Re: [arch-general] CVE-2021-3156 (Heap-Based Buffer Overflow in Sudo)

On 1/29/21 12:20 PM, Łukasz Michalski via arch-general wrote:

Hi,

Just checked my servers and all were vulnerable:

Updating to the latest version (sudo-1.9.5.p2-1) closed this vulnerability. Maybe this should be posted as arch news message?

It was already sent to the arch-security mailing list on 1/26. DR