CVE-2021-3156 log

Severity Critical
Remote No
Type Privilege escalation
A serious heap-based buffer overflow has been discovered in sudo before version 1.9.5p2 that is exploitable by any local user. It has been given the name Baron Samedit by its discoverer. The bug can be leveraged to elevate privileges to root, even if the user is not listed in the sudoers file. User authentication is not required to exploit the bug.
Group Package Affected Fixed Severity Status Ticket
AVG-1431 sudo 1.9.4.p2-2 1.9.5.p2-1 Critical Fixed
Date Advisory Group Package Severity Type
20 Jan 2021 ASA-202101-25 AVG-1431 sudo Critical multiple issues