AIX Open Source

AIX Open Source

Share your experiences and connect with fellow developers to discover how to build and manage open source software for the AIX operating system

 View Only

  • 1.  CVE-2021-3156 Sudo Vulnerability on Aix servers

    Posted Fri February 26, 2021 11:16 AM
    below is the output from sudoedit -s / command , server is at 7100-05-05-1939 version, please let me know if sudo is vulnerable or not.

    # sudoedit -s /
    sudoedit: /opt/quest/lib64/libsudo_vas.so: A file or directory in the path name does not exist.
    sudoedit: /: not a regular file



    ------------------------------
    Cenovus AIX
    ------------------------------


  • 2.  RE: CVE-2021-3156 Sudo Vulnerability on Aix servers

    Posted Mon March 01, 2021 01:37 AM
    Here is a blog that describe about vulnerability.
    https://blog.aquasec.com/cve-2021-3156-sudo-vulnerability-allows-root-privileges

    Summary from blog if you run following command and get segmentation fault then you are vulnerable, if you get usage error you are not. 

    # sudoedit -s '\' `perl -e 'print "A" x 65536'`



    ------------------------------
    SANKET RATHI
    ------------------------------

    Original Message