
Across AIX we have less than 1.9.5p2 sudo version installed.

Reference CVE: https://nvd.nist.gov/vuln/detail/CVE-2021-3156

Regards
Manoj

------------------------------
Manoj Kumar
------------------------------
2. RE: Need to install sudo 1.9.5p2 on all AIX server due to vulnerability

0 Like
SANKET RATHI
Posted Mon March 01, 2021 01:44 AM

Reply
From where did you install current sudo?
If you installed from AIX toolbox then follow the same process as before.
From AIX toolbox best way to install any package is thru yum.

If sudo was installed from other source like directly from sudo community website then update from there if you want.

------------------------------
SANKET RATHI
------------------------------

Original Message
3. RE: Need to install sudo 1.9.5p2 on all AIX server due to vulnerability

0 Like
Esa Kärkkäinen
Posted Mon March 01, 2021 05:25 AM

Reply
For what it is worth, there are BFF packages available from https://www.sudo.ws/sudo/dist/packages/ .
These might be viable option, if one does not need to have anything else OSS/FOSS wise, such as bash, python etc on AIX.
The packages have PGP signatures available and as far as I know the BFF packages do not have any external dependencies.

------------------------------
Esa Kärkkäinen
------------------------------

Original Message
4. RE: Need to install sudo 1.9.5p2 on all AIX server due to vulnerability

0 Like
Bruce Landrum
Posted Tue March 02, 2021 09:10 AM
Edited by Bruce Landrum Tue March 02, 2021 10:00 AM

Reply
Yes, I installed from the sudo site. No dependencies except for standard AIX install.

Bruce

Original Message

AIX Open Source

Need to install sudo 1.9.5p2 on all AIX server due to vulnerability

Manoj KumarThu February 25, 2021 11:01 AM

SANKET RATHIMon March 01, 2021 01:44 AM

Esa KärkkäinenMon March 01, 2021 05:25 AM

Bruce LandrumTue March 02, 2021 09:10 AM

1. Need to install sudo 1.9.5p2 on all AIX server due to vulnerability

2. RE: Need to install sudo 1.9.5p2 on all AIX server due to vulnerability

3. RE: Need to install sudo 1.9.5p2 on all AIX server due to vulnerability

4. RE: Need to install sudo 1.9.5p2 on all AIX server due to vulnerability